基于VC++2012在Windows8上实现文件隐藏

请见代码分析，

[cpp] 
#include <windows.h> 
#include <WinNT.h> 
 
 
//从ntddk中拿出来的一些结构体定义，在ZwQueryDirectoryFile()中要用到 
 
typedef LONG NTSTATUS; 
#define NT_SUCCESS(Status) ((NTSTATUS)(Status)>=0) 
//参数类型 
typedef struct _IO_STATUS_BLOCK  
{  
    NTSTATUS  Status;  
    ULONG    Information;  
} IO_STATUS_BLOCK, *PIO_STATUS_BLOCK;  
//字符串类型 
typedef struct _UNICODE_STRING  
{  
    USHORT    Length;  
    USHORT    MaximumLength;  
    PWSTR    Buffer;  
} UNICODE_STRING, *PUNICODE_STRING;  
//枚举类型，主要利用FileBothDirectoryInformation 
typedef enum _FILE_INFORMATION_CLASS { 
    FileDirectoryInformation = 1, 
    FileFullDirectoryInformation, 
    FileBothDirectoryInformation, 
    FileBasicInformation, 
    FileStandardInformation, 
    FileInternalInformation, 
    FileEaInformation, 
    FileAccessInformation, 
    FileNameInformation, 
    FileRenameInformation, 
    FileLinkInformation, 
    FileNamesInformation, 
    FileDispositionInformation, 
    FilePositionInformation, 
    FileFullEaInformation, 
    FileModeInformation, 
    FileAlignmentInformation, 
    FileAllInformation, 
    FileAllocationInformation, 
    FileEndOfFileInformation, 
    FileAlternateNameInformation, 
    FileStreamInformation, 
    FilePipeInformation, 
    FilePipeLocalInformation, 
    FilePipeRemoteInformation, 
    FileMailslotQueryInformation, 
    FileMailslotSetInformation, 
    FileCompressionInformation, 
    FileObjectIdInformation, 
    FileCompletionInformation, 
    FileMoveClusterInformation, 
    FileQuotaInformation, 
    FileReparsePointInformation, 
    FileNetworkOpenInformation, 
    FileAttributeTagInformation, 
    FileTrackingInformation, 
    FileMaximumInformation 
} FILE_INFORMATION_CLASS, *PFILE_INFORMATION_CLASS; 
 
 
typedef VOID (NTAPI *PIO_APC_ROUTINE)( 
                         IN PVOID ApcContext, 
                         IN PIO_STATUS_BLOCK IoStatusBlock, 
                         IN ULONG Reserved); 
 
typedef struct _FILE_BOTH_DIRECTORY_INFORMATION {  
    ULONG NextEntryOffset; 
    ULONG Unknown; 
    LARGE_INTEGER CreationTime; 
    LARGE_INTEGER LastAccessTime; 
    LARGE_INTEGER LastWriteTime; 
    LARGE_INTEGER ChangeTime; 
    LARGE_INTEGER EndOfFile; 
    LARGE_INTEGER AllocationSize; 
    ULONG FileAttributes; 
    ULONG FileNameLength; 
    ULONG EaInformationLength; 
    UCHAR AlternateNameLength; 
    WCHAR AlternateName[12]; 
    WCHAR FileName[1]; 
} FILE_BOTH_DIRECTORY_INFORMATION,*PFILE_BOTH_DIRECTORY_INFORMATION; 
 
 
 
 
typedef NTSTATUS ( __stdcall *ZWQUERYDIRECTORYFILE ) ( 
                                                      IN  HANDLE FileHandle, 
                                                      IN  HANDLE Event OPTIONAL, 
                                                      IN  PIO_APC_ROUTINE ApcRoutine OPTIONAL, 
                                                      IN  PVOID ApcContext OPTIONAL, 
                                                      OUT PIO_STATUS_BLOCK IoStatusBlock, 
                                                      OUT PVOID FileInformation, 
                                                      IN  ULONG Length, 
                                                      IN  FILE_INFORMATION_CLASS FileInformationClass, 
                     &n

补充：软件开发 , Vc ,

上一个：VC 读写注册表实例 (1) —— 获取安装程序列表
下一个：VC 读写注册表