|
Next: The Difference Between Adware, Spyware and Anti-v..
|
| Author |
Message |
External
Since: Feb 04, 2008
Posts: 29
|
(Msg. 1) Posted: Mon Apr 21, 2008 7:09 am
Post subject: Advanced Malware Cleaning
Archived from groups: alt>comp>anti-virus, others (more info?)
|
|
|
|
|
| Back to top |
|
 | |
External
Since: Sep 10, 2006
Posts: 12
|
(Msg. 2) Posted: Mon Apr 21, 2008 7:03 pm
Post subject: Re: Advanced Malware Cleaning [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
Kayman wrote:
>Educational viewing!
>Mark Russinovich - Advanced Malware Cleaning
>http://www.microsoft.com/emea/spotlight/sessionh.aspx?videoid=359
It is definitely worth the time watching this - even if you are
already familiar with techniques for eliminating malware. Mark
Russinovich is one of the primary contributors at Sysinternals (he now
works for M$). The only drawback to watching this is having to
install M$ Silverlight in order to view it. |
|
| Back to top |
|
| |
External
Since: Apr 10, 2008
Posts: 16
|
(Msg. 3) Posted: Mon Apr 21, 2008 7:03 pm
Post subject: Re: Advanced Malware Cleaning [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
Andy Walker wrote:
> Kayman wrote:
>
>>Educational viewing!
>>Mark Russinovich - Advanced Malware Cleaning
>>http://www.microsoft.com/emea/spotlight/sessionh.aspx?videoid=359
>
> It is definitely worth the time watching this - even if you are
> already familiar with techniques for eliminating malware. Mark
> Russinovich is one of the primary contributors at Sysinternals (he now
> works for M$). The only drawback to watching this is having to
> install M$ Silverlight in order to view it.
They really need to put dates on these webcasts or video archives. I
remember seeing this one about 2 years ago.
I found the webcast link to another of Russinovich's meetings (audio
only with slideshow):
http://www.microsoft.com/events/EventDetails.aspx?CMTYSvcSource=MSCOMM...a&Param
Notice the date: June 07, 2005. So almost 3 years old. That one is
named SEC425. The link above is named SEC309. So if the naming is
sequential, the link above is to an even older meeting.
A list of Mark's webcasts is at:
http://technet.microsoft.com/en-us/sysinternals/bb963887.aspx
Alas, no datestamps. Information is always time sensitive, especially
anything that purports to be newsy in nature. >> Stay informed about: Advanced Malware Cleaning |
|
| Back to top |
|
| |
External
Since: Sep 07, 2005
Posts: 76
|
(Msg. 4) Posted: Mon Apr 21, 2008 7:30 pm
Post subject: Re: Advanced Malware Cleaning [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
|
|
| Back to top |
|
| |
External
Since: Sep 10, 2006
Posts: 12
|
(Msg. 5) Posted: Mon Apr 21, 2008 8:01 pm
Post subject: Re: Advanced Malware Cleaning [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
VanguardLH wrote:
>Andy Walker wrote:
>
>> Kayman wrote:
>>
>>>Educational viewing!
>>>Mark Russinovich - Advanced Malware Cleaning
>>>http://www.microsoft.com/emea/spotlight/sessionh.aspx?videoid=359
>>
>> It is definitely worth the time watching this - even if you are
>> already familiar with techniques for eliminating malware. Mark
>> Russinovich is one of the primary contributors at Sysinternals (he now
>> works for M$). The only drawback to watching this is having to
>> install M$ Silverlight in order to view it.
>
>They really need to put dates on these webcasts or video archives. I
>remember seeing this one about 2 years ago.
