宝塔上的带着的杀毒软件,检查出帝国cms病毒
2022/04/18 21:15:23
帮忙分析下网站被黑了与这个文件有关系吗?
cp.php里面的代码
GetPassword.php里文件
cp.php里面的代码
- <?phpif(!defined('InEmpireCMS')){ exit();}?><?php$headr=$empire->fetch1("select varvalue from {$dbtbpre}enewstempvar where myvar='header' limit 1");$footer=$empire->fetch1("select varvalue from {$dbtbpre}enewstempvar where myvar='footer' limit 1");$userinfo=$empire->fetch1("select * from {$dbtbpre}enewsmemberadd where userid=".$user[userid]." limit 1");$tmgetuserid=(int)getcvar('mluserid'); //用户ID$tmgetusername=RepPostVar(getcvar('mlusername')); //用户名$tmgetgroupid=(int)getcvar('mlgroupid'); //用户组ID$tmgetgroupname='游客';?><!DOCTYPE html><html lang="zh-cn"><head> <meta charset="UTF-8"> <meta name="author" content="bigprawn"> <title>会员中心首页 - <?=$public_r[sitename]?></title> <meta name="keywords" content="会员中心首页" /> <meta name="description" content="会员中心首页" /> <meta name="viewport" content="width=device-width, initial-scale=1.0, minimum-scale=1.0, maximum-scale=1.0, user-scalable=no,minimal-ui"> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1"> <meta name="HandheldFriendly" content="true"> <meta name="renderer" content="webkit"> <link rel="stylesheet" href="/i/_ghzg.css"> <link rel="stylesheet" href="/i/_media.css"> <script src="/i/jquery-1.8.3.min.js"></script> <style>.header .navbar li a.lid-member{color:#723f02;}</style></head><body class="member ucenter"> <?php echo eval('?>'.stripslashes($headr[0]));?> <div class="banner" /i/banner6.jpg')"></div> <div class="container"> <div class="inner"> <div class="hd"> <a class="on" href="/e/member/cp/">个人中心</a> <!--<a href="/e/member/recharg/">我的赞助充值</a>--> <a href="/e/member/fava/">我的收藏</a> <a href="/e/member/requests/">我的需求</a> <a href="/e/member/advice/">我的建议</a> </div> <div class="bd cf"> <div class="left fl"> <p class="userpic" id']."|".$r['price']]=$r['id']; } if(count($ids)) { foreach($ids as $key => $value){ $query="select count(*) as count from pc_userbuy where id = {$value}"; $count = $empire->fetch1($query); $temp= explode("|",$key); $money=$money+$temp[1]*$count['count']; } } ?> <?php if($tmgetgroupid == 3) //已登录 { ?> <p class="score">账户余额:<?=$money?> 元</p> <?php } ?> <p class="links"> <a href="/e/member/EditInfo/">完善资料</a> <a href="/e/member/EditInfo/EditSafeInfo.php">修改密码</a> <a href="/e/member/doaction.php?enews=exit" onclick="return confirm('确认要退出?');">退出</a> </p> <?php if($tmgetgroupid == 3) //已登录 { ?> <a class="scbd" href="/e/space/list.php?userid=<?=$user[userid]?>&mid=6">进入空间</a> <?php } ?> </div> <div class="right"> <p> <span class="name">注册名:</span> <span class="value"><?=$user[username]?></span> </p> <p> <span class="name">手机号:</span> <span class="value"><?=$userinfo[phone]?></span> </p> <p> <span class="name">姓名:</span> <span class="value"><?=$userinfo[truename]?></span> </p> <p> <span class="name">出生年月:</span> <span class="value"><?=$userinfo[birthday]?></span> </p> <p> <span class="name">学历:</span> <span class="value"><?=$userinfo[education]?></span> </p> <p> <span class="name">邮箱:</span> <span class="value"><?=$user[email]?></span> </p> </div> </div> </div> </div> <?php echo eval('?>'.stripslashes($footer[0]));?></body></html>
- <?phpif(!defined('InEmpireCMS')){ exit();}?><?php$headr=$empire->fetch1("select varvalue from {$dbtbpre}enewstempvar where myvar='header' limit 1");$footer=$empire->fetch1("select varvalue from {$dbtbpre}enewstempvar where myvar='footer' limit 1");?><!DOCTYPE html><html lang="zh-cn"><head> <meta charset="UTF-8"> <meta name="author" content="bigprawn"> <title>找回密码 - <?=$public_r[sitename]?></title> <meta name="keywords" content="找回密码" /> <meta name="description" content="找回密码" /> <meta name="viewport" content="width=device-width, initial-scale=1.0, minimum-scale=1.0, maximum-scale=1.0, user-scalable=no,minimal-ui"> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1"> <meta name="HandheldFriendly" content="true"> <meta name="renderer" content="webkit"> <link rel="stylesheet" href="/i/_ghzg.css"> <link rel="stylesheet" href="/i/_media.css"> <script src="/i/jquery-1.8.3.min.js"></script> <style>.header .navbar li a.lid-member{color:#723f02;}</style></head><body class="member login"> <?php echo eval('?>'.stripslashes($headr[0]));?> <div class="banner" /i/banner6.jpg')"></div> <div class="container"> <div class="inner"> <div class="hd">找回密码</div> <div class="bd"> <form method="POST" action="/e/member/doaction.php"> <input name="enews" type="hidden" id="enews" value="SendPassword"> <p> <span>用户名:</span> <input name="username" type="text"> </p> <p> <span>邮箱:</span> <input name="email" type="text"> </p> <p> <span>验证码:</span> <input class="key" name="key" type="text"> <a href="javascript:void(0)" class="vcode"> <img src="../../ShowKey/?v=getpassword" name="getpasswordKeyImg" id="getpasswordKeyImg" onclick="getpasswordKeyImg.src='../../ShowKey/?v=getpassword&t='+Math.random()" title="看不清楚,点击刷新"> </a> </p> <div class="button"> <button type="submit">确认</button> </div> </form> </div> </div> </div> <?php echo eval('?>'.stripslashes($footer[0]));?></body></html>