Book description
Get in-depth guidance—and inside insights—for using the Windows Sysinternals tools available from Microsoft TechNet. Guided by Sysinternals creator Mark Russinovich and Windows expert Aaron Margosis, you’ll drill into the features and functions of dozens of free file, disk, process, security, and Windows management tools. And you’ll learn how to apply the book’s best practices to help resolve your own technical issues the way the experts do.
Diagnose. Troubleshoot. Optimize.
Analyze CPU spikes, memory leaks, and other system problems
Get a comprehensive view of file, disk, registry, process/thread, and network activity
Diagnose and troubleshoot issues with Active Directory
Easily scan, disable, and remove autostart applications and components
Monitor application debug output
Generate trigger-based memory dumps for application troubleshooting
Audit and analyze file digital signatures, permissions, and other security information
Execute Sysinternals management tools on one or more remote computers
Master Process Explorer, Process Monitor, and Autoruns
Table of contents
- Windows® Sysinternals Administrator’s Reference
- Dedication
- Foreword
- Introduction
-
I. Getting Started
- 1. Getting Started with the Sysinternals Utilities
- 2. Windows Core Concepts
-
II. Usage Guide
-
3. Process Explorer
- Procexp Overview
- Main Window
- DLLs and Handles
- Process Details
- Thread Details
- Verifying Image Signatures
- System Information
- Display Options
- Procexp as a Task Manager Replacement
- Miscellaneous Features
- Keyboard Shortcut Reference
-
4. Process Monitor
- Getting Started with Procmon
- Events
- Filtering and Highlighting
- Process Tree
- Saving and Opening Procmon Traces
- Logging Boot, Post-Logoff, and Shutdown Activity
- Long-Running Traces and Controlling Log Sizes
- Importing and Exporting Configuration Settings
- Automating Procmon: Command-Line Options
- Analysis Tools
- Injecting Debug Output into Procmon Traces
- Toolbar Reference
- 5. Autoruns
- 6. PsTools
-
7. Process and Diagnostic Utilities
-
VMMap
- Starting VMMap and Choosing a Process
- The VMMap window
- Memory Types
- Memory Information
- Timeline and Snapshots
- Viewing Text Within Memory Regions
- Finding and Copying Text
- Viewing Allocations from Instrumented Processes
- Address Space Fragmentation
- Saving and Loading Snapshot Results
- VMMap Command-Line Options
- Restoring VMMap defaults
- ProcDump
- DebugView
- LiveKd
- ListDLLs
- Handle
-
VMMap
- 8. Security Utilities
- 9. Active Directory Utilities
- 10. Desktop Utilities
- 11. File Utilities
- 12. Disk Utilities
- 13. Network and Communication Utilities
- 14. System Information Utilities
- 15. Miscellaneous Utilities
-
3. Process Explorer
-
III. Troubleshooting—“The Case of the Unexplained...”
-
16. Error Messages
- The Case of the Locked Folder
- The Case of the Failed AV Update
- The Case of the Failed Lotus Notes Backups
- The Case of the Failed Play-To
- The Case of the Crashing Proksi Utility
- The Case of the Installation Failure
- The Case of the Missing Folder Association
- The Case of the Temporary Registry Profiles
- 17. Hangs and Sluggish Performance
- 18. Malware
-
16. Error Messages
- A. About the Authors
- Index
- About the Authors
- Copyright
Product information
- Title: Windows® Sysinternals Administrator’s Reference
- Author(s):
- Release date: June 2011
- Publisher(s): Microsoft Press
- ISBN: 9780735662728
You might also like
book
MCSE Windows® 2000 Directory Services Design
Exam 70-219, Designing Windows 2000 Directory Services Infrastructure measures your ability to analyze the business requirements …
book
Pro BizTalk 2009
A compendium of best practices and implementation wisdom, Pro BizTalk 2009 is based upon real feedback …
book
Microsoft® Windows® Internals: Microsoft Windows Server™ 2003, Windows XP, and Windows 2000, 4th Edition
The premier guide to the Windows kernel now covers Windows Server 2003, Windows XP, and Windows …
book
Windows 10 for Enterprise Administrators
Tag line About This Book Learn the art of configuring, deploying, managing and securing Windows 10 …