<?php
/*
* JohnCMS NEXT Mobile Content Management System (http://johncms.com)
*
* For copyright and license information, please see the LICENSE.md
* Installing the system or redistributions of files must retain the above copyright notice.
*
* @link http://johncms.com JohnCMS Project
* @copyright Copyright (C) JohnCMS Community
* @license GPL-3
*/
defined('_IN_JOHNADM') or die('Error: restricted access');
define('ROOT_DIR', '..');
/** @var Johncms\Api\UserInterface $systemUser */
$systemUser = App::getContainer()->get(Johncms\Api\UserInterface::class);
// Проверяем права доступа
if ($systemUser->rights < 7) {
header('Location: http://johncms.com/?err');
exit;
}
class scaner
{
// Сканер - антишпион
public $scan_folders = [
'',
'/download',
'/files',
'/forum',
'/gallery',
'/guestbook',
'/images',
'/incfiles',
'/install',
'/library',
'/mail',
'/news',
'/pages',
'/panel',
'/rss',
'/sitemap',
'/theme',
'/update',
'/users',
];
public $good_files = [
'../.htaccess',
'../login.php',
'../captcha.php',
'../closed.php',
'../exit.php',
'../go.php',
'../index.php',
'../registration.php',
'../download/addkomm.php',
'../download/arc.php',
'../download/arctemp/index.php',
'../download/cut.php',
'../download/delcat.php',
'../incfiles/classes/CleanUser.php',
'../download/delmes.php',
'../download/dfile.php',
'../download/down.php',
'../download/files/.htaccess',
'../download/files/index.php',
'../download/fonts/index.php',
'../download/graftemp/index.php',
'../download/img/index.php',
'../download/import.php',
'../download/index.php',
'../download/komm.php',
'../download/makdir.php',
'../download/mp3temp/index.php',
'../download/new.php',
'../download/opis.php',
'../download/preview.php',
'../download/rat.php',
'../download/refresh.php',
'../download/ren.php',
'../download/renf.php',
'../download/screen/index.php',
'../download/screen.php',
'../download/search.php',
'../download/select.php',
'../download/trans.php',
'../download/upl.php',
'../download/view.php',
'../download/zip.php',
'../files/.htaccess',
'../files/cache/.htaccess',
'../files/forum/attach/index.php',
'../files/forum/index.php',
'../files/forum/topics/index.php',
'../files/library/index.php',
'../files/lng_edit/index.php',
'../files/mail/index.php',
'../files/users/album/index.php',
'../files/users/avatar/index.php',
'../files/users/index.php',
'../files/users/photo/index.php',
'../files/users/pm/index.php',
'../forum/includes/addfile.php',
'../forum/includes/addvote.php',
'../forum/includes/close.php',
'../forum/includes/curators.php',
'../forum/includes/deltema.php',
'../forum/includes/delvote.php',
'../forum/includes/editpost.php',
'../forum/includes/editvote.php',
'../forum/includes/file.php',
'../forum/includes/files.php',
'../forum/includes/filter.php',
'../forum/includes/loadtem.php',
'../forum/includes/massdel.php',
'../forum/includes/new.php',
'../forum/includes/nt.php',
'../forum/includes/per.php',
'../forum/includes/post.php',
'../forum/includes/ren.php',
'../forum/includes/restore.php',
'../forum/includes/say.php',
'../forum/includes/tema.php',
'../forum/includes/users.php',
'../forum/includes/vip.php',
'../forum/includes/vote.php',
'../forum/includes/who.php',
'../forum/contents.php',
'../forum/index.php',
'../forum/search.php',
'../forum/thumbinal.php',
'../forum/vote_img.php',
'../gallery/addkomm.php',
'../gallery/album.php',
'../gallery/cral.php',
'../gallery/del.php',
'../gallery/delf.php',
'../gallery/delmes.php',
'../gallery/edf.php',
'../gallery/edit.php',
'../gallery/foto/.htaccess',
'../gallery/foto/index.php',
'../gallery/index.php',
'../gallery/komm.php',
'../gallery/load.php',
'../gallery/new.php',
'../gallery/preview.php',
'../gallery/razd.php',
'../gallery/temp/index.php',
'../gallery/trans.php',
'../gallery/upl.php',
'../guestbook/index.php',
'../images/avatars/index.php',
'../images/captcha/.htaccess',
'../images/index.php',
'../images/smileys/admin/index.php',
'../images/smileys/index.php',
'../images/smileys/simply/index.php',
'../images/smileys/user/index.php',
'../incfiles/.htaccess',
'../incfiles/classes/bbcode.php',
'../incfiles/classes/comments.php',
'../incfiles/classes/core.php',
'../incfiles/classes/counters.php',
'../incfiles/classes/functions.php',
'../incfiles/classes/mainpage.php',
'../incfiles/classes/sitemap.php',
'../system/bootstrap.php',
'../incfiles/db.php',
'../system/end.php',
'../incfiles/func.php',
'../system/head.php',
'../incfiles/index.php',
'../incfiles/lib/mp3.php',
'../incfiles/lib/pclerror.lib.php',
'../incfiles/lib/pcltar.lib.php',
'../incfiles/lib/pcltrace.lib.php',
'../incfiles/lib/pclzip.lib.php',
'../incfiles/lib/pear.php',
'../library/.htaccess',
'../library/contents.php',
'../library/inc.php',
'../library/includes/addnew.php',
'../library/includes/comments.php',
'../library/includes/del.php',
'../library/includes/download.php',
'../library/includes/lastcom.php',
'../library/includes/mkdir.php',
'../library/includes/moder.php',
'../library/includes/move.php',
'../library/includes/new.php',
'../library/includes/premod.php',
'../library/includes/search.php',
'../library/includes/tagcloud.php',
'../library/includes/tags.php',
'../library/includes/top.php',
'../library/index.php',
'../mail/includes/delete.php',
'../mail/includes/deluser.php',
'../mail/includes/files.php',
'../mail/includes/ignor.php',
'../mail/includes/input.php',
'../mail/includes/load.php',
'../mail/includes/new.php',
'../mail/includes/output.php',
'../mail/includes/systems.php',
'../mail/includes/write.php',
'../mail/index.php',
'../news/index.php',
'../pages/index.php',
'../pages/mainmenu.php',
'../rss/rss.php',
'../sitemap/forum.php',
'../sitemap/index.php',
'../sitemap/library.php',
'../users/image.php',
'../users/includes/admlist.php',
'../users/includes/album/comments.php',
'../users/includes/album/delete.php',
'../users/includes/album/edit.php',
'../users/includes/album/image_delete.php',
'../users/includes/album/image_download.php',
'../users/includes/album/image_edit.php',
'../users/includes/album/image_move.php',
'../users/includes/album/image_upload.php',
'../users/includes/album/list.php',
'../users/includes/album/show.php',
'../users/includes/album/sort.php',
'../users/includes/album/top.php',
'../users/includes/album/users.php',
'../users/includes/album/vote.php',
'../users/includes/birth.php',
'../users/includes/online.php',
'../users/includes/profile/activity.php',
'../users/includes/profile/ban.php',
'../users/includes/profile/edit.php',
'../users/includes/profile/friends.php',
'../users/includes/profile/guestbook.php',
'../users/includes/profile/images.php',
'../users/includes/profile/info.php',
'../users/includes/profile/ip.php',
'../users/includes/profile/karma.php',
'../users/includes/profile/office.php',
'../users/includes/profile/password.php',
'../users/includes/profile/reset.php',
'../users/includes/profile/settings.php',
'../users/includes/profile/stat.php',
'../users/search.php',
'../users/includes/top.php',
'../users/includes/userlist.php',
