Adware
Adware is a form of malware. The main function about adware is to show the user unsolicited ads. Unlike spyware, trojans, keyloggers, and viruses, adware is relatively a low security risk, though it frequently does not only show ads but collects information about the user. Many adware programs write to the Windows Registry and even after you install the program, the registry entries are still there.
COM/ActiveX
Component Object Model (COM) is a technology, which allows applications to share and reuse common functionality. One of the typical implementations of the COM technology is for ActiveX objects (or controls), which are visual components used in programming. COM/ActiveX objects can be used for malicious purposes as well.
DLL
DLL is an abbreviation for Dynamic Link Library, which is a library of executable functions/data that can be used by a Windows application. DLL errors can make your system unstable and that’s why frequent scans of the registry can help spot DLL errors and even fix them.
File Extension Record
File extension records are one of the types of entries in the Windows Registry. File extension records are stored in the HKEY_CLASSES_ROOT registry key and their function is to associate a particular file extension with an installed application (i.e. the .doc file extension is usually associated with Microsoft Word). However, it is the File Type Record, which shows directly the application, which is associated with the particular file extension.
File Type Record
The file type record specifies the name, the default icon and the shell commands for each of the file types, as they are refer by the File Extension Record.
GUID
GUID is an abbreviation for Globally Unique Identifier. GUIDs are a 128-bit integer number and each GUID is unique on a global scale. GUIDs, which are used to uniquely identify COM objects and their interfaces, are stored in the Windows Registry.
Hives
A hive is the basic unit for the arrangement of the information in the Windows Registry. Hives are the main organizational structure and they are sections, which contain Keys and Values for each record in the registry.
INI file
Before the Windows Registry was introduced, .INI files were the place were developers used to write settings, commands, and other data required by an application. After the Windows Registry was introduced in Windows 95, the use of .INI files dropped significantly, though there are still developers who use them.
Key
Together with values, keys are the building blocks of the entries in the Windows Registry. Keys can have subkeys. For instance, in the following example HKEY_LOCAL_MACHINE/Software/Microsoft/Windows, the key is HKEY_LOCAL_MACHINE and Software/Microsoft/Windows are its subkeys.
Keylogger
Keyloggers are one of the most dangerous types of malware because they capture keyboard strokes and record everything a user has entered. Keyloggers can capture passwords, credit card numbers and all sorts of personal data and that is why they are so dangerous. Very often keyloggers operate in stealth mode and the only place where one can find a trace of a keylogger is the Windows registry.
Malware
Malware is a group of software, which is written with the intend to do evil. The most popular forms of malware are viruses, worms, spyware, trojans, adware, keyloggers, and rootkits. Malware can be hard to detect and even harder to clean. As a rule, malware writes to the Windows Registry and very often the entries there are the only visible traces of its presence on a computer.
.REG files
.REG files are system Windows files. The function of a .REG file is to update the Windows Registry. It is possible to have multiple .REG files and each of them deals with a different part of the entries in the Registry. .REG files can be created and modified with the help of the RegEdit utility.
RegEdit.exe
RegEdit.exe is an executable, which launches the RegEdit utility. The RegEdit utility is a standard part of Windows and the files it creates have a .REG extension.
Registry backup
Registry backup is the process of creating an archive copy of the Windows Registry. There are many programs, which allow to do that. Registry backups are very important, especially when you plan to install new programs or drivers, or to make any configuration changes because if something goes wrong and the Windows registry is messed up, you can easily restore it from the backup.
Spyware
Spyware is one of the most common types of malware. Spyware, as its name implies, spies on the user, gathers data about user behavior and sends it back to its creators. As all types of malware, spyware usually comes bundled with a useful, most often free, application and installs without the knowledge and consent of the user. The Windows Registry is one of the places where traces of spyware can be found.
System Restore
System Restore is a feature, which allows users to restore their computers to a previous state. System Restore was first introduced in Windows XP and its purpose is to give users a way to revert to a working configuration. System Restore is one of the solutions you can try when you have installed a new driver or an application, or have made configuration changes, which went wrong. When a system is restored, the Registry is also restored to its previous state.
Trojan
Trojans are another common type of malware. Trojans are named after the Trojan Horse, which was used by the Ancient Greeks to take over Troy. Trojans sneak behind user’s back and transmit data and information about the user. As with other types of malware, the Windows Registry is the place where you can look for traces of its presence.
Values
Values, together with keys are the two building blocks of Windows Registry. Values are name-data pairs and they are stored together with the keys but are referenced independently of them.
Windows Registry
The Windows Registry, often called only the Registry, is the place where global settings and options are stored. The keys of the registry contain information about the operating system, the hardware, the applications on the computer, together with data about users and their settings. If the Windows Registry is damaged, this could make it impossible to use Windows.