Here is the source code which I try to compile and also build my solution.
Please see at: http://sousasamir.blogspot.com/
Thanks for help.
Regards.
Type: Posts; User: sousasamir
Here is the source code which I try to compile and also build my solution.
Please see at: http://sousasamir.blogspot.com/
Thanks for help.
Regards.
Do you have a example with this function using this file?
Regards.
Anyone can contribute with a example to use ZwWriteFile/NtWriteFile with the file "\\??\\C:\\PROGRA~1\\UNT\\UNT.DLL" to change the file contents?
Regards.
Anyone can please, contribute with an example to use ZwWriteFile/NtWriteFile
procedure? I think maybe I can in boot proccess change the trojan file content
to another one to stop himself to work....
We like to build a solution, not using 3rd party.
We cannot block execution, because they have a dll and this dll still hooking the system, blocking any attemps to delete, block, rename, averything...
Well, We are trying to build an application using NT Native Api.
This application is for to delete some files used by a trojan, with most
popular AV donīt detect here and also donīt delete the...