Cleaner virus MOONLIGHT
Share on :
Bkin Obat yuk buat Kompi yang terinfeksi firus Moonlight.
Obat ini dipake bila kita mau LOGIN ke windows xp selalu kembali ke nama user, begitu seterusnya. hal ini terjadi setelah win xp bersih dari virus MOONLIGHT.
*Buka notepad
*Copy Paste kode nie..
cd %UserProfile%\Start Menu\Programs\Startup
DEL /S /Q MySqld-nt*.cmd
cd %UserProfile%\My Documents
Del /Q Mo0nLighT.b+MuTEX_.txt
Del /Q Msg*.txt
Del /Q *.scr
msg %username% /time:20 /w /v "Hapus file Lightmoon.A !"
cd C:\
DEL /Q Windows.scr
DEL /Q *.scr
cd %WinDir%
attrib -s -h systask.exe /s
DEL /s /Q Systask.exe
DEL /Q Brico.cmd
DEL /Q command.com
cd %WinDir%\System32
DEL /Q Mysqld-nt.cmd
DEL /Q run32dll.exe
DEL /Q remotesp.cmd
cd %WinDir%\COMMAND
DEL /Q SETRAMD.cmd
cd %WinDir%\system32\APPLOG\Sys
DEL /Q Winlogon.exe
cd %WinDir%\system32\dllcache
attrib -s -h MSOWCF.cmd /s
DEL /S /Q MSOWCF.cmd
cd %WinDir%\Java\Clases\bin
DEL /Q Csrss.exe
msg %username% /time:30 "Lightmoon. Remover (c) sochabas.blogspot.com"
*Save as :Obat Moonlight.bat
*save as type:All File
dan 1 Lagi...
*Buka notepad
*Copy Paste kode nie..
[Version]
Signature="$Chicago$"
Provider=LOGIKA Komputer Adiwerna
[DefaultInstall]
AddReg=UnhookRegKey
DelReg=del
[UnhookRegKey]
HKLM, Software\CLASSES\batfile\shell\open\command,,,"""%1"" %*"
HKLM, Software\CLASSES\comfile\shell\open\command,,,"""%1"" %*"
HKLM, Software\CLASSES\exefile\shell\open\command,,,"""%1"" %*"
HKLM, Software\CLASSES\piffile\shell\open\command,,,"""%1"" %*"
HKLM, Software\CLASSES\regfile\shell\open\command,,,"regedit.exe "%1""
HKLM, Software\CLASSES\scrfile\shell\open\command,,,"""%1"" %*"
HKLM, SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon, Shell,0, "Explorer.exe"
HKLM, SYSTEM\ControlSet001\Control\SafeBoot, AlternateShell,0, "cmd.exe"
HKLM, SYSTEM\CurrentControlSet\Control\SafeBoot, AlternateShell,0, "cmd.exe"
[del]
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\System,DisableRegistryTools
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\Explorer,NoFolderOptions
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\Explorer,NoControlPanel
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\WinOldApp
HKCU, Software\Microsoft\Windows\CurrentVersion\Run,MooNlight
HKCU, Software\Microsoft\Windows\CurrentVersion\Run,payLoad
HKLM, SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ObjectDock
HKLM, SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Msconfig.exe
HKLM, SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\regedit.exe
HKLM, SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cmd.exe
HKLM, SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe
*Save as :Obat Moonlight.inf
*save as type:All File
(untuk menjalankan .inf dengan click kanan lalu instal
Langganan:
Posting Komentar (RSS)
Postingan
0 komentar on Cleaner virus MOONLIGHT :
Post a Comment and Don't Spam!