|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 55
Members: 0
Total: 55
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
Please help me decode :( |
|
Posted: Fri Jul 04, 2008 3:39 pm |
|
|
cloud9 |
Beginner |
|
|
Joined: Jul 04, 2008 |
Posts: 2 |
|
|
|
|
|
|
|
Hello all,
I have a base 64 code here
Code: | eval(gzinflate(base64_decode("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"))); |
and I managed to decode them and now the result is this:
Code: | eval(gzuncompress(base64_decode("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"))); |
Now I'm stuck with this code above, I hope somebody can help me with this
Thanks in advance |
|
|
|
|
|
|
|
|
Posted: Sat Jul 05, 2008 11:20 am |
|
|
arifw |
Regular user |
|
|
Joined: Jul 05, 2008 |
Posts: 15 |
|
|
|
|
|
|
|
Nested
Code: |
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en-US" xml:lang="en-US">
<head>
<title><!--[glype:site_name]--></title>
<link rel="stylesheet" type="text/css" href="themes/<?php echo siteSKIN;?>/style.css" media="screen" />
<meta name="description" content="<!--[glype:index_meta_description]-->" />
<meta name="keywords" content="<!--[glype:index_meta_keywords]-->" />
</head>
<body>
<!--
BluLens glype template by www.glypedesigns.com
-->
<center>
<div class="center">
<div class="bl">
<div class="tl">
<h1>
<!--[glype:index_h1]-->
</h1>
<h2>
<!--[glype:index_h2]-->
</h2>
<div class="nav">
<!--[glype:index_nav]-->
</div>
<div class="content">
<div id="description">
<h3>
<!--[glype:index_description_heading]-->
</h3>
<div class="text">
<!--[glype:index_description]-->
</div>
<!--[glype:index_above_form]-->
<!--[glype:error]-->
<?php ## Display error messge if applicable
if ( isset($_SESSION['msg']) ) {
echo '<div id="error">',$_SESSION['msg'],'</div>';
unset($_SESSION['msg']);
} ?>
<form action="includes/process.php?action=update" method="post">
<div class="url_form">
<input type="text" name="u" />
</div>
<input type="submit" value="" class="button" />
<div id="options">
<?php foreach ( $toShow as $option ) {
$isChecked = $option['checked'] ? ' checked="checked"' : '';
echo <<<HTML
<input type="checkbox" name="{$option['name']}" id="{$option['name']}"{$isChecked} />
<label for="{$option['name']}" class="tooltip" title="{$option['title']}::{$option['desc']}">{$option['title']}</label>
HTML;
} ?>
</div>
</form>
<!--[glype:index_below_form]-->
</div>
</div>
<div id="sidebar">
<!--[glype:index_sidebar]-->
</div>
<div id="footer">
<!--[glype:index_footer]--> ;; ;;
Powered by <a href="http://www.glype.com/">glype</a> -
Design by <a href="http://www.glypedesigns.com" title="glype templates">Glype templates</a> -
<a href="http://www.expertunblocker.com" title="Unblocker">Unblocker</a>
</div>
</div>
</div>
</div>
</center>
</body>
</html>
|
|
|
|
|
|
|
|
thanks |
|
Posted: Sat Jul 05, 2008 3:10 pm |
|
|
cloud9 |
Beginner |
|
|
Joined: Jul 04, 2008 |
Posts: 2 |
|
|
|
|
|
|
|
thanks arfifw can you teach me how you decode that?? I use the script from here to decode>> http://danilo.ariadoss.com/2006/01/04/decoding-eval-gzinflate-base64_decode/ and it left me with the second code
after that I try to decode the second code but the script just spit error message :/ My guess is the code is encrypted multiple time. Can you teach me or post here your script??
Your help is really appreciated Thanks again. |
|
|
|
|
www.waraxe.us Forum Index -> PHP script decode requests
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|