cain&abel-WaRlOrD

What is cain and Abel? ---------------------- Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocols. The program does not exploit any software vulnerabilities or bugs that could not be fixed with little effort. It covers some security aspects/weakness present in protocol's standards, authentication methods and caching mechanisms; its main purpose is the simplified recovery of passwords and credentials from various sources, however it also ships some "non standard" utilities for Microsoft Windows users. Cain & Abel has been developed in the hope that it will be useful for network administrators, teachers, security consultants/professionals, forensic staff, security software vendors, professional penetration tester and everyone else that plans to use it for ethical reasons. The author will not help or support any illegal activity done with this program. Be warned that there is the possibility that you will cause damages and/or loss of data using this software and that in no events shall the author be liable for such damages or loss of data. Please carefully read the License Agreement included in the program before using it. The latest version is faster and contains a lot of new features like APR (Arp Poison Routing) which enables sniffing on switched LANs and Man-in-the-Middle attacks. The sniffer in this version can also analyze encrypted protocols such as SSH-1 and HTTPS, and contains filters to capture credentials from a wide range of authentication mechanisms. The new version also ships routing protocols authentication monitors and routes extractors, dictionary and brute-force crackers for all common hashing algorithms and for several specific authentications, password/hash calculators, cryptanalysis attacks, password decoders and some not so common utilities related to network and system security. Virus check: http://www.virustotal.com/nl/analisis/7d087b17e0d78e63b64c89a15e8622580165fd1eae96ed45d1d4e66870526943-1244012427 a-squared 4.0.0.101 2009.06.03 Riskware.PSWTool.Win32.Cain!IK AhnLab-V3 5.0.0.2 2009.06.03 - AntiVir 7.9.0.180 2009.06.02 DR/PSW.Cain.284.57 Antiy-AVL 2.0.3.1 2009.06.03 PSWTool/Win32.Cain Authentium 5.1.2.4 2009.06.03 - Avast 4.8.1335.0 2009.06.02 - AVG 8.5.0.339 2009.06.02 - BitDefender 7.2 2009.06.03 Application.Pwcrack.Cain.GL CAT-QuickHeal 10.00 2009.06.03 - ClamAV 0.94.1 2009.06.03 - Comodo 1241 2009.06.03 - DrWeb 5.0.0.12182 2009.06.03 - eSafe 7.0.17.0 2009.06.02 Win32.PSWTool.Cain eTrust-Vet 31.6.6536 2009.06.02 - F-Prot 4.4.4.56 2009.06.03 - F-Secure 8.0.14470.0 2009.06.03 PSWTool.Win32.Cain.284 Fortinet 3.117.0.0 2009.06.03 - GData 19 2009.06.03 Application.Pwcrack.Cain.GL Ikarus T3.1.1.57.0 2009.06.03 - K7AntiVirus 7.10.752 2009.06.02 - Kaspersky 7.0.0.125 2009.06.03 not-a-virus:PSWTool.Win32.Cain.284 McAfee 5634 2009.06.02 - McAfee+Artemis 5634 2009.06.02 - McAfee-GW-Edition 6.7.6 2009.05.29 Trojan.Dropper.PSW.Cain.284.57 Microsoft 1.4701 2009.06.03 - NOD32 4125 2009.06.03 - Norman 6.01.05 2009.06.02 - nProtect 2009.1.8.0 2009.06.03 - Panda 10.0.0.14 