[求助]AutoIt 3.2.3.14反编译-软件逆向-看雪-安全社区|安全招聘|kanxue.com

最新回复 (4)
快雪时晴雪币： 370 活跃值： (15) 能力值： ( LV9，RANK：170 ) 在线值：发帖 34 回帖 2272 粉丝 1 关注私信	快雪时晴 4 2 楼总结你的所有帖子都是autoit程序求反 2011-1-20 18:18 0
qqmss 雪币： 144 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 10 回帖 124 粉丝 0 关注私信	qqmss 3 楼帮忙下老大。。 2011-1-20 18:25 0
快雪时晴雪币： 370 活跃值： (15) 能力值： ( LV9，RANK：170 ) 在线值：发帖 34 回帖 2272 粉丝 1 关注私信	快雪时晴 4 4 楼低版本的东西，直接明码，论坛现成的工具你不用自己搜吧，多动动手看过代码，都不知你那里弄来这么无聊的东东 <AUT2EXE VERSION: 3.2.3.14> ; ---------------------------------------------------------------------------- ; <AUT2EXE INCLUDE-START: G:\xp\xpsp3v6\复件复件 run.au3> ; ---------------------------------------------------------------------------- FileInstall("you.reg", "C:\windows\system32\you.reg",1) runwait("regedit /s C:\windows\system32\you.reg") #Region --- CodeWizard generated code Start --- ; ---------------------------------------------------------------------------- ; <AUT2EXE INCLUDE-START: E:\相关文件\au3\autoit_19853\autoit-v3.2.3.14.1\autoit-v3.2.3.14.1\Include\Constants.au3> ; ---------------------------------------------------------------------------- Global Const $OPT_COORDSRELATIVE = 0 Global Const $OPT_COORDSABSOLUTE = 1 Global Const $OPT_COORDSCLIENT = 2 Global Const $OPT_ERRORSILENT = 0 Global Const $OPT_ERRORFATAL = 1 Global Const $OPT_CAPSNOSTORE = 0 Global Const $OPT_CAPSSTORE = 1 Global Const $OPT_MATCHSTART = 1 Global Const $OPT_MATCHANY = 2 Global Const $OPT_MATCHEXACT = 3 Global Const $OPT_MATCHADVANCED = 4 Global Const $FC_NOOVERWRITE = 0 Global Const $FC_OVERWRITE = 1 Global Const $FT_MODIFIED = 0 Global Const $FT_CREATED = 1 Global Const $FT_ACCESSED = 2 Global Const $FO_READ = 0 Global Const $FO_APPEND = 1 Global Const $FO_OVERWRITE = 2 Global Const $FO_BINARY = 16 Global Const $FO_UNICODE = 32 Global Const $FO_UTF16_LE = 32 Global Const $FO_UTF16_BE = 64 Global Const $FO_UTF8 = 128 Global Const $EOF = -1 Global Const $FD_FILEMUSTEXIST = 1 Global Const $FD_PATHMUSTEXIST = 2 Global Const $FD_MULTISELECT = 4 Global Const $FD_PROMPTCREATENEW = 8 Global Const $FD_PROMPTOVERWRITE = 16 Global Const $KB_SENDSPECIAL = 0 Global Const $KB_SENDRAW = 1 Global Const $KB_CAPSOFF = 0 Global Const $KB_CAPSON = 1 Global Const $MB_OK = 0 Global Const $MB_OKCANCEL = 1 Global Const $MB_ABORTRETRYIGNORE = 2 Global Const $MB_YESNOCANCEL = 3 Global Const $MB_YESNO = 4 Global Const $MB_RETRYCANCEL = 5 Global Const $MB_ICONHAND = 16 Global Const $MB_ICONQUESTION = 32 Global Const $MB_ICONEXCLAMATION = 48 Global Const $MB_ICONASTERISK = 64 Global Const $MB_DEFBUTTON1 = 0 Global Const $MB_DEFBUTTON2 = 256 Global Const $MB_DEFBUTTON3 = 512 Global Const $MB_APPLMODAL = 0 Global Const $MB_SYSTEMMODAL = 4096 Global Const $MB_TASKMODAL = 8192 Global Const $MB_TOPMOST = 262144 Global Const $MB_RIGHTJUSTIFIED = 524288 Global Const $IDTIMEOUT = -1 Global Const $IDOK = 1 Global Const $IDCANCEL = 2 Global Const $IDABORT = 3 Global Const $IDRETRY = 4 Global Const $IDIGNORE = 5 Global Const $IDYES = 6 Global Const $IDNO = 7 Global Const $IDTRYAGAIN = 10 Global Const $IDCONTINUE = 11 Global Const $DLG_NOTITLE = 1 Global Const $DLG_NOTONTOP = 2 Global Const $DLG_TEXTLEFT = 4 Global Const $DLG_TEXTRIGHT = 8 Global Const $DLG_MOVEABLE = 16 Global Const $DLG_TEXTVCENTER = 32 Global Const $TIP_ICONNONE = 0 Global Const $TIP_ICONASTERISK = 1 Global Const $TIP_ICONEXCLAMATION = 2 Global Const $TIP_ICONHAND = 3 Global Const $TIP_NOSOUND = 16 Global Const $IDC_UNKNOWN = 0 Global Const $IDC_APPSTARTING = 1 Global Const $IDC_ARROW = 2 Global Const $IDC_CROSS = 3 Global Const $IDC_HELP = 4 Global Const $IDC_IBEAM = 5 Global Const $IDC_ICON = 6 Global Const $IDC_NO = 7 Global Const $IDC_SIZE = 8 Global Const $IDC_SIZEALL = 9 Global Const $IDC_SIZENESW = 10 Global Const $IDC_SIZENS = 11 Global Const $IDC_SIZENWSE = 12 Global Const $IDC_SIZEWE = 13 Global Const $IDC_UPARROW = 14 Global Const $IDC_WAIT = 15 Global Const $SD_LOGOFF = 0 Global Const $SD_SHUTDOWN = 1 Global Const $SD_REBOOT = 2 Global Const $SD_FORCE = 4 Global Const $SD_POWERDOWN = 8 Global Const $STR_NOCASESENSE = 0 Global Const $STR_CASESENSE = 1 Global Const $STR_STRIPLEADING = 1 Global Const $STR_STRIPTRAILING = 2 Global Const $STR_STRIPSPACES = 4 Global Const $STR_STRIPALL = 8 Global Const $TRAY_ITEM_EXIT = 3 Global Const $TRAY_ITEM_PAUSE = 4 Global Const $TRAY_ITEM_FIRST = 7 Global Const $TRAY_CHECKED = 1 Global Const $TRAY_UNCHECKED = 4 Global Const $TRAY_ENABLE = 64 Global Const $TRAY_DISABLE = 128 Global Const $TRAY_FOCUS = 256 Global Const $TRAY_DEFAULT = 512 Global Const $TRAY_EVENT_SHOWICON = -3 Global Const $TRAY_EVENT_HIDEICON = -4 Global Const $TRAY_EVENT_FLASHICON = -5 Global Const $TRAY_EVENT_NOFLASHICON = -6 Global Const $TRAY_EVENT_PRIMARYDOWN = -7 Global Const $TRAY_EVENT_PRIMARYUP = -8 Global Const $TRAY_EVENT_SECONDARYDOWN = -9 Global Const $TRAY_EVENT_SECONDARYUP = -10 Global Const $TRAY_EVENT_MOUSEOVER = -11 Global Const $TRAY_EVENT_MOUSEOUT = -12 Global Const $TRAY_EVENT_PRIMARYDOUBLE = -13 Global Const $TRAY_EVENT_SECONDARYDOUBLE= -14 Global Const $STDIN_CHILD = 1 Global Const $STDOUT_CHILD = 2 Global Const $STDERR_CHILD = 4 Global Const $COLOR_BLACK = 0x000000 Global Const $COLOR_SILVER = 0xC0C0C0 Global Const $COLOR_GRAY = 0x808080 Global Const $COLOR_WHITE = 0xFFFFFF Global Const $COLOR_MAROON = 0x800000 Global Const $COLOR_RED = 0xFF0000 Global