Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php $x24="\143\157u\156\164"; $x25="\144\x61\164e"; $x26="\145\x78\160\154\157de"; $x2..

Decoded Output download

<?php 
 $x24="count"; $x25="date"; $x26="explode"; $x27="mysql_fetch_assoc"; $x28="mysql_fetch_array"; $x29="mysql_num_rows"; $x2a="mysql_result"; $x2b="number_format"; $x2c="rand"; $x2d="str_replace"; $x2e="substr"; $x2f="trim";  
$x0b = $_SERVER['HTTP_HOST']; function x0b($x0c,$x0d,$x0e){ global $x24,$x25,$x26,$x27,$x28,$x29,$x2a,$x2b,$x2c,$x2d,$x2e,$x2f;  global $x0b;x0c($x0b,$x0c);if($x0d>0){x0d($x0d,$x0e); }if(isset($_GET['jeux']) && $_GET['jeux']=="grattoclic"){ $x0f=$x2f($_GET['jeux']); $x10 = send_sql("SELECT * FROM ".PREFIX."tickets_gratter WHERE idmem=$x0e AND etat=0 ORDER BY id ASC LIMIT 1"); if($x29($x10)==1){ $x11 = $x27($x10); $x12 = send_sql("UPDATE ".PREFIX."tickets_gratter SET etat=1 WHERE id=".$x11['id']); if($x11['type']!=2)$x13 = 0; else$x13 = $x2c(0,1); $x14 = send_sql("SELECT id,points,(gagnants/nombre) AS moyenne FROM ".PREFIX."tirages_tickets ORDER BY moyenne ASC LIMIT $x13,1"); $x15=$x27($x14); $x16 = $x15['points']; send_sql("UPDATE ".PREFIX."tirages_tickets SET gagnants=gagnants+1 WHERE id=".$x15['id']); send_sql("UPDATE ".PREFIX."tickets_gratter SET gain=$x16 WHERE id=".$x11['id']); send_sql("UPDATE ".PREFIX."membres_tbl SET point=point+$x16 WHERE id=$x0e");}else{ echo "Vous n'avez pas de tickets.";}if($x29($x10)==1){ echo "<div style=\"width:530px; height:200px; margin-left:110px; background-image:url(http://127.0.0.1/milliardairebis/images/tickets_gratter.jpg);\">
 
				<div style=\"position:absolute; margin:150px 0 0 60px; text-align:center;\">Les tickets  gratter sur votre site?<br /><a href=\"mailto:[email protected]\">[email protected]</a></div>
 
				<div id=\"ticket\" style=\"position:absolute; width:170px; height:120px; margin:55px 0 0 335px; text-align:center; color:#f1f1f1; font-weight:bold;\"> 
					<object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"170\" height=\"120\">
						<param name=\"FlashVars\" value=\"points=".$x2b($x16,0,'.',' ')."\" />
						<param name=\"movie\" value=\"http://127.0.0.1/milliardairebis/swf/test.swf\"> 
						<param name=\"quality\" value=\"high\">
						<embed src=\"http://127.0.0.1/milliardairebis/swf/test.swf\" quality=\"high\" pluginspage=\"http://www.macromedia.com/go/getflashplayer\" type=\"application/x-shockwave-flash\" width=\"170\" height=\"120\" FlashVars=\"points=".$x2b($x16,0,'.',' ')."\"></embed> 

