Guptachar 1.0 (b)
(Backdoor.Win32.Guptachar.10.b)

by Ayan Chakrabarti

Written in C++, source included

Released in August 2001

Made in India

more versions



Guptachar Remote Administration Tool
Copyright (C) 2001 Ayan Chakrabarti

Guptachar is a remote administration tool which is distributed under the
GPL (see the file COPYING for details). It differs from most other remote
administration tools in that it doesn't require its own client. The
remote machine can be administered using a web-browser which supports
HTTP authentication. This also means that you can administer a Guptachar
server from machines running almost any OS.


Installing Guptachar
====================

To install Guptachar on a machine you must have the following two files
        - install.exe
        - gupt.exe

Run install.exe and answer the questions that follow to install Guptachar
on that machine.

Please note - Running Gupt.exe directly will start the Guptachar server
itself. However it will not be installed on your system, ie. it will not 
run every time you start-up. Also, the IRC Bot will not be active and your
username and password will both be "Anonymous" (without the quotes).

Uninstalling Guptachar
======================

Guptachar is stored as Gupt.exe in your windows directory. To uninstall
Guptachar, follow these steps -

        1. Remove the reference to Gupt.exe (with full path) in the [windows]
           section and "run" key of your WIN.INI file.
        2. Connect to localhost with your web-browser, give the username and
           password and then click on terminate server. Alternatively, reboot
           your machine.
        3. Delete Gupt.exe from your windows directory.


Making a QuickInstaller
=======================

The normal installation program is interactive and will ask you each time it
is run about info on setting up the Guptachar server. If you want to install
Guptachar on many machines with the same options, this can get to be a pain.
So, instead you can make a quick installer. A quick installer is a stand
alone exe that contains the gupt.exe file as well as installation options
within itself and can install Guptachar without any user interaction required.

To make a quick installer, simple run QINST.EXE (ensure that the file
QINST.MOD is in the current directory). Give the filename for the output .exe
as well as the setup options. QINST.EXE will then create the QuickInstaller
file. Now the file created can be taken to and run on the machines on which
Guptachar has to be installed.

Please note that RUNNING QINST.EXE DOES NOT BY ITSELF INSTALL GUPTACHAR ON
THE MACHINE. Also, the exe file created by QINST.EXE is standalone and does
not require any other file to install Guptachar.


Using Guptachar
===============

Guptachar runs as a web server on port 80. To administer the remote system,
simply type its IP address as the url in your browser. You will be asked for
the username and password and then you will reach the main page of the
Guptachar server from which you can administer the machine in various ways.

To test the server, after installing it on the machine, you can try going
to http://localhost/

If you have activated the IRC BOT option then you have a very easy way of
knowing the IP address of the machine running Guptachar. Connect to the
irc server yourself and do a /whois on the nick.

To upload a file to the Guptachar server, first upload the file to some
location on the web. Then click on Transfer File in the Guptachar main
page. Give the url to which you uploaded the file as well as the filename
under which you want the file to be stored on the machine. Optionally,
you can also use the auto-upload utility.


Ayan Chakrabarti


Server:
size: 34.816 bytes

port: 80 TCP

startup: Win.ini

MegaSecurity