├── .gitattributes
├── NewHideDriverEx.sln
├── NewHideDriverEx
    ├── DriverEntry.c
    ├── HideDiver.h
    ├── HideDriver.c
    ├── NewHideDriverEx.inf
    ├── NewHideDriverEx.vcxproj
    ├── NewHideDriverEx.vcxproj.filters
    ├── NewHideDriverEx.vcxproj.user
    ├── pch.h
    └── x64
    │   ├── Win7Debug
    │       ├── DriverEntry.obj
    │       ├── HideDriver.obj
    │       ├── NewHideDriverEx.Build.CppClean.log
    │       ├── NewHideDriverEx.inf
    │       ├── NewHideDriverEx.log
    │       ├── NewHideDriverEx.tlog
    │       │   ├── CL.read.1.tlog
    │       │   ├── CL.write.1.tlog
    │       │   ├── NewHideDriverEx.lastbuildstate
    │       │   ├── cl.command.1.tlog
    │       │   ├── link.command.1.tlog
    │       │   ├── link.read.1.tlog
    │       │   └── link.write.1.tlog
    │       ├── signtool.command.1.tlog
    │       ├── signtool.read.1.tlog
    │       ├── signtool.write.1.tlog
    │       ├── stampinf.command.1.tlog
    │       ├── stampinf.read.1.tlog
    │       ├── stampinf.write.1.tlog
    │       └── vc120.pdb
    │   └── Win8.1Debug
    │       ├── NewHideDriverEx.Build.CppClean.log
    │       └── NewHideDriverEx.log
├── NewHideDriverExTest
    ├── NewHideDriverExTest.aps
    ├── NewHideDriverExTest.cpp
    ├── NewHideDriverExTest.h
    ├── NewHideDriverExTest.rc
    ├── NewHideDriverExTest.vcxproj
    ├── NewHideDriverExTest.vcxproj.filters
    ├── NewHideDriverExTestDlg.cpp
    ├── NewHideDriverExTestDlg.h
    ├── ReadMe.txt
    ├── res
    │   ├── NewHideDriverExTest.ico
    │   └── NewHideDriverExTest.rc2
    ├── resource.h
    ├── stdafx.cpp
    ├── stdafx.h
    └── targetver.h
└── README.md


/.gitattributes:
--------------------------------------------------------------------------------
1 | # Auto detect text files and perform LF normalization
2 | * text=auto


