In this article we will talk about a few hooking techniques used by antivirus software. For the purpose of this analysis the antivirus chosen will be Kaspersky (http://www.kaspersky.com/it/trials PURE 3.0 Total Security), we will deal with various hooking techniques used both at user and kernel mode.
more here.........https://quequero.org/2014/10/kaspersky-hooking-engine-analysis/
more here.........https://quequero.org/2014/10/kaspersky-hooking-engine-analysis/