计算机工程与应用 ›› 2012, Vol. 48 ›› Issue (27): 79-83.

• 网络、通信、安全 • 上一篇    下一篇

基于WMI技术的进程静音模型研究

陈晶宁,康  绯,马亚南,王军博   

  1. 信息工程大学 信息工程学院 网络工程系,郑州 450002
  • 出版日期:2012-09-21 发布日期:2012-09-24

Silent control model of process based on WMI technology

CHEN Jingning, KANG Fei, MA Yanan, WANG Junbo   

  1. Department of Network Engineering, College of Information Engineering, Information Engineering University, Zhengzhou 450002, China
  • Online:2012-09-21 Published:2012-09-24

摘要: 进程运行时需要占用系统的资源,会在一定程度上增加系统的负载,传统进程隐藏技术无法控制进程对资源的利用,不利于进程的隐藏。提出了一个基于Windows管理规范(WMI)的进程静音运行的模型,在此模型的指导下,依据当前系统负载情况和进程所占资源可以动态调控进程下一时刻对资源的利用,很好地克服了系统负载突增时对用户的影响,提高进程的隐蔽性,也使得资源得到了充分的利用。

关键词: Windows管理规范(WMI), 静音控制, 进程隐藏, 性能监控, 设备访问

Abstract: Process needs to occupy?system resources while it is running, and it will increase the?system load to some extent. The traditional?technology of process?concealment can not do very well while the process has high demand for hidden, because it doesn’t do something to control the use of resources.?A silent control model based on Windows?Management Instrumentation(WMI) is proposed. Under the guidance of?this mode, the process of running of a special process can be?dynamically?regulated?by the current system?load and the share?of resources?of the special process, and it can well overcome the?impact on user caused by the?sudden increase load?of the system as well as improve the?concealment of process?and?efficient use of?resources.

Key words: Windows?Management Instrumentation(WMI), silent control, process concealment, performance monitoring, device access