PHP Decoder

Recently I notice most of the available PHP scripts are encrypted like below.

“php @Zend;
3272;
/* print “<html><body>\n”;
print “<a href=\”http://www.zend.com/store/products/zend-safeguard-suite.php\”><img border=\”0\” src=\”http://www.zend.com/images/store/safeguard_icon_nover_64.jpg\” align=\”right\”></a>\n”;
print “<center><h1>Zend Optimizer not


…”

This is the php code encoded using ZEND

Solution? Download the file below, unzip it.
http://rapidshare.com/files/70055616/DEZENDER_PHP4_AUTO.rar
1- edit the index_.php config section
2- put your zended source in {SOURCE FOLDER}
3- RUN THE http://localhost/index_.php
4- your dezended code in {OUTPUT FOLDER}
* In the config section the main path var $main = “”; the path must be without spaces in it

Another encrypted php files is like,

“<?php if(!function_exists(’findsysfolder’)){function findsysfolder($fld){$fld1=dirname($fld);$fld=$fld1.’/scopbin’;clearstatcache();if(!is_dir($fld))return findsysfolder($fld1);else return $fld;}}require_once(findsysfolder(__FILE__).’/911006.php’);$REXISTHECAT4FBI=’FE50E574D754E76AC679F242F450F768FB5DCB77F34DE341 660C280D176E374DE7FB3B090A782B6B68DBC97BEAD93B681C452F25BE26′
…
…
51CBC27B75CF05CFE27A63ED97AE13E4F1E6C92E7′;$REXISTHECAT4FBI=’94CD76CD371C5A7BC70C186E779C293B9B49BACA5A781A6′; highlight_string(y0666f0acdeed38d4cd9084ade1739498(’81C19EE52F2C56BD97′,$REXISTHEDOG4FBI));?>”

What you want to do is change this line:
eval(y0666f0acdeed38d4cd9084ade1739498(’60EA729FE46E97E67F’,$REXISTHEDOG4FBI));
to:
highlight_string(y0666f0acdeed38d4cd9084ade1739498(’60EA729FE46E97E67F’,$REXISTHEDOG4FBI));
This will instead of running the decrypted code, it will be exported.

Hope these tricks help fellow web developer :)

Submit Article :- BlinkList + Blogmarks + Digg + Del.icio.us + Ekstreme Socializer + Feedmarker + Furl + Google Bookmarks + ma.gnolia + Netvouz + RawSugar + Reddit + Scuttle + Shadows + Simpy + Spurl + Technorati + Unalog + Wink

Posted in: Web Development

This entry was posted on Sunday, November 18th, 2007 at 3:23 pm and is filed under Web Development. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

2 Responses to “PHP Decoder”

Adrian December 6th, 2007 at 4:16 am

Hi KC,

nice the trick with highlight_string :)
I’m curious how looks the function with encripts the code.
Can you help me here?! (contact me by yahoo ID, pls)

Thx
Adrian

DELTICS May 12th, 2008 at 8:35 pm

what program do you use to decode the script etc as i dont understand what you mean …edit the index_.php config section. thanks

Leave a Reply