Waraxe IT Security Portal
Login or Register
November 24, 2024
Menu
Home
Logout
Discussions
Forums
Members List
IRC chat
Tools
Base64 coder
MD5 hash
CRC32 checksum
ROT13 coder
SHA-1 hash
URL-decoder
Sql Char Encoder
Affiliates
y3dips ITsec
Md5 Cracker
User Manuals
AlbumNow
Content
Content
Sections
FAQ
Top
Info
Feedback
Recommend Us
Search
Journal
Your Account
User Info
Welcome, Anonymous
Nickname
Password
(Register)

Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144

People Online:
Visitors: 72
Members: 0
Total: 72
Full disclosure
APPLE-SA-11-19-2024-5 macOS Sequoia 15.1.1
Local Privilege Escalations in needrestart
APPLE-SA-11-19-2024-4 iOS 17.7.2 and iPadOS 17.7.2
APPLE-SA-11-19-2024-3 iOS 18.1.1 and iPadOS 18.1.1
APPLE-SA-11-19-2024-2 visionOS 2.1.1
APPLE-SA-11-19-2024-1 Safari 18.1.1
Reflected XSS - fronsetiav1.1
XXE OOB - fronsetiav1.1
St. Poelten UAS | Path Traversal in Korenix JetPort 5601
St. Poelten UAS | Multiple Stored Cross-Site Scripting in SEH utnserver Pro
Apple web content filter bypass allows unrestricted access to blocked content (macOS/iOS/iPadOS/visionO S/watchOS)
SEC Consult SA-20241112-0 :: Multiple vulnerabilities in Siemens Energy Omnivise T3000 (CVE-2024-38876, CVE-2024-38877, CVE-2024-38878, CVE-2024-38879)
Security issue in the TX Text Control .NET Server for ASP.NET.
SEC Consult SA-20241107-0 :: Multiple Vulnerabilities in HASOMED Elefant and Elefant Software Updater
Unsafe eval() in TestRail CLI
Log in Register Forum FAQ Memberlist Search
IT Security and Insecurity Portal

www.waraxe.us Forum Index -> PHP script decode requests -> Please help with decoding
Post new topicReply to topic View previous topic :: View next topic
Please help with decoding
PostPosted: Wed Dec 09, 2009 1:25 pm Reply with quote
vladowsky
Beginner
Beginner
Joined: Dec 09, 2009
Posts: 2




