Hey guys,
This tutorial is for people who use a fake cmd but still want to run batch files.
So many of you might use Malcom Merlyn's scambaiting tools, one of them being the fake cmd:
To use it you have to replace the real cmd with the fake one (and keep the real one as cmd1 exe for example) in the system32 folder. That way when the scammer connects to your machine and does the Windows key + R and then types cmd he will get the fake one. The problem is that now .bat batch files won't run anymore as they cannot find the real cmd exe as it has been replaced. You can solve it by following these steps:
Step 1: Open the old Control Panel
Step 2: go to System
Step 3: Advanced System Settings
Step 4: On the resulting dialog, Click the 'Environment Variables' button
Step 5: On the next dialog, in the System Variables section, find ComSpec
Step 6: change the C:\Windows\System32\cmd exe to the name you have given your real cmd backup, I used cmd1 exe as example above
Step 7: go to C:\Windows\System32\, search for cmd[dot]exe[dot]mui, rename it to cmd1[dot]exe[dot]mui or whatever you have named the real cmd backup
Note: you have to get ownership of the System32 folder to make changes, if you don't have done this yet, check this quick tutorial: https://youtu.be/3LnnvbpO9NI?t=38
Now you should be able to run any batch file again without a problem.
Credits to @WobLegend for this :)