.htaccess
11 years ago
index.php
1 year ago
session.php
1 year ago
trace.php
2 days ago
wp-login.php
1 year ago
wp-settings.php
2 years ago
index.php
26 lines
| 1 | <?php |
| 2 | /** |
| 3 | * GOTMLS Brute-Force protections |
| 4 | * @package GOTMLS |
| 5 | * @since 4.23.75 |
| 6 | */ |
| 7 | |
| 8 | if (!(isset($GLOBALS["GOTMLS"]["detected_attacks"]) && $GLOBALS["GOTMLS"]["detected_attacks"])) { |
| 9 | $file = (isset($_SERVER["SCRIPT_FILENAME"]) ? $_SERVER["SCRIPT_FILENAME"] : __FILE__).""; |
| 10 | $GLOBALS["GOTMLS"]["detected_attacks"] = '&attack[]='.strtolower((isset($_SERVER["DOCUMENT_ROOT"]) && strlen($_SERVER["DOCUMENT_ROOT"]."") < strlen($file)) ? substr($file, strlen($_SERVER["DOCUMENT_ROOT"]."")) : basename($file)); |
| 11 | } |
| 12 | |
| 13 | foreach (array("REMOTE_ADDR", "HTTP_HOST", "REQUEST_URI", "HTTP_REFERER", "HTTP_USER_AGENT") as $var) |
| 14 | $GLOBALS["GOTMLS"]["detected_attacks"] .= (isset($_SERVER[$var]) ? "&SERVER_$var=".urlencode($_SERVER[$var]) : ""); |
| 15 | |
| 16 | foreach (array("log", "session_id") as $var) |
| 17 | $GLOBALS["GOTMLS"]["detected_attacks"] .= (isset($_POST[$var]) ? "&POST_$var=".urlencode($_POST[$var]).(isset($_POST["sess".$_POST[$var]]) ? "&TIME=".time()."&POST_sess$var=".urlencode($_POST["sess".$_POST[$var]]) : "") : ""); |
| 18 | |
| 19 | if (is_file($file = str_replace(basename(dirname(__FILE__)), basename(__FILE__), dirname(__FILE__))) && ($contents = @file_get_contents($file)) && preg_match('/\nversion:\s*([0-9\.]+)/i', $contents, $match)) |
| 20 | $ver = $match[1]; |
| 21 | else |
| 22 | $ver = "Unknown"; |
| 23 | $ver = "https://safe-load.gotmls.net/report.php?ver=$ver"; |
| 24 | header("location: $ver".$GLOBALS["GOTMLS"]["detected_attacks"]); |
| 25 | die(); |
| 26 |