Jump to content
Sign in to follow this  
Followers 0
minem

Sysmel 32

By minem, in Utiliti & Sekuriti

Recommended Posts

minem    0

minem
Posted

akum.. ader tak sape yg tahu pasal bende alah ni, camne nak buang?

pc kawan aku pernah kena ngan bende ni.. hampir sume document word x leh buke fail2 mp3 pun kena gak.. antivirus pun x leh nak detect bende ni.. sesapa boleh tolong..

Share this post

Link to post
Share on other sites

Lasiaf    0

Lasiaf
Posted

ko pegi kat C:\windows@winnt\regedit.exe @ C:\windows@winnt\system32\regedit.exe.. tuka extension jadi regedit.pif.. pas tu gi klik... cari HKEY_CLASSES_ROOT\.exe check kat situ kalo bukan exefile cari menatang ni sampai dapat mhnfile ntah tak ingat.. gi kat situ..... alamak test SDAM nak start... ok... kalo nak senang ko try gi norton... blebla.j@b how to remove...

exe,com,scr,pif,bat,cmd.... highest level extension...

Share this post

Link to post
Share on other sites

Power    0

Power
Posted (edited)

hmmm nie worm.blebla @ seangkatan dengan nyer. memang payah ler kalu dah kena. panjang cite dia. kalu ko tak settle lagi, reply please.

aku ada beberapa ekor worm jenis nie dalam cd. jaga ko. aku kerjakan ko malam nie. biggrin.gifbiggrin.gif

==================== copy blue text

REGEDIT4

[HKEY_CLASSES_ROOT\rnjfile\DefaultIcon]

@=""

[HKEY_CLASSES_ROOT\rnjfile\shell\open\command]

@=""

[HKEY_CLASSES_ROOT\.exe]

@="exefile"

[HKEY_CLASSES_ROOT\.jpg]

@="jpegfile"

[HKEY_CLASSES_ROOT\.jpeg]

@="jpegfile"

[HKEY_CLASSES_ROOT\.jpe]

@="jpegfile"

[HKEY_CLASSES_ROOT\.bmp]

@="Paint.Picture"

[HKEY_CLASSES_ROOT\.gif]

@="giffile"

[HKEY_CLASSES_ROOT\.avi]

@="avifile"

[HKEY_CLASSES_ROOT\.mpg]

@="mpegfile"

[HKEY_CLASSES_ROOT\.mpeg]

@="mpegfile"

[HKEY_CLASSES_ROOT\.wmf]

@=""

[HKEY_CLASSES_ROOT\.wma]

@=""

[HKEY_CLASSES_ROOT\.wmv]

@=""

[HKEY_CLASSES_ROOT\.mp3]

@="mpegfile"

[HKEY_CLASSES_ROOT\.mp2]

@="mpegfile"

[HKEY_CLASSES_ROOT\.vqf]

@=""

[HKEY_CLASSES_ROOT\.doc]

@="Word.Document.8"

[HKEY_CLASSES_ROOT\.xls]

@="Excel.Sheet.8"

[HKEY_CLASSES_ROOT\.zip]

@="WinZip"

[HKEY_CLASSES_ROOT\.rar]

@=""

[HKEY_CLASSES_ROOT\.lha]

@=""

[HKEY_CLASSES_ROOT\.arj]

@="WinZip"

[HKEY_CLASSES_ROOT\.reg]

@="regfile"

=======================

paste dalam Notepad dan simpan dengan nama worm.reg

double click fail worm.reg untuk edit fail system.dat (auto)

restart computer.

Amaran: Jangan lakukan jika anda tidak faham.

Edited by Power

Share this post

Link to post
Share on other sites

Power    0

Power
Posted

Sekarang worm merebak diseluruh dunia, dan kebanyakan worm adalah script vb atau delphi yang dilampirkan bersama emel. apabila awak membuka emel, script akan execute.

Script worm meminda fail SYSTEM.DAT yang berada dalam C:\Windows. Ini menyebabkan sistem PC telah dijangkiti virus.

Sebab itulah kita kena BACKUP fail SYSTEM.DAT dan beberapa fail system lain dan disimpan didalam folder tertentu. Salah satu program yang boleh digunakan untuk backup/restore fail sistem ialah ERU.

