Description: Elf by active defense system vc6 source, kernel-level protection, with driver source code, everyone studies.
To Search:
- [HIPSrootkit] - The idea of an active defense, very good
File list (Check if you may need any files):
ProtectPC\ProctePC\ProctePC\AutoRunVirus.cpp
.........\........\........\AutoRunVirus.h
.........\........\........\Debug\AutoRunVirus.obj
.........\........\........\.....\DialogPOP.obj
.........\........\........\.....\ProctePC.exe
.........\........\........\.....\ProctePC.ilk
.........\........\........\.....\ProctePC.obj
.........\........\........\.....\ProctePC.pch
.........\........\........\.....\ProctePC.pdb
.........\........\........\.....\ProctePC.res
.........\........\........\.....\ProctePCDlg.obj
.........\........\........\.....\SkinH.dll
.........\........\........\.....\skinh.she
.........\........\........\.....\StdAfx.obj
.........\........\........\.....\vc60.idb
.........\........\........\.....\vc60.pdb
.........\........\........\DialogPOP.cpp
.........\........\........\DialogPOP.h
.........\........\........\ProctePC.aps
.........\........\........\ProctePC.clw
.........\........\........\ProctePC.cpp
.........\........\........\ProctePC.dsp
.........\........\........\ProctePC.dsw
.........\........\........\ProctePC.h
.........\........\........\ProctePC.ncb
.........\........\........\ProctePC.opt
.........\........\........\ProctePC.plg
.........\........\........\ProctePC.rc
.........\........\........\ProctePCDlg.cpp
.........\........\........\ProctePCDlg.h
.........\........\........\ProctePrompt.cpp
.........\........\........\ProctePrompt.h
.........\........\........\ReadMe.txt
.........\........\........\res\1.ico
.........\........\........\...\18.ico
.........\........\........\...\ProctePC.ico
.........\........\........\...\ProctePC.rc2
.........\........\........\resource.h
.........\........\........\SkinH.h
.........\........\........\SkinH.lib
.........\........\........\StdAfx.cpp
.........\........\........\StdAfx.h
.........\...tectPCsys\ProtectPCsys\.sys\hljleo.lib
.........\............\............\....\i386\hljleo.lib
.........\............\............\....\....\hljleo.pdb
.........\............\............\....\....\hljleo.sys
.........\............\............\buildchk_wnet_x86.log
.........\............\............\buildchk_wxp_x86.log
.........\............\............\Cr0Set.c
.........\............\............\DealHook.c
.........\............\............\Driver.h
.........\............\............\DriverDeal.c
.........\............\............\FileDeal.c
.........\............\............\filedefine.h
.........\............\............\FileInfo.h
.........\............\............\GetDllFuncAddress.c
.........\............\............\GetProcessName.c
.........\............\............\Globaldefine.h
.........\............\............\GoOrNot.c
.........\............\............\KeyDeal.c
.........\............\............\killself.c
.........\............\............\MakeDriver.bat
.........\............\............\makefile
.........\............\............\ntifs.h
.........\............\............\objchk_wnet_x86\i386\rk1.obj
.........\............\............\...............\_objects.mac
.........\............\............\........xp_x86\i386\cr0set.obj
.........\............\............\..............\....\dealhook.obj
.........\............\............\..............\....\driverdeal.obj
.........\............\............\..............\....\filedeal.obj
.........\............\............\..............\....\getdllfuncaddress.obj
.........\............\............\..............\....\getprocessname.obj
.........\............\............\..............\....\goornot.obj
.........\............\............\..............\....\keydeal.obj
.........\............\............\..............\....\killself.obj
.........\............\............\..............\....\openprocess.obj
.........\............\............\..............\....\processdeal.obj
.........\............\............\..............\....\rk1.obj
.........\............\............\..............\_objects.mac
.........\............\............\openprocess.c
.........\............\............\ProcessDeal.c
.........\............\............\rk1.c
.........\......