China DOS Union

-- Unite DOS · Advance DOS · Grow DOS --

Union site: www.cn-dos.net　Forum site: www.cn-dos.net/forum
DOS stands for freedom, openness and progress. Let us work hard, learn from the openness and GNU spirit of FreeDOS and Linux, and together build and grow a free GNU GPL world!

Guest Register Log in Members Blogs Search Command Prompt Bash Upload Statistics

中国DOS联盟论坛
The time now is 2026-06-20 20:33

Welcome new member cai339027637　 RSS
47,998 topics / 350,072 posts / today 0 new / 48,213 members 不转换/ 简体中文/ 繁體中文（台灣）/ 繁體中文（香港）

中国DOS联盟论坛 » DOS批处理 & 脚本技术（批处理室） » Batch programs used by hackers View 15,011　Replies 16

Original Poster Posted 2006-12-27 12:42　·　中国陕西西安电信

40szb

初级用户

★

Credits 46
Posts 21
Joined 2006-12-25 14:28
19-year member
UID 74536
Gender Male
From 西安

Status Offline

There is a batch program for hackers, hope everyone likes it.

1.bat

@echo off
Color 0A
cls
echo ------------------------
echo +Delete current system share directories+
echo ------------------------
pause
net stop Server
net share c$ /delete
net share d$ /delete
net share e$ /delete
net share f$ /delete
net share admin$ /delete
net share ipc$ /delete
net start Server
cls
echo Congratulations
echo ------------------------
echo +All share directories have been deleted+
echo ------------------------
echo + The following will modify registry entries +
echo + +
echo +Close system default share attributes +
echo ------------------------
pause
echo Generate delshare.reg to prepare for modifying registry
echo Windows Registry Editor Version 5.00> c:\delshare.reg
echo >> c:\delshare.reg
echo "AutoShareWks"=dword:00000000>> c:\delshare.reg
echo "AutoShareServer"=dword:00000000>> c:\delshare.reg
echo Run delshare.reg to modify registry
regedit /s c:\delshare.reg
echo Delete delshare.reg temporary file
del c:\delshare.reg
cls
echo Congratulations
echo ----------------------
echo + Share vulnerability repair completed +
echo ----------------------
pause
call 9.bat

2.bat

@echo off
Color 0A
cls
echo --------------------------------------
echo +Next we will modify registry to increase system security+
echo + (Resist a certain strength of Ddos attack) +
echo --------------------------------------
pause
echo Generate registry temporary file
echo Windows Registry Editor Version 5.00> c:\dosforwin.reg
echo >> c:\dosforwin.reg
echo "EnableICMPRedirect"=dword:00000000>> c:\dosforwin.reg
echo "DeadGWDetectDefault"=dword:00000001>> c:\dosforwin.reg
echo "DontAddDefaultGatewayDefault"=dword:00000000>> c:\dosforwin.reg
echo "EnableSecurityFilters"=dword:00000000">> c:\dosforwin.reg
echo "AllowUnqualifiedQuery"=dword:00000000>> c:\dosforwin.reg
echo "PrioritizeRecordData"=dword:00000001>> c:\dosforwin.reg
echo "ReservedPorts"=hex(7):31,00,34,00,33,00,33,00,2d,00,31,00,34,00,33,00,34,00,\>> c:\dosforwin.reg
echo 00,00,00,00>> c:\dosforwin.reg
echo "SynAttackProtect"=dword:00000002>> c:\dosforwin.reg
echo "EnablePMTUDiscovery"=dword:00000000>> c:\dosforwin.reg
echo "NoNameReleaseOnDemand"=dword:00000001>> c:\dosforwin.reg
echo "EnableDeadGWDetect"=dword:00000000>> c:\dosforwin.reg
echo "KeepAliveTime"=dword:00300000>> c:\dosforwin.reg
echo "PerformRouterDiscovery"=dword:00000000>> c:\dosforwin.reg
echo "EnableICMPRedirects"=dword:00000000>> c:\dosforwin.reg
echo =============================
echo Run dosforwin.reg to modify registry
regedit /s c:\dosforwin.reg
echo Delete dosforwin.reg temporary file
del c:\dosforwin.reg
echo =============================
cls
echo Congratulations
echo ----------------------------
echo +Your computer's ability to defend against DDOS has been enhanced+
echo ----------------------------
pause
call 9.bat

3.bat

@echo off
Color 0A
cls
echo ----------------------------------
echo +Next we will disable some insecure services+
echo + (To increase system security) +
echo ----------------------------------
pause
echo Disable telnet to prevent remote opening of telnet.
echo Generate registry temporary file.
echo Windows Registry Editor Version 5.00> c:\telnet.reg
echo >> c:\telnet.reg
echo "Start"=dword:00000004>> c:\telnet.reg
echo Run telnet.reg to modify registry
regedit /s c:\telnet.reg
echo Delete telnet.reg temporary file
del c:\telnet.reg
echo =================================================
echo Disable Remote Registry Service to prevent remote registry operation
echo Generate registry temporary file
echo Windows Registry Editor Version 5.00> c:\regedit.reg
echo >> c:\regedit.reg
echo "Start"=dword:00000004>> c:\regedit.reg
echo Run regedit.reg to modify registry
regedit /s c:\regedit.reg
echo Delete temporary file
del c:\regedit.reg
echo =================================================
echo Disable Messenger to prevent message spam
echo Generate registry temporary file
echo Windows Registry Editor Version 5.00> c:\message.reg
echo >> c:\message.reg
echo "Start"=dword:00000004>> c:\message.reg
echo Run message.reg to modify registry
regedit /s c:\message.reg
echo Delete message.reg
del c:\message.reg
echo =================================================
echo Close TCP/IP NetBIOS Helper Service
echo Generate registry temporary option
echo Windows Registry Editor Version 5.00> c:\netbios.reg
echo >> c:\netbios.reg
echo "Start"=dword:00000004>> c:\netbios.reg
echo Run netbios.reg to modify registry
regedit /s c:\netbios.reg
echo Delete netbios.reg
del c:\netbios.reg
echo =================================================
cls
echo Congratulations
echo ----------------------------
echo + Your computer is much safer +
echo ----------------------------
pause
call 9.bat

4.bat

@echo off
Color 0A
cls
echo --------------------
echo + Modify TCP/IP filter +
echo + To enhance defense ability +
echo --------------------
pause
echo Generate registry temporary file
echo Windows Registry Editor Version 5.00> c:\ports.reg
echo >> c:\ports.reg
echo "TCPAllowedPorts"=hex(7):32,00,30,00,00,00,32,00,31,00,00,00,32,00,35,00,00,00,\>> c:\ports.reg
echo 35,00,33,00,00,00,38,00,30,00,00,00,31,00,31,00,30,00,00,00,31,00,34,00,33,\>> c:\ports.reg
echo 00,33,00,00,00,33,00,33,00,38,00,39,00,00,00,35,00,36,00,33,00,31,00,00,00,\>> c:\ports.reg
echo 35,00,36,00,33,00,32,00,00,00,00,00>> c:\ports.reg
echo Run ports.reg to modify registry
regedit /s c:\ports.reg
echo Delete c:\ports.reg
del c:\ports.reg
cls
echo Congratulations
echo ------------------------
echo + Modify TCP/IP filter completed +
echo ------------------------
pause
call 9.bat

5.bat

@echo off
Color 0A
cls
echo ===============================================================
echo * Windows2000 System Vulnerability Basic Repair Program *
echo ===============================================================
echo * Thank you for using, hope you continue to support us *
echo * WeiLan SKY Network Security Alliance *
echo * HTTP://WWW.WeiLanSKY.COM *
echo * weilansky-ghost@TOM.COM *
echo * QQ：21211969 *
echo * Ghost June 1, 2003 *
echo ===============================================================
echo The following program will automatically clear from your computer and exit CMD mode
pause
del 0.bat
del 1.bat
del 2.bat
del 3.bat
del 4.bat
del 9.bat
exit

9.bat

@echo off
Color 0A
cls
echo ===================================
echo + Windows2000 System Security Vulnerability Repair +
echo -----------------------------------
echo + Function Main Menu +
echo ===================================
echo + 1——Repair system share vulnerability +
echo + 2——Enhance defense against DDOS ability +
echo + 3——Disable insecure services +
echo + 4——Modify TCP/IP filter +
echo + 5——Exit and return to window interface +
echo ===================================
echo Please directly continue to enter the function code you need to execute
echo {1 2 3 4 5} and press Enter
echo ===================================

WeiLan SKY Network Security Alliance Vulnerability Repair Tool

Windows2000 System Security Vulnerability Repair

Author: Ghost

This program repairs the following vulnerabilities
WIN2000 default share vulnerability
Disabled Telnet service to prevent remote opening of Ttelnet
Disabled Remote Registry Service to prevent remote registry operation
Disabled Messenger service to prevent message spam
Closed TCP/IP NetBIOS Helper Service
Modified TCP/IP filter
Improved ability to resist DDOS attacks

This program is copyrighted by WeiLan SKY Network Security Alliance Ghost
Any unit and individual can reprint, please indicate the copyright

[ Last edited by 40szb on 2006-12-27 at 01:08 AM ]

Floor 2 Posted 2006-12-27 12:50　·　中国广东电信

namejm

荣誉版主

★★★★

batch fan

Credits 5,226
Posts 1,737
Joined 2006-03-10 00:38
20-year member
UID 51697
From 成都

Status Offline

Where is the code or program?

