Sign in to follow this  
Followers 0
lorenkinzel

2 screen virus hunting browser

9 posts in this topic

#1 ·  Posted (edited)

PrintScreen.au3This is a browser that I use to find virii on a site-to-site search.

A fair percentage of time is spent waiting for sites to load, so I decided on 2 browser windows.

Having 2 windows has increased the amount of sites that I can process by 25-30%.

There tends to be a bit of info. overload, so I settled on color-change buttons rather that status text.

This would be pretty useless as a normal browser. Its' only value is in keeping track of where you've been

& processing lots & lots of sites.

#include <File.au3>
#include <SendMessage.au3>
#include <ScreenCapture.au3>
#include <GuiconstantsEx.au3>
#include <WindowsConstants.au3>
 
Dim $read
If Not _FileCreate(@ScriptDir & "\1sites.txt") Then
MsgBox(4096, "Error", " Error Creating/Resetting log.     error:" & @error)
EndIf
If Not _FileCreate(@ScriptDir & "\2sites.txt") Then
MsgBox(4096, "Error", " Error Creating/Resetting log.     error:" & @error)
EndIf
 
$hGUI = GUICreate("", 1000, 830, -1, -1, BitOR($WS_EX_TOPMOST, $WS_SIZEBOX, $WS_BORDER), $WS_EX_COMPOSITED)
$oIE1 = ObjCreate("Shell.Explorer.2")
$oIE2 = ObjCreate("Shell.Explorer.2")
$Obj1_ctrl = GUICtrlCreateObj($oIE1, 2, 30, 996, 365)
GUICtrlSetResizing($Obj1_ctrl, 0x0001)
$Obj2_ctrl = GUICtrlCreateObj($oIE2, 2, 430, 996, 365)
GUICtrlSetResizing($Obj1_ctrl, 0x0001)
 
$goog1 = GUICtrlCreateButton("google on", 2, 2, 52, 25)
$2goog1 = GUICtrlCreateButton("google on", 2, 400, 52, 25)
$logit2 = GUICtrlCreateButton("Log it", 56, 2, 54, 25)
$2logit2 = GUICtrlCreateButton("Log it", 56, 400, 54, 25)
$1clr3 = GUICtrlCreateButton("clear temp", 112, 2, 54, 25)
$edit4 = GUICtrlCreateButton("edit pg#", 167, 2, 47, 25)
$2edit4 = GUICtrlCreateButton("edit pg#", 164, 400, 50, 25)
$vt5 = GUICtrlCreateButton("VT site", 216, 2, 50, 25)
$2vt5 = GUICtrlCreateButton("VT site", 216, 2, 50, 25)
$back6 = GUICtrlCreateButton("BACK", 270, 1, 60, 30)
$2back6 = GUICtrlCreateButton("BACK", 270, 400, 60, 30)
$bail7 = GUICtrlCreateButton("<   BAIL !   >", 336, 1, 120, 30)
$2bail7 = GUICtrlCreateButton("<   BAIL !   >", 336, 400, 120, 30)
$killIE8 = GUICtrlCreateButton("kill IE", 458, 1, 50, 30)
$2killIE8 = GUICtrlCreateButton("kill IE", 458, 400, 50, 30)
$Input1 = GUICtrlCreateInput("", 510, 2, 130, 25)
$2Input1 = GUICtrlCreateInput("", 510, 400, 130, 25)
$go10 = GUICtrlCreateButton("go", 642, 2, 30, 25)
$2go10 = GUICtrlCreateButton("go", 642, 400, 30, 25)
$2Input2 = GUICtrlCreateLabel("", 720, 400, 260, 25)
 
GUISetState()
 
Global $image_no = 1; the number system (done properly), is a logic problem. One that currently defies my understanding.
HotKeySet("{PRINTSCREEN}", "go")
 
While 1
WinSetTitle($hGUI, "", "Hunt Console          " & $oIE1.locationURL())
$nMsg = GUIGetMsg()
If $oIE1.Busy() Then
GUICtrlSetBkColor($back6, 0xff99ff)
Else
GUICtrlSetBkColor($back6, 0x00ff00)
EndIf
If $oIE2.Busy() Then
GUICtrlSetBkColor($2back6, 0xff99ff)
Else
GUICtrlSetBkColor($2back6, 0x00ff00)
EndIf
$read = $oIE2.locationURL()
GUICtrlSetData($2Input2, $read)
Select
Case $nMsg = $GUI_EVENT_CLOSE
Exit
Case $nMsg = $goog1
$oIE1.Navigate("http://www.google.com/")
Case $nMsg = $2goog1
$oIE2.Navigate("http://www.google.com/")
Case $nMsg = $logit2
_FileWriteLog(@ScriptDir & "\1sites.txt", "" & $oIE1.locationURL() & @CRLF)
Case $nMsg = $2logit2
_FileWriteLog(@ScriptDir & "\2sites.txt", "" & $oIE2.locationURL() & @CRLF)
Case $nMsg = $1clr3
Run('RunDll32.exe InetCpl.cpl,ClearMyTracksByProcess 8')    ;Delete Temporary Internet Files
Run('RunDll32.exe InetCpl.cpl,ClearMyTracksByProcess 2')    ;Delete Cookies
Run('RunDll32.exe InetCpl.cpl,ClearMyTracksByProcess 1')    ;Delete History
Run('RunDll32.exe InetCpl.cpl,ClearMyTracksByProcess 16')   ;Delete Form Data
Run('RunDll32.exe InetCpl.cpl,ClearMyTracksByProcess 32')   ;Delete Passwords
Run('RunDll32.exe InetCpl.cpl,ClearMyTracksByProcess 255')  ;Delete All
Run('RunDll32.exe InetCpl.cpl,ClearMyTracksByProcess 4351') ;Delete All – “Also delete files and settings stored by add-ons”
Case $nMsg = $edit4
ShellExecute("1sites.txt", "", @ScriptDir, "edit")
Case $nMsg = $2edit4
ShellExecute("2sites.txt", "", @ScriptDir, "edit")
Case $nMsg = $vt5
$oIE1.Navigate("http://www.virustotal.com/");report .exe & url
Case $nMsg = $2vt5
$oIE2.Navigate("http://www.virustotal.com/")
Case $nMsg = $back6
_FileWriteLog(@ScriptDir & "\1sites.txt", "" & $oIE1.locationURL() & @CRLF)
_ReduceMemory()
Sleep(240)
$oIE1.GoBack()
 
 
Case $nMsg = $2back6
_FileWriteLog(@ScriptDir & "\2sites.txt", "" & $oIE2.locationURL() & @CRLF)
_ReduceMemory()
Sleep(240)
$oIE2.GoBack()
Case $nMsg = $bail7 ; for that 'oh-shit' moment
Run("taskmgr.exe")
ProcessClose("iexplore.exe")
WinKill("Hunt Console")
Case $nMsg = $2bail7
Run("taskmgr.exe")
ProcessClose("iexplore.exe")
WinKill("Hunt Console")
Case $nMsg = $killIE8
ProcessClose("iexplore.exe");for annoying ads that pop-up in IE
Case $nMsg = $2killIE8
ProcessClose("iexplore.exe")
Case $nMsg = $go10
$oIE1.Navigate(GUICtrlRead($Input1))
Case $nMsg = $2go10
$oIE2.Navigate(GUICtrlRead($2Input1))
EndSelect
WEnd
 
Func go()
If Not DirCreate(@MyDocumentsDir & "\PS_pic" & @MON & @MDAY & @YEAR) Then
MsgBox(4096, "Error", " Error Creating Folder.    error:" & @error)
EndIf
 
_ScreenCapture_Capture(@MyDocumentsDir & "\PS_pic" & @MON & @MDAY & @YEAR & "\" & StringFormat('%.4i', $image_no) & ".jpg")
$image_no += 1
Sleep(500)
EndFunc   ;==>go
 
