Questions tagged [sysinternals]
Usually refers to applications from the Sysinternals Suite (eg. Process Explorer, Process Monitor, RAMMap, ...)
110
questions
0
votes
0
answers
34
views
SysInternals Process Explorer starts but is unresponsive for a long time, spinning blue disk. Then works fine
I recently downloaded the SysInternals tools. I'm running them on Windows Server 2019. The problem I am having only seems to apply to Process Explorer. I have this problem whether I run procexp.exe or ...
0
votes
1
answer
253
views
Process not showing in Process Explorer, even though it's running
Something strange is happening, I am running the game "Sheep dog 'n' wolf" via the SheepD3D.exe executable.
While it is running I alt-tab and open SysInternals' Process Explorer (latest ...
-2
votes
1
answer
804
views
Sysinternals Process Monitor device driver: procedure could not be found
The most recent article I have found on this site regarding Systinternals Process Monitor is 13 years old. I must have missed something because I'm still having the same problem.
I have Windows 7 on ...
- 117
0
votes
0
answers
80
views
What does the "QueryDeviceInformationVolume" operation in Process Monitor mean?
Seeing an operation called "QueryDeviceInformationVolume" in a SysInternals Process Monitor log when I start a desktop application. Simply trying to get some details about this operation and ...
- 1
0
votes
1
answer
72
views
sysinternal Process explorer only show registry events
I have my process explorer installed on my windows machine(sandbox). I run the malware, then capture events in process explorer, after 5 minutes, i stop the capture. to my surprise, it only show the ...
0
votes
0
answers
432
views
Is it possible to use procmon to find out why a process ends?
Let's say I started notepad. In a PowerShell window, I run ps notepad | Stop-Process -Force to kill all notepad session. I captured a procmon trace during these operations. Is it possible to find out ...
- 137
0
votes
2
answers
378
views
Sysinternals Handle prints question marks "?" instead of non ASCII symbols
For files that contain non ASCII symbols, The Sysinternals Handle utility prints the file names with ?. A similar problem is also reported in the following places:
Handle encoding problem
Russian ...
- 533
0
votes
0
answers
416
views
Can not run Sysinternals Process Explorer via Task scheduler (installed via winget on Win11)
I'm unable to setup the Process Explorer to run at startup via Task Scheduler. Regardless if I create the task via the Process Explorer menu 'Run at startup' or manually I am unable to make it work.
I'...
- 223
0
votes
0
answers
332
views
PSExec -c flag does not work with powershell scripts
I'm using PSExec 2.4 to run commands on multiple computers. If I want to run a local batch script on the target computer (named {machine} below), this works no problem:
psexec -i \\{machine} -nobanner ...
- 1,620
1
vote
1
answer
429
views
Sysinternals procmon "Process Active Summary" is missing most processes
I am trying to track CPU usage of our build script and of all the processes it spawns to accomplish the task of creating a release. I ran a procmon64.exe (with profiling) session during the course of ...
0
votes
1
answer
205
views
Is there any native way on windows or using sysinternals to scan what websites a process is accessing?
I am struggling to find a way to scan for websites an specific process on windows 10 os is accessing without having to get a commercial tool or without a full package tracing app like wireshark
I was ...
- 467
0
votes
1
answer
590
views
Can you set Process Monitor to filter multiple file types instead of a single file type? Or all sounds?
I'm trying to figure out which programs are making certain sounds and the only tool that I've come across to have that ability is Syinternals Process Monitor.
Filters
Unfortunately, it doesn't seem to ...
0
votes
0
answers
76
views
Can I use ProcessExplorer to trace the parameters of future running process?
I would like be able to trace all calls to MSBuild.exe with its parameters. It seems I should be using sysinternals Process Explorer. I'm lost how I can accomplish this or if I should be doing ...
- 171
0
votes
1
answer
533
views
How to see the process stack in the Sysinternals Process Explorer from a .net console app?
I am trying to get deeper in the understanding how the OS stacks up the chained function calls. So I created a very simple dotnet console app, see the code below, I call the "Call()" method ...
- 171
0
votes
0
answers
341
views
How to associate RDG files to the RDC Manager shipped with sysinternals when sysinternals comes from the MS Store?
I installed the sysinternals suite from the Windows store.
This includes Microsoft Remote Desktop Manager.
However, this setup does not create file associations.
How to associate RDG files to this app ...
- 2,232