Const $COLOR_PURPLE = 0x800080 Global Const $COLOR_FUCHSIA = 0xFF00FF Global Const $COLOR_GREEN = 0x008000 Global Const $COLOR_LIME = 0x00FF00 Global Const $COLOR_OLIVE = 0x808000 Global Const $COLOR_YELLOW = 0xFFFF00 Global Const $COLOR_NAVY = 0x000080 Global Const $COLOR_BLUE = 0x0000FF Global Const $COLOR_TEAL = 0x008080 Global Const $COLOR_AQUA = 0x00FFFF Global Const $REG_NONE = 0 Global Const $REG_SZ = 1 Global Const $REG_EXPAND_SZ = 2 Global Const $REG_BINARY = 3 Global Const $REG_DWORD = 4 Global Const $REG_DWORD_BIG_ENDIAN = 5 Global Const $REG_LINK = 6 Global Const $REG_MULTI_SZ = 7 Global Const $REG_RESOURCE_LIST = 8 Global Const $REG_FULL_RESOURCE_DESCRIPTOR = 9 Global Const $REG_RESOURCE_REQUIREMENTS_LIST = 10 ; ---------------------------------------------------------------------------- ; <AUT2EXE INCLUDE-END: E:\相关文件\au3\autoit_19853\autoit-v3.2.3.14.1\autoit-v3.2.3.14.1\Include\Constants.au3> ; ---------------------------------------------------------------------------- FileInstall("logo1.jpg", @WindowsDir &"\logo2.jpg",1) SplashImageOn("",@WindowsDir &"\logo2.jpg","394","125","-1","-1",$DLG_NOTITLE) runwait("c:\xp\up1.bat","",@SW_HIDE) SplashOff() runwait("c:\xp\up2.bat","",@SW_HIDE) DirRemove("C:\xp", 1) FileDelete("C:\xp\.") DirRemove("C:\WINDOWS\LastGood.Tmp",1) FileDelete("C:\windows\system32\you.reg") RegDelete("HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run", "ctfmon.exe") RegDelete("HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run", "ctfmon.exe") RegDelete("HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run", "ctfmon.exe") RegDelete("HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run", "ctfmon.exe") RegDelete("HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run", "TkBellExe") FileDelete("C:\Program Files\Common Files\Real\Update_OB\realsched.exe") FileDelete("C:\WINDOWS\system32\CTFMON.exe") FileDelete("C:\Program Files\Real\RealPlayer\rpau3260.dll") FileDelete("C:\Program Files\Real\RealPlayer\rpplugins\ierpplug.dll") FileDelete("C:\Documents and Settings\All Users\桌面\Real游戏大厅.lnk") FileDelete("C:\Documents and Settings\All Users\桌面\免费影视和音乐.url") run("shutdown.exe -c 祝贺您：系统安装完毕！自动重启. -r ") FileMove("C:\run.exe", "c:\windows\system32\xpload2.exe") DirRemove("C:\xp", 1) FileDelete("C:\xp\.") ; ---------------------------------------------------------------------------- ; <AUT2EXE INCLUDE-END: G:\xp\xpsp3v6\复件复件 run.au3> ; ---------------------------------------------------------------------------- 2011-1-20 18:40 0
qqmss 雪币： 144 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 10 回帖 124 粉丝 0 关注私信	qqmss 5 楼是一个系统安装静默安装程序，谢了，我学习一下。 2011-1-20 19:17 0
