Microsoft Process Monitor is a very useful Windows advanced monitoring tool. It gives you access to real-time information about the activity in processes, registries, and file systems. Two legacy utilities (Sysinternals) are practically combined, Regmon and Filemon. This gives you access to many enhancements and various event property information details, like user names, full threat stacks, and session IDs.

Software Details

  • Size: 3 MB
  • Version: 3.83
  • License: Freeware
  • Release Date: 22-06-2021
  • Operating System: Windows Vista and above


Software Description

The options offered and the user interface of Microsoft Process Monitor are quite similar to that of Regmon and Filemon. However, the software was written completely from the ground up. This offered access to numerous enhancements you will love using, like:

  • Monitor thread startup, exit, and processes, like exit status codes
  • More data is captured for operation output and input parameters
  • Monitor image loads (Kernel-mode and DLL device drivers)
  • Non-destructive filters that allow you to easily set filters without having to deal with losing data
  • A reliable capture of all process details, like command line, image path, session ID, and user ID
  • Capturing thread stacks for every single operation in order to identify the problems of an operation
  • Moveable and configurable columns, which is possible for every single event property
  • Advanced logging architecture
  • Native log format that preserves all the data you need to verify
  • Process tooltip to quickly and easily view process image information
  • Detail tooltip that allows convenient, fast access to formatted data when it does not fit the column