process-management

From kernel mode in Windows I'm able to intercept and monitor virtually all actions performed on a particular disk. When a file is opened for any purpose I get an event. Now I want to trace which application that opened it. I think this should be possible but don't know how. I'm using the standard file management functions in Windows Win32 API. Thanks in advance. /Robert Just use Win32 N.API to get the pid from the File handle. It's a FAQ for 15 years... Sysinternals Filemon (free) does this, and better yet they describe how they did it: For the Windows 9x driver, the heart of FileMon is in

I am looking for different ways to pause and resume programmatically a particular process via its process ID under Windows XP. Process suspend/resume tool does it with SuspendThread / ResumeThread but warns about multi-threaded programs and deadlock problems. PsSuspend looks okay, but I wonder if it does anything special about deadlocks or uses another method? Prefered languages : C++ / Python If you "debug the debugger" (for instance, using logger.exe to trace all API calls made by windbg.exe ), it appears that the debugger uses SuspendThread() / ResumeThread() to suspend all of the threads

How to kill an internal process in Emacs? For example I run M-x shell . I can check running processes with M-x list-processes but how can I kill a process from this list? There is no default key binding for this; however see pjammer's answer -- list-processes+ includes (among other things) a kill binding on C-k -- and also Joao Tavora's answer -- which provides just a kill binding (for the same key). event_jr points out in the comments that you can use M-: (kill-process) RET to kill the current buffer's process. More generally: You can use M-: (kill-process PROCESS) RET , where PROCESS "may be

Looked at android documentation and it appears that we don't have the ability to know when an app shuts down. Whether it was explicitly by the user or automatically by the operating system. Below is the onTerminate() documentation which is only available in the emulated scenario. public void onTerminate() Since: API Level 1 This method is for use in emulated process environments. It will never be called on a production Android device, where processes are removed by simply killing them; no user code (including this callback) is executed when doing so. Does anyone have any other approaches to

I want to know how i can check a program in a specific location if it is running. For example there are two locations for test.exe in c:\loc1\test.exe and c:\loc2\test.exe. I only wanted to know if c:\loc1\test.exe is running and not all instances of test.exe. bool isRunning = Process.GetProcessesByName("test") .FirstOrDefault(p => p.MainModule.FileName.StartsWith(@"c:\loc1")) != default(Process); Pishgaman.org This is my improved function : private bool ProgramIsRunning(string FullPath) { string FilePath = Path.GetDirectoryName(FullPath); string FileName = Path.GetFileNameWithoutExtension

Is there a Windows equivalent of the Unix command, nice ? I'm specifically looking for something I can use at the command line, and not the "Set Priority" menu from the task manager. My attempts at finding this on Google have been thwarted by those who can't come up with better adjectives. Stephen Pellicer If you want to set priority when launching a process you could use the built-in start command: START ["title"] [/Dpath] [/I] [/MIN] [/MAX] [/SEPARATE | /SHARED] [/LOW | /NORMAL | /HIGH | /REALTIME | /ABOVENORMAL | /BELOWNORMAL] [/WAIT] [/B] [command/program] [parameters] Use the low through

I suspect that one of my applications eats more CPU cycles than I want it to. The problem is - it happens in bursts, and just looking at the task manager doesn't help me as it shows immediate usage only. Is there a way (on Windows) to track the history of CPU & Memory usage for some process. E.g. I will start tracking "firefox", and after an hour or so will see a graph of its CPU & memory usage during that hour. I'm looking for either a ready-made tool or a programmatic way to achieve this. Martin08 Just type perfmon into Start > Run and press enter. When the Performance window is open, click