尺有所短，寸有所长，学好CMD没商量。
考虑问题复杂化，解决问题简洁化。

Floor 3 Posted 2006-12-27 12:57　·　中国湖北武汉电信

lxmxn

版主

★★★★★

Credits 11,386
Posts 4,938
Joined 2006-07-23 17:10
19-year member
UID 59080

Status Offline

　　Sweat one...

Floor 4 Posted 2006-12-27 12:58　·　中国河南许昌电信

zh159

金牌会员

★★★★

Credits 3,687
Posts 1,467
Joined 2005-08-08 12:00
20-year member
UID 44210

Status Offline

It's very dark, so dark that you can't see the program code ^_^

Floor 5 Posted 2006-12-27 13:30　·　中国四川成都教育网

electronixtar

铂金会员

★★★★

Credits 7,493
Posts 2,672
Joined 2005-09-02 00:00
20-year member
UID 42173
Gender Male

Status Offline

It turns out it's really dark, all the posts we made have been blacked out

Floor 6 Posted 2006-12-27 14:29　·　新西兰奥克兰大区奥克兰 Microsoft

PPdos

高级用户

★★

Credits 783
Posts 268
Joined 2006-12-26 17:18
19-year member
UID 74627
Gender Male

Status Offline

Floor 7 Posted 2006-12-27 16:05　·　中国四川成都教育网

electronixtar

铂金会员

★★★★

Credits 7,493
Posts 2,672
Joined 2005-09-02 00:00
20-year member
UID 42173
Gender Male

Status Offline

This can also be considered as hackers~~ Hackers in mainland China吧

Floor 8 Posted 2006-12-27 20:11　·　中国辽宁大连教育网

IceCrack

中级用户

★★

DOS之友

Credits 332
Posts 168
Joined 2005-10-06 00:00
20-year member
UID 43171
Gender Male
From 天涯

Status Offline

测试环境: windows xp pro sp2 高手是这样炼成的:C:\WINDOWS\Help\ntcmds.chm

Floor 9 Posted 2006-12-27 22:18　·　中国北京联通

9527

银牌会员

★★★

努力做坏人

Credits 1,185
Posts 438
Joined 2006-08-28 12:00
19-year member
UID 61449
From 北京

Status Offline

I see it more like a P processing used by a company network administrator, and it has nothing to do with hackers

我今后在论坛的目标就是做个超级坏人！！！

Floor 10 Posted 2006-12-27 23:11　·　中国北京中国科学院研究生院

scriptor

银牌会员

★★★

Credits 1,187
Posts 555
Joined 2006-12-21 07:35
19-year member
UID 74129
Gender Male

Status Offline

It seems quite powerful!

Floor 11 Posted 2006-12-27 23:20　·　中国湖北武汉电信

lxmxn

版主

★★★★★

Credits 11,386
Posts 4,938
Joined 2006-07-23 17:10
19-year member
UID 59080

Status Offline

Floor 12 Posted 2006-12-28 06:35　·　中国甘肃甘南藏族自治州合作市电信

vkill

金牌会员

★★★★

Credits 4,103
Posts 1,744
Joined 2006-01-20 13:00
20-year member
UID 49241
Gender Male
From 甘肃.临泽

Status Offline

Just some commonly used registry files.

Floor 13 Posted 2006-12-28 06:46　·　中国北京朝阳区联通

tao0610

高级用户

★★

朦胧的世界

Credits 579
Posts 218
Joined 2006-10-24 04:29
19-year member
UID 67972

Status Offline

Actually an old red hacker.

认识自己，降伏自己，改变自己，才能改变别人！

Floor 14 Posted 2007-11-30 22:51　·　中国广东东莞电信

hpwsb

初级用户

★

Credits 31
Posts 16
Joined 2006-12-19 15:55
19-year member
UID 73967
Gender Male

Status Offline

Need to be a bit technical when blacking out

Floor 15 Posted 2007-12-05 17:31　·　中国湖北荆门移动

33223169

新手上路

★

Credits 7
Posts 4
Joined 2007-12-05 12:57
18-year member
UID 104732
Gender Male

Status Offline

I saw it. It's a very common optimization

Printable Version | Subscribe | Add to Favorites

Forum Jump: