|
Kernel Mode Notificators Window |
|
The Kernel Mode Notificators windows provides information on kernel mode notificators such as: Create Process (a notificator of creating/terminating a process), Create Thread (a notificator of creating/terminating a thread), Load Image (a notificator of loading a module), Registry Callback (a notificator of accessing the registry). The following data is displayed: event type, current handler memory address and the name of the module that has provided the handler. To remove installed notificators, use the Remove and Remove All buttons. |
