 |
|
 |
 |
Menu |
 |
|
 Home |
| |
|
 Discussions |
| |
|
 Tools |
| |
|
| Affiliates |
| |
|
 Content |
| |
|
 Info |
| |
|
|
|
|
|
|
User Info |
|
 Membership:
 Latest: MichaelSnaRe
 New Today: 0
 New Yesterday: 0
 Overall: 9145
 People Online:
 Visitors: 884
 Members: 0
 Total: 884
|
|
|
|
|
|
PacketStorm News |
|
|
|
 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
|
Please i need to decode this |
|
 Posted: Sun Aug 14, 2011 11:54 pm |
 |
|
| hcho4us |
| Beginner |
 |
| |
| Joined: Aug 15, 2011 |
| Posts: 3 |
|
|
|
 |
|
 |
|
<?php
/* ALL RIGHTS RESERVED TO VP DESIGN www.viros-production.com */
$keystroke1 = base64_decode("d2RyMTU5c3E0YXllejd4Y2duZl90djhubHVrNmpoYmlvMzJtcA==");
eval(gzinflate(base64_decode('hY7NCoJAFIVf5RQu7qUpmrW47Dmi9FpDdgfmBwrx3dNACTdtz3f+XEubNmudnNezvFxMkbbBJ9HaN7Jl7meKRaUipuD0ZorL02dNjB7FQ96oEPN1ZIsBRwPLJVxLo9yJzoSryk6xICkHRX0P5ENDUwtjh7m4xADpovx34jD9O31f0/qFNVjN7y2b35Vh+AA=')));
$O0O0O0O0O0O0=$keystroke1[2].$keystroke1[32].$keystroke1[20].$keystroke1[11].$keystroke1[23].$keystroke1[15].$keystroke1[32].$keystroke1[1].$keystroke1[11];
$keystroke2 = $O0O0O0O0O0O0("q>BF~AnrDpt{slE{yxCwuov|@?z}", -13);
$OO000OO000OO=$keystroke2[16].$keystroke2[12].$keystroke2[31].$keystroke2[23].$keystroke2[18].$keystroke2[24].$keystroke2[9].$keystroke2[20].$keystroke2[11];
$O0000000000O=$keystroke1[30].$keystroke1[9].$keystroke1[6].$keystroke1[11].$keystroke1[27].$keystroke1[8].$keystroke1[19].$keystroke1[1].$keystroke1[11].$keystroke1[15].$keystroke1[32].$keystroke1[1].$keystroke1[11];
eval($OO000OO000OO(base64_decode('LZJHrq
RWAAAvY2lmxIIcWpYX0EDDI2eajUV+xCZDc3r/hT
d1gKoqj7T//ZdlYRj2P35n6Voy1L9FmX+K8vcvPX
GVZTbfPM8fBg7I5gzoNEwliJFW7puM0N2WUFsjyy
JvPyTqUA7K1UYfLYG3L/uNVgtah60eVFiU+FhMI3
Tp8jEoDtlx4Mtuxcxwacto7Y2EZ8xHODL0IFTXa5
YsknQDA8tpkZ8jWiJ4OzwDIb3tngZMoKuxIQCcVs
s8fskRJqus0g86B+jJ9jiMuMo21vQ7UozyAxsFGL
7oTOfDV0W/Xe6aprnosoNBN2XRfyMmiII5CY1ITq
J6gUhl1IbBRaKqcQ1pWM165xjpuhYzvc4ZcvOQ9Y
+2MPotRth0fXo+se1nORHQjBIu10i4Bg8tMIU94S
iWSV9dyX3n9r6DnZL3CTmrpzGQbsbNb7A26bTkcM
4fx+p8Dd8J+CbLYrQJGQTqJ2E9tNmGhz0XTGSJM+
6y4O27J7LEw9loU9AxPR7Vl85KoJwU4yQ40UKBLM
293zqkEeyKrEnFWGVW5jzXJXN9BZ0eWMEMn4YspG
ITIF4EU/QKzR5/Hl3sUNTQzMRIr8N3AIPIWXpU49
1GsKXlE0+qqlDLtaXyQkEqxDv6NIjsHu1MOoEBOb
1yArvOKXSJ4UtUsSZ4BjvkDoHh9NfqSYNgjjmqd+
