Detect Registry changes

Recently i found a trojan program running in my system, it copies some random name exe to my drives(except C:) and also copies random name exe to temp and which in turn asks firewall network connection request(from this i figured it's trojan)..also it changes the registry value for hidden files....

The main problem is that i can't find it in taskmanager...even checked all svchosts process location...im stuck!

So is there any way i can monitor particular registry key and know which program is modifying it...? Thnx!!

Solution

Look at RegMon:
http://technet.microsoft.com/en-us/sysinternals/bb896652

NA values in a non-editable date column in a datatable in a shiny app change to "Invalid Date" when clicked on
Replacing with conditional value in dplyr case_when()
Calculating moving average
Estimating non-monotonic bi-exponential curve fit
column type issue when converting csv to parquet using duckdb in R
"Target position can only be set for new windows" in chromote in R
Determine level of nesting in R?
Week start on Mondays
Center output from dm_draw
plot a network based on given values
Adding a X axis title to faceted ggballoonplot
Calculate mean of matrices having different dimensions
check if two columns have a one-to-one relationship in R
How to extract Std.Dev from VarCorr glmmTMB
How do you print to stderr in R?
How to plot China map with South China Sea in base R
Get column and row position of nth element in a matrix
Is there any authoritative documentation on R release nicknames?
R Glassdoor Web Scraping
Issue with graticule across 180° for several country/territory EEZs
Separating grouped layers in a raster stack in terra
How can I use group_by and mutate to perform a subtraction calculation with specific groupings? Time 0 minus Time X for all groups
How to directly open .R data containing data frame code in R?
Way to web-scrape a popular eSport website using R?
Variance calculation warning: longer object length is not a multiple
gratia::draw(): "'length.out' must be a non-negative number"
Using Swift as custom engine in knitr and including all previous content
convert source target value dataframe into a correlation matrix
ggplot2 plotting a 100% stacked area chart
Use string as formula for ipwtm function?