CN101414338A - 一种绕过挂钩的方法和装置 - Google Patents
一种绕过挂钩的方法和装置 Download PDFInfo
- Publication number
- CN101414338A CN101414338A CNA2007101624483A CN200710162448A CN101414338A CN 101414338 A CN101414338 A CN 101414338A CN A2007101624483 A CNA2007101624483 A CN A2007101624483A CN 200710162448 A CN200710162448 A CN 200710162448A CN 101414338 A CN101414338 A CN 101414338A
- Authority
- CN
- China
- Prior art keywords
- reflection
- function
- module
- address
- another reflection
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 37
- 230000006870 function Effects 0.000 claims abstract description 57
- 241000700605 Viruses Species 0.000 description 6
- 238000010586 diagram Methods 0.000 description 5
- 238000011161 development Methods 0.000 description 3
- 238000012545 processing Methods 0.000 description 3
- 238000007796 conventional method Methods 0.000 description 2
- 238000013461 design Methods 0.000 description 2
- 239000000284 extract Substances 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000005856 abnormality Effects 0.000 description 1
- 230000002155 anti-virotic effect Effects 0.000 description 1
- 238000001514 detection method Methods 0.000 description 1
- 235000021472 generally recognized as safe Nutrition 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 238000012544 monitoring process Methods 0.000 description 1
- 238000001028 reflection method Methods 0.000 description 1
- 230000003612 virological effect Effects 0.000 description 1
Images
Landscapes
- Stored Programmes (AREA)
- Devices For Executing Special Programs (AREA)
Abstract
Description
Claims (7)
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2007101624483A CN101414338B (zh) | 2007-10-15 | 2007-10-15 | 一种绕过挂钩的方法和装置 |
HK09107194A HK1127422A1 (en) | 2007-10-15 | 2009-08-05 | Method and apparatus for bypassing hook |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2007101624483A CN101414338B (zh) | 2007-10-15 | 2007-10-15 | 一种绕过挂钩的方法和装置 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN101414338A true CN101414338A (zh) | 2009-04-22 |
CN101414338B CN101414338B (zh) | 2012-11-21 |
Family
ID=40594870
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN2007101624483A Active CN101414338B (zh) | 2007-10-15 | 2007-10-15 | 一种绕过挂钩的方法和装置 |
Country Status (2)
Country | Link |
---|---|
CN (1) | CN101414338B (zh) |
HK (1) | HK1127422A1 (zh) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109086183A (zh) * | 2018-07-12 | 2018-12-25 | 武汉斗鱼网络科技有限公司 | 一种应用程序的监控方法、装置、电子设备及存储介质 |
CN109933985A (zh) * | 2019-02-25 | 2019-06-25 | 百度在线网络技术(北京)有限公司 | 一种绕过挂钩的方法、装置、设备和计算机存储介质 |
CN115145571A (zh) * | 2021-03-31 | 2022-10-04 | 武汉斗鱼鱼乐网络科技有限公司 | 在程序核心代码中隐藏系统函数调用的方法、装置和介质 |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1150454C (zh) * | 2001-02-01 | 2004-05-19 | 英业达股份有限公司 | 拦截Win32应用程序界面的方法 |
CN1282059C (zh) * | 2003-03-12 | 2006-10-25 | 联想(北京)有限公司 | 一种加快操作系统的引导方法 |
CN1936834B (zh) * | 2006-09-14 | 2010-05-12 | 珠海金山软件股份有限公司 | 一种Windows平台下对抗API挂接的方法 |
CN100442228C (zh) * | 2006-11-17 | 2008-12-10 | 迈普(四川)通信技术有限公司 | 嵌入式设备引导方法 |
-
2007
- 2007-10-15 CN CN2007101624483A patent/CN101414338B/zh active Active
-
2009
- 2009-08-05 HK HK09107194A patent/HK1127422A1/xx not_active IP Right Cessation
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109086183A (zh) * | 2018-07-12 | 2018-12-25 | 武汉斗鱼网络科技有限公司 | 一种应用程序的监控方法、装置、电子设备及存储介质 |
CN109933985A (zh) * | 2019-02-25 | 2019-06-25 | 百度在线网络技术(北京)有限公司 | 一种绕过挂钩的方法、装置、设备和计算机存储介质 |
CN109933985B (zh) * | 2019-02-25 | 2022-02-25 | 百度在线网络技术(北京)有限公司 | 一种绕过挂钩的方法、装置、设备和计算机存储介质 |
CN115145571A (zh) * | 2021-03-31 | 2022-10-04 | 武汉斗鱼鱼乐网络科技有限公司 | 在程序核心代码中隐藏系统函数调用的方法、装置和介质 |
Also Published As
Publication number | Publication date |
---|---|
HK1127422A1 (en) | 2009-09-25 |
CN101414338B (zh) | 2012-11-21 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US9852296B2 (en) | Rollback feature | |
