C++获取CPU和硬盘系列号的源代码

天云上人 · 发表于 2008-1-6 19:59:06

代码框架，你所要做的仅是修改WQL语句，具体可看MSDN。以下代码为简介起见，一次返回所有的CPUID或硬盘厂商系列号

6 U0 N" X2 S' s3 j: N$ D8 q4 J
#include "StdAfx.h": i" r/ I" C+ |0 `% }" D$ C) j! p
#include ".\puiddisk.h"
( z' A7 C' A; z0 a( Y& q
#define _WIN32_DCOM7 `5 p+ j+ v3 s4 \4 `' h2 k
#include <iostream>
# ~- A$ k! X' f
using namespace std;: y# h# ?% L1 d0 Q* ]) d
#include <comdef.h>
* M5 A8 x7 z- {; L% G U4 C
#include <Wbemidl.h>9 {0 C$ }2 `% J$ m3 g
' q" Y0 x6 l) ?; {' n6 g8 h
# pragma comment(lib, "wbemuuid.lib")# w; i# R6 d8 e. ^
CpuIDDisk::CpuIDDisk(void)/ `# W# Q# C2 m7 f' u% C: H
{
5 R4 C& C1 O! c2 i& ^. `/ U* D, L6 X
GetInfomation();
, [$ h" Q" |8 y+ A9 O
} W9 W; [' i" C5 W' H6 ?; Z3 L
0 k, z$ ^" ?& Q# s7 j
CpuIDDisk::~CpuIDDisk(void)8 b: _% v3 p6 l+ ]6 p9 ]
{# e3 G3 D( \' Q. z/ \
}8 W: Q. t0 Q! ~" }/ o
int CpuIDDisk::GetInfomation(void)
" ]# y: _$ h* E( M9 Y
{
; p8 t) ~9 [' }0 a
HRESULT hres;
/ Z' r5 R4 B( r2 v6 O
//步骤1：不是必须的，COM只须也只能初始化一次6 h ^# u; d+ n5 m- B
hres = CoInitializeEx(0, COINIT_MULTITHREADED );" g2 O, z. p& f& }4 ~6 u4 i
if (FAILED(hres))! y, \2 d; ~% t4 V" M& U
{% T( u* Q$ `7 E6 s- w1 D, I) |
return 1; //初始化COM异常：注意，COM只须也只能初始化一次
6 S% k8 Y5 j6 {. M' C$ p
}; f: s2 j" @$ I( \+ J
//步骤2：不是必须的，COM只须也只能设置一次 B, J2 m( _% c# S% Q* D
//Set general COM security levels
& u8 n& S+ E4 e" b
hres = CoInitializeSecurity(
3 G7 E2 k4 f" H" l4 L) A5 q$ k
NULL, . s0 l) I( `% v$ r
-1, // COM authentication
* L1 {+ d0 s6 q! O b
NULL, // Authentication services
+ L. l& t3 {1 r1 R7 R5 E
NULL, // Reserved
) U* i; B/ \$ B6 p. z! a2 L; g
RPC_C_AUTHN_LEVEL_DEFAULT, // Default authentication
' M$ u' t# d7 v- V
RPC_C_IMP_LEVEL_IMPERSONATE, // Default Impersonation / i7 [8 j$ b* q4 D! \3 O/ J
NULL, // Authentication info; {- i; i' j7 ?/ @+ Q
EOAC_NONE, // Additional capabilities
$ N* e* s8 ?$ E
NULL // Reserved
4 m f( y! h0 D- {
);
2 l* c: x8 ^, E, h5 @
" |- L0 \$ a( M) K/ n3 P
if (FAILED(hres))
# \8 ^7 I6 I) R# [6 U5 Y
{$ g/ M, x, Q% d/ \
CoUninitialize();* N2 n+ n L4 o1 Y' ~1 ?
return 1; // Program has failed." S* R' T& `3 Z9 U R$ [
}2 k( I0 F, r# K9 b' `
/ \7 _9 s: g5 Z: h0 \9 R3 Y
//以上不是必须的，若已有“::COMInit();”，则要跳过
0 \8 {" g6 D( d9 \5 F& q
//步骤3： Obtain the initial locator to WMI - `/ h5 v! r+ q/ O+ C
IWbemLocator *pLoc = NULL;+ \# V: ?, q2 f* o$ K- t/ i" Y
hres = CoCreateInstance(
5 {, T3 @4 v0 l% g9 c/ l1 t6 |1 ^( |
CLSID_WbemLocator,
; q* F9 c4 W6 z
0, 4 ?4 }9 P6 O( W5 Y) _. O
CLSCTX_INPROC_SERVER,
8 [5 ` o( J4 [4 ]3 W8 e/ O
IID_IWbemLocator, (LPVOID *) &pLoc);& r7 B4 n/ N) ]* \/ s0 x. [
# D) Q0 x" L! ~4 Z# X ] ^
if (FAILED(hres))4 X8 Y# H/ {1 m. Q2 S( k
{& r" W+ H4 G' B. y3 q
CoUninitialize();
9 s5 K+ i9 P: w9 x; G( R
return 1;//Failed to create IWbemLocator object
2 H1 l* |5 L; Q' |4 X- m
}- n& S D+ p& r
+ e; M$ P1 \2 _6 ?
//步骤4：Connect to WMI through the IWbemLocator::ConnectServer method
z0 q! \2 G; Z- E
IWbemServices *pSvc = NULL;
8 V/ K2 q' i: b( q& s& [3 q
hres = pLoc->ConnectServer(
4 V3 T5 X/ m0 ]5 `$ V1 }, _4 l
_bstr_t(L"ROOT\\CIMV2"), // Object path of WMI namespace4 y2 \$ |) C C
NULL, // User name. NULL = current user
) k1 C0 k# E% Q' O
NULL, // User password. NULL = current
! B3 w3 S8 @3 L$ H
0, // Locale. NULL indicates current- R' C3 m* R4 S' I5 R
NULL, // Security flags.
/ ?. f' e7 R/ f5 K
0, // Authority (e.g. Kerberos)
5 A. q% V- g. Q5 W3 L
0, // Context object + q& ?! C6 g% p$ e
&pSvc // pointer to IWbemServices proxy
" e( W+ }! e7 I$ V1 M1 `) M. M
);' F9 t$ z* }% [( l% f( M
6 x# W( E7 ~* X" E& K
if (FAILED(hres))- `% |# v) Z) f
{0 z4 p0 |' n! U
pLoc->Release();
' y& ?3 Z/ c: k A5 T& _* p
CoUninitialize();
$ u& V( _# |) b; o8 ?* g
return 1; // Program has failed.4 u- ]+ V% H. Q2 F. f$ u1 N$ ~
}
! Q7 m! }' F4 U5 F, ~$ ? k$ K
// 步骤5： Set security levels on the proxy
( m/ C% M3 h* i' ~
hres = CoSetProxyBlanket(
- @9 d4 G, B0 u; m
pSvc, // Indicates the proxy to set
3 _$ U8 [2 z( d8 C- J( ^5 c# z
RPC_C_AUTHN_WINNT, // RPC_C_AUTHN_xxx
7 G7 Q* K Q* b, Z0 P5 o
RPC_C_AUTHZ_NONE, // RPC_C_AUTHZ_xxx
6 _2 @. }+ g3 ` Q# u
NULL, // Server principal name ' ^- k Q: g2 C. \
RPC_C_AUTHN_LEVEL_CALL, // RPC_C_AUTHN_LEVEL_xxx 9 Q- I0 s8 \6 I5 p4 L5 I9 }
RPC_C_IMP_LEVEL_IMPERSONATE, // RPC_C_IMP_LEVEL_xxx
+ M; ?3 m" L0 E! V
NULL, // client identity* R- V" z( K, U$ k
EOAC_NONE // proxy capabilities 8 K) K2 b+ K* B; O' k* ?; z" S, p+ h
);# {, @: F( C3 o: e7 _
9 \( g; S7 H3 ?4 b% G
if (FAILED(hres))
) k* X. F( P$ p4 y8 T
{0 h$ y0 B8 }0 n5 c/ E
pSvc->Release();
+ n) G" B2 S5 L7 ^* I S9 o
pLoc->Release();
4 f7 C' ^4 W0 }
CoUninitialize();
' g7 [4 T+ {- l5 n4 V9 O3 r, A, w
return 1;
0 u4 Y/ d( f0 T# l6 [6 z5 d
}
+ ]1 y$ [+ X/ b2 z
5 I1 Z0 U3 G; k8 F: S7 y4 Q
// 步骤6：Use the IWbemServices pointer to make requests of WMI ----5 ?7 g7 N* d/ l* Y# L; t0 }
IEnumWbemClassObject* pEnumerator = NULL;- i; \! ?) L1 e8 V/ v1 }
//计算CPUID/ q/ i- a9 g2 c" c& l
hres = pSvc->ExecQuery(
4 h2 M7 N$ q: E
bstr_t("WQL"), * u) ]( d4 t$ W; E/ X9 S, ?1 C
bstr_t("SELECT * FROM Win32_Processor"),//Win32_OperatingSystem
WBEM_FLAG_FORWARD_ONLY | WBEM_FLAG_RETURN_IMMEDIATELY,
# Q0 X' w6 k9 ^1 C) u
NULL,
8 G, Y2 F5 z: U% W4 i' u
&pEnumerator);
+ I( @% W" m4 o$ U" A% \' E
; C5 H [1 a: [9 }2 |" V$ Q
if (FAILED(hres))# w9 Q+ K" F! B: `9 `6 q- b, m: T6 E