--------------------------------------------------------------------------------
/NewHideDriverEx.sln:
--------------------------------------------------------------------------------
  1 | 
  2 | Microsoft Visual Studio Solution File, Format Version 12.00
  3 | # Visual Studio 2013
  4 | VisualStudioVersion = 12.0.31101.0
  5 | MinimumVisualStudioVersion = 10.0.40219.1
  6 | Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "NewHideDriverEx", "NewHideDriverEx\NewHideDriverEx.vcxproj", "{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}"
  7 | EndProject
  8 | Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "NewHideDriverExTest", "NewHideDriverExTest\NewHideDriverExTest.vcxproj", "{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}"
  9 | EndProject
 10 | Global
 11 | 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
 12 | 		Debug|Mixed Platforms = Debug|Mixed Platforms
 13 | 		Debug|Win32 = Debug|Win32
 14 | 		Debug|x64 = Debug|x64
 15 | 		Release|Mixed Platforms = Release|Mixed Platforms
 16 | 		Release|Win32 = Release|Win32
 17 | 		Release|x64 = Release|x64
 18 | 		Win7 Debug|Mixed Platforms = Win7 Debug|Mixed Platforms
 19 | 		Win7 Debug|Win32 = Win7 Debug|Win32
 20 | 		Win7 Debug|x64 = Win7 Debug|x64
 21 | 		Win7 Release|Mixed Platforms = Win7 Release|Mixed Platforms
 22 | 		Win7 Release|Win32 = Win7 Release|Win32
 23 | 		Win7 Release|x64 = Win7 Release|x64
 24 | 		Win8 Debug|Mixed Platforms = Win8 Debug|Mixed Platforms
 25 | 		Win8 Debug|Win32 = Win8 Debug|Win32
 26 | 		Win8 Debug|x64 = Win8 Debug|x64
 27 | 		Win8 Release|Mixed Platforms = Win8 Release|Mixed Platforms
 28 | 		Win8 Release|Win32 = Win8 Release|Win32
 29 | 		Win8 Release|x64 = Win8 Release|x64
 30 | 		Win8.1 Debug|Mixed Platforms = Win8.1 Debug|Mixed Platforms
 31 | 		Win8.1 Debug|Win32 = Win8.1 Debug|Win32
 32 | 		Win8.1 Debug|x64 = Win8.1 Debug|x64
 33 | 		Win8.1 Release|Mixed Platforms = Win8.1 Release|Mixed Platforms
 34 | 		Win8.1 Release|Win32 = Win8.1 Release|Win32
 35 | 		Win8.1 Release|x64 = Win8.1 Release|x64
 36 | 	EndGlobalSection
 37 | 	GlobalSection(ProjectConfigurationPlatforms) = postSolution
 38 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Debug|Mixed Platforms.ActiveCfg = Win8.1 Debug|Win32
 39 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Debug|Mixed Platforms.Build.0 = Win8.1 Debug|Win32
 40 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Debug|Mixed Platforms.Deploy.0 = Win8.1 Debug|Win32
 41 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Debug|Win32.ActiveCfg = Win8.1 Debug|Win32
 42 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Debug|Win32.Build.0 = Win8.1 Debug|Win32
 43 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Debug|Win32.Deploy.0 = Win8.1 Debug|Win32
 44 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Debug|x64.ActiveCfg = Win8.1 Debug|x64
 45 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Debug|x64.Build.0 = Win8.1 Debug|x64
 46 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Debug|x64.Deploy.0 = Win8.1 Debug|x64
 47 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Release|Mixed Platforms.ActiveCfg = Win8.1 Release|Win32
 48 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Release|Mixed Platforms.Build.0 = Win8.1 Release|Win32
 49 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Release|Mixed Platforms.Deploy.0 = Win8.1 Release|Win32
 50 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Release|Win32.ActiveCfg = Win8.1 Release|Win32
 51 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Release|Win32.Build.0 = Win8.1 Release|Win32
 52 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Release|Win32.Deploy.0 = Win8.1 Release|Win32
 53 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Release|x64.ActiveCfg = Win8.1 Release|x64
 54 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Release|x64.Build.0 = Win8.1 Release|x64
 55 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Release|x64.Deploy.0 = Win8.1 Release|x64
 56 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win7 Debug|Mixed Platforms.ActiveCfg = Win7 Debug|Win32
 57 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win7 Debug|Mixed Platforms.Build.0 = Win7 Debug|Win32
 58 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win7 Debug|Mixed Platforms.Deploy.0 = Win7 Debug|Win32
 59 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win7 Debug|Win32.ActiveCfg = Win7 Debug|Win32
 60 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win7 Debug|Win32.Build.0 = Win7 Debug|Win32
 61 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win7 Debug|Win32.Deploy.0 = Win7 Debug|Win32
 62 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win7 Debug|x64.ActiveCfg = Win7 Debug|x64
 63 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win7 Debug|x64.Build.0 = Win7 Debug|x64
 64 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win7 Debug|x64.Deploy.0 = Win7 Debug|x64
 65 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win7 Release|Mixed Platforms.ActiveCfg = Win7 Release|Win32
 66 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win7 Release|Mixed Platforms.Build.0 = Win7 Release|Win32
 67 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win7 Release|Mixed Platforms.Deploy.0 = Win7 Release|Win32
 68 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win7 Release|Win32.ActiveCfg = Win7 Release|Win32
 69 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win7 Release|Win32.Build.0 = Win7 Release|Win32
 70 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win7 Release|Win32.Deploy.0 = Win7 Release|Win32
 71 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win7 Release|x64.ActiveCfg = Win7 Release|x64
 72 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win7 Release|x64.Build.0 = Win7 Release|x64
 73 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win7 Release|x64.Deploy.0 = Win7 Release|x64
 74 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8 Debug|Mixed Platforms.ActiveCfg = Win8 Debug|Win32
 75 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8 Debug|Mixed Platforms.Build.0 = Win8 Debug|Win32
 76 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8 Debug|Mixed Platforms.Deploy.0 = Win8 Debug|Win32
 77 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8 Debug|Win32.ActiveCfg = Win8 Debug|Win32
 78 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8 Debug|Win32.Build.0 = Win8 Debug|Win32
 79 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8 Debug|Win32.Deploy.0 = Win8 Debug|Win32
 80 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8 Debug|x64.ActiveCfg = Win8 Debug|x64
 81 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8 Debug|x64.Build.0 = Win8 Debug|x64
 82 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8 Debug|x64.Deploy.0 = Win8 Debug|x64
 83 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8 Release|Mixed Platforms.ActiveCfg = Win8 Release|Win32
 84 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8 Release|Mixed Platforms.Build.0 = Win8 Release|Win32
 85 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8 Release|Mixed Platforms.Deploy.0 = Win8 Release|Win32
 86 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8 Release|Win32.ActiveCfg = Win8 Release|Win32
 87 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8 Release|Win32.Build.0 = Win8 Release|Win32
 88 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8 Release|Win32.Deploy.0 = Win8 Release|Win32
 89 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8 Release|x64.ActiveCfg = Win8 Release|x64
 90 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8 Release|x64.Build.0 = Win8 Release|x64
 91 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8 Release|x64.Deploy.0 = Win8 Release|x64
 92 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8.1 Debug|Mixed Platforms.ActiveCfg = Win8.1 Debug|Win32
 93 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8.1 Debug|Mixed Platforms.Build.0 = Win8.1 Debug|Win32
 94 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8.1 Debug|Mixed Platforms.Deploy.0 = Win8.1 Debug|Win32
 95 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8.1 Debug|Win32.ActiveCfg = Win8.1 Debug|Win32
 96 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8.1 Debug|Win32.Build.0 = Win8.1 Debug|Win32
 97 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8.1 Debug|Win32.Deploy.0 = Win8.1 Debug|Win32
 98 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8.1 Debug|x64.ActiveCfg = Win8.1 Debug|x64
 99 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8.1 Debug|x64.Build.0 = Win8.1 Debug|x64
100 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8.1 Debug|x64.Deploy.0 = Win8.1 Debug|x64
101 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8.1 Release|Mixed Platforms.ActiveCfg = Win8.1 Release|Win32
102 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8.1 Release|Mixed Platforms.Build.0 = Win8.1 Release|Win32
103 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8.1 Release|Mixed Platforms.Deploy.0 = Win8.1 Release|Win32
104 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8.1 Release|Win32.ActiveCfg = Win8.1 Release|Win32
105 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8.1 Release|Win32.Build.0 = Win8.1 Release|Win32
106 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8.1 Release|Win32.Deploy.0 = Win8.1 Release|Win32
107 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8.1 Release|x64.ActiveCfg = Win8.1 Release|x64
108 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8.1 Release|x64.Build.0 = Win8.1 Release|x64
109 | 		{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}.Win8.1 Release|x64.Deploy.0 = Win8.1 Release|x64
110 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Debug|Mixed Platforms.ActiveCfg = Debug|Win32
111 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Debug|Mixed Platforms.Build.0 = Debug|Win32
112 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Debug|Mixed Platforms.Deploy.0 = Debug|Win32
113 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Debug|Win32.ActiveCfg = Debug|Win32
114 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Debug|Win32.Build.0 = Debug|Win32
115 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Debug|Win32.Deploy.0 = Debug|Win32
116 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Debug|x64.ActiveCfg = Debug|Win32
117 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Release|Mixed Platforms.ActiveCfg = Release|Win32
118 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Release|Mixed Platforms.Build.0 = Release|Win32
119 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Release|Mixed Platforms.Deploy.0 = Release|Win32
120 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Release|Win32.ActiveCfg = Release|Win32
121 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Release|Win32.Build.0 = Release|Win32
122 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Release|Win32.Deploy.0 = Release|Win32
123 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Release|x64.ActiveCfg = Release|Win32
124 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win7 Debug|Mixed Platforms.ActiveCfg = Debug|Win32
125 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win7 Debug|Mixed Platforms.Build.0 = Debug|Win32
126 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win7 Debug|Mixed Platforms.Deploy.0 = Debug|Win32
127 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win7 Debug|Win32.ActiveCfg = Debug|Win32
128 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win7 Debug|Win32.Build.0 = Debug|Win32
129 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win7 Debug|Win32.Deploy.0 = Debug|Win32
130 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win7 Debug|x64.ActiveCfg = Debug|Win32
131 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win7 Release|Mixed Platforms.ActiveCfg = Release|Win32
132 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win7 Release|Mixed Platforms.Build.0 = Release|Win32
133 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win7 Release|Mixed Platforms.Deploy.0 = Release|Win32
134 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win7 Release|Win32.ActiveCfg = Release|Win32
135 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win7 Release|Win32.Build.0 = Release|Win32
136 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win7 Release|Win32.Deploy.0 = Release|Win32
137 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win7 Release|x64.ActiveCfg = Release|Win32
138 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8 Debug|Mixed Platforms.ActiveCfg = Debug|Win32
139 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8 Debug|Mixed Platforms.Build.0 = Debug|Win32
140 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8 Debug|Mixed Platforms.Deploy.0 = Debug|Win32
141 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8 Debug|Win32.ActiveCfg = Debug|Win32
142 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8 Debug|Win32.Build.0 = Debug|Win32
143 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8 Debug|Win32.Deploy.0 = Debug|Win32
144 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8 Debug|x64.ActiveCfg = Debug|Win32
145 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8 Release|Mixed Platforms.ActiveCfg = Release|Win32
146 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8 Release|Mixed Platforms.Build.0 = Release|Win32
147 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8 Release|Mixed Platforms.Deploy.0 = Release|Win32
148 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8 Release|Win32.ActiveCfg = Release|Win32
149 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8 Release|Win32.Build.0 = Release|Win32
150 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8 Release|Win32.Deploy.0 = Release|Win32
151 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8 Release|x64.ActiveCfg = Release|Win32
152 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8.1 Debug|Mixed Platforms.ActiveCfg = Debug|Win32
153 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8.1 Debug|Mixed Platforms.Build.0 = Debug|Win32
154 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8.1 Debug|Mixed Platforms.Deploy.0 = Debug|Win32
155 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8.1 Debug|Win32.ActiveCfg = Debug|Win32
156 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8.1 Debug|Win32.Build.0 = Debug|Win32
157 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8.1 Debug|Win32.Deploy.0 = Debug|Win32
158 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8.1 Debug|x64.ActiveCfg = Debug|Win32
159 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8.1 Release|Mixed Platforms.ActiveCfg = Release|Win32
160 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8.1 Release|Mixed Platforms.Build.0 = Release|Win32
161 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8.1 Release|Mixed Platforms.Deploy.0 = Release|Win32
162 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8.1 Release|Win32.ActiveCfg = Release|Win32
163 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8.1 Release|Win32.Build.0 = Release|Win32
164 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8.1 Release|Win32.Deploy.0 = Release|Win32
165 | 		{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}.Win8.1 Release|x64.ActiveCfg = Release|Win32
166 | 	EndGlobalSection
167 | 	GlobalSection(SolutionProperties) = preSolution
168 | 		HideSolutionNode = FALSE
169 | 	EndGlobalSection
170 | EndGlobal
171 | 