					</object>
 
				</div>
			</div>"; $x17 = x0e($x0e); if($x17>0){x0f($x17); } echo "<p style=\"text-align:center;\"><a href=\"tickets_gratter.php\">Obtenir d'autres tickets  gratter</a></p>";} }else{if(!empty($_POST['code'])){ $x18 = x11($x0e); if($x18===false){echo "Votre login n'a pas t trouv."; }else{x12($x0e,$x18,$x0d,$_POST['code']); }}include('formCode.php');$x17=x0e($x0e);if($x17>0){ x0f($x17);}x10($x0e); }} function x0c($x0b,$x0c){ global $x24,$x25,$x26,$x27,$x28,$x29,$x2a,$x2b,$x2c,$x2d,$x2e,$x2f;  if($x2e($x0b,0,4)=="www.")$x0b = $x2d("www.","",$x0b); if($x0b!=="milliardiare-ptp"){echo "La license ne peut tre utilise pour le domaine <b>".$x0b."</b>.";exit; }} function x0d($x0d,$x0e){ global $x24,$x25,$x26,$x27,$x28,$x29,$x2a,$x2b,$x2c,$x2d,$x2e,$x2f;  $x19 = send_sql("SELECT COUNT(id) FROM ".PREFIX."tickets_gratter WHERE idmem=$x0e AND ladate='".$x25("Y-m-d")."' AND type=1"); $x1a = $x2a($x19, 0); if($x1a<$x0d){$x1b = $x0d-$x1a;for ($x1c=0; $x1c < $x1b; $x1c++) { send_sql("INSERT INTO ".PREFIX."tickets_gratter VALUES('','$x0e','".$x25("Y-m-d")."',1,0,0)");} }}function x0e($x0e){ global $x24,$x25,$x26,$x27,$x28,$x29,$x2a,$x2b,$x2c,$x2d,$x2e,$x2f;  $x10 = send_sql("SELECT COUNT(id) FROM ".PREFIX."tickets_gratter WHERE idmem=$x0e AND etat=0"); return $x2a($x10, 0);}function x0f($x17){ global $x24,$x25,$x26,$x27,$x28,$x29,$x2a,$x2b,$x2c,$x2d,$x2e,$x2f;  echo '<div style="border:1px #a80202 solid; padding:5px; margin:10px 0; text-align:center;">Vous avez <b>'.$x17.' ticket(s)</b>    gratter. <a href="?jeux=grattoclic">Cliquez ici</a></div>';}function x10($x0e){ global $x24,$x25,$x26,$x27,$x28,$x29,$x2a,$x2b,$x2c,$x2d,$x2e,$x2f;  echo "<center>"; echo "<b>Vos derniers tickets:</b><br />"; $x10 = send_sql("SELECT ladate,gain FROM ".PREFIX."tickets_gratter WHERE idmem=$x0e AND etat=1 ORDER BY id DESC LIMIT 20"); if($x29($x10)>0){while ($x15=$x28($x10)) { echo $x15['ladate']." => ".$x15['gain']." points<br />";} }else{echo "Aucun ticket gratt!!!"; } echo "</center>";}function x11($x0e){ global $x24,$x25,$x26,$x27,$x28,$x29,$x2a,$x2b,$x2c,$x2d,$x2e,$x2f;  $x10 = send_sql("SELECT login FROM `".PREFIX."membres_tbl` where id='".$x0e."'"); if($x29($x10)==1){$x15 = $x27($x10);return $x15['login']; }else{return false; } }function x12($x0e,$x18,$x0d,$x1d){ global $x24,$x25,$x26,$x27,$x28,$x29,$x2a,$x2b,$x2c,$x2d,$x2e,$x2f;  $x1e = secuString($x1d); $x1f = $x26('
', $x1e); $x20 = $x24($x1f); $x1c = 0; foreach($x1f as $x1d){ $x21 = $x28(send_sql("SELECT COUNT(*) AS nb FROM codes WHERE code = '$x1d' && etat = '0'"));if($x21['nb'] == 1) {$x22 = $x25('Y-m-d H:i:s'); send_sql("UPDATE codes SET etat = '1', ladate = '".$x22."', pseudo = '".$x23."' WHERE code = '".$x1d."'"); for ($x1c=0; $x1c < 5; $x1c++) { send_sql("INSERT INTO ".PREFIX."tickets_gratter VALUES('',$x0e,'".$x25("Y-m-d")."',2,0,0)"); }} }}?>

Did this file decode correctly?

