Waraxe IT Security Portal  
  Login or Register
::  Home  ::  Search  ::  Your Account  ::  Forums  ::   Waraxe Advisories  ::  Tools  ::
March 29, 2024
Menu
 Home
 Logout
 Discussions
 Forums
 Members List
 IRC chat
 Tools
 Base64 coder
 MD5 hash
 CRC32 checksum
 ROT13 coder
 SHA-1 hash
 URL-decoder
 Sql Char Encoder
 Affiliates
 y3dips ITsec
 Md5 Cracker
 User Manuals
 AlbumNow
 Content
 Content
 Sections
 FAQ
 Top
 Info
 Feedback
 Recommend Us
 Search
 Journal
 Your Account



User Info
Welcome, Anonymous
Nickname
Password
(Register)

Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9145

People Online:
Visitors: 719
Members: 0
Total: 719
PacketStorm News
·301 Moved Permanently

read more...
Log in Register Forum FAQ Memberlist Search
IT Security and Insecurity Portal

www.waraxe.us Forum Index -> PHP script decode requests -> Zend file needed to decode Goto page 1, 2  Next
Post new topic  Reply to topic View previous topic :: View next topic 
Zend file needed to decode
PostPosted: Sat Sep 06, 2008 4:05 pm Reply with quote
angrycoder
Regular user
Regular user
 
Joined: Jul 15, 2008
Posts: 22




<?php @Zend;
3272;
/* !This is not a text file! */
print "<html><body>\n";
print "<a href=\"http://www.zend.com/store/products/zend-safeguard-suite.php\"><img border=\"0\" src=\"http://www.zend.com/images/store/safeguard_icon_nover_64.jpg\" align=\"right\"></a>\n";
print "<center><h1>Zend Optimizer not installed</h1></center>";
print "<p>This file was encoded by the <a href=\"http://www.zend.com/store/products/zend-encoder.php\">Zend Encoder</a> / <a href=\"http://www.zend.com/store/products/zend-safeguard-suite.php\">Zend SafeGuard Suite</a></p>\n";
print "<p>In order to run it, please install the freely available <a href=\"http://www.zend.com/store/products/zend-optimizer.php\">Zend Optimizer</a>, version 2.1.0 or later.</p>\n";
print "<h2>What is the Zend Optimizer?</h2>
";
print <<<EOM
<p>The Zend Optimizer is one of the most popular PHP plugins for performance-improvement, and has been freely available since the early days of PHP 4. It improves performance by taking PHP's intermediate code through multiple Optimization Passes, which replace inefficient code patterns with efficient code blocks. The replacement code blocks perform exactly the same operations as the original code, only faster.</p>
<p>In addition to performance-improvement, the Zend Optimizer also enables PHP to transparently load files encoded by the Zend Encoder or Zend SafeGuard Suite.</p>
<p>The Zend Optimizer is a freely-available product from <a href="http://www.zend.com">Zend Technologies</a>. Zend Technologies is the company that develops the scripting engine of PHP, also known as the <a href="http://www.zend.com/store/products/zend-engine.php">Zend Engine</a>.</p>
EOM;
print "</body></html>\n";
exit();
?>

200312070111530887892x
2 }K^Ǖ%EiЫƒD[[5g KZ-f(: 33_TSnI[qLF7{# #^HP8@1䜺UP`HyWUhjK{h66cVYacx/_fG;{1)hP_=|sqf-c+;޹
Ґ ֭ {V)cs}?u]q;w[XYg1W@8ڨN\=X1mo C`9>fZqdγB0k@jz#hNCE/lPSsn=ta<lM8?:yE8~7S[0|+=7oG {3vm=}õל Z {7.޹{w::0.gU<!͗[)*#B;7#xK5n8TvĈo
jN*ݥok.O}kw
}q!Kĉ#$^,*DZ]79pc#nhOSo7UFFk4[X׊K俻usoh-`19Yez6-΍|.+x4v
brw`T\S }hSc&_|t3 7ų[ǘIw6R@U<y}έ`_]~p֔"FqF4_{Am6qq[|(L
'((>1>oQdArjL)k׍oƗ _~p<2]
C7xmIGC|
o:| |z
1)K
4珎v9Z+|ɯ
W_8<tS@ϿOOM/u<^ٽ~&jKYpޓK~>D6O?DNn&,_0ߏ_Կc o˿j~6h񣮒Xգ4rV =Wnt.=\ 딒K+o:- ^|)7?v/C޿Z:`>:.
%EkO_~j%.oC߉7Ҟ\(]xss02_,?7.ґC#<p/쮶\&AHo
/rqaqc^N@ {'|RN*nP9yC9ͫ/K3\r]t^K7²?1nnW[Ax.]ymu:qO1ycjfPZXΕxWTnKlpٓyco_q7}tONFM 1xQZ> QՍdmyC*$
`S @F$eG,IwNy7'Z,b`l^K__=<7_ɂϑИO
ޜWō+k5#[S{=z*'hR5&wӻrֵA
G_E}o%xЬ˝+2=E[DS,l^K7~ſpѱ)n^4n7 &uq0ʸ.o@0nڿ4i`}`6gX7욥QBF m1(ҼUaުƪKGVM6;GLQ`ިΨ)|5e
PS1
0ʦP@ Ħ`ѯ\Җ6=G<\Q
fXh^u3.<Sy+C=4ǦÃw]DS!)ߔJO>4?(~jɠ$f{jo<\.A7%4!kj~5 LC ]1Ӏ{.kAL[]Wx8R
4i0kAHEظEu>h󣬍em4o&m+;}shPyV^6ҸX3)ǘHnc\s%gy!̧
MzƈV6aխ~) 0j>G:3Z¤ iͻՅHC!QBVUBDo3`m?Zܖ,VnKJi1m-,'%n @a9s p^ -:/|\:>X IUdA »lI z*;Y'
[F!䩆^^WP,EEDUf
Ue
hRE
~i*#b@Ag*03\L @z)|6S;T\(C\=d'Jd
!,T-{NM5S~nל :C29a2jʹqflfLKK7f:p.eLF{Y#
LFZ#c"[Y
FM#6Q`2S
7K<hŎvLa#j:S0)XFd
,'2\)XNd
8VT&
'
+B{Jг|t`UMѪ:".|Ǫ\=1{ʈv!!|`({-= NlW"."H@YXb|||ڶ0gS'Nz01K;)Ϲ 'A : h'_3ӭEanFl
n\s6cF`܉OzMN9ZL|s/=V~r7s'}kcX
_MRy1V_j!5^1/plE
c'#쐤׾~-ȠCs)3XA-4M-O>DkԾ\(];+_rl*[@wU& vӔ=c砯IܘNJvD+j!vn]uC-Jgv6,9 O: e@*?-N$n&p/?,
gF^u~Zj|7scY;cL~:po%<96N/8xUD0bV?s;PUPbޝݠ4K7zwXLb"6 ha>F^:7BhУ
{F`:e@yG?Ubz;zuVѪsu[*ʕD/I.}_&)4\n_P%26Ϻ
`E
i2A?C/s<|Ӛl&M[c6,4"a7@q'Isԡ5kc'O<$o dx۳Af }W^ψS[dm낸;ؽdZR8ȥipW^fM6YCӳU3nNh&OL5>,7>7H/,Jl
?HIwV(O98VxlԁPL5/ ,OJp=kx8F|x\17HDŬœLoAW`v-G˰(oJ!=fL{5"uCѠ=+vrF{FW=+Osws{w;hAKzIۜ<<zkwuGOmkGϞooͷ~wH6{[V#fPOsGA#1C
4FCLi_ꛒ5~&) 5+FD7 9s:"[F,xjnnhƥ&96Ypthj\ @xbzw?6ՕNNX\xZ Bf
.Z\pfosgo6_=bﯞE/lx7`Ϻg'r`-\3yN6chSso|yM'=VEf~KK^zҷ^_<k`]q. 3-qs icjblH` wpq;`v6/'/X8qwD?S1No>qn0)Kw2J
7u^0l kƢVv[\9 &Z6Ju-gsյ+y%V =讕͟&v~_қ8JqWGOnA? $[?9P~hFѭۈ鬖9|qhq6mw1+evDghqͰQc=@6;{N0;ٹ!0Mƅns&gbzDb>4.ϑpҙߪM{,8
N
 Mxsz63nkA0D4B>C f#W/L:awW^}͗_taN%//?TnY#4Very HappycEb/B92ٽ@ssf1c7ΎTݪ\zڣyp .XM''
(H
%Kqt1F
ѥ[;Gg~yg[q
j@?lfkD(? "HȃtxCޥߒvy4+?XNJe|No]/qɚ=θ9y7d๨1\Q,8@<
Iyp]Msw^S$?U j$3sɽl71<1QfDرbQD\3>5Y8
ZSU#킆<Bc].d~ެr^<%*vk1 P-
3NDR.pҿx խu";9DX8+UZ{r2[2fo*è6*ø+#%_]8F_zp;v<v4yAYj46=NJٓPRߵs
A?ʢ]%V*q +ܷa~(X&*"$}X5 Su:tW_X=44
>)ىVKTӪTW'UTӪƋ[8P5\k4ޑx"-tBy1D3Dmf4_(md"5
c5j/)DZv@B3x(+ Vz\c]+B_nRt*"Ta{H!x\ُPqrcqyhЮ^1c-Ƅ?NhTkhD;8f!0Kv";ވ@|.ˮCi?i`餟#of+HvIN$qՕf2OpbMSf{B?1xi¥-
niu#-rp=)b}|҆W`erիdDh+S-O ewJP,;_\h2Qy^Мɒk2⒙a
?&7Qb >m)zz$KdSmile-JJ$OLIJ%s2Aح~Y3٭M}^Mۭ'?*i+=j6-윬jN)VhMj' I
E)A7Q͗""\s3&4.sn0o%++o~TvYV(>
E^K#e@ E̅h{Bh RC E\FiGkj:WMI|EZ(Pe|O?< 'bf+y-(P@؎8)M=Q~|O^)=0ϣt^L-:
?,iTW
j's[㹞iN<Ŭ-짇kJ>?X.;ii6x
)M}*nSGr@wǨ3ݱuorᄚۉLl<b'NTM~wfoټjkM}wb@5Sߝ =Q'Nԝ!NSߝNd6g;GpiS'fK(-MnK<,
{ɓә;/U_3wRVP{vn=G4ȥwTHU%_t1(@cjt1h7퉩1hlyW~ոR
7[gRvN0R6/\2h_ג"&aL"e+-c0쒲'B9mϟh8ޡm{x)r+lyXќ͙)9H7aY\iu4U{`y~K|']3ǞLg2{_{*sJX{@N"UΑuG$^+=N4ԤHm7"630-~J?Yy$x_$m &?4QAM_]VIZzl29;UIBy+WI$>jX%Aso\D`^\ĢXHK"(!㊀ĵkb_Қءi_yMwbkb[+$ĢXXV[
kbT5WQ#4$tޔ<TlĊXW"ZxE,nrjA1lL7)F""vAlHo8K5w^gJ5FauPa݋U!âX專GVaŰ5eLze+:5AW $.~`B*?lj5"?+V[Dy5ڊ}YEg}YwCf}Y|_S0wX⤎@L$+PW4Qn7ZaRncZ%WA}"6lMaNJD'o֍Q _@q9FP}yfy0.3&M3v"v( LCTD'Yb7ɐKdG:+Tpa -Uf!*ϰ1_I~0K_ufQWץ:v<+܇,&^8S(߹.2xd'>no3 a">/gu}ANjRcˇp/Qc
'{ 7|@Guz.,)S3ɮ0zN/Ljb4QK?JχpD`0:CS9̲TGd)(?RTKl)ےєZhʶCL0^KvX