N1joaMS1tl0N328VoCCRkhRDsKl5G5qJUdqG/djT
QV/QkDiD4tz2ef9pXA386mPnbNip2H5bsI57cPQP
efyIz1gJZ7vOt9iNT760qIAehZykQjGpkdKXMl5/
V5gQrmpOOIOyZFLZxKuPWf9SOzUiP1PxmbYtBrKJ
I6Klvg2+GHUaQpIEQktxN+Z6AuvtPG7S9ZB5st2d
Zdx0pgfasq6dDwLQImNsO9gXk9HbQRe6qRYknPd3
PTzcwHa9SH5z3szCwThcZXUX+/hdy+34Ht6XglT7
aDkmGpTeQ7NiWyambzGVZ+1qSrdr+iUSTI1MiQDu
0hPDyvsI4ntjk9B9PVLTB5gSt248InBPldLZPvvV
z1wlkt8VajUp4keE0ItXFY4B8DfBbldLDRaE3+qH
LyIjiiZHuC8VSJuw37qzsu8sd/xLm0Um1YuxCQb9
jTv7IovkeMcigtsjFJziL7zS5w1i+WWLUWcIxa37
3LMWOAEuxWSs26Y4ZVi8QZ3OHZHI+rbtNpbrWys5
KSo4/N+Yg6Jg1de+OBcT1nlur5yxupr4ah2qMu3U
Xg85dMdAsK3CfbbTkm7b76aKeGP5rIpoCCdPeIXM
x1y4JGMa3yvRaK1e5tu7HW1+McjZWF2z01qD77SS
BcBkvDV/spdOKYH7T3LpD1F6VBF0YEKXT8jCDTSx
hG1mTx5JqqmM9gXwcfsM2rubIqG1/yB1gw/egN2Q
6Coroy0jYj3qlFeZQxxsc3YRoM33jqCh0AtyL9jB
UcIkU4yjMYttA9bSUVn9gSmsgnPHyJE21eEhuCfe
G9yMtDOR+Ut8Bo+zZaOHYDIw9bhGp8bGTSl2FySj
vCLgKDb9zEaSaEZwqyk6TnVI33OVPefRjJLYUpzv
y8hNExRYXL7mHvbDOB7GRcsSwWjAmaMTmw2+YHaY
RXhiKoPd4szv3z68+fP3//Bw==')));
?>
AND THIS
------------
<?php
/* ALL RIGHTS RESERVED TO VP DESIGN www.viros-production.com */
$keystroke1 = base64_decode("d2RyMTU5c3E0YXllejd4Y2duZl90djhubHVrNmpoYmlvMzJtcA==");
eval(gzinflate(base64_decode('hY7NCoJAFIVf5RQu7qUpmrW47Dmi9FpDdgfmBwrx3dNACTdtz3f+XEubNmudnNezvFxMkbbBJ9HaN7Jl7meKRaUipuD0ZorL02dNjB7FQ96oEPN1ZIsBRwPLJVxLo9yJzoSryk6xICkHRX0P5ENDUwtjh7m4xADpovx34jD9O31f0/qFNVjN7y2b35Vh+AA=')));
$O0O0O0O0O0O0=$keystroke1[2].$keystroke1[32].$keystroke1[20].$keystroke1[11].$keystroke1[23].$keystroke1[15].$keystroke1[32].$keystroke1[1].$keystroke1[11];
$keystroke2 = $O0O0O0O0O0O0("q>BF~AnrDpt{slE{yxCwuov|@?z}", -13);
$OO000OO000OO=$keystroke2[16].$keystroke2[12].$keystroke2[31].$keystroke2[23].$keystroke2[18].$keystroke2[24].$keystroke2[9].$keystroke2[20].$keystroke2[11];
$O0000000000O=$keystroke1[30].$keystroke1[9].$keystroke1[6].$keystroke1[11].$keystroke1[27].$keystroke1[8].$keystroke1[19].$keystroke1[1].$keystroke1[11].$keystroke1[15].$keystroke1[32].$keystroke1[1].$keystroke1[11];
eval($OO000OO000OO(base64_decode('LdQ3zq
RoAEXRzYzU3SLAQ6GJMIUtvCcZ4f1XeLf6/oNJ3g
Kunk55pMPvf0wTQZD/53eWriVF/FeU+bcof//6JC
a+zk7IsgHsDFH6sZXXozoze8ZWAXO7KzpEeY0vCJ
8ZWwequX+hK6GRAyZuz34EeGKqNFN8wQqOaPSqw+
pQg6iNJKHy3jQJ2LeQl+ihHzGlhvutN/IEI3tMCO
