ExecuteProcess

Musharraf_Hussain · August 11, 2009, 8:20am

Hi all,

I m writing minifilter driver , and I want to execute an application in Driver.

e.g. ShellExecute in User level

Help me if anybody knows that

Thanks

Don_Burn_1 · August 11, 2009, 8:23am

You cannot execute processes from kernel mode. You can create a helper
application that then does the work for you. This has been discussed a lot
on NTDEV look at the archives.

–
Don Burn (MVP, Windows DKD)
Windows Filesystem and Driver Consulting
Website: http://www.windrvr.com
Blog: http://msmvps.com/blogs/WinDrvr

wrote in message news:xxxxx@ntfsd…
> Hi all,
>
> I m writing minifilter driver , and I want to execute an application in
> Driver.
>
> e.g. ShellExecute in User level
>
> Help me if anybody knows that
>
> Thanks
>
>
> Information from ESET NOD32 Antivirus, version of virus
> signature database 4325 (20090811)
>
> The message was checked by ESET NOD32 Antivirus.
>
> http://www.eset.com
>
>
>

Information from ESET NOD32 Antivirus, version of virus signature database 4325 (20090811)

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com

Musharraf_Hussain · August 11, 2009, 11:54am

Hi Don Burn,

Is it possible, If execute in following scenario.

Filter Driver Exectues---->Native Application executes — > Windows GUI Application.

Thanks

Don_Burn_1 · August 11, 2009, 11:59am

NO, NO, NO, NO, NO, NO, NO, NO, NO, NO (repeat another 10,000,000,000
times ).

–
Don Burn (MVP, Windows DKD)
Windows Filesystem and Driver Consulting
Website: http://www.windrvr.com
Blog: http://msmvps.com/blogs/WinDrvr

wrote in message news:xxxxx@ntfsd…
> Hi Don Burn,
>
> Is it possible, If execute in following scenario.
>
>
> Filter Driver Exectues---->Native Application executes — > Windows GUI
> Application.
>
>
> Thanks
>
>
> Information from ESET NOD32 Antivirus, version of virus
> signature database 4326 (20090811)
>
> The message was checked by ESET NOD32 Antivirus.
>
> http://www.eset.com
>
>
>

Information from ESET NOD32 Antivirus, version of virus signature database 4326 (20090811)

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com

Ken_Johnson · August 11, 2009, 12:05pm

Use the documented approach of a helper app.

S

-----Original Message-----
From: xxxxx@yahoo.com
Sent: Tuesday, August 11, 2009 08:53
To: Windows File Systems Devs Interest List
Subject: RE:[ntfsd] ExecuteProcess

Hi Don Burn,

Is it possible, If execute in following scenario.

Filter Driver Exectues---->Native Application executes — > Windows GUI Application.

Thanks

—
NTFSD is sponsored by OSR

For our schedule of debugging and file system seminars
(including our new fs mini-filter seminar) visit:
http://www.osr.com/seminars

To unsubscribe, visit the List Server section of OSR Online at http://www.osronline.com/page.cfm?name=ListServer

OSR_Community_User · August 11, 2009, 1:48pm

> e.g. ShellExecute in User level

Help me if anybody knows that

Impossible.

Write a user-mode service which will talk to the driver via FltMgr’s ports.

If you need UI from this app - then write an app and register it at shell’s Run key (like a tray icon) which will monitor the driver.

–
Maxim S. Shatskih
Windows DDK MVP
xxxxx@storagecraft.com
http://www.storagecraft.com