Process Explorer — Microsoft's Official Process Management Power उपकरण, the Most Famous Sysinternals Utility

13/5/2025 · डेवऑप्स उपकरण · 24 मिनट का पठन

In one sentence: A professional process management उपकरण from Microsoft’s Sysinternals suite that displays all processes in a tree view with parent-child relationships — supports viewing handles/DLLs/thread stacks/network connections/GPU प्रदर्शन for each process. Most famous विशेषता: finding which process is using a specific file. पूरी तरह से मुफ्त, no इंस्टॉलेशन required. ---## Have You Ever Been Frustrated by “File in Use — Can’t Delete”? परिदृश्य 1: You try to delete a folder, and the system says “The action can’t be completed because the file is open in another program.” You close everything you can — but you still can’t delete it. You don’t know which background process is holding onto the file. टास्क मैनेजर doesn’t offer a “file lock query” विशेषता. परिदृश्य 2: You suspect malware is running on your system — it’s disguised as a normal process name (like svchost.exe), but its actual running path is in some strange directory. You want to see each process’s “full path” to determine if it’s suspicious. परिदृश्य 3: You notice your system has slowed down and want to see which specific DLLs each process has loaded — whether any program has loaded unnecessary third-party DLLs or if suspicious DLLs have been injected. टास्क मैनेजर can’t show this. Process Explorer is designed for these “file lock समस्या निवारण” and “deep process analysis” scenarios — its most famous विशेषता is using “Find Handle” to quickly locate “which process is locking my file,” letting you unlock it without rebooting. ---## What Is Process Explorer? Process Explorer is one of the most famous tools in Microsoft’s Sysinternals toolkit, developed by Mark Russinovich (now Microsoft Azure CTO, Sysinternals founder). It’s a direct competitor to Process Hacker and the older, more established उपकरण. Its मुख्य विशेषताएं:

  1. Tree View: Displays all processes in a process tree (parent-child relationships)
  2. Handle Search: Find which process is using a specific file — its most famous विशेषता
  3. DLL/Handle Viewing: Shows each process’s loaded DLLs and open system handles
  4. System प्रदर्शन Monitoring: रीयल-टाइम CPU/memory/IO display Process Hacker vs Process Explorer Core Differences: | | तुलना | Process Explorer | Process Hacker | | |-----------|-----------------|---------------| | | Developer | Microsoft (Sysinternals) | ओपन सोर्स समुदाय | | | | Signature विशेषता | Handle Search (Find Handle) | Force terminate, suspend process | | | | Update Frequency | Slower but stable | Faster, more active | | | | GPU Monitoring | ❌ No | ✅ Yes | | | | Memory Editing | ❌ No | ✅ Yes | | ---## मुख्य विशेषताएं

1. Handle Search (Find Handle) — Process Explorer’s Most Famous Exclusive विशेषता

This is Process Explorer’s most valuable killer विशेषता:

Scenario: You can't delete D:\Temp\database.lock file
Action: Ctrl+F → Type "database.lock"
Result: Process Explorer tells you → "javaw.exe (PID 12345) is using this file"
Solution: Kill this process → File can now be deleted

कैसे उपयोग करें:

  1. Open Process Explorer (run as administrator)
  2. Ctrl+F to open the search box
  3. Type part of the file name or file path
  4. Instantly shows which process’s which handle is using the file
  5. Double-click the result to locate the process → राइट-क्लिक to close handle or terminate process Practical value: When you encounter “file in use — can’t delete,” you no longer need to restart your computer or guess which program to close. Process Explorer gives you the answer in seconds.

2. Tree View — See Process Parent-Child Relationships at a Glance

Process Explorer displays processes in a tree structure by default:

Process Tree (Example):
  explorer.exe (Desktop)
    ├── chrome.exe (Chrome launched from desktop)
    │     └── chrome.exe (Chrome child process - tab)
    ├── cmd.exe (Command prompt)
    │     └── python.exe (Python launched from command line)
    └── taskmgr.exe (Task Manager opened)
    
  services.exe (Windows Service Manager)
    ├── svchost.exe (Service host)
    │     ├── WSearch (Windows Search service)
    │     └── BITS (Background Intelligent Transfer Service)
    └── spoolsv.exe (Print Spooler)

The value of this view: You can immediately see “who started this process.” If a piece of malware is disguised as a normal process name (like svchost.exe) but its parent process is explorer.exe (desktop) instead of services.exe (service manager) — you can instantly tell it’s fake.

3. DLL and Handle Inspection — Looking Inside Processes

राइट-क्लिक a process → Select “Properties” → View: DLL tab:

  • List of all DLLs loaded by the process
  • Full path and version of each DLL (can determine if DLL is from official directory)
  • DLL memory आकार and load address Handles tab:
  • All system object handles opened by the process
  • File handles → Know which files the process is reading/writing
  • Registry handles → Know which registry keys the process is accessing
  • Network handles → Know if the process has open network connections

4. प्रदर्शन Monitoring — More Detailed रीयल-टाइम Data Than टास्क मैनेजर

Process Explorer’s main interface displays multiple प्रदर्शन columns by default: | | Metric | विवरण | | |--------|-------------| | | CPU उपयोग | रीयल-टाइम CPU उपयोग per process (can show per-core) | | | | Private Bytes | Physical memory exclusively used by the process | | | | Working Set | Total physical memory currently used by the process | | | | Virtual आकार | Process’s virtual address space आकार | | | | Handles | Number of handles opened by the process | | | | GDI Objects | Graphics Device Interface object count | | | | I/O Reads/Writes | Disk read/write operations of the process | | The system tray can display CPU/memory उपयोग history charts — double-click the tray icon to see a floating window with रीयल-टाइम charts.

5. Signature Verification — Determine If a Process Is From Official Sources

राइट-क्लिक a process → Select “Verify Image Signature”:

  • Process Explorer checks the digital signature of the .exe or DLL file
  • If it shows “Verified” → The file is from official channels and hasn’t been tampered with
  • If it shows “Unable to verify” → Could be an unsigned file or an invalid signature This is a quick way to determine “Is this process a legitimate Windows process?” ---## पेशेवर मीडिया और उपयोगकर्ता समीक्षाएं | | Source | Review | | |--------|--------| | | TechRadar | “Process Explorer is an indispensable उपकरण for power users — the ‘find handle’ विशेषता alone makes it worth keeping on every Windows PC” | | | | PCWorld | “The gold standard for process management on Windows — Mark Russinovich’s masterpiece remains essential after 20+ years” | | | | How-To Geek | “If you’ve ever been frustrated by ‘file in use’ errors, Process Explorer is the उपकरण that ends that frustration instantly” | |

वास्तविक उपयोगकर्ता क्या कहते हैं

“Process Explorer’s handle search has saved me countless times. During development, I often encounter ‘file in use — can’t generate’ — Ctrl+F, search the file name, find the process, kill it, regenerate. Whole process in 10 seconds. Previously I had to restart my computer, sometimes multiple times a day.” — Backend Developer, Zhihu “When investigating malware, Process Explorer’s tree view is especially useful. Once I saw svchost.exe with a parent process of explorer.exe — that’s wrong, normal svchost should have services.exe as its parent. Traced it and found a Trojan disguised as a system service.” — सुरक्षा Researcher, V2EX ---## Competitor तुलना | | आयाम | Process Explorer | Process Hacker | System टास्क मैनेजर | | |-----------|---------------------|---------------|-------------------| | | मूल्य | Fully Free | Fully Free | Built-in Free | | | | Developer | Microsoft (Sysinternals) | ओपन सोर्स समुदाय | Microsoft | | | | Handle Search | ✅ Signature विशेषता | ❌ No | ❌ No | | | | Tree Process View | ✅ Yes | ✅ Yes | ❌ Flat list | | | | DLL/Handle Details | ✅ Per process | ✅ Per process | ❌ No | | | | Digital Signature Verification | ✅ Exclusive | ❌ No | ❌ No | | | | Force Terminate Process | ❌ No | ✅ Yes | ❌ No | | | | Suspend/Resume Process | ❌ No | ✅ Yes | ❌ No | | | | GPU Monitoring | ❌ No | ✅ Supported | ⚠️ Win11+ | | | | पोर्टेबल संस्करण | ✅ Yes (Recommended) | ✅ Yes | N/A | | Recommendations:

