мощный и многофункциональный менеджер процессов и служб
Дата публикации:
scorpio, 28.02.2009 - 13:59
Process Hacker
Process Hacker - это профессиональный набор инструментов управления ОС работающий с ядром через Native API (API ядра) предназначенный управляния процессами и их потоками, контроля использования памяти ЭВМ, дисковой и сетевой активности, управления состоянием и параметрами, устанавки и удаления сервисов и драйверов, может освобождать заблокированные другими процессами объекты, использоваться в качестве отладчика уровня ядра и осуществлять поиск некоторых типов руткитов и иных скрытых процессов, удалять не удаляемые иными инструментами зависшие или защищённые процессы (некоторые его возможности могут быть недоступны из-за ограничений ОС либо недостаточного уровня привилегий пользователя).
ProcessHacker автоматически загружает символы из различных библиотек и использует их для отображении стека вызовов потоков исследуемого процесса (так же, как и Process Explorer). Он включает модуль PEViewer используемый при просмотре списков импорта/экспорта, конфигурации загрузки и структуры исполняемых файлов. Process Hacker может смотреть стек и память зависших процессов и в большинстве случаях помогает восстановить их нормальную работу без потери обрабатываемых данных.
Process Hacker is a tool for viewing and manipulating processes and their threads, modules and memory. It can also search through process memory: for a sequence of bytes, using regular expressions, for strings, or for heap blocks
It loads symbols from various libraries automatically and uses them when displaying the call stacks of threads (just like Process Explorer). It also has a disassembler derived from OllyDbgґs which can be accessed when viewing PE filesґ exports.
NEW/IMPROVED: Full support for Windows Vista SP2 Users/sessions list Window process finder Thread wait analysis - right-click a thread and choose Analyze > Wait to see what a thread is hanging on Added ability to create dump files for processes Added ability to detach processes from debuggers Added "scroll down process tree on startup" option Notification icon process list is now sorted Lists are dramatically faster (especially the handle list) Detailed handle properties Event objects can now be modified - set, clear, pulse, reset Event pair objects can now be modified - set high, set low Semaphore objects can now be modified - acquire, release Statistics for token objects Token object names now include their session LUIDs Added Shift+Del for Terminate Process Tree
FIXED: #2795871 - "Hidden Processes window resizing problem" #2800710 - "System.ObjectDisposedException" Windows 7 RC BSOD (Windows 7 Beta is no longer supported) at startup; support is STILL EXPERIMENTAL Memory search addresses being in decimal Disabling "Warn about dangerous actions" now disables all process-related prompts Terminator window would be hidden if the main window was top-most Using the keyboard (Up/Down/Left/Right) in the process list was fixed Potential BSOD with KphReadVirtualMemory and KphWriteVirtualMemory due to incorrect address probing Get Function Address window would return incorrect hex addresses
» Нажмите, для открытия спойлера | Press to open the spoiler «
1.10 * NEW/IMPROVED: * .NET tab in process properties - exact copy of Process Explorer's tab * Small performance improvements * FIXED: * #2920711 - "Value was either too large or too small for an Int32." * #2920734 - "Found a reproducible bug : Value does not fall within..." * Missing service descriptions in dumps * Multi-threading issues with highlighting * Highlighting for incredibly small intervals, ignoring user settings
1.9 * NEW/IMPROVED: * Dump/view process information * Added useful tooltips to the module list * The "-elevate" command line option propagates other arguments * FIXED: * #2911938 - "The given key was not present in the dictionary." * #2911957 - "The given key was not present in the dictionary." * #2912500 - "Failed to compare two elements in the array." * #2917952 - "Index was outside the bounds of the array." * Buggy save as text file behaviour on Windows XP
1.8 * NEW/IMPROVED: * Ability to set I/O priority for processes and threads * No more separate Assistant.exe executable required * Signature verification now works on x64 * Now shows signer names (plus a Verified Signer column) * Added proper x64 support to structs reader * Added basic preprocessor to structs reader * WOW64 modules now appear in Handle/DLL searches * Small performance improvements * Editing object SACLs is now possible with KProcessHacker * FIXED: * #2902988 - "Toolbar not shown after saving options" * Find window and select thread sometimes not working
1.11 * NEW/IMPROVED: * System Idle Process threads are shown * Find handles by object address * Small performance improvements * FIXED: * #2926287 - "Scroll Problems with Microsoft Intellipoint Mouse" * Major process properties memory leak
» Нажмите, для открытия спойлера | Press to open the spoiler «
NEW/IMPROVED: * Vastly improved startup time and lower memory usage * Added Cycles and Cycles Delta columns * Added option to disable address resolution for network connections * Added Logon Time to session properties * Added time stamp display to peview FIXED: * ToolStatus layout problems * .NET highlighting crashes * Run As on Windows XP
» Нажмите, для открытия спойлера | Press to open the spoiler «
NEW/IMPROVED: * Added WS Watch and other features to ExtendedTools plugin * Added WindowExplorer plugin * Properties for hidden processes * Improved menus * Debug console can now be closed without affecting the entire program FIXED: * Always on Top issues * Hang when setting DEP status of a terminating process * Encoding bug in NetworkTools plugin * LSA interfacing issues * Creating dumps of self
» Нажмите, для открытия спойлера | Press to open the spoiler «
New and Improved: * Updated KProcessHacker for Windows 7 SP1 * Added elevation support for more actions * Added ability to disable plugins * Updated ToolStatus plugin * Added Remote Control for sessions * More command line options Fixed: * Memory leaks * Run As issues with different sessions
» Нажмите, для открытия спойлера | Press to open the spoiler «
NEW/IMPROVED: * Added copy support to PE viewer * Added Connect Time, Disconnect Time and Last Input Time to session properties * Added more working set counters to the Statistics tab FIXED: * Column sort arrows * CPU usage calculations
» Нажмите, для открытия спойлера | Press to open the spoiler «
NEW/IMPROVED: * ExtendedServices plugin: Option to add a Services menu for processes * Command line support for setting process priority and I/O priority * Improved termination of explorer.exe FIXED: * Icon should restore the main window if it is minimized * System Information window crashes * Hide Processes From Other Users and Hide Signed Processes settings are now saved * Font selection on Windows XP * ToolStatus plugin: Always on Top status being reset by Find Window * Service-related crashes * WindowExplorer plugin: sorting in tree list * Process minidump creation with old versions of dbghelp.dll
» Нажмите, для открытия спойлера | Press to open the spoiler «
NEW/IMPROVED: * Updated ExtendedServices plugin * Updated ToolStatus plugin * Added DEP Status column * Improved User Name column FIXED: * Image file versions * Workaround for an IPv6-related bug in Windows XP * DPCs and Interrupts in System Information tooltips * File dialog crash on Windows XP * ExtendedTools plugin: WS Watch refresh bug
» Нажмите, для открытия спойлера | Press to open the spoiler «
NEW/IMPROVED: * Updated WindowExplorer plugin * PE viewer: Added version string to CLR tab * PE viewer: Added display of delay imports * PE viewer: Added Load Config tab * Improved wait analysis * Added arrows to the service list to indicate whether a service is running FIXED: * Fixed the IPv6-related workaround causing crashes * Incorrect handling of window positions
» Нажмите, для открытия спойлера | Press to open the spoiler «
New and Improved: * Added support for setting page priority * Added elevation support for setting priority * Added support for automatically using a settings file in the program directory (e.g. ProcessHacker.exe.settings.xml) * Improved Run As mechanism * Updated ExtendedServices plugin: - Added support for editing triggers - Added support for editing preshutdown time-out - Added support for editing required privileges - Added elevation support for restarting services * Updated WindowExplorer plugin: - Added more window properties Fixed: * Handle leak
» Нажмите, для открытия спойлера | Press to open the spoiler «
NEW/IMPROVED: * Completely rewritten tree list control: * Process Name column is now fixed to the left * Tooltips for column headers * Improved performance * Bug fixes * Added more process tree list columns * Added Time stamp column to network list * Date/time display is now swapped (so time is shown before date) * Added W3 terminator test * Added DotNetTools plugin * Updated ExtendedServices plugin: * Disabled editing of required privileges for drivers * Updated ExtendedTools plugin: * Added ETW columns for processes and network connections * Updated OnlineChecks plugin: * Added Comodo Instant Malware Analysis * Updated WindowExplorer plugin: * Fixed hook bugs FIXED: * Fixed Run As This User * Verification Status sorting
» Нажмите, для открытия спойлера | Press to open the spoiler «
NEW/IMPROVED: * Added cycle-based CPU usage for Windows 7 * Added Show CPU Below 0.01 * Added OS Context column * Rewrote graph drawing code for improved performance * Optimized retrieval of cycle time and private working set information for Windows 7 * Added Open File Location to process context menu and reorganized some items * Added checkboxes to Terminator FIXED: * Crash when sorting by Time Stamp * GDI handle leak in drag selection
» Нажмите, для открытия спойлера | Press to open the spoiler «
