Registry Monitoring, what's best?

[Barry]

I searched and found a thread about Registry Snapshots, but not real time registry monitoring under WinXP!

I use Regmon, but does it capture ALL activity from any dll's, ocx files etc, from the program you want to monitor?

I've installed a Macromedia projector prog but can't find where it stored the reg number using Regmon, tried Filemon to see if it was in a file, again no dice! This prog creates many temp files in my temp folder, but regmon/filemon never reports any of them are running, just the main app used to launch the prog.

I've also tried Active Registry Monitor to compare snapshots and a prog called MultiMon, but it kept giving Monitor failed error and never showed anything? Neither found where the reg number was being stored

Any suggestions (other than use Google you moron ) for an in depth registry monitor?

[DARKER]

The best one is by me Regmon (Good work Mark). But when you want use it in "Real world" i recommende change the window name and others things that can't be detected by other progies :-)

[Barry]

I remember a patch for an earlier version of Regmon/Filemon, but it's not been updated for newer versions!

I managed to sort it out eventually. Have Win98 on another partition, so booted it up, ran Active Registry Monitor before/after installing the prog and it found the reg key I was looking for

Would still like to see it 'real time' though!

[bilbo]

I suggest you REGSHOT: less than 50 KB!

It simply do snapshots before and after installations, and then compares the two. It cannot be defeated. It does not need installation. It can do the same job to monitor directories...

Small is beautiful
bilbo

[Barry]

Thanks bilbo, just tried Regshot, does the job too! It's not as polished as Active Registry Monitor but for 43kb it's not surprising

Another tool for the collection!

[Barry]

Regshot runs under WinXP for me so can't see why it won't run under 2000!

Here's a link to it:

Code:

http://k3nny.wz.cz/regshot.1.7.2.zip

There's a Utility InCtr-5 [ In Control ] from Pc Mag which one can run before installing any program and again after install is done [ even after a reboot ] and which give a log of what the changes were made to the Registry.

The only problem is the is log is Megabyte size file to peruse !

Pc mag Uty's are no longer free . They charge $5.00 for any three. I have this one , but do not know how to send it ? If any body needs it to try .

Please leave a clear instruction . Thank you.

[TheDutchJewel]

ak47, I'll up it for you.

This is the one I have:

Quote:

InCtrl5, Version 1.0
Copyright (c) 2000 Ziff Davis Media, Inc.
Written by Neil J. Rubenking
First Published in PC Magazine, US Edition, December 5, 2000, v19n21
http://www.pcmag.com/utilities/

[JMI]

That file is nearly as old as I am. Well not quite, but my CD is gathering dust in the cabinet, and that's where it will stay. There are too many later, more functional versions of registry montoring devices to go back to some of the really old stuff. But hey, if it works for you, and you want to, use it. But all the other, newer ones are out there available for downloading on the net. And NO, don't ask me where, go search and yee shall find. And InCtrl5 is available everywhere on the net.

[Edit: hackmix, in an effort to get his first post, claimed the program could not be defeated and didn't even have to be installed. Since the program under discussion comes in a installer and does not, as described, include a standalone exe, hackmix's post has been removed.]

[Edit2: There is also a script available on the net to exclude the recording.of some things you might not want to record. This would be agumented. Search for: "inctrl5_exclusion.txt".]


Regards,

[ssb]

I use TotalUninstall for that kind of job. It can export file/registry mods in a text file with before/after fields. That's very helpful.
With TUN you always have the full uninstall option too

you could try LockDown Millennium registry monitor and see if you like it. its not freeware though.

hxxp://lockdowncorp.com/manual/RegistrySettings.htm

Why not give Advanced Registry Tracer a try? See for it and let us know

deviljin

you can also try Resplendent Registrar, it seems to be good

System Mechanic also has a good one included. I have used it for years.
They call it Safe Installer. Shows before and after for your whole system.