關於WriteProcessMemory 部分內存無法寫入

FAAW2200

關於WriteProcessMemory 部分內存無法寫入
使用CE搜尋 是不可寫入的地址  然後使用CE可以更改數據
但是使用VB ReadProcessMemory WriteProcessMemory  
ReadProcessMemory 可以讀取到數據
WriteProcessMemory  無法寫入 確定 其他可寫入地址可更改數據
為什麼使用CE就可更改  自己用VB寫的 卻無法更改


部分程式碼

1.     Private Const PROCESS_ALL_ACCESS = &H1F0FFF
   
2.     Declare Auto Function WriteMemoryInt Lib "kernel32" Alias "WriteProcessMemory" (ByVal hwnd As Integer, ByVal lpBaseAddress As Integer, ByRef lpBuffer As Integer, ByVal nSize As Integer, ByRef lpNumberOfBytesWritten As Integer) As Integer
   
3. Private Declare Auto Function GetWindowThreadProcessId Lib "user32.dll" (ByVal hwnd As IntPtr, ByRef lpdwProcessId As Integer) As IntPtr
   
4.     Dim PId As Long
   
5. Private Declare Auto Function OpenProcess Lib "kernel32.dll" (ByVal dwDesiredAccess As Integer, ByVal bInheritHandle As Integer, ByVal dwProcessId As Integer) As IntPtr
   
6. 
   
7. 
   
8. Public Enum PROCESS_ACCESS As Integer
   
9.         ' Specifies all possible access flags for the process object.
   
10.         PROCESS_ALL_ACCESS = &H1F0FFF
    
11. 
    
12.         ' Enables using the process handle in the CreateRemoteThread function
    
13.         ' to create a thread in the process.
    
14.         PROCESS_CREATE_THREAD = &H2
    
15. 
    
16.         ' Enables using the process handle as either the source or
    
17.         ' target process in the DuplicateHandle function to duplicate a handle.
    
18.         PROCESS_DUP_HANDLE = &H40
    
19. 
    
20.         ' Enables using the process handle in the GetExitCodeProcess and
    
21.         ' GetPriorityClass functions to read information from the process object.
    
22.         PROCESS_QUERY_INFORMATION = &H400
    
23. 
    
24.         ' Enables using the process handle in the SetPriorityClass function to
    
25.         ' set the priority class of the process.
    
26.         PROCESS_SET_INFORMATION = &H200
    
27. 
    
28.         ' Enables using the process handle in the TerminateProcess function to
    
29.         ' terminate the process.
    
30.         PROCESS_TERMINATE = &H1
    
31. 
    
32.         ' Enables using the process handle in the VirtualProtectEx and
    
33.         ' WriteProcessMemory functions to modify the virtual memory of the process.
    
34.         PROCESS_VM_OPERATION = &H8
    
35. 
    
36.         ' Enables using the process handle in the ReadProcessMemory function to
    
37.         ' read from the virtual memory of the process.
    
38.         PROCESS_VM_READ = &H10
    
39. 
    
40.         ' Enables using the process handle in the WriteProcessMemory function to
    
41.         ' write to the virtual memory of the process.
    
42.         PROCESS_VM_WRITE = &H20
    
43. 
    
44.         ' Enables using the process handle in any of the wait functions to wait
    
45.         ' for the process to terminate.
    
46.         SYNCHRONIZE = &H100000
    
47.     End Enum
    
48. 
    
49.   Private Sub Button1_Click(sender As Object, e As EventArgs) Handles Button1.Click
    
50.         Dim hProcess1 As Integer
    
51.         GetWindowThreadProcessId(窗口編號.Text, PId)
    
52.         hProcess1 = OpenProcess(PROCESS_ALL_ACCESS, False, PId)
    
53.         WriteMemoryInt(hProcess1, 地址, "7", 4, 0)
    
54. 
    
55.     End Sub

复制代码

fqq

这是vc，不是vb

xiao14116

权限不足吧

zylwjj

VirtualProtect 看一下这个API