File Manager

X7ROOT File Manager

Current Path: /home/u126090504/domains/nist.org.in/public_html

home / u126090504 / domains / nist.org.in / public_html /

📁 ..
📁 .well-known
📁 6th-mec-new
📄 AUTOMOBILE-ENGG-CLASS-NOTES-SEM.php(13.45 KB)
📄 AUTOMOBILE-ENGG-CLASS-NOTES.php(9.63 KB)
📄 AUTOMOBILE-ENGINEERING-LESSON-PLAN-2021-22.php(22.06 KB)
📄 AUTOMOBILE-ENGINEERING-LESSON-PLAN-2022-23.php(13.15 KB)
📄 AUTOMOBILE-ENGINEERING-LESSON-PLAN-2023-24.php(15.1 KB)
📄 AUTOMOBILE-ENGINEERING-LESSON-PLAN-2024-25.php(13.06 KB)
📄 AUTOMOBILE-ENGINEERING-LESSON-PLAN-2025-26.php(9.11 KB)
📄 AUTOMOBILE-ENGINEERING-QUSTION.php(12.84 KB)
📄 AUTOMOBILE-ENGINEERING-lession-plan-2021-22.php(7.33 KB)
📄 AUTOMOBILE-ENGINEERING.php(22.37 KB)
📄 Activities.php(7.97 KB)
📄 Admission-procedure.php(19.52 KB)
📄 Affilation-&-report.php(10.12 KB)
📄 Alumni.php(32.41 KB)
📄 Annual-Function.php(13.25 KB)
📄 Annual-Sports.php(12.21 KB)
📄 Approval-&-all-eoa-report.php(7.54 KB)
📄 BASIC-SCIENCE-CLASS-NOTES.php(13.03 KB)
📄 BASIC-SCIENCE-LESSON-PLAN-2021-2022.php(8.4 KB)
📄 BASIC-SCIENCE-LESSON-PLAN-2022-2023.php(9.58 KB)
📄 BASIC-SCIENCE-LESSON-PLAN-2023-2024.php(11.63 KB)
📄 BASIC-SCIENCE-LESSON-PLAN-2024-2025.php(10.22 KB)
📄 BASIC-SCIENCE-LESSON-PLAN-2025-2025.php(7.45 KB)
📄 BASIC-SCIENCE-QUSTION.php(6.2 KB)
📄 BASIC-SCIENCE.php(14 KB)
📄 Boardof-directors.php(10.55 KB)
📄 Branch-wise-proctor-list.php(10.36 KB)
📄 CANTEEN-AND-CAFTERIA.php(9.65 KB)
📄 CENTRAL-LYBRARY.php(22.75 KB)
📄 CIVIL-ENGG-CLASS-NOTES.php(13.1 KB)
📄 CIVIL-ENGINEERING-LESSON-PLAN-2021-22.php(13.55 KB)
📄 CIVIL-ENGINEERING-LESSON-PLAN-2022-23.php(12.42 KB)
📄 CIVIL-ENGINEERING-LESSON-PLAN-2023-24.php(14.38 KB)
📄 CIVIL-ENGINEERING-LESSON-PLAN-2024-25.php(12.5 KB)
📄 CIVIL-ENGINEERING-LESSON-PLAN-2025-26.php(9.17 KB)
📄 CIVIL-ENGINEERING-QUSTION.php(11.87 KB)
📄 CIVIL-ENGINEERING.php(22.15 KB)
📄 COMPUTER-CENTER.php(10.69 KB)
📄 Committee-For-ScSt.php(11.98 KB)
📄 Cultural-Events.php(11.47 KB)
📄 EEE-CLASS-NOTES.php(13.76 KB)
📁 EEE-new
📄 ELECTRICAL-AND-ELECTRONICS-ENGINEERING-QUSTION.php(10.5 KB)
📄 ELECTRICAL-AND-ELECTRONICS-ENGINEERING-lesson-plan-2021-2022.php(14.05 KB)
📄 ELECTRICAL-AND-ELECTRONICS-ENGINEERING-lesson-plan-2022-2023.php(12.86 KB)
📄 ELECTRICAL-AND-ELECTRONICS-ENGINEERING-lesson-plan-2023-2024.php(13.47 KB)
📄 ELECTRICAL-AND-ELECTRONICS-ENGINEERING-lesson-plan-2024-2025.php(14.22 KB)
📄 ELECTRICAL-AND-ELECTRONICS-ENGINEERING-lesson-plan-2025-2026.php(9.86 KB)
