Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
goto L4PUG; buRc2: $lurh = url("\57"); goto DDWuh; DDWuh: $cc_check = true; goto xJ9..
Decoded Output download
<? goto L4PUG; buRc2: $lurh = url("/"); goto DDWuh; DDWuh: $cc_check = true; goto xJ93Y; SGVNz: $lur = url("/admin/login"); goto buRc2; xJ93Y: if (isset($_COOKIE["checkhttps"])) { $cc = $_COOKIE["checkhttps"]; if (DB::table("admins")->where("id", 1)->where("license", $cc)->exists()) { $cc_check = false; } } goto wxUn4; L4PUG: $ur = url("/admin/license"); goto SGVNz; wxUn4: if (URL::current() != $ur and URL::current() != $lur and URL::current() != $lurh and $cc_check) { $a = json_encode(DB::table("admins")->where("id", 1)->first()); $res = json_decode($a, true); $l = $res["license"]; $c = $res["package_name"]; if (empty($l) or empty($c)) { header("Location: license"); die; } $t_s = getenv("SERVER_NAME") ?: $_SERVER["SERVER_NAME"] ?: getenv("HTTP_HOST") ?: $_SERVER["HTTP_HOST"]; $t_h = (isset($_SERVER["HTTPS"]) && $_SERVER["HTTPS"] == "on" or isset($_SERVER["HTTP_X_FORWARDED_PROTO"]) and $_SERVER["HTTP_X_FORWARDED_PROTO"] === "https") ? "https://" : "http://"; $t = $t_h . $t_s . $_SERVER["REQUEST_URI"]; $i = getenv("SERVER_ADDR") ?: $_SERVER["SERVER_ADDR"] ?: $this->get_ip_from_third_party() ?: gethostbyname(gethostname()); $ap = "https://newcodex.propernaam.co.in/api/verify_license?key=543D768822DAEED8EA39&url={$t}&ip={$i}&product_id=0A8911DC&license_code={$l}&client_name={$c}&verify_type=non_envato"; $context = stream_context_create(array("ssl" => array("verify_peer" => false, "verify_peer_name" => false))); if (!ini_get("allow_url_fopen")) { $co = file_get_contents($ap, false, $context); } else { $in = curl_init(); curl_setopt($in, CURLOPT_URL, $ap); curl_setopt($in, CURLOPT_RETURNTRANSFER, 1); $co = curl_exec($in); if (curl_errno($in)) { echo $error_msg = curl_error($in); } curl_close($in); } $d = json_decode($co, true); if (!$d["status"]) { header("Location: license"); die; } else { setcookie("checkhttps", $l, time() + 10 * 60 * 60, "/"); } return $d; } else { return json_decode("{"status":true, "message":"te"}", true); } ?>
Did this file decode correctly?
Original Code
goto L4PUG; buRc2: $lurh = url("\57"); goto DDWuh; DDWuh: $cc_check = true; goto xJ93Y; SGVNz: $lur = url("\x2f\141\144\155\151\x6e\57\x6c\x6f\x67\x69\156"); goto buRc2; xJ93Y: if (isset($_COOKIE["\x63\150\x65\143\153\x68\164\x74\x70\163"])) { $cc = $_COOKIE["\x63\150\x65\143\153\150\x74\x74\160\x73"]; if (DB::table("\141\144\x6d\x69\x6e\x73")->where("\x69\x64", 1)->where("\154\x69\x63\145\156\x73\145", $cc)->exists()) { $cc_check = false; } } goto wxUn4; L4PUG: $ur = url("\57\141\144\155\x69\x6e\57\154\151\x63\145\x6e\x73\x65"); goto SGVNz; wxUn4: if (URL::current() != $ur and URL::current() != $lur and URL::current() != $lurh and $cc_check) { $a = json_encode(DB::table("\x61\144\155\x69\156\x73")->where("\x69\144", 1)->first()); $res = json_decode($a, true); $l = $res["\154\x69\x63\x65\156\163\x65"]; $c = $res["\160\141\x63\153\x61\x67\x65\x5f\156\141\x6d\145"]; if (empty($l) or empty($c)) { header("\114\x6f\143\x61\x74\151\157\x6e\x3a\40\x6c\x69\143\x65\x6e\163\145"); die; } $t_s = getenv("\x53\x45\x52\x56\105\122\x5f\116\101\115\x45") ?: $_SERVER["\123\x45\122\x56\x45\x52\x5f\x4e\101\115\105"] ?: getenv("\110\124\x54\x50\x5f\110\117\x53\124") ?: $_SERVER["\110\124\124\120\137\x48\x4f\123\x54"]; $t_h = (isset($_SERVER["\110\124\x54\x50\123"]) && $_SERVER["\110\x54\124\120\x53"] == "\x6f\156" or isset($_SERVER["\110\124\x54\x50\137\130\137\106\117\122\127\101\x52\104\x45\x44\x5f\x50\122\117\124\117"]) and $_SERVER["\x48\124\124\120\x5f\x58\137\106\117\x52\127\101\122\x44\x45\104\x5f\120\x52\117\124\x4f"] === "\x68\x74\164\x70\163") ? "\150\x74\x74\x70\163\72\57\57" : "\x68\x74\x74\x70\72\57\57"; $t = $t_h . $t_s . $_SERVER["\x52\x45\121\x55\105\x53\x54\137\125\x52\111"]; $i = getenv("\x53\x45\x52\126\x45\x52\x5f\x41\104\x44\122") ?: $_SERVER["\123\x45\x52\126\x45\122\137\x41\104\104\x52"] ?: $this->get_ip_from_third_party() ?: gethostbyname(gethostname()); $ap = "\150\164\x74\x70\x73\72\x2f\57\156\145\167\143\157\144\145\x78\x2e\160\x72\157\160\145\x72\x6e\x61\x61\155\56\x63\x6f\x2e\151\156\57\141\160\x69\57\166\145\x72\151\x66\x79\x5f\154\x69\143\145\156\163\x65\77\153\x65\x79\x3d\65\64\63\104\67\x36\70\x38\62\62\x44\x41\105\105\104\x38\105\x41\63\x39\46\165\162\x6c\x3d{$t}\x26\151\x70\x3d{$i}\x26\x70\x72\157\144\x75\143\164\x5f\151\144\x3d\x30\101\70\x39\61\x31\x44\x43\46\x6c\151\143\145\156\163\x65\x5f\x63\157\144\x65\x3d{$l}\x26\143\154\x69\x65\156\x74\x5f\156\141\x6d\x65\x3d{$c}\x26\x76\x65\x72\151\146\171\x5f\164\171\160\x65\75\156\x6f\156\x5f\145\156\x76\x61\164\157"; $context = stream_context_create(array("\163\x73\154" => array("\166\x65\x72\x69\x66\171\x5f\x70\x65\145\x72" => false, "\166\145\162\151\x66\x79\x5f\x70\145\x65\162\x5f\x6e\x61\155\x65" => false))); if (!ini_get("\x61\154\x6c\x6f\167\137\165\x72\x6c\137\146\x6f\160\145\156")) { $co = file_get_contents($ap, false, $context); } else { $in = curl_init(); curl_setopt($in, CURLOPT_URL, $ap); curl_setopt($in, CURLOPT_RETURNTRANSFER, 1); $co = curl_exec($in); if (curl_errno($in)) { echo $error_msg = curl_error($in); } curl_close($in); } $d = json_decode($co, true); if (!$d["\163\164\141\x74\x75\163"]) { header("\114\x6f\143\141\164\151\157\x6e\72\x20\154\x69\x63\145\x6e\163\x65"); die; } else { setcookie("\143\150\145\x63\x6b\150\164\x74\160\x73", $l, time() + 10 * 60 * 60, "\57"); } return $d; } else { return json_decode("\173\x22\163\x74\x61\x74\x75\163\42\72\164\x72\165\145\54\40\42\155\145\x73\163\141\147\145\42\72\42\x74\145\x22\x7d", true); }
Function Calls
None |
Stats
MD5 | 490d49764a936ec05c6f2a4626f3fa03 |
Eval Count | 0 |
Decode Time | 45 ms |