PC World 2008 April

home *** CD-ROM | disk | FTP | other *** search
/ PC World 2008 April / PCWorld_2008-04_cd.bin / zabezpeceni / removeany / removeanysetup_1.4.18.exe / plugins / rootkit.rap / BIN / 130
Lua bytecode | 2008-02-21 | 1.7 KB
open in:
MacOS 8.1 |
Win98 |
DOS
view JSON data |
view as text

This file was processed as: Lua bytecode (other/luaBytecode).
This format is not currently supported by dexvert.
Confidence	Program	Detection	Match Type	Support
`1%`	dexvert	Lua bytecode `(other/luaBytecode)`	magic	Unsupported
`100%`	file	Lua bytecode, version 5.1	default
`99%`	file	data	default
`55%`	TrID	Lua 5.1 bytecode	default
`44%`	TrID	Lua bytecode (generic)	default
`100%`	detectItEasy	Format: Lua Bytecode (.LUAC)(v5.1)	default
hex view
+--------+-------------------------+-------------------------+--------+--------+
|00000000| 1b 4c 75 61 51 00 01 04 | 04 04 08 00 40 00 00 00 |.LuaQ...|....@...|
|00000010| 40 46 3a 5c 57 6f 72 6b | 5c 70 72 6f 6a 65 63 74 |@F:\Work|\project|
|00000020| 73 5c 72 65 6d 6f 76 65 | 61 6e 79 5c 73 72 63 5c |s\remove|any\src\|
|00000030| 70 6c 75 67 69 6e 73 5c | 72 6f 6f 74 6b 69 74 5c |plugins\|rootkit\|
|00000040| 72 65 73 5c 72 6f 6f 74 | 6b 69 74 2e 6c 75 61 00 |res\root|kit.lua.|
|00000050| 00 00 00 00 00 00 00 00 | 00 00 02 03 17 00 00 00 |........|........|
|00000060| 0a 00 00 00 07 00 00 00 | 05 00 00 00 09 80 c0 80 |........|........|
|00000070| 05 00 00 00 09 00 c1 81 | 05 00 00 00 09 80 c1 82 |........|........|
|00000080| 0a 00 00 00 07 c0 01 00 | 05 c0 01 00 64 00 00 00 |........|....d...|
|00000090| 09 40 00 84 24 40 00 00 | 45 c0 01 00 a4 80 00 00 |.@..$@..|E.......|
|000000a0| 00 00 00 00 49 80 80 84 | 45 c0 01 00 a4 c0 00 00 |....I...|E.......|
|000000b0| 00 00 00 00 49 80 00 85 | 1e 00 80 00 0b 00 00 00 |....I...|........|
|000000c0| 04 06 00 00 00 63 6f 6e | 73 74 00 04 04 00 00 00 |.....con|st......|
|000000d0| 52 45 44 00 03 00 00 00 | 00 00 00 f0 3f 04 06 00 |RED.....|....?...|
|000000e0| 00 00 47 52 45 45 4e 00 | 03 00 00 00 00 00 00 00 |..GREEN.|........|
|000000f0| 40 04 07 00 00 00 59 45 | 4c 4c 4f 57 00 03 00 00 |@.....YE|LLOW....|
|00000100| 00 00 00 00 08 40 04 08 | 00 00 00 72 6f 6f 74 6b |.....@..|...rootk|
|00000110| 69 74 00 04 0a 00 00 00 | 69 73 5f 68 69 64 64 65 |it......|is_hidde|
|00000120| 6e 00 04 0f 00 00 00 66 | 6f 72 6d 61 74 5f 73 75 |n......f|ormat_su|
|00000130| 6d 6d 61 72 79 00 04 09 | 00 00 00 67 65 74 5f 69 |mmary...|...get_i|
|00000140| 6e 66 6f 00 04 00 00 00 | 00 00 00 00 08 00 00 00 |nfo.....|........|
|00000150| 16 00 00 00 00 02 00 0d | 20 00 00 00 5a 00 00 00 |........| ...Z...|
|00000160| 16 80 06 80 85 00 00 00 | 86 40 40 01 c0 00 80 00 |........|.@@.....|
|00000170| 9c 80 00 01 18 80 00 81 | 16 00 05 80 86 c0 40 00 |........|......@.|
|00000180| 9a 00 00 00 16 40 04 80 | 85 00 01 00 c6 40 41 00 |.....@..|.....@A.|
|00000190| 9c 00 01 01 16 40 02 80 | c5 01 01 00 00 02 80 00 |.....@..|........|
|000001a0| dc 01 01 01 16 c0 00 80 | 17 80 81 05 16 40 00 80 |........|.....@..|
|000001b0| 02 03 00 00 1e 03 00 01 | e1 81 00 00 16 40 fe 7f |........|.....@..|
|000001c0| a1 80 00 00 16 c0 fc 7f | 82 00 80 00 9e 00 00 01 |........|........|
|000001d0| 82 00 00 00 9e 00 00 01 | 1e 00 80 00 06 00 00 00 |........|........|
