Like over 70 to choose from. You're going to see a short description of each tool's function. Or, you can download the full Sysinternals Suite, which is what I'm going to do. It's going to download a zip file of around 45 megabytes. In the Downloads folder, just right-click on the zip file and select "Extract All." Then, configure this initial folder of your choice and click the "Extract" button. These internal tools are portable and they don't require any installation. You can.
Just start them from the folder that you just created. Just be aware that some of the tools require admin access to function properly, so be sure to right-click on the tool and select "Run as Administrator." The first utility we're going to look at is called ZoomIt. Trust me, this is one of those things that once you start using it, you wonder how you've even survived before it came along. In the suite, you're going to find a 32-bit and a 64-bit version. Just.
Double-click the executable to start it. The first time you run ZoomIt, it presents a configuration dialog. You can select alternate shortcuts and customize some features. But let's see what this tool has to offer first. One thing you can do is to magnify a certain area on your screen. Use the default shortcut, Ctrl+1, and it's going to immediately zoom in. Then, use the mouse wheel to zoom even more in or back out. You can move around the screen as well. You can even annotate.
The screen to highlight important information while you're zoomed in. You can add freeform like this or add different shapes. Use Ctrl+Shift to add arrows, add rectangles by holding down Ctrl, or ellipses with Tab. If you hold down Shift, you can draw straight lines. If you want to share your annotated screen, use the shortcut Ctrl+S to save it as a zoomed PNG, or just hit Ctrl+C to copy and paste it in any application you want. You can also annotate without zooming. Use the shortcut.
What's even better is that you can even record the whole session. Use the shortcut Ctrl+5, and you're going to see this border around the screen. Press Ctrl+5 again to stop the recording, save the file as an MP4, and share it after the meeting. Another cool thing is that you can quickly set a break timer. This way, your audience knows when they're expected to be back. You can customize it in the options. Open the tray and click on ZoomIt, then select Options. In the Break tab, you can set.
The timer. And in the Advanced settings, you can even add a custom image for the background. Then, use Ctrl+3 to bring it up. This is an amazing tool, definitely worth checking out. The next tool we're going to look at is called Process Monitor. Process Monitor, or ProcMon, is one of the most powerful tools in Sysinternals when it comes to troubleshooting. It does require admin rights, so to start it, right-click on the executable and select "Run as Administrator." The.
Moment you open the tool, it's going to start a real-time trace and capture events from five different classes: Registry, File System, Network, Processes, and Profiling Events. So here, you can see every single event that's happening on my system. When you right-click and select Properties on an event, you can actually see the entire stack that led to this operation. These thousands of rows can be quite overwhelming. So the key here is to filter out as much as possible.
And only focus on the events that interest you. There are different ways to do that. For example, if you want to set focus on third-party apps, you can filter out all the Microsoft processes. Go to Options, select Columns, and check the box next to Company Name. This is going to add it as a column in the overview. Then, right-click on any row in this column and select Exclude and then Company. This way, it's going to filter out all events from Microsoft. But let's say you want to.
Find out which events change your registry values. You can set a filter by clicking on the Filter icon up here. In the dropdown, we get different options. For example, you could filter for a specific application by selecting Process Name. But let's say we don't know the exact application yet, and we're interested in all operations that change our registry values. So we're going to select Operations, and then over here, we can specify what we're looking for. Look at.
- Mega Pack Of Infographics Templates Download In PSD And EPS AI Files Infographics Templates Office
- Facebook Cover Templates PSD Free Download Sheri Sk
- Learn Excel 2016 - PowerPivot How-To
All these options. In our case, we're looking for registry changes, so I'm going to start by just - ID Card Make
Typing "reg" and here it is, "RegSetValue." Then click on Add, which is going to add the filter. Now, when we click on OK, it's going to apply the event filter, and we only see events that change registry values. Another cool thing you can do with Process Monitor is to create a boot log. Because maybe your computer takes a very long time to boot, or you want to check for malware..To create such a log, just click on Options and select Enable Boot Logging. This brings up a new window. You get the option to generate thread profiling events and how often these profiling events are generated. In my case, I'm going to go with every second. Click on OK and close down the Process Monitor. Reboot your system now. A few moments later. And once it's back up, start Process Monitor again. Don't forget that step, or else it's going to just keep monitoring and create.
A humongous file. When you start ProcMon, you're going to see this message pop up to save the collected data. Confirm it and select where you want to save the file. Moments later. In my case, it created this three-gigabyte log file. To narrow it down, let's set a filter. Click on the Filter icon and select Duration. For the operator, let's use "More Than." And let's start with anything that took more than five seconds. I'm just gonna put in a 5 and click on Add. Then, OK, and it's.
Going to apply this filter, and these are the processes that took that long. You can check them out in more detail to see if they're really needed or not. It's super cool, and these are just a few use cases of ProcMon. It really is one of the most powerful tools out there. Next up is another handy feature called AutoRuns. AutoRuns is a utility that helps you identify software that's configured to run when you start your device. You're going to be surprised at how many processes are launched.
Without you even knowing of them. After running AutoRuns, you're going to see this interface, which is made up of multiple tabs. The Everything tab is going to show you everything that's loaded automatically. And look at this list. But that's quite confusing, and that's why you have all these other tabs to help you narrow things down. The Logon tab shows you everything that's loaded when you log on to the system. Or in this tab, this is for when you launch Explorer. For Scheduled Tasks,.
Services, Drivers, and so on. To narrow things down even more, you can hide everything that's Microsoft-related. To do that, click on Options in the menu. You'll see that "Hide Windows Entries" is already checked by default. So let's now hide all Microsoft entries. This way, we can really focus on what third-party apps have configured. So let's say you're not sure about this process here. You can submit it to VirusTotal to run it through up to 75 virus scanners. The first time you do.
This, you'll have to activate it and accept the terms. Once the file is submitted, you'll see the results in the VirusTotal column. This will give you a good indication if something is malicious or not. If you want to actually disable an auto-start entry, all you have to do is to uncheck its checkbox. That's it. Another great tool and much better than the standard Task Manager. The last utility we're going to look at is called Process Explorer. With Process Explorer, you get.
To see dynamic information about your running system. Think of it as a Task Manager on steroids. Run it as admin, it's going to show you all processes that are currently active in the system, in the main window. They're presented in a tree structure showing the parent-child relationships. But that's not all. If you activate the lower pane view, you get to also show the DLL handles and threads that are linked to a process. Let's go with DLL. So now, if we click on System Process,.
For example, we see in the lower pane all the DLLs and memory map files that System Process loaded. You can also scan the image signatures for known viruses. VirusTotal is going to run these through up to 75 antivirus scanners. If you see 0 out of 75, like here, it means none of them found anything. One of its most common uses is to find out which process has a particular file open and prevents its use by another program. Let's say you want to delete this folder here, but when you try,.
You get this message. To find out which program is locking this file, go to Process Explorer, click
On Find in the menu, and then select Find Handle or DLL. Then, type in the name of the folder. In my case, it's "Leila Test Folder." Then, click on Search. It looks like in my case, the culprit is Camtasia and has a file in this folder open. There are many other use cases for Process Explorer. For example, you can prioritize a process, which can be interesting for some gamers. Or you can pause.Or suspend a process if it's giving you trouble. It's another handy tool in the Sysinternals Suite. Give it a try. Well, that was just a taste of what's included in Sysinternals. There's plenty more utilities that I didn't even get a chance to cover in this video. So grab yourself a copy, check it out for yourself. Now, before you leave, if you have a favorite utility, please let me know in the comments what it is. I'd love to know. That's it for today, and I'll catch you next time..