	游客登录 \| 注册方可回帖回帖表情雪币赚取及消费高级回复

最新回复 (4)
快雪时晴雪币： 370 活跃值： (15) 能力值： ( LV9，RANK：170 ) 在线值：发帖 34 回帖 2272 粉丝 1 关注私信	快雪时晴 4 2 楼总结你的所有帖子都是autoit程序求反 2011-1-20 18:18 0
qqmss 雪币： 144 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 10 回帖 124 粉丝 0 关注私信	qqmss 3 楼帮忙下老大。。 2011-1-20 18:25 0
快雪时晴雪币： 370 活跃值： (15) 能力值： ( LV9，RANK：170 ) 在线值：发帖 34 回帖 2272 粉丝 1 关注私信	快雪时晴 4 4 楼低版本的东西，直接明码，论坛现成的工具你不用自己搜吧，多动动手看过代码，都不知你那里弄来这么无聊的东东 <AUT2EXE VERSION: 3.2.3.14> ; ---------------------------------------------------------------------------- ; <AUT2EXE INCLUDE-START: G:\xp\xpsp3v6\复件复件 run.au3> ; ---------------------------------------------------------------------------- FileInstall("you.reg", "C:\windows\system32\you.reg",1) runwait("regedit /s C:\windows\system32\you.reg") #Region --- CodeWizard generated code Start --- ; ---------------------------------------------------------------------------- ; <AUT2EXE INCLUDE-START: E:\相关文件\au3\autoit_19853\autoit-v3.2.3.14.1\autoit-v3.2.3.14.1\Include\Constants.au3> ; ---------------------------------------------------------------------------- Global Const $OPT_COORDSRELATIVE = 0 Global Const $OPT_COORDSABSOLUTE = 1 Global Const $OPT_COORDSCLIENT = 2 Global Const $OPT_ERRORSILENT = 0 Global Const $OPT_ERRORFATAL = 1 Global Const $OPT_CAPSNOSTORE = 0 Global Const $OPT_CAPSSTORE = 1 Global Const $OPT_MATCHSTART = 1 Global Const $OPT_MATCHANY = 2 Global Const $OPT_MATCHEXACT = 3 Global Const $OPT_MATCHADVANCED = 4 Global Const $FC_NOOVERWRITE = 0 Global Const $FC_OVERWRITE = 1 Global Const $FT_MODIFIED = 0 Global Const $FT_CREATED = 1 Global Const $FT_ACCESSED = 2 Global Const $FO_READ = 0 Global Const $FO_APPEND = 1 Global Const $FO_OVERWRITE = 2 Global Const $FO_BINARY = 16 Global Const $FO_UNICODE = 32 Global Const $FO_UTF16_LE = 32 Global Const $FO_UTF16_BE = 64 Global Const $FO_UTF8 = 128 Global Const $EOF = -1 Global Const $FD_FILEMUSTEXIST = 1 Global Const $FD_PATHMUSTEXIST = 2 Global Const $FD_MULTISELECT = 4 Global Const $FD_PROMPTCREATENEW = 8 Global Const $FD_PROMPTOVERWRITE = 16 Global Const $KB_SENDSPECIAL = 0 Global Const $KB_SENDRAW = 1 Global Const $KB_CAPSOFF = 0 Global Const $KB_CAPSON = 1 Global Const $MB_OK = 0 Global Const $MB_OKCANCEL = 1 Global Const $MB_ABORTRETRYIGNORE = 2 Global Const $MB_YESNOCANCEL = 3 Global Const $MB_YESNO = 4 Global Const $MB_RETRYCANCEL = 5 Global Const $MB_ICONHAND = 16 Global Const $MB_ICONQUESTION = 32 Global Const $MB_ICONEXCLAMATION = 48 Global Const $MB_ICONASTERISK = 64 Global Const $MB_DEFBUTTON1 = 0 Global Const $MB_DEFBUTTON2 = 256 Global Const $MB_DEFBUTTON3 = 512 Global Const $MB_APPLMODAL = 0 Global Const $MB_SYSTEMMODAL = 4096 Global Const $MB_TASKMODAL = 8192 Global Const $MB_TOPMOST = 262144 Global Const $MB_RIGHTJUSTIFIED = 524288 Global Const $IDTIMEOUT = -1 Global Const $IDOK = 1 Global Const $IDCANCEL = 2 Global Const $IDABORT = 3 Global Const $IDRETRY = 4 Global Const $IDIGNORE = 5 Global Const $IDYES = 6 Global Const $IDNO = 7 Global Const $IDTRYAGAIN = 10 Global Const $IDCONTINUE = 11 Global Const $DLG_NOTITLE = 1 Global Const $DLG_NOTONTOP = 2 Global Const $DLG_TEXTLEFT = 4 Global Const $DLG_TEXTRIGHT = 8 Global Const $DLG_MOVEABLE = 16 Global Const $DLG_TEXTVCENTER = 32 Global Const $TIP_ICONNONE = 0 Global Const $TIP_ICONASTERISK = 1 Global Const $TIP_ICONEXCLAMATION = 2 Global Const $TIP_ICONHAND = 3 Global Const $TIP_NOSOUND = 16 Global Const $IDC_UNKNOWN = 0 Global Const $IDC_APPSTARTING = 1 Global Const $IDC_ARROW = 2 Global Const $IDC_CROSS = 3 Global Const $IDC_HELP = 4 Global Const $IDC_IBEAM = 5 Global Const $IDC_ICON = 6 Global Const $IDC_NO = 7 Global Const $IDC_SIZE = 8 Global Const $IDC_SIZEALL = 9 Global Const $IDC_SIZENESW = 10 Global Const $IDC_SIZENS = 11 Global Const $IDC_SIZENWSE = 12 Global Const $IDC_SIZEWE = 13 Global Const $IDC_UPARROW = 14 Global Const $IDC_WAIT = 15 Global Const $SD_LOGOFF = 0 Global Const $SD_SHUTDOWN = 1 Global Const $SD_REBOOT = 2 Global Const $SD_FORCE = 4 Global Const $SD_POWERDOWN = 8 Global Const $STR_NOCASESENSE = 0 Global Const $STR_CASESENSE = 1 Global Const $STR_STRIPLEADING = 1 Global Const $STR_STRIPTRAILING = 2 Global Const $STR_STRIPSPACES = 4 Global Const $STR_STRIPALL = 8 Global Const $TRAY_ITEM_EXIT = 3 Global Const $TRAY_ITEM_PAUSE = 4 Global Const $TRAY_ITEM_FIRST = 7 Global Const $TRAY_CHECKED = 1 Global Const $TRAY_UNCHECKED = 4 Global Const $TRAY_ENABLE = 64 Global Const $TRAY_DISABLE = 128 Global Const $TRAY_FOCUS = 256 Global Const $TRAY_DEFAULT = 512 Global Const $TRAY_EVENT_SHOWICON = -3 Global Const $TRAY_EVENT_HIDEICON = -4 Global Const $TRAY_EVENT_FLASHICON = -5 Global Const $TRAY_EVENT_NOFLASHICON = -6 Global Const $TRAY_EVENT_PRIMARYDOWN = -7 Global Const $TRAY_EVENT_PRIMARYUP = -8 Global Const $TRAY_EVENT_SECONDARYDOWN = -9 Global Const $TRAY_EVENT_SECONDARYUP = -10 Global Const $TRAY_EVENT_MOUSEOVER = -11 Global Const $TRAY_EVENT_MOUSEOUT = -12 Global Const $TRAY_EVENT_PRIMARYDOUBLE = -13 Global Const $TRAY_EVENT_SECONDARYDOUBLE= -14 Global Const $STDIN_CHILD = 1 Global Const $STDOUT_CHILD = 2 Global Const $STDERR_CHILD = 4 Global Const $COLOR_BLACK = 0x000000 Global Const $COLOR_SILVER = 0xC0C0C0 Global Const $COLOR_GRAY = 0x808080 Global Const $COLOR_WHITE = 0xFFFFFF Global Const $COLOR_MAROON = 0x800000 Global Const $COLOR_RED = 0xFF0000 Global Const $COLOR_PURPLE = 