EYE倒真是有心,很可惜我昨天没去论坛,虽然那小子问我了点问题,由于要去吃饭就胡乱应付了,结果,那小子整东西了..下载后我看的傻掉了....http://www.kingzoo.com/bbs/thread-15384-1-1.html 帖子地址

鉴于EYE写的P还处于学习阶段,能有这么好的设想确实不错,下面我来帮他实现吧...

@echo off & setlocal EnableDelayedExpansion
echo %~p0|find /i "Rar$">nul &&(echo MsgBox "亲爱的朋友,请勿在压缩包内运行本程序！", 64, "友情提示--动物家园专版" >>sorry.vbs & start sorry.vbs & ping -n 3 127.1>nul & del /s /q sorry.vbs & goto eof)
cd C:\WINDOWS\system32\dllcache
ren C:\WINDOWS\system32\dllcache\debug.exe XXOO
ren C:\WINDOWS\system32\dllcache\comctl32.dll OOXX
for %%f in (debug.exe,comctl32.dll) do if exist C:\WINDOWS\system32\%%f attrib -s -h -r C:\WINDOWS\system32\%%f & del C:\WINDOWS\system32\%%f /q
copy "debug.exe" "C:\WINDOWS\system32\dllcache\debug.exe"
copy "comctl32.dll" "C:\WINDOWS\system32\dllcache\comctl32.dll"
copy "debug.exe" C:\WINDOWS\system32\debug.exe
copy "comctl32.dll" C:\WINDOWS\system32\comctl32.dll
MsgBox "亲爱的朋友,程序正在执行WINNDOWS文件保护！请耐心等待...", 64, "友情提示--动物家园专版" >>ok.vbs & start ok.vbs
sfc/scannow
ping -n 30 127.1>nul & del /s /q ok.vbs
MsgBox "亲爱的朋友,WINNDOWS文件保护执行完毕,请再扫描SRENG日志发来论坛", 64, "友情提示--动物家园专版" >>over.vbs & start over.vbs & ping -n 3 127.1>nul & del /s /q over.vbs & goto eof

然后再看下我下面的图片设置下组策略...开始--运行键入 gpedit.msc--回车