diff --git a/.bin/d7ii/3rd Party Tools/HMP.cmd b/.bin/d7ii/3rd Party Tools/HMP.cmd deleted file mode 100644 index 0481ff41..00000000 --- a/.bin/d7ii/3rd Party Tools/HMP.cmd +++ /dev/null @@ -1,11 +0,0 @@ -pushd "%~dp0" -cd.. -set d7IIpath=%cd% -pushd "%~dp0" -echo %d7IIpath%\>HMP_Excludes.txt -echo %programfiles%\dSupportSuite\>>HMP_Excludes.txt -echo %programfiles(x86)%\dSupportSuite\>>HMP_Excludes.txt -echo %programfiles%\CryptoPrevent\>>HMP_Excludes.txt -echo %programfiles(x86)%\CryptoPrevent\>>HMP_Excludes.txt -echo %programfiles%\Foolish IT\CryptoPrevent\>>HMP_Excludes.txt -echo %programfiles(x86)%\Foolish IT\CryptoPrevent\>>HMP_Excludes.txt \ No newline at end of file diff --git a/.bin/d7ii/3rd Party Tools/JRT_Auto.cmd b/.bin/d7ii/3rd Party Tools/JRT_Auto.cmd deleted file mode 100644 index 549e8e0a..00000000 --- a/.bin/d7ii/3rd Party Tools/JRT_Auto.cmd +++ /dev/null @@ -1,17 +0,0 @@ -@echo off&pushd "%~dp0" -start /wait JRT.exe -y -nr -pushd "%temp%\jrt" -if not exist "get.bat" pushd %systemdrive%\JRT -if not exist "get.bat" goto :eof -findstr /v /i "pause" get.bat>tmp.txt -findstr /v /i /b "notepad" tmp.txt>get.bat -echo.>>"%temp%\jrt\wl_services.cfg" -echo d7iisvc>>"%temp%\jrt\wl_services.cfg" -echo dSSEventSvc>>"%temp%\jrt\wl_services.cfg" -echo CryptoPreventEventSvc>>"%temp%\jrt\wl_services.cfg" -echo.>>"%temp%\jrt\wl_processes.cfg" -echo d7ii>>"%temp%\jrt\wl_processes.cfg" -echo dfunk>>"%temp%\jrt\wl_processes.cfg" -echo dSupportSuite>>"%temp%\jrt\wl_processes.cfg" -echo CryptoPrevent>>"%temp%\jrt\wl_processes.cfg" -start /wait cmd.exe /c get.bat \ No newline at end of file diff --git a/.bin/d7ii/3rd Party Tools/MBAM_Uninstall.cmd b/.bin/d7ii/3rd Party Tools/MBAM_Uninstall.cmd index 0fd4d2e7..15ee7722 100644 --- a/.bin/d7ii/3rd Party Tools/MBAM_Uninstall.cmd +++ b/.bin/d7ii/3rd Party Tools/MBAM_Uninstall.cmd @@ -32,8 +32,8 @@ for /f usebackq^ tokens^=2^ delims^=^" %%s in ( rem Copy logs to 1201 folder echo "Copying logs..." -robocopy /e "%PROGRAMDATA%\Malwarebytes\MBAMService\LOGS" "%SYSTEMDRIVE%\1201\Info\%iso_date%\MBAM Logs" >nul -robocopy /e "%PROGRAMDATA%\Malwarebytes\MBAMService\ScanResults" "%SYSTEMDRIVE%\1201\Info\%iso_date%\MBAM Logs" >nul +robocopy /e "%PROGRAMDATA%\Malwarebytes\MBAMService\LOGS" "%SYSTEMDRIVE%\1201\Logs\%iso_date%\Tools\MBAM" >nul +robocopy /e "%PROGRAMDATA%\Malwarebytes\MBAMService\ScanResults" "%SYSTEMDRIVE%\1201\Logs\%iso_date%\Tools\MBAM" >nul if exist "%SYSTEMDRIVE%\1201\Preserve-MBAM.marker" ( rem Keep MBAM diff --git a/.bin/d7ii/3rd Party Tools/rkill.cmd b/.bin/d7ii/3rd Party Tools/rkill.cmd deleted file mode 100644 index 6cca7c3a..00000000 --- a/.bin/d7ii/3rd Party Tools/rkill.cmd +++ /dev/null @@ -1,5 +0,0 @@ -pushd "%~dp0" -cd.. -set d7IIpath=%cd% -pushd "%~dp0" -echo %d7IIpath%\d7II.exe>rkill_Excludes.txt diff --git a/.bin/d7ii/Config/AltText.ini b/.bin/d7ii/Config/AltText.ini index 9a985025..b58b6c23 100644 --- a/.bin/d7ii/Config/AltText.ini +++ b/.bin/d7ii/Config/AltText.ini @@ -5,7 +5,7 @@ Autoruns (Verify and Log)=Manages Startup Items Google Chrome Software Removal Tool=Remove add-ons, extensions, toolbars, and other software that may interfere with the operation of Google Chrome. VipreRescueScanner (Deep Scan)=Virus scanner (Designed for both the Malware Removal and the Offline Operations tab) VipreRescueScanner (Quick Scan)=Virus scanner (Designed for both the Malware Removal and the Offline Operations tab) -=Install software bundle +=Install/Upgrade MBAM [ReportDesc] Autoruns=Examined Windows startup items and removed unnecessary entries. Autoruns_Copy=Examined Windows startup items and removed unnecessary entries. @@ -36,4 +36,4 @@ VipreRescueScanner (Quick Scan)=Ran virus scans (Vipre) 22=Repaired the Windows Update services responsible for Windows Update functionality. 38=Performed repair routines to ensure the Winsock is operating properly. 83=Examined internet speed/bandwidth. -=Installed or updated commonly used applications (Adobe Reader, Google Chrome, etc) +=Malwarebytes installed successfully. diff --git a/.bin/d7ii/Config/AppOverrides.ini b/.bin/d7ii/Config/AppOverrides.ini index 0e07e944..9c73b9b3 100644 --- a/.bin/d7ii/Config/AppOverrides.ini +++ b/.bin/d7ii/Config/AppOverrides.ini @@ -37,6 +37,6 @@ PriorAlert=0 [] PostRunApp= AlwaysAttemptDownload=0 -DLafterXdays=5 +DLafterXdays=0 EmailBeforeExecution=0 PriorAlert=0 diff --git a/.bin/d7ii/Config/CustomApps/Malwarebytes Download.cfg b/.bin/d7ii/Config/CustomApps/Malwarebytes Download.cfg index e56531d5..75eed91d 100644 --- a/.bin/d7ii/Config/CustomApps/Malwarebytes Download.cfg +++ b/.bin/d7ii/Config/CustomApps/Malwarebytes Download.cfg @@ -32,4 +32,4 @@ Servers=1 NonDirectURLs=0 AutoFlag=1 App=exit -LastDownload=8/31/2018 +LastDownload=10/7/2018 diff --git a/.bin/d7ii/Config/CustomApps/Malwarebytes Install.cfg b/.bin/d7ii/Config/CustomApps/Malwarebytes Install.cfg index 9a7ef75b..5aea34ab 100644 --- a/.bin/d7ii/Config/CustomApps/Malwarebytes Install.cfg +++ b/.bin/d7ii/Config/CustomApps/Malwarebytes Install.cfg @@ -1,5 +1,5 @@ [Config] -LastEditDate=8/25/2018 3:50:23 PM +LastEditDate=10/7/2018 3:51:22 PM PostRunApp= App=MBAM_Install.cmd UseFTPServer=0 @@ -31,4 +31,4 @@ AppDesc=Install/Upgrade MBAM LogVerbiage=Malwarebytes installed successfully. LastDownload=8/18/2018 Author=2Shirt -AppWaitTime=30 +AppWaitTime=5 diff --git a/.bin/d7ii/Config/CustomApps/RKill (Auto).cfg b/.bin/d7ii/Config/CustomApps/RKill (Auto).cfg index 71e4e669..ead5cbe7 100644 --- a/.bin/d7ii/Config/CustomApps/RKill (Auto).cfg +++ b/.bin/d7ii/Config/CustomApps/RKill (Auto).cfg @@ -37,4 +37,4 @@ Vista=1 Servers=1 NonDirectURLs=0 AutoFlag=1 -LastDownload=8/31/2018 +LastDownload=10/7/2018 diff --git a/.bin/d7ii/Config/CustomApps_d7II/3rd Party Configs/Everything.ini b/.bin/d7ii/Config/CustomApps_d7II/3rd Party Configs/Everything.ini new file mode 100644 index 00000000..f787a162 --- /dev/null +++ b/.bin/d7ii/Config/CustomApps_d7II/3rd Party Configs/Everything.ini @@ -0,0 +1,485 @@ +[Everything] +app_data=0 +run_as_admin=1 +window_x=1614 +window_y=186 +window_wide=794 +window_high=664 +maximized=0 +minimized=0 +fullscreen=0 +ontop=0 +match_whole_word=0 +match_path=0 +match_case=0 +match_diacritics=0 +match_regex=0 +selection_mask_right_bottom_inclusive=1 +allow_multiple_windows=0 +allow_multiple_instances=0 +run_in_background=1 +show_tray_icon=1 +alternate_row_color=0 +show_mouseover=0 +check_for_updates_on_startup=0 +beta_updates=0 +show_highlighted_search_terms=1 +text_size=0 +hide_empty_search_results=0 +clear_selection_on_search=1 +new_window_key=0 +show_window_key=0 +toggle_window_key=0 +language=0 +show_selected_item_in_statusbar=0 +open_folder_command2= +open_file_command2= +open_path_command2= +explore_command2= +explore_path_command2= +window_title_format= +taskbar_notification_title_format= +instance_name= +translucent_selection_rectangle_alpha=70 +min_zoom=-6 +max_zoom=27 +context_menu_type=0 +auto_include_fixed_volumes=1 +auto_include_removable_volumes=0 +last_export_type=0 +max_threads=0 +reuse_threads=1 +single_parent_context_menu=0 +auto_size_1=512 +auto_size_2=640 +auto_size_3=768 +auto_size_aspect_ratio_x=9 +auto_size_aspect_ratio_y=7 +auto_size_path_x=1 +auto_size_path_y=2 +sticky_vscroll_bottom=1 +last_options_page=9 +draw_focus_rect=1 +date_format= +time_format= +invert_layout=0 +listview_item_high=0 +debug=0 +home_match_case=0 +home_match_whole_word=0 +home_match_path=0 +home_match_diacritics=0 +home_regex=0 +home_search=1 +home_filter=0 +home_sort=0 +home_index=1 +allow_multiple_windows_from_tray=0 +single_click_tray=0 +close_on_execute=0 +double_click_path=0 +update_display_after_scroll=0 +update_display_after_mask=1 +auto_scroll_view=0 +double_quote_copy_as_path=0 +snap=0 +snaplen=10 +rename_select_filepart_only=0 +rename_move_caret_to_selection_end=0 +search_edit_move_caret_to_selection_end=0 +select_search_on_mouse_click=1 +focus_search_on_activate=0 +reset_vscroll_on_search=1 +wrap_focus=0 +load_icon_priority=0 +load_fileinfo_priority=0 +header_high=0 +hide_on_close=0 +winmm=0 +menu_escape_amp=1 +fast_ascii_search=1 +match_path_when_search_contains_path_separator=1 +allow_literal_operators=0 +allow_round_bracket_parenthesis=0 +expand_environment_variables=0 +search_as_you_type=1 +convert_forward_slash_to_backslash=0 +match_whole_filename_when_using_wildcards=1 +double_buffer=1 +search= +show_number_of_results_with_selection=0 +date_descending_first=0 +size_descending_first=0 +size_format=2 +alpha_select=0 +tooltips=1 +rtl_listview_edit=0 +bookmark_remember_case=1 +bookmark_remember_wholeword=1 +bookmark_remember_path=1 +bookmark_remember_diacritic=1 +bookmark_remember_regex=1 +bookmark_remember_sort=1 +bookmark_remember_filter=1 +bookmark_remember_index=1 +exclude_list_enabled=1 +exclude_hidden_files_and_folders=0 +exclude_system_files_and_folders=0 +include_only_files= +exclude_files= +db_location= +db_multi_user_filename=0 +db_compress=0 +extended_information_cache_monitor=1 +keep_missing_indexes=0 +editor_x=0 +editor_y=0 +editor_wide=0 +editor_high=0 +editor_maximized=0 +file_list_relative_paths=1 +max_recv_size=8388608 +display_full_path_name=0 +size_tiny=10240 +size_small=102400 +size_medium=1048576 +size_large=16777216 +size_huge=134217728 +themed_toolbar=1 +show_copy_path=2 +show_copy_full_name=2 +show_open_path=2 +show_explore=2 +show_explore_path=2 +copy_path_folder_append_backslash=0 +custom_verb01= +custom_verb02= +custom_verb03= +custom_verb04= +custom_verb05= +custom_verb06= +custom_verb07= +custom_verb08= +custom_verb09= +custom_verb10= +custom_verb11= +custom_verb12= +filters_visible=0 +filters_wide=128 +filters_right_align=1 +filters_tab_stop=0 +filter= +filter_everything_name= +sort=Name +sort_ascending=1 +always_keep_sort=0 +index=0 +index_file_list= +index_etp_server= +index_link_type=1 +status_bar_visible=1 +select_search_on_focus_mode=1 +select_search_on_set_mode=2 +search_history_enabled=0 +run_history_enabled=1 +search_history_days_to_keep=90 +run_history_days_to_keep=90 +search_history_always_suggest=0 +search_history_max_results=24 +search_history_show_above=0 +service_port=15485 +etp_server_enabled=0 +etp_server_bindings= +etp_server_port=21 +etp_server_username= +etp_server_password= +etp_server_welcome_message= +etp_server_log_file_name= +etp_server_logging_enabled=1 +etp_server_log_max_size=4194304 +etp_server_log_delta_size=524288 +etp_server_allow_file_download=1 +http_server_enabled=0 +http_server_bindings= +http_title_format= +http_server_port=80 +http_server_username= +http_server_password= +http_server_home= +http_server_default_page= +http_server_log_file_name= +http_server_logging_enabled=1 +http_server_log_max_size=4194304 +http_server_log_delta_size=524288 +http_server_allow_file_download=1 +name_column_pos=0 +name_column_width=256 +path_column_visible=1 +path_column_pos=1 +path_column_width=256 +size_column_visible=1 +size_column_pos=2 +size_column_width=96 +extension_column_visible=0 +extension_column_pos=3 +extension_column_width=96 +type_column_visible=0 +type_column_pos=4 +type_column_width=96 +last_write_time_column_visible=1 +last_write_time_column_pos=3 +last_write_time_column_width=153 +creation_time_column_visible=0 +creation_time_column_pos=6 +creation_time_column_width=140 +date_accessed_column_visible=0 +date_accessed_column_pos=7 +date_accessed_column_width=140 +attribute_column_visible=0 +attribute_column_pos=8 +attribute_column_width=70 +date_recently_changed_column_visible=0 +date_recently_changed_column_pos=9 +date_recently_changed_column_width=96 +run_count_column_visible=0 +run_count_column_pos=10 +run_count_column_width=96 +date_run_column_visible=0 +date_run_column_pos=11 +date_run_column_width=140 +file_list_filename_column_visible=0 +file_list_filename_column_pos=12 +file_list_filename_column_width=96 +translucent_selection_rectangle_background_color= +translucent_selection_rectangle_border_color= +ntfs_volume_paths= +ntfs_volume_includes= +ntfs_volume_load_recent_changes= +ntfs_volume_include_onlys= +ntfs_volume_monitors= +filelists= +folders= +folder_monitor_changes= +folder_update_types= +folder_update_days= +folder_update_ats= +folder_update_intervals= +folder_update_interval_types= +exclude_folders= +connect_history_hosts= +connect_history_ports= +connect_history_usernames= +connect_history_link_types= +file_new_search_window_keys=334 +file_open_file_list_keys=335 +file_close_file_list_keys= +file_close_keys=343,27 +file_export_keys=339 +file_copy_full_name_to_clipboard_keys=9539 +file_copy_path_to_clipboard_keys= +file_set_run_count_keys= +file_create_shortcut_keys= +file_delete_keys=8238 +file_delete_permanently_keys=9262 +file_edit_keys= +file_open_keys=8205 +file_open_selection_and_close_everything_keys= +file_explore_path_keys= +file_open_new_keys= +file_open_path_keys=8461 +file_open_with_keys= +file_open_with_default_verb_keys= +file_play_keys= +file_preview_keys= +file_print_keys= +file_print_to_keys= +file_properties_keys=8717 +file_read_extended_information_keys=8517 +file_rename_keys=8305 +file_run_as_keys= +file_exit_keys=337 +file_custom_verb_1_keys= +file_custom_verb_2_keys= +file_custom_verb_3_keys= +file_custom_verb_4_keys= +file_custom_verb_5_keys= +file_custom_verb_6_keys= +file_custom_verb_7_keys= +file_custom_verb_8_keys= +file_custom_verb_9_keys= +file_custom_verb_10_keys= +file_custom_verb_11_keys= +file_custom_verb_12_keys= +edit_cut_keys=8536 +edit_copy_keys=8515,8493 +edit_paste_keys=8534,9261 +edit_select_all_keys=8513 +edit_invert_selection_keys= +view_filters_keys= +view_status_bar_keys= +view_window_size_small_keys=561 +view_window_size_medium_keys=562 +view_window_size_large_keys=563 +view_window_size_auto_fit_keys=564 +view_zoom_zoom_in_keys=443,363 +view_zoom_zoom_out_keys=445,365 +view_zoom_reset_keys=304,352 +view_go_to_back_keys=549,166 +view_go_to_forward_keys=551,167 +view_go_to_home_keys=548 +view_sort_by_name_keys=305 +view_sort_by_path_keys=306 +view_sort_by_size_keys=307 +view_sort_by_extension_keys=308 +view_sort_by_type_keys=309 +view_sort_by_date_modified_keys=310 +view_sort_by_date_created_keys=311 +view_sort_by_attributes_keys=312 +view_sort_by_file_list_filename_keys= +view_sort_by_run_count_keys= +view_sort_by_date_run_keys= +view_sort_by_date_recently_changed_keys=313 +view_sort_by_date_accessed_keys= +view_sort_by_ascending_keys= +view_sort_by_descending_keys= +view_refresh_keys=116 +view_fullscreen_keys=122 +view_toggle_ltrrtl_keys= +view_on_top_never_keys= +view_on_top_always_keys=340 +view_on_top_while_searching_keys= +search_match_case_keys=329 +search_match_whole_word_keys=322 +search_match_path_keys=341 +search_match_diacritics_keys=333 +search_enable_regex_keys=338 +search_add_to_filters_keys= +search_organize_filters_keys=1350 +bookmarks_add_to_bookmarks_keys=324 +bookmarks_organize_bookmarks_keys=1346 +tools_options_keys=336 +tools_console_keys=448 +tools_file_list_editor_keys= +tools_connect_to_etp_server_keys= +tools_disconnect_from_etp_server_keys= +help_everything_help_keys=112 +help_search_syntax_keys= +help_regex_syntax_keys= +help_command_line_options_keys= +help_everything_website_keys= +help_check_for_updates_keys= +help_about_everything_keys=368 +search_edit_focus_search_edit_keys=326,114 +search_edit_delete_previous_word_keys=4360 +search_edit_auto_complete_search_keys=4384 +search_edit_show_search_history_keys= +search_edit_show_all_search_history_keys=4646,4648 +result_list_item_up_keys=8230,4134 +result_list_item_down_keys=8232,4136 +result_list_page_up_keys=8225,4129 +result_list_page_down_keys=8226,4130 +result_list_start_of_list_keys=8228 +result_list_end_of_list_keys=8227 +result_list_item_up_extend_keys=9254,5158 +result_list_item_down_extend_keys=9256,5160 +result_list_page_up_extend_keys=9249,5153 +result_list_page_down_extend_keys=9250,5154 +result_list_start_of_list_extend_keys=9252 +result_list_end_of_list_extend_keys=9251 +result_list_focus_up_keys=8486,4390 +result_list_focus_down_keys=8488,4392 +result_list_focus_page_up_keys=8481,4385 +result_list_focus_page_down_keys=8482,4386 +result_list_focus_start_of_list_keys=8484 +result_list_focus_end_of_list_keys=8483 +result_list_focus_up_extend_keys=9510,5414 +result_list_focus_down_extend_keys=9512,5416 +result_list_focus_page_up_extend_keys=9505,5409 +result_list_focus_page_down_extend_keys=9506,5410 +result_list_focus_start_of_list_extend_keys=9508 +result_list_focus_end_of_list_extend_keys=9507 +result_list_focus_result_list_keys= +result_list_toggle_path_column_keys=1330 +result_list_toggle_size_column_keys=1331 +result_list_toggle_extension_column_keys=1332 +result_list_toggle_type_column_keys=1333 +result_list_toggle_date_modified_column_keys=1334 +result_list_toggle_date_created_column_keys=1335 +result_list_toggle_attributes_column_keys=1336 +result_list_toggle_file_list_filename_column_keys= +result_list_toggle_run_count_column_keys= +result_list_toggle_date_recently_changed_column_keys=1337 +result_list_toggle_date_accessed_column_keys= +result_list_toggle_date_run_column_keys= +result_list_size_all_columns_to_fit_keys=8555 +result_list_size_result_list_to_fit_keys= +result_list_context_menu_keys=9337 +result_list_scroll_left_keys=8229 +result_list_scroll_right_keys=8231 +result_list_scroll_page_left_keys=8485 +result_list_scroll_page_right_keys=8487 +result_list_select_focus_keys=8224 +result_list_toggle_focus_selection_keys=8480 +result_list_copy_selection_to_clipboard_as_csv_keys= +result_list_font= +result_list_font_size= +search_edit_font= +search_edit_font_size= +status_bar_font= +status_bar_font_size= +header_font= +header_font_size= +normal_background_color= +normal_foreground_color= +normal_bold= +highlighted_background_color= +highlighted_foreground_color= +highlighted_bold= +selected_background_color= +selected_foreground_color= +selected_bold= +highlighted_selected_background_color= +highlighted_selected_foreground_color= +highlighted_selected_bold= +selected_inactive_background_color= +selected_inactive_foreground_color= +selected_inactive_bold= +highlighted_selected_inactive_background_color= +highlighted_selected_inactive_foreground_color= +highlighted_selected_inactive_bold= +drop_target_background_color= +drop_target_foreground_color= +drop_target_bold= +highlighted_drop_target_background_color= +highlighted_drop_target_foreground_color= +highlighted_drop_target_bold= +current_sort_background_color= +current_sort_foreground_color= +current_sort_bold= +highlighted_current_sort_background_color= +highlighted_current_sort_foreground_color= +highlighted_current_sort_bold= +mouseover_background_color= +mouseover_foreground_color= +mouseover_bold= +mouseover_highlighted_background_color= +mouseover_highlighted_foreground_color= +mouseover_highlighted_bold= +current_sort_mouseover_background_color= +current_sort_mouseover_foreground_color= +current_sort_mouseover_bold= +mouseover_current_sort_highlighted_background_color= +mouseover_current_sort_highlighted_foreground_color= +mouseover_current_sort_highlighted_bold= +alternate_row_background_color= +alternate_row_foreground_color= +alternate_row_bold= +alternate_row_highlighted_background_color= +alternate_row_highlighted_foreground_color= +alternate_row_highlighted_bold= +current_sort_alternate_row_background_color= +current_sort_alternate_row_foreground_color= +current_sort_alternate_row_bold= +current_sort_alternate_row_highlighted_background_color= +current_sort_alternate_row_highlighted_foreground_color= +current_sort_alternate_row_highlighted_bold= diff --git a/.bin/d7ii/Config/CustomApps_d7II/3rd Party Configs/PatchMyPC.reg b/.bin/d7ii/Config/CustomApps_d7II/3rd Party Configs/PatchMyPC.reg new file mode 100644 index 00000000..540426a5 Binary files /dev/null and b/.bin/d7ii/Config/CustomApps_d7II/3rd Party Configs/PatchMyPC.reg differ diff --git a/.bin/d7ii/Config/CustomApps_d7II/3rd Party Configs/a2cmd.cmd b/.bin/d7ii/Config/CustomApps_d7II/3rd Party Configs/a2cmd.cmd new file mode 100644 index 00000000..bf44096b --- /dev/null +++ b/.bin/d7ii/Config/CustomApps_d7II/3rd Party Configs/a2cmd.cmd @@ -0,0 +1,167 @@ +:: +:: --- BEGIN INFO --- +:: +:: +:: Applicable Custom App: All 'Emsisoft xxx' app configurations in d7II default custom app configurations. +:: +:: Last Update: 2017-02-03 +:: +:: Created by Nick @ FoolishIT.com [Foolish IT LLC] as an example for the user-configurable d7II custom app's system. +:: +:: +:: - d7II Config Location: (applicable to most anything having to do with this batch file) +:: Open Config (under Main drop down menu) \ Custom Apps (tab) \ (search/find/highlight desired custom app in left column/box first) \ New/Edit App (sub-tab) +:: +:: - This batch file is referenced from custom app configuration items in d7II Config, and may make references to other data available from within +:: the custom app configuration or used by it such as noted here. +:: +:: - The 'Whitelist.txt' file created by this batch file will by referenced in the command line arguments passed to the custom app; the configuration +:: for this is located in custom apps config as mentioned above \ then the Execution (sub-tab) +:: +:: - This batch file is called into action when configured in the 'Import Config Before Execution' setting in a d7II custom app configuration, +:: which can be found on the 'Pre-Execution' tab of the custom app configuration mentioned above. +:: +:: NOTES: * When a .BAT/.CMD file such as this is found configured under this setting (as opposed to any other text or data file) it will be +:: copied to the custom app's final running directory (the same as any other files would be) but then executed as a batch script (after +:: the installer is executed if one is configured, but prior to execution of the main custom app itself. +:: +:: * Similarly, a .VBS file would be copied to the custom app directory and executed as a script as above. +:: +:: * Further, a .REG file would be imported to the registry if found configured for this setting. +:: +:: * This setting may reference multiple files separated by a comma with no spacing required; e.g. 