|000001e0| 04 06 00 00 00 74 61 62 | 6c 65 00 04 05 00 00 00 |.....tab|le......|
|000001f0| 67 65 74 6e 00 03 00 00 | 00 00 00 00 00 00 04 07 |getn....|........|
|00000200| 00 00 00 61 63 74 69 76 | 65 00 04 07 00 00 00 69 |...activ|e......i|
|00000210| 70 61 69 72 73 00 04 05 | 00 00 00 70 69 64 73 00 |pairs...|...pids.|
|00000220| 00 00 00 00 20 00 00 00 | 09 00 00 00 09 00 00 00 |.... ...|........|
|00000230| 09 00 00 00 09 00 00 00 | 09 00 00 00 09 00 00 00 |........|........|
|00000240| 09 00 00 00 09 00 00 00 | 0a 00 00 00 0a 00 00 00 |........|........|
|00000250| 0a 00 00 00 0b 00 00 00 | 0b 00 00 00 0b 00 00 00 |........|........|
|00000260| 0b 00 00 00 0c 00 00 00 | 0c 00 00 00 0c 00 00 00 |........|........|
|00000270| 0c 00 00 00 0d 00 00 00 | 0d 00 00 00 0e 00 00 00 |........|........|
|00000280| 0e 00 00 00 0c 00 00 00 | 0f 00 00 00 0b 00 00 00 |........|........|
|00000290| 10 00 00 00 12 00 00 00 | 12 00 00 00 15 00 00 00 |........|........|
|000002a0| 15 00 00 00 16 00 00 00 | 0c 00 00 00 05 00 00 00 |........|........|
|000002b0| 69 6e 66 6f 00 00 00 00 | 00 1f 00 00 00 09 00 00 |info....|........|
|000002c0| 00 70 69 64 5f 6c 69 73 | 74 00 00 00 00 00 1f 00 |.pid_lis|t.......|
|000002d0| 00 00 10 00 00 00 28 66 | 6f 72 20 67 65 6e 65 72 |......(f|or gener|
|000002e0| 61 74 6f 72 29 00 0e 00 | 00 00 1b 00 00 00 0c 00 |ator)...|........|
|000002f0| 00 00 28 66 6f 72 20 73 | 74 61 74 65 29 00 0e 00 |..(for s|tate)...|
|00000300| 00 00 1b 00 00 00 0e 00 | 00 00 28 66 6f 72 20 63 |........|..(for c|
|00000310| 6f 6e 74 72 6f 6c 29 00 | 0e 00 00 00 1b 00 00 00 |ontrol).|........|
|00000320| 02 00 00 00 5f 00 0f 00 | 00 00 19 00 00 00 02 00 |...._...|........|
|00000330| 00 00 6a 00 0f 00 00 00 | 19 00 00 00 10 00 00 00 |..j.....|........|
|00000340| 28 66 6f 72 20 67 65 6e | 65 72 61 74 6f 72 29 00 |(for gen|erator).|
|00000350| 12 00 00 00 19 00 00 00 | 0c 00 00 00 28 66 6f 72 |........|....(for|
|00000360| 20 73 74 61 74 65 29 00 | 12 00 00 00 19 00 00 00 | state).|........|
|00000370| 0e 00 00 00 28 66 6f 72 | 20 63 6f 6e 74 72 6f 6c |....(for| control|
|00000380| 29 00 12 00 00 00 19 00 | 00 00 02 00 00 00 5f 00 |).......|......_.|
|00000390| 13 00 00 00 17 00 00 00 | 02 00 00 00 6b 00 13 00 |........|....k...|
|000003a0| 00 00 17 00 00 00 00 00 | 00 00 00 00 00 00 18 00 |........|........|
|000003b0| 00 00 1b 00 00 00 00 01 | 00 05 0c 00 00 00 45 00 |........|......E.|
|000003c0| 00 00 5c 80 80 00 85 40 | 00 00 86 80 40 01 c5 c0 |..\....@|....@...|
|000003d0| 00 00 c6 00 c1 01 00 01 | 00 00 dc 80 00 01 00 01 |........|........|
|000003e0| 80 00 9d 00 80 01 9e 00 | 00 00 1e 00 80 00 05 00 |........|........|
|000003f0| 00 00 04 0f 00 00 00 63 | 5f 65 6e 75 6d 5f 70 72 |.......c|_enum_pr|
|00000400| 6f 63 65 73 73 00 04 08 | 00 00 00 72 6f 6f 74 6b |ocess...|...rootk|
|00000410| 69 74 00 04 0a 00 00 00 | 69 73 5f 68 69 64 64 65 |it......|is_hidde|
|00000420| 6e 00 04 06 00 00 00 63 | 61 63 68 65 00 04 09 00 |n......c|ache....|
|00000430| 00 00 67 65 74 5f 64 61 | 74 61 00 00 00 00 00 0c |..get_da|ta......|
|00000440| 00 00 00 19 00 00 00 19 | 00 00 00 1a 00 00 00 1a |........|........|
|00000450| 00 00 00 1a 00 00 00 1a | 00 00 00 1a 00 00 00 1a |........|........|
|00000460| 00 00 00 1a 00 00 00 1a | 00 00 00 1a 00 00 00 1b |........|........|