{
+ i9 E/ c* J6 ~
pSvc->Release();/ @% {2 R0 C' N, ]' G
pLoc->Release();
# H, ?7 Z3 q7 ^- e+ i' Y c) F
CoUninitialize();$ T n0 R V& O7 {) v1 `
return 1;
4 p3 T. V- N8 k8 z: [
}
. ^% Q7 J- k2 G* a% ~5 Y- r
// 步骤7：Get the data from the query
1 p% }$ @4 d( v; G% t3 S, ^
IWbemClassObject *pclsObj;
$ u: V- `4 H: s+ l: t
ULONG uReturn = 0;
3 S* d, w4 N, i; _# }1 i" j# |7 k
while (pEnumerator)
% Y' i! O# P8 L( m# _
{, o2 o/ w; u6 U; O
HRESULT hr = pEnumerator->Next(WBEM_INFINITE, 1,
3 P/ S8 `" R1 c/ B
&pclsObj, &uReturn);, ~' g: z5 K! q, {
, ?, Q5 c: K+ X+ B0 L& p
if(0 == uReturn)
) b f: P% ^5 s# M+ s. O( _% Z
{: o$ `" B! `' U% Y
break;" f: U) z9 q' Y% _7 n& [$ Q/ _
}
) @1 f W( o9 d
VARIANT vtProp;- H* ^* M* T- F; y9 a
VariantInit(&vtProp);) R! M/ K# n( N0 U! v/ W
hr = pclsObj->Get(L"ProcessorId", 0, &vtProp, 0, 0);1 W9 V7 k1 c C& B! i5 Y% X* u
strProcessID=_com_util::ConvertBSTRToString(vtProp.bstrVal);//strProcessID：类级变量
1 W X+ w* Q, K7 P4 p/ I# {- a/ q, |
}
0 s# A! B4 k! ^
0 I* j5 m: E! Y, u- s( P
//计算硬盘系列号' u+ b! h# j* g4 f9 j$ v$ _
hres = pSvc->ExecQuery(. ?+ ]. ^$ _' E4 e
bstr_t("WQL"), $ q7 {7 h. R7 a$ o% N
bstr_t("SELECT * FROM Win32_DiskDrive"),
$ k+ G8 l) n1 {) n4 }. @% Y$ K
WBEM_FLAG_FORWARD_ONLY | WBEM_FLAG_RETURN_IMMEDIATELY,
0 w1 C& q0 d. _- t R
NULL,- r" o$ V1 S3 u5 R6 k
&pEnumerator);( R; N& Q7 N1 ~/ n8 J$ W
7 `& j t+ k5 f- I* j' q( K
if (FAILED(hres))
5 s/ l; d; y0 i) C; [5 }- g
{
* q9 W4 E. M# E7 H" P$ M
pSvc->Release();
% L2 ^- I0 o I
pLoc->Release();% w0 Y1 e/ `: y$ [' S: V8 [" T
CoUninitialize();
& j" p6 I$ h, H/ K1 C$ V
return 1;
3 r/ u/ E3 c+ O) r; u
}
$ q/ A4 E& _7 A2 z3 J
while (pEnumerator)
: b# @8 f3 j4 N* N% q1 @6 L
{5 q; R: l K5 S; `" H0 \
HRESULT hr = pEnumerator->Next(WBEM_INFINITE, 1,
: X1 A( K N5 @: e: B1 k# `1 V
&pclsObj, &uReturn);
7 X& ~ \ k1 j0 ~* o" b' @+ b
' f6 u# N6 J' ?
if(0 == uReturn)
0 d5 v: E, O2 _& ^4 d3 C: L+ H/ a
{" g) f1 C7 f/ H. t3 J3 n$ A
break;
1 C/ A; E/ h, q0 d) @3 M
}
# Z9 J3 U/ L1 G& y0 S
O3 t7 \& w' U, n( Z, T, T! {6 w
VARIANT vtProp;6 j1 A& D4 V) f6 ^* n8 u2 n
VariantInit(&vtProp);
/ s% }7 S8 }+ x) i- a! G7 T& D+ A
hr = pclsObj->Get(L"PNPDeviceID", 0, &vtProp, 0, 0);
' H% J, `' ~# L. x
strDisk=_com_util::ConvertBSTRToString(vtProp.bstrVal);
3 I* f: J7 h( i, V7 @) O
}
5 G* T& T l2 Z" k* l Y: v! @
9 ~1 S1 F" k( P7 f, K
pSvc->Release();8 d4 q! h7 o1 { {
pLoc->Release();; I& e4 ~7 Y! ~
pEnumerator->Release();
* K( A! R7 a, d/ m& m
pclsObj->Release();, U% h/ S' F W; s" c! f; n
CoUninitialize();
& i% a4 f" l* e6 M
?& A* c: @' V' |1 }1 l2 b( _
return 0; C2 m- l& f6 G- E
}
. d8 G% h) y1 K {1 x0 R9 ~

