PowerRun is a portable freeware to launch regedit.exe , Cmd.exe or other software with the same privileges as the TrustedInstaller / Nt Authority/system Why would you need it? Sometimes it is just not enough to just be running as Administrator, Maybe it’s a file or a registry key that is locked or not editable, PowerRun a tool with this powerful privilege most likely solve that , PowerRun doesn’t require any installation process or additional dll files.
How to use : After downloading, extract PowerRun to your desired location, then run it. You can drag and drop any files on it for example ; program files , Program files shortcuts , script files , text files usw. to run a listed file in TrustedInstaller/SYSTEM privileges you can select it and use run button or right click on it and choose “Run File” feature , the file will run with Highest privileges , you can check the Task manager’s details tab to verify that the selected file running under SYSTEM Privileges
If you’re trying to edit or delete keys from the registry , you might find that some keys won’t let you do anything with them and you’ll get an error such as “Cannot delete xxxxx: Error while deleting key”. These keys are usually protected to stop accidental deletion , You could also be the administrator on the computer, but still can’t manipulate the required key.
Even though the administrator account has a great deal of control, there are other hidden accounts and levels on the system which have even greater access and therefore standard administrator privileges are not enough. To solve this problem, you have to force the registry to allow the logged on user full control of the subkeys in such cases PoweRun can help you : use the “Launch Registry Editor” button
Copy desired registry key and click “Open” button , PowerRun will open regedit (with Highest Privileges) and jump to the key Automatically. If you want to add any parameter to listed script or program rigt click on it and use “Edit Item” or just use wrench Button
For automation purpose PowerRun allows you to create a vbs or bat file with necessary parameters in it , to use this feature :
1. Select the Program
2. And use Edit – create – Create bat/Vbs File feature
Don’t forget to run the script in the same folder with PowerRun.exe or PowerRun_x64.exe
Choosing between System or TrustedInstaller Privileges
You can use PowerRun.exe Only with SYSTEM privileges , to do that ; Please open PowerRun.ini with a text editor and change “TrustedInstaller=1” Value , from “1” to “0”
to see all the supported cmd parameters of PowerRun, use PowerRun.exe ? command
NOTE: PowerRun can not run only with “TrustedInstaller” privileges it can also run with “Nt Authority/system” privileges
Supported operating systems: Windows 11 , Windows 10 , Windows 8.1 , Windows 8 and Windows 7
Supported languages: English , Turkish , German , French , Chinese Simplified , Chinese Traditional , Korean , Persian , Hungarian , Danish , Italian , Greek , Russian , Vietnamese , Dutch , Finnish , Portuguese (Português), Portuguese (Brasileiro) , Spanish, Polish , Slovenian , Indonesian , Bulgarian , Czech , Japanese , Hebrew , Romanian , Swedish , Arabic , Serbian
File: PowerRun_x64.exe │ Virustotal
MD5: 0a4a7f49dd88b8802db5aac1ac5f9483
SHA1: e911c8093cfea481e37f85ea329373098df0ff69
File: PowerRun.exe │ Virustotal
MD5: 408dd6ade80f2ebbc2e5470a1fb506f1
SHA1: e00293ce0eb534874efd615ae590cf6aa3858ba4
@kewin
When PowerShell runs as the system user, the environment variables are owned by the system user.
You can get the current user variables from the registry.
See the sample PowerShell code below.
It might not work in earlier versions of PowerShell.
$tUser = ((Get-WMIObject -ClassName Win32_ComputerSystem).Username).Split(‘\’)[1]
$tUserSID = -split((Get-LocalUser -Name $tUser | Select SID).SID)
$tUserRegEnv = ‘HKEY_USERS\’ + $tUserSID +’\Volatile Environment’
$tUserRegShell = ‘HKEY_USERS\’ + $tUserSID +’\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders’
$tUserProfile = (-split(REG.EXE QUERY $tUserRegEnv /v ‘USERPROFILE’))[5]
$tUserDesktop = (-split(REG.EXE QUERY $tUserRegShell /v ‘Desktop’))[5]
$tUser
$tUserSID
$tUserProfile
$tUserDesktop