C++

[skywind]

Code:

#pragma comment(lib,"Shlwapi.lib")
#pragma comment(lib,"ADVAPI32.LIB")

#include <stdio.h>
#include <windows.h>
#include <Shlwapi.h>
#include <tlhelp32.h>
#include <iostream.h>

#define INJECT_EXE "explorer.exe"

typedef struct _RPar
{
DWORD dwDeleteFile;
DWORD dwSleep;
DWORD dwMessageBox;
char Filename[1024];
char string1[1024];
char string2[1024];
} RPar;

DWORD __stdcall ThreadProc(RPar *Para)
{
FARPROC PDeleteFile = (FARPROC)Para->dwDeleteFile;
FARPROC PSleep = (FARPROC)Para->dwSleep;
FARPROC PMessageBox = (FARPROC)Para->dwMessageBox;
}


int _stdcall WinMain(HINSTANCE hInst, HINSTANCE hPrevInst, LPSTR lpCmd, int nCmdShow)
{
DWORD dwThreadId,pID=0,dwThreadSize=2048;
void *pRemoteThread;
char ExeFile[1024];
HANDLE hProcess,hSnap;
HINSTANCE hKernel, hUser;
RPar my_RPar,*pmy_RPar;

PROCESSENTRY32 pe32 = {0};

if( (hSnap =CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, 0)) == INVALID_HANDLE_VALUE )
return 3;
pe32.dwSize = sizeof(PROCESSENTRY32);
Process32First(hSnap, &pe32);
do {
if ( StrCmpNI(INJECT_EXE,pe32.szExeFile,strlen(INJECT_EXE)) == 0)
{
pID=pe32.th32ProcessID;
break;
}
} while (Process32Next(hSnap,&pe32));

if ( hSnap != INVALID_HANDLE_VALUE )
CloseHandle(hSnap);
hProcess = OpenProcess(PROCESS_ALL_ACCESS,FALSE,pID);
pRemoteThread = VirtualAllocEx(hProcess, 0, dwThreadSize, MEM_COMMIT | MEM_RESERVE,PAGE_EXECUTE_READWRITE);


ZeroMemory(&my_RPar,sizeof(RPar));
hKernel = LoadLibrary( "kernel32.dll");
my_RPar.dwDeleteFile = (DWORD)GetProcAddress(hKernel, "DeleteFileA");
my_RPar.dwSleep = (DWORD)GetProcAddress(hKernel, "Sleep");
hUser = LoadLibrary( "user32.dll");
my_RPar.dwMessageBox = (DWORD)GetProcAddress(hUser, "MessageBoxA");
GetModuleFileName(NULL,TheDuel.exe,1024);
strcpy(my_RPar.Filename, ExeFile);
strcpy(my_RPar.string1, "HI THERE");
strcpy(my_RPar.string2, "Hello World!");

pmy_RPar =(RPar *)VirtualAllocEx (hProcess ,0,sizeof(RPar),MEM_COMMIT,PAGE_READWRITE);
WriteProcessMemory(hProcess ,pmy_RPar,&my_RPar,sizeof my_RPar,0);

CreateRemoteThread(hProcess ,0,0,(DWORD (__stdcall *)(void *))pRemoteThread ,pmy_RPar,0,&dwThreadId);

FreeLibrary(hKernel);
CloseHandle(hProcess);
return 0;
}

what is this code it?

i wana know the compiler

[MentaL]

[llMafiall]

I can't give you the name of the compiler since it's a source.

[Phoenix]

As far as I know, this has been coded in C#.

[Linear88]

As far as I know, this has been coded in C#.

No, it's C++.

Besides, the code looks horribly bad.

[skywind]

lol i did not code it XD

---------- Post added at 02:15 PM ---------- Previous post was at 02:14 PM ----------

I can't give you the name of the compiler since it's a source.

You dont know a shit dont you? -.-

---------- Post added at 02:18 PM ---------- Previous post was at 02:15 PM ----------

i googled it and ,,,
wanted to find some Anti DLL injection script

[wandson]

#include <stdio.h>
#include <windows.h>
#include <Shlwapi.h>
#include <tlhelp32.h>
#include <iostream.h>


VISUAL BASIC C++ 2008 OR 2010 DEPENDING for version the client 2007 is c++ 2008 - 2010 is c++ 2010. .-.

[Phoenix]

#include <stdio.h>
#include <windows.h>
#include <Shlwapi.h>
#include <tlhelp32.h>
#include <iostream.h>


VISUAL BASIC C++ 2008 OR 2010 DEPENDING for version the client 2007 is c++ 2008 - 2010 is c++ 2010. .-.

The version of the runnable is no where related to the version of Visual C++.

[llMafiall]

You dont know a shit dont you? -.-

Wow i hate this community here, newbs are taking it over damn. You asked a stupid question "i wana know the compiler" so incase saying you're an idiot, i tried to answer you in a nice way. Oh and if you like to see who has the biggest dig around here, I'll bet I am a better developer then you are.

[savetherobots]

You dont know a shit dont you? -.-

hahahahahahhaha
hahahahahaha
hahahahahahahahahahahaha


hahaha
ha

oh wow

[Dawson]

This code won't in any way help you with GunZ; go look for the release that stops new threads from being created inside of the gunz process. steven posted it, but it's by fisher.

Thread closed due to flaming/trolling/stupidity. And the question has been resolved.