'../users/index.php',
];
public $snap_base = 'scan_snapshot.dat';
public $snap_files = [];
public $bad_files = [];
public $snap = false;
public $track_files = [];
private $checked_folders = [];
private $cache_files = [];
function scan()
{
// Сканирование на соответствие дистрибутиву
foreach ($this->scan_folders as $data) {
$this->scan_files(ROOT_DIR . $data);
}
}
function snapscan()
{
// Сканирование по образу
if (file_exists('../files/cache/' . $this->snap_base)) {
$filecontents = file('../files/cache/' . $this->snap_base);
foreach ($filecontents as $name => $value) {
$filecontents[$name] = explode("|", trim($value));
$this->track_files[$filecontents[$name][0]] = $filecontents[$name][1];
}
$this->snap = true;
}
foreach ($this->scan_folders as $data) {
$this->scan_files(ROOT_DIR . $data);
}
}
function snap()
{
// Добавляем снимок надежных файлов в базу
foreach ($this->scan_folders as $data) {
$this->scan_files(ROOT_DIR . $data, true);
}
$filecontents = "";
foreach ($this->snap_files as $idx => $data) {
$filecontents .= $data['file_path'] . "|" . $data['file_crc'] . "\r\n";
}
$filehandle = fopen('../files/cache/' . $this->snap_base, "w+");
fwrite($filehandle, $filecontents);
fclose($filehandle);
@chmod('../files/cache/' . $this->snap_base, 0666);
}
function scan_files($dir, $snap = false)
{
// Служебная функция сканирования
if (!isset($file)) {
$file = false;
}
$this->checked_folders[] = $dir . '/' . $file;
if ($dh = @opendir($dir)) {
while (false !== ($file = readdir($dh))) {
if ($file == '.' or $file == '..' or $file == '.svn' or $file == '.DS_store') {
continue;
}
if (is_dir($dir . '/' . $file)) {
if ($dir != ROOT_DIR) {
$this->scan_files($dir . '/' . $file, $snap);
}
} else {
if ($this->snap or $snap) {
$templates = "|tpl";
} else {
$templates = "";
}
if (preg_match("#.*\.(php|cgi|pl|perl|php3|php4|php5|php6|phtml|py|htaccess" . $templates . ")$#i", $file)) {
$folder = str_replace("../..", ".", $dir);
$file_size = filesize($dir . '/' . $file);
$file_crc = strtoupper(dechex(crc32(file_get_contents($dir . '/' . $file))));
$file_date = date("d.m.Y H:i:s", filectime($dir . '/' . $file));
if ($snap) {
$this->snap_files[] = [
'file_path' => $folder . '/' . $file,
'file_crc' => $file_crc,
];
} else {
if ($this->snap) {
if ($this->track_files[$folder . '/' . $file] != $file_crc and !in_array($folder . '/' . $file, $this->cache_files)) {
$this->bad_files[] = [
'file_path' => $folder . '/' . $file,
'file_name' => $file,
'file_date' => $file_date,
'type' => 1,
'file_size' => $file_size,
];
}
} else {
if (!in_array($folder . '/' . $file, $this->good_files) or $file_size > 300000) {
$this->bad_files[] = [
'file_path' => $folder . '/' . $file,
'file_name' => $file,
'file_date' => $file_date,
'type' => 0,
'file_size' => $file_size,
];
}
}
}
}
}
}
}
}
}
$scaner = new scaner();
switch ($mod) {
case 'scan':
// Сканируем на соответствие дистрибутиву
$scaner->scan();
echo '<div class="phdr"><a href="index.php?act=antispy"><b>' . _t('Anti-Spyware') . '</b></a> | ' . _t('Distributive scan') . '</div>';
if (count($scaner->bad_files)) {
echo '<div class="rmenu"><small>' . _t('Distributive contains complementary files<br>Warning! If the files listed below does not pertain to your additional modules and you are not assured of their safety, remove them. They can be dangerous for your site.') . '</small></div>';
echo '<div class="menu">';
foreach ($scaner->bad_files as $idx => $data) {
echo $data['file_path'] . '<br>';
}
