随着互联网技术的迅猛发展，网络给人们带来了很多便利，但是也带来了许多麻烦。各种网页木马，后门，下载者，病毒，利用各种漏洞，U盘，社会工程学在网上横行，给广大用户带来了重要资料丢失，提前泄密，照片被人恶意传播到网上，系统被格盘，系统被监视，摄像头被人暗中开启并录像等非常严重的后果。

本毕业设计使用VC++6.0为开发平台设计的一个简单的木马程序，功能包括：键盘记录，并定时把邮件内容成功发送到某邮箱中，关闭某些防火墙和杀毒软件，开机自动隐藏运行，开启2233端口取得CMD权限,实现对目标机器的文件操作，开启3389端口，并替换系统目录下的sethc.exe为cmd.exe，实现登录不要密码，添加管理员等功能。并可利用MS06-014或MS07-004等漏洞在没打补丁没杀毒软件或是杀毒软件没更新的windows2000,windowsXP,windows2003机子上实现通过网页传播。

 

关键词：键盘记录；木马；目标主机

With the rapid development of Internet technology, the network has posed many conveniences, but it also brings a lot of trouble. Various website Trojan, backdoor, downloading, viruses, using various loopholes, U disk, social engineering, is pervasive on the Internet. For the majority of users, it will bring on important information missed and early leaked, photograph maliciously spread to the Internet, the system trays System being watched, cameras opened and other very serious consequences.

In this design, a simple Trojan horse is developed with Visual C++ 6.0,it’s functions include :Disk recording, Timing sends the content of the mail item sent to a successful mail, Close of certain firewall and anti-virus software, Automatically and hidden operation after booted, Open the 2233 port and get the CMD authority to operate the target machine's papers, Open the 3389 port and replace sethc.exe of cmd.exe under the system directory to realize when you login system the password is not necessary and add administrators. On the other side , the function also include: Utilizing MS06-014 or MS07-004 and other loopholes, The Trojan horse can spread on Internet through the website ,which did not patch the system or anti-virus software ,or not update Windows 2000 windows XP, Windows 2003 in-time.

 

Key words: Disk recording; Trojan; Targets mainframe