|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 69
Members: 0
Total: 69
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
Trying to decode this PHP file, URLDECODE |
|
Posted: Sat Jun 26, 2010 4:51 pm |
|
|
aservantofhis |
Regular user |
|
|
Joined: Jun 26, 2010 |
Posts: 13 |
|
|
|
|
|
|
|
I have a script where all the siteadmin files are encrypted. I have no idea have to decode them but ive come looking for help to do it.
i dont know anything about this encryption so if you can help that will be great. heres 1 file as an example of what they all look liike. this is index.php
<?php /* This file is protected by copyright law and provided under license. Reverse engineering of this file is strictly prohibited. */$OOO000000=urldecode('%66%67%36%73%62%65%68%70%72%61%34%63%6f%5f%74%6e%64');$OOO0000O0=$OOO000000{4}.$OOO000000{9}.$OOO000000{3}.$OOO000000{5};$OOO0000O0.=$OOO000000{2}.$OOO000000{10}.$OOO000000{13}.$OOO000000{16};$OOO0000O0.=$OOO0000O0{3}.$OOO000000{11}.$OOO000000{12}.$OOO0000O0{7}.$OOO000000{5};$OOO000O00=$OOO000000{0}.$OOO000000{12}.$OOO000000{7}.$OOO000000{5}.$OOO000000{15};$O0O000O00=$OOO000000{0}.$OOO000000{1}.$OOO000000{5}.$OOO000000{14}.$OOO000000{3};$O0O00OO00=$OOO000000{0}.$OOO000000{8}.$OOO000000{5}.$OOO000000{9}.$OOO000000{16};$OOO00000O=$OOO000000{3}.$OOO000000{14}.$OOO000000{8}.$OOO000000{14}.$OOO000000{8};$OOO0O0O00=__FILE__;$OO00O0000=7668;eval($OOO0000O0('aWYoITApJE8wMDBPME8wMD0kT09PMDAwTzAwKCRPT08wTzBPMDAsJ3JiJyk7JE8wTzAwME8wMCgkTzAwME8wTzAwLDEwMjQpOyRPME8wMDBPMDAoJE8wMDBPME8wMCw0MDk2KTskT08wME8wME8wPSRPT08wMDAwTzAoJE9PTzAwMDAwTygkTzBPMDBPTzAwKCRPMDAwTzBPMDAsNTE2KSwndW5sb2NranN0ZXZ4cjIwMVJYVkVOT0xDVFNVSktBYUJiRGRGZkdnSGhJaU1tUHBRcVd3WXlaejM0NTY3ODkrLz0nLCdBQkNERUZHSElKS0xNTk9QUVJTVFVWV1hZWmFiY2RlZmdoaWprbG1ub3BxcnN0dXZ3eHl6MDEyMzQ1Njc4OSsvJykpO2V2YWwoJE9PMDBPMDBPMCk7'));return;?>
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 |
|
|
|
|
|
|
|
|
Posted: Sat Jun 26, 2010 4:56 pm |
|
|
Cyko |
Moderator |
|
|
Joined: Jul 21, 2009 |
Posts: 375 |
|
|
|
|
|
|
|
Its PHPlockit!, and heres the decode:
Code: | <?php
session_start();
if(isset($_SESSION["logedin"])){
header("location:innerhome.php");
exit;
}
include_once("admin.config.inc.php");
include ("config.inc.php");
if(isset($_GET['id'])) $id=$_GET['id'];echo '<html>
<head><title>WelCome To ';
echo $ADMIN_MAIN_SITE_NAME;
echo '</title>
<script>
function Process()
{
document.all.loading.style.visibility = \'visible\';
}
</script>
<link href = "main.css" rel="stylesheet" type="text/css">
</head>
<body bgcolor="#ffffff" leftmargin="0" topmargin="0" marginheight="0" mariginwidth="0">
<TABLE cellSpacing=0 cellPadding=5 width="100%" border=0>
<TBODY>
<TR >
<td class="H1" height=15 bgColor="#FFFFFF" COLSPAN=2 align=center>Welcome to ';
echo $ADMIN_MAIN_SITE_NAME;echo '</td></TR>
<TR bgColor=';
echo $ADMIN_HEADER_BG_COLOR1;echo '>
<TD height=15></TD>
</TR>
<!--<TR bgColor=';echo '>
<TD height=15></TD>
</TR>-->
<TR bgColor=';
echo $ADMIN_HEADER_BG_COLOR3;
echo '>
<TD height=15></TD>
</TR>
</TBODY></TABLE>
<form id=_cti0 name=_cti0 action="password.php" method="post">
<div id="loading">
<table border=1 cellpadding=12 cellspacing=0 bgcolor="#B0B0B0" bordercolor="';
echo $ADMIN_HEADER_BG_COLOR1;
echo '">
<tr>
<td width="314" align="middle" noWrap><font size="2" color="#FFFFFF">One moment please. <b>Loading Page..........</b></font></td>