o%4FR\mXo̼-K6`fDS7Vnln.pCҚfWMP1ZX*Mc(abYj>ۦXV"E nQY
EK
zCwh'6v^u(,_:,.S }q:v|"cオ]@RbE<. V]&S \]\nq3KŻ]'ebX]"-8cұ񾢘IW{umQODK>j*N*v ~
*
^o^M:Ev NQ[Vg-DqEea.<ވr('K᥾<_mWu۞*Ŷ[v|IkoĒ7w? /e2)&D'v 8b nq"lW P2{'9}H<_([FY9(23kɃp$wk|!NwȹeBY*6K_M$K/5Cg3ZVLZ!(Pzͧk$ONq1O#ɢE>8XQCsjɮ=W\Vs& ~3{sP~VjF%jdsҁjKT)"DU`wH(#HM:|=(WFFMiJLEpah=oߛuϸNKJJֆ=/v Zm9}gÞ^Ua\􃪰QF"ϻ˷5dpzcp1-5#~B5 Z
j8<jx~W pt?Nlwl#*,n`_9M"==k=&^ՍۯSW];ώ_lT4!l4WmfY>+2}NڅRBK#;> ~^(lrԢ@l Ŀl.<DJḂ+Q3B(BTW9R§/
wDG,`"BW(_-%~~7~#:&IfLS4ɨ߾:UFd&&Wj'dyU,FZQEC;&_9=∵}o+
KOEiB_7 _6Z&݌q3:nhA73?#LX199)RzJ$zJ2,DZ^T^"x
*lRU)SkԼ'1*x
%UgUUxIUrOȥwo*/qGM auKgO_L<)>JdrLN^&6*JMqjmkP:G/\T_\ww-<uAL?Pgt`Pgt`׬sƏ4?(:G.rkꚎ uMWeLW*
u!
߾v5iݎdzn-\%jB^ӑ!'.XE۟5}{jS ܶAz[{| $)
S<BjjxbC'*١v)ɶR1M mi
ػ{BS/m>ȉQ\qvȼ}A|q&or^|x;S/Z|,q|gl*8'JWB{L?cFfs_ڢ,-'SΩ^4N$&S3)V,7ȹeeT2K"ju5Ěf޸APTV>0
QQ6W NJ 6y"44lώ(#lRzgGr1ʏQF,CXٴI雭7зmIxNVmPjV%Q5K-U֩]PO^:f9NeutralSNj(#Yj!v(=Wr (8|<;|u(aג_݃U9|Dw(>ucx_2~JMjmVX
i٢JC(&ӹTarŪN
AXy9.<b\C(&!XTPU@`~=J!brJwN)#\O$>uOʬVD X{Ku7Xb v} nr
Mr/b} PߗkImݾۗb.q~_V?gX{4UF|1eCy*<#
o%lcU1H̰BgXa3I8HCq#
aUۋ)nCГ5j)U#W5--ޮr%$=C$犮@];Wp@ҵgq.Jk;ŗi+o iڮu*)nDѰ%lxK9Ցh5
߬\|\-#̢Uhe܇ܵ]Uh#{
HK(<F"bh#|2qi%8mϸυ6ڻmgB9F-Cdhq~odz
jDoGilluH1;
x{^~)(WAX'LF@KF,
Ŕ'b^QVxE?*lnf8t\Zobs
JLB3OKMbza()ƪ?񒃱<9ᯕ 2KyX(aA[<,]BtڴSfdw'&/L,D}P1-ESu.իdeAKIKQ|q,D)XCC&LqK Xժm/5V-;Xi݁<S*sHs2W4Wj-s2W4W\ARuJU+P̕Z\
g[TRRuJU+E+U2W= qRuJeU*;b=u2X;9<t:/DByJ֝;K|k5g^YVcÖ7~ ]YI?a\0~ +ROy`'谪YUcUApu8q)JZEZ@,`c}{CSϪ2gA՜yeugy<J μ]-g^YvQwKV6bMMmP4g>9w̫4oUh
AgaTQ(RoRh)7UEkR籏Ek)μ{9݆p1S14:k)<g&yxm <Jy27o^{k&ge:`4:ZF[^Ǜ-#)ף4ϛLuSGV^h ÂL/h|]Y7_% 3ko܄!Ņ*'35۔xg+̺~n1=}h}ҷxj<Ƹ1~TZGZWj]uuUhUTKQ>_ͣ\G0QDw:}(-quk <JyZ;w1wy<JyZ3VǝG`wwy?͝-i̝~];!(kf <JTN7UpFpQ\GX;w2k)<ħ:<yytjŝGq_63M%
~)ß $(W"(-54d?"^ϣğG Gq?<޿$in#ϣ8ϟGi̠əA)[;ϊ!?(;Zae<<wZ2Jk۫?9y^USל9u^О7!KFqaUy-xr'<˼TGT#"ȟ;QyykdVw(Z^ E@uy-,7/aw4JoWG/Py߬^KCVqHp}qCް*=8ϡGiC%8(-rl)=Kzz9(skF:=8:؏yRz-y5^KUǡG`C?8('8(PZɡײKq TGŔ7XyQVyE_
YC$ۋ+Wt/.XyQ=1bWL#,ˡ׊ճr<ql=V$xY(ei^JyYe!:Bim꩒3v>A3SGf*hR*ޥ'
JJ/.4U<%khȄ 9#Ys+
k8Z,/`( ׺mCq*9ZW+M+Ҥk+ҤJw"w>DetUJ?s1W:iY]g4mtUJJUϡGet]5^k/S~CrCb~
`0F?ܺڽv4)ߧh毣.A'[k_z޴ua:Ʊ0m 㣞;M;9j3xsüs;7JI|K!/]9ں:T+OD䂝$q@1 E5bω͋Cb[::vͳftn͉!!unG w
J)j}b.M*4݂Ĥݼ,]#4RLٶ[}R2-
Z*PA:i-rNrfZvZe9m@鲒2]ޞuL RtYM.U.?=/B$֚Z˕ZbryI]X.C[.ԯpu-_p!>oP7\(4\]+(Å
Å*յja:Hn8o,wnhna?ָC[}еsk*tyWZ$rru%,J-- `\<ruk]3]$LW$a$Titu̬gl3ib]V.f+mg]4^<Rń= bk)[\.we5\k A%MWH.)5LWz4a@J.h(tq[iDFЅJ%Zry;%V]J]BgO. KHp YeVg^'n[ &TwA?naxwn^S0P8O(;X>]5or,5Bb(.@Yw{?OǙ-C}3lܑ 5
:zkZk! sP|:@"S6G/ "leGk^ǎm0j_݃bknjC#:|7bq>{'=ɵ ɶq2rqvΜt_yw<S?|M=_o?ڡ8υC/&g/K]ζSĹdr\T\"QM9AQBj9mh_?`#_T)Û_˗6و,) ,|v0ު
D}lӌ=!}obA"dŽoMes*z'4s߿7oGM[>jŠan k7RI,ߟf
s]zL\ZՏ0ȆۄLKP5} ҃Kǣ/\:^:\zraH8XHnڗgTʳ8L9z#hBُXum&3 nG끑޹jɘYNuS2dMY7ߕ&cӃ[؂AKY,*{vZ^A ]f*SmaLo;:@O
?o_p_j 1? j5WB@:Q3V k YvGA|&賚Of韇7(-La%|1Xu1_@>_ӦhUaBYXT@SWA}@/Wy }A|sj
x/Y{JOYKҏBxLyͥs Be | ob}sY,ٛ}|X1}`{Qetk=v]ᔨ,
y݆kהw?$kolZ
ۆb
!R!S!1dž$K%+-#VPY ,YVP={T7FivfT*@pwdB魫I=m
)!["%$'*R(%+Rr|E
n[H& :RjR]&\ɘӫtޚҜ-rA!1,w9y %2K$X+-X49
_.W-HGd2Dd;
<z:NFԲGQ"nD!u_:PV<%ŗrυw")yDqrk_NeutralfUS3Tbӎ^_m:8 ejQljA+ 4*&]TRr")C8 P%*(Q^h9AdogKL2Ɋ`s#JV7qFU"WA?
*(a6WAl{\Eh8}jqD6WA&+Dl $Y6WAϑQP|.WAh>즓~orldj*[j:YA9r*[jEMeʖ*Fiy*[-4;-OILe?"d
iԖN@Èd ;N
(-
FK>m@iDTD6~Pj"D6|'~yrQv~@uNN(Y);y;om_&|'Sk2(;u";Q|?;Q|9;Q:A(=9|r^-DzyKjtK<
w(D1;Q(-NIw4SS"}=&v);3qH˾ShNVNeDDwC)߉rw;DN_Y;Quy߉ҼDNSDyw4;Q(-NDńDqw(N~ߩLGNWN-G#5#{:3{} ԛA;F56c!oy
Ɵ#gų#n~6qyR8>W MTꙺ* /

