• This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn more.

Cleaning a PC used to access illegal material


Posts
4
#1
Would appreciate your perspective on this. I'm not an IT pro w/ a work lab or network available, so here goes. I recently took a machine to be cleaned & end user has adult special needs child whose former caretaker accessed some very dark &, frankly, illegal material on the machine. From the parents' description, the machine is infected w/ who knows what & they are seeing some pretty bad stuff pop up when a browser is opened. I haven't powered the machine on to see what exactly is going on. I would imagine I don't want to connect this machine to my home internet connection so this stuff won't be registered w/ my ISP as being accessed from my house. Would you just go back to the end user's home & work on it there? How do you guys normally handle that...or do you just give it back to the customer & say, sorry, I can't work on this?
 

My Computer

System One

  • OS
    Windows 8.1 Pro 64-bit
    Computer type
    PC/Desktop
    System Manufacturer/Model
    HP p6-2310
    CPU
    AMD A8-3870
    Motherboard
    N/A
    Memory
    8 GB
    Graphics Card(s)
    Nvidia GeForce GTX 750 Ti
    Sound Card
    Sound Blaster Recon3D
    Monitor(s) Displays
    Dell Studio
    Screen Resolution
    1920x1080
    Hard Drives
    Samsung 500 GB 850 EVO SSD
    PSU
    N/A
    Case
    Factory, unmodified
    Cooling
    Factory, unmodified
    Keyboard
    Factory, unmodified
    Mouse
    Logitech M705
    Internet Speed
    TWC/Spectrum
    Browser
    Firefox, Chrome
    Antivirus
    Avira

Sven1458

Member
VIP Member
Member
Torrance, CA

Posts
101
#2
If there is indeed illegal stuff on it and you know about it, not going to the police or whatever authority is warranted, would make you an accessory after the fact and as such subject to punishment.
Be very carful
 

My Computer

System One

  • OS
    Windows 10 Pro
    Computer type
    PC/Desktop
    System Manufacturer/Model
    white box
    CPU
    AMD fx 6100 6 core
    Motherboard
    gigabyte ga-78lmy-s2p am3+ amd 760g matx
    Memory
    16 gb crucial ballistix sport 13339 pc3-106000
    Graphics Card(s)
    on MB
    Sound Card
    on MB
    Monitor(s) Displays
    ACER p215h
    Screen Resolution
    1920x1080
    Hard Drives
    Crucial SSD 240 GB
    Case
    mini tower
    Keyboard
    Polaroid wireless
    Mouse
    MTG laser
    Browser
    IE 11
    Antivirus
    MSE

samuria

New Member
VIP Member
Pro User
crewe cheshire uk

Posts
461
#3
I think you must go to the Police if its a special needs child then you dont know what this guy has done he may have done somthing to the chikd and if its his job he may do somerging to other children you cant let this man work with any kids
 

My Computer

System One

  • OS
    win 8 pro
#4
"...former caretaker..." that's the person who needs to be turned in; I think the pc might need a thorough rebuild from scratch, or, at the very least, an offline scrubbing of everything connected to the browsers and cache, with a side order of AV and AM deep scans.
 

My Computer

System One

  • OS
    Windows 7 Pro 64bit [MS blue-disk set]
    Computer type
    PC/Desktop
    System Manufacturer/Model
    2 Acers & 1 Antec[?]
    CPU
    i7 in 2 Acers, i5 in desktop
    Motherboard
    Desktop w/Gigabyte
    Memory
    Two w/16GB, 1 w/8GB
    Graphics Card(s)
    Laptops GameWorthy; Desktop maybe GameWorthy
    Monitor(s) Displays
    flatscreens; 2 are BluRay worthy
    Screen Resolution
    1368x768; 1600x900
    Hard Drives
    1TB internals; 2 ext usb WD 1TB HDs
    PSU
    what's PSU?
    Cooling
    Regular plus external fans
    Keyboard
    desktio w/PS2
    Mouse
    desktop w/PS2
    Internet Speed
    DSL middle level [160?]
    Browser
    from Netscape 0.9 to FF 36
    Antivirus
    well-balanced, well-configured mult-layered defense is best
    Other Info
    From MS-DOS 3.3, MS-DOS 6.22, from Windows 3.1 to WFW 3.11 to Windows 95-98SE, now to Windows 7 Pro.
    Security for now: Windows 7 Firewall, Emsisoft AM, MSE [scan-only], SpywareBlaster, Ruiware/BillP combine
Posts
4
#5
Right on. I appreciate this guidance. I think the caretaker angle & whistleblowing was addressed, but now they're left w/ a mess. I agree...best way to address is complete rebuild, new HD, etc. However, if you download the latest & greatest of any of the popular free AV's & malware solutions, they'll install & run offline, right? I would imagine that whatever you download, the definitions are downloaded w/ it...I just wouldn't be able to run updates while I'm working on the infected machine. I'm thinking download program onto rescue CD or USB on an uninfected machine, then run CD or USB on the infected machine. I know all will be well as long as I don't connect to the web while it's in my possession...just delicate ground to trod.
 

My Computer

System One

  • OS
    Windows 8.1 Pro 64-bit
    Computer type
    PC/Desktop
    System Manufacturer/Model
    HP p6-2310
    CPU
    AMD A8-3870
    Motherboard
    N/A
    Memory
    8 GB
    Graphics Card(s)
    Nvidia GeForce GTX 750 Ti
    Sound Card
    Sound Blaster Recon3D
    Monitor(s) Displays
    Dell Studio
    Screen Resolution
    1920x1080
    Hard Drives
    Samsung 500 GB 850 EVO SSD
    PSU
    N/A
    Case
    Factory, unmodified
    Cooling
    Factory, unmodified
    Keyboard
    Factory, unmodified
    Mouse
    Logitech M705
    Internet Speed
    TWC/Spectrum
    Browser
    Firefox, Chrome
    Antivirus
    Avira

Users Who Are Viewing This Thread (Users: 0, Guests: 1)