http://www.ghostsecurity.com/index.php?page=regdefend Please uninstall your current RegDefend version before installing this one, and make sure you reboot. You should not install over the top of an existing installation. What is RegDefend? RegDefend is a kernel based registry protection system, designed to use as few resources as possible. Instead of polling the registry looking for changes, RegDefend intercepts the changes before they occur. RegDefend comes installed to protect registry autostarts and some special registry keys, custom rules can also be added. New features and changes since the last version :- -Fast and powerful registry monitoring added with a full compliment of filtering abilities during and after capture -If a registry item is set to "ASK USER" and the operation being performed is "set value" AND the data is the same as exists currently in the registry, then no alert will occur anymore. ie it now checks what is written to what is already there, if the same then it will "allow" the operation to occur. -If the desktop is switched whilst an alert is being displayed or going to be displayed, then RegDefend will simply block the operation by default instead of asking the user. -Fixed balloon alerts from not appearing due to "Show Ghosts in background option" which has now been removed. Also changed tooltips to balloons instead of simple rectangles. -Fixed issue with regdefend.exe being suspended and not able to process "Ask User" requests -Now log any registry actions which are allowed by the user, rather than only showing actions which are blocked -Any log event which is blocked automatically due to inability to ask the user, will be shown with [AUTO RESPONSE] in the log -GUI now selects first registry group upon startup -Now show all information about registry items in the listview -Now show which registry group a log event belongs to -Optimized sorting -Lots of other small fixes and tweaks, thanks to all testers.