Thanks
View user's profile Send private message
PostPosted: Sat Sep 06, 2008 5:31 pm Reply with quote
mge
Valuable expert
Valuable expert
 
Joined: Jul 16, 2008
Posts: 142




Zend encodes in binary data. if you post it as text there's a high possibility that some characters are missing. the text you've posted is not a valid Zend encoded file, so you should try uploading the file and linking to it
View user's profile Send private message
PostPosted: Sat Sep 06, 2008 5:45 pm Reply with quote
angrycoder
Regular user
Regular user
 
Joined: Jul 15, 2008
Posts: 22




mge wrote:
Zend encodes in binary data. if you post it as text there's a high possibility that some characters are missing. the text you've posted is not a valid Zend encoded file, so you should try uploading the file and linking to it


Sorry,
Here it it
http://www.megaupload.com/?d=6UWEGTYK

Thanks
View user's profile Send private message
PostPosted: Sat Sep 06, 2008 6:18 pm Reply with quote
mge
Valuable expert
Valuable expert
 
Joined: Jul 16, 2008
Posts: 142




Code:
<?php
class cimopen
{
    var $m_user;

    function cimopen( $name, $html_path, $user )
    {
        $this->CHtmlBlock( $name, $html_path );
        $this->m_user = $user;
    }

    function parseblock( &$html )
    {
        global $g;
        global $l;
        global $g_user;
        query( "SELECT *, floor((TO_DAYS(now())-TO_DAYS(birth))/365) AS age FROM user WHERE user_id=".$this->m_user."" );
        if ( $user = fetch_row( ) )
        {
            $user['photo_id'] = result( "SELECT photo_id FROM photo WHERE user_id=".( $user['user_id'] )." LIMIT 1", 0, 2 );
            if ( $user['photo_id'] == "" )
            {
                $user['photo'] = "nophoto_s.jpg";
            }
            else
            {
                $user['photo'] = ( $user['user_id'] )."_".$user['photo_id']."_s.jpg";
            }
            $user['city'] = result( "SELECT city_title FROM geo_city WHERE city_id=".( $user['city_id'] )."", 0, 2 );
            if ( $user['city'] == "" )
            {
                $user['city'] = $l['all']['blank'];
            }
            $user['state'] = result( "SELECT state_title FROM geo_state WHERE state_id=".( $user['state_id'] )."", 0, 2 );
            if ( $user['state'] == "" )
            {
                $user['state'] = $l['all']['blank'];
            }
            $user['country'] = result( "SELECT country_title FROM geo_country WHERE country_id=".( $user['country_id'] )."", 0, 2 );
            if ( $user['country'] == "" )
            {
                $user['country'] = $l['all']['blank'];
            }
            foreach ( $user as $k=>$v )
            {
                $html->setvar( $k, $v );
            }
            parseBlock( $html );
        }
    }
}

class cgameinvite
{
    var $m_user;
    var $m_game;

    function cgameinvite( $name, $html_path, $user, $game )
    {
        $this->CHtmlBlock( $name, $html_path );
        $this->m_user = $user;
        $this->m_game = $game;
    }

    function parseblock( &$html )
    {
        global $g;
        global $l;
        global $g_user;
        if ( $this->m_game == "lovetree" )
        {
            $html->setvar( "game", "Love Tree" );
            $html->setvar( "game_url", "lovetree" );
        }
        else if ( $this->m_game == "morboy" )
        {
            $html->setvar( "game", "Battle Sea" );
            $html->setvar( "game_url", "morboy" );
        }
        else if ( $this->m_game == "shashki" )
        {
            $html->setvar( "game", "Checkers" );
            $html->setvar( "game_url", "shashki" );
        }
        if ( query( "SELECT *, floor((TO_DAYS(now())-TO_DAYS(birth))/365) AS age FROM user WHERE user_id=".$this->m_user."" ) )
        {
            $user = fetch_row( );
            foreach ( $user as $k=>$v )
            {
                $html->setvar( $k, $v );
            }
            parseBlock( $html );
        }
    }
}

class cvideoinvite
{
    var $m_user;

    function cvideoinvite( $name, $html_path, $user )
    {
        $this->CHtmlBlock( $name, $html_path );
        $this->m_user = $user;
    }

    function parseblock( &$html )
    {
        global $g;
        global $l;
        global $g_user;
        if ( query( "SELECT *, floor((TO_DAYS(now())-TO_DAYS(birth))/365) AS age FROM user WHERE user_id=".$this->m_user."" ) )
        {
            $user = fetch_row( );
            foreach ( $user as $k=>$v )
            {
                $html->setvar( $k, $v );
            }
            parseBlock( $html );
        }
    }
}

class caudioinvite
{
    var $m_user;

    function caudioinvite( $name, $html_path, $user )
    {
        $this->CHtmlBlock( $name, $html_path );
        $this->m_user = $user;
    }

    function parseblock( &$html )
    {
        global $g;
        global $l;
        global $g_user;
        if ( query( "SELECT *, floor((TO_DAYS(now())-TO_DAYS(birth))/365) AS age FROM user WHERE user_id=".$this->m_user."" ) )
        {
            $user = fetch_row( );
            foreach ( $user as $k=>$v )
            {
                $html->setvar( $k, $v );
            }
            parseBlock( $html );
        }
    }
}

function addoption( $select, $option )
{
    $r = "";
    $r .= "var ".$select.";";
    $r .= "var ".$select."_option;";
    $r .= "".$select." = document.getElementById(\"".$select."\");";
    foreach ( $option as $k=>$v )
    {
        $r .= "".$select."_option = document.createElement(\"option\");";
        $r .= "".$select."_option.setAttribute(\"value\",\"".$k."\");";
        $r .= "".$select."_option.appendChild(document.createTextNode(\"".$v."\"));";
        $r .= "".$select.".appendChild(".$select."_option);";
    }
    return $r;
}

function countries( )
{
    global $db;
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    $js = "";
    $objResponse->addClear( "country", "innerHTML" );
    $objResponse->addAlert( "country" );
    query( "SELECT country_id, country_title FROM geo_country" );
    $option = array( );
    while ( $row = fetch_row( ) )
    {
        $option[$row['country_id']] = $row['country_title'];
    }
    $js .= addoption( "country", $option );
    $objResponse->addClear( "state", "innerHTML" );
    $country_id = result( "SELECT country_id FROM geo_country WHERE country_id!=-1 LIMIT 1" );
    query( "SELECT state_id, state_title FROM geo_state WHERE country_id=".to_sql( $country_id, "Number" )." ORDER BY state_title" );
    $option = array( );
    while ( $row = fetch_row( ) )
    {
        $option[$row['state_id']] = $row['state_title'];
    }
    $js .= addoption( "state", $option );
    $objResponse->addClear( "city", "innerHTML" );
    $state_id = result( "SELECT state_id FROM geo_state WHERE country_id=".to_sql( $country_id, "Number" )." ORDER BY state_title LIMIT 1" );
    query( "SELECT city_id, city_title FROM geo_city WHERE state_id=".to_sql( $state_id, "Number" )." ORDER BY city_title" );
    $option = array( );
    while ( $row = fetch_row( ) )
    {
        $option[$row['city_id']] = $row['city_title'];
    }
    $js .= addoption( "city", $option );
    $objResponse->addScript( $js );
    return $objResponse;
}

function states( $country_id )
{
    global $db;
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    $objResponse->addClear( "state", "innerHTML" );
    $js = "";
    $option = array( );
    query( "SELECT state_id, state_title FROM geo_state WHERE country_id=".to_sql( $country_id, "Number" )." ORDER BY state_title" );
    while ( $row = fetch_row( ) )
    {
        $option[$row['state_id']] = $row['state_title'];
    }
    $js .= addoption( "state", $option );
    $objResponse->addClear( "city", "innerHTML" );
    $state_id = result( "SELECT state_id FROM geo_state WHERE country_id=".to_sql( $country_id, "Number" )." ORDER BY state_title LIMIT 1" );
    query( "SELECT city_id, city_title FROM geo_city WHERE state_id=".to_sql( $state_id, "Number" )." ORDER BY city_title" );
    $option = array( );
    while ( $row = fetch_row( ) )
    {
        $option[$row['city_id']] = $row['city_title'];
    }
    $js .= addoption( "city", $option );
    $objResponse->addScript( $js );
    return $objResponse;
}

function cities( $state_id )
{
    global $db;
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    $objResponse->addClear( "city", "innerHTML" );
    $js = "";
    query( "SELECT city_id, city_title FROM geo_city WHERE state_id=".to_sql( $state_id, "Number" )." ORDER BY city_title" );
    $option = array( );
    while ( $row = fetch_row( ) )
    {
        $option[$row['city_id']] = $row['city_title'];
    }
    $js .= addoption( "city", $option );
    $objResponse->addScript( $js );
    return $objResponse;
}

function update( )
{
    global $g_user;
    global $objResponse;
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    im_update( );
    game_update( );
    video_update( );
    audio_update( );
    return $objResponse;
}

function im( )
{
    global $g_user;
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    $scr = "";
    $scr_msg = "";
    query( "SELECT * FROM im_open WHERE from_user=".to_sql( $g_user['user_id'], "Number" )."" );
    do
    {
        if ( $row = fetch_row( ) )
        {
            CImOpen( "", "./im_new/im.html", $row['to_user'] );
            $page = new CImOpen;
            $tmp = null;
            $sData = $page->parse( $tmp, true );
            unset( $page );
            $objResponse->addAppend( "xajax_im", "innerHTML", $sData );
            $scr .= "opens[".$row['to_user']."] = '".$row['to_user']."';";
            query( "\r\n\t\t\t(SELECT * FROM im_msg WHERE to_user=".to_sql( $row['to_user'], "Number" )." AND from_user=".to_sql( $g_user['user_id'], "Number" ).")\r\n\t\t\tUNION (SELECT * FROM im_msg WHERE to_user=".to_sql( $g_user['user_id'], "Number" )." AND from_user=".to_sql( $row['to_user'], "Number" ).")\r\n\t\t\tORDER BY id DESC LIMIT 10\r\n\t\t", 2 );
            do
            {
            } while ( $row2 = fetch_row( 2 ) );
            $odd = "";
            if ( $g_user['user_id'] == $row2['to_user'] )
            {
                $odd = " odd";
            }
            $msg_html = "<div class='cumsg ".$odd."' style='text-align: left;'><span class='cunick'>".$row2['name'].": </span>".to_html( $row2['msg'] )."</div>";
            $scr_msg = "append_msg('".$row['to_user']."', '".str_replace( "'", "\\'", $msg_html )."'); ".$scr_msg;
        }
        else
        {
        } while( 1 );
        $scr .= "\r\n\t\tfor(n in opens)\r\n\t\t{\r\n\t\t\tif (document.getElementById('xajax_im_open_' + opens[n]))\r\n\t\t\t{\r\n\t\t\t\tDrag.init(document.getElementById('xajax_im_head_' + opens[n]), document.getElementById('xajax_im_open_' + opens[n]));\r\n\t\t\t}\r\n\t\t}\r\n\t";
    }
    $objResponse->addScript( $scr_msg.$scr );
    query( "SHOW TABLE STATUS LIKE 'im_msg'" );
    $line = fetch_row( );
    if ( intval( $line['Auto_increment'] ) == 0 )
    {
        set_session( "im_id", 0 );
        return $objResponse;
    }
    else
    {
        set_session( "im_id", intval( $line['Auto_increment'] ) - 1 );
        return $objResponse;
    }
}

function im_sent( $sent_msg )
{
    global $g_user;
    $msg = $sent_msg['msg'];
    $to_user = $sent_msg['to_user'];
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    execute( "INSERT INTO im_msg SET from_user='".$g_user['user_id']."', to_user='".$to_user."', born=now(), name='".$g_user['name']."',  msg=".to_sql( $msg )."" );
    $objResponse->addScript( "\r\n\t\tclearTimeout(timeout);\r\n\t\tupdateAjax();\r\n\t\tdocument.forms['sent_msg_".$to_user."'].msg.value='';\r\n\t" );
    return $objResponse;
}

function im_open( $user_id )
{
    global $g_user;
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    query( "SELECT * FROM im_open WHERE to_user=".to_sql( $user_id, "Number" )." AND from_user=".to_sql( $g_user['user_id'], "Number" )."" );
    if ( $row = fetch_row( ) )
    {
        $objResponse->addRemove( "xajax_im_open_".$user_id."" );
    }
    else
    {
        execute( "INSERT INTO im_open SET to_user=".to_sql( $user_id, "Number" ).", from_user=".to_sql( $g_user['user_id'], "Number" )."" );
    }
    query( "SELECT * FROM im_open WHERE from_user=".to_sql( $user_id, "Number" )." AND to_user=".to_sql( $g_user['user_id'], "Number" )."" );
    do
    {
        if ( $row = fetch_row( ) )
            break;
        execute( "INSERT INTO im_open SET from_user=".to_sql( $user_id, "Number" ).", to_user=".to_sql( $g_user['user_id'], "Number" )."" );
    } while( 0 );
    CImOpen( "", "./im_new/im.html", $user_id );
    $page = new CImOpen;
    $tmp = null;
    $sData = $page->parse( $tmp, true );
    $objResponse->addAppend( "xajax_im", "innerHTML", $sData );
    $objResponse->addScript( "\r\n\t\topens[".$user_id."] = '".$user_id."';\r\n\t\tfor(n in opens)\r\n\t\t{\r\n\t\t\tif (document.getElementById('xajax_im_open_' + opens[n]))\r\n\t\t\t{\r\n\t\t\t\tDrag.init(document.getElementById('xajax_im_head_' + opens[n]), document.getElementById('xajax_im_open_' + opens[n]));\r\n\t\t\t}\r\n\t\t}\r\n\t\treset_opens(".$user_id.");\r\n\t" );
    $scr_msg = "";
    query( "\r\n\t\t(SELECT * FROM im_msg WHERE to_user=".to_sql( $user_id, "Number" )." AND from_user=".to_sql( $g_user['user_id'], "Number" )." AND id>".to_sql( 0, "Number" ).")\r\n\t\tUNION (SELECT * FROM im_msg WHERE to_user=".to_sql( $g_user['user_id'], "Number" )." AND from_user=".to_sql( $user_id, "Number" )." AND id>".to_sql( 0, "Number" ).")\r\n\t\tORDER BY id DESC LIMIT 10\r\n\t", 2 );
    while ( $row2 = fetch_row( 2 ) )
    {
        $odd = "";
        if ( $g_user['user_id'] == $row2['to_user'] )
        {
            $odd = " odd";
        }
        $msg_html = "<div class='cumsg ".$odd."' style='text-align: left;'><span class='cunick'>".$row2['name'].": </span>".to_html( $row2['msg'] )."</div>";
        $scr_msg = "append_msg('".$user_id."', '".str_replace( "'", "\\'", $msg_html )."'); ".$scr_msg;
    }
    $objResponse->addScript( $scr_msg );
    return $objResponse;
}

function im_close( $user_id )
{
    global $g_user;
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    execute( "DELETE FROM im_open WHERE to_user=".to_sql( $user_id, "Number" )." AND from_user=".to_sql( $g_user['user_id'], "Number" )."" );
    $objResponse->addRemove( "xajax_im_open_".$user_id."" );
    return $objResponse;
}

function im_update( )
{
    global $g_user;
    global $objResponse;
    $scr = "";
    $scr_msg = "";
    query( "\r\n\t\tSELECT * FROM im_msg\r\n\t\tWHERE (to_user=".to_sql( $g_user['user_id'], "Number" )." OR from_user=".to_sql( $g_user['user_id'], "Number" ).") AND id>".to_sql( get_session( "im_id" ), "Number" )."\r\n\t\tORDER BY id DESC LIMIT 10\r\n\t", 2 );
    while ( $row2 = fetch_row( 2 ) )
    {
        $odd = "";
        if ( $g_user['user_id'] == $row2['to_user'] )
        {
            $odd = " odd";
            $user_id = $row2['from_user'];
        }
        else
        {
            $user_id = $row2['to_user'];
        }
        $msg_html = "<div class='cumsg ".$odd."' style='text-align: left;'><span class='cunick'>".$row2['name'].": </span>".to_html( $row2['msg'] )."</div>";
        $scr_msg = "append_msg('".$user_id."', '".str_replace( "'", "\\'", $msg_html )."'); ".$scr_msg;
    }
    $scr .= "\r\n\t\tfor(n in opens)\r\n\t\t{\r\n\t\t\tif (document.getElementById('xajax_im_open_' + opens[n]))\r\n\t\t\t{\r\n\t\t\t\tDrag.init(document.getElementById('xajax_im_head_' + opens[n]), document.getElementById('xajax_im_open_' + opens[n]));\r\n\t\t\t}\r\n\t\t}\r\n\t";
    $objResponse->addScript( $scr_msg.$scr );
    query( "SHOW TABLE STATUS LIKE 'im_msg'" );
    $line = fetch_row( );
    if ( intval( $line['Auto_increment'] ) == 0 )
    {
        set_session( "im_id", 0 );
    }
    else
    {
        set_session( "im_id", intval( $line['Auto_increment'] ) - 1 );
    }
}

function game_invite( $user_id, $game = "lovetree" )
{
    global $g_user;
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    query( "SELECT * FROM game_invite WHERE to_user=".to_sql( $user_id, "Number" )." AND from_user=".to_sql( $g_user['user_id'], "Number" )."" );
    do
    {
        if ( $row = fetch_row( ) )
            break;
        execute( "INSERT INTO game_invite SET to_user=".to_sql( $user_id, "Number" ).", from_user=".to_sql( $g_user['user_id'], "Number" ).", game=".to_sql( $game )."" );
        CGameInvite( "", "./games/invite.html", $user_id, "" );
        $page = new CGameInvite;
        $tmp = null;
        $sData = $page->parse( $tmp, true );
        $objResponse->addAppend( "xajax_im", "innerHTML", $sData );
        return $objResponse;
    } while( 0 );
    execute( "DELETE FROM game_invite WHERE to_user=".to_sql( $user_id, "Number" )." AND from_user=".to_sql( $g_user['user_id'], "Number" )."" );
    execute( "INSERT INTO game_invite SET to_user=".to_sql( $user_id, "Number" ).", from_user=".to_sql( $g_user['user_id'], "Number" ).", game=".to_sql( $game )."" );
    CGameInvite( "", "./games/invite.html", $user_id, "" );
    $page = new CGameInvite;
    $tmp = null;
    $sData = $page->parse( $tmp, true );
    $objResponse->addAppend( "xajax_im", "innerHTML", $sData );
    return $objResponse;
}

function game_update( )
{
    global $g_user;
    global $objResponse;
    query( "SELECT * FROM game_invite WHERE to_user=".to_sql( $g_user['user_id'], "Number" )."" );
    if ( $row = fetch_row( ) )
    {
        CGameInvite( "", "./games/update.html", $row['from_user'], $row['game'] );
        $page = new CGameInvite;
        $tmp = null;
        $sData = $page->parse( $tmp, true );
        $objResponse->addAppend( "xajax_im", "innerHTML", $sData );
        execute( "DELETE FROM game_invite WHERE to_user=".to_sql( $g_user['user_id'], "Number" )." AND from_user=".to_sql( $row['from_user'], "Number" )."" );
    }
    query( "SELECT * FROM game_reject WHERE to_user=".to_sql( $g_user['user_id'], "Number" )."" );
    if ( $row = fetch_row( ) )
    {
        if ( $row['go'] == "N" )
        {
            $objResponse->addRemove( "xajax_game_invite" );
            CGameInvite( "", "./games/reject.html", $row['from_user'], "" );
            $page = new CGameInvite;
            $tmp = null;
            $sData = $page->parse( $tmp, true );
            $objResponse->addAppend( "xajax_im", "innerHTML", $sData );
        }
        else
        {
            $objResponse->addRedirect( "./games.php?game=".$row['game']."&id=".$row['from_user']."" );
        }
        execute( "DELETE FROM game_reject WHERE to_user=".to_sql( $g_user['user_id'], "Number" )." AND from_user=".to_sql( $row['from_user'], "Number" )."" );
    }
}

function game_reject( $user_id )
{
    global $g_user;
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    execute( "INSERT INTO game_reject SET to_user=".to_sql( $user_id, "Number" ).", from_user=".to_sql( $g_user['user_id'], "Number" ).", go='N'" );
    $objResponse->addRemove( "xajax_game_update" );
    return $objResponse;
}

function game_go( $user_id, $game )
{
    global $g_user;
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    execute( "INSERT INTO game_reject SET to_user=".to_sql( $user_id, "Number" ).", from_user=".to_sql( $g_user['user_id'], "Number" ).", game=".to_sql( $game, "Text" ).", go='Y'" );
    $objResponse->addRedirect( "./games.php?game=".$game."&id=".$user_id."" );
    return $objResponse;
}

function video_invite( $user_id )
{
    global $g_user;
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    query( "SELECT * FROM video_invite WHERE to_user=".to_sql( $user_id, "Number" )." AND from_user=".to_sql( $g_user['user_id'], "Number" )."" );
    do
    {
        if ( $row = fetch_row( ) )
            break;
        execute( "INSERT INTO video_invite SET to_user=".to_sql( $user_id, "Number" ).", from_user=".to_sql( $g_user['user_id'], "Number" )."" );
        CVideoInvite( "", "./video/invite.html", $user_id );
        $page = new CVideoInvite;
        $tmp = null;
        $sData = $page->parse( $tmp, true );
        $objResponse->addAppend( "xajax_im", "innerHTML", $sData );
        return $objResponse;
    } while( 0 );
    execute( "DELETE FROM video_invite WHERE to_user=".to_sql( $user_id, "Number" )." AND from_user=".to_sql( $g_user['user_id'], "Number" )."" );
    execute( "INSERT INTO video_invite SET to_user=".to_sql( $user_id, "Number" ).", from_user=".to_sql( $g_user['user_id'], "Number" )."" );
    CVideoInvite( "", "./video/invite.html", $user_id );
    $page = new CVideoInvite;
    $tmp = null;
    $sData = $page->parse( $tmp, true );
    $objResponse->addAppend( "xajax_im", "innerHTML", $sData );
    return $objResponse;
}

function video_update( )
{
    global $g_user;
    global $objResponse;
    query( "SELECT * FROM video_invite WHERE to_user=".to_sql( $g_user['user_id'], "Number" )."" );
    if ( $row = fetch_row( ) )
    {
        CvideoInvite( "", "./video/update.html", $row['from_user'] );
        $page = new CvideoInvite;
        $tmp = null;
        $sData = $page->parse( $tmp, true );
        $objResponse->addAppend( "xajax_im", "innerHTML", $sData );
        execute( "DELETE FROM video_invite WHERE to_user=".to_sql( $g_user['user_id'], "Number" )." AND from_user=".to_sql( $row['from_user'], "Number" )."" );
    }
    query( "SELECT * FROM video_reject WHERE to_user=".to_sql( $g_user['user_id'], "Number" )."" );
    if ( $row = fetch_row( ) )
    {
        if ( $row['go'] == "N" )
        {
            $objResponse->addRemove( "xajax_video_invite" );
            CvideoInvite( "", "./video/reject.html", $row['from_user'], "" );
            $page = new CvideoInvite;
            $tmp = null;
            $sData = $page->parse( $tmp, true );
            $objResponse->addAppend( "xajax_im", "innerHTML", $sData );
        }
        else
        {
            $objResponse->addRedirect( "./videochat.php?id=".$row['from_user']."" );
        }
        execute( "DELETE FROM video_reject WHERE to_user=".to_sql( $g_user['user_id'], "Number" )." AND from_user=".to_sql( $row['from_user'], "Number" )."" );
    }
}

function video_reject( $user_id )
{
    global $g_user;
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    execute( "INSERT INTO video_reject SET to_user=".to_sql( $user_id, "Number" ).", from_user=".to_sql( $g_user['user_id'], "Number" ).", go='N'" );
    $objResponse->addRemove( "xajax_video_update" );
    return $objResponse;
}

function video_go( $user_id )
{
    global $g_user;
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    execute( "INSERT INTO video_reject SET to_user=".to_sql( $user_id, "Number" ).", from_user=".to_sql( $g_user['user_id'], "Number" ).", go='Y'" );
    $objResponse->addRedirect( "./videochat.php?id=".$user_id."" );
    return $objResponse;
}

function audio_invite( $user_id )
{
    global $g_user;
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    query( "SELECT * FROM audio_invite WHERE to_user=".to_sql( $user_id, "Number" )." AND from_user=".to_sql( $g_user['user_id'], "Number" )."" );
    do
    {
        if ( $row = fetch_row( ) )
            break;
        execute( "INSERT INTO audio_invite SET to_user=".to_sql( $user_id, "Number" ).", from_user=".to_sql( $g_user['user_id'], "Number" )."" );
        CAudioInvite( "", "./audiochat/invite.html", $user_id );
        $page = new CAudioInvite;
        $tmp = null;
        $sData = $page->parse( $tmp, true );
        $objResponse->addAppend( "xajax_im", "innerHTML", $sData );
        return $objResponse;
    } while( 0 );
    execute( "DELETE FROM audio_invite WHERE to_user=".to_sql( $user_id, "Number" )." AND from_user=".to_sql( $g_user['user_id'], "Number" )."" );
    execute( "INSERT INTO audio_invite SET to_user=".to_sql( $user_id, "Number" ).", from_user=".to_sql( $g_user['user_id'], "Number" )."" );
    CAudioInvite( "", "./audiochat/invite.html", $user_id );
    $page = new CAudioInvite;
    $tmp = null;
    $sData = $page->parse( $tmp, true );
    $objResponse->addAppend( "xajax_im", "innerHTML", $sData );
    return $objResponse;
}

function audio_update( )
{
    global $g_user;
    global $objResponse;
    query( "SELECT * FROM audio_invite WHERE to_user=".to_sql( $g_user['user_id'], "Number" )."" );
    if ( $row = fetch_row( ) )
    {
        CAudioInvite( "", "./audiochat/update.html", $row['from_user'] );
        $page = new CAudioInvite;
        $tmp = null;
        $sData = $page->parse( $tmp, true );
        $objResponse->addAppend( "xajax_im", "innerHTML", $sData );
        execute( "DELETE FROM audio_invite WHERE to_user=".to_sql( $g_user['user_id'], "Number" )." AND from_user=".to_sql( $row['from_user'], "Number" )."" );
    }
    query( "SELECT * FROM audio_reject WHERE to_user=".to_sql( $g_user['user_id'], "Number" )."" );
    if ( $row = fetch_row( ) )
    {
        if ( $row['go'] == "N" )
        {
            $objResponse->addRemove( "xajax_audio_invite" );
            CAudioInvite( "", "./audiochat/reject.html", $row['from_user'], "" );
            $page = new CAudioInvite;
            $tmp = null;
            $sData = $page->parse( $tmp, true );
            $objResponse->addAppend( "xajax_im", "innerHTML", $sData );
        }
        else
        {
            $objResponse->addRedirect( "./audiochat.php?id=".$row['from_user']."" );
        }
        execute( "DELETE FROM audio_reject WHERE to_user=".to_sql( $g_user['user_id'], "Number" )." AND from_user=".to_sql( $row['from_user'], "Number" )."" );
    }
}

function audio_reject( $user_id )
{
    global $g_user;
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    execute( "INSERT INTO audio_reject SET to_user=".to_sql( $user_id, "Number" ).", from_user=".to_sql( $g_user['user_id'], "Number" ).", go='N'" );
    $objResponse->addRemove( "xajax_audio_update" );
    return $objResponse;
}

function audio_go( $user_id )
{
    global $g_user;
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    execute( "INSERT INTO audio_reject SET to_user=".to_sql( $user_id, "Number" ).", from_user=".to_sql( $g_user['user_id'], "Number" ).", go='Y'" );
    $objResponse->addRedirect( "./audiochat.php?id=".$user_id."" );
    return $objResponse;
}

function savealbumtitle( $new_title, $album_id )
{
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    if ( $album_id == 0 )
    {
        $objResponse->addAssign( "TitleEditable", "innerHTML", $new_title );
        return $objResponse;
    }
    else
    {
        $sql = "UPDATE `gallery_albums` SET `title` = '".$new_title."' WHERE `id` = ".$album_id;
        execute( $sql );
        $objResponse->addAssign( "TitleEditable", "innerHTML", $new_title );
        return $objResponse;
    }
}