复制代码

天云上人 · 发表于 2010-10-11 19:21:05

本文代码经ccrun(老妖)在Win2k下试验成功.

#include <WinIOCtl.h>
#include <stdio.h>

#pragma inline
//---------------------------------------------------------------------------
// IDE NT/2000/XP专用变量
#define GETVERSIONOUTPARAMS    GETVERSIONINPARAMS
#define DFP_GET_VERSION       SMART_GET_VERSION
#define DFP_SEND_DRIVE_COMMAND  SMART_SEND_DRIVE_COMMAND
#define DFP_RCV_DRIVE_DATA    SMART_RCV_DRIVE_DATA

const WORD IDE_ATAPI_IDENTIFY = 0xA1; // 读取ATAPI设备的命令
const WORD IDE_ATA_IDENTIFY = 0xEC; // 读取ATA设备的命令

const int MAX_IDE_DRIVES = 4;

// SCSI专用变量
const DWORD FILE_DEVICE_SCSI          = 0x0000001B;
const DWORD IOCTL_SCSI_MINIPORT_IDENTIFY = ((FILE_DEVICE_SCSI << 16) + 0x0501);
const DWORD IOCTL_SCSI_MINIPORT       = 0x0004D008; // see NTDDSCSI.H for definition
const DWORD SENDIDLENGTH  = sizeof(SENDCMDOUTPARAMS) + IDENTIFY_BUFFER_SIZE;

typedef struct _SRB_IO_CONTROL
{
ULONG HeaderLength;
UCHAR Signature[8];
ULONG Timeout;
ULONG ControlCode;
ULONG ReturnCode;
ULONG Length;
}SRB_IO_CONTROL, *PSRB_IO_CONTROL;

// 读取的主函数
void __fastcall ReadPhysicalDrive(TStrings *pSerList, TStrings *pModeList);

// 辅助函数
char *__fastcall ConvertToString(DWORD dwDiskData[256], int nFirstIndex, int nLastIndex);
// NT/2000/XP函数
void __fastcall ReadPhysicalDriveOnNT(TStrings *pSerList, TStrings *pModeList);
bool __fastcall DoIdentify(HANDLE hPhysicalDriveIOCTL, PSENDCMDINPARAMS pSCIP,
      PSENDCMDOUTPARAMS pSCOP, BYTE btIDCmd,
      BYTE btDriveNum, PDWORD lpcbBYTEsReturned);
// Windows 9X函数
void __fastcall ReadPhysicalDriveOnW9X(TStrings *pSerList, TStrings *pModeList);
void __fastcall ReadPhysicalDriveOnW9X_Ring0(bool IsFirst, WORD BaseAddress,
      BYTE MoS, bool &IsIDEExist, bool &IsDiskExist, WORD *OutData);

