 |  |  |  |  |  |  |  |
How to monitor all file access realtime?
Thread Solved |
Hi guys For diagnostic reasons I think it would be really useful to be able to somehow get a log showing each file accessed when running anything in XP. The TASK MANAGER seems to go a little way towards this but I don't want to get a defined output such as processes, tasks or application or security files only, just quite simply a list of each & every file accessed, ideally realtime so I can start & stop recording this information at any time whilst running programs within XP
Any ideas?
Any ideas?
•
•
Join Date: May 2005
Posts: 3,204
Reputation: 
Solved Threads: 188
Process Monitor.
Deep, deep in the woods, but walking about.
•
•
Join Date: Feb 2009
Posts: 444
Reputation:
Solved Threads: 106
Posting Pro in Training
here is a solution FileMon
Be a good part of the community.Don't be ungrateful.
If you ask something on the forum and you got the right answer then mark as solved!
If my opinion helped to you a lot then sometimes give reputation point to me.
I'm just a pascal programmer from Hungary.
Farewell...
If you ask something on the forum and you got the right answer then mark as solved!
If my opinion helped to you a lot then sometimes give reputation point to me.
I'm just a pascal programmer from Hungary.
Farewell...
Thanks very much for suggestion. Perhaps I should explain more what I am trying to do- I have malware on my PC & every time I try to update AVG or access a webpage , it attempts to redirect to another page with ads. Having used HiJackThis with 3 or 4 anti-mal scans the problem was temporarily removed only to come back, so I would like to get to the root of the problem rather than keep scanning again if possible. Now when I try to update AVG the problem seems to be very logical in that 'access to the server is deined' & this is most likely caused by a program accessing a file outside AVG. So I need a 'snapshot' of all file access from when I click the 'Update' icon in AVG up to 3 or 4 seconds later when the denied access message comes up. I can't seem to get this type of 'snapshot' in Process monitor/Task Manager & I'm not clear if ALL files used are shown under Processes there, which can be viewed so far as to see when CPU usage goes up but when only for a split second, it's not easy to establish exactly which file's are accessed.
Wow! Thanks FlamingClaw That looks good Sorry, didn't see your post till after I submitted my last one I'm busy offline for 2 days but will definitely give this a try & post back
•
•
Join Date: Aug 2003
Posts: 9,616
Reputation: 
Solved Threads: 498
quote from bottom of the page in link you provided !
"Note This tool has been replaced by Process Monitor".
"Note This tool has been replaced by Process Monitor".
Last edited by caperjack; May 15th, 2009 at 6:55 pm.
Linux boot cd http://www.knopper.net/knoppix/index-en.html
•
•
Join Date: Feb 2009
Posts: 444
Reputation:
Solved Threads: 106
Posting Pro in Training
Be a good part of the community.Don't be ungrateful.
If you ask something on the forum and you got the right answer then mark as solved!
If my opinion helped to you a lot then sometimes give reputation point to me.
I'm just a pascal programmer from Hungary.
Farewell...
If you ask something on the forum and you got the right answer then mark as solved!
If my opinion helped to you a lot then sometimes give reputation point to me.
I'm just a pascal programmer from Hungary.
Farewell...
•
•
Join Date: Dec 2005
Posts: 5,850
Reputation:
Solved Threads: 749
Why not just ask your question in the excellent http://www.daniweb.com/forums/forum64.html forum?
•
•
Join Date: May 2005
Posts: 3,204
Reputation:
Solved Threads: 188
"So I need a 'snapshot' of all file access from when I click the 'Update' icon in AVG up to 3 or 4 seconds later when the denied access message comes up. I can't seem to get this type of 'snapshot' in Process monitor" You are kidding... or else you do not know how to use the tool. ProcMon will, if you so wish, log everything that happens from & to whenever you wish, including from as the kernal loads. And you can split out the file accesses with one click.
Deep, deep in the woods, but walking about.
 |
Similar Threads
- importing from text file to access using .net (VB.NET)
- Concurrent access TXT file and Ms Access (MS Access and FileMaker Pro)
- monitor file access (ASP.NET)
- Problem in importing data from text file to MS-Access file (VB.NET)
- File access problem (PHP)
- Printing file access permission.... (Shell Scripting)
- Random shared file access details....... (Visual Basic 4 / 5 / 6)
- how willl i be able to save a specific record into my database file in ms access (Java)
Other Threads in the Windows NT / 2000 / XP Forum
- Previous Thread: Little-Endian architecture...
- Next Thread: Page cannot be displayed
| Thread Tools | Search this Thread |
You need to join our community in order to build your list of favorite forums. You can visit the forum index for a listing of all forums.
Related Forum Features
Latest Windows NT / 2000 / XP Posts
- Today's Posts
- Unanswered Threads
.net 64bit 2007 2010 a.exe activedirectory address android apache appstore automatically black blue bsod bulletin canonical chinese chkdsk codeplex combofix cursor deployment deployments desktop dns drive dual eartlink error explorer fax features fontmanagers format framework freeze hardware home internet interoperability laptop laptops lcd linux login mac markshuttleworth memory microsoft monitor motionle1600 netbooks novell nvidia open opensource operatingsystems options oracle osinstallationproblem osx palm partition printer program proxy reformat remotedesktop repair replacingraiddrive retail retrieve screen security sharepoint simplifiedchinese sitetositevpn slowperformance sp3 spyware studios technology ubuntu uninstall update upgrade videodrivers videogames virus vista visual vpn win win32/heur windows windows7 windowsxp windowsxpnotstartingup. xp xpde
