Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php /* This file is protected by copyright law and provided under license. Reverse engin..

Decoded Output download


defined('BASEPATH') OR exit('No direct script access allowed');
class Api extends CI_Controller {
public $systemsetup;
public $encryptionkey;
public function __construct() {
parent::__construct();
$this->load->helper('url');
date_default_timezone_set("Asia/Manila");
header('Access-Control-Allow-Origin: *');
header('Access-Control-Allow-Methods: GET, POST');
header("Access-Control-Allow-Headers: X-Requested-With");
$this->load->database();
$this->load->model('Apimodel');
$this->systemsetup = $this->Apimodel->systemsetup();
$this->encryptionkey = $this->systemsetup['encryptionkey'];
}
public function replycenter()
{
$systemsetup = $this->systemsetup;
if($this->input->get('id') != NULL &&$this->input->get('pass') != NULL):
if($this->input->get('phone') != NULL &&$this->input->get('text') != NULL):
$id = $this->input->get('id');
$pass = $this->input->get('pass');
$number = $this->input->get('phone',TRUE);
$smscenter = $this->input->get('smscenter',TRUE);
$textformat = rawurldecode($this->input->get('text',TRUE));
if($id == $systemsetup['clientid'] &&$pass == $this->decrypt($systemsetup['clientpass'])):
if(strlen($number) == 13 &&substr($number,0,4) == '+639'):
$numberinsert = "09".substr($number,4,9);
elseif(strlen($number) == 11 &&substr($number,0,4) == '+632'):
$numberinsert = substr($number,4,7);
else:
$numberinsert = $number;
endif;
echo json_encode($this->Apimodel->replycenter($numberinsert,$textformat,$this->getipaddress()));
else:
echo json_encode($this->Apimodel->apireturn('1002'));
endif;
else:
echo json_encode($this->Apimodel->apireturn('1010'));
endif;
else:
echo json_encode($this->Apimodel->apireturn('1001'));
endif;
}
public function createsms()
{
header('Content-Type: application/json');
if($this->checkaccess()['returncode'] === TRUE):
$data = json_decode(file_get_contents("php://input"));
if(isset($id) &&isset($sms) &&isset($numbers) &&isset($senddate)):
$id = $this->checkaccess()['id'];
$sms = $data->apidata->text;
$numbers = $data->apidata->numbers;
$senddate = $data->apidata->senddate;
echo json_encode($this->Apimodel->createapisms($sms,$numbers,$senddate,$id));
else:
echo json_encode($this->Apimodel->thirdpartyapireturn('1010'));
endif;
else:
echo json_encode($this->Apimodel->thirdpartyapireturn($this->checkaccess()['returncode']));
endif;
}
protected function checkaccess()
{
if( $_SERVER['REQUEST_METHOD'] == 'POST'):
$data = json_decode(file_get_contents("php://input"));
$credentials = $data->apicredentials;
if(isset($credentials->clientid) &&isset($credentials->clientpass)):
return $this->Apimodel->checkaccess($credentials->clientid,$credentials->clientpass);
else:
return 1001;
endif;
else:
return 1001;
endif;
}
protected function getipaddress()
{
if (!empty($_SERVER['HTTP_CLIENT_IP'])):
$ip=$_SERVER['HTTP_CLIENT_IP'];
elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])):
$ip=$_SERVER['HTTP_X_FORWARDED_FOR'];
else:
$ip=$_SERVER['REMOTE_ADDR'];
endif;
return $ip;
}
protected function encrypt($purestring)
{
$encryptedstring=openssl_encrypt($purestring,"AES-128-ECB",$this->encryptionkey);
return $encryptedstring;
}
protected function decrypt($purestring)
{
$decryptedstring=openssl_decrypt($purestring,"AES-128-ECB",$this->encryptionkey);
return $decryptedstring;
}
}
;

Did this file decode correctly?

