Description: Melrose written by well-known hacker rootkit, which can learn a lot of rootkit technology
- [SpamMon_src] - spamMonitor is a small program to detect
- [FU_Detect] - this is a detection approach on FU rootk
File list (Check if you may need any files):
200710251019699\He4Hook215b6\CommonClasses\Include\KNew.h
...............\............\.............\.......\KTypes.h
...............\............\.............\.......\NtoskrnlUndoc.h
...............\............\.............\.......\使用说明.txt
...............\............\.............\Include
...............\............\.............\KBinaryTree\KBinaryTree.cpp
...............\............\.............\...........\KBinaryTree.h
...............\............\.............\...........\KBinaryTreeNode.cpp
...............\............\.............\...........\KBinaryTreeNode.h
...............\............\.............\KBinaryTree
...............\............\.............\.DLinkedList\KDLinkedList.cpp
...............\............\.............\............\KDLinkedList.h
...............\............\.............\............\KDLinkedListItem.cpp
...............\............\.............\............\KDLinkedListItem.h
...............\............\.............\KDLinkedList
...............\............\.............\.InterlockedCounter\KInterlockedCounter.cpp
...............\............\.............\...................\KInterlockedCounter.h
...............\............\.............\KInterlockedCounter
...............\............\.............\.Locker\KLocker.cpp
...............\............\.............\.......\KLocker.h
...............\............\.............\KLocker
...............\............\.............\.MemoryManager\KMemoryManager.cpp
...............\............\.............\..............\KMemoryManager.h
...............\............\.............\KMemoryManager
...............\............\.............\..utexSynchroObject\KMutexSynchroObject.cpp
...............\............\.............\...................\KMutexSynchroObject.h
...............\............\.............\KMutexSynchroObject
...............\............\.............\.ShieldDirectory\KShieldDirectory.cpp
...............\............\.............\................\KShieldDirectory.h
...............\............\.............\................\KShieldDirectoryTree.cpp
...............\............\.............\................\KShieldDirectoryTree.h
...............\............\.............\KShieldDirectory
...............\............\.............\..pinSynchroObject\KSpinSynchroObject.cpp
...............\............\.............\..................\KSpinSynchroObject.h
...............\............\.............\KSpinSynchroObject
...............\............\.............\..tdLib\krnlstdlib.cpp
...............\............\.............\.......\krnlstdlib.h
...............\............\.............\KStdLib
...............\............\.............\..ynchroObject\KSynchroObject.cpp
...............\............\.............\..............\KSynchroObject.h
...............\............\.............\KSynchroObject
...............\............\.............\.TdiInterface\KTdiInterface.cpp
...............\............\.............\.............\KTdiInterface.h
...............\............\.............\.............\smpletcp.h
...............\............\.............\KTdiInterface
...............\............\.............\....StreamSocket\KTdiStreamSocket.cpp
...............\............\.............\................\KTdiStreamSocket.h
...............\............\.............\KTdiStreamSocket
...............\............\.............\Misc\Misc.cpp
...............\............\.............\....\Misc.h
...............\............\.............\Misc
...............\............\.............\PeFile\Pefile.cpp
...............\............\.............\......\Pefile.h
...............\............\.............\......\PeHeader.h
...............\............\.............\PeFile
...............\............\.............\使用说明.txt
...............\............\CommonClasses
...............\............\COPYING
...............\............\He4HookInv\DevStudio\bin\win2k\i386\Free
...............\............\..........\.........\...\.....\i386
...............\............\..........\.........\...\win2k
...............\......