Can somebody please decode this

Code:
$slk_evc='+jEb4SdZmf0hnAtiQuScJkylU8hS48qBQjXOQR8U/pcb4fHBRZH=rp66/RBVyyDL/2oxpLoxJL0WAk+lyOlX08BS/ZBSXkDLrj+O0y+7XpEHQu+lRiE=Jk+6UREvEpzHQkzfpUd=JD0SXkzpJUqDANw6U8CSQkqgyiyX0flKpssGJp8gJUm=J3ziRsHo4NV7CL8gXksiApEo4kqB4goZJLo2Ai8ZC8oHQks+JksiADEbQUEg0jm+0SXVUREArUygpUmZykV1/k0SppDLyi8X0S+VXpEHQu+lRiE+HjmwRfqaCk8Nm3zEyNDSA2wWAksgJUm+J3Jk/ym6Qusgp9oXJ2m2AD0SCNzHQkqg0LoxJpEoXk8gJUm+JksaAUS6m8DKmum0yNs7Xsc=4fHBAZH=JSXSUR+24kl9m3cv4flKpssGJp8gJUm+JksiApEH43yBpim04Ro2ADE=C3BKRi+XJLyHApcu4fNKX3VxHUdPRN0z4SqpX3lxySwSASELvpEiJUm+JksiApEoXkqgQuSZJLo2AREUryDLpi88JSsq/DCV4fNKEulxySw6ApH2QNSpARy+JLyHADEMrsDLRZmJpUdoApEoXk8gJUm+JSsWUpELmNSgHR+nrZoxJpEoXk8g0R8gXksiApEo4UH9pZsZQZyGApc=0ywKvyEDykB6UymvQusg/2X0Hfc6R9q6UUENJRX=JLcPRNEZQDzgpUl8AsBSASELvpEi0R8gXLNVJ3mH4fXjmjXUANV7Up0WmkDLyi8X0S+VXpEH4fXjmjXUQy+LAREArUEBvUq8JSs7XDmkm8XlpiE=rRhaRi8aCD8742+JpUd=UfSimsqjyRH=ANwS/8mi4kDLrj+O0y+1UR+aCN8gH9HEJ3Eq/yHZr8qlAREv48pzRUSUQpVNpRo4yS+aRSHE0NSlHRo4yuE2RSHAQkdN/2o0pUd0X8sGADNLrj+O0y+WU8miQD8V0pyEHgo7ysEbHssgyfyXyS/WXpCV4Uy9Cgs4Hks7/Z+AQs8g09X4H3zl/ymv4sqBQjXOQpsaU8mA0yDKpZs4HkyPASELvpEi4kXcAuzaXpEaC8oHQkVfpUdop8m4ru+jX3V0rZJLRu8v0uEPvyEDykB6UymvQusg/2X/0yq=yNyUpshz/2E=r9c/AiDk4kDLrj+O0yqW/DmUmpqVrsc=r9m7XDmkm8XjRiqcJk66/RBVyyDLX38Xyk6zUfqHxSXjyfqO08+b/pEArUy90Ud=Jk66/RBVyU0KRioxp2mPASyvHp6LpiHRHkVgyfl=4kkWvpsv0NBkXUSD4DVyARXA09HJA3Si03EP4synHpXBXDyApkVbXuVcH3WKUDyA4y+jAimny9c+Rfl4vs0WpZ8R0NpLX8yZCNlR42oxrOCTgJqqXOhcXiyP/2HqQ3VYX9cqC2HL=MmLQulYXjEZ+KDqgJqTgJqfmUVZmu8GQOoLQulYXjEZ=MHLmjBqgJqTgJw+XfdK=MHqnRtT+uDIC2HKQuyP=MHLmjBqvKHq=KbqgJw+rWk=MJDDQ2+DBgkhQ2+D=jES/iEkCOhDC2HKxMHqxgNq=RbEMhD++uc8rMtdBMcLmj+qQfCqC2yOC2HK=MCW0MCb0MWKx9EkCfz8QOcLmj+KX9/wXuyZ4uy6=MHGCfJq=ADqxfH8/3c8rMhDQ2+D=RbEMhD++uc8rMtdBMCWrMCPC2yOC2HK=MCW0MCb0MWKx9EkCfz8QOcLmj+KX9/w+uc8rMDq=AVLmj+KX9/w+uc8rMDTgJw+MAHD/9HcBM6dBuEwCOcwX9cDXU0w+uc8rMDqvWk=M9kEMh8KX9HSCf6w+uHcmuNqvWk=YJk=YJk=X9XcQMcLQulYXjEZ=u+cC3p3EsdDXUEGXupw+jEb4SdZmf0q=ADT';$slk_dvc='';$slk_file=__FILE__;eval(base64_decode($slk_dvc));
return;?>



Thank you in advance
View user's profile Send private message Visit poster's website
PostPosted: Wed Dec 09, 2009 5:06 pm Reply with quote
Cyko
Moderator
Moderator
Joined: Jul 21, 2009
Posts: 375




Code:
<?php

/*
Separate class for posting videos
*/

class WPVT_Poster
{
private $model;

private $post_comment_status = 'open'; // post comment status open or closed for commenting
private $post_ping_status = 'open'; // post ping status open or closed

public function __construct()
{
// make a new model
$this->model = new WPVT_Model;
}

public function post_video($id)
{
// a lil check :)
$id = (int) $id;

// get search term info
$sql = "SELECT * FROM {$this->model->db_table_search_terms} WHERE id = $id";
$result = $this->model->wpdb->get_row($sql);

// if there is such search term and it's not adding a new video right now
if (null != $result && 0 == $result->adding_video)
{
// we set adding_video flag to 1
$sql = "UPDATE {$this->model->db_table_search_terms} SET `adding_video` = 1 WHERE id = $id";
$this->model->wpdb->query($sql);

