PsTools : psexec access denied
Author: sjtsnixSubject: psexec access deniedPosted: 14 June 2014 at 2:03amWindows 8.1 Pro x64 Update 1 Downloaded most recent Sysinternals Suite, extracted to desktop folder. change to that folder at a...
View ArticleAutoruns : Export the result to CSV file
Author: dingSubject: Export the result to CSV filePosted: 14 June 2014 at 3:02amHow autorunsc.exe will export the result to a specified CSV file, instead of printing to the screen? Step back, how will...
View ArticleUtilities Suggestions : Windows KPI utilities
Author: StuWhitbySubject: Windows KPI utilitiesPosted: 14 June 2014 at 12:10pmI'm interested in getting some performance indicators from Windows and dumping the results into a database. This will...
View ArticleAutoruns : Export the result to CSV file
Author: davehullSubject: Export the result to CSV filePosted: 14 June 2014 at 4:23pmFrom the command line:autorunsc -c > filename.csvIf you want to gather all autoruns from all the locations it...
View ArticleAutoruns : Not verified
Author: davehullSubject: Not verifiedPosted: 14 June 2014 at 4:29pmA quick easy check would be to take an MD5 hash of the file(s) and then search VirusTotal for those hashes. It's possible an attacker...
View ArticleMiscellaneous Utilities : Secure Delete Failure
Author: SteveIn TucsonSubject: Secure Delete FailurePosted: 15 June 2014 at 4:45amWhile cleaning an XP System disk I discovered a deleted OutlookExpress zip file that sdelete will not over write with...
View ArticleAutoruns : Strange items in BootExecute
Author: CETSubject: Strange items in BootExecutePosted: 15 June 2014 at 1:29pmDoes anyone have an idea what would be causing these strange items to continually be listed under the BootExecute? I delete...
View ArticleAutoruns : Strange items in BootExecute
Author: MagicAndre1981Subject: Strange items in BootExecutePosted: 15 June 2014 at 3:00pmmaybe malware? Have you scanned your system with a AV suite?
View ArticleAutoruns : Strange items in BootExecute
Author: CETSubject: Strange items in BootExecutePosted: 15 June 2014 at 3:21pmYes, with Malwarebytes. Would you know of a better program? Thanks!
View ArticleProcess Monitor : BootLog.PML is not to open
Author: czer27Subject: BootLog.PML is not to openPosted: 15 June 2014 at 3:43pmWhen I try to open my BootLog.PML in a running ProcMon I get the message "The current filter excludes all 50.855...
View ArticleTroubleshooting : Need help with Ntoskrnl thread causing high CPU
Author: tristan_mSubject: Need help with Ntoskrnl thread causing high CPUPosted: 15 June 2014 at 8:39pmI'm still having some CPU issues. Here's the link to the new .etl...
View ArticlePsTools : install vmware tools with
Author: esxi1979Subject: install vmware tools withPosted: 15 June 2014 at 11:09pmHi,I am trying to insall vmware tools on a windows vm with below cmd ..it hangs below psexec \\10.xxx -u domain\id-p...
View ArticleTroubleshooting : Need help with Ntoskrnl thread causing high CPU
Author: DoubleESubject: Need help with Ntoskrnl thread causing high CPUPosted: 16 June 2014 at 4:00amI'm using the default Dell power plan that came with the laptop. I have not changed the power plan...
View ArticleAutoruns : Strange items in BootExecute
Author: MagicAndre1981Subject: Strange items in BootExecutePosted: 16 June 2014 at 4:40amRun an offline scanner like this:https://www.avira.com/en/download/product/avira-rescue-system
View ArticleTroubleshooting : Need help with Ntoskrnl thread causing high CPU
Author: MagicAndre1981Subject: Need help with Ntoskrnl thread causing high CPUPosted: 16 June 2014 at 4:45am@tristan_mthe trace is corrupted and doesn't show any useful CPU sampling data.@DoubleEplay a...
View ArticlePsTools : about pipe for Psinfo.exe
Author: dingSubject: about pipe for Psinfo.exePosted: 16 June 2014 at 4:57amThe sysinternals Tools function is very powerful, I recently learning in the "Windows Sysinternals Administrator 's...
View ArticleMalware : AntiSpy2.2 released(more powerful tools)
Author: hu3167343Subject: AntiSpy2.2 released(more powerful tools)Posted: 16 June 2014 at 9:04amAntiSpy is a free but powerful anti virus and rootkits toolkit.It offers you the ability with the highest...
View ArticlePsTools : about pipe for Psinfo.exe
Author: rmetzgerSubject: about pipe for Psinfo.exePosted: 16 June 2014 at 9:10amConsider a simple batch file:@echo offfor %%S in (Server1 Server2 Server3) do ( echo \\%%S psinfo \\%%S 2>NUL |...
View ArticleProcess Explorer : Suspect processes
Author: deeireSubject: Suspect processesPosted: 16 June 2014 at 3:45pmHi -In Process Explorer I have noticed that suspect processes are showing up in programs that I use regularly - eg Epic Chromium...
View ArticleProcess Explorer : Suspect processes
Author: MagicAndre1981Subject: Suspect processesPosted: 16 June 2014 at 4:07pmcan you please post a picture of ProcessExplorer which shows this?
View Article