Home Explore Help
Sign In
pascal
/
fpc
mirror of https://gitlab.com/freepascal.org/fpc/source.git
2
0
Fork 0
Files Issues 0 Wiki
Tree: 90744753b9
Branches Tags
fpc
/
packages
/
extra
/
winunits
/
jwatlhelp32.pas

jwatlhelp32.pas 18 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589 
  1. {******************************************************************************}
    2. 

  2. {                                                                              }
    3. 

  3. { ToolHelp API interface Unit for Object Pascal                                }
    4. 

  4. {                                                                              }
    5. 

  5. { Portions created by Microsoft are Copyright (C) 1995-2001 Microsoft          }
    6. 

  6. { Corporation. All Rights Reserved.                                            }
    7. 

  7. {                                                                              }
    8. 

  8. { The original file is: tlhelp32.h, released June 2000. The original Pascal    }
    9. 

  9. { code is: TlHelp32.pas, released December 2000. The initial developer of the  }
    10. 

  10. { Pascal code is Marcel van Brakel (brakelm att chello dott nl).               }
    11. 

  11. {                                                                              }
    12. 

  12. { Portions created by Marcel van Brakel are Copyright (C) 1999-2001            }
    13. 

  13. { Marcel van Brakel. All Rights Reserved.                                      }
    14. 

  14. {                                                                              }
    15. 

  15. { Obtained through: Joint Endeavour of Delphi Innovators (Project JEDI)        }
    16. 

  16. {                                                                              }
    17. 

  17. { You may retrieve the latest version of this file at the Project JEDI         }
    18. 

  18. { APILIB home page, located at http://jedi-apilib.sourceforge.net              }
    19. 

  19. {                                                                              }
    20. 

  20. { The contents of this file are used with permission, subject to the Mozilla   }
    21. 

  21. { Public License Version 1.1 (the "License"); you may not use this file except }
    22. 

  22. { in compliance with the License. You may obtain a copy of the License at      }
    23. 

  23. { http://www.mozilla.org/MPL/MPL-1.1.html                                      }
    24. 

  24. {                                                                              }
    25. 

  25. { Software distributed under the License is distributed on an "AS IS" basis,   }
    26. 

  26. { WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License for }
    27. 

  27. { the specific language governing rights and limitations under the License.    }
    28. 

  28. {                                                                              }
    29. 

  29. { Alternatively, the contents of this file may be used under the terms of the  }
    30. 

  30. { GNU Lesser General Public License (the  "LGPL License"), in which case the   }
    31. 

  31. { provisions of the LGPL License are applicable instead of those above.        }
    32. 

  32. { If you wish to allow use of your version of this file only under the terms   }
    33. 

  33. { of the LGPL License and not to allow others to use your version of this file }
    34. 

  34. { under the MPL, indicate your decision by deleting  the provisions above and  }
    35. 

  35. { replace  them with the notice and other provisions required by the LGPL      }
    36. 

  36. { License.  If you do not delete the provisions above, a recipient may use     }
    37. 

  37. { your version of this file under either the MPL or the LGPL License.          }
    38. 

  38. {                                                                              }
    39. 

  39. { For more information about the LGPL: http://www.gnu.org/copyleft/lesser.html }
    40. 

  40. {                                                                              }
    41. 

  41. {******************************************************************************}
    42. 

  42. 

  43. 

  44. unit JwaTlHelp32;
    45. 

  45. 

  46. {$WEAKPACKAGEUNIT}
    47. 

  47. 

  48. {$HPPEMIT ''}
    49. 

  49. {$HPPEMIT '#include "tlhelp32.h"'}
    50. 

  50. {$HPPEMIT ''}
    51. 

  51. 

  52. {$I jediapilib.inc}
    53. 

  53. 

  54. interface
    55. 

  55. 

  56. uses
    57. 

  57.   JwaWinType;
    58. 

  58. 

  59. const
    60. 

  60.   MAX_MODULE_NAME32 = 255;
    61. 

  61.   {$EXTERNALSYM MAX_MODULE_NAME32}
    62. 

  62. 

  63. // Snapshot function
    64. 

  64. 

  65. function CreateToolhelp32Snapshot(dwFlags, th32ProcessID: DWORD): HANDLE; stdcall;
    66. 