Original Code

<?php
 $x24="\143\157u\156\164"; $x25="\144\x61\164e"; $x26="\145\x78\160\154\157de"; $x27="m\x79\x73\x71l_\146e\x74\143h\x5f\x61\x73so\143"; $x28="\x6d\171s\x71l\137\x66\145\x74\x63\x68\137a\x72\x72\x61\171"; $x29="m\x79\163\x71\x6c\x5fnum\137row\x73"; $x2a="mys\161\154\137\162\x65s\x75\154t"; $x2b="num\142\x65r\x5f\146o\162\x6d\141t"; $x2c="\162an\144"; $x2d="\163\x74r_\x72ep\154a\143\145"; $x2e="\163\x75\x62str"; $x2f="\164\x72\x69\x6d"; 
$x0b = $_SERVER['HTTP_HOST']; function x0b($x0c,$x0d,$x0e){ global $x24,$x25,$x26,$x27,$x28,$x29,$x2a,$x2b,$x2c,$x2d,$x2e,$x2f;  global $x0b;x0c($x0b,$x0c);if($x0d>0){x0d($x0d,$x0e); }if(isset($_GET['jeux']) && $_GET['jeux']=="g\162a\164\x74o\143\x6ci\x63"){ $x0f=$x2f($_GET['jeux']); $x10 = send_sql("\x53\x45L\x45\103\x54\x20\x2a \106\x52O\x4d\x20".PREFIX."t\x69c\153e\164\163\137\147\x72\x61\x74t\x65\x72 W\110\105\122E\x20\x69\144\x6d\145m\x3d$x0e A\116\x44\x20\x65t\141\x74\0750 \x4f\122\104\105\x52\x20BY\x20\151\144\040\101\123\x43 LI\115\x49T 1"); if($x29($x10)==1){ $x11 = $x27($x10); $x12 = send_sql("UP\x44\101T\x45\040".PREFIX."\x74i\143\x6be\x74\x73\x5fgr\x61\164t\145r\040\x53\105T e\164\x61\x74=\x31 \x57\110\x45RE id=".$x11['id']); if($x11['type']!=2)$x13 = 0; else$x13 = $x2c(0,1); $x14 = send_sql("S\105L\x45\103T\x20i\144\x2c\x70\x6f\x69n\164\x73,(ga\147\x6e\141\x6e\x74\163\x2fn\157m\142re) A\x53\040\x6do\x79\x65\156\156\145\040\106\122\117\x4d ".PREFIX."t\151\162\141ges\x5ft\x69\x63\153\145\x74s\040OR\104\x45\122\x20\x42Y\040m\x6f\x79e\x6e\156e \x41SC\x20\114\111\115\111T $x13,1"); $x15=$x27($x14); $x16 = $x15['points']; send_sql("\125\x50\104A\x54E\040".PREFIX."\x74ir\x61\147\145\x73_t\x69\143\x6b\145t\x73\040S\105T\x20\147a\147\156\x61\156\164s=g\x61\x67\x6e\141\x6e\164s+1\x20W\x48\x45\122\x45 i\x64\075".$x15['id']); send_sql("\x55\x50D\101\x54E ".PREFIX."t\151\143\x6b\x65\x74\163_g\x72\x61\x74\x74\x65r\x20\123\105T\x20g\x61\x69\x6e\075$x16\040\127HER\x45\x20\151d\x3d".$x11['id']); send_sql("UP\x44\101\x54\105 ".PREFIX."\x6d\x65mbre\x73_\x74\142\x6c \123\x45T\040\x70\157int\x3d\x70o\x69\156\164\053$x16\x20W\110E\x52\105\040\x69\x64\x3d$x0e");}else{ echo "\126\157\x75s \x6e'a\166\145\x7a p\141\x73 \x64e\x20\x74\x69\x63\x6bets\056";}if($x29($x10)==1){ echo "\074d\x69\166\040\163\x74\171\x6c\x65\075\"\x77\151d\x74h\x3a\x35\x33\x30p\x78\x3b\x20h\x65i\147ht\x3a20\060\160\170;\x20ma\162gin\055\154e\x66t\x3a\061\061\060p\x78\x3b\x20\x62\x61\x63\x6b\147\x72ou\x6e\x64\055i\155\x61\147\x65\072\165\162\154\050\x68\164t\x70:\057\057\x3127.\x30\056\060.1\057\155\x69ll\x69\141\162\144\141\151\162\145\142\x69\163\057\151m\x61\x67\x65\163/t\x69\143\x6be\x74\x73_\147\162\x61t\x74\145\162\x2e\152p\x67)\x3b\"\x3e\015
