427 Botnet fm qxd



Download 6,98 Mb.
Pdf ko'rish
bet45/387
Sana03.12.2022
Hajmi6,98 Mb.
#878307
1   ...   41   42   43   44   45   46   47   48   ...   387
Bog'liq
Botnets - The killer web applications

www.syngress.com
38
Chapter 2 • Botnets Overview
427_Botnet_02.qxd 1/9/07 9:49 AM Page 38

Tools & Traps…
A Batch File Used to Discover 
the Nature of a New Botnet Client
@echo off
echo *---------------------------------------------------------------
----*>info.txt
echo *--Computer Specs....
--*>>info.txt
echo *---------------------------------------------------------------
----*>>info.txt
psinfo.exe -d >>info.txt
Diskinfo
echo *---------------------------------------------------------------
----*>>info.txt
echo *--List of Current Processes Running....
--*>>info.txt
echo *---------------------------------------------------------------
----*>>info.txt
fport.exe /ap >>info.txt
echo *---------------------------------------------------------------
----*>>info.txt
echo *--List of Current Running/Stopped Services..
--*>>info.txt
echo *---------------------------------------------------------------
----*>>info.txt
xnet.exe list >>info.txt
echo *---------------------------------------------------------------
----*>>info.txt
echo *--List of Whois Info..
--*>>info.txt
echo *---------------------------------------------------------------
----*>>info.txt
echo *--
Lista uruchomionych procesów
--*>>info.txt
www.syngress.com
Botnets Overview • Chapter 2
39
Continued
427_Botnet_02.qxd 1/9/07 9:49 AM Page 39

echo *---------------------------------------------------------------
----*>>info.txt
pslist.exe >>info.txt
echo *---------------------------------------------------------------
----*>>info.txt
Password.exe >>info.txt
echo *---------------------------------------------------------------
----*>>uptime.txt
uptime.exe /s>>uptime.txt
echo *---------------------------------------------------------------
----*>>uptime.txt
hidden32.exe find.bat
echo *---------------------------------------------------------------
----*>>info.txt
rkdetector.exe >>rk.txt
hidden32.exe pass.bat
hidden32.exe pwdump2.bat
cls
echo Whoami >> info.txt
echo. >> info.txt
echo Computer Name= %COMPUTERNAME% >> info.txt
echo Login Name=
%USERNAME% >> info.txt
echo Login Domain=
%USERDOMAIN% >> info.txt
echo Logon Server=
%LOGONSERVER% >> info.txt
echo. >> info.txt
echo Home Drive=
%HOMEDRIVE% >> info.txt
echo Home Share=
%HOMESHARE% >> info.txt
echo System Drive=
%SYSTEMDRIVE% >> info.txt
echo System Root=
%SYSTEMROOT% >> info.txt
echo Win Directory= %WINDIR% >> info.txt
echo User Profile Path= %USERPROFILE% >> info.txt
echo. >> info.txt
echo Groups user belongs to: >> info.txt
echo. >> info.txt
.\whoami.exe /user /groups /fo list >> info.txt

Download 6,98 Mb.

Do'stlaringiz bilan baham:
1   ...   41   42   43   44   45   46   47   48   ...   387



Ma'lumotlar bazasi mualliflik huquqi bilan himoyalangan ©hozir.org 2024
ma'muriyatiga murojaat qiling
kiriting | ro'yxatdan o'tish
    Bosh sahifa
юртда тантана
Боғда битган
Бугун юртда
Эшитганлар жилманглар
Эшитмадим деманглар
битган бодомлар
Yangiariq tumani
qitish marakazi
Raqamli texnologiyalar
ilishida muhokamadan
tasdiqqa tavsiya
tavsiya etilgan
iqtisodiyot kafedrasi
steiermarkischen landesregierung
asarlaringizni yuboring
o'zingizning asarlaringizni
Iltimos faqat
faqat o'zingizning
steierm rkischen
landesregierung fachabteilung
rkischen landesregierung
hamshira loyihasi
loyihasi mavsum
faolyatining oqibatlari
asosiy adabiyotlar
fakulteti ahborot
ahborot havfsizligi
havfsizligi kafedrasi
fanidan bo’yicha
fakulteti iqtisodiyot
boshqaruv fakulteti
chiqarishda boshqaruv
ishlab chiqarishda
iqtisodiyot fakultet
multiservis tarmoqlari
fanidan asosiy
Uzbek fanidan
mavzulari potok
asosidagi multiservis
'aliyyil a'ziym
billahil 'aliyyil
illaa billahil
quvvata illaa
falah' deganida
Kompyuter savodxonligi
bo’yicha mustaqil
'alal falah'
Hayya 'alal
'alas soloh
Hayya 'alas
mavsum boyicha

yuklab olish