  66. {$EXTERNALSYM CreateToolhelp32Snapshot}
    67. 

  67. 

  68. //
    69. 

  69. // The th32ProcessID argument is only used if TH32CS_SNAPHEAPLIST or
    70. 

  70. // TH32CS_SNAPMODULE is specified. th32ProcessID == 0 means the current
    71. 

  71. // process.
    72. 

  72. //
    73. 

  73. // NOTE that all of the snapshots are global except for the heap and module
    74. 

  74. //      lists which are process specific. To enumerate the heap or module
    75. 

  75. //      state for all WIN32 processes call with TH32CS_SNAPALL and the
    76. 

  76. //      current process. Then for each process in the TH32CS_SNAPPROCESS
    77. 

  77. //      list that isn't the current process, do a call with just
    78. 

  78. //      TH32CS_SNAPHEAPLIST and/or TH32CS_SNAPMODULE.
    79. 

  79. //
    80. 

  80. // dwFlags
    81. 

  81. //
    82. 

  82. 

  83. const
    84. 

  84.   TH32CS_SNAPHEAPLIST = $00000001;
    85. 

  85.   {$EXTERNALSYM TH32CS_SNAPHEAPLIST}
    86. 

  86.   TH32CS_SNAPPROCESS  = $00000002;
    87. 

  87.   {$EXTERNALSYM TH32CS_SNAPPROCESS}
    88. 

  88.   TH32CS_SNAPTHREAD   = $00000004;
    89. 

  89.   {$EXTERNALSYM TH32CS_SNAPTHREAD}
    90. 

  90.   TH32CS_SNAPMODULE   = $00000008;
    91. 

  91.   {$EXTERNALSYM TH32CS_SNAPMODULE}
    92. 

  92.   TH32CS_SNAPMODULE32 = $00000010;
    93. 

  93.   {$EXTERNALSYM TH32CS_SNAPMODULE32}
    94. 

  94.   TH32CS_SNAPALL      = TH32CS_SNAPHEAPLIST or TH32CS_SNAPPROCESS or
    95. 

  95.                         TH32CS_SNAPTHREAD or TH32CS_SNAPMODULE;
    96. 

  96.   {$EXTERNALSYM TH32CS_SNAPALL}
    97. 

  97.   TH32CS_INHERIT      = $80000000;
    98. 

  98.   {$EXTERNALSYM TH32CS_INHERIT}
    99. 

  99. 

  100. //
    101. 

  101. // Use CloseHandle to destroy the snapshot
    102. 

  102. //
    103. 

  103. 

  104. // Heap walking
    105. 

  105. 

  106. type
    107. 

  107.   PHEAPLIST32 = ^HEAPLIST32;
    108. 

  108.   {$EXTERNALSYM PHEAPLIST32}
    109. 

  109.   tagHEAPLIST32 = record
    110. 

  110.     dwSize: SIZE_T;
    111. 

  111.     th32ProcessID: DWORD;   // owning process
    112. 

  112.     th32HeapID: ULONG_PTR;  // heap (in owning process's context!)
    113. 

  113.     dwFlags: DWORD;
    114. 

  114.   end;
    115. 

  115.   {$EXTERNALSYM tagHEAPLIST32}
    116. 

  116.   HEAPLIST32 = tagHEAPLIST32;
    117. 

  117.   {$EXTERNALSYM HEAPLIST32}
    118. 

  118.   LPHEAPLIST32 = ^HEAPLIST32;
    119. 

  119.   {$EXTERNALSYM LPHEAPLIST32}
    120. 

  120.   THeapList32 = HEAPLIST32;
    121. 

  121. 

  122. //
    123. 

  123. // dwFlags
    124. 

  124. //
    125. 

  125. 

  126. const
    127. 

  127.   HF32_DEFAULT    = 1;  // process's default heap
    128. 

  128.   {$EXTERNALSYM HF32_DEFAULT}
    129. 

  129.   HF32_SHARED     = 2;  // is shared heap
    130. 

  130.   {$EXTERNALSYM HF32_SHARED}
    131. 

  131. 

  132. function Heap32ListFirst(hSnapshot: HANDLE; var lphl: HEAPLIST32): BOOL; stdcall;
    133. 

  133. {$EXTERNALSYM Heap32ListFirst}
    134. 

