Can someone help me I continue to test Polylogyx I can say t

Question

Can someone help me I continue to test Polylogyx I can say that on lightly loaded systems it works fine and even better than sysmon or something else that I have tried But on heavily loaded systems when I started testing in production I saw the problem The server crashed after 20 hours of work with polylogyx agent and was not available by any means until I rebooted it In errors I encountered the following events

Dervon · Answer

< OpenPlgx> Maybe you can help I don t know which way to dig anymore

OpenPlgx · Answer

Can you manually stop the services 1 sc stop plgx osqueryd 2 sc stop plgx cpt 3 sc stop vast 4 sc stop vastnw

OpenPlgx · Answer

Ignore any failures but verify that all the services have stopped by running sc query lt svc name gt

OpenPlgx · Answer

You might have to wait 10 15 seconds

OpenPlgx · Answer

once all the services are stopped try running only sc start plgx osqueryd and lets see if everything comes back to normal

Dervon · Answer

I had to reboot the server completely since it did not answer and was not available on the Rdp

Dervon · Answer

after reboot all back to normal But half hour ago second server with DC role got the same problem

Dervon · Answer

First server 20 hours before crash Second server ~ 21

Dervon · Answer

< OpenPlgx> maybe i can add this sequence for example to restart every 8 hours maybe this can helpto avoid this problem What you think

OpenPlgx · Answer

that can be one work around yes

Dervon · Answer

thank you sir i will try