標籤:pslist serial and file end files conf bre computer
在註冊表的某些關鍵項(譬如:System、Root),連Administrator都沒有許可權進行修改,因為只有“system”有許可權。
【警告】切勿企圖進行註冊表上層許可權覆蓋低層許可權的方式來使Administrator或其他使用者奪權,這樣會導致很多Windows服務都無法開啟!!!甚至Windows就此掛掉!
(像我這個傻B剛才就進行了上面的操作。。。。。。 如果像我這樣操作了,就要看我上一條部落格,把註冊表許可權恢複預設。)
【正確操作】
使用 psexec.exe,以 system 身份開啟 regedit.exe,這樣便可以直接修改,
命令:
psexec.exe -i -d -s regedit.exe
psexec屬於Windows內部工具之一,這些強力的瑞士軍刀可以從這裡下載:
http://technet.microsoft.com/en-us/sysinternals/bb795533.aspx
---------------------------- 分割線 ---------------------------------
下面附帶Windows內部工具的英文原版說明 和 Google自動翻譯的中文(以便搜尋引擎進行索引)
Sysinternals Process Utilities
Autoruns
See what programs are configured to startup automatically when your system boots and you login. Autoruns also shows you the full list of Registry and file locations where applications can configure auto-start settings.
Handle
This handy command-line utility will show you what files are open by which processes, and much more.
ListDLLs
List all the DLLs that are currently loaded, including where they are loaded and their version numbers. Version 2.0 prints the full path names of loaded modules.
PortMon
Monitor serial and parallel port activity with this advanced monitoring tool. It knows about all standard serial and parallel IOCTLs and even shows you a portion of the data being sent and received. Version 3.x has powerful new UI enhancements and advanced filtering capabilities.
ProcDump
This new command-line utility is aimed at capturing process dumps of otherwise difficult to isolate and reproduce CPU spikes. It also serves as a general process dump creation utility and can also monitor and generate process dumps when a process has a hung window or unhandled exception.
Process Explorer
Find out what files, registry keys and other objects processes have open, which DLLs they have loaded, and more. This uniquely powerful utility will even show you who owns each process.
Process Monitor
Monitor file system, Registry, process, thread and DLL activity in real-time.
PsExec
Execute processes remotely.
PsGetSid
Displays the SID of a computer or a user.
PsKill
Terminate local or remote processes.
PsList
Show information about processes and threads.
PsService
View and control services.
PsSuspend
Suspend and resume processes.
PsTools
The PsTools suite includes command-line utilities for listing the processes running on local or remote computers, running processes remotely, rebooting computers, dumping event logs, and more.
ShellRunas
Launch programs as a different user via a convenient shell context-menu entry.
VMMap
See a breakdown of a process‘s committed virtual memory types as well as the amount of physical memory (working set) assigned by the operating system to those types. Identify the sources of process memory usage and the memory cost of application features.
------------------- Google自動翻譯 --------------------------
Autoruns
看到哪些程式被配置為當你的系統啟動和您登入自動啟動。自動運行也表明你的註冊表和檔案地點,應用程式可以配置自動啟動設定的完整列表。
Handle
這個方便的命令列工具 + 生產力將告訴你哪些檔案是由開放哪些進程,等等。
ListDLLs
列出所有當前載入的DLL,包括在那裡它們被裝入及其版本號碼。 2.0版列印已載入模組的完整路徑名。
PortMon
監測與這種先進的監測工具,串列和並行連接埠活動。它知道所有的標準串列和並行的IOCTL ,甚至告訴你發送和接收的資料的一部分。 3.x版具有強大的新UI增強功能和先進的過濾功能。
ProcDump
這個新的命令列工具 + 生產力旨在捕獲其他方式難以處理的轉儲進行隔離和重現CPU峰值。它也可作為一般的進程轉儲建立公用程式,也可以監控並產生轉儲過程中,當一個進程有一個掛起的視窗或者未處理的異常。
Process Explorer
找出哪些檔案,登錄機碼和其他對象的進程已經開啟,他們已載入哪些DLL等。這種獨特而強大的工具,甚至會告訴你誰擁有每一個過程。
Process Monitor
在即時監控檔案系統,註冊表,進程,線程和DLL活動。
PSEXEC
遠程執行程式。
PSGETSID
顯示電腦或使用者的SID。
PsKill
終止本地或遠程進程。
PsList
顯示有關進程和線程的資訊。
PsService
查看和控制服務。
PsSuspend
掛起和恢複過程。
PSTOOLS
該PSTOOLS套件包括命令列公用程式用於列出在本地或遠端電腦上啟動並執行進程,遠程運行進程,重新啟動電腦,傾倒事件記錄,等等。
ShellRunas
通過方便的外殼操作功能表項目啟動程式以不同的使用者。
VMMap
看的過程的認可的虛擬記憶體分類的數目,以及實體記憶體量(工作集)由作業系統分配給那些類型。識別進程的記憶體使用量量和應用程式功能的記憶體成本的來源。
無法在Windows 7下刪除/修改登錄機碼:許可權不足