Error from Process Monitor: “Unable to write PROCMON23.SYS”

Today I was trying to start a boot logging with Process Monitor on Windows 10 and received following error:

Unable to write PROCMON23.SYS. Make sure that you have permission to write to the %%SystemRoot%%\System32\Drivers directory.

Unable to write PROCMON23.SYS

Sharing violation was observed when removed procmon.exe and procmon64.exe from filters:
Sharing Violation

The workaround is go into C:\Windows\System32\drivers and rename procmon23.sys to something else, then try to enable boot logging from options menu again, it would succeed this time.


Posted on August 20, 2015, in Uncategorized. Bookmark the permalink. Leave a comment.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: