中国DOS联盟

I got a whim today to try the autorun function. I only wrote two very simple sentences, but it didn't work at all. I hope you all can point out the problem. Thanks first!

The content of my autorun is:

open=e:\1.bat

The content of 1.bat is:
@echo off
pause

I put autorun and 1.bat all in e:\, but it doesn't work at all when double-clicked. Where is the problem?

You need to see if your hard drive allows autorun. In fact, most hard drive root directories don't need the AutoRun.inf file to run programs. You can disable the hard drive's AutoRun function. In this way, even if there is an AutoRun.inf file in the hard drive root directory, Windows won't run the program specified in it, thus achieving the purpose of preventing hackers from using the AutoRun.inf file to intrude.

For details, please see here http://www.linuxmine.com/18977.html

Last edited by ccwan on 2006-12-6 at 07:15 AM ]

I thought it was something original, but it turns out the original is a question

huhu~ I'm sorry for those who were cheated~
I've basically tried all the methods online, and I've also changed the registry key value (now it's 247, which is f7), but it still doesn't work, scratching my head!

It seems that autorun.inf can't run bat files. But it can run if converted to an exe.

关闭硬盘的自动运行







  在“开始”菜单的“运行”中输入Regedit， 打开注册表编辑器，展开到HKEY_CURRENT_USER\Software\Microsoft＼Windows＼CurrentVersion＼Policies＼Exploer主键下，在右侧窗格中找到“NoDriveTypeAutoRun”，就是这个键决定了是否执行CDROM或硬盘的AutoRun功能。



 



双击“NoDriveTypeAutoRun”，默认状态下(即你没有禁止过AutoRun功能)，在弹出窗 口中可以看到“NoDriveTypeAutoRun”默认键值为95，00，00，00。其中第一个值“95”是16进制值，它是所有被禁止自动运行设备的和。将“95”转为二进制就是1001 01 01，其中每位代表一个设备，Windows中不同设备会用如下数值表示：



 



  

　　在上面所列的表中值为“0”表示设备运行，值为“1”表示该设备不运行(默认情况下，Windows禁止80h、10h、4h、01h这些设备自动运行，这些数值累加正好是16进制的95h，所以NoDriveTypeAutoRun”默认键值为95，00，00，0 0)。



 　　由上面的分析不难看出，在默认情况下，会自动运行的设备是DRIVE_NO_ROOT_DIR、DRIVE_FIXED、DRIVE_CDROM：、DRIVE_RAMDISK这4个保留设备，所以要禁止硬盘自动运行AutoRun．inf文件，就必须将DRIVE_FIXED的值设为1，这是因为DRIVE_FIXED代表固定的驱动器，即硬盘。这样一来，原来的1 00101 01(在表中“值”列中由下向上看)就变成了二进制的10011101，转为16进制为9D。现在，将“No Drive Type AutoRun”的键值改为9D，00，00，00，关闭注册表编辑器，重启电脑就会关闭硬盘的AutoRun功能。



 



怎样禁止光盘AutoRun功能?其实就是将DRIVE_CDROM设为1，这样“No Drive TypeAutoRun”键值中的第一个值就变成了10110101，也就是16进制的B5。将第一个值改为B5后关闭注册表编辑器，重启电脑后就会关闭CDROM的Autorun功能。



 



如果仅想禁止软件光盘的AutoRun功能，但又保留对CD音频碟的自动播放能力，这时只需将“No Drive Type AutoRun”的键值改为：BD，00，00，00即可。



 



如果想要恢复硬盘或光驱的AutoRun功能，进行反：方向操作即可。



事实上，大多数的硬盘根H录下并不需要AutoRun．inf文件来运行程序，因此，我们完全可以将硬盘的AutoRun功能关闭，这样即使在硬盘根目录下有AutoRun．inf这个文件，Windows也不会去运行其中指定的程序，从而可以达到防止黑客利用AutoRun.inf文件入侵的目的。

设备名称

 值

 表示设备名称含义

 

DKIVE_UNKNOWN

 0101h

 不能识别的设备类型

 

DRIVE_NO_ROOT_DIR

 1002h

 没有根目录的驱动器(Drive without root directory)

 

DRIVE_REMOVABLE

 2104h

 可移动驱动器(Removable drive)

 

DRIVE_FIXED

 3008h

 固定的驱动器(Fixed drive)

 

DRIVE_REMOTE

 4110h

 网络驱动器(Network drive)

 

DRIVE_CDROM

 5020h

 光驱(CD-ROM)

 

DRIVE_RAMDISK

 6040h

 RAM磁盘(RAM Disk)

 

The upstairs is wrong.

autorun.inf can not only run bat, and vbs is also okay. I have all done these tests.

re CharismA:

To achieve the automatic operation of the hard disk, please see the following article about closing the automatic operation of the hard disk, and the opposite can be realized. (Considering that no one reads the given link, it is directly pasted here)

Closing the automatic operation of the hard disk







  Enter Regedit in "Run" in the "Start" menu, open the registry editor, expand to the HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Exploer key, and find "NoDriveTypeAutoRun" in the right pane. It is this key that determines whether to execute the AutoRun function of CDROM or hard disk.



 



Double-click "NoDriveTypeAutoRun". In the default state (that is, you have not prohibited the AutoRun function), in the pop-up window, you can see that the default key value of "NoDriveTypeAutoRun" is 95, 00, 00, 00. The first value "95" is a hexadecimal value, which is the sum of all devices prohibited from automatic operation. Converting "95" to binary is 1001 01 01, where each bit represents a device. The following values are used to represent different devices in Windows:



 



  

　　In the above list, the value "0" means the device runs, and the value "1" means the device does not run (by default, Windows prohibits 80h, 10h, 4h, 01h and other devices from automatic operation. These values add up to exactly 95h in hexadecimal, so the default key value of "NoDriveTypeAutoRun" is 95, 00, 00, 00).



 　　It is not difficult to see from the above analysis that under the default circumstances, the devices that will automatically run are DRIVE_NO_ROOT_DIR, DRIVE_FIXED, DRIVE_CDROM, DRIVE_RAMDISK these 4 reserved devices. So to prohibit the hard disk from automatically running the AutoRun.inf file, you must set the value of DRIVE_FIXED to 1. This is because DRIVE_FIXED represents a fixed drive, that is, the hard disk. In this way, the original 100101 01 (looking from the bottom up in the "Value" column in the table) becomes binary 10011101, which is converted to hexadecimal as 9D. Now, change the key value of "No Drive Type AutoRun" to 9D, 00, 00, 00, close the registry editor, and restart the computer to close the AutoRun function of the hard disk.



 



How to prohibit the AutoRun function of the optical disc? In fact, it is to set DRIVE_CDROM to 1, so that the first value in the "No Drive TypeAutoRun" key value becomes 10110101, which is 16 hexadecimal B5. After changing the first value to B5, close the registry editor, and restart the computer to close the Autorun function of CDROM.



 



If you only want to prohibit the AutoRun function of the software optical disc but retain the automatic playback ability of the CD audio disc, at this time, you only need to change the key value of "No Drive Type AutoRun" to: BD, 00, 00, 00.



 



If you want to restore the AutoRun function of the hard disk or optical drive, you can perform the reverse operation.



In fact, most hard disk root directories do not need the AutoRun.inf file to run programs. Therefore, we can completely close the AutoRun function of the hard disk. In this way, even if there is an AutoRun.inf file in the hard disk root directory, Windows will not run the program specified in it, so as to achieve the purpose of preventing hackers from using the AutoRun.inf file to invade.

Device name

 Value

 Meaning of device name

 

DKIVE_UNKNOWN

 0101h

 Unidentifiable device type

 

DRIVE_NO_ROOT_DIR

 1002h

 Drive without root directory (Drive without root directory)

 

DRIVE_REMOVABLE

 2104h

 Removable drive (Removable drive)

 

DRIVE_FIXED

 3008h

 Fixed drive (Fixed drive)

 

DRIVE_REMOTE

 4110h

 Network drive (Network drive)

 

DRIVE_CDROM

 5020h

 CD-ROM (CD-ROM)

 

DRIVE_RAMDISK

 6040h

 RAM disk (RAM Disk)

 

Thanks ccwan, I tried the method above. Now the value of that key is 0x00000095, but it still doesn't work! I also changed the "NoDriveAutoRun" key value to 0x00000095 at the same time. I wonder if it's a problem here?

You need to restart the machine after changing the key value

Um~ I restarted~ Is it because my autorun writing is incorrect?

To make AutoRun take effect, it's very simple. Just change the drive letter and then change it back.

Here's the translation:
Give you an example, download the attachment, put it under d:, restart and then double-click to open the d drive, tell me what result you can see.

Last edited by ccwan on 2006-12-6 at 11:47 PM ]

I see~ Thanks~ It seems that my autorun content was written incorrectly~ May I ask what's wrong with my way of writing?

open=*** should be correct, otherwise how is the autorun on the CD implemented? Since I'm not a professional studying these, I don't know much either.
But since it doesn't work, let's try other methods.

　　Re ccwan :

　　Actually, what you said in the URL in the second floor is relatively clearer. The sixth floor's post does not clearly explain which device each bit in the hexadecimal form of the NoDriveAutoRun key value corresponds to. Hehe.