No announcements
-
0 VotesSysmon is missing Process Access events
We are developing a kernel mode driver and comparing our driver's collected events to Sysmon. Intermittently but frequently I am seeing missed Process Accessed events from ...Unanswered | 1 Replies | 25 Views | Created by Dave Schob - 11 hours 50 minutes ago | Last reply by Dave Schob - 9 hours 53 minutes ago
-
0 Votes
Request: when searching for a process, actually filter them, and always search in all items, including folded ones
As the title says. No need to still show items that don't fit the search criteria. Better to filter them as you type. Also, to avoid not finding items just because they are in ...Discussion | 1 Replies | 76 Views | Created by LB636 - Monday, November 4, 2019 8:16 AM | Last reply by markc(msft) - 14 hours 53 minutes ago -
0 Votes
Process Explorer latest version will not start in Windows 10 - earlier versions from 2012 do
event viewer shows Faulting application name: procexp64.exe, version: 16.30.0.0, time stamp: 0x5d70cac3 Faulting module name: ...Unanswered | 6 Replies | 95 Views | Created by CSL99 - Friday, November 8, 2019 1:47 PM | Last reply by CSL99 - 14 hours 59 minutes ago -
0 Votes
VMMap no longer shows managed heap on Windows 10 Version 1903
When attached to a .NET or .NET Core process, VMMap no longer shows the managed heap: I know that in May 2019 it was still working (with .NET 4.7.2 and the .NET ...Unanswered | 6 Replies | 143 Views | Created by Kenny Pflug - Monday, November 4, 2019 8:41 AM | Last reply by markc(msft) - 14 hours 59 minutes ago -
0 Votes
Process Filter Capability
Hi, is there a unknown possibility to filter the processes e.g. via a regex or similar? (Such a filter is often placed in a box in the right upper ...Unanswered | 1 Replies | 83 Views | Created by ksimui - Saturday, November 9, 2019 5:21 PM | Last reply by markc(msft) - 15 hours 12 minutes ago -
0 Votes
limit nonpaged pool memory in windows 10?
Is there a way to limit the max nonpaged pool memory in windows 10? It doesn't appear to be limited. Common answers on the internet don't seem to work when tested with Notmyfault.exe. ...Proposed | 7 Replies | 98 Views | Created by JS2010 - Friday, November 8, 2019 6:44 PM | Last reply by markc(msft) - 15 hours 14 minutes ago -
0 Votes
PSexec -c option : where is the file copied to (and does it stay there)
Hi All, Can you share some details as to how does PSexec64 -c works? Where is the file copied to on the target host? And does it stay there or removed after it is executed? The -v ...Proposed | 3 Replies | 34 Views | Created by orenshani7 - Tuesday, November 12, 2019 6:55 AM | Last reply by mariora_ - 15 hours 23 minutes ago -
0 Votes
Problems with "Show Profiling Events"
When I am running Process Monitor pressing the Show Profiling Events button doesn't appear to have any effect on the capture or the display. When I press the button a window briefly ...Unanswered | 4 Replies | 68 Views | Created by A.Rudkins - Thursday, November 7, 2019 10:24 AM | Last reply by markc(msft) - 15 hours 23 minutes ago -
0 Votes
Is this forum the official support channel for Sysinternals?
I'm trying to get confirmation for internal documentation where I work where Sysinternals support requests are supposed to go if we have questions. The license on the official site doesn't say ...Unanswered | 2 Replies | 34 Views | Created by Pat O'Connell - Monday, November 11, 2019 8:08 PM | Last reply by markc(msft) - 15 hours 34 minutes ago -
0 Votes
Sysmon 10.41 installation Issue
i am trying to install on Win 7 64 bit but i keep getting following errors Windows cannot verify the digital signature for this file. a recent hardware or software change might have ...Unanswered | 6 Replies | 123 Views | Created by SaroshAftab - Thursday, November 7, 2019 3:14 AM | Last reply by markc(msft) - 15 hours 44 minutes ago -
16 Votes
Is there any perfect and secure OST to PST Converter?
I am searching perfect and secure OST to PST Converter.Unanswered | 8 Replies | 1136 Views | Created by Sarah Finch - Tuesday, July 9, 2019 7:26 AM | Last reply by Alena12 - 21 hours 29 minutes ago -
0 Votes
Process events Monitoring using WDK 10.X
Hi Friends, I have been using DDK driver to monitor windows file systems & windows process events in my product. Recently I have migrated my product to use WDK 10.x to monitor ...Proposed | 2 Replies | 32 Views | Created by Karthick PrathapSingh - 23 hours 55 minutes ago | Last reply by Karthick PrathapSingh - 22 hours 58 minutes ago -
2 Votes
[Bug Report] ProcMon does not display absolute time analyzing a recorded trace
[Problem:] If a windows OS one time zone (say PST or GMT-8) is captured, and subsequently loaded and analyzed by a different windows OS in a different time zone (say MST or GMT-7), then the time/date ...Proposed | 2 Replies | 30 Views | Created by Shane_Creamer - Tuesday, November 12, 2019 1:02 AM | Last reply by mariora_ - 23 hours 6 minutes ago -
0 Votes
Time Stamp Impossibilities
Just read the AUTORUNS chapter of Troubleshooting w/ sysinternals. Went to the Schedule Tasks tab of autoruns and noticed that 8 processes had a timestamp of 2032 ...Unanswered | 2 Replies | 256 Views | Created by Dorian Gray - Wednesday, August 7, 2019 6:56 PM | Last reply by Ranger910 - Thursday, November 7, 2019 6:44 PM -
0 Votes
All Shared printers (Ricoh, HP, Xerox) from Windows Server 2012 R2 goes offline on all computers (Win7/8/10)
I AM NEW TO SYSINTERNALS: We have this issue since last few weeks. No change in the environment. Just before a week the users started ...Proposed | 1 Replies | 49 Views | Created by Ankit.Joshi8518 - Thursday, November 7, 2019 3:54 PM | Last reply by mariora_ - Thursday, November 7, 2019 4:12 PM -
0 Votes
Default task manager
Hello, I have set process explorer as default task manager, how to come back with default task manager ? ThanksProposed | 2 Replies | 66 Views | Created by pistou - Thursday, November 7, 2019 2:24 PM | Last reply by mariora_ - Thursday, November 7, 2019 3:04 PM -
0 Votes
Trying to access local user account windows 7.
Hi, I have a windows 7 laptop that was given to me from the company I work for. It was connected to a domain server where I have a login and password to access it; however, ...Proposed | 1 Replies | 54 Views | Created by Henry jasem - Thursday, November 7, 2019 6:18 AM | Last reply by mariora_ - Thursday, November 7, 2019 7:38 AM -
0 Votes
Bug with v4.28 - Custom User Defined Field types not working (Works in v4.20)
After creating some custom fields and saving the BGI file, when I open it again, the custom fields are gone. Same issue as in 4.25, it has not been fixed. When will this be ...Unanswered | 1 Replies | 70 Views | Created by The Real Dan Murray - Wednesday, November 6, 2019 7:58 PM | Last reply by mariora_ - Wednesday, November 6, 2019 10:27 PM -
3 Votes
Process Explorer v16.30 / cRASH wINDOWS 7
Process Explorer v16.30 eRROR: Not able to run on this version of Windows: Missing function: ...Answered | 17 Replies | 2028 Views | Created by GOXZALO - Tuesday, September 17, 2019 8:48 PM | Last reply by markc(msft) - Wednesday, November 6, 2019 3:48 PM -
0 Votes
Request: remember folding state of processes for next sessions
Some processes have a lot of processes within them, such as "wininit.exe" and "chrome". It's annoying to keep folding them, and then later seem them unfolded ... - Items 1 to 20 of 544 Next ›
No announcements
