The Case of the Mysterious Code Signing Failures

I digitally sign code on a regular basis in the course of preparing Sysinternals executables for upload to the site. When you digitally sign a file, you encrypt the hash of the file with the private key of a public/private key pair. Someone can verify that you’ve signed the file by decrypting the encrypted hash with…


The Case of the Delayed Windows Vista File Open Dialogs

I was in Barcelona a couple of weeks ago speaking at Microsoft’s TechEd/ITForum conference, where I delivered several sessions (two, Advanced Malware Cleaning and Windows Vista Kernel Changes earned the top #1 and #2 rated breakout sessions for the week – you can see an interview of me at the conference here). The conference was…


The Case of the Notepad that Wouldn’t Run

Dave Solomon was on campus a couple of weeks ago presenting a Windows internals seminar to Microsoft developers. Before I joined Microsoft I taught the classes here at Microsoft with him, but now with my other responsibilities here I step into the class and guest present a module or two if my schedule permits. This…


The Case of the Process Startup Delays

I’ve been extremely busy here at Microsoft and so haven’t had time to blog until now, but plan on getting back to posting regularly. Before I start with a look at a technical problem I ran into recently, I’m pleased to report that the Sysinternals integration is proceeding smoothly and that Bryce and I will…


My Blog Has Moved

My blog has moved to its new home at Microsoft TechNet blogs where you’ll find my current post, The Case of the Process Startup Delays. Originally by Mark Russinovich on 8/31/2006 11:55:00 AMMigrated from original Sysinternals.com/Blog

1

The First Week

First I want to thank the many people that have sent me warm wishes on my move to Microsoft directly and via comments on my last blog post. I didn’t make it clear, but both Bryce and I have relocated to Microsoft’s Redmond campus and I’ve just finished my first week as a Microsoft employee.The…

4

On My Way to Microsoft!

I’m very pleased to announce that Microsoft has acquired Winternals Software and Sysinternals. Bryce Cogswell and I founded both Winternals and Sysinternals (originally NTInternals) back in 1996 with the goal of developing advanced technologies for Windows. We’ve had an incredible amount of fun over the last ten years working on a wide range of diverse…

18

The Power in Power Users

Placing Windows user accounts in the Power Users security group is a common approach IT organizations take to get users into a least-privilege environment while avoiding the many pains of truly running as a limited user. The Power Users group is able to install software, manage power and time-zone settings, and install ActiveX controls, actions…

4

Why Winternals Sued Best Buy

This post I’m taking a break from my standard technical postings to discuss a disturbing discovery regarding a large corporation’s unauthorized software usage. By now many of you have heard via Slashdot, arstechnica, Digg, or your local newspaper that Winternals Software, the company I co-founded with Bryce Cogswell in 1996, filed suit in Federal court…

4

The Case of the Mysterious Driver

The other day I used Process Explorer to examine the drivers loaded on a home system to see if I’d picked up any Sony or Starforce-like digital rights management (DRM) device drivers. The DLL view of the System process, which reports the currently loaded drivers and kernel-mode modules (such as the Hardware Abstraction Layer –…

3