0x800080 Global Const $COLOR_FUCHSIA = 0xFF00FF Global Const $COLOR_GREEN = 0x008000 Global Const $COLOR_LIME = 0x00FF00 Global Const $COLOR_OLIVE = 0x808000 Global Const $COLOR_YELLOW = 0xFFFF00 Global Const $COLOR_NAVY = 0x000080 Global Const $COLOR_BLUE = 0x0000FF Global Const $COLOR_TEAL = 0x008080 Global Const $COLOR_AQUA = 0x00FFFF Global Const $REG_NONE = 0 Global Const $REG_SZ = 1 Global Const $REG_EXPAND_SZ = 2 Global Const $REG_BINARY = 3 Global Const $REG_DWORD = 4 Global Const $REG_DWORD_BIG_ENDIAN = 5 Global Const $REG_LINK = 6 Global Const $REG_MULTI_SZ = 7 Global Const $REG_RESOURCE_LIST = 8 Global Const $REG_FULL_RESOURCE_DESCRIPTOR = 9 Global Const $REG_RESOURCE_REQUIREMENTS_LIST = 10 ; ---------------------------------------------------------------------------- ; <AUT2EXE INCLUDE-END: E:\相关文件\au3\autoit_19853\autoit-v3.2.3.14.1\autoit-v3.2.3.14.1\Include\Constants.au3> ; ---------------------------------------------------------------------------- FileInstall("logo1.jpg", @WindowsDir &"\logo2.jpg",1) SplashImageOn("",@WindowsDir &"\logo2.jpg","394","125","-1","-1",$DLG_NOTITLE) runwait("c:\xp\up1.bat","",@SW_HIDE) SplashOff() runwait("c:\xp\up2.bat","",@SW_HIDE) DirRemove("C:\xp", 1) FileDelete("C:\xp\.") DirRemove("C:\WINDOWS\LastGood.Tmp",1) FileDelete("C:\windows\system32\you.reg") RegDelete("HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run", "ctfmon.exe") RegDelete("HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run", "ctfmon.exe") RegDelete("HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run", "ctfmon.exe") RegDelete("HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run", "ctfmon.exe") RegDelete("HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run", "TkBellExe") FileDelete("C:\Program Files\Common Files\Real\Update_OB\realsched.exe") FileDelete("C:\WINDOWS\system32\CTFMON.exe") FileDelete("C:\Program Files\Real\RealPlayer\rpau3260.dll") FileDelete("C:\Program Files\Real\RealPlayer\rpplugins\ierpplug.dll") FileDelete("C:\Documents and Settings\All Users\桌面\Real游戏大厅.lnk") FileDelete("C:\Documents and Settings\All Users\桌面\免费影视和音乐.url") run("shutdown.exe -c 祝贺您：系统安装完毕！自动重启. -r ") FileMove("C:\run.exe", "c:\windows\system32\xpload2.exe") DirRemove("C:\xp", 1) FileDelete("C:\xp\.") ; ---------------------------------------------------------------------------- ; <AUT2EXE INCLUDE-END: G:\xp\xpsp3v6\复件复件 run.au3> ; ---------------------------------------------------------------------------- 2011-1-20 18:40 0
qqmss 雪币： 144 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 10 回帖 124 粉丝 0 关注私信	qqmss 5 楼是一个系统安装静默安装程序，谢了，我学习一下。 2011-1-20 19:17 0
	游客登录 \| 注册方可回帖回帖表情雪币赚取及消费高级回复