1. Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

IEstarter 0.21 by hoax32

Discussion in 'Programming & Webmastering' started by hoax32, Jul 23, 2011.

  1. hoax32

    hoax32

    Joined:
    Aug 8, 2010
    Messages:
    489 (0.34/day)
    Thanks Received:
    48
    Location:
    TX
    Hi leutz!!!
    Im still a beginner in programing so please don't ive me any comments like "you suck!!!" :slap:
    I finally finished my new program called IEstarter.
    It's still a BETA version so it might have some undiscovered problems.

    About IEstarter:
    ----------------
    File name: IEstarter.exe
    Size: 0.035MB (35KB)
    Programmer: hoax32
    Programming Language: C++ and some batch
    Language: English

    System requirements:
    ---------------------
    OS: XP and UP
    RAM: 128MB
    HDD: 2GB FREE SPACE
    CPU: P3 or higher
    GPU: Windows supported GPU

    Following situation:
    A Virus has infected your Computer and all shortcuts are distroyed / manipulated!
    You have no access yo the windows explorer or "Windows + R".
    But there is more than 1 problem:
    You need the internet explorer to do something immportant REALLY FAST!!!!!
    What to do?
    Use IEstarter!
    IEstarter starts your internet explorer (all versions) my executing the main file.
    It also makes shure, that file is the ACTUAL iexplore.exe and not something like ieexplore.exe

    It's a great tool to trick malware and I hope that you guys like it!
    Like I sayed it's nothing big! :D

    Please try it out!
    I appreciate any feedback! :)

    Attached Files:

  2. Kreij

    Kreij Senior Monkey Moderator Staff Member

    Joined:
    Feb 6, 2007
    Messages:
    13,881 (5.09/day)
    Thanks Received:
    5,615
    Location:
    Cheeseland (Wisconsin, USA)
    How does one know that the virus has not compromised IEStarter.exe?
  3. hoax32

    hoax32

    Joined:
    Aug 8, 2010
    Messages:
    489 (0.34/day)
    Thanks Received:
    48
    Location:
    TX
    It checks parts of the code, file size and background info of the exe.
    Thanks for asking! :D
  4. Kreij

    Kreij Senior Monkey Moderator Staff Member

    Joined:
    Feb 6, 2007
    Messages:
    13,881 (5.09/day)
    Thanks Received:
    5,615
    Location:
    Cheeseland (Wisconsin, USA)
    My pleasure.
    How does IEStarter know that iexplorer.exe has not been compromised?
  5. hoax32

    hoax32

    Joined:
    Aug 8, 2010
    Messages:
    489 (0.34/day)
    Thanks Received:
    48
    Location:
    TX

    I am thinking of adding a function to version 0.30, which emulates the execution of iexplore.exe:
    If IEstarter detects any unusual files that are connected to iexplore.exe, I will warn the user.

    Thats gonna be a hard task though! :eek:
  6. Kreij

    Kreij Senior Monkey Moderator Staff Member

    Joined:
    Feb 6, 2007
    Messages:
    13,881 (5.09/day)
    Thanks Received:
    5,615
    Location:
    Cheeseland (Wisconsin, USA)
    If all shortcuts on the system do not work (this would include shortcuts in the start menus) and the keyboard shortcuts are hosed, how do launch IEStarter?

    I'm not picking on your app, just asking questions others may be thinking too. ;)
  7. qubit

    qubit Overclocked quantum bit

    Joined:
    Dec 6, 2007
    Messages:
    9,821 (4.05/day)
    Thanks Received:
    3,480
    Kreij's points are spot on.

    Ultimately, with an infected system, it's not possible to guarantee that you're not running more malware. It's also not possible to guarantee that your application won't be hijacked itself, regardless of how many checks and balances you put into it - the malware can simply delete your files and replace them with something else. Game over.

    My answer to having to do something on such a PC now, is to use another computer. Once you know Windows is compromised, it's foolish to do anything else.