  134. function Heap32ListNext(hSnapshot: HANDLE; var lphl: HEAPLIST32): BOOL; stdcall;
    135. 

  135. {$EXTERNALSYM Heap32ListNext}
    136. 

  136. 

  137. type
    138. 

  138.   PHEAPENTRY32 = ^HEAPENTRY32;
    139. 

  139.   {$EXTERNALSYM PHEAPENTRY32}
    140. 

  140.   tagHEAPENTRY32 = record
    141. 

  141.     dwSize: SIZE_T;
    142. 

  142.     hHandle: HANDLE;       // Handle of this heap block
    143. 

  143.     dwAddress: ULONG_PTR;  // Linear address of start of block
    144. 

  144.     dwBlockSize: SIZE_T;   // Size of block in bytes
    145. 

  145.     dwFlags: DWORD;
    146. 

  146.     dwLockCount: DWORD;
    147. 

  147.     dwResvd: DWORD;
    148. 

  148.     th32ProcessID: DWORD;  // owning process
    149. 

  149.     th32HeapID: ULONG_PTR; // heap block is in
    150. 

  150.   end;
    151. 

  151.   {$EXTERNALSYM tagHEAPENTRY32}
    152. 

  152.   HEAPENTRY32 = tagHEAPENTRY32;
    153. 

  153.   {$EXTERNALSYM HEAPENTRY32}
    154. 

  154.   LPHEAPENTRY32 = ^HEAPENTRY32;
    155. 

  155.   {$EXTERNALSYM LPHEAPENTRY32}
    156. 

  156.   THeapEntry32 = HEAPENTRY32;
    157. 

  157. 

  158. //
    159. 

  159. // dwFlags
    160. 

  160. //
    161. 

  161. 

  162. const
    163. 

  163.   LF32_FIXED    = $00000001;
    164. 

  164.   {$EXTERNALSYM LF32_FIXED}
    165. 

  165.   LF32_FREE     = $00000002;
    166. 

  166.   {$EXTERNALSYM LF32_FREE}
    167. 

  167.   LF32_MOVEABLE = $00000004;
    168. 

  168.   {$EXTERNALSYM LF32_MOVEABLE}
    169. 

  169. 

  170. function Heap32First(var lphe: HEAPENTRY32; th32ProcessID: DWORD;
    171. 

  171.   th32HeapID: ULONG_PTR): BOOL; stdcall;
    172. 

  172. {$EXTERNALSYM Heap32First}
    173. 

  173. function Heap32Next(var lphe: HEAPENTRY32): BOOL; stdcall;
    174. 

  174. {$EXTERNALSYM Heap32Next}
    175. 

  175. 

  176. function Toolhelp32ReadProcessMemory(th32ProcessID: DWORD; lpBaseAddress: LPCVOID;
    177. 

  177.   lpBuffer: LPVOID; cbRead: DWORD; lpNumberOfBytesRead: LPDWORD): BOOL; stdcall;
    178. 

  178. {$EXTERNALSYM Toolhelp32ReadProcessMemory}
    179. 

  179. 

  180. // Process walking
    181. 

  181. 

  182. type
    183. 

  183.   PPROCESSENTRY32W = ^PROCESSENTRY32W;
    184. 

  184.   {$EXTERNALSYM PPROCESSENTRY32W}
    185. 

  185.   tagPROCESSENTRY32W = record
    186. 

  186.     dwSize: DWORD;
    187. 

  187.     cntUsage: DWORD;
    188. 

  188.     th32ProcessID: DWORD;          // this process
    189. 

  189.     th32DefaultHeapID: ULONG_PTR;
    190. 

  190.     th32ModuleID:DWORD;            // associated exe
    191. 

  191.     cntThreads: DWORD;
    192. 

  192.     th32ParentProcessID: DWORD;    // this process's parent process
    193. 

  193.     pcPriClassBase: LONG;          // Base priority of process's threads
    194. 

  194.     dwFlags: DWORD;
    195. 

  195.     szExeFile: array [0..MAX_PATH - 1] of WCHAR;   // Path
    196. 

  196.   end;
    197. 

  197.   {$EXTERNALSYM tagPROCESSENTRY32W}
    198. 