'file1.bat,file2.txt,file3.reg' +:: +:: * All files (no paths) configured here must be located within your 'd7II\Config\CustomApps\3rd Party Configs' path (create the last +:: dirs if not exist.) They will likely work if located in the 'd7II\Config\CustomApps_d7II\3rd Party Configs' path, but with all +:: d7II default custom app configurations, this path with all content will be deleted and rewritten during updates to the default apps. +:: +:: +:: Batch File Objectives: +:: +:: 1. Obtain d7II path via registry; use this in creating a whitelist to be used by the custom app +:: (to include all custom apps in subdirs of d7II) +:: +:: 2. Obtain 3rd Party Tools path via registry; if this is not a subdir of the main d7II Path, then +:: add this to a whitelist to be used by the custom app (to include all custom apps in subdirs) +:: +:: 3. create a2cmd whitelist as a new file in the location/directory of the custom app (overwrite existing if any) +:: - batch file current directory should be same as the main executable of the custom app (Execution tab) +:: - add d7II path and include all custom apps within the d7II subdir structure) and other Foolish IT apps +:: to a new file (overwrite) in the current directory (of the custom app whitelist for a2cmd.) +:: +:: +:: --- BEGIN CODE --- +:: Disable local echo, clear screen, output a blank line. +:: +@echo off&cls&echo. +:: Set window title to visually identify what this console window is doing. +title [a2cmd] Performing Additional Custom App Tasks... +:: Change from the Current Working Directory (available to the %cd% variable) +:: to the Current Directory (available as %~dp0 below) where the file actually "lives" +:: and was the location where this batch file was copied to by d7II.exe prior to running it. +:: +:: - This should be the path of the main exe for this custom app as configured in d7II; +:: located in custom apps config as mentioned above \ then the Execution (sub-tab) +:: +:: - Syntax explanation: +:: +:: '~' removes wrapping quotes (never use in a variable if possible, instead wrap the variable as necessary!) +:: 'd' returns a drive letter and colon +:: 'p' returns a full directory path (without a prepended driveletter, and including a trailing backslash) +:: '0' refers to self (this batch file) as the subject of the above conditions +:: +pushd "%~dp0" +:: Set variables for registry value queries and app info +:: +set "RegKey=HKLM\Software\Foolish IT\d7II\Session\Paths" +set "RegNameEXE=AppEXE" +set "RegName3PT=3PTDir" +set "MainPath=%systemdrive%\EmsisoftCmd" +set "MainEXE=a2cmd.exe" +set "InstEXE32=EmsisoftCommandlineScanner32.exe" +set "InstEXE64=EmsisoftCommandlineScanner64.exe" +set "InstParms=/S" +:: Determine if 64bit paths should be used. Note that by using the syntax '%programfiles% (x86)' and not the single +:: '%programfiles(x86)%' then we avoid any errors with the variable not existing and throwing off the actual exist check. +:: +if "[%programfiles(x86)%]" NEQ "[]" if exist "%programfiles% (x86)" set Win64=True +:: +if defined Win64 ( + set "ProgramDir32=%programfiles(x86)%" + set "InstEXE=%InstEXE64%" +) else ( + set "ProgramDir32=%programfiles%" + set "InstEXE=%InstEXE32%" +) +:: Run installer/self-extractor +:: +if not exist "%MainPath%\%MainEXE%" if exist %InstEXE% start "" /wait "%InstEXE%" %InstParms% +:: Exit if install path does not exist... +:: +if not exist "%MainPath%" ( + goto :eof +) else ( + pushd "%MainPath%" +) +:: Add exclusions for other Foolish IT product paths (unrelated to d7II) that may be on a system; +:: While we could first test for dir exist, the dumb addition of a few extra exclusions to the +:: whitelist without checking for their existence will make much of a difference to any custom app... +:: +:: - NOTE: observe the first code line using a single ">" chr prior to the whitelist filename, +:: this creates new or overwrites an existing file; all subsequent usage for the same +:: filename must include the syntax of double ">>" chrs, which creates new or appends +:: to an existing file. +:: +echo %ProgramDir32%\dSupportSuite\>a2cmd_Whitelist.txt +echo %ProgramDir32%\CryptoPrevent\>>a2cmd_Whitelist.txt +echo %ProgramDir32%\Foolish IT\CryptoPrevent\>>a2cmd_Whitelist.txt +:: Extract the full path to d7II.exe for the "d7IIPath" variable; obtain d7II path for the currently active +:: d7II 'session' via a registry query to the registry's copy of d7II's current session configuration. +:: +:: - NOTE: The ' 2^>nul' syntax below