i dont know why the sqlihelper executables are detected as “trojan.win32.agent2.chtj”, it is fucking false positive, some fool spreading my app with a binded trojan and now my executables are detected also
i rebuild the source and now the exe is not detected anymore
for those that emailed me, i dont put trojan in my apps, run it on a sandbox, if you can find proof you can post it in the shoutbox
right now im working on the email check and rapidshare checker using api
yeah s0me of other people bind your sql helper with trojan ….. btw reiluke plz join philker group onhackforum.net I need a skilled pinoy like you .. l0l
Posted by krizhiel at September 13, 2009, 7:36 pmGreat tool. Congratz!
I’ve found some points that might require your attention for future releases.
Get Columns
Your command line
+and+1=0+%20Union%20Select%20%201%20,%20UNHEX(HEX(concat(0×5B6B65795D,column_name,0×5B6B65795D)))%20,3,4,5,6,7,8+FROM+INFORMATION_SCHEMA.columns+where+table_name=Concat(char(83),char(69),char(78),char(72),char(65))+LIMIT%201,1–
It is starting with limit at 1,1 instead of 0,1. So, first column_name is not being captured.
It does not include an additional table_schema condition once it is possible to have the same table_name in more than one database.
Proposed command line
+and+1=0+%20Union%20Select%20%201%20,%20UNHEX(HEX(concat(0×5B6B65795D,column_name,0×5B6B65795D)))%20,3,4,5,6,7,8+FROM+INFORMATION_SCHEMA.columns+where+table_name=Concat(char(83),char(69),char(78),char(72),char(65))%20AND%20table_schema=Concat(char(117),char(115),char(117),char(97),char(114),char(105),char(111))+LIMIT%200,1–
Dump Now
When dumping, limit operator is skipping some rows, i.e., it would be expected it follows a sequential logic (0,1 - 1,1 - 2,1 - …). However, it sometimes is not performing as expected (… - 5,1 - 6,1 - 7,1 - 8,1 - 10,1 - 12,1), So that, current dumped value is not equal to the counted one and therefore not all data are being extrated.
still detect trojan. Please check your pc
Posted by sangte at September 17, 2009, 12:23 amdetected napod bai sa kaspersky imong bag-o nga gicompile sqlihelper. tsk tsk tsk
Posted by kamayutak at September 17, 2009, 5:51 pmI would like to purchase a copy licence of this Tool or its source code.
Money will ben transfer through Liberty Reserve or Webmoney WMZ.
Gaurantee of purchase Reiluke please contact me at technetpro1@gmail.com
Thankssssssssssssssssssss
hello reiluke
can you share me your source code of sqlhelper
I need for study
my email josephine2859@yahoo.com
thanks you very much
Reiluke –> Dude give me your mail please.
Mine is max.caly@gmail.com
Gotta talk buisness with you mate.
All comments are moderated. Your comments will not appear here unless approved by the blog owner. Thank you.
Hello friend!
you are too good, i used ur tools and they are too good .. well i m very excited to see what next give us.
Well i have 1 idea for u to make 1 new tool for us .. as u know we guys need leads (email list) so can u make google email grabber .. with options like u use in Exploit Scanner (dork + site(.com,.net,.au,.eu) + results per page(10 or 100) and extract 1 more option (name) ) becoz we guys use mostly names
like
steve intext:”@example.com” site:.com
but this is a headache becoz we need to page 1 by 1.
so please kindly help us to do this job.
thank you very very much
Posted by MaxDeMon at September 13, 2009, 3:38 am