php 解密eval(gzinflate(str_rot13(base64_decode
Posted
tags:
篇首语:本文由小常识网(cha138.com)小编为大家整理,主要介绍了php 解密eval(gzinflate(str_rot13(base64_decode相关的知识,希望对你有一定的参考价值。
我在网上搜到了答案,
http://hacknote.com/read/?627.html
说是把你的代码保存为2.TXT,在CMD下运行下面的命令:
php B.PHP
过一会程序执行完毕,2.TXT就是解密后的代码。
但是运行下,如果运行PHP命令啊
提示说php不是内部或外部命令
<? eval(gzinflate(str_rot13(base64_decode('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')))); ?> 参考技术A 草,搞了半天解了密才是这么个东西!!
</div>
</div>
<div id="footer">
<div id="footer_content">
<?php include (TEMPLATEPATH . '/footer_bottom.php'); ?>
</div>
</div>
<div id="back_bottom">
Copyright © <?php echo gmdate(__('Y')); ?> <a href="<?php echo get_settings('home'); ?>"><?php bloginfo('name'); ?></a>. Brought to you by <a href="http://www.usplayerswelcome.net/">online casinos</a>. Sponsored by: <a href="http://www.lordbingo.co.uk/">Online Bingo</a> | <a href="http://www.gossipbingo.co.uk/">Free Bingo</a>
</div>
</div>
</body>
</html>本回答被提问者采纳
PHP base64_decode+gzinflate压缩和解密代码图文教程
今天碰到的这个问题,是我在更换一个WP主题是遇到。目前的情况如下,我想要把如下的超链接去掉,后台代码找到了在sidebar1.php文件中。
打开此文件发现是一长串的字符:
经过百度、google后,有文章介绍说是PHP代码加密导致的,可以使用以下的代码解决此问题。
解密代码:
<?php
$Code = ‘这里填写要解密的编码’; // base64编码
$File = ‘decoded.php’;//解码后保存的文件
$Temp = base64_decode($Code);
$temp = gzinflate($Temp);
$FP = fopen($File,"w");
fwrite($FP,$temp);
fclose($FP);
echo "解密成功!";
?>
实际应用:
首先,打开你的文本编辑器,新建一个文本文件,按照那个解密代码,把我的那个sidebar1.php文件里的密码输入进去,然后就类似下面:
<?php$Code =‘bZA7b8MwDIR3/wpCQ9MudtCpaPxYOmTo1gIZC9mibSGyKEiM1QD98fUjWVovBHQ83n1QVSa50iM0RoZQiJaI0Yst8Yu/eV7UHrJynclDQ+56gOf9/gXyyvUOakOdti097qwccPd0gOp+k+QSeo9tIXpm95plMcaUyfGF04YGUb5fmmueyRK2jGQj4hmtCqnFCeSI0vPi5h4HBIVBdxbq6+a1IY8GdcR69d0KV3VJ+YE3HNGQQwUt+X8pSlvqKSyomShPWMNxemrbwQf6UTcY7jkUrSGp5iBPwyZPdAt1aD3imgis2WAhTuSV8xgCfC6OqeqPMtck+QQ0lrc5/3wCvw==’; // base64编码
$File = ‘decoded.php’;//解码后保存的文件
$Temp = base64_decode($Code);
$temp = gzinflate($Temp);
$FP = fopen($File,"w");
fwrite($FP,$temp);
fclose($FP);
echo "解密成功!";
?>
红色的部分,就是页脚sidebar1.php文件里面本身的加密的代码。然后把这个文件保存,随便起个名字,但是一定要是PHP格式,我的是test.php。注意:上面那个decoded.php就是解密完成后的文件名,这个你也可以修改。
然后,把这个test.php文件上传到你空间的根目录,其实其他目录也可以,但是需要能够web访问。我就直接放在博客的根目录了。
然后通过web访问,我的是 http://ilanni.com/blogger/test.php 。提示“解密成功”后,在服务器就可看到多了一个decoded.php文件了,打开一看,呵呵已经解密啦!
解密成功后的代码如:
然后把这个decoded.php修改为sidebar1.php替换原文件,就可以了。
以上是关于php 解密eval(gzinflate(str_rot13(base64_decode的主要内容,如果未能解决你的问题,请参考以下文章
如何使用正则表达式匹配gzinflate(base64_decode(
帮我解密段代码eval( base64_decode(开头的 50分