echo '</div><div class="phdr">' . _t('Total') . ': ' . count($scaner->bad_files) . '</div>';
} else {
echo '<div class="gmenu">' . _t('<h3>EXCELLENT!!!</h3>List of files corresponds to the distributive') . '</div>';
}
echo '<p><a href="index.php?act=antispy&mod=scan">' . _t('Rescan') . '</a></p>';
break;
case 'snapscan':
// Сканируем на соответствие ранее созданному снимку
$scaner->snapscan();
echo '<div class="phdr"><a href="index.php?act=antispy"><b>' . _t('Anti-Spyware') . '</b></a> | ' . _t('Snapshot scan') . '</div>';
if (count($scaner->track_files) == 0) {
/** @var Johncms\Api\ToolsInterface $tools */
$tools = \App::getContainer()->get(Johncms\Api\ToolsInterface::class);
echo $tools->displayError(_t('Snapshot is not created'), '<a href="index.php?act=antispy&mod=snap">' . _t('Create snapshot') . '</a>');
} else {
if (count($scaner->bad_files)) {
echo '<div class="rmenu">' . _t('Snapshot Inconsistency<br>Warning! You need to pay attention to all files from the list. They have been added or modified since the image created.') . '</div>';
echo '<div class="menu">';
foreach ($scaner->bad_files as $idx => $data) {
echo $data['file_path'] . '<br>';
}
echo '</div>';
} else {
echo '<div class="gmenu">' . _t('Excellent!<br>All files are consistent with previously made image.') . '</div>';
}
echo '<div class="phdr">' . _t('Total') . ': ' . count($scaner->bad_files) . '</div>';
}
break;
case 'snap':
// Создаем снимок файлов
echo '<div class="phdr"><a href="index.php?act=antispy"><b>' . _t('Anti-Spyware') . '</b></a> | ' . _t('Create snapshot') . '</div>';
if (isset($_POST['submit'])) {
$scaner->snap();
echo '<div class="gmenu"><p>' . _t('Snapshot successfully created') . '</p></div>' .
'<div class="phdr"><a href="index.php?act=antispy">' . _t('Continue') . '</a></div>';
} else {
echo '<form action="index.php?act=antispy&mod=snap" method="post">' .
'<div class="menu"><p>' . _t('WARNING!!!<br>Before continuing make sure that all the files have been identified in the scanning mode distribution reliable and contain no unauthorized modifications.') . '</p>' .
'<p><input type="submit" name="submit" value="' . _t('Create snapshot') . '" /></p>' .
'</div></form>' .
'<div class="phdr"><small>' . _t('This procedure creates a list of all script files to your site, calculates the checksums and writes to the database, for later comparison.') . '</small></div>';
}
break;
default:
// Главное меню Сканера
echo '<div class="phdr"><a href="index.php"><b>' . _t('Admin Panel') . '</b></a> | ' . _t('Anti-Spyware') . '</div>'
. '<div class="menu"><p><h3>' . _t('Scan mode') . '</h3><ul>'
. '<li><a href="index.php?act=antispy&mod=scan">' . _t('Distributive scan') . '</a><br>'
. '<small>' . _t('Files identification which are not included in the original distributive') . '</small></li>'
. '<li><a href="index.php?act=antispy&mod=snapscan">' . _t('Snapshot scan') . '</a><br>'
. '<small>' . _t('Compare the list of files and checksums with pre-made way. Allows you to identify unknow files, and unauthorized changes.') . '</small></li>'
. '<li><a href="index.php?act=antispy&mod=snap">' . _t('Create snapshot') . '</a><br>'
. '<small>' . _t('Takes a snapshot of all script files from the site calculates their checksums and stored in the database.') . '</small></li>'
. '</ul></p></div><div class="phdr"> </div>';
}
echo '<p>' . ($mod ? '<a href="index.php?act=antispy">' . _t('Scanner menu') . '</a><br>' : '') . '<a href="index.php">' . _t('Admin Panel') . '</a></p>';