script74

本来支持aspx的，现在我传上去的aspx马打不开，提示如下：
Server Error in '/' Application.
--------------------------------------------------------------------------------

Runtime Error
Description: An application error occurred on the server. The current custom error settings for this application prevent the details of the application error from being viewed remotely (for security reasons). It could, however, be viewed by browsers running on the local server machine.

Details: To enable the details of this specific error message to be viewable on remote machines, please create a <customErrors> tag within a "web.config" configuration file located in the root directory of the current web application. This <customErrors> tag should then have its "mode" attribute set to "Off".


<!-- Web.Config Configuration File -->

<configuration>
    <system.web>
        <customErrors mode="Off"/>
    </system.web>
</configuration>


Notes: The current error page you are seeing can be replaced by a custom error page by modifying the "defaultRedirect" attribute of the application's <customErrors> configuration tag to point to a custom error page URL.


<!-- Web.Config Configuration File -->

<configuration>
    <system.web>
        <customErrors mode="RemoteOnly" defaultRedirect="mycustompage.htm"/>
    </system.web>
</configuration>

组件支持情况如下：
MSWC.AdRotator (广告轮换组件) ┆ √
MSWC.BrowserType (浏览器信息组件) ┆ √ Version: 6.0; About: unknown
MSWC.NextLink (内容链接库组件) ┆ √ About: "MSWC 内容链接对象库(Release)，内部版本号 Feb 16 2007 日期 21:21:49"
MSWC.Tools ┆ ×
MSWC.Status ┆ ×
MSWC.Counters (计数器组件) ┆ ×
IISSample.ContentRotator (内容轮显组件) ┆ ×
IISSample.PageCounter ┆ ×
MSWC.PermissionChecker (权限检测组件) ┆ ×
Adodb.Connection (ADO 数据对象组件) ┆ √ Version: 2.8;
SoftArtisans.FileUp (SA-FileUp 文件上传组件) ┆ ×
SoftArtisans.FileManager (SoftArtisans 文件管理组件) ┆ ×
LyfUpload.UploadFile (刘云峰的文件上传组件组件) ┆ ×
Persits.Upload.1 (ASPUpload 文件上传组件) ┆ ×
W3.Upload (Dimac 文件上传组件) ┆ ×
JMail.SmtpMail (Dimac JMail 邮件收发组件) ┆ ×
CDONTS.NewMail (虚拟 SMTP 发信组件) ┆ ×
Persits.MailSender (ASPemail 发信组件) ┆ ×
SMTPsvg.Mailer (ASPmail 发信组件) ┆ ×
DkQmail.Qmail (dkQmail 发信组件) ┆ ×
Geocel.Mailer (Geocel 发信组件) ┆ ×
IISmail.Iismail.1 (IISmail 发信组件) ┆ ×
SmtpMail.SmtpMail.1 (SmtpMail 发信组件) ┆ ×
SoftArtisans.ImageGen (SA 的图像读写组件) ┆ ×
W3Image.Image (Dimac 的图像读写组件组件) ┆ ×
Scripting.FileSystemObject (FSO组件) ┆ √
Adodb.Stream (Stream 流组件) ┆ √
Shell.Application ┆ √
WScript.Shell ┆ ×
Wscript.Network ┆ ×
能上传其他Shell，但传上去都打不开且无法编辑
请高手给点提示，怎样继续入侵？

猪猪

把你传上去的 SHELL 发来看看。

script74

http://www.ymyg.yn.cn/script74.asp

292820113

script74

老大...给点消息啊～～～

Syue冰憶浪子

C盘下有MY.INI 和 PHP.INI 但是都没有MYSQL的root密码，G盘PHP5目录可以浏览，但是MYSQL不能浏览，目录的权限设置的很严格，不好说。。

你连WEBSHELL 都挂马！！ 什么意思嘛！~

script74

不是我挂的啦！！！
那Shell有后门....
是别人挂的