// we choose function's name for search_type
switch($result->search_type)
{
case 'videos':
$yt_videos_func = 'youtube_videos';
break;

case 'profile':
$yt_videos_func = 'youtube_profile';
break;

case 'most_viewed':
$yt_videos_func = 'youtube_most_viewed';
break;

case 'top_rated':
$yt_videos_func = 'youtube_top_rated';
break;

case 'recently_featured':
$yt_videos_func = 'youtube_recently_featured';
break;

case 'categories_keywords':
$yt_videos_func = 'youtube_categories_keywords';
break;

// this shouldn't really happen, but just in case we stop the method here
default:
return false;
}

// now we try each video and find a unique one
$loop_number = 0;
$videos_per_try = 50; // how many videos get per one request
$video_num = 0; // counts each video
$videos_found = 0; // zero currently
$video_new = false; // false by default
do
{
++$loop_number; // increment it right away

// get videos
$videos = $this->$yt_videos_func($result->search_query, $loop_number, $videos_per_try);

// set total num of videos for this query
#$videos_found = $videos->totalResults->text;
$counts = $videos->children('http://a9.com/-/spec/opensearch/1.1/');
$videos_found = $counts->totalResults;

foreach ($videos->entry as $video)
{
// loop thru each video, to find a unique one

// we increment $video_num right way, the first video will be #1
++$video_num;

// get nodes in media: namespace for media information
$media = $video->children('http://search.yahoo.com/mrss/');

// get nodes in yt: namespace
$yt_ns = $media->children('http://gdata.youtube.com/schemas/2007');

// get content attributes for video url
$cont_attr = $video->content->attributes();

// if we have such content type
if ("application/x-shockwave-flash" == $cont_attr['type'])
{
// get video url
$video_url = (string) $cont_attr['src'];
}
// if we couldn't get video_url, skip the video
else
{
// this should not happen, but just in case
continue;
}

// we get its video id
$video_id = $yt_ns->videoid;

// and see whether we have this id (video) in our database already
$sql = "SELECT id FROM {$this->model->db_table_added_videos} WHERE video_id = '$video_id'";

$a = $this->model->wpdb->get_var($sql);

// if there is no such video, we have a unique one
if (null == $a && false !== $a)
{
$video_new = $media;

// we break out of the loop... twice
break 2;
}
}
}
while ($loop_number * $videos_per_try < $videos_found);


// if we have a unique video
if (false !== $video_new)
{
// get post_code
if (false === ($wpvt_postcode = get_option('wpvt_postcode')))
{
// if for some reason it couldn't get it, fallback to default post code
$wpvt_postcode = $this->model->default_post_code;
}

$pattern = array(
"/{video_url}/i",
"/{video_description}/i",
"/{search_query}/i",
);

$replacement = array(
$video_url, // this has been set already before
$video_new->group->description,
$result->search_query,
);

// substitute values in post content
$post_content = preg_replace($pattern, $replacement, $wpvt_postcode);

// and create a post
$wpvt_post = array(
'post_title' => $this->model->wpdb->escape($video_new->group->title),
'post_content' => $this->model->wpdb->escape($post_content),
'post_author' => $result->post_author_id,
'post_status' => $result->post_status,
'post_category' => array($result->category_id), // category id
'tags_input' => $this->model->wpdb->escape($video_new->group->keywords),
'comment_status' => $this->post_comment_status,
'ping_status' => $this->post_ping_status,
);

// remove wp internal filters for posts (to allow <object> tag)
kses_remove_filters();

// insert the post
$post_id = wp_insert_post($wpvt_post);

// we add removed filters back
kses_init_filters();

// add video to added videos table
$this->add_video_2db($video_id, $post_id);

// if we are allowed to add comments
if ("yes" == $result->post_comments)
{
// add comments to the post
$this->add_comments($post_id, $video_id, $result->post_status);
}

// if humanize posts is set
if (1 == $result->humanized)
{
// call this func to change humanize post schedule seconds for search term
$this->model->set_schedule($result->run_num, $result->run_period, $result->humanized);
}

// set stat row
$this->model->set_stat_row($id, $post_id, $video_num, $videos_found);
}
// if we couldn't find a new video
else
{
// if humanize posts is set
if (1 == $result->humanized)
{
// call this func to change human post schedule seconds for search term
$this->model->set_schedule($result->run_num, $result->run_period, $result->humanized);
}

