FileMon and RegMon problem
I need to run FileMon and RegMon on a Domain pc, but getting an error that i need Debugging privelegue (i know i can set this in a local policy, but i rather not, since im testing some packages on the pc).
However, i found some old versions of RegMon 4.25 and FileMon 4.33 which i have no problems running. BUT they won't save the settings. When i want to exclude "SUCCESS" it just ignores it. However if i chose to Highlight "SUCCESS" it works fine, this counts for both of them
Anyone who can help me in a tight spot?
However, i found some old versions of RegMon 4.25 and FileMon 4.33 which i have no problems running. BUT they won't save the settings. When i want to exclude "SUCCESS" it just ignores it. However if i chose to Highlight "SUCCESS" it works fine, this counts for both of them
Anyone who can help me in a tight spot?
0 Comments
[ + ] Show comments
Answers (3)
Please log in to answer
Posted by:
Bartesque
18 years ago
yes, i am - setting LoadDriverPrivilege and DebugPrivilege, which works fine for the new versions until policies are run again - but those privileges do no difference for the old versions - i was wondering if you cant exclude actions in the old versions
Posted by:
revizor
18 years ago
I normally kick off those utilities remotely through psexec (from sysinternals.com) - this way, I launch them under SYSTEM account, which bypasses pretty much all the restrictions on a computer. Make sure you specify interactive mode. Not the easiest way, but you can script it later. See if it helps you.
Rating comments in this legacy AppDeploy message board thread won't reorder them,so that the conversation will remain readable.