 
Func _ReduceMemory($i_PID = -1)
    If $i_PID <> -1 Then
        Local $ai_Handle = DllCall("kernel32.dll", 'int', 'OpenProcess', 'int', 0x1f0fff, 'int', False, 'int', $i_PID)
        $ai_Return = DllCall("psapi.dll", 'int', 'EmptyWorkingSet', 'long', $ai_Handle[0])
        DllCall('kernel32.dll', 'int', 'CloseHandle', 'int', $ai_Handle[0])
    Else
        $ai_Return = DllCall("psapi.dll", 'int', 'EmptyWorkingSet', 'long', -1)
    EndIf
 
    Return $ai_Return[0]
EndFunc   ;==>_ReduceMemory

Edit: code shown as re-worked by llewxam

Edit: added _ReduceMemory() found within the forums

Edited by lorenkinzel

Share this post


Link to post
Share on other sites



Quick suggestions:

In Line 14 you have an If Not _FileCreate Then, followed by an EndIf....nothing in between to state the error occurred if it does, and same thing happens right after that line. Also, on line 46, you have the path hard-coded, use @DesktopDir so the rest of us don't have issues. You also need to provide the PrintScreen.exe link if not your app, or the code if it is something you wrote.

I haven't actually run the script yet, but in a quick glance these are things that really should get fixed....

Ian


My projects:

  • IP Scanner - Multi-threaded ping tool to scan your available networks for used and available IP addresses, shows ping times, resolves IPs in to host names, and allows individual IPs to be pinged.
  • INFSniff - Great technicians tool - a tool which scans DriverPacks archives for INF files and parses out the HWIDs to a database file, and rapidly scans the local machine's HWIDs, searches the database for matches, and installs them.
  • PPK3 (Persistent Process Killer V3) - Another for the techs - suppress running processes that you need to keep away, helpful when fighting spyware/viruses.
  • Sync Tool - Folder sync tool with lots of real time information and several checking methods.
  • USMT Front End - Front End for Microsoft's User State Migration Tool, including all files needed for USMT 3.01 and 4.01, 32 bit and 64 bit versions.
  • Audit Tool - Computer audit tool to gather vital hardware, Windows, and Office information for IT managers and field techs. Capabilities include creating a customized site agent.
  • CSV Viewer - Displays CSV files with automatic column sizing and font selection. Lines can also be copied to the clipboard for data extraction.
  • MyDirStat - Lists number and size of files on a drive or specified path, allows for deletion within the app.
  • 2048 Game - My version of 2048, fun tile game.
  • Juice Lab - Ecigarette liquid making calculator.
  • Data Protector - Secure notes to save sensitive information.
  • VHD Footer - Add a footer to a forensic hard drive image to allow it to be mounted or used as a virtual machine hard drive.
  • Find in File - Searches files containing a specified phrase.

Share this post


Link to post
Share on other sites

#3 ·  Posted (edited)

Quick suggestions:

In Line 14 you have an If Not _FileCreate Then, followed by an EndIf....nothing in between to state the error occurred if it does, and same thing happens right after that line

Please explain. I do not understand.

Other issue (FileInstall): working on it, but having difficulties.

From what I have read in the help section: "The source file must be specified using a string literal and can not be a variable, a calculation nor function call."

Edit: MsgBox(4096,"Error", " Error Creating/Resetting log. error:" & @error)

It appears that I quote the help section only when it suits me. Lesson learned

Edited by lorenkinzel

Share this post


Link to post
Share on other sites

See what I put in the If, EndIf, that was taken out of the Help file for _FileCreate. As for the FileInstall, I see where you were going with that, but it was actually easier to just insert that function in to the main script than try to break it out in to its own separate script. I also see your issue with the file names when the pic is captured, that was almost exactly how I used to deal with it, but StringFormat will fix that for you very nicely.

Here is your script, with very few changes made, and all in one script now rather than two.

