How-To: Configure RegRun Security Suite Platinum for Maximum Protection

How-To: Configure RegRun Security Suite Platinum for Maximum Protection

Overview

RegRun Security Suite Platinum adds layered defenses (startup control, rootkit detection, registry protection, monitoring) that complement antivirus and firewall software. This guide assumes Windows ⁄₁₁ and a current RegRun Platinum installation (latest version as of Feb 6, 2026). Follow the steps below to harden the product for maximum protection while keeping system stability.

1) Prepare (quick checklist)

• Backup: Create a full system restore point and export important files.
• Update: Open RegRun → Help/Check for updates and install the latest RegRun definitions and program update.
• Complementary tools: Ensure you have a reputable antivirus and an active firewall (Windows Defender or third-party).

2) Initial configuration — core protection

1. Open RegRun as administrator.
2. Go to Rescue / Registry Backup and create an immediate full registry backup. Enable automatic scheduled backups (daily or weekly depending on usage).
3. Enable Secure Start (if present): set it to monitor changes before Windows boot and to prompt on any startup-file/registry modification.
4. Turn on Registry Guard / Registry Tracer for all critical keys (HKLM\Software\Microsoft\Windows\CurrentVersion\Run, HKCU\…Run, services, drivers). Set it to block unauthorized changes and to create point-in-time snapshots.
5. Enable System Files Protection and add critical system files (ntoskrnl.exe, wininit.exe, explorer.exe) and any security-product files to the protected list.

3) Startup & process controls

1. Open Start Control / Startup Analyzer:
   • Review all startup entries. For each unknown item, click details → lookup. Disable or set to “manual” any nonessential or suspicious entries.
   • Keep browser helper objects and shell extensions list clean—disable untrusted BHOs.
2. Enable WatchDog to silently monitor startup and runtime changes; configure it to alert and block by default, not just notify.
3. Configure RunGuard / Program Control:
   • Set default policy to “Prompt” or “Block” for unsigned executables.
   • Whitelist known-safe folders (Program Files, Windows) and known apps; block execution from Temp, Downloads, AppData\Local\Temp, or other writable directories.

4) Rootkit and offline recovery tools

1. Run a full scan with RegRun’s rootkit detectors (Partizan, UnHackMe modules).
2. Create a RegRun Warrior boot-medium (ISO/USB) for offline scanning and removal. Store it for emergency use.
3. Schedule periodic offline/rootkit scans (weekly or monthly depending on risk).

5) Network & connection monitoring

1. Open Network Connections Monitor:
   • Enable port and connection monitoring.
   • Set alerts for unfamiliar outbound connections, stealth/listening ports, and new services opening network sockets.
2. Combine with your firewall: block unknown apps attempting outbound connections until verified.

6) Harden script and autorun execution

1. Enable RunGuard’s script protection for VBS/JS/HTML macros and Office files. Set it to block unknown scripts automatically.
2. Disable autorun/autorun.inf behavior for removable drives (use Windows settings + RegRun’s autorun manager).

7) Clean Boot and troubleshooting settings

1. Configure Clean Boot profiles for safe troubleshooting: create a “Minimal” and a “Troubleshoot” profile that disables nonessential startup items.
2. Keep BootLog/BootLog Analyzer enabled to catch boot-time anomalies and to speed diagnosis after updates or infections.

8) Alerts, logs, and automated response

1. Set WatchDog and other monitors to:
   • Log all events with timestamp.
   • Send pop-up alerts for high-risk events (new driver installs, kernel modifications).
   • Auto-rollback registry/startup changes when possible.
2. Regularly review logs (weekly) and export critical logs before major changes.

9) Scheduling & maintenance

• Full scans: weekly.
• Rootkit/offline scans: monthly.
• Registry backups: daily or weekly (keep last 7–14 copies).
• Update check: enable automatic updates or check weekly.

10) Recovery plan (if RegRun detects compromise)

1. Use Rescue to restore the last clean registry snapshot.
2. Reboot into RegRun Warrior (bootable media) and run an offline rootkit scan.
3. Quarantine suspicious files; run your full antivirus scan.
4. If system still unstable, restore a system image or reinstall Windows, then restore data from known-clean backups.

Quick security policy recommendations (decisive defaults)

• Default execution policy: Prompt for unknown, Block for unsigned from Temp/Downloads.
• WatchDog: Enabled, automatic rollback of startup/registry changes.
• Registry backups: Daily, keep 14 versions.
• Offline rootkit media: Created and stored externally.

Final notes

• Keep RegRun, your AV, and Windows fully updated.
• Avoid whitelisting apps without verification; use vendor signatures and Microsoft SmartScreen where available.
• Maintain regular backups and a recovery USB so you can respond to serious compromises.