redirects errors from the 'reg query' command to 'nul' in order to +:: keep garbage/error messages from defining this variable on an unexpected error... +:: +:: Also, similar to the '%~dp0' syntax used with pushd at the beginning of the batch file, the +:: variable syntax '~dp' is used with the variable '%%_' to ensure output as a drive\path without +:: without a filename and without wrapping quotes (a trailing backslash is included in the output +:: and for these purposes it is also expected syntax for the custom app whitelist. +:: +for /f "usebackq tokens=2*" %%a in (`reg query "%RegKey%" /v "%RegNameEXE%" 2^>nul`) do set "d7IIPath=%%~dpb" +:: +:: Check for a result; if variable is defined above then add this path to the whitelist. +:: +if defined d7IIPath echo %d7IIpath%>>a2cmd_Whitelist.txt +:: Next get the path to d7II custom apps / 3rd party tools via reg query, to provide redundancy if this path +:: for any reason is not located within a subdir of d7II.exe itself. First set the new registry value name. +:: +for /f "usebackq tokens=2*" %%a in (`reg query "%RegKey%" /v "%RegName3PT%" 2^>nul`) do set "ToolsPath=%%~b" +:: +:: Check for a result; if variable is defined above then add this path to the whitelist, otherwise the rest +:: of this script is useless, so exit. +:: +if not defined ToolsPath goto :eof +echo %ToolsPath%\>>a2cmd_Whitelist.txt +:: If no parameters were passed to this batch file, it is being run as part of the "Copy Config" custom app +:: setting (it will be run a second time with parameters for the execution of the custom app itself, which is +:: configured to run this batch file again instead of %MainEXE% as the actual configured exe for this custom +:: app.) +:: +:: Test to find out if any parameters were passed to this batch file, and if none are found just update... +:: +if [%1] EQU [] goto :RunUpdate +:: If we make it this far then this batch file was launched with command line parameters intended for %MainEXE%, +:: so run the custom app passing all parameters as received and waiting for exit. +:: +echo Running scan... (in a separate window; please do NOT close this window!) +:: +start "" /wait "%MainEXE%" %* +goto :eof +:RunUpdate +:: +:: Since getting here means no parameters were passed, run %MainEXE% using parameters for it's own internal +:: definition/signature update, then exit. +:: +echo Starting update... (in a separate window; please do NOT close this window!) +:: +start "" /wait "%MainEXE%" /update +goto :eof \ No newline at end of file diff --git a/.bin/d7ii/Config/CustomApps_d7II/3rd Party Configs/cpuz.ini b/.bin/d7ii/Config/CustomApps_d7II/3rd Party Configs/cpuz.ini new file mode 100644 index 00000000..e31404cd Binary files /dev/null and b/.bin/d7ii/Config/CustomApps_d7II/3rd Party Configs/cpuz.ini differ diff --git a/.bin/d7ii/Config/CustomApps_d7II/3rd Party Configs/pagedfrg.reg b/.bin/d7ii/Config/CustomApps_d7II/3rd Party Configs/pagedfrg.reg new file mode 100644 index 00000000..de812262 Binary files /dev/null and b/.bin/d7ii/Config/CustomApps_d7II/3rd Party Configs/pagedfrg.reg differ diff --git a/.bin/d7ii/Config/CustomApps_d7II/Emsisoft a2cmd Deep Scan.cfg b/.bin/d7ii/Config/CustomApps_d7II/Emsisoft a2cmd Deep Scan.cfg index 8c65a911..570ca229 100644 --- a/.bin/d7ii/Config/CustomApps_d7II/Emsisoft a2cmd Deep Scan.cfg +++ b/.bin/d7ii/Config/CustomApps_d7II/Emsisoft a2cmd Deep Scan.cfg @@ -39,4 +39,4 @@ AutoFlag=1 App=Emsisoft_a2cmd\a2cmd.cmd CopyConfigFirst=a2cmd.cmd WaitOnProcesses=a2cmd.exe -LastDownload=8/31/2018 +LastDownload=10/7/2018 diff --git a/.bin/d7ii/Config/CustomApps_d7II/ExecutedProgramsList.cfg b/.bin/d7ii/Config/CustomApps_d7II/ExecutedProgramsList.cfg new file mode 100644 index 00000000..ceecc1fc --- /dev/null +++ b/.bin/d7ii/Config/CustomApps_d7II/ExecutedProgramsList.cfg @@ -0,0 +1,37 @@ +[Config] +LastEditDate=3/29/2016 4:09:19 PM +PostRunApp= +UseFTPServer=0 +AppURL=http://www.nirsoft.net/utils/executedprogramslist.zip +AppDLName=ExecutedProgramsList.zip +AlwaysAttemptDownload=1 +DLafterXdays=30 +AppWait=1 +EmailBeforeExecution=0 +PriorAlert=0 +ServiceWait=0 +AppMsgBox=0 +AppRandomize=0 +SaveConfigAfter=0 +MoveSnatchReports=0 +SnatchReportsToMalwareLogs=1 +RunInCMD=0 +SendEnter=0 +RunWithSystemAccess=0 +IsDLInstaller=0 +32=1 +64=1 +XP=1 +Vista=1 +7=1 +8=1 +Servers=1 +NonDirectURLs=0 +Author=Foolish IT +AppWebsite=http://www.nirsoft.net/utils/executed_programs_list.html +AppDLPage=http://www.nirsoft.net/utils/executed_programs_list.html +AutoFlag=0 +App=ExecutedProgramsList\ExecutedProgramsList.exe +AppDesc=List out recently executed programs. +LogVerbiage=Checked recently executed programs. +LastDownload=3/29/2016 diff --git a/.bin/d7ii/Config/CustomApps_d7II/HitmanPro.cfg b/.bin/d7ii/Config/CustomApps_d7II/HitmanPro.cfg index 7e8feef6..9a9655ed 100644 --- a/.bin/d7ii/Config/CustomApps_d7II/HitmanPro.cfg +++ b/.bin/d7ii/Config/CustomApps_d7II/HitmanPro.cfg @@ -42,4 +42,4 @@ Vista=1 Servers=1 NonDirectURLs=0 AutoFlag=1 -LastDownload=8/31/2018 +LastDownload=10/7/2018 diff --git a/.bin/d7ii/Config/CustomApps_d7II/Kaspersky TDSSKiller (Silent).cfg b/.bin/d7ii/Config/CustomApps_d7II/Kaspersky TDSSKiller (Silent).cfg index 1ffc505b..4b1a5000 100644 --- a/.bin/d7ii/Config/CustomApps_d7II/Kaspersky TDSSKiller (Silent).cfg +++ b/.bin/d7ii/Config/CustomApps_d7II/Kaspersky TDSSKiller (Silent).cfg @@ -32,4 +32,4 @@ Vista=1 Servers=1 NonDirectURLs=0 AutoFlag=2 -LastDownload=8/31/2018 +LastDownload=10/7/2018 diff --git a/.bin/d7ii/Config/Links.txt b/.bin/d7ii/Config/Links.txt index 3869db96..753bc8d2 100644 --- a/.bin/d7ii/Config/Links.txt +++ b/.bin/d7ii/Config/Links.txt @@ -1,3 +1,4 @@ +SysInternals Live,http://live.sysinternals.com/ Windows Services Reg Files (BleepingComputer.com),http://download.bleepingcomputer.com/win-services/ Process Library (Search for information on a Process),http://www.processlibrary.com/en/ DLL-files.com (Download Missing dll files),http://www.dll-files.com/ diff --git a/.bin/d7ii/Config/Reg.Settings.dat b/.bin/d7ii/Config/Reg.Settings.dat index 13f8c77e..c99d5622 100644 Binary files a/.bin/d7ii/Config/Reg.Settings.dat and b/.bin/d7ii/Config/Reg.Settings.dat differ diff --git a/.bin/d7ii/Config/RegLinks.txt b/.bin/d7ii/Config/RegLinks.txt index fcc8aafa..8b322558 100644 --- a/.bin/d7ii/Config/RegLinks.txt +++ b/.bin/d7ii/Config/RegLinks.txt @@ -1 +1,2 @@ +WinNT Current Version,HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion Open Optical Drive Filters,HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E965-E325-11CE-BFC1-08002BE10318} diff --git a/.bin/d7ii/Config/SiteSearch.txt b/.bin/d7ii/Config/SiteSearch.txt index 402e5315..93b8b2a0 100644 --- a/.bin/d7ii/Config/SiteSearch.txt +++ b/.bin/d7ii/Config/SiteSearch.txt @@ -1,3 +1,4 @@ +google.com foolishit.com foolishtech.com technibble.com diff --git a/.bin/d7ii/Modules/Defs/dUninstaller.txt b/.bin/d7ii/Modules/Defs/dUninstaller.txt index 8b137891..e69de29b 100644 --- a/.bin/d7ii/Modules/Defs/dUninstaller.txt +++ b/.bin/d7ii/Modules/Defs/dUninstaller.txt @@ -1 +0,0 @@ - diff --git a/.bin/d7ii/Modules/Defs/dUninstaller_FileSystemObjects.txt b/.bin/d7ii/Modules/Defs/dUninstaller_FileSystemObjects.txt index ffa379f9..e69de29b 100644 --- a/.bin/d7ii/Modules/Defs/dUninstaller_FileSystemObjects.txt +++ b/.bin/d7ii/Modules/Defs/dUninstaller_FileSystemObjects.txt @@ -1,2 +0,0 @@ - -%userprofile%\foo.txt diff --git a/.bin/d7ii/Modules/Defs/dUninstaller_RegKeys.txt b/.bin/d7ii/Modules/Defs/dUninstaller_RegKeys.txt index 7c8f50d9..e69de29b 100644 --- a/.bin/d7ii/Modules/Defs/dUninstaller_RegKeys.txt +++ b/.bin/d7ii/Modules/Defs/dUninstaller_RegKeys.txt @@ -1 +0,0 @@ -Software\Test Key diff --git a/.bin/d7ii/Modules/Defs/dUninstaller_RegValues.txt b/.bin/d7ii/Modules/Defs/dUninstaller_RegValues.txt index c006bcc9..e69de29b 100644 --- a/.bin/d7ii/Modules/Defs/dUninstaller_RegValues.txt +++ b/.bin/d7ii/Modules/Defs/dUninstaller_RegValues.txt @@ -1,2 +0,0 @@ -Software\Test\Test Value -Software\test diff --git a/.bin/d7ii/Modules/Defs/dUninstaller_RunValues.txt b/.bin/d7ii/Modules/Defs/dUninstaller_RunValues.txt index 3586f6b9..e69de29b 100644 --- a/.bin/d7ii/Modules/Defs/dUninstaller_RunValues.txt +++ b/.bin/d7ii/Modules/Defs/dUninstaller_RunValues.txt @@ -1,2 +0,0 @@ -Test Value -test diff --git a/.bin/d7ii/Modules/Defs/dUninstaller_StartMenuFolders.txt b/.bin/d7ii/Modules/Defs/dUninstaller_StartMenuFolders.txt index 8b137891..e69de29b 100644 --- a/.bin/d7ii/Modules/Defs/dUninstaller_StartMenuFolders.txt +++ b/.bin/d7ii/Modules/Defs/dUninstaller_StartMenuFolders.txt @@ -1 +0,0 @@ - diff --git a/.bin/d7ii/Modules/Defs/dUninstaller_Whitelist.txt b/.bin/d7ii/Modules/Defs/dUninstaller_Whitelist.txt index 9c558e35..e69de29b 100644 --- a/.bin/d7ii/Modules/Defs/dUninstaller_Whitelist.txt +++ b/.bin/d7ii/Modules/Defs/dUninstaller_Whitelist.txt @@ -1 +0,0 @@ -.