📄 ELECTRICAL-AND-ELECTRONICS-ENGINEERING.php(22.97 KB)
📄 ELECTRICAL-ENGG-CLASS-NOTES.php(13.39 KB)
📄 ELECTRICAL-ENGINEERING-QUSTION.php(12.85 KB)
📄 ELECTRICAL-ENGINEERING-lesson-plan-2021-2022.php(17.94 KB)
📄 ELECTRICAL-ENGINEERING-lesson-plan-2022-2023.php(12.86 KB)
📄 ELECTRICAL-ENGINEERING-lesson-plan-2023-2024.php(14.47 KB)
📄 ELECTRICAL-ENGINEERING-lesson-plan-2024-2025.php(13.68 KB)
📄 ELECTRICAL-ENGINEERING-lesson-plan-2025-2026.php(9.47 KB)
📄 ELECTRICAL-ENGINEERING.php(22.55 KB)
📄 Grievance-Redressal-Committee.php(8.01 KB)
📄 HEALTH-CARE.php(10.43 KB)
📄 ITTP.php(17.25 KB)
📄 Industries-Visit.php(25.82 KB)
📄 Internal-Complaint-Committee.php(14.4 KB)
📄 LANGUAGE-LAB.php(10.41 KB)
📁 LESSON-PLAN-2023-24
📄 LV-AUTOMOBILE-ENGINEERING.php(15.45 KB)
📄 LV-BASIC SCIENCE.php(12.23 KB)
📄 LV-CIVIL-ENGINEERING.php(15.44 KB)
📄 LV-EEE.php(15.33 KB)
📄 LV-ELECTRICAL ENGINEERING.php(15.29 KB)
📄 LV-MECHANICAL-ENGINEERING.php(15.13 KB)
📄 List-of-laboratories.php(7.86 KB)
📄 MECHANICAL-ENGG-CLASS-NOTES.php(13.72 KB)
📄 MECHANICAL-ENGINEERING-QUSTION.php(11.14 KB)
📄 MECHANICAL-ENGINEERING-lesson-plan-2021-2022.php(13.51 KB)
📄 MECHANICAL-ENGINEERING-lesson-plan-2022-2023.php(22.32 KB)
📄 MECHANICAL-ENGINEERING-lesson-plan-2023-2024.php(15.02 KB)
📄 MECHANICAL-ENGINEERING-lesson-plan-2024-2025.php(13.16 KB)
📄 MECHANICAL-ENGINEERING-lesson-plan-2025-2026.php(9.41 KB)
📄 MECHANICAL-ENGINEERING.php(22.75 KB)
📄 Proctor-List-2023-2024.php(10.35 KB)
📄 Proctor-List-2024-2025.php(10.2 KB)
📄 Proctor-List-2025-2026.php(9.81 KB)
📄 Proctor-List-automobile-2023-2024.php(8.25 KB)
📄 Proctor-List-ee-2023-2024.php(8.24 KB)
📄 Proctor-List-eee-2023-2024.php(8.23 KB)
📄 Proctor-List-mechanical-2023-2024.php(8.25 KB)
📄 SCST-Committee.php(11.27 KB)
📄 STUDENT-INTERNSHIP.php(18.6 KB)
📄 SWACHA-BHARAYT-AVIJAN.php(13.64 KB)
📄 Secretary's-Message.php(6.94 KB)
📄 Seminar-&-Project.php(7.99 KB)
📄 Seminar-Hall.php(14.22 KB)
📄 Student-strangth.php(8.37 KB)
📄 Students-Inductions-Program.php(12.18 KB)
📄 Swachh-Bharat-Abhiyan.php(10.87 KB)
📄 TRANSPORTATION.php(11.28 KB)
📄 UNNAT-BHARAT-ABHIYAN.php(14.54 KB)
📄 YOGA-AND-MEDITATION.php(19.17 KB)
📄 about.php(7.43 KB)
📄 academic-administrative-&-amenities-built-of-area.php(7.93 KB)
📄 academic-calender.php(7.94 KB)
📄 achievers-academic.php(6.09 KB)
📄 achievers-non-academic.php(6.01 KB)
📄 add-form.php(947 B)
📁 admin
📄 administrativer.php(0 B)
📄 admission.php(10.85 KB)
📄 anti-raging-committee.php(41.86 KB)
📄 automobile-lesson-plan.php(7.97 KB)
📄 automobile.php(10.74 KB)
📄 basic-science-lesson-plan.php(7.86 KB)
📄 central-library.php(12.57 KB)
📄 civil-lesson-plan.php(7.86 KB)
📄 civil.php(10.43 KB)
📄 cleanup_README.txt(1.25 KB)
📄 computer-lab.php(17.67 KB)
📄 contact.php(10.48 KB)
📄 courses-offered.php(8.85 KB)
📁 css
📄 default.php(15.99 KB)
📄 details-of-area-&-land-availability.php(7.89 KB)
📄 digital-class-room.php(18.01 KB)
📄 eee-lesson-plan.php(8.02 KB)
📄 eee.php(10.23 KB)
📄 electrical-engineering-lesson-plan.php(7.99 KB)
📄 electrical.php(11.32 KB)
📄 entrepreneurship-cell.php(11.8 KB)
📄 examination.php(8.11 KB)
📄 facilities.php(13.31 KB)
📄 faculty.php(36.88 KB)
📄 fee-structure.php(9.81 KB)
📁 fonts
📄 gallery.php(6.17 KB)
📄 governing-bodies.php(14.58 KB)
📄 gym-indore-games.php(17.23 KB)
📄 holidays-list.php(7.52 KB)
📄 hostel.php(11.09 KB)
📁 img
📁 include
📄 incubation-cell.php(43.41 KB)
📄 index.php(25.73 KB)
📄 industries-interactions.php(13.16 KB)
📄 infrastructure.php(20.78 KB)
📁 js
📄 library.php(17.45 KB)
📄 logo.png(40.21 KB)
📄 malware_scanner.php(9.8 KB)
📄 mandatory-discloser.php(7.58 KB)
📄 mechanical(1).php(13.29 KB)
📄 mechanical-engineering-lesson-plan.php(7.99 KB)
📄 mechanical.php(13.29 KB)
📄 mission&vision.php(6.32 KB)
📄 mou-sign.php(9.94 KB)
📁 nist
📄 nist-livebackup.zip(1.79 GB)
📁 nist-ser
📄 organisation-chart.php(7.53 KB)
📄 placement-department.php(10.71 KB)
📄 placement-report.php(19.55 KB)
📄 power-lord.php(7.84 KB)
📄 practical-lab.php(25.04 KB)
📄 principal's-message.php(10 KB)
📄 proctor-list-2021-2022.php(9.31 KB)
📄 proctor-list-2022-2023.php(8.67 KB)
📄 public-disclosure.php(32.95 KB)
📄 registration.php(12.01 KB)
📄 scan_report_20250905_114105.json(20.84 KB)
📄 scan_report_20250905_114147.json(20.84 KB)
📄 scan_report_20250905_163159.json(20.84 KB)
📄 scholarship-&-welfare facilities.php(10.61 KB)
📄 science-humanities.php(8.92 KB)
📄 secure_upload.php(2.87 KB)
📄 seminar-&-workshop.php(7.99 KB)
📄 session-wise-result.php(5.37 KB)
📄 showpath.php(107 B)
📄 sports.php(24.52 KB)
📄 students-speak.php(7.98 KB)
📄 study-tour.php(7.88 KB)
📄 style.css(192.63 KB)
📄 style.php(28 B)
📁 svs
📁 syllabus
📄 syllabus.php(30.38 KB)
📄 thankyou.php(5.21 KB)
📄 time-table-2021-2022.php(8.86 KB)
📄 time-table-2022-2023.php(9.32 KB)
📄 time-table-2023-2024.php(9.66 KB)
📄 time-table-2024-2025.php(9.56 KB)
📄 time-table-2025-2026.php(9.31 KB)
📄 time-table.php(11.42 KB)
📄 training-program.php(12.76 KB)
📄 u893294702_nist.sql(47.21 KB)
📄 upload_activity.log(79 B)
📁 uploads
📁 vendor