--------------------------------------------------------------------------------
/NewHideDriverEx/DriverEntry.c:
--------------------------------------------------------------------------------
  1 | #include "pch.h"
  2 | 
  3 | PDRIVER_OBJECT g_pDriverObject = NULL;
  4 | 
  5 | #define DELAY_ONE_MICROSECOND 	(-10)
  6 | #define DELAY_ONE_MILLISECOND	(DELAY_ONE_MICROSECOND*1000)
  7 | 
  8 | // #define HOST_ADDRESS "211.149.184.238"
  9 | // #define HOST_ADDRESS "183.61.146.197"
 10 | 
 11 | VOID KernelSleep(LONG msec)
 12 | {
 13 |     LARGE_INTEGER my_interval;
 14 |     my_interval.QuadPart = DELAY_ONE_MILLISECOND;
 15 |     my_interval.QuadPart *= msec;
 16 |     KeDelayExecutionThread(KernelMode, 0, &my_interval);
 17 | }
 18 | 
 19 | NTSTATUS DispatchIoctl(
 20 |     PDEVICE_OBJECT pDevObj,
 21 |     PIRP pIrp
 22 | )
 23 | {
 24 |     NTSTATUS status = STATUS_INVALID_DEVICE_REQUEST;
 25 |     PIO_STACK_LOCATION pIrpStack;
 26 |     ULONG uIoControlCode;
 27 |     PVOID pIoBuffer;
 28 |     ULONG uInSize;
 29 |     ULONG uOutSize;
 30 | 
 31 |     pIrpStack = IoGetCurrentIrpStackLocation(pIrp);
 32 |     uIoControlCode = pIrpStack->Parameters.DeviceIoControl.IoControlCode;
 33 |     pIoBuffer = pIrp->AssociatedIrp.SystemBuffer;
 34 |     uInSize = pIrpStack->Parameters.DeviceIoControl.InputBufferLength;
 35 |     uOutSize = pIrpStack->Parameters.DeviceIoControl.OutputBufferLength;
 36 | 
 37 |     switch (uIoControlCode)
 38 |     {
 39 |     case IOCTL_HELLO:
 40 |     {
 41 |         DPRINT("DrvEnjoy Hello.\n");
 42 |         status = STATUS_SUCCESS;
 43 |     }
 44 |     break;
 45 |     }
 46 | 
 47 |     if (status == STATUS_SUCCESS)
 48 |         pIrp->IoStatus.Information = uOutSize;
 49 |     else
 50 |         pIrp->IoStatus.Information = 0;
 51 | 
 52 |     /////////////////////////////////////  
 53 |     pIrp->IoStatus.Status = status;
 54 |     IoCompleteRequest(pIrp, IO_NO_INCREMENT);
 55 | 
 56 |     return status;
 57 | }
 58 | 
 59 | NTSTATUS DispatchOK(PDEVICE_OBJECT DeviceObject, PIRP Irp)
 60 | {
 61 |     Irp->IoStatus.Status = STATUS_SUCCESS;
 62 |     IoCompleteRequest(Irp, IO_NO_INCREMENT);
 63 |     return STATUS_SUCCESS;
 64 | }
 65 | 
 66 | VOID DrvUnload(PDRIVER_OBJECT pDriverObject)
 67 | {
 68 |     UNICODE_STRING strLink;
 69 |     RtlInitUnicodeString(&strLink, L"\\DosDevices\\BLCheers");
 70 | 
 71 |     IoDeleteSymbolicLink(&strLink);
 72 |     IoDeleteDevice(pDriverObject->DeviceObject);
 73 |     DPRINT("DrvEnjoy Unload.\n");
 74 | }
 75 | 
 76 | NTSTATUS DriverInit(PDRIVER_OBJECT DriverObject, PDRIVER_DISPATCH pControl)
 77 | {
 78 |     NTSTATUS        status;
 79 |     UNICODE_STRING  SymLink, DevName;
 80 |     PDEVICE_OBJECT  devobj;
 81 |     ULONG           t;
 82 | 
 83 |     RtlInitUnicodeString(&DevName, L"\\Device\\BLCheers");
 84 |     status = IoCreateDevice(DriverObject, 0, &DevName, FILE_DEVICE_NULL, FILE_DEVICE_SECURE_OPEN, FALSE, &devobj);
 85 | 
 86 |     if (!NT_SUCCESS(status)) {
 87 |         return status;
 88 |     }
 89 | 
 90 |     RtlInitUnicodeString(&SymLink, L"\\DosDevices\\BLCheers");
 91 |     status = IoCreateSymbolicLink(&SymLink, &DevName);
 92 | 
 93 |     devobj->Flags |= DO_BUFFERED_IO;
 94 | 
 95 |     for (t = 0; t <= IRP_MJ_MAXIMUM_FUNCTION; t++)
 96 |         DriverObject->MajorFunction[t] = &DispatchOK;
 97 | 
 98 |     DriverObject->MajorFunction[IRP_MJ_DEVICE_CONTROL] = pControl;
 99 |     DriverObject->MajorFunction[IRP_MJ_CREATE] = &DispatchOK;
100 |     DriverObject->MajorFunction[IRP_MJ_CLOSE] = &DispatchOK;
101 |     DriverObject->DriverUnload = DrvUnload;
102 | 
103 |     devobj->Flags &= ~DO_DEVICE_INITIALIZING;
104 | 
105 |     return status;
106 | }
107 | 
108 | VOID
109 | DelObject(
110 |     _In_ PVOID StartContext
111 | ) 
112 | {
113 |     PULONG_PTR pZero = NULL;
114 |     KernelSleep(5000);
115 |     ObMakeTemporaryObject(g_pDriverObject);
116 |     DPRINT("test seh.\n");
117 |     __try {
118 |         *pZero = 0x100;
119 |     }
120 |     __except (1)
121 |     {
122 |         DPRINT("seh success.\n");
123 |     }
124 | }
125 | 
126 | VOID Reinitialize(
127 |     _In_     PDRIVER_OBJECT        pDriverObject,
128 |     _In_opt_ PVOID                 Context,
129 |     _In_     ULONG                 Count
130 | )
131 | {
132 |     HANDLE hThread = NULL;
133 |     PsCreateSystemThread(&hThread, THREAD_ALL_ACCESS, NULL, NULL, NULL, DelObject, NULL);
134 |     if (*NtBuildNumber < 8000)
135 |         HideDriverWin7(pDriverObject);
136 |     else
137 |         HideDriverWin10(pDriverObject);
138 | }
139 | 
140 | NTSTATUS DriverEntry(PDRIVER_OBJECT pDriverObject, PUNICODE_STRING pRegisterPath)
141 | {
142 |     DPRINT("DrvEnjoy.\n");
143 |     DPRINT("0x%p\n", pDriverObject);
144 |     DbgBreakPoint();
145 |     DriverInit(pDriverObject, DispatchIoctl);
146 |     g_pDriverObject = pDriverObject;
147 |     IoRegisterDriverReinitialization(pDriverObject, Reinitialize, NULL);
148 |     return STATUS_SUCCESS;
149 | }


--------------------------------------------------------------------------------
/NewHideDriverEx/HideDiver.h:
--------------------------------------------------------------------------------
 1 | #ifndef _HIDE_DRIVER_H_
 2 | #define _HIDE_DRIVER_H_ 1
 3 | 
 4 | NTSTATUS HideDriverWin10(PDRIVER_OBJECT pTargetDriverObject);
 5 | 
 6 | BOOLEAN HideDriverWin7(PDRIVER_OBJECT pTargetDriverObject);
 7 | 
 8 | #endif // end _HIDE_DRIVER_H_
 9 | 
10 | 
11 | 
12 | 


--------------------------------------------------------------------------------
/NewHideDriverEx/HideDriver.c:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverEx/HideDriver.c


--------------------------------------------------------------------------------
/NewHideDriverEx/NewHideDriverEx.inf:
--------------------------------------------------------------------------------
 1 | ;
 2 | ; NewHideDriverEx.inf
 3 | ;
 4 | 
 5 | [Version]
 6 | Signature="$WINDOWS NT$"
 7 | Class=
 8 | ClassGuid=
 9 | Provider=
10 | DriverVer=
11 | CatalogFile=
12 | 
13 | [DestinationDirs]
14 | DefaultDestDir = 12
15 | 
16 | 
17 | [SourceDisksNames]
18 | 1 = %DiskName%,,,""
19 | 
20 | [SourceDisksFiles]
21 | 
22 | 
23 | [Manufacturer]
24 | %ManufacturerName%=Standard,NT$ARCH$
25 | 
26 | [Standard.NT$ARCH$]
27 | 
28 | 
29 | [Strings]
30 | ManufacturerName=""
31 | ClassName=""
32 | DiskName="NewHideDriverEx Source Disk"
33 | 


