metrobot

by juan on September 3rd, 2010
No notes
Syntax: No syntax
Show lines - Hide lines - Show in textbox - Download
<title>MetroBot Web Spider 2.2 - by KeyNet</title>
<style>
*{
background-color:#000000;
color:#CCCCCC;
font-family:Verdana;
font-size:10px;
border-color:white;
}
#boton{
background:none;
border:solid;
border-width:1px;
}
#no
{
color:red;
}
#yes
{
color:orange;
}
a,a:link,a:visited,a:active
{
color:#ffffff;
text-decoration:none;
}
a:hover
{
color:#CCCCCC;
}
</style>
<form action="" method="POST">
<table>
    <tr>
        <td><h1>MetroBot Web Spider 2.2 - by KeyNet</h1></td>
    </tr>
</table>
<table>
    <tr>
        <td>-- Login --</td>
    </tr>
    <tr>
        <td>Uusario:</td>
        <td><input id="boton" type="text" name="usuario" value="metroflog"></td>
    </tr>
    <tr>
        <td>Password:</td>
        <td><input id="boton" type="text" name="password" value="123456xx"></td>
    </tr>
    <tr>
        <td>-- Spammear A --</td>
    </tr>
    <tr>
        <td>AL AZAR:</td>
        <td><input type="radio" name="random2hit" value="R" checked></td>
    </tr>
    <tr>
        <td>MAS VISITADOS:</td>
        <td><input type="radio" name="random2hit" value="H"></td>
    </tr>
</table>
<table>
    <tr>
        <td>-- Firmas --</td>
    </tr>
    <tr>
        <td><textarea name="firma1" cols="80" rows="20">hola $USER$ :D
</textarea></td>
    </tr>
    <tr>
        <td><input type="submit" value="¡¡Send you Spamm!!"></td>
    </tr>
</table>
<?php
@set_time_limit(0);
$hora_inicio = date('H:i');
$usuario = $_POST['usuario'>;
$password = $_POST['password'>;
$firma1 = $_POST['firma1'>;
$random0hit = $_POST['random2hit'>;
switch($random0hit)
    {
    case R:
    $metro_random = 'http://www.metroflog.com/directory/random';
    break;
    case H:
    $metro_random = 'http://www.metroflog.com/directory/hits';
    break;
    default:
    $metro_random = 'http://www.metroflog.com/directory/random';
    }
$firmaspamm=0;
if($usuario!="" && $password!="")
{
print '<ul>';
while(1) // con el while(1) es infinito, sin él es solo -20
{
$random_content = @file_get_contents($metro_random);
$random_lines = explode("n",$random_content);
$random_count_lines = count($random_lines);
for($extract_randoms_mt_num=0;$extract_randoms_mt_num<$random_count_lines;$extract_randoms_mt_num++)
    {
    if(strpos($random_lines[$extract_randoms_mt_num>,'<td width="100">') && $mt1!=1)
        {
        $clean_mt1 = explode('<a href="',$random_lines[$extract_randoms_mt_num>);
        $clean_mt2 = explode('">',$clean_mt1[1>);
        $mt = 'http://www.metroflog.com'.$clean_mt2[0>;
        $mt_content = @file_get_contents($mt);
        $mt_content_lines = explode("n",$mt_content);
        $mt_count_lines = count($mt_content_lines);
        for($extract_important_vars=0;$extract_important_vars<$mt_count_lines;$extract_important_vars++)
            {
            if(strpos($mt_content_lines[$extract_important_vars>,'name="enviarmensaje"'))
                {
                $clean_enviarmensaje_value1 = explode('value="',$mt_content_lines[$extract_important_vars>);
                $clean_enviarmensaje_value2 = explode('"',$clean_enviarmensaje_value1[1>);
                $enviarmensaje_value = $clean_enviarmensaje_value2[0>;
                //echo $enviarmensaje_value;
                }
            if(strpos($mt_content_lines[$extract_important_vars>,'name="ID"'))
                {
                $clean_ID_value1 = explode('value="',$mt_content_lines[$extract_important_vars>);
                $clean_ID_value2 = explode('"',$clean_ID_value1[1>);
                $ID_value = $clean_ID_value2[0>;
                //echo $ID_value;
                }
            if(strpos($mt_content_lines[$extract_important_vars>,'name="Key"'))
                {
                $clean_Key_value1 = explode('value="',$mt_content_lines[$extract_important_vars>);
                $clean_Key_value2 = explode('"',$clean_Key_value1[1>);
                $Key_value = $clean_Key_value2[0>;
                //echo $Key_value;
                }
            if(strpos($mt_content_lines[$extract_important_vars>,'name="fecha"'))
                {
                $clean_fecha_value1 = explode('value="',$mt_content_lines[$extract_important_vars>);
                $clean_fecha_value2 = explode('"',$clean_fecha_value1[1>);
                $fecha_value = $clean_fecha_value2[0>;
                //echo $fecha_value;
                }
            if(strpos($mt_content_lines[$extract_important_vars>,'name="titulo"'))
                {
                $clean_titulo_value1 = explode('value="',$mt_content_lines[$extract_important_vars>);
                $clean_titulo_value2 = explode('"',$clean_titulo_value1[1>);
                $titulo_value = $clean_titulo_value2[0>;
                //echo $titulo_value;
                }
            if(strpos($mt_content_lines[$extract_important_vars>,'name="id_antibot"'))
                {
                print '<li><code>Bot detectado !!</code></li>';
                print '<li><code>Hora de inicio: '.$hora_inicio.'</code></li>';
                print '<li><code>Hora de finalizacion: '.date('H:i').'</code></li>';
                print '<li><code>En total se spammearon '.$firmaspamm." metroFLOG's..</code></li>";
                print '</ul>';
                exit();
                }
            }
        $clean_victima_user = explode('.com/',$mt);
        $victima_user = $clean_victima_user[1>;
        $one0two = rand(1,2);
        $contenido_firmas = $firma1;
        if($enviarmensaje_value!="")
            {
            $contenido_firmas = str_replace('$USER$',$victima_user,$contenido_firmas);
            ##################################################################
            $host = 'www.metroflog.com';
            $path2crack = '/'.$victima_user.'#Msg';    
$log_string = 'mensaje='.$contenido_firmas.'&username='.$usuario.'&password='.$password.'&Recordar=S&enviarmensaje='.urlencode($enviarmensaje_value).'&ID='.$ID_value.'&Key='.$Key_value.'&fecha='.$fecha_value.'&titulo='.$titulo_value.'&pos=#Msg';
            $count_log_string = strlen($log_string);
            $header = "POST ".$path2crack." HTTP/1.1rn";
            $header .= "Host: ".$host."rn";
            $header .= "User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; es-ES; rv:1.8.1.16) Gecko/20080702 Firefox/2.0.0.16rn";
            $header .= "Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,image/jpg,image/gif,*/*;q=0.5rn";
            $header .= "Accept-Language: es-es,es;q=0.8,en-us;q=0.5,en;q=0.3rn";
            $header .= "Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7rn";
            $header .= "Keep-Alive: 300rn";
            $header .= "Proxy-Connection: keep-alivern";
            $header .= "Referer: http://".$host.$path2crack."rn";
            $header .= "Content-Type: application/x-www-form-urlencodedrn";
            $header .= "Content-Length: ".$count_log_string."rnrn";
            $header .= $log_string."rnrn";
            $socket = fsockopen($host,80);
            fwrite($socket,$header);
            $firmaspamm++;
            printf('<li><code id="yes"><a href="%s" TARGET=BLANK>%s</a> - (Metro nº%d) Spammed!!</code></li>',$mt,$victima_user,$firmaspamm);
            $enviarmensaje_value='';
            }
        else
            {
            printf('<li><code id="no"><a href="%s" TARGET=BLANK>%s</a> - (No Spammed - libro lleno)</code></li>',$mt,$victima_user);
            }
        }
    }
} // finaliza el while(1)
}
?>

Leave a Reply

Note: XHTML is allowed. Your email address will never be published.

Subscribe to this comment feed via RSS