Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
0 answers
rdcman Failed to decrypt using
Hi people! I love RDCMAN, but suddenly I'm having a lot of Failed to decrypt using when launched it. Can this be fixed?
Sysinternals
asked 2024-06-07T05:16:41.91+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(208, 59%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERB%3C/text%3E%3C/svg%3E)
Randall BC
0
Reputation points
asked 2024-06-07T05:16:41.91+00:00
Randall BC
0
Reputation points
0 answers
How do you stop Sysmon64.exe so that the program can be uninstalled / upgraded
We have an issue with Sysmon 15.12 causing Windows Server 2022 VM's (ESX 7) to unexpectedly reboot. Microsoft Unified Support informed us to upgrade to Sysmon 15.14 however I am unable to stop the service despite having highest priveledges. What is the…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
asked 2024-06-07T04:34:05.26+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 43%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECD%3C/text%3E%3C/svg%3E)
Clint D'Souza
0
Reputation points
asked 2024-06-07T04:34:05.26+00:00
Clint D'Souza
0
Reputation points
0 answers
BGInfo native ARM64
Just wondering if BGInfo will be ported to be a native ARM version to support upcoming hardware?
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
asked 2024-06-06T20:24:43.1833333+00:00
Devin Arthur
0
Reputation points
asked 2024-06-06T20:24:43.1833333+00:00
Devin Arthur
0
Reputation points
0 answers
Zoomit - Magnification 1.0
Zoomit is very useful but I would like to draw on snips (rectangles, lines, etc). I found a workaround which is zoom first Ctrl+1, draw, then snip Ctrl+6. The only thing is that there is no way to zoom with 1.0 magnification because I just want a…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
asked 2024-06-06T20:10:52.3033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 62%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAD%3C/text%3E%3C/svg%3E)
Abbas, Duraid
0
Reputation points
asked 2024-06-06T20:10:52.3033333+00:00
Abbas, Duraid
0
Reputation points
1 answer
One of the answers was accepted by the question author.
mstsc works but RDCman doesnt
Hi all, I'd like to use RDCMan again after seeing this is being maintained again. I can remote onto a server using MSTSC without a problem but as soon as the same server connection is attempted via RDCMan it cannot be connected to. It's 2022 DC OS, with…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 90%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETE%3C/text%3E%3C/svg%3E)
2 answers
Process explorer systray / taskbar / tray icons lost on explorer.exe (shell) restart
If you use the process explorer graphs in your systray when explorer restarts all systray icons for process explorer are lost. Has been this way for quite awhile (probably ever? at least years?). It is a bit annoying as you must also kill the old one…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
asked 2023-06-22T22:30:51.78+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 85%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMC%3C/text%3E%3C/svg%3E)
Mitch C
15
Reputation points
commented 2024-06-06T13:36:56.75+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(313.6, 68%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EO%3C/text%3E%3C/svg%3E)
OffDatGoGo
0
Reputation points
1 answer
how to get the loaded assemblies of a process programatically
Reference to this old question : https://stackoverflow.com/questions/36431220/getting-a-list-of-dlls-currently-loaded-in-a-process-c-sharp I am writing a security application where we are monitoring our in house developed software (EPD) which is composed…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
asked 2024-06-03T07:53:23.16+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 92%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPS%3C/text%3E%3C/svg%3E)
Philip Stuyck
0
Reputation points
edited an answer 2024-06-05T01:17:55.6166667+00:00
Castorix31
82,226
Reputation points
0 answers
Bug in the latest RAMMAP version (v1.61)
There is a bug in RAMMAP v1.61. This bug doesn't crash the program. But it's VERY annoying and needs to be fixed in the next version of RAMMAP. Start the program and open the "Processes" tab. Then you'll see that the program will only displays…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
asked 2024-05-31T13:45:23.97+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 94%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWG%3C/text%3E%3C/svg%3E)
Willem Grooters
0
Reputation points
edited the question 2024-06-04T11:50:01.41+00:00
Willem Grooters
0
Reputation points
0 answers
Is sdbinst.exe malware if it is using options not listed in MS documentation?
I am using Sysmon and sending the logs to Wazuh for threat detection. It shows a level 12 event that pertains to sdbinst.exe. The event data command line was C:\WINDOWS\System32\sdbinst.exe -m -bg but according to MS documentation the options used by…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 39%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
1 answer
How do I hide "Filter by name" in "Process Explorer"
Maybe 6-8 months back, I noticed that a field called "Filter by name" appeared near the upper right corner of the main Process Explorer window. Considering what I use ProcExp for, I rarely need this field to be visible. From what I understand,…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
asked 2021-10-15T02:12:47.493+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 60%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFW%3C/text%3E%3C/svg%3E)
Frank Wojtczak
6
Reputation points
commented 2024-06-01T13:35:26.3566667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 60%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBW%3C/text%3E%3C/svg%3E)
Bernd Will
0
Reputation points
2 answers
psinfo reports incorrect information about physical memory
I'd like to raise again the bug that exists in psinfo v1.78 (published on June 29, 2016). As reported in a post on the archived forums psinfo (both 32-bit and 64-bit version) reports incorrect information about physical memory above 4 GB. It's quite…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
asked 2021-08-05T09:44:21.947+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 86%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
rpr
111
Reputation points
answered 2024-05-29T15:58:56.7166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 26%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECA%3C/text%3E%3C/svg%3E)
charlie arehart
25
Reputation points
0 answers
Can Process Monitor watch for DCOM issues?
