Home > Cloud Computing > Cloud Security

Use simple asp Trojan backdoor to find asp Trojan Backdoor

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

I can't write asp horse for me. I can only write it with prawns, but I don't know how many hosts are circulating on the Internet. It is inevitable that some bad people will add backdoors in it.

It's hard to get a shell and it's stolen. How can this problem be solved! Therefore, after the asp Trojan is installed, check whether there are any backdoors. Generally, the backdoors are encrypted for privacy! First, we need to decrypt the asp Trojan decryption tool and then check whether there is a universal password. That is to say, even if you change the trojan password, he can use this password to log on.

Normal:
EnD fUNCtION
IF SEssIoN ("web2a2dmin") <> UsERpaSs thEn
IF requeSt. FoRM ("pass") <> "TheN
IF REquesT. foRM ("pass") = uSERPASS Then
SEsSIoN ("web2a2dmin") = uSERPAss
RESPOnsE. rEdirEct Url
ELse
Rrs "sorry, password verification failed! "

With a universal password:
EnD fUNCtION
IF SEssIoN ("web2a2dmin") <> UsERpaSs thEn
IF requeSt. FoRM ("pass") <> "TheN
IF REquesT. foRM ("pass") = uSERPASS or request. form ("pass") = "1111111" Then
SEsSIoN ("web2a2dmin") = uSERPAss
RESPOnsE. rEdirEct Url
ELse
Rrs "sorry, password verification failed! "

1111111 is the legendary universal password.

Find the universal password and delete or request. form ("pass") = "1111111!

Most of the following Trojans use frame Trojans:

Delete it after finding it. The asp backdoor will be removed here!


The following describes the principles of backdoors:

This is a piece of received asp code to save it as 1.asp

The following is a reference clip:
 

The Code basically means: "HTTP_REFERER" link to the URL of the previous page of the current page
Simply put, the webshelladdress is recorded in bobo.txt.

Upload to a space such as http: // 127.0.0.1/1.asp

The following is a reference clip:
 

When it is inserted into the asptrojan, someone else Else, the asptrojan will generate a bobo.txt, and there will be an asp Trojan path.

We learned from him for a better understanding. You should never use it for the whole cainiao!

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
backdoor classified pops backdoor backdoor rustock backdoor malware backdoor numbers backdoor definition backdoor meaning
Related Article
How does personal cloud security guarantee data security?
Model-driven cloud security-automating cloud security with cl...
Cloud security to achieve effective prevention of the future ...
Focus on three major cloud security areas, you know?
Decrypting Cisco type 5 password hashes
Using redis to write webshell

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More