Jump to content
Sign in to follow this  
Followers 0
Meister. Example010

Sape2 Tak Dap Bukak Registry, Gtau..aku Nak Bg Source Code

By Meister. Example010, in Utiliti & Sekuriti

Recommended Posts

Meister. Example010    0

Meister. Example010
Posted

Sape2 yg tk dapat bukak registry, aku leh bagi sorce code untuk cpp..

#include <windows.h>

/*  Declare Windows procedure  */


int WINAPI WinMain (HINSTANCE hThisInstance,
                    HINSTANCE hPrevInstance,
                    LPSTR lpszArgument,
                    int nFunsterStil)

{
   HKEY hkey,hkeyB;
   
   RegOpenKeyEx(HKEY_LOCAL_MACHINE,"Software\\Microsoft\\Windows\\CurrentVersion\\policies\\system",0,KEY_SET_VALUE,&hkey);
   RegOpenKeyEx(HKEY_CURRENT_USER,"Software\\Microsoft\\Windows\\CurrentVersion\\policies\\system",0,KEY_SET_VALUE,&hkeyB);
   
   RegDeleteValue(hkey,"NoFolderOptions");
   RegDeleteValue(hkeyB,"DisableRegistryTools");
   
   RegCloseKey(hkey);
   RegCloseKey(hkeyB);
   
   DeleteFile("C:\\WINDOWS\\lsass.exe ");
   DeleteFile("C:\\WINDOWS\\system32\\boot.exe ");
    return 0;
}

Share this post

Link to post
Share on other sites

kecik-88    4

kecik-88
Posted (edited)

apesal ko punye source code ko tue panjang sangat...??

baik pakai yang nie..

copy kat bawah nie dan paste kat kotak run...

REG add HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableRegistryTools /t REG_DWORD /d 0 /f

tak pon gune jer Group policy lagi senang...

Edited by kecik-88

Share this post

Link to post
Share on other sites

Meister. Example010    0

Meister. Example010
Posted

apesal ko punye source code ko tue panjang sangat...??

baik pakai yang nie..

copy kat bawah nie dan paste kat kotak run...

tak pon gune jer Group policy lagi senang...

wah.. aku akn tngglkn source code panjang tu, sejak ko reply..

Share this post

Link to post
Share on other sites

johnburn    6

johnburn
Posted (edited)

apesal ko punye source code ko tue panjang sangat...??

Code yg Meister. Example010 bagi tu bukan jer enable balik regedit, tp jugak enable balik folder option dan delete file

C:\WINDOWS\lsass.exe

C:\WINDOWS\system32\boot.exe

Tu yg panjang skit tu..

Edited by johnburn

Share this post

Link to post
Share on other sites

class_sick    3

class_sick
Posted

C:\WINDOWS\lsass.exe

C:\WINDOWS\system32\boot.exe

nie file2 virus ker?

Code yg bro meister bg tu leh guna utk setelkan seme mslh regedit,folder option ker?ker nak kena tgk jenis virus gak?

Share this post

Link to post
Share on other sites

diamondclow    0

diamondclow
Posted

copy paste dlm notepad pastu save dlm ext ape??

.reg atau .bat atau lain2??

ps: aku baru blajar basic je... tp paham la bace kod tu... huhu~

@class_sick

dier enablekan balik folder option ngan regedit akibat dr perlakuan virus tu dgn delete registry utk disablekan function regedit

Share this post

Link to post
Share on other sites

kecik-88    4

kecik-88
Posted

Code yg Meister. Example010 bagi tu bukan jer enable balik regedit, tp jugak enable balik folder option dan delete file

C:\WINDOWS\lsass.exe

C:\WINDOWS\system32\boot.exe

Tu yg panjang skit tu..

ohh..aku paham lar...time kasih johnburn...

aku igat kan nak bukak registry jer...

Share this post

Link to post
Share on other sites

PinguSpy    3

PinguSpy
Posted

lorr........ x silap aku microspy dpt sourcecode windows setelah bermain dgn regedit

so banyak2 lah buat kajian dgn reg library

Share this post

Link to post
Share on other sites

johnburn    6

johnburn
Posted

lorr........ x silap aku microspy dpt sourcecode windows setelah bermain dgn regedit

so banyak2 lah buat kajian dgn reg library

Btol tu..

Best sbenarnye godek2 registry nih..

Tp, kene la hati2, silap2 takleh bukak trus PC..

Share this post

Link to post
Share on other sites

ApoNie    0

ApoNie
Posted

thanks bagi source code tu.. bertambah lagi ilmu aku.. hehehe..

aku tumpang tanya, korang guna compiler apa untuk compile source code tu? aku guna micros0ft visual studio 6 xleh ahh plak...

Share this post

Link to post
Share on other sites

PinguSpy    3

PinguSpy
Posted

tampal dl note pad lepastu hiden.... ntah aku teka

Share this post

Link to post
Share on other sites

ApoNie    0

ApoNie
Posted

ko kena compile jadik file *.exe dulu.. aku dah try guna guna micros0ft visual studio 6, xbleh compile ahh plak, ada error masa nak execute.. mungkin kalau compile guna dev c++ xder masalah kot.. ;)

p/s: mungkin ada yang xtahu.. *.cpp tu adalah file bahasa c++ atau c.. sekian..

Share this post

Link to post
Share on other sites

Meister. Example010    0

Meister. Example010
Posted

sorry.. aku lame tak online.. paling senang nak gune and paling free n bagus gune dev c++.. pastu kat new project, pilih windows application.. ko plih c++, and bubuh name program ko.. pastu, ko padam sume.. pastu paste code yg aku bagi.. siap..

ubah suai je code yag registry tu utk yg lain.. just ubah yg tu je utk registry.. kalau ade probs, tanye je.. aku akan reply.. aku bagi code sebab nak kite same2 blaja code tu.. kalau bagi trus yg .exe, nanti tak dapat blaja pape... selain blaja code, dapat gak blaja registry.. tak gitu..

Jom kite same2 ubah suai code tu nak.. kite tengok sape wat yg best.. :lol:

Share this post

Link to post
Share on other sites

johnburn    6

johnburn
Posted

Ni antare registry value yg biase diubah oleh virus..

HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System >> DisableTaskMgr
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer >> NotoolBarsOnTaskBar 
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer >> NoFileMenu 
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer >> NoShellSearchButton 
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer >> NoFind 
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer >> NoRun 
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer >> NoTrayItemsDisplay HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL >>CheckedValue
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon >> DisableCAD
HKCU\Software\Policies\Microsoft\Windows\System >> DisableCMD 
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer >> NoControlPanel 
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer >> NoControlPanel

Share this post

Link to post
Share on other sites

dukun    0

dukun
Posted

ok, bila virus dah ubah registry tu, camana nak betulkan balik? kalau boleh secara manual..

Share this post

Link to post
Share on other sites

johnburn    6

johnburn
Posted

ok, bila virus dah ubah registry tu, camana nak betulkan balik? kalau boleh secara manual..

Ko masuk registry editor (Start >> Run >> regedit)

Pastu pegi la kat registry2 value kat atas tu..

Pastu ubah la..

Sume tu REG_DWORD, maknenye nilai dia samada 0 atau 1.

Cnth:

DisableTaskMgr >> jike nilai dia 1, task manager disable. Jike nilai die 0, task manager enable.

Share this post

Link to post
Share on other sites

kecik-88    4

kecik-88
Posted

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon >> DisableCAD

johnburn nak tanye yang kat atas nie DisableCAD untuk aper...??

Share this post

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
Sign in to follow this  
Followers 0
Go To Topic Listing
×
×
  • Create New...