ProcMon | ProcMon from https : //pikacode.com/balrak/ProcMon/

I can create non-permanent WMI event queries in script, such as this one, which logs the PIDs of the next 5 new Notepad.exe processes:

I have code that performs following steps:

1. open file
2. write data
3. set file timestamps (via SetFileInformationByHandle(FileBasicInfo))
4. close file

When file is stored on certain NAS devices (and accessed via share) it's modification time ends up being set to current time.

According to Process Monitor Close() in step 4 results in a Write (local cache gets flushed/pushed to NAS device) that (seemingly) updates file's mtime on server.

If I add FlushFileBuffers() (or sleep for few seconds) between steps 2 and 3 -- everything is fine.

Is this a bug in SMB implementation of this NAS device (Dell EMC Isilon) or SetFileInformationByHandle() never promised anything?

What is the best way to deal with this situation? I would really like to avoid having to call FlushFileBuffers()...

Edit: Great... :-/ It looks like for executables (and only executables) atime (last access time) gets screwed up too (in the same way). Only these are harder to reproduce -- need to run this logic few times. Could be some antivirus... I am still investigating.

Edit 2: According to procmon access time gets updated by EXPLORER.EXE -- when it sees an executable, it can't resist opening it and reading portions of it (probably extracting the icon).

i have a script that check the input link, if it's equivalent to one i specified in the code, then it will use my code, else it open the link in chrome.

i want to make that script kind of as a default browser, as to gain speed compared to opening the browser, getting the link with an help of an extension and then send it to my script using POST.

i used procmon to check where the process in question query the registry key and it seem like it tried to check HKCU\Software\Classes\ChromeHTML\shell\open\command so i added a some key there and in command, i edited the content of the key with my script path and arguments (-- %1)(-- only here for testing purposes) unfortunately, once the program query this to send a link, windows prompt to choose a browser instead of my script, which isn't what i want. Any idea?

I am using Sysinternals Process Monitor to debug some incoming events and now I am trying to create a filter on Path and using wildcards. What I am trying to use is to filter path which begin with c:\MyApp\MyDocuments\Temp and ends with .pdf

Path filter should look like this: c:\MyApp\MyDocuments\Temp*.pdf

How can I do this?

I am using Sysinternals Process Monitor to debug some incoming events. Now I am trying to create a filter on 'Time Of Day' in order to filter those incoming events which time is greater than an specific time.

For example, If I want to obtain those incoming events which time is greater than '13:30' how can I do this?

Note, that I am not talking about msbuild output verbosity, but about devenv - the IDE:

It uses registry for that. However, in VS 2015 the registry keys were clear and the following simple script did the job:

background: I have a PHP script which calls shell_exec. For the moment i just want to test that it works and am running a basic command through it. Separate copies of the same script exist in two separate webapps on the same server. Both apps' anonymous authentication are set to IUSR.

Here is the example code:

I have npm and node installed (tried NVM for Windows and direct installations).

When running 'npm -v' or 'node -v' in Git Bash everythings works fine. But when I try to run 'npm run dev' (or any other command) the output says that 'node command is not recognized'.

In other shells (CMD/Powershell) everything works fine.

I've checked Path variable in Windows, Path variable in Git Bash, everything seems to be correct.

Error screenshot Path variable screenshot

Path variables cmd/procmon

Any help appreciated.

p.s. While I was trying to find an answer I saw the same question from @jameseg , maybe if he sees this one he could help.

I have an Outlook Add-in(under development) which was working fine on my old system. I decided to migrate to a new system(for better performance), when I have done so(IN DEBUG MODE), I saw that after some time the Add-in is not visible in Outlook(neither in COM AND disabled window).

Specifications I am using:

• System type is 64-bit OS, x64-based processor

• Microsoft Visual Studio Community 2019 Version 16.5 with .NET framework 4.7.2

• Microsoft Office 365(16.012730.20144) 32-bit

Troubleshoots I tried:

1) Checked Build Office solutions, for verifying all items are generating and working properly.

• Registry entry is generating correctly.
• VSTO file(bin/debug) is getting installed successfully(when I manually double click that)

2) Troubleshooting by Event Viewer:

No error's related to Outlook(as a source).

Possibly related error's:

i) Source - DistributedCOM : The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} and APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

ii) Other Errors are from source PerfNet and NDIS(Which I suppose is not related to this topic)

3) Troubleshooting by Process Explorer:

Their is no outlook Add-in DLL present in process explorer.

4) Troubleshooting by Process Monitor:

I am new with procmon, so just used some basics like, applied a filter with Outlook process name(including registry, file system, Network, process and thread activities). And the results were SUCCESS, BUFFER TOO SMALL, NAME NOT FOUND, NO MORE ENTERIES other. Their was nothing I can relate with my issue.

Other Information

• After this issue, I made a same new project and it worked fine, but the same happened(Add-in not visible) after some time. And I have done this(Created new project) four times till now. What I observed is, when I create a new Add-in with same name, the issue is same, so I have to choose different name every-time.

I am not able to find any error description for this. So can anybody please tell me what is the issue here OR how I can troubleshoot more(with above tools or new one).

Thanks in advance.