Questions tagged [sysinternals]
Usually refers to applications from the Sysinternals Suite (eg. Process Explorer, Process Monitor, RAMMap, ...)
110
questions
101
votes
5
answers
289k
views
How can I change the timestamp on a file? [duplicate]
Possible Duplicate:
How to modify timestamp in a dll or exe?
Windows equivalent of the Linux command 'touch'?
How can I set the timestamp for a file via the command-line to a specific date?
My ...
- 4,450
59
votes
3
answers
44k
views
Restore the original task manager after replacing it with the Sysinternals process explorer
After replacing the default Windows task manager with Sysinternals’ process explorer via the Options → Replace task manager menu, how do you undo that action, i.e. restore the original task manager? I’...
- 2,451
30
votes
2
answers
29k
views
MKLINK vs. Junction.exe
SysInternals has a program junction.exe that creates Junctions (aka. reparse points, aka. symlinks) in Windows.
However, Windows also comes with a mklink which seems to do the same thing.
Is there a ...
- 983
30
votes
3
answers
37k
views
Equivalent to Sysinternals Process Explorer on Linux
I am using Ubuntu 11.10 and am looking for an equivalent to Process Explorer on Linux. There is System Monitor but it's not nearly as good as Process Explorer with all of its detailed information ...
- 613
29
votes
4
answers
9k
views
What does the path '\REGISTRY\A\...' in Sysinternals Procmon log mean?
I use Sysinternals Procmon utility to monitor the registry access by some programs. Most log entries have the Path property starting from HKCU\… or HKLM\…, that corresponds to the registry hives ...
14
votes
1
answer
10k
views
How to exclude every process in Sysinternal's Process Monitor in the filter except for one process?
How to exclude every process in SysInternal's Process Monitor in the filter except for one process? Some kind of using a wildcard filter.
- 11.9k
11
votes
1
answer
2k
views
Why windows executables show incorrect compiler timestamps?
I have observed that windows executable files show incorrect timestamps when I view them in PE studio.
For example this Notepad.exe file shows a compiler timestamp of 0x86FCBD69 (Mon Oct 07 03:45:05 ...
- 123
11
votes
1
answer
6k
views
SysInternals Desktops not launching Chrome
I'm using Desktops from SysInternals on Windows 8 and experiencing a problem launching Chrome. Even if I go to the exe of Chrome it will not launch in anything but the first Desktop. Does anyone know ...
- 244
11
votes
3
answers
92k
views
Could not start PSEXESVC service on [MachineName]: Access is denied
I'm trying to use PsExec to start a process on a remote machine. I posted this question on SO, but I realized it's probably better suited here. I also have spent a few hours trying to figure this out, ...
- 213
11
votes
1
answer
13k
views
Does Psexec execute Remote Procedure Calls?
I've heard of RPCs and that they get executed via TCP port 135. I just executed ipconfig via psexec.exe on a remote PC and wondered if this is a RPC. As I've seen in Wireshark, the whole process is ...
- 4,988
10
votes
3
answers
14k
views
PsExec requirements on local computer
What services and settings are required to run psexec on local computer?
(e.g. psexec -s -i -d regedit)
- 379
10
votes
2
answers
11k
views
Is there open source software which is to Process Monitor what ProcessHacker is to Process Explorer? [closed]
Process Hacker is an open source alternative to the famous Process Explorer by Mark Russinovitch.
Is there in the same vein a piece of open source software that can be a serious alternative to ...
- 7,043
9
votes
1
answer
974
views
Is there a way to reset the toolbar minigraphs in Process Explorer?
Windows Sysinternals Process Explorer includes in its toolbar some minigraphs showing recent usage history for CPU, Memory, and so on:
These are nice. However, an inadvertent click on the 'thumb' of ...
- 264
9
votes
0
answers
430
views
How does rebooting a computer work? [duplicate]
Possible Duplicate:
How does a computer restart itself?
How does a computer's reboot command actually work?
How is the computer told that it shouldn't stay down after powering off, and that it ...
- 136
8
votes
1
answer
33k
views
What does "I/O Reads or Writes" and "I/O Read Bytes or Write Bytes" mean?
In Task Manager (and Sysinternals' Process Explorer) there are columns called "I/O Reads", "I/O Writes", "I/O Read Bytes" and "I/O Write Bytes". So what do these counters mean exactly? What else, ...
- 91