110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/mis2222/font/ drwxr-xr-x Free 52.3 GB of 127.8 GB (40.92%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/mis2222/font/ drwxr-xr-x
Free 52.3 GB of 127.8 GB (40.92%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: MyFont_THSarabun.php (478 B) -rwxr-xr-x
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

Information:

Path	/var/www/html/mis2222/font/MyFont_THSarabun.php
Size	478 B
MD5	37c134e5c50af5d49e31599425864e5f
Owner/Group	apache/apache
Perms	-rwxr-xr-x
Create time	20/02/2020 14:54:08
Access time	31/07/2024 12:10:08
MODIFY time	13/06/2011 13:24:22

FULL HEXDUMP

00000000
00000018
00000030
00000048
00000060
00000078
00000090
000000A8
000000C0
000000D8
000000F0
00000108
00000120
00000138
00000150
00000168
00000180
00000198
000001B0
000001C8

3C 3F 0D 0A 23 23 23 20 68 74 74 70 3A 2F 2F 64 69 76 2E 65 78 70 65 72
74 64 75 63 6B 2E 63 6F 6D 2F 3F 70 3D 34 33 36 20 23 23 23 0D 0A 24 66
6F 6E 74 20 3D 20 27 54 48 53 61 72 61 62 75 6E 27 3B 20 2F 2F E0 B8 8A
E0 B8 B7 E0 B9 88 E0 B8 AD E0 B9 84 E0 B8 9F E0 B8 A5 E0 B9 8C E0 B8 9F
E0 B9 89 E0 B8 AD E0 B8 99 E0 B8 95 E0 B9 8C E0 B9 84 E0 B8 A1 E0 B9 88
E0 B8 95 E0 B9 89 E0 B8 AD E0 B8 87 E0 B9 83 E0 B8 AA E0 B9 88 E0 B8 99
E0 B8 B2 E0 B8 A1 E0 B8 AA E0 B8 81 E0 B8 B8 E0 B8 A5 0D 0A 24 75 61 20
3D 20 73 74 72 74 6F 6C 6F 77 65 72 28 24 5F 53 45 52 56 45 52 5B 27 48
54 54 50 5F 55 53 45 52 5F 41 47 45 4E 54 27 5D 29 3B 0D 0A 68 65 61 64
65 72 28 27 41 63 63 65 73 73 2D 43 6F 6E 74 72 6F 6C 2D 41 6C 6C 6F 77
2D 4F 72 69 67 69 6E 3A 2A 27 29 3B 0D 0A 69 66 28 73 74 72 70 6F 73 28
24 75 61 2C 27 6D 73 69 65 27 29 29 7B 0D 0A 68 65 61 64 65 72 28 27 43
6F 6E 74 65 6E 74 2D 74 79 70 65 3A 20 66 6F 6E 74 2F 65 6F 74 27 29 3B
0D 0A 24 66 69 6C 65 20 3D 20 24 66 6F 6E 74 2E 27 2E 65 6F 74 27 3B 0D
0A 7D 65 6C 73 65 7B 0D 0A 68 65 61 64 65 72 28 27 43 6F 6E 74 65 6E 74
2D 74 79 70 65 3A 20 66 6F 6E 74 2F 74 74 66 27 29 3B 0D 0A 24 66 69 6C
65 20 3D 20 24 66 6F 6E 74 2E 27 2E 74 74 66 27 3B 0D 0A 7D 0D 0A 68 65
61 64 65 72 28 27 43 6F 6E 74 65 6E 74 2D 6C 65 6E 67 74 68 3A 20 27 2E
66 69 6C 65 73 69 7A 65 28 24 66 69 6C 65 29 29 3B 0D 0A 72 65 61 64 66
69 6C 65 28 24 66 69 6C 65 29 3B 0D 0A 65 78 69 74 3B 0D 0A 3F 3E

<?  ### http://div.exper
tduck.com/?p=436 ###  $f
ont = 'THSarabun'; //ช
ื่อไฟล์ฟ
้อนต์ไม่
ต้องใส่น
ามสกุล  $ua
= strtolower($_SERVER['H
TTP_USER_AGENT']);  head
er('Access-Control-Allow
-Origin:*');  if(strpos(
$ua,'msie')){  header('C
ontent-type: font/eot');
  $file = $font.'.eot';
}else{  header('Content
-type: font/ttf');  $fil
e = $font.'.ttf';  }  he
ader('Content-length: '.
filesize($file));  readf
ile($file);  exit;  ?>

HEXDUMP: [Full] [Preview]
Base64: [Encode] [+chunk] [+chunk+quotes] [Decode]

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.009 ]--