--------------------------------------------------------------------------------
/NewHideDriverEx/NewHideDriverEx.vcxproj:
--------------------------------------------------------------------------------
  1 | <?xml version="1.0" encoding="utf-8"?>
  2 | <Project DefaultTargets="Build" ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
  3 |   <ItemGroup Label="ProjectConfigurations">
  4 |     <ProjectConfiguration Include="Win8.1 Debug|Win32">
  5 |       <Configuration>Win8.1 Debug</Configuration>
  6 |       <Platform>Win32</Platform>
  7 |     </ProjectConfiguration>
  8 |     <ProjectConfiguration Include="Win8.1 Release|Win32">
  9 |       <Configuration>Win8.1 Release</Configuration>
 10 |       <Platform>Win32</Platform>
 11 |     </ProjectConfiguration>
 12 |     <ProjectConfiguration Include="Win8 Debug|Win32">
 13 |       <Configuration>Win8 Debug</Configuration>
 14 |       <Platform>Win32</Platform>
 15 |     </ProjectConfiguration>
 16 |     <ProjectConfiguration Include="Win8 Release|Win32">
 17 |       <Configuration>Win8 Release</Configuration>
 18 |       <Platform>Win32</Platform>
 19 |     </ProjectConfiguration>
 20 |     <ProjectConfiguration Include="Win7 Debug|Win32">
 21 |       <Configuration>Win7 Debug</Configuration>
 22 |       <Platform>Win32</Platform>
 23 |     </ProjectConfiguration>
 24 |     <ProjectConfiguration Include="Win7 Release|Win32">
 25 |       <Configuration>Win7 Release</Configuration>
 26 |       <Platform>Win32</Platform>
 27 |     </ProjectConfiguration>
 28 |     <ProjectConfiguration Include="Win8.1 Debug|x64">
 29 |       <Configuration>Win8.1 Debug</Configuration>
 30 |       <Platform>x64</Platform>
 31 |     </ProjectConfiguration>
 32 |     <ProjectConfiguration Include="Win8.1 Release|x64">
 33 |       <Configuration>Win8.1 Release</Configuration>
 34 |       <Platform>x64</Platform>
 35 |     </ProjectConfiguration>
 36 |     <ProjectConfiguration Include="Win8 Debug|x64">
 37 |       <Configuration>Win8 Debug</Configuration>
 38 |       <Platform>x64</Platform>
 39 |     </ProjectConfiguration>
 40 |     <ProjectConfiguration Include="Win8 Release|x64">
 41 |       <Configuration>Win8 Release</Configuration>
 42 |       <Platform>x64</Platform>
 43 |     </ProjectConfiguration>
 44 |     <ProjectConfiguration Include="Win7 Debug|x64">
 45 |       <Configuration>Win7 Debug</Configuration>
 46 |       <Platform>x64</Platform>
 47 |     </ProjectConfiguration>
 48 |     <ProjectConfiguration Include="Win7 Release|x64">
 49 |       <Configuration>Win7 Release</Configuration>
 50 |       <Platform>x64</Platform>
 51 |     </ProjectConfiguration>
 52 |   </ItemGroup>
 53 |   <PropertyGroup Label="Globals">
 54 |     <ProjectGuid>{952ECDC7-6EA1-41BF-99DA-4D75676B26A4}</ProjectGuid>
 55 |     <TemplateGuid>{dd38f7fc-d7bd-488b-9242-7d8754cde80d}</TemplateGuid>
 56 |     <TargetFrameworkVersion>v4.5</TargetFrameworkVersion>
 57 |     <MinimumVisualStudioVersion>11.0</MinimumVisualStudioVersion>
 58 |     <Configuration>Win8.1 Debug</Configuration>
 59 |     <Platform Condition="'$(Platform)' == ''">Win32</Platform>
 60 |     <RootNamespace>NewHideDriverEx</RootNamespace>
 61 |   </PropertyGroup>
 62 |   <Import Project="$(VCTargetsPath)\Microsoft.Cpp.Default.props" />
 63 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win8.1 Debug|Win32'" Label="Configuration">
 64 |     <TargetVersion>WindowsV6.3</TargetVersion>
 65 |     <UseDebugLibraries>true</UseDebugLibraries>
 66 |     <PlatformToolset>WindowsKernelModeDriver8.1</PlatformToolset>
 67 |     <ConfigurationType>Driver</ConfigurationType>
 68 |     <DriverType>WDM</DriverType>
 69 |   </PropertyGroup>
 70 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win8.1 Release|Win32'" Label="Configuration">
 71 |     <TargetVersion>WindowsV6.3</TargetVersion>
 72 |     <UseDebugLibraries>false</UseDebugLibraries>
 73 |     <PlatformToolset>WindowsKernelModeDriver8.1</PlatformToolset>
 74 |     <ConfigurationType>Driver</ConfigurationType>
 75 |     <DriverType>WDM</DriverType>
 76 |   </PropertyGroup>
 77 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win8 Debug|Win32'" Label="Configuration">
 78 |     <TargetVersion>Windows8</TargetVersion>
 79 |     <UseDebugLibraries>true</UseDebugLibraries>
 80 |     <PlatformToolset>WindowsKernelModeDriver8.1</PlatformToolset>
 81 |     <ConfigurationType>Driver</ConfigurationType>
 82 |     <DriverType>WDM</DriverType>
 83 |   </PropertyGroup>
 84 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win8 Release|Win32'" Label="Configuration">
 85 |     <TargetVersion>Windows8</TargetVersion>
 86 |     <UseDebugLibraries>false</UseDebugLibraries>
 87 |     <PlatformToolset>WindowsKernelModeDriver8.1</PlatformToolset>
 88 |     <ConfigurationType>Driver</ConfigurationType>
 89 |     <DriverType>WDM</DriverType>
 90 |   </PropertyGroup>
 91 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win7 Debug|Win32'" Label="Configuration">
 92 |     <TargetVersion>Windows7</TargetVersion>
 93 |     <UseDebugLibraries>true</UseDebugLibraries>
 94 |     <PlatformToolset>WindowsKernelModeDriver8.1</PlatformToolset>
 95 |     <ConfigurationType>Driver</ConfigurationType>
 96 |     <DriverType>WDM</DriverType>
 97 |   </PropertyGroup>
 98 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win7 Release|Win32'" Label="Configuration">
 99 |     <TargetVersion>Windows7</TargetVersion>
100 |     <UseDebugLibraries>false</UseDebugLibraries>
101 |     <PlatformToolset>WindowsKernelModeDriver8.1</PlatformToolset>
102 |     <ConfigurationType>Driver</ConfigurationType>
103 |     <DriverType>WDM</DriverType>
104 |   </PropertyGroup>
105 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win8.1 Debug|x64'" Label="Configuration">
106 |     <TargetVersion>WindowsV6.3</TargetVersion>
107 |     <UseDebugLibraries>true</UseDebugLibraries>
108 |     <PlatformToolset>WindowsKernelModeDriver8.1</PlatformToolset>
109 |     <ConfigurationType>Driver</ConfigurationType>
110 |     <DriverType>WDM</DriverType>
111 |   </PropertyGroup>
112 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win8.1 Release|x64'" Label="Configuration">
113 |     <TargetVersion>WindowsV6.3</TargetVersion>
114 |     <UseDebugLibraries>false</UseDebugLibraries>
115 |     <PlatformToolset>WindowsKernelModeDriver8.1</PlatformToolset>
116 |     <ConfigurationType>Driver</ConfigurationType>
117 |     <DriverType>WDM</DriverType>
118 |   </PropertyGroup>
119 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win8 Debug|x64'" Label="Configuration">
120 |     <TargetVersion>Windows8</TargetVersion>
121 |     <UseDebugLibraries>true</UseDebugLibraries>
122 |     <PlatformToolset>WindowsKernelModeDriver8.1</PlatformToolset>
123 |     <ConfigurationType>Driver</ConfigurationType>
124 |     <DriverType>WDM</DriverType>
125 |   </PropertyGroup>
126 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win8 Release|x64'" Label="Configuration">
127 |     <TargetVersion>Windows8</TargetVersion>
128 |     <UseDebugLibraries>false</UseDebugLibraries>
129 |     <PlatformToolset>WindowsKernelModeDriver8.1</PlatformToolset>
130 |     <ConfigurationType>Driver</ConfigurationType>
131 |     <DriverType>WDM</DriverType>
132 |   </PropertyGroup>
133 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win7 Debug|x64'" Label="Configuration">
134 |     <TargetVersion>Windows7</TargetVersion>
135 |     <UseDebugLibraries>true</UseDebugLibraries>
136 |     <PlatformToolset>WindowsKernelModeDriver8.1</PlatformToolset>
137 |     <ConfigurationType>Driver</ConfigurationType>
138 |     <DriverType>WDM</DriverType>
139 |   </PropertyGroup>
140 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win7 Release|x64'" Label="Configuration">
141 |     <TargetVersion>Windows7</TargetVersion>
142 |     <UseDebugLibraries>false</UseDebugLibraries>
143 |     <PlatformToolset>WindowsKernelModeDriver8.1</PlatformToolset>
144 |     <ConfigurationType>Driver</ConfigurationType>
145 |     <DriverType>WDM</DriverType>
146 |   </PropertyGroup>
147 |   <Import Project="$(VCTargetsPath)\Microsoft.Cpp.props" />
148 |   <ImportGroup Label="ExtensionSettings">
149 |   </ImportGroup>
150 |   <ImportGroup Label="PropertySheets">
151 |     <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
152 |   </ImportGroup>
153 |   <PropertyGroup Label="UserMacros" />
154 |   <PropertyGroup />
155 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win8.1 Debug|Win32'">
156 |     <DebuggerFlavor>DbgengKernelDebugger</DebuggerFlavor>
157 |   </PropertyGroup>
158 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win8.1 Release|Win32'">
159 |     <DebuggerFlavor>DbgengKernelDebugger</DebuggerFlavor>
160 |   </PropertyGroup>
161 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win8 Debug|Win32'">
162 |     <DebuggerFlavor>DbgengKernelDebugger</DebuggerFlavor>
163 |   </PropertyGroup>
164 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win8 Release|Win32'">
165 |     <DebuggerFlavor>DbgengKernelDebugger</DebuggerFlavor>
166 |   </PropertyGroup>
167 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win7 Debug|Win32'">
168 |     <DebuggerFlavor>DbgengKernelDebugger</DebuggerFlavor>
169 |   </PropertyGroup>
170 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win7 Release|Win32'">
171 |     <DebuggerFlavor>DbgengKernelDebugger</DebuggerFlavor>
172 |   </PropertyGroup>
173 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win8.1 Debug|x64'">
174 |     <DebuggerFlavor>DbgengKernelDebugger</DebuggerFlavor>
175 |   </PropertyGroup>
176 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win8.1 Release|x64'">
177 |     <DebuggerFlavor>DbgengKernelDebugger</DebuggerFlavor>
178 |   </PropertyGroup>
179 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win8 Debug|x64'">
180 |     <DebuggerFlavor>DbgengKernelDebugger</DebuggerFlavor>
181 |   </PropertyGroup>
182 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win8 Release|x64'">
183 |     <DebuggerFlavor>DbgengKernelDebugger</DebuggerFlavor>
184 |   </PropertyGroup>
185 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win7 Debug|x64'">
186 |     <DebuggerFlavor>DbgengKernelDebugger</DebuggerFlavor>
187 |   </PropertyGroup>
188 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win7 Release|x64'">
189 |     <DebuggerFlavor>DbgengKernelDebugger</DebuggerFlavor>
190 |   </PropertyGroup>
191 |   <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Win7 Debug|x64'">
192 |     <ClCompile>
193 |       <TreatWarningAsError>false</TreatWarningAsError>
194 |     </ClCompile>
195 |   </ItemDefinitionGroup>
196 |   <ItemGroup>
197 |     <Inf Include="NewHideDriverEx.inf" />
198 |   </ItemGroup>
199 |   <ItemGroup>
200 |     <FilesToPackage Include="$(TargetPath)" />
201 |     <FilesToPackage Include="@(Inf->'%(CopyOutput)')" Condition="'@(Inf)'!=''" />
202 |   </ItemGroup>
203 |   <ItemGroup>
204 |     <ClCompile Include="DriverEntry.c" />
205 |     <ClCompile Include="HideDriver.c" />
206 |   </ItemGroup>
207 |   <ItemGroup>
208 |     <ClInclude Include="HideDiver.h" />
209 |   </ItemGroup>
210 |   <Import Project="$(VCTargetsPath)\Microsoft.Cpp.targets" />
211 |   <ImportGroup Label="ExtensionTargets">
212 |   </ImportGroup>
213 | </Project>


--------------------------------------------------------------------------------
/NewHideDriverEx/NewHideDriverEx.vcxproj.filters:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="utf-8"?>
 2 | <Project ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
 3 |   <ItemGroup>
 4 |     <Filter Include="Source Files">
 5 |       <UniqueIdentifier>{4FC737F1-C7A5-4376-A066-2A32D752A2FF}</UniqueIdentifier>
 6 |       <Extensions>cpp;c;cc;cxx;def;odl;idl;hpj;bat;asm;asmx</Extensions>
 7 |     </Filter>
 8 |     <Filter Include="Header Files">
 9 |       <UniqueIdentifier>{93995380-89BD-4b04-88EB-625FBE52EBFB}</UniqueIdentifier>
10 |       <Extensions>h;hpp;hxx;hm;inl;inc;xsd</Extensions>
11 |     </Filter>
12 |     <Filter Include="Resource Files">
13 |       <UniqueIdentifier>{67DA6AB6-F800-4c08-8B7A-83BB121AAD01}</UniqueIdentifier>
14 |       <Extensions>rc;ico;cur;bmp;dlg;rc2;rct;bin;rgs;gif;jpg;jpeg;jpe;resx;tiff;tif;png;wav;mfcribbon-ms</Extensions>
15 |     </Filter>
16 |     <Filter Include="Driver Files">
17 |       <UniqueIdentifier>{8E41214B-6785-4CFE-B992-037D68949A14}</UniqueIdentifier>
18 |       <Extensions>inf;inv;inx;mof;mc;</Extensions>
19 |     </Filter>
20 |   </ItemGroup>
21 |   <ItemGroup>
22 |     <Inf Include="NewHideDriverEx.inf">
23 |       <Filter>Driver Files</Filter>
24 |     </Inf>
25 |   </ItemGroup>
26 |   <ItemGroup>
27 |     <ClCompile Include="DriverEntry.c">
28 |       <Filter>Source Files</Filter>
29 |     </ClCompile>
30 |     <ClCompile Include="HideDriver.c">
31 |       <Filter>Source Files</Filter>
32 |     </ClCompile>
33 |   </ItemGroup>
34 |   <ItemGroup>
35 |     <ClInclude Include="HideDiver.h">
36 |       <Filter>Header Files</Filter>
37 |     </ClInclude>
38 |   </ItemGroup>
39 | </Project>


--------------------------------------------------------------------------------
/NewHideDriverEx/NewHideDriverEx.vcxproj.user:
--------------------------------------------------------------------------------
1 | <?xml version="1.0" encoding="utf-8"?>
2 | <Project ToolsVersion="12.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
3 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Win7 Debug|x64'">
4 |     <TestCertificate>CN="WDKTestCert dongj,131435329857171598" | 890F7ACFA86B1BB43715A150CB34205276FA082A</TestCertificate>
5 |   </PropertyGroup>
6 | </Project>


--------------------------------------------------------------------------------
/NewHideDriverEx/pch.h:
--------------------------------------------------------------------------------
 1 | #pragma once
 2 | #include <ntifs.h>
 3 | #include <ntddk.h>
 4 | #include "HideDiver.h"
 5 | 
 6 | #define IOCTL_BASE  0x800
 7 | #define MY_CTL_CODE(i) CTL_CODE(FILE_DEVICE_NULL, IOCTL_BASE + i, METHOD_BUFFERED, FILE_ANY_ACCESS)
 8 | 
 9 | #define IOCTL_HELLO MY_CTL_CODE(0)  
10 | 
11 | #define DPRINT(format, ...) DbgPrintEx(DPFLTR_IHVDRIVER_ID, DPFLTR_ERROR_LEVEL, format, __VA_ARGS__)
12 | 
13 | NTSYSAPI
14 | NTSTATUS
15 | NTAPI
16 | IoCreateDriver(
17 |     IN PUNICODE_STRING DriverName    OPTIONAL,
18 |     IN PDRIVER_INITIALIZE InitializationFunction
19 | );
20 | 
21 | NTSYSAPI
22 | VOID
23 | NTAPI
24 | IoDeleteDriver(
25 |     IN PDRIVER_OBJECT DriverObject
26 | );
27 | 
28 | extern PSHORT NtBuildNumber;
29 | 
30 | 


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/DriverEntry.obj:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverEx/x64/Win7Debug/DriverEntry.obj


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/HideDriver.obj:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverEx/x64/Win7Debug/HideDriver.obj


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/NewHideDriverEx.Build.CppClean.log:
--------------------------------------------------------------------------------
 1 | e:\dongjcode\newhidedriverex\x64\win7debug\newhidedriverex.sys
 2 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win7debug\newhidedriverex.inf
 3 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win7debug\vc120.pdb
 4 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win7debug\xenosobregistercallbacks.obj
 5 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win7debug\xenoshidedriver.obj
 6 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win7debug\driverentry.obj
 7 | e:\dongjcode\newhidedriverex\x64\win7debug\newhidedriverex.pdb
 8 | e:\dongjcode\newhidedriverex\x64\win7debug\newhidedriverex.cer
 9 | e:\dongjcode\newhidedriverex\x64\win7debug\newhidedriverex.inf
10 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win7debug\signtool.command.1.tlog
11 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win7debug\signtool.read.1.tlog
12 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win7debug\signtool.write.1.tlog
13 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win7debug\stampinf.command.1.tlog
14 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win7debug\stampinf.read.1.tlog
15 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win7debug\stampinf.write.1.tlog
16 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win7debug\newhidedriverex.tlog\cl.command.1.tlog
17 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win7debug\newhidedriverex.tlog\cl.read.1.tlog
18 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win7debug\newhidedriverex.tlog\cl.write.1.tlog
19 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win7debug\newhidedriverex.tlog\link.command.1.tlog
20 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win7debug\newhidedriverex.tlog\link.read.1.tlog
21 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win7debug\newhidedriverex.tlog\link.write.1.tlog
22 | 


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/NewHideDriverEx.inf:
--------------------------------------------------------------------------------
 1 | ;
 2 | ; NewHideDriverEx.inf
 3 | ;
 4 | 
 5 | [Version]
 6 | Signature="$WINDOWS NT$"
 7 | Class=
 8 | ClassGuid=
 9 | Provider=
10 | DriverVer=12/05/2017,16.29.52.83
11 | CatalogFile=
12 | 
13 | [DestinationDirs]
14 | DefaultDestDir = 12
15 | 
16 | 
17 | [SourceDisksNames]
18 | 1 = %DiskName%,,,""
19 | 
20 | [SourceDisksFiles]
21 | 
22 | 
23 | [Manufacturer]
24 | %ManufacturerName%=Standard,NTamd64
25 | 
26 | [Standard.NTamd64]
27 | 
28 | 
29 | [Strings]
30 | ManufacturerName=""
31 | ClassName=""
32 | DiskName="NewHideDriverEx Source Disk"
33 | 


