API tools faq
paste
Advertisement
shubshub

AntiRogue Error

shubshub
Jun 3rd, 2012
116
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Bash 13.33 KB | None | 0 0
raw download clone embed print report
  1. @echo off
  2. set oldversion=1.3.1
  3. set spy_removed=0
  4. :zero_check
  5. set /p checkupdate=Check For Updates? Y/N:
  6. if %checkupdate%==Y goto update_download
  7. if %checkupdate%==N goto first_check
  8. goto zero_check
  9. :first_check
  10. IF EXIST "threats_removed.bat" CALL "threats_removed.bat"
  11. title AntiRogue v1.3
  12. echo AntiRogue v1.3 Booting Please Wait
  13. ping localhost >nul
  14. echo Loading Rogue Software Location Database
  15. call patch_list.bat
  16. ping localhost >nul
  17. echo Boot Sucsessful
  18. ping localhost >nul
  19. echo AntiRogue is an AntiMalware Program specificly designed to aid in the process
  20. echo Of eliminating Rogue Security Software
  21. echo Current Support
  22. echo.
  23. echo CleanThis
  24. echo ThinkPoint
  25. echo Strong Malware Defender
  26. echo VirusHeat
  27. echo SpywareQuake
  28. :check_startup
  29. set StartupFolder="%AppData%\Microsoft\Windows\Start Menu\Programs\Startup"
  30. If Exist %StartupFolder%\AntiRogue.lnk Goto allowregedit
  31. set StartupFolder="%UserProfile%\Start Menu\Programs\Startup"
  32. If Exist %StartupFolder%\AntiRogue.lnk Goto allowregedit
  33. set /p copystart=Copy AntiRogue To Startup? Y/N:
  34. IF %copystart%==N goto allowregedit
  35. IF %copystart%==Y goto copy_startup
  36. goto check_startup
  37. :copy_startup
  38. CD /D %~dp0
  39. IF NOT EXIST "AntiRogue.lnk" echo You need to Manually Create a Shortcut first
  40. IF NOT EXIST "AntiRogue.lnk" pause
  41. IF NOT EXIST "AntiRogue.lnk" goto allowregedit
  42. set StartupFolder=%AppData%\Microsoft\Windows\Start Menu\Programs\Startup
  43. If Exist "%StartupFolder%\AntiRogue.lnk" Goto allowregedit
  44. Set StartupFolder=%UserProfile%\Start Menu\Programs\Startup
  45. If Exist "%StartupFolder%\AntiRogue.lnk" Goto allowregedit
  46. :FoundStartup
  47. copy "AntiRogue.lnk" "%StartupFolder%"
  48. :allowregedit
  49. set /p allowreg=Allow Registry? Y/N:
  50. if %allowreg%==Y goto startreg_scan
  51. if %allowreg%==N goto search1
  52. goto allowregedit
  53. pause
  54. goto search
  55. :startreg_scan
  56. set /p startscan=Start Registry Scanner? Y/N:
  57. IF %startscan%==Y start reg_scan.bat
  58. IF %startscan%==Y goto search
  59. IF %startscan%==N goto search
  60. goto startreg_scan
  61. :search2
  62. set regallow=1
  63. goto search
  64. :search1
  65. set regallow=0
  66. goto search
  67. :search
  68. cls
  69. color 0A
  70. echo Status: Clean
  71. IF EXIST "threats_removed.bat" CALL "threats_removed.bat"
  72. IF EXIST "reg_cleans.bat" CALL "reg_cleans.bat"
  73. IF EXIST "threats_removed.bat" ECHO Rogues Eliminated: %threat_count%
  74. IF EXIST "reg_cleans.bat" ECHO Registries Fixed: %reg_clean%
