Updates: Autoruns v12.0, Procdump v7.0

Published Jun 27 2019 12:02 PM 374 Views
Microsoft
First published on TechNet on May 13, 2014


Autoruns v12.0 : This release of Autoruns, a Windows application and command-line utility for viewing autostart entries, now reports the presence of batch file and executable image entries in the WMI database, a vector used by some types of malware.



Procdump v7.0 : Procdump, a utility for capturing process dump files based on CPU, memory, and other triggers, has improved support for lightweight reflection dumps on Windows 7 and Windows 8, adds debug print statements as a new trigger type, has support for memory commit duration triggers, and now includes an option to unregister Procdump as the system last-chance exception debugger.



%3CLINGO-SUB%20id%3D%22lingo-sub-726019%22%20slang%3D%22en-US%22%3EUpdates%3A%20Autoruns%20v12.0%2C%20Procdump%20v7.0%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-726019%22%20slang%3D%22en-US%22%3E%0A%20%26lt%3Bmeta%20http-equiv%3D%22Content-Type%22%20content%3D%22text%2Fhtml%3B%20charset%3DUTF-8%22%20%2F%26gt%3B%3CSTRONG%3E%20First%20published%20on%20TechNet%20on%20May%2013%2C%202014%20%3C%2FSTRONG%3E%20%3CBR%20%2F%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%3CP%3E%3CA%20href%3D%22http%3A%2F%2Ftechnet.microsoft.com%2Fen-us%2Fsysinternals%2Fbb963902%22%20title%3D%22Autoruns%20v12.0%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EAutoruns%20v12.0%20%3C%2FA%3E%20%3A%20This%20release%20of%20Autoruns%2C%20a%20Windows%20application%20and%20command-line%20utility%20for%20viewing%20autostart%20entries%2C%20now%20reports%20the%20presence%20of%20batch%20file%20and%20executable%20image%20entries%20in%20the%20WMI%20database%2C%20a%20vector%20used%20by%20some%20types%20of%20malware.%3C%2FP%3E%3CBR%20%2F%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%3CP%3E%3CA%20href%3D%22http%3A%2F%2Ftechnet.microsoft.com%2Fen-us%2Fsysinternals%2Fdd996900%22%20title%3D%22Procdump%20v7.0%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EProcdump%20v7.0%20%3C%2FA%3E%20%3A%26nbsp%3BProcdump%2C%20a%20utility%20for%20capturing%20process%20dump%20files%20based%20on%20CPU%2C%20memory%2C%20and%20other%20triggers%2C%20has%20improved%20support%20for%20lightweight%20reflection%20dumps%20on%20Windows%207%20and%20Windows%208%2C%20adds%20debug%20print%20statements%20as%20a%20new%20trigger%20type%2C%20has%20support%20for%20memory%20commit%20duration%20triggers%2C%20and%20now%20includes%20an%20option%20to%20unregister%20Procdump%20as%20the%20system%20last-chance%20exception%20debugger.%3C%2FP%3E%3CBR%20%2F%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%3CP%3E%3C%2FP%3E%0A%20%0A%3C%2FLINGO-BODY%3E%3CLINGO-TEASER%20id%3D%22lingo-teaser-726019%22%20slang%3D%22en-US%22%3EFirst%20published%20on%20TechNet%20on%20May%2013%2C%202014%20Autoruns%20v12.%3C%2FLINGO-TEASER%3E%3CLINGO-LABS%20id%3D%22lingo-labs-726019%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3Eautoruns%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Eprocdump%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Version history
Last update:
‎Jun 27 2019 12:02 PM
Updated by: