Well, if you're using Windows, Process Explorer and Process Hackers are the must have apps. Both of them are free and usually I prefer process explorer over process hacker.
Download:
Process Explorer:
Quote:
|
The Process Explorer display consists of two sub-windows. The top window always shows a list of the currently active processes, including the names of their owning accounts, whereas the information displayed in the bottom window depends on the mode that Process Explorer is in: if it is in handle mode you'll see the handles that the process selected in the top window has opened; if Process Explorer is in DLL mode you'll see the DLLs and memory-mapped files that the process has loaded. Process Explorer also has a powerful search capability that will quickly show you which processes have particular handles opened or DLLs loaded.
|
http://technet.microsoft.com/en-us/s.../bb896653.aspx
Process Hacker:
Quote:
Process Hacker is a feature-packed tool for manipulating processes and services on your computer.
Key features of Process Hacker:
* A simple, customizable tree view with highlighting showing you the processes running on your computer.
* Detailed performance graphs.
Graphs
* A complete list of services and full control over them (start, stop, pause, resume and delete).
* A list of network connections.
* Comprehensive information for all processes: full process performance history, thread listing and stacks with dbghelp symbols, token information, module and mapped file information, virtual memory map, environment variables, handles, ...
* Full control over all processes, even processes protected by rootkits or security software. Its kernel-mode driver has unique abilities which allows it to terminate, suspend and resume all processes and threads, including software like IceSword, avast! anti-virus, AVG Antivirus, COMODO Internet Security, etc. (just to name a few).
* Find hidden processes and terminate them. Process Hacker detects processes hidden by simple rootkits such as Hacker Defender and FU.
* Easy DLL injection and unloading - simply right-click a process and select "Inject DLL" to inject and right-click a module and select "Unload" to unload!
|
http://processhacker.sourceforge.net/
Both of these tools are pretty advance and they can really aid you when your trying to find out viruses and Trojan horses. Services can be terminated on the spot and suspended as well. In reality it gives your Task Manager some much needed balls of steal.
Read the howto guides on the Internet and check youtube for further usage.
Process Hacker and Process Explorer
Re: Process Hacker and Process Explorer
