110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/reportEregis111/ drwxr-xr-x Free 52.64 GB of 127.8 GB (41.19%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/reportEregis111/ drwxr-xr-x
Free 52.64 GB of 127.8 GB (41.19%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: R703.php (764 B) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

Information:

Path	/var/www/html/reportEregis111/R703.php
Size	764 B
MD5	b25868814cf99b69b9d3e133081b8e85
Owner/Group	root/root
Perms	-rw-r--r--
Create time	13/02/2021 08:35:39
Access time	11/07/2024 11:09:22
MODIFY time	24/10/2018 19:29:02

FULL HEXDUMP

00000000
00000018
00000030
00000048
00000060
00000078
00000090
000000A8
000000C0
000000D8
000000F0
00000108
00000120
00000138
00000150
00000168
00000180
00000198
000001B0
000001C8
000001E0
000001F8
00000210
00000228
00000240
00000258
00000270
00000288
000002A0
000002B8
000002D0
000002E8

3C 3F 70 68 70 0A 73 65 73 73 69 6F 6E 5F 73 74 61 72 74 28 29 3B 0A 65
72 72 6F 72 5F 72 65 70 6F 72 74 69 6E 67 28 45 5F 41 4C 4C 29 3B 0A 69
6E 63 6C 75 64 65 28 22 50 46 42 43 2F 46 6F 72 6D 2E 70 68 70 22 29 3B
0A 0A 69 66 28 69 73 73 65 74 28 24 5F 50 4F 53 54 5B 22 66 6F 72 6D 22
5D 29 29 20 7B 0A 09 46 6F 72 6D 3A 3A 69 73 56 61 6C 69 64 28 24 5F 50
4F 53 54 5B 22 66 6F 72 6D 22 5D 29 3B 0A 09 68 65 61 64 65 72 28 22 4C
6F 63 61 74 69 6F 6E 3A 20 22 20 2E 20 24 5F 53 45 52 56 45 52 5B 22 50
48 50 5F 53 45 4C 46 22 5D 29 3B 0A 09 65 78 69 74 28 29 3B 09 0A 7D 0A
0A 69 6E 63 6C 75 64 65 28 22 68 65 61 64 65 72 2E 70 68 70 22 29 3B 0A
24 76 65 72 73 69 6F 6E 20 3D 20 66 69 6C 65 5F 67 65 74 5F 63 6F 6E 74
65 6E 74 73 28 22 76 65 72 73 69 6F 6E 22 29 3B 0A 3F 3E 0A 09 3C 75 6C
20 63 6C 61 73 73 3D 22 62 72 65 61 64 63 72 75 6D 62 22 3E 0A 09 09 3C
69 6D 67 20 73 72 63 3D 22 69 6D 67 2F 68 6F 6D 65 2E 70 6E 67 22 20 77
69 64 74 68 3D 22 33 32 22 20 68 65 69 67 68 74 3D 22 33 32 22 3E 20 26
6E 62 73 70 3B 26 6E 62 73 70 3B 3C 62 3E BC D9 E9 E0 A2 E9 D2 E3 AA E9
A7 D2 B9 C3 D0 BA BA 20 3A 3A 3C 2F 62 3E 26 6E 62 73 70 3B 26 6E 62 73
70 3B 3C 62 3E 49 44 3A 3C 2F 62 3E 26 6E 62 73 70 3B 3C 3F 3D 24 5F 47
45 54 5B 27 55 73 65 72 27 5D 3F 3E 20 3C 66 6F 6E 74 20 73 69 7A 65 3D
22 36 22 3E 3C 73 70 61 6E 20 63 6C 61 73 73 3D 22 6C 61 62 65 6C 20 6C
61 62 65 6C 2D 69 6E 66 6F 22 3E 3C 3F 3D 24 5F 47 45 54 5B 27 6E 61 6D
65 27 5D 3F 3E 3C 2F 73 70 61 6E 3E 3C 2F 66 6F 6E 74 3E 0A 09 3C 2F 75
6C 3E 0A 09 3C 73 63 72 69 70 74 3E 0A 09 09 66 75 6E 63 74 69 6F 6E 20
67 6F 42 61 63 6B 28 29 20 7B 0A 09 09 09 77 69 6E 64 6F 77 2E 68 69 73
74 6F 72 79 2E 62 61 63 6B 28 29 3B 0A 09 09 7D 0A 09 3C 2F 73 63 72 69
70 74 3E 0A 09 3C 69 66 72 61 6D 65 20 73 72 63 3D 22 68 74 74 70 73 3A
2F 2F 61 64 6D 69 6E 69 73 74 65 72 2E 70 69 2E 61 63 2E 74 68 2F 6F 70
65 6E 70 69 2F 69 6E 64 65 78 2E 70 68 70 2F 65 72 65 73 65 61 72 63 68
65 72 2F 65 78 70 6F 72 74 5F 6D 74 2F 72 70 74 35 37 5F 6D 74 5F 67 72
61 70 68 46 6F 72 4E 75 6D 4F 66 50 6F 73 74 69 74 69 6F 6E 2F 32 31 22
20 68 65 69 67 68 74 3D 22 36 30 30 22 20 77 69 64 74 68 3D 22 31 30 30
25 22 3E 3C 2F 69 66 72 61 6D 65 3E 0A 3C 3F 70 68 70 0A 69 6E 63 6C 75
64 65 28 22 66 6F 6F 74 65 72 2E 70 68 70 22 29 3B 0A 3F 3E

<?php session_start(); e
rror_reporting(E_ALL); i
nclude("PFBC/Form.php");
if(isset($_POST["form"
])) { Form::isValid($_P
OST["form"]); header("L
ocation: " . $_SERVER["P
HP_SELF"]); exit(); }
include("header.php");
$version = file_get_cont
ents("version"); ?> <ul
class="breadcrumb"> <
img src="img/home.png" w
idth="32" height="32"> &
nbsp; <b>јЩйаўйТгЄй
§Т№ГРєє ::</b> &nbs
p;<b>ID:</b> <?=$_G
ET['User']?> <font size=
"6"><span class="label l
abel-info"><?=$_GET['nam
e']?></span></font> </u
l> <script> function
goBack() { window.his
tory.back(); } </scri
pt> <iframe src="https:
//administer.pi.ac.th/op
enpi/index.php/eresearch
er/export_mt/rpt57_mt_gr
aphForNumOfPostition/21"
height="600" width="100
%"></iframe> <?php inclu
de("footer.php"); ?>

HEXDUMP: [Full] [Preview]
Base64: [Encode] [+chunk] [+chunk+quotes] [Decode]

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.01 ]--