PRocesses: A B C D E F G H I J K L M N O P Q R S T U V W X Y Z 0 1 2 3 4 5 6 7 8 9
Dlls: A B C D E F G H I J K L M N O P Q R S T U V W X Y Z 0 1 2 3 4 5 6 7 8 9
Popular: svchost.exe | csrss.exe | rthdcpl.exe | spoolsv.exe | mrt.exe | lsass.exe | Home | Manufacturers | Top 1000

csrss.exe

batch or vbs forced BSOD

Is there a way is batch or vbs to force the blue screen of death to appear, or a forced crash. This can happen from stopping the process 'csrss.exe' but it wont close via simple batch or vbs script. How can this be done?

View Complete Forum Thread with Replies

Related posts for csrss.exe

See Related Forum Messages: Follow the Links Below to View Complete Thread

Is it possible to get the “Image Path Name” of csrss.exe which is a SYSTEM process?
Hunting down application errors coming from csrss.exe
batch or vbs forced BSOD
Is there a way to inject behavior to csrss.exe and modify/enhance windows console?
make a windows 7 machine crash on BSOD
What does the csrss.exe process do?
is ??c:windows path legitimate

csrss.exe: Is it possible to get the “Image Path Name” of csrss.exe which is a SYSTEM process?

The windows system process (in Windows 7 for this example) 'csrss.exe' runs as a SYSTEM process and when I go to get (programmatically, of course) the process list with pid, command line, and image path name I get no values for command line or image path name because Windows won't let you grab that information for a SYSTEM process (I believe).

Is there a way I can grab image path name from a SYSTEM process? Does Windows actually prevent you from doing this? Is there a workaround?

U

csrss.exe: Hunting down application errors coming from csrss.exe

I'm the maintainer of a legacy Delphi application. On machines running this program an Application Error appears sometimes with the caption referring to this Delphi app and a message like the following:


The instruction at '...' referenced memory at '...'. The memory could not be 'read'.

Click on OK to terminate the program.


Task Manager says the process belonging to this message box is csrss.exe. What would be a systematic way to find the root cause of this e

csrss.exe: batch or vbs forced BSOD

Is there a way is batch or vbs to force the blue screen of death to appear, or a forced crash. This can happen from stopping the process 'csrss.exe' but it wont close via simple batch or vbs script. How can this be done?

csrss.exe: Is there a way to inject behavior to csrss.exe and modify/enhance windows console?

I'm aware of Console2 and similar solutions, but I would really like to enhance every console window in my system. Any ideas?

csrss.exe: make a windows 7 machine crash on BSOD

I'm trying to write a windows debug utility and I would need to automatically crash a Windows machine and make a Blue Screen Of Death appear.

I can obviously kill the csrss.exe process from the task manager, but the command TASKKILL /F /IM csrss.exe in a .bat file doesn't work.

Is there another way to make a Windows machine crash on bsod? Maybe some external library able to kill any process.

I would prefer to use a command line approach since I'm more familiar with it.

csrss.exe: What does the csrss.exe process do?

What is the purpose of the csrss.exe (Client/Server Runtime Server Subsystem) on Windows?

Maybe someone could give a good explanation or pointers to documentation? Unfortunately Google results are pretty noisy when searching a core process of Windows.

The reason I'm asking is that I got a BSOD from my service application which seems to be related to the csrss.exe process, at least this is what the analysis of the memory dump shows:

PROCESS_OBJECT: 85eeeb70

IMAGE_NAME

csrss.exe: is ??c:windows path legitimate

I am going to check loading and memory path of process to find malicious processes. for example if csrss.exe is executaed from other path than windows/system32 would be considered malicious. But the result of volatility for common process such as csrss.exe is as follow:

loading path : ??C:WINDOWSsystem32csrss.exe

mapped path : WINDOWSsystem32csrss.exe

or for sms.exe I have

loading path : SystemRootSystem32smss.exe

mapped path : WINDOWSsystem32smss.

ntkrnlpa.exe: .NET AppDomain.Unload triggers runaway threads

I have an .NET 3.5 SP1 application that is an Excel Add-in. The application is split into a parent AppDomain (Excel's) and a child domain in which we load all of our dlls. When we wish to update our application, we unload the child domain, replace the files and reload it.

Unfortunately unloading the domain will activate 2 worker threads and they will start consuming CPU cycles (20-40%).

