1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How can I decode this crap???

Discussion in 'HTML & JavaScript' started by ycfme, Apr 6, 2010.

  1. ycfme

    ycfme Power Member

    Joined:
    Mar 24, 2010
    Messages:
    779
    Likes Received:
    65
    Found this in my wordpress theme.
    Wanna no if it's malicious or not.

     
  2. nufaman

    nufaman Elite Member

    Joined:
    May 29, 2009
    Messages:
    1,697
    Likes Received:
    1,185
    Code:
    <?php get_header(); ?>
        
        <div id="contentwrap">
        	<div id="content">
                <div id="contentleft">
                    <div id="menubar">
                        <div id="catlist">
                            <ul class="menu">
                                <li><a href="#menu" onclick="javascript:showlayer('sm_1')">Select a Category</a></li>
                            <ul class="submenu" id="sm_1">
                                <?php wp_list_categories('&title_li='); ?>
                            </ul>
                            </ul> 
                        </div>
                        
                        <a title="Subscribe to Content via RSS" href="<?php bloginfo('rss2_url'); ?>"><div id="subscribe"></div></a>
                    </div>      
                
                    <div id="videogallery">
                    <?php if (have_posts()) : while (have_posts()) : the_post(); ?>
                    	
                    	<?php include (TEMPLATEPATH . '/gallery.php'); ?>
                    	
                    <?php endwhile; else: ?>
                    <?php endif; ?>
                    </div>
                    
                </div>
                
                <div id="contentright">
                    <?php get_sidebar(); ?>
                </div>
            </div>
    	</div>
        
    <?php get_footer(); ?>
     
  3. ycfme

    ycfme Power Member

    Joined:
    Mar 24, 2010
    Messages:
    779
    Likes Received:
    65
    Hey Thanks,

    So this is the encryption decoded?
    How did you do it? Did you change eval to echoe?

    Also if this is it. It doesn't look bad (harmful) to me. What do you think?


    Thanks again

     
  4. risefromdeath

    risefromdeath Power Member

    Joined:
    Jul 1, 2009
    Messages:
    650
    Likes Received:
    107
    eval(base64_decode


    simple base 64 encryption :)
     
  5. nufaman

    nufaman Elite Member

    Joined:
    May 29, 2009
    Messages:
    1,697
    Likes Received:
    1,185
  6. GreyWolf

    GreyWolf Executive VIP Jr. VIP

    Joined:
    Aug 17, 2009
    Messages:
    1,930
    Likes Received:
    5,389
    Gender:
    Male
    Occupation:
    Artist / Craftsman
    Location:
    sitting at my PC
    This bit of code looks like it is just the theme designer trying to protect his code. It's pretty common for parts of a php file to be protected like this. Usually it is done to protect the header or footer though to be sure it retains copyright info and link to designers website.

    It's good for you to be concerned though, inserting an encrypted code into your php files is also a common hack that is being used attacking wordpress sites, oscommerce sites, etc.

    You can find out more about what to look for by searching google for:
    eval base64_decode hack
     
    • Thanks Thanks x 1