Registry Analyzer

Martin Brinkmann
Jan 25, 2009
Software, Windows, Windows software
|
3

Registry Ripper is a portable software program to automatically analyze Registry Hives. It will analyze a selected Registry hive and export the findings into a selected text document. Registry Hives are locked by the Windows operating system which means that it is necessary to copy or access them before the operating system is running. This can be done with a Live CD or by booting into another operating system that can access the Windows partition.

Most of the Registry hives are located in the \Windows\system32\config directory but some in other locations like Document and Settings. To analyze the NTuser hive one would load the file NTUSER.DAT which is located in the \Documents and Settings\username\ directory, select a name for the text document in the second step, select ntuser from the plugin list and click the Rip It button.

The analysis will save various system information in the text document which depend on the analyzed Registry hive. The analysis of the NTuser hive will for example reveal information about the logon username, installed applications, system and remote drives, various recent files lists, the programs that have been accessed recently and software that will start with the computer system.

Registry Ripper is a Registry analyzer that requires some knowledge about the locations of the various Registry hives on the computer system. It clearly aims at more advanced users and can provide the user with all kinds of useful information about a computer system and its users.

Advertisement

Related content

Intel

Microsoft publishes new Registry security mitigation for Intel processors (Spectre)

KeePassXC adds support for Passkeys, improves database import from Bitwarden and 1Password
Malwarebytes 5

First look at Malwarebytes 5.0
RustDoor malware targets macOS users by posing as a Visual Studio Update

RustDoor malware targets macOS users by posing as a Visual Studio Update
keys

KeePass 2.56 released: options search and history improvements
Office

LibreOffice 24.2 released: enables automatic recovery of documents

Tutorials & Tips

How to jump to the last row with data in Microsoft Excel or Google Spreadsheets

OneDrive 101: How to use Microsoft's cloud service?

How to Capture Screenshots on Windows 10 and 11

Quick Ways to Open Device Manager in Windows 11


Previous Post: «
Next Post: «

Comments

  1. Registry Repair Resources said on February 5, 2009 at 4:45 am
    Reply

    Thanks for sharing this kind of info, 1 cent to that post. Good Job!

  2. adioranye said on January 26, 2009 at 4:39 am
    Reply

    Thank you, nice information

Leave a Reply

Check the box to consent to your data being stored in line with the guidelines set out in our privacy policy

We love comments and welcome thoughtful and civilized discussion. Rudeness and personal attacks will not be tolerated. Please stay on-topic.
Please note that your comment may not appear immediately after you post it.

Advertisement

Spread the Word

Advertisement

Hot Discussions

Advertisement

Recently Updated

Latest from Softonic

Advertisement

About gHacks

Ghacks is a technology news blog that was founded in 2005 by Martin Brinkmann. It has since then become one of the most popular tech news sites on the Internet with five authors and regular contributions from freelance writers.

The name and logo of Ghacks are copyrights or trademarks of SOFTONIC INTERNATIONAL S.A.
Copyright SOFTONIC INTERNATIONAL S.A. © 2005- 2024 - All rights reserved