我正在尝试在Perl中编写一个脚本来读取系统托盘中的所有图标,抓住他们的坐标&找出谁拥有它们。我几乎试图翻译this code here。
到目前为止,这是我的代码:
use strict;
use warnings;
use Win32::API;
use Win32::OLE qw(in);
use Data::Dumper;
use constant wbemFlagReturnImmediately => 0x10;
use constant wbemFlagForwardOnly => 0x20;
use constant SYNCHRONIZE => 0x00100000;
use constant STANDARD_RIGHTS_REQUIRED => 0x000F0000;
use constant PROCESS_ALL_ACCESS => (STANDARD_RIGHTS_REQUIRED | SYNCHRONIZE | 0xFFF);
my $TB_BUTTONCOUNT = 0x0418;
my $TB_GETBUTTONTEXT = 0x041B;
my $TB_GETBUTTONINFO = 0x0441;
my $TB_GETITEMRECT = 0x041D;
my $TB_GETBUTTON = 0x0417;
sub get_windows_details {
my ($self) = @_;
my $ret;
my $objWMIService =
Win32::OLE->GetObject("winmgmts:\\\\localhost\\root\\CIMV2")
or die "WMI connection failed.\n";
my $colItems =
$objWMIService->ExecQuery("SELECT * FROM Win32_OperatingSystem",
"WQL",
wbemFlagReturnImmediately | wbemFlagForwardOnly);
my $objItem;
foreach $objItem (in $colItems) {
$ret->{'osname'} = $objItem->{Caption};
}
$colItems =
$objWMIService->ExecQuery("SELECT * FROM Win32_Processor",
"WQL",
wbemFlagReturnImmediately | wbemFlagForwardOnly);
foreach $objItem (in $colItems) {
$ret->{'osbit'} = $objItem->{AddressWidth};
}
return $ret;
}
sub get_autoit_tray_handle {
my $autoit = Win32::OLE->new("AutoItX3.Control")
or return 0;
my $tray_hwnd = $autoit->ControlGetHandle("[Class:Shell_TrayWnd]", "", "[Class:ToolbarWindow32;Instance:1]");
return hex $tray_hwnd;
}
sub get_tray_icon_count {
#my $hWnd = get_tray_handle();
my $hWnd = get_autoit_tray_handle();
my $send_message = Win32::API->new("user32", "SendMessage", "NNII", "I");
return $send_message->Call($hWnd, $TB_BUTTONCOUNT, 0, 0);
}
# Randomly chosen icon index.
my $iIndex = 6;
my $os = get_windows_details();
if ($os->{'osbit'} == 64) {
Win32::API::Struct->typedef('TBBUTTON', qw { int iBitmap;
int idCommand;
BYTE fsState;
BYTE fsStyle;
BYTE bReserved[6];
DWORD_PTR dwData;
INT_PTR iString;
}
) or die "Typedef error $!\n";
} else {
Win32::API::Struct->typedef('TBBUTTON', qw { int iBitmap;
int idCommand;
BYTE fsState;
BYTE fsStyle;
BYTE bReserved[2];
DWORD_PTR dwData;
INT_PTR iString;
}
) or die "Typedef error $!\n";
}
# Get tray handle & it's proc id
my $tb_button = Win32::API::Struct->new('TBBUTTON');
my $tray_hwnd = get_autoit_tray_handle();
print "tray hwnd: $tray_hwnd\n";
my $window_thread_proc_id = Win32::API->new('user32', "GetWindowThreadProcessId", 'LP', 'N');
my $lpdwPID = pack 'L', 0;
my $pid = $window_thread_proc_id->Call($tray_hwnd, $lpdwPID);
my $dwPID = unpack 'L', $lpdwPID;
print "proc id: $dwPID\n";
# read the tray process memory to get the tray button info
my $open_process = Win32::API->new('kernel32', 'OpenProcess', 'NIN', 'N') || die $!;
my $proc_hwnd = $open_process->Call(PROCESS_ALL_ACCESS, 0, $dwPID);
print "proc hwnd: $proc_hwnd\n";
my $virtual_alloc = Win32::API->new('kernel32', 'VirtualAllocEx', 'NNLNN', 'N');
my $lp_data = $virtual_alloc->Call($proc_hwnd, 0, $tb_button->sizeof(), 0x1000, 0x04);
print "Error allocating memory: $!\n" if $!;
