Open IIS Manager-> Select a folder-> Click the right mouse button-> Select "Explorer", switch to the root of the site, create a new folder here named "Liuqq", and then we go to "x:\windows\system32" (Of course this directory is arbitrary, where x represents the system disk) there is a new folder named "Liuhack", Return to IIS Manager refresh will see, "LIUQQ" this directory.
Select the "liuqq" directory, right-click-> "New"-> "virtual directory", the virtual directory named "Liuyes", the virtual directory to point to "X:\windows\system32\liuhack" (such as figure I), set up to complete.
Now put a page in, open the browser, in the Address bar type "http://ip/liuqq/liuyes/index.asp", if there is no problem with IIS, you should be able to browse normally.
Then we realize the hidden Web site-open "My Computer" to find the root directory of the site deleted we just created the "liuqq" this folder, and then back to the browser refresh to see, oh, how the site is still there. Then we go back to the IIS Manager refresh look, "liuqq" This directory is gone, so we hide the purpose of the site is achieved.
OK, I believe everyone will succeed according to the above method, let's take a look at how to find out whether there are hidden sites on the host.
Click the right mouse button on the site name-> "Properties"-> Select the Home Directory tab. Change the site's execute permission from pure script to none (or script and executable, but don't recommend this one, as in Figure II), and click the "Apply" button. The true colours of the bar (see figure III). The previous "Liuqq" is the deleted directory, and the "Liuyes" is the alias of the intruder to create the "virtual directory".
Of course, now we just know there is a hidden directory (site), but this is not enough, because we still do not know where it is stored (the intruder is not stupid to follow my method to create a hidden site), of course, there is no way to delete it. Let's find its lair and kill it. Go on ...
Create a new "LIUQQ" directory in the root directory where the site is located (depending on the specifics of figure three), and then go back to IIS's manager to refresh to see the hidden site directory (figure IV), and so on, and kill it quickly.
Finally, don't forget to change the settings in Figure two back, otherwise the site will have no way to browse. Well, let the hidden site away from us, I wish you host administrators Gook luck!
After the language: In the course of the experiment to find hidden site method of WIN2003+SP1 Invalid, please note!
