This article describes how we can use Windows built-in tools to see if Capture Client exclusions of interoperability or higher are currently being applied.



If InProcessClient64.dll (for 64-bit processes) or InProcessClient32.dll (for 32-bit processes) appears in the process stack, it indicates that the interoperability exclusion has not yet taken effect and Capture Client Threat Protection agent (SentinelOne) has injected itself into the process for monitoring.
Note: To ensure the exclusion is applied, restart the target process or reboot the endpoint, and then validate again using Resource Monitor. Once the exclusion is active, these agent DLLs should no longer be injected into the excluded process.