  198.   PROCESSENTRY32W = tagPROCESSENTRY32W;
    199. 

  199.   {$EXTERNALSYM PROCESSENTRY32W}
    200. 

  200.   LPPROCESSENTRY32W = ^PROCESSENTRY32W;
    201. 

  201.   {$EXTERNALSYM LPPROCESSENTRY32W}
    202. 

  202.   TProcessEntry32W = PROCESSENTRY32W;
    203. 

  203. 

  204.   {$IFDEF UNICODE}
    205. 

  205. 

  206.   PROCESSENTRY32 = PROCESSENTRY32W;
    207. 

  207.   {$EXTERNALSYM PROCESSENTRY32}
    208. 

  208.   PPROCESSENTRY32 = PPROCESSENTRY32W;
    209. 

  209.   {$EXTERNALSYM PPROCESSENTRY32}
    210. 

  210.   LPPROCESSENTRY32 = LPPROCESSENTRY32W;
    211. 

  211.   {$EXTERNALSYM LPPROCESSENTRY32}
    212. 

  212.   TProcessEntry32 = TProcessEntry32W;
    213. 

  213. 

  214.   {$ELSE}
    215. 

  215. 

  216.   PPROCESSENTRY32 = ^PROCESSENTRY32;
    217. 

  217.   {$EXTERNALSYM PPROCESSENTRY32}
    218. 

  218.   tagPROCESSENTRY32 = record
    219. 

  219.     dwSize: DWORD;
    220. 

  220.     cntUsage: DWORD;
    221. 

  221.     th32ProcessID: DWORD;          // this process
    222. 

  222.     th32DefaultHeapID: ULONG_PTR;
    223. 

  223.     th32ModuleID: DWORD;           // associated exe
    224. 

  224.     cntThreads: DWORD;
    225. 

  225.     th32ParentProcessID: DWORD;    // this process's parent process
    226. 

  226.     pcPriClassBase: LONG;          // Base priority of process's threads
    227. 

  227.     dwFlags: DWORD;
    228. 

  228.     szExeFile: array [0..MAX_PATH - 1] of Char;    // Path
    229. 

  229.   end;
    230. 

  230.   {$EXTERNALSYM tagPROCESSENTRY32}
    231. 

  231.   PROCESSENTRY32 = tagPROCESSENTRY32;
    232. 

  232.   {$EXTERNALSYM PROCESSENTRY32}
    233. 

  233.   LPPROCESSENTRY32 = ^PROCESSENTRY32;
    234. 

  234.   {$EXTERNALSYM LPPROCESSENTRY32}
    235. 

  235.   TProcessEntry32 = PROCESSENTRY32;
    236. 

  236. 

  237.   {$ENDIF UNICODE}
    238. 

  238. 

  239. function Process32FirstW(hSnapshot: HANDLE; var lppe: PROCESSENTRY32W): BOOL; stdcall;
    240. 

  240. {$EXTERNALSYM Process32FirstW}
    241. 

  241. function Process32NextW(hSnapshot: HANDLE; var lppe: PROCESSENTRY32W): BOOL; stdcall;
    242. 

  242. {$EXTERNALSYM Process32NextW}
    243. 

  243. 

  244. function Process32First(hSnapshot: HANDLE; var lppe: PROCESSENTRY32): BOOL; stdcall;
    245. 

  245. {$EXTERNALSYM Process32First}
    246. 

  246. function Process32Next(hSnapshot: HANDLE; var lppe: PROCESSENTRY32): BOOL; stdcall;
    247. 

  247. {$EXTERNALSYM Process32Next}
    248. 

  248. 

  249. // Thread walking
    250. 

  250. 

  251. type
    252. 

  252.   PTHREADENTRY32 = ^THREADENTRY32;
    253. 

  253.   {$EXTERNALSYM PTHREADENTRY32}
    254. 

  254.   tagTHREADENTRY32 = record
    255. 

  255.     dwSize: DWORD;
    256. 

  256.     cntUsage: DWORD;
    257. 

  257.     th32ThreadID: DWORD;       // this thread
    258. 

  258.     th32OwnerProcessID: DWORD; // Process this thread is associated with
    259. 

  259.     tpBasePri: LONG;
    260. 

  260.     tpDeltaPri: LONG;
    261. 