// SCSI读取函数(for NT/2000/XP)
String __fastcall ReadIDEDriveAsScsiDriveOnNT();
//---------------------------------------------------------------------------
// ReadPhysicalDrive
void __fastcall ReadPhysicalDrive(TStrings *pSerList, TStrings *pModeList)
{
switch(Win32Platform)
{
      case VER_PLATFORM_WIN32_WINDOWS:
         ReadPhysicalDriveOnW9X(pSerList, pModeList);
         break;
      case VER_PLATFORM_WIN32_NT:
         ReadPhysicalDriveOnNT(pSerList, pModeList);
         break;
      default:
         break;
}
}
//---------------------------------------------------------------------------
// ConvertToString
char *__fastcall ConvertToString(DWORD dwDiskData[256], int nFirstIndex, int nLastIndex)
{
static char szResBuf[1024];
int nIndex = 0;
int nPosition = 0;

// Each integer has two characters stored in it backwards
for(nIndex = nFirstIndex; nIndex <= nLastIndex; nIndex++)
{
      // Get high BYTE for 1st character
      szResBuf[nPosition] = (char)(dwDiskData[nIndex] / 256);
      nPosition++;

      // Get low BYTE for 2nd character
      szResBuf[nPosition] = (char)(dwDiskData[nIndex] % 256);
      nPosition++;
}

// End the string
szResBuf[nPosition] = '\0';

// Cut off the trailing blanks
for(nIndex = nPosition - 1; nIndex > 0 && ' ' == szResBuf[nIndex]; nIndex--)
      szResBuf[nIndex] = '\0';

return szResBuf;
}
//---------------------------------------------------------------------------
// Winndows NT4/2000/XP 代码
//---------------------------------------------------------------------------
// ReadPhysicalDriveOnNT
void __fastcall ReadPhysicalDriveOnNT(TStrings *pSerList, TStrings *pModeList)
{
// 输出参数
BYTE btIDOutCmd[sizeof(SENDCMDOUTPARAMS) + IDENTIFY_BUFFER_SIZE - 1];

for(int nDrive=0; nDrive < MAX_IDE_DRIVES; nDrive++)
{
      HANDLE hPhysicalDriveIOCTL;
      char szDriveName[32];

      sprintf(szDriveName, "\\\\.\\PhysicalDrive%d", nDrive);
      hPhysicalDriveIOCTL = CreateFile(szDriveName,
                     GENERIC_READ | GENERIC_WRITE,
                     FILE_SHARE_READ | FILE_SHARE_WRITE, NULL,
                     OPEN_EXISTING, 0, NULL);

      if(hPhysicalDriveIOCTL != INVALID_HANDLE_VALUE)
      {
         DWORD dwBytesReturned = 0;
         GETVERSIONOUTPARAMS gvopVersionParams;

         // Get the version, etc of PhysicalDrive IOCTL
         ZeroMemory(&gvopVersionParams, sizeof(GETVERSIONOUTPARAMS));

         if(!DeviceIoControl(hPhysicalDriveIOCTL, DFP_GET_VERSION,
                  NULL, 0, &gvopVersionParams, sizeof(gvopVersionParams),
                  &dwBytesReturned, NULL))
         {
            continue;
         }

         if(gvopVersionParams.bIDEDeviceMap > 0)
         {
            // IDE or ATAPI IDENTIFY cmd
            BYTE btIDCmd = 0;
            SENDCMDINPARAMS InParams;
            // Now, get the ID sector for all IDE devices in the system.
            // If the device is ATAPI use the IDE_ATAPI_IDENTIFY command,
            // otherwise use the IDE_ATA_IDENTIFY command
            // 具体所得结果请参考头文件中的说明
            btIDCmd = (gvopVersionParams.bIDEDeviceMap >> nDrive & 0x10) ?
                     IDE_ATAPI_IDENTIFY : IDE_ATA_IDENTIFY;
            ZeroMemory(&InParams, sizeof(SENDCMDINPARAMS));
            ZeroMemory(btIDOutCmd, sizeof(btIDOutCmd));

