!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686
 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/eoffice_b/ums/temp/font/   drwxr-xr-x
Free 50.82 GB of 127.8 GB (39.76%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     freeb.php (4.69 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
$type
='Type1';
$name='FreesiaUPCBold';
$desc=array('Ascent'=>438,'Descent'=>-118,'CapHeight'=>432,'Flags'=>32,'FontBBox'=>'[-366 -267 777 862]','ItalicAngle'=>0,'StemV'=>120);
$up=-32;
$ut=5;
$cw=array(
    
chr(0)=>600,chr(1)=>600,chr(2)=>600,chr(3)=>600,chr(4)=>600,chr(5)=>600,chr(6)=>600,chr(7)=>600,chr(8)=>600,chr(9)=>600,chr(10)=>600,chr(11)=>600,chr(12)=>600,chr(13)=>600,chr(14)=>600,chr(15)=>600,chr(16)=>600,chr(17)=>600,chr(18)=>600,chr(19)=>600,chr(20)=>600,chr(21)=>600,
    
chr(22)=>600,chr(23)=>600,chr(24)=>600,chr(25)=>600,chr(26)=>600,chr(27)=>600,chr(28)=>600,chr(29)=>600,chr(30)=>600,chr(31)=>600,' '=>222,'!'=>222,'"'=>308,'#'=>502,'$'=>445,'%'=>507,'&'=>452,'\''=>219,'('=>318,')'=>318,'*'=>327,'+'=>401,
    
','=>179,'-'=>401,'.'=>185,'/'=>350,'0'=>459,'1'=>459,'2'=>459,'3'=>459,'4'=>459,'5'=>459,'6'=>459,'7'=>459,'8'=>459,'9'=>459,':'=>228,';'=>244,'<'=>343,'='=>401,'>'=>343,'?'=>440,'@'=>504,'A'=>403,
    
'B'=>416,'C'=>416,'D'=>416,'E'=>365,'F'=>340,'G'=>416,'H'=>416,'I'=>189,'J'=>252,'K'=>403,'L'=>315,'M'=>554,'N'=>416,'O'=>416,'P'=>391,'Q'=>416,'R'=>416,'S'=>378,'T'=>340,'U'=>416,'V'=>378,'W'=>567,
    
'X'=>403,'Y'=>378,'Z'=>416,'['=>239,'\\'=>378,']'=>239,'^'=>378,'_'=>315,'`'=>239,'a'=>340,'b'=>340,'c'=>340,'d'=>340,'e'=>340,'f'=>189,'g'=>353,'h'=>340,'i'=>164,'j'=>164,'k'=>353,'l'=>164,'m'=>517,
    
'n'=>340,'o'=>340,'p'=>340,'q'=>340,'r'=>214,'s'=>315,'t'=>239,'u'=>340,'v'=>302,'w'=>466,'x'=>340,'y'=>302,'z'=>265,'{'=>239,'|'=>189,'}'=>239,'~'=>378,chr(127)=>600,chr(128)=>600,chr(129)=>600,chr(130)=>600,chr(131)=>600,
    
chr(132)=>600,chr(133)=>600,chr(134)=>600,chr(135)=>600,chr(136)=>600,chr(137)=>600,chr(138)=>600,chr(139)=>600,chr(140)=>600,chr(141)=>600,chr(142)=>600,chr(143)=>600,chr(144)=>600,chr(145)=>600,chr(146)=>600,chr(147)=>600,chr(148)=>600,chr(149)=>600,chr(150)=>600,chr(151)=>600,chr(152)=>600,chr(153)=>600,
    
chr(154)=>600,chr(155)=>600,chr(156)=>600,chr(157)=>600,chr(158)=>600,chr(159)=>600,chr(160)=>222,chr(161)=>430,chr(162)=>422,chr(163)=>432,chr(164)=>461,chr(165)=>465,chr(166)=>495,chr(167)=>352,chr(168)=>393,chr(169)=>443,chr(170)=>448,chr(171)=>442,chr(172)=>594,chr(173)=>586,chr(174)=>476,chr(175)=>480,
    
