bat in liteclient

• CollectAll.bat

  Call toolsautorun.bat
  Call PreProcess.bat %3 %2
  Call CollectBehavior.bat %1 %2 %3 %4 %5 %6
  Call PostProcess.bat %2 %5
  Call CollectResult.bat %2 %5
  

• PreProcess.bat

  Call Sysinfo.vbs, SAL, Docode, detail is:

  if not exist "%windir%\syswow64" (
      cscript //nologo sysinfo.vbs
  ) else (
      .\drivers\x64box cscript //nologo sysinfo.vbs
  )
  
  .\bes\SALineup.exe --productname=sc --loglevel="all" --logpath="%2\tmsal.log" %1 %3
  
  .\Docode\bin\DocodeScan.exe %1
  

  CollectBehavior.bat

  call behaviordumper.exe with args.

  .\BehaviorDumper.exe -c -p -f -t %1 -o %2 %3 -x %4 -a %5 --pdf-multi-version --office-multi-version --check-heapspray %6 %7
  

• PostProcess.bat

  call 7z.exe to pack C:\/sandcastle\/log\/ to result.zip. the detail is:

  start /wait c:\python27\python.exe .\extra_info.py

  7z.exe a -tzip -ssw -r -y -pvirus %1\result.zip %1\files,``%1 is log dir

  7z.exe a -tzip -ssw -y -pvirus %1\result.zip %1\RootkitBuster.log

  ```7z.exe a -tzip -ssw -y -pvirus %1\result.zip %1\ATRT.log`````

• CollectResult.bat

  merge Docode, SAL, RootkitBuster.log, ATRT.log and api.log by d2.exe

  echo merge docode result
  .\dmerge.exe -o %1 -d %1\docode.xml -t %1\sal.xml

  .\dmerge.exe -o %1 -k %1\ATRT.log