Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
ETW EtwRegister() provider list
11 views
Skip to first unread message
Thomas Bolioli
Nov 21, 2009, 12:13:23 PM11/21/09
to
Where does one find the provider list to get the correct provider ID for
tracing? It isn't obvious from the API docs and there are scant examples
online.
tracing? It isn't obvious from the API docs and there are scant examples
online.
BTW: The whole point of this exercise is to detect various system
messages running in applications and trace back what app called that
message. Additionally, we would look for various events, like spikes in
disk activity, cpu util, etc and try to trace what app is causing it.
Does this sound like something ETW can accomplish???
EtwRegister(
__in LPCGUID ProviderId,
__in_opt ETWENABLECALLBACK EnableCallback,
__in_opt PVOID CallbackContext,
__out PREGHANDLE RegHandle
);
cross posted to *win32.programmer.kernel
0 new messages