Disinfecting a PC… part 11



All in all, what I’ve documented was a bit over three hours worth of attention to the machine (much more for the full scans, but I didn’t have to stand and watch them.) I didn’t document a sidetrip to a second antivirus scanner. It’s nice to see a system cleaned up that had been so thoroughly infected. There are a couple other notes I should pass along though. When a system has been trojaned the BEST advice is to wipe the disc and reinstall from scratch. (Erase/reformate/install from scratch.)


That’s the best way to make sure that nothing else is trojaned. *(Maybe a bug dropped a rootkit that is invisible to Windows – much like the Sony XCP Digital Rights software did?) Certainly, it’s not something you WANT to be doing. The time spent usually turns out about the same either way. (Uninstall or wipe and reinstall). One of the more time consuming processes is finding the files to salvage.

After the reinstall and cleaning I also ran netstat /a to see if there was anything listening on a network port that looked suspicious, however in reality a rootkit could hide such entries. From what I was able to see from another networked computer nothing looked suspicious though.

The earliest malware on the disc seemed to date from August of 2004 (the system was worked on in early December 2005.) I advised that word be passed along that any passwords used for online banking or credit cards should be changed and the accounts monitored for suspicious activity. The truth is there is no good way to know that those details are secure. (Within all those trojans (?)) I didn’t go through each one for a detailed analysis, but I’d certainly consider at LEAST changing online passwords for sites visited from that machine.

It’s worth noting, I didn’t mention the system restore feature. It had been disabled when I first saw the system and one of the last things I did was re-enable it. The only other things I did were let it run a full scandisk and defrag (overnight – may as well.)

The last note to pass along is that the systems user says it runs like new now. They’re going to make sure to keep the antivirus updated and try to be careful in their web browsing. It’s good to see another one cleaned up.

Related Posts

Blog Traffic Exchange Related Posts
  • Remove Personal Antivirus Personal Antivirus is another of those rogue antivirus programs. They claim to protect, but really their goal is to find ways to separate you from your money. Usually this is through false claims of infected files and a "we'll fix it, if you pay us" sales model. Apparently it's almost......
  • Windows XP Unable to Login After Cleaning Out Rogue Antivirus This article may come in handy if you are out there battling the latest rogue du jour. Occasionally I have been through a cleaning process for these rogues and got to a point where the scanner had run and cleaned things out (whether it was malwarebytes antimalware or superantispyware.) It......
  • Serious Symantec Antivirus Vulnerability A few things to catch up on this afternoon, but first up is a Serious vulnerability in Symantec Antivirus. (It's always serious when security software has a vulnerability.) The securityfix is reporting that a vulnerability has been discovered in the way Symantec deals with rar archived files. A specially made......
Blog Traffic Exchange Related Websites
  • The World Wide Web As The Source Of Cash All people have to earn for living in the definite way. As for the everyday needs, it is essential to have enough money to satisfy them. Those who are unable to do it have to look for the more well-paid job. Getting the job of this kind is very important......
  • foreclosure cleaning business and Buy a New One Today, Please Read foreclosure cleaning businessWhy Foreclosure Cleaning Companies are the Becoming Small Business of Choice For all of the reasons listed above, foreclosure cleaning businesses are becoming the small business opportunity of choice. In fact, of the fastest growing franchise opportunities on the market today, five of the top 10 are some......
  • The Role Of On-line Business Resources That You Ought To Understand In Creating An Vital Impact To Your On-line Business In an online business, it's essential to grasp the resources that you will need in beginning your business. These resources will help you decide whether or not or to not push through the online business that you have got chosen. Online business resources are important considerations in all the stages......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site