procmon leaves something in place that anti hack software detects

Process Monitor does not have a straightforward method to remove it completely off of your computer. You'll have to delete it manually via Registry Editor, but make sure to do it carefully because Reg Edit can really wreak havoc on your computer if you don't know what you're doing.

Here's a step-by-step guide

1. Check if Procmon is Running:

• Open Command Prompt as Administrator.
• Type fltmc and press Enter. If you see PROCMON24 or 23 on the list, it means it is still running on your computer.

2. Access the Registry Editor:

• Press Win + R to open the Run dialog.
• Type regedit and press Enter.

3. Navigate to the Procmon Key:

• Inside Registry Editor, go to Computer\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\PROCMON24

4. Delete the Procmon Key (Folder):

• Right-click on the "PROCMON24" folder.
• Select "Delete" from the context menu.

5. Delete Procmon Driver File:

• Open Command Prompt as Administrator.
• Type del /ah C:\Windows\System32\drivers\PROCMON24.SYS and press Enter.

6. Restart Your Computer:

• After deleting the key and file, restart your computer to apply the changes.

7. Confirm Removal:

• Open Command Prompt as Administrator again.
• Type fltmc to confirm that Procmon is no longer listed.

Procmon24 should now be completely removed from your system!

there is $300 software called SAM Broadcaster made by SpacialAudio that will not run if you have procmon running even if you exit procmon the driver is still loaded into memory and wont unload

thats not the issue. I can keep the anti hack software happy simply by stopping procmon and rebooting. The problem is that after running procmon I have to reboot, thats a pain