  75. goto search3
  76. color 07
  77. :search3
  78. title Status: Clean
  79. IF EXIST "BAT_Patches\spyfound.bat" goto SPY_REGFOUND
  80. IF EXIST "BAT_Patches\angfound.bat" goto ANG_REGFOUND
  81. IF EXIST "BAT_Patches\malfound.bat" goto MAL_REGFOUND
  82. IF EXIST %virusheat1% goto VH_ALERT
  83. IF EXIST %virusheat2% goto VH_ALERT
  84. IF EXIST %virusheat3% goto VH_ALERT
  85. IF EXIST %virusheat4% goto VH_ALERT
  86. IF EXIST %cleanthis% goto CLEAN_ALERT
  87. IF EXIST %ang1% goto ANG_ALERT
  88. IF EXIST %ang2% goto ANG_ALERT
  89. IF EXIST %ang3% goto ANG_ALERT
  90. IF EXIST %ang4% goto ANG_ALERT
  91. IF EXIST %spyquake1% goto SPYQUAKE_ALERT
  92. IF EXIST %spyquake2% goto SPYQUAKE_ALERT
  93. IF EXIST %spyquake3% goto SPYQUAKE_ALERT
  94. IF EXIST %thinkpoint1% goto THINKPOINT_ALERT
  95. IF EXIST %thinkpoint2% goto THINKPOINT_ALERT
  96. IF EXIST %thinkpoint3% goto THINKPOINT_ALERT
  97. IF EXIST %mal_defend1% goto MALDEFEND_ALERT
  98. IF EXIST %mal_defend2% goto MALDEFEND_ALERT
  99. IF EXIST %mal_defend3% goto MALDEFEND_ALERT
  100. IF EXIST %mal_defend4% goto MALDEFEND_ALERT
  101. IF EXIST %mal_defend5% goto MALDEFEND_ALERT
  102. IF EXIST %mal_defend6% goto MALDEFEND_ALERT
  103. IF EXIST %sheriff1% goto SHERIFF_ALERT
  104. IF EXIST %sheriff2% goto SHERIFF_ALERT
  105. IF EXIST %sheriff3% goto SHERIFF_ALERT
  106. IF EXIST %sheriff4% goto SHERIFF_ALERT
  107. IF EXIST %sheriff5% goto SHERIFF_ALERT
  108. IF EXIST %sheriff6% goto SHERIFF_ALERT
  109. IF EXIST %sheriff7% goto SHERIFF_ALERT
  110. IF EXIST %sheriff8% goto SHERIFF_ALERT
  111. IF EXIST %sheriff9% goto SHERIFF_ALERT
  112. goto search3
  113. :SHERIFF_ALERT
  114. set virus=SpySheriff Oh Dear :(
  115. set removal_link=sheriff_remove
  116. set task1="winstall.exe"
  117. set task2="wp.exe"
  118. goto ALERT
  119. pause
  120. :CLEAN_ALERT
  121. set virus=CleanThis
  122. set removal_link=clean_remove
  123. set task="gog.exe"
  124. goto ALERT
  125. :ANG_ALERT
  126. set virus=ANG_AntiVirus
  127. set removal_link=ang_remove
  128. set task1="angpd.exe"
  129. set task2="mcdk.exe"
  130. set task3="rkgnd.exe"
  131. set task4="wsd.exe"
  132. goto ALERT
  133. :SPYQUAKE_ALERT
  134. set virus=SpywareQuake
  135. set removal_link=spyquake_remove
  136. set task1="SpywareQuake.exe"
  137. set task2="Spy-Quake2.exe"
  138. set task3="SpywareQuaked.exe"
  139. goto ALERT
  140. :THINKPOINT_ALERT
  141. set virus=ThinkPoint
  142. set removal_link=thinkpoint_remove
  143. set task1="hotfix.exe"
  144. set task2="thinkpoint.exe"
  145. set task3="bbotxxxxxx.exe"
  146. goto ALERT
  147. :MALDEFEND_ALERT
  148. set virus=Malware Defender
  149. set removal_link=maldefend_remove
  150. goto ALERT
  151. :VH_ALERT
  152. set virus=VirusHeat
  153. set removal_link=vh_remove
  154. goto ALERT
  155. :ALERT
  156. cls
  157. color 0C
  158. title ALERT!!! MALWARE FOUND!!!
