npatel
asked on
Log file access
In my app, I need to monitor and log all disk/CD access's for any files written or read. How can I do this without writing Vxd drivers in C++ ?.
Look at the WIN32API FindFirstChangeNotificatio
If you plan to use Windows NT only, you can use a device driver as BlackMan writes, another way would be to use the security functions, and set the file objects to audit changes.
If you plan to use Windows NT only, you can use a device driver as BlackMan writes, another way would be to use the security functions, and set the file objects to audit changes.
Any comment ?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Hmm, jeurk, apart from your wrong URL (ntinternals was their former address), that's just what I suggested...
ASKER
Thanks,
The source code from filemon is a good start. The FindFirstChangeNotificatio
The source code from filemon is a good start. The FindFirstChangeNotificatio
Humm...
How can I say, I did not see your suggestion BlackMan... I'm sorry, really
I'm not that kind of guy. If you want I can ask a question for you to answer ? to give
you back the points. OK ?
How can I say, I did not see your suggestion BlackMan... I'm sorry, really
I'm not that kind of guy. If you want I can ask a question for you to answer ? to give
you back the points. OK ?
No, that's all right, maybe I can steal your suggestion another time :-)
No hard feelings...
No hard feelings...
Ok !
Anyway I apologize again.
Anyway I apologize again.
http://www.sysinternals.com/ntfilmon.htm