</tr>
</table>
</div>
<DIV id=mainbody><!--body-->
<TABLE cellSpacing=15 cellPadding=0 width=650 align=center border=0>
<TBODY>
<TR>
<TD noWrap align="middle" colSpan=2> ;;';
if($id==1) {
echo '
<table width="50%" border="1" align="center" cellpadding="2" cellspacing="0" bordercolor = "#475C74" bgcolor="#ffffff">
<tr valign="middle">
<td valign="middle" >
<table border="0" cellpadding="0" cellspacing="0">
<tr>
<td width="17"><img src="images/ALERT.gif" width="16" height="16"></td>
<td align="center" width="500"><font size="2" face="Verdana, Arial, Helvetica, sans-serif" color="#FF0000"><strong> ;; ;; ;;Invalid</strong>
Username or Password</font></td>
</tr>
</table>
</td>
</tr>
</table>
';
}echo ' </TD></TR>
<TR>
<TD vAlign=top width="55%"><!--col002--><!--padding-->
<TABLE cellSpacing=0 cellPadding=2 width="100%" bgColor=';
echo $ADMIN_HEADER_BG_COLOR1;echo '
border=0><TBODY>
<TR>
<TD>
<TABLE cellSpacing=0 cellPadding=5 width="100%" bgColor=#ffffff
border=0>
<TBODY>
<TR>
<TD>
<TABLE cellSpacing=0 cellPadding=5 width="100%"
bgColor="';
echo $ADMIN_TABLE_BG_COLOR;echo '" border=0 style="color:';
echo $ADMIN_TABLE_FONT_COLOR;
echo '">
<TBODY>
<TR>
<TD colSpan=2>
<TABLE cellSpacing=0 cellPadding=5 width="100%"
border=0>
<TBODY>
<TR>
<TD style="color:';
echo $ADMIN_HEADER_FONT_COLOR;
echo '; font-weight:bold;"><B>.: Login</B></TD>
</TR>
</TBODY>
</TABLE></TD>
</TR>
<TR>
<TD align="middle" colSpan=2>Enter your username
and password to log in </TD>
</TR>
<TR>
<TD class=bk align=right width="30%">Username:</TD>
<TD width="70%"><INPUT class="field" id="username" size="25" name="name"></TD>
</TR>
<TR>
<TD class="bk" align="right" width="30%">Password:</TD>
<TD><INPUT class="field" id="pass" type="password" size="25" name="pass"></td>
<tr>
<td colspan="2" align="center"><INPUT language="Javascript" class="bttn" onClick="Process(); if (typeof(Page_ClientValidate) == \'function\') Page_ClientValidate(); " type="submit" value="Sign In" name="_ctl1">
<INPUT TYPE="hidden" NAME="ed_type" VALUE="">
<input type="hidden" name="redirect" value="';
echo $redirect;
echo '"></TD>
</TR>
<TR>
<TD colSpan=2>
</TD>
</TR>
<TR>
<TD colSpan=2></TD>
</TR>
<TR>
<TD width="30%"> ;;</TD>
<TD> ;;</TD>
</TR>
</TBODY>
</TABLE></TD></TR></TBODY></TABLE></TD></TR></TBODY></TABLE><!--/padding--><!--//col002--></TD>
<TD class=g vAlign=top width="45%"><B>New Users:</B><BR>Please retrieve
your user name and temporary password from your email account or contact
an administrator for further instructions. <BR><BR>
</TD>
</TR></TBODY></TABLE></DIV>
</form>
</body>
</html>';
?> |
|
|
|
|
|
|
|
|
|
Posted: Sat Jun 26, 2010 4:58 pm |
|
|
aservantofhis |
Regular user |
|
|
Joined: Jun 26, 2010 |
Posts: 13 |
|
|
|
|
|
|
|
Cyko wrote: | Its PHPlockit!, and heres the decode:
Code: | <?php
session_start();
if(isset($_SESSION["logedin"])){
header("location:innerhome.php");
exit;
}
include_once("admin.config.inc.php");
include ("config.inc.php");
if(isset($_GET['id'])) $id=$_GET['id'];echo '<html>
<head><title>WelCome To ';
echo $ADMIN_MAIN_SITE_NAME;
echo '</title>
<script>
function Process()
{
document.all.loading.style.visibility = \'visible\';
}
</script>
<link href = "main.css" rel="stylesheet" type="text/css">
</head>
