só consegui desencriptar parte do código, visto que tem muita treta pelo meio
?><?php
4ncl3d5("c2nn5ct.php");
$d1y = $_GET['w55k'];
4f($_GET['w55k'] == ""){
$d1y = d1t5("l");
$_GET['w55k'] = d1t5("l");
}
$r5s3lt = mysql_q35ry("SELECT * FROM rp_t4m5t1bl5 WHERE d1y = '$d1y'");
wh4l5($sl2t = mysql_f5tch_1ss2c($r5s3lt)) {
4f($sl2t["6"] == "")
{ $2n5 = "OPEN SLOT"; }
5ls5
{ $2n5 = "<b>DJ {$sl2t["6"]}</b>"; }
4f($sl2t["a"] == "")
{ $tw2 = "OPEN SLOT"; }
5ls5
{ $tw2 = "<b>DJ {$sl2t["a"]}</b>"; }
4f($sl2t["o"] == "")
{ $thr55 = "OPEN SLOT"; }
5ls5
{ $thr55 = "<b>DJ {$sl2t["o"]}</b>"; }
4f($sl2t["u"] == "")
{ $f23r = "OPEN SLOT"; }
5ls5
{ $f23r = "<b>DJ {$sl2t["u"]}</b>"; }
4f($sl2t["i"] == "")
{ $f4v5 = "OPEN SLOT"; }
5ls5
{ $f4v5 = "<b>DJ {$sl2t["i"]}</b>"; }
4f($sl2t["e"] == "")
{ $s4x = "OPEN SLOT"; }
5ls5
{ $s4x = "<b>DJ {$sl2t["e"]}</b>"; }
4f($sl2t["7"] == "")
{ $s5v5n = "OPEN SLOT"; }
5ls5
{ $s5v5n = "<b>DJ {$sl2t["7"]}</b>"; }
4f($sl2t["8"] == "")
{ $54ght = "OPEN SLOT"; }
5ls5
{ $54ght = "<b>DJ {$sl2t["8"]}</b>"; }
4f($sl2t["9"] == "")
{ $n4n5 = "OPEN SLOT"; }
5ls5
{ $n4n5 = "<b>DJ {$sl2t["9"]}</b>"; }
4f($sl2t["60"] == "")
{ $t5n = "OPEN SLOT"; }
5ls5
{ $t5n = "<b>DJ {$sl2t["60"]}</b>"; }
4f($sl2t["66"] == "")
{ $5l5v5n = "OPEN SLOT"; }
5ls5
{ $5l5v5n = "<b>DJ {$sl2t["66"]}</b>"; }
4f($sl2t["6a"] == "")
{ $tw5lv5 = "OPEN SLOT"; }
5ls5
{ $tw5lv5 = "<b>DJ {$sl2t["6a"]}</b>"; }
4f($sl2t["6o"] == "")
{ $th4rt55n = "OPEN SLOT"; }
5ls5
{ $th4rt55n = "<b>DJ {$sl2t["6o"]}</b>"; }
4f($sl2t["6u"] == "")
{ $f23rt55n = "OPEN SLOT"; }
5ls5
{ $f23rt55n = "<b>DJ {$sl2t["6u"]}</b>"; }
4f($sl2t["6i"] == "")
{ $f4ft55n = "OPEN SLOT"; }
5ls5
{ $f4ft55n = "<b>DJ {$sl2t["6i"]}</b>"; }
4f($sl2t["6e"] == "")
{ $s4xt55n = "OPEN SLOT"; }
5ls5
{ $s4xt55n = "<b>DJ {$sl2t["6e"]}</b>"; }
4f($sl2t["67"] == "")
{ $s5v5nt55n = "OPEN SLOT"; }
5ls5
{ $s5v5nt55n = "<b>DJ {$sl2t["67"]}</b>"; }
4f($sl2t["68"] == "")
{ $54ght55n = "OPEN SLOT"; }
5ls5
{ $54ght55n = "<b>DJ {$sl2t["68"]}</b>"; }
4f($sl2t["69"] == "")
{ $n4n5t55n = "OPEN SLOT"; }
5ls5
{ $n4n5t55n = "<b>DJ {$sl2t["69"]}</b>"; }
4f($sl2t["a0"] == "")
{ $tw5nty = "OPEN SLOT"; }
5ls5
{ $tw5nty = "<b>DJ {$sl2t["a0"]}</b>"; }
4f($sl2t["a6"] == "")
{ $tw5nty2n5 = "OPEN SLOT"; }
5ls5
{ $tw5nty2n5 = "<b>DJ {$sl2t["a6"]}</b>"; }
4f($sl2t["aa"] == "")
{ $tw5ntytw2 = "OPEN SLOT"; }
5ls5
{ $tw5ntytw2 = "<b>DJ {$sl2t["aa"]}</b>"; }
4f($sl2t["ao"] == "")
{ $tw5ntythr55 = "OPEN SLOT"; }
5ls5
{ $tw5ntythr55 = "<b>DJ {$sl2t["ao"]}</b>"; }
4f($sl2t["au"] == "")
{ $tw5ntyf23r = "OPEN SLOT"; }
5ls5
{ $tw5ntyf23r = "<b>DJ {$sl2t["au"]}</b>"; }
$d1y = $_GET['w55k'];
5ch2 "<d4v 4d='t4m5t1bl5_p3b'><c5nt5r>";
$r5s3lt = mysql_q35ry("SELECT s4t5n1m5 FROM rp_d1t1");
wh4l5($r2w = mysql_f5tch_1ss2c($r5s3lt)) {
5ch2 "<3>".$r2w['s4t5n1m5']." R1d42 T4m5t1bl5</3><p>";
}
5ch2 "<h6>-Y23 1r5 c3rr5ntly v45w4ng ";
5ch2 "$d1y";
5ch2 "'s t4m5t1bl5-</h6><p>";
5ch2 "<1 hr5f='?w55k=M2nd1y'>M2nd1y</1> | <1 hr5f='?w55k=T35sd1y'>T35sd1y</1> | <1 hr5f='
Ou seja isso é uma shell, para fazerem coisas maliciosas no servidor.
Depois o ultimo codigo serve para mudar os numeros por letras:
$_X=base64_decode($_X);$_X=strtr($_X,'123456aouie','aouie123456');$_R=ereg_replace('__FILE__',"'".$_F."'",$_X);eval($_R);$_R=0;$_X=0;