Forum Discussion
Monitoring processes
I'm looking for the best way to monitor for processes that are no longer running. For instance, COMPUTER1 should have a process called ABCPROCESS.exe. If ABCPROCESS.exe is not running for the la...
Hi Scott,
We can not query processes using perf as perf is used for CPU, Memory and Disk.
What you can do is since every service when starts or stops on server will trigger a specific event ID. You can capture that event ID and create a alert as per your requirement.
However its not SCOM so we need write query where we could see event ID along with service name to avoid discrepancy.
You can check below link and mimic the same to fullfil your need.
https://cloudadministrator.net/2018/01/24/monitoring-windows-services-sates-with-log-analytics/