#include <File.au3>
#include <SendMessage.au3>
#include <ScreenCapture.au3>
#include <GuiconstantsEx.au3>
#include <WindowsConstants.au3>
 
Dim $read
If Not _FileCreate(@ScriptDir & "\1sites.txt") Then
MsgBox(4096, "Error", " Error Creating/Resetting log.      error:" & @error)
EndIf
If Not _FileCreate(@ScriptDir & "\2sites.txt") Then
MsgBox(4096, "Error", " Error Creating/Resetting log.      error:" & @error)
EndIf
 
$hGUI = GUICreate("", 1000, 850, -1, -1, BitOR($WS_EX_TOPMOST, $WS_SIZEBOX, $WS_BORDER), $WS_EX_COMPOSITED)
$oIE1 = ObjCreate("Shell.Explorer.2")
$oIE2 = ObjCreate("Shell.Explorer.2")
$Obj1_ctrl = GUICtrlCreateObj($oIE1, 2, 30, 996, 375)
GUICtrlSetResizing($Obj1_ctrl, 0x0001)
$Obj2_ctrl = GUICtrlCreateObj($oIE2, 2, 440, 996, 375)
GUICtrlSetResizing($Obj1_ctrl, 0x0001)
 
$goog1 = GUICtrlCreateButton("google on", 2, 2, 52, 25)
$2goog1 = GUICtrlCreateButton("google on", 2, 410, 52, 25)
$logit2 = GUICtrlCreateButton("Log it", 56, 2, 54, 25)
$2logit2 = GUICtrlCreateButton("Log it", 56, 410, 54, 25)
$ps3 = GUICtrlCreateButton("pics on", 112, 2, 50, 25)
$edit4 = GUICtrlCreateButton("edit pg#", 164, 2, 50, 25)
$2edit4 = GUICtrlCreateButton("edit pg#", 164, 410, 50, 25)
$vt5 = GUICtrlCreateButton("VT site", 216, 2, 50, 25)
$2vt5 = GUICtrlCreateButton("VT site", 216, 2, 50, 25)
$back6 = GUICtrlCreateButton("BACK", 270, 1, 60, 30)
$2back6 = GUICtrlCreateButton("BACK", 270, 410, 60, 30)
$bail7 = GUICtrlCreateButton("<   BAIL !   >", 336, 1, 120, 30)
$2bail7 = GUICtrlCreateButton("<   BAIL !   >", 336, 410, 120, 30)
$killIE8 = GUICtrlCreateButton("kill IE", 458, 1, 50, 30)
$2killIE8 = GUICtrlCreateButton("kill IE", 458, 410, 50, 30)
$Input1 = GUICtrlCreateInput("", 510, 2, 130, 25)
$2Input1 = GUICtrlCreateInput("", 510, 410, 130, 25)
$go10 = GUICtrlCreateButton("go", 642, 2, 30, 25)
$2go10 = GUICtrlCreateButton("go", 642, 410, 30, 25)
$2Input2 = GUICtrlCreateLabel("", 720, 410, 260, 25)
 
GUISetState()
 
Global $image_no = 1; the number system (done properly), is a logic problem. One that currently defies my understanding.
HotKeySet("{PRINTSCREEN}", "go")
 
While 1
WinSetTitle($hGUI, "", "Hunt Console          " & $oIE1.locationURL())
$nMsg = GUIGetMsg()
If $oIE1.Busy() Then
GUICtrlSetBkColor($back6, 0xff99ff)
Else
GUICtrlSetBkColor($back6, 0x00ff00)
EndIf
If $oIE2.Busy() Then
GUICtrlSetBkColor($2back6, 0xff99ff)
Else
GUICtrlSetBkColor($2back6, 0x00ff00)
EndIf
$read = $oIE2.locationURL()
GUICtrlSetData($2Input2, $read)
Select
Case $nMsg = $GUI_EVENT_CLOSE
;Exit
leave_dodge()
Case $nMsg = $goog1
$oIE1.Navigate("http://www.google.com/")
Case $nMsg = $2goog1
$oIE2.Navigate("http://www.google.com/")
Case $nMsg = $logit2
_FileWriteLog(@ScriptDir & "\1sites.txt", "" & $oIE1.locationURL() & @CRLF)
Case $nMsg = $2logit2
_FileWriteLog(@ScriptDir & "\2sites.txt", "" & $oIE2.locationURL() & @CRLF)
Case $nMsg = $ps3
Run("PrintScreen.exe", @ScriptDir); _ScreenCapture_Capture, numbered pics & very little more.
Case $nMsg = $edit4
ShellExecute("1sites.txt", "", @ScriptDir, "edit")
Case $nMsg = $2edit4
ShellExecute("2sites.txt", "", @ScriptDir, "edit")
Case $nMsg = $vt5
$oIE1.Navigate("http://www.virustotal.com/");report .exe & url
Case $nMsg = $2vt5
$oIE2.Navigate("http://www.virustotal.com/")
Case $nMsg = $back6
_FileWriteLog(@ScriptDir & "\1sites.txt", "" & $oIE1.locationURL() & @CRLF)
Sleep(240)
$oIE1.GoBack()
Case $nMsg = $2back6
_FileWriteLog(@ScriptDir & "\2sites.txt", "" & $oIE2.locationURL() & @CRLF)
Sleep(240)
$oIE2.GoBack()
Case $nMsg = $bail7 ; for that 'oh-shit' moment
Run("taskmgr.exe")
ProcessClose("iexplore.exe")
WinKill("Hunt Console")
Case $nMsg = $2bail7
Run("taskmgr.exe")
ProcessClose("iexplore.exe")
WinKill("Hunt Console")
Case $nMsg = $killIE8
ProcessClose("iexplore.exe");for annoying ads that pop-up in IE
Case $nMsg = $2killIE8
ProcessClose("iexplore.exe")
Case $nMsg = $go10
$oIE1.Navigate(GUICtrlRead($Input1))
Case $nMsg = $2go10
$oIE2.Navigate(GUICtrlRead($2Input1))
EndSelect
WEnd
 