EbmNI6IqGRS+Iu+7RvcrjWIGWvugQoyfXTPqlbx9
yUneaTLIvVmATC43hSCquvtU91TitsckvUoXmRcV
C0BpzhEK19P9stm3q+R5GybDTNql1ObBXec1Ub6s
0Eh2jYb98qDuBsfIKDSSydq3ltXlkS8k8HTS8zzM
tv3tAGc6d+5Y3il3vdwm6AVdD678Nm8XTF680y/O
gHU9TQLP8qoIhyXEUVSiRArbL37NP/Nkl/fB/etH
C4cyT6VA9mfOIoHK+e0kQqoq2MnQMaCom1+zjcqb
SaIyeZkhMdI0NVr4D3KUQ2Okx7aQTbUFYgVwryPU
+q/ty5HL2fPKh/cqrB084U/WwMEyBaJuQeHW5own
oM3Ru4XPvk7WjhsAZZ6DoHq0U+s6wiFkyy/567q2
iwp/M3xtzNII1LUh5mNFlIQGYL+OBvrIqerupT4f
PWtEaNi9y7hj56mY6xxU5dox16abHjd1GDi+vZ7P
syLpGPI2mmvxV88e2GnMdevCrzJgGBWMFaZAcc+2
ZTurS7gVidOzpqVy0pQPpTOHfhuuD3TCZ74BmU++
pXDiTChPRh+FmsFDsp6VVMhBPlPKqCeYt2a77BWi
wYpvh5s9XWQWTG6CpL8b5ZMksoTV71pu1hbggnPs
OKwRiS8QQBODLEvs4BjeIesZP0NY6WMMw6TGmDB9
2itaTnDk5uTDXRSkh4IOpkLPEaEpTQ3/vlBDKY9y
TQw/QNti/QdTBmWjqYQRuIkiiqfTpuKICiSZ/XJ5
Z6irn6bWt0LLOkjMV21xLios0fOtIPlCKZIdgyFZ
VkodSTaiJKuz/SypQCZ5Xd6mxkzoI06yX5bWkH5y
2qSuPtzDhdh8rFMWZxdCr1e+BGjLe/H58sP+BYS/
4C3ZptT6RATaXlGjVCQvRdRK/wNqR1Cl+l3kkodJ
IoI9Rc84HDO1atpJoq4WczIy2X1/EjgPZRqjLx7z
Nnxc1tFO/qx/HL53fnKPYEcEbbxLiyUsQ7cYrQeP
qT2SdbI0fdaMSoDrkparW5vLW0YGlMKiwHqRMGTk
GLV+4nsHx78b89gtcumr5lxHZxNkMTG0aChmg+yY
FRCCh28GWpAw5Z/KQWTa8riDpUDUlT7kWz+2d7kL
CUr8YFdD2onIZ79lyWBwvIip4XdMZyz2LWyZW7Zv
54kfgK+g4L7IpLIJ34TpojOGGmsvimD9sPgg9uyH
zUZdun5jP65LDqNnupdLTuTC0NNtd0Ez92n+mdIh
E0jSqxM8ogZNqQAUHzFf0hKvy2oaO8KjG1kRrQTu
nnvIQIpFfsMz5FIiYb8ymoRAsZ68TFHJvwMdd5L6
UlLTRSdk1nfIHDZlCf6nvy5tcYotbM4s3LZ6Bnhf
nK4AnN6oRVT/vhwprKALP3yYy9vSTGoklkNActEV
c397/XM1+BJGqORP5YAiljbBgxmaWcV7mD8m7Cz7
1W3qGix5E9RCFZ9GjuQSS2ZKFfOh0zbMrPAbHxQY
8lr0ru3xdEBCi0dQjf6bkxXDV9R/vTGEejtFY7bn
fS3+sFKwTUG0hKt6WW/3z6B0UYPnAawC/2158/f/
79Cw==')));
?> |
|
|
|
|
|
|
|
|
| Posted: Fri Aug 19, 2011 12:17 am |
|
|
| bfuploader |
| Regular user |
|
| |
| Joined: Jul 10, 2011 |
| Posts: 8 |
|
|
|
|
|
|
|
I dont have time to decode both
this is the first:
| Code: | <?php
if(!function_exists("rotencode")){
function rotencode($string,$amount) {
$key = substr($string, 0, 1); if(strlen($string)==1) { return chr(ord($key) + $amount); } else { return chr(ord($key) + $amount) . rotEncode(substr($string, 1, strlen($string)-1), $amount); }} //Decoded By Lonny!
}
$found = FALSE; foreach(array("helicoptere.heliconia-maroc.com","localhost") as $host){ if(strstr($_SERVER['HTTP_HOST'],$host)) $found = TRUE; } if(!$found) exit("