            if(DoIdentify(hPhysicalDriveIOCTL,
                  &InParams, (PSENDCMDOUTPARAMS)btIDOutCmd,
                  (BYTE)btIDCmd, (BYTE)nDrive, &dwBytesReturned))
            {
                  DWORD dwDiskData[256];
                  USHORT *pIDSector; // 对应结构IDSECTOR，见头文件
                  char szSerialNumber[21];
                  char szModelNumber[41];

                  pIDSector = (USHORT*)((SENDCMDOUTPARAMS*)btIDOutCmd)->bBuffer;
                  for(int i=0; i < 256; i++)
                     dwDiskData[i] = pIDSector[i];
                  // 取系列号
                  ZeroMemory(szSerialNumber, sizeof(szSerialNumber));
                  strcpy(szSerialNumber, ConvertToString(dwDiskData, 10, 19));

                  // 取模型号
                  ZeroMemory(szModelNumber, sizeof(szModelNumber));
                  strcpy(szModelNumber, ConvertToString(dwDiskData, 27, 46));

                  pSerList->Add(szSerialNumber);
                  pModeList->Add(szModelNumber);
            }
         }
         CloseHandle (hPhysicalDriveIOCTL);
      }
}
}
//---------------------------------------------------------------------------
// DoIdentify
bool __fastcall DoIdentify(HANDLE hPhysicalDriveIOCTL, PSENDCMDINPARAMS pSCIP,
            PSENDCMDOUTPARAMS pSCOP, BYTE btIDCmd, BYTE btDriveNum,
            PDWORD pdwBytesReturned)
{
// Set up data structures for IDENTIFY command.
pSCIP->cBufferSize = IDENTIFY_BUFFER_SIZE;
pSCIP->irDriveRegs.bFeaturesReg = 0;
pSCIP->irDriveRegs.bSectorCountReg  = 1;
pSCIP->irDriveRegs.bSectorNumberReg = 1;
pSCIP->irDriveRegs.bCylLowReg  = 0;
pSCIP->irDriveRegs.bCylHighReg = 0;

// Compute the drive number.（主盘和从盘所对应的值是不一样的）
pSCIP->irDriveRegs.bDriveHeadReg = (btDriveNum & 1) ? 0xB0 : 0xA0;

// The command can either be IDE identify or ATAPI identify.
pSCIP->irDriveRegs.bCommandReg = btIDCmd;
pSCIP->bDriveNumber = btDriveNum;
pSCIP->cBufferSize = IDENTIFY_BUFFER_SIZE;

return DeviceIoControl(hPhysicalDriveIOCTL, DFP_RCV_DRIVE_DATA,
         (LPVOID)pSCIP,
         sizeof(SENDCMDINPARAMS) - 1,
         (LPVOID)pSCOP,
         sizeof(SENDCMDOUTPARAMS) + IDENTIFY_BUFFER_SIZE - 1,
         pdwBytesReturned, NULL);
}
//---------------------------------------------------------------------------
// Windows 95/98/ME 代码
//---------------------------------------------------------------------------
// ReadPhysicalDriveOnW9X
void __fastcall ReadPhysicalDriveOnW9X(TStrings *pSerList, TStrings *pModeList)
{
WORD wOutData[256];
SetPriorityClass(GetCurrentProcess(), REALTIME_PRIORITY_CLASS);

// 经过测试，发现第一次调用而且Drive >= 2时会在Ring0代码中出现错误，导致蓝屏。
// 经过N（N > 15）次的蓝屏后仍找不到原因：（，不得不在这里增加一段无用代码以
// 避免蓝屏的出现。（期待高人能指出原因）
for(int nDrive = 0; nDrive < 8; nDrive++)
{
      WORD dwBaseAddress;
      BYTE btMasterSlave;       // Master Or Slave
      bool bIsIDEExist;
      bool IsDiskExist;

      switch(nDrive / 2)
      {
         case 0: dwBaseAddress = 0x01F0; break;
         case 1: dwBaseAddress = 0x0170; break;
         case 2: dwBaseAddress = 0x01E8; break;
         case 3: dwBaseAddress = 0x0168; break;
      }

      btMasterSlave = (BYTE)(((nDrive % 2) == 0) ? 0xA0 : 0xB0);

      // 进入Ring0
      ReadPhysicalDriveOnW9X_Ring0(true, dwBaseAddress, btMasterSlave,
            bIsIDEExist, IsDiskExist, wOutData);
}