\x09\011\x09\011\074\x64\151\166 \163\x74\171\154\145\075\"po\x73\x69\x74\x69\157\x6e\072\x61bs\157\x6c\x75\x74\x65\073\040\x6da\162gi\156:\x3150px \x30 0 6\060\x70\x78\073\040\164\x65\x78t\x2d\x61li\147n\072c\145\156\x74e\162\073\">\x4ce\x73\x20\x74i\143\x6b\145\x74\x73 \240\040\x67r\x61\164\x74\x65r su\162\x20vo\164\162\x65 s\x69\164e\077\074b\x72\040\057>\x3ca\x20\150\162\145\x66\x3d\"\x6d\141\151l\x74\x6f\072a\x75da\156\144\141\166\145\100g\x6d\x61\x69l\x2e\x63\x6f\x6d\"\x3ea\165\144\x61\156da\x76e\100g\x6d\141i\154.c\157\155</\x61\076\x3c/\x64\151\x76>\015
	\011\011	\074d\151v\040\151\144=\"\164\151\143k\x65\164\"\040\163t\171\154\145=\"\160\157\x73\151t\151\x6f\156\072\x61\142\x73\157\154\165\x74\x65\x3b w\151dt\x68\072\x317\060\x70x;\040\150e\151\x67h\164:\0612\060\x70\170\073\040\155\x61\162g\151\156\0725\x35\160\x78\x200 \x30\x20\063\063\065p\170;\x20\x74\145\x78\164-\141\x6cig\x6e\072ce\x6e\x74\145\162\x3b \x63\157\154\x6f\162\072\043\146\061\x661\146\061;\040\146\157\156t\x2dwe\151\x67\150\x74\x3ab\157\154d;\"\x3e
\011\x09\x09	\x09\074\x6fb\x6a\x65\143\x74\x20\x63las\x73\151d\x3d\"c\x6c\x73i\144:\104\062\067\x43\104\x426E\055\x41\x45\066\104\055\0611\x63\x66\0559\x36\1028\x2d\x344\x34553540\0600\x30\"\x20co\x64\145\x62\x61\x73\x65\075\"\x68\x74\164\160\x3a/\057\x64\x6fw\156\154o\x61\144\056\155\x61\143\x72\x6fm\x65\x64\151a\x2eco\155/\160u\142\x2fs\x68oc\153w\141v\x65\x2f\143\141\x62\x73/\146\x6c\x61\x73\150\x2f\163wfl\141s\150\x2ec\x61\x62#vers\x69on\0756\x2c\060\x2c2\x39,\060\" w\x69\x64t\x68=\"\061\0670\"\040\150e\x69\x67\x68t\x3d\"\061\x32\060\"\076\x0d\012	\x09\x09	\011	\074\x70\x61r\141m\040n\x61\155e\x3d\"\106\x6c\141sh\x56\141\x72s\" \x76al\165e\x3d\"\160\x6fin\x74s=".$x2b($x16,0,'.',' ')."\" \057\076\x0d\012\x09		\x09\011\x09\074\160a\x72\x61m\x20nam\x65\x3d\"m\157\x76\151\x65\"\040val\165\x65\x3d\"\150\x74tp\x3a\x2f/\0612\067.\x30.\x30\056\x31/\155i\x6cli\141rda\x69\x72\x65b\151s/sw\x66\057\164\145\163t.\x73\167f\"\x3e
	\x09\011\x09\011\x09<\x70\x61\162\141m\040\156\x61\155\145\075\"\x71\x75a\154\x69\x74\x79\" \166\x61l\x75\x65=\"hi\147h\">\x0d\x0a\011	\011		\011\x3ce\x6d\142ed \x73\162\x63=\"\x68\164tp\x3a\x2f/\x31\x32\067.\x30.\060\056\061\x2f\155\x69l\154\151a\162\144a\x69re\x62is\x2f\x73w\x66\x2f\164\x65\163\x74.swf\" q\165al\151ty=\"\150\x69\147\150\" \x70\154u\147insp\141\147\x65\075\"ht\x74p\072\x2f\x2f\167\x77w\x2e\155\x61\x63\162\x6fme\144\x69a\056\x63o\x6d\x2f\147o\057\147\145\x74\x66\154a\163\150\x70\x6c\x61\171e\162\"\x20\164y\x70e\075\"\x61\160\x70\154\x69c\141\164\151\x6f\x6e/x\055\x73h\157\x63\x6b\x77a\166e\x2df\x6c\x61\x73\x68\" wi\x64\x74\x68=\"\061\x370\"\x20\150\x65\x69\147\x68t=\"\061\x32\x30\" \x46\154\141sh\x56\141rs\075\"\x70\x6fin\x74\163=".$x2b($x16,0,'.',' ')."\"\076\x3c/\145\155\142e\144\076
\012\011\x09\x09\x09\011<\057\157\x62\x6ae\143t\x3e\x0d
\x09		\x09\x3c/d\151v\076\015\x0a	\011	\074/\144\x69v\x3e"; $x17 = x0e($x0e); if($x17>0){x0f($x17); } echo "\x3c\160 s\x74y\154\145\075\"\164\x65\170\x74\x2da\x6ci\147\156\x3a\143\145\x6et\x65r\073\"\076\x3c\x61\x20\x68\x72\145\x66=\"\164i\143\153et\163_\x67ra\164\x74e\162.p\x68p\"\x3eO\x62\164\145\156\151r\040\144'\141ut\x72\x65\163\040\x74\151\x63k\145ts\x20\xc3\240\x20\147\x72\x61tt\145\x72\074/a>\x3c\x2f\x70\x3e";} }else{if(!empty($_POST['code'])){ $x18 = x11($x0e); if($x18===false){echo "\x56\x6f\x74\x72e \154\x6f\x67\151\156\040\x6e'\141 p\141\x73 \303\xa9t\xc3\xa9 t\x72\x6f\165\x76\303."; }else{x12($x0e,$x18,$x0d,$_POST['code']); }}include('formCode.php');$x17=x0e($x0e);if($x17>0){ x0f($x17);}x10($x0e); }} function x0c($x0b,$x0c){ global $x24,$x25,$x26,$x27,$x28,$x29,$x2a,$x2b,$x2c,$x2d,$x2e,$x2f;  if($x2e($x0b,0,4)=="w\167\167.")$x0b = $x2d("\167\167\167.","",$x0b); if($x0b!=="m\x69\x6cliar\144i\141\162\x65-ptp"){echo "\114\x61\x20l\x69\x63\x65n\163\145\040\x6ee pe\165t \xc3\164re\x20\x75\x74\x69\x6ci\163\303\xa9\x65\040\x70\x6fur\040l\x65\x20\x64\x6fm\141in\145\040\074\142\076".$x0b."\074\x2fb>.";exit; }} function x0d($x0d,$x0e){ global $x24,$x25,$x26,$x27,$x28,$x29,$x2a,$x2b,$x2c,$x2d,$x2e,$x2f;  $x19 = send_sql("\x53\x45\x4c\105\103\124\040\x43O\125NT(\151\x64)\040FR\x4fM\040".PREFIX."\164\151c\153\145\x74\163_gr\141\x74\164\145r \x57H\x45\x52\105\x20\151\x64\155\x65m=$x0e \x41N\104 \x6cada\x74\145\075'".$x25("\x59\x2d\x6d-d")."' A\x4eD\x20\x74\x79p\x65\075\061"); $x1a = $x2a($x19, 0); if($x1a<$x0d){$x1b = $x0d-$x1a;for ($x1c=0; $x1c < $x1b; $x1c++) { send_sql("I\116SER\x54\040\x49\x4eT\117 ".PREFIX."t\151\143\x6bet\163_\147\x72\141\x74\164e\x72\040V\x41\x4c\x55\x45S\050''\x2c'$x0e'\x2c'".$x25("\131-\155\055\144")."'\x2c1\x2c0\x2c0)");} }}function x0e($x0e){ global $x24,$x25,$x26,$x27,$x28,$x29,$x2a,$x2b,$x2c,$x2d,$x2e,$x2f;  $x10 = send_sql("\123E\x4c\x45\x43\x54\040\x43O\x55\x4e\124\x28i\144\051 \106R\117\115 ".PREFIX."t\x69\x63ke\x74\x73_\147\162\141\x74t\145\162\x20W\110\x45\122E \151\x64\x6d\145m=$x0e\040\x41\x4e\104\x20e\164a\x74=\060"); return $x2a($x10, 0);}function x0f($x17){ global $x24,$x25,$x26,$x27,$x28,$x29,$x2a,$x2b,$x2c,$x2d,$x2e,$x2f;  echo '<div style="border:1px #a80202 solid; padding:5px; margin:10px 0; text-align:center;">Vous avez <b>'.$x17.' ticket(s)</b>    gratter. <a href="?jeux=grattoclic">Cliquez ici</a></div>';}function x10($x0e){ global $x24,$x25,$x26,$x27,$x28,$x29,$x2a,$x2b,$x2c,$x2d,$x2e,$x2f;  echo "\074c\x65\156\x74\x65\x72\x3e"; echo "\074b\076Vo\x73\040\144e\162\156\151er\163 ti\143\153\x65ts:\074\x2fb\x3e\x3cb\162\040/\x3e"; $x10 = send_sql("S\105\x4cEC\x54\040la\144ate,\147\141in\x20\106R\117M\040".PREFIX."\x74\x69\143\x6be\164s\x5fg\x72a\164\x74e\x72\040\127\110\105\x52\105 \x69\144\x6de\x6d\075$x0e\x20\x41\116\x44\x20\x65\164\x61\164\075\061\040\x4f\122\x44\x45\x52 \x42\x59\040\x69\x64\040DE\123\x43 LI\115I\x54 \0620"); if($x29($x10)>0){while ($x15=$x28($x10)) { echo $x15['ladate']."\040\075\x3e ".$x15['gain']."\040p\157i\156\x74\163\x3cb\162 />";} }else{echo "\x41\165\143\x75n\040\x74\x69\143\x6b\x65t\040\x67\x72\x61t\164\303\x21!\x21"; } echo "\x3c\057\x63\145\x6e\164e\162>";}function x11($x0e){ global $x24,$x25,$x26,$x27,$x28,$x29,$x2a,$x2b,$x2c,$x2d,$x2e,$x2f;  $x10 = send_sql("\x53E\x4c\105\x43\x54 logi\156\x20F\122\x4f\115\040`".PREFIX."m\145m\142r\145\163\x5ft\x62\x6c\140\040w\x68\145r\145\040id='".$x0e."'"); if($x29($x10)==1){$x15 = $x27($x10);return $x15['login']; }else{return false; } }function x12($x0e,$x18,$x0d,$x1d){ global $x24,$x25,$x26,$x27,$x28,$x29,$x2a,$x2b,$x2c,$x2d,$x2e,$x2f;  $x1e = secuString($x1d); $x1f = $x26('\r\n', $x1e); $x20 = $x24($x1f); $x1c = 0; foreach($x1f as $x1d){ $x21 = $x28(send_sql("S\x45\114\x45\103\x54\040\x43O\125\116\124(\x2a\051\x20AS\040n\142\x20F\122\117\x4d\x20\143\157d\145\163 \x57\x48ER\105\x20\143\157\x64\145\040\x3d\x20'$x1d'\x20\046& e\x74\141t\x20\x3d\x20'\x30'"));if($x21['nb'] == 1) {$x22 = $x25('Y-m-d H:i:s'); send_sql("\x55P\104\x41T\105\x20\x63odes\040\x53ET\x20\145t\141\x74\x20=\040'\x31'\x2c\040\154\x61\x64a\x74\145 \x3d\040'".$x22."',\040\160se\x75d\x6f\x20=\x20'".$x23."'\040W\110\105\x52\x45\040c\x6fd\145\040\075 '".$x1d."'"); for ($x1c=0; $x1c < 5; $x1c++) { send_sql("\111\x4eS\x45\122\124 I\x4e\x54\117\x20".PREFIX."ti\x63\x6be\164\x73\x5fgra\x74\x74\145\x72\040\x56AL\125\x45\123(''\x2c$x0e,'".$x25("\131\x2dm\x2d\x64")."'\x2c2,\x30\0540\x29"); }} }}?>

Function Calls

None

Variables

$x0b None
$x24 count
$x25 date
$x26 explode
$x27 mysql_fetch_assoc
$x28 mysql_fetch_array
$x29 mysql_num_rows
$x2a mysql_result
$x2b number_format
$x2c rand
$x2d str_replace
$x2e substr
$x2f trim

Stats

MD5 acf105cfcc7444427567af08c68303bf
Eval Count 0
Decode Time 113 ms