|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| |
|
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9145
People Online:
Visitors: 838
Members: 0
Total: 838
|
|
|
|
|
|
PacketStorm News |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
Help understand the encoding and a solution to decode if pos |
|
Posted: Tue Mar 27, 2012 2:26 pm |
|
|
DaRkLiFe |
Regular user |
|
|
Joined: Jul 27, 2009 |
Posts: 13 |
|
|
|
|
|
|
|
Hey All,
Can some one help me recognise this encoding and give solution if possible:
Code: | <?php // This file is protected by copyright law and provided under license. Reverse engineering of this file is strictly prohibited.
$xMCEK69938660AxXEJ = 873692109;
$bAXVW81595154orLTX = 717232514;
$rNVzk67763367YMhdH = 543212372;
$GjHqA65005798bStIi = 507725433;
$TrKmV64884949mHkNd = 267365448;
$ezEMQ13963317qcple = 977226166;
$pEWoy83803406GBwJI = 295901336;
$WmboJ40967712tejmA = 377484711;
$uIUIN57018738KSXAM = 878570038;
$mZGGS78518982VNQHF = 956251069;
$ITkpD97030945EUuYY = 267121551;
$iKJeM59117127Dnjgo = 965275239;
$qOYwZ46340027WUVkJ = 709305878;
$HdYhm95262146NHPfo = 654307221;
$bywvz17445983CwRBO = 456873016;
$YCUOT29454040Iytre = 273097015;
$joLUY32848816VufeY = 758572968;
$XHwnQ64192810tHLDy = 71394622;
$YtCZF25048523ZoaHD = 865155732;
$XtyNQ41978454RNGFE = 298950043;
$FuXvp16545105BaqsE = 27371307;
$AircA75310974fMRgU = 206513275;
$yEXEe29838562cMmwr = 492969696;
$ekowG96690369RedQU = 43834320;
$KRonY87428894EfryY = 513700897;
$PQOrE38616638YchKH = 60663177;
$VnNbi31816101RENGx = 339314911;
$wdDGx13589782PaPpf = 506749847;
$NnWKZ65500183JNbsJ = 219561737;
$sAZvT44109802qtDim = 632844330;
$yAuRr30981140fDGqS = 404191376;
$Aztha62676697ZZCSR = 688696625;
$TAqlM40758972WalwN = 143953827;
$SoPWN91790467QBlWF = 924056733;
$ILxXA27333679IDBPa = 687599091;
$WcVbO63951111oYNbv = 589674652;
$WPRXV13205261Xnflf = 286877167;
$pvrsL91658631yebZK = 934300385;
$QwHvn20873718RWbSM = 190538055;
$evzzd17413024RRZwX = 209683929;
$DqkFJ72839050ZgKAL = 648331757;
$zOrAH43714294GzWpk = 663575287;
$KSllB11601257tNdnL = 911008271;
$xxcqd13062438eJUTB = 547724457;
$bGBCz39660339vDmBk = 229317596;
$xZIyp37957458RXbnd = 111881439;
$gtJlh89516297luQRQ = 851009735;
$YswaI50899353YukyT = 604796234;
$vwFhA93669129YtYWD = 28834686;
$geDrV74388123vOlJq = 278218841;
?><?php
if (function_exists('date_default_timezone_set'))
date_default_timezone_set('UTC');
function by8IBku6Yd2oe($rZR4QpdO3O0jnv5n1fa)
{
$rt = 'array(';
foreach ($rZR4QpdO3O0jnv5n1fa as $k => $v)
$rt .= " '$k' => '" . addslashes($v) . "',";
$rt .= ")";
return $rt;
}
error_reporting(E_ALL & ~E_NOTICE);
@ini_set("include_path", ini_get("include_path") . '.;pages/;' . (dirname(__FILE__) . '\\pages') . '');
@ini_set("serialize_precision", 5);
define('KH6aKAnNWiCYJWvf', 'crawl_dump.log');
define('e6p6oz8D73L8', 'crawl_state.log');
define('jgYSLBDPtmpAo', 'interrupt.log');
define('LXUQuxNDxlej9', dirname(__FILE__) . '/');
define('sEHr9E0d1xL1nk', dirname(__FILE__) . '/pages/');
define('Jdp4o0I89UFO', dirname(__FILE__) . '/pages/mods/');
define('A4sNJQoe6O47I_YC4', 31309);
include LXUQuxNDxlej9 . 'pages/class.utils.inc.php';
