Page 1 of 1

Question for Windows API and anti-virus gurus...

Posted: Mon Nov 28, 2011 9:39 pm
by Jeronimus Linuxius
Wikipedia says that anti-virus implement on-access checking (aka autoprotect) by hooking the windows API functions.
However, Windows has an inotify-like API, isn't it?
Why don't anti-virus programs just use the FindFirstChangeNotification() call to automatically check files as they are written to disk?