Most GDI Trojans have warning and are non-destructive (aka. clean, safe):
//If the computer wasn't infected before, it shows the warning messages.
if (GetFileAttributesW(L"C:\\Windows\\WinNet.exe") == INVALID_FILE_ATTRIBUTES)
{
if (MessageBoxW(NULL, L"WARNING!\n\nYou're about to run a potentially harmful program that can cause your system's death & data loss. This program also displays flashing lights and plays loud sounds.\n\nBy running this program, you accept full responsibility for any damages that may occur. The creator (ArTic aka JhoPro) will not be responsible for anything caused by this software. By the way, this was created for educational and entertainment purposes.\n\nWould you like to proceed with running this program?", L"'We all make choices, but in the end our choices make us...'", MB_ICONWARNING | MB_YESNO) != IDYES) return 1;
if (MessageBoxW(NULL, L"FINAL WARNING!\n\nIf you really want to run it and you're already aware of the risks, press 'Yes'. Otherwise, press 'No'.\n\nProceed at your own risk...", L"Lixo.exe - FINAL WARNING", MB_ICONWARNING | MB_YESNO) != IDYES) return 1;
}
Usually, 1 warning is NOT RECOMMENDED, 2 or 3 are the most used since users can acidentally run the trojan.
Nenhum comentário:
Postar um comentário