Disinfecting a PC… part 11



All in all, what I’ve documented was a bit over three hours worth of attention to the machine (much more for the full scans, but I didn’t have to stand and watch them.) I didn’t document a sidetrip to a second antivirus scanner. It’s nice to see a system cleaned up that had been so thoroughly infected. There are a couple other notes I should pass along though. When a system has been trojaned the BEST advice is to wipe the disc and reinstall from scratch. (Erase/reformate/install from scratch.)


That’s the best way to make sure that nothing else is trojaned. *(Maybe a bug dropped a rootkit that is invisible to Windows – much like the Sony XCP Digital Rights software did?) Certainly, it’s not something you WANT to be doing. The time spent usually turns out about the same either way. (Uninstall or wipe and reinstall). One of the more time consuming processes is finding the files to salvage.

After the reinstall and cleaning I also ran netstat /a to see if there was anything listening on a network port that looked suspicious, however in reality a rootkit could hide such entries. From what I was able to see from another networked computer nothing looked suspicious though.

The earliest malware on the disc seemed to date from August of 2004 (the system was worked on in early December 2005.) I advised that word be passed along that any passwords used for online banking or credit cards should be changed and the accounts monitored for suspicious activity. The truth is there is no good way to know that those details are secure. (Within all those trojans (?)) I didn’t go through each one for a detailed analysis, but I’d certainly consider at LEAST changing online passwords for sites visited from that machine.

It’s worth noting, I didn’t mention the system restore feature. It had been disabled when I first saw the system and one of the last things I did was re-enable it. The only other things I did were let it run a full scandisk and defrag (overnight – may as well.)

The last note to pass along is that the systems user says it runs like new now. They’re going to make sure to keep the antivirus updated and try to be careful in their web browsing. It’s good to see another one cleaned up.

Related Posts

Blog Traffic Exchange Related Posts
  • Windows XP Unable to Login After Cleaning Out Rogue Antivirus This article may come in handy if you are out there battling the latest rogue du jour. Occasionally I have been through a cleaning process for these rogues and got to a point where the scanner had run and cleaned things out (whether it was malwarebytes antimalware or superantispyware.) It......
  • Disinfecting a PC… part 7 Ok, another reboot after the BHO cleaning. Things are a good deal more responsive now, less disc swapping going on. (I suspect that those three missing BHO entries may have been causing the slow down, but I don't know.) Installing wintop so that processes can be monitored. Also, getting spybot......
  • Computer security software nets $2.6 Billion over last two years. SecurityFix is talking about the computer security industry. Further, computer users spend $9 billion a year on computers repairs from spyware and antivirus. This reminds me of a recent story of a man that threw out a perfectly good machine because it was infested with spyware. For starters, I do......
Blog Traffic Exchange Related Websites
  • Washing Windows 101 Washing windows is one of those household chores that no really looks forward to. But cleaned windows can really give the appearance of your home, both inside and out, a boost. If you've been spraying window cleaner and rubbing away with paper towels, or hosing off those upper floor windows,......
  • Clean, Squat and Jerk for a Rep I'm a big fan of Olympic style weightlifting. I like the shear strength that some lifters possess, but what I like most about these lifts is actually incorporating them into my routine as they are extremely great workouts. Lifts like the clean and jerk incorporate a huge number of muscles.......
  • The World Wide Web As The Source Of Cash All people have to earn for living in the definite way. As for the everyday needs, it is essential to have enough money to satisfy them. Those who are unable to do it have to look for the more well-paid job. Getting the job of this kind is very important......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site