Microsoft-Windows-DirectShow-KernelSupport
13 events across 1 channel
| Event | Title | Channel | Sample |
|---|---|---|---|
| 1 | PluginCreation_Start | Performance | N |
| 2 | PluginCreation_Complete | Performance | N |
| 3 | SetMediaType_Enter | Performance | N |
| 4 | SetMediaType_Exit | Performance | N |
| 5 | SetFormat_Enter | Performance | N |
| 6 | SetFormat_Exit | Performance | N |
| 7 | InputPin_Receive: Pointer = Buffer, Timestamp = TimeStamp. | Performance | N |
| 8 | ProcessInput_Start: Pointer = Buffer, Timestamp = TimeStamp. | Performance | N |
| 9 | ProcessInput_Complete: Pointer = Buffer, Timestamp = TimeStamp. | Performance | N |
| 10 | ProcessOutput_Start: Pointer = Buffer, Timestamp = TimeStamp. | Performance | N |
| 11 | ProcessOutput_Complete: Pointer = Buffer, Timestamp = TimeStamp. | Performance | N |
| 12 | DeviceIo_Start: Pointer = Buffer, Timestamp = TimeStamp. | Performance | N |
| 13 | DeviceIo_Complete: Pointer = Buffer, Timestamp = TimeStamp. | Performance | N |
Event ID 7: InputPin_Receive: Pointer = Buffer, Timestamp = TimeStamp.
#Event ID 8: ProcessInput_Start: Pointer = Buffer, Timestamp = TimeStamp.
#Event ID 9: ProcessInput_Complete: Pointer = Buffer, Timestamp = TimeStamp.
#Event ID 10: ProcessOutput_Start: Pointer = Buffer, Timestamp = TimeStamp.
#Event ID 11: ProcessOutput_Complete: Pointer = Buffer, Timestamp = TimeStamp.
#Event ID 12: DeviceIo_Start: Pointer = Buffer, Timestamp = TimeStamp.
#Event ID 13: DeviceIo_Complete: Pointer = Buffer, Timestamp = TimeStamp.
#Provenance
Where this provider's schema came from, and which Windows build it was observed on. Windows can change a provider's event schema between builds, so use this to judge whether it matches the build you collect from.
ETW provider GUID 3cc2d4af-da5e-4ed4-bcbe-3cf995940483
Defined in ksproxy.ax, which carries the event manifest.
Observed on:
- WS2022-20348.4893, schema read from the registered manifest, binary version 10.0.20348.1, captured 2026-06-02
- Win11-26200.6584, schema read from the registered manifest, binary version 10.0.26100.1, captured 2026-06-02