![]() Now if you search for the program itself using the "Program Files"Program Works" directories, you will see if the program is running. Using the built in Explorer and searching for the 'Task Manager' option, you will find out how many instances of that particular program the Task Manager shows. This is where a third party tool such as Process Explorer comes in handy. However, you cannot tell if they have been frozen because they are hidden in the Windows system folder. As we all know, there are thousands of different programs and files on your computer that need to be 'frozen' to prevent them from being used or deleted. The best way to do this is to use a third party program that has the ability to view and analyze the information stored in the registry. Just so you know, I teach the malware analysis course at SANS Institute.Using the built in Process Explorer to view the information about each process that running is not the best way to accomplish this task.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |