Privateregistry.bin file, give a name to the hive (I entered Node, and click the File > Load Hive… menu. To change values in the private registry hive by hand, you can use Processes (that are exes), this causes them not to work. VS extensions (which are dlls) this is transparent, for external Internally VS uses a redirection and while for The increase the isolation and resilience of VS 2017, it uses now a To edit private hive it should be loaded before.įor Visual Studio it can be made this way: I need to answer to my own question in comments. tasklist /svc /fi "pid eq 1240"įigure 1: Screenshot of registry-editor with hivelist key highlighted, showing mounted registry hives
I’ve used the pid (1240) that it was using at the time of your screenshot replace it with the current PID. You can use this command to see which services are being hosted by the specific instance of svchost.exe. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\hivelist It will show both the internal registry path and the path to the hive file (figure 1). You can see a list of all registry hives that are currently mounted under any name (including system-wide hives, user hives for users that are currently logged on, and any hives loaded manually or by software) at the following registry key. I can’t reproduce what you are seeing on my system, but I can tell you how you can find out what it is on yours. What does the path '\REGISTRY\A\…' in Sysinternals Procmon log mean? Could you please explain what part of the registry it is? Can I see it using Regedit or some other utility? Can I access it programmatically?
0 kommentar(er)