// 开始读取
for(int nDrive = 0; nDrive < 8; nDrive++)
{
      WORD dwBaseAddress;
      BYTE btMasterSlave;       // Master Or Slave
      bool bIsIDEExist;
      bool bIsDiskExist;
      switch(nDrive / 2)
      {
         case 0: dwBaseAddress = 0x01F0; break;
         case 1: dwBaseAddress = 0x0170; break;
         case 2: dwBaseAddress = 0x01E8; break;
         case 3: dwBaseAddress = 0x0168; break;
      }

      btMasterSlave = (BYTE)(((nDrive % 2) == 0) ? 0xA0 : 0xB0);

      // 进入Ring0
      bIsIDEExist  = false;
      bIsDiskExist = false;
      ZeroMemory(wOutData, sizeof(wOutData));

      ReadPhysicalDriveOnW9X_Ring0(false, dwBaseAddress, btMasterSlave,
            bIsIDEExist, bIsDiskExist, wOutData);

      if(bIsIDEExist && bIsDiskExist)
      {
         DWORD dwDiskData[256];
         char  szSerialNumber[21];
         char  szModelNumber[41];

         for(int k=0; k < 256; k++)
            dwDiskData[k] = wOutData[k];

         // 取系列号
         ZeroMemory(szSerialNumber, sizeof(szSerialNumber));
         strcpy(szSerialNumber, ConvertToString(dwDiskData, 10, 19));

         // 取模型号
         ZeroMemory(szModelNumber, sizeof(szModelNumber));
         strcpy(szModelNumber, ConvertToString(dwDiskData, 27, 46));

         pSerList->Add(szSerialNumber);
         pModeList->Add(szModelNumber);
      }
}
SetPriorityClass(GetCurrentProcess(), NORMAL_PRIORITY_CLASS);
}
//---------------------------------------------------------------------------
// 为防止不负责任的转载者，在此注明原出处信息，请见谅。
// 资料收集整理：ccrun(老妖)，欢迎光临C++Builder研究: http://www.ccrun.com
//---------------------------------------------------------------------------
// ReadPhysicalDriveOnW9X_Ring0()
//
// dwBaseAddress = IDE(0,1,2,3) : 1F0h, 170h, 1E8h, 168h
// btMasterSlave = Master(0xA0) Or Slave(0xB0)
//---------------------------------------------------------------------------
void __fastcall ReadPhysicalDriveOnW9X_Ring0(bool bIsFirst, WORD dwBaseAddress,
      BYTE btMasterSlave, bool &bIsIDEExist, bool &bIsDiskExist, WORD *pOutData)
{
BYTE  btIDTR1[6];
DWORD dwOldExceptionHook;
const int nHookExceptionNo = 5;

BYTE  btIsIDEExist = 0;
BYTE  btIsDiskExist = 0;
WORD  wOutDataBuf[256];

BYTE  btIsFirst = (BYTE)bIsFirst;

const BYTE btBit00 = 0x01;
// const BYTE btBit02 = 0x04;
const BYTE btBit06 = 0x40;
const BYTE btBit07 = 0x80;
// const BYTE btERR  = btBit00;
const BYTE btBusy = btBit07;
const BYTE btAtaCmd = 0xEC;
const BYTE btAtapiCmd = 0xA1;

__asm
{
      // 必须先执行这条语句
      JMP EnterRing0

      // 定义过程
      // 等待IDE设备直到其不为忙为止
      WaitWhileBusy proc

      MOV  EBX, 100000
      MOV  DX, dwBaseAddress
      ADD  DX, 7

      LoopWhileBusy:

      DEC  EBX
      CMP  EBX, 0
      JZ Timeout
      in AL, DX
      TEST AL, btBusy
      JNZ  LoopWhileBusy
      JMP  DriveReady

      // 超时，直接退出
      Timeout:
      JMP  LeaveRing0
      DriveReady:
      RET
      ENDP // End of WaitWhileBusy Procedure

      // 设置主盘和从盘标志
      SelectDevice proc

      MOV  DX, dwBaseAddress
      ADD  DX, 6
      MOV  AL, btMasterSlave

      out  DX, AL
      RET

      ENDP  // End of SelectDevice Procedure

      // 向IDE设备发送存取指令
      SendCmd proc

      MOV DX, dwBaseAddress
      ADD DX, 7
      MOV AL, BL // BL是主从盘标识，在过程外设置
      out DX, AL
      RET
      ENDP  // End of SendCmd Procedure