    If you want to program for security, then I suggest hanging out on security related forums and getting involved in coding projects they might have there. You'll learn a lot more and you'll make much more useful software.
  8. hoax32

    hoax32

    Joined:
    Aug 8, 2010
    Messages:
    489 (0.34/day)
    Thanks Received:
    48
    Location:
    TX
    I am about to finish my new version of IEstarter!
    Improvements:

    -avaible as a ".exe" , ."bat" , ".com"
    -new security features
    -checks iexplorer.exe for valid coding (stops execution, if cooding is different)
    -coding is protected --> program cannot be manipulated, otherwise error: "not a valid win32 application" will pop up [this prevents the infection and execution of IEstarter]
    digibucc says thanks.
  9. xbonez New Member

    Joined:
    Nov 29, 2010
    Messages:
    1,182 (0.89/day)
    Thanks Received:
    315
    Location:
    Philly, PA (US)
    I'd like to know this as well. There are numerous ways to launch explorer (Win+E, Run, Task Manager etc.). If all of them have been compromised, what's keeping IEStarter from being compromised as well?
  10. hoax32

    hoax32

    Joined:
    Aug 8, 2010
    Messages:
    489 (0.34/day)
    Thanks Received:
    48
    Location:
    TX
    I am actively experimenting with viruses and trojans in sandbox and I have never seen a virus / trojan / worm / spyware / any other malware - that disables a .bat file after booting in safe mode with network drivers.
    IEstarter is ment to be started from CD / USB drive.
    IEstarter can also be executed by adding it to the auto start list when a computer is clean so everytime you start your computer, it executes internet explorer and incase of an infection Internet explorer will still start and the awesome thing about this program is that it tells you prior executing of the iexplorer.exe if it is the actual file or if its infected! :)
  11. Mindweaver

    Mindweaver Moderato®™ Staff Member

    Joined:
    Apr 16, 2009
    Messages:
    5,143 (2.67/day)
    Thanks Received:
    2,650
    Location:
    Statesville, NC
    What's to disable in a .bat file? A batch file is just a list of commands in a file that sends those commands to a command prompt (COMMAND.COM, cmd.exe). I'm not knocking your idea, but if i thought i had a virus i would use "Solaris Utility DVD" or "A linux distro CD" or to be totally sure.. whip the drive and start over... Not try to use my already compromised PC nor would I ever need to have something launch ie..... I never launch ie.. :p But good luck with your program.. I'm in no shape saying not work on it.. I just don't see the point in it.

    EDIT: IE probably gave you the virus in the first place... :p
    Crunching for Team TPU
  12. ctrain New Member

    Joined:
    Jan 12, 2010
    Messages:
    393 (0.24/day)
    Thanks Received:
    72
    what happens if i patch the code as it's running?

    and what's with the fake load screen
  13. erixx

    erixx

    Joined:
    Mar 24, 2010
    Messages:
    3,220 (2.03/day)
    Thanks Received:
    427
    amazing stuff, really!

    But i have never had a virus other than a funny code joke a decade back and don't know what I would do. I think turn off and reformat, and use another computer meanwhile

    but... in case I had to use the infected computer, I would just run Opera or similar explorer from a pendrive.

    But keep testing etc, it is really interesting :)
  14. ShiBDiB

    ShiBDiB

    Joined:
    Jul 21, 2008
    Messages:
    4,066 (1.85/day)
    Thanks Received:
    755
    Location:
    Clifton Park, NY
    Seems.. useless.. but dont stop cause I suppose itll be a good learning tool for coding..

    Useless because my dads computer was infected with some malware AV virus that shuts down any process you try to start regardless of if its a .bat or whatever.. The best protection from viruses is not getting them in the first place. Not preparing your computer to be slightly useable when you do get one.

Currently Active Users Viewing This Thread: 1 (0 members and 1 guest)

Share This Page