-
Recent Posts
Archives
- May 2024
- June 2023
- May 2023
- February 2023
- January 2023
- November 2022
- October 2022
- September 2022
- July 2022
- February 2022
- January 2022
- December 2021
- November 2021
- September 2021
- August 2021
- July 2021
- June 2021
- May 2021
- March 2021
- February 2021
- November 2020
- September 2020
- August 2020
- May 2020
- April 2020
- March 2020
- January 2020
- August 2019
- July 2019
- February 2019
- January 2019
- November 2018
- October 2018
- August 2018
- July 2018
- September 2017
- June 2017
- May 2017
- April 2017
- March 2017
- December 2016
- October 2016
- August 2016
- July 2016
- April 2016
- March 2016
- November 2015
- October 2015
- September 2015
- August 2015
- July 2015
- June 2015
- April 2015
- February 2015
- November 2014
- October 2014
- September 2014
- August 2014
- July 2014
- June 2014
- May 2014
- April 2014
- March 2014
- February 2014
- January 2014
- December 2013
- November 2013
- October 2013
- September 2013
- August 2013
- June 2013
- May 2013
- April 2013
- March 2013
- February 2013
- January 2013
- November 2012
- October 2012
- September 2012
- August 2012
- July 2012
- June 2012
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- December 2011
- November 2011
- October 2011
- September 2011
- August 2011
- July 2011
- June 2011
- May 2011
- April 2011
- March 2011
- February 2011
- January 2011
- November 2010
Categories
- .NET
- 16-bit
- 64-bit
- Active Directory
- Adobe
- API Monitor
- App-V
- AppCompat
- Application Compatibility
- AppSense
- AutoIT
- Batch Files
- Book Review
- Bootcamp
- C#
- Chrome
- Citrix
- Click2Run
- Command Line
- ConfigMgr
- Debugging
- Deployment
- eDirectory
- Excel
- Explorer
- Fiddler
- Group Policy
- Hack
- Hacking
- Hyper-V
- IDA
- IIS
- IL
- Internet Explorer
- Java
- Language
- LDAP
- Linux
- Logon
- Lotus Notes
- Lync
- MacOS
- Microsoft Access
- Microsoft Edge
- Migration
- Mobility
- MSIL
- Network
- Network Monitor
- NMap
- Novell
- Office
- PacDbg
- Patching
- PerfMon
- Performance
- Power
- PowerShell
- Privacy
- ProcExp
- ProcMon
- Random
- Reflexil
- Registry
- Remote Support
- Reverse Engineering
- SCCM
- Scripting
- Search Engines
- Security
- Server 2008 R2
- SharePoint
- Social Network
- Sorting It All Out
- SQL
- Sys
- SysInternals
- Tools
- Troubleshooting
- Uncategorized
- USMT
- Virtualization
- VMWare
- Win32
- WinDbg
- Window
- Windows 10
- Windows 7
- Windows 8
- Windows 8.1
- Windows PE
- Windows Performance Recorder
- Windows Performance Toolkit
- Windows Phone
- Windows XP
- WireShark
- WMI
- Zune
Meta
-
Join 104 other subscribers
@chentiangemalc
Tweets by chentiangemalc
Category Archives: 64-bit
Experimental Use of 64-bit Dump of 32-bit .NET Process in WinDbg
A .NET dmp file is typically best captured as 32-bit for 32-bit process. On x64 system this could be using the 32-bit task manager (C:\windows\syswow64\taskmgr.exe), WinDbg (x86), or a tool like ProcDump (http://live.sysinternals.com/ProcDump.exe ) However what if a 32-bit .NET … Continue reading
Launching .NET EXE extracted from Memory DMP
Using the SOS debugging extension (http://msdn.microsoft.com/en-us/library/bb190764(v=vs.110).aspx) we can easily save modules in a .NET memory dump. I wanted to do some runtime analysis of an EXE, but I only had dmp file. 0:000> .load C:\windows\microsoft.net\Framework64\v2.0.50727\sos.dll0:000> lmv m qfbox2start end module … Continue reading
Case of the Invalid Base Key Error
Continuing my series on .NET patching – refer to https://chentiangemalc.wordpress.com/2014/05/19/case-of-the-net-service-hang-patching-webclient-operation-timed-out/ for the previous articles more of an overview of using some of the tools described. A “front end” application that was used to launch another application was failing to launch … Continue reading
Posted in .NET, 64-bit, Application Compatibility, Debugging, Hacking, Patching, Reflexil, WinDbg, Windows 7
2 Comments
Case of the Totally Broken TrustedInstaller
On a group of Windows 7 x64 machine the TrustedInstaller service, listed in Windows Services as the “Windows Module Installer Service”, was failing to start: We also saw evidence in the Application Event log with errors like: Faulting application name: … Continue reading
Posted in 64-bit, AppSense, Debugging, ProcMon, Windows 7
Tagged WinDbg TrustedInstaller AppSense
6 Comments
Case of the Incorrect Side-by-Side Configuration
So I had downloaded the latest version of BIND DNS server for Windows from http://www.isc.org/downloads as I wanted to have an up-to-date version of DNS diagnosis tool dig to be available. However if you just tried running dig.exe by itself … Continue reading
Posted in 64-bit, Application Compatibility, ProcMon, SysInternals, Windows 7
Tagged Side-by-Side DNS dig Win7 x64
9 Comments
Creating a Single .EXE when you need a separate .EXE to run on x86 and x64 Platforms
Sometimes you may have separate .EXEs to run whether on x86 (32-bit) or x64 (64-bit) platforms. Reasons for this are often around the need to access the native 64-bit registry location i.e. HKLM\SOFTWARE without getting redirected to HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node…But sometimes having … Continue reading
chentiangemalc 