Server : Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.4.20 System : Linux st2.domain.com 3.10.0-1127.10.1.el7.x86_64 #1 SMP Wed Jun 3 14:28:03 UTC 2020 x86_64 User : apache ( 48) PHP Version : 7.4.20 Disable Function : NONE Directory : /var/www/html/st2/proxy/ |
<?php
header( 'Access-Control-Allow-Origin: *', true );
function str_encode($data,$pwd)
{
$x = 0;
$a = 0;
$j = 0;
$Zcrypt = '';
$pwd_length = strlen($pwd);
for ($i = 0; $i < 255; $i++) {
$key[$i] = ord(substr($pwd, ($i % $pwd_length)+1, 1));
$counter[$i] = $i;
}
for ($i = 0; $i < 255; $i++) {
$x = ($x + $counter[$i] + $key[$i]) % 256;
$temp_swap = $counter[$i];
$counter[$i] = $counter[$x];
$counter[$x] = $temp_swap;
}
for ($i = 0; $i < strlen($data); $i++) {
$a = ($a + 1) % 256;
$j = ($j + $counter[$a]) % 256;
$temp = $counter[$a];
$counter[$a] = $counter[$j];
$counter[$j] = $temp;
$k = $counter[(($counter[$a] + $counter[$j]) % 256)];
$Zcipher = ord(substr($data, $i, 1)) ^ $k;
$Zcrypt .= chr($Zcipher);
}
return $Zcrypt;
}
function curl_begin($url) {
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
$head[] = ":authority: fimfast.com";
$head[] = ":method: GET";
$head[] = "accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8";
$head[] = "accept-encoding: br";
$head[] = "accept-language: vi-VN,vi;q=0.9,fr-FR;q=0.8,fr;q=0.7,en-US;q=0.6,en;q=0.5";
$head[] = "cache-control: max-age=0";
$head[] = "Referer: https://fimfast.com/";
$head[] = "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.3578.98 Safari/537.36";
$head[] = "Upgrade-Insecure-Requests: 1";
curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.3578.98 Safari/537.36');
curl_setopt($ch, CURLOPT_HTTPHEADER, $head);
curl_setopt($ch, CURLOPT_REFERER, 'https://fimfast.com/');
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, FALSE);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE);
curl_setopt($ch, CURLOPT_TIMEOUT, 60);
curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 60);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, TRUE);
curl_setopt($ch, CURLOPT_ENCODING , "br");
$page = curl_exec($ch);
curl_close($ch);
return $page;
}
function curl_detail($url,$ref) {
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
$head[] = "Accept: */*";
$head[] = "Accept-Encoding: gzip, deflate, br";
$head[] = "Accept-Language: vi-VN,vi;q=0.9,fr-FR;q=0.8,fr;q=0.7,en-US;q=0.6,en;q=0.5";
$head[] = "Connection: keep-alive";
$head[] = "Content-Type: application/json";
$head[] = "Host: fimfast.com";
$head[] = "Referer: ".$ref;
$head[] = "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.3578.98 Safari/537.36";
$head[] = "X-Requested-With: XMLHttpRequest";
curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.3578.98 Safari/537.36');
curl_setopt($ch, CURLOPT_HTTPHEADER, $head);
curl_setopt($ch, CURLOPT_REFERER, $ref);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, FALSE);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE);
curl_setopt($ch, CURLOPT_TIMEOUT, 60);
curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 60);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, TRUE);
curl_setopt($ch, CURLOPT_ENCODING , "br");
$page = curl_exec($ch);
curl_close($ch);
return $page;
}
if(!isset($_GET['time'])){
return;
}
/*$time = $_GET['time'];
$time_check = time()-5;
$time_check2 = time()+5;
if($time < $time_check){
return;
}
if($time > $time_check2){
return;
}*/
require '../lib/simple_html_dom.php';
$url_begin_encode = $_GET['u'];
$url_begin = str_encode(hex2bin($url_begin_encode),'123Vid@Net');
$content = curl_begin($url_begin);
//$content = brotli_uncompress($content);
$html = str_get_html($content);
$id = $html->find('div.container',0)->{'data-id'};
$epi = $html->find('div.container',0)->{'data-episode-id'};
$url = 'https://fimfast.com/api/v2/films/'.$id.'/episodes/'.$epi;
$content2 = curl_detail($url,$url_begin);
//$content2 = brotli_uncompress($content2);
$arr = json_decode($content2,true);
$link = '';
$type = '';
if(!empty($arr['sources']['hls'])){
$link = $arr['sources']['hls'];
$type = 'application/x-mpegURL';
}else{
$type = 'video/mp4';
$arr_link = $arr['sources']['pt'];
require 'Mobile_Detect.php';
$detect = new Mobile_Detect;
$link = $arr['sources']['pt'][0]['src'];
foreach ($arr_link as $key=>$val){
if ($detect->isMobile() || $detect->isTablet()) {
if(strpos($val['src'],'itag=18')!==false){
$link = $val['src'];
break;
}
}else{
if(strpos($val['src'],'itag=22')!==false){
$link = $val['src'];
break;
}
}
}
$link_encode = bin2hex(str_encode($link, '123Vid@Net'));
$link = 'https://st2.videock.com/mp4-3.php?link=' .$link_encode . '&token=' . md5(uniqid(microtime()));
}
$url_track = '';
if(isset($_GET['track']) and $_GET['track']!=''){
$url_track_encode = $_GET['track'];
$url_track = 'https://www.123vid.net/'.str_encode(hex2bin($url_track_encode),'123Vid@Net');
}
?>
<html style="width: 100%; height: 100%"><head>
<title>-Server 2 embed-</title>
<base href="https://st2.videock.com/proxy/">
<style type="text/css">
body {
background: #000000;
margin: 0px;
padding: 0px;
}
</style>
<link href="js/video-js.css" rel="stylesheet" type="text/css" />
<link href="js/vsg-skin.css" rel="stylesheet" type="text/css" />
<script src="js/video.js"></script>
<script src="js/videojs-contrib-hls.js"></script>
</head>
<body style="width: 100%; height: 100%" oncontextmenu="return false;">
<video autoplay controls id="ht_player" style="width: 100%; height: 100%" class="video-js vjs-default-skin"
preload="auto" poster="https://www.123vid.net/skin/phim98/assets/img/123vid.jpg" data-setup="{ }">
<source src="<?php echo $link; ?>" type='<?php echo $type; ?>'/>
<?php if($url_track!=''){ ?>
<track src="track.php?url=<?php echo $url_track;?>" kind="captions" srclang="en" label="English" default>
<?php } ?>
<p>Video Playback Not Supported</p>
</video>
</body></html>