Network analysis feature in Process Monitor

Process Monitor from Windows Sysinternals, part of Microsoft’s Server and Tools division, combines the best of familiar but now extinct tools. By extinct I mean deprecated or no longer supported. The warranty* expired.

image
Windows 8 PC running Process Monitor
image
Events with a highlight filter applied
image
Time of Day and Process Name columns
image
Right-click menu

The context-sensitive [right-click] menu allows you to highlight a specific number of rows (events displayed horizontally) with only a particular column match highlighted. The example above is right-clicking on the Operation column of a particular row.

image
PID, Operation, and Result are columns in photo

But how Process Monitor combines all is just the start. They also allow you to filter. My favorite part of the toolbar in Process Monitor is the

image

image
All five turned on except “profiling”, the default settings
To filter out just the network traffic, click on each highlighted box to deselect except this highlighted icon in the photo below:image
Show Network Activity icon

Then turn on the Autoscroll feature, off by default:

image
Autoscroll (Ctrl+A)

Allowing you to get a real-time,scrolling, network [event] trace like this:

image

Just remember to turn on the other three show buttons (file, registry, process). Don’t turn Profiling on, unless you want more data. Refer to the onboard [F1] Process Monitor help.

For more information on support lifecycle, and how to download Process Monitor, refer to the references section below:

References

URLs
*Microsoft Support lifecycle website
Windows Sysinternals

Podcast for IT Professionals

This Week in Enterprise Tech on TWiT.TV is a great weekly podcast covering technology trends in the enterprise with a panel of key contributors. Some remote via IPTV. Some in studio with the presenter.

The presenter also has a blog called TheTechStop.

The Podcast [metro] app, available from the Microsoft Store app in Windows 8, is what I use typically to watch these. Although if you go to the Podcasts section of the Libraries node in the navigation pane of Windows Explorer also known as File Explorer in Windows 8.

image
Libraries node in Navigation Pane

Here you’ll find the actual MPG, WMV, AVI, etc, file that you can play in Windows Media Player or whatever application you have associated to play the relevant video file.

Continue reading

Cross-site scripting message in notification bar

Very common message. I’ve been seeing this for a while. Pops up at the bottom of the Internet Explorer window. In the notification bar.

image

image

The hyperlink (URL) that I had opened to trigger the above message is the following:

http://electronics.howstuffworks.com/gadgets/other-gadgets/10-gadgets-that-will-make-dads-day.htm

I’m pretty sure that http://www.howstuffworks.com or http://howstuffworks.com (without the www.) was added to the Trusted Sites zone but fairly certain that http://electronics.howstuffworks.com is not.

I tried adding the following URL to the Trusted Sites zone in Internet Explorer 10.

http://electronics.howstuffworks.com

imageTools, Internet Options, Security tab, Trusted Sites, Sites, Add button

In my case, the address http://electronics.howstuffworks.com is pre-populated (already there) in the Add this website to the zone box. So I just had to click the Add button and the Close button in the lower right of the Trusted Sites dialog box.

image

Then OK:

image

image
Result
Same message

Internet Explorer has modified this page to help prevent cross-site scripting.


If you’re in a corporate, locked down environment, the only thing you can do at this point is modify the Internet Explorer settings. But many organizations do control or govern their systems, including Windows and its native web browsing application, Internet Explorer. The best thing I can offer to any end-user (information worker) having this message is to simply click on the x on the right of the message bar at the bottom of Internet Explorer.

Search

Bing

internet explorer 9 messages at bottom

Answer

Internet Explorer 9 Notification bar: frequently asked questions

Can I ignore notifications?

Yes. The bar might be displayed until you navigate to a new webpage or click the Close button. For notifications involving security or privacy, Internet Explorer automatically takes the most secure action, and allows you to take less secure actions if you’re confident they won’t put your computer or information in danger.

Solution

image

Click the x to ignore the message and close the notification bar. The bar should [I think] also simply close itself if you do nothing, within like 5-10 seconds.

Forum

Microsoft Answers

How do I prevent Internet Explorer from modifying pages for cross-site scripting? Under the security tab for IE8 there is a new Scripting Section for XSS Filter, Disable it and the issue goes away.

 

I don’t ever touch this setting unless there’s some business justification or an RFP (request for proposal) outlining why it’s feasible to disable that setting. However, if you’re not at work and just in the context of a home computer, not used for business, then I’d suggest do it only if you understand what it does.

For more on the [Cross Site Scripting] XSS Filter, read the following articles:

More Information


MSDN Library

Event 1046 – Cross-Site Scripting Filter

Administrators


Windows Help

Cross-site scripting filter

Information workers, home, and end-users