Process Explorer

Forums:

The March Cebug meeting included a demonstration of a Process Explorer and Autorun, I was wondering if the links for these apps and the shell that runs them had been posted anywhere.

 

Jubal

IKraus's picture

Marlin did a great demonstration of how those items worked. I've been looking for that blog article he mentioned he would post myself. Hopefully he'll get that up soon!

MBorsick's picture

First, a few links that I promised at the last CEBUG meeting:

To download the Windows System Control Center, go to http://www.kls-soft.com/wscc/index.php

To download the Windows Sysinterals tools, go to http://technet.microsoft.com/en-us/sysinternals

To download the Nirsoft tools, go to http://www.nirsoft.net/

Of course, once you download the WSCC shell, there is a link in the shell that will automatically download all the available tools at both websites. If you are interested in just one suite of tool, you can go to either the NIrsoft website, or the Windows Sysinternals website. I recommend you use the WSCC shell and run the download link in that. Just remember that these tools are updated rather regularly, so it’s best when you think of running them to run the update function.

For those of you who happen to notice it, the version of WSCC was an older one and I had not updated it on the laptop. The version you are downloading from the website is the most current one. It pays, as I have found out, to check on version updates from time to time.

One question that came up during the meeting was the use of the check box in Autoruns. By checking the box, you are stopping the process from starting. If you right click on the listing, you can delete it from the computer. Just remember that you need to be careful that you are sure what you are doing.

Another question was the use of the color scheme in Process Explorer. Rather than go through a long explanation here, go to the link on YouTube http://www.youtube.com/watch?v=hOoIyz6xj_g . As is mentioned in the video, the green processes are for processes which are starting and the red colored processes are processes which are ending. As is mentioned in the video above, clicking on Options, Configure Colors will tell you what the colors represent.

In closing, using these two tools really adds to your ability to know and control what is running on your PC. While I don’t use it a lot, the fact is that once I am suspicious of a computer slowdown, or some other odd thing going on, using these two tools will help in diagnosing what is going on.