Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
D
D
Dron192020-01-15 08:05:56
Windows
Dron19, 2020-01-15 08:05:56

Track the start of the windows process in the event log?

How to track the launch of the trustedinstaller process in the event log?
The goal is to lower the priority of the process execution upon the fact of its launch

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
A
Andrey Semenov, 2020-01-22
@EraserKhv

1. Enable audit in local policies "Computer Configuration" -> "Windows Policy" -> "Security" -> "Advanced Audit" -> "Detailed Tracking" -> "Audit Process Creation".
After that, events will appear in the Security section about starting processes, for example, No. 4688.
It remains to program the application / script that will respond to this event.

Similar questions
S
schastny2012-12-22 12:19:51
Windows 7 on EFI with GPT and non-EFI (BIOS) installation? 2Reply
O
Oleg Pogrebnyak2018-05-11 09:56:22
Batch doing multiple things? 1Reply
M
matros972018-05-11 10:52:18
Is it worth installing Windows 7 x64 Home Premium on a laptop? 3Reply
D
Dubrovin2018-05-12 05:10:09
How to add hotkeys to launch applications? 2Reply
S
Sergey2015-01-03 12:26:23
Is there an Ubuntu appfider for Windows 10? 0Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question