110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/_manage_depart/ drwxr-xr-x Free 52.61 GB of 127.8 GB (41.16%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/manage/_manage_depart/ drwxr-xr-x
Free 52.61 GB of 127.8 GB (41.16%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: Delcecor.php (941 B) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

Information:

Path	/var/www/html/manage/_manage_depart/Delcecor.php
Size	941 B
MD5	26b0e96aab3e6dd6f7735ee5ff612218
Owner/Group	apache/apache
Perms	-rw-r--r--
Create time	13/01/2014 10:49:49
Access time	11/07/2024 16:32:15
MODIFY time	13/01/2014 10:49:49

FULL HEXDUMP

00000000
00000018
00000030
00000048
00000060
00000078
00000090
000000A8
000000C0
000000D8
000000F0
00000108
00000120
00000138
00000150
00000168
00000180
00000198
000001B0
000001C8
000001E0
000001F8
00000210
00000228
00000240
00000258
00000270
00000288
000002A0
000002B8
000002D0
000002E8
00000300
00000318
00000330
00000348
00000360
00000378
00000390
000003A8

3C 3F 70 68 70 0A 20 73 65 73 73 69 6F 6E 5F 73 74 61 72 74 28 29 3B 0A
20 69 66 20 28 73 65 73 73 69 6F 6E 5F 69 73 5F 72 65 67 69 73 74 65 72
65 64 28 22 76 61 6C 69 64 5F 75 73 65 72 22 29 29 0A 20 7B 0A 3F 3E 0A
3C 68 74 6D 6C 3E 0A 3C 68 65 61 64 3E 0A 3C 74 69 74 6C 65 3E 44 65 6C
65 74 65 20 20 44 61 74 61 20 43 6F 6D 70 6C 65 74 65 20 3C 2F 74 69 74
6C 65 3E 0A 3C 6D 65 74 61 20 68 74 74 70 2D 65 71 75 69 76 3D 22 43 6F
6E 74 65 6E 74 2D 54 79 70 65 22 20 63 6F 6E 74 65 6E 74 3D 22 74 65 78
74 2F 68 74 6D 6C 3B 20 63 68 61 72 73 65 74 3D 69 73 6F 2D 38 38 35 39
2D 31 22 3E 3C 2F 68 65 61 64 3E 0A 3C 62 6F 64 79 20 62 67 63 6F 6C 6F
72 3D 22 23 46 46 46 46 46 46 22 3E 0A 3C 3F 70 68 70 0A 09 69 6E 63 6C
75 64 65 28 22 2E 2E 2F 69 6E 63 6C 75 64 65 2F 46 75 6E 63 74 69 6F 6E
44 42 2E 70 68 70 22 29 3B 0A 09 43 6F 6E 6E 65 63 74 44 42 28 29 3B 0A
20 20 2F 2F 20 20 24 54 65 61 63 68 65 72 5F 63 6F 64 65 20 3D 20 24 5F
50 4F 53 54 5B 24 54 65 61 63 68 65 72 5F 63 6F 64 65 5D 3B 0A 2F 2F 09
24 43 6F 64 65 20 3D 20 24 5F 50 4F 53 54 5B 22 43 6F 64 65 22 5D 3B 0A
09 09 24 73 74 72 53 51 4C 20 3D 20 22 44 45 4C 45 54 45 20 46 52 4F 4D
20 68 69 73 74 6F 72 79 5F 64 65 63 6F 72 61 74 69 6F 6E 5F 74 62 20 57
48 45 52 45 20 43 6F 64 65 3D 27 24 43 6F 64 65 27 20 22 3B 0A 09 09 24
72 65 73 75 6C 74 20 20 3D 20 6D 79 73 71 6C 5F 71 75 65 72 79 28 24 73
74 72 53 51 4C 29 3B 0A 09 09 69 66 20 28 21 24 72 65 73 75 6C 74 29 0A
09 09 09 72 65 74 75 72 6E 20 22 20 50 6C 65 61 73 65 20 63 68 65 63 6B
20 51 75 65 72 79 20 41 67 61 69 6E 20 3C 62 72 3E 22 3B 0A 09 09 20 24
69 2B 2B 3B 0A 0A 20 20 20 20 20 20 20 20 20 69 66 20 28 24 72 65 73 75
6C 74 29 0A 09 20 09 65 63 68 6F 22 3C 6D 65 74 61 20 68 74 74 70 2D 65
71 75 69 76 3D 5C 22 72 65 66 72 65 73 68 5C 22 20 63 6F 6E 74 65 6E 74
3D 5C 22 31 3B 55 52 4C 3D 45 64 69 74 5F 44 65 63 5F 4C 69 73 74 2E 70
68 70 3F 54 65 61 63 68 65 72 5F 63 6F 64 65 3D 24 54 65 61 63 68 65 72
5F 63 6F 64 65 5C 22 3E 22 3B 0A 09 20 20 20 20 20 20 20 65 63 68 6F 22
3C 62 72 3E 3C 62 72 3E 3C 63 65 6E 74 65 72 3E 3C 66 6F 6E 74 20 66 61
63 65 3D 5C 22 4D 73 20 53 61 6E 20 73 65 72 69 66 5C 22 73 69 7A 65 3D
5C 22 35 5C 22 20 63 6F 6C 6F 72 3D 5C 22 23 46 46 30 30 30 30 5C 22 3E
44 65 6C 65 74 65 20 43 6F 6D 70 6C 65 74 65 3C 2F 66 6F 6E 74 3E 3C 2F
63 65 6E 74 65 72 3E 22 3B 0A 09 43 6C 6F 73 65 44 42 28 29 3B 0A 3F 3E
0A 3C 2F 62 6F 64 79 3E 0A 3C 2F 68 74 6D 6C 3E 0A 3C 3F 70 68 70 20 0A
09 7D 0A 65 6C 73 65 0A 7B 0A 20 20 20 20 20 20 20 65 63 68 6F 22 3C 6D
65 74 61 20 68 74 74 70 2D 65 71 75 69 76 3D 5C 22 72 65 66 72 65 73 68
5C 22 20 63 6F 6E 74 65 6E 74 3D 5C 22 33 3B 55 52 4C 3D 2E 2E 2F 2E 2E
2F 2E 2E 2F 6C 6F 67 69 6E 2E 70 68 70 5C 22 3E 5C 6E 22 3B 0A 20 20 20
20 20 20 20 65 63 68 6F 22 50 6C 65 61 73 65 20 4C 6F 67 69 6E 20 22 3B
0A 7D 0A 3F 3E

<?php session_start();
if (session_is_register
ed("valid_user")) { ?>
<html> <head> <title>Del
ete Data Complete </tit
le> <meta http-equiv="Co
ntent-Type" content="tex
t/html; charset=iso-8859
-1"></head> <body bgcolo
r="#FFFFFF"> <?php incl
ude("../include/Function
DB.php"); ConnectDB();
 // $Teacher_code = $_
POST[$Teacher_code]; //
$Code = $_POST["Code"];
$strSQL = "DELETE FROM
history_decoration_tb W
HERE Code='$Code' "; $
result = mysql_query($s
trSQL); if (!$result)
return " Please check
Query Again "; $
i++; if ($resu
lt) echo"<meta http-e
quiv=\"refresh\" content
=\"1;URL=Edit_Dec_List.p
hp?Teacher_code=$Teacher
_code\">"; echo"
 <center>
Delete Complete</
center>"; CloseDB(); ?>
</body> </html> <?php
} else { echo"<m
eta http-equiv=\"refresh
\" content=\"3;URL=../..
/../login.php\">\n";
 echo"Please Login ";
} ?>

HEXDUMP: [Full] [Preview]
Base64: [Encode] [+chunk] [+chunk+quotes] [Decode]

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0102 ]--