Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
0 answers
process explorer v17.06 flagged as malicious / virus on virus total
process explorer v17.06 flagged as malicious / virus on virus total https://www.virustotal.com/gui/file/75af473dad96a1237231059f64bbba92692560b2724a56687c1f9d91d3326239/details
Sysinternals
asked 2024-07-24T07:56:56.7233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 70%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKD%3C/text%3E%3C/svg%3E)
Kalajzich, Damon
0
Reputation points
asked 2024-07-24T07:56:56.7233333+00:00
Kalajzich, Damon
0
Reputation points
2 answers
How to securely use PSEXEC with a remote user and password from a batch file?
I use PSEXEC to administer many embedded Windows systems (no KVM) that are not part of our domain. (Think of a thermostat or freezer.) They use their own user/password that does not exist in our domain or locally. I use "PSEXEC -u user -p…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
asked 2024-07-18T02:53:39.1+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 59%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETW%3C/text%3E%3C/svg%3E)
Taed Wynnell
0
Reputation points
commented 2024-07-24T07:05:36.8133333+00:00
RLWA32
43,146
Reputation points
0 answers
Where the heck is the bug tracker? (serious Autoruns issue)
Autoruns has a serious issue in v14.11 (the most recent version as of this writing). If you use the Analyze Offline System option the remote registry hives will not be unmounted when autoruns exits. This can lead to corruption rendering the offline…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 57.00000000000001%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EH%3C/text%3E%3C/svg%3E)
2 answers
You need to launch Sysmon as an Administrator.
You need to launch Sysmon as an Administrator.
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
asked 2024-07-23T16:40:06.0033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 34%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAA%3C/text%3E%3C/svg%3E)
Alex Anthony
0
Reputation points
answered 2024-07-24T01:09:13.4966667+00:00
MotoX80
32,911
Reputation points
1 answer
BGinfo position for remote servers
I am maintaining some remote servers (windows server 2016 - located at the customer sites) from my home and now configuring BGinfo. The problem is....the 'position' button seems not work properly within remote desktop connection (due to monitor…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(121.6, 57.99999999999999%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKL%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 44%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMH%3C/text%3E%3C/svg%3E)
1 answer
Sysinternals - ZoomIt v8.01 - Multi Screen Support - Feedback
Hello, I am a bit surprised by how difficult it is to find good/simple windows screen zooming tools. In a multiple monitor scenario I want zoom one monitors screen. I don't want scale, I don't want a magnifier window gobbling more screen space,…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
asked 2024-07-03T19:59:10.6733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 11%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHT%3C/text%3E%3C/svg%3E)
Heslington, Tony
0
Reputation points
answered 2024-07-23T16:37:38.9033333+00:00
Heslington, Tony
0
Reputation points
1 answer
tcpvcon.exe does not show portnumbers
I wanted to use tcpvcon.exe to get a list of all listening processes and was wondering that it doesn't show the port numbers? Is there any reasons? Could such a feature added?
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
asked 2024-07-22T12:14:36.89+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(121.6, 37%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAM%3C/text%3E%3C/svg%3E)
Albert, Michael (DI IT MC UE)
0
Reputation points
answered 2024-07-22T15:14:20.0966667+00:00
MotoX80
32,911
Reputation points
5 answers
Update for BGinfo in Windows 11
Hello, Do you know if/when BGinfo will be updated for Windows 11?
Windows 11
Windows 11
A Microsoft operating system designed for productivity, creativity, and ease of use.
8,972 questions
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
asked 2021-11-19T04:01:05.387+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 6%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
Jared
21
Reputation points
answered 2024-07-22T14:37:53.92+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 14.000000000000002%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
cheesypoofbeard
0
Reputation points
2 answers
BGInfo doesn't recognize Windows 11
I just upgraded to Windows 11. BGInfo 4.28 is showing the OS as being Windows 10 Build 22000. Can this be remedied?
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
asked 2022-01-25T14:32:20.03+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(83.2, 46%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESA%3C/text%3E%3C/svg%3E)
Shawn Allin
6
Reputation points
answered 2024-07-22T14:16:11.49+00:00
cheesypoofbeard
0
Reputation points
0 answers
Process Monitor Not Picking Up Any Events When "Drop Filtered Events" is toggeled?
I am trying to troubleshoot an issue with Sever 2022 becoming unable to RDP into it after some time, and I'm trying to use Process Monitor to monitor the key HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\fDenyTSConnections. However, when I toggle…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
asked 2024-07-18T21:41:49.8366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 79%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECW%3C/text%3E%3C/svg%3E)
Curtis W. Wright
0
Reputation points
edited the question 2024-07-18T21:43:34.7666667+00:00
Curtis W. Wright
0
Reputation points
1 answer
How can I limit or delete the folder content of Sysmon folder?