  159. echo Status: Infected
  160. echo Threatening Malware: %virus%
  161. ping localhost >nul
  162. goto %removal_link%
  163. :clean_remove
  164. title Removing CleanThis Please Wait
  165. TASKKILL /F /IM %task% /FI "STATUS eq RUNNING"
  166. IF EXIST %cleanthis% del %cleanthis%
  167. IF NOT EXIST %cleanthis% echo Threat Removed
  168. IF NOT EXIST %cleanthis% set /a threat_count=%threat_count%+1
  169. echo set threat_count=%threat_count% > threats_removed.bat
  170. ping localhost >nul
  171. IF NOT %regallow%==1 goto search
  172. goto cleanreg
  173. :ang_remove
  174. title Removing ANG AntiVirus Please Wait
  175. TASKKILL /F /IM %task1% /FI "STATUS eq RUNNING"
  176. TASKKILL /F /IM %task2% /FI "STATUS eq RUNNING"
  177. TASKKILL /F /IM %task3% /FI "STATUS eq RUNNING"
  178. TASKKILL /F /IM %task4% /FI "STATUS eq RUNNING"
  179. IF EXIST %ang1% vbs %ang_vbs%
  180. IF EXIST %ang2% vbs %ang_vbs%
  181. IF EXIST %ang3% vbs %ang_vbs%
  182. IF EXIST %ang4% vbs %ang_vbs%
  183. ping localhost >nul
  184. set ang_removed=0
  185. IF NOT EXIST %ang1% set /a ang_removed=%ang_removed%+1
  186. IF NOT EXIST %ang2% set /a ang_removed=%ang_removed%+1
  187. IF NOT EXIST %ang3% set /a ang_removed=%ang_removed%+1
  188. IF NOT EXIST %ang4% set /a ang_removed=%ang_removed%+1
  189. IF %ang_removed%==4 echo Threat Removed
  190. IF %ang_removed%==4 set /a threat_count=%threat_count%+1
  191. echo set threat_count=%threat_count% > threats_removed.bat
  192. ping localhost >nul
  193. IF NOT %regallow%==1 goto search
  194. goto angreg
  195. :spyquake_remove
  196. title Removing SpywareQuake Please Wait
  197. TASKKILL /F /IM %task1% /FI "STATUS eq RUNNING"
  198. TASKKILL /F /IM %task2% /FI "STATUS eq RUNNING"
  199. TASKKILL /F /IM %task3% /FI "STATUS eq RUNNING"
  200. IF EXIST %spyquake1% vbs %spyquake_vbs%
  201. IF EXIST %spyquake2% vbs %spyquake_vbs%
  202. IF EXIST %spyqauke3% vbs %spyquake_vbs%
  203. ping localhost >nul
  204. IF NOT EXIST %spyquake1% set /a spy_removed=%spy_removed%+1
  205. IF NOT EXIST %spyquake2% set /a spy_removed=%spy_removed%+1
  206. IF NOT EXIST %spyquake3% set /a spy_removed=%spy_removed%+1
  207. IF %spy_removed%==3 echo Threat Removed
  208. IF %spy_removed%==3 set /a threat_count=%threat_count%+1
  209. echo set threat_count=%threat_count% > threats_removed.bat
  210. ping localhost >nul
  211. pause
  212. IF NOT %regallow%==1 goto search
  213. goto spyreg
  214. :thinkpoint_remove
  215. title Removing ThinkPoint Please Wait
  216. TASKKILL /F /IM %task1% /FI "STATUS eq RUNNING"
  217. TASKKILL /F /IM %task2% /FI "STATUS eq RUNNING"
  218. TASKKILL /F /IM %task3% /FI "STATUS eq RUNNING"
  219. IF EXIST %thinkpoint1% del %thinkpoint1%
  220. IF EXIST %thinkpoint2% del %thinkpoint2%
  221. IF EXIST %thinkpoint3% vbs %thinkpoint_vbs%
  222. ping localhost >nul
  223. set think_removed=0
  224. IF NOT EXIST %thinkpoint1% SET /a think_removed=%think_removed%+1
  225. IF NOT EXIST %thinkpoint2% SET /a think_removed=%think_removed%+1
  226. IF NOT EXIST %thinkpoint3% SET /a think_removed=%think_removed%+1
  227. IF %think_removed%==3 echo Threat Removed
  228. IF %think_removed%==3 set /a threat_count=%threat_count%+1
  229. echo set threat_count=%threat_count% > threats_removed.bat
  230. ping localhost >nul
  231. IF NOT %regallow%==1 goto search
  232. goto thinkreg
  233. :maldefend_remove
  234. title Removing Malware Defender Please Wait
