复习笔记之一 --暂停或者重启进程中的所有线程

//****************************************************//

//输入参数：dwProcessId：进程ID。fSuspend：是否暂停。//

// GetCurrentProcessId（）获得当前可执行程序进程的ID  返回 DWORD//

//****************************************************//

void SuspendProcess(DWORD dwProcessId,BOOL fSuspend)

{

    //Takes a snapshot of the specified processes, as well as the heaps, modules, and threads used by these processes.

    //获?得ì?一°?个?指?定?§进?程¨?的ì?快¨?照?，ê?包?¨1括¤?§进?程¨?中D的ì?堆?、?é单ì￡¤元a、?é以°?及??线?程¨?

    //TH32CS_SNAPTHREAD：êo指?明??获?得ì?线?程¨?

    HANDLE hSnapshot = CreateToolhelp32Snapshot(TH32CS_SNAPTHREAD,dwProcessId);

    if(hSnapshot != INVALID_HANDLE_VALUE)

    {

       //Describes an entry from a list of the threads executing in the system when a snapshot was taken.

       //THREADENTRY32：êo描¨¨述o?一°?个?获?得ì?的ì?可¨|执??行D线?程¨?列￠D表à¨a的ì?入¨?口¨2

       /*  typedef struct tagTHREADENTRY32 {

       DWORD dwSize;

       DWORD cntUsage;

       DWORD th32ThreadID;

       DWORD th32OwnerProcessID;

       LONG  tpBasePri;

       LONG  tpDeltaPri;

       DWORD dwFlags;

       } THREADENTRY32, *PTHREADENTRY32;*/

       THREADENTRY32 te = {sizeof(te)};

       //Retrieves information about the first thread of any process encountered in a system snapshot.

       //Thread32First：êo复??制?堆?的ì?第ì¨2一°?个?入¨?口¨2到ì?结¨￠构1体??中D

       BOOL fok = Thread32First(hSnapshot,&te);

       for (;fok;fok = Thread32Next(hSnapshot,&te))

       {

           if (te.th32OwnerProcessID == dwProcessId)

           {   //打?¨°开a线?程¨?，ê?获?得ì?线?程¨?句?柄à¨2

              HANDLE hThread = OpenThread(THREAD_SUSPEND_RESUME,FALSE,te.th32ThreadID);

              if (hThread != NULL)

              {

                  if (fSuspend)

                  {

                     SuspendThread(hThread);

                  }

                  else

                  {

                     ResumeThread(hThread);

                  }

              }

              CloseHandle(hThread);

           }

       }

    }

    CloseHandle(hSnapshot);

}