  261.     dwFlags: DWORD;
    262. 

  262.   end;
    263. 

  263.   {$EXTERNALSYM tagTHREADENTRY32}
    264. 

  264.   THREADENTRY32 = tagTHREADENTRY32;
    265. 

  265.   {$EXTERNALSYM THREADENTRY32}
    266. 

  266.   LPTHREADENTRY32 = ^THREADENTRY32;
    267. 

  267.   {$EXTERNALSYM LPTHREADENTRY32}
    268. 

  268.   TThreadEntry32 = THREADENTRY32;
    269. 

  269. 

  270. function Thread32First(hSnapshot: HANDLE; var lpte: THREADENTRY32): BOOL; stdcall;
    271. 

  271. {$EXTERNALSYM Thread32First}
    272. 

  272. function Thread32Next(hSnapshot: HANDLE; var lpte: THREADENTRY32): BOOL; stdcall;
    273. 

  273. {$EXTERNALSYM Thread32Next}
    274. 

  274. 

  275. // Module walking
    276. 

  276. 

  277. type
    278. 

  278.   PMODULEENTRY32W = ^MODULEENTRY32W;
    279. 

  279.   {$EXTERNALSYM PMODULEENTRY32W}
    280. 

  280.   tagMODULEENTRY32W = record
    281. 

  281.     dwSize: DWORD;
    282. 

  282.     th32ModuleID: DWORD;       // This module
    283. 

  283.     th32ProcessID: DWORD;      // owning process
    284. 

  284.     GlblcntUsage: DWORD;       // Global usage count on the module
    285. 

  285.     ProccntUsage: DWORD;       // Module usage count in th32ProcessID's context
    286. 

  286.     modBaseAddr: LPBYTE;       // Base address of module in th32ProcessID's context
    287. 

  287.     modBaseSize: DWORD;        // Size in bytes of module starting at modBaseAddr
    288. 

  288.     hModule: HMODULE;          // The hModule of this module in th32ProcessID's context
    289. 

  289.     szModule: array [0..MAX_MODULE_NAME32] of WCHAR;
    290. 

  290.     szExePath: array [0..MAX_PATH - 1] of WCHAR;
    291. 

  291.   end;
    292. 

  292.   {$EXTERNALSYM tagMODULEENTRY32W}
    293. 

  293.   MODULEENTRY32W = tagMODULEENTRY32W;
    294. 

  294.   {$EXTERNALSYM MODULEENTRY32W}
    295. 

  295.   LPMODULEENTRY32W = ^MODULEENTRY32W;
    296. 

  296.   {$EXTERNALSYM LPMODULEENTRY32W}
    297. 

  297.   TModuleEntry32W = MODULEENTRY32W;
    298. 

  298. 

  299.   {$IFDEF UNICODE}
    300. 

  300. 

  301.   MODULEENTRY32 = MODULEENTRY32W;
    302. 

  302.   {$EXTERNALSYM MODULEENTRY32}
    303. 

  303.   PMODULEENTRY32 = PMODULEENTRY32W;
    304. 

  304.   {$EXTERNALSYM PMODULEENTRY32}
    305. 

  305.   LPMODULEENTRY32 = LPMODULEENTRY32W;
    306. 

  306.   {$EXTERNALSYM LPMODULEENTRY32}
    307. 

  307.   TModuleEntry32 = TModuleEntry32W;
    308. 

  308. 

  309.   {$ELSE}
    310. 

  310. 

  311.   PMODULEENTRY32 = ^MODULEENTRY32;
    312. 

  312.   {$EXTERNALSYM PMODULEENTRY32}
    313. 

  313.   tagMODULEENTRY32 = record
    314. 

  314.     dwSize: DWORD;
    315. 

  315.     th32ModuleID: DWORD;       // This module
    316. 

  316.     th32ProcessID: DWORD;      // owning process
    317. 

  317.     GlblcntUsage: DWORD;       // Global usage count on the module
    318. 

  318.     ProccntUsage: DWORD;       // Module usage count in th32ProcessID's context
    319. 

  319.     modBaseAddr: LPBYTE;       // Base address of module in th32ProcessID's context
    320. 

  320.     modBaseSize: DWORD;        // Size in bytes of module starting at modBaseAddr
    321. 