|00000470| 00 00 00 02 00 00 00 0a | 00 00 00 66 69 6c 65 5f |........|...file_|
|00000480| 6e 61 6d 65 00 00 00 00 | 00 0b 00 00 00 09 00 00 |name....|........|
|00000490| 00 70 69 64 5f 6c 69 73 | 74 00 02 00 00 00 0b 00 |.pid_lis|t.......|
|000004a0| 00 00 00 00 00 00 00 00 | 00 00 1d 00 00 00 20 00 |........|...... .|
|000004b0| 00 00 01 01 00 03 0a 00 | 00 00 44 00 00 00 80 00 |........|..D.....|
|000004c0| 00 00 5c 80 00 01 5a 00 | 00 00 16 40 00 80 41 00 |..\...Z.|...@..A.|
|000004d0| 00 00 5e 00 00 01 43 00 | 80 00 5e 00 00 01 1e 00 |..^...C.|..^.....|
|000004e0| 80 00 01 00 00 00 04 02 | 00 00 00 31 00 00 00 00 |........|...1....|
|000004f0| 00 0a 00 00 00 1e 00 00 | 00 1e 00 00 00 1e 00 00 |........|........|
|00000500| 00 1e 00 00 00 1e 00 00 | 00 1e 00 00 00 1e 00 00 |........|........|
|00000510| 00 1f 00 00 00 1f 00 00 | 00 20 00 00 00 01 00 00 |........|. ......|
|00000520| 00 0a 00 00 00 66 69 6c | 65 5f 6e 61 6d 65 00 00 |.....fil|e_name..|
|00000530| 00 00 00 09 00 00 00 01 | 00 00 00 0b 00 00 00 69 |........|.......i|
|00000540| 73 5f 72 6f 6f 74 6b 69 | 74 00 00 00 00 00 22 00 |s_rootki|t.....".|
|00000550| 00 00 28 00 00 00 01 01 | 00 03 0e 00 00 00 44 00 |..(.....|......D.|
|00000560| 00 00 80 00 00 00 5c 80 | 00 01 5a 00 00 00 16 40 |......\.|..Z....@|
|00000570| 01 80 4a 80 00 00 85 40 | 00 00 86 80 40 01 49 80 |..J....@|....@.I.|
|00000580| 00 80 49 00 c1 81 5e 00 | 00 01 43 00 80 00 5e 00 |..I...^.|..C...^.|
|00000590| 00 01 1e 00 80 00 05 00 | 00 00 04 0d 00 00 00 70 |........|.......p|
|000005a0| 6c 75 67 69 6e 5f 63 6f | 6c 6f 72 00 04 06 00 00 |lugin_co|lor.....|
|000005b0| 00 63 6f 6e 73 74 00 04 | 04 00 00 00 52 45 44 00 |.const..|....RED.|
|000005c0| 04 0c 00 00 00 70 6c 75 | 67 69 6e 5f 6e 61 6d 65 |.....plu|gin_name|
|000005d0| 00 04 13 00 00 00 50 72 | 6f 63 65 73 73 20 69 73 |......Pr|ocess is|
|000005e0| 20 68 69 64 64 65 6e 2e | 00 00 00 00 00 0e 00 00 | hidden.|........|
|000005f0| 00 23 00 00 00 23 00 00 | 00 23 00 00 00 23 00 00 |.#...#..|.#...#..|
|00000600| 00 23 00 00 00 24 00 00 | 00 24 00 00 00 24 00 00 |.#...$..|.$...$..|
|00000610| 00 24 00 00 00 25 00 00 | 00 25 00 00 00 27 00 00 |.$...%..|.%...'..|
|00000620| 00 27 00 00 00 28 00 00 | 00 01 00 00 00 0a 00 00 |.'...(..|........|
|00000630| 00 66 69 6c 65 5f 6e 61 | 6d 65 00 00 00 00 00 0d |.file_na|me......|
|00000640| 00 00 00 01 00 00 00 0b | 00 00 00 69 73 5f 72 6f |........|...is_ro|
|00000650| 6f 74 6b 69 74 00 17 00 | 00 00 01 00 00 00 01 00 |otkit...|........|
|00000660| 00 00 02 00 00 00 02 00 | 00 00 03 00 00 00 03 00 |........|........|
|00000670| 00 00 04 00 00 00 04 00 | 00 00 06 00 00 00 06 00 |........|........|
|00000680| 00 00 08 00 00 00 16 00 | 00 00 08 00 00 00 1b 00 |........|........|
|00000690| 00 00 1d 00 00 00 20 00 | 00 00 20 00 00 00 1d 00 |...... .|.. .....|
|000006a0| 00 00 22 00 00 00 28 00 | 00 00 28 00 00 00 22 00 |.."...(.|..(...".|
|000006b0| 00 00 28 00 00 00 01 00 | 00 00 0b 00 00 00 69 73 |..(.....|......is|
|000006c0| 5f 72 6f 6f 74 6b 69 74 | 00 0e 00 00 00 16 00 00 |_rootkit|........|
|000006d0| 00 00 00 00 00          |                         |.....   |        |
+--------+-------------------------+-------------------------+--------+--------+