Home page logo
/

pauldotcom logo PaulDotCom mailing list archives

Malware analyzing tools?
From: shauncurry1 at gmail.com (Shaun Curry)
Date: Fri, 15 May 2009 10:08:05 -0500

I'm not a forensics expert, but I work on this stuff on a daily basis for
our customers.  I follow a pretty basic plan of attack for stuff like this:

1. Turn off system restore
2. Install, Update, and run Malwarebyte's (usually a quickscan in normal
windows)
3. Run TrendMicro's housecall from their website.
4. Check IE for BHO's

If there is still a problem I will move to autoruns to disable anything odd
starting up with the system and run process explorer to research
svchost.exe.

And, when all else fails - Nuke and Pave buddy... nuke and pave :P

Good Luck!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20090515/dd4eec91/attachment.htm 


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]