Thus, winlogon.exe should constantly continue to work in the background, being a very important part of the authorization process in the Windows. Ctrl+Alt+Delete combination of keyboard shortcuts is always caught by winlogon.exe, which ensures you’re signing in on a secure desktop where other programs can’t monitor the password you’re typing or impersonate a sign-in dialog. This is known as “Secure attention sequence”, and it’s why some PCs may be configured to require you to press Ctrl+Alt+Delete before you sign in. The Windows Logon process also monitors the activity of the keyboard and mouse, is responsible for locking your computer and launching screen savers after a period of inactivity. This requires obtaining kernel-level privileges, which greatly complicates the programming of such a task. In order to “slam” this service programmatically, it is not enough to use the top-level API. But it can be done with the help of specialized software, for example, – the utility “Process Explorer”. It can not be deleted from the list of executables, using, for example, the “Task Manager”. The winlogon.exe process is classified as “not killed”. The winlgon.exe file is always located in C:\Windows\System32. Winlogon.exe Windows Logon Application – is the process responsible for starting the session and logging out the user’s logoff.
0 kommentar(er)