 
Func leave_dodge()
ProcessClose("PrintSCreen.exe")
Sleep(400)
FileDelete(@TempDir & "\PrintScreen.exe")
Exit
EndFunc   ;==>leave_dodge
 
 
Func go()
If Not DirCreate(@MyDocumentsDir & "\PS_pic" & @MON & @MDAY & @YEAR) Then
MsgBox(4096, "Error", " Error Creating Folder.      error:" & @error)
EndIf
 
_ScreenCapture_Capture(@MyDocumentsDir & "\PS_pic" & @MON & @MDAY & @YEAR & "\" & StringFormat('%.4i', $image_no) & ".jpg")
$image_no += 1
Sleep(500)
EndFunc   ;==>go

It is a nice idea if you need these tools, so keep at it and keep findine more ways to push the script to do more things. One thing I would suggest you try to do is fix the flickering with your buttons - it can be hard, one way I would recommend you do it is have a variable for $oIE1.Busy and $oIE2.Busy and if that variable is True AND the color is 0x00ff00, then change it to 0xff99ff.

Ian


My projects:

  • IP Scanner - Multi-threaded ping tool to scan your available networks for used and available IP addresses, shows ping times, resolves IPs in to host names, and allows individual IPs to be pinged.
  • INFSniff - Great technicians tool - a tool which scans DriverPacks archives for INF files and parses out the HWIDs to a database file, and rapidly scans the local machine's HWIDs, searches the database for matches, and installs them.
  • PPK3 (Persistent Process Killer V3) - Another for the techs - suppress running processes that you need to keep away, helpful when fighting spyware/viruses.
  • Sync Tool - Folder sync tool with lots of real time information and several checking methods.
  • USMT Front End - Front End for Microsoft's User State Migration Tool, including all files needed for USMT 3.01 and 4.01, 32 bit and 64 bit versions.
  • Audit Tool - Computer audit tool to gather vital hardware, Windows, and Office information for IT managers and field techs. Capabilities include creating a customized site agent.
  • CSV Viewer - Displays CSV files with automatic column sizing and font selection. Lines can also be copied to the clipboard for data extraction.
  • MyDirStat - Lists number and size of files on a drive or specified path, allows for deletion within the app.
  • 2048 Game - My version of 2048, fun tile game.
  • Juice Lab - Ecigarette liquid making calculator.
  • Data Protector - Secure notes to save sensitive information.
  • VHD Footer - Add a footer to a forensic hard drive image to allow it to be mounted or used as a virtual machine hard drive.
  • Find in File - Searches files containing a specified phrase.

Share this post


Link to post
Share on other sites

#5 ·  Posted (edited)

Your comments & improvements are greatly appreciated.

