It is hard to believe that Microsoft has acquired Winternals Software for seven years. Winternals Software has developed the Sysinternals tool Suite, which is favored by Windows administrators.
In the past few years, Windows Sysinternals has had quite a few updates, but one thing has not changed: many Windows administrators have not heard of this Windows management tool set, let alone use it.
These tools benefit desktop administrators, just like a digital multimeter that helps electricians. With these tools, you have almost nothing to do-in the enterprise and of course) at home to help friends, relatives and neighbors solve computer problems.
Windows Sysinternals has some tools that can help you manage Windows desktops in enterprises:
Process Explorer
If you have a dynamic link library DLL) conflict, If you suspect that the DLL in your computer is damaged, if you think the memory of an application is leaked, Process Explorer can help you.
Process Explorer can answer the following questions:
- Which program opens a specific file or directory?
- Which dll belongs to which project?
- Is there malware in the system disguised as a legitimate process?
Process Explorer has three windows, two of which are always displayed. The top window always displays the list of active processes. The added or deleted information is displayed in this window. Right-click the title bar and select the columns you want to view, as shown in 1.
Process Monitor
Process Monitor displays registry and flow line activities on the system in real time.
Unlike Process Explorer, Process Monitor can capture log file information for further analysis. It can answer the following questions:
- Is there a problem with the Windows registry entry in the startup option?
- When will a specific program access my registry and which process?
- Which external file system is connected to the PC?
- What threads and processes are being created on my computer?
- What is happening on my computer network?
Autoruns
Autoruns lists the add-ons for Windows Startup in detail
Autoruns can enhance software debugging and display all automatically running programs, services, registration codes, and any other Windows desktop projects you can imagine, as shown above.
Contig
Contig allows you to reorganize a specific file. As you may see, disk reorganization often misses some files, so Contig provides a way to ensure that all files are fragmented.
Desktops
Is a tool that can schedule specific projects on a specific virtual desktop. Perhaps more novel, according to the needs of an organization, such as in manufacturing or phone booth, it can also increase productivity or prove useful in other ways.
NotMyFault
Windows system crashes due to intentional suspension or memory leakage, which can be used in elastic testing, forensic analysis, or other tests you can think.
RAMMap allows IT administrators to determine how physical memory is used, including data and driver cache. This tool supports Windows Vista and later versions. If you need to ensure more memory for your workstation, this tool is probably what you need. What's better is that RAMMap can help upgrade to SSD, which is almost the best Windows Performance Booster.
VolumeID
Helps diagnose faults that may be related to disk image backup and recovery, or other problems such as software licensing and system volume ID registration.
Just as the network analyzer can provide the problem of this perspective at a network protocol level, Sysinternals can also reveal various magical activities behind Windows computer screens. When you load tools such as Process Monitor or Autoruns, you will realize how complicated the Windows operating system is.