![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 66%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJL%3C/text%3E%3C/svg%3E)
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,132 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 78%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
When you do batch with Procmon the you realize that Procmon uses DDE to talk to his own different instances, like in this example:
set PMExe="C:\temp\Procmon.exe"
%PMExe% /Terminate
REM *Reset Using Paging File for next usage…
start "" %PMExe% /PagingFile /NoConnect /minimized /quiet
%PMExe% /waitforidle
%PMExe% /Terminate
So, may be for some reason on your PC DDE has been disabled and the main instance of Procmon cannot communicate with his child and so try again and again and again to start a child instance..
https://learn.microsoft.com/en-us/security-updates/securityadvisories/2017/4053440#:~:text=To%20disable%20the%20DDE%20feature,automatic%20update%20of%20Workbook%20Links.
Not sure at all just my thought..
HTH
-mario