US7103913B2 (en) | Method and apparatus for determination of the non-replicative behavior of a malicious program | |
US8856932B2 (en) | Rootkit monitoring agent built into an operating system kernel | |
US20220027452A1 (en) | Dynamic switching between pointer authentication regimes | |
US7293251B2 (en) | Initiating and debugging a process in a high assurance execution environment | |
CN1118750C (zh) | 初始化和重新启动操作系统 | |
CN100423013C (zh) | 加载可信操作系统的方法和装置 | |
US7913072B2 (en) | Information-processing apparatus and activation method thereof | |
US20120066546A1 (en) | System recovery method and computing apparatus having system recovery function | |
EP1902353A2 (en) | Changing code execution path using kernel mode redirection | |
US20050114578A1 (en) | Secure software SMI dispatching using caller address | |
US9448888B2 (en) | Preventing a rollback attack in a computing system that includes a primary memory bank and a backup memory bank | |
US20110016463A1 (en) | Computer-hardware, life-extension apparatus and method | |
CN101414338B (zh) | 一种绕过挂钩的方法和装置 | |
US20190102279A1 (en) | Generating an instrumented software package and executing an instance thereof | |
US20030046524A1 (en) | Method for dynamically designating initialization modules as recovery code | |
KR101455668B1 (ko) | 분리 실행 기반의 컨텐츠용 베이식 블록 그룹 정의 장치, 정의 방법 및 그를 기록한 컴퓨터로 판독 가능한 기록매체 | |
CN103593612A (zh) | 一种处理恶意程序的方法及装置 | |
Cohen | A note on high-integrity PC bootstrapping | |
JP2005032182A (ja) | プログラム、攻撃コード抽出装置およびその方法 | |
KR100755960B1 (ko) | 서비스 테이블 변조 감지 및 복원 시스템, 방법 그리고 그방법을 수행하는 프로그램이 기록된 컴퓨터 판독 가능한기록매체 | |
CN102301328B (zh) | 将多个设备加载到刀片上 | |
Terzić et al. | BASIC INPUT/OUTPUT SYSTEM BIOS FUNCTIONS AND MODIFICATIONS | |
JP2002318697A (ja) | 計算機システムの障害処理プログラム |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 1127422 Country of ref document: HK |
|
ASS | Succession or assignment of patent right |
Owner name: BEIJING RISING INTERNATIONAL TECHNOLOGY CO., LTD. Free format text: FORMER OWNER: BEIJING RISING INTERNATIONAL SOFTWARE CO., LTD. Effective date: 20100413 |
|
C41 | Transfer of patent application or patent right or utility model | ||
COR | Change of bibliographic data |
Free format text: CORRECT: ADDRESS; FROM: 100080 ROOM 1305, ZHONGKE BUILDING, NO.22, ZHONGGUANCUN AVENUE, BEIJING CITY TO: 100190 ROOM 1301, ZHONGKE BUILDING, NO.22, ZHONGGUANCUN AVENUE, HAIDIAN DISTRICT, BEIJING CITY |
|
TA01 | Transfer of patent application right |
Effective date of registration: 20100413 Address after: 100190 Beijing City, Haidian District Zhongguancun Street Branch No. 22 building, room 1301 Applicant after: Beijing Rising Information Technology Co., Ltd. Address before: 100080, room 1305, Zhongke building, 22 Zhongguancun street, Beijing Applicant before: Beijing Rising International Software Co., Ltd. |
|
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
REG | Reference to a national code |
Ref country code: HK Ref legal event code: GR Ref document number: 1127422 Country of ref document: HK |
|
C56 | Change in the name or address of the patentee | ||
CP01 | Change in the name or title of a patent holder |
Address after: 100190 Beijing City, Haidian District Zhongguancun Street Branch No. 22 building, room 1301 Patentee after: Beijing Rising Information Technology Co., Ltd Address before: 100190 Beijing City, Haidian District Zhongguancun Street Branch No. 22 building, room 1301 Patentee before: Beijing Rising Information Technology Co., Ltd. |
|
CP01 | Change in the name or title of a patent holder | ||
CP01 | Change in the name or title of a patent holder |
Address after: 100190 Beijing City, Haidian District Zhongguancun Street Branch No. 22 building, room 1301 Patentee after: Beijing net an Technology Limited by Share Ltd Address before: 100190 Beijing City, Haidian District Zhongguancun Street Branch No. 22 building, room 1301 Patentee before: Beijing Rising Information Technology Co., Ltd |