Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php if (!function_exists('sg_load')) { $__v = phpversion(); $__x = explode('...

Decoded Output download

SourceGuardian The script appears to be encrypted by the SourceGuardian. Currently UnPHP can't decrypt files that require a module installed on the webserver. 
<?php 
if (!function_exists('sg_load')) { 
    $__v = phpversion(); 
    $__x = explode('.', $__v); 
    $__v2 = $__x[0] . '.' . (int)$__x[1]; 
    $__u = strtolower(substr(php_uname(), 0, 3)); 
    $__ts = (@constant('PHP_ZTS') || @constant('ZEND_THREAD_SAFE') ? 'ts' : ''); 
    $__f = $__f0 = 'ixed.' . $__v2 . $__ts . '.' . $__u; // ixed.8.1.lin 
    $__ff = $__ff0 = 'ixed.' . $__v2 . '.' . (int)$__x[2] . $__ts . '.' . $__u; // ixed.8.1.2.lin 
    $__ed = @ini_get('extension_dir'); 
    $__e = $__e0 = @realpath($__ed); 
    $__dl = function_exists('dl') && function_exists('file_exists') && @ini_get('enable_dl') && !@ini_get('safe_mode'); 
    if ($__dl && $__e && version_compare($__v, '5.2.5', '<') && function_exists('getcwd') && function_exists('dirname')) { 
        $__d = $__d0 = getcwd(); 
        if (@$__d[1] == ':') { 
            $__d = str_replace('\', '/', substr($__d, 2)); 
            $__e = str_replace('\', '/', substr($__e, 2)); 
        } 
        $__e .= ($__h = str_repeat('/..', substr_count($__e, '/'))); 
        $__f = '/ixed/' . $__f0; 
        $__ff = '/ixed/' . $__ff0; 
        while (!file_exists($__e . $__d . $__ff) && !file_exists($__e . $__d . $__f) && strlen($__d) > 1) { 
            $__d = dirname($__d); 
        } 
        if (file_exists($__e . $__d . $__ff)) dl($__h . $__d . $__ff); 
        else if (file_exists($__e . $__d . $__f)) dl($__h . $__d . $__f); 
    } 
    if (!function_exists('sg_load') && $__dl && $__e0) { 
 
        if (file_exists($__e0 . '/' . $__ff0)) dl($__ff0); 
        else if (file_exists($__e0 . '/' . $__f0)) dl($__f0); 
    } 
 
    if (!function_exists('sg_load')) { 
 
        $__ixedurl = 'https://www.sourceguardian.com/loaders/download.php?php_v=' . urlencode($__v) . '&php_ts=' . ($__ts ? '1' : '0') . '&php_is=' . @constant('PHP_INT_SIZE') . '&os_s=' . urlencode(php_uname('s')) . '&os_r=' . urlencode(php_uname('r')) . '&os_m=' . urlencode(php_uname('m')); 
        $__sapi = php_sapi_name(); 
        if (!$__e0) $__e0 = $__ed; 
        if (function_exists('php_ini_loaded_file')) $__ini = php_ini_loaded_file(); 
        else $__ini = 'php.ini'; 
        if ((substr($__sapi, 0, 3) == 'cgi') || ($__sapi == 'cli') || ($__sapi == 'embed')) { 
            $__msg = "
PHP script '" . __FILE__ . "' is protected by SourceGuardian and requires a SourceGuardian loader '" . $__f0 . "' to be installed.

1) Download the required loader '" . $__f0 . "' from the SourceGuardian site: " . $__ixedurl . "
2) Install the loader to "; 
            if (isset($__d0)) { 
                $__msg .= $__d0 . DIRECTORY_SEPARATOR . 'ixed'; 
            } else { 
                $__msg .= $__e0; 
                if (!$__dl) { 
                    $__msg .= "
3) Edit " . $__ini . " and add 'extension=" . $__f0 . "' directive"; 
                } 
            } 
            $__msg .= "

"; 
        } else { 
            $__msg = "<html><body>PHP script '" . __FILE__ . "' is protected by <a href=\"https://www.sourceguardian.com/\">SourceGuardian</a> and requires a SourceGuardian loader '" . $__f0 . "' to be installed.<br><br>1) <a href=\"" . $__ixedurl . "\" target=\"_blank\">Click here</a> to download the required '" . $__f0 . "' loader from the SourceGuardian site<br>2) Install the loader to "; 
            if (isset($__d0)) { 
                $__msg .= $__d0 . DIRECTORY_SEPARATOR . 'ixed'; 
            } else { 
                $__msg .= $__e0; 
                if (!$__dl) { 
                    $__msg .= "<br>3) Edit " . $__ini . " and add 'extension=" . $__f0 . "' directive<br>4) Restart the web server"; 
                } 
            } 
            $__msg .= "</body></html>"; 
        } 
        die($__msg); 
        exit(); 
    } 
} 
return sg_load('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'); 
 ?>

Did this file decode correctly?

