Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
1 answer
Feature Request: "Legacy Colors" or "System Classic" Theme for Process Explorer 17.x
Hi Mark and the Sysinternals Team, First of all, I updated today from the old 16.43 version and wanted to thank you for the amazing work on the v17 update, I love the new features! However, for users who use advanced system-wide skinning tools (like…
Sysinternals
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 98%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
0 answers
TCPView bug: sometimes does not display active connections or remotes
I noticed sometimes, in a resumed Windows session on a laptop, with TCPView open for some time, it seems like it stops displaying new connections and remote addresses. The remote addresses are all *, and no established connections get shown despite…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 8%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EW%3C/text%3E%3C/svg%3E)
1 answer
Download Link Not Displayed on Japanese Version of Process Explorer Documentation
The Japanese version of the Process Explorer page does not show the "Download Process Explorer" link. The English version has the link, so it seems to be a localization/sync issue. English:…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
asked 2026-03-08T01:19:13.4966667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(313.6, 52%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
M_Marl
5,760
Reputation points
edited a comment 2026-03-08T10:11:09.1433333+00:00
Hebikuzure aka Murachi Akira
315.2K
Reputation points MVP
Volunteer Moderator
1 answer
Odd Sysmon Version numbers question, have you seen this before?
Hey Everyone, I've got a weird one to ask about today. We have Sysmon feeding into our SIEM, and when looking at the file version information the SIEM receives, we see some differing results that we are confused about. Some of the results for the…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
asked 2025-01-06T20:15:45.92+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 84%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
AW
5
Reputation points
answered 2026-03-05T08:49:28.4666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 3%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERS%3C/text%3E%3C/svg%3E)
Robert Österlund
20
Reputation points
1 answer
Malware or safe?
So pretty much i downlaoded autoruns v14.1q my mark russinovich i think this is the url https://learn.microsoft.com/en-us/sysinternals/downloads/autoruns but virustotal was all ok but the desc was russian kind of worried would I be able to give you about…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 97%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDM%3C/text%3E%3C/svg%3E)
2 answers
One of the answers was accepted by the question author.
How to invoke POWERSHELL
I need to run a process that another user here suggestd that I run with POWERSHELL. I don't know how to invoke POWERSHELL. Thanks for your help, PR
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
asked 2026-03-03T16:03:24.54+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 91%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPR%3C/text%3E%3C/svg%3E)
Phillip Richcreek
320
Reputation points
accepted 2026-03-03T16:14:59.74+00:00
Phillip Richcreek
320
Reputation points
2 answers
How to detect the count of P & E cores in Intel CPUs?
Is there a programmatic way to detect the current P & E cores? The Intel® Processor Identification Utility for the Intel® Core™ 12th generation and newer shows the number of the P-Cores and E-Cores in the…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 0%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EY%3C/text%3E%3C/svg%3E)
0 answers
Open procedure "OpenLsaPerformanceData" in DLL "C:\Windows\System32\Secur32.dll" not found.
When I start my system the full Event Viewer message is: The attempt to locate the Open procedure "OpenLsaPerformanceData" in DLL "C:\Windows\System32\Secur32.dll" for the "Lsa" service failed with Win32 error code The…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
asked 2026-03-02T19:28:59.5966667+00:00
Cmdr LeForge
30
Reputation points
asked 2026-03-02T19:28:59.5966667+00:00
Cmdr LeForge
30
Reputation points
0 answers
ZoomIt v9.0 or v10.0 Livezoom has graphical glitches with taskbar and makes it unuseable
I downloaded the most recent version of ZoomIt a few minutes ago. I don't know if it is version 9.0 or 10.0 because on the download page it says it is 10.0 but when I open the program it says it is 9.0. I downloaded from here…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 0%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EB%3C/text%3E%3C/svg%3E)
0 answers
procdump v11.1 creates broken mini-dumps
v11.0 works well in that regard. For example, this command procdump /e 1 /n 100 /mp SOME.EXE . will produce dump files which cannot be used with neither Visual Studio, nor WinDbg. VS cannot open such dump files at all and produces mystic error…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
asked 2026-02-25T18:26:32.94+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(80, 48%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
mediawolf
0
Reputation points
answered 2026-02-25T18:26:43.83+00:00
Q&A Assist
1 answer
Facing Issue driver power state failure 0x9f
my new pc is 1 months old. yesterday electricity was cut suddenly and my pc turned off then came back within 1sec and my pc was restarting itself but again the electricity was cut and i just turned it back on today. when i turned it for the first time it…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
asked 2026-02-23T04:47:12.6433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(272, 60%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESK%3C/text%3E%3C/svg%3E)
Susan Khadka
0
Reputation points
answered 2026-02-23T04:47:22.06+00:00
Q&A Assist
0 answers
Zoomit v10 screen record
After making a recording, Zoomit starts / continues to use the microphone. This even happens when Zoomit is set to not include microphone recording in the video.