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/NewHideDriverEx.log:
--------------------------------------------------------------------------------
 1 | 生成启动时间为 2017/12/5 16:29:52。
 2 |      1>项目“E:\DongjCode\NewHideDriverEx\NewHideDriverEx\NewHideDriverEx.vcxproj”在节点 2 上(Rebuild 个目标)。
 3 |      1>StampInf:
 4 |          C:\Program Files (x86)\Windows Kits\8.1\bin\x86\stampinf.exe -d "*" -a "amd64" -v "*" -k "1.11" -u "1.11.0" -f x64\Win7Debug\NewHideDriverEx.inf 
 5 |          Stamping x64\Win7Debug\NewHideDriverEx.inf [Version] section with DriverVer=12/05/2017,16.29.52.83
 6 |        ClCompile:
 7 |          D:\Program Files (x86)\Microsoft Visual Studio 12.0\VC\bin\x86_amd64\CL.exe /c /Ix64\Win7Debug\ /Zi /nologo /W4 /WX- /Od /Oi /Oy- /D _WIN64 /D _AMD64_ /D AMD64 /D DEPRECATE_DDK_FUNCTIONS=1 /D MSC_NOOPT /D _WIN32_WINNT=0x0601 /D WINVER=0x0601 /D WINNT=1 /D NTDDI_VERSION=0x06010000 /D DBG=1 /GF /Gm- /Zp8 /GS /Gy /fp:precise /Zc:wchar_t- /Zc:forScope- /GR- /Fo"x64\Win7Debug\\" /Fd"x64\Win7Debug\vc120.pdb" /Gz /wd4748 /wd4603 /wd4627 /wd4986 /wd4987 /wd4996 /FI"C:\Program Files (x86)\Windows Kits\8.1\Include\Shared\warning.h" /errorReport:prompt /kernel -cbstring -d2epilogunwind /d1import_no_registry /d2AllowCompatibleILVersions /d2Zi+ DriverEntry.c HideDriver.c
 8 |          DriverEntry.c
 9 |      1>DriverEntry.c(23): warning C4100: “Count”: 未引用的形参
10 |      1>DriverEntry.c(22): warning C4100: “Context”: 未引用的形参
11 |      1>DriverEntry.c(33): warning C4100: “DeviceObject”: 未引用的形参
12 |      1>DriverEntry.c(52): warning C4100: “pDevObj”: 未引用的形参
13 |      1>DriverEntry.c(93): warning C4100: “pDevObj”: 未引用的形参
14 |      1>DriverEntry.c(126): warning C4100: “pDevObj”: 未引用的形参
15 |      1>DriverEntry.c(149): warning C4100: “pRegistryPath”: 未引用的形参
16 |      1>DriverEntry.c(155): warning C4101: “pDevExt”: 未引用的局部变量
17 |          HideDriver.c
18 |      1>HideDriver.c(211): warning C4055: “类型转换”: 从数据指针“PVOID”到函数指针“MiProcessLoaderEntry”
19 |          正在生成代码...
20 |        Link:
21 |          D:\Program Files (x86)\Microsoft Visual Studio 12.0\VC\bin\x86_amd64\link.exe /ERRORREPORT:PROMPT /OUT:"E:\DongjCode\NewHideDriverEx\x64\Win7Debug\NewHideDriverEx.sys" /VERSION:"6.3" /INCREMENTAL:NO /NOLOGO /WX /SECTION:"INIT,d" "C:\Program Files (x86)\Windows Kits\8.1\lib\win7\KM\x64\BufferOverflowK.lib" "C:\Program Files (x86)\Windows Kits\8.1\lib\win7\KM\x64\ntoskrnl.lib" "C:\Program Files (x86)\Windows Kits\8.1\lib\win7\KM\x64\hal.lib" "C:\Program Files (x86)\Windows Kits\8.1\lib\win7\KM\x64\wmilib.lib" /NODEFAULTLIB /MANIFEST:NO /DEBUG /PDB:"E:\DongjCode\NewHideDriverEx\x64\Win7Debug\NewHideDriverEx.pdb" /SUBSYSTEM:NATIVE,"6.01" /Driver /OPT:REF /OPT:ICF /ENTRY:"GsDriverEntry" /RELEASE /IMPLIB:"E:\DongjCode\NewHideDriverEx\x64\Win7Debug\NewHideDriverEx.lib" /MERGE:"_TEXT=.text;_PAGE=PAGE" /MACHINE:X64 /PROFILE /kernel /IGNORE:4198,4010,4037,4039,4065,4070,4078,4087,4089,4221,4108,4088,4218,4218,4235 /osversion:6.3 /pdbcompress /debugtype:pdata x64\Win7Debug\DriverEntry.obj
22 |          x64\Win7Debug\HideDriver.obj
23 |          NewHideDriverEx.vcxproj -> E:\DongjCode\NewHideDriverEx\x64\Win7Debug\NewHideDriverEx.sys
24 |        DriverTestSign:
25 |          C:\Program Files (x86)\Windows Kits\8.1\bin\x86\signtool.exe sign /ph /sha1 "890F7ACFA86B1BB43715A150CB34205276FA082A" 
26 |          Done Adding Additional Store
27 |          Successfully signed: E:\DongjCode\NewHideDriverEx\x64\Win7Debug\NewHideDriverEx.sys
28 |          
29 |      1>已完成生成项目“E:\DongjCode\NewHideDriverEx\NewHideDriverEx\NewHideDriverEx.vcxproj”(Rebuild 个目标)的操作。
30 | 
31 | 生成成功。
32 | 
33 | 已用时间 00:00:00.35
34 | 


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/NewHideDriverEx.tlog/CL.read.1.tlog:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverEx/x64/Win7Debug/NewHideDriverEx.tlog/CL.read.1.tlog


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/NewHideDriverEx.tlog/CL.write.1.tlog:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverEx/x64/Win7Debug/NewHideDriverEx.tlog/CL.write.1.tlog


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/NewHideDriverEx.tlog/NewHideDriverEx.lastbuildstate:
--------------------------------------------------------------------------------
1 | #TargetFrameworkVersion=v4.5:PlatformToolSet=WindowsKernelModeDriver8.1:EnableManagedIncrementalBuild=false:VCToolArchitecture=Native32Bit
2 | Win7 Debug|x64|E:\DongjCode\NewHideDriverEx\|
3 | 


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/NewHideDriverEx.tlog/cl.command.1.tlog:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverEx/x64/Win7Debug/NewHideDriverEx.tlog/cl.command.1.tlog


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/NewHideDriverEx.tlog/link.command.1.tlog:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverEx/x64/Win7Debug/NewHideDriverEx.tlog/link.command.1.tlog


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/NewHideDriverEx.tlog/link.read.1.tlog:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverEx/x64/Win7Debug/NewHideDriverEx.tlog/link.read.1.tlog


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/NewHideDriverEx.tlog/link.write.1.tlog:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverEx/x64/Win7Debug/NewHideDriverEx.tlog/link.write.1.tlog


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/signtool.command.1.tlog:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverEx/x64/Win7Debug/signtool.command.1.tlog


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/signtool.read.1.tlog:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverEx/x64/Win7Debug/signtool.read.1.tlog


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/signtool.write.1.tlog:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverEx/x64/Win7Debug/signtool.write.1.tlog


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/stampinf.command.1.tlog:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverEx/x64/Win7Debug/stampinf.command.1.tlog


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/stampinf.read.1.tlog:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverEx/x64/Win7Debug/stampinf.read.1.tlog


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/stampinf.write.1.tlog:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverEx/x64/Win7Debug/stampinf.write.1.tlog


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win7Debug/vc120.pdb:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverEx/x64/Win7Debug/vc120.pdb


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win8.1Debug/NewHideDriverEx.Build.CppClean.log:
--------------------------------------------------------------------------------
 1 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win8.1debug\newhidedriverex.inf
 2 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win8.1debug\vc120.pdb
 3 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win8.1debug\xenosobregistercallbacks.obj
 4 | e:\dongjcode\newhidedriverex\x64\win8.1debug\newhidedriverex.inf
 5 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win8.1debug\stampinf.command.1.tlog
 6 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win8.1debug\stampinf.read.1.tlog
 7 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win8.1debug\stampinf.write.1.tlog
 8 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win8.1debug\newhidedriverex.tlog\cl.command.1.tlog
 9 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win8.1debug\newhidedriverex.tlog\cl.read.1.tlog
10 | e:\dongjcode\newhidedriverex\newhidedriverex\x64\win8.1debug\newhidedriverex.tlog\cl.write.1.tlog
11 | 


--------------------------------------------------------------------------------
/NewHideDriverEx/x64/Win8.1Debug/NewHideDriverEx.log:
--------------------------------------------------------------------------------
1 | 生成启动时间为 2017/12/5 16:31:44。
2 | 
3 | 生成成功。
4 | 
5 | 已用时间 00:00:00.06
6 | 


--------------------------------------------------------------------------------
/NewHideDriverExTest/NewHideDriverExTest.aps:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverExTest/NewHideDriverExTest.aps


--------------------------------------------------------------------------------
/NewHideDriverExTest/NewHideDriverExTest.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverExTest/NewHideDriverExTest.cpp


--------------------------------------------------------------------------------
/NewHideDriverExTest/NewHideDriverExTest.h:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverExTest/NewHideDriverExTest.h


--------------------------------------------------------------------------------
/NewHideDriverExTest/NewHideDriverExTest.rc:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverExTest/NewHideDriverExTest.rc


--------------------------------------------------------------------------------
/NewHideDriverExTest/NewHideDriverExTest.vcxproj:
--------------------------------------------------------------------------------
  1 | <?xml version="1.0" encoding="utf-8"?>
  2 | <Project DefaultTargets="Build" ToolsVersion="12.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
  3 |   <ItemGroup Label="ProjectConfigurations">
  4 |     <ProjectConfiguration Include="Debug|Win32">
  5 |       <Configuration>Debug</Configuration>
  6 |       <Platform>Win32</Platform>
  7 |     </ProjectConfiguration>
  8 |     <ProjectConfiguration Include="Release|Win32">
  9 |       <Configuration>Release</Configuration>
 10 |       <Platform>Win32</Platform>
 11 |     </ProjectConfiguration>
 12 |   </ItemGroup>
 13 |   <PropertyGroup Label="Globals">
 14 |     <ProjectGuid>{6B3E2BFB-44F3-4FE0-88D1-F538554BE32F}</ProjectGuid>
 15 |     <RootNamespace>NewHideDriverExTest</RootNamespace>
 16 |     <Keyword>MFCProj</Keyword>
 17 |   </PropertyGroup>
 18 |   <Import Project="$(VCTargetsPath)\Microsoft.Cpp.Default.props" />
 19 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'" Label="Configuration">
 20 |     <ConfigurationType>Application</ConfigurationType>
 21 |     <UseDebugLibraries>true</UseDebugLibraries>
 22 |     <PlatformToolset>v120</PlatformToolset>
 23 |     <CharacterSet>Unicode</CharacterSet>
 24 |     <UseOfMfc>Static</UseOfMfc>
 25 |   </PropertyGroup>
 26 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'" Label="Configuration">
 27 |     <ConfigurationType>Application</ConfigurationType>
 28 |     <UseDebugLibraries>false</UseDebugLibraries>
 29 |     <PlatformToolset>v120</PlatformToolset>
 30 |     <WholeProgramOptimization>true</WholeProgramOptimization>
 31 |     <CharacterSet>Unicode</CharacterSet>
 32 |     <UseOfMfc>Static</UseOfMfc>
 33 |   </PropertyGroup>
 34 |   <Import Project="$(VCTargetsPath)\Microsoft.Cpp.props" />
 35 |   <ImportGroup Label="ExtensionSettings">
 36 |   </ImportGroup>
 37 |   <ImportGroup Label="PropertySheets" Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">
 38 |     <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
 39 |   </ImportGroup>
 40 |   <ImportGroup Label="PropertySheets" Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">
 41 |     <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
 42 |   </ImportGroup>
 43 |   <PropertyGroup Label="UserMacros" />
 44 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">
 45 |     <LinkIncremental>true</LinkIncremental>
 46 |   </PropertyGroup>
 47 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">
 48 |     <LinkIncremental>false</LinkIncremental>
 49 |   </PropertyGroup>
 50 |   <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">
 51 |     <ClCompile>
 52 |       <PrecompiledHeader>Use</PrecompiledHeader>
 53 |       <WarningLevel>Level3</WarningLevel>
 54 |       <Optimization>Disabled</Optimization>
 55 |       <PreprocessorDefinitions>WIN32;_WINDOWS;_DEBUG;%(PreprocessorDefinitions)</PreprocessorDefinitions>
 56 |       <SDLCheck>true</SDLCheck>
 57 |     </ClCompile>
 58 |     <Link>
 59 |       <SubSystem>Windows</SubSystem>
 60 |       <GenerateDebugInformation>true</GenerateDebugInformation>
 61 |     </Link>
 62 |     <Midl>
 63 |       <MkTypLibCompatible>false</MkTypLibCompatible>
 64 |       <ValidateAllParameters>true</ValidateAllParameters>
 65 |       <PreprocessorDefinitions>_DEBUG;%(PreprocessorDefinitions)</PreprocessorDefinitions>
 66 |     </Midl>
 67 |     <ResourceCompile>
 68 |       <Culture>0x0804</Culture>
 69 |       <PreprocessorDefinitions>_DEBUG;%(PreprocessorDefinitions)</PreprocessorDefinitions>
 70 |       <AdditionalIncludeDirectories>$(IntDir);%(AdditionalIncludeDirectories)</AdditionalIncludeDirectories>
 71 |     </ResourceCompile>
 72 |   </ItemDefinitionGroup>
 73 |   <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">
 74 |     <ClCompile>
 75 |       <WarningLevel>Level3</WarningLevel>
 76 |       <PrecompiledHeader>Use</PrecompiledHeader>
 77 |       <Optimization>MaxSpeed</Optimization>
 78 |       <FunctionLevelLinking>true</FunctionLevelLinking>
 79 |       <IntrinsicFunctions>true</IntrinsicFunctions>
 80 |       <PreprocessorDefinitions>WIN32;_WINDOWS;NDEBUG;%(PreprocessorDefinitions)</PreprocessorDefinitions>
 81 |       <SDLCheck>true</SDLCheck>
 82 |     </ClCompile>
 83 |     <Link>
 84 |       <SubSystem>Windows</SubSystem>
 85 |       <GenerateDebugInformation>true</GenerateDebugInformation>
 86 |       <EnableCOMDATFolding>true</EnableCOMDATFolding>
 87 |       <OptimizeReferences>true</OptimizeReferences>
 88 |     </Link>
 89 |     <Midl>
 90 |       <MkTypLibCompatible>false</MkTypLibCompatible>
 91 |       <ValidateAllParameters>true</ValidateAllParameters>
 92 |       <PreprocessorDefinitions>NDEBUG;%(PreprocessorDefinitions)</PreprocessorDefinitions>
 93 |     </Midl>
 94 |     <ResourceCompile>
 95 |       <Culture>0x0804</Culture>
 96 |       <PreprocessorDefinitions>NDEBUG;%(PreprocessorDefinitions)</PreprocessorDefinitions>
 97 |       <AdditionalIncludeDirectories>$(IntDir);%(AdditionalIncludeDirectories)</AdditionalIncludeDirectories>
 98 |     </ResourceCompile>
 99 |   </ItemDefinitionGroup>
100 |   <ItemGroup>
101 |     <Text Include="ReadMe.txt" />
102 |   </ItemGroup>
103 |   <ItemGroup>
104 |     <ClInclude Include="NewHideDriverExTest.h" />
105 |     <ClInclude Include="NewHideDriverExTestDlg.h" />
106 |     <ClInclude Include="Resource.h" />
107 |     <ClInclude Include="stdafx.h" />
108 |     <ClInclude Include="targetver.h" />
109 |   </ItemGroup>
110 |   <ItemGroup>
111 |     <ClCompile Include="NewHideDriverExTest.cpp" />
112 |     <ClCompile Include="NewHideDriverExTestDlg.cpp" />
113 |     <ClCompile Include="stdafx.cpp">
114 |       <PrecompiledHeader Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">Create</PrecompiledHeader>
115 |       <PrecompiledHeader Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">Create</PrecompiledHeader>
116 |     </ClCompile>
117 |   </ItemGroup>
118 |   <ItemGroup>
119 |     <ResourceCompile Include="NewHideDriverExTest.rc" />
120 |   </ItemGroup>
121 |   <ItemGroup>
122 |     <None Include="res\NewHideDriverExTest.rc2" />
123 |   </ItemGroup>
124 |   <ItemGroup>
125 |     <Image Include="res\NewHideDriverExTest.ico" />
126 |   </ItemGroup>
127 |   <Import Project="$(VCTargetsPath)\Microsoft.Cpp.targets" />
128 |   <ImportGroup Label="ExtensionTargets">
129 |   </ImportGroup>
130 |   <ProjectExtensions>
131 |     <VisualStudio>
132 |       <UserProperties RESOURCE_FILE="NewHideDriverExTest.rc" />
133 |     </VisualStudio>
134 |   </ProjectExtensions>
135 | </Project>


