1. look_c_virus.bat(查毒)
@del result.txt
@echo "********查杀前***********" >>result.txt
@dir svhost32.exe logo1_.exe rundl132.exe dll.dll mskey16.dll ztdll.dll tdll.dll msdll.dll bwdll.dll dllwm.dll revtemp.exe 2sy.exe 5sy.exe 6sy.exe logo1.exe 3sy.exe 1sy.exe /b /s >>result.txt
@dir svhost32.exe logo1_.exe rundl132.exe dll.dll mskey16.dll ztdll.dll tdll.dll msdll.dll bwdll.dll dllwm.dll revtemp.exe 2sy.exe 5sy.exe 6sy.exe logo1.exe 3sy.exe 1sy.exe /b /s
@pause
@echo "********查杀前***********" >>result.txt
@dir svhost32.exe logo1_.exe rundl132.exe dll.dll mskey16.dll ztdll.dll tdll.dll msdll.dll bwdll.dll dllwm.dll revtemp.exe 2sy.exe 5sy.exe 6sy.exe logo1.exe 3sy.exe 1sy.exe /b /s >>result.txt
@dir svhost32.exe logo1_.exe rundl132.exe dll.dll mskey16.dll ztdll.dll tdll.dll msdll.dll bwdll.dll dllwm.dll revtemp.exe 2sy.exe 5sy.exe 6sy.exe logo1.exe 3sy.exe 1sy.exe /b /s
@pause
2.重启Exploer
tskill explorer@start "c:\windows\explorer.exe" /minstart d:
3. 杀毒
tskill svhost32
tskill logo1_
tskill rundl132
tskill rundll32
del result.txt
@Regedit /L:C:\Windows\ /R:C:\Windows\Profiles\ /D HKEY_LOCAL_MACHINE\Software\Soft\DownloadWWW
@Regedit /L:C:\Windows\ /R:C:\Windows\Profiles\ /D HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\WIndows\load
@Regedit /L:C:\Windows\ /R:C:\Windows\Profiles\ /D HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
@rem ***********删除病毒************
@del "c:\Program Files\svhost32.exe" /s /f
@del "c:\Program Files\micorsoft\svhost32.exe" /s /f
pause
@del "c:\windows\logo1_.exe" /s /f
@del "c:\windows\rund1132.exe" /s /f
pause
@del "c:\windows\rundl132.exe" /s /f
@del "c:\windows\intel\rundl132.exe" /s /f
@del "c:\windows\dll.dll" /s /f
@del "C:\WINDOWS\system32\mskey16.dll" /s /f
@del "C:\WINDOWS\system32\ztdll.dll" /s /f
@del "C:\WINDOWS\system32\tdll.dll" /s /f
@del "C:\WINDOWS\system32\msdll.dll" /s /f
@del "c:\windows\system32\bwdll.dll" /s /f
@del "C:\WINDOWS\system32\dllwm.dll" /s /f
@del "C:\WINDOWS\system32\revtemp.exe" /s /f
@del "C:\program files\svhost32.exe" /s /f
@del "C:\WINDOWS\command\rundll32.exe" /s /f
@del "c:\program files\intel\rundll32.exe" /s /f
@del "c:\program files\intel\svhost32.exe" /s /f
@del "C:\Program Files\ Microsoft\svhost32.exe" /s /f
@del "c:\program files\internet explorer\2sy.exe" /s /f
@del "c:\program files\internet explorer\5sy.exe" /s /f
@del "c:\program files\internet explorer\6sy.exe" /s /f
@del "C:\windows\1sy.exe" /s /f
@del "C:\WIndows\3sy.exe" /s /f
@del "C:\windows\logo1.exe" /s /f
@del "C:\winnt\1sy.exe" /s /f
@del "C:\WInnt\3sy.exe" /s /f
@del "C:\winnt\logo1.exe" /s /f
@pause
@rem ***********复制文件************
@copy 1.txt "c:\Program Files\svhost32.exe"
@copy 1.txt "c:\Program Files\micorsoft\svhost32.exe"
@copy 1.txt "c:\windows\logo1_.exe"
@copy 1.txt "c:\windows\rund1132.exe"
@copy 1.txt "c:\windows\rundl132.exe"
@copy 1.txt "c:\windows\intel\rundl132.exe"
@copy 1.txt "c:\windows\dll.dll"
@copy 1.txt "C:\WINDOWS\system32\mskey16.dll"
@copy 1.txt "C:\WINDOWS\system32\ztdll.dll"
@copy 1.txt "C:\WINDOWS\system32\tdll.dll"
@copy 1.txt "C:\WINDOWS\system32\msdll.dll"
@copy 1.txt "c:\windows\system32\bwdll.dll"
@copy 1.txt "C:\WINDOWS\system32\dllwm.dll"
@copy 1.txt "C:\WINDOWS\system32\revtemp.exe"
@copy 1.txt "C:\program files\svhost32.exe"
@copy 1.txt "C:\WINDOWS\command\rundll32.exe"
@copy 1.txt "c:\program files\intel\rundll32.exe"
@copy 1.txt "c:\program files\intel\svhost32.exe"
@copy 1.txt "C:\Program Files\ Microsoft\svhost32.exe"
@copy 1.txt "c:\program files\internet explorer\2sy.exe"
@copy 1.txt "c:\program files\internet explorer\5sy.exe"
@copy 1.txt "c:\program files\internet explorer\6sy.exe"
@copy 1.txt "C:\windows\1sy.exe"
@copy 1.txt "C:\WIndows\3sy.exe"
@copy 1.txt "C:\windwos\logo1.exe"
@pause
@rem ***********设置属性************
@attrib +r +h "c:\Program Files\svhost32.exe"
@attrib +r +h "c:\Program Files\micorsoft\svhost32.exe"
@attrib +r +h "c:\windows\logo1_.exe"
@attrib +r +h "c:\windows\rund1132.exe"
@attrib +r +h "c:\windows\rundl132.exe"
@attrib +r +h "c:\windows\intel\rundl132.exe"
@attrib +r +h "c:\windows\dll.dll"
@attrib +r +h "C:\WINDOWS\system32\mskey16.dll"
@attrib +r +h "C:\WINDOWS\system32\ztdll.dll"
@attrib +r +h "C:\WINDOWS\system32\tdll.dll"
@attrib +r +h "C:\WINDOWS\system32\msdll.dll"
@attrib +r +h "c:\windows\system32\bwdll.dll"
@attrib +r +h "C:\WINDOWS\system32\dllwm.dll"
@attrib +r +h "C:\WINDOWS\system32\revtemp.exe"
@attrib +r +h "C:\program files\svhost32.exe"
@attrib +r +h "C:\WINDOWS\command\rundll32.exe"
@attrib +r +h "c:\program files\intel\rundll32.exe"
@attrib +r +h "c:\program files\intel\svhost32.exe"
@attrib +r +h "C:\Program Files\ Microsoft\svhost32.exe"
@attrib +r +h "c:\program files\internet explorer\2sy.exe"
@attrib +r +h "c:\program files\internet explorer\5sy.exe"
@attrib +r +h "c:\program files\internet explorer\6sy.exe"
@attrib +r +h "C:\windows\1sy.exe"
@attrib +r +h "C:\WIndows\3sy.exe"
@attrib +r +h "C:\windwos\logo1.exe"
@
@echo "success!"
@tskill cmd
start d:
@pause