I have Sysmon installed in all of our Servers 2019 and 2022. It piles up the logs in C:/Sysmon folder. The folder is owned by TrustedInstaller so generally I cannot delete the content. I have used PSexec but whenever I try to run that it gives an error…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
1 answer
Sysmon 15 is not able to start service in timely manner?
Sysmon v15.0 installation failed during StartService operation and it tried to clean up machine by uninstalling it automatically, but uninstall operation failed as well and left the System in bad state so reinstallation is not working either. System…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
asked 2023-08-15T18:30:12.3366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 76%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
SPP12345
15
Reputation points
answered 2024-07-18T10:23:33.64+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 6%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAM%3C/text%3E%3C/svg%3E)
Alex Mihaiuc
176
Reputation points Microsoft Employee
2 answers
Sysmon 13.01 Prevent ArchiveDirectory creation and file delete backup
Is there a way with Sysmon 13.01 to prevent the creation of the Archive Directory (default is C:\Sysmon) and prevent file deletions from saving the file to the local filesystem?
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
asked 2021-02-09T00:15:19.653+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 69%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETM%3C/text%3E%3C/svg%3E)
Tommy Myers
21
Reputation points
commented 2024-07-18T05:53:13.2566667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 60%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
ADRookie
0
Reputation points
1 answer
Process Explorer does not respond when starting
On many windows servers I have when I start Process Explorer x64, the screen shows the list of processes but Process Explorer is not responding (for example scrolling down the process list does not do anything). The status bar continues to update showing…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
asked 2024-07-13T06:36:08.0433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(105.60000000000001, 77%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDA%3C/text%3E%3C/svg%3E)
Dani Avni
0
Reputation points
answered 2024-07-13T06:48:53.5566667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(121.6, 14.000000000000002%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EG%3C/text%3E%3C/svg%3E)
gregory223
0
Reputation points
0 answers
Sysmon - Non-ASCII character in the ParentUser and ParentCommandLine field
Has anyone seen this behavior with Sysmon: getting non-ASCII characters in the ParentUser, and ParentCommandLine fields? Sometimes it looks like another language character set, other times it is WingDings or some other non-sensical characters. …
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
asked 2024-07-10T15:25:31.47+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(313.6, 7.000000000000001%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERM%3C/text%3E%3C/svg%3E)
Robert Morningstar
0
Reputation points
edited a comment 2024-07-10T15:35:47.4933333+00:00
Robert Morningstar
0
Reputation points
2 answers
verified signer
In Process Explorer I clicked Options > Verify Image Signatures. Several show no signer and "The system cannot find the specified file". If I attempt to kill the process it reports "Error Opening process: Access is denied'". If I…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
asked 2024-07-07T22:50:04.4866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 23%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJT%3C/text%3E%3C/svg%3E)
John Terdik
0
Reputation points
commented 2024-07-10T05:33:47.4766667+00:00
institute-of-universal-peace.myshopify.com
0
Reputation points
2 answers
How to remove (none) from BGInfo output?
Computers these days have so many network connection options the BGInfo is providing useless info for network adapters that are not being used. As seen here this PC is only using one network connection but because it has a WiFi adapter, Ble and…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 51%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 91%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EXL%3C/text%3E%3C/svg%3E)
0 answers
sigcheck: non-ASCII characters in output are being replaced with question marks
For example, for this (https://www.virustotal.com/gui/file/6279b309469c10b8c478c49ad6cf06b7f7307079bd90f00bbe3b292d5c6a52e5/details) sample I get the following output: Verified: Signed Signing date: 12:05 PM 7/4/2024 Publisher: ??????????? ... I…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
asked 2024-07-04T14:43:35.21+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(102.4, 59%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMZ%3C/text%3E%3C/svg%3E)
Max Zhenzhera
0
Reputation points
asked 2024-07-04T14:43:35.21+00:00
Max Zhenzhera
0
Reputation points
0 answers
no filename completion with remote cmd.exe started with psecex
When running a remote cmd.exe with psexec, why doesn't filename completion and the cls, Title and color commands not work there? Win 10/64, PsExec v2.43
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
asked 2024-07-04T13:37:34.82+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(73.60000000000001, 73%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETK%3C/text%3E%3C/svg%3E)
Thomas Kobler
0
Reputation points
asked 2024-07-04T13:37:34.82+00:00
Thomas Kobler
0
Reputation points
0 answers
process explorer app in system tray
how to place process explorer app in system tray
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,130 questions
asked 2024-07-02T21:07:19.98+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(144, 25%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
JaimeOyarzo
0
Reputation points
asked 2024-07-02T21:07:19.98+00:00
JaimeOyarzo
0
Reputation points