function array_encode($tmp) { $json = '['; $c1 = 0; foreach ($tmp as $tt) { if ($c1 > 0) { $json .= ','; } $json .= '['; $c2 = 0; foreach ($tt as $tt1) { if ($c2 > 0) { $json .= ','; } $json .= '"' . addSlash($tt1) . '"'; $c2++; } $json .= ']'; $c1++; } $json .= "]"; return $json; }
$filename = mt_rand(0, 99) . '-' . $filename; } copy($g_Structure['n'][$i], $path . $filename); } } } //////////////////////////////////////////////////////////////////////////// if ($BOOL_RESULT) { if (count($g_CriticalPHP) > 0 or count($g_CriticalJS) > 0 or count($g_Base64) > 0 or count($g_Iframer) > 0 or count($g_UnixExec) > 0) { echo "1\n"; exit(0); } } //////////////////////////////////////////////////////////////////////////// $l_Template = str_replace("@@SERVICE_INFO@@", htmlspecialchars("[" . $int_enc . "][" . $snum . "]"), $l_Template); $l_Template = str_replace("@@PATH_URL@@", isset($_SERVER['HTTP_HOST']) ? $_SERVER['HTTP_HOST'] : $g_AddPrefix . str_replace($g_NoPrefix, '', addSlash(ROOT_PATH)), $l_Template); $time_taken = seconds2Human(microtime(true) - START_TIME); $l_Template = str_replace("@@SCANNED@@", sprintf(AI_STR_013, $g_TotalFolder, $g_TotalFiles), $l_Template); $l_ShowOffer = false; stdOut("\nBuilding report [ mode = " . AI_EXPERT . " ]\n"); //////////////////////////////////////////////////////////////////////////// // save if (!(ICHECK || IMAKE)) { if (isset($options['with-2check']) || isset($options['quarantine'])) { if (count($g_CriticalPHP) > 0 or count($g_CriticalJS) > 0 or count($g_Base64) > 0 or count($g_Iframer) > 0 or count($g_UnixExec)) { if (!file_exists(DOUBLECHECK_FILE)) { if ($l_FH = fopen(DOUBLECHECK_FILE, 'w')) { fputs($l_FH, '<?php die("Forbidden"); ?>' . "\n"); $l_CurrPath = dirname(__FILE__); if (!isset($g_CriticalPHP)) { $g_CriticalPHP = array();
<?php $item = addSlash(urldecode($_POST['item'])); $mode = addSlash(urldecode($_POST['mode'])) or die('Oops!'); //_REQUEST || _POST $json = getData($item, $mode); echo '{RESPONSE:"OK",RESULT:"MSG.chat.ondata",DATA:' . $json . '}'; function addSlash($str) { return preg_replace('/([!"#$%&()\'*+,-.\\\\;\\/:?@[\\]_`{|}~])/', '\\\\$1', $str); } function getData($item, $mode) { $link = mysql_connect('localhost', 'mmopenli_em1', 'temp123') or die('Could not connect: ' . mysql_error()); mysql_select_db('mmopenli_em1'); mysql_query('SET NAMES UTF8'); $json = ""; $sep = '"'; if ($mode <= 2) { $query = "(SELECT * FROM em1 WHERE en LIKE '{$item}' ORDER BY en) UNION (SELECT * FROM em1 WHERE en LIKE '{$item}%' ORDER BY en) UNION (SELECT * FROM em1 WHERE en LIKE '% {$item}%') LIMIT " . ($mode == 2 ? 30 : 1); } if ($mode == 3) { $query = "SELECT * FROM em1 WHERE en NOT LIKE '% %' LIMIT " . rand() % 3000 . ",1"; } if ($mode == 4) { $query = "SELECT DISTINCT en FROM em1 WHERE en!='' AND en NOT RLIKE ' ' AND en NOT RLIKE '^-|-\$' ORDER BY en"; $sep = ''; } $json = implodeq($query, $sep); if ($mode == 4) { $json = '",' . $json . ',"'; } else {