Process Hacker and Windows discussion

 
aslgonzales

Can't suspend a process

29 Apr 2017, 19:21

I have a process that I want to suspend and when i try to suspend it it says "Unable to suspend GameMon64.des (PID 2680): Access is denied" when i do run the process hacker with administration rights, help?
 
User avatar
viksoftru
Member
Posts: 486
OS: Win7 (Live! DVD), BSD

Re: Can't suspend a process

30 Apr 2017, 18:30

UAC enabled? If enabled then admin is have limited (virtual) rights.
 
User avatar
dmex
Admin
Posts: 1311
Location: Australia

Re: Can't suspend a process

01 May 2017, 08:58

GameMon64.des is GameGuard anti-cheat... They inject DLLs into every process (including Task Manager, Process Explorer and Process Hacker) and hook multiple system APIs to make their anti-cheat 'invisible' by returning fake error codes such as STATUS_ACCESS_DENIED from those hooked functions (which is what you're experiencing).

It's incredibly dumb and the hooks they're using introduce system instability, performance issues and can be bypassed easily (especially on Win10).
 
sornam2
New User
Posts: 1

Re: Can't suspend a process

25 Jun 2017, 08:13

what you suggest to do drex , i pressed on the link below that you posted , but cant figure out what to do after .. , any help would be appreciated
 
User avatar
TETYYS
Plugin Developer
Posts: 479
OS: Win 10 x64

Re: Can't suspend a process

12 Jul 2017, 21:29

for rootkits as GameGuard, use anti-rootkit tools as GMER or any of those: http://www.kernelmode.info/forum/viewto ... &t=10&p=44

Who is online

Users browsing this forum: Baidu and 8 guests