      // Ring0代码
      Ring0Proc:
      PUSHAD
      // 查询IDE设备是否存在
      MOV DX, dwBaseAddress
      ADD DX, 7
      in  AL,DX

      // 当AL的值是0xFF或者0x7F时，IDE设备不存在，这时候直接返回
      CMP AL,0xFF
      JZ  LeaveRing0
      CMP AL, 0x7F
      JZ  LeaveRing0

      // 设置IDE设备存在标志
      MOV btIsIDEExist, 1

      // 查询IDE设备上的驱动器是否存在（有IDE插槽在主板上，但是却不一定有硬盘插在上面）
      CALL WaitWhileBusy
      CALL SelectDevice

      // 如果是第一次调用，则直接返回，否则执行下行语句时会出现蓝屏
      CMP  btIsFirst, 1
      JZ LeaveRing0

      // 第一次调用时，如果执行这行语句会导致蓝屏，Why？？？
      CALL WaitWhileBusy

      // AL的值等于cBit06时，不存在驱动器，直接返回
      TEST AL, btBit06
      JZ LeaveRing0

      // 设置驱动器存在标志
      MOV  btIsDiskExist, 1

      // 发送存取端口命令
      // 无法像NT/2000/XP那样可以通过查询VERSION的值得到驱动器的类型，
      // 所以只能一步一步地测试，如果不是ATA设备，再尝试使用ATAPI设备命令
      CALL WaitWhileBusy
      CALL SelectDevice // 设置主从盘标识
      MOV  BL, btAtaCmd    // 发送读取命令
      CALL SendCmd
      CALL WaitWhileBusy

      // 检查是否出错
      MOV  DX, dwBaseAddress
      ADD  DX, 7

      in AL, DX

      TEST AL, btBit00
      JZ RetrieveInfo // 没有错误时则读数据

      // 如果出错，则进一步尝试使用ATAPI设备命令
      CALL WaitWhileBusy
      CALL SelectDevice
      MOV  BL, btAtapiCmd
      CALL SendCmd
      CALL WaitWhileBusy

      // 检查是否还出错
      MOV  DX, dwBaseAddress
      ADD  DX, 7
      in AL, DX
      TEST AL, btBit00
      JZ RetrieveInfo // 没有错误时则读数据
      JMP  LeaveRing0    // 如果还是出错，直接返回

      // 读取数据
      RetrieveInfo:

      LEA  EDI, wOutDataBuf
      MOV  ECX, 256
      MOV  DX, dwBaseAddress
      CLD

      REP  INSW

      // 退出Ring0代码
      LeaveRing0:

      POPAD
      IRETD

      // 激活Ring0代码
      EnterRing0:

      // 修改中断门
      SIDT FWORD PTR btIDTR1
      MOV EAX, DWORD PTR btIDTR1 + 02h
      ADD EAX, nHookExceptionNo * 08h + 04h
      CLI

      // 保存原异常处理例程入口
      MOV ECX, DWORD PTR [EAX]
      MOV CX, WORD PTR [EAX-04h]
      MOV dwOldExceptionHook, ECX

      // 指定新入口
      LEA EBX, Ring0Proc
      MOV WORD PTR [EAX-04h],BX
      SHR EBX, 10h
      MOV WORD PTR[EAX+02h], BX

      // 激活Ring0代码
      INT nHookExceptionNo

      // 复原入口
      MOV ECX,dwOldExceptionHook
      MOV WORD PTR[EAX-04h], CX
      SHR ECX,10h
      MOV WORD PTR[EAX+02h], CX
      STI
}
if(!bIsFirst)
{
      bIsIDEExist  = (bool)btIsIDEExist;
      bIsDiskExist = (bool)btIsDiskExist;
      CopyMemory(pOutData, wOutDataBuf, sizeof(wOutDataBuf));
}
}
//---------------------------------------------------------------------------
// 调用方法：
void __fastcall TForm1::Button1Click(TObject *Sender)
{
ReadPhysicalDrive(Memo1->Lines, Memo2->Lines);
}

		自动登录	找回密码
密码			注册

C++获取CPU和硬盘系列号的源代码

浏览过的版块