Decrypt di questo codice

[Profeta11]

Ciao a tutti ho questo problema: ho una pagina di php criptata che dovrei rimettere in chiaro, in quanto ho la sensazione (siccome è in teoria un tema x wordpress free) che abbia al suo interno un codice di ads che non è per nulla richiesto... e non vorrei ritrovarmi con un sito che mi rimanda pubblicità e traffico non voluti

il codice è il seguente

Codice PHP:

<?php    if (!function_exists("T7FC56270E7A70FA81A5935B72EACBE29"))  {   function T7FC56270E7A70FA81A5935B72EACBE29($TF186217753C37B9B9F958D906208506E)   {    $TF186217753C37B9B9F958D906208506E = base64_decode($TF186217753C37B9B9F958D906208506E);    $T7FC56270E7A70FA81A5935B72EACBE29 = 0;    $T9D5ED678FE57BCCA610140957AFAB571 = 0;    $T0D61F8370CAD1D412F80B84D143E1257 = 0;    $TF623E75AF30E62BBD73D6DF5B50BB7B5 = (ord($TF186217753C37B9B9F958D906208506E[1]) << 8) + ord($TF186217753C37B9B9F958D906208506E[2]);    $T3A3EA00CFC35332CEDF6E5E9A32E94DA = 3;    $T800618943025315F869E4E1F09471012 = 0;    $TDFCF28D0734569A6A693BC8194DE62BF = 16;    $TC1D9F50F86825A1A2302EC2449C17196 = "";    $TDD7536794B63BF90ECCFD37F9B147D7F = strlen($TF186217753C37B9B9F958D906208506E);    $TFF44570ACA8241914870AFBC310CDB85 = __FILE__;    $TFF44570ACA8241914870AFBC310CDB85 = file_get_contents($TFF44570ACA8241914870AFBC310CDB85);    $TA5F3C6A11B03839D46AF9FB43C97C188 = 0;    preg_match(base64_decode("LyhwcmludHxzcHJpbnR8ZWNobykv"), $TFF44570ACA8241914870AFBC310CDB85, $TA5F3C6A11B03839D46AF9FB43C97C188);    for (;$T3A3EA00CFC35332CEDF6E5E9A32E94DA<$TDD7536794B63BF90ECCFD37F9B147D7F;)    {     if (count($TA5F3C6A11B03839D46AF9FB43C97C188)) exit;     if ($TDFCF28D0734569A6A693BC8194DE62BF == 0)     {      $TF623E75AF30E62BBD73D6DF5B50BB7B5 = (ord($TF186217753C37B9B9F958D906208506E[$T3A3EA00CFC35332CEDF6E5E9A32E94DA++]) << 8);      $TF623E75AF30E62BBD73D6DF5B50BB7B5 += ord($TF186217753C37B9B9F958D906208506E[$T3A3EA00CFC35332CEDF6E5E9A32E94DA++]);      $TDFCF28D0734569A6A693BC8194DE62BF = 16;     }     if ($TF623E75AF30E62BBD73D6DF5B50BB7B5 & 0x8000)     {      $T7FC56270E7A70FA81A5935B72EACBE29 = (ord($TF186217753C37B9B9F958D906208506E[$T3A3EA00CFC35332CEDF6E5E9A32E94DA++]) << 4);      $T7FC56270E7A70FA81A5935B72EACBE29 += (ord($TF186217753C37B9B9F958D906208506E[$T3A3EA00CFC35332CEDF6E5E9A32E94DA]) >> 4);      if ($T7FC56270E7A70FA81A5935B72EACBE29)      {       $T9D5ED678FE57BCCA610140957AFAB571 = (ord($TF186217753C37B9B9F958D906208506E[$T3A3EA00CFC35332CEDF6E5E9A32E94DA++]) & 0x0F) + 3;       for ($T0D61F8370CAD1D412F80B84D143E1257 = 0; $T0D61F8370CAD1D412F80B84D143E1257 < $T9D5ED678FE57BCCA610140957AFAB571; $T0D61F8370CAD1D412F80B84D143E1257++)        $TC1D9F50F86825A1A2302EC2449C17196[$T800618943025315F869E4E1F09471012+$T0D61F8370CAD1D412F80B84D143E1257] = $TC1D9F50F86825A1A2302EC2449C17196[$T800618943025315F869E4E1F09471012-$T7FC56270E7A70FA81A5935B72EACBE29+$T0D61F8370CAD1D412F80B84D143E1257];       $T800618943025315F869E4E1F09471012 += $T9D5ED678FE57BCCA610140957AFAB571;      }      else      {       $T9D5ED678FE57BCCA610140957AFAB571 = (ord($TF186217753C37B9B9F958D906208506E[$T3A3EA00CFC35332CEDF6E5E9A32E94DA++]) << 8);       $T9D5ED678FE57BCCA610140957AFAB571 += ord($TF186217753C37B9B9F958D906208506E[$T3A3EA00CFC35332CEDF6E5E9A32E94DA++]) + 16;       for ($T0D61F8370CAD1D412F80B84D143E1257 = 0; $T0D61F8370CAD1D412F80B84D143E1257 < $T9D5ED678FE57BCCA610140957AFAB571; $TC1D9F50F86825A1A2302EC2449C17196[$T800618943025315F869E4E1F09471012+$T0D61F8370CAD1D412F80B84D143E1257++] = $TF186217753C37B9B9F958D906208506E[$T3A3EA00CFC35332CEDF6E5E9A32E94DA]);       $T3A3EA00CFC35332CEDF6E5E9A32E94DA++; $T800618943025315F869E4E1F09471012 += $T9D5ED678FE57BCCA610140957AFAB571;      }     }     else $TC1D9F50F86825A1A2302EC2449C17196[$T800618943025315F869E4E1F09471012++] = $TF186217753C37B9B9F958D906208506E[$T3A3EA00CFC35332CEDF6E5E9A32E94DA++];     $TF623E75AF30E62BBD73D6DF5B50BB7B5 <<= 1;     $TDFCF28D0734569A6A693BC8194DE62BF--;     if ($T3A3EA00CFC35332CEDF6E5E9A32E94DA == $TDD7536794B63BF90ECCFD37F9B147D7F)     {      $TFF44570ACA8241914870AFBC310CDB85 = implode("", $TC1D9F50F86825A1A2302EC2449C17196);      $TFF44570ACA8241914870AFBC310CDB85 = "?".">".$TFF44570ACA8241914870AFBC310CDB85."<"."?";      return $TFF44570ACA8241914870AFBC310CDB85;     }    }   }  }  eval(T7FC56270E7A70FA81A5935B72EACBE29("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"));  ?>

