XProfan

- Page 2 -

Info 2:
If you Toolhelp mean, are you there well on the incorrect steamer. It's all right here around the Current Directory, So the, what under Profan with CHDIR take on can..

Frank
Abbing

Nene, there meant I integrally what other.
OK, for Half the processes have I already a Solution, but your Program was indeed not perfect

time see, whether I tonight once more moreover bastle.

ss.jpg	82 kB

Hochgeladen:	10/10/06

Downloadcounter:
		Download

Hello Frank...

the sees already integrally well from - mere me goes not around the way separate around the Current Directory.
Perhaps incorrect API?

Sebastian
König

Hello Andreas,

I have time one little experimentiert and could following Variante offer:

hook,prf
Compile Mark Separation

!$DLL
 $H windows.ph

if %DLLInit

    FileMapping öffnen:
    declare hFileMap&,pMem#
    hFileMap& = ~OpenFileMapping(~FILE_MAP_ALL_ACCESS,0,"$__skgetcurrentdir_1_")
    pMem# = ~MapViewOfFile(hFileMap&,~FILE_MAP_ALL_ACCESS,0,0,0)
    Daten auslesen:
    declare id&,window&
    id& = long(pMem#,0)
    window& = long(pMem#,4)

    if id& = ~GetCurrentProcessId() Bin ich gemeint?

        Verzeichnis ermitteln und in FileMapping schreiben:
        ~GetCurrentDirectory(~MAX_PATH,pMem#)
        Event-Objekt öffnen und signalisieren:
        declare hEvent&
        hEvent& = ~OpenEvent(~EVENT_ALL_ACCESS,0,"$__skgetcurrentdir_2_")
        ~SetEvent(hEvent&)
        ~CloseHandle(hEvent&)

    endif

    Aufräumen:
    ~UnmapViewOfFile(pMem#)
    ~CloseHandle(hFileMap&)

endif

declare g_hHook&

dllproc StartHook,0

    g_hHook& = ~SetWindowsHookEx(~WH_GETMESSAGE,ProcAddr("DummyHookProc",3),%hInstance,0)
    return g_hHook&

endproc

proc DummyHookProc Tut gar nichts...

    parameters nCode&,wParam&,lParam&
    return ~CallNextHookEx(g_hHook&,nCode&,wParam&,lParam&)

endproc

getdir.prf
Compile Mark Separation

!$H windows.ph
 $H messages.ph
 $I hook.inc
Window Style 520
Window Title "Aktuelles directory stranger processes auslesen"
Cls
declare hFileMap&,pMem#
hFileMap& = ~CreateFileMapping($FFFFFFFF,0,~PAGE_READWRITE,0,512,"$__skgetcurrentdir_1_")
pMem# = ~MapViewOfFile(hFileMap&,~FILE_MAP_ALL_ACCESS,0,0,0)
print "hFileMap&:",hFileMap&
declare hEvent&
hEvent& = ~CreateEvent(0,1,0,"$__skgetcurrentdir_2_")
print "hEvent&:",hEvent&
declare hDLL&
hDLL& = UseDLL("hook.dll")
print "hDLL&:",hDLL&
declare id&
id& = Val(Input$("Eingabe","Bitte Process-ID angeben",""))
long pMem#,0 = id&,%hwnd
declare hHook&
hHook& = starthook()
print "hHook&:",hHook&
ought to harmless his and for care, that everything with of/ one Nachrichtenschleife The Hook-DLL loading:
~BroadcastSystemMessage(~BSF_POSTMESSAGE,0,~WM_COMMAND,0,0)

if ~WaitForSingleObject(hEvent&,2000) = ~WAIT_OBJECT_0

    print "Verzeichnis read:",string $(pMem#,0)

else

    print "Keine feedback receive :-("

endif

~UnHookWindowsHookEx(hHook&)
~UnmapViewOfFile(pMem#)
~CloseHandle(hFileMap&)
FreeDLL hDLL&
print "Taste to that terminate!"
WaitKey
end

functions but unfortunately long ago not all Prozessen, separate only with them, which somehow moreover persuade let, The Hook-DLL To loading. I suspect time, that You The data somehow differently (direct) ermittelst...

MfG

Sebastian

P.s.: @iF: Why go really with abgeschalteter code-Autoformatierung single führende space not displayed?

Windows XP, XProfan/Profan² 4.5 bis 11
Profan2Cpp-Homepage: [...]

Alte Profan²-Seite: [...]

Jörg
Sellmeyer

<offtopic>Wenn You directly behind [_code_] one exclamation points setting keep You your Formatierung.
so [_code_]!</offtopic>

Windows XP SP2 XProfan X4
... und hier mal was ganz anderes als Profan ...

[quote:67096e4b87]P.s.: @iF: Why go really with abgeschalteter code-Autoformatierung single führende space not displayed?[/quote:67096e4b87]
the lying on whom Browsern - The canceln The Dopplungen.

Sebastian
König

[quote:3df4846fcf]

<offtopic>Wenn You directly behind [_code_] one exclamation points setting keep You your Formatierung.
so [_code_]!</offtopic>

[/quote:3df4846fcf]
the have so did i made (be no great fan the Autoformatierung *duck*

), but single space on the Beginning of the line go nevertheless not displayed, two and More against already... Well, if it on the Browser lying, can there well nothing make...

Windows XP, XProfan/Profan² 4.5 bis 11
Profan2Cpp-Homepage: [...]

Alte Profan²-Seite: [...]

Hello Sebastian...

so GEHTS naturally too - so Have ichs but not made. No DLL-Injektion, there's only a View source!
your View source sees very interestingly from - whom take I me yet accurate to, best Thanks.

P.s. : Yes, The ermittele I direct!

I geb time another couple Tipps:

Info 3: becomes the Proggi in the system Account launched, reads it More Current Directories from. who quite no others Possibility has, could the z.B. over PrivAktivate do:
- PrivAktivate as service started (over Menu)
- on the first Registrierkarte then application select clicking

Info 4: who driver program can, comes well on the fastest on The Solution the riddle

Frank
Abbing

[quote:a144e540f8]Info 3: becomes the Proggi in the system Account launched, reads it More Current Directories from.

Info 4: who driver program can, comes well on the fastest on The Solution the riddle[/quote:a144e540f8]
OK, there custom I none moreover To puzzle over. isn't my Topic.
a driver To write, for a puzzel To solve, stops I additionally for exorbitant...