MJ Registry Watcher 1.2.6.8 (FREE)英文版
本帖最后由 roxiel 于 2009-6-3 09:21 编辑最新下载页
下载地址1 US
下载地址2 RO
下载地址3 MIRROR
A simple system tray application that monitors for changes to any of the startup folders, registry etc
MJ Registry Watcher is a simple system tray application that monitors for changes to any of the startup folders, startup registry keys, and any files you want alerting on.
To install MJ Registry Watcher, extract the files with pathnames, and you'll have a self-contained .exe file with a small help text file, the keys and files lists, and a couple of exclusion files in the MJRegWatcher directory. Create a shortcut to C:MJRegWatcherRegWatcher.exe and launch it.
Then, use the Options, Settings, Automatic Startup Options screen to install it either just for the current user, or for all users. From this screen, you can also choose which key set to start it up with, or even uninstall it.
If a trojan attempts to change your startup settings, you will be alerted, and you can prevent any changes being made.
MJ Registry Watcher is fully configurable as to what keys and files are monitored, so, if you have a vested interest in protecting your file association for the mailto protocol (your default emailer), so that your preferred app loads them, and something else is trying very hard to undermine this association (Outlook for example), this will popup, offering to stop a new association attempt, after Outlook had loaded, say.
The key that stores this association is hkey_lmus-software-classes-mailto-shell-open-command, and you could protect other associations by changing "mailto" to the desired type, for example, "jpegfile".
MJ Registry Watcher assumes write access and directory create rights for the path the .exe file sits in (ie. wherever you installed it). The default set of keys and files should ensure that nothing gets run at startup without you knowing about it, and important boot up files don't get changed behind your back.
When monitoring, keys are opened in Read-Only mode, and the application only needs Write Registry access when it has detected a change. It keeps a log of any suspect activity, and displays any such information for the current session in the bottom panel. A log file has this appended to it and can be viewed by pressing the Log button. The file keeps a complete history of alerts.
What's New in This Release: [ read full changelog ]
· Changed the use of the word "Registry" to "Reg" because of the Brontok virus rebooting the PC when it detects a window with "Registry" in the title
· Added the ability for MJRW to erase chosen values from any key without having to go into
· RegEdit. Again, this is because Brontok reboots if you launch RegEdit
· Removed %alldocs% from the mnemonics because it didn't work. Replaced it with %allappdata%
· which points to the common repository for application data. Under XP, this is usually c:documents and settingsall usersapplication data
· Corrected over-long widths of 3rd and 4th buttons on the viewer window after an alert
· Added option to take you to the MJ software website
· Added option to check for updates, which will list the newest changes and optionally take you to the website
功能类似 PROCESS GUARD(这个就要收费啦),可以监视的注册表,并设置安全级别
**附件为一个绿色版,使用前需查毒 这个有说明吗 这个有说明吗
玩的就是技术 发表于 2009-10-14 23:27 http://www.52pojie.cn/images/common/back.gif
这个说明就在上面,不过没有中文说明 最好弄个中文的,不懂英文的就没法用了拉! 俺是来支持楼主头像里的那个美女的。 貌似这个以前收集过
页:
[1]