I had a rootkit a while ago and all i did was a factory restore, but ther are couple of aspects i wana discuss if the ingenious ppl of BC dont mind
1) i have 2 partitions , C and D,
C was reformatted for the F-restore and D the recovery partition is the same as before factory restore, so the question is the rootkit could be on the recovery partition as well , is that possible? mr hacker could made a backup ther possibly ??? Can i format the recovery partition? only got one CD thats the vista-recovery one!!
2) I think the infection was left long enough which makes me question about the hiddden partition:
is it possible that the rootkit made a hidden partition to back up its filth and still running after the doin the factory restore? if yes, how can i see the hidden partition? and possibly delete/format it ....
So wat all m saying is that if the rootkit is still ther, since it can bypass most of the security fences and disguise itself like system file and associate itself to any sys-roots, i have even heard that it can get into bios as well and cud be permanent ?????
Just wana make sure that the sys is completely clean now .
thanks awesome ppl..keep up the gr8 wok