Problem solve Get help with specific problems with your technologies, process and projects.

Purging the restore file

One of my clients, who has 15 ME workstations on the Net, had an unfortunate situation occur. He was hit by the SirCam virus. We cleaned what we could according to Ontrack and Trend micro, however in the restore file the virus is still detected. How can we delete that virus in the restore file when access is denied? We are also having the same problem with the restore file of 98.

There are a few ways to handle this. Some antivirus scanners can be forced to look in the restore folder, and delete the offending files. Usually you do this by removing the exclusion setting for the restore folder.

At the Microsoft site you can find out how to use the First In First Out (FIFO) method to eventually purge the offending files. You'll also see how to empty all the contents of the restore folder and then re-activate the function, effectively purging the infected files.

This was last published in August 2001

Dig Deeper on Information Security Incident Response-Information

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.