  • File lock investigation → Process Explorer (handle search is its unique killer विशेषता)
  • Force kill stuck processes + GPU monitoring → Process Hacker (stronger force terminate and suspend)
  • Use both: Process Explorer for file locks, Process Hacker for process management/GPU ---## डाउनलोड & इंस्टॉलेशन गाइड

आधिकारिक डाउनलोड

Process Explorer is part of the Sysinternals suite, distributed through Microsoft’s official channels: | | Channel | डाउनलोड लिंक | Notes | | |---------|--------------|-------| | | Microsoft Official (Recommended) | learn.microsoft.com/sysinternals/downloads/process-explorer | Direct डाउनलोड procexp.exe | | | | Sysinternals Suite | डाउनलोड entire suite | Includes Process Explorer and 60+ tools | |

Safety reminder: Process Explorer is a मुफ्त उपकरण released by Microsoft. No इंस्टॉलेशन required — run directly. डाउनलोड a ZIP archive, extract it, and run procexp64.exe (64-बिट system). A EULA will appear on first run — click “Agree.” This is a one-time prompt.

उपयोग टिप्स

  • Run as administrator: राइट-क्लिक → Run as administrator to see all processes (including system processes)
  • Replace टास्क मैनेजर: Options → Replace टास्क मैनेजर → Then Ctrl+Shift+Esc opens Process Explorer
  • Color coding: Process Explorer uses colors to distinguish processes (pink = Windows Update, purple = services, blue = current user processes, gray = suspended processes) ---## सामान्य प्रश्न Q: How do I use Process Explorer’s handle search? A: Ctrl+F to open the search box → Type part of the file name → Results appear instantly. Double-click a result to jump to the process. राइट-क्लिक on the process → Close Handle to release the handle (without killing the entire process). Q: Which should I choose, Process Explorer or Process Hacker? A: If you only install one: choose Process Explorer (Microsoft official, handle search is irreplaceable). If you install both: Process Explorer for file lock investigation, Process Hacker for forceful management. Both are free and complementary. Q: Can Process Explorer shut down Windows Update processes? A: Technically yes (राइट-क्लिक → Kill Process), but it’s not recommended. Forcefully killing system processes may cause system instability. If Windows Update is using too many resources, use the system’s “Pause अपडेट” विशेषता instead. Q: Does Process Explorer need to be installed? A: Not at all. It’s portable software — डाउनलोड the ZIP, extract it, and run procexp.exe (32-बिट) or procexp64.exe (64-बिट). To remove it, simply delete the folder. This is the consistent style of Sysinternals tools. ---Process Explorer is the process उपकरण that solves your biggest pain point — the first thing everyone thinks of when encountering a “file in use — can’t delete” error. Its handle search विशेषता may be modestly named (“Find Handle”), but its real-world value makes it the most valuable उपकरण for Windows system administrators. Return to tool list
डाउनलोड करें
process explorer
विज़िट करें

इस पेज पर कुछ लिंक सहबद्ध लिंक हैं। हम बिना किसी अतिरिक्त लागत के एक छोटा कमीशन कमा सकते हैं। सभी सिफारिशें वस्तुनिष्ठ समीक्षा पर आधारित हैं।

संबंधित लेख

Autoruns — The Ultimate Startup Manager, Not a Single One Missed

Process Hacker — A Process Management उपकरण 10x More Powerful Than टास्क मैनेजर, Now ओपन सोर्स

Windows टास्क मैनेजर — Built-in System Utility