>
>I found the webcast link to another of Russinovich's meetings (audio
>only with slideshow):
>
>http://www.microsoft.com/events/EventDetails.aspx?CMTYSvcSource=MSCOMMedia&Params=%7ECMTYDataSvcParams%5E%7Earg+Name=%22ID%22+Value=%221032274950%22/%5E%7Earg+Name=%22ProviderID%22+Value=%22A6B43178-497C-4225-BA42-DF595171F04C%22/%5E%7Earg+Name=%22lang%22+Value=%22en%22/%5E%7Earg+Name=%22cr%22+Value=%22US%22/%5E%7EsParams%5E%7E/sParams%5E%7E/CMTYDataSvcParams%5E
>
>Notice the date: June 07, 2005. So almost 3 years old. That one is
>named SEC425. The link above is named SEC309. So if the naming is
>sequential, the link above is to an even older meeting.
>
>A list of Mark's webcasts is at:
>
>http://technet.microsoft.com/en-us/sysinternals/bb963887.aspx
>
>Alas, no datestamps. Information is always time sensitive, especially
>anything that purports to be newsy in nature.
I think this one is newer as he discuses SpySheriff. It's probably
from 2007 and the primary benefit I see in it is that he describes the
useful features in many of the Sysinternal utilities. All the
techniques described are as valid in 2008 as they were in 2007.
You are right though; they should provide dates. >> Stay informed about: Advanced Malware Cleaning |
|
| Back to top |
|
| |
External
Since: Sep 10, 2006
Posts: 12
|
(Msg. 6) Posted: Mon Apr 21, 2008 8:10 pm
Post subject: Re: Advanced Malware Cleaning [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
Andy Walker wrote:
>VanguardLH wrote:
>
>>Andy Walker wrote:
>>
>>> Kayman wrote:
>>>
>>>>Educational viewing!
>>>>Mark Russinovich - Advanced Malware Cleaning
>>>>http://www.microsoft.com/emea/spotlight/sessionh.aspx?videoid=359
>>>
>>> It is definitely worth the time watching this - even if you are
>>> already familiar with techniques for eliminating malware. Mark
>>> Russinovich is one of the primary contributors at Sysinternals (he now
>>> works for M$). The only drawback to watching this is having to
>>> install M$ Silverlight in order to view it.
>>
>>They really need to put dates on these webcasts or video archives. I
>>remember seeing this one about 2 years ago.
>>
>>I found the webcast link to another of Russinovich's meetings (audio
>>only with slideshow):
>>
>>http://www.microsoft.com/events/EventDetails.aspx?CMTYSvcSource=MSCOMMedia&Params=%7ECMTYDataSvcParams%5E%7Earg+Name=%22ID%22+Value=%221032274950%22/%5E%7Earg+Name=%22ProviderID%22+Value=%22A6B43178-497C-4225-BA42-DF595171F04C%22/%5E%7Earg+Name=%22lang%22+Value=%22en%22/%5E%7Earg+Name=%22cr%22+Value=%22US%22/%5E%7EsParams%5E%7E/sParams%5E%7E/CMTYDataSvcParams%5E
>>
>>Notice the date: June 07, 2005. So almost 3 years old. That one is
>>named SEC425. The link above is named SEC309. So if the naming is
>>sequential, the link above is to an even older meeting.
>>
>>A list of Mark's webcasts is at:
>>
>>http://technet.microsoft.com/en-us/sysinternals/bb963887.aspx
>>
>>Alas, no datestamps. Information is always time sensitive, especially
>>anything that purports to be newsy in nature.
>
>I think this one is newer as he discuses SpySheriff. It's probably
>from 2007 and the primary benefit I see in it is that he describes the
>useful features in many of the Sysinternal utilities. All the
>techniques described are as valid in 2008 as they were in 2007.
>
>You are right though; they should provide dates.
