Windows 10 SearchUI.exe

ExPx · Post by **ExPx** » Mon Dec 24, 2018 3:14 pm

Thanks madshi for information. I added most of them in exclude list temporarily. I will also do a enumeration for suspended apps and kill them before uprate hook dll.

Post by **madshi** » Mon Dec 24, 2018 5:32 pm

You could also use the latest build and *not* use the INJECT_METRO_APPS flag when calling InjectLibrary(). But of course that will include *all* Metro apps. That's probably not what you want?

ExPx · Post by **ExPx** » Thu Dec 27, 2018 2:06 pm

Disabling INJECT_METRO_APPS is not an option becuse of MS Edge hooking. I will try to terminate suspended metro apps while updating hook dll.

Post by **madshi** » Thu Dec 27, 2018 4:13 pm

Well, you could do one injection for all processes except Metro processes, and a 2nd injection just for Edge?

Post by **iconic** » Sat Dec 29, 2018 8:03 am

Might be worth looking into the IPackageDebugSettings COM interface and exposed Resume() method below:

https://docs.microsoft.com/en-us/window ... ngs-resume

--Iconic

Post by **madshi** » Mon Dec 31, 2018 11:24 am

Thank you, iconic - that looks really promising!!

ExPx · Post by **ExPx** » Mon Dec 31, 2018 2:08 pm

Thanks iconic. I will try it.

Post by **iconic** » Mon Dec 31, 2018 7:48 pm

I haven't tried it myself so I've no idea if it will even work but as Madshi mentioned it does appear to look somewhat promising. Here's to hoping

--Iconic

raners · Post by **raners** » Wed Feb 13, 2019 2:41 pm

Can anyone expose to us if this method is working (to resume suspended processes)?

madshi.net

Windows 10 SearchUI.exe

Re: Windows 10 SearchUI.exe

Re: Windows 10 SearchUI.exe

Re: Windows 10 SearchUI.exe

Re: Windows 10 SearchUI.exe

Re: Windows 10 SearchUI.exe

Re: Windows 10 SearchUI.exe

Re: Windows 10 SearchUI.exe

Re: Windows 10 SearchUI.exe

Re: Windows 10 SearchUI.exe