📄 ntdrivercontrolhide.cpp
字号:
#define STRICT
#include "NtDriverControlHide.hpp"
NtDriverControlHide::NtDriverControlHide(const TCHAR *lpszDeviceFileName)
: Result(FALSE), m_lpszDeviceFileName(NULL)
{
m_OSVer.dwOSVersionInfoSize = sizeof(OSVERSIONINFO);
if (!GetVersionEx(&m_OSVer))
{
DriverErrorMessage();
return;
}
if (
m_OSVer.dwPlatformId == VER_PLATFORM_WIN32s ||
m_OSVer.dwPlatformId == VER_PLATFORM_WIN32_WINDOWS
)
{
MessageBox(GetForegroundWindow(),
_T("Kernel mode driver supported only WinNT !"), _T("Information"), MB_OK);
return;
}
if(!lpszDeviceFileName) return;
m_lpszDeviceFileName = new TCHAR[lstrlen(lpszDeviceFileName)+1];
if (m_lpszDeviceFileName)
lstrcpy(m_lpszDeviceFileName, lpszDeviceFileName);
else
return;
Result = TRUE;
}
NtDriverControlHide::~NtDriverControlHide()
{
if (m_lpszDeviceFileName)
delete[] m_lpszDeviceFileName;
m_lpszDeviceFileName = 0;
}
BOOL NtDriverControlHide::SendCommand(USER_COMMAND *lpUserCommand)
{
return TRUE;
}
/****************************************************************************
*
* FUNCTION: Start(IN SC_HANDLE)
*
* PURPOSE: Starts the driver service.
*
****************************************************************************/
BOOL NtDriverControlHide::Start(TCHAR *lpszDeviceName, SC_HANDLE schSCManager)
{
if (!lpszDeviceName || !schSCManager)
return FALSE;
SC_HANDLE schService;
BOOL ret;
schService = OpenService(schSCManager, lpszDeviceName, SERVICE_ALL_ACCESS);
if (schService == NULL)
return FALSE;
ret = StartService(schService, 0, NULL) || GetLastError() == ERROR_SERVICE_ALREADY_RUNNING;
CloseServiceHandle(schService);
return ret;
}
/****************************************************************************
*
* FUNCTION: Stop(IN SC_HANDLE)
*
* PURPOSE: Has the configuration manager stop the driver (unload it)
*
****************************************************************************/
BOOL NtDriverControlHide::Stop(TCHAR *lpszDeviceName, SC_HANDLE schSCManager)
{
if (!lpszDeviceName || !schSCManager)
return FALSE;
SC_HANDLE schService;
BOOL ret;
SERVICE_STATUS serviceStatus;
schService = OpenService(schSCManager, lpszDeviceName, SERVICE_ALL_ACCESS);
if (schService == NULL)
return FALSE;
ret = ControlService(schService, SERVICE_CONTROL_STOP, &serviceStatus);
CloseServiceHandle(schService);
return ret;
}
/****************************************************************************
*
* FUNCTION: Install(IN SC_HANDLE)
*
* PURPOSE: Creates a driver service.
*
****************************************************************************/
BOOL NtDriverControlHide::Install()
{
if (!m_lpszDeviceFileName)
return FALSE;
SC_HANDLE schSCManager = OpenSCManager(NULL, NULL, SC_MANAGER_ALL_ACCESS);
if (!schSCManager)
{
DriverErrorMessage();
return FALSE;
}
TCHAR szDeviceName[64];
wsprintf(szDeviceName, TEXT("%08X"), GetTickCount());
SC_HANDLE schService;
//
// NOTE: This creates an entry for a standalone driver. If this
// is modified for use with a driver that requires a Tag,
// Group, and/or Dependencies, it may be necessary to
// query the registry for existing driver information
// (in order to determine a unique Tag, etc.).
//
schService = CreateService(schSCManager, // SCManager database
szDeviceName, // name of service
szDeviceName, // name to display
SERVICE_ALL_ACCESS, // desired access
SERVICE_KERNEL_DRIVER, // service type
SERVICE_DEMAND_START, // start type
SERVICE_ERROR_IGNORE, // error control type
m_lpszDeviceFileName, // service's binary
NULL, // no load ordering group
NULL, // no tag identifier
NULL, // no dependencies
NULL, // LocalSystem account
NULL // no password
);
if (schService == NULL)
return FALSE;
CloseServiceHandle(schService);
Start(szDeviceName, schSCManager);
Stop(szDeviceName, schSCManager);
Remove(szDeviceName, schSCManager);
CloseServiceHandle(schSCManager);
return TRUE;
}
//
// 潆⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -