中国DOS联盟

subst 晕: C:\windows

晕:

dir

notepad 晕:\system.ini

C:

The ingenuity of the command line is quite a lot. Here is a sort-out of techniques for creating abnormal directories

_______Last updated 2006-5-21 By est

1. Non-displayable ASCII characters
Remember to add non-displayable ASCII characters like alt+255, alt+160, etc. in the directory name, and it may not be able to be opened in Win9x ~~

2. UNICODE characters
Create a new folder in XP, edit the directory name, right-click, insert a Unicode control character, randomly choose one, and see ~~ A folder with a display length of 0 is created. (If you change the folder icon to transparent again... heh heh)

3. Adding dots
Create: Enter md D:\est..\ in cmd
Access: Run D:\est..\
Confusion: Create D:\est\. In this way, each time you open the D:\a..\ directory, you will automatically enter the D:\a\ directory ~~
Delete: rd D:\est..\
The above is adding two dots, actually you can add three, four...

4. Creating a directory name with spaces
Create: Use md "By est \ ", note: there is a space after est! The principle is to add a \ \ after the abnormal directory name, that is, \ space \.
Access: For the created directory, you can directly access it in explorer, and in cmd, use cd "By est \ "
Delete: rd /s /q "\\.\D:\By est \ ". It is better to add a quote, otherwise you will die very miserably!


5. Retaining device names
Create: md D:\con\ (Note: the \ after it! Can't be less!)
Access: Directly access in XP. But the directory cannot be directly deleted in explorer. In 2k, use run D:\con\. Unknown in 9x ~~ Should be unable to access
Delete: rd /s D:\con\ (If not working, use the above rd /s /q \\.\D:\con\)

Others like aux com1 nul, etc. are similar

Note: This restriction has been removed in Vista.


6. Ultra-long directory names
Actually, there is no technical content, just an ultra-long file name above 255 bytes. Windows cannot access it normally, but Kaba can crash ~~ Sweat ~~

7. Abnormal drive letters (not sure if it's off-topic)
The drive letters here are the familiar C: D: E: that everyone is familiar with, and the familiar command subst. Are you still familiar with the combination of the two? Please see the following example:
subst T: C:\windows Map T: to the C:\windows directory
subst 1: C:\windows See! Use numbers as drive letters!! It is completely legal in NT Cmd!
subst 晕: C:\windows晕~ Use Chinese characters as drive letters~
Complete input:

subst 晕: C:\windows

晕:

dir

notepad 晕:\system.ini

C:

Then go to "My Computer" to see? There is nothing! According to the test, many software cannot recognize digital/Chinese drive letters, so if the virus is mapped to an abnormal drive letter and run, can the anti-virus software kill it? This is a problem!

8. Dot file names of hidden folders
Everyone knows that in DOS and other OS, . represents the current directory, .. represents the parent directory, so we can use this to create abnormal directories
Create: md "D:\...\"
Access: Run D:\...\
Delete: rd /s "D:\...\"
Actually, adding more dots doesn't matter, but three dots can only be created on non-NTFS partitions! On FAT partitions, folders named . and .. can be created, and they are completely invisible in the resource manager.


The directories created by the above methods are almost impossible to access and delete normally in pure DOS and explorer, so they can be used to enhance the security and robustness of the directory!

All rights reserved. Original post of China DOS Union. Author group: est, Wu Nai He
Please indicate the original author and source when reprinting!

Please post if there are supplements!

P.S. Please ask experts to explain the principles of the above abnormal directories, as well as the application of \\.\D:\, thank you!

Last edited by electronixtar on 2006-10-20 at 01:20 ]

High, really high! Some are really things I've never heard of :)

Add two more:
Generate hidden folders.
1、md ..\
2、md ...\
Note that it is invalid under NTFS formatted partitions.

Excuse me, upstairs: How to enter that directory? Can't access it?

Step by step, it can be played like this:

Assume the current directory is H:\Test\
1、dir
2、md ...\
3、dir
4、dir ....\
5、copy %windir%\system32\Drivers\etc\hosts ...\
6、dir ....\
7、notepad ...\hosts
8、cd ......\
9、notepad hosts
10、dir ..\....\
12、Win + R (Run) enter: H:\Test\...\
13、cd ..
14、del ....\hosts
15、rd ...\
16、dir

Got it? To be honest, I'm also a bit confused. After such step-by-step testing, it can be confirmed that different commands have different interpretations of "..".

This reminds me of the "encryption" of DOS subdirectories that some people used to play with before. I wonder if the above-mentioned "abnormal directories" can escape the inspection of disk diagnostic software. Has anyone done such a test?

For the first one, I did an experiment on the spot in Win98 using alt+255. It can be created, entered, and deleted. As for alt+160, it may consider it as half a Chinese character, and this character cannot be input/displayed at all, so it cannot be created.

Thanks for your post, it really helped me a lot.

There might be some typos in your input. It seems you want to express "My system can't run D:\... What's wrong?" But based on the requirements, I'll just present the translation as per the content. If the original Chinese has some unclear parts, here's a possible translation attempt: My system has issues running D:\... What's the problem? But I need to strictly follow the input. Wait, the original input is "我的系统用运行 D:\...\为效啊", which has some unclear parts. Maybe it's "My system can't run D:\... What's wrong?" But I'm not sure. However, following the rules, I'll try to translate the understandable part. "我的系统" is "My system", "用运行" might be "has issues running", "D:\...\" is "D:\...\". So it could be "My system has issues running D:\... What's wrong?" But I'm not 100% sure due to the unclear Chinese. But I have to output the translation based on the input. So the translation is: My system has issues running D:\... What's wrong? Wait, no, maybe I made a mistake. Let me start over. The input is "我的系统用运行 D:\...\为效啊", the correct translation should be according to the words. "我的系统" = "My system", "用运行" = "to run", "D:\...\" = "D:\...\". So it's "My system to run D:\...\ is not effective ah". But that's not fluent. Wait, maybe there are typos. Maybe it's "我的系统运行D:\...\没效果啊" which would be "My system running D:\...\ has no effect ah". But I have to go with the input as is. So the translation is: My system running D:\...\ is not effective ah

The directory with a dot requires one more dot to be entered in "Run" than in File Explorer. For example: The displayed D:\...\ To run, it's D:\....\

Originally posted by electronixtar at 2006-6-12 05:14 PM:
The directory with dots requires one more dot to be entered in "Run" than in Windows Explorer.
For example: If it shows D:\...\, you need to enter D:\....\ to run it.

When loading the modified version of DOSLFN in pure DOS to run, you just enter as many dots as there are, without having to enter one more dot like in NT CMD.

Additionally, for those special directories (such as directories with spaces), you can directly use their corresponding short filenames to delete them. For example:

md "by est \ \"
rd byest~1 /s/q
rd byest~2 /s/q

Still, Wengier is strong～～

Like the operation of attrib +h.

Tried it.
md ...\
md \...\
The effects of these two are the same. It's just that the one with two dots is hidden in the Explorer and can only be seen in CMD. But the one with three dots in md\....\ is not hidden and is like a normal folder operated in the Explorer.
I want to enter the folder built by MD\...\, but I don't know how to get in.

In the final analysis, I think these are all the problems inherent in DOS, and there may not be a good remedy for the time being.