Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php if(!function_exists("TC9A16C47DA8EEE87")){function TC9A16C47DA8EEE87($T059EC46CFE335..
Decoded Output download
?><?php require_once('src/KerioControlApi.php'); require_once('config.php'); require_once 'class/radius.php'; $name = 'IBSng Auto'; $vendor = 'by carbon7'; $version = '1.4.0.0'; $online_usernames=array(); $all_online_users=array(); foreach ($server_ip as $skey => $server) { $server = $servers[$skey]; $server['hostname'] = $server_ip[$skey]; echo $server['hostname'].'<br>'; $api = new KerioControlApi($name, $vendor, $version); $session = $api->login($server['hostname'], $server['username'], $server['password']); $params = array( 'query' => array( 'limit' => '2000', 'start' => '0', 'orderBy' => array(array( 'columnName' => 'userName', 'direction' => 'Asc' ))), "refresh"=>true, ); $online_user = $api->sendRequest('VpnClients.get', $params); if (count($online_user)>0) { foreach ( $online_user['list'] as $key => $value) { $online_usernames[$skey][$value['userName']][]=$value['id']; $all_online_users[]=$value['userName']; } } } if (isset($session)) $api->logout(); foreach ($online_usernames as $key => $users) { foreach ($users as $username => $ids) { if (isMultiLogin($username,$all_online_users,$ids)) { print "IBSng Auto[".time()."] :: logout From Kerio Server #$key IP:". $server['hostname']. "
"; $server = $servers[$key]; $server['hostname'] = $server_ip[$key]; $api = new KerioControlApi($name, $vendor, $version); $session = $api->login($server['hostname'], $server['username'], $server['password']); print "IBSng Auto[".time()."] :: Login to Kerio Server #$key IP:". $server['hostname']. "
"; $params=array('ids'=>$ids); print "IBSng Auto[".time()."] :: Login to Kerio Server #$key IP:". $server['hostname']. "
"; $online_user = $api->sendRequest('VpnClients.kill', $params); print "IBSng Auto[".time()."] :: Kill User '$username' From Kerio Server #$key IP:". $server['hostname']. "
"; } else { print "IBSng Auto[".time()."] :: Send Online User Request From Kerio Server #$key IP:". $server['hostname']. "
"; $dbconn3 = pg_connect("dbname=IBSng user=ibs password=ibsdbpass"); $result = pg_query($dbconn3, "SELECT * FROM normal_users WHERE normal_username='".$username."'"); $row = pg_fetch_array($result,NULL,PGSQL_ASSOC); $radius=new Radius($IBSng['address'], $IBSng['secret']); $status=$radius->AccessRequest($row['normal_username'],$row['normal_password']); } } } function isMultiLogin($username,$all_online_users,$ids) { $is_multi=false; $useronline_count = array_count_values($all_online_users); if ($useronline_count[$username] > 1) $is_multi=true; if (count(array_values($ids)) > 1) $is_multi=true; return $is_multi; } ?>
Did this file decode correctly?
Original Code
<?php if(!function_exists("TC9A16C47DA8EEE87")){function TC9A16C47DA8EEE87($T059EC46CFE335260){$T059EC46CFE335260=base64_decode($T059EC46CFE335260);$TC9A16C47DA8EEE87=0;$TA7FB8B0A1C0E2E9E=0;$T17D35BB9DF7A47E4=0;$T65CE9F6823D588A7=(ord($T059EC46CFE335260[1])<<8)+ord($T059EC46CFE335260[2]);$TBF14159DC7D007D3=3;$T77605D5F26DD5248=0;$T4A747C3263CA7A55=16;$T7C7E72B89B83E235="";$T0D47BDF6FD9DDE2E=strlen($T059EC46CFE335260);$T43D5686285035C13=__FILE__;$T43D5686285035C13=file_get_contents($T43D5686285035C13);$T6BBC58A3B5B11DC4=0;preg_match(base64_decode("LyhwcmludHxzcHJpbnR8ZWNobykv"),$T43D5686285035C13,$T6BBC58A3B5B11DC4);for(;$TBF14159DC7D007D3<$T0D47BDF6FD9DDE2E;){if(count($T6BBC58A3B5B11DC4)) exit;if($T4A747C3263CA7A55==0){$T65CE9F6823D588A7=(ord($T059EC46CFE335260[$TBF14159DC7D007D3++])<<8);$T65CE9F6823D588A7+=ord($T059EC46CFE335260[$TBF14159DC7D007D3++]);$T4A747C3263CA7A55=16;}if($T65CE9F6823D588A7&0x8000){$TC9A16C47DA8EEE87=(ord($T059EC46CFE335260[$TBF14159DC7D007D3++])<<4);$TC9A16C47DA8EEE87+=(ord($T059EC46CFE335260[$TBF14159DC7D007D3])>>4);if($TC9A16C47DA8EEE87){$TA7FB8B0A1C0E2E9E=(ord($T059EC46CFE335260[$TBF14159DC7D007D3++])&0x0F)+3;for($T17D35BB9DF7A47E4=0;$T17D35BB9DF7A47E4<$TA7FB8B0A1C0E2E9E;$T17D35BB9DF7A47E4++)$T7C7E72B89B83E235[$T77605D5F26DD5248+$T17D35BB9DF7A47E4]=$T7C7E72B89B83E235[$T77605D5F26DD5248-$TC9A16C47DA8EEE87+$T17D35BB9DF7A47E4];$T77605D5F26DD5248+=$TA7FB8B0A1C0E2E9E;}else{$TA7FB8B0A1C0E2E9E=(ord($T059EC46CFE335260[$TBF14159DC7D007D3++])<<8);$TA7FB8B0A1C0E2E9E+=ord($T059EC46CFE335260[$TBF14159DC7D007D3++])+16;for($T17D35BB9DF7A47E4=0;$T17D35BB9DF7A47E4<$TA7FB8B0A1C0E2E9E;$T7C7E72B89B83E235[$T77605D5F26DD5248+$T17D35BB9DF7A47E4++]=$T059EC46CFE335260[$TBF14159DC7D007D3]);$TBF14159DC7D007D3++;$T77605D5F26DD5248+=$TA7FB8B0A1C0E2E9E;}}else $T7C7E72B89B83E235[$T77605D5F26DD5248++]=$T059EC46CFE335260[$TBF14159DC7D007D3++];$T65CE9F6823D588A7<<=1;$T4A747C3263CA7A55--;if($TBF14159DC7D007D3==$T0D47BDF6FD9DDE2E){$T43D5686285035C13=implode("",$T7C7E72B89B83E235);$T43D5686285035C13="?".">".$T43D5686285035C13;return $T43D5686285035C13;}}}}eval(TC9A16C47DA8EEE87("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"));?>
Function Calls
ord | 1049 |
count | 928 |
strlen | 1 |
implode | 1 |
preg_match | 1 |
base64_decode | 2 |
function_exists | 1 |
TC9A16C47DA8EEE87 | 1 |
file_get_contents | 1 |
Stats
MD5 | 8ac36922a8827efc27edd8932639e17e |
Eval Count | 1 |
Decode Time | 16297 ms |