some one could please help me decode this footer.php file. I would appreciate that <?php $_F=__FILE__;$_X='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';eval(base64_decode('JF9YPWJhc2U2NF9kZWNvZGUoJF9YKTskX1g9c3RydHIoJF9YLCcxMjM0NTZhb3VpZScsJ2FvdWllMTIzNDU2Jyk7JF9SPWVyZWdfcmVwbGFjZSgnX19GSUxFX18nLCInIi4kX0YuIiciLCRfWCk7ZXZhbCgkX1IpOyRfUj0wOyRfWD0wOw=='));?> Code (markup):
Hi, There are 2 strings in your file. I can decode only one: $_X=base64_decode($_X);$_X=strtr($_X,'123456aouie','aouie123456');$_R=ereg_replace('__FILE__',"'".$_F."'",$_X);eval($_R);$_R=0;$_X=0; PHP:
Yes, looks like base64 at a glance. Did a google search for a "<?php $_F=__FILE__" and found online tool, stating it decodes it. here is needle: $_X=base64_decode($_X);$_X=strtr($_X,'123456aouie','aouie123456');$_R=ereg_replace('__FILE__',"'".$_F."'",$_X);eval($_R);$_R=0;$_X=0; and here is the fist part: Please run it for your self,mkay, don't have php at hand now. It's almost readable, ain't it - lil 1337
Haha, don't be confused, just use the text of the file - it's already fairly decrypted, and substitute and if you cannot set the strstr substitute, use text editor and replace: 1 with a 2 with o 3 with u 4 with i 5 with i 6 with e a with 1 o with 2 u with 3 i with 4 e with 6 Hope it helps.
Hi, I have a file that have content bellow : <?php $o="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"; echo(base64_decode("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")); return; ?> Code (markup): Can you help me decode that ? Thanks !
Decoded: <?php if ( !is_home() && !is_page() && (is_active_sidebar(2) || is_active_sidebar(3) || is_active_sidebar(4)) ) : // Don't show on the front page ?> <!-- Bottom Widgets --> <div class="box6"> <div class="top"></div> <div class="spacer"> <div class="col3"> <?php dynamic_sidebar(2); ?> </div> <!--/col3 --> <div class="col3"> <?php dynamic_sidebar(3); ?> </div> <!--/col3 --> <div class="col3 last"> <?php dynamic_sidebar(4); ?> </div> <!--/col3 --> <br class="fix" /> </div> <!--/spacer --> <div class="bot"></div> </div> <!--/box6 --> <?php endif; ?> <!-- Footer --> <div id="footer"> <div class="box6"> <div class="top"></div> <div class="spacer"> <div class="fl">© <?php the_time('Y'); ?> <?php bloginfo(); ?>.</div> <div class="fr"><a href="http://simulationcreditauto.net" title="simulation taux credit auto rachat automobile voiture demande">simulation taux credit auto rachat automobile voiture demande</a> by <a href="http://pret-auto.org" title="simulation automobile taux pret auto voiture credit"><img src="<?php bloginfo('stylesheet_directory'); ?>/images/ico-woothemes-trans.png" alt="simulation automobile taux pret auto voiture credit" title="simulation automobile taux pret auto voiture credit" width="86" height="21" /></a></div> <div class="fix"></div> </div> <!--/spacer --> <div class="bot"></div> </div> </div> <!--/footer --> <?php wp_footer(); ?> </div> <!--/page --> <?php if ( get_option('woo_google_analytics') <> "" ) { echo stripslashes(get_option('woo_google_analytics')); } ?> </body> </html> PHP:
Decoded: <?php get_header(); ?> <?php if ( is_home() ) : ?> <div class="container_16 main_wrap" style="display: <?php echo get_option('featured_items_show_hide'); ?>;"> <?php include (TEMPLATEPATH . '/content-featured.php'); ?> </div> <?php endif; ?> <div class="container_16 main_wrap"> <div id="content_left_wrapper"> <?php include (TEMPLATEPATH . '/content-left.php'); ?> </div> <div id="content_right_wrapper"> <?php include (TEMPLATEPATH . '/content-right.php'); ?> <?php include (TEMPLATEPATH . '/content-center.php'); ?> </div> <div class="clear"></div> </div> <?php get_footer(); ?> PHP:
Can anyone please help with decoding this file: <?php eval(base64_decode('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'));?> Code (markup): Thanks in advance!
<!-- begin footer --> <div id="footer"> © 2008 <a href="<?php echo get_settings('home'); ?>/"> <?php bloginfo('name');?></a>. <?php if(is_home()) : ?><a href="http://www.cigarettesmix.com/" title="Cheap cigarettes">Cheap cigarettes</a><?php endif; ?> <div><? wp_rss2feed(); ?></div> <div id="credit"></div> </div> <?php wp_footer(); ?> </div> </body></html> PHP:
For something like what Rian posted: <?php eval(base64_decode('Pz4gPCEtLSBiZWdpbiBmb290ZXIgLS0+DQoNCjxkaXYgaWQ9ImZvb3RlciI+ICAmY29weTsgMjAwOCA8YSBocmVmPSI8P3BocCBlY2hvIGdldF9zZXR0aW5ncygnaG9tZScpOyA/Pi8iPg0KICA8P3BocCBibG9naW5mbygnbmFtZScpOz8+PC9hPi4gPD9waHAgaWYoaXNfaG9tZSgpKSA6ID8+PGEgaHJlZj0iaHR0cDovL3d3dy5jaWdhcmV0dGVzbWl4LmNvbS8iIHRpdGxlPSJDaGVhcCBjaWdhcmV0dGVzIj5DaGVhcCBjaWdhcmV0dGVzPC9hPjw/cGhwIGVuZGlmOyAgPz4NCiAgPGRpdj48PyB3cF9yc3MyZmVlZCgpOyA/PjwvZGl2Pg0KDQogIDxkaXYgaWQ9ImNyZWRpdCI+PC9kaXY+DQogIA0KPC9kaXY+DQo8P3BocCB3cF9mb290ZXIoKTsgPz4NCjwvZGl2Pg0KPC9ib2R5PjwvaHRtbD4gPD8='));?> Code (markup): All you'd really have to do is create a PHP page with this: <?php echo base64_decode('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'));?> Code (markup): Basically, just adding echo to the beginning and removing the eval. For something like what the OP posted, <?php $_F=__FILE__;$_X='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';eval(base64_decode('JF9YPWJhc2U2NF9kZWNvZGUoJF9YKTskX1g9c3RydHIoJF9YLCcxMjM0NTZhb3VpZScsJ2FvdWllMTIzNDU2Jyk7JF9SPWVyZWdfcmVwbGFjZSgnX19GSUxFX18nLCInIi4kX0YuIiciLCRfWCk7ZXZhbCgkX1IpOyRfUj0wOyRfWD0wOw=='));?> Code (markup): You would first need to realize that the seemingly unreadable text is base64 encoded, and from there you can just do: <?php echo base64_decode("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';eval(base64_decode('JF9YPWJhc2U2NF9kZWNvZGUoJF9YKTskX1g9c3RydHIoJF9YLCcxMjM0NTZhb3VpZScsJ2FvdWllMTIzNDU2Jyk7JF9SPWVyZWdfcmVwbGFjZSgnX19GSUxFX18nLCInIi4kX0YuIiciLCRfWCk7ZXZhbCgkX1IpOyRfUj0wOyRfWD0wOw=="); ?> Code (markup): Hope that helps.