aslgonzales

Can't suspend a process

Sat Apr 29, 2017 7:21 pm

I have a process that I want to suspend and when i try to suspend it it says "Unable to suspend GameMon64.des (PID 2680): Access is denied" when i do run the process hacker with administration rights, help?
 
User avatar
viksoftru
Posts: 436
OS: Win7 (Live! DVD), BSD

Re: Can't suspend a process

Sun Apr 30, 2017 6:30 pm

UAC enabled? If enabled then admin is have limited (virtual) rights.
 
User avatar
dmex
Posts: 1204
Location: Australia

Re: Can't suspend a process

Mon May 01, 2017 8:58 am

GameMon64.des is GameGuard anti-cheat... They inject DLLs into every process (including Task Manager, Process Explorer and Process Hacker) and hook multiple system APIs to make their anti-cheat 'invisible' by returning fake error codes such as STATUS_ACCESS_DENIED from those hooked functions (which is what you're experiencing).

It's incredibly dumb and the hooks they're using introduce system instability, performance issues and can be bypassed easily (especially on Win10).
 
sornam2
Posts: 1

Re: Can't suspend a process

Sun Jun 25, 2017 8:13 am

what you suggest to do drex , i pressed on the link below that you posted , but cant figure out what to do after .. , any help would be appreciated
 
User avatar
TETYYS
Posts: 465
OS: Win 7 x64

Re: Can't suspend a process

Wed Jul 12, 2017 9:29 pm

for rootkits as GameGuard, use anti-rootkit tools as GMER or any of those: http://www.kernelmode.info/forum/viewto ... &t=10&p=44

Who is online

Users browsing this forum: No registered users and 3 guests