chr(176)=>387,chr(177)=>524,chr(178)=>638,chr(179)=>598,chr(180)=>460,chr(181)=>460,chr(182)=>431,chr(183)=>481,chr(184)=>407,chr(185)=>472,chr(186)=>483,chr(187)=>483,chr(188)=>435,chr(189)=>437,chr(190)=>514,chr(191)=>519,chr(192)=>482,chr(193)=>480,chr(194)=>430,chr(195)=>375,chr(196)=>430,chr(197)=>432,
    
chr(198)=>476,chr(199)=>378,chr(200)=>468,chr(201)=>496,chr(202)=>436,chr(203)=>484,chr(204)=>528,chr(205)=>414,chr(206)=>414,chr(207)=>420,chr(208)=>374,chr(209)=>0,chr(210)=>340,chr(211)=>339,chr(212)=>0,chr(213)=>0,chr(214)=>0,chr(215)=>0,chr(216)=>0,chr(217)=>0,chr(218)=>0,chr(219)=>600,
    
chr(220)=>600,chr(221)=>600,chr(222)=>600,chr(223)=>430,chr(224)=>251,chr(225)=>464,chr(226)=>291,chr(227)=>322,chr(228)=>312,chr(229)=>358,chr(230)=>589,chr(231)=>0,chr(232)=>0,chr(233)=>0,chr(234)=>0,chr(235)=>0,chr(236)=>0,chr(237)=>0,chr(238)=>0,chr(239)=>510,chr(240)=>450,chr(241)=>449,
    
chr(242)=>516,chr(243)=>458,chr(244)=>467,chr(245)=>482,chr(246)=>475,chr(247)=>538,chr(248)=>476,chr(249)=>526,chr(250)=>512,chr(251)=>787,chr(252)=>600,chr(253)=>600,chr(254)=>600,chr(255)=>600);
$enc='iso-8859-11';
$diff='128 /.notdef 130 /.notdef /.notdef /.notdef /.notdef /.notdef /.notdef /.notdef /.notdef /.notdef /.notdef /.notdef 142 /.notdef 145 /.notdef /.notdef /.notdef /.notdef /.notdef /.notdef /.notdef /.notdef /.notdef /.notdef /.notdef /.notdef 158 /.notdef /.notdef 161 /kokaithai /khokhaithai /khokhuatthai /khokhwaithai /khokhonthai /khorakhangthai /ngonguthai /chochanthai /chochingthai /chochangthai /sosothai /chochoethai /yoyingthai /dochadathai /topatakthai /thothanthai /thonangmonthothai /thophuthaothai /nonenthai /dodekthai /totaothai /thothungthai /thothahanthai /thothongthai /nonuthai /bobaimaithai /poplathai /phophungthai /fofathai /phophanthai /fofanthai /phosamphaothai /momathai /yoyakthai /roruathai /ruthai /lolingthai /luthai /wowaenthai /sosalathai /sorusithai /sosuathai /hohipthai /lochulathai /oangthai /honokhukthai /paiyannoithai /saraathai /maihanakatthai /saraaathai /saraamthai /saraithai /saraiithai /sarauethai /saraueethai /sarauthai /sarauuthai /phinthuthai /.notdef /.notdef /.notdef /.notdef /bahtthai /saraethai /saraaethai /saraothai /saraaimaimuanthai /saraaimaimalaithai /lakkhangyaothai /maiyamokthai /maitaikhuthai /maiekthai /maithothai /maitrithai /maichattawathai /thanthakhatthai /nikhahitthai /yamakkanthai /fongmanthai /zerothai /onethai /twothai /threethai /fourthai /fivethai /sixthai /seventhai /eightthai /ninethai /angkhankhuthai /khomutthai /.notdef /.notdef /.notdef /.notdef';
$file='freeb.z';
$size1=5667;
$size2=29610;
?>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd

Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 

:: Upload ::
 
[ Read-Only ]

:: Make Dir ::
 
[ Read-Only ]
:: Make File ::
 
[ Read-Only ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0168 ]--