Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php /*Ali Niknam([email protected])*/$h1768956277="\142\141\163\145\66\64\x5f\144\145\1..
Decoded Output download
?>b'<?php define( \'_EXEC\', 1 ); require_once ( \'includes/system.php\' ); @$CreateBack = base64_encode($_SERVER[\'REQUEST_URI\']); @$back = base64_decode($_GET[\'back\']); if (!@$_SESSION[\'WrongPassword\']) @$_SESSION[\'WrongPassword\'] = 0; if ( @$_SESSION[\'adminid_2\'] && @$_POST[\'ReConnect\'] ) { $current_session_adminid_2 = $_SESSION[\'adminid_2\']; $current_session_myToken = $_SESSION[\'myToken\']; $current_session_id = session_id(); session_destroy(); session_id($_POST[\'ReConnect\']); session_start(); session_destroy(); session_id($current_session_id); session_start(); $_SESSION[\'adminid_2\'] = $current_session_adminid_2; $_SESSION[\'myToken\'] = $current_session_myToken; $_SESSION[\'WrongPassword\'] = 0; $arr1 = array("login_Status"=>2); @$result = $db->update($arr1, \'system_user\', \'UID=\'.$_SESSION[\'adminid_2\']); } if ( isset($_POST["mySubmit"]) && @$_POST[\'mySubmit\']==@$_SESSION[\'myToken\'] ) { if ( @$_SESSION[\'WrongPassword\']>=2 && md5(strtoupper(@$_POST[\'myCaptcha\']))!=@$_SESSION[\'myCaptcha\'] ) { @$_SESSION[\'WrongPassword\']++; $StatusMsg = \'Error\'; $Msg = \' \'; } else { if ( @$_SESSION[\'adminid_2\'] && @$_POST[\'ReConnect\'] ) $StrWhere = \' AND UID=\'.$_SESSION[\'adminid_2\']; else $StrWhere = " AND UserName=\'". $_POST[\'UserName\'] ."\' AND Pass=\'". md5($_POST[\'Pass\']) ."\'"; @$query = " SELECT UID, UserName, CONCAT_WS(\' \', FirstName, LastName) AS Name, PID, login_Status, login_Timestamp, login_IP, login_SessionID FROM system_user WHERE Status=\'1\' $StrWhere"; $result = $db->query($query); $row = $db->fetchAssoc($result); $_VisitorInfo = new VisitorInfo(); $VisitorIP = $_VisitorInfo->ShowInfo(\'IP\'); if ( @$row[\'login_Status\']==1 && (session_id()!=$row[\'login_SessionID\'] || $VisitorIP!=$row[\'login_IP\']) ) { $_SESSION[\'adminid_2\'] = $row[\'UID\']; $StatusMsg = \'Error\'; $Msg = \' <form name="frm" action="" method="post"> \'. jdate(\'Y/m/d - H:i\', $row[\'login_Timestamp\']) .\' \'. $row[\'login_IP\'] .\' . <br> \'. myForm(\'submit\', false, \'\', \'\', \'\', \'\', \'onClick="javascript:frm.submit();"\') .\' <input type="hidden" name="ReConnect" value="\'. $row[\'login_SessionID\'] .\'"> </form> \'; } else if ( @$row[\'UserName\'] ) { unset($_SESSION[\'adminid_2\']); $_SESSION[\'admin\'] = $row[\'UserName\']; $_SESSION[\'adminid\'] = $row[\'UID\']; $_SESSION[\'adminName\'] = $row[\'Name\']; $_SESSION[\'PID\'] = $row[\'PID\']; $arr1 = array("login_Status"=>1, "login_Timestamp"=>time(), "login_IP"=>$VisitorIP, "login_SessionID"=>session_id()); @$result = $db->update($arr1, \'system_user\', \'UID=\'.$_SESSION[\'adminid\']); Set_ActiveYears_Personnel(); Set_ActiveYears_Faculty(); Set_ActiveYears_Supplier(); Set_RevolvingFund(); Set_ActiveYears_Insurance(); Set_ActiveYears_FacultyEval(); Set_YearActive_Audit(); $Logger1 = new Logger($db); @$Logger1->WriteLog($_SESSION[\'adminid\'], \'NULL\', \'NULL\', \' \'); } else { @$_SESSION[\'WrongPassword\']++; $Logger1 = new Logger($db); $Logger1->WriteLog(\'NULL\', \'NULL\', \'NULL\', \' \'); $StatusMsg = \'Error\'; $Msg = \' .\'; } } } if ( @$_SESSION[\'admin\'] ) { if (@$back) header("Location: $back"); else header(\'Location: main.php?action=home\'); exit(); } else { $cont = \' <form name="frm" action="" method="post"> \'. myForm(\'text\', true, \' \', \'UserName\', \'UserName\', \'\', \'maxlength="20" dir="ltr"\') .\' \'. myForm(\'password\', true, \' \', \'Pass\', \'Pass\', \'\', \'maxlength="30" dir="ltr"\') .\' \'; if (@$_SESSION[\'WrongPassword\']>=2) $cont .= myForm(\'captcha\', true, \' \', \'myCaptcha\', \'myCaptcha\', \'\', \'\'); $cont .= \' <div class="clear"></div> \'. myForm(\'submit\', false, \'\', \'\', \'\', \' \') .\' </form> \'; $page1 = new Page(); @$cont1 = \' <div class="DivRightIndex"> <br><br> \'. $page1->AdminBox(\'\', $cont, $Msg, $StatusMsg, \'\', \'\', \'Copyright\') .\' </div> <div class="DivLeftIndex"></div> \'; $page1->DisplayAdmin(\'class="Body3 BodyIndex" onload="document.frm.UserName.focus();"\', $cont1, \'Yes\'); } ?>'
Did this file decode correctly?
Original Code
<?php /*Ali Niknam([email protected])*/$h1768956277="\142\141\163\145\66\64\x5f\144\145\143\157\144\145";eval("?>".$h1768956277("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"));return @$form; ?>
Function Calls
base64_decode | 1 |
Stats
MD5 | 0e253fb2427a23d5219646a54b9fce83 |
Eval Count | 1 |
Decode Time | 61 ms |