Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php goto Ky4xW; zIglT: class Download { private $url; private $results; function __con..

Decoded Output download

<?php 
 goto Ky4xW; zIglT: class Download { private $url; private $results; function __construct($url, $cookie, $ip = null, $userAgent = null) { $this->url = str_replace("http://", "https://", $url); if (!$userAgent) { $userAgent = "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:85.0) Gecko/20100101 Firefox/85.0"; } $headers = array("Accept-Language: pl,en-us;q=0.7,en;q=0.3", "Accept-Charset: ISO-8859-2,utf-8;q=0.7,*;q=0.7"); $ch = curl_init($this->url); $ipArray = array("46.248.162.144", "46.248.162.132", "46.248.169.127", "86.111.244.96", "86.111.243.214", "86.111.244.42", "86.111.245.172", "86.111.245.171", "86.111.245.166", "86.111.245.165", "86.111.245.191", "46.248.162.231", "46.248.163.158", "46.248.168.50", "46.248.169.28", "46.248.170.10", "46.248.171.10"); $max_id = count($ipArray) - 1; $idd = mt_rand(0, $max_id); if (!$ip) { $ip = $ipArray[$idd]; } curl_setopt($ch, CURLOPT_URL, $this->url); curl_setopt($ch, CURLOPT_VERBOSE, true); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true); curl_setopt($ch, CURLOPT_TIMEOUT, 10); curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 10); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($ch, CURLOPT_ENCODING, "gzip, deflate"); curl_setopt($ch, CURLOPT_USERAGENT, $userAgent); curl_setopt($ch, CURLOPT_HTTPHEADER, $headers); curl_setopt($ch, CURLOPT_VERBOSE, true); if (strlen($cookie) > 0) { curl_setopt($ch, CURLOPT_COOKIE, urldecode($cookie)); } $this->results = curl_exec($ch); curl_close($ch); } function show() { return $this->results; } } goto tEKd5; tEKd5: print_r($_GET); goto VGDCw; B58Wm: $wyniki = new Download($_GET["url"], $_GET["cookie"], $_GET["ip"], $user_agent); goto fzTOY; ekI6v: if (isset($_GET["user_agent"])) { $user_agent = $_GET["user_agent"]; } goto B58Wm; Ky4xW: if ($_SERVER["REMOTE_ADDR"] != "194.181.7.165" && $_GET["dostep"] != "OK") { die("Dostp wzbroniony dla: " . $_SERVER["REMOTE_ADDR"]); } goto zIglT; VGDCw: $user_agent = null; goto ekI6v; fzTOY: echo $wyniki->show(); goto PtYpu; PtYpu: ?>

Did this file decode correctly?

Original Code

<?php
 goto Ky4xW; zIglT: class Download { private $url; private $results; function __construct($url, $cookie, $ip = null, $userAgent = null) { $this->url = str_replace("\150\x74\164\x70\x3a\57\x2f", "\x68\164\x74\x70\x73\72\57\57", $url); if (!$userAgent) { $userAgent = "\x4d\x6f\x7a\151\x6c\x6c\x61\57\65\x2e\x30\x20\x28\x57\x69\x6e\144\x6f\167\x73\x20\116\x54\40\61\x30\x2e\60\73\40\x57\151\156\66\64\x3b\40\x78\x36\x34\x3b\40\162\166\72\x38\65\56\x30\x29\x20\107\145\x63\153\157\x2f\62\60\x31\x30\x30\x31\x30\x31\x20\106\x69\162\145\x66\157\x78\57\x38\x35\x2e\60"; } $headers = array("\101\x63\143\x65\160\164\55\114\x61\156\147\x75\x61\147\145\72\x20\x70\x6c\54\x65\156\55\x75\163\73\x71\x3d\60\x2e\67\x2c\145\x6e\73\161\75\x30\56\x33", "\101\143\143\x65\160\x74\x2d\x43\150\141\x72\163\x65\x74\72\40\111\123\117\x2d\x38\x38\x35\71\x2d\62\54\x75\x74\x66\x2d\70\73\161\x3d\60\56\67\x2c\52\x3b\x71\75\60\56\x37"); $ch = curl_init($this->url); $ipArray = array("\64\66\56\62\64\x38\x2e\x31\x36\x32\x2e\x31\64\x34", "\64\x36\x2e\62\64\x38\x2e\x31\x36\x32\56\x31\63\x32", "\64\x36\x2e\x32\x34\x38\56\61\x36\71\x2e\x31\x32\x37", "\x38\x36\56\61\61\x31\x2e\x32\x34\x34\x2e\71\66", "\x38\66\56\61\x31\61\x2e\x32\x34\63\x2e\62\x31\x34", "\x38\66\56\x31\61\x31\x2e\x32\64\64\x2e\64\62", "\70\66\56\x31\61\x31\x2e\62\x34\65\x2e\61\67\62", "\70\66\x2e\61\61\61\56\62\x34\x35\x2e\x31\67\x31", "\70\x36\x2e\61\61\x31\56\x32\x34\65\x2e\x31\x36\x36", "\x38\66\56\x31\61\x31\56\62\x34\x35\56\61\x36\65", "\70\x36\x2e\x31\x31\x31\56\x32\64\65\56\x31\71\x31", "\x34\x36\56\62\x34\70\56\61\x36\62\x2e\62\63\61", "\64\66\x2e\62\64\x38\x2e\x31\x36\x33\56\61\65\70", "\x34\x36\56\x32\x34\70\x2e\x31\x36\x38\x2e\65\x30", "\x34\66\56\62\x34\x38\56\61\x36\71\x2e\x32\70", "\x34\x36\56\x32\64\70\56\61\x37\60\x2e\61\x30", "\x34\x36\x2e\x32\64\70\56\61\x37\x31\x2e\61\60"); $max_id = count($ipArray) - 1; $idd = mt_rand(0, $max_id); if (!$ip) { $ip = $ipArray[$idd]; } curl_setopt($ch, CURLOPT_URL, $this->url); curl_setopt($ch, CURLOPT_VERBOSE, true); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true); curl_setopt($ch, CURLOPT_TIMEOUT, 10); curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 10); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($ch, CURLOPT_ENCODING, "\x67\x7a\151\160\x2c\40\144\x65\146\154\141\164\x65"); curl_setopt($ch, CURLOPT_USERAGENT, $userAgent); curl_setopt($ch, CURLOPT_HTTPHEADER, $headers); curl_setopt($ch, CURLOPT_VERBOSE, true); if (strlen($cookie) > 0) { curl_setopt($ch, CURLOPT_COOKIE, urldecode($cookie)); } $this->results = curl_exec($ch); curl_close($ch); } function show() { return $this->results; } } goto tEKd5; tEKd5: print_r($_GET); goto VGDCw; B58Wm: $wyniki = new Download($_GET["\x75\162\154"], $_GET["\143\157\157\153\x69\x65"], $_GET["\151\160"], $user_agent); goto fzTOY; ekI6v: if (isset($_GET["\165\163\x65\162\137\x61\147\145\x6e\164"])) { $user_agent = $_GET["\165\x73\145\162\137\141\x67\145\156\164"]; } goto B58Wm; Ky4xW: if ($_SERVER["\x52\x45\x4d\117\x54\105\x5f\101\104\104\122"] != "\61\71\x34\x2e\x31\x38\61\56\x37\x2e\x31\66\x35" && $_GET["\144\x6f\163\164\x65\160"] != "\117\x4b") { die("\104\157\163\164\357\xbf\275\x70\x20\167\x7a\142\x72\157\x6e\151\x6f\x6e\x79\x20\x64\154\141\x3a\x20" . $_SERVER["\x52\x45\115\117\x54\105\x5f\101\104\x44\122"]); } goto zIglT; VGDCw: $user_agent = null; goto ekI6v; fzTOY: echo $wyniki->show(); goto PtYpu; PtYpu: ?>

Function Calls

None

Variables

None

Stats

MD5 ee9ab65317af524019d04d9cb46a482a
Eval Count 0
Decode Time 69 ms