ETW_PROVIDER_TABLE_ENTRY

The ETW_PROVIDER_TABLE_ENTRY structure is 0x10 and 0x18 bytes in 32-bit and 64-bit Windows, respectively.

Offset (x86) Offset (x64) Definition Versions
0x00 0x00 
LONG RefCount;
 6.0 to 6.1
0x04 0x04 
ETW_PROVIDER_STATE State;
 6.0 to 6.1
0x08 0x08 
ETW_REG_ENTRY *RegEntry;
 6.0 to 6.1
0x0C 0x10 
PVOID Caller;
 6.0 to 6.1

This page was created on 7th April 2020 but was not published until 28th May 2020.

Copyright © 2020. Geoff Chappell. All rights reserved. Conditions apply.