One small puzzle is: the buttons do not flicker for me.

That stopped when I added $WS_EX_COMPOSITED.

(before that they were like a candle)

I will work with your suggestion, but will have nothing to compare as they do not flicker now (over here).

Edit: I didn't notice what you had done with the numbering of pictures.

I had given up on that to avoid insanity & focus on what I can do.

Thank you very much.

Edited by lorenkinzel

Share this post


Link to post
Share on other sites

#6 ·  Posted (edited)

Maybe it is only flickering on Win7 but I don't know why that would be. Anyway, just so you can see what I meant, here is the fix that worked for me:

#include <File.au3>
#include <ScreenCapture.au3>
#include <GuiconstantsEx.au3>
#include <WindowsConstants.au3>
 
Dim $read
If Not _FileCreate(@ScriptDir & "\1sites.txt") Then
MsgBox(4096, "Error", " Error Creating/Resetting log.     error:" & @error)
EndIf
If Not _FileCreate(@ScriptDir & "\2sites.txt") Then
MsgBox(4096, "Error", " Error Creating/Resetting log.     error:" & @error)
EndIf
 
$hGUI = GUICreate("", 1000, 850, -1, -1, BitOR($WS_EX_TOPMOST, $WS_SIZEBOX, $WS_BORDER), $WS_EX_COMPOSITED)
$oIE1 = ObjCreate("Shell.Explorer.2")
$oIE2 = ObjCreate("Shell.Explorer.2")
$Obj1_ctrl = GUICtrlCreateObj($oIE1, 2, 30, 996, 375)
GUICtrlSetResizing($Obj1_ctrl, 0x0001)
$Obj2_ctrl = GUICtrlCreateObj($oIE2, 2, 440, 996, 375)
GUICtrlSetResizing($Obj1_ctrl, 0x0001)
 
$goog1 = GUICtrlCreateButton("google on", 2, 2, 52, 25)
$2goog1 = GUICtrlCreateButton("google on", 2, 410, 52, 25)
$logit2 = GUICtrlCreateButton("Log it", 56, 2, 54, 25)
$2logit2 = GUICtrlCreateButton("Log it", 56, 410, 54, 25)
$ps3 = GUICtrlCreateButton("pics on", 112, 2, 50, 25)
$edit4 = GUICtrlCreateButton("edit pg#", 164, 2, 50, 25)
$2edit4 = GUICtrlCreateButton("edit pg#", 164, 410, 50, 25)
$vt5 = GUICtrlCreateButton("VT site", 216, 2, 50, 25)
$2vt5 = GUICtrlCreateButton("VT site", 216, 2, 50, 25)
$back6 = GUICtrlCreateButton("BACK", 270, 1, 60, 30)
$2back6 = GUICtrlCreateButton("BACK", 270, 410, 60, 30)
$bail7 = GUICtrlCreateButton("<   BAIL !   >", 336, 1, 120, 30)
$2bail7 = GUICtrlCreateButton("<   BAIL !   >", 336, 410, 120, 30)
$killIE8 = GUICtrlCreateButton("kill IE", 458, 1, 50, 30)
$2killIE8 = GUICtrlCreateButton("kill IE", 458, 410, 50, 30)
$Input1 = GUICtrlCreateInput("", 510, 2, 130, 25)
$2Input1 = GUICtrlCreateInput("", 510, 410, 130, 25)
$go10 = GUICtrlCreateButton("go", 642, 2, 30, 25)
$2go10 = GUICtrlCreateButton("go", 642, 410, 30, 25)
$2Input2 = GUICtrlCreateLabel("", 720, 410, 260, 25)
 
GUISetState()
 
$Green = 0x00ff00
$Purple = 0xff99ff
$back6Color = $Green
$2back6Color = $Green
GUICtrlSetBkColor($back6, $back6Color)
GUICtrlSetBkColor($2back6, $2back6Color)
$image_no = 1; the number system (done properly), is a logic problem. One that currently defies my understanding.
HotKeySet("{PRINTSCREEN}", "go")
 
While 1
WinSetTitle($hGUI, "", "Hunt Console          " & $oIE1.locationURL())
$nMsg = GUIGetMsg()
 
