Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

NT Kernel & System

NT Kernel

  • Please log in to reply

#1
joseph456

joseph456

    Member

  • Member
  • PipPipPip
  • 379 posts

NT Kernel is constantly running.  How can I find out what it is connected to and why it is running?


Edited by joseph456, Yesterday, 07:26 PM.

  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 23,305 posts
  • MVP

https://helpdeskgeek...age-in-windows/


  • 0

#3
joseph456

joseph456

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 379 posts

Thanks I saw that.  However, not sure how to run it in Windows 7 since it seemed like it was only good for XP?  Or maybe I am not sure how to run it in command line.  I downloaded the program but not sure what to do next.


  • 0

#4
RKinner

RKinner

    Malware Expert

  • Expert
  • 23,305 posts
  • MVP

Sorry didn't catch that KernView only ran on XP.  Use Process Explorer instead.
 Get Process Explorer

https://live.sysinte...com/procexp.exe

Save it to your desktop then run it (Vista or Win7+ - right click and Run As Administrator).  

View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures


 Click on System then right click and select Properties then Threads and it should show you what is running in System.  They should be sorted by CPU use so the big users are at the top.  You can select one then hit Module and it will tell you what driver you are looking at.

 

 

An alternative is Latency Monitor:

 

Go to

http://www.resplendence.com/downloads

Scroll down to

System Monitoring Tools

and then find

LatencyMon 6.70 (or it may be a higher number if they update)

Click on Download free home edition

Save it then right click and Run As Admin.  It will install and then start the program.  
It will tell you to click on the Start button but there isn't one.  
Instead click on the green arrowhead (looks like a Play button).   Let it run for at least 20 seconds.  Then hit the red box to stop it.

Edit, Copy Report text to Clipboard then move to a REPLY and Ctrl + v to paste the text into a reply.  


Click on the Drivers Tab.  Click on the column header for "Total execution (ms)" once or twice until the biggest numbers are at the top of the column then take a screen shot (save as type jpg) and attach it.  
Click on the Processes tab then click on the  "Hard Pagefaults" column header once or twice until the big numbers are at the top of the column.  Take a screen shot (save as type jpg) and attach it.


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP