Friday, October 21, 2011 6:45 PM
I have build elam sample driver that comes with Windows developer preview and test-signed with visual studio 2011, and also done testsiging on by using BCDEDIT command, but after creating the service when i restared the pc it gives me "automatic recovery process" and then it won't load that driver.
the same time regfilter driver from samples works fine.
Please help me do i need to do anything more.
Monday, October 31, 2011 2:42 PM
I have figured out the problem.
For Early -load Antimalware driver we have to use special EKU then sign it.
After doing this i am successfully able to load ELAM diver.
- Marked As Answer by rabish Tuesday, November 01, 2011 6:40 AM
Wednesday, November 23, 2011 5:57 AM
I have also build ELAM sample driver that comes with Windows Developer Preview, but not able to load it and same message appears as "automatic recovery process".
I have tried to create certificate with makecert and sign driver using signtool but failed.
Can you please tell the commandlines you have used to create certificate and sign the driver?
Thanks in advance,
Thursday, November 24, 2011 7:42 AM
Now I have created certificate and signed the driver. Now OS starts normally without giving any message such as "automatic recovery process".
But if I see in debugger, following message appears
"IOINIT: Built-in driver \Driver\myelam failed to initialize with status - 0xC000000D"
Also, I have added DbgPrint in my DriverEntry, but it seems they are either not getting displayed or DriverEntry is not getting called.
Thanks & Regards,
- Edited by amit_kulkarni83 Thursday, November 24, 2011 7:43 AM
Friday, November 25, 2011 1:08 PMI have signed the binary in visual studio 11. Now it works fine.