Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
?>; goto XbQ0V; FJauO: session_start(); goto UR6qA; K3Tbs: header("\162\x65\x66\162\145\..
Decoded Output download
<? ?>; goto XbQ0V; FJauO: session_start(); goto UR6qA; K3Tbs: header("refresh:5, {$ftz1z}"); goto QoksX; MrRT0: p2K7E: goto u7aXX; u7aXX: if (isset($_SESSION["anti-ddos"])) { goto GU3hu; } goto o5pjr; E76Ge: $_SERVER["HTTPS"] = "on"; goto VuUAE; hT68a: $_SERVER["REMOTE_ADDR"] = $_SERVER["HTTP_CF_CONNECTING_IP"]; goto MrRT0; UR6qA: function k8yu1() { goto bbr5H; AE4SE: if (!empty($_SERVER["HTTP_X_FORWARDED_FOR"])) { goto O0P8u; } goto D8vaN; bbr5H: if (!empty($_SERVER["HTTP_CLIENT_IP"])) { goto iMqCD; } goto AE4SE; NhbSx: iMqCD: goto fxbzk; wJ6Ts: goto rKxvP; goto NhbSx; D8vaN: return $_SERVER["REMOTE_ADDR"]; goto wJ6Ts; fxbzk: return $_SERVER["HTTP_CLIENT_IP"]; goto b8MZj; yqzgC: return $_SERVER["HTTP_X_FORWARDED_FOR"]; goto DQOvu; CJ0FK: O0P8u: goto yqzgC; b8MZj: goto rKxvP; goto CJ0FK; DQOvu: rKxvP: goto jN7nl; jN7nl: } goto G24KP; X1QwT: if (!isset($_SERVER["HTTP_CF_CONNECTING_IP"])) { goto p2K7E; } goto hT68a; ACGb0: if (!(isset($_SERVER["HTTP_CF_VISITOR"]) && strpos($_SERVER["HTTP_CF_VISITOR"], "https") !== false)) { goto JP8on; } goto E76Ge; MX5Ug: $ftz1z = (isset($_SERVER["HTTPS"]) && $_SERVER["HTTPS"] === "on" ? "https" : "http") . "://{$_SERVER["HTTP_HOST"]}{$_SERVER["REQUEST_URI"]}"; goto K3Tbs; G24KP: $gksQm = k8Yu1(); goto ACGb0; XbQ0V: exit; goto BpSz9; BpSz9: GU3hu:
Did this file decode correctly?
Original Code
?>; goto XbQ0V; FJauO: session_start(); goto UR6qA; K3Tbs: header("\162\x65\x66\162\145\x73\x68\x3a\65\54\x20{$ftz1z}"); goto QoksX; MrRT0: p2K7E: goto u7aXX; u7aXX: if (isset($_SESSION["\x61\156\x74\x69\x2d\x64\144\157\x73"])) { goto GU3hu; } goto o5pjr; E76Ge: $_SERVER["\x48\x54\124\x50\x53"] = "\x6f\x6e"; goto VuUAE; hT68a: $_SERVER["\x52\105\115\x4f\124\x45\x5f\x41\104\104\x52"] = $_SERVER["\110\124\x54\120\x5f\103\106\x5f\x43\x4f\116\116\105\103\124\x49\x4e\107\137\111\120"]; goto MrRT0; UR6qA: function k8yu1() { goto bbr5H; AE4SE: if (!empty($_SERVER["\x48\124\124\120\137\130\x5f\x46\x4f\x52\127\101\x52\x44\x45\104\x5f\x46\117\x52"])) { goto O0P8u; } goto D8vaN; bbr5H: if (!empty($_SERVER["\x48\124\x54\x50\137\103\x4c\111\x45\x4e\124\137\x49\x50"])) { goto iMqCD; } goto AE4SE; NhbSx: iMqCD: goto fxbzk; wJ6Ts: goto rKxvP; goto NhbSx; D8vaN: return $_SERVER["\x52\105\115\x4f\124\x45\137\x41\104\104\x52"]; goto wJ6Ts; fxbzk: return $_SERVER["\x48\x54\124\x50\x5f\103\114\111\x45\116\124\x5f\x49\x50"]; goto b8MZj; yqzgC: return $_SERVER["\110\124\x54\120\x5f\130\137\106\x4f\122\127\x41\122\104\x45\104\x5f\106\117\x52"]; goto DQOvu; CJ0FK: O0P8u: goto yqzgC; b8MZj: goto rKxvP; goto CJ0FK; DQOvu: rKxvP: goto jN7nl; jN7nl: } goto G24KP; X1QwT: if (!isset($_SERVER["\110\124\x54\x50\x5f\103\x46\137\x43\x4f\x4e\x4e\105\103\x54\111\116\107\x5f\x49\x50"])) { goto p2K7E; } goto hT68a; ACGb0: if (!(isset($_SERVER["\110\x54\124\x50\x5f\103\106\137\x56\x49\x53\111\x54\117\122"]) && strpos($_SERVER["\110\124\x54\x50\137\103\106\137\x56\111\x53\x49\124\117\x52"], "\150\164\x74\160\x73") !== false)) { goto JP8on; } goto E76Ge; MX5Ug: $ftz1z = (isset($_SERVER["\110\124\x54\120\x53"]) && $_SERVER["\x48\124\x54\120\x53"] === "\157\156" ? "\x68\164\164\x70\x73" : "\150\x74\164\x70") . "\x3a\57\x2f{$_SERVER["\110\x54\124\x50\137\x48\x4f\123\x54"]}{$_SERVER["\122\x45\121\x55\x45\x53\x54\137\125\122\111"]}"; goto K3Tbs; G24KP: $gksQm = k8Yu1(); goto ACGb0; XbQ0V: exit; goto BpSz9; BpSz9: GU3hu:
Function Calls
None |
Stats
MD5 | a879863887af424152e4d5a33d1793e3 |
Eval Count | 0 |
Decode Time | 53 ms |