--------------------------------------------------------------------------------
/NewHideDriverExTest/NewHideDriverExTest.vcxproj.filters:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="utf-8"?>
 2 | <Project ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
 3 |   <ItemGroup>
 4 |     <Filter Include="源文件">
 5 |       <UniqueIdentifier>{4FC737F1-C7A5-4376-A066-2A32D752A2FF}</UniqueIdentifier>
 6 |       <Extensions>cpp;c;cc;cxx;def;odl;idl;hpj;bat;asm;asmx</Extensions>
 7 |     </Filter>
 8 |     <Filter Include="头文件">
 9 |       <UniqueIdentifier>{93995380-89BD-4b04-88EB-625FBE52EBFB}</UniqueIdentifier>
10 |       <Extensions>h;hh;hpp;hxx;hm;inl;inc;xsd</Extensions>
11 |     </Filter>
12 |     <Filter Include="资源文件">
13 |       <UniqueIdentifier>{67DA6AB6-F800-4c08-8B7A-83BB121AAD01}</UniqueIdentifier>
14 |       <Extensions>rc;ico;cur;bmp;dlg;rc2;rct;bin;rgs;gif;jpg;jpeg;jpe;resx;tiff;tif;png;wav;mfcribbon-ms</Extensions>
15 |     </Filter>
16 |   </ItemGroup>
17 |   <ItemGroup>
18 |     <Text Include="ReadMe.txt" />
19 |   </ItemGroup>
20 |   <ItemGroup>
21 |     <ClInclude Include="NewHideDriverExTest.h">
22 |       <Filter>头文件</Filter>
23 |     </ClInclude>
24 |     <ClInclude Include="NewHideDriverExTestDlg.h">
25 |       <Filter>头文件</Filter>
26 |     </ClInclude>
27 |     <ClInclude Include="stdafx.h">
28 |       <Filter>头文件</Filter>
29 |     </ClInclude>
30 |     <ClInclude Include="targetver.h">
31 |       <Filter>头文件</Filter>
32 |     </ClInclude>
33 |     <ClInclude Include="Resource.h">
34 |       <Filter>头文件</Filter>
35 |     </ClInclude>
36 |   </ItemGroup>
37 |   <ItemGroup>
38 |     <ClCompile Include="NewHideDriverExTest.cpp">
39 |       <Filter>源文件</Filter>
40 |     </ClCompile>
41 |     <ClCompile Include="NewHideDriverExTestDlg.cpp">
42 |       <Filter>源文件</Filter>
43 |     </ClCompile>
44 |     <ClCompile Include="stdafx.cpp">
45 |       <Filter>源文件</Filter>
46 |     </ClCompile>
47 |   </ItemGroup>
48 |   <ItemGroup>
49 |     <ResourceCompile Include="NewHideDriverExTest.rc">
50 |       <Filter>资源文件</Filter>
51 |     </ResourceCompile>
52 |   </ItemGroup>
53 |   <ItemGroup>
54 |     <None Include="res\NewHideDriverExTest.rc2">
55 |       <Filter>资源文件</Filter>
56 |     </None>
57 |   </ItemGroup>
58 |   <ItemGroup>
59 |     <Image Include="res\NewHideDriverExTest.ico">
60 |       <Filter>资源文件</Filter>
61 |     </Image>
62 |   </ItemGroup>
63 | </Project>


--------------------------------------------------------------------------------
/NewHideDriverExTest/NewHideDriverExTestDlg.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverExTest/NewHideDriverExTestDlg.cpp


--------------------------------------------------------------------------------
/NewHideDriverExTest/NewHideDriverExTestDlg.h:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverExTest/NewHideDriverExTestDlg.h


--------------------------------------------------------------------------------
/NewHideDriverExTest/ReadMe.txt:
--------------------------------------------------------------------------------
 1 | ================================================================================
 2 |     MICROSOFT 基础类库 : NewHideDriverExTest 项目概述
 3 | ===============================================================================
 4 | 
 5 | 应用程序向导已为您创建了此 NewHideDriverExTest 应用程序。此应用程序不仅演示 Microsoft 基础类的基本使用方法，还可作为您编写应用程序的起点。
 6 | 
 7 | 本文件概要介绍组成 NewHideDriverExTest 应用程序的每个文件的内容。
 8 | 
 9 | NewHideDriverExTest.vcxproj
10 |     这是使用应用程序向导生成的 VC++ 项目的主项目文件，其中包含生成该文件的 Visual C++ 的版本信息，以及有关使用应用程序向导选择的平台、配置和项目功能的信息。
11 | 
12 | NewHideDriverExTest.vcxproj.filters
13 |     这是使用“应用程序向导”生成的 VC++ 项目筛选器文件。它包含有关项目文件与筛选器之间的关联信息。在 IDE 中，通过这种关联，在特定节点下以分组形式显示具有相似扩展名的文件。例如，“.cpp”文件与“源文件”筛选器关联。
14 | 
15 | NewHideDriverExTest.h
16 |     这是应用程序的主头文件。
17 |     其中包括其他项目特定的标头（包括 Resource.h），并声明 CNewHideDriverExTestApp 应用程序类。
18 | 
19 | NewHideDriverExTest.cpp
20 |     这是包含应用程序类 CNewHideDriverExTestApp 的主应用程序源文件。
21 | 
22 | NewHideDriverExTest.rc
23 |     这是程序使用的所有 Microsoft Windows 资源的列表。它包括 RES 子目录中存储的图标、位图和光标。此文件可以直接在 Microsoft Visual C++ 中进行编辑。项目资源包含在 2052 中。
24 | 
25 | res\NewHideDriverExTest.ico
26 |     这是用作应用程序图标的图标文件。此图标包括在主资源文件 NewHideDriverExTest.rc 中。
27 | 
28 | res\NewHideDriverExTest.rc2
29 |     此文件包含不在 Microsoft Visual C++ 中进行编辑的资源。您应该将不可由资源编辑器编辑的所有资源放在此文件中。
30 | 
31 | 
32 | /////////////////////////////////////////////////////////////////////////////
33 | 
34 | 应用程序向导创建一个对话框类：
35 | 
36 | NewHideDriverExTestDlg.h、NewHideDriverExTestDlg.cpp - 对话框
37 |     这些文件包含 CNewHideDriverExTestDlg 类。此类定义应用程序的主对话框的行为。对话框模板包含在 NewHideDriverExTest.rc 中，该文件可以在 Microsoft Visual C++ 中编辑。
38 | 
39 | /////////////////////////////////////////////////////////////////////////////
40 | 
41 | 其他功能：
42 | 
43 | ActiveX 控件
44 |     该应用程序包含对使用 ActiveX 控件的支持。
45 | 
46 | 打印和打印预览支持
47 |     应用程序向导通过从 MFC 库调用 CView 类中的成员函数生成代码，来处理打印、打印设置和打印预览命令。
48 | 
49 | /////////////////////////////////////////////////////////////////////////////
50 | 
51 | 其他标准文件:
52 | 
53 | StdAfx.h, StdAfx.cpp
54 |     这些文件用于生成名为 NewHideDriverExTest.pch 的预编译头 (PCH) 文件和名为 StdAfx.obj 的预编译类型文件。
55 | 
56 | Resource.h
57 |     这是标准头文件，可用于定义新的资源 ID。Microsoft Visual C++ 将读取并更新此文件。
58 | 
59 | NewHideDriverExTest.manifest
60 | 	Windows XP 使用应用程序清单文件来描述特定版本的并行程序集的应用程序依赖项。加载程序使用这些信息来从程序集缓存中加载相应的程序集，并保护其不被应用程序访问。应用程序清单可能会包含在内，以作为与应用程序可执行文件安装在同一文件夹中的外部 .manifest 文件进行重新分发，它还可能以资源的形式包含在可执行文件中。
61 | /////////////////////////////////////////////////////////////////////////////
62 | 
63 | 其他注释:
64 | 
65 | 应用程序向导使用“TODO:”来指示应添加或自定义的源代码部分。
66 | 
67 | 如果应用程序使用共享 DLL 中的 MFC，您将需要重新分发 MFC DLL。如果应用程序所使用的语言与操作系统的区域设置不同，则还需要重新分发相应的本地化资源 mfc110XXX.DLL。
68 | 有关上述话题的更多信息，请参见 MSDN 文档中有关重新分发 Visual C++ 应用程序的部分。
69 | 
70 | /////////////////////////////////////////////////////////////////////////////
71 | 


--------------------------------------------------------------------------------
/NewHideDriverExTest/res/NewHideDriverExTest.ico:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverExTest/res/NewHideDriverExTest.ico


--------------------------------------------------------------------------------
/NewHideDriverExTest/res/NewHideDriverExTest.rc2:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverExTest/res/NewHideDriverExTest.rc2


--------------------------------------------------------------------------------
/NewHideDriverExTest/resource.h:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverExTest/resource.h


--------------------------------------------------------------------------------
/NewHideDriverExTest/stdafx.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverExTest/stdafx.cpp


--------------------------------------------------------------------------------
/NewHideDriverExTest/stdafx.h:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverExTest/stdafx.h


--------------------------------------------------------------------------------
/NewHideDriverExTest/targetver.h:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhuhuibeishadiao/NewHideDriverEx/f9bdb137dc7aef63c5d01d96a9ec9432962cb14d/NewHideDriverExTest/targetver.h


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | # NewHideDriverEx
 2 | Hide Driver By MiProcessLoaderEntry (no trigger patchguard)  
 3 | # Support SEH (>= win10 15063 trigger patchguard)  
 4 | 
 5 | # Tested
 6 | ## win7 x64
 7 | ## win10 14393 x64
 8 | ## win10 15063 x64
 9 | ## win10 16299 x64
10 | 
11 | This project only provides ideas and will not be updated.  
12 | 
13 | Focus on projects that have been updated:  
14 | 
15 | https://github.com/Sqdwr/HideDriver
16 | 


--------------------------------------------------------------------------------