New and Improved: * Added support for managed thread stacks on x64 * Added column selection for handle list * Added CPU column to threads list * Improved module detection * Added Ideal Processor to Threads tab * Added pool usage and minimum/maximum working set columns * Implemented Properties button for Thread handles * Set descending sort as the default for most numeric columns * Extended header context menu * Removed tooltip text truncation * Improved cycle-based CPU usage calculation * Set default KProcessHacker security level to only allow connections when Process Hacker is running as administrator. See README.txt for instructions on how to restore the old behavior. * Added Updater plugin * Updated DotNetTools plugin: - Added managed symbol resolution for thread stacks * Updated ExtendedTools plugin: - Added Disk tab - Added Hard Faults, Hard Faults Delta and Peak Threads columns to process tree list - Added Firewall Status column Fixed: * Fixed file name resolution bug * Save settings on shutdown/logoff * Fixed state highlighting bug * Fixed command line propagation for -elevate * Fixed tree list mouse wheel handling * Fixed saving network list
» Нажмите, для открытия спойлера | Press to open the spoiler «
New and Improved: * Added Private Bytes Delta, ASLR and Subsystem columns * Added ASLR and Time Stamp columns to modules list * Added check for debugger in Terminator Fixed: * Fixed Show CPU Below 0.01 not respecting locale * Fixed copying from network list
» Нажмите, для открытия спойлера | Press to open the spoiler «
New and Improved: * Added highlighting for metro style apps * Added Package Name column * Added package name to process tooltip * Improved .NET process detection * Updated OS Context column for Windows 8 * Updated ExtendedTools plugin: - Updated disk monitoring for Windows 8 - Updated memory list information for Windows 8 * Updated WindowExplorer plugin: - Fixed hook support for low integrity processes Fixed: * Fixed memory leaks * Fixed bug preventing Interrupts/DPCs from being shown as the max. CPU process on 64-bit systems * Fixed DEP Status column on 64-bit systems
» Нажмите, для открытия спойлера | Press to open the spoiler «
New and Improved: * Added display of token capabilities, user/device claims and security attributes * Added ability to change token integrity levels * Added Description column to service list * Added option to reset all settings * Made grid color darker * Enabled multi-selection in the hidden processes window * Added UserNotes plugin * Updated ExtendedNotifications plugin: - Added Growl support * Updated ExtendedTools plugin: - Added GPU monitoring - Added rate columns for disk and network I/O Fixed: * Fixed copying lists when plugin columns are enabled * Freezing when viewing the tooltip for a process with a very long command line * Disabled Hidden Processes feature on 64-bit systems
» Нажмите, для открытия спойлера | Press to open the spoiler «
New and Improved: * Completely new system information window * Added option to scroll to new processes * Added option to hide driver services * Added menu item to copy individual cells * Improved module scanning * Added Start Task Manager menu item * Added Image base to peview * Updated ExtendedTools plugin: - Added support for new system information window - Added Disk, Network and GPU tray icons - Added support for custom fonts in the Disk tab * Updated Updater plugin: - Added download speed - Added remaining time Fixed: * Fixed retrieval of version information for certain files * Fixed driver file names on Windows XP * Fixed Run As Administrator when used with complex commands
» Нажмите, для открытия спойлера | Press to open the spoiler «
New and Improved: * Improved CPU frequency calculation * Updated ExtendedTools plugin: - Added GPU node selection - Fixed incorrect GPU usage calculation Fixed: * Graph tooltip position with large cursors * Fixed .NET process detection * Fixed incorrect values in Bits column
»» Нажмите, для закрытия спойлера | Press to close the spoiler ««
» Нажмите, для открытия спойлера | Press to open the spoiler «
New and Improved: * Added option to show Commit Charge in system information summary view * Added -priority and -selectpid command line options * Updated ExtendedTools plugin: - Improved support for multiple GPUs Fixed: * Fixed 100% CPU when starting on some machines
»» Нажмите, для закрытия спойлера | Press to close the spoiler ««
» Нажмите, для открытия спойлера | Press to open the spoiler «
New and Improved: * peview now resolves .lnk targets * Fixed Ctrl+A for processes, services and network connections and added Ctrl+A for other windows * Changed confirmation prompts to select the destructive action by default * Updated DotNetTools plugin: - Fixed inaccurate stack traces for certain .NET programs * Updated ExtendedTools plugin: - Fixed network graph scaling * Updated ToolStatus plugin: - Added search box * Updated Updater plugin Fixed: * Fixed Verification Status column sorting bug in module list * Fixed rare System Information crash * Fixed bug in opening process handles * Fixed freezing when viewing stack traces of certain system threads
