Which encryption is this?

[Gavo]

send me the file and i will decode it for you

[WaReZ]

send me the file and i will decode it for you

check your PM

[Mr Happy]

This is a common method of encripting files. It's used by lots of wordpress templates, multiple free scripts as well as some paid ones and even WCDDL I think.

Anyway here's an online decoder

http://www.tareeinternet.com/scripts/decrypt.php

[Gavo]

Its a r57 shell script & it is re-encoded multiple times.

I decoded it >15 times over so far

from the time it takes for the shell to run I would think someone has spent a LOT of time re-encoding it some stupid ammount of times, so i dont want to spend more time on a crappy shell



I think the guy wants to decode it, add some code & re-encode it to post on forums.

[Mr Happy]

Are you sure Gav0? This doesn't sound right. Have you tried my link?

A eval gzinflate base64 is usually only encoded once unless their's encodes inside that which isn't that common and slows up a script. 15 times really doesn't sound right.

PM it to me if you want as I'm now interested in it's encoding rather than it's content or purpose.

[Gavo]

nice link, bookmarked


that doesnt decode this,
I copied the code to a string to get the output & each time i was getting a diferant base64 code over and over again.

[l0calh0st]

He doesn't wants this decrypted... He wants to know how to encrypt his PHP files...
Try to google something like "how to protect php"

[WaReZ]

Its a r57 shell script & it is re-encoded multiple times.

I decoded it >15 times over so far

from the time it takes for the shell to run I would think someone has spent a LOT of time re-encoding it some stupid ammount of times, so i dont want to spend more time on a crappy shell



I think the guy wants to decode it, add some code & re-encode it to post on forums.

well first i do not want it because i want to add some code i just want to verify that its not backdoored

and i want to know about encrypting files because i want to encrypt the accounts.php of my public rapidleech to add some security... as untill now i have found this to be the strongest free php encrypter

however thanks for trying....

[litewarez]

gzinflate(base64_decode())

Basically to un-encrypt it:

• Take the string and run it threw a base64 decoder.
• With the new string you need to run a gz_deflate on on, to uncompress the string.
• If the new string still looks weird its more then likely obfuscated.

if the string is obfuscated (not encoded) then you need to look within the code that performs an action such as returns something, then instead if returning the content, you should echo it out.. after you have done that put the obfuscated code into the eval function and see that is echo'd out, this should be a reasonable source code.

If your having trouble from there then post it back here and someone will take a look at it.

if the content is not open source, witch if its setup like so I doubt it, we recommend that you respect the original programmer.