If $oIE1.Busy() Then
$oIE1Busy = True
Else
$oIE1Busy = False
EndIf
If $oIE2.Busy() Then
$oIE2Busy = True
Else
$oIE2Busy = False
EndIf
 
If $oIE1Busy == True Then
If $back6Color == $Green Then
$back6Color = $Purple
GUICtrlSetBkColor($back6, $back6Color)
EndIf
Else
If $back6Color == $Purple Then
$back6Color = $Green
GUICtrlSetBkColor($back6, $back6Color)
EndIf
EndIf
If $oIE2Busy == True Then
If $2back6Color == $Green Then
$2back6Color = $Purple
GUICtrlSetBkColor($2back6, $2back6Color)
EndIf
Else
If $2back6Color == $Purple Then
$2back6Color = $Green
GUICtrlSetBkColor($2back6, $2back6Color)
EndIf
EndIf
 
$read = $oIE2.locationURL()
GUICtrlSetData($2Input2, $read)
Select
Case $nMsg = $GUI_EVENT_CLOSE
;Exit
leave_dodge()
Case $nMsg = $goog1
$oIE1.Navigate("http://www.google.com/")
Case $nMsg = $2goog1
$oIE2.Navigate("http://www.google.com/")
Case $nMsg = $logit2
_FileWriteLog(@ScriptDir & "\1sites.txt", "" & $oIE1.locationURL() & @CRLF)
Case $nMsg = $2logit2
_FileWriteLog(@ScriptDir & "\2sites.txt", "" & $oIE2.locationURL() & @CRLF)
Case $nMsg = $ps3
Run("PrintScreen.exe", @ScriptDir); _ScreenCapture_Capture, numbered pics & very little more.
Case $nMsg = $edit4
ShellExecute("1sites.txt", "", @ScriptDir, "edit")
Case $nMsg = $2edit4
ShellExecute("2sites.txt", "", @ScriptDir, "edit")
Case $nMsg = $vt5
$oIE1.Navigate("http://www.virustotal.com/");report .exe & url
Case $nMsg = $2vt5
$oIE2.Navigate("http://www.virustotal.com/")
Case $nMsg = $back6
_FileWriteLog(@ScriptDir & "\1sites.txt", "" & $oIE1.locationURL() & @CRLF)
Sleep(240)
$oIE1.GoBack()
Case $nMsg = $2back6
_FileWriteLog(@ScriptDir & "\2sites.txt", "" & $oIE2.locationURL() & @CRLF)
Sleep(240)
$oIE2.GoBack()
Case $nMsg = $bail7 ; for that 'oh-shit' moment
Run("taskmgr.exe")
ProcessClose("iexplore.exe")
WinKill("Hunt Console")
Case $nMsg = $2bail7
Run("taskmgr.exe")
ProcessClose("iexplore.exe")
WinKill("Hunt Console")
Case $nMsg = $killIE8
ProcessClose("iexplore.exe");for annoying ads that pop-up in IE
Case $nMsg = $2killIE8
ProcessClose("iexplore.exe")
Case $nMsg = $go10
$oIE1.Navigate(GUICtrlRead($Input1))
Case $nMsg = $2go10
$oIE2.Navigate(GUICtrlRead($2Input1))
EndSelect
WEnd
 
 
Func leave_dodge()
ProcessClose("PrintSCreen.exe")
Sleep(400)
FileDelete(@TempDir & "\PrintScreen.exe")
Exit
EndFunc   ;==>leave_dodge
 
 
Func go()
If Not DirCreate(@MyDocumentsDir & "\PS_pic" & @MON & @MDAY & @YEAR) Then
MsgBox(4096, "Error", " Error Creating Folder.    error:" & @error)
EndIf
 
_ScreenCapture_Capture(@MyDocumentsDir & "\PS_pic" & @MON & @MDAY & @YEAR & "\" & StringFormat('%.4i', $image_no) & ".jpg")
$image_no += 1
Sleep(500)
EndFunc   ;==>go

Ian

Edited by llewxam

My projects:

