How to Install and Configure NoVirusThank Event Monitor Service
NoVirusThank Event Monitor Service (NVT EMS) is a lightweight Windows security tool designed to monitor system events in real-time. It tracks process creation, file modifications, registry changes, and network connections. This guide covers how to install and configure the service to enhance your system auditing. Prerequisites Operating System: Windows 7 or higher (32-bit or 64-bit).
Privileges: Administrator rights are required for installation. Dependencies: No external frameworks are needed. Step 1: Download and Extract
Download the latest version from the official NoVirusThank website.
Extract the ZIP archive to a permanent directory, such as C:\Program Files\EventMonitorService</code>. Step 2: Install the Service Open the Command Prompt as an Administrator. Navigate to your extraction folder: cd “C:\Program Files\EventMonitorService\” Use code with caution. Run the installation command: EventMonitorService.exe -install Use code with caution.
Verify the service is installed by checking services.msc for NoVirusThank Event Monitor Service. Step 3: Configure the Rules
The application relies on a configuration file named config.ini located in the same directory. You can edit this file using any text editor. Key Configuration Parameters LogFilePath: Defines where the event logs are saved.
ProcessMonitoring: Set to 1 to enable tracking of executable launches.
FileMonitoring: Set to 1 to monitor file creations and deletions.
RegistryMonitoring: Set to 1 to capture changes to critical registry keys. Setting Up Exclusions
To reduce log noise, add trusted processes or directories to the [Exclusions] section:
[Exclusions] Process=C:\Windows\System32\svchost.exe Directory=C:\Program Files\TrustedApp\ Use code with caution. Step 4: Start and Verify the Service Start the service via Command Prompt: net start EventMonitorService Use code with caution. Open your configured LogFilePath directory.
Check the events.log file to ensure the system is actively recording data.
To help you get the most out of your setup,ini template optimized for malware analysis.
Explain how to forward these logs to a SIEM or central log manager. Share troubleshooting steps for common installation errors.
Leave a Reply