Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Simply stated...When/how did I get infected?


  • Please log in to reply
1 reply to this topic

#1 RoninV

RoninV

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:04:56 AM

Posted 21 April 2011 - 06:11 PM

There are four other threads under the Security Forum where this might be more appropriate. If so, please point me in the right direction. This is not a 'help, my computer is infected' topic but more of a search for clues. With so many infection types, and areas of a computer where badware can find its way to a hard drive, is there anyway to determine HOW/WHEN a computer was infected? Windows gives you the Event Viewer, which logs certain events (application, security, system, and etc) happening on one's computer. Once it is determined what the infection is, it is easier to link the infection to how it made it to your system. Does one's browser history and/or registry hold the key to logging when your computer was infected?

Edited by boopme, 21 April 2011 - 08:16 PM.
Moved to appropriate forum


BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,137 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:07:56 AM

Posted 25 April 2011 - 07:04 AM

Please read How Malware Spreads - How did I get infected which explains the most common ways malware is contracted and spread.

Many infections involve the installation of malicious files and folders so a starting point for finding when you were infected is to look at the creation dates.


There are several types of programs available which can monitor the installation of files, folders, modifications to the registry, etc. Some are more specific than others...some provide additional security protection so it depends on what you are looking for and how comprehensive you want the monitoring to be.

  • Spyware Terminator monitors attempts to add or modify installed applications, programs that run at startup, programs that add to Windows services and other security monitoring features.
  • WinPatrol is a tool that alerts you to changes in programs that run at startup, monitors toolbars, registry modifications, changes to file extensions and changes to the HOSTS file.

Edited by quietman7, 25 April 2011 - 07:07 AM.

.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users