|
Posted by Volodymyr M. Shcherbyna on June 20, 2008, 8:22 am
If you were Registered and logged in, you could reply and use other advanced thread options
Well, the best way to clean machine is to leave it in the right place, pay
money and get it after some time cleaned and "cured". There are many ways of
how to get rid of viruses. One of the way - debug machine using WinDbg
kernel debuger, and with the help of it force the "bad" code to stop
execution.
Re-installation of OS is not the best solution.
--
V.
This posting is provided "AS IS" with no warranties, and confers no
rights.
> Instead of replying to every single "I have a virus" post, I am going to
> say this once.
>
> The best current practice for cleaning up a system on which malware has
> been executed is to reinstall the operating system cleanly. Vendors will
> offer you software, bells and whistles to no end, but the only way to be
> certain that your system is clean is to reinstall it. Of course you need
> to do this in a way that does not repeat whatever you did in order to have
> the malware installed in the first place.
>
> You do need is a good antivirus and firewall product to continuously
> protect you from intrusion attempts. This is absolutely vital. In
> addition, your virus scanner will try to remove any non-executed malware
> from e.g. incoming email. However, once malicious software has actually
> run on your computer, you should reinstall.
>
> Please believe me when I say that professional sysadmins do not wield
> FixCleanSuperThis or WizKillHyperThat when cleaning up after e.g. a server
> compromise. They try to work out how the intrusion occurred, and then they
> reinstall the system from scratch, in a way that does not reopen the
> previous attack window.
>
> Your comments are welcome.
>
> --
> Thor Kottelin
> http://www.anta.net/
>
> Antivirus, firewall, parental control: http://www.anta.net/sw/norman/
>
| 
XML site map