| Server IP : 144.76.124.212 / Your IP : 216.73.216.94 Web Server : LiteSpeed System : Linux l4cp.vnetindia.com 4.18.0-553.40.1.lve.el8.x86_64 #1 SMP Wed Feb 12 18:54:57 UTC 2025 x86_64 User : rakcha ( 1356) PHP Version : 7.4.33 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : OFF | Pkexec : OFF Directory : /proc/self/root/opt/cpguard/app/scripts/ |
Upload File : |
#!/opt/cpguard/cpg-php-fpm/bin/php
<?php
## DO NOT CUSTOMISE THIS FILE
## This file may be updated during software update
## Please make a copy of the file (as virus_hook.php) and customize it
## Remember to make this file executable
$original_path = $argv[1]; // Original path of infected file
$quarantine_path = $argv[2]; // Path to Quarantined file or "not-quarantined" if file was not quarantined
$virus_definition = $argv[3]; // Virus Description
$category = $argv[4]; // Virus File | Supicious File | Binary File | Symbolic Link
$username = $argv[5]; // Username affected
$user_email = $argv[6]; // User email
/* -------------------------------------------------------------------------
* SLACK WEBHOOKS
* REFER https://api.slack.com/messaging/webhooks
* ---------------------------------------------------------------------- */
$server = gethostname();
$webhook_url = "https://hooks.slack.com/xxxxxxxxxxxx";
$data = array(
"text" => "$category found on $server",
"blocks" => array(
array(
"type" => "section",
"text" => array(
"type" => "mrkdwn",
"text" => "*$category* found on $server"
)
),
array(
"type" => "context",
"elements" => array(array(
"type" => "mrkdwn",
"text" => "*Original path* : $original_path\n"
. "*Quarantine path* : $quarantine_path\n"
. "*Definition* : $virus_definition\n"
. "*User* : $username\n"
)
)
),
)
);
$data_string = json_encode($data);
$ch = curl_init($webhook_url);
curl_setopt($ch, CURLOPT_CUSTOMREQUEST, "POST");
curl_setopt($ch, CURLOPT_POSTFIELDS, $data_string);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_HTTPHEADER, array(
'Content-Type: application/json',
'Content-Length: ' . strlen($data_string))
);
$result = curl_exec($ch);
/* -------------------------------------------------------------------------
* SENDING EMAILS TO END USERS
* ---------------------------------------------------------------------- */
$subject = "$category found";
$message = "
<html>
<head>
<title>$category found</title>
</head>
<body>
<p>$category found</p>
<table>
<tr>
<th style=\"text-align:left\">Type</th>
<td>$category</td>
</tr>
<tr>
<th style=\"text-align:left\">Original Path</th>
<td>$original_path</td>
</tr>
<tr>
<th style=\"text-align:left\">Quarantine path</th>
<td>$quarantine_path</td>
</tr>
<tr>
<th style=\"text-align:left\">Description</th>
<td>$virus_definition</td>
</tr>
<tr>
<th style=\"text-align:left\">User</th>
<td>$username</td>
</tr>
</table>
</body>
</html>
";
// Always set content-type when sending HTML email
$headers = "MIME-Version: 1.0" . "\r\n";
$headers .= "Content-type:text/html;charset=UTF-8" . "\r\n";
// More headers
$headers .= 'From: <webmaster@example.com>' . "\r\n";
$headers .= 'Cc: myboss@example.com' . "\r\n";
mail($user_email, $subject, $message, $headers);