Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


How do I know if my HKEY is infected?

  • This topic is locked This topic is locked
2 replies to this topic

#1 TyGuy96


  • Members
  • 8 posts
  • Local time:06:22 PM

Posted 05 July 2013 - 12:15 AM

Hello bleepingcomputer,


Last march I had a RAT virus on my computer. I restored it to the factory settings, which I believe got rid of it, but to make sure, I bought Norton 360 and ran a full scan. It didn't detect anything, but today however, I got the blue screen of death. I'm probably just paranoid but is there any way for me to check if any of my HKEY files are infected? I know how to access them, I just don't know what to look for.


Edit: oops, wrong forum :/ first time here


Thanks :)




Edited by TyGuy96, 05 July 2013 - 12:32 AM.

BC AdBot (Login to Remove)


#2 noknojon


  • Banned
  • 10,871 posts
  • Gender:Not Telling
  • Local time:08:22 AM

Posted 05 July 2013 - 09:13 PM

Hello TyGuy -

There are no specific tools for what you request, but try these -


Download Malwarebytes Anti-Malware Free (aka MBAM) to desktop and install it
Always check for updates if not done during the install
Run a Quick Scan only and remove all items found
Copy / Paste the report it generates back here

Reboot after you post the log -



Download SUPERAntiSpyware Free (aka SAS) and install it to desktop
Always check for updates if not done during the install
Select Quick Scan only and remove all items found
Copy / Paste the report it generates back here

Reboot after you post the log -



Please download AdwCleaner by Xplode onto your desktop.

*Close all open programs and internet browsers.
*Double click on adwcleaner.exe to run the tool.
*Click on Delete.
*Confirm each time with Ok.
*Your computer will be rebooted automatically. A text file will open after the restart.

*Please post the contents of that logfile with your next reply.
*You can find the logfile at C:\AdwCleaner[S1].txt as well.



Download TFC by Old Timer to your desktop
 •Close any open windows.
•Double click the TFC icon to run the program
•TFC will close all open programs itself in order to run,
•Click the Start button to begin the process.

•Allow TFC to run uninterrupted.
•The program should not take long to finish it's job
•Once its finished it should automatically reboot your machine,
•if it doesn't, please manually reboot to ensure a complete clean


Thanks -

#3 Animal


    Bleepin' Animinion

  • Site Admin
  • 35,905 posts
  • Gender:Male
  • Location:Where You Least Expect Me To Be
  • Local time:02:22 PM

Posted 05 July 2013 - 10:02 PM

Member has reposted this topic in the Am I Infected forum: http://www.bleepingcomputer.com/forums/t/500195/how-do-i-know-if-my-hkey-is-infected/

To avoid confusion for everyone I am closing this one.

The Internet is so big, so powerful and pointless that for some people it is a complete substitute for life.
Andrew Brown (1938-1994)

A learning experience is one of those things that say, "You know that thing you just did? Don't do that." Douglas Adams (1952-2001)

"Imagination is more important than knowledge. Knowledge is limited. Imagination circles the world." Albert Einstein (1879-1955)

Follow BleepingComputer on: Facebook | Twitter | Google+

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users