/* GRATISAN ZONE: AntiBodi Regedit */ AntiBodi Regedit - GRATISAN ZONE

Kamis, Januari 31, 2008

AntiBodi Regedit

Dari forum sebelah, trik buat ngakalin virus2 ato program2 yg sering ngeblokir regedit, task manager, ato virus yg biasanya suka ngubah ekstensi .exe,.com,dsb biar pas dijalanin file dg ekstensi tsb taunya malah ngeeksekusi virus.
antibodi kali ini ketika dirun ad pilihan, yg pertama looping yg kedua cuma sekali suntik..
klo looping, mk antibodi ini terus2an (balapan, mungkin jauh lebih cpt dari timer virus buat ngeblokir registry) mulihin beberapa key penting diregistry.
yg penting tujuannya kita tetep bisa buka task manager sama regedit...
ok...ini dia kodenya tinggal kopi paste ke notepad trus save jadi antibodi.vbs, lalu dobel klik..
[ yg ini udah bisa buka folder options, tp biasanya windows butuh restart explorer.exe dulu biar settingan yg ini ngefek ]
selamat menikmati :

' AntiBody Registry Windows

dim rg,std,a,b,c,t
a = "Hanuicies\"
b = "HKEY_LOCAL_MACHINE\Software\Microsoft\WIndows NT\Image File Execution Options\"
std = chr(34) & "%1" & chr(34) & " %*"
set rg=createobject("wscript.shell")

t=msgbox("Mau dilooping terus apa ngga?",36,"Antibodi!Registry")
if t = 6 then
do
sehat
loop until i = 1
else
sehat
end if

sub SEHAT()
' yang ini buat ngereset settingan windows

rg.regwrite a & "System\DisableRegistryTools",0,"REG_DWORD"
rg.regwrite a & "System\DisableTaskMgr",0,"REG_DWORD"
rg.regwrite a & "System\DisableCMD",0,"REG_DWORD"
rg.regwrite a & "Explorer\NoFolderOptions",0,"REG_DWORD"

' yang ini buat ngereset setingan debbuger program
rg.regwrite b & "msconfig.exe\Debugger",""
rg.regwrite b & "regedit.exe\Debugger",""
rg.regwrite b & "cmd.exe\Debugger",""


' yang ini buat benerin ekstensi biar tetep berjalan seperti semula
rg.regwrite "HKEY_CLASSES_ROOT\.exe\","exefile"
rg.regwrite "HKEY_CLASSES_ROOT\.com\","comfile"
rg.regwrite "HKEY_CLASSES_ROOT\.bat\","batfile"
rg.regwrite "HKEY_CLASSES_ROOT\.lnk\","lnkfile"
rg.regwrite "HKEY_CLASSES_ROOT\.pif\","piffile"
rg.regwrite "HKEY_CLASSES_ROOT\exefile\shell\open\command\",st d
rg.regwrite "HKEY_CLASSES_ROOT\batfile\shell\open\command\",st d
rg.regwrite "HKEY_CLASSES_ROOT\comfile\shell\open\command\",st d
rg.regwrite "HKEY_CLASSES_ROOT\lnkfile\shell\open\command\",st d
rg.regwrite "HKEY_CLASSES_ROOT\piffile\shell\open\command\",st d
end sub
Diposting oleh wongso di Kamis, Januari 31, 2008