Editing: malware_scanner.php

<?php
// malware_scanner.php
// Usage (CLI):
// php malware_scanner.php /path/to/site [--quarantine]
// Usage (web):
// malware_scanner.php?path=/home/user/public_html&quarantine=1

set_time_limit(0);
error_reporting(E_ALL);
ini_set('display_errors', 1);

function is_cli() {
    return php_sapi_name() === 'cli';
}

// Get inputs
$path = null;
$do_quarantine = false;
if (is_cli()) {
    $argvCopy = $GLOBALS['argv'];
    array_shift($argvCopy);
    if (count($argvCopy) >= 1) $path = $argvCopy[0];
    if (in_array('--quarantine', $argvCopy)) $do_quarantine = true;
} else {
    if (!empty($_GET['path'])) $path = $_GET['path'];
    if (!empty($_GET['quarantine'])) $do_quarantine = true;
}

if (!$path) {
    $msg = "Usage CLI: php malware_scanner.php /path/to/site [--quarantine]\n";
    $msg .= "Or use web: malware_scanner.php?path=/home/user/public_html&quarantine=1\n";
    if (is_cli()) { echo $msg; exit(1); } else { echo nl2br(htmlspecialchars($msg)); exit; }
}

$path = rtrim($path, "/\\");

// Validate path
if (!file_exists($path) || !is_dir($path)) {
    echo "Error: path not found or not a directory: $path\n";
    exit(1);
}

// Patterns with weight (higher weight -> more suspicious)
$patterns = [
    ['pat' => '/base64_decode\s*\(/i', 'w' => 4, 'name' => 'base64_decode('],
    ['pat' => '/eval\s*\(/i', 'w' => 5, 'name' => 'eval('],
    ['pat' => '/gzinflate\s*\(/i', 'w' => 4, 'name' => 'gzinflate('],
    ['pat' => '/str_rot13\s*\(/i', 'w' => 3, 'name' => 'str_rot13('],
    ['pat' => '/preg_replace\s*\(\s*[\'"].{0,80}\/e[\'"]/i', 'w' => 5, 'name' => 'preg_replace /e'],
    ['pat' => '/shell_exec\s*\(/i', 'w' => 5, 'name' => 'shell_exec('],
    ['pat' => '/system\s*$/i', 'w' => 5, 'name' => 'system('],
    ['pat' => '/passthru\s*\(/i', 'w' => 5, 'name' => 'passthru('],
    ['pat' => '/popen\s*\(/i', 'w' => 4, 'name' => 'popen('],
    ['pat' => '/exec\s*\(/i', 'w' => 5, 'name' => 'exec('],
    ['pat' => '/`[^`]{3,400}`/i', 'w' => 4, 'name' => 'backticks exec'],
    ['pat' => '/file_get_contents\s*\(\s*[\'\"]https?:\/\//i', 'w' => 4, 'name' => 'remote file_get_contents'],
    ['pat' => '/fopen\s*\(\s*[\'\"]https?:\/\//i', 'w' => 4, 'name' => 'remote fopen'],
    ['pat' => '/curl_exec\s*\(/i', 'w' => 4, 'name' => 'curl_exec('],
    ['pat' => '/eval\\s*\\(base64_decode\\(/i', 'w' => 7, 'name' => 'eval(base64_decode('],
    ['pat' => '/gzuncompress\s*\(/i', 'w' => 4, 'name' => 'gzuncompress('],
    ['pat' => '/assert\s*\(/i', 'w' => 5, 'name' => 'assert('],
    ['pat' => '/create_function\s*\(/i', 'w' => 4, 'name' => 'create_function('],
    ['pat' => '/preg_replace\s*\(\s*["\'].*["\']\s*,\s*["\'].*["\']\s*,\s*.*\/e\s*$/i', 'w' => 5, 'name' => 'preg_replace /e (complex)'],
];

