64位系统下如何使用detours hook CreateFileW函数
我在Windows的32位系统下使用detours(32位)hook了CreateFileW函数,现在想在Windows的64位系统下也hook CreateFileW函数,请问我该怎么做?在32位系统中和64位系统中使用detours库的方法有什么不同?
求大神速来搭救!!! hook detours x64 CreateFileW
[解决办法]
64 为系统是兼容 32 位程序的呀, 你 32 位 Hook 的程序在 64 位下不能工作么?
[解决办法]
试试其它的 32 位程序能不能 Hook 到呢? 64 位系统自带的 notepad 是 64 位的程序吧.
[解决办法]
32写的HOOK程序,只有HOOK住64位下运行的32位程序,不能HOOK64位程序吧。
[解决办法]
detours 没有64位的版本吗?
[解决办法]
提醒:
64位Windows下
64位exe和dll文件在目录c:\windows\system32下
32位exe和dll文件在目录c:\windows\syswow64下
[解决办法]
ms-help://MS.VSCC.v90/MS.MSDNQTR.v90.chs/fileio/fs/change_journals.htm
Change Journals
An automatic backup application is one example of a program that must check for changes to the state of a volume to perform its task. The brute force method of checking for changes in directories or files is to scan the entire volume. However, this is often not an acceptable approach because of the decrease in system performance it would cause. Another method is for the application to register a directory notification (by calling the FindFirstChangeNotification or ReadDirectoryChangesW functions) for the directories to be backed up. This is more efficient than the first method, however, it requires that an application be running at all times. Also, if a large number of directories and files must be backed up, the amount of processing and memory overhead for such an application might also cause the operating system's performance to decrease.
To avoid these disadvantages, the NTFS file system maintains a change journal. When any change is made to a file or directory in a volume, the change journal for that volume is updated with a description of the change and the name of the file or directory.
Change journals are also needed to recover file system indexing — for example after a computer or volume failure. The ability to recover indexing means the file system can avoid the time-consuming process of reindexing the entire volume in such cases.
The following topics discuss change journals:
Change Journal Records
Using the Change Journal Identifier
Creating, Modifying, and Deleting a Change Journal
Obtaining a Volume Handle for Change Journal Operations
Change Journal Operations
Send comments about this topic to Microsoft
Build date: 8/15/2007
[解决办法]
人生不如意事十有八九,当常想一二。