  235. echo Eliminating Strong Malware Defender
  236. echo We Have Better support for Malware Defender Now
  237. IF EXIST %mal_defend1% DEL %mal_defend1%
  238. IF EXIST %mal_defend2% DEL %mal_defend2%
  239. IF EXIST %mal_defend3% DEL %mal_defend3%
  240. IF EXIST %mal_defend4% DEL %mal_defend4%
  241. IF EXIST %mal_defend5% DEL %mal_defend5%
  242. IF EXIST %mal_defend6% DEL %mal_defend6%
  243. set maldefend_removed=0
  244. IF NOT EXIST %mal_defend1% set /a maldefend_removed=%maldefend_removed%+1
  245. IF NOT EXIST %mal_defend2% set /a maldefend_removed=%maldefend_removed%+1
  246. IF NOT EXIST %mal_defend3% set /a maldefend_removed=%maldefend_removed%+1
  247. IF NOT EXIST %mal_defend4% set /a maldefend_removed=%maldefend_removed%+1
  248. IF NOT EXIST %mal_defend5% set /a maldefend_removed=%maldefend_removed%+1
  249. IF NOT EXIST %mal_defend6% set /a maldefend_removed=%maldefend_removed%+1
  250. IF %maldefend_removed%==6 echo Threat Removed
  251. IF %maldefend_removed%==6 set /a threat_count=%threat_count%+1
  252. echo set threat_count=%threat_count% > threats_removed.bat
  253. ping localhost >nul
  254. IF NOT %regallow%==1 goto search
  255. goto maldefendreg
  256. :vh_remove
  257. title Removing VirusHeat Please Wait
  258. echo Removing VirusHeat
  259. IF EXIST %virusheat1% vbs %virusheat_vbs%
  260. IF EXIST %virusheat2% vbs %virusheat_vbs%
  261. IF EXIST %virusheat3% vbs %virusheat_vbs%
  262. IF EXIST %virusheat4% vbs %virusheat_vbs%
  263. set vh_removed=0
  264. IF NOT EXIST %virusheat1% set /a vh_removed=%vh_removed%+1
  265. IF NOT EXIST %virusheat2% set /a vh_removed=%vh_removed%+1
  266. IF NOT EXIST %virusheat3% set /a vh_removed=%vh_removed%+1
  267. IF NOT EXIST %virusheat4% set /a vh_removed=%vh_removed%+1
  268. IF %vh_removed%==4 echo Threat Removed
  269. IF %vh_removed%==4 set /a threat_count=%threat_count%+1
  270. echo set threat_count-%threat_count% > threats_removed.bat
  271. ping localhost >nul
  272. IF NOT %regallow%==1 goto search
  273. goto vhreg
  274. :sheriff_remove
  275. title Removing SpySheriff Please Wait
  276. echo Removing SpySheriff
  277. IF EXIST %sheriff1% vbs %sheriff_vbs%
  278. IF EXIST %sheriff2% vbs %sheriff_vbs%
  279. IF EXIST %sheriff3% vbs %sheriff_vbs%
  280. IF EXIST %sheriff4% vbs %sheriff_vbs%
  281. IF EXIST %sheriff5% vbs %sheriff_vbs%
  282. IF EXIST %sheriff6% vbs %sheriff_vbs%
  283. IF EXIST %sheriff7% vbs %sheriff_vbs%
  284. IF EXIST %sheriff8% vbs %sheriff_vbs%
  285. IF EXIST %sheriff9% vbs %sheriff_vbs%
  286. set sheriff_removed=0
  287. ping localhost >nul
  288. IF NOT EXIST %sheriff1% set /a sheriff_removed=%sheriff_removed%+1
  289. IF NOT EXIST %sheriff2% set /a sheriff_removed=%sheriff_removed%+1
  290. IF NOT EXIST %sheriff3% set /a sheriff_removed=%sheriff_removed%+1
  291. IF NOT EXIST %sheriff4% set /a sheriff_removed=%sheriff_removed%+1
  292. IF NOT EXIST %sheriff5% set /a sheriff_removed=%sheriff_removed%+1
  293. IF NOT EXIST %sheriff6% set /a sheriff_removed=%sheriff_removed%+1
  294. IF NOT EXIST %sheriff7% set /a sheriff_removed=%sheriff_removed%+1
  295. IF NOT EXIST %sheriff8% set /a sheriff_removed=%sheriff_removed%+1
  296. IF NOT EXIST %sheriff9% set /a sheriff_removed=%sheriff_removed%+1
  297. IF %sheriff_removed%==9 echo Threat Removed
  298. IF %sheriff_removed%==9 set /a threat_count=%threat_count%+1
  299. echo set threat_count=%threat_count% > threats_removed.bat
  300. ping localhost >nul
