E
ehgoodrich
I am working on a friend's computer that has been infected for some
time (possibly with the RBOT-ACT trojan as well as other spyware).
After cleaning it up as best I could (ending up installing another copy
of XP on 2nd partition and scanning from there), I still cannot access
Task Manager or edit the registry when booted to the original
partition. I have tried looking at all the usual places suggested in
this group by Kelly, Doug and others. The local and group policies are
NOT being used to prevent access. Anyone have any other ideas where to
look??
A few more details: I can run gpedit.msc to look at the group policy
area and don't see anything unusual. I can also run CP->Admin
Tools->Local Security Policy:nothing there either. I have looked at
all the recommended areas in the original registry (running regedit
from the 2nd XP copy and using Load Hive) and can't see anything
mentioned in any related topics!!!
Any ideas??
emmette
time (possibly with the RBOT-ACT trojan as well as other spyware).
After cleaning it up as best I could (ending up installing another copy
of XP on 2nd partition and scanning from there), I still cannot access
Task Manager or edit the registry when booted to the original
partition. I have tried looking at all the usual places suggested in
this group by Kelly, Doug and others. The local and group policies are
NOT being used to prevent access. Anyone have any other ideas where to
look??
A few more details: I can run gpedit.msc to look at the group policy
area and don't see anything unusual. I can also run CP->Admin
Tools->Local Security Policy:nothing there either. I have looked at
all the recommended areas in the original registry (running regedit
from the 2nd XP copy and using Load Hive) and can't see anything
mentioned in any related topics!!!
Any ideas??
emmette