  321.     hModule: HMODULE;          // The hModule of this module in th32ProcessID's context
    322. 

  322.     szModule: array [0..MAX_MODULE_NAME32] of Char;
    323. 

  323.     szExePath: array [0..MAX_PATH - 1] of Char;
    324. 

  324.   end;
    325. 

  325.   {$EXTERNALSYM tagMODULEENTRY32}
    326. 

  326.   MODULEENTRY32 = tagMODULEENTRY32;
    327. 

  327.   {$EXTERNALSYM MODULEENTRY32}
    328. 

  328.   LPMODULEENTRY32 = ^MODULEENTRY32;
    329. 

  329.   {$EXTERNALSYM LPMODULEENTRY32}
    330. 

  330.   TModuleEntry32 = MODULEENTRY32;
    331. 

  331. 

  332.   {$ENDIF UNICODE}
    333. 

  333. 

  334. function Module32FirstW(hSnapshot: HANDLE; var lpme: MODULEENTRY32W): BOOL; stdcall;
    335. 

  335. {$EXTERNALSYM Module32FirstW}
    336. 

  336. function Module32NextW(hSnapshot: HANDLE; var lpme: MODULEENTRY32W): BOOL; stdcall;
    337. 

  337. {$EXTERNALSYM Module32NextW}
    338. 

  338. 

  339. //
    340. 

  340. // NOTE CAREFULLY that the modBaseAddr and hModule fields are valid ONLY
    341. 

  341. // in th32ProcessID's process context.
    342. 

  342. //
    343. 

  343. function Module32First(hSnapshot: HANDLE; var lpme: MODULEENTRY32): BOOL; stdcall;
    344. 

  344. {$EXTERNALSYM Module32First}
    345. 

  345. function Module32Next(hSnapshot: HANDLE; var lpme: MODULEENTRY32): BOOL; stdcall;
    346. 

  346. {$EXTERNALSYM Module32Next}
    347. 

  347. 

  348. implementation
    349. 

  349. 

  350. const
    351. 

  351.   kernel32 = 'kernel32.dll';
    352. 

  352.   {$IFDEF UNICODE}
    353. 

  353.   AWSuffix = 'W';
    354. 

  354.   {$ELSE}
    355. 

  355.   AWSuffix = '';
    356. 

  356.   {$ENDIF UNICODE}
    357. 

  357. 

  358. {$IFDEF DYNAMIC_LINK}
    359. 

  359. 

  360. var
    361. 

  361.   _CreateToolhelp32Snapshot: Pointer;
    362. 

  362. 

  363. function CreateToolhelp32Snapshot;
    364. 

  364. begin
    365. 

  365.   GetProcedureAddress(_CreateToolhelp32Snapshot, kernel32, 'CreateToolhelp32Snapshot');
    366. 

  366.   asm
    367. 

  367.         MOV     ESP, EBP
    368. 

  368.         POP     EBP
    369. 

  369.         JMP     [_CreateToolhelp32Snapshot]
    370. 

  370.   end;
    371. 

  371. end;
    372. 

  372. 

  373. var
    374. 

  374.   _Heap32ListFirst: Pointer;
    375. 

  375. 

  376. function Heap32ListFirst;
    377. 

  377. begin
    378. 

  378.   GetProcedureAddress(_Heap32ListFirst, kernel32, 'Heap32ListFirst');
    379. 

  379.   asm
    380. 

  380.         MOV     ESP, EBP
    381. 

  381.         POP     EBP
    382. 

  382.         JMP     [_Heap32ListFirst]
    383. 

  383.   end;
    384. 

  384. end;
    385. 

  385. 

  386. var
    387. 

  387.   _Heap32ListNext: Pointer;
    388. 

  388. 

  389. function Heap32ListNext;
    390. 

  390. begin
    391. 

  391.   GetProcedureAddress(_Heap32ListNext, kernel32, 'Heap32ListNext');
    392. 

  392.   asm
    393. 

  393.         MOV     ESP, EBP
    394. 

  394.         POP     EBP
    395. 

  395.         JMP     [_Heap32ListNext]
    396. 

  396.   end;
    397. 

  397. end;
    398. 

  398. 

  399. var
    400. 

  400.   _Heap32First: Pointer;
    401. 

  401. 