print "Allocated addresss: $lp_data\n";
my $send_message = Win32::API->new('user32', 'SendMessage', 'NNIN','I');
my $get_button_status = $send_message->Call($tray_hwnd, $TB_GETBUTTON, $iIndex, $lp_data);
print "TB_GETBUTTON Status: $get_button_status\n";
my $read_process = Win32::API->new('kernel32', 'ReadProcessMemory', 'NNSNP','I');
my $bytes_read = pack 'L', 0;
$read_process->Call($proc_hwnd, $lp_data, $tb_button, $tb_button->sizeof(), $bytes_read);
print "dwData: $tb_button->{'dwData'} \n";
我正在使用autoit COM DLL来获取系统托盘句柄。一旦我有了托盘手柄,我就会尝试获取它的进程ID&然后读取进程内存以获取TBBUTTON structure,其定义如下:
if ($os->{'osbit'} == 64) {
Win32::API::Struct->typedef('TBBUTTON', qw { int iBitmap;
int idCommand;
BYTE fsState;
BYTE fsStyle;
BYTE bReserved[6];
DWORD_PTR dwData;
INT_PTR iString;
}
) or die "Typedef error $!\n";
} else {
Win32::API::Struct->typedef('TBBUTTON', qw { int iBitmap;
int idCommand;
BYTE fsState;
BYTE fsStyle;
BYTE bReserved[2];
DWORD_PTR dwData;
INT_PTR iString;
}
) or die "Typedef error $!\n";
}
当你执行上面的代码时,至少在我的系统上,这是我看到的输出:
tray hwnd: 401922
proc id: 11040
proc hwnd: 704
Allocated addresss: 32702464
TB_GETBUTTON Status: 1
dwData: 10293610267052867588
正如您所看到的 - “dwData”似乎是错误的。看起来我在这里做错了什么:
my $read_process = Win32::API->new('kernel32', 'ReadProcessMemory', 'NNSNP','I');
my $bytes_read = pack 'L', 0;
$read_process->Call($proc_hwnd, $lp_data, $tb_button, $tb_button->sizeof(), $bytes_read);
print "dwData: $tb_button->{'dwData'} \n";
有关我在那里做错的建议吗?感谢。
答案 0 :(得分:0)
我决定尽量减少您所引入的各种内容带来的不确定性,并使用Win32::GuiTest提供的功能。我还在比特和结构上作弊,以便在我的32位WinXP SP3笔记本电脑上运行。这是运行并产生一些输出的东西。
我不确定这是否是正确的输出,但它至少应该指向一个更简单的方向:
#!/usr/bin/env perl
use feature 'say';
use strict; use warnings;
use Const::Fast;
use Devel::CheckOS;
use Win32::GuiTest qw(
AllocateVirtualBuffer
FreeVirtualBuffer
ReadFromVirtualBuffer
FindWindowLike
SendMessage
);
use YAML;
const my %TB => (
BUTTONCOUNT => 0x0418,
GETBUTTONTEXT => 0x041B,
GETBUTTONINFO => 0x0441,
GETITEMRECT => 0x041D,
GETBUTTON => 0x0417,
);
const my %TBUTTON => (
32 => 'iiCCCCLL',
64 => 'iiCCCCCCCCLL',
);
my ($tray_handle) = FindWindowLike(undef, undef, 'TrayNotifyWnd');
my ($toolbar_handle) = FindWindowLike($tray_handle, undef, 'ToolbarWindow');
say for ($tray_handle, $toolbar_handle);
my $button_count = SendMessage($toolbar_handle, $TB{BUTTONCOUNT}, 0, 0);
unless (defined($button_count) and $button_count > 0) {
die "Can't find buttons\n"
}
my $buf = AllocateVirtualBuffer($toolbar_handle, 0x20);
print Dump $buf;
my $index = int(rand $button_count);
say "Trying button = $index\n";
my $status = SendMessage(
$toolbar_handle,
$TB{GETBUTTON},
$index,
$buf->{ptr}
);
say "TB_GETBUTTON status = $status";
my $result = ReadFromVirtualBuffer($buf, 0x20);
FreeVirtualBuffer($buf);
print Dump [ map sprintf('%X', $_), unpack $TBUTTON{32}, $result ];
此外,并不是说你应该在一个地方定义Win32::API函数和结构之类的内容,而不是一次。
示例输出:
655544 393294 --- process: 1920 ptr: 28835840 Trying button = 19 TB_GETBUTTON status = 1 --- - 7 - 9 - C - 0 - 0 - 0 - 1DA23C8 - 2B70590