Development : ETW Network Messages get PID wrong "Sometimes"
Author: dstidolphSubject: ETW Network Messages get PID wrong "Sometimes"Posted: 13 August 2014 at 7:58pmActually, given Sysmon uses a driver, I would bet it intercepts the network events through...
View ArticleAutoruns : autoruns crashing on Windows 7 Pro, SP1
Author: rfaquinoSubject: autoruns crashing on Windows 7 Pro, SP1Posted: 13 August 2014 at 10:05pmI am experiencing the same issue, not sure if it is related to yesterday's Windows 7 patches. I am...
View ArticleAutoruns : august 5 autoruns fails
Author: tintintinSubject: august 5 autoruns failsPosted: 14 August 2014 at 4:03amJust downloaded autoruns. When I start the program in windows 7 it displays the screen with 3 lines then goes to...
View ArticleClik here to view.
Process Explorer : ** Process Explorer Bugs **
Author: MagicAndre1981Subject: ** Process Explorer Bugs **Posted: 14 August 2014 at 5:09am Gerby wrote:Process Explorer 16.03Windows 7 Ultimate, 32-bit, GermanWhen starting PE on the 32-bit machine,...
View ArticleTroubleshooting : .TS files showing as DLLs in Process Explorer
Author: HoosierDaddySubject: .TS files showing as DLLs in Process ExplorerPosted: 14 August 2014 at 8:47pmI maintain and update my WIN8 HTPC remotely and it is sometime sluggish which I thought MIGHT...
View ArticleMiscellaneous Utilities : Sysmon failing to install on XP Embedded
Author: major4579Subject: Sysmon failing to install on XP EmbeddedPosted: 14 August 2014 at 9:07pmSame issue on my Win XP.1) Put Sysmon.exe in C:\Windows - this will solve the first problem2) But the...
View ArticleMiscellaneous Utilities : Sysmon failing to install on XP Embedded
Author: bridgeythegeekSubject: Sysmon failing to install on XP EmbeddedPosted: 14 August 2014 at 9:37pmSysmonDrv.sys is inside Sysmon.exe. When you run Sysmon.exe it will be extracted.If I...
View ArticleMiscellaneous Utilities : Sysmon failing to install on XP Embedded
Author: bridgeythegeekSubject: Sysmon failing to install on XP EmbeddedPosted: 15 August 2014 at 1:04amIt appears that the SysmonDrv.sys file dropped by Sysmon.exe when run on Win7SP1x86 is identical...
View ArticleAutoruns : File not found unpicking keys, and drivers
Author: hyphzSubject: File not found unpicking keys, and driversPosted: 15 August 2014 at 1:22amHi,I have some entries in my Autoruns that I would rather not be there, but when I try to uncheck them, I...
View ArticleClik here to view.
BgInfo : BGInfo making an awkward change
Author: RoshanEjazSubject: BGInfo making an awkward changePosted: 15 August 2014 at 10:36amHi Guys I've deployed BGInfo info via a Group Policy by enabling Loopback Processing, then applying to laptops...
View ArticleProcess Explorer : DPC doesn't show in ProcessExplorer for Windows 7
Author: currieSubject: DPC doesn't show in ProcessExplorer for Windows 7Posted: 15 August 2014 at 5:54pmI have run the latest version of Process Explorer (v.16.+) on three different Win 7 computers. I...
View ArticleProcess Explorer : DPC doesn't show in ProcessExplorer for Windows 7
Author: pinscomputerSubject: DPC doesn't show in ProcessExplorer for Windows 7Posted: 15 August 2014 at 6:42pmsometimes, the built-in help is actually useful (note that I said sometimes, but not...
View ArticleAutoruns : Autoruns 12.01 crashes on startup
Author: neveoSubject: Autoruns 12.01 crashes on startupPosted: 15 August 2014 at 7:02pmIt did for me too on the same OS. This worked for me: Right click the autoruns file and select "Troubleshoot...
View ArticleAutoruns : Autoruns 12.01 missing HKLM\...\Winlogon\Notify
Author: omega32Subject: Autoruns 12.01 missing HKLM\...\Winlogon\NotifyPosted: 15 August 2014 at 7:04pmHi. The location HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify is shown in...
View ArticleTroubleshooting : Windows cannot access the specified device path or
Author: GrofLuigiSubject: Windows cannot access the specified device path orPosted: 15 August 2014 at 7:39pmSure, why not.
View ArticleProcess Explorer : DPC doesn't show in ProcessExplorer for Windows 7
Author: currieSubject: DPC doesn't show in ProcessExplorer for Windows 7Posted: 15 August 2014 at 8:58pmThank you for your response. I am aware of what DPC and interrupts do. The issue is that within...
View ArticleClik here to view.
Process Explorer : DPC doesn't show in ProcessExplorer for Windows 7
Author: Dax1792Subject: DPC doesn't show in ProcessExplorer for Windows 7Posted: 15 August 2014 at 8:59pmDPCs have been included in the Interrupts pseudo-process for some years. See the description of...
View ArticleProcess Explorer : Is there a way to see what WUDFHost.exe is hosting
Author: NoelCSubject: Is there a way to see what WUDFHost.exe is hostingPosted: 15 August 2014 at 10:28pmI've had a couple of persistent WUDFHost.exe processes show up in my task list, I think from...
View ArticleProcess Explorer : Is there a way to see what WUDFHost.exe is hosting
Author: Dax1792Subject: Is there a way to see what WUDFHost.exe is hostingPosted: 16 August 2014 at 12:05amHave a look at the DLLs they have loaded. For example, the first one contains the Windows...
View ArticleProcess Explorer : DPC doesn't show in ProcessExplorer for Windows 7
Author: pinscomputerSubject: DPC doesn't show in ProcessExplorer for Windows 7Posted: 16 August 2014 at 1:20amI interpreted your question as looking for the count....".....To see the total number of...
View Article