Recently Browsing 0 members
No registered users viewing this page.
hello autoit team
is there any wey to check if any process run as admin or no?
i mean e.g if i want to restart any process, now i have the ability to get the process path and commands line
what i need is a wey to check if the process was runing as admin or no to restart it with the same state.
here is the part that am using it to restart the process
func _processRestart($i_pid, $s_ProcessPath) if not (ProcessExists($i_ProcessPid)) then return SetError(1, 0, -1) local $s_ProcessWorkDir = _WinAPI_GetProcessWorkingDirectory($i_ProcessPid) ProcessClose($i_ProcessPid) ProcessWaitClose($i_ProcessPid) ProcessWait(ShellExecute($i_pid,"", $s_ProcessWorkDir)) ProcessesGetList() return true endFunc thanks in advance
This is my first post. So I’ve worked on a script for a while and I’m planning to publish it but the problem is that it connects to an FTP server at some point, and as you probably know FTP credentials are easily captured by a MITM attack or Wireshark (not sure if Wireshark does). So I thought if i can detect data capturing in the user’s network the script would stop. Any idea?.
If there’s another workaround I’m happy to hear it.
I want to detect if exact process or window uses directx or opengl or maybe something else library used in applications.
Thats becouse there could be many windows with same names and different names and the same with process. I got so much process names I want to my script works with all, so i want standardize.
All of this processes uses DirectX or OpenGL so then If I check this window/process uses these libraries I will be sure thats the right process
I'm trying to kill a malware process, that I can't remove with my www.sophus.com/hom antivirus.
The malware is known as coinminer,config and my Sophus only creates popups of blocking the malware.
I know that the malware is constantly launching a svchost *32.exe processes, where the svchost.exe processes are from my Windows 7 operating system.
I have with no luck tried to do this:
Global $_bStatus = False
While $_bStatus = False
Global $_sActiveTitleNew = "svchost *32.exe"
$_iPid = WinGetProcess($_sActiveTitleNew)
If $_iPid <> -1 Then $_bStatus = ProcessClose($_iPid)
But the $_iPid doesn't ever show anything else than -1, even if I can see the svchost *32.exe process in my TaskManager
YES - I know I shouldn't EXIT after killing the first malware detection, but it is easier to explain the above for you, so I can get a solution.