@echo off
:MAIN
cls
color fc
echo #######################################
echo #                                     #
echo #     欢迎使用Windows一键运维脚本     #
echo #                                     #
echo #         请使用管理员运行！          #
echo #                                     #
echo #######################################
echo=
echo         1.一键开启远程桌面
echo=
echo         2.修改远程桌面端口
echo=
echo         3.查看远程桌面端口
echo=
echo         4.一键开启ICMP回显
echo=
echo         5.一键修改用户密码
echo=
echo         6.一键梭哈
echo=
echo         7.按Q键退出
echo=
set /p choice=请输入您的选择：
if %choice% == 1 (
			goto OPENRDP )
if %choice% == 2 (
			goto REVISE )
if %choice% == 3 (
			goto LOOK )
if %choice% == 4 (
			goto ICMP )	
if %choice% == 5 (
			goto PASSWD)	
if %choice% == 6 (
			goto ALL)	
if %choice% == "Q" (
			goto EXIT )	

:EXIT
exit
goto :eof

:LOOK
cls
echo 正在查询远程端口，请稍后...
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp" /v PortNumber
echo 远程端口已查询完毕！
echo=
pause
goto MAIN

::############开启远程桌面#################
:OPENRDP
cls
echo 正在开启远程桌面，请稍后...
echo Windows Registry Editor Version 5.00>3389.reg
echo [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server]>>3389.reg
echo "fDenyTSConnections"=dword:00000000>>3389.reg
echo [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\Tds\tcp]>>3389.reg
echo "PortNumber"=dword:00000d3d>>3389.reg
echo [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp]>>3389.reg
echo "PortNumber"=dword:00000d3d>>3389.reg
regedit /s 3389.reg
del 3389.reg
echo=
echo 远程桌面已经开启！
echo=
pause
goto MAIN


::############修改远程桌面端口#################
:REVISE
cls
set port=3389
set /p port=请输入新的远程桌面端口号并按回车确认:
REG ADD "HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\Rdpwd\Tds\Tcp" /v PortNumber /t REG_DWORD /d %port% /f
REG ADD "HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp" /v PortNumber /t REG_DWORD /d %port% /f
echo 正在添加防火墙规则放行远程桌面端口
set firewallrulename=Allow Remote Desktop Port
netsh advfirewall firewall show rule name="%firewallrulename%" >nul
if not ERRORLEVEL 1 (
	echo 对不起，Firewall规则%firewallrulename%已经存在，将删除已存在相同名字的规则,重新创建Firewall规则放行远程桌面服务端口
netsh advfirewall firewall delete rule name="%firewallrulename%"
netsh advfirewall firewall add rule name="%firewallrulename%" dir=in protocol=tcp localport=%port% action=allow
) else (
	echo 新增Firewall放行远程桌面服务端口规则%firewallrulename%
netsh advfirewall firewall add rule name="%firewallrulename%" dir=in protocol=tcp localport=%port% action=allow
)

echo 系统即将在10秒后重置远程桌面服务，将会断开远程连接，断开后请稍片刻然后使用新端口登陆
>nul ping 127.0.0.1 /n 10
net stop termservice /y && net start termservice >nul
echo=
echo 远程端口已经修改完毕！
echo=
pause
goto MAIN

::############开启ICMP回显#################
:ICMP
cls
netsh firewall set icmpsetting 8
echo ICMP已开启完毕！
echo=
pause
goto MAIN

:PASSWD
echo=
echo 以下是本机的用户：
net user
echo=
set /p user=请输入您要修改的用户名：
echo=
If /I "%user%"=="" (
	echo 用户名不能为空！
	echo=
	pause
	goto MAIN)
echo=
echo 您选择的用户是%user%
echo=
set /p pass=请输入您要设定的密码：
echo=
If /I "%pass%"=="" (
	echo 密码不能为空！
	echo=
	pause
	goto MAIN )
net user %user% %pass% >nul
echo 恭喜你，用户密码设置成功！
echo=
pause
goto MAIN


:ALL
cls
::#######开远程
echo 正在开启远程桌面，请稍后...
echo Windows Registry Editor Version 5.00>3389.reg
echo [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server]>>3389.reg
echo "fDenyTSConnections"=dword:00000000>>3389.reg
echo [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\Tds\tcp]>>3389.reg
echo "PortNumber"=dword:00000d3d>>3389.reg
echo [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp]>>3389.reg
echo "PortNumber"=dword:00000d3d>>3389.reg
regedit /s 3389.reg
del 3389.reg
echo=
echo 远程桌面已经开启！
echo=
::##############开ICMP
netsh firewall set icmpsetting 8
echo ICMP已开启完毕！
echo=
::#################改端口
set port=55556
::set /p port=请输入新的远程桌面端口号并按回车确认:
REG ADD "HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\Rdpwd\Tds\Tcp" /v PortNumber /t REG_DWORD /d %port% /f
REG ADD "HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp" /v PortNumber /t REG_DWORD /d %port% /f
echo 正在添加防火墙规则放行远程桌面端口
set firewallrulename=Allow Remote Desktop Port
netsh advfirewall firewall show rule name="%firewallrulename%" >nul
if not ERRORLEVEL 1 (
	echo 对不起，Firewall规则%firewallrulename%已经存在，将删除已存在相同名字的规则,重新创建Firewall规则放行远程桌面服务端口
netsh advfirewall firewall delete rule name="%firewallrulename%"
netsh advfirewall firewall add rule name="%firewallrulename%" dir=in protocol=tcp localport=%port% action=allow
) else (
	echo 新增Firewall放行远程桌面服务端口规则%firewallrulename%
netsh advfirewall firewall add rule name="%firewallrulename%" dir=in protocol=tcp localport=%port% action=allow
)

echo 系统即将在10秒后重置远程桌面服务，将会断开远程连接，断开后请稍片刻然后使用新端口:55556 登陆
>nul ping 127.0.0.1 /n 10
net stop termservice /y && net start termservice >nul
echo=
echo 远程端口已经修改完毕！
echo=
pause
goto MAIN