Announcing the "Defrag Tools" show on Channel 9

Andrew Richards and Larry Larsen host this deep dive into the tools used on the tech support show Defrag and walk you through how to use many Windows diagnostic tools found on SysInternals.  

Writing a Plug-in for Sysinternals ProcDump v4.0

My 4th MSDN Magazine article is now available online: Writing a Plug-in for Sysinternals ProcDump v4.0  

Debugger Engine (DbgEng) updates in the Windows 8 Developer Preview

Today I wanted to find out what the Debugger Engine (DbgEng) changes are between Windows 7 and the Windows 8 Developer Preview.  To get the differences, I did a WinDiff between the SDK 7.1 ‘DbgEng.h’ header file and the new version (C:\Program Files (x86)\Windows Kits\8.0\Debuggers\x64\sdk\inc) shipped with the Windows 8 Developer Preview’s WDK ( By…



My blog post on a BugCheck 0x101 – CLOCK_WATCHDOG_TIMEOUT is now live on the NTDebugging blog…  

Intel “Family Model Stepping” and Intel “Erratum” Reference

For some unfathomable reason, there seems to be no simple chart cross referencing the common CPU names, their basic features, and the internal CPU information identification (provided by !cpuid and !sysinfo cpuinfo).  (There is also no clear description as to why !sysinfo cpuinfo doesn’t match !sysinfo cpumicrocode, but that’s a chart that’ll have to wait.)…


WinDbg File Association and Explorer Context Menu

For a long time now I’ve had a registry file to make context menu entries for WinDbg.  The entries allow you to select the x86 or x64 debugger.  Internally at Microsoft, I have another version of the registry file that contains two more context menu entries for the private symbol server.  You can see all…