The value of 1 indicates that the EULA has been accepted by the user.ĭ. Currently, the value for the registry key EulaAccepted is 0x00000001(1).Ĭ. Scroll down to locate the key EulaAccepted. Navigate to the EulaAccepted registry key for Process Explorer.Ĭlick to select Process Explorer in HKEY_CURRENT_USER > Software > Sysinternals > Process Explorer. In a previous step, you had accepted the EULA for Process Explorer. HKEY_CURRENT_CONFIG stores the hardware information that is used at bootup by the local computer.ī.HKEY_CURRENT_USER is a subkey of HKEY_USERS. HKEY_USERS contains the settings and configurations for all the users on the local computer.HKEY_LOCAL_MACHINE stores configuration information specific to the local computer.HKEY_CURRENT_USER contains the settings and configurations for the users who are currently logged in.It stores information used by registered applications like file extension association, as well as a programmatic identifier (ProgID), Class ID (CLSID), and Interface ID (IID) data. HKEY_CLASSES_ROOT is actually the Classes subkey of HKEY_LOCAL_MACHINESoftware.These hives are at the top level of the registry. Click Yes when asked to allow this app to make changes. To access the Windows Registry, click Start > Search for regedit and select Registry Editor. The Windows Registry is a hierarchical database that stores most of the operating systems and desktop environment configuration settings.Ī. Close the Process Explorer when finished. The handles are pointing to files, registry keys, and threads.ī. What happened to the web browser window when the process is killed? Right-click the selected process and select Kill Process. The Microsoft Edge process can be terminated in the Process Explorer. Microsoft Edge was used in this example.Į. To locate the web browser process, drag the Find Window’s Process icon into the opened web browser window. The Process Explorer displays a list of currently active processes.ĭ. Accept the Process Explorer License Agreement when prompted.Ĭ. Navigate to the SysinternalsSuite folder with all the extracted files.ī. Leave the web browser open for the following steps. After the download is completed, extract the files from the folder.Ĭ. Navigate to the following link to download Windows SysInternals Suite:ī. Step 1: Download Windows SysInternals Suite.Ī. You will also start and observe a new process. You will explore the processes using Process Explorer in the Windows SysInternals Suite. Processes are programs or applications in execution. In this part, you will explore processes. You will also use the Windows Registry to change a setting. In this lab, you will explore the processes, threads, and handles using Process Explorer in the SysInternals Suite. Instructor Note: Red font color or gray highlights indicate text that appears in the instructor copy only. 3.2.11 Lab – Exploring Processes, Threads, Handles, and Windows Registry (Instructor Version)
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |