Sysinternals作品，強大的系統(tǒng)進程查看器，特色之處之一就是可以顯示一個程序調(diào)用了那些動態(tài)鏈接庫DLL，這樣可以發(fā)現(xiàn)一些十分隱蔽的木馬!還可以查看這個進程的路徑，以及公司版本等詳細信息，多色彩表示服務進程，系統(tǒng)進程，目錄樹方式查看進程之間的歸屬關(guān)系，還可以替換系統(tǒng)自帶的任務管理器。

What's new in Version 11.04:

New treelist control for better UI responsiveness
Asynchronous thread symbol resolution on threads tab of process properties
More flags on groups in security tab and SID display
Thread IDs on threads tab
On-line search uses default web browser and search engine
Vista ASLR column for processes and DLLs
Vista Process and thread I/O and memory priorities in process and thread properties
Vista Process and thread I/O and memory columns
PROCESS_QUERY_LIMITED_INFORMATION support on process permissions on Vista
Run as limited user runs with low IL on Vista
Reports information for all object types on Vista
Show details for all processes elevation menu item on Vista
Supports replacement of task manager on Vista
/e to launch elevated
/s switch to select a process at startup
Compiled w/ASLR, DEP
Faster startup
Miscellaneous bug fixes and minor improvements

下載：http://download.sysinternals.com/Files/ProcessExplorer.zip