2009.06.02 - PCTools 4.4.2.0 2009.06.02 - Prevx 3.0 2009.06.03 High Risk Worm Rising 21.32.21.00 2009.06.03 - Sophos 4.42.0 2009.06.03 - Sunbelt 3.2.1858.2 2009.06.03 - Symantec 1.4.4.12 2009.06.03 - TheHacker 6.3.4.3.338 2009.06.03 - TrendMicro 8.950.0.1092 2009.06.03 - VBA32 3.12.10.6 2009.06.02 - ViRobot 2009.6.3.1766 2009.06.03 - VirusBuster 4.6.5.0 2009.06.02 - Extra informatie File size: 7389520 bytes MD5 : 35ffd3322ac2d37b42ab0bc499e6b39e SHA1 : d65170b55bb98868fcce0ec63c0e9e31ef9ff9f3 SHA256: 7d087b17e0d78e63b64c89a15e8622580165fd1eae96ed45d1d4e66870526943 PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x31A0 timedatestamp.....: 0x338B6859 (Wed May 28 01:03:53 1997) machinetype.......: 0x14C (Intel I386) ( 6 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0x3D04 0x3E00 6.42 0dd05b8f8510932a61a191ae834be4c0 .rdata 0x5000 0x3A9 0x400 4.85 2d05733bc594b6a7937a6b504cb4c843 .data 0x6000 0x1578 0x1400 1.66 6980dcc5b84f08571e5547cc54d19be9 .idata 0x8000 0x7C2 0x800 5.00 582f61065d25bb6aa1fe226de4ed6a52 .rsrc 0x9000 0x39C 0x400 3.18 0e905c482a33ae10794d8d5072f26867 .reloc 0xA000 0x67C 0x800 5.30 7b8d1da59fd73510c8411c87eebb7f13 ( 3 imports ) > gdi32.dll: DeleteObject, GetDeviceCaps, RealizePalette, GetStockObject, SelectObject, PatBlt, SelectPalette, CreatePalette, CreateSolidBrush > kernel32.dll: LoadLibraryA, _lopen, _lcreat, lstrcpyA, GetProcAddress, _lclose, lstrlenA, GetWindowsDirectoryA, GlobalHandle, _lwrite, _llseek, FreeLibrary, WinExec, GlobalFree, _lread, GlobalUnlock, GetModuleFileNameA, SetErrorMode, GlobalLock, GetLastError, GetCurrentProcess, WriteFile, GetStdHandle, GetFileType, SetHandleCount, GetOEMCP, GetACP, GetCPInfo, WideCharToMultiByte, GetEnvironmentStringsW, GlobalAlloc, DeleteFileA, FreeEnvironmentStringsA, GetEnvironmentStrings, RtlUnwind, VirtualAlloc, UnhandledExceptionFilter, HeapCreate, HeapDestroy, HeapAlloc, HeapFree, ExitProcess, TerminateProcess, FreeEnvironmentStringsW, VirtualFree, GetFileAttributesA, GetModuleHandleA, GetStartupInfoA, GetCommandLineA, GetVersion > user32.dll: ExitWindowsEx, LoadCursorA, MessageBoxA, RegisterClassA, SetWindowPos, LoadIconA, UpdateWindow, ShowWindow, ReleaseDC, wsprintfA, PostQuitMessage, BeginPaint, EndPaint, DefWindowProcA, SendMessageA, InvalidateRect, GetClientRect, CreateWindowExA, GetDC ( 1 exports ) > _MainWndProc@16, _StubFileWrite@12 TrID : File type identification Win32 Executable MS Visual C++ 4.x (69.2%) Win32 Executable MS Visual C++ (generic) (19.3%) Win32 Executable Generic (4.3%) Win32 Dynamic Link Library (generic) (3.8%) Win16/32 Executable Delphi generic (1.0%) ssdeep: 196608:95OOVwv1QRfDkpmtNnNOBpBu8QEXmY9UH7X3:95S+Rfggvma8QEWYGbX3 Prevx Info: http://info.prevx.com/aboutprogramtext.asp?PX5=F665BDF850B80320C1AF7027539D2E00CA738851 PEiD : - packers (Kaspersky): UPX, UPX, UPX, UPX RDS : NSRL Reference Data Set I did NOT remove, modify, add something @ this tool. Using is on your own risk.

udp://tracker.openbittorrent.com:80
udp://open.demonii.com:1337
udp://tracker.coppersurfer.tk:6969
udp://exodus.desync.com:6969