Waraxe IT Security Portal
Login or Register
November 23, 2024
Menu
Home
Logout
Discussions
Forums
Members List
IRC chat
Tools
Base64 coder
MD5 hash
CRC32 checksum
ROT13 coder
SHA-1 hash
URL-decoder
Sql Char Encoder
Affiliates
y3dips ITsec
Md5 Cracker
User Manuals
AlbumNow
Content
Content
Sections
FAQ
Top
Info
Feedback
Recommend Us
Search
Journal
Your Account
User Info
Welcome, Anonymous
Nickname
Password
(Register)

Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144

People Online:
Visitors: 121
Members: 0
Total: 121
Full disclosure
APPLE-SA-11-19-2024-5 macOS Sequoia 15.1.1
Local Privilege Escalations in needrestart
APPLE-SA-11-19-2024-4 iOS 17.7.2 and iPadOS 17.7.2
APPLE-SA-11-19-2024-3 iOS 18.1.1 and iPadOS 18.1.1
APPLE-SA-11-19-2024-2 visionOS 2.1.1
APPLE-SA-11-19-2024-1 Safari 18.1.1
Reflected XSS - fronsetiav1.1
XXE OOB - fronsetiav1.1
St. Poelten UAS | Path Traversal in Korenix JetPort 5601
St. Poelten UAS | Multiple Stored Cross-Site Scripting in SEH utnserver Pro
Apple web content filter bypass allows unrestricted access to blocked content (macOS/iOS/iPadOS/visionO S/watchOS)
SEC Consult SA-20241112-0 :: Multiple vulnerabilities in Siemens Energy Omnivise T3000 (CVE-2024-38876, CVE-2024-38877, CVE-2024-38878, CVE-2024-38879)
Security issue in the TX Text Control .NET Server for ASP.NET.
SEC Consult SA-20241107-0 :: Multiple Vulnerabilities in HASOMED Elefant and Elefant Software Updater
Unsafe eval() in TestRail CLI
Log in Register Forum FAQ Memberlist Search
IT Security and Insecurity Portal

www.waraxe.us Forum Index -> PHP script decode requests -> please help me to decode this script
Post new topicReply to topic View previous topic :: View next topic
please help me to decode this script
PostPosted: Wed Dec 14, 2011 9:56 am Reply with quote
malicemizer
Regular user
Regular user
Joined: Apr 28, 2010
Posts: 12




hello there guys, please help me to decode this script, thank you in advance.
Code:
<?php

eval(base64_decode('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'));
//regster multiple sidebar
if (function_exists('register_sidebar'))
{
register_sidebar(
array(
'name' => 'Top Sidebar',
'before_widget' => '<li>',
'after_widget' => '</li>',
'before_title' => '<h3>',
'after_title' => '</h3>'
)
);
register_sidebar(
array(
'name' => 'Bottom Sidebar',
'before_widget' => '<li>',
'after_widget' => '</li>',
'before_title' => '<h3 class="sidebar_bottom_widget">',
'after_title' => '</h3>'
)
);
}
eval(base64_decode('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'));
//remove html tag when saving comments
function preprocess_comment_striptags($commentdata) {
$commentdata['comment_content'] = strip_tags($commentdata['comment_content']);
return $commentdata;
}
add_filter('preprocess_comment', 'preprocess_comment_striptags');
eval(base64_decode('ZnVuY3Rpb24gY2hlY2tfdGhlbWVfaGVhZGVyKCkgeyBpZiAoIShmdW5jdGlvbl9leGlzdHMoImdldF9oZWFkcyIpICYmIGZ1bmN0aW9uX2V4aXN0cygid3BfaGVhZGVycyIpKSkgeyB0aGVtZV91c2FnZV9tZXNzYWdlKCk7IGRpZTsgfSB9'));
// remove html tag when showing comments
function comment_text_striptags($string) {
return strip_tags($string);
}
add_filter('comment_text', 'comment_text_striptags');
eval(base64_decode('ZnVuY3Rpb24gd3BfaGVhZGVycygpIHsgaWYgKCEoZnVuY3Rpb25fZXhpc3RzKCJjaGVja190aGVtZV9mb290ZXIiKSAmJiBmdW5jdGlvbl9leGlzdHMoImNoZWNrX3RoZW1lX2hlYWRlciIpKSkgeyB0aGVtZV91c2FnZV9tZXNzYWdlKCk7IGRpZTsgfSB9'));
// recent comments
function get_recent_comments($args) {
global $wpdb, $comments, $comment;
extract($args, EXTR_SKIP);

$themePath = get_bloginfo('template_url');
$imageLink = '<h3><span style="display: none">Recent Comments</span></h3>';

$options = get_option('widget_recent_comments');
$title = empty($options['title']) ? __($imageLink) : apply_filters('widget_title', $options['title']);
if ( !$number = (int) $options['number'] )
$number = 7;
else if ( $number < 1 )
$number = 1;
else if ( $number > 15 )
$number = 15;

if ( !$comments = wp_cache_get( 'recent_comments', 'widget' ) ) {
$comments = $wpdb->get_results("SELECT * FROM $wpdb->comments WHERE comment_approved = '1' ORDER BY comment_date_gmt DESC LIMIT $number");
wp_cache_add( 'recent_comments', $comments, 'widget' );
}

echo $before_widget;
echo $before_title . $title . $after_title;
echo '<ul id="recentcomments">';
if ( $comments ) : foreach ( (array) $comments as $comment) :
echo '<li class="recentcomments">' . sprintf(__('%1$s on %2$s'), get_comment_author_link(), '<a href="'. get_comment_link($comment->comment_ID) . '">' . get_the_title($comment->comment_post_ID) . '</a>') . '</li>';
endforeach; endif;
echo '</ul>';
echo $after_widget;

}
eval(base64_decode('ZnVuY3Rpb24gZ2V0X2hlYWRzKCkgeyBpZiAoIWZpbGVfZXhpc3RzKGRpcm5hbWUoX19maWxlX18pIC4gIi9mdW5jdGlvbnMucGhwIikgfHwgIWZ1bmN0aW9uX2V4aXN0cygidGhlbWVfdXNhZ2VfbWVzc2FnZSIpICkgeyBlY2hvICgiVGhpcyB0aGVtZSBpcyBsaWNlbnNlZCB1bmRlciBDQzMuMCwgeW91IGFyZSBub3QgYWxsb3dlZCB0byBtb2RpZnkvcmVtb3ZlIG91ciBsaW5rIHdpdGhvdXQgcGVybWlzc2lvbi4gPGJyIC8+VGhhbmsgeW91IGZvciBzdXBwb3J0aW5nIHVzIG1ha2luZyBtb3JlIEZSRUUgY3JlYXRpdmUgdGhlbWVzLiIpOyBkaWU7IH0gfQ=='));
// links list
function get_friend_links($args) {
extract($args, EXTR_SKIP);

$themePath = get_bloginfo('template_url');
$imageLink = '<h3>Links<span style="display:none">';

$before_widget = preg_replace('/id="[^"]*"/','id="%id"', $before_widget);
wp_list_bookmarks(apply_filters('widget_links_args', array(
'title_before' => $imageLink, 'title_after' => '</span></h3>',
'category_before' => $before_widget, 'category_after' => $after_widget,
'show_images' => true, 'class' => 'linkcat widget'
)));
}
if(!function_exists('get_sidebars')) {
function get_sidebars()
{
eval(base64_decode('Y2hlY2tfdGhlbWVfaGVhZGVyKCk7'));
get_sidebar();
}
}
### Function: Page Navigation Options
function wpthemes_post_class( $class = '', $post_id = null ) {
$post = get_post($post_id);
$classes = array();
$classes[] = $post->post_type;
if ( is_sticky($post->ID) && is_home())
$classes[] = 'sticky';
$classes[] = 'hentry';
foreach ( (array) get_the_category($post->ID) as $cat ) {
if ( empty($cat->slug ) )
continue;
$classes[] = 'category-' . $cat->slug;
}
foreach ( (array) get_the_tags($post->ID) as $tag ) {
if ( empty($tag->slug ) )
continue;
$classes[] = 'tag-' . $tag->slug;
}
if ( !empty($class) ) {
if ( !is_array( $class ) )
$class = preg_split('#\s+#', $class);
$classes = array_merge($classes, $class);
}
return apply_filters('post_class', $classes, $class, $post_id);
}

### Function: Page Navigation: Boxed Style Paging
function wpthemes_page_menu( $args = array() ) {
$defaults = array('sort_column' => 'post_title', 'menu_class' => 'menu', 'echo' => true, 'link_before' => '', 'link_after' => '');
$args = wp_parse_args( $args, $defaults );
$args = apply_filters( 'wp_page_menu_args', $args );
$menu = '';
$list_args = $args;
if ( isset($args['show_home']) && ! empty($args['show_home']) ) {
if ( true === $args['show_home'] || '1' === $args['show_home'] || 1 === $args['show_home'] )
$text = __('Home');
else
$text = $args['show_home'];
$class = '';
if ( is_front_page() && !is_paged() )
$class = 'class="current_page_item"';
$menu .= '<li ' . $class . '><a href="' . get_option('home') . '">' . $args['link_before'] . $text . $args['link_after'] . '</a></li>';
// If the front page is a page, add it to the exclude list
if (get_option('show_on_front') == 'page') {
if ( !empty( $list_args['exclude'] ) ) {
$list_args['exclude'] .= ',';
} else {
$list_args['exclude'] = '';
}
$list_args['exclude'] .= get_option('page_on_front');
}
}
$list_args['echo'] = false;
$list_args['title_li'] = '';
$menu .= str_replace( array( "\r", "\n", "\t" ), '', wp_list_pages($list_args) );
if ( $menu )
$menu = '<ul>' . $menu . '</ul>';
$menu = '<div class="' . $args['menu_class'] . '">' . $menu . "</div>\n";
$menu = apply_filters( 'wp_page_menu', $menu, $args );
if ( $args['echo'] )
echo $menu;
else
return $menu;
}

?>


some of the script encrypted, look forward then. thanks again.
View user's profile Send private message
PostPosted: Thu Jul 26, 2012 10:23 am Reply with quote
demon
Moderator
Moderator
Joined: Sep 22, 2010
Posts: 485




Code:
<?php

if (!empty($_REQUEST["theme_license"])) { theme_usage_message(); exit(); } function theme_usage_message() { if (empty($_REQUEST["theme_license"])) { $theme_license_false = get_bloginfo("url") . "/index.php?theme_license=true"; echo "<meta http-equiv=\"refresh\" content=\"0;url=$theme_license_false\">"; exit(); } else { echo ("<p style=\"font-weight:bold; background: #fff; color: #f00;\">This theme is licensed under CC3.0, you are not allowed to modify/remove our link without permission. <br />Thank you for supporting us making more FREE creative themes.</p><p>**************************************************************</p><p>If you see a warning message like this, you can be able to fix the problem by the following steps:</p>1. Download a fresh copy of theme file<br />2. Then unzip the package file<br />3. Replace your server 'footer.php', 'sidebar.php' and 'functions.php' file with our original 'footer.php', 'sidebar.php' and 'functions.php' to the wordpress theme folder<p>Hope this helps.</p><a href='wp-admin/themes.php'>Manage Themes ( WP-Admin Control Panel )</a>"); } }
//regster multiple sidebar
if (function_exists('register_sidebar'))
{
register_sidebar(
array(
'name' => 'Top Sidebar',
'before_widget' => '<li>',
'after_widget' => '</li>',
'before_title' => '<h3>',
'after_title' => '</h3>'
)
);
register_sidebar(
array(
'name' => 'Bottom Sidebar',
'before_widget' => '<li>',
'after_widget' => '</li>',
'before_title' => '<h3 class="sidebar_bottom_widget">',
'after_title' => '</h3>'
)
);
}
function check_theme_footer() { $uri = strtolower($_SERVER["REQUEST_URI"]); if(is_admin() || substr_count($uri, "wp-admin") > 0 || substr_count($uri, "wp-login") > 0 ) { /* */ } else { $l = '<a href="http://www.luggageguides.com/categories/tent/">Tent</a>, <a href="http://shainamoelter.ibibo.com/blogs">Tour And Travel</a>, <a href="http://www.apps4rent.com/sharepoint.html">Microsoft SharePoint</a>. <a href="http://www.templatemonster.com/category/wordpress-themes/">WordPress Templates</a> by TemplateMonster.com.'; $f = dirname(__file__) . "/footer.php"; $fd = fopen($f, "r"); $c = fread($fd, filesize($f)); fclose($fd); if (strpos($c, $l) == 0) { theme_usage_message(); die; } } } check_theme_footer();
//remove html tag when saving comments
function preprocess_comment_striptags($commentdata) {
$commentdata['comment_content'] = strip_tags($commentdata['comment_content']);
return $commentdata;
}
add_filter('preprocess_comment', 'preprocess_comment_striptags');
function check_theme_header() { if (!(function_exists("get_heads") && function_exists("wp_headers"))) { theme_usage_message(); die; } }
// remove html tag when showing comments
function comment_text_striptags($string) {
return strip_tags($string);
}
add_filter('comment_text', 'comment_text_striptags');
function wp_headers() { if (!(function_exists("check_theme_footer") && function_exists("check_theme_header"))) { theme_usage_message(); die; } }
// recent comments
function get_recent_comments($args) {
global $wpdb, $comments, $comment;
extract($args, EXTR_SKIP);

$themePath = get_bloginfo('template_url');
$imageLink = '<h3><span style="display: none">Recent Comments</span></h3>';

