文件名称:UTM4XP
- 所属分类:
- 驱动编程
- 资源属性:
- [Windows] [Visual C] [Basic/ASP] [源码]
- 上传时间:
- 2012-11-26
- 文件大小:
- 1.38mb
- 下载次数:
- 0次
- 提 供 者:
- 韩**
- 相关连接:
- 无
- 下载说明:
- 别用迅雷下载,失败请重下,重下不扣分!
介绍说明--下载内容均来自于网络,请自行研究使用
一个简单ARK源码。包括进线程操作,隐藏进程检测,SSDT,SHADOW SSDT hook查看-An anti-rookit tool
(系统自动生成,下载前可以参看下载内容)
下载文件列表
!FPLG\Shadow SSDT\CIcyListView.cls
.....\...........\frmMain.frm
.....\...........\frmMain.frx
.....\...........\mdlDisasm.bas
.....\...........\mdlDumpKernelMemory.bas
.....\...........\mdlPortableExecutable.bas
.....\...........\mdlShadowSSDT.bas
.....\...........\MSSCCPRJ.SCC
.....\...........\print scr.jpg
.....\...........\Shadow SSDT.csi
.....\...........\shadow ssdt.exe.manifest
.....\...........\Shadow SSDT.lvw
.....\...........\Shadow SSDT.vbp
.....\...........\Shadow SSDT.vbw
.....\...........\Shadow.exe
.....\...........\Shadow_SSDT.RES
.....\.SDT\Dump.frm
.....\....\Dump.frx
.....\....\List.frm
.....\....\List.frx
.....\....\MSSCCPRJ.SCC
.....\....\SSDT.bas
.....\....\SSDT.exe
.....\....\ssdt.old\ASM.RES
.....\....\........\Form1.frm
.....\....\........\Form1.frx
.....\....\........\HookViewer.vbp
.....\....\........\HookViewer.vbw
.....\....\........\mFilePE.bas
.....\....\........\mKernelModule.bas
.....\....\........\mMapIntoMemory.bas
.....\....\........\mMemoryControl.bas
.....\....\........\mod_MapMemory.bas
.....\....\........\mPeGetExports.bas
.....\....\........\mProcess.bas
.....\....\........\mSetStyle.bas
.....\....\........\MSSCCPRJ.SCC
.....\....\........\mStrCheck.bas
.....\....\........\SSDT.exe
.....\....\SSDT.vbp
.....\....\SSDT.vbw
.....\内核模块\FileTrust.DLL
.....\........\Form1.frm
.....\........\Form1.frx
.....\........\KnMod.exe
.....\........\工程1.vbp
.....\........\工程1.vbw
.....\恢复Inline-Hook(Only XP)\form1.frm
.....\........................\mEnumKernelModule.bas
.....\........................\mMapFileIntoMemory.bas
.....\........................\mod_MapMemory.bas
.....\........................\mSSDTHookProcess.bas
.....\........................\Project1.vbp
.....\........................\Project1.vbw
.....\........................\恢复InlineHook.exe
.....\服务\frmAdd.frx
.....\....\frmInfo.frm
.....\....\frmInfo.frx
.....\....\frmMain.frm
.....\....\frmMain.frx
.....\....\MSSCCPRJ.SCC
.....\....\SimpleSVCMGR.csi
.....\....\SimpleSVCMGR.lvw
.....\....\SimpleSVCMGR.vbp
.....\....\SimpleSVCMGR.vbw
.....\....\服务.exe
.....\消息钩子\appres.res
.....\........\frmMain.frm
.....\........\frmMain.frx
.....\........\ModKernelMemory.bas
.....\........\ModMain.bas
.....\........\ModMsgHook.bas
.....\........\ModOpenProcess.bas
.....\........\ModPrivilege.bas
.....\........\ModProcess.bas
.....\........\ModWindow.bas
.....\........\MsgHooks.exe
.....\........\MsgHooks.vbp
.....\........\MsgHooks.vbw
.....\........\MSSCCPRJ.SCC
.....\硬件控制器\Form1.frm
.....\..........\MSSCCPRJ.SCC
.....\..........\VBHardwareController.cls
.....\..........\工程1.vbp
.....\..........\工程1.vbw
.....\..........\硬件控制器.exe
.....\端口\frmMain.frm
.....\....\frmMain.frx
.....\....\GetNetInfo.RES
.....\....\GetNetInfo.vbp
.....\....\GetNetInfo.vbw
.....\....\modNetInfo.bas