<body bgcolor="#ffffff" leftmargin="0" topmargin="0" marginheight="0" mariginwidth="0">
<TABLE cellSpacing=0 cellPadding=5 width="100%" border=0>
<TBODY>
<TR >
<td class="H1" height=15 bgColor="#FFFFFF" COLSPAN=2 align=center>Welcome to ';
echo $ADMIN_MAIN_SITE_NAME;echo '</td></TR>
<TR bgColor=';
echo $ADMIN_HEADER_BG_COLOR1;echo '>
<TD height=15></TD>
</TR>
<!--<TR bgColor=';echo '>
<TD height=15></TD>
</TR>-->
<TR bgColor=';
echo $ADMIN_HEADER_BG_COLOR3;
echo '>
<TD height=15></TD>
</TR>
</TBODY></TABLE>
<form id=_cti0 name=_cti0 action="password.php" method="post">
<div id="loading">
<table border=1 cellpadding=12 cellspacing=0 bgcolor="#B0B0B0" bordercolor="';
echo $ADMIN_HEADER_BG_COLOR1;
echo '">
<tr>
<td width="314" align="middle" noWrap><font size="2" color="#FFFFFF">One moment please. <b>Loading Page..........</b></font></td>
</tr>
</table>
</div>
<DIV id=mainbody><!--body-->
<TABLE cellSpacing=15 cellPadding=0 width=650 align=center border=0>
<TBODY>
<TR>
<TD noWrap align="middle" colSpan=2> ;;';
if($id==1) {
echo '
<table width="50%" border="1" align="center" cellpadding="2" cellspacing="0" bordercolor = "#475C74" bgcolor="#ffffff">
<tr valign="middle">
<td valign="middle" >
<table border="0" cellpadding="0" cellspacing="0">
<tr>
<td width="17"><img src="images/ALERT.gif" width="16" height="16"></td>
<td align="center" width="500"><font size="2" face="Verdana, Arial, Helvetica, sans-serif" color="#FF0000"><strong> ;; ;; ;;Invalid</strong>
Username or Password</font></td>
</tr>
</table>
</td>
</tr>
</table>
';
}echo ' </TD></TR>
<TR>
<TD vAlign=top width="55%"><!--col002--><!--padding-->
<TABLE cellSpacing=0 cellPadding=2 width="100%" bgColor=';
echo $ADMIN_HEADER_BG_COLOR1;echo '
border=0><TBODY>
<TR>
<TD>
<TABLE cellSpacing=0 cellPadding=5 width="100%" bgColor=#ffffff
border=0>
<TBODY>
<TR>
<TD>
<TABLE cellSpacing=0 cellPadding=5 width="100%"
bgColor="';
echo $ADMIN_TABLE_BG_COLOR;echo '" border=0 style="color:';
echo $ADMIN_TABLE_FONT_COLOR;
echo '">
<TBODY>
<TR>
<TD colSpan=2>
<TABLE cellSpacing=0 cellPadding=5 width="100%"
border=0>
<TBODY>
<TR>
<TD style="color:';
echo $ADMIN_HEADER_FONT_COLOR;
echo '; font-weight:bold;"><B>.: Login</B></TD>
</TR>
</TBODY>
</TABLE></TD>
</TR>
<TR>
<TD align="middle" colSpan=2>Enter your username
and password to log in </TD>
</TR>
<TR>
<TD class=bk align=right width="30%">Username:</TD>
<TD width="70%"><INPUT class="field" id="username" size="25" name="name"></TD>
</TR>
<TR>
<TD class="bk" align="right" width="30%">Password:</TD>
<TD><INPUT class="field" id="pass" type="password" size="25" name="pass"></td>
<tr>
<td colspan="2" align="center"><INPUT language="Javascript" class="bttn" onClick="Process(); if (typeof(Page_ClientValidate) == \'function\') Page_ClientValidate(); " type="submit" value="Sign In" name="_ctl1">
<INPUT TYPE="hidden" NAME="ed_type" VALUE="">
<input type="hidden" name="redirect" value="';
echo $redirect;
echo '"></TD>
</TR>
<TR>
<TD colSpan=2>
</TD>
</TR>
<TR>
<TD colSpan=2></TD>
</TR>
<TR>
<TD width="30%"> ;;</TD>
<TD> ;;</TD>
</TR>
</TBODY>
</TABLE></TD></TR></TBODY></TABLE></TD></TR></TBODY></TABLE><!--/padding--><!--//col002--></TD>
<TD class=g vAlign=top width="45%"><B>New Users:</B><BR>Please retrieve
your user name and temporary password from your email account or contact
