110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/mistk_joice2222/ums/ drwxr-xr-x Free 52.32 GB of 127.8 GB (40.94%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/mistk_joice2222/ums/ drwxr-xr-x
Free 52.32 GB of 127.8 GB (40.94%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: processUmSystem.php (1.21 KB) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

Information:

Path	/var/www/html/mistk_joice2222/ums/processUmSystem.php
Size	1.21 KB
MD5	7d6e2236ed183f37f1e02d329954e9e8
Owner/Group	root/root
Perms	-rw-r--r--
Create time	06/07/2011 01:59:52
Access time	31/07/2024 03:53:51
MODIFY time	02/03/2006 12:13:10

FULL HEXDUMP

00000000
00000018
00000030
00000048
00000060
00000078
00000090
000000A8
000000C0
000000D8
000000F0
00000108
00000120
00000138
00000150
00000168
00000180
00000198
000001B0
000001C8
000001E0
000001F8
00000210
00000228
00000240
00000258
00000270
00000288
000002A0
000002B8
000002D0
000002E8
00000300
00000318
00000330
00000348
00000360
00000378
00000390
000003A8
000003C0
000003D8
000003F0
00000408
00000420
00000438
00000450
00000468
00000480
00000498
000004B0
000004C8

3C 3F 70 68 70 0D 0A 69 6E 63 6C 75 64 65 5F 6F 6E 63 65 28 22 67 6C 6F
62 61 6C 2E 70 68 70 22 29 3B 0D 0A 69 6E 63 6C 75 64 65 5F 6F 6E 63 65
28 22 2E 2E 2F 63 6C 61 73 73 2F 63 6C 73 43 6F 6E 6E 65 63 74 69 6F 6E
2E 70 68 70 22 29 3B 0D 0A 69 6E 63 6C 75 64 65 5F 6F 6E 63 65 28 22 2E
2E 2F 63 6C 61 73 73 2F 63 6C 73 44 42 2E 70 68 70 22 29 3B 0D 0A 69 6E
63 6C 75 64 65 5F 6F 6E 63 65 28 22 63 6C 73 55 6D 53 79 73 74 65 6D 2E
70 68 70 22 29 3B 0D 0A 24 6F 43 20 3D 20 6E 65 77 20 20 63 6C 73 43 6F
6E 6E 65 63 74 69 6F 6E 28 24 47 4C 4F 42 41 4C 53 5B 27 48 4F 53 54 27
5D 2C 20 24 47 4C 4F 42 41 4C 53 5B 27 44 42 27 5D 2C 20 24 47 4C 4F 42
41 4C 53 5B 27 55 53 45 52 27 5D 2C 20 24 47 4C 4F 42 41 4C 53 5B 27 50
41 53 53 57 4F 52 44 27 5D 29 3B 0D 0A 24 6F 62 6A 20 3D 20 6E 65 77 20
75 6D 73 79 73 74 65 6D 28 24 6F 43 29 3B 0D 0A 69 66 28 24 6D 65 74 68
6F 64 3D 3D 22 61 64 64 22 29 7B 0D 0A 09 24 6F 62 6A 2D 3E 41 64 64 4E
65 77 28 29 3B 0D 0A 09 24 6F 62 6A 2D 3E 53 74 49 44 3D 24 53 74 49 44
3B 0D 0A 09 24 6F 62 6A 2D 3E 53 74 4E 61 6D 65 54 3D 24 53 74 4E 61 6D
65 54 3B 0D 0A 09 24 6F 62 6A 2D 3E 53 74 4E 61 6D 65 45 3D 24 53 74 4E
61 6D 65 45 3B 0D 0A 09 24 6F 62 6A 2D 3E 53 74 41 62 62 72 54 3D 24 53
74 41 62 62 72 54 3B 0D 0A 09 24 6F 62 6A 2D 3E 53 74 41 62 62 72 45 3D
24 53 74 41 62 62 72 45 3B 0D 0A 09 24 6F 62 6A 2D 3E 53 74 44 65 73 63
3D 24 53 74 44 65 73 63 3B 0D 0A 09 24 6F 62 6A 2D 3E 53 74 55 52 4C 3D
24 53 74 55 52 4C 3B 0D 0A 09 24 6F 62 6A 2D 3E 53 74 49 63 6F 6E 3D 24
53 74 49 63 6F 6E 3B 0D 0A 09 69 66 20 28 21 24 6F 62 6A 2D 3E 53 61 76
65 28 29 29 7B 0D 0A 09 09 24 6D 73 67 5F 65 72 72 20 3D 20 22 E0 A1 D4
B4 A2 E9 CD BC D4 B4 BC C5 D2 B4 E3 B9 A1 D2 C3 E0 BE D4 E8 C1 20 3A 20
22 3B 09 09 09 2F 2F 20 20 20 2E 20 6D 79 73 71 6C 5F 65 72 72 6F 72 28
29 3B 0D 0A 09 7D 0D 0A 7D 65 6C 73 65 20 69 66 28 24 6D 65 74 68 6F 64
3D 3D 22 65 64 69 74 22 29 7B 0D 0A 09 24 6F 62 6A 2D 3E 53 65 61 72 63
68 42 79 4B 65 79 28 24 53 74 49 44 29 3B 0D 0A 09 24 6F 62 6A 2D 3E 47
65 74 52 65 63 6F 72 64 28 29 3B 0D 0A 09 24 6F 62 6A 2D 3E 45 64 69 74
28 29 3B 0D 0A 09 24 6F 62 6A 2D 3E 53 74 49 44 3D 24 53 74 49 44 3B 0D
0A 09 24 6F 62 6A 2D 3E 53 74 4E 61 6D 65 54 3D 24 53 74 4E 61 6D 65 54
3B 0D 0A 09 24 6F 62 6A 2D 3E 53 74 4E 61 6D 65 45 3D 24 53 74 4E 61 6D
65 45 3B 0D 0A 09 24 6F 62 6A 2D 3E 53 74 41 62 62 72 54 3D 24 53 74 41
62 62 72 54 3B 0D 0A 09 24 6F 62 6A 2D 3E 53 74 41 62 62 72 45 3D 24 53
74 41 62 62 72 45 3B 0D 0A 09 24 6F 62 6A 2D 3E 53 74 44 65 73 63 3D 24
53 74 44 65 73 63 3B 0D 0A 09 24 6F 62 6A 2D 3E 53 74 55 52 4C 3D 24 53
74 55 52 4C 3B 0D 0A 09 24 6F 62 6A 2D 3E 53 74 49 63 6F 6E 3D 24 53 74
49 63 6F 6E 3B 0D 0A 09 69 66 20 28 21 24 6F 62 6A 2D 3E 53 61 76 65 28
29 29 20 7B 0D 0A 09 09 24 6D 73 67 5F 65 72 72 20 3D 20 22 E0 A1 D4 B4
A2 E9 CD BC D4 B4 BC C5 D2 B4 E3 B9 A1 D2 C3 E1 A1 E9 E4 A2 20 3A 20 22
3B 09 09 09 09 2F 2F 20 20 20 2E 20 6D 79 73 71 6C 5F 65 72 72 6F 72 28
29 3B 0D 0A 09 7D 0D 0A 7D 65 6C 73 65 20 69 66 28 24 6D 65 74 68 6F 64
3D 3D 22 64 65 6C 65 74 65 22 29 7B 0D 0A 09 24 6F 62 6A 2D 3E 53 65 61
72 63 68 42 79 4B 65 79 28 24 53 74 49 44 29 3B 0D 0A 09 24 6F 62 6A 2D
3E 47 65 74 52 65 63 6F 72 64 28 29 3B 0D 0A 09 69 66 28 21 24 6F 62 6A
2D 3E 44 65 6C 65 74 65 28 29 29 20 7B 0D 0A 09 09 24 6D 73 67 5F 65 72
72 20 3D 20 22 E0 A1 D4 B4 A2 E9 CD BC D4 B4 BC C5 D2 B4 E3 B9 A1 D2 C3
C5 BA 20 3A 20 22 3B 09 09 09 2F 2F 20 20 20 2E 20 6D 79 73 71 6C 5F 65
72 72 6F 72 28 29 3B 09 09 0D 0A 09 7D 0D 0A 7D 0D 0A 65 63 68 6F 20 22
3C 6D 65 74 61 20 68 74 74 70 2D 65 71 75 69 76 3D 27 72 65 66 72 65 73
68 27 20 63 6F 6E 74 65 6E 74 3D 27 30 3B 20 55 52 4C 3D 75 6D 53 68 6F
77 53 79 73 74 65 6D 2E 70 68 70 27 3E 22 3B 0D 0A 3F 3E

<?php  include_once("glo
bal.php");  include_once
("../class/clsConnection
.php");  include_once(".
./class/clsDB.php");  in
clude_once("clsUmSystem.
php");  $oC = new  clsCo
nnection($GLOBALS['HOST'
], $GLOBALS['DB'], $GLOB
ALS['USER'], $GLOBALS['P
ASSWORD']);  $obj = new
umsystem($oC);  if($meth
od=="add"){   $obj->AddN
ew();   $obj->StID=$StID
;   $obj->StNameT=$StNam
eT;   $obj->StNameE=$StN
ameE;   $obj->StAbbrT=$S
tAbbrT;   $obj->StAbbrE=
$StAbbrE;   $obj->StDesc
=$StDesc;   $obj->StURL=
$StURL;   $obj->StIcon=$
StIcon;   if (!$obj->Sav
e()){   $msg_err = "аЎФ
ґўйНјФґјЕТґг№ЎТГаѕФиБ :
"; //   . mysql_error(
);   }  }else if($method
=="edit"){   $obj->Searc
hByKey($StID);   $obj->G
etRecord();   $obj->Edit
();   $obj->StID=$StID;
$obj->StNameT=$StNameT
;   $obj->StNameE=$StNam
eE;   $obj->StAbbrT=$StA
bbrT;   $obj->StAbbrE=$S
tAbbrE;   $obj->StDesc=$
StDesc;   $obj->StURL=$S
tURL;   $obj->StIcon=$St
Icon;   if (!$obj->Save(
)) {   $msg_err = "аЎФґ
ўйНјФґјЕТґг№ЎТГбЎйдў : "
; //   . mysql_error(
);   }  }else if($method
=="delete"){   $obj->Sea
rchByKey($StID);   $obj-
>GetRecord();   if(!$obj
->Delete()) {   $msg_er
r = "аЎФґўйНјФґјЕТґг№ЎТГ
Еє : "; //   . mysql_e
rror();    }  }  echo "
<meta http-equiv='refres
h' content='0; URL=umSho
wSystem.php'>";  ?>

HEXDUMP: [Full] [Preview]
Base64: [Encode] [+chunk] [+chunk+quotes] [Decode]

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0101 ]--