From 680efe9ba37a71b43b6c7db1b56bd3cc6026810a Mon Sep 17 00:00:00 2001
From: zeffy <zeffy@users.noreply.github.com>
Date: Tue, 3 Oct 2017 15:50:06 -0700
Subject: [PATCH] delete loose files

---
 wufuc/ntcstr.h              | 20 --------------------
 wufuc/shimlib.c             | 35 -----------------------------------
 wufuc/shimlib.h             | 33 ---------------------------------
 wufuc/wufuc.vcxproj.filters |  8 +++++---
 4 files changed, 5 insertions(+), 91 deletions(-)
 delete mode 100644 wufuc/ntcstr.h
 delete mode 100644 wufuc/shimlib.c
 delete mode 100644 wufuc/shimlib.h

diff --git a/wufuc/ntcstr.h b/wufuc/ntcstr.h
deleted file mode 100644
index aca4da0..0000000
--- a/wufuc/ntcstr.h
+++ /dev/null
@@ -1,20 +0,0 @@
-#pragma once
-
-#include <phnt_windows.h>
-
-#define _countof(_Array) (sizeof(_Array) / sizeof(_Array[0]))
-#define _max(a,b) (((a) > (b)) ? (a) : (b))
-#define _min(a,b) (((a) < (b)) ? (a) : (b))
-
-#define _MAX_PATH   260 // max. length of full pathname
-#define _MAX_DRIVE  3   // max. length of drive component
-#define _MAX_DIR    256 // max. length of path component
-#define _MAX_FNAME  256 // max. length of file name component
-#define _MAX_EXT    256 // max. length of extension component
-
-typedef int(__cdecl *LPFN__WCSICMP_NTDLL)(const wchar_t *string1, const wchar_t *string2);
-
-int _wcsicmp_Ntdll(
-        const wchar_t *string1,
-        const wchar_t *string2
-);
\ No newline at end of file
diff --git a/wufuc/shimlib.c b/wufuc/shimlib.c
deleted file mode 100644
index 817fce9..0000000
--- a/wufuc/shimlib.c
+++ /dev/null
@@ -1,35 +0,0 @@
-#include "shimlib.h"
-#include "hooks.h"
-
-#include <Windows.h>
-
-PHOOKAPI g_pHookApiArray;
-
-PHOOKAPI WINAPI GetHookAPIs(LPCSTR szCommandLine, LPCWSTR wszShimName, PDWORD pdwHookCount) {
-    g_pHookApiArray = calloc(2, sizeof(HOOKAPI));
-
-    if ( g_pHookApiArray ) {
-        g_pHookApiArray[0].LibraryName = "advapi32.dll";
-        g_pHookApiArray[0].FunctionName = "RegQueryValueExW";
-        g_pHookApiArray[0].ReplacementFunction = RegQueryValueExW_hook;
-        g_pHookApiArray[1].LibraryName = "kernel32.dll";
-        g_pHookApiArray[1].FunctionName = "LoadLibraryExW";
-        g_pHookApiArray[1].ReplacementFunction = LoadLibraryExW_hook;
-        *pdwHookCount = 2;
-    }
-    return NULL;
-}
-
-BOOL WINAPI NotifyShims(DWORD fdwReason, PLDR_DATA_TABLE_ENTRY pLdrEntry) {
-    switch ( fdwReason ) {
-    case SHIM_NOTIFY_ATTACH:
-        break;
-    case SHIM_NOTIFY_DETACH:
-        break;
-    case SHIM_NOTIFY_DLL_LOAD:
-        break;
-    case SHIM_NOTIFY_DLL_UNLOAD:
-        break;
-    }
-    return TRUE;
-}
diff --git a/wufuc/shimlib.h b/wufuc/shimlib.h
deleted file mode 100644
index 39577c6..0000000
--- a/wufuc/shimlib.h
+++ /dev/null
@@ -1,33 +0,0 @@
-#ifndef SHIM_H
-#define SHIM_H
-#pragma once
-
-#define WIN32_NO_STATUS
-#include <windows.h>
-#undef WIN32_NO_STATUS
-
-#include <winternl.h>
-
-typedef struct tagHOOKAPI {
-    PCSTR LibraryName;
-    PCSTR FunctionName;
-    PVOID ReplacementFunction;
-    PVOID OriginalFunction;
-    PVOID Reserved[2];
-} HOOKAPI, *PHOOKAPI;
-
-#define SHIM_REASON_INIT       100
-#define SHIM_REASON_DEINIT     101
-#define SHIM_REASON_DLL_LOAD   102 /* Arg: PLDR_DATA_TABLE_ENTRY */
-#define SHIM_REASON_DLL_UNLOAD 103 /* Arg: PLDR_DATA_TABLE_ENTRY */
-
-#define SHIM_NOTIFY_ATTACH     1
-#define SHIM_NOTIFY_DETACH     2
-#define SHIM_NOTIFY_DLL_LOAD   3   /* Arg: PLDR_DATA_TABLE_ENTRY */
-#define SHIM_NOTIFY_DLL_UNLOAD 4   /* Arg: PLDR_DATA_TABLE_ENTRY */
-
-extern PHOOKAPI g_pHookApiArray;
-
-PHOOKAPI WINAPI GetHookAPIs(LPCSTR szCommandLine, LPCWSTR wszShimName, PDWORD pdwHookCount);
-BOOL WINAPI NotifyShims(DWORD fdwReason, PLDR_DATA_TABLE_ENTRY pLdrEntry);
-#endif
diff --git a/wufuc/wufuc.vcxproj.filters b/wufuc/wufuc.vcxproj.filters
index 4bd6acc..7103c4f 100644
--- a/wufuc/wufuc.vcxproj.filters
+++ b/wufuc/wufuc.vcxproj.filters
@@ -66,12 +66,14 @@
       <Filter>Source Files</Filter>
     </ClCompile>
   </ItemGroup>
-  <ItemGroup>
-    <None Include="wufuc.rch" />
-  </ItemGroup>
   <ItemGroup>
     <ResourceCompile Include="wufuc.rc">
       <Filter>Resource Files</Filter>
     </ResourceCompile>
   </ItemGroup>
+  <ItemGroup>
+    <None Include="wufuc.rch">
+      <Filter>Resource Files</Filter>
+    </None>
+  </ItemGroup>
 </Project>
\ No newline at end of file