Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
1 answer
Process Monitor doesn't seem to "work" with dev drives?
I recently moved over to using a Windows Dev Drive. I've become accustomed to using Process Monitor with File tracking to find open files but I can't seem to do this with Dev Drives?
Sysinternals
asked 2024-12-05T16:26:25.6533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 2%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
dovholuknf
1
Reputation point
answered 2025-02-14T18:10:08.48+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 33%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJE%3C/text%3E%3C/svg%3E)
John Erickson
0
Reputation points Microsoft Employee
0 answers
BUG: SDelete 2.05 prints contradictory message for switch -z.
When sdelete 2.05 runs with the switch -z switch it prints a progress message "Cleaning free space on...". When finished, it prints "... drive cleaned." I expected the messages to indicate that it was Zeroing, and had zeroed, the…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 77%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EI%3C/text%3E%3C/svg%3E)
0 answers
What does "The specified network name is no longer available" mean in psping?
"The specified network name is no longer available" is displayed if I include a -l in the command: C:\IT\PSTools>psping -l 32 52.96.110.34:443 PsPing v2.12 - PsPing - ping, latency, bandwidth measurement utility Copyright (C) 2012-2023 Mark…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
asked 2025-02-13T16:43:35.6933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 94%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFJ%3C/text%3E%3C/svg%3E)
Franklin, Jim
0
Reputation points
asked 2025-02-13T16:43:35.6933333+00:00
Franklin, Jim
0
Reputation points
1 answer
Sysinternals - ZoomIt v8.01 - Multi Screen Support - Feedback
Hello, I am a bit surprised by how difficult it is to find good/simple windows screen zooming tools. In a multiple monitor scenario I want zoom one monitors screen. I don't want scale, I don't want a magnifier window gobbling more screen space,…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
asked 2024-07-03T19:59:10.6733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 11%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHT%3C/text%3E%3C/svg%3E)
Heslington, Tony
0
Reputation points
commented 2025-02-13T15:51:37.79+00:00
Heslington, Tony
0
Reputation points
6 answers
One of the answers was accepted by the question author.
How/where does autoruns get startup info for a specific user? Seems broken.
Autoruns is returning data for wrong user: It is returning contents of /users/USER-1/appdata/roaming/microsoft/windows/start menu/programs/startup when USER is set to USER-2, not USER-1 in the dropdown USER option, and when logged in as USER-2 USER-2 who…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 88%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
2 answers
Process Monitor is showing impossibly old Timestamps for modules under \Windows\SysWOW64
When viewing process modules, I have noticed that many modules under C:\Window\SysWOW64 have impossibly old Timestamps, yet if you view the properties of a modules, they appear normal. I observed this on my test VM and also a customer's computer who sent…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
asked 2021-03-26T06:14:46.097+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(198.4, 74%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWU%3C/text%3E%3C/svg%3E)
Windows User
16
Reputation points
answered 2025-02-06T20:12:43.1633333+00:00
RLWA32
47,206
Reputation points
0 answers
Remote Desktop Connection Manager v 2.93.1431.0 won't start; crashing with KERNELBASE.dll module
I'm hoping there's an easy solution to my problem. Attempting to run Remote Desktop Connection Manager (2.93.1431.0) under Windows 11 Pro (23H2, OS Build 22631.4751). Event viewer shows it crashing with the following: Faulting application name:…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
asked 2025-02-04T18:16:32.16+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(57.599999999999994, 40%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ5%3C/text%3E%3C/svg%3E)
JosephK-5528
0
Reputation points
asked 2025-02-04T18:16:32.16+00:00
JosephK-5528
0
Reputation points
0 answers
BGInfo - Needs Support for Windows Server 2025
The latest version available of BGInfo does not have support for the new Windows Server 2025.
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
asked 2025-02-03T19:06:39.5666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 52%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC4%3C/text%3E%3C/svg%3E)
ChrisK-4772
10
Reputation points
asked 2025-02-03T19:06:39.5666667+00:00
ChrisK-4772
10
Reputation points
0 answers
Column sort not working on Process Monitor 4.1
Windows 7/Ent/32-bit: Column sort does not work on Process Monitor 4.1. I don't mean it isn't correctly configured. I mean it's not working. I can filter the log (PML) file and work on individual entries, but clicking on the column head does nothing.
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(57.599999999999994, 17%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EG%3C/text%3E%3C/svg%3E)
3 answers
How to securely use PSEXEC with a remote user and password from a batch file?
