G
Guest
Does the registry get restored to an earlier date as well? thanks
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
G
Guest
thanks, just verifying.. after backdoor attack, trying to see just where
problem comming from, how to isolate files...
problem comming from, how to isolate files...
B
Bert Kinney
Hi,
Most of the registry gets restored. The SAM hive does not.
Tips Fixes & FAQs - What's restored and what's not?
http://bertk.mvps.org/html/tips.html
List of files and folders System Restore monitors:
http://bertk.mvps.org/html/filesfolders.html
Most of the registry gets restored. The SAM hive does not.
Tips Fixes & FAQs - What's restored and what's not?
http://bertk.mvps.org/html/tips.html
List of files and folders System Restore monitors:
http://bertk.mvps.org/html/filesfolders.html
G
Guest
thanks, re: problem with backdoor intrusion: Win32.Backdoor.Padodor
feel the need to ask for all info on tracking this class of intrusion.
per site: http://www.viruslist.com/en/viruslist.html?id=1787609
describes item as unstoppable / undetectable. ms msrt did not find.
came up during jamming zone alarm scan.
do you have reccomendations.
ultimately... looking for something that detects, "advises" it is happening;
way to back track / trace source. thanks
feel the need to ask for all info on tracking this class of intrusion.
per site: http://www.viruslist.com/en/viruslist.html?id=1787609
describes item as unstoppable / undetectable. ms msrt did not find.
came up during jamming zone alarm scan.
do you have reccomendations.
ultimately... looking for something that detects, "advises" it is happening;
way to back track / trace source. thanks
B
Bert Kinney
If you are able to boot into Windows I would suggest performing a virus
scan.
F-Secure Computer Virus Information Pages: Scob
http://www.f-secure.com/v-descs/scob.shtml
Virus and Spyware removal and prevention steps:
http://bertk.mvps.org/html/spyware.html
scan.
F-Secure Computer Virus Information Pages: Scob
http://www.f-secure.com/v-descs/scob.shtml
Virus and Spyware removal and prevention steps:
http://bertk.mvps.org/html/spyware.html