function savealbumdesc( $new_desc, $album_id )
{
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    if ( $album_id == 0 )
    {
        $objResponse->addAssign( "DescEditable", "innerHTML", $new_desc );
        return $objResponse;
    }
    else
    {
        $sql = "UPDATE `gallery_albums` SET `desc` = '".$new_desc."' WHERE `id` = ".$album_id;
        execute( $sql );
        $objResponse->addAssign( "DescEditable", "innerHTML", $new_desc );
        return $objResponse;
    }
}

function saveimagetitle( $new_title, $image_id )
{
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    if ( $image_id == 0 )
    {
        $objResponse->addAssign( "TitleEditable", "innerHTML", $new_title );
        return $objResponse;
    }
    else
    {
        $sql = "UPDATE `gallery_images` SET `title` = '".$new_title."' WHERE `id` = ".$image_id;
        execute( $sql );
        $objResponse->addAssign( "TitleEditable", "innerHTML", $new_title );
        return $objResponse;
    }
}

function saveimagedesc( $new_desc, $image_id )
{
    xajaxResponse( );
    $objResponse = new xajaxResponse;
    if ( $image_id == 0 )
    {
        $objResponse->addAssign( "DescEditable", "innerHTML", $new_desc );
        return $objResponse;
    }
    else
    {
        $sql = "UPDATE `gallery_images` SET `desc` = '".$new_desc."' WHERE `id` = ".$image_id;
        execute( $sql );
        $objResponse->addAssign( "DescEditable", "innerHTML", $new_desc );
        return $objResponse;
    }
}

$g['no_headers'] = true;
$g['to_root'] = "../";
$area = "test";
include( $g['to_root']."_include/core/main_start.php" );
$xajax->processRequests( );
include( $g['to_root']."_include/core/main_close.php" );
?>
View user's profile Send private message
PostPosted: Sun Sep 07, 2008 11:01 am Reply with quote
lenny
Valuable expert
Valuable expert
 
Joined: May 15, 2008
Posts: 275




Ok mge... enlighten me please Smile
How do you go about decoding zend encoded files - by the best of my knowledge it is virtually impossibly due to the almost infinite variation of the original source from bytecode...
View user's profile Send private message
PostPosted: Sun Sep 07, 2008 1:10 pm Reply with quote
pexli
Valuable expert
Valuable expert
 
Joined: May 24, 2007
Posts: 665
Location: Bulgaria




lenny wrote:
Ok mge... enlighten me please Smile
How do you go about decoding zend encoded files - by the best of my knowledge it is virtually impossibly due to the almost infinite variation of the original source from bytecode...


Well you see this is possible.Few month ago 'some' guy's release in public private dezender soft.First dezender was writen in China few years ago.Same china guy's after that write a deioncuber.Kapish. Laughing Laughing Laughing
View user's profile Send private message
PostPosted: Sun Sep 07, 2008 2:41 pm Reply with quote
lenny
Valuable expert
Valuable expert
 
Joined: May 15, 2008
Posts: 275




Ouch, I bet thats a blow to Zend and ionCube Laughing
View user's profile Send private message
PostPosted: Sun Sep 07, 2008 2:57 pm Reply with quote
angrycoder
Regular user
Regular user
 
Joined: Jul 15, 2008
Posts: 22




koko wrote:
lenny wrote:
Ok mge... enlighten me please Smile
How do you go about decoding zend encoded files - by the best of my knowledge it is virtually impossibly due to the almost infinite variation of the original source from bytecode...


Well you see this is possible.Few month ago 'some' guy's release in public private dezender soft.First dezender was writen in China few years ago.Same china guy's after that write a deioncuber.Kapish. Laughing Laughing Laughing


Where could I find the deioncuber soft?

Thanks a lot!!!
View user's profile Send private message
PostPosted: Sun Sep 07, 2008 4:13 pm Reply with quote
pexli
Valuable expert
Valuable expert
 
Joined: May 24, 2007
Posts: 665
Location: Bulgaria




Nowhere.Deioncuber is not free.If you want decode some file.Pls

http://www.qinvent.com/cyrj/deZender/dei_price.htm

Laughing Laughing
View user's profile Send private message
PostPosted: Sun Sep 07, 2008 5:35 pm Reply with quote
waraxe
Site admin
Site admin
 
Joined: May 11, 2004
Posts: 2407
Location: Estonia, Tartu




Can someone share this dezender? Smile
View user's profile Send private message Send e-mail Visit poster's website
PostPosted: Sun Sep 07, 2008 5:46 pm Reply with quote
lenny
Valuable expert
Valuable expert
 
Joined: May 15, 2008
Posts: 275




Indeed - As I have said on these forums before, I have heard of such an individual who *claims* to be able to de-zend and de-ioncube scripts, but I have never seen any real evidence to support his claims...
View user's profile Send private message
PostPosted: Sun Sep 07, 2008 6:36 pm Reply with quote
pexli
Valuable expert
Valuable expert
 
Joined: May 24, 2007
Posts: 665
Location: Bulgaria




lenny wrote:
Indeed - As I have said on these forums before, I have heard of such an individual who *claims* to be able to de-zend and de-ioncube scripts, but I have never seen any real evidence to support his claims...


Look 3-4 post up dude.If you blind this is your problem not our's.

P.S.waraxe you have PM.
View user's profile Send private message
PostPosted: Sun Sep 07, 2008 7:20 pm Reply with quote
lenny
Valuable expert
Valuable expert
 
Joined: May 15, 2008
Posts: 275




To be honest koko, I dont see this as real evidence Wink
View user's profile Send private message
PostPosted: Sun Sep 07, 2008 8:01 pm Reply with quote
mge
Valuable expert
Valuable expert
 
Joined: Jul 16, 2008
Posts: 142




basically that guy modified php.exe to intercept the code before processing it. instead it's dumped into a file.

i guess waraxe already has got it but those who are interested can just google dezend or dezender. i found it by googling so i guess it's not that hard Smile
View user's profile Send private message
PostPosted: Sun Sep 07, 2008 8:37 pm Reply with quote
waraxe
Site admin
Site admin
 
Joined: May 11, 2004
Posts: 2407
Location: Estonia, Tartu




I was testing this dezender couple of minutes ago and it's working perfectly!!! I have one specific CMS which i wanted to test for security holes allready ages before, but it's zend-encoded Very Happy
Now, thats whole new area of exploration Cool
Thanks, mge and koko!! Wink
View user's profile Send private message Send e-mail Visit poster's website
Zend file needed to decode
  www.waraxe.us Forum Index -> PHP script decode requests
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
All times are GMT  
Page 1 of 2  
Goto page 1, 2  Next
  
  
 Post new topic  Reply to topic  




Powered by phpBB 2001-2008 phpBB Group






Space Raider game for Android, free download - Space Raider gameplay video - Zone Raider mobile games
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2020 Janek Vind "waraxe"
Page Generation: 0.222 Seconds