// set stat row for videos wasn't found
$this->model->set_stat_row($id, 0, 0, $videos_found);
}

// set adding_video back to 0
$sql = "UPDATE {$this->model->db_table_search_terms} SET `adding_video` = 0 WHERE id = $id";
$this->model->wpdb->query($sql);

// regenrate wp cron hooks, schedules for about every 30th run
if (0 == mt_rand() % 30)
{
$this->model->cron_schedules_regen();
}
}
// couldn't find such search term or it's already adding a video right now
else
{
return false;
}
}

// just search for videos
private function youtube_videos($search_query, $start_index = 1, $max_results = 50)
{
/*
format=5 - is for getting only embeddable videos
*/

$q = (!empty($search_query)) ? "q=" . urlencode($search_query) . "&" : null;

if (false !== ($videos = $this->simpleXML("http://gdata.youtube.com/feeds/api/videos?{$q}&start-index=$start_index&max-results=$max_results&v=2&format=5")))
{
return $videos;
}
else
{
return false;
}
}

// get videos by profile, returns videos!
private function youtube_profile($search_query, $start_index = 1, $max_results = 50)
{
if (false !== ($videos = $this->simpleXML("http://gdata.youtube.com/feeds/api/users/" . urlencode($search_query) . "/uploads?start-index=$start_index&max-results=$max_results&v=2&format=5")))
{
return $videos;
}
else
{
return false;
}
}

// get most viewed videos
private function youtube_most_viewed($search_query, $start_index = 1, $max_results = 50)
{
// set video query
$q = (!empty($search_query)) ? "q=" . urlencode($search_query) . "&" : null;

if (false !== ($videos = $this->simpleXML("http://gdata.youtube.com/feeds/api/standardfeeds/most_viewed?{$q}start-index=$start_index&max-results=$max_results&v=2&format=5")))
{
return $videos;
}
else
{
return false;
}
}

// get top rated videos
private function youtube_top_rated($search_query, $start_index = 1, $max_results = 50)
{
// set video query
$q = (!empty($search_query)) ? "q=" . urlencode($search_query) . "&" : null;

if (false !== ($videos = $this->simpleXML("http://gdata.youtube.com/feeds/api/standardfeeds/top_rated?{$q}start-index=$start_index&max-results=$max_results&v=2&format=5")))
{
return $videos;
}
else
{
return false;
}
}

// get recently featured videos
private function youtube_recently_featured($search_query, $start_index = 1, $max_results = 50)
{
// set video query
$q = (!empty($search_query)) ? "q=" . urlencode($search_query) . "&" : null;

if (false !== ($videos = $this->simpleXML("http://gdata.youtube.com/feeds/api/standardfeeds/recently_featured?{$q}start-index=$start_index&max-results=$max_results&v=2&format=5")))
{
return $videos;
}
else
{
return false;
}
}

// get videos for categories, keywords
private function youtube_categories_keywords($search_query, $start_index = 1, $max_results = 50)
{
/*
Category start from an upper case letter "Category"
and keywords from lower case letter "keyword keyword"
*/

// get words out of search query
preg_match_all("/(\S+)/i", $search_query, $matches);

// urlencode each word
foreach ($matches[0] as $key => $value)
{
$matches[0][$key] = urlencode($value);
}

// create search query url
$search_query_url = implode("/", $matches[0]);


if (false !== ($videos = $this->simpleXML("http://gdata.youtube.com/feeds/api/videos/-/$search_query_url?start-index=$start_index&max-results=$max_results&v=2&format=5")))
{
return $videos;
}
else
{
return false;
}
}

// add comments
private function add_comments($post_id, $videoid, $post_status)
{
// set comment status to unapproved
if ("pending" == $post_status || "draft" == $post_status)
{
$comment_approved = 0;
}
// set comment status to approved
else
{
$comment_approved = 1;
}

// get video comments
$video_comments = $this->simpleXML("http://gdata.youtube.com/feeds/api/videos/$videoid/comments");

