Security Basics mailing list archives
RE: Null Terminated Strings
From: "Prashant Meswani" <prashant.meswani () ukonline co uk>
Date: Mon, 27 Jun 2005 17:01:03 +0100
When it comes to root kits, from what I understand, it would be next to impossible to remove. The best solution would be to reinstall the OS from scratch (including formatting the hard drive) as I am led to believe that this is the only way to get rid of a rootkit. Regards, Prashant. The opinions expressed in this email are those of my own and does not represent those of any organisation or associations to which I belong to unless stated otherwise. -----Original Message----- From: e_borgard () yahoo com [mailto:e_borgard () yahoo com] Sent: 26 June 2005 13:44 To: security-basics () securityfocus com Subject: Null Terminated Strings Recently, I downloaded and scanned my PC with Rootkit Reveler from Sysinternals. It produced a hidden registy key in: HKLM\Software\Microsoft\Windows\CurrentVersion\Reinstall\ Should I be concerned that this is a rootkit? What can I do to remove this registry entry if it is hidden from regedit? Any advice would be helpful. Sincerely, Erick Borgard A+, CCNA
Current thread:
- Null Terminated Strings e_borgard (Jun 27)
- RE: Null Terminated Strings Prashant Meswani (Jun 27)
- Re: Null Terminated Strings ChayoteMu (Jun 28)
- Re: Null Terminated Strings Ansgar -59cobalt- Wiechers (Jun 29)