You are trying to view this page on other domain then heliconia-maroc.com, contact the admin at viros-production.com
You are trying to view this page on other domain then heliconia-maroc.com, contact the admin at viros-production.com
If you want some more information about this problem you can contact the website administrator.
"); $hostname_conn = "db375747618.db.1and1.com"; $database_conn = "db375747618"; $username_conn = "dbo375747618"; $password_conn = "hrSygVVD"; $conn = mysql_pconnect($hostname_conn, $username_conn, $password_conn) or trigger_error(mysql_error(),E_USER_ERROR);
?> |
|
|
|
|
|
|
|
|
|
| Posted: Fri Aug 19, 2011 2:03 pm |
|
|
| zerobytes |
| Valuable expert |
|
| |
| Joined: Aug 30, 2008 |
| Posts: 199 |
|
|
|
|
|
|
|
Untested
2nd
| Code: |
<?php
$found = FALSE;
foreach (array(
"helicoptere.heliconia-maroc.com"
) as $host) {
if (strstr($_SERVER['HTTP_HOST'], $host))
$found = TRUE;
}
if (!$found)
exit("<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" /><title>You are trying to view this page on other domain then heliconia-maroc.com, contact the admin at viros-production.com</title><link href=\"http://deejay.home.pl/Encoder/error/style.css\" rel=\"stylesheet\" type=\"text/css\" /></head><body><div id=\"wrapper\"><div class=\"content\"> <h2>You are trying to view this page on other domain then heliconia-maroc.com, contact the admin at viros-production.com</h2> <p>You are trying to view this page on other domain then heliconia-maroc.com, contact the admin at viros-production.com</p> <p>If you want some more information about this problem you can <a href=\"#\">contact the website administrator</a>.</p> </div></div></body></html>");
echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><title>Admin heliconia-maroc Helicoptere</title></head><body style="margin:0px; padding:0px;"><iframe height="100%" width="100%" src="http://www.viros-production.com/helicoptere/" frameborder="0" scrolling="auto" ></iframe></body></html>';
?>
|
ZeroBytes |
|
_________________
Decoded by ASD @ Lost-codes.co.uk |
|
|
|
|
www.waraxe.us Forum Index -> PHP script decode requests
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
|
Powered by phpBB 2001-2008 phpBB Group
|
|
|
|
|
|
|
