|
|
Post by powerplayer on Oct 31, 2020 9:58:45 GMT -8
Hey i wanna remove locked down reg entries in win10 cmd how do i go about it? i tried a few programs that people recommended but nothing did the job they were still locked any ideas?
|
|
|
|
Post by leet on Oct 31, 2020 11:31:43 GMT -8
Like what?
|
|
|
|
Post by powerplayer on Nov 1, 2020 7:15:56 GMT -8
Anything i wanna get rid of , im doing experiments ... Most edge stuff are locked down |
|
|
|
Post by ihatemetro on Nov 1, 2020 7:28:39 GMT -8
Anything i wanna get rid of , im doing experiments ... Most edge stuff are locked down It functions like the Run dialog, type regedit into it and press ok. Then you can just delete whatever you want. |
|
|
|
Post by powerplayer on Nov 1, 2020 13:55:10 GMT -8
Anything i wanna get rid of , im doing experiments ... Most edge stuff are locked down It functions like the Run dialog, type regedit into it and press ok. Then you can just delete whatever you want. cked And for the rest of the 500 lolines i got? dude i dont want to do one or two!! PLUS REGEX is only good for 1 or 2 entries while execti does not work at all.... |
|
|
|
Post by ihatemetro on Nov 1, 2020 14:12:00 GMT -8
winaero.com/execti/It functions like the Run dialog, type regedit into it and press ok. Then you can just delete whatever you want. cked And for the rest of the 500 lolines i got? dude i dont want to do one or two!! PLUS REGEX is only good for 1 or 2 entries while execti does not work at all.... That opens the GUI Registry Editor, if you want cmd instead just type cmd in the box. ExecTI is always what I use to rename and delete System32 files and registry entries using cmd and regedit, I hate taking ownership too. If ExecTI doesn't work at all try RunAsTI instead: github.com/jschicht/RunAsTIJust make sure to download everything and run the 64 bit version. It opens cmd. |
|
|
|
Post by leet on Nov 2, 2020 2:51:01 GMT -8
cked And for the rest of the 500 lolines i got? dude i dont want to do one or two!! PLUS REGEX is only good for 1 or 2 entries while execti does not work at all.... That opens the GUI Registry Editor, if you want cmd instead just type cmd in the box. ExecTI is always what I use to rename and delete System32 files and registry entries using cmd and regedit, I hate taking ownership too. If ExecTI doesn't work at all try RunAsTI instead: github.com/jschicht/RunAsTIJust make sure to download everything and run the 64 bit version. It opens cmd. RunAsTI always seems to open a SYSTEM cmd window instead of TrustedInstaller |
|
|
|
Post by ihatemetro on Nov 2, 2020 13:29:50 GMT -8
That opens the GUI Registry Editor, if you want cmd instead just type cmd in the box. ExecTI is always what I use to rename and delete System32 files and registry entries using cmd and regedit, I hate taking ownership too. If ExecTI doesn't work at all try RunAsTI instead: github.com/jschicht/RunAsTIJust make sure to download everything and run the 64 bit version. It opens cmd. RunAsTI always seems to open a SYSTEM cmd window instead of TrustedInstaller For me it opens proper TrustedInstaller Windows though. You should try copying a system file and renaming it directly in System32. If it works, than it's TrustedInstaller. |
|
|
|
Post by powerplayer on Nov 4, 2020 15:09:32 GMT -8
cked And for the rest of the 500 lolines i got? dude i dont want to do one or two!! PLUS REGEX is only good for 1 or 2 entries while execti does not work at all.... That opens the GUI Registry Editor, if you want cmd instead just type cmd in the box. ExecTI is always what I use to rename and delete System32 files and registry entries using cmd and regedit, I hate taking ownership too. If ExecTI doesn't work at all try RunAsTI instead: github.com/jschicht/RunAsTIJust make sure to download everything and run the 64 bit version. It opens cmd. yES but the reg keys i wannas delete are hidden with execti |
|
|
|
Post by ihatemetro on Nov 4, 2020 15:27:48 GMT -8
That opens the GUI Registry Editor, if you want cmd instead just type cmd in the box. ExecTI is always what I use to rename and delete System32 files and registry entries using cmd and regedit, I hate taking ownership too. If ExecTI doesn't work at all try RunAsTI instead: github.com/jschicht/RunAsTIJust make sure to download everything and run the 64 bit version. It opens cmd. yES but the reg keys i wannas delete are hidden with execti Are they in HKEY_CURRENT_USER or in HKEY_LOCAL_MACHINE? |
|
|
|
Post by powerplayer on Nov 6, 2020 15:10:53 GMT -8
Are they in HKEY_CURRENT_USER or in HKEY_LOCAL_MACHINE? HKEY_CURRENT_USER |
|
|
|
Post by ihatemetro on Nov 6, 2020 17:17:32 GMT -8
Are they in HKEY_CURRENT_USER or in HKEY_LOCAL_MACHINE? HKEY_CURRENT_USER Yep, you will be in the SYSTEM user when in RunAsTI or ExecTI, so you can't access your normal HKEY_CURRENT_USER keys there. Instead you will have to look in HKEY_USERS and find your user SID, and modify the keys there. To do that, open cmd as admin (no RunAsTI for that cmd window) and run this command: wmic useraccount get name,sid Your SID will be next to your username in the command output. The reg path for it would be HKEY_USERS\[SID] . Then you would have your normal HKEY_CURRENT_USER keys. You can just copy-paste the sid into your SYSTEM command window. |
|
|
|
Post by powerplayer on Nov 8, 2020 19:13:05 GMT -8
Yep, you will be in the SYSTEM user when in RunAsTI or ExecTI, so you can't access your normal HKEY_CURRENT_USER keys there. Instead you will have to look in HKEY_USERS and find your user SID, and modify the keys there. To do that, open cmd as admin (no RunAsTI for that cmd window) and run this command: wmic useraccount get name,sid Your SID will be next to your username in the command output. The reg path for it would be HKEY_USERS\[SID] . Then you would have your normal HKEY_CURRENT_USER keys. You can just copy-paste the sid into your SYSTEM command window. Sounds like a long process i just wanna take ownership of the entire registry and modify it as i want it to be |
|
|
|
Post by ihatemetro on Nov 8, 2020 19:25:19 GMT -8
Yep, you will be in the SYSTEM user when in RunAsTI or ExecTI, so you can't access your normal HKEY_CURRENT_USER keys there. Instead you will have to look in HKEY_USERS and find your user SID, and modify the keys there. To do that, open cmd as admin (no RunAsTI for that cmd window) and run this command: wmic useraccount get name,sid Your SID will be next to your username in the command output. The reg path for it would be HKEY_USERS\[SID] . Then you would have your normal HKEY_CURRENT_USER keys. You can just copy-paste the sid into your SYSTEM command window. Sounds like a long process i just wanna take ownership of the entire registry and modify it as i want it to be You can't, it'll be a long process that way too. You can also just load NTUSER.dat in HKEY_LOCAL_MACHINE (File > Load Hive > Go to user directory > NTUSER.DAT) from your user directory as TrustedInstaller, it's the same as HKEY_USERS\[SID]. That's not as long. DO NOT USE IMPORT. |
|
|
|
Post by powerplayer on Dec 30, 2020 14:03:31 GMT -8
Sounds like a long process i just wanna take ownership of the entire registry and modify it as i want it to be You can't, it'll be a long process that way too. You can also just load NTUSER.dat in HKEY_LOCAL_MACHINE (File > Load Hive > Go to user directory > NTUSER.DAT) from your user directory as TrustedInstaller, it's the same as HKEY_USERS\[SID]. That's not as long. DO NOT USE IMPORT. I just want to create a script to delete the registry entries i dont want |
|
