-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathdisable_MemoryDump.psm1
47 lines (32 loc) · 1.24 KB
/
disable_MemoryDump.psm1
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
function disable_MemoryDump {
Set-ExecutionPolicy -Scope CurrentUser -ExecutionPolicy Bypass -Force;
$wshell=New-Object -ComObject wscript.shell
Add-Type -AssemblyName Microsoft.VisualBasic
Add-Type -AssemblyName System.Windows.Forms
Add-Type -AssemblyName Microsoft.VisualBasic
#enable
# wmic recoveros set DebugInfoType = 7
# Set-ItemProperty -Path HKLM:SYSTEM\CurrentControlSet\Control\CrashControl -Name AlwaysKeepMemoryDump -Type DWord -Value 00000001 -Force
#disable
wmic recoveros set DebugInfoType = 0
$results="-"
$index=""
######### write log #######
if($PSScriptRoot.length -eq 0){
$scriptRoot="C:\testing_AI\modules"
}
else{
$scriptRoot=$PSScriptRoot
}
$action="Disable_MemoryDump"
$tcpath=(Split-Path -Parent $scriptRoot)+"\currentjob\TC.txt"
$tcnumber=((get-content $tcpath).split(","))[0]
$tcstep=((get-content $tcpath).split(","))[1]
Get-Module -name "outlog"|remove-module
$mdpath=(Get-ChildItem -path "C:\testing_AI\modules\" -r -file |Where-object{$_.name -match "outlog" -and $_.name -match "psm1"}).fullname
Import-Module $mdpath -WarningAction SilentlyContinue -Global
#write-host "Do $action!"
outlog $action $results $tcnumber $tcstep $index
}
export-modulemember -Function disable_MemoryDump