HookDll
所属分类:钩子与API截获
开发工具:Visual C++
文件大小:63KB
下载次数:53
上传日期:2008-02-27 09:22:26
上 传 者:
qingtian123a
说明: PE文件是windows(95/98/NT)目前采用的可执行文件格式。流行的CIH病毒就是通过改变PE文件的内容,并且保持文件大小不变,从而实现自己的功能。本程序通过分析PE文件格式,将可执行文件的文件定位表重新定位,指向用户编写的DLL,然后指令指针返回正常调用位置。在DLL中通过系统挂钩,实现了后台各种级别密码的截获功能。
(PE file is windows (95/98/NT) is currently used in the executable file format. CIH virus is prevalent PE by changing the contents of the file, and keep the file size unchanged, and thus realize their functions. This procedure by analyzing the PE file format, the executable file to re-positioning table positioning, pointing users to the preparation of the DLL, and then return to normal call instruction pointer location. Adopted in the DLL system linking all levels realize the background of the intercepted password function.)
文件列表:
HookDll\decode\decode.001 (4290, 1999-01-11)
HookDll\decode\decode.clw (769, 1999-03-31)
HookDll\decode\decode.cpp (2030, 1999-01-10)
HookDll\decode\decode.dsp (4230, 2008-02-26)
HookDll\decode\decode.dsw (535, 1999-04-03)
HookDll\decode\decode.h (1332, 1999-01-10)
HookDll\decode\decode.rc (4846, 1999-01-11)
HookDll\decode\decodeDlg.cpp (3900, 1999-01-11)
HookDll\decode\decodeDlg.h (1351, 1999-01-11)
HookDll\decode\Loadlib.cpp (4071, 1999-01-11)
HookDll\decode\loadlib.h (190, 1999-01-09)
HookDll\decode\res\decode.ico (1078, 1999-01-10)
HookDll\decode\res\decode.rc2 (398, 1999-01-10)
HookDll\decode\resource.h (592, 1999-01-11)
HookDll\decode\StdAfx.cpp (204, 1999-01-10)
HookDll\decode\StdAfx.h (928, 1999-01-10)
HookDll\fordebug\fordebug.001 (4157, 1999-01-02)
HookDll\fordebug\fordebug.clw (1589, 1999-03-31)
HookDll\fordebug\fordebug.cpp (2091, 1999-01-02)
HookDll\fordebug\fordebug.dsp (4202, 2008-02-26)
HookDll\fordebug\fordebug.h (1354, 1999-01-02)
HookDll\fordebug\fordebug.rc (5628, 1999-01-02)
HookDll\fordebug\fordebugDlg.cpp (4282, 1999-01-02)
HookDll\fordebug\fordebugDlg.h (1395, 1999-01-02)
HookDll\fordebug\HookDll.dll (22528, 1999-01-02)
HookDll\fordebug\res\fordebug.ico (1078, 1999-01-02)
HookDll\fordebug\res\fordebug.rc2 (400, 1999-01-02)
HookDll\fordebug\resource.h (732, 1999-01-02)
HookDll\fordebug\StdAfx.cpp (206, 1999-01-02)
HookDll\fordebug\StdAfx.h (987, 1999-01-02)
HookDll\HLP\CRACKUP.RTF (80530, 1999-03-20)
HookDll\HookDll.001 (4266, 1999-01-07)
HookDll\HookDll.clw (156, 1998-05-28)
HookDll\HookDll.cpp (7670, 1999-01-11)
HookDll\HookDll.def (225, 1998-05-29)
HookDll\HookDll.dll (22528, 1998-06-14)
HookDll\HookDll.dsp (4201, 2008-02-26)
HookDll\HookDll.dsw (937, 2008-02-26)
HookDll\HookDll.h (232, 1999-01-02)
HookDll\HookDll.ncb (66560, 2008-02-26)
... ...
近期下载者:
相关文件:
收藏者: