rundll32.exe文件详解
winexec(Pchar("StrCommand"),sw_Show);
其中"StrCommand"代表以下命令之一(使用Windows中的运行不要加引号):
"rundll32 shell32,Control_RunDLL" - 运行控制面板
"rundll32 shell32,OpenAs_RunDLL" - 打开"打开方式"窗口
"rundll32 shell32,ShellAboutA Info-Box" - 打开"关于"窗口
"rundll32 shell32,Control_RunDLL desk.cpl" - 打开"显示属性"窗口
"rundll32 user,cascadechildwindows" - 层叠全部窗口
"rundll32 user,tilechildwindows" - 最小化所有的子窗口
"rundll32 user,repaintscreen" - 刷新桌面
"rundll32 shell,shellexecute Explorer" - 重新运行Windows Explorer
"rundll32 keyboard,disable" - 锁写键盘
"rundll32 mouse,disable" - 让鼠标失效
"rundll32 user,swapmousebutton" - 交换鼠标按钮
"rundll32 user,setcursorpos" - 设置鼠标位置为(0,0)
"rundll32 user,wnetconnectdialog" - 打开"映射网络驱动器"窗口
"rundll32 user,wnetdisconnectdialog" - 打开"断开网络驱动器"窗口
"rundll32 user,disableoemlayer" - 显示BSOD窗口, (BSOD) = Blue Screen Of
Death, 即蓝屏
"rundll32 diskcopy,DiskCopyRunDll" - 打开磁盘复制窗口
"rundll32 rnaui.dll,RnaWizard" - 运行"Internet连接向导",
如果加上参数"/1"则为silent模式
"rundll32 shell32,SHFormatDrive" - 打开"格式化磁盘(A)"窗口
"rundll32 shell32,SHExitWindowsEx -1" - 冷启动Windows Explorer
"rundll32 shell32,SHExitWindowsEx 1" - 关机
"rundll32 shell32,SHExitWindowsEx 0" - 退当前用户
"rundll32 shell32,SHExitWindowsEx 2" Windows9x 快速重启
"rundll32 krnl386.exe,exitkernel" - 强行退出Windows 9x(无确认)
"rundll rnaui.dll,RnaDial "MyConnect" - 运行"网络连接"对话框
"rundll32 msprint2.dll,RUNDLL_PrintTestPage" - 选择打印机和打印测试页
"rundll32 user,setcaretblinktime" - 设置光标闪烁速度
"rundll32 user, setdoubleclicktime" - 测试鼠标双击速度
"rundll32 sysdm.cpl,InstallDevice_Rundll" - 搜索非PnP设备
控制面板中的各项功能
winexec("rundll32.exe shell32.dll, Control_RunDLL", 9);
{辅助选项 属性-键盘}
winexec("rundll32.exe shell32.dll, Control_RunDLL access.cpl, 1", 9);
{辅助选项 属性-声音}
winexec("rundll32.exe shell32.dll, Control_RunDLL access.cpl, 2", 9);
{辅助选项 属性-显示}
winexec("rundll32.exe shell32.dll, Control_RunDLL access.cpl, 3", 9);
{辅助选项 属性-鼠标}
winexec("rundll32.exe shell32.dll, Control_RunDLL access.cpl, 4", 9);
{辅助选项 属性-常规}
winexec("rundll32.exe shell32.dll, Control_RunDLL access.cpl, 5", 9);
{添加/删除程序 属性-安装/卸载}
winexec("rundll32.exe shell32.dll, Control_RunDLL Appwiz.cpl, 1", 9);
{添加/删除程序 属性-Windows安装程序}
winexec("rundll32.exe shell32.dll, Control_RunDLL Appwiz.cpl, 2", 9);
{添加/删除程序 属性-启动盘}
winexec("rundll32.exe shell32.dll, Control_RunDLL Appwiz.cpl, 3", 9);
{显示 属性-背景}
winexec("rundll32.exe shell32.dll, Control_RunDLL desk.cpl, 0", 9);
{显示 属性-屏幕保护程序}
winexec("rundll32.exe shell32.dll, Control_RunDLL desk.cpl, 1", 9);
{显示 属性-外观}
winexec("rundll32.exe shell32.dll, Control_RunDLL desk.cpl, 2", 9);
{显示 属性-设置}
winexec("rundll32.exe shell32.dll, Control_RunDLL desk.cpl, 3", 9);
{Internet 属性-常规}
winexec("rundll32.exe shell32.dll, Control_RunDLL Inetcpl.cpl, 0",
9);
{Internet 属性-安全}
winexec("rundll32.exe shell32.dll, Control_RunDLL Inetcpl.cpl, 1",
9);
{Internet 属性-内容}
winexec("rundll32.exe shell32.dll, Control_RunDLL Inetcpl.cpl, 2",
9);
{Internet 属性-连接}
winexec("rundll32.exe shell32.dll, Control_RunDLL Inetcpl.cpl, 3",
9);
{Internet 属性-程序}
winexec("rundll32.exe shell32.dll, Control_RunDLL Inetcpl.cpl, 4",
9);
{Internet 属性-高级}
winexec("rundll32.exe shell32.dll, Control_RunDLL Inetcpl.cpl, 5",
9);
{区域设置 属性-区域设置}
winexec("rundll32.exe shell32.dll, Control_RunDLL Intl.cpl, 0", 9);
{区域设置 属性-数字}
winexec("rundll32.exe shell32.dll, Control_RunDLL Intl.cpl, 1", 9);
{区域设置 属性-货币}
winexec("rundll32.exe shell32.dll, Control_RunDLL Intl.cpl, 2", 9);
{区域设置 属性-时间}
winexec("rundll32.exe shell32.dll, Control_RunDLL Intl.cpl, 3", 9);
{区域设置 属性-日期}
winexec("rundll32.exe shell32.dll, Control_RunDLL Intl.cpl, 4", 9);
winexec("rundll32.exe shell32.dll, Control_RunDLL Joy.cpl, 0", 9);