an administrator for further instructions. <BR><BR>
</TD>
</TR></TBODY></TABLE></DIV>
</form>
</body>
</html>';
?> |
|
wow that was quick. hey thanks mate. Can you show me how you decoded that so i can decode the other files please? |
|
|
|
|
|
|
|
|
Posted: Sat Jun 26, 2010 5:10 pm |
|
|
Cyko |
Moderator |
|
|
Joined: Jul 21, 2009 |
Posts: 375 |
|
|
|
|
|
|
|
aservantofhis wrote: | Cyko wrote: | Its PHPlockit!, and heres the decode:
Code: | <?php
session_start();
if(isset($_SESSION["logedin"])){
header("location:innerhome.php");
exit;
}
include_once("admin.config.inc.php");
include ("config.inc.php");
if(isset($_GET['id'])) $id=$_GET['id'];echo '<html>
<head><title>WelCome To ';
echo $ADMIN_MAIN_SITE_NAME;
echo '</title>
<script>
function Process()
{
document.all.loading.style.visibility = \'visible\';
}
</script>
<link href = "main.css" rel="stylesheet" type="text/css">
</head>
<body bgcolor="#ffffff" leftmargin="0" topmargin="0" marginheight="0" mariginwidth="0">
<TABLE cellSpacing=0 cellPadding=5 width="100%" border=0>
<TBODY>
<TR >
<td class="H1" height=15 bgColor="#FFFFFF" COLSPAN=2 align=center>Welcome to ';
echo $ADMIN_MAIN_SITE_NAME;echo '</td></TR>
<TR bgColor=';
echo $ADMIN_HEADER_BG_COLOR1;echo '>
<TD height=15></TD>
</TR>
<!--<TR bgColor=';echo '>
<TD height=15></TD>
</TR>-->
<TR bgColor=';
echo $ADMIN_HEADER_BG_COLOR3;
echo '>
<TD height=15></TD>
</TR>
</TBODY></TABLE>
<form id=_cti0 name=_cti0 action="password.php" method="post">
<div id="loading">
<table border=1 cellpadding=12 cellspacing=0 bgcolor="#B0B0B0" bordercolor="';
echo $ADMIN_HEADER_BG_COLOR1;
echo '">
<tr>
<td width="314" align="middle" noWrap><font size="2" color="#FFFFFF">One moment please. <b>Loading Page..........</b></font></td>
</tr>
</table>
</div>
<DIV id=mainbody><!--body-->
<TABLE cellSpacing=15 cellPadding=0 width=650 align=center border=0>
<TBODY>
<TR>
<TD noWrap align="middle" colSpan=2> ;;';
if($id==1) {
echo '
<table width="50%" border="1" align="center" cellpadding="2" cellspacing="0" bordercolor = "#475C74" bgcolor="#ffffff">
<tr valign="middle">
<td valign="middle" >
<table border="0" cellpadding="0" cellspacing="0">
<tr>
<td width="17"><img src="images/ALERT.gif" width="16" height="16"></td>
<td align="center" width="500"><font size="2" face="Verdana, Arial, Helvetica, sans-serif" color="#FF0000"><strong> ;; ;; ;;Invalid</strong>
Username or Password</font></td>
</tr>
</table>
</td>
</tr>
</table>
';
}echo ' </TD></TR>
<TR>
<TD vAlign=top width="55%"><!--col002--><!--padding-->
<TABLE cellSpacing=0 cellPadding=2 width="100%" bgColor=';
echo $ADMIN_HEADER_BG_COLOR1;echo '
border=0><TBODY>
<TR>
<TD>
<TABLE cellSpacing=0 cellPadding=5 width="100%" bgColor=#ffffff
border=0>
<TBODY>
<TR>
<TD>
<TABLE cellSpacing=0 cellPadding=5 width="100%"
bgColor="';
echo $ADMIN_TABLE_BG_COLOR;echo '" border=0 style="color:';
echo $ADMIN_TABLE_FONT_COLOR;
echo '">
<TBODY>
<TR>
<TD colSpan=2>
<TABLE cellSpacing=0 cellPadding=5 width="100%"
border=0>
<TBODY>
<TR>
<TD style="color:';
echo $ADMIN_HEADER_FONT_COLOR;
echo '; font-weight:bold;"><B>.: Login</B></TD>
</TR>
</TBODY>
</TABLE></TD>
</TR>
<TR>
<TD align="middle" colSpan=2>Enter your username
and password to log in </TD>
</TR>
<TR>
<TD class=bk align=right width="30%">Username:</TD>
<TD width="70%"><INPUT class="field" id="username" size="25" name="name"></TD>
