本帖最后由 似水无痕 于 2010-1-19 20:33 编辑
回复 10# wodecaoxin
@echo off
color 0a
echo ******************************************************************************
echo * *
echo * 现在进行机器狗免疫 *
echo * *
echo ******************************************************************************
md C:\WINDOWS\system32\wxptdi.sys 2>nul
md C:\WINDOWS\system32\wxptdi.sys\1..\ 2>nul
md C:\WINDOWS\system32\fat32.sys 2>nul
md C:\WINDOWS\system32\fat32.sys\1..\ 2>nul
md C:\WINDOWS\system32\drivers\ati32srv.sys 2>nul
md C:\WINDOWS\system32\drivers\ati32srv.sys\1..\ 2>nul
md C:\WINDOWS\system32\drivers\pcibus.sys 2>nul
md C:\WINDOWS\system32\drivers\pcibus.sys\1..\ 2>nul
md C:\WINDOWS\system32\drivers\pcidisk.sys 2>nul
md C:\WINDOWS\system32\drivers\pcidisk.sys\1..\ 2>nul
md C:\WINDOWS\system32\drivers\pcihdd.sys 2>nul
md C:\WINDOWS\system32\drivers\pcihdd.sys\1..\ 2>nul
md C:\WINDOWS\system32\drivers\phy.sys 2>nul
md C:\WINDOWS\system32\drivers\phy.sys\1..\ 2>nul
md C:\WINDOWS\system32\drivers\pop.sys 2>nul
md C:\WINDOWS\system32\drivers\pop.sys\1..\ 2>nul
md C:\WINDOWS\system32\drivers\puid.sys 2>nul
md C:\WINDOWS\system32\drivers\puid.sys\1..\ 2>nul
md C:\WINDOWS\system32\drivers\usb32k.sys 2>nul
md C:\WINDOWS\system32\drivers\usb32k.sys\1..\ 2>nul
md C:\WINDOWS\system32\2dogkiller.sys 2>nul
md C:\WINDOWS\system32\2dogkiller.sys\1..\ 2>nul
attrib C:\WINDOWS\system32\wxptdi.sys +s +h +r +a 2>nul
attrib C:\WINDOWS\system32\fat32.sys +s +h +r +a 2>nul
attrib C:\WINDOWS\system32\drivers\ati32srv.sys +s +h +r +a 2>nul
attrib C:\WINDOWS\system32\drivers\ati32srv.sys +s +h +r +a 2>nul
attrib C:\WINDOWS\system32\drivers\pcidisk.sys +s +h +r +a 2>nul
attrib C:\WINDOWS\system32\drivers\pcihdd.sys +s +h +r +a 2>nul
attrib C:\WINDOWS\system32\drivers\phy.sys +s +h +r +a 2>nul
attrib C:\WINDOWS\system32\drivers\pop.sys +s +h +r +a 2>nul
attrib C:\WINDOWS\system32\drivers\puid.sys +s +h +r +a 2>nul
attrib C:\WINDOWS\system32\drivers\puid.sys +s +h +r +a 2>nul
attrib C:\WINDOWS\system32\drivers\usb32k.sys +s +h +r +a 2>nul
attrib C:\WINDOWS\system32\2dogkiller.sys +s +h +r +a 2>nul
attrib C:\WINDOWS\system32\drivers\pcibus.sys +s +h +r +a 2>nul
echo y|cacls C:\WINDOWS\system32\2dogkiller.sys /d everyone 2>nul
echo y|cacls C:\WINDOWS\system32\drivers\usb32k.sys /d everyone2 >nul
echo y|cacls C:\WINDOWS\system32\drivers\puid.sys /d everyone 2>nul
echo y|cacls C:\WINDOWS\system32\drivers\pop.sys /d everyone 2>nul
echo y|cacls C:\WINDOWS\system32\drivers\phy.sys /d everyone 2>nul
echo y|cacls C:\WINDOWS\system32\drivers\pcihdd.sys /d everyone 2>nul
echo y|cacls C:\WINDOWS\system32\drivers\pcidisk.sys /d everyone 2>nul
echo y|cacls C:\WINDOWS\system32\drivers\pcibus.sys /d everyone 2>nul
echo y|cacls C:\WINDOWS\system32\drivers\ati32srv.sys /d everyone 2>nul
echo y|cacls C:\WINDOWS\system32\fat32.sys /d everyone 2>nul
echo y|cacls C:\WINDOWS\system32\wxptdi.sys /d everyone 2>nul
echo *********************************************************************************
echo * *
echo * 免疫完成 *
echo * *
echo *********************************************************************************
echo *********************************************************************************
echo * *
echo * 现在进行机器狗小马免疫 *
echo * *
echo *********************************************************************************
md c:\windows\system32\bqtldzlu.exe 2>nul
md c:\windows\system32\diynpis.exe 2>nul
md c:\windows\system32\dndsioc.exe 2>nul
md c:\windows\sytem32\fewqickd.exe 2>nul
md c:\windows\sytem32\fmschif.exe 2>nul
md c:\windows\sytem32\fmsjhif.exe 2>nul
md c:\windows\sytem32\hefcndy.exe 2>nul
md c:\windows\sytem32\hgeazpkc.exe 2>nul
md c:\windows\sytem32\anistio.exe 2>nul
md c:\windows\sytem32\anittio.exe 2>nul
md c:\windows\sytem32\isndctio.exe 2>nul
md c:\windows\sytem32\juejwcx.exe 2>nul
md c:\windows\sytem32\nbnwewd.exe 2>nul
md c:\windows\sytem32\ptshell.exe 2>nul
md c:\windows\sytem32\uiwcaqws.exe 2>nul
md c:\windows\sytem32\wipxcdec.exe 2>nul
md c:\windows\sytem32\wrew2ds.exe 2>nul
md c:\windows\system32\ytewcxzsw.exe 2>nul
attrib c:\windows\system32\bqtldzlu.exe +s +r +h +a 2>nul
attrib c:\windows\system32\diynpis.exe +s +r +h +a 2>nul
attrib c:\windows\system32\dndsioc.exe +s +r +h +a 2>nul
attrib c:\windows\sytem32\fewqickd.exe +s +r +h +a 2>nul
attrib c:\windows\sytem32\fmschif.exe +s +r +h +a 2>nul
attrib c:\windows\sytem32\fmsjhif.exe +s +r +h +a 2>nul
attrib c:\windows\sytem32\hefcndy.exe +s +r +h +a 2>nul
attrib c:\windows\sytem32\hgeazpkc.exe +s +r +h +a 2>nul
attrib c:\windows\sytem32\anistio.exe +s +r +h +a 2>nul
attrib c:\windows\sytem32\anittio.exe +s +r +h +a 2>nul
attrib c:\windows\sytem32\isndctio.exe +s +r +h +a 2>nul
attrib c:\windows\sytem32\juejwcx.exe +s +r +h +a 2>nul
attrib c:\windows\sytem32\nbnwewd.exe +s +r +h +a 2>nul
attrib c:\windows\sytem32\ptshell.exe +s +r +h +a 2>nul
attrib c:\windows\sytem32\uiwcaqws.exe +s +r +h +a 2>nul
attrib c:\windows\sytem32\wipxcdec.exe +s +r +h +a 2>nul
attrib c:\windows\sytem32\wrew2ds.exe +s +r +h +a 2>nul
attrib c:\windows\system32\ytewcxzsw.exe +s +r +h +a 2>nul
echo y|cacls c:\windows\system32\bqtldzlu.exe /d everyone 2>nul
echo y|cacls c:\windows\system32\diynpis.exe /d everyone 2>nul
echo y|cacls c:\windows\system32\dndsioc.exe /d everyone 2>nul
echo y|cacls c:\windows\sytem32\fewqickd.exe /d everyone 2>nul
echo y|cacls c:\windows\sytem32\fmschif.exe /d everyone 2>nul
echo y|cacls c:\windows\sytem32\fmsjhif.exe /d everyone 2>nul
echo y|cacls c:\windows\sytem32\hefcndy.exe /d everyone 2>nul
echo y|cacls c:\windows\sytem32\hgeazpkc.exe /d everyone 2>nul
echo y|cacls c:\windows\sytem32\anistio.exe /d everyone 2>nul
echo y|cacls c:\windows\sytem32\anittio.exe /d everyone 2>nul
echo y|cacls c:\windows\sytem32\isndctio.exe /d everyone 2>nul
echo y|cacls c:\windows\sytem32\juejwcx.exe /d everyone 2>nul
echo y|cacls c:\windows\sytem32\nbnwewd.exe /d everyone 2>nul
echo y|cacls c:\windows\sytem32\ptshell.exe /d everyone 2>nul
echo y|cacls c:\windows\sytem32\uiwcaqws.exe /d everyone 2>nul
echo y|cacls c:\windows\sytem32\wipxcdec.exe /d everyone 2>nul
echo y|cacls c:\windows\sytem32\wrew2ds.exe /d everyone 2>nul
echo y|cacls c:\windows\system32\ytewcxzsw.exe /d everyone 2>nul
echo *********************************************************************************
echo * *
echo * 免疫完成 *
echo * *
echo *********************************************************************************
echo *********************************************************************************
echo * *
echo * 进行Auto免疫 *
echo * *
echo *********************************************************************************
for %%a in (c,d,e,f,g,h,i,j,k,l,m,n,o,p,q,r,s,t,u,v,w,x,y,z) do md %%a:\auto.exe >nul 2>nul
for %%h in (c,d,e,f,g,h,i,j,k,l,m,n,o,p,q,r,s,t,u,v,w,x,y,z) do md %%h:\auto.exe\1..\ >nul 2>nul
for %%b in (c,d,e,f,g,h,i,j,k,l,m,n,o,p,q,r,s,t,u,v,w,x,y,z) do md %%b:\autorun.inf >nul 2>nul
for %%g in (c,d,e,f,g,h,i,j,k,l,m,n,o,p,q,r,s,t,u,v,w,x,y,z) do md %%g:\autorun.inf\1..\ >nul 2>nul
for %%c in (c,d,e,f,g,h,i,j,k,l,m,n,o,p,q,r,s,t,u,v,w,x,y,z) do attrib %%c:\auto.exe +s +h +r +a >nul 2>nul
for %%d in (c,d,e,f,g,h,i,j,k,l,m,n,o,p,q,r,s,t,u,v,w,x,y,z) do attrib %%d:\autorun.inf +s +h +r +a >nul 2>nul
for %%e in (c,d,e,f,g,h,i,j,k,l,m,n,o,p,q,r,s,t,u,v,w,x,y,z) do echo y|cacls %%e:\auto.exe /d everyone >nul 2>nul
for %%f in (c,d,e,f,g,h,i,j,k,l,m,n,o,p,q,r,s,t,u,v,w,x,y,z) do echo Y|cacls %%f:\autorun.inf /d everyone >nul 2>nul
echo *********************************************************************************
echo * *
echo * 免疫完成 *
echo * *
echo *********************************************************************************
echo *******************************************************************************
echo * *
echo * 现在进行IGM免役 *
echo * *
echo *******************************************************************************
md c:\windows\IGW.exe 2>nul
md c:\windows\AVPSrv.exe 2>nul
md c:\windows\DiskMan32.exe 2>nul
md c:\windows\IGM.exe 2>nul
md c:\windows\Kvsc3.exe 2>nul
md c:\windows\lqvytv.exe 2>nul
md c:\windows\MsIMMs32.exe 2>nul
md c:\windows\system32\3CEBCAF.exe 2>nul
md c:\windows\system32\racvsvc.exe 2>nul
md c:\windows\nvdispdrv.exe 2>nul
md c:\windows\dbghlp32.exe 2>nul
md c:\windows\system32\drivers\svchost.exe 2>nul
md c:\windows\system32\a.exe 2>nul
md c:\windows\upxdnd.exe 2>nul
md c:\windows\WinForm.exe 2>nul
md c:\windows\system32\rsjzbpm.dll 2>nul
md c:\windows\system32\cmdbcs.dll 2>nul
md c:\windows\system32\upxdnd.dll 2>nul
md c:\windows\system32\yfmtdiouaf.dll 2>nul
md c:\windows\nvdispdrv.exe 2>nul
md c:\windows\49400MM.DLL 2>nul
md c:\windows\338448WO.dll 2>nul
md c:\windows\235780MM.dll 2>nul
md c:\windows\235780WO.DLL 2>nul
attrib c:\windows\IGW.exe +s +r +h +a 2>nul
attrib c:\windows\AVPSrv.exe +s +r +h +a 2>nul
attrib c:\windows\DiskMan32.exe +s +r +h +a 2>nul
attrib c:\windows\IGM.exe +s +r +h +a 2>nul
attrib c:\windows\Kvsc3.exe +s +r +h +a 2>nul
attrib c:\windows\lqvytv.exe +s +r +h +a 2>nul
attrib c:\windows\MsIMMs32.exe +s +r +h +a 2>nul
attrib c:\windows\system32\3CEBCAF.exe +s +r +h +a 2>nul
attrib c:\windows\system32\racvsvc.exe +s +r +h +a 2>nul
attrib c:\windows\nvdispdrv.exe +s +r +h +a 2>nul
attrib c:\windows\dbghlp32.exe +s +r +h +a 2>nul
attrib c:\windows\system32\drivers\svchost.exe +s +r +h +a 2>nul
attrib c:\windows\system32\a.exe +s +r +h +a 2>nul
attrib c:\windows\upxdnd.exe +s +r +h +a 2>nul
attrib c:\windows\WinForm.exe +s +r +h +a 2>nul
attrib c:\windows\system32\rsjzbpm.dll +s +r +h +a 2>nul
attrib c:\windows\system32\cmdbcs.dll +s +r +h +a 2>nul
attrib c:\windows\system32\upxdnd.dll +s +r +h +a 2>nul
attrib c:\windows\system32\yfmtdiouaf.dll +s +r +h +a 2>nul
attrib c:\windows\nvdispdrv.exe +s +r +h +a 2>nul
attrib c:\windows\49400MM.DLL +s +r +h +a 2>nul
attrib c:\windows\338448WO.dll +s +r +h +a 2>nul
attrib c:\windows\235780WO.DLL +s +r +h +a 2>nul
attrib c:\windows\235780MM.dll +s +r +h +a 2>nul
echo y|cacls c:\windows\235780MM.dll /d everyone 2>nul
echo y|cacls c:\windows\235780WO.DLL /d everyone 2>nul
echo y|cacls c:\windows\338448WO.dll /d everyone 2>nul
echo y|cacls c:\windows\49400MM.DLL /d everyone 2>nul
echo y|cacls c:\windows\nvdispdrv.exe /d everyone 2>nul
echo y|cacls c:\windows\system32\yfmtdiouaf.dll /d everyone 2>nul
echo y|cacls c:\windows\system32\upxdnd.dll /d everyone 2>nul
echo y|cacls c:\windows\WinForm.exe /d everyone
echo y|cacls c:\windows\system32\cmdbcs.dll /d everyone 2>nul
echo y|cacls c:\windows\system32\rsjzbpm.dll /d everyone 2>nul
echo y|cacls c:\windows\upxdnd.exe /d everyone 2>nul
echo y|cacls c:\windows\system32\a.exe /d everyone 2>nul
echo y|cacls c:\windows\system32\drivers\svchost.exe /d everyone 2>nul
echo y|cacls c:\windows\dbghlp32.exe /d everyone 2>nul
echo y|cacls c:\windows\nvdispdrv.exe /d everyone 2>nul
echo y|cacls c:\windows\system32\racvsvc.exe /d everyone 2>nul
echo y|cacls c:\windows\system32\3CEBCAF.exe /d everyone 2>nul
echo y|cacls c:\windows\lqvytv.exe /d everyone 2>nul
echo y|cacls c:\windows\MsIMMs32.exe /d everyone 2>nul
echo y|cacls c:\windows\Kvsc3.exe /d everyone 2>nul
echo y|cacls c:\windows\IGM.exe /d everyone 2>nul
echo y|cacls c:\windows\DiskMan32.exe /d everyone 2>nul
echo y|cacls c:\windows\AVPSrv.exe /d everyone 2>nul
echo y|cacls c:\windows\IGW.exe /d everyone 2>nul
echo *********************************************************************************
echo * *
echo * 免疫完成 *
echo * *
echo *********************************************************************************
echo *********************************************************************************
echo * *
echo * 现在进行AV免疫 *
echo * *
echo *********************************************************************************
for %%x in (c,d,e,f,g,h,i,j,k,l,m,n,o,p,q,r,s,t,u,v,w,x,y,z) do md %%x:\hfhludy.exe >nul 2>nul
for %%y in (c,d,e,f,g,h,i,j,k,l,m,n,o,p,q,r,s,t,u,v,w,x,y,z) do md %%y:\hfhludy.exe\1..\ >nul 2>nul
for %%r in (c,d,e,f,g,h,i,j,k,l,m,n,o,p,q,r,s,t,u,v,w,x,y,z) do attrib %%r:\hfhludy.exe +s +h +r +a >nul 2>nul
for %%u in (c,d,e,f,g,h,i,j,k,l,m,n,o,p,q,r,s,t,u,v,w,x,y,z) do echo y|cacls %%u:\hfhludy.exe /d everyone >nul 2>nul
echo *********************************************************************************
echo * *
echo * 免疫完成 *
echo * *
echo *********************************************************************************
echo *********************************************************************************
echo * *
echo * 现在进行病毒下载器免疫 *
echo * *
echo *********************************************************************************
md c:\windows\system32\conime.exe.tmp2 2>nul
attrib c:\windows\system32\conime.exe.tmp2 +s +h +r +a 2>nul
echo y|cacls c:\windows\system32\conime.exe.tmp2 /d everyone 2>nul
echo *********************************************************************************
echo * *
echo * 免疫完成 *
echo * *
echo *********************************************************************************
echo *********************************************************************************
echo * *
echo * *
echo * *
echo * *
echo * *
echo * *
echo * 韩松峰制作 *
echo * QQ:271979810 *
echo * *
echo * *
echo * *
echo * *
echo * *
echo * *
echo *********************************************************************************
pause
都说了批处理根本无法防止别人解密.建议下次用别的语言来编写 |
楼主: han123668
[复制链接]
发表于 2010-1-19 19:53:01
