[Dshield] Malware Removal Starter Kit
Paul Melson
pmelson at gmail.com
Thu Jul 12 11:50:16 GMT 2007
On 7/11/07, John B. Holmblad <jholmblad at aol.com> wrote:
> does anyone on this list have any experience to share in using this
> "kit" from Microsoft? Here is the url to the documentation for it:
There's an article that describes MS recommended best practice and
explains the intended role of the kit:
http://www.microsoft.com/technet/security/guidance/disasterrecovery/malware/default.mspx
In a nutshell, it's a kit to help you make a WinPE boot CD upon which
you install free malware removal tools like Stinger, AdAware, etc.
While this has some clear advantages over just booting to Safe Mode
and scanning as malware can still load in Safe Mode, I'm not sure this
is worth the extra effort.
We continue to see malware that embeds itself in or simply replaces
critical files in \WINDOWS, meaning that the successful cleaning of an
infected machine results in a machine that no longer boots properly.
As for me, I will stick with my preferred malware removal tool, fdisk.
PaulM
More information about the list
mailing list