Thread: [Delphi] Source Undetector by WHO [untested] - i just found it.

How appropriate:

"Hello counterstrikewi! DO NOT TRY TO INFECT OTHER MEMBERS:
[LIST][*]Usually this is what happens when you post backdoored software[*]EXE-file being analyzed, then tracked back and reported to ISP/webhost/ftphost[*]So think twice before attemtping to backdoor your software!"[/LIST]ok team. so there has been a request for a delphi source undetector.

who has released one on his site.

but it could be backdoored (as his reputation would suggest)

I havent run it yet (not even sandboxed!)

Please! could someone (with more than 3 posts; excl. supra and abousakr) check it and confirm that it isnt backdoored (it shouldnt even make connections to the internet since it is a source undetector).

I take no responsibiliy for your actions opening the program, i assure you that i am only the messenger.

If it is confirmed as a backdoor, could admin please delete the topic and im sure everyone on this forum will join me in flicking our V's at who and his site.

Until then, please could the admin leave the file up here for analysis by our members who are advanced in reverse engineering and backdoor detection.

I include jotti virusscan report:
http://virusscan.jotti.org/en/scanre...e5a69883d91372

Scan finished. 2 out of 21 scanners reported malware.
2009-07-12 Found nothing
2009-07-13 Found nothing
2009-07-13 Riskware.Win32.DelfInject!IK
2009-07-13 VirTool.Win32.DelfInject
2009-07-12 Found nothing
2009-07-13 Found nothing
2009-07-12 Found nothing
2009-07-12 Found nothing
2009-07-12 Found nothing
2009-07-10 Found nothing
2009-07-13 Found nothing
2009-07-12 Found nothing
2009-07-12 Found nothing
2009-07-10 Found nothing
2009-07-12 Found nothing
2009-07-12 Found nothing
2009-07-13 Found nothing
2009-07-12 Found nothing
2009-07-12 Found nothing
2009-07-12 Found nothing
2009-07-12 Found nothing

I include screens:
[img]http://***********/softwares/sourcefix/2.jpg[/img]
[img]http://***********/softwares/sourcefix/3.jpg[/img]
[img]http://***********/softwares/sourcefix/4.jpg[/img]
[img]http://***********/softwares/sourcefix/5.jpg[/img]
[img]http://***********/softwares/sourcefix/6.jpg[/img]
[img]http://***********/softwares/sourcefix/7.jpg[/img]

Attachment removed as backdoored

Wow man...
Its very nice excelent great tool!!!!
if its backdored or not , excelent contribuition !
the only thing that you have to do is run int inside virtual PC ...
and goahead!!!!

AH! the rc4 method is not working for me

http://anubis.iseclab.org/?action=re...63&format=html

Here is a tutorial on how to use Virtual PC:

http://www.youtube.com/watch?v=7LZwXCQ71to

The download link for Virtual PC can be found in the sidebar of the video

i wouldnt trust anything by who! or any source undetector...
manual ftw =)

And i thought who! had a method to unhook the vpc or sandbox, that is how he got alot of the people last time. Maybe i am wrong but that is what many people have told me.

Originally Posted by mjrod5

i wouldnt trust anything by who! or any source undetector...
manual ftw =)

haha... yes mjrod..
but any program inside Virtual pc, vmware is inofenss..
this tool is cool !

whotr! can be skiled a lot but not at in point to unhook vpc..
if iam wrong , i give my ass to you hahhahha...

counterstrikewi!
i have a link but i dunno if works nice for you
take a look
http://download.microsoft.com/downlo...0BIT/setup.exe

Image :


uno saludo from brasil

how can i install windows xp on the virtual pc?

do i just use the same disk that came with my computer?

Originally Posted by counterstrikewi

how can i install windows xp on the virtual pc?

do i just use the same disk that came with my computer?

mostly ..yes
i use vmware have no probs with it...

who tr is noob he infects everything he releases

how can i install windows xp on the virtual pc?

You can use the disk or use an .iso image file of the Install Disc =)
I prefer VirtualBox though =\
VMware was kinda slow for me and sometimes didnt load the OS xP