Windows 10: Processes with elevation terminated randomly?
Processes with elevation terminated randomly?
Lately, I've been experiencing a weird and new problem: Programs I run with elevation (i.e. as Administrator) have been randomly terminated. I'm not sure why this is happening. Is this a new Windows 10 security feature?
Examples: I run Process Hacker with elevation to access all its features and allow for services to be stopped, processes to be killed, etc. But Process Hacker is one of the applications that is itself being terminated somehow at seemingly random intervals. It will be running, tray icons and all, then suddenly be terminated. I won't know it has been killed until I move the mouse cursor over its tray icons, which disappear as soon as I do.
There are several other examples of programs I always run with elevation. They are all being terminated at the same time, but I'm not doing it. It's pissing me off.
Nothing jumps out at me in the event logs.
Is this a new Windows 10 security feature?
Do you have the same problem with Task Manager or Regedit?
Process Hacker is one of the applications that is itself being terminated
I can run task manager and regedit just fine. But, my antivirus has suddenly started having issues as well. Too many malware red flags. I'm going to restore from a backup from about a week ago.
Yeah, it's likely malware terminating these processes and it's strange that they targeted Process Hacker but not built-in tools.
If you still have issues with Process Hacker being terminated, just send me a PM and I'll link you a custom build that bypasses the detection used by the malware (I'm one of project maintainers: About - Process Hacker).
I recognized your nick, couldn't remember where. Well I appreciate your work; PH is one of a very few applications I refuse to do without. I work for a huge company and was on a call with a guy from China, sharing my screen, and he saw that I was running PH. He recognized it, and said "That's a really nice utility." Not far from home I realize. /End of boring story.
Anyway, I restored from a full image backup. Scanned with F-Secure online scanner, came back clean. Scanning with Eset online scanner and HouseCall now (taking forever). Scanned with MBAM, which (as always) found nothing. Anything else I should do? I'm not seeing the find-hidden-process function in PH anymore.
PS wtf is that avatar
Last edited by meh; 26 Feb 2016 at 22:49.
Anything else I should do?
I see that you and dmex are working on a solution, but I was wondering about the Reliability History? That should show the red warnings, with an option to find a solution. I saw that you already looked over the Event Log, so perhaps this won't show anything additional, but just a thought.
PS- Article is for Win-8, but it's the same.
Before I restored, the event log wasn't really showing anything, but that's the weird bit... It did have a bunch of unusual entries about the logs being full or something, but none of the usual stuff I'm used to seeing. At least some of the logs wouldn't seem to open at all. At the time, I thought the scumbag malware may have been doing that to prevent the use of event logs as a diagnostic measure, but I'm not sure.
I have seen this question asked before and attempted a few solutions. Fixing computer problems is not my forte and I would really like an easy to followed solution. I have downloaded the program Apache OpenOffice 4.1.2. It has converted most of my...
The Windows Image Acquisition (WIA) service terminated unexpectedly. It has done this 1 time(s).
That's the Event Viewer error message at every reboot (appears to occur during the shutdown phase).
There is a concurrent fault listed for the...
I hate appearing stupid, but it is the only way I learn...
I have two user accounts on this computer, one as Administrator and the other as, well, let's call it "me".
Both are Administrator accounts.
So why is it that I regularly am either...
Since moving to 10 I receive the following every time I open up Live Mail. "Your serer has unexpectedly terminated the connection."
Additionally up comes, "Windows Live Mail moving messages." This goes on for a long time. It eventually says, "the...
whenever i try to enter my account info to run a file as an admin, it gives me the error that "this operation requires elevation." any ideas?