2
Regarding "Permissions" in Windows, is it possible to trace or determine "who" is actually changing something? (i.e., determine what user is modifying something with their respective permissions)
For example, Process Monitor can see that certain registry keys are being accessed and set, but is it also possible to determine who (what user) was doing the accessing/altering?
I'm trying to track down the precise user account that's changing something, rather than willy-nilly locking down the various accounts in the permissions table through trial-and-error.
1what are they changing? – Keltari – 2013-04-28T21:15:05.380
Sound configuration properties of an audio device through the Windows Sound control panel (which alters properties through registry keys). I happened to determine which "user" does the accessing/editing through this method, but I'm still keen to determine if there's a way to determine this other than through trial and error. – Coldblackice – 2013-04-28T21:27:47.197