Stack Overflow
Stack Overflow

Questions tagged [sysinternals]

Windows Sysinternals is a part of the Microsoft TechNet website which offers technical resources and utilities to manage, diagnose, troubleshoot, and monitor a Microsoft Windows environment.

The Sysinternals web site was created by Mark Russinovich and Bryce Cogswell to host their advanced system utilities and technical information.

The website featured several freeware tools that aid in the adminstration of local and remote Windows systems.

Sysinternals is now part of the Microsoft TechNet website.

166 questions
1
vote
1 answer

Writing Logs to Process Monitor (Sysinternal tool) for .NET(c#) Applications

I need some suggestions or code samples regarding how to add application logs to Process Monitor of sysinternals tools.I want to have a generic library that i can use to get the logs into the process monitor.
user1410658
  • 551
  • 3
  • 10
  • 20
1
vote
0 answers

Procmon is crashing when saving the boot logs

I have been trying to analyse a registry activity during booting. So thought of using procmon for boot logging. I enabled the boot logging, restarted the system. Now when i started the procmon it asked me to dump the boot log collected . When i…
saurav
  • 5,388
  • 10
  • 56
  • 101
1
vote
0 answers

Using psexec on a bat file that contains psservice

I have a bat file that tries to stop a service on a remote machine, the file contains the following psservice \\remoteServerName -u domainName\userName -p password stop serviceName where userName is a name of a user with Admin privileges on the…
Belgi
  • 14,542
  • 22
  • 58
  • 68
1
vote
1 answer

TCPView available connection while server is down

I have problem on my client, I have for some reason zombie connections, which I would like to understand why and how to handle it better on my code. For some reason my client thinks he is connected to the server (TcpListener), while the server is…
Yosi
  • 2,936
  • 7
  • 39
  • 64
1
vote
0 answers

Running sysinternals strings.exe command in Jenkins batch command hangs

I have a windows batch command in Jenkins as a build step, and I'm doing this: CMD /C strings.exe a.bin And it just sits there and spins forever. I cannot get it to work. I have put it in a batch file, I have tried running it with start, nothing…
user306517
  • 523
  • 8
  • 21
1
vote
0 answers

How does "Sysinternals Autoruns" refreshes desktop icons on windows 8.1?

I've been trying to refresh desktop icons in windows 8.1 without rebooting or closing session and it would seem that "Sysinternals Autoruns" when run will refresh desktop icons. How should I proceed to find what it is doing so I can use the method…
Pei Chu
  • 11
  • 2
1
vote
1 answer

"An error occurred opening snapshot" Process Monitor

Each time I run a new instance of the Process Monitor, a dialog box pops up stating that "An error occurred opening snapshot", this error prevents the capturing of any events. Pressing the capture button or Ctrl+E reproduces the error message as…
Merav Kochavi
  • 4,223
  • 2
  • 32
  • 37
1
vote
0 answers

How to dump output of Sysninternals handle.exe to a text file?

I want to see who locks a file, quickly. So I created a CMD script that will run Handle, put its output in a file and then open that file in the default text editor. prompt $ cls handle > handle.txt handle.txt When I run the script a new console…
Gabriel
  • 20,797
  • 27
  • 159
  • 293
1
vote
1 answer

MEM_FREE pages identification

I want to allocate a specific 512MB page which is MEM_FREE, and I want to change that page to MEM_RESERVE and PAGE_NOACCESS. Hence, with Windbg, I found a page and I called to NtAllocateVirtualMemory on that page address with PAGE_RESERVED…
1337
  • 317
  • 1
  • 9
1
vote
1 answer

How to view which IRP's handled by mini filter driver?

We register mini file system filter driver with fltmgr i.e filter manager in windows,and we register IRP for callbacks (preoperation and postoperation callbacks) in that. As if we know its up-to us to for which IRP we want callback from filter…
rpk
  • 70
  • 9
1
vote
1 answer

VB.NET - PSEXEC and SecureString Class?

I have a tool I'm working on in vb.net that essentially lets IT users in my org trigger a number of remote GUI processes on PCs. I call PSEXEC from within my application and pass it the user and password of a service account I have set up. I want…
Oryx
  • 302
  • 9
  • 21
1
vote
2 answers

exe stops execution after couple of hours

I have one exe which collect some information and once information collected saved in local machine. I have managed loop such that it will do same task for infinite time. But exe stops execution after couple of hours (approx 5-6 hours), it neither…
Sam
  • 433
  • 1
  • 10
  • 26
1
vote
1 answer

Tag a process with a string

I am trying to reproduce Process Exporer's feature to tag a process running on the current machine with a Comment (Please see the Comment section in the Process properties in Process Explorer). I couldn't find any way to do it with managed code, had…
AlexDrenea
  • 7,981
  • 1
  • 32
  • 49
1
vote
2 answers

PSEXEC - Elevated Command prompt

Sorry if this has been asked a hundred times, I'm sure it might have been, but my searching skills don't seem to be finding the answer to my particular question today :( I'm trying to execute a command on a server, from a domain user account, who…
Adam_231
  • 61
  • 1
  • 1
  • 8
1
vote
2 answers

Psexec is not running an EXE program remotely

Check everywhere for a reason but nothing I found matches my specific problem. I have a program in C:\somefoldername\anothersubdirectory\andanother\ of the remote pc that I try to run using PSEXEC but it does not take. PSEXEC just does not want to…
user3377627
  • 363
  • 3
  • 7
  • 22
1 2 3
10 11