Re: [Vol-users] Trouble using certain commands on Win7SP1x64 memory dump

Good afternoon, I'm having a bit of trouble using Volatility for memory forensics with the goal of malware detection. I've captured a memory dump of a Windows 7 SP1 x64 machine using winpmem_1.5.5.exe and am using the 2.3.1 standalone variant of Volatility on a Windows 7 SP1 x64 machine. When i issue commands such as 'connections' , 'connscan' , 'sockets' i get the error "This command does not support the profile Win7SP1x64." I've also tried Volatility Standalone 2.3 and 2.2. Any explanation would be greatly appreciated. Thanks! _______________________________________________ Vol-users mailing list Vol-users(a)volatilityfoundation.org http://lists.volatilityfoundation.org/mailman/listinfo/vol-users