I was wondering if there was a way to have Process Monitor watch for DCOM issues, like Access Denied. I am asking because I was trying to diagnose an issue with a web service, and eventually discovered that it was a DCOM issue, but unfortunately, the…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
asked 2024-05-29T02:08:20.78+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 37%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMS%3C/text%3E%3C/svg%3E)
MDell.Seradex
1
Reputation point
asked 2024-05-29T02:08:20.78+00:00
MDell.Seradex
1
Reputation point
0 answers
Black screen when running an application remotely with PSExec
I'm going to run notepad remotely using PSExec with its interactive option as below but the notepad console appears with a black screen: PSExec -i -d \RemoteComputer notepad.exe And the following runs it in the background as SYSTEM and console doesn't…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
asked 2022-08-03T21:04:23.707+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 95%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EE%3C/text%3E%3C/svg%3E)
EminentX
6
Reputation points
commented 2024-05-27T19:00:23.5933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 16%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFS%3C/text%3E%3C/svg%3E)
Farhad Shokrpour
0
Reputation points
0 answers
How to fix PsExeSvc.exe %1 není platná aplikace typu Win32. XPe SP3
Please help me howto run psexesvc service. Old psexe.exe works, but display console on host PC.
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
asked 2024-05-27T13:48:20.23+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 61%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKK%3C/text%3E%3C/svg%3E)
Karel Kadlec
0
Reputation points
asked 2024-05-27T13:48:20.23+00:00
Karel Kadlec
0
Reputation points
1 answer
Can we discriminate the actual reason for the behiavour of defragmentation?
Given that in this deployment history (and previous ones), storage disks analyze much more easily the fragmentation even when heavier with data than the system disk, Is it only the system disk that requires this effort or, like it is reported in…
Windows 10
Windows 10
A Microsoft operating system that runs on personal computers and tablets.
10,896 questions
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
asked 2024-05-24T11:13:46.91+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 26%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECD%3C/text%3E%3C/svg%3E)
Claus Debanker
21
Reputation points
answered 2024-05-27T08:51:03.88+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 9%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWL%3C/text%3E%3C/svg%3E)
Wesley Li
5,555
Reputation points
2 answers
Disk2VHD not starting
Hello forum, I downloaded disk2vhd from the official site. When I start disk2vhd64.exe as admin, I get the dialog to allow making changes to the hard drive, but afterwards nothing happens. Starting disk2vhd.exe results in "Error…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
asked 2022-07-23T09:18:05.603+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(22.400000000000002, 76%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJB%3C/text%3E%3C/svg%3E)
Johannes Bunte
1
Reputation point
commented 2024-05-24T12:21:11.69+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 22%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
r2db
0
Reputation points
1 answer
Bginfo and virtual computing
I'm having lots of network adapters show up, and "(null)"s in the related IP address, subnet mask, DHCP Server, etc. fields. I've already done the 'custom variable' thing with the test for IPEnabled=True, but these adapters may be 'real' in…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
asked 2022-01-16T17:45:38.8+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 86%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBB%3C/text%3E%3C/svg%3E)
Bryan Bentz
1
Reputation point
answered 2024-05-24T09:48:34.8733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 67%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EG%3C/text%3E%3C/svg%3E)
GreenEyedBoy
0
Reputation points
0 answers
Request for option to carry process creation detail fields into other Sysmon event types
In Sysmon "Process Create" events, the details are invaluable, but many times I have wished that at least key process creation details like CommandLine, ParentImage, ParentCommandLine, and Hashes, could be carried over to other event types that…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
asked 2024-05-22T20:25:15.41+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 31%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKB%3C/text%3E%3C/svg%3E)
Kevin Branch
0
Reputation points
asked 2024-05-22T20:25:15.41+00:00
Kevin Branch
0
Reputation points
0 answers
Can the tool 'streams.exe' regard "Scan inside symbolic links" as an optional parameter?
I tried to use the command "streams64.exe -s -d" or "streams.exe -s -d" in Administrator access in the user folder "C:\Users\<username>", However, here is a symbolic link…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(76.8, 97%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3E00%3C/text%3E%3C/svg%3E)
0 answers
Zoomit64 LiveZoom (Ctrl+4) displays a blank, black screen on a Dell XPS 17 9730.
On a Windows 11 23H2 22631.3593. Intel i7-3700H 2.40 GHz laptop, Zoomit64 Live Zoom displays a black screen. Displays are 2 x BenQ 27" monitors via Intel Iris Xe graphics and NVIDIA GeForce RTX 4050 laptop GPU. Connections are via digital DVI.
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,112 questions
asked 2024-05-20T12:18:54.79+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 36%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDR%3C/text%3E%3C/svg%3E)
Dave Romig Sr
0
Reputation points
asked 2024-05-20T12:18:54.79+00:00
Dave Romig Sr
0
Reputation points