.....\....\modPrivilege.bas
.....\....\MSSCCPRJ.SCC
.....\....\Port.exe
.RES\mykill.rar
....\ntoskrnl.txt
....\Test AV+ARK.txt
....\UTM.ico
....\使用ForceKill\CHFK.ddt
.....\...........\frmMain.frm
.....\...........\frmMain.frx
.....\...........\mdlDisasm.bas
.....\...........\mdlDumpKernelMemory.bas
.....\...........\mdlPortableExecutable.bas
.....\...........\mdlShadowSSDT.bas
.....\...........\MSSCCPRJ.SCC
.....\...........\print scr.jpg
.....\...........\Shadow SSDT.csi
.....\...........\shadow ssdt.exe.manifest
.....\...........\Shadow SSDT.lvw
.....\...........\Shadow SSDT.vbp
.....\...........\Shadow SSDT.vbw
.....\...........\Shadow.exe
.....\...........\Shadow_SSDT.RES
.....\.SDT\Dump.frm
.....\....\Dump.frx
.....\....\List.frm
.....\....\List.frx
.....\....\MSSCCPRJ.SCC
.....\....\SSDT.bas
.....\....\SSDT.exe
.....\....\ssdt.old\ASM.RES
.....\....\........\Form1.frm
.....\....\........\Form1.frx
.....\....\........\HookViewer.vbp
.....\....\........\HookViewer.vbw
.....\....\........\mFilePE.bas
.....\....\........\mKernelModule.bas
.....\....\........\mMapIntoMemory.bas
.....\....\........\mMemoryControl.bas
.....\....\........\mod_MapMemory.bas
.....\....\........\mPeGetExports.bas
.....\....\........\mProcess.bas
.....\....\........\mSetStyle.bas
.....\....\........\MSSCCPRJ.SCC
.....\....\........\mStrCheck.bas
.....\....\........\SSDT.exe
.....\....\SSDT.vbp
.....\....\SSDT.vbw
.....\内核模块\FileTrust.DLL
.....\........\Form1.frm
.....\........\Form1.frx
.....\........\KnMod.exe
.....\........\工程1.vbp
.....\........\工程1.vbw
.....\恢复Inline-Hook(Only XP)\form1.frm
.....\........................\mEnumKernelModule.bas
.....\........................\mMapFileIntoMemory.bas
.....\........................\mod_MapMemory.bas
.....\........................\mSSDTHookProcess.bas
.....\........................\Project1.vbp
.....\........................\Project1.vbw
.....\........................\恢复InlineHook.exe
.....\服务\frmAdd.frx
.....\....\frmInfo.frm
.....\....\frmInfo.frx
.....\....\frmMain.frm
.....\....\frmMain.frx
.....\....\MSSCCPRJ.SCC
.....\....\SimpleSVCMGR.csi
.....\....\SimpleSVCMGR.lvw
.....\....\SimpleSVCMGR.vbp
.....\....\SimpleSVCMGR.vbw
.....\....\服务.exe
.....\消息钩子\appres.res
.....\........\frmMain.frm
.....\........\frmMain.frx
.....\........\ModKernelMemory.bas
.....\........\ModMain.bas
.....\........\ModMsgHook.bas
.....\........\ModOpenProcess.bas
.....\........\ModPrivilege.bas
.....\........\ModProcess.bas
.....\........\ModWindow.bas
.....\........\MsgHooks.exe
.....\........\MsgHooks.vbp
.....\........\MsgHooks.vbw
.....\........\MSSCCPRJ.SCC
.....\硬件控制器\Form1.frm
.....\..........\MSSCCPRJ.SCC
.....\..........\VBHardwareController.cls
.....\..........\工程1.vbp
.....\..........\工程1.vbw
.....\..........\硬件控制器.exe
.....\端口\frmMain.frm
.....\....\frmMain.frx
.....\....\GetNetInfo.RES
.....\....\GetNetInfo.vbp
.....\....\GetNetInfo.vbw
.....\....\modNetInfo.bas
.....\....\modPrivilege.bas
.....\....\MSSCCPRJ.SCC
.....\....\Port.exe
.RES\mykill.rar
....\ntoskrnl.txt
....\Test AV+ARK.txt
....\UTM.ico
....\使用ForceKill\CHFK.ddt