David Overton's Blog and Discussion Site
This site is my way to share my views and general business and IT information with you about Microsoft, IT solutions for ISVs, technologists and businesses, large and small. I specialise in Windows Intune and SBS 2008.
This blog is purely the personal opinions of David Overton. If you can't find the information you were looking for e-mail me at admin@davidoverton.com.

To find out more about my Windows Intune BOOK - Microsoft Windows Intune 2.0: Quickstart Administration click here

To find out more about my SBS 2008 BOOK - Small Business Server 2008, Installation, Migration and Configuration click here

Microsoft acquired Win Internals (SysInternals.com)
David Overton's Blog

Buy my books

Windows Intune:Quickstart Administration


This is the RAW book (Read as Written).
Click here for more information
Buy or pre-order today

SBS 2008 - Installation, Migration and Configuration

Small Business Server 2008 – Installation, Migration, and Configuration

Buy today in book or e-book form

Request a Review Copy

Twitter

Syndication

 

http://www.microsoft.com/presspass/press/2006/jul06/07-18WinternalsPR.mspx

This is a bit of old news, but I have not reported it.  There has always been a set of amazing tools that were usable to diagnose inside Windows, they were sold from a company called WinInternals, who then produced a set of free tools on the web site http://www.sysinternals.com. These tools I normally use are below.  I use them for those questions like "what file is failing to load", or "where is it looking in the registry" or "what process is using all the CPU". 

Filemon
This monitoring tool lets you see all file system activity in real-time.

MoveFile
Schedule file rename and delete commands for the next reboot. This can be useful for cleaning stubborn or in-use malware files.

PageDefrag
Defragment your paging files and Registry hives!

PendMove
See what files are scheduled for delete or rename the next time the system boots.

Autoruns
See what programs are configured to startup automatically when your system boots and you login. Autoruns also shows you the full list of Registry and file locations where applications can configure auto-start settings.

Process Explorer
Find out what files, registry keys and other objects processes have open, which DLLs they have loaded, and more. This uniquely powerful utility will even show you who owns each process

TCPView
See all open TCP and UDP endpoints. On Windows NT, 2000 and XP TCPView even displays the name of the process that owns each endpoint. Includes a command-line version, tcpvcon.

Regmon
This monitoring tool lets you see all Registry activity in real-time.

Winobj
The ultimate Object Manager namespace viewer is here.

Enjoy the tools and expect to see more as these become MS items.

ttfn

David


Posted Fri, Sep 15 2006 2:12 PM by David Overton

Add a Comment

(optional)  
(optional)
(required)  
Remember Me?

(c)David Overton 2006-13