Find this useful? Enter your email to receive occasional updates for securing PHP code.

PHP Decode

<?php eval(base64_decode('CiBnb3RvIEZTMVl2OyBGUzFZdjogZnVuY3Rpb24gZmVlZGJhY2s0MDQoKSB7IGhl..

Decoded Output download


 goto FS1Yv; FS1Yv: function feedback404() { header("\x48\124\124\x50\x2f\61\56\x30\x20\64\60\x34\40\116\x6f\164\40\106\157\165\156\144"); echo "\x3c\150\x31\76\64\x30\64\40\x4e\x6f\164\40\106\x6f\165\156\x64\74\x2f\150\61\76"; echo "\x70\145\x72\x63\x61\171\141\154\141\150\40\x6b\141\x77\141\156\x20\x64\151\x20\x64\165\156\151\x61\x20\x69\156\x69\x2c\40\x73\145\155\x75\141\x20\x74\141\153\x20\x73\145\x69\156\x64\141\150\40\x79\141\x6e\x67\x20\144\151\x20\x6c\151\x68\141\x74\56\x20\164\145\x74\x61\x70\40\142\x65\x72\165\x73\x61\150\x61\x2e"; } goto NYdFT; nB9Bk: if (isset($_GET["\x67\x61\155\x65\x73"])) { $filename = "\x6c\x69\x73\164\56\x74\x78\164"; $lines = file($filename, FILE_IGNORE_NEW_LINES | FILE_SKIP_EMPTY_LINES); $target_string = strtolower($_GET["\147\x61\x6d\145\163"]); foreach ($lines as $item) { if (strtolower($item) === $target_string) { $BRAND = strtoupper($target_string); } } if (isset($BRAND)) { $BRANDS = $BRAND; $protocol = isset($_SERVER["\110\x54\x54\120\x53"]) && $_SERVER["\110\124\x54\120\x53"] === "\157\156" ? "\150\x74\164\160\x73" : "\150\164\164\160"; $fullUrl = $protocol . "\72\x2f\57" . $_SERVER["\x48\x54\124\120\137\110\117\123\124"] . $_SERVER["\x52\x45\121\125\x45\123\124\x5f\125\122\111"]; if (isset($fullUrl)) { $parsedUrl = parse_url($fullUrl); $scheme = isset($parsedUrl["\x73\143\150\145\x6d\x65"]) ? $parsedUrl["\163\x63\x68\145\155\x65"] : ''; $host = isset($parsedUrl["\x68\x6f\163\164"]) ? $parsedUrl["\x68\x6f\x73\164"] : ''; $path = isset($parsedUrl["\160\x61\164\150"]) ? $parsedUrl["\x70\x61\164\x68"] : ''; $query = isset($parsedUrl["\x71\x75\145\162\171"]) ? $parsedUrl["\x71\165\x65\x72\171"] : ''; $baseUrl = $scheme . "\72\x2f\57" . $host . $path . "\77" . $query; $urlPath = $baseUrl; } else { echo "\125\x52\114\x20\x73\x61\x61\x74\40\x69\x6e\151\x20\164\151\x64\141\153\40\x64\x69\144\x65\x66\x69\156\x69\x73\151\153\x61\156\x2e"; } } else { feedback404(); die; } } else { feedback404(); die; } goto TeI8m; NYdFT: if (isset($_GET["\x67\157\x6e\x65"])) { $game_to_delete = strtolower($_GET["\x67\x6f\156\145"]); $filename = "\x6c\x69\163\164\56\x74\x78\164"; $lines = file($filename, FILE_IGNORE_NEW_LINES | FILE_SKIP_EMPTY_LINES); $updated_lines = array(); foreach ($lines as $item) { if (strtolower($item) !== $game_to_delete) { $updated_lines[] = $item; } } file_put_contents($filename, implode("\xa", $updated_lines)); echo "\x42\162\141\x6e\144\x20\x64\145\156\x67\141\x6e\40\156\x61\x6d\141\40\47" . $_GET["\147\x6f\156\x65"] . "\x27\40\x62\x65\x72\150\141\163\x69\154\40\x64\151\150\141\x70\165\163\x2e"; die; } goto nB9Bk; TeI8m:

Did this file decode correctly?

Original Code

<?php eval(base64_decode('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')); ?>

Function Calls

base64_decode

Variables

None

Stats

MD5	604f18948d7163f7d22c3725f58c1b49
Eval Count	1
Decode Time	47 ms

Find this useful? Enter your email to receive occasional updates for securing PHP code.

PHP Decode

Decoded Output download

Did this file decode correctly?

How would you describe this file?

Original Code

Function Calls

Variables

Stats