</TR>
<TR>
<TD class="bk" align="right" width="30%">Password:</TD>
<TD><INPUT class="field" id="pass" type="password" size="25" name="pass"></td>
<tr>
<td colspan="2" align="center"><INPUT language="Javascript" class="bttn" onClick="Process(); if (typeof(Page_ClientValidate) == \'function\') Page_ClientValidate(); " type="submit" value="Sign In" name="_ctl1">
<INPUT TYPE="hidden" NAME="ed_type" VALUE="">
<input type="hidden" name="redirect" value="';
echo $redirect;
echo '"></TD>
</TR>
<TR>
<TD colSpan=2>
</TD>
</TR>
<TR>
<TD colSpan=2></TD>
</TR>
<TR>
<TD width="30%"> ;;</TD>
<TD> ;;</TD>
</TR>
</TBODY>
</TABLE></TD></TR></TBODY></TABLE></TD></TR></TBODY></TABLE><!--/padding--><!--//col002--></TD>
<TD class=g vAlign=top width="45%"><B>New Users:</B><BR>Please retrieve
your user name and temporary password from your email account or contact
an administrator for further instructions. <BR><BR>
</TD>
</TR></TBODY></TABLE></DIV>
</form>
</body>
</html>';
?> |
|
wow that was quick. hey thanks mate. Can you show me how you decoded that so i can decode the other files please? |
refer to my signature: |
|
|
|
|
|
|
|
|
Posted: Sat Jun 26, 2010 5:23 pm |
|
|
aservantofhis |
Regular user |
|
|
Joined: Jun 26, 2010 |
Posts: 13 |
|
|
|
|
|
|
|
thanks mate. I went there and startered to decode the other files within the siteadmin folder and they dont work. for some reason only index.php seems to work. the files look exactly the same. here is another example which i cannot decode at the site you gave....
Code: | <?php /* This file is protected by copyright law and provided under license. Reverse engineering of this file is strictly prohibited. */$OOO000000=urldecode('%66%67%36%73%62%65%68%70%72%61%34%63%6f%5f%74%6e%64');$OOO0000O0=$OOO000000{4}.$OOO000000{9}.$OOO000000{3}.$OOO000000{5};$OOO0000O0.=$OOO000000{2}.$OOO000000{10}.$OOO000000{13}.$OOO000000{16};$OOO0000O0.=$OOO0000O0{3}.$OOO000000{11}.$OOO000000{12}.$OOO0000O0{7}.$OOO000000{5};$OOO000O00=$OOO000000{0}.$OOO000000{12}.$OOO000000{7}.$OOO000000{5}.$OOO000000{15};$O0O000O00=$OOO000000{0}.$OOO000000{1}.$OOO000000{5}.$OOO000000{14}.$OOO000000{3};$O0O00OO00=$OOO000000{0}.$OOO000000{8}.$OOO000000{5}.$OOO000000{9}.$OOO000000{16};$OOO00000O=$OOO000000{3}.$OOO000000{14}.$OOO000000{8}.$OOO000000{14}.$OOO000000{8};$OOO0O0O00=__FILE__;$OO00O0000=3924;eval($OOO0000O0('aWYoITApJE8wMDBPME8wMD0kT09PMDAwTzAwKCRPT08wTzBPMDAsJ3JiJyk7JE8wTzAwME8wMCgkTzAwME8wTzAwLDEwMjQpOyRPME8wMDBPMDAoJE8wMDBPME8wMCw0MDk2KTskT08wME8wME8wPSRPT08wMDAwTzAoJE9PTzAwMDAwTygkTzBPMDBPTzAwKCRPMDAwTzBPMDAsNTE2KSwndW5sb2NranN0ZXZ4cjIwMVJYVkVOT0xDVFNVSktBYUJiRGRGZkdnSGhJaU1tUHBRcVd3WXlaejM0NTY3ODkrLz0nLCdBQkNERUZHSElKS0xNTk9QUVJTVFVWV1hZWmFiY2RlZmdoaWprbG1ub3BxcnN0dXZ3eHl6MDEyMzQ1Njc4OSsvJykpO2V2YWwoJE9PMDBPMDBPMCk7'));return;?>
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 |
what do you reckon?? |
|
|
|
|
|
|
|
|
Posted: Sat Jun 26, 2010 6:01 pm |
|
|
Cyko |
Moderator |
|
|
Joined: Jul 21, 2009 |
Posts: 375 |
|
|
|
|
|
|
|
aservantofhis wrote: | thanks mate. I went there and startered to decode the other files within the siteadmin folder and they dont work. for some reason only index.php seems to work. the files look exactly the same. here is another example which i cannot decode at the site you gave....