  402. function Heap32First;
    403. 

  403. begin
    404. 

  404.   GetProcedureAddress(_Heap32First, kernel32, 'Heap32First');
    405. 

  405.   asm
    406. 

  406.         MOV     ESP, EBP
    407. 

  407.         POP     EBP
    408. 

  408.         JMP     [_Heap32First]
    409. 

  409.   end;
    410. 

  410. end;
    411. 

  411. 

  412. var
    413. 

  413.   _Heap32Next: Pointer;
    414. 

  414. 

  415. function Heap32Next;
    416. 

  416. begin
    417. 

  417.   GetProcedureAddress(_Heap32Next, kernel32, 'Heap32Next');
    418. 

  418.   asm
    419. 

  419.         MOV     ESP, EBP
    420. 

  420.         POP     EBP
    421. 

  421.         JMP     [_Heap32Next]
    422. 

  422.   end;
    423. 

  423. end;
    424. 

  424. 

  425. var
    426. 

  426.   _Toolhelp32ReadProcessMemory: Pointer;
    427. 

  427. 

  428. function Toolhelp32ReadProcessMemory;
    429. 

  429. begin
    430. 

  430.   GetProcedureAddress(_Toolhelp32ReadProcessMemory, kernel32, 'Toolhelp32ReadProcessMemory');
    431. 

  431.   asm
    432. 

  432.         MOV     ESP, EBP
    433. 

  433.         POP     EBP
    434. 

  434.         JMP     [_Toolhelp32ReadProcessMemory]
    435. 

  435.   end;
    436. 

  436. end;
    437. 

  437. 

  438. var
    439. 

  439.   _Process32FirstW: Pointer;
    440. 

  440. 

  441. function Process32FirstW;
    442. 

  442. begin
    443. 

  443.   GetProcedureAddress(_Process32FirstW, kernel32, 'Process32FirstW');
    444. 

  444.   asm
    445. 

  445.         MOV     ESP, EBP
    446. 

  446.         POP     EBP
    447. 

  447.         JMP     [_Process32FirstW]
    448. 

  448.   end;
    449. 

  449. end;
    450. 

  450. 

  451. var
    452. 

  452.   _Process32NextW: Pointer;
    453. 

  453. 

  454. function Process32NextW;
    455. 

  455. begin
    456. 

  456.   GetProcedureAddress(_Process32NextW, kernel32, 'Process32NextW');
    457. 

  457.   asm
    458. 

  458.         MOV     ESP, EBP
    459. 

  459.         POP     EBP
    460. 

  460.         JMP     [_Process32NextW]
    461. 

  461.   end;
    462. 

  462. end;
    463. 

  463. 

  464. var
    465. 

  465.   _Process32First: Pointer;
    466. 

  466. 

  467. function Process32First;
    468. 

  468. begin
    469. 

  469.   GetProcedureAddress(_Process32First, kernel32, 'Process32First' + AWSuffix);
    470. 

  470.   asm
    471. 

  471.         MOV     ESP, EBP
    472. 

  472.         POP     EBP
    473. 

  473.         JMP     [_Process32First]
    474. 

  474.   end;
    475. 

  475. end;
    476. 

  476. 

  477. var
    478. 

  478.   _Process32Next: Pointer;
    479. 

  479. 

  480. function Process32Next;
    481. 

  481. begin
    482. 

  482.   GetProcedureAddress(_Process32Next, kernel32, 'Process32Next' + AWSuffix);
    483. 

  483.   asm
    484. 

  484.         MOV     ESP, EBP
    485. 

  485.         POP     EBP
    486. 

  486.         JMP     [_Process32Next]
    487. 

  487.   end;
    488. 

  488. end;
    489. 

  489. 

  490. var
    491. 

  491.   _Thread32First: Pointer;
    492. 

  492. 

  493. function Thread32First;
    494. 

  494. begin
    495. 

  495.   GetProcedureAddress(_Thread32First, kernel32, 'Thread32First');
    496. 

  496.   asm
    497. 

  497.         MOV     ESP, EBP
    498. 

  498.         POP     EBP
    499. 

  499.         JMP     [_Thread32First]
    500. 

  500.   end;
    501. 

  501. end;
    502. 

  502. 

  503. var
    504. 