preg_match('#index\.([a-z0-9]+)(\(.+)?$#', __FILE__, $pm);
$qZN2cRANbk1N = $pm[1] ? $pm[1] : 'php';
define('UWn3c8XSJ', dirname(__FILE__) . '/config.inc.php');
define('I_bbCJVIyfD2x', dirname(__FILE__) . '/default.conf');
define('A9hh86ST6sAgjxx', dirname(__FILE__) . '/data/generator.conf');
if (function_exists('ini_set'))
@ini_set("magic_quotes_runtime", 'Off');
$gTrlEaHME = @implode('', file(UWn3c8XSJ));
if (file_exists(UWn3c8XSJ) && !file_exists(A9hh86ST6sAgjxx)) {
@include UWn3c8XSJ;
}
$grab_parameters['xs_password'] = md5($grab_parameters['xs_password']);
i0c9crUM5phHcmd1CrY(I_bbCJVIyfD2x, $grab_parameters, true);
define('sMuf2pf0iKaQ', $grab_parameters['xs_datfolder'] ? $grab_parameters['xs_datfolder'] : dirname(__FILE__) . '/data/');
define('Znq7ffD8tRtK7G7k', sMuf2pf0iKaQ . 'progress/');
i0c9crUM5phHcmd1CrY(A9hh86ST6sAgjxx, $grab_parameters);
define('bjmS1HQhkPEjp1QMl', $grab_parameters['xs_sm_text_filename'] ? $grab_parameters['xs_sm_text_filename'] : sMuf2pf0iKaQ . 'urllist.txt');
define('wc_8d1gmEw3Z', $grab_parameters['xs_sm_text_url'] ? $grab_parameters['xs_sm_text_url'] : 'data/urllist.txt');
define('z_fhGrViQaOeql9', preg_replace('#[^\\/]+?\.xml$#', 'ror.xml', $grab_parameters['xs_smname']));
define('PMVKiWGsLbTpXo0qagQ', preg_replace('#[^\\/]+?\.xml$#', 'ror.xml', $grab_parameters['xs_smurl']));
define('N4yuA2XEdnmwGMXLE4', sMuf2pf0iKaQ . 'gbase.xml');
define('Ka_AEZ56jwB8MHjF', 'data/gbase.xml');
if (!$_GET && $HTTP_GET_VARS)
$_GET = $HTTP_GET_VARS;
if (!$_POST && $HTTP_POST_VARS)
$_POST = $HTTP_POST_VARS;
if (function_exists('ini_set')) {
@ini_set("output_buffering", '0');
if ($grab_parameters['xs_memlimit'])
@ini_set("memory_limit", $grab_parameters['xs_memlimit'] . 'M');
if ($grab_parameters['xs_exec_time'])
@ini_set("max_execution_time", $grab_parameters['xs_exec_time']);
@ini_set("session.save_handler", 'files');
@ini_set('session.save_path', dirname(__FILE__) . '/data/');
}
if (@ini_get("magic_quotes_gpc")) {
if ($_GET)
foreach ($_GET as $k => $v) {
$_GET[$k] = stripslashes($v);
}
if ($_POST)
foreach ($_POST as $k => $v) {
$_POST[$k] = stripslashes($v);
}
}
$op = $_REQUEST['op'];
if (function_exists('session_start'))
@session_start();
if ($op == 'logout') {
$_SESSION['is_admin'] = false;
setcookie('sm_log', '');
unset($op);
}
if (!isset($op))
$op = 'config';
if (!$_SESSION['is_admin'])
$_SESSION['is_admin'] = ($_COOKIE['sm_log'] == (md5($grab_parameters['xs_login']) . '-' . md5($grab_parameters['xs_password'])));
if (!$_SESSION['is_admin'] && $op != 'crawlproc') {
include LXUQuxNDxlej9 . 'pages/page-login.inc.php';
if (!$_SESSION['is_admin'])
exit;
}
define('joeXw9f7bW7PyEcEv', true);
include LXUQuxNDxlej9 . 'pages/page-configinit.inc.php';
include LXUQuxNDxlej9 . 'pages/class.http.inc.php';
switch ($op) {
case 'crawl':
case 'crawlproc':
case 'config':
case 'view':
case 'analyze':
case 'chlog':
case 'l404':
case 'ext':
case 'proc':
include LXUQuxNDxlej9 . 'pages/page-' . $op . '.inc.php';
break;
case 'pinfo':
phpinfo();
break;
}
|
|
|
|
|
|
|
www.waraxe.us Forum Index -> PHP script decode requests
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|