Memory forensics (e.g,. the Volatility tool kit) plays an important role in malware analysis and reverse engineering. While already popular in practice, memory forensics is still a rather recent field, and a considerable research potential for fully exploiting its possibilities remains. This is where our work and presentation pick up. We have developed a entirely novel technique that adds a temporal component to memory forensics. More precisely, we are going to present a system that dumps the virtual memory of Windows processes with a (relatively) high frequency. This results in a chronological series of memory dumps, which we refer to as a "memory trace". A memory trace thus constitutes a memory history of processes being tracked. Memory traces contain a huge amount of information on processes, which literally waits to be explored and which eventually gives rise to new memory forensics and reverse engineering techniques. In this talk we are going to briefly present a system for recording memory traces and then mainly focus on how memory traces can be used for malware analysis and reverse engineering. For instance, we are going to show how one can quickly understand the installation and infection behavior of Zeus, essentially without having to perform any detailed code analysis.