Spyware/Virus cleanup and patching - What order ?

  • Thread starter Thread starter Al Dykes
  • Start date Start date
A

Al Dykes

When I'm presented with an XP machine that's never been patched and is
filled with viruses and spyware what order should I do the cleanup?

I first kill enough of the spyware crap to so that I have control of
the machine. I don't reboot becuase the processes I've killed might
restart. Then I apply all the MS critical patches and then I rerun all
the AV and spyware detectors to make sure the system is really clean.

My fear is that is there is some nasty software left when MS asks me
to reboot after an update I will just get reinfected. OTOH, it's
impossible to clean up a PC if the MS software is unpatched.

Comments?
 
From: "Al Dykes" <[email protected]>

|
| When I'm presented with an XP machine that's never been patched and is
| filled with viruses and spyware what order should I do the cleanup?
|
| I first kill enough of the spyware crap to so that I have control of
| the machine. I don't reboot becuase the processes I've killed might
| restart. Then I apply all the MS critical patches and then I rerun all
| the AV and spyware detectors to make sure the system is really clean.
|
| My fear is that is there is some nasty software left when MS asks me
| to reboot after an update I will just get reinfected. OTOH, it's
| impossible to clean up a PC if the MS software is unpatched.
|
| Comments?
|
| --
| a d y k e s @ p a n i x . c o m
|
| Don't blame me. I voted for Gore.

Viruses first, aware/spyware second.

If it is a truly badly infected PC. I would suggested creating a Ghost image of the PC.
Wiping the computer of all data and then reinstalling the OS and all applications and
installing all SP2 and all SP2 updates. Logon as the user's account such that the user's
Profile ( C:\Documents and Settings\user_name ) is created. Make sure AV software is
installed and then restore data to the profile ( but not the user Registry file) from the
Ghost image.
 
From: "Al Dykes" <[email protected]>

|
| When I'm presented with an XP machine that's never been patched and is
| filled with viruses and spyware what order should I do the cleanup?
|
| I first kill enough of the spyware crap to so that I have control of
| the machine. I don't reboot becuase the processes I've killed might
| restart. Then I apply all the MS critical patches and then I rerun all
| the AV and spyware detectors to make sure the system is really clean.
|
| My fear is that is there is some nasty software left when MS asks me
| to reboot after an update I will just get reinfected. OTOH, it's
| impossible to clean up a PC if the MS software is unpatched.
|
| Comments?
|
| --
| a d y k e s @ p a n i x . c o m
|
| Don't blame me. I voted for Gore.

Viruses first, aware/spyware second.
Click to expand...

And then Patch?

If it is a truly badly infected PC. I would suggested creating a Ghost image of the PC.
Wiping the computer of all data and then reinstalling the OS and all applications and
installing all SP2 and all SP2 updates. Logon as the user's account such that the user's
Profile ( C:\Documents and Settings\user_name ) is created. Make sure AV software is
installed and then restore data to the profile ( but not the user Registry file) from the
Ghost image.
Click to expand...


Good advice but 9 out of 10 users don't have their CDs or the codes to
reinsall the software the bought online.
 
From: "Al Dykes" <[email protected]>


|
| And then Patch?
|| Good advice but 9 out of 10 users don't have their CDs or the codes to
| reinsall the software the bought online.
|
| --
| a d y k e s @ p a n i x . c o m
|
| Don't blame me. I voted for Gore.

Viruses first, adware/spyware second and the patch the OS. The reason being many forms of
malware can block access to the Windows Update site as well as corrupt the installation
process of patches.

Then it's those user's fault for not keeping backup files of installables and not demanding
the CDROMs for their applications.
 
Al Dykes said:
And then Patch?




Good advice but 9 out of 10 users don't have their CDs or the codes to
reinsall the software the bought online.
Click to expand...
Too bad for the 9 out of 10 then.Al Gore isn't this clueless.
Jim
 
| >> Don't blame me. I voted for Gore.
| > Al Gore isn't this clueless.
| > Jim
|
| Gore is the definition of clueless. Although he did invent the
Internet!
|

At least he served in the US military and wasn't a cokehead, drunkard
deserter from the Texas Air National Guard
 
Back
Top