No announcements
-
0 VotesIs it possible to execute RamMap's empty X List/Set from cmd?
I'm looking for something similar to Empty Standby List by wj32, but from a more official source. As far as the documentation goes I have not noticed any ability to do ...
-
0 Votes
Sysmon 5.2.0.0 - does log Image & ProcessGUID
Not sure if this a bug with Sysmon version 5.2.0.0 and wondering if anyone else is experiencing the similar issue Sysmon is not logging Process Name(Image): it simply records as ...Unanswered | 1 Replies | 361 Views | Created by Anonymous - Sunday, July 23, 2017 10:44 PM | Last reply by abapt - 16 hours 52 minutes ago -
0 Votes
coreinfo tool is wrong about socket 939 Athlon 3800+ X2 Hypervisor feature
I ran coreinfo tool against my socket 939 Athlon X2 3800+ and got back hypervisor support which is not correct CPUID: 20FB1 Definitely no hypervisor support on ... -
0 Votes
Sysinternals Live certificate has expired
Hi Not sure how to alert the team other than here but as the title states the certificate for https://live.sysinternals.com expired at 05:25 this ... -
0 Votes
Sysmon: user and integrity level of parent process?
I would like to see more information regarding the parent process in Sysmon process creation event. Currently we have ParentCommandLine, ParentProcessGuid, ParentImage and ... -
0 Votes
SyncToy 2.1 logging
I am attempting to use SyncToy 2.1 to synchronize two folders in differnet Windows servers. Looking around I found the documentation to run it as a scheduled task and it works ...Unanswered | 0 Replies | 27 Views | Created by Mario - Roma - Italy - Monday, February 18, 2019 2:17 PM -
0 Votes
Find the process that is requesting a DNS query
Hi. I ask for your question. The title is soon to be content. A DNS query is being generated by a specific IP on a specific ... -
0 Votes
Error Code 10 - Silabs MCU
Dear Microsoft! I have a problem concerning to a MCU kit produced by the Silicon ... -
0 Votes
MFT File entry having multiple Filename attributes and a Reparse point
I am reading MFT Entries of NTFS file system. I know that MFT can have multiple FileName attributes, which are ... -
0 Votes
Active Directory Explorer .dat files
What format is the .dat file in that AD Explorer makes when creating a snapshot of a domain? I would eventually like to be able to parse it in python. -
0 Votes
Win10 1809 broke psloglist? "The stub received bad data" errors towards remote computers
psloglist \\testsrv -d 1 PsLoglist v2.71 - local and remote event log viewer Copyright (C) 2000-2009 Mark ...Unanswered | 4 Replies | 188 Views | Created by AxelThirud - Monday, January 28, 2019 12:45 PM | Last reply by B.Gilles - Wednesday, February 13, 2019 9:39 PM -
5 Votes
Powershell basic question
Hi I am a total tech newb. I am using Powershell for the first time and am referring to a website called ProgrammingHistorian. It recommends in a tutorial to use the cmdlet rm to remove a directory. ...Proposed | 1 Replies | 303 Views | Created by TechnNov - Sunday, August 26, 2018 6:59 AM | Last reply by Mohammad Al Rousan - Wednesday, February 13, 2019 9:28 PM -
5 Votes
Powershell support
Will there be powershell support in bginfoProposed | 1 Replies | 573 Views | Created by Anonymous - Monday, September 20, 2010 7:07 PM | Last reply by Mohammad Al Rousan - Wednesday, February 13, 2019 9:10 PM -
0 Votes
Sysmon filtering changes in 8.02
The Sysmon documentation states the following: Rules that specify a condition for the same field name behave as OR conditions, and ones that specify different field name ...Unanswered | 7 Replies | 374 Views | Created by markc(msft) - Wednesday, December 12, 2018 6:59 PM | Last reply by JeffreyEv - Wednesday, February 13, 2019 1:50 PM -
0 Votes
Sysmon memory leak
I faced a bug in Sysmon (ver. 7.01 and 7.03) - Sysmon's driver (SysmonDrv.sys) consumes new area in Nonpaged pool memory every time configuration reloads, but driver does not free old area in Nonpaged ...Answered | 4 Replies | 1179 Views | Created by Uncletimmy3 - Friday, June 1, 2018 6:49 AM | Last reply by PiotrekP - Wednesday, February 13, 2019 8:03 AM -
7 Votes
OST to PST Conversion
How to convert .ost file into .pst?Is there any way to recover mails form offline outlook file through Outlook 2013 even after my email id is now closed.Proposed | 33 Replies | 1362 Views | Created by Anonymous - Tuesday, March 27, 2018 1:03 AM | Last reply by Wesley Bates - Wednesday, February 13, 2019 6:24 AM -
1 Votes
IP info not displayed for NIC Teaming
On a Windows 2016 server, I enabled NIC Teaming. When running BGInfo, the IP Address, Subnet Mask, and DNS Server information does not show. Default Gateway dispays okay. I tried running BGInfo Build ...Unanswered | 1 Replies | 452 Views | Created by Anonymous - Thursday, March 1, 2018 10:38 AM | Last reply by s0lution - Tuesday, February 12, 2019 7:51 AM -
3 Votes
Registry process shows "[A device attached to the system is not functioning.]" for its image path.
Why does the registry process show "[A device attached to the system is not functioning.]" for its image path? All devices on my notebook are ...Answered | 3 Replies | 400 Views | Created by jeffsmack - Monday, November 26, 2018 6:46 PM | Last reply by jeffsmack - Tuesday, February 12, 2019 5:14 AM -
0 Votes
Categories for advanced output Procmon
I have just learnt to use Procmon. From all the tutorials they said user should "Enable Advanced Output" for filtering. I have been searching for the differences between advanced ... -
4 Votes
SDelete hangs at 100%
Hi. Since the latest update of the Sysinternals Suite, when I run Sdelete (v 2.0) on my disk, it hangs at 100% and does not end (command is sdlete.exe -c -z- r <drive>; OS is ...Unanswered | 33 Replies | 43588 Views | Created by Anonymous - Sunday, July 17, 2016 12:44 AM | Last reply by Pedro Clemo - Monday, February 11, 2019 2:49 PM - Items 1 to 20 of 29490 Next ›
No announcements
