You can also filter out Processes and generally any field you like. For example, you can right-click on Successes under Results, and exclude it. When analyzing a Process Monitor log, it is recommended to filter out entries. To access advanced information on any single operation right-click on the operation line and choose Properties: The main Process Monitor window lists all system operations along with their exact time, process name, ID and the result for every single operation:
Process Monitor can be used to track system and software activity to troubleshoot some of the product issues, especially when it is necessary to track what particular application or process accesses a file or a registry key. Go to Options and choose and select Check VirusTotal.For older OS versions, download processmonitor_v3.33.zip Go to Options and choose Replace Task Managerĥ. After Process Explorer starts and you accept the EULA, go to File and choose Show Details for All ProcessesĤ. After you extract either download in Step 1, run Process Explorer ( procexe.exe) by double-clicking on it.ģ. We recommend the Sysinternals Suite, as it has many other useful tools.Ģ. Download Process Explorer or the entire Sysinternals Suite from here, the legit Microsoft site: How do you replace Windows Task Manager with Process Explorer? Here are the steps:ġ. Here’s the same information shown with Process Explorer:Īs you can see in Process Explorer – the process “Cain.exe” was flagged as malicious by 16 out of 54 Anti-malware vendors on VirusTotal. Here is the information Windows Task Manager shows you:
It shows process dependencies / process trees. A few of the reasons for using Process Explorer: Windows Task Manager serves a purpose, but we recommend you replace it with Process Explorer for many reasons.