All Things Microsoft > Microsoft Software
Easy Removal of Windows Super Hidden Temp Files
para_fms:
which is more useful in what way?
if i'm interested in seeing my browsing history, the former.
if i'm interested in digging deeper, perhaps the latter.
what's the 'MSHist...' directory showing in ubuntu?
Aloone_Jonez:
--- Quote from: para_fms ---which is more useful in what way?
if i'm interested in seeing my browsing history, the former.
if i'm interested in digging deeper, perhaps the latter.
--- End quote ---
I'll rephrase this then, which is more useful to the average user?
Really the latter isn't of much use to anyone because the format for the index.dat files isn't documented anyway.
--- Quote from: para_fms ---what's the 'MSHist...' directory showing in ubuntu?
--- End quote ---
It contains another index.dat file.
para_fms:
can you get 'MSHist...' to display in explorer or the shell?
have you ever run something like RegmonNT while playing with this stuff to see what reg keys are being accessed? i wonder if that would reveal anything? i'm looking at it myself, but i'm not knowledgabe enough to interpet the output. btw, this is from the command prompt. this is after 'cmd> edit index.dat' stuff that's catching my eye are a lot of entries like this:
36.62854767 cmd.exe:1884 OpenKey HKCU\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\131072\UrlZones NOT FOUND
36.77085876 ntvdm.exe:2016 OpenKey HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GDI32.dll NOT FOUND
Aloone_Jonez:
I've never heard or RegmonNT, it sounds interesting, but I tend to avoid shareware stuff like this because it's given me problems before.
I don't know but I do recognise the names of the processes.
cmd.exe is the Windows command line.
ntvdm.exe NT Virtual Dos Machine - Windows' MS-DOS emulator, it's probably being used to run the MS-DOS editor edit.com.
GDI32.DLL Graphical Display Interface - Winodows' answer to X.org
I'm sure you probably knew this.
para_fms:
RegmonNT is portable freeware. it's an indispensable utility for monitoring reg read/write in real time. 'Filemon' is another. you'll find them here, along with a host of other free, portable apps:
http://www.sysinternals.com/
oh... actually it's just called 'Regmon'. sorry. d/l is called RegmonNT.
Navigation
[0] Message Index
[#] Next page
[*] Previous page
Go to full version