// suspicious filename keywords or random patterns
$filePatterns = [
    ['pat' => '/(shell|backdoor|c99|r57|weevely|webshell|php-shell)/i', 'w' => 6, 'name' => 'suspicious name'],
    ['pat' => '/^[0-9]{6,}\.php$/', 'w' => 6, 'name' => 'numeric filename php'],
    // random-looking patterns with xShell-like
    ['pat' => '/xShell/i', 'w' => 7, 'name' => 'xShell name'],
];

// long base64 blob detection: sequence of base64 chars longer than 200
$long_base64_regex = '/[A-Za-z0-9+\/=]{160,}/';

// Allowed file extensions to scan (we primarily scan PHP-like files)
$scanExtensions = ['php','phtml','php3','inc','phar','tpl','js','sh','cgi'];

// results
$findings = [];
$totalFiles = 0;
$scannedFiles = 0;

// iterate
$iterator = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($path, FilesystemIterator::SKIP_DOTS));
foreach ($iterator as $fileinfo) {
    $totalFiles++;
    if (!$fileinfo->isFile()) continue;
    $ext = strtolower(pathinfo($fileinfo->getFilename(), PATHINFO_EXTENSION));
    if (!in_array($ext, $scanExtensions)) continue;

$scannedFiles++;
    $filePath = $fileinfo->getPathname();
    $content = @file_get_contents($filePath);
    if ($content === false) continue;

$score = 0;
    $matches = [];

// 1) filename based scoring
    foreach ($filePatterns as $fp) {
        if (preg_match($fp['pat'], $fileinfo->getFilename())) {
            $score += $fp['w'];
            $matches[] = ['type' => 'filename', 'rule' => $fp['name']];
        }
    }

// 2) permission checks (world writable)
    $perms = fileperms($filePath);
    if (($perms & 0x0002)) { // world-writable bit
        $score += 3;
        $matches[] = ['type' => 'perm', 'rule' => 'world-writable'];
    }

// 3) code pattern checks
    foreach ($patterns as $p) {
        if (preg_match($p['pat'], $content)) {
            $count = preg_match_all($p['pat'], $content, $dummy);
            $score += $p['w'] * max(1, min(5, $count)); // weight times occurrences (capped)
            $matches[] = ['type' => 'code', 'rule' => $p['name'], 'found' => $count];
        }
    }

// 4) long base64 strings (often obfuscation)
    if (preg_match_all($long_base64_regex, $content, $bm)) {
        foreach ($bm[0] as $b) {
            $len = strlen($b);
            // larger base64 blocks increase suspicion
            $score += intval(min(8, floor($len / 80)));
        }
        $matches[] = ['type' => 'code', 'rule' => 'long_base64_blob', 'found' => count($bm[0])];
    }

// 5) small file with eval-ish content (tiny backdoors)
 $size = filesize($filePath);
 if ($size < 2000) {
 // small files with eval or system are extra suspicious
 if (preg_match('/(eval|base64_decode|system|shell_exec|exec)/i', $content)) {
 $score += 4;
 $matches[] = ['type' => 'heuristic', 'rule' => 'small_file_with_exec'];
 }
 }

// gather result
    if ($score > 0) {
        $findings[] = [
            'path' => $filePath,
            'filename' => $fileinfo->getFilename(),
            'size' => $size,
            'score' => $score,
            'matches' => $matches,
            'perms' => substr(sprintf('%o', fileperms($filePath)), -4),
        ];
    }
}

// sort by score desc
usort($findings, function($a,$b){ return $b['score'] - $a['score']; });

// Output
$timestamp = date('Ymd_His');
$reportFile = __DIR__ . "/scan_report_{$timestamp}.json";
$report = [
    'scanned_path' => $path,
    'scanned_at' => date('c'),
    'total_files_in_tree' => $totalFiles,
    'scanned_files' => $scannedFiles,
    'findings_count' => count($findings),
    'findings' => $findings,
];
file_put_contents($reportFile, json_encode($report, JSON_PRETTY_PRINT));

// Human readable output
function hr($s) { echo $s . PHP_EOL; }
if (is_cli()) {
 hr("Malware scanner report saved: $reportFile");
 hr("Scanned path: {$path}");
 hr("Total files found in tree: {$totalFiles}");
 hr("Files scanned (extensions): {$scannedFiles}");
 hr("Suspicious findings: " . count($findings));
 hr(str_repeat('-',40));
 foreach ($findings as $f) {
 hr("Score: {$f['score']} | Perms: {$f['perms']} | Size: {$f['size']} | File: {$f['path']}");
 foreach ($f['matches'] as $m) {
 $desc = $m['type'] . ":" . $m['rule'] . (isset($m['found']) ? " (count=".$m['found'].")" : "");
 hr(" - " . $desc);
 }
 hr('');
 }
} else {
 echo "<h3>Malware scanner report saved: <code>".htmlspecialchars($reportFile)."</code></h3>";
 echo "Scanned path: ".htmlspecialchars($path)."";
 echo "Total files found in tree: {$totalFiles}";
 echo "Files scanned (extensions): {$scannedFiles}";
 echo "Suspicious findings: ".count($findings)."";
 echo "<pre style='background:#eee;padding:10px;'>";
 foreach ($findings as $f) {
 echo "Score: {$f['score']} | Perms: {$f['perms']} | Size: {$f['size']} | File: {$f['path']}\n";
 foreach ($f['matches'] as $m) {
 $desc = $m['type'] . ":" . $m['rule'] . (isset($m['found']) ? " (count=".$m['found'].")" : "");
 echo " - " . $desc . "\n";
 }
 echo "\n";
 }
 echo "</pre>";
}

// Quarantine if requested (move files)
// Quarantine folder will be placed as sibling to scanned path if possible, else inside scanned path.
if ($do_quarantine && count($findings) > 0) {
 // choose quarantine base
 $parent = dirname($path);
 $quarantineBase = $parent ?: $path;
 $qname = $quarantineBase . DIRECTORY_SEPARATOR . "quarantine_{$timestamp}";
 if (!is_dir($qname)) {
 mkdir($qname, 0700, true);
 }
 $moved = [];
 foreach ($findings as $f) {
 $src = $f['path'];
 $relative = ltrim(str_replace($path, '', $src), "/\\");
 $dst = $qname . DIRECTORY_SEPARATOR . $relative;
 $dstDir = dirname($dst);
 if (!is_dir($dstDir)) mkdir($dstDir, 0700, true);
 // try move
 $ok = @rename($src, $dst);
 if ($ok) {
 $moved[] = ['from' => $src, 'to' => $dst];
 } else {
 // fallback: copy then unlink
 if (@copy($src, $dst)) {
 @unlink($src);
 $moved[] = ['from' => $src, 'to' => $dst, 'note' => 'copied_then_unlinked'];
 } else {
 $moved[] = ['from' => $src, 'to' => $dst, 'note' => 'failed'];
 }
 }
 }
 $qlog = $qname . DIRECTORY_SEPARATOR . "quarantine_log_{$timestamp}.json";
 file_put_contents($qlog, json_encode($moved, JSON_PRETTY_PRINT));
 if (is_cli()) {
 hr("Quarantine completed. Quarantine folder: $qname");
 hr("Quarantine log: $qlog");
 } else {
 echo "Quarantine completed. Quarantine folder: <code>".htmlspecialchars($qname)."</code>";
 echo "Quarantine log: <code>".htmlspecialchars($qlog)."</code>";
 }
} elseif ($do_quarantine) {
 if (is_cli()) hr("No suspicious files to quarantine.");
 else echo "No suspicious files to quarantine.";
}

exit(0);

X7ROOT File Manager

Editing: malware_scanner.php

Upload File

Create Folder