Autoruns-See what programs are configured to startup automatically when your system boots and you login. Autoruns also shows you the full list of Registry and file locations where applications can configure auto-start settings.
FileMon-This monitoring tool lets you see all file system activity in real-time.
Handle-This handy command-line utility will show you what files are open by which processes, and much more.
ListDLLs-List all the DLLs that are currently loaded, including where they are loaded and their version numbers. Version 2.0 prints the full path names of loaded modules.
PortMon-Monitor serial and parallel port activity with this advanced monitoring tool. It knows about all standard serial and parallel IOCTLs and even shows you a portion of the data being sent and received. Version 3.x has powerful new UI enhancements and advanced filtering capabilities.
Process Explorer-Find out what files, registry keys and other objects processes have open, which DLLs they have loaded, and more. This uniquely powerful utility will even show you who owns each process.
Process Monitor-Monitor file system, Registry, process, thread and DLL activity in real-time.
PsExec-Execute processes remotely.
PsGetSid-Displays the SID of a computer or a user.
PsKill-Terminate local or remote processes.
PsList-Show information about processes and threads.
PsService-View and control services.
PsSuspend-Suspend and resume processes.
PsTools-The PsTools suite includes command-line utilities for listing the processes running on local or remote computers, running processes remotely, rebooting computers, dumping event logs, and more.
RegMon-This monitoring tool lets you see all Registry activity in real-time.
ShellRunas-Launch programs as a different user via a convenient shell context-menu entry.
SOURCE AND IP RIGHTS: http://technet.microsoft.com/en-us/sysinternals/bb795533.aspx