Code: | <?php /* This file is protected by copyright law and provided under license. Reverse engineering of this file is strictly prohibited. */$OOO000000=urldecode('%66%67%36%73%62%65%68%70%72%61%34%63%6f%5f%74%6e%64');$OOO0000O0=$OOO000000{4}.$OOO000000{9}.$OOO000000{3}.$OOO000000{5};$OOO0000O0.=$OOO000000{2}.$OOO000000{10}.$OOO000000{13}.$OOO000000{16};$OOO0000O0.=$OOO0000O0{3}.$OOO000000{11}.$OOO000000{12}.$OOO0000O0{7}.$OOO000000{5};$OOO000O00=$OOO000000{0}.$OOO000000{12}.$OOO000000{7}.$OOO000000{5}.$OOO000000{15};$O0O000O00=$OOO000000{0}.$OOO000000{1}.$OOO000000{5}.$OOO000000{14}.$OOO000000{3};$O0O00OO00=$OOO000000{0}.$OOO000000{8}.$OOO000000{5}.$OOO000000{9}.$OOO000000{16};$OOO00000O=$OOO000000{3}.$OOO000000{14}.$OOO000000{8}.$OOO000000{14}.$OOO000000{8};$OOO0O0O00=__FILE__;$OO00O0000=3924;eval($OOO0000O0('aWYoITApJE8wMDBPME8wMD0kT09PMDAwTzAwKCRPT08wTzBPMDAsJ3JiJyk7JE8wTzAwME8wMCgkTzAwME8wTzAwLDEwMjQpOyRPME8wMDBPMDAoJE8wMDBPME8wMCw0MDk2KTskT08wME8wME8wPSRPT08wMDAwTzAoJE9PTzAwMDAwTygkTzBPMDBPTzAwKCRPMDAwTzBPMDAsNTE2KSwndW5sb2NranN0ZXZ4cjIwMVJYVkVOT0xDVFNVSktBYUJiRGRGZkdnSGhJaU1tUHBRcVd3WXlaejM0NTY3ODkrLz0nLCdBQkNERUZHSElKS0xNTk9QUVJTVFVWV1hZWmFiY2RlZmdoaWprbG1ub3BxcnN0dXZ3eHl6MDEyMzQ1Njc4OSsvJykpO2V2YWwoJE9PMDBPMDBPMCk7'));return;?>
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 |
what do you reckon?? |
I'll update my decoder and get back to you so you can proceed decoding on your own... |
|
|
|
|
|
|
|
|
Posted: Sat Jun 26, 2010 11:58 pm |
|
|
aservantofhis |
Regular user |
|
|
Joined: Jun 26, 2010 |
Posts: 13 |
|
|
|
|
|
|
|
wow thankyou. id love to be able to decode it by myself. Thanks! |
|
|
|
|
Posted: Tue Jun 29, 2010 2:50 am |
|
|
LeetWolf |
Beginner |
|
|
Joined: Jun 29, 2010 |
Posts: 2 |
|
|
|
|
|
|
|
Hey Cyko! lol, you are everywhere these days aren't you man? |
|
|
|
|
www.waraxe.us Forum Index -> PHP script decode requests
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|