SystemGuardian is a high-performance Windows service designed for real-time system monitoring, failure prevention, and automated recovery. It ensures system stability by tracking drivers, services, registry changes, and system integrity, preventing potential failures, crashes, and unauthorized modifications.
- Windows 10/11, Windows Insider Preview or Windows Server 2016+
- Administrator privileges
To install the SystemGuardian service, open a command prompt with Administrator privileges and run:
sc create SystemGuardian binPath= "C:\\Path\\To\\SystemGuardian.exe" start= autoThis registers the service in Windows and configures it to start automatically on system boot.
To manually start the service, run:
sc start SystemGuardianIf you need to stop or restart the service, use:
sc stop SystemGuardian
sc start SystemGuardianTo remove the service completely from the system, execute:
sc delete SystemGuardian- Detect an issue (e.g., service failure, driver corruption).
- Backup registry and critical components.
- Attempt Auto-Recovery:
- Restart failed services.
- Restore corrupted drivers from backups.
- Rollback registry keys if altered.
- Notify the user if intervention is required.
SystemGuardian uses a configuration file to define which system components should be monitored. The default configuration file is located at:
C:\ProgramData\SystemGuardian\config.json
- If the configuration file does not exist, the service will automatically generate a default configuration with standard monitoring settings.
- Users can manually create a configuration file in the same directory to customize monitoring.
{
"MonitorDrivers": true,
"MonitorServices": true,
"MonitorRegistry": true,
"CriticalPaths": [
"C:\\Windows\\System32\\drivers",
"C:\\Windows\\System32"
]
}To modify the configuration:
- Open
C:\ProgramData\SystemGuardian\config.jsonwith a text editor. - Adjust monitoring preferences as needed.
- Restart the service for changes to take effect:
sc stop SystemGuardian sc start SystemGuardian
To enable verbose logging for troubleshooting:
New-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Services\SystemGuardian" -Name "DebugLogging" -Value 1 -PropertyType DWord -ForceTo check if the service is running:
sc query SystemGuardian- Logs are saved in:
C:\ProgramData\SystemGuardian\Logs\ - Use Notepad or PowerShell to view logs:
Get-Content C:\ProgramData\SystemGuardian\Logs\latest.log -Tail 50 -Wait
If a monitored component fails and SystemGuardian does not auto-recover it, you can manually recover it by running:
SystemGuardian.exe /recover "ComponentName"reg import C:\ProgramData\SystemGuardian\registry_backup.reg1οΈβ£ Always Run as Administrator - SystemGuardian requires administrative privileges to monitor and recover system components.
2οΈβ£ Regularly Check Logs - Monitor logs in C:\ProgramData\SystemGuardian\Logs\ to detect unusual activity.
3οΈβ£ Backups are Critical - Ensure that registry and system file backups are created regularly.
4οΈβ£ Avoid Modifying System Files Manually - If you need to restore a system file, use the SystemGuardian recovery process.
5οΈβ£ Verify Driver & Service Integrity - Before installing third-party drivers, use SystemGuardian's integrity verification features to ensure they are safe.
sc query SystemGuardian- Logs are saved in:
C:\ProgramData\SystemGuardian\Logs\
- Open a command prompt as Administrator.
- Run:
SystemGuardian.exe /recover "ComponentName"- SystemGuardian will isolate the driver, preventing it from running.
- The user will be notified and can choose to restore or permanently block it.
For assistance, open an issue on our GitHub repository or contact support at: relay.arbiter303@gmail.com.
Β© 2025 SystemGuardian | All Rights Reserved