Original Code

<?php /* This file is protected by copyright law and provided under license. Reverse engineering of this file is strictly prohibited. */$OOO000000=urldecode('%66%67%36%73%62%65%68%70%72%61%34%63%6f%5f%74%6e%64');$OOO0000O0=$OOO000000{4}.$OOO000000{9}.$OOO000000{3}.$OOO000000{5};$OOO0000O0.=$OOO000000{2}.$OOO000000{10}.$OOO000000{13}.$OOO000000{16};$OOO0000O0.=$OOO0000O0{3}.$OOO000000{11}.$OOO000000{12}.$OOO0000O0{7}.$OOO000000{5};$OOO000O00=$OOO000000{0}.$OOO000000{12}.$OOO000000{7}.$OOO000000{5}.$OOO000000{15};$O0O000O00=$OOO000000{0}.$OOO000000{1}.$OOO000000{5}.$OOO000000{14};$O0O000O0O=$O0O000O00.$OOO000000{11};$O0O000O00=$O0O000O00.$OOO000000{3};$O0O00OO00=$OOO000000{0}.$OOO000000{8}.$OOO000000{5}.$OOO000000{9}.$OOO000000{16};$OOO00000O=$OOO000000{3}.$OOO000000{14}.$OOO000000{8}.$OOO000000{14}.$OOO000000{8};$OOO0O0O00=__FILE__;$OO00O0000=0x10dc;eval($OOO0000O0('JE8wMDBPME8wMD0kT09PMDAwTzAwKCRPT08wTzBPMDAsJ3JiJyk7JE8wTzAwT08wMCgkTzAwME8wTzAwLDB4NGY4KTskT08wME8wME8wPSRPT08wMDAwTzAoJE9PTzAwMDAwTygkTzBPMDBPTzAwKCRPMDAwTzBPMDAsMHgxN2MpLCdFbnRlcnlvdXdraFJIWUtOV09VVEFhQmJDY0RkRmZHZ0lpSmpMbE1tUHBRcVNzVnZYeFp6MDEyMzQ1Njc4OSsvPScsJ0FCQ0RFRkdISUpLTE1OT1BRUlNUVVZXWFlaYWJjZGVmZ2hpamtsbW5vcHFyc3R1dnd4eXowMTIzNDU2Nzg5Ky8nKSk7ZXZhbCgkT08wME8wME8wKTs='));return;?>Hkr9NHenNHenNHe1zfukgFMaXdoyjcUImb19oUAxyb18mRtwmwJ4LT09NHr8XTzEXRJwmwJXLT09NHeEXHr8XhtONT08XHeEXHr8Pkr8XTzEXT08XHtILTzEXHr8XTzEXRtONTzEXTzEXHeEpRtfydmOlFmlvfbfqDykwBAsKa09aaryiWMkeC0OLOMcuc0lpUMpHdr1sAunOFaYzamcCGyp6HerZHzW1YjF4KUSvNUFSk0ytW0OyOLfwUApRTr1KT1nOAlYAaacbBylDCBkjcoaMc2ipDMsSdB5vFuyZF3O1fmf4GbPXHTwzYeA2YzI5hZ8mhULpK2cjdo9zcUILTzEXHr8XTzEXhTslfMyShtONTzEXTzEXTzEpKX==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}X^w`z\

Function Calls

fopen 1
fread 3
strtr 2
fclose 1
urldecode 1
str_replace 1
base64_decode 3

Variables

$O000O0O00 True
$O0O000O00 fgets
$O0O000O0O fgetc
$O0O00OO00 fread
$OO00O0000 4316
$OO00O00O0 defined('BASEPATH') OR exit('No direct script access allowe..
$OOO000000 fg6sbehpra4co_tnd
$OOO00000O strtr
$OOO0000O0 base64_decode
$OOO000O00 fopen
$OOO0O0O00 index.php

Stats

MD5 d693ce3b7c205392f54e3232bb993941
Eval Count 3
Decode Time 130 ms