[php]
‚ ========================================================
‚ Anti Sandboxie Code v2 by ZiG for vb-x.org =
‚ =
‚ For testing purposes only! =
‚ I’m not responible for anything you do with this code! =
‚ ========================================================
Option Explicit
Private Declare Function CreateToolhelpSnapshot Lib "kernel32" Alias "CreateToolhelp32Snapshot" (ByVal dwFlags As Long, ByVal th32ProcessID As Long) As Long
Private Declare Function ProcessFirst Lib "kernel32" Alias "Process32First" (ByVal hSnapshot As Long, uProcess As PROCESSENTRY32) As Long
Private Declare Function ProcessNext Lib "kernel32" Alias "Process32Next" (ByVal hSnapshot As Long, uProcess As PROCESSENTRY32) As Long
Private Declare Sub CloseHandle Lib "kernel32" (ByVal hObject As Long)
Private Declare Function GetCurrentProcessId Lib "kernel32" () As Long
Private Const TH32CS_SNAPPROCESS = &H2
Private Const MAX_PATH As Long = 260
Private Type PROCESSENTRY32
dwSize As Long
cntUsage As Long
th32ProcessID As Long
th32DefaultHeapID As Long
th32ModuleID As Long
cntThreads As Long
th32ParentProcessID As Long
pcPriClassBase As Long
dwFlags As Long
szExeFile As String * MAX_PATH
End Type
Public Function Sandboxed() As Boolean
Dim nSnapshot As Long, nProcess As PROCESSENTRY32
Dim nResult As Long, ParentID As Long, IDCheck As Boolean
Dim nProcessID As Long
‚Eigene ProcessID ermitteln
nProcessID = GetCurrentProcessId
If nProcessID <> 0 Then
‚Abbild der Prozesse machen
nSnapshot = CreateToolhelpSnapshot(TH32CS_SNAPPROCESS, 0&)
If nSnapshot <> 0 Then
nProcess.dwSize = Len(nProcess)
‚Zeiger auf ersten Prozess bewegen
nResult = ProcessFirst(nSnapshot, nProcess)
Do Until nResult = 0
‚Nach der eigenen ProcessID suchen.
If nProcess.th32ProcessID = nProcessID Then
‚Wir merken uns die ParentProcessID
ParentID = nProcess.th32ParentProcessID
‚Wir beginnen nochmal beim ersten Prozess
nResult = ProcessFirst(nSnapshot, nProcess)
Do Until nResult = 0
‚Wir suchen den Process mit der ParentID
If nProcess.th32ProcessID = ParentID Then
‚Falls so ein Prozess vorhanden ist, dann ist das Programm nicht sandboxed
IDCheck = False
Exit Do
Else
IDCheck = True
nResult = ProcessNext(nSnapshot, nProcess)
End If
Loop
‚Falls check True ist, dann ist das Programm Sandboxed
Sandboxed = IDCheck
Exit Do
Else
‚Zum nächsten Prozess
nResult = ProcessNext(nSnapshot, nProcess)
End If
Loop
‚ Handle wird geschloßen
CloseHandle nSnapshot
End If
End If
End Function
[/php]
[php]
Private Sub Form_Load()
If Sandboxed() Then
Call MsgBox("File is sandboxed!")
Unload Me
Else
Call MsgBox("File is not sandboxed.")
‚Programm kann normal weiterlaufen
End If
End Sub
[/php]