  • IP Scanner - Multi-threaded ping tool to scan your available networks for used and available IP addresses, shows ping times, resolves IPs in to host names, and allows individual IPs to be pinged.
  • INFSniff - Great technicians tool - a tool which scans DriverPacks archives for INF files and parses out the HWIDs to a database file, and rapidly scans the local machine's HWIDs, searches the database for matches, and installs them.
  • PPK3 (Persistent Process Killer V3) - Another for the techs - suppress running processes that you need to keep away, helpful when fighting spyware/viruses.
  • Sync Tool - Folder sync tool with lots of real time information and several checking methods.
  • USMT Front End - Front End for Microsoft's User State Migration Tool, including all files needed for USMT 3.01 and 4.01, 32 bit and 64 bit versions.
  • Audit Tool - Computer audit tool to gather vital hardware, Windows, and Office information for IT managers and field techs. Capabilities include creating a customized site agent.
  • CSV Viewer - Displays CSV files with automatic column sizing and font selection. Lines can also be copied to the clipboard for data extraction.
  • MyDirStat - Lists number and size of files on a drive or specified path, allows for deletion within the app.
  • 2048 Game - My version of 2048, fun tile game.
  • Juice Lab - Ecigarette liquid making calculator.
  • Data Protector - Secure notes to save sensitive information.
  • VHD Footer - Add a footer to a forensic hard drive image to allow it to be mounted or used as a virtual machine hard drive.
  • Find in File - Searches files containing a specified phrase.

Share this post


Link to post
Share on other sites

Now I do see what you mean. Where you normally would see the status bar switching between: loading, done, transferring data from doubleclick.com, done, opening with errors, done, etc, in this case you see the back button switching colors.

I'll test the script on a hunt both ways. It is nice to know if the connection is unstable so I don't click the back button too soon & spend needless time hung between connections. Since the rapid color-change is kind of unsightly, if I do not need it to show true status I will get rid of it using your changes.

Once I figure out why your changes did what they did, I will be better informed.

Thanks.

Share this post


Link to post
Share on other sites

After a bit of testing, it seems that I can process sites a little bit faster using the version without the 'no flicker' mod.

If I honestly thought that anyone else would use this script I would go with the 'no flicker' mod anyway because the rapid color-change is unsightly.

But virus- hunting is not a pretty thing anyway.

The part of the mod I like is learning that having a default value with a second option is more stable that 2 static values.

This was not intended to become a 'help & support' case. For that I apologize; & thank you for your help.

I gotta go chase some bad guys (virii).

Share this post


Link to post
Share on other sites

virus- hunting is not a pretty thing anyway.

Sounds fun though! :mellow:

I can see how the rapid changing of the buttons could be helpful information, makes sense.

Ian


My projects:

  • IP Scanner - Multi-threaded ping tool to scan your available networks for used and available IP addresses, shows ping times, resolves IPs in to host names, and allows individual IPs to be pinged.
  • INFSniff - Great technicians tool - a tool which scans DriverPacks archives for INF files and parses out the HWIDs to a database file, and rapidly scans the local machine's HWIDs, searches the database for matches, and installs them.
  • PPK3 (Persistent Process Killer V3) - Another for the techs - suppress running processes that you need to keep away, helpful when fighting spyware/viruses.
  • Sync Tool - Folder sync tool with lots of real time information and several checking methods.
  • USMT Front End - Front End for Microsoft's User State Migration Tool, including all files needed for USMT 3.01 and 4.01, 32 bit and 64 bit versions.
  • Audit Tool - Computer audit tool to gather vital hardware, Windows, and Office information for IT managers and field techs. Capabilities include creating a customized site agent.
  • CSV Viewer - Displays CSV files with automatic column sizing and font selection. Lines can also be copied to the clipboard for data extraction.
  • MyDirStat - Lists number and size of files on a drive or specified path, allows for deletion within the app.
  • 2048 Game - My version of 2048, fun tile game.
  • Juice Lab - Ecigarette liquid making calculator.
  • Data Protector - Secure notes to save sensitive information.
  • VHD Footer - Add a footer to a forensic hard drive image to allow it to be mounted or used as a virtual machine hard drive.
  • Find in File - Searches files containing a specified phrase.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0