Hacking & Stuff

3.GENERAL INTRO ABOUT VIRUSES

A computer virus is a computer program that can replicate itself and spread from one computer to another. The term "virus" is also commonly, but erroneously, used to refer to other types ofmalware, including but not limited to adware and spyware programs that do not have a reproductive ability.

what are types of virus programs?

Virus programs

The Creeper virus was first detected on ARPANET, the forerunner of the Internet, in the early 1970s.Creeper was an experimental self-replicating program written by Bob Thomas at BBN Technologies in 1971.Creeper used the ARPANET to infect DEC PDP-10 computers running the TENEX operating system.Creeper gained access via the ARPANET and copied itself to the remote system where the message, "I'm the creeper, catch me if you can!" was displayed. The Reaper program was created to delete Creeper.

A program called "Elk Cloner" was the first personal computer virus to appear "in the wild"—that is, outside the single computer or lab where it was created. Written in 1981 by Richard Skrenta, it attached itself to the Apple DOS 3.3 operating system and spread via floppy disk. This virus, created as a practical joke when Skrenta was still in high school, was injected in a game on a floppy disk. On its 50th use the Elk Cloner virus would be activated, infecting the personal computer and displaying a short poem beginning "Elk Cloner: The program with a personality."

The first IBM PC virus in the wild was a boot sector virus dubbed (c)Brain, created in 1986 by the Farooq Alvi Brothers in Lahore, Pakistan, reportedly to deter piracy of the software they had written.

Before computer networks became widespread, most viruses spread on removable media, particularly floppy disks. In the early days of the personal computer, many users regularly exchanged information and programs on floppies. Some viruses spread by infecting programs stored on these disks, while others installed themselves into the disk boot sector, ensuring that they would be run when the user booted the computer from the disk, usually inadvertently. Personal computers of the era would attempt to boot first from a floppy if one had been left in the drive. Until floppy disks fell out of use, this was the most successful infection strategy and boot sector viruses were the most common in the wild for many years

Traditional computer viruses emerged in the 1980s, driven by the spread of personal computers and the resultant increase in BBS, modem use, and software sharing. Bulletin board-driven software sharing contributed directly to the spread of Trojan horse programs, and viruses were written to infect popularly traded software. Shareware and bootleg software were equally common vectors for viruses on BBSs.^{[citation needed]} Viruses can increase their chances of spreading to other computers by infecting files on a network file system or a file system that is accessed by other computers.

Macro viruses have become common since the mid-1990s. Most of these viruses are written in the scripting languages for Microsoft programs such as Word and Excel and spread throughout Microsoft Office by infecting documents and spreadsheets. Since Word and Excel were also available for Mac OS, most could also spread to Macintosh computers. Although most of these viruses did not have the ability to send infected email messages, those viruses which did take advantage of the Microsoft Outlook COM interface.^{[citation needed]}

Some old versions of Microsoft Word allow macros to replicate themselves with additional blank lines. If two macro viruses simultaneously infect a document, the combination of the two, if also self-replicating, can appear as a "mating" of the two and would likely be detected as a virus unique from the "parents".

A virus may also send a web address link as an instant message to all the contacts on an infected machine. If the recipient, thinking the link is from a friend (a trusted source) follows the link to the website, the virus hosted at the site may be able to infect this new computer and continue propagating.

Viruses that spread using cross-site scripting were first reported in 2002, and were academically demonstrated in 2005.There have been multiple instances of the cross-site scripting viruses in the wild, exploiting websites such as MySpace and Yahoo.

A Quick Reference Picture about VIRUSES:

Here is a List of COMPUTER VIRUSES:

Name

Alias(es)

Type

Subtype

Isolation Date

Isolation

Origin

Author

Notes

1260

MS-DOS

1990

Mark Washburn, Ralf Burger

First virus to use polymorphic encryption

4096

MS-DOS

January 1990

unknown

The first virus to use stealth

5lo

MS-DOS

October 1992

unknown

Infects .EXE files only

A and A

MS-DOS
Windows 95,Windows 98

unknown

A-403

MS-DOS
Windows 95,Windows 98

1998

unknown

Abraxas

MS-DOS
Windows 95,Windows 98

April 1993

unknown

Infects COM file. Disk directory listing will be set to the system date and time when infection occurred.

Acid

MS-DOS
Windows 95,Windows 98

1992

Corp-$MZU

Infects COM file. Disk directory listing will not be altered.

Acme

Upon executing infected EXE, this infects another EXE in current directory by making a hidden COM file with same base name.

Air cop-B

Jan 1990

Email
VBScript

Jan de Wit

2-1989

Does not spread under MultiFinder.

AntiCMOS

AntiHeuristica

It's payload is opposite of Cascade DOS virus, instead of the letters being pushed down, it pushes it upwards.

Blackworm

Bounce

Windows

Upon activation, it makes message boxes on screen and the mouse cursor "bounce" up and down. It does no other damage.^[1]

Windows XP

This virus will block most anti-virus programs and disable 'regedit', 'msconfig', and 'task manager'

Brotherhood

Brothers

Browser Enhancement

Claims to enhance browser experience, but when computer is re-booted, displays a fake anti-piracy warning claiming to need to pay to drop charges, but steals your credit card number.

Amiga, Bootsector virus

January 1988

Swiss Cracking Association

Byte Warrior

Amiga, Boot sector virus

(c)Brain

Pakistani flu,

January 1986

Lahore,Pakistan

Basit andAmjad Farooq Alvi

Considered to be the first computer virus for the PC

1575

8-1990

11-1993

Renames the hard drive to "Trent Saburo" on any October 31.

4-1992

most common mobile phone virus for nokia mobile phones, transmits via bluetooth wireless.

Scare Worm This virus deletes all users, all data, and s the worst virus yet.

Egg is a computer virus that affects the COM. and EXE files.

Dec 1991

Richard Skrenta

The first virus observed "in the wild"

Macintosh emulator

Targeted pirated versions of the Aladdin emulator.

Friday the 13th - Version A

w32.Assarm

Windows

6-23-2008

Created from original identity 'Gotchix'

Spread on Facebook through 'add friend' linkage

Got-you

Grapje

Graveyard

Graybird(Backdoor Graybird, Backdoor Graybird P)

MS-DOS
Windows 95,Windows 98

August 1996

Unknown

Famous for press coverage which blew its destructiveness out of proportion

4-1993

1988

13-3-1992

Malicious, triggered on Friday the 13th.

INIT 9403

SysX

3-1994

Very destructive, destroys all data. Found only on Italian systems so far.

INIT-M

4-1993

Malicious, triggered on Friday the 13th.

Jonathan (malware)

Infects .COM files. Affects the computers runtime operation and corrupts data files.

Label

h1n1

Lamer Exterminator

Amiga, Boot sector virus

October 1989

Germany

Random encryption, fills random sector with "LAMER"

Infects COM.And EXE. Files after its visual payload on DOS

Drew, Bradow, Aldus, Peace

12-1987

MAS

Trojan

worm/virus

2-2008

infects .exe files

2-1992

Garfield, Top Cat

5-1990

Meditation

MegM

Melissa

1999

part macro virus and part worm

Memory Lapse

Michelangelo

April 1991

New Zealand

Ran March 6 (Michelangelo's birthday)

Script

Atomical

Multipartite, stealth, polymorphic

1994

"Priest"

1987

Malfunctions the mouse while putting itself to the system.

1990

Boot, Bouncing Ball, Bouncing Dot, Italian, Italian-A, VeraCruz

Boot sector virus

Harmless to most computers

Infects the operational memory. It's one of the fastest copying viruses and makes the computer totally unuseful.

RJump.A, Rajump, Jisx

Worm

2006-06-20

Once distributed in Apple iPods, but a Windows-only virus

Reaper

Reader_s

A malware that infects a computer and damages system core files, sometimes making BSOD and disabling anti-viruses. This is a high-risk computer virus.

Trojan horse

vindu

Amiga, Boot sector virus

November 1987

Switzerland

Swiss Cracking Association

Puts a message on screen. Harmless except it might destroy a legitimate non-standard boot block.

Schrunch

Scores

Eric, Vult, NASA, San Jose Flu

Spring 1988

Designed to attack two specific applications which were never released.

W97M.Marker.o

Polymorphic Virus

Infects Word Documents

The Mental Driller

Soup Delete (computer virus) Simple format C drive

Something

Snow White and the Seven Dwarfs

Boot Sector Virus

Stealth_C causes the total system and available free memory, to decrease by 4,096 bytes.

Swen - "News" spelled backwards

6-1992

Included in GoMoku 2.0 and 2.1.

Piotr Bania aka Lord Yup aka dis69, 29A group member

Peter Ferrie's analysis

USSR 1049

windows extract

2008

For Windows XP Only.

Warbiest Terminator v.2.0

2009

For Windows XP and Vista.

12-1989

Affects only Macintosh System 6.

2004

Windows systems only.

Disrupts system performance by displaying pop-ups. Starts only when computer is on, and slows internet performance as well.

w32.myzor.FK@yf

ZMistfall, Zombie.Mistfall

Z0mbie

Zoda

Zohra

Get bored of reading those list of viruses? Here is a interesting stuff,were you too can make a virus

Here is the list of the softwares that allows you to make Virus:

1. In Shadow Batch Virus Generator

1. First of all download the virus maker from here

2. Run "In Shadow Batch Virus Generator.exe" application to see something like this:

3. You can use various options to make virus to suit your needs. You can:

Infect files of various extensions
Insert virus in startup menu, Kill various processes.
Disable all security services like Windows Defender, Antivirus, Firewall.
Rename file extensions, spread virus via file sharing.
Create new admin account, change user account password.
Block various websites, download trojan files to victim computer, shutdown victim computer and much more.

4. After selecting various options, move on to "Creating Options" tab and hit on "Save as Bat". Assign name to the virus and hit on Save.

5. Now, you have your virus ready to hack your victim. This virus maker is undetectable by the most antiviruses.

I am not responsible for any action performed by you. Also, do not try this virus on your own computer. This virus software is one of the most efficient virus software used today.

2. JPS Virus Maker

This is also a great virus maker with many features in it. Check all the features of JPS Virus maker

here.

3. TeraBIT Virus Maker

A powerful virus maker for you. Look for updates here

These two virus makers are detected as a viruses by the most anti-virus softwares, but they won't harm your pc in any way. Before you run these virus makers disable your anti-virus temporarily.

NOTE:

These posts are educational purpose only.I Can't take charge of any illegal activities done

using this.

IS AUTORUN.INF A VIRUS?

When i start using kaspersky it detected autorun.inf as a virus. I thought so. Because my antivirus blocks autorun.inf files . But when i search about autorun.inf file in net, i realize about the auto run file.

Today i bring some files from my college system. When i insert the pen drive in my system, there are lot of exe files.They are viruses. I delete all of them. Finally i opened the autorun.inf file in notepad and saw the instructions. Then only i remembered that i forget to post about autorun file. This article will give you complete details about the autorun.inf file.
This is the instructions that saved in the infected(call virus programs) autorun.inf file:

[Autorun]
Open=RECYCLER\QqFvXcB.exe
Explore=RECYCLER\QqFvXcB.exe
AutoPlay=RECYCLER\QqFvXcB.exe
shell\Open\Command=RECYCLER\QqFvXcB.exe
shell\Open\Default=1
shell\Explore\command=RECYCLER\QqFvXcB.exe
shell\Autoplay\Command=RECYCLER\QqFvXcB.exe

is autorun.inf virus file? no. Then why antivirus block the autorun.inf files? Go ahead to know the full details about auto run file.

Introduction to Autorun.inf File:
Auto run is file that triggers other programs,documents ,other files to be opened when the cd or pen drives are inserted. Simpy triggers.

When cd or pen drives are inserted, windows will search for the autorun.inf file and follow the instructions of autorun.inf file(instructions have written inside the autorun.inf file).

How to create Autorun file?
Open notepad
type this command:

[Autorun]

save the file as "autorun.inf" (select all files, not text )

Complete Syntax and instructions inside the Autorun file:
Basic syntax must be inside the autorun.inf file is :

[Autorun]

This will be used to identify the the file as autorun.

OPEN=
This will specify which application should be opened when the cd or pen drive is opened

Example:

open=virus.exe

This will launch the virus.exe file when cd or pen drive is opened. The file should be in root directory.
if the file is in any other sub directories ,then we have to specify it.

Open=RECYCLER\Virus.exe

Explore=
Nothing big difference. if you right click and select explore option in cd or pen drive. This command will be run.

AutoPlay=
Same as the above , but it will launch the the program when auto played.

SHELL\VERB =

The SHELL\VERB command adds a custom command to the drive's shortcut menu. This custom command can for example be used to launch an application on the CD/DVD.

Example:

shell\Open\Command=RECYCLER\QqFvXcB.exe
shell\Open\Default=1
shell\Explore\command=RECYCLER\QqFvXcB.exe
shell\Autoplay\Command=RECYCLER\QqFvXcB.exe

Use a series of shell commands to specify one or more entries in the pop-up menu that appears when the user right-clicks on the CD icon. (The shell entries supplement the open command.)

Icon=
Change the icon of your pen drive or cd. you can use .ico,.bmp images(also .exe,.dll)

Example:

icon=breakthesecurity.ico

Label=

Specifies a text label to displayed for this CD in Explorer
Note that using the LABEL option can lead to problems displaying the selected ICON under Windows XP.

Example:

Label=Ethical hacking

Why Antivirus Block Autorun.inf file?
From above ,you come to know that autorun.inf file is not virus. But why antivirus blocks it? Because as i told autorun file call or launch any application or exe files. It will lead to virus attack. If the autorun.inf is blocked,then there is no way to launch the virus code.

Autorun is not virus but it can call virus files.

<<<<<<<<<<<<Soon Updating This More>>>>>>>>>>>>>

Search This Blog

Hacking & Stuff

Virus programs

Comments

Post a Comment

Popular posts from this blog