Hidden Gem in Vista Task Manager
So I have been trying to figure out something good to post as my first post on my blog, and I believe that I have found one that’s not too long, but at the same time isn’t useless.
I have recently decided to run Vista on my laptop, just to see what all the commotion was about. I will have a full review later when I feel I have had enough time with it to do a just review. What I just found was in the Task Manager, under View->Select Columns…, if you choose “Command Line”, you can see where the programs are launched from.
Here is a sample screenshot:
This is such a nice feature for attempting to find malware! Knowing where programs are launched from vastly helps out when determining if a program is valid. See something that is sys32.exe running from Program Files/Virus? You then know it’s a virus. Now, yes, for a program named sys32.exe you probably don’t need to know it’s a virus because it just reeks of a virus name, but finding where the executable was launched from? That would be a whole different ballgame, usually involved searching your hard drive, and with large enough hard drives, this could be pretty painful.