Using Process Monitor to measure logon times

FIrst Aid for it support

Did you ever get complaints about slow logon times for users running on a Terminal Server? Probably the answer is yes, but what is slow? And can I measure this with hard numbers? Yes you can do this… By using Process Monitor! And I will show you how.

Step 1

Logon to the server with the local Administrator account and start Process Monitor.

Stop the capture and clear everything, this prevents the ProcMon from using unnecessary resources for now.


Step 2

Edit the Filter as follows. Add the processes winlogon.exe, userinit.exe and explorer.exe

Also filter to only show process Start and Exit.


– Winlogon.exe: You can see the first process to kick of is the Winlogon.exe. It is starting on logon and ends when a user clicks the start => logof button.

– Userinit.exe: Next one to launch is the userinit.exe process which includes various user initializations. This process will also…

View original post 165 more words

User Accounts Do Not Show Up in the Windows SBS Console

If you have created user accounts with the native windows tools, and you wish to display them in the Windows SBS Console, then perform the following steps:

  1. Open the Windows SBS Console.
  2. On the Users tab under Users and Groups, click on Change user role for user accounts.
  3. Choose the user role that you wish to assign to the user account(s), and choose whether you are replacing or adding permissions to the account(s).
  4. Under Select user accounts, mark the checkbox next to Display all user accounts in the Active Directory. You should see the user account(s) that are missing from the console.
  5. Select the account(s) that you wish and click the Add>> button.
  6. Click on the Change User Role button to finish.

How to perform clean install of Take Control on a single device

If Take Control requires a clean install, perform the following steps:

    1. From the Dashboard disable Take Control on the device
      1. Double click the device
      2. Select Remote Access > change Setting: to Off > select OK
    2. Monitor the Summary tab to see when Take Control changes from Active to Not Installed
      1. To speed up process, right-click device > select Re-run Checks
    3. Verify Take Control is not listed under add/remove programs
    4. Delete takecontrol_7_setup or takecontrol_8_setup file from machine
      1. 32 bit: C:\Program Files\Advanced Monitoring Agent\features
      2. 64 bit: C:\Program Files (x86)\Advanced Monitoring Agent\features
    5. From the Dashboard enable Take Control
      1. Double click the name of the device
      2. Select Remote Access > change Setting: to Use Policy Setting (On) or On> select OK
    6. Monitor the Summary tab to see when Take Control changes from Not Installed to Active
      1. To speed up process, right-click device > select Re-run Checks



How to kill a Windows service that’s stuck on stopping or starting

Almost any service could hang, but it typically happens with critical application services such as those involved in Microsoft Exchange, like IMAP. Using the DOS Taskkill command can allow you to put off rebooting the server until after business hours.

In Server Manager, find the stuck service and double click it. Make note of the service’s short name (also known as Registry name). For example, POP3 might be called POP3Svc or MSExchangePOP3, depending on your version of MS Exchange. Continue reading


You recieve the following error in EventViewer with regards to “MSSQL$SBSMONITORING”, Event ID: 1105

Could not allocate space for object ‘dbo.EventLog’.’PK_EventLog’ in database ‘SBSMonitoring’ because the ‘PRIMARY’ filegroup is full. Create disk space by deleting unneeded files, dropping objects in the filegroup, adding additional files to the filegroup, or setting autogrowth on for existing files in the filegroup.
This is generally related to the size of the the database (Exceeds 4GB) Continue reading

Change the Default OU for New Users or Computers in Active Directory

Run the following command(s) in a command prompt on the Active Directory server to change the default Organizational Unit (OU):

For Computers:
redircmp ou=ComputersOU,dc=mydomain,dc=com

For Users:
redirusr ou=UsersOU,dc=mydomain,dc=com Continue reading