All Questions
Tagged with sysinternals process-monitor
11
questions
0
votes
0
answers
80
views
What does the "QueryDeviceInformationVolume" operation in Process Monitor mean?
Seeing an operation called "QueryDeviceInformationVolume" in a SysInternals Process Monitor log when I start a desktop application. Simply trying to get some details about this operation and ...
- 1
0
votes
0
answers
435
views
Is it possible to use procmon to find out why a process ends?
Let's say I started notepad. In a PowerShell window, I run ps notepad | Stop-Process -Force to kill all notepad session. I captured a procmon trace during these operations. Is it possible to find out ...
- 137
1
vote
1
answer
430
views
Sysinternals procmon "Process Active Summary" is missing most processes
I am trying to track CPU usage of our build script and of all the processes it spawns to accomplish the task of creating a release. I ran a procmon64.exe (with profiling) session during the course of ...
0
votes
1
answer
593
views
Can you set Process Monitor to filter multiple file types instead of a single file type? Or all sounds?
I'm trying to figure out which programs are making certain sounds and the only tool that I've come across to have that ability is Syinternals Process Monitor.
Filters
Unfortunately, it doesn't seem to ...
1
vote
0
answers
749
views
Process Monitor: Any way to tell what process is terminating another?
I use Process Monitor from SysInternals to view logs from users' when they're being unable to launch an application. Very often users are running various security software they're not even aware of, ...
- 81
1
vote
1
answer
468
views
How to enable "View Source" in Process Monitor?
Sysinternals Process Monitor has a button to "view the source" on a Event Properties > Stack element:
It is disabled in my trace. What do I need to enable it?
- 442
1
vote
0
answers
316
views
In Process Monitor, is it possible to see what data is written/read per entry?
In Process Monitor, is it possible see what data is being read/written to a particular item, be it a file or registry? For example, if a program added "platform=x64" to settings.ini somewhere, Process ...
- 5,994
2
votes
1
answer
1k
views
Why do programs start working when I open Process Monitor?
I have a script I wrote that creates and writes to a file every 20 or 30 seconds and it has been doing that fine for the past 15 years or so on 5 versions of Windows, but I installed the outstanding ...
- 21
0
votes
1
answer
871
views
Running Process Monitor causes application to work
This is a longshot, but perhaps someone with knowledge of the internal workings of Sysinternal's Process Monitor may have an idea.
Recently we've had a very murky problem at work. We have a software (...
- 115
0
votes
2
answers
752
views
How can I determine which operations or processes prevent screen saver and sleep mode
My desktop will not enter sleep mode or fire up the screen saver. To troubleshoot, I have run procmon and procexp from sysinternals in order to determine if some event is making the system think it ...
- 113
14
votes
1
answer
10k
views
How to exclude every process in Sysinternal's Process Monitor in the filter except for one process?
How to exclude every process in SysInternal's Process Monitor in the filter except for one process? Some kind of using a wildcard filter.
- 11.9k