Yay! I Think…
At about 10:24 this morning, my other computer got infested the worst it has ever been with malware. In fact, the only of note since we lived in Stoughton, early 2004. That time it was from a quiz site, hidden in a view all possible results page. This time it was likely from an ad server servicing a blog.
I just rebooted from finally being able to delete the two core files. As I look at the computer clock, it is 4:24 a few minutes after that. At full price, then, someone would have paid me around $500 to cleanup their computer. The alternatives that might have gone faster would have been a system restore if a restore point existed and the machine had that functionality present and enabled, or fdisking, assuming there were adequate file backups.
I’ll post here or somewhere at length, but ultimately it took a combination (once I had it down to two stubborn DLL files) of changing permissions on the files while they were allegedly in use to deny execute to everyone and system, eliminating references to them in the registry, most notably as notifies for winlogin, which is why they attached to it as processes, and rebooting in safe mode. Leading up to that was a lot of manual identify and delete, Spybot Search & Destroy, Rootkit Revealer, Process Explorer. abrupt power-offs, logging in as a different user, disconnecting the network cable, and so forth.
Next entry: Happy Birthday
Previous entry: Big treats coming up!
Neatly Tangled at Etsy
Blog Empire
Retirees
Syndicate
Categories
Monthly Archives
- July 2008
- June 2008
- May 2008
- April 2008
- March 2008
- February 2008
- January 2008
- December 2007
- November 2007
- October 2007
- September 2007
- August 2007
- July 2007
- June 2007
- May 2007
- April 2007
- March 2007
- February 2007
- January 2007
- December 2006
- November 2006
- October 2006
- September 2006
- Complete Archives
- Category Archives
Daily Reads
Et Cetera
