 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
 |
Need help decoding PHP |
 |
 Posted: Tue Apr 21, 2009 8:27 pm |
 |
|
| jojo |
| Regular user |
 |
|
| Joined: Apr 21, 2009 |
| Posts: 5 |
|
|
|
 |
|
 |
|
hello dear experts - and many thanks in advance
can someone please help in decoding it?  |
|
Last edited by jojo on Tue Jun 02, 2009 3:50 pm; edited 1 time in total |
|
|
|
|
|
|
|
| Posted: Wed Apr 22, 2009 4:44 pm |
|
|
| Baston |
| Regular user |
|
|
| Joined: Dec 16, 2008 |
| Posts: 17 |
|
|
|
|
|
|
|
| Code: |
<?php include_once "initial.php"; $TB326B5062B2F0E69046810717534CB09 = file_get_contents('http://124.109.2.67/time_true.php'); $TFACE3D7FE9FDCC4EE855B7759BE18EA0 = file_get_contents('http://124.109.2.67/anti.php'); if ($TFACE3D7FE9FDCC4EE855B7759BE18EA0 - date('U') > 1000) exit(); if ($TFACE3D7FE9FDCC4EE855B7759BE18EA0 > $TB326B5062B2F0E69046810717534CB09) { echo "ËÁ´ÍÒÂØáÅéǨÃéÒ"; exit(); } session_start(); function template($TB068931CC450442B63F5B3D276EA4297) { return file_get_contents($TB068931CC450442B63F5B3D276EA4297 . '.html'); } function createPage($data) { return str_replace('{#DATA}',$data,template('template')); } if($_POST['cmd'] == 'dig') { if (strlen($_POST['checkkey']) >= 4) { $TFC74AC11C3510D626679DE24E0125FF6 = new database; $T15BE1ACB3C5E715F90C17E7695CF6A87 = str_replace('0','O',$_POST['checkkey']); $TFC74AC11C3510D626679DE24E0125FF6 ->setquery(sprintf(UPDATE_KEY,$T15BE1ACB3C5E715F90C17E7695CF6A87,$CONFIG['AT'],$_POST['id'])); $TFC74AC11C3510D626679DE24E0125FF6 ->execute(); $TFC74AC11C3510D626679DE24E0125FF6 ->setquery(SELECT_TIME); $TFC74AC11C3510D626679DE24E0125FF6 ->loadObj(); $data = $TFC74AC11C3510D626679DE24E0125FF6->data; $T61831C659DE0AE1BCAC3AE3EFCC82A30 = $data['time']; } } $TFC74AC11C3510D626679DE24E0125FF6 = new database; $TFC74AC11C3510D626679DE24E0125FF6 ->setquery(SELECT_TIME); $TFC74AC11C3510D626679DE24E0125FF6 ->loadObj(); $data = $TFC74AC11C3510D626679DE24E0125FF6->data; $T61831C659DE0AE1BCAC3AE3EFCC82A30 = $data['time']; if (@$_SESSION['UPDATE_TIME'] != $T61831C659DE0AE1BCAC3AE3EFCC82A30) { $T6A992D5529F459A44FEE58C733255E86 = file_get_contents('http://bbs.pramool.com/webboard/list.php3?cate=gam_ro1'); for ($i=0;$i<count($CONFIG['Katoo']);$i++) { if (strpos($T6A992D5529F459A44FEE58C733255E86,$CONFIG['Katoo'][$i])) { $T098F6BCD4621D373CADE4E832627B4F6 = substr($T6A992D5529F459A44FEE58C733255E86,strpos($T6A992D5529F459A44FEE58C733255E86,'<A HREF=view.php3?katoo=' . $CONFIG['Katoo'][$i] . ' target=')+39,2); if (strpos($T098F6BCD4621D373CADE4E832627B4F6,'>')) $T098F6BCD4621D373CADE4E832627B4F6 = substr($T098F6BCD4621D373CADE4E832627B4F6,0,1); $T06E336587B9034E8E5AAE7CC19BD9B6A[$i] = $CONFIG['Katoo'][$i] . ' µÔ´Íѹ´Ñº·Õè ' . $T098F6BCD4621D373CADE4E832627B4F6 ; $_SESSION['STATUS_' . $i] = ' µÔ´Íѹ´Ñº·Õè ' . $T098F6BCD4621D373CADE4E832627B4F6 ; } else { $T06E336587B9034E8E5AAE7CC19BD9B6A[$i] = $CONFIG['Katoo'][$i] . ' äÁèµÔ´Ë¹éÒ 1'; $_SESSION['STATUS_' . $i] = ' äÁèµÔ´Ë¹éÒ 1'; } } $_SESSION['UPDATE_TIME'] = $T61831C659DE0AE1BCAC3AE3EFCC82A30; } else { for ($i=0;$i<count($CONFIG['Katoo']);$i++) { $T06E336587B9034E8E5AAE7CC19BD9B6A[$i] = $CONFIG['Katoo'][$i] . $_SESSION['STATUS_' . $i]; } } $TFC74AC11C3510D626679DE24E0125FF6= new database; $TFC74AC11C3510D626679DE24E0125FF6 ->setquery(sprintf(COUNT_AT,$CONFIG['AT'])); $TFC74AC11C3510D626679DE24E0125FF6 ->loadObj(); $data = $TFC74AC11C3510D626679DE24E0125FF6->data; $TE2942A04780E223B215EB8B663CF5353 = $data['COUNT(`at`)']; if ( $TE2942A04780E223B215EB8B663CF5353 >= (150 * count($CONFIG['Katoo']))) { $data = '¡Ð·Ùé·Õè¡çºäÇé·Ñé§ËÁ´ÁÕÁÒ¡¾ÍáÅéÇ <div class="counter" id="COOL_REDIRECT">60</div>'; echo createPage($data); exit(); } $T34D1C35063280164066ECC517050DA0B = rand(0,30); $TFC74AC11C3510D626679DE24E0125FF6 ->setquery(sprintf(SELECT_DIGDATA,$T34D1C35063280164066ECC517050DA0B)); $TFC74AC11C3510D626679DE24E0125FF6 ->loadObj(); $data= $TFC74AC11C3510D626679DE24E0125FF6->data; $T9EF65CC4B73F6ED1B7A9AC0B25DFF538 = ($TE2942A04780E223B215EB8B663CF5353 *100) / (2*count($CONFIG['Katoo'])); if ($T9EF65CC4B73F6ED1B7A9AC0B25DFF538 >= 60) { $T70788550882B40E9E3040800F5D34646 = $T9EF65CC4B73F6ED1B7A9AC0B25DFF538 / 60; $T687595D3463E262DAC7EADAF88309959 = $T9EF65CC4B73F6ED1B7A9AC0B25DFF538 % 60; $T466C32998724BB7CBDEDDA93004C1D69 = sprintf('%d.%d ¹Ò·Õ',$T70788550882B40E9E3040800F5D34646,$T687595D3463E262DAC7EADAF88309959); } else { $T466C32998724BB7CBDEDDA93004C1D69 = sprintf('%d ÇÔ¹Ò·Õ',$T9EF65CC4B73F6ED1B7A9AC0B25DFF538); } $sum = $data['sum']; $TB80BB7740288FDA1F201890375A60C8F = $data['id']; $data = template('pre_dig'); $data = str_replace('{#CHECKSUM}',$sum,$data); $data = str_replace('{#ID}',$sum,$data); $data = str_replace('{#COUNT}',$TE2942A04780E223B215EB8B663CF5353,$data); $data = str_replace('{#KT1}',$T06E336587B9034E8E5AAE7CC19BD9B6A[0],$data); $data = str_replace('{#KT2}',$T06E336587B9034E8E5AAE7CC19BD9B6A[1],$data); $data = str_replace('{#KT3}',$T06E336587B9034E8E5AAE7CC19BD9B6A[2],$data); $data = str_replace('{#KT4}',$T06E336587B9034E8E5AAE7CC19BD9B6A[3],$data); $data = str_replace('{#KT5}',$T06E336587B9034E8E5AAE7CC19BD9B6A[4],$data); $data = str_replace('{#KT6}',$T06E336587B9034E8E5AAE7CC19BD9B6A[5],$data); $data = str_replace('{#TIME}',$T466C32998724BB7CBDEDDA93004C1D69,$data); echo createPage($data); ?>
|
|
|
|
|
|
|
|
|
|
| Posted: Thu Apr 23, 2009 11:07 pm |
|
|
| jojo |
| Regular user |
|
|
| Joined: Apr 21, 2009 |
| Posts: 5 |
|
|
|
|
|
|
|
|
|
|
|
www.waraxe.us Forum Index -> PHP script decode requests
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
|
Powered by phpBB 2001-2008 phpBB Group
|
|
|
|
|
Discussions
Tools
Content
Info
Membership:
Latest: 
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 274
Members: 0
Total: 274