// gmt offset seconds
$gmt_offset_seconds = get_option('gmt_offset') * 3600;

foreach ($video_comments->entry as $entry)
{
$commentdata = array(
'comment_post_ID' => $post_id,
'comment_author' => $entry->author->name,
'comment_author_email' => "wp@video.tube",
'comment_author_IP' => '0.0.0.0', // none
'comment_approved' => $comment_approved, // approved or unapproved comment
// escape comment text when adding it to the db
'comment_content' => $this->model->wpdb->escape($entry->content),
'user_ID' => 0,
'comment_agent' => '',
'comment_author_url' => '',
);

// get timestamp of 2007-09-19T05:36:50.000Z
preg_match("/^([0-9]{1,4})-([0-9]{1,2})-([0-9]{1,2}).?([0-9]{1,2}):([0-9]{1,2}):([0-9]{1,2})/", $entry->updated, $matches);

$updated_gmt_seconds = mktime($matches[4],$matches[5],$matches[6],$matches[2],$matches[3],$matches[1]);

// set local and GMT time
$commentdata['comment_date'] = date("Y-m-d H:i:s", $updated_gmt_seconds + $gmt_offset_seconds);
$commentdata['comment_date_gmt'] = date("Y-m-d H:i:s", $updated_gmt_seconds);

// we need this
$commentdata = wp_filter_comment($commentdata);

#black list check
if ( wp_blacklist_check($commentdata['comment_author'], $commentdata['comment_author_email'], "", $commentdata['comment_content'], $commentdata['comment_author_IP'], "") )
{
$commentdata['comment_approved'] = 'spam';
}

wp_insert_comment($commentdata);
}

return true;
}

/*********************************************/

private function simpleXML($url, $post_method = 0, $post_data = array())
{
// make request via curl
$response = $this->getCurl($url, $post_method = 0, $post_data = array());

// if we got a response
if (false !== $response)
{
$xml = simplexml_load_string($response);

return $xml;
}
else
{
return false;
}
}

// use only curl to make requests
private function getCurl($url, $post_method = 0, $post_data = array())
{
$ch = curl_init($url);

// GET is the default http method
curl_setopt($ch, CURLOPT_HEADER, 0); // don't include header in the output
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); // to return output as a string rather than echoin it


// swich to POST
if (1 == $post_method && is_array($post_data) && 0 < count($post_data))
{
// post_data - should be an array with the field name as key and field data as value
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $post_data);
}

$output = curl_exec($ch);
//error_log($url); error_log($output);
curl_close($ch);

return $output;
}

// add video to added videos table
private function add_video_2db($video_id, $post_id)
{
$sql = "INSERT INTO {$this->model->db_table_added_videos} (`video_id`, `post_id`)
VALUES ('$video_id', '$post_id')";

return $this->model->wpdb->query($sql);
}

// blog posts
public function blog_posts()
{
// include required file
require_once(ABSPATH . WPINC . '/rss.php');

// use Magpie rss from /wp-includes/rss.php
init(); // init
$resp = _fetch_remote_file('http://www.neil-harvey.com/feed');
if (is_success($resp->status)) {
$rss = _response_to_rss($resp);

// we get last 3 blog's entries
$blog_posts = array_slice($rss->items, 0, 3);

$posts_arr = array();
foreach ($blog_posts as $item)
{
$posts_arr[] = array(
'title' => $item['title'],
'description' => $item['description'],
'link' => $item['link'],
);
}

// write everything to an option
if (false === get_option('wpvt_blog_posts'))
{
add_option('wpvt_blog_posts', $posts_arr);
}
else
{
update_option('wpvt_blog_posts', $posts_arr);
}
} else {
// if couldn't fetch posts
return false;
}
}
}
?>
View user's profile Send private message
thanx again
PostPosted: Wed Dec 09, 2009 6:23 pm Reply with quote
vladowsky
Beginner
Beginner
Joined: Dec 09, 2009
Posts: 2




great site;)
respect!
View user's profile Send private message Visit poster's website
Please help with decoding
www.waraxe.us Forum Index -> PHP script decode requests
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
All times are GMT
Page 1 of 1

Post new topicReply to topic


Powered by phpBB © 2001-2008 phpBB Group



Space Raider game for Android, free download - Space Raider gameplay video - Zone Raider mobile games
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2024 Janek Vind "waraxe"
Page Generation: 0.043 Seconds