  301. IF NOT %regallow%==1 goto search
  302. goto sheriffreg
  303. :cleanreg
  304. title Fixing Registries
  305. echo Fixing Registries with the remove_cleanthis.reg Patch
  306. regedit %clean_reg%
  307. set /a reg_clean=%reg_clean%+1
  308. echo set reg_clean=%reg_clean% > reg_cleans.bat
  309. echo Fixed
  310. ping localhost >nul
  311. goto search
  312. :angreg
  313. title Fixing Registries
  314. echo Fixing Registries with the remove_ang.reg Patch
  315. regedit %ang_reg%
  316. set /a reg_clean=%reg_clean%+1
  317. echo set reg_clean=%reg_clean% > reg_cleans.bat
  318. echo Fixed
  319. ping localhost >nul
  320. goto search
  321. :spyreg
  322. title Fixing Registries
  323. echo Fixing Registries with the remove_spyquake.reg Patch
  324. regedit %spyquake_reg%
  325. set /a reg_clean=%reg_clean%+1
  326. echo set reg_clean=%reg_clean% > reg_cleans.bat
  327. echo Fixed
  328. ping localhost >nul
  329. goto search
  330. :thinkreg
  331. title Fixing Registries
  332. echo Fixing Registries with the remove_thinkpoint.reg Patch
  333. regedit %thinkpoint_reg%
  334. set /a reg_clean=%reg_clean%+1
  335. echo set reg_clean=%reg_clean% > reg_cleans.bat
  336. echo Fixed
  337. ping localhost >nul
  338. goto search
  339. :maldefendreg
  340. title Fixing Registries
  341. echo Fixing Registries with the remove_maldefend.reg Patch
  342. regedit %maldefend_reg%
  343. set /a reg_clean=%reg_clean%+1
  344. echo set reg_clean=%reg_clean% > reg_cleans.bat
  345. echo Fixed
  346. ping localhost >nul
  347. goto search
  348. :vhreg
  349. title Fixing registries
  350. echo Fixing Registries with the remove_vh.reg Patch
  351. regedit %virusheat_reg%
  352. set /a reg_clean=%reg_clean%+1
  353. echo set reg_clean=%reg_clean% > reg_cleans.bat
  354. echo Fixed
  355. ping localhost >nul
  356. goto search
  357. :sheriffreg
  358. title Fixing Registries
  359. echo Fixing Registries with the remove_sheriff.reg Patch
  360. regedit %sheriff_reg%
  361. set /a reg_clean=%reg_clean%+1
  362. echo set reg_clean=%reg_clean% > reg_cleans.bat
  363. echo Fixed
  364. ping localhost >nul
  365. goto search
  366. :SPY_REGFOUND
  367. title Found Registry
  368. color 0C
  369. echo We Found a Registry
  370. regedit %spyquake_reg%
  371. echo We Fixed the registry
  372. ping localhost >nul
  373. IF EXIST "BAT_Patches\spyfound.bat" del "BAT_Patches\spyfound.bat"
  374. goto search
  375. :ANG_REGFOUND
  376. title Found Registry
  377. color 0C
  378. echo We Found a Registry
  379. regedit %ang_reg%
  380. echo We Fixed the registry
  381. ping localhost >nul
  382. IF EXIST "BAT_Patches\angfound.bat" del "BAT_Patches\angfound.bat"
  383. goto search
  384. :MAL_REGFOUND
  385. title Found Registry
  386. color 0C
  387. echo We Found a Registry
  388. regedit %maldefend_reg%
  389. echo We Fixed the registry
  390. ping localhost >nul
  391. IF EXIST "BAT_Patches\malfound.bat" del "BAT_Patches\malfound.bat"
  392. goto search
  393. :update_download
  394. wget http://pastebin.com/raw.php?i=LRFgxZxz
  395. REN "raw.php?i=LRFgxZxz" "update.bat"
  396. call update.bat
  397. IF %oldversion% LSS %newversion% goto updating
  398. echo No New Updates
  399. pause
  400. goto first_check
  401. :updating
  402. wget %download_link%
  403. echo Sucsessfully Downloaded AntiRogue v%newversion%
  404. echo Please Unzip this new version and use it
  405. pause
  406. exit
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!