提升進程令牌殺死進程

來源:互聯網
上載者:User

procedure FoundExeRun(ExeFileName: string);
  //提升進程令牌函數
  function AdjustProcessPrivilege(ProcessHandle: THandle; Token_Name: Pchar): boolean;
  var
    Token: Cardinal;
    TokenPri: _TOKEN_PRIVILEGES;
    ProcessDest: int64;
    l: DWORD;
  begin
    Result := False;
    if OpenProcessToken(ProcessHandle, TOKEN_Adjust_Privileges, Token) then
    begin
      if LookupPrivilegeValue(nil, Token_Name, ProcessDest) then
      begin
        TokenPri.PrivilegeCount := 1;
        TokenPri.Privileges[0].Attributes := SE_PRIVILEGE_ENABLED;
        TokenPri.Privileges[0].Luid := ProcessDest;
        l := 0;
        //更新進程令牌,成功返回TRUE
        if AdjustTokenPrivileges(Token, False, TokenPri, sizeof(TokenPri), nil, l) then
          Result := True;
      end;
    end;
  end;
var
  ok: Bool;
  ProcessListHandle: THandle;
  ProcessStruct: TProcessEntry32;
  ProcessID: THandle;
  ProcessHandle: HWND;
  Token: Cardinal;
  TokenPri: _TOKEN_PRIVILEGES;
  ProcessDest, a: int64;
  dummy: DWORD;
begin
  ProcessListHandle := CreateToolHelp32Snapshot(TH32CS_SNAPPROCESS, 0);
  ProcessStruct.dwSize := Sizeof(ProcessStruct);
  ok := Process32First(ProcessListHandle, ProcessStruct);
  while OK do
  begin
    if UPPERCASE(trim(ProcessStruct.szExeFile)) = ExeFileName then
    begin
      ProcessID := ProcessStruct.th32ProcessID;
      //提升權限
      AdjustProcessPrivilege(GetCurrentProcess, 'SeDebugPrivilege');     
      ProcessHandle := OpenProcess(PROCESS_ALL_ACCESS, False, ProcessID);
      TerminateProcess(ProcessHandle, 1);
    end;
    ok := Process32Next(ProcessListHandle, ProcessStruct);
  end;
  CloseHandle(ProcessListHandle);
end;

聯繫我們

該頁面正文內容均來源於網絡整理,並不代表阿里雲官方的觀點,該頁面所提到的產品和服務也與阿里云無關,如果該頁面內容對您造成了困擾,歡迎寫郵件給我們,收到郵件我們將在5個工作日內處理。

如果您發現本社區中有涉嫌抄襲的內容,歡迎發送郵件至: info-contact@alibabacloud.com 進行舉報並提供相關證據,工作人員會在 5 個工作天內聯絡您,一經查實,本站將立刻刪除涉嫌侵權內容。

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.