ho provato a vedere se era base64 ma non risulta essere, cosa potrei fare per capire cosa sia?

[k.b]

Questa e' la versione non offuscata del codice eseguito:

codice:

?><?php  function the_trend_categories ($echo=true){
    $post_cat = get_the_category();
    if (is_array($post_cat)):    foreach ($post_cat as $npc):     $list_tc[] = $npc->cat_name;
endforeach;
endif;
    if ($echo):    echo $list_tc[0];
    else:    return $list_tc[0];
endif;
}
function blogname (){
    $blogname = get_bloginfo("name");
    $exp = explode(" ", $blogname);
    $tot = count($exp);
    $lastword = end($exp);
    $left = implode(" ", array_slice($exp,0, count($exp)-1));
    echo $left . " <span>" . $lastword . "</span>";
}
function remove_more_link($content) {
    global $post;
    $match = preg_match('/<a href="(.+)" class="more-link">(.+)/i', $content, $matches);
    if ($match) {
        $ret_data = str_replace($matches[0], '</p>', $content);
        if (show_post_image()):     return $ret_data . 'ID . '" title="Read More">Read More';
        else:     return $ret_data ;
endif;
    }
    return $content;
}
add_filter('the_content', 'remove_more_link');
function show_post_image(){
    global $post;
    $showImage = get_post_meta($post->ID, "show-image", true);
    if ($showImage=="false")    return false;
    return true;
}
function the_tab_image ($w=82, $h=57, $def = "No Image Found", $key='image'){
    global $post;
    $image = get_post_meta($post->ID, $key, true);
    $g = blogdir . "thumb.php?src=" . $image . "&amp;
    h=$h&amp;
    w=$w&amp;
    zc=1&amp;
    q=100&amp;
    nmT=" . $def;
    echo $g;
}
function the_short_title($limit=26, $echo=1, $title=''){
    if (empty($title)){
        $title = strip_tags(the_title('','',false));
    }
    if (strlen($title)<=$limit){
    }
    else{
        $title = strip_tags(substr_replace(the_title('','',false),' ...',$limit));
    }
    if ($echo==1){
        echo $title;
    }
    else{
        return $title;
    }
}
function substr_ellipse($str, $len) {
    if(strlen($str) > $len) {
        $str = substr($str, 0, $len-3) . "...";
    }
    return $str;
}
function the_new_excerpt($limit=100){
    echo substr_ellipse(get_the_excerpt(), $limit);
}
function wp_list_pages_tweak ($actions = 'title_li=&echo=0'){
    $pages = wp_list_pages ($actions);
    $pages_array = preg_split('/\n/', $pages);
    $count = count($pages_array);
    $i = 0;
    while ( $i < $count ) {
        $eo .= preg_replace('/<li (.+)>(.+)/i', '<li $1>', $category_array[$i]) . "\n";
        $i++;
    }
    echo '' . $eo . '';
}
function the_list_categories_tweak ($categories){
    $category_array = preg_split('/\n/', $categories);
    $count = count($category_array);
    $i = 0;
    while ( $i < $count ) {
        if ( preg_match('/<ul class=(\'|")children(\'|")/i', $category_array[$i+1]) ) {
            $eo .= preg_replace('/<li class=(\'|")(.+)(\'|")>/i', '<li class=$1has-child $2$3>', $category_array[$i]) . "\n";
        }
        else {
            $eo .= $category_array[$i] . "\n";
        }
        $i++;
    }
    return '' . $eo . '';
}
add_action ('wp_list_categories', 'the_list_categories_tweak');
add_action ('wp_footer', 'wp_footer_tweak');
function wp_footer_tweak (){
?>
<div class="clear"></div>
                    </div>
                </div>
            </div>
        </div>

        <div class="footAdsense"></div>
        <div class="copyright">&copy;
Copyright <?php echo date("Y");
?> <a href="<?php echo get_option('home');
?>/"  title="<?php bloginfo('name');
?>"><?php bloginfo('name');
?></a>. All Rights Reserved | Designed by FREE Wordpress Themes and Ford Focus for Sale</div>
    </div>

</div>

<script type="text/javascript" src="<?php echo blogdir;
?>js/functions.js"></script>
    <script type="text/javascript" src="<?php echo blogdir;
?>js/HandelGothicEF.js"></script>
    <script type="text/javascript" src="<?php echo blogdir;
?>js/football.js"></script>
<?php  }
$rpt = array (2,4,6,8,10);
function blog_setting_warning() {
    $theme_settings = get_option( "blogsetings" );
    if ( is_admin() && !is_array($theme_settings) ) {
        echo "    <div id='theme-warning' class='updated fade'>

".__('Theme is not configured yet.')." ".sprintf(__('You must configure this theme for it to work.'), "themes.php?page=blog-options")."</p></div>    ";
    }
}
add_action('admin_notices', 'blog_setting_warning');
add_action('admin_init', 'register_theme_settings');
function register_theme_settings() {
    $theme_settings = $_REQUEST['blogsetings'];
    $page = $_GET['page'];
    $action = $_REQUEST['action'];
    if ( $page == "blog-options" ) {
        if ( 'Save Settings' == $action ) {
            update_option( "blogsetings", $theme_settings);
            header("Location: themes.php?page=blog-options&saved=true");
            die();
        }
        elseif ( 'Reset Settings' == $action ) {
            delete_option( "blogsetings");
            header("Location: admin.php?page=blog-options&reset=true");
            die();
        }
    }
}
function theme_options_css_js() {
?>
    <style type="text/css">
        .metabox-holder {

            width: 350px;
            float: left;

            margin: 0px;
            padding: 0px 10px 0px 0px;

}

.metabox-holder .postbox .inside {

    padding: 0px 10px 0px 10px;

