note.h

驱动枚举进程,控制线程AFFINITY,通过修改EPROCESS,ETHREAD ,KTHREAD 等结构,修改AFFINITY

//	SystemProcessorSpeedInformation, 
//	SystemCurrentTimeZoneInformation, 
//	SystemLookasideInformation, 
//	SystemTimeSlipNotification, 
//	SystemSessionCreate, 
//	SystemSessionDetach, 
//	SystemSessionInformation, 
//	SystemRangeStartInformation, 
//	SystemVerifierInformation, 
//	SystemAddVerifier, 
//	SystemSessionProcessesInformation, 
//	SystemInformationClassMax 
//} SYSTEM_INFORMATION_CLASS; 
//
//typedef struct _SYSTEM_BASIC_INFORMATION 
//{ 
//	ULONG Reserved; 
//	ULONG TimerResolution; 
//	ULONG PageSize; 
//	ULONG NumberOfPhysicalPages; 
//	ULONG LowestPhysicalPageNumber; 
//	ULONG HighestPhysicalPageNumber; 
//	ULONG AllocationGranularity; 
//	ULONG MinimumUserModeAddress; 
//	ULONG MaximumUserModeAddress; 
//	KAFFINITY ActiveProcessorsAffinityMask; 
//	CCHAR NumberOfProcessors; 
//} SYSTEM_BASIC_INFORMATION, *PSYSTEM_BASIC_INFORMATION; 
//
//// Class 2 
//typedef struct _SYSTEM_PERFORMANCE_INFORMATION 
//{ 
//	LARGE_INTEGER IdleProcessTime; 
//	LARGE_INTEGER IoReadTransferCount; 
//	LARGE_INTEGER IoWriteTransferCount; 
//	LARGE_INTEGER IoOtherTransferCount; 
//	ULONG IoReadOperationCount; 
//	ULONG IoWriteOperationCount; 
//	ULONG IoOtherOperationCount; 
//	ULONG AvailablePages; 
//	ULONG CommittedPages; 
//	ULONG CommitLimit; 
//	ULONG PeakCommitment; 
//	ULONG PageFaultCount; 
//	ULONG CopyOnWriteCount; 
//	ULONG TransitionCount; 
//	ULONG CacheTransitionCount; 
//	ULONG DemandZeroCount; 
//	ULONG PageReadCount; 
//	ULONG PageReadIoCount; 
//	ULONG CacheReadCount; 
//	ULONG CacheIoCount; 
//	ULONG DirtyPagesWriteCount; 
//	ULONG DirtyWriteIoCount; 
//	ULONG MappedPagesWriteCount; 
//	ULONG MappedWriteIoCount; 
//	ULONG PagedPoolPages; 
//	ULONG NonPagedPoolPages; 
//	ULONG PagedPoolAllocs; 
//	ULONG PagedPoolFrees; 
//	ULONG NonPagedPoolAllocs; 
//	ULONG NonPagedPoolFrees; 
//	ULONG FreeSystemPtes; 
//	ULONG ResidentSystemCodePage; 
//	ULONG TotalSystemDriverPages; 
//	ULONG TotalSystemCodePages; 
//	ULONG NonPagedPoolLookasideHits; 
//	ULONG PagedPoolLookasideHits; 
//	ULONG Spare3Count; 
//	ULONG ResidentSystemCachePage; 
//	ULONG ResidentPagedPoolPage; 
//	ULONG ResidentSystemDriverPage; 
//	ULONG CcFastReadNoWait; 
//	ULONG CcFastReadWait; 
//	ULONG CcFastReadResourceMiss; 
//	ULONG CcFastReadNotPossible; 
//	ULONG CcFastMdlReadNoWait; 
//	ULONG CcFastMdlReadWait; 
//	ULONG CcFastMdlReadResourceMiss; 
//	ULONG CcFastMdlReadNotPossible; 
//	ULONG CcMapDataNoWait; 
//	ULONG CcMapDataWait; 
//	ULONG CcMapDataNoWaitMiss; 
//	ULONG CcMapDataWaitMiss; 
//	ULONG CcPinMappedDataCount; 
//	ULONG CcPinReadNoWait; 
//	ULONG CcPinReadWait; 
//	ULONG CcPinReadNoWaitMiss; 
//	ULONG CcPinReadWaitMiss; 
//	ULONG CcCopyReadNoWait; 
//	ULONG CcCopyReadWait; 
//	ULONG CcCopyReadNoWaitMiss; 
//	ULONG CcCopyReadWaitMiss; 
//	ULONG CcMdlReadNoWait; 
//	ULONG CcMdlReadWait; 
//	ULONG CcMdlReadNoWaitMiss; 
//	ULONG CcMdlReadWaitMiss; 
//	ULONG CcReadAheadIos; 
//	ULONG CcLazyWriteIos; 
//	ULONG CcLazyWritePages; 
//	ULONG CcDataFlushes; 
//	ULONG CcDataPages; 
//	ULONG ContextSwitches; 
//	ULONG FirstLevelTbFills; 
//	ULONG SecondLevelTbFills; 
//	ULONG SystemCalls; 
//} SYSTEM_PERFORMANCE_INFORMATION, *PSYSTEM_PERFORMANCE_INFORMATION; 
//
//typedef struct _SYSTEM_TIMEOFDAY_INFORMATION 
//{ 
//	LARGE_INTEGER BootTime; 
//	LARGE_INTEGER CurrentTime; 
//	LARGE_INTEGER TimeZoneBias; 
//	ULONG TimeZoneId; 
//	ULONG Reserved; 
//} SYSTEM_TIMEOFDAY_INFORMATION, *PSYSTEM_TIMEOFDAY_INFORMATION; 
//
//typedef struct _SYSTEM_HANDLE_TABLE_ENTRY_INFO 
//{ 
//	USHORT UniqueProcessId; 
//	USHORT CreatorBackTraceIndex; 
//	UCHAR ObjectTypeIndex; 
//	UCHAR HandleAttributes; 
//	USHORT HandleValue; 
//	PVOID Object; 
//	ULONG GrantedAccess; 
//} SYSTEM_HANDLE_TABLE_ENTRY_INFO, *PSYSTEM_HANDLE_TABLE_ENTRY_INFO; 
//
//typedef struct _SYSTEM_HANDLE_INFORMATION 
//{ 
//	ULONG NumberOfHandles; 
//	SYSTEM_HANDLE_TABLE_ENTRY_INFO Handles[1]; 
//} SYSTEM_HANDLE_INFORMATION, *PSYSTEM_HANDLE_INFORMATION; 
//
//typedef struct _SYSTEM_CACHE_INFORMATION 
//{ 
//	ULONG CurrentSize; 
//	ULONG PeakSize; 
//	ULONG PageFaultCount; 
//	ULONG MinimumWorkingSet; 
//	ULONG MaximumWorkingSet; 
//	ULONG CurrentSizeIncludingTransitionInPages; 
//	ULONG PeakSizeIncludingTransitionInPages; 
//	ULONG Unused[2]; 
//} SYSTEM_CACHE_INFORMATION, *PSYSTEM_CACHE_INFORMATION; 
//
//
//typedef struct _SYSTEM_PROCESSOR_PERFORMANCE_INFORMATION 
//{ 
//	LARGE_INTEGER IdleTime; 
//	LARGE_INTEGER KernelTime; 
//	LARGE_INTEGER UserTime; 
//	LARGE_INTEGER DpcTime; 
//	LARGE_INTEGER InterruptTime; 
//	ULONG InterruptCount; 
//} SYSTEM_PROCESSOR_PERFORMANCE_INFORMATION, *PSYSTEM_PROCESSOR_PERFORMANCE_INFORMATION; 
//
//typedef struct _CLIENT_ID 
//{ 
//	HANDLE UniqueProcess; 
//	HANDLE UniqueThread; 
//} CLIENT_ID, *PCLIENT_ID; 
//
//typedef struct _SYSTEM_THREAD_INFORMATION 
//{ 
//	LARGE_INTEGER KernelTime; 
//	LARGE_INTEGER UserTime; 
//	LARGE_INTEGER CreateTime; 
//	ULONG WaitTime; 
//	PVOID StartAddress; 
//	CLIENT_ID ClientId; 
//	KPRIORITY Priority; 
//	LONG BasePriority; 
//	ULONG ContextSwitches; 
//	ULONG ThreadState; 
//	ULONG WaitReason; 
//} SYSTEM_THREAD_INFORMATION, *PSYSTEM_THREAD_INFORMATION; 
//
//typedef struct _SYSTEM_PROCESS_INFORMATION 
//{ 
//	ULONG NextEntryOffset; 
//	ULONG NumberOfThreads; 
//	LARGE_INTEGER SpareLi1; 
//	LARGE_INTEGER SpareLi2; 
//	LARGE_INTEGER SpareLi3; 
//	LARGE_INTEGER CreateTime; 
//	LARGE_INTEGER UserTime; 
//	LARGE_INTEGER KernelTime; 
//	UNICODE_STRING ImageName; 
//	KPRIORITY BasePriority; 
//	HANDLE UniqueProcessId; 
//	HANDLE InheritedFromUniqueProcessId; 
//	ULONG HandleCount; 
//	ULONG SessionId; 
//	ULONG PageDirectoryFrame; 
//
//	// 
//	// This part corresponds to VM_COUNTERS_EX. 
//	// NOTE: *NOT* THE SAME AS VM_COUNTERS! 
//	// 
//	ULONG PeakVirtualSize; 
//	ULONG VirtualSize; 
//	ULONG PageFaultCount; 
//	ULONG PeakWorkingSetSize; 
//	ULONG WorkingSetSize; 
//	ULONG QuotaPeakPagedPoolUsage; 
//	ULONG QuotaPagedPoolUsage; 
//	ULONG QuotaPeakNonPagedPoolUsage; 
//	ULONG QuotaNonPagedPoolUsage; 
//	ULONG PagefileUsage; 
//	ULONG PeakPagefileUsage; 
//	ULONG PrivateUsage; 
//
//	// 
//	// This part corresponds to IO_COUNTERS 
//	// 
//	LARGE_INTEGER ReadOperationCount; 
//	LARGE_INTEGER WriteOperationCount; 
//	LARGE_INTEGER OtherOperationCount; 
//	LARGE_INTEGER ReadTransferCount; 
//	LARGE_INTEGER WriteTransferCount; 
//	LARGE_INTEGER OtherTransferCount; 
//
//	SYSTEM_THREAD_INFORMATION TH[1]; 
//} SYSTEM_PROCESS_INFORMATION, *PSYSTEM_PROCESS_INFORMATION; 
//
//
//#define STATUS_INFO_LENGTH_MISMATCH      ((NTSTATUS)0xC0000004L) 
//
//NTSTATUS 
//NTAPI 
//NtQuerySystemInformation ( 
//						  IN SYSTEM_INFORMATION_CLASS SystemInformationClass, 
//						  OUT PVOID SystemInformation, 
//						  IN ULONG SystemInformationLength, 
//						  OUT PULONG ReturnLength OPTIONAL 
//						  );
//
//
//
//
//
//
//