Changes To Windows Registry
Malware can use the registry to find out many of the installed applications on the infected system. Malware that executes modified registry changes can make the program appear legitimate to security systems. Unexplained registry changes should be investigated immediately. Systems can be wiped and rebuilt and a forensics image should be taken for further analysis, Trustwave said.