List of processors

[itoleck]

• processes - List process name/ID, parent ID, start/end time, duration, session, user information
• tasks - List Scheduled Tasks events
• gpos - List GPO processing information
• winlogon - List provider, task, process ID, CPU#, thread of winlogon events
• pnp - List PnP information
• services - List service information
• hardfaults - List process, path, avg IO time, size of hard faults
• diskio - List Disk, Path, Type, latency of disk/Total Disk Stack/Only Que and filter driver, IO size and bandwidth
• fileio - List FileIO, Path, duration in milliseconds, errorcodes and process information for each FileIO event
• providerinfo - List the providers captured in the .etl trace, not including the kernel provider, 9e814aad-3204-11d2-9a82-006008a86939
• minifilter - List of each minifilter event and duration in microseconds. Filter with the --ms: switch to remove events <= to the millisecond
• minifiltersummary - List of minifilter drivers and total duration of each in milliseconds
• cpusample - All CPU sample information
• cpusamplenoidle - CPU sample information besides the Idle process, just actual work
• bootphases - List of boot phases from boot trace based on process start/end times
• processzombies - TBD
• diskiosummary - List aggregates (Min, Max, Avg) for total disk IO values (IO Size, Duration, Bandwidth)
• memorysummary - TBD

[AloisKraus]

Are you aware of ETWAnalyzer? It does something similar
https://github.com/Siemens-Healthineers/ETWAnalyzer
like most of your queries but it extracts data into Json files which can then easily be queried.