Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php $_F=__FILE__;$_X='Pz48P3BocA0KLy8gQzJyNSBGNGw1DQovL3I1cTM0cjVfMm5jNSgkX1NFUlZFUlsnRE..

Decoded Output download

?><?php
// Core File
//require_once($_SERVER['DOCUMENT_ROOT']."/classes/reg.php");
//require_once($_SERVER['DOCUMENT_ROOT']."/classes/prreg.php");
//require_once($_SERVER['DOCUMENT_ROOT']."/classes/search.php");
function rcode()
{
$tm = time();
$tmn = substr("$tm", -8);
$rdm = rand(10, 99);
return "$rdm$tmn";
}
function createRandomPassword() {
    $chars = "abcdefghijkmnopqrstuvwxyz023456789";
    srand((double)microtime()*1000000);
    $i = 0;
    $pass = '' ;
    while ($i <= 7) {
        $num = rand() % 33;
        $tmp = substr($chars, $num, 1);
        $pass = $pass . $tmp;
        $i++;
    }
    return $pass;
}
function cleanxss($input)
{
$search = array(
'@<script[^>]*?>.*?</script>@si',   // Strip out javascript
'@<[\/\!]*?[^<>]*?>@si',            // Strip out HTML tags
'@<style[^>]*?>.*?</style>@siU',    // Strip style tags properly
'@<![\s\S]*?--[ 	

]*>@'         // Strip multi-line comments
);
$inputx = preg_replace($search, '', $input);
$inputx = trim($inputx);
if(get_magic_quotes_gpc())
{
$inputx = stripslashes($inputx);
}
  if (phpversion() >= '4.3.0')
  {
    $inputx = mysql_real_escape_string(htmlentities($inputx, ENT_QUOTES));
  }
  else
  {
    $inputx = mysql_escape_string(htmlentities($inputx, ENT_QUOTES));
  }
$badwords = array('drop','delete','insert','update','users','username','password','group_concat','union','order');
$inputx0 = $inputx;
$inputx = str_ireplace($badwords, "", $inputx);
if($inputx != $inputx0)
{
$ubr = $_SERVER['HTTP_USER_AGENT'];
$ip = $_SERVER['REMOTE_ADDR'];
$today = date("F j, Y, g:i a");
$res = mysql_query("INSERT INTO ibwf_xssblocked SET ip='".$ip."', tm='".time()."'");
$headers = 'From: [email protected]' . "
" .
    'Reply-To: [email protected]' . "
" .
    'X-Mailer: PHP/' . phpversion();
$selfurl = selfURL();
}
$inputx = preg_replace('/\s+/', ' ', $inputx);
$inputx = trim($inputx);

$stringtest = preg_replace('/\s+/', '', $inputx);
$stringcount = strlen($stringtest);
if ($stringcount == 0) {$inputx=NULL;}
if (is_int($inputx)) {
    $inputx = (int)$inputx;
}
    return $inputx;

}
function selfURL() 
{ $s = empty($_SERVER["HTTPS"]) ? '' : ($_SERVER["HTTPS"] == "on") ? "s" : ""; $protocol = strleft(strtolower($_SERVER["SERVER_PROTOCOL"]), "/").$s; $port = ($_SERVER["SERVER_PORT"] == "80") ? "" : (":".$_SERVER["SERVER_PORT"]); return $protocol."://".$_SERVER['SERVER_NAME'].$port.$_SERVER['REQUEST_URI']; } function strleft($s1, $s2) { return substr($s1, 0, strpos($s1, $s2)); 
}

/* fix domain conflict patched Wed 29 Aug,2012 10;22AM */
// base location of script (include trailing slash)
$selfurl = selfURL();
$exp = explode(".", $selfurl );
$exp1 = explode("/", $exp[2]);
define('BASE_HREF', "http://www.flashpointequipments.$exp1[0]/");
/* patching ends */

function descpn($string, $length) {
if($length<strlen($string)){
while ($string{$length} != " ") {
$length--;
}
return substr($string, 0, $length);
}else return $string;
}
function gethomecate()
{
// This function gets category on homepage for Flash Point
$results = array();
$res = "SELECT * FROM categories ORDER BY id DESC LIMIT 4";
while($result = mysql_fetch_array($res))
{
$results[] =  $result;
}
return $results;
}
function setPriority($tablename, $priority, $id)
{
		$sqlGo = "SELECT priority FROM $tablename WHERE id=$id";
		$resGo = mysql_query($sqlGo);
		$ansGo = mysql_fetch_array($resGo);
		$oldPrio = $ansGo['priority'];
		if($priority == "up")
		{
			$newPrio = $oldPrio - 1;
		}
		else
		{
			$newPrio = $oldPrio + 1;
		}
		$sqlGo1 = "SELECT id FROM $tablename WHERE priority=$newPrio";
		$resGo1 = mysql_query($sqlGo1);
		$ansGo1 = mysql_fetch_array($resGo1);
		$prioChId = $ansGo1['id'];
		$sqlUpGo = "Update $tablename SET priority=$newPrio WHERE id=$id";
		$sqlUpGo1 = "Update $tablename SET priority=$oldPrio WHERE id=$prioChId";
		mysql_query($sqlUpGo);
		mysql_query($sqlUpGo1);
}
?>

Did this file decode correctly?

Original Code

<?php $_F=__FILE__;$_X='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';eval(base64_decode('JF9YPWJhc2U2NF9kZWNvZGUoJF9YKTskX1g9c3RydHIoJF9YLCcxMjM0NTZhb3VpZScsJ2FvdWllMTIzNDU2Jyk7JF9SPWVyZWdfcmVwbGFjZSgnX19GSUxFX18nLCInIi4kX0YuIiciLCRfWCk7ZXZhbCgkX1IpOyRfUj0wOyRfWD0wOw=='));?>

Function Calls

strtr 1
ereg_replace 1
base64_decode 2

Variables

$_F index.php
$_R 0
$_X 0

Stats

MD5 347a36dc478660ce176ca1d86a0bfa10
Eval Count 2
Decode Time 65 ms