Troubleshooting with the Windows Sysinternals Tools, 2/e (Paperback)

Mark E. Russinovich, Aaron Margosis

  • 出版商: MicroSoft
  • 出版日期: 2016-10-17
  • 售價: $1,960
  • 貴賓價: 9.5$1,862
  • 語言: 英文
  • 頁數: 688
  • 裝訂: Paperback
  • ISBN: 0735684448
  • ISBN-13: 9780735684447
  • 相關翻譯: Windows Sysinternals 實戰指南 (簡中版)
  • 立即出貨 (庫存 < 3)

買這商品的人也買了...

商品描述

Optimize Windows system reliability and performance with Sysinternals

IT pros and power users consider the free Windows Sysinternals tools indispensable for diagnosing, troubleshooting, and deeply understanding the Windows platform. In this extensively updated guide, Sysinternals creator Mark Russinovich and Windows expert Aaron Margosis help you use these powerful tools to optimize any Windows system’s reliability, efficiency, performance, and security. The authors first explain Sysinternals’ capabilities and help you get started fast. Next, they offer in-depth coverage of each major tool, from Process Explorer and Process Monitor to Sysinternals’ security and file utilities. Then, building on this knowledge, they show the tools being used to solve real-world cases involving error messages, hangs, sluggishness, malware infections, and much more.

Windows Sysinternals creator Mark Russinovich and Aaron Margosis show you how to:

  • Use Process Explorer to display detailed process and system information
  • Use Process Monitor to capture low-level system events, and quickly filter the output to narrow down root causes
  • List, categorize, and manage software that starts when you start or sign in to your computer, or when you run Microsoft Office or Internet Explorer
  • Verify digital signatures of files, of running programs, and of the modules loaded in those programs
  • Use Autoruns, Process Explorer, Sigcheck, and Process Monitor features that can identify and clean malware infestations
  • Inspect permissions on files, keys, services, shares, and other objects
  • Use Sysmon to monitor security-relevant events across your network
  • Generate memory dumps when a process meets specified criteria
  • Execute processes remotely, and close files that were opened remotely
  • Manage Active Directory objects and trace LDAP API calls
  • Capture detailed data about processors, memory, and clocks
  • Troubleshoot unbootable devices, file-in-use errors, unexplained communication, and many other problems
  • Understand Windows core concepts that aren’t well-documented elsewhere

商品描述(中文翻譯)

使用Sysinternals優化Windows系統的可靠性和性能

IT專業人士和高級用戶認為免費的Windows Sysinternals工具對於診斷、故障排除和深入了解Windows平台是不可或缺的。在這本經過廣泛更新的指南中,Sysinternals創始人Mark Russinovich和Windows專家Aaron Margosis幫助您使用這些強大的工具來優化任何Windows系統的可靠性、效率、性能和安全性。作者首先解釋了Sysinternals的功能,並幫助您快速入門。接下來,他們詳細介紹了每個主要工具,從Process Explorer和Process Monitor到Sysinternals的安全和文件工具。然後,基於這些知識,他們展示了這些工具如何用於解決涉及錯誤消息、卡頓、遲緩、惡意軟件感染等實際案例。

Windows Sysinternals創始人Mark Russinovich和Aaron Margosis向您展示如何:

- 使用Process Explorer顯示詳細的進程和系統信息
- 使用Process Monitor捕獲低級系統事件,並快速過濾輸出以縮小根本原因的範圍
- 列出、分類和管理在您啟動或登錄計算機時啟動的軟件,或在運行Microsoft Office或Internet Explorer時啟動的軟件
- 驗證文件、運行中程序和加載在這些程序中的模塊的數字簽名
- 使用Autoruns、Process Explorer、Sigcheck和Process Monitor功能識別和清除惡意軟件感染
- 檢查文件、密鑰、服務、共享和其他對象的權限
- 使用Sysmon在整個網絡上監視與安全相關的事件
- 當進程滿足指定條件時生成內存轉儲
- 遠程執行進程,並關閉遠程打開的文件
- 管理Active Directory對象並跟踪LDAP API調用
- 捕獲有關處理器、內存和時鐘的詳細數據
- 解決無法啟動的設備、文件正在使用中的錯誤、未解釋的通信和其他許多問題
- 理解在其他地方沒有很好記錄的Windows核心概念