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
asked 2026-02-20T16:52:31.4033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 87%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENG%3C/text%3E%3C/svg%3E)
Neil Gooding
0
Reputation points
asked 2026-02-20T16:52:31.4033333+00:00
Neil Gooding
0
Reputation points
0 answers
Ticked menu items not visible in dark mode
A tick is displayed against several menu items in Process Explorer, such as View -> Show Column Heatmaps. When in "dark mode", the tick is coloured black and is not visible. What is the process for making the tick marks visible, when viewing…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
asked 2026-02-20T13:07:08.9566667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 86%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESP%3C/text%3E%3C/svg%3E)
Stephen Pipes
0
Reputation points
edited the question 2026-02-20T13:08:26.1+00:00
Stephen Pipes
0
Reputation points
0 answers
Regression in Sigcheck v2.91
Run this in cmd.exe. sigcheck -n -r -nobanner "%SystemRoot%\regedit.exe" & for /f %i in (' sigcheck.exe -n -r -nobanner "%SystemRoot%\regedit.exe" ') do @echo %i Sigcheck v2.90 output: 10.0.20348.2849…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 62%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWC%3C/text%3E%3C/svg%3E)
0 answers
Knowing the partitions by disk
Please add a column telling which physical disk the partitions are on. I need to backup a whole disk and having to play detective wastes time. It really shouldn't be hard to have a physical disk column.
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 43%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAT%3C/text%3E%3C/svg%3E)
1 answer
RDCMan Connections Don't Open
Hello. I'm using RDCMan to connect to a handful of RDPs on our small network here. I'm adding them as the server name being the IP address and the port being the custom ports that we configure. I'm also setting all of the login information. When trying…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
asked 2026-02-17T15:31:14.04+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(28.799999999999997, 19%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPA%3C/text%3E%3C/svg%3E)
Preston Aleshire
0
Reputation points
answered 2026-02-17T15:31:25.74+00:00
Q&A Assist
1 answer
Need to Reschedule the Collaboration Communication System Engineer exam
Due to an unexpected power outage, I was unable to appear for the scheduled exam. I kindly request your support in rescheduling the exam at a convenient time. I apologize for any inconvenience caused and would be grateful for your understanding. Thank…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
asked 2026-02-16T11:51:52.2733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 62%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAX%3C/text%3E%3C/svg%3E)
alex xavier
0
Reputation points
answered 2026-02-16T11:52:01.7+00:00
Q&A Assist
0 answers
Sysmon first install on Windows Server 2025 fails with 'wevtutil.exe returned failure'
Create an Azure Windows Server 2025 VM, then download and install sysmon from a command prompt running as Administrator: sysmon -i -accepteula The sysmon installation fails: wevtutil.exe returned failure Event manifest installation failed with last…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
asked 2026-02-12T17:09:04.8+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 89%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER7%3C/text%3E%3C/svg%3E)
RoyWillyHaug-7992
0
Reputation points
edited a comment 2026-02-16T09:39:21.45+00:00
RoyWillyHaug-7992
0
Reputation points
2 answers
Why This SysMon Behaviour?
When I Open SysMon there is a visible window (outline) that shows and 'flashes' for a nano-second and that's it... gone. Win11 and Canary IB both exhibiting the same behaviour.
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(230.39999999999998, 34%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Microsoft Visual C++ 2015-2022 Redistributable
I am trying to install and run games but each time I do I get the error saying that this is required to to run the program. I tried to repair/ uninstall the files but I keep getting it cannot be removed and the file itself cannot be found. I am at a loss…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,332 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(198.4, 93%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ET%3C/text%3E%3C/svg%3E)