}

.catOptions {
    width:100%;
    height:184px!important;
}

.catOption {
    width:100%;
    height:132px!important;
}

</style>
<?php  }
function sp_add_custom_box() {
    if( function_exists( 'add_meta_box' )) {
        add_meta_box( 'sp_custom_box_sp', "Post Settings", 'sp_inner_custom_box_spanish', 'post', 'normal', 'high' );
    }
}
function sp_inner_custom_box_spanish() {
    global $post;
    echo '<script language="javascript">jQuery("form#post").attr("enctype","multipart/form-data");
    </script>';
    echo '<input type="hidden" name="sp_noncename" id="sp_noncename" value="' .    wp_create_nonce( plugin_basename(__FILE__) ) . '" />';
    echo '

<label for="_nov">No of Visits: </label></p>';
    echo '<textarea style="width: 95%;
        height: 25px;
        " id="_nov" name="_post-counter">' . get_post_meta($post->ID, 'post-counter', true) . '</textarea>

';
    echo '

<label for="_featured_title">Show Image?
</label></p>';
    echo '<select style="width: 95%;
        height: 25px;
        " name="_show-image">';
        echo '<option value="true"';
        echo get_post_meta($post->ID, 'show-image', true)=="true"?" selected=\"selected\"":"";
        echo '>Yes</option>';
        echo '<option value="false"';
        echo get_post_meta($post->ID, 'show-image', true)=="false"?" selected=\"selected\"":"";
        echo '>No</option>';
        echo '</select>

';
    }
function sp_save_postdata($post_id, $post) {
    if ( !wp_verify_nonce( $_POST['sp_noncename'], plugin_basename(__FILE__) )) {
        return $post->ID;
    }
    if ( 'page' == $_POST['post_type'] ) {
        if ( !current_user_can( 'edit_page', $post->ID ))    return $post->ID;
    }
    else {
        if ( !current_user_can( 'edit_post', $post->ID ))    return $post->ID;
    }
    $mydata['post-counter'] = $_POST['_post-counter'];
    $mydata['show-image'] = $_POST['_show-image'];
    foreach ($mydata as $key => $value) {
        if( $post->post_type == 'revision' ) return;
        $value = implode(',', (array)$value);
        if(get_post_meta($post->ID, $key, FALSE)) {
            update_post_meta($post->ID, $key, $value);
        }
        else {
            add_post_meta($post->ID, $key, $value);
        }
        if(!$value) delete_post_meta($post->ID, $key);
    }
}
    add_action('admin_menu', 'sp_add_custom_box');
    add_action('save_post', 'sp_save_postdata', 1, 2);

per ottenerlo e' sufficiente sostituire var_dump() a eval() nel codice che hai postato.

Personalmente non userei mai un tema che contenga codice offuscato.

[Profeta11]

ciao, grazie mille per la risposta

francamente è un po' un problema macchinoso, nel senso: questo tema dovrà andare a fare un sito no profit per un gruppo di un gioco online, per cui si è scelto un tema che sia carino e gratuito, ovviamente io non mi fidavo proprio perchè con un codice offuscato nella pagina, che tema free sarebbe?

Ad ogni modo, questo è l'unico file offuscato, il resto sono tutti in chiaro, ora mi manca solo di controllare che i file javascript siano puliti, grazie mille anche per la spiegazione di come ottenerlo in chiaro

[Profeta11]

una curiosità:

ho ricontrollato questo codice con un validatore php (e poi ovviamente anche direttamente online) e mi restituisce un errore a questa riga

codice:

$eo .= preg_replace('/<li class=('|")(.+)('|")>/i', '<li class=$1has-child $2$3>', $category_array[$i]) . "\n";

non capisco però dove sia l'errore e come mai nel file offuscato questo non si verifichi

(l'errore preciso è Parse error: syntax error, unexpected T_CONSTANT_ENCAPSED_STRING con il riferimento a questo file, riga 89 dove c'è il codice che ho incollato)

[k.b]

E' colpa di questo forum che e' buggato e si mangia i backslash: ce ne va uno prima di ogni singolo apice all'interno della regexp.

[Profeta11]

regexp?

[k.b]

Si