The independent version of Firevelvet Sword has rich functions. It can start the system monitoring function in the software to facilitate users to monitor various processes running on the system. It can display the start time, process name, process ID, process action, and process registry path. All kinds of information can be displayed in this software, It is convenient for users to analyze which processes are running on the computer, find the virus software running in the background, and save the log content. The log data monitored by the system can be exported and saved. It is convenient for users to analyze the log in the future. The independent version of Firevelvet Sword can also manage the startup item, service item, and registry in the software management. If necessary, it can be downloaded.

software function

1. The independent version of Firevelvet Sword has simple functions. You can manage the registry through this software

2. You can search the registry content and modify the registry key data

3. Support the file management function, and the computer's C disk and D disk can be displayed in this software

4. Support network management, and the process of connecting to the network can be displayed in the software

5. Support viewing network connection protocol, local address and remote address

6. The driver view function is supported, and the device driver can display the security status in the software

7. The service item view function synchronizes the services of the Windows system and can stop the service

8. Windows message hook, process module hook, kernel module hook, drive object hook, file drive hook

Software features

1. The independent version of Firevelvet Sword is suitable for friends who need to analyze the computer process

2. Start this software to directly analyze the process, view the process name, and view the process path

3. Support various process startup and shutdown functions, and unnecessary processes can end running

4. Support the startup item management function, and the items automatically run by the computer can be viewed in the independent version of Firevelvet Sword

5. Can display Explorer Internet Explorer、 System services, drivers and other auto start contents

6. You can view the editor decoder , Winsock provider, printing, LSA provider self start service

7. Support ending process, suspending process, ending process tree, process information, task group information, thread information, network status, search string

usage method

1. Open HRSword.exe as an administrator to enter the system monitoring interface, and click Start to monitor the process of reading the computer

2. As shown in the figure, you can view action information, call stack, process information, and task group information

3. The call stack is shown in the figure

Module: ntdll. dll (SFC)

Path: C: WindowsSYSTEM32ntdll.dl

Description: NT layer DLL

Version: 10.0.19041.1023

Company: Microsoft Corporation

4. Process information, which can display the saved location of the process, and can be viewed

Process ID: 8648

Parent process ID: 13760

Start time: 08:59:54:624

User: DESKTOP-7S29EITadmin

5. The task group content view interface, where the task list can view the modified resources in the software

6. Local process view function, you can find your own open software in the list

7. Open the process information directly to view, or view the network communication information

8. The startup item view function is used to view the contents of computer startup here, which can be unchecked

9. The drive information interface displays the current drive of the computer, 1394ohci, 3ware ACPI、AcpiDev、acpiex、acpipagr

10. CPU kernel view function: kernel notification, process notification, thread notification, image notification, shutdown notification

11. Registry view function, search the registry content directly in the software, and modify the data

12. The service content and service items running on Windows are displayed here. You can view the startup parameters