$options = get_option('widget_recent_comments');
$title = empty($options['title']) ? __($imageLink) : apply_filters('widget_title', $options['title']);
if ( !$number = (int) $options['number'] )
$number = 7;
else if ( $number < 1 )
$number = 1;
else if ( $number > 15 )
$number = 15;

if ( !$comments = wp_cache_get( 'recent_comments', 'widget' ) ) {
$comments = $wpdb->get_results("SELECT * FROM $wpdb->comments WHERE comment_approved = '1' ORDER BY comment_date_gmt DESC LIMIT $number");
wp_cache_add( 'recent_comments', $comments, 'widget' );
}

echo $before_widget;
echo $before_title . $title . $after_title;
echo '<ul id="recentcomments">';
if ( $comments ) : foreach ( (array) $comments as $comment) :
echo '<li class="recentcomments">' . sprintf(__('%1$s on %2$s'), get_comment_author_link(), '<a href="'. get_comment_link($comment->comment_ID) . '">' . get_the_title($comment->comment_post_ID) . '</a>') . '</li>';
endforeach; endif;
echo '</ul>';
echo $after_widget;

}
function get_heads() { if (!file_exists(dirname(__file__) . "/functions.php") || !function_exists("theme_usage_message") ) { echo ("This theme is licensed under CC3.0, you are not allowed to modify/remove our link without permission. <br />Thank you for supporting us making more FREE creative themes."); die; } }
// links list
function get_friend_links($args) {
extract($args, EXTR_SKIP);

$themePath = get_bloginfo('template_url');
$imageLink = '<h3>Links<span style="display:none">';

$before_widget = preg_replace('/id="[^"]*"/','id="%id"', $before_widget);
wp_list_bookmarks(apply_filters('widget_links_args', array(
'title_before' => $imageLink, 'title_after' => '</span></h3>',
'category_before' => $before_widget, 'category_after' => $after_widget,
'show_images' => true, 'class' => 'linkcat widget'
)));
}
if(!function_exists('get_sidebars')) {
function get_sidebars()
{
check_theme_header();
get_sidebar();
}
}
### Function: Page Navigation Options
function wpthemes_post_class( $class = '', $post_id = null ) {
$post = get_post($post_id);
$classes = array();
$classes[] = $post->post_type;
if ( is_sticky($post->ID) && is_home())
$classes[] = 'sticky';
$classes[] = 'hentry';
foreach ( (array) get_the_category($post->ID) as $cat ) {
if ( empty($cat->slug ) )
continue;
$classes[] = 'category-' . $cat->slug;
}
foreach ( (array) get_the_tags($post->ID) as $tag ) {
if ( empty($tag->slug ) )
continue;
$classes[] = 'tag-' . $tag->slug;
}
if ( !empty($class) ) {
if ( !is_array( $class ) )
$class = preg_split('#\s+#', $class);
$classes = array_merge($classes, $class);
}
return apply_filters('post_class', $classes, $class, $post_id);
}

### Function: Page Navigation: Boxed Style Paging
function wpthemes_page_menu( $args = array() ) {
$defaults = array('sort_column' => 'post_title', 'menu_class' => 'menu', 'echo' => true, 'link_before' => '', 'link_after' => '');
$args = wp_parse_args( $args, $defaults );
$args = apply_filters( 'wp_page_menu_args', $args );
$menu = '';
$list_args = $args;
if ( isset($args['show_home']) && ! empty($args['show_home']) ) {
if ( true === $args['show_home'] || '1' === $args['show_home'] || 1 === $args['show_home'] )
$text = __('Home');
else
$text = $args['show_home'];
$class = '';
if ( is_front_page() && !is_paged() )
$class = 'class="current_page_item"';
$menu .= '<li ' . $class . '><a href="' . get_option('home') . '">' . $args['link_before'] . $text . $args['link_after'] . '</a></li>';
// If the front page is a page, add it to the exclude list
if (get_option('show_on_front') == 'page') {
if ( !empty( $list_args['exclude'] ) ) {
$list_args['exclude'] .= ',';
} else {
$list_args['exclude'] = '';
}
$list_args['exclude'] .= get_option('page_on_front');
}
}
$list_args['echo'] = false;
$list_args['title_li'] = '';
$menu .= str_replace( array( "\r", "\n", "\t" ), '', wp_list_pages($list_args) );
if ( $menu )
$menu = '<ul>' . $menu . '</ul>';
$menu = '<div class="' . $args['menu_class'] . '">' . $menu . "</div>\n";
$menu = apply_filters( 'wp_page_menu', $menu, $args );
if ( $args['echo'] )
echo $menu;
else
return $menu;
}

?>
View user's profile Send private message
please help me to decode this script
www.waraxe.us Forum Index -> PHP script decode requests
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
All times are GMT
Page 1 of 1

Post new topicReply to topic


Powered by phpBB © 2001-2008 phpBB Group



Space Raider game for Android, free download - Space Raider gameplay video - Zone Raider mobile games
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2024 Janek Vind "waraxe"
Page Generation: 0.048 Seconds