  504.   _Thread32Next: Pointer;
    505. 

  505. 

  506. function Thread32Next;
    507. 

  507. begin
    508. 

  508.   GetProcedureAddress(_Thread32Next, kernel32, 'Thread32Next');
    509. 

  509.   asm
    510. 

  510.         MOV     ESP, EBP
    511. 

  511.         POP     EBP
    512. 

  512.         JMP     [_Thread32Next]
    513. 

  513.   end;
    514. 

  514. end;
    515. 

  515. 

  516. var
    517. 

  517.   _Module32FirstW: Pointer;
    518. 

  518. 

  519. function Module32FirstW;
    520. 

  520. begin
    521. 

  521.   GetProcedureAddress(_Module32FirstW, kernel32, 'Module32FirstW');
    522. 

  522.   asm
    523. 

  523.         MOV     ESP, EBP
    524. 

  524.         POP     EBP
    525. 

  525.         JMP     [_Module32FirstW]
    526. 

  526.   end;
    527. 

  527. end;
    528. 

  528. 

  529. var
    530. 

  530.   _Module32NextW: Pointer;
    531. 

  531. 

  532. function Module32NextW;
    533. 

  533. begin
    534. 

  534.   GetProcedureAddress(_Module32NextW, kernel32, 'Module32NextW');
    535. 

  535.   asm
    536. 

  536.         MOV     ESP, EBP
    537. 

  537.         POP     EBP
    538. 

  538.         JMP     [_Module32NextW]
    539. 

  539.   end;
    540. 

  540. end;
    541. 

  541. 

  542. var
    543. 

  543.   _Module32First: Pointer;
    544. 

  544. 

  545. function Module32First;
    546. 

  546. begin
    547. 

  547.   GetProcedureAddress(_Module32First, kernel32, 'Module32First' + AWSuffix);
    548. 

  548.   asm
    549. 

  549.         MOV     ESP, EBP
    550. 

  550.         POP     EBP
    551. 

  551.         JMP     [_Module32First]
    552. 

  552.   end;
    553. 

  553. end;
    554. 

  554. 

  555. var
    556. 

  556.   _Module32Next: Pointer;
    557. 

  557. 

  558. function Module32Next;
    559. 

  559. begin
    560. 

  560.   GetProcedureAddress(_Module32Next, kernel32, 'Module32Next' + AWSuffix);
    561. 

  561.   asm
    562. 

  562.         MOV     ESP, EBP
    563. 

  563.         POP     EBP
    564. 

  564.         JMP     [_Module32Next]
    565. 

  565.   end;
    566. 

  566. end;
    567. 

  567. 

  568. {$ELSE}
    569. 

  569. 

  570. function CreateToolhelp32Snapshot; external kernel32 name 'CreateToolhelp32Snapshot';
    571. 

  571. function Heap32ListFirst; external kernel32 name 'Heap32ListFirst';
    572. 

  572. function Heap32ListNext; external kernel32 name 'Heap32ListNext';
    573. 

  573. function Heap32First; external kernel32 name 'Heap32First';
    574. 

  574. function Heap32Next; external kernel32 name 'Heap32Next';
    575. 

  575. function Toolhelp32ReadProcessMemory; external kernel32 name 'Toolhelp32ReadProcessMemory';
    576. 

  576. function Process32FirstW; external kernel32 name 'Process32FirstW';
    577. 

  577. function Process32NextW; external kernel32 name 'Process32NextW';
    578. 

  578. function Process32First; external kernel32 name 'Process32First' + AWSuffix;
    579. 

  579. function Process32Next; external kernel32 name 'Process32Next' + AWSuffix;
    580. 

  580. function Thread32First; external kernel32 name 'Thread32First';
    581. 

  581. function Thread32Next; external kernel32 name 'Thread32Next';
    582. 

  582. function Module32FirstW; external kernel32 name 'Module32FirstW';
    583. 

  583. function Module32NextW; external kernel32 name 'Module32NextW';
    584. 

  584. function Module32First; external kernel32 name 'Module32First' + AWSuffix;
    585. 

  585. function Module32Next; external kernel32 name 'Module32Next' + AWSuffix;
    586. 

  586. 

  587. {$ENDIF DYNAMIC_LINK}
    588. 

  588. 

  589. end.
    590.