GEGeek     I don't reinvent the wheel, I just link to it.                                                                          Control-F To Search This Page!		 Cheat Sheets Search Engines Diagnostics Misc Tech

GEGeek's Articles

Home

Windows

Software

How To Guides

Tutorials

Hardware

Security

Linux

GEGeek Articles

 

 

 

 

 

 

 

 

 

 

 

 

 

 
   
 

Tracking Down A Virus / Spyware Infection

 

One of the tools that I have found useful is RegScanner. RegScanner can tell you which Registry keys have been modified in the last hours or days.

You can download it here

 

  • Run the executable file of RegScanner (RegScanner.exe)
  • In the 'Registry Scan Options' window, check the 'Add entry for each found key' and 'Add only keys' options.
  • Choose 'Registry item contains any value' in the matching combo-box.
  • Check the 'Display only keys that their modified time is within the following range' option, and then select the modified date/time range that you want to view.

    •  

     

    Click the 'OK' button to start the Registry scanning. After the scanning process is finished, you should get the list of all modified Registry keys in the date/time range that you specified. You click the 'Key Modified Time' column header for sorting the list by the modified time.

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     
       
       

    hit counter