This old command REG QUERY help us to search the windows registry and use the output to see the integrity and check malware infection.
This is the operation of the default REG command that performs operations on the registry.
The help command shows us:

First, you need to know the registry values are into registry database:

When you make a query then use that with arguments like the examples from help.
How can use this command tool? Let’s try some example:
1. show the integrity of Windows when booting:

2. test for malware ( the rundll32.exe javascript infection):
– see the all rundll32.exe values

– if the next command has output then you can have an infected operating system with rundll32.exejavascript:… script:

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.