Share this post

Link to post
Share on other sites

Lasiaf    0

Lasiaf
Posted (edited)

ko pi copy text biru kat bawah ni pastu ko paste dalam notepad...

ko save as sebagai akudanpower.bat kat desktop ke... memana je la...

klik jangan tak klik... fail akudanpower.bat tu...

biggrin.gif

@echo off

ren %windir%\regedit.exe regedit.pif

@echo.REGEDIT4>BleBlaRemoV3r.reg

@echo.>>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\rnjfile\DefaultIcon]>>BleBlaRemoV3r.reg

@echo.@="">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\rnjfile\shell\open\command]>>BleBlaRemoV3r.reg

@echo.@="">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.exe]>>BleBlaRemoV3r.reg

@echo.@="exefile">>BleBlaRemoV3r.reg

@echo.>>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.jpg]>>BleBlaRemoV3r.reg

@echo.@="jpegfile">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.jpeg]>>BleBlaRemoV3r.reg

@echo.@="jpegfile">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.jpe]>>BleBlaRemoV3r.reg

@echo.@="jpegfile">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.bmp]>>BleBlaRemoV3r.reg

@echo.@="Paint.Picture">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.gif]>>BleBlaRemoV3r.reg

@echo.@="giffile">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.avi]>>BleBlaRemoV3r.reg

@echo.@="avifile">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.mpg]>>BleBlaRemoV3r.reg

@echo.@="mpegfile">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.mpeg]>>BleBlaRemoV3r.reg

@echo.@="mpegfile">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.wmf]>>BleBlaRemoV3r.reg

@echo.@echo.@="">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.wma]>>BleBlaRemoV3r.reg

@echo.@="">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.wmv]>>BleBlaRemoV3r.reg

@echo.@="">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.mp3]>>BleBlaRemoV3r.reg

@echo.@="mpegfile">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.mp2]>>BleBlaRemoV3r.reg

@echo.@="mpegfile">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.vqf]>>BleBlaRemoV3r.reg

@echo.@="">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.doc]>>BleBlaRemoV3r.reg

@echo.@="Word.Document.8">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.xls]>>BleBlaRemoV3r.reg

@echo.@="Excel.Sheet.8">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.zip]>>BleBlaRemoV3r.reg

@echo.@="WinZip">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.rar]>>BleBlaRemoV3r.reg

@echo.@="">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.lha]>>BleBlaRemoV3r.reg

@echo.@="">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.arj]>>BleBlaRemoV3r.reg

@echo.@="WinZip">>BleBlaRemoV3r.reg

@echo.[HKEY_CLASSES_ROOT\.reg]>>BleBlaRemoV3r.reg

@echo.@="regfile">>BleBlaRemoV3r.reg

%windir%\regedit /s BleBlaRemoV3r.reg

@echo. This system was cleaned.....Greets. thanks power for your reg...

@echo. please restart your computer....

@echo. my motto ke ke ..second... improve the first by -Lasiaf-

pause

exit

Edited by Lasiaf

Share this post

Link to post
Share on other sites

Lasiaf    0

Lasiaf
Posted

kalo notepad ko tak leh bukak.... rename jadi notepad.pif...

ko tau tak camne nak tgk extension tersembunyi?

kalo tak tau... klik kat tool,folder option,view... ko nampak tak ade mark kat "hide file extension for known file type..." hilang kan mark tu pastu apply...

buat cam kat atas... tu a sebab ramai orang kena virus atau worm... pokok pangkal IKON biggrin.gif ....

dah rename notepad copy,paste,saveas at last run kan script batch tu...

semoga berjaya biggrin.gif

Share this post

Link to post
Share on other sites

Lasiaf    0

Lasiaf
Posted

apeĀ² koding yang aku ambik dari orang ... aku kena greets ... barula beretika...

ambik pastu ngaku die buat tu 'lamer' namenye....

ok a.. wei power aku nak bagi source W97.Asmah tapi aku attach kat e-mail die kate tak bleh clean punye virus.... siut McAfee...

ok a malam ni aku datastruct... wish me goodluck my friend... terpaksa datang English... dah 4 kali tak datang....lastĀ² pensyarah plak tak datang...(betul ke ? petik mabuk je aku ni biggrin.gifbiggrin.gif )

tu aku ade kesempatan ni... biggrin.gif (pemalas nak cari kelas) biggrin.gif

Share this post

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
Sign in to follow this  
Followers 0
Go To Topic Listing
×
×
  • Create New...