Click here to get back home

Registry Virus Help
 HomeNewsGroups | Search | About
Login Password
Register Now!
 microsoft.public.security.virus    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content
Subject Author Date
Registry Virus Help markb 01-28-2008
---> Re: Registry Virus Help Volodymyr Shche...01-28-2008
Get Chitika Premium
Posted by markb on January 28, 2008, 12:32 pm
Please log in for more thread options
Recently a computer running Windows 2000 SP4 was infected with a worm. It
claimed to be the netsky32. I used the Malicious Software Removal Tool to
remove it. I need to find out when this system was infected. This particular
worm causes IE to launch and contact a website. So I was thinking of a tool
that will pull up a log and help me to interpret the results. I know the day
the infection occured, just not the time. The RegMon tool is great, but shows
real-time and I need to look back through the log to 14 days ago.

Please assist.
--
Markb


Posted by David H. Lipman on January 28, 2008, 4:07 pm
Please log in for more thread options
|
| Recently a computer running Windows 2000 SP4 was infected with a worm. It
| claimed to be the netsky32. I used the Malicious Software Removal Tool to
| remove it. I need to find out when this system was infected. This particular
| worm causes IE to launch and contact a website. So I was thinking of a tool
| that will pull up a log and help me to interpret the results. I know the day
| the infection occured, just not the time. The RegMon tool is great, but shows
| real-time and I need to look back through the log to 14 days ago.
|
| Please assist.

There is no real way to assay WHEN a PC was infected. Sorry.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp



Posted by Volodymyr Shcherbyna on January 28, 2008, 4:29 pm
Please log in for more thread options
Before removing the executable file, you should took a look at creation date
of a file.

--
V.
This posting is provided "AS IS" with no warranties, and confers no
rights.
>
> Recently a computer running Windows 2000 SP4 was infected with a worm. It
> claimed to be the netsky32. I used the Malicious Software Removal Tool to
> remove it. I need to find out when this system was infected. This
> particular
> worm causes IE to launch and contact a website. So I was thinking of a
> tool
> that will pull up a log and help me to interpret the results. I know the
> day
> the infection occured, just not the time. The RegMon tool is great, but
> shows
> real-time and I need to look back through the log to 14 days ago.
>
> Please assist.
> --
> Markb
>



Posted by David H. Lipman on January 28, 2008, 4:42 pm
Please log in for more thread options

| Before removing the executable file, you should took a look at creation date
| of a file.
|

Creation dates of malware files are often faked.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp



Posted by Volodymyr Shcherbyna on January 28, 2008, 4:55 pm
Please log in for more thread options
Believe me, there is a low percentage of malware who modifies own create
date.

--
V.
This posting is provided "AS IS" with no warranties, and confers no
rights.
>
> | Before removing the executable file, you should took a look at creation
> date
> | of a file.
> |
>
> Creation dates of malware files are often faked.
>
> --
> Dave
> http://www.claymania.com/removal-trojan-adware.html
> Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp
>
>



Similar ThreadsPosted
Virus Adds Registry Entrys February 16, 2007, 11:46 am
Second Try: Any Anti Virus Applications That Do Not Require Install to Registry? July 4, 2008, 6:56 pm
virus diables registry, task manager, run button, and more...help removal September 27, 2005, 4:33 am
Editing the registry June 27, 2005, 1:04 pm
Registry Adware? April 1, 2006, 11:47 am
Run Registry Entries? November 21, 2006, 12:21 pm
REGISTRY CLEAN POP UPS February 5, 2007, 12:29 pm
Pop Up Registry Error Message November 9, 2005, 4:38 pm
how to recover registry damage April 6, 2008, 5:57 pm
Where to locate Registry files? June 4, 2008, 1:50 pm

Our other projects:

Art Dolls, Fairies and Mermaids - Sunnyfaces.net

Roy's Linux, Programming and Search Engines messages

1-Script XML SitemapXML Sitemap