Original Code

<?php
if (!function_exists('sg_load')) {
    $__v = phpversion();
    $__x = explode('.', $__v);
    $__v2 = $__x[0] . '.' . (int)$__x[1];
    $__u = strtolower(substr(php_uname(), 0, 3));
    $__ts = (@constant('PHP_ZTS') || @constant('ZEND_THREAD_SAFE') ? 'ts' : '');
    $__f = $__f0 = 'ixed.' . $__v2 . $__ts . '.' . $__u; // ixed.8.1.lin
    $__ff = $__ff0 = 'ixed.' . $__v2 . '.' . (int)$__x[2] . $__ts . '.' . $__u; // ixed.8.1.2.lin
    $__ed = @ini_get('extension_dir');
    $__e = $__e0 = @realpath($__ed);
    $__dl = function_exists('dl') && function_exists('file_exists') && @ini_get('enable_dl') && !@ini_get('safe_mode');
    if ($__dl && $__e && version_compare($__v, '5.2.5', '<') && function_exists('getcwd') && function_exists('dirname')) {
        $__d = $__d0 = getcwd();
        if (@$__d[1] == ':') {
            $__d = str_replace('\\', '/', substr($__d, 2));
            $__e = str_replace('\\', '/', substr($__e, 2));
        }
        $__e .= ($__h = str_repeat('/..', substr_count($__e, '/')));
        $__f = '/ixed/' . $__f0;
        $__ff = '/ixed/' . $__ff0;
        while (!file_exists($__e . $__d . $__ff) && !file_exists($__e . $__d . $__f) && strlen($__d) > 1) {
            $__d = dirname($__d);
        }
        if (file_exists($__e . $__d . $__ff)) dl($__h . $__d . $__ff);
        else if (file_exists($__e . $__d . $__f)) dl($__h . $__d . $__f);
    }
    if (!function_exists('sg_load') && $__dl && $__e0) {

        if (file_exists($__e0 . '/' . $__ff0)) dl($__ff0);
        else if (file_exists($__e0 . '/' . $__f0)) dl($__f0);
    }

    if (!function_exists('sg_load')) {

        $__ixedurl = 'https://www.sourceguardian.com/loaders/download.php?php_v=' . urlencode($__v) . '&php_ts=' . ($__ts ? '1' : '0') . '&php_is=' . @constant('PHP_INT_SIZE') . '&os_s=' . urlencode(php_uname('s')) . '&os_r=' . urlencode(php_uname('r')) . '&os_m=' . urlencode(php_uname('m'));
        $__sapi = php_sapi_name();
        if (!$__e0) $__e0 = $__ed;
        if (function_exists('php_ini_loaded_file')) $__ini = php_ini_loaded_file();
        else $__ini = 'php.ini';
        if ((substr($__sapi, 0, 3) == 'cgi') || ($__sapi == 'cli') || ($__sapi == 'embed')) {
            $__msg = "\nPHP script '" . __FILE__ . "' is protected by SourceGuardian and requires a SourceGuardian loader '" . $__f0 . "' to be installed.\n\n1) Download the required loader '" . $__f0 . "' from the SourceGuardian site: " . $__ixedurl . "\n2) Install the loader to ";
            if (isset($__d0)) {
                $__msg .= $__d0 . DIRECTORY_SEPARATOR . 'ixed';
            } else {
                $__msg .= $__e0;
                if (!$__dl) {
                    $__msg .= "\n3) Edit " . $__ini . " and add 'extension=" . $__f0 . "' directive";
                }
            }
            $__msg .= "\n\n";
        } else {
            $__msg = "<html><body>PHP script '" . __FILE__ . "' is protected by <a href=\"https://www.sourceguardian.com/\">SourceGuardian</a> and requires a SourceGuardian loader '" . $__f0 . "' to be installed.<br><br>1) <a href=\"" . $__ixedurl . "\" target=\"_blank\">Click here</a> to download the required '" . $__f0 . "' loader from the SourceGuardian site<br>2) Install the loader to ";
            if (isset($__d0)) {
                $__msg .= $__d0 . DIRECTORY_SEPARATOR . 'ixed';
            } else {
                $__msg .= $__e0;
                if (!$__dl) {
                    $__msg .= "<br>3) Edit " . $__ini . " and add 'extension=" . $__f0 . "' directive<br>4) Restart the web server";
                }
            }
            $__msg .= "</body></html>";
        }
        die($__msg);
        exit();
    }
}
return sg_load('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');

Function Calls

explode 1
phpversion 1
function_exists 1

Variables

$__v 4.1.1
$__x [{'key': None, 'value': '4'}, {'key': None, 'value': '1'}, {'key': None, 'value': '1'}]

Stats

MD5 fdb54abcee2164737479ac5afa4c5b13
Eval Count 0
Decode Time 113 ms