If I debug with VS 2010, at the moment before and after the AppDomain.Unload, there are no thre

taskmgr.exe: OutOfMemoryException when I hit 1GB

Does anyone know why I would get an OutOfMemoryException when TaskMgr.exe says my process is only taking up ~1GB of memory?

ekrn.exe: Disable Eset Smart Security using metasploit

Im trying to disable Eset Smart Security 7, in order to do this I have to shutdown his service ekrn.exe so I started with this:

sc queryex ekrn

SERVICE_NAME: ekrn
TYPE : 110 WIN32_OWN_PROCESS (interactive)
STATE : 4 RUNNING
(NOT_STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
WIN32_EXIT_CODE : 0 (0x0)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x0<

vb6.exe: VB6 Will not Create EXE file - But it use to?

I am trying to compile a VB6 project. On the File Menu it use to display MAKE PROJ1.EXE. Now it displays MAKE PROJ1. (note EXE is missing) The program runs fine in the IDE. I can start with full compile. I can even create a set up disk from the packaging and deployment wizard. I have a sucessful install, but the package will not run. There is no exe file. Other vb project compile just fine. Can anyone lend a hand????

wmplayer.exe: Current playing item in Windows Media Player (wmplayer.exe ver. 12)

Been trying this for a while now.
All solutions I've seen on the net don't seem to work, specially the really simple way to do it.


WMPLib.WindowsMediaPlayer c = new WMPLib.WindowsMediaPlayer();
IWMPMedia i = (IWMPMedia)c.currentMedia;


c.currentMedia is always null.

It seems that new WMPLib.WindowsMediaPlayer(); is always creating a new instance of the Windows Media Player.
First I thought it was the fact that I was running visual studio as Administrator, but

ielowutil.exe: How to filter between junk exe files and workable exe files

i got all the exe files now but the thing is x.x its giving me all the exes and now i have to filter between executable which run the required app and all junk executables.
like in internet explorer folder i have

C:Program FilesInternet Explorerieinstal.exe

C:Program FilesInternet Explorerielowutil.exe

C:Program FilesInternet Exploreriexplorer.exe

but i jst want iexplorer.exe file and for me all others are junk is there any way to filter between these?

servic~1.exe: Windows 7 Service Pack 1 .exe from existing install?

I find my internet to be un-reliable at the moment and to download the 1gb windows6.1-KB976932-X64.exe will take the best part of a day! I have SP1 installed on my computer but need to slipstream SP1 with my install disk so I can install windows on my new SSD - so I need the above .exe.

Is there a way to extract SP1 from an existing install so I don't have to download it?

opera.exe: Getting the program directory .net [closed]

How I can get the address of an installed application (browser) from .net code. For example, we want to run opera, so we need to get his address exe.

It must return 'C: Program Files (x86) Opera opera.exe' for this example.
?ould you tell me, about api to obtain the addresses of installed programs on widnows (x32-x64)

tcm.exe: How to run specific automation tests from testsuite using tcm.exe?

I have designed Coded UI tests in Visual Studio 2012. I have associated them with manual tests from Test Manager.


How to run only automation tests with priority = 1 from some test suite?
How to run only testcases which were marked failed by bugs in previous test runs?


I want to run tests using command line something like this:

tcm run /create /title:'Nightly Run' /planid:1 /suiteid:5 /configid:13 /settingsname:'<Name of your automated test settings>' /test

kernel32.dll: When you edit dll in memory, do other applications see changes?

Let's say I'm editing kernel32.dll code in memory with Cheat Engine. I want to ask, when I edit it, is there any chance that there are other programs using the same address space where that dll is loaded? Or does each process get separate copy of the dll and you can change it however you want, yet the only crashes that may occur will be for that process only?

Disclaimer
This web site and all information written here is for information purposes only, WITHOUT ANY VARANTY. YOU ARE USING THIS PAGES ON YOU OWN RISK. You should always verify the accuracy of information provided on this page. We pay a big attention to provide you with the correct information. However, many spyware and malware programs use filenames of usual, non-malware processes and DLLs. If we have included information about csrss.exe that is inaccurate, we would appreciate your help by getting us know about your user review. Also, web links to software and DLL vendors are provided just for your conform, and we cannot guarantee its accuracy nor relevance with DLL or process listed on this page. We are not affiliated with this pages. We are not responsible for misprints on this site or changes occured since this page was published. The product, software and operating system names mentioned on this web site, can be copyrighted and registered trademarks of their owners.

csrss.exe