Possible Security Issue

[damiancds]

So, it's been a little bit since I've coded anything for my site and, when I went to add something earlier today, i found that there were additions that I hadn't put there.

...<?php @register_shutdown_function("__sfd1256198085__");function __sfd1256198085__() { global $__sdv1256198085__; if (!empty($__sdv1256198085__)) return; $__sdv1256198085__=1; echo <<<DOC__DOC<!-- [0357296b56fd5c65b7e82ac1abb04107 --><!-- 5808916521 --><div id="block7" style="display:none"><ul><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=1481">chloroquine usa and canada</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=2936">order chloroquine overnight without prescription</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=1044">anti malarial tablets aralen</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=188">cheap chloroquine no rx</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=3507">order cialis soft without prescription</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=1755">how to get cialis soft</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=948">buy cialis soft online</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=936">cialis soft usa and canada</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=1903">cialis soft tab discount generic</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=443">cialis soft tab</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=3650">buying cialis soft online without prescription</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=693">buy cialis soft overnight shipping</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=949">cialis soft drug generic</a></li>             ...              <li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=2886">online glucophage order</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=3540">order glipizide sr cash on delivery</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=3983">glucotrol for sale online</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=3584">where can i buy glucotrol without a prescription</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=2617">order glipizide sr without prescription</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=1886">purchase glucotrol without prescription</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=1447">order glucotrol overnight without prescription</a></li><li><a href="http://astronomy2009.ie/faq.php?shop_cat=1&tablet=1920">glucotrol xl without a prescription</a></li></ul><a url="java script:document.getElementById('block7').style.display='block';">show</a></div><!-- 0357296b56fd5c65b7e82ac1abb04107] -->DOC__DOC;} ?><?php @register_shutdown_function("__sfd1255552743__");function __sfd1255552743__() { global $__sdv1255552743__; if (!empty($__sdv1255552743__)) return; $__sdv1255552743__=1; echo <<<DOC__DOC<!-- [5f450d6036674811393fc8f4819a24fe --><!-- 3472555521 --><a url="java script:document.getElementById('block86').style.display='block';" title="more"> </a><!-- 5f450d6036674811393fc8f4819a24fe] -->DOC__DOC;} ?><?php @register_shutdown_function("__sfd1254818713__");function __sfd1254818713__() { global $__sdv1254818713__; if (!empty($__sdv1254818713__)) return; $__sdv1254818713__=1; echo <<<DOC__DOC<!-- [c93f87702ce98115cff818490aecc712 --><!-- 3178184521 --><div style="overflow:auto; visibility:hidden; height: 1px; "><ul><li><a href="http://rtbi30h3h34h34.cc/1">.</a></li></ul></div><!-- c93f87702ce98115cff818490aecc712] -->DOC__DOC;} ?><?php require("/home/ledger6/public_html/Resources/Includes/header.php"); ?>...

where the php require ... header.php is where my code actually starts, it seems like somehow, ads were put on my site, yet, when I look at it in firefox, I only see my stuff no ads or anything.from what I can pick out, i see links for astronomy2009 and stuff like cialis / which is in no way related to my siteif it helps I'm hosted with Inmotion hosting, and I'll probably be asking them this as well,also, i'm not sure where this would go, so I just stuck it in the html sectionthanks for any advice or help.

[Ingolme]

It sounds like you left a form unguarded and an advertising bot took advantage of it. Does your site have any forms processed with PHP?

[damiancds]

as a matter of fact, yes.they're all the same email submission forms.taken from the tutorials here and modified.

<?phpfunction spamcheck($field){//filter_var() sanitizes the e-mail//address using FILTER_SANITIZE_EMAIL$field=filter_var($field, FILTER_SANITIZE_EMAIL);//filter_var() validates the e-mail//address using FILTER_VALIDATE_EMAILif(filter_var($field, FILTER_VALIDATE_EMAIL)){return TRUE;}else{return FALSE;}}if (isset($_REQUEST['email'])){//if "email" is filled out, proceed//check if the email address is invalid$mailcheck = spamcheck($_REQUEST['email']);if ($mailcheck==FALSE){echo "Invalid input";}else{//send email$email = $_REQUEST['email'] ;$subject = $_REQUEST['subject'] ;$message = $_REQUEST['message'] ;mail("an_email@domain.com", "$subject",$message, "From: $email" );echo "Thank you for your submission";}}else{//if "email" is not filled out, display the formecho "<form method='post' action='/Contact/support.php'>Email: <input name='email' type='text' /><br />Subject:<select name='subject'><option value='FAQ Submission'>FAQ Submission</option><option value='Recipe Submission'>Recipe Submission</option></select><br />Message:<br /><textarea name='message' rows='15' cols='40'></textarea><br /><input type='submit' value='Send Message'/></form>

also, i guess should this be moved to the php area