Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

How to prevent a program from monitoring changes to the registry?

Posted on 2007-11-17
7
353 Views
Last Modified: 2012-05-05
Dear Masters

I know that a program by using RegNotifyChangeKeyValue API function can monitor registry changes.
but suppose that i want to create a registry key containing my program expire date, so this program can monitor it and then this key can be removed so my software can be used without limitations in time or date. so it seems that i should prevent such monitors from working. my question is that how i can prevent a program (which is monitoring registry) from monitoring registry?

Thank you in advance for your information.
===================================
Sincerely, Yours
Milad
0
Comment
Question by:miladyyy
  • 3
  • 2
7 Comments
 
LVL 19

Expert Comment

by:weellio
ID: 20304727
if they have 'read' access to the key, then you can't stop them from monitoring the registry key.

your question should be 'how can i put an expiration on my demo program'

why not try having your software expire after a specific number of uses, not days and encrypt the data within the exe itself,. or for that matter you can hash the date within there as well.
0
 

Author Comment

by:miladyyy
ID: 20305361
Dear Master (weellio)

Thank you for lightening-speed response, to some extent you are right but when putting information in the exe users can backup original unsed exe in a safe place and then overwrite used exe with the original one. so expire does not mean in that way, do you know EXECryptor software?
it stores information in registry but another software called Trial-Reset can delete its registry entries.
although EXECryptor is the strongest protector for Win32 applications i think a monitor program has detected EXECryptor's registry keys. so delete is available and possible whenever we want. but only this API can monitor registry changes, without it there is nearly no way to detect registry changes.
so i wanted to know if there is a way of killing this monitoring.

Please help me with it.
Thank you in advance for your information and guidance.

Sincerely, Yours
================
Milad
0
 
LVL 19

Expert Comment

by:weellio
ID: 20308971
one possibility is not creating the expiration data in the registry during the install, but after the first or second opening of the program.  normally this isn't monitored as closely.


check out activelock
http://www.activelock.com/download.html


or these other EE options
http://www.experts-exchange.com/Programming/Languages/.NET/Visual_Basic.NET/Q_21486786.html?
http://www.experts-exchange.com/Programming/System/Windows__Programming/MFC/Q_10054037.html?

0
Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

 

Author Comment

by:miladyyy
ID: 20311309
Dear weellio

Thank you for your response, but even ActiveLock expire date or its registry entries can be deleted by Trial-Reset, and if someone runs a registry monitor program before running the application for the first time or before setup, they can detect any registry changes, by the way it seems that there is no way and i should try to find a solution by myself. Again thank you for your guidance.

Sincerely, yours
==============
Milad
0
 
LVL 19

Accepted Solution

by:
weellio earned 50 total points
ID: 20317187
unless you somehow bypass whatever it is they are going to use to monitor the registry, then there is no way to get what you want.

it is like you are trying to get in the front door of someone's house while they are watching you. unless you can get them to close their eyes they will see what you are doing.

0
 
LVL 1

Expert Comment

by:Computer101
ID: 21000164
Forced accept.

Computer101
EE Admin
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Have you ever wanted to restrict the users input in a textbox to numbers, and while doing that make sure that they can't 'cheat' by pasting in non-numeric text? Of course you can do that with code you write yourself but it's tedious and error-prone …
Enums (shorthand for ‘enumerations’) are not often used by programmers but they can be quite valuable when they are.  What are they? An Enum is just a type of variable like a string or an Integer, but in this case one that you create that contains…
Get people started with the process of using Access VBA to control Outlook using automation, Microsoft Access can control other applications. An example is the ability to programmatically talk to Microsoft Outlook. Using automation, an Access applic…
Show developers how to use a criteria form to limit the data that appears on an Access report. It is a common requirement that users can specify the criteria for a report at runtime. The easiest way to accomplish this is using a criteria form that a…

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question