Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

$_F=__FILE__;$_X='P2F6P2VyZXRwKnRra2tra2tra2tra2tra2tra2tra2tra2tra2tra2tra2tra2tra2tra2tr..

Decoded Output download

?><?php
/*
=====================================================
 DataLife Engine - by SoftNews Media Group 
-----------------------------------------------------
 https://dle-news.ru/
-----------------------------------------------------
 Copyright (c) 2004-2023 SoftNews Media Group
=====================================================
 This code is protected by copyright
=====================================================
 File: antivirus.php
-----------------------------------------------------
 Use: Antivirus
=====================================================
*/

if(!defined('DATALIFEENGINE')) {
	header( "HTTP/1.1 403 Forbidden" );
	header ( 'Location: ../../' );
	die( "Hacking attempt!" );
}

if( !isset($_REQUEST['user_hash']) OR !$_REQUEST['user_hash'] OR $_REQUEST['user_hash'] != $dle_login_hash ) {
	echo $lang['sess_error'];
	die();
}
	
if($member_id['user_group'] != 1) {die ("error");}

$antivirus = new antivirus();

if ($_REQUEST['folder'] == "lokal"){

	if( $antivirus->snap ) {

		$antivirus->scan_files( ROOT_DIR, false, true );

	} else {

		$antivirus->scan_files( ROOT_DIR."/backup", false );
		$antivirus->scan_files( ROOT_DIR."/engine", false);
		$antivirus->scan_files( ROOT_DIR."/language", false );
		$antivirus->scan_files( ROOT_DIR."/templates", false);
		$antivirus->scan_files( ROOT_DIR."/uploads", false );
		$antivirus->scan_files( ROOT_DIR."/upgrade", false );
		$antivirus->scan_files( ROOT_DIR, false);
	}

} elseif ($_REQUEST['folder'] == "snap") {

	$antivirus->scan_files( ROOT_DIR, true, true );

	$filecontents = "";

    foreach( $antivirus->snap_files as $idx => $data )
    {
		$filecontents .= $data['file_path']."|".$data['file_crc']."
";
    }

    $filehandle = fopen(ENGINE_DIR.'/data/snap.db', "w+");
    fwrite($filehandle, $filecontents);
    fclose($filehandle);
	@chmod(ENGINE_DIR.'/data/snap.db', 0666);

} else {

	$antivirus->snap = false;
	$antivirus->scan_files( ROOT_DIR, false, true );

}

if ($_REQUEST['folder'] != "snap") {
	$con_content = @file_get_contents( ROOT_DIR . "/engine/data/config.php");

	if (strpos ( $con_content, "_SERVER" ) !== false OR stripos ( $con_content, "eval" ) !== false) {
	
		$file_date = date("d.m.Y H:i:s", filectime(ROOT_DIR . "/engine/data/config.php"));
		$file_size = filesize(ROOT_DIR . "/engine/data/config.php");
	
		 $antivirus->bad_files[] = array( 'file_path' => "/engine/data/config.php",
									'file_name' => "config.php",
									'file_date' => $file_date,
									'type' => 2,
									'file_size' => $file_size ); 
	}

	$con_content = @file_get_contents( ROOT_DIR . "/engine/data/dbconfig.php");

	if (strpos ( $con_content, "_SERVER" ) !== false OR stripos ( $con_content, "eval" ) !== false) {
	
		$file_date = date("d.m.Y H:i:s", filectime(ROOT_DIR . "/engine/data/dbconfig.php"));
		$file_size = filesize(ROOT_DIR . "/engine/data/dbconfig.php");
	
		 $antivirus->bad_files[] = array( 'file_path' => "/engine/data/dbconfig.php",
									'file_name' => "dbconfig.php",
									'file_date' => $file_date,
									'type' => 2,
									'file_size' => $file_size ); 
	}

	$con_content = @file_get_contents( ROOT_DIR . "/engine/data/videoconfig.php");

	if (strpos ( $con_content, "_SERVER" ) !== false OR stripos ( $con_content, "eval" ) !== false) {
	
		$file_date = date("d.m.Y H:i:s", filectime(ROOT_DIR . "/engine/data/videoconfig.php"));
		$file_size = filesize(ROOT_DIR . "/engine/data/videoconfig.php");
	
		$antivirus->bad_files[] = array( 'file_path' => "/engine/data/videoconfig.php",
									'file_name' => "videoconfig.php",
									'file_date' => $file_date,
									'type' => 2,
									'file_size' => $file_size ); 
	}

}

if (count($antivirus->bad_files)) {

echo <<<HTML
<div class="panel-body">{$lang['anti_result']}</div>
<div class="table-responsive">
<table class="table table-xs table-hover table-striped">
<thead>
    <tr>
        <th>{$lang['anti_file']}</th>
        <th>{$lang['anti_size']}</th>
        <th>{$lang['addnews_date']}</th>
        <th>&nbsp;</th>
    </tr>
</thead>
<tbody>
HTML;

  foreach( $antivirus->bad_files as $idx => $data )
  { 

	if ($data['file_size'] < 50000) $color = "<span style=\"color:green;\">";
	elseif ($data['file_size'] < 100000) $color = "<span style=\"color:blue;\">";
	else $color = "<span style=\"color:red;\">";

	$data['file_size'] = formatsize ($data['file_size']);

	if ($data['type']) $type = $lang['anti_modified']; else $type = $lang['anti_not'];

	if ($data['type'] == 2 ) $type = $lang['anti_modified_1'];

	$data['file_path'] = preg_replace("/([0-9]){10}_/", "*****_", $data['file_path']);

echo <<<HTML
    <tr>
        <td>{$color}{$data['file_path']}</span></td>
        <td>{$color}{$data['file_size']}</span></td>
        <td>{$color}{$data['file_date']}</span></td>
        <td>{$color}{$type}</span></td>
    </tr>
HTML;
  }

echo <<<HTML
</tbody>
</table>
</div>
HTML;

}
elseif ($_REQUEST['folder'] == "snap") {

echo <<<HTML
<div class="panel-body">{$lang['anti_creates']}</div>
HTML;

}
else {

echo <<<HTML
<div class="panel-body">{$lang['anti_notfound']}</div>
HTML;

}

echo <<<HTML
<div class="panel-body"><button class="btn bg-slate btn-sm btn-raised" onclick="check_files('global'); return false;"><i class="fa fa-search"></i> {$lang['anti_global']}</button> <button class="btn btn-sm btn-raised bg-orange-700" onclick="check_files('snap'); return false;"><i class="fa fa-magic"></i> {$lang['anti_snap']}</button></div>
HTML;
?>

Did this file decode correctly?

Original Code

$_F=__FILE__;$_X='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';$_D=strrev('edoced_46esab');eval($_D('JF9YPWJhc2U2NF9kZWNvZGUoJF9YKTskX1g9c3RydHIoJF9YLCdSNkRLW3IvaWpGXUpXTWZRN1YzVUcKfTBlYk9vWGcxbDl4Tm5MSVouYz5Da1A0YVNFWXZoc3t6dHEgSD08NXc4bUFkQnV5VDJwJywnaVlEVm9oXXggdDU5cXN1d2RtZzNlY1p6cGJyZklTTUtCTjY0W3ZMYThHQT1SRj5KMW4yMGouPAp9eU9DV1VYSGt7N1RRbEVQLycpOyRfUj1zdHJfcmVwbGFjZSgnX19GSUxFX18nLCInIi4kX0YuIiciLCRfWCk7ZXZhbCgkX1IpOyRfUj0wOyRfWD0wOw=='));

Function Calls

strtr 1
strrev 1
str_replace 1
base64_decode 2

Variables

$_D base64_decode
$_F index.php
$_R 0
$_X 0

Stats

MD5 ca8b4a5e8c2d9a6288d8496e3fb9cd32
Eval Count 2
Decode Time 45 ms