Hi,

Are processes that contain "rt_scheduler" real-time scheduled searches?

Example:

splunk 15005 75443 0 10:20 ? 00:00:00 [splunkd pid=75442] search --id=remote_azone567_rt_scheduler_Z527062gns_BillPay_at_1459002000_14090 --maxbuckets=0 --ttl=60 --maxout=0 --maxtime=0 --lookups=1 --streaming --outCsv=true --user=username_removed_for_answers_post --pro --roles=dbx_user:power:user