»» Нажмите, для закрытия спойлера | Press to close the spoiler ««
2.30 * NEW/IMPROVED: * Added "Icon click toggles visibility" option * Re-enabled powerful process termination on 32-bit Windows 8 * Updated UserNotes plugin: * Added ability to save process priority * Added "Only for processes with the same command line" option for process comments * FIXED: * Fixed crash on CPUs without SSE2
2.29 * NEW/IMPROVED: * Added App ID column for processes * Added new ASLR information for Windows 8 * Added Restart to Boot Options and Hybrid Shutdown menu items for Windows 8 * Added ability to specify processes by their names and inject and unload DLLs in command line * Removed 512 character limit when copying text * Moved Terminator to Miscellaneous menu * Updated default dbghelp.dll path for Windows SDK v8 * Updated ExtendedServices plugin: * Added new triggers for Windows 8 * Fixed bug when restarting services * Updated ExtendedTools plugin: * Improved support for multiple GPUs (again) * GPU column now respects "Include CPU usage of children" option * Updated ToolStatus plugin: * Fixed search box fonts * Fixed controls not being properly hidden/removed from the window when disabled * Updated WindowExplorer plugin: * Fixed window list not displaying Modern UI windows * FIXED: * Fixed Load Count column sorting bug * Fixed signature verification on Windows 8 * Fixed task scheduler information on Windows 8 * Fixed drag bug in tree list * Fixed KProcessHacker bug affecting TmTx objects * Fixed Run As feature on Windows 8 * Fixed bug where -settings parameter is not propagated * Fixed tab key behavior on main window * Fixed recognition of Modern UI windows
2.33 * NEW/IMPROVED: * View digital signature information from process properties and peview * Signatures for Windows 8 apps are now detected * Improved file, key, process and thread handle properties * Added DPI Awareness column * Added new Windows 8.1 process protection information * KProcessHacker is no longer needed for highlighting of GUI threads * Added suspend count for threads on Windows 8.1 * Updated DotNetTools plugin: * Improved .NET assembly enumeration timeout handling * FIXED: * Service start type and error control are never updated if modified outside of Process Hacker
NEW/IMPROVED: * Proper Unicode support * CPU and GPU graphs are displayed in a grid now (thanks pavel_kv!) * Start Task Manager now elevates when necessary * Better names for memory regions in Memory tab (for PEBs, TEBs, thread stacks) * Added tooltip information for user-mode driver framework (UMDF) host processes * Added option to reduce row height (set ThinRows to 1 in settings.xml) * Added NetAdapters plugin: adds graphs for selected network adapters to the System Information window * Updated ExtendedTools plugin: * Added GPU graphs for all processes * Can now use the search box in the Disk tab * Improved kernel logger handling FIXED: * Fixed touch scrolling * Fixed EtwRegistration object names for 64-bit Windows 8.1 * Fixed tray icons being clipped in high DPI environments * Fixed crash in memory editor * Fixed multi monitor window placement bug
»» Нажмите, для закрытия спойлера | Press to close the spoiler ««
NEW/IMPROVED: * Added Load Time and Load Reason columns for modules (Windows 8 and above) * Added handle names for Job and Section objects * Added Read/Write Memory for Section objects (in process Handles tab) * Added CF Guard (Control Flow Guard) column for processes and modules * Added highlighting for AppContainer DLLs * Added AppContainer and CF Guard image characteristics to peview * Added Open Key and Open File Location menu items for services * Set priority and I/O priority for multiple processes at once * Support for up to 64 processors when setting process/thread affinity * Updated ExtendedTools plugin: * Added Disk and Network graphs for all processes * Updated UserNotes plugin: * Added ability to save I/O priority FIXED: * Fixed memory editor copy bug
»» Нажмите, для закрытия спойлера | Press to close the spoiler ««
2.37 * HIGHLIGHTS: * Updated for Windows 10 * The "Include CPU (and other) usage of children in collapsed processes" option now aggregates memory and I/O statistics * Added regex search to "Find Handles or DLLs" * Added process exit codes to log * Fixed crash that occurred under some conditions when processes terminated * OTHER CHANGES: * Added warning when trying to search for handles when the system has too many handles open * Upgraded to PCRE2 * Updated DotNetTools plugin: * Rewrite of .NET Performance statistics and AppDomain enumeration * Updated OnlineChecks plugin: * Fixed virusscan.jotti.org uploader * Updated NetAdapters plugin: * Added adapter details window * Updated ToolStatus plugin: * Added CPU, Memory and I/O graphs to the toolbar (not enabled by default) * Added toolbar and status bar customization, as well as a new theme * Added option to auto-hide the main menu * Updated UserNotes plugin: * Added individual process highlighting support
2.36 * HIGHLIGHTS: * New rich pop-up UI when hovering the cursor over a tray icon, showing the most active processes * Completely new Memory tab for processes, with heap, stack and working set usage * Process Hacker now takes 32-bit dumps of 32-bit processes on 64-bit Windows * NOTE: When using the portable (.zip) release, the entire archive must be extracted * Updated DotNetTools plugin: * Process Hacker now displays managed stack traces for 32-bit .NET processes on 64-bit Windows * Fixed inaccurate stack traces when clicking Refresh * Added AppDomain column for threads in .NET programs * OTHER CHANGES: * Added customizable bytes per row setting for memory editor * Dramatically faster handle listing and search when running without administrative privileges * Improved accuracy and speed of symbol resolution, especially when new modules are loaded * Added trigger and delayed start information to service list * Added file information to service list tooltips * Balloon tips for process/service notifications are now clickable * Added handle names for unnamed File objects * Added I/O Priority to tray icon process menu * Added warning for users who attempt to start the 32-bit version on 64-bit Windows * Updated ExtendedServices plugin: * Added service protection and SID information * Added auto-elevation when saving recovery information, triggers and other service settings * Updated ExtendedTools plugin: * Added tray icon mini info window support * Improved automatic GPU node selection * Updated UserNotes plugin: * Added tray icon mini info window support * Fixed a bug in phsvc that caused hangs when automatically elevating actions * Fixed hang when viewing handle security for certain File objects * Fixed lack of information on startup when using slower refresh intervals * Fixed Read/Write Address crash * Fixed service non-polling mode on Windows 8 and above * Fixed file dialog crash in Windows PE environments * Fixed string scanning false positive case * Fixed process window detection for Modern UI apps * Fixed handle list selection bug when disabling "Hide unnamed handles" * NOTE: * This release has significant internal code changes. Please make sure all plugins are up-to-date.
»» Нажмите, для закрытия спойлера | Press to close the spoiler ««
Highlights: * Improved compatibility with security and anti-cheat software * Added ability to edit process environment variables * Fixed .NET process detection Other changes: * Improved tooltip information for dllhost.exe * Removed Terminator * Updated DotNetTools plugin: - Fixed .NET assembly tab performance issues - Added extra .NET memory counters to the .NET performance tab - Added "Show sizes in bytes" checkbox to the .NET performance tab - Added right-click menu to the .NET assembly tab * Updated ExtendedTools plugin: - Fixed "No process" disk event bug * Updated HardwareDevices plugin: - Fixed incorrect drive letters - Fixed drive letter and panel clipping issue.
»» Нажмите, для закрытия спойлера | Press to close the spoiler ««
Add missing file from previous commit Convert main Users menu to emenu Fix empty process handle tab when running non-official builds DnsCachePlugin: Fix refresh flicker, fix types, remove tabspace Merge pull request #39 from univert/master
Перевод программы приостановлен на неопределенное время из-за порчи кода программой Radialix. Переводить сабж в других программах не имеет смысла, они не умеют переводить жестко-закодированные строки, которые составляют половину перевода.
Подновилась - добавился выводящий колонку на панели Process плагин DPI Awareness Extras. Перевод его описания [?]
При работе на ОС Windows 7/8 из-за того, что там ещё не существует функция GetProcessDpiAwareness() значение экранного разрешения не выводится, в колонке DPI aware extended выводится System aware({Flag}), на ОС Windows 8.1/10 выводится значение и расширенная информация сообщаемая GetProcessDpiAwareness().
Что не так? Ссылки на закачку ( ведущие с офсайта ) неверны?
Верны. Я предположил, что вы имеете ввиду, что appveyor является официальным сайтом проекта, что, понятное дело, не так.
Более того, если вы обратите внимание, в теле ссылки на скачивание - для каждой новой скомпилированной версии - разный хэш. Следовательно, это не постоянные ссылки на актуальную последнюю версию, а лишь на текущую, то есть на момент генерации данной ссылки.
Если здесь у нас одинаковое понимание, тогда никаких претензий не имею и, вероятно, просто возникло недопонимание в самом начале.
HugoBo-SS, 12.06.2019 - 19:58
Цитата | Quote(4x3r @ 12.06.2019 - 18:25)
для каждой новой скомпилированной версии - разный хэш
Всё так. Претензия была на избыточность публикации стороннего ресурса при наличии доступности ссылок на закачку с офсайта. Оно, бесспорно, не возбраняется; но было бы корректно приводить их как зеркала ( если нет никаких изменений пакета).