Quantcast
Channel: Sysinternals Forums
Viewing all 10386 articles
Browse latest View live

BgInfo : Running BGInfo in local/workgroup setting?

October 5, 2016, 12:15 pm
$
0
0
Author: heyfrank
Subject: Running BGInfo in local/workgroup setting?
Posted: 05 October 2016 at 7:15pm

Has anyone had luck with running BGinfo from the users start up folder with a batch script?? This is a non domain environment and is at most a Workgroup environment, as most dental practices are not on a domain.

(C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup) 

I have the .exe and .bgi located in %USERPROFILE%\Documents

My issue is it when running it prompts for a access is denied error in command prompt, I believe the error exists on trying to add the registry  key for EULA

My startup batch script:

@echo off
reg add HKU\.DEFAULT\Software\Sysinternals\BGInfo /v EulaAccepted /t REG_DWORD /d 1 /f
@echo off
cd
"C:\Users\%USERNAME%\Documents\bginfo\bginfo.exe" bginfotemplate.bgi /TIMER:0 /nolicprompt /SILENT


Is there a better way to do this? Any help would be most appreciated. Thank you.



Search

Process Monitor : ProcessMonitor crashes when using backing files

October 5, 2016, 1:44 pm
$
0
0
Author: Olegas
Subject: ProcessMonitor crashes when using backing files
Posted: 05 October 2016 at 8:44pm

After some troubleshooting, I’ve managed to narrow down the steps required to recreate Process Monitor crash. Since the problem is not reproducible on every machine, that pointed me towards application settings. So, the high-level steps are:
1. Deploy clean Windows 7 RTM x64 virtual machine (I used 4 logical CPUs and 2 GB of RAM)
2. Deploy Process Monitor version 3.31
3. Start Process Monitor
4. Accept EULA
5. Stop capturing events
6. Go to File | Import Configuration. Select the provided PMC file, click Open. 
7. Exit from Process Monitor. The imported settings will be persisted to HKEY_CURRENT_USER\Software\Sysinternals\Process Monitor\ registry key.
8. I’m fairly certain that DestructiveFilter = 1 (aka Filter | Drop Filtered Events) setting is one of the pre-requisites to recreate the problem.
9. Create C:\Temp folder, which will house backing files per the provided configuration file.
10. Start Process Monitor
11. Stop capturing events
12. Click on the Filter | Reset, then Apply and Ok
13. Click on the Clear to purge old captured contents
14. Start capturing events (say yes to overwrite existing backing files)
15. Open two Windows Explorer instances:
a. In one, browse to C:\Temp so you can watch file size of the backing files.
b. In another, browse to a folder of your choice (C:\Windows\System32, etc). Press and hold F5 button in this Windows Explorer instance to generate system activity to be captured.

Based on my testing, steps 8 and 12 are crucial to recreating this problem (must drop filtered events and must reset filter before performing new capture).

I’ve encountered two crash signatures in my testing.
movzx   edx,word ptr [r10+r9] within Procmon64+0x7f371 (occurs most frequently)
movzx   ecx,word ptr [r10+rdx] within Procmon64+0x8047a (rare occurrence)

I've sent the dumps and configuration file to Mark.

Thank you

Troubleshooting : Need help with Ntoskrnl thread causing high CPU

October 5, 2016, 8:39 pm
$
0
0
Author: rosscoandsandi
Subject: Need help with Ntoskrnl thread causing high CPU
Posted: 06 October 2016 at 3:39am

You are a legend. i would love to buy you a beer.
now over to the company "IT experts" to find a different way to have offilne files synced that doesnt kill my machine.
thanks again
Ross

Malware : Gpu based paravirtualization rootkit, all os vulne

October 5, 2016, 9:23 pm

Process Monitor : Procmon unable to capture File System events

October 6, 2016, 6:52 am
$
0
0
Author: SchLois
Subject: Procmon unable to capture File System events
Posted: 06 October 2016 at 1:52pm

Hi CBruce,
 
now I have the same or at least a very similar problem.
 
Yesterday I started ProcMon 3.10 on Server 2012 R2 (running as a VM I think), traced registry, file and network activity, and saved the trace. It does contain file system activity.
 
I few hours later I did the same on the same machine, while my costumer reproduced the problem I have to solve.
The produced log file doesn't contain any file system activity. First I thought that I had accidently deselected it and gave ProcMon another try.
But file system activity is still selected, but nothing is shown.
 
All I've tried so far
- reset the filter
- changed to Version 3.31
- deleted HKEY_CURRENT_USER\Software\Sysinternals\Process Monitor
the file activity has stopped working.
I cannot test if a reboot solves the problem, as it's a production server.
 
Greetings
SchLois

BgInfo : Displaying the User Domain Password Expiry date

October 6, 2016, 7:50 am
$
0
0
Author: bugmenot
Subject: Displaying the User Domain Password Expiry date
Posted: 06 October 2016 at 2:50pm

What do I have to add to the script that it also echos the expiration days? e.g. Password expires in XX Days

BgInfo : simple text entry in Custom field?

October 6, 2016, 9:54 am
$
0
0
Author: Steven Avery
Subject: simple text entry in Custom field?
Posted: 06 October 2016 at 4:54pm

Could the Custom field allow simple text entry?

The result might be something like this.

Novabench      850
WindowsExp       4
Source             Dell Outlet

It looks like there are many ways to get variables and stuff, why not simple text entry.

Short of that, what would be the simplest Custom method to create the above.

Or am I missing something?

Thanks!

Steven

PsTools : how to measure UDP latency using psping

October 6, 2016, 10:29 am
$
0
0
Author: Tomasz Lisowski
Subject: how to measure UDP latency using psping
Posted: 06 October 2016 at 5:29pm

I cannot determine how to measure UDP latency using latest psping 2.0.1. I have started psping server with -u and running the client with -u option as well but it only shows me bandwidth. When I remove -u it measures latency but it is for TCP. Does anyone know how to measure latency for UDP?

Tomek


Search

Process Monitor : ProcessMonitor crashes when using backing files

October 6, 2016, 12:07 pm
$
0
0
Author: MagicAndre1981
Subject: ProcessMonitor crashes when using backing files
Posted: 06 October 2016 at 7:07pm

ok, thanks. Hopefully this is enough for Mark to repro it. Have you tried a Win10 VM, maybe it is a Win7 related issue?

BgInfo : Displaying the User Domain Password Expiry date

October 6, 2016, 12:35 pm
$
0
0
Author: bmv98rus
Subject: Displaying the User Domain Password Expiry date
Posted: 06 October 2016 at 7:35pm

In my script:
PasswordExpares = cInt(intMaxPwdAge - Now ()+ dtmValue) and use BGInfo template for format line
Or
PasswordExpares = "Pass exp. in " & cInt(intMaxPwdAge - Now ()+ dtmValue) & "day(s)"
If you would like to have whole line from script
 
 
 
 

Site Bugs : PendMoves and MoveFile WRONG

October 6, 2016, 2:52 pm
$
0
0
Author: RDaneel
Subject: PendMoves and MoveFile WRONG
Posted: 06 October 2016 at 9:52pm

While looking into why I seem to have ~400 MB of "pending deletes" under WinSxS\Temp, I went to update my copies of the PendMoves and MoveFile utilities and observed the following:

The publication info from Mark indicates that the ZIP file is supposed to be "284 KB", and given that the date on this info is given as "July 4, 2016" it seems there is a discrepancy.

The ZIP is actually only 134 KB in size, and given that the modify dates on the contained EXEs is from the beginning of 2013, something may be wrong here.

OTOH, the stated versions appear to match - so possibly the "Published: July 4, 2016" on the page itself only refers to the page getting updated with the mention of "Nano Server: 2016 and higher"?

The stated ZIP size, though, is wrong in any case.

Thanks for any help in clearing this up.

Process Monitor : ProcessMonitor crashes when using backing files

October 6, 2016, 6:16 pm
$
0
0
Author: Olegas
Subject: ProcessMonitor crashes when using backing files
Posted: 07 October 2016 at 1:16am

I just recreated the same problem on Windows 10 (physical machine).
Same bug, because the crash offset is the same: Procmon64+0x7f371

BgInfo : simple text entry in Custom field?

October 6, 2016, 7:44 pm
$
0
0
Author: kunkel321
Subject: simple text entry in Custom field?
Posted: 07 October 2016 at 2:44am

BGInfo can display the content of a text file.

BgInfo : Bginfo taskbar bug?

October 6, 2016, 11:59 pm
$
0
0
Author: WindowsStar
Subject: Bginfo taskbar bug?
Posted: 07 October 2016 at 6:59am

It is a bug, and we have been begging for years for Mark to fix the software. So far nothing. Add it to the wish list and patch request threads. Fingers crossed someday he will fix it, although we have been waiting 6 years.

BgInfo : Displaying the User Domain Password Expiry date

October 7, 2016, 12:16 am
$
0
0
Author: bugmenot
Subject: Displaying the User Domain Password Expiry date
Posted: 07 October 2016 at 7:16am

Works perfect, thanks alot! :-)

Edited by bugmenot - 15 hours 49 minutes ago at 7:17am
Search

Development : Access database stops opening

October 7, 2016, 4:04 am
$
0
0
Author: fradiannevin
Subject: Access database stops opening
Posted: 07 October 2016 at 11:04am

To recover corrupt or damaged MS Access database, I would like to refer Kernel for Access recovery software. The software is integrated with dual recovery modes to extract complete data from MDB or ACCDB file of MS Access.  The software supports the recovery of data from all MS Access versions. To know more about the software, follow: http://www.mdb.accessrecoverytool.org

BgInfo : Displaying the User Domain Password Expiry date

October 7, 2016, 5:25 am
$
0
0
Author: bugmenot
Subject: Displaying the User Domain Password Expiry date
Posted: 07 October 2016 at 12:25pm

Is it possible to get both values?
When i use
Echo cInt(intMaxPwdAge - Now ()+ dtmValue) & "day(s)" & PasswordExpares

It is working but as soon someone got a non expire Password its blank.

Miscellaneous Utilities : Proxy aware network connects

October 7, 2016, 5:29 am
$
0
0
Author: Sisyphos
Subject: Proxy aware network connects
Posted: 07 October 2016 at 12:29pm

A solution for this problem would also interest me very much!

Development : Memory Leak surviving terminated process

October 7, 2016, 1:33 pm
$
0
0
Author: SoLaR
Subject: Memory Leak surviving terminated process
Posted: 07 October 2016 at 8:33pm

Have one very old App I am lazy to rewrite because it works perfectly except it creates memory leak in system somewhere after application it self has been terminated.

Manifestation: after extreme use of this application (over 300 starts) application is unable to subclass ListBox object and perfrom custom drawing any more, and it reverts back to internal draw procedure but it keeps subclassed styles (wierd becouse AppHook still works, setting styles+stylesex works but it's not custom drawing anymore). To resolve this issue I must reboot system.

Last several months I tried more than several times to find any kind of memory leak, in AppHooks, SubClassing, GDI objects, Handles, ... so far everything resulted in been properly released or freed.

please notice common usage of this application is right click on folder in windows explorer and run application with selected path. Perform some operation on bulk of files in that folder and/or subfolder files. And finally close application. Application doesn't even run for long maybe 1-5 minutes at max per single start. Issue is I am starting this application 50~70 times a day, so every several days I must reboot system. If I don't use this application everything is just fine.

My main question is what kind of resource usage by application can survive terminated process?

Or is there somewhere bug in system that can yield this behavior?

Troubleshooting : pst files outlook

October 7, 2016, 3:18 pm
$
0
0
Author: sujitikolo
Subject: pst files outlook
Posted: 07 October 2016 at 10:18pm

Hi,

Few days back, I faced similar situation as result of which I wasunable to access data. I tried Inbox Repair tool but unable to read data. Atlast, I found Remo Repair PST tool that can be installed on all versions of Windowsoperating system. It is designed with advanced algorithm such that users canfix several issues in a reliable way. In order to get this software forfree, refer this link: http://www.remorecover.com/windows/inbox-tool-repair-scanpst-exe.html

Thanks!!!!  

 



Edited by sujitikolo - 44 minutes ago at 10:22pm
Viewing all 10386 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>