Process Hacker
Data Structures | Typedefs | Enumerations | Functions
etwmon.h File Reference
#include <evntcons.h>

Go to the source code of this file.

Data Structures

struct  DiskIo_TypeGroup1
 
struct  FileIo_Name
 
struct  TcpIpOrUdpIp_IPV4_Header
 
struct  TcpIpOrUdpIp_IPV6_Header
 
struct  _ET_ETW_DISK_EVENT
 
struct  _ET_ETW_FILE_EVENT
 
struct  _ET_ETW_NETWORK_EVENT
 

Typedefs

typedef enum _ET_ETW_EVENT_TYPE ET_ETW_EVENT_TYPE
 
typedef struct _ET_ETW_DISK_EVENT ET_ETW_DISK_EVENT
 
typedef struct _ET_ETW_DISK_EVENTPET_ETW_DISK_EVENT
 
typedef struct _ET_ETW_FILE_EVENT ET_ETW_FILE_EVENT
 
typedef struct _ET_ETW_FILE_EVENTPET_ETW_FILE_EVENT
 
typedef struct
_ET_ETW_NETWORK_EVENT 		ET_ETW_NETWORK_EVENT
 
typedef struct
_ET_ETW_NETWORK_EVENT		PET_ETW_NETWORK_EVENT
 

Enumerations

enum  _ET_ETW_EVENT_TYPE {
  EtEtwDiskReadType = 1, EtEtwDiskWriteType, EtEtwFileNameType, EtEtwFileCreateType,
  EtEtwFileDeleteType, EtEtwFileRundownType, EtEtwNetworkReceiveType, EtEtwNetworkSendType
}
 

Functions

VOID EtEtwMonitorInitialization (VOID)
 
VOID EtEtwMonitorUninitialization (VOID)
 
VOID EtStartEtwSession (VOID)
 
VOID EtStopEtwSession (VOID)
 
VOID EtFlushEtwSession (VOID)
 
ULONG EtStartEtwRundown (VOID)
 
VOID EtProcessDiskEvent (_In_ PET_ETW_DISK_EVENT Event)
 
VOID EtProcessNetworkEvent (_In_ PET_ETW_NETWORK_EVENT Event)
 
HANDLE EtThreadIdToProcessId (_In_ HANDLE ThreadId)
 
VOID EtDiskProcessDiskEvent (_In_ PET_ETW_DISK_EVENT Event)
 
VOID EtDiskProcessFileEvent (_In_ PET_ETW_FILE_EVENT Event)
 

Typedef Documentation

typedef struct _ET_ETW_DISK_EVENT ET_ETW_DISK_EVENT
typedef enum _ET_ETW_EVENT_TYPE ET_ETW_EVENT_TYPE
typedef struct _ET_ETW_FILE_EVENT ET_ETW_FILE_EVENT
typedef struct _ET_ETW_NETWORK_EVENT ET_ETW_NETWORK_EVENT
typedef struct _ET_ETW_DISK_EVENT * PET_ETW_DISK_EVENT
typedef struct _ET_ETW_FILE_EVENT * PET_ETW_FILE_EVENT
typedef struct _ET_ETW_NETWORK_EVENT * PET_ETW_NETWORK_EVENT

Enumeration Type Documentation

enum _ET_ETW_EVENT_TYPE
Enumerator:
EtEtwDiskReadType 
EtEtwDiskWriteType 
EtEtwFileNameType 
EtEtwFileCreateType 
EtEtwFileDeleteType 
EtEtwFileRundownType 
EtEtwNetworkReceiveType 
EtEtwNetworkSendType 

Definition at line 73 of file etwmon.h.

Function Documentation

VOID EtDiskProcessDiskEvent ( _In_ PET_ETW_DISK_EVENT  Event)

Definition at line 190 of file etwdisk.c.

VOID EtDiskProcessFileEvent ( _In_ PET_ETW_FILE_EVENT  Event)

Definition at line 205 of file etwdisk.c.

VOID EtEtwMonitorInitialization ( VOID  )

Definition at line 84 of file etwmon.c.

VOID EtEtwMonitorUninitialization ( VOID  )

Definition at line 97 of file etwmon.c.

VOID EtFlushEtwSession ( VOID  )

Definition at line 199 of file etwmon.c.

VOID EtProcessDiskEvent ( _In_ PET_ETW_DISK_EVENT  Event)

Definition at line 113 of file etwstat.c.

VOID EtProcessNetworkEvent ( _In_ PET_ETW_NETWORK_EVENT  Event)

Definition at line 150 of file etwstat.c.

ULONG EtStartEtwRundown ( VOID  )

Definition at line 426 of file etwmon.c.

VOID EtStartEtwSession ( VOID  )

Definition at line 113 of file etwmon.c.

VOID EtStopEtwSession ( VOID  )

Definition at line 191 of file etwmon.c.

HANDLE EtThreadIdToProcessId ( _In_ HANDLE  ThreadId)

Definition at line 388 of file etwstat.c.