How to identify, analyze and clean malware yourself
Mark Russinovich from Sysinternals (Microsoft) shows how you can use the tools from Sysinternals to identify, analyze and clean malware.
For example it includes:
- how to find running processes that doesn't have valid signatures
- how to find unsigned running DLL files
- how to identify the different techniques malware uses to launch itself at startup, including how some re-launches itself if you end the process
- why Safe Boot with Command Prompt is the best way to clean malware
(Safe Boot without Command Prompt might allow the malware to start)
If you're interested in security in general I highly recommend watching this:
(1h 18 min)
This discussion has been closed.