I use PSEXEC to administer many embedded Windows systems (no KVM) that are not part of our domain. (Think of a thermostat or freezer.) They use their own user/password that does not exist in our domain or locally. I use "PSEXEC -u user -p…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
asked 2024-07-18T02:53:39.1+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 59%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETW%3C/text%3E%3C/svg%3E)
Taed Wynnell
0
Reputation points
answered 2025-01-27T22:14:56.1+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(118.4, 9%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJG%3C/text%3E%3C/svg%3E)
Joseph Gordy
0
Reputation points
0 answers
Troubleshooting memory access violation in external module acroPDF.dll
Hello. I am experiencing apparently "random" crashes in a program, where the crash dump logs (analyed with WindDbg) indicate an memory access violation occuring in AcroPDF.dll. The last four function calls in the call stack are always…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
asked 2025-01-26T15:17:52.3766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(83.2, 57.99999999999999%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJP%3C/text%3E%3C/svg%3E)
Jarle Pahr
0
Reputation points
commented 2025-01-27T16:33:19.79+00:00
RLWA32
47,206
Reputation points
1 answer
ADMINISTRATION PROBLEM
So my mother originally set up an account on my computer which gives her administration. There are some applications I can't download or delete without permission, but the problem is: She forgot the password to it, and she said she can't reset it. I…
Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
3,003 questions
Microsoft Intune Security
Microsoft Intune Security
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
464 questions
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
asked 2025-01-18T07:16:02.73+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(195.2, 0%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
Caiden M
0
Reputation points
answered 2025-01-26T15:08:34.1833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 38%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
Marcin Policht
35,595
Reputation points MVP
0 answers
ZoomIt turn off system color inversion and lack multi-monitor support.
Means it don't support Windows Accessibility Color filter. It turn it off and draw only for current monitor
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 86%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EO%3C/text%3E%3C/svg%3E)
1 answer
Sysinternals TCPVIEW [Time Wait] what is it?
Hi all; decided to check out TCPVIEW from sysinternals today and discovered a ton of [Time Wait] i have found 0 answers online or anyone talking about this so i'm asking here; what does this mean?
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
asked 2025-01-13T18:47:06.4066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 85%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESB%3C/text%3E%3C/svg%3E)
scott brisley
0
Reputation points
answered 2025-01-23T19:16:01+00:00
Castorix31
86,981
Reputation points
1 answer
Procmon: When you filter to a registry path, do you need to specify the exact value?
In procmon, if you filter to a registry path like so: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Spooler Then change a value in this path, such as the "start" value, this change is not captured in Procmon. However, if you filter…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(288, 25%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAT%3C/text%3E%3C/svg%3E)
0 answers
ZoomIt 7.2 to 9.0: The mouse pointer disappears when I try to exit from the "Draw" mode while using "LiveZoom"
The mouse pointer disappears when I try to exit from the the "Draw" mode while using "LiveZoom". By double-clicking the right mouse button, the display exits both the Draw mode and the LiveZoom mode, returning to the normal…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
asked 2024-12-11T14:40:07.6433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(144, 92%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERM%3C/text%3E%3C/svg%3E)
Raffaele Mele
5
Reputation points
edited the question 2025-01-20T15:13:56.6033333+00:00
Raffaele Mele
5
Reputation points
0 answers
shellrunas : error launching application: Parameter is incorrect
After changing local policy to allow logon as a service for user account, shellrunas still errors: shellrunas : error launching application: Parameter is incorrect
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
asked 2025-01-17T17:41:49.6533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 75%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELT%3C/text%3E%3C/svg%3E)
Lyons, Todd
0
Reputation points
commented 2025-01-19T13:14:42.6233333+00:00
RLWA32
47,206
Reputation points
0 answers
Collecting msDS-LastSuccessfulInteractiveLogonTime Without Displaying Logon Data
How can the msDS-LastSuccessfulInteractiveLogonTime attribute be collected without enabling the "Display information about previous logons during user logon" Group Policy? This attribute is important for gathering interactive logon times for…
Windows
Windows
A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.
5,798 questions
Microsoft System Center
Microsoft System Center
A suite of Microsoft systems management products that offer solutions for managing datacenter resources, private clouds, and client devices.
1,074 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,887 questions
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
asked 2025-01-08T07:52:20.3266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 64%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAM%3C/text%3E%3C/svg%3E)
Adi Malyanker
65
Reputation points
edited a comment 2025-01-09T10:17:29.52+00:00
Simon Ren-MSFT
38,676
Reputation points Microsoft Vendor
0 answers
RDCMan with ts_redir will never disconnect
I'm having an issue with RDCMan when the remote system is a gateway and issues a redirect. Once RDCMan gets the redirect it will work, but I cannot disconnect. Any attempts to log out or disconnect result in RDCMan immediately reconnecting back to the…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
asked 2025-01-07T23:42:13.8433333+00:00
Jon Marnock
1
Reputation point
asked 2025-01-07T23:42:13.8433333+00:00
Jon Marnock
1
Reputation point
0 answers
Odd Sysmon Version numbers question, have you seen this before?
Hey Everyone, I've got a weird one to ask about today. We have Sysmon feeding into our SIEM, and when looking at the file version information the SIEM receives, we see some differing results that we are confused about. Some of the results for the…
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,200 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 84%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)