Jump to content
Strawberry Orange Banana Lime Leaf Slate Sky Blueberry Grape Watermelon Chocolate Marble
Strawberry Orange Banana Lime Leaf Slate Sky Blueberry Grape Watermelon Chocolate Marble

MSFN is made available via donations, subscriptions and advertising revenue. The use of ad-blocking software hurts the site. Please disable ad-blocking software or set an exception for MSFN. Alternatively, register and become a site sponsor/subscriber and ads will be disabled automatically. 

Sign in to follow this  
fdv

Running Explorer as TrustedInstaller

Recommended Posts

fdv    0

How to.

Hi all, this is inspired from a thread a while back.

I recently needed to run some utils including Process Explorer while elevated and decided to finally put up a quick how-to on running Explorer while impersonating TI. Maybe it might be useful to some folks. Much credit to Joakim and the guys in that thread!

Share this post


Link to post
Share on other sites
click-click    1

Does anyone know how to temporarily change the service startup type for msmpsvc (Microsoft Antimalware Service) via the registry or otherwise?

 

Everything I've tried gets access denied. Microsoft made some changes to the protection scheme for MSE. Running Regedit as TrustedInstaller doesn't work.

Edited by click-click

Share this post


Link to post
Share on other sites
dencorso    532

It's sort of a longshot, but I bet it'll work right!

Do it on the cold system, from a special linux cd: use this (PCRegedit), which image is findable here: PCRegedit.iso

Of course, the instructions I pointed you to are for another reg mod, not the one you want to do, but it's just for you to get the gist of how to work with it. While working on the cold system isn't quite confortable, it should just work. Now, to get back to the previous state, running regedit as TrustedInstaller, on the hot system, may suffice (then again, it may not, but it's worth trying).

  • Upvote 1

Share this post


Link to post
Share on other sites
Dibya    224

It's sort of a longshot, but I bet it'll work right!

Do it on the cold system, from a special linux cd: use this (PCRegedit), which image is findable here: PCRegedit.iso

Of course, the instructions I pointed you to are for another reg mod, not the one you want to do, but it's just for you to get the gist of how to work with it. While working on the cold system isn't quite confortable, it should just work. Now, to get back to the previous state, running regedit as TrustedInstaller, on the hot system, may suffice (then again, it may not, but it's worth trying).

wow , awesome way to regediting from unbooted windows

  • Upvote 1

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

Sign in to follow this  

  • Recently Browsing   0 members

    No registered users viewing this page.

×