Damn how time flies! It's more than likely from 2006 because
SpySeriff came out in Dec 2005. At any rate, the information is still
good. >> Stay informed about: Advanced Malware Cleaning |
|
| Back to top |
|
| |
External
Since: Feb 04, 2008
Posts: 29
|
(Msg. 7) Posted: Tue Apr 22, 2008 7:38 am
Post subject: Re: Advanced Malware Cleaning [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
|
|
| Back to top |
|
| |
External
Since: Feb 04, 2008
Posts: 29
|
(Msg. 8) Posted: Tue Apr 22, 2008 7:42 am
Post subject: Re: Advanced Malware Cleaning [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
On Mon, 21 Apr 2008 19:03:28 -0400, Andy Walker wrote:
> Kayman wrote:
>
>>Educational viewing!
>>Mark Russinovich - Advanced Malware Cleaning
>>http://www.microsoft.com/emea/spotlight/sessionh.aspx?videoid=359
>
> It is definitely worth the time watching this - even if you are
> already familiar with techniques for eliminating malware. Mark
> Russinovich is one of the primary contributors at Sysinternals (he now
> works for M$).
Yes, it teaches you to apply AutoRuns and ProcessExplorer more efficiently.
The the rootkit presentation is especially very enlightening.
> The only drawback to watching this is having to install M$ Silverlight
> in order to view it.
I found Silverlight to be harmless  >> Stay informed about: Advanced Malware Cleaning |
|
| Back to top |
|
| |
External
Since: Jul 04, 2003
Posts: 1562
|
(Msg. 9) Posted: Tue Apr 22, 2008 10:41 pm
Post subject: Re: Advanced Malware Cleaning [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
Andy Walker wrote:
> Kayman wrote:
>
>> Educational viewing!
>> Mark Russinovich - Advanced Malware Cleaning
>> http://www.microsoft.com/emea/spotlight/sessionh.aspx?videoid=359
>
> It is definitely worth the time watching this - even if you are
> already familiar with techniques for eliminating malware. Mark
> Russinovich is one of the primary contributors at Sysinternals (he now
> works for M$). The only drawback to watching this is having to
> install M$ Silverlight in order to view it.
think i'll wait 'till someone puts it on youtube... i need a better
reason than a single video in order to justify exposing my browser to a
new attack vector (even if i do have whitelisting and sandboxing working
in my favour)...
--
"it's not the right time to be sober
now the idiots have taken over
spreading like a social cancer,
is there an answer?" >> Stay informed about: Advanced Malware Cleaning |
|
| Back to top |
|
| |
External
Since: Sep 10, 2006
Posts: 12
|
(Msg. 10) Posted: Tue Apr 22, 2008 11:40 pm
Post subject: Re: Advanced Malware Cleaning [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
kurt wismer wrote:
>Andy Walker wrote:
>> Kayman wrote:
>>
>>> Educational viewing!
>>> Mark Russinovich - Advanced Malware Cleaning
>>> http://www.microsoft.com/emea/spotlight/sessionh.aspx?videoid=359
>>
>> It is definitely worth the time watching this - even if you are
>> already familiar with techniques for eliminating malware. Mark
>> Russinovich is one of the primary contributors at Sysinternals (he now
>> works for M$). The only drawback to watching this is having to
>> install M$ Silverlight in order to view it.
>
>think i'll wait 'till someone puts it on youtube... i need a better
>reason than a single video in order to justify exposing my browser to a
>new attack vector (even if i do have whitelisting and sandboxing working
>in my favour)...
The funny thing is, I watched it on my Vista Business laptop, and it
did not download the Silverlight add-in but instead asked me "do you
want to activate Silverlight". It appears that M$ must have added
Silverlight in one of its automatic updates (I allow automatic update
and installation on that particular machine). I've been closing that
annoying pop-up on the M$ site for what seems like months to avoid
loading it and don't have any intention of loading it on any of my
other Windows machines. >> Stay informed about: Advanced Malware Cleaning |
|
| Back to top |
|
| |
External
Since: Apr 23, 2008
Posts: 1
|
(Msg. 11) Posted: Wed Apr 23, 2008 6:03 am
Post subject: Re: Advanced Malware Cleaning [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
On Tue, 22 Apr 2008 23:40:06 -0400, Andy Walker
<awalker.TakeThisOut@nspank.invalid> wrote:
>kurt wismer wrote:
>
>>Andy Walker wrote:
>>> Kayman wrote:
>>>
>>>> Educational viewing!
>>>> Mark Russinovich - Advanced Malware Cleaning
>>>> http://www.microsoft.com/emea/spotlight/sessionh.aspx?videoid=359
>>>
>>> It is definitely worth the time watching this - even if you are
>>> already familiar with techniques for eliminating malware. Mark
>>> Russinovich is one of the primary contributors at Sysinternals (he now
>>> works for M$). The only drawback to watching this is having to
>>> install M$ Silverlight in order to view it.
>>
>>think i'll wait 'till someone puts it on youtube... i need a better
>>reason than a single video in order to justify exposing my browser to a
>>new attack vector (even if i do have whitelisting and sandboxing working
>>in my favour)...
>
>The funny thing is, I watched it on my Vista Business laptop, and it
>did not download the Silverlight add-in but instead asked me "do you
>want to activate Silverlight". It appears that M$ must have added
>Silverlight in one of its automatic updates (I allow automatic update
>and installation on that particular machine). I've been closing that
>annoying pop-up on the M$ site for what seems like months to avoid
>loading it and don't have any intention of loading it on any of my
>other Windows machines.
Maybe we need a scanner for junk that MS install that you don't want. >> Stay informed about: Advanced Malware Cleaning |
|
| Back to top |
|
| |
External
Since: Jul 04, 2003
Posts: 1562
|
(Msg. 12) Posted: Wed Apr 23, 2008 9:48 pm
Post subject: Re: Advanced Malware Cleaning [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
Andy Walker wrote:
[snip]
> The funny thing is, I watched it on my Vista Business laptop, and it
> did not download the Silverlight add-in but instead asked me "do you
> want to activate Silverlight". It appears that M$ must have added
> Silverlight in one of its automatic updates (I allow automatic update
> and installation on that particular machine). I've been closing that
> annoying pop-up on the M$ site for what seems like months to avoid
> loading it and don't have any intention of loading it on any of my
> other Windows machines.
hmmm... kinda reminds me of the recent controversy over apple shoving
safari down the throats of people updating itunes or quicktime...
i'm sure microsoft would say it's an integral part of the operating
system, though...
--
"it's not the right time to be sober
now the idiots have taken over
spreading like a social cancer,
is there an answer?" >> Stay informed about: Advanced Malware Cleaning |
|
| Back to top |
|
| |
External
Since: Apr 24, 2008
Posts: 18
|
(Msg. 13) Posted: Fri Apr 25, 2008 11:10 am
Post subject: Re: Advanced Malware Cleaning [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
kurt wismer wrote:
> Andy Walker wrote:
> [snip]
>> The funny thing is, I watched it on my Vista Business laptop, and it
>> did not download the Silverlight add-in but instead asked me "do you
>> want to activate Silverlight". It appears that M$ must have added
>> Silverlight in one of its automatic updates (I allow automatic update
>> and installation on that particular machine). I've been closing that
>> annoying pop-up on the M$ site for what seems like months to avoid
>> loading it and don't have any intention of loading it on any of my
>> other Windows machines.
>
> hmmm... kinda reminds me of the recent controversy over apple shoving
> safari down the throats of people updating itunes or quicktime...
>
> i'm sure microsoft would say it's an integral part of the operating
> system, though...
>
Well, at least you don't have yto d/l Safari when you update iTunes.
--
wolf k. >> Stay informed about: Advanced Malware Cleaning |
|
| Back to top |
|
| |
External
Since: Jun 01, 2006
Posts: 152
|
(Msg. 14) Posted: Sat Apr 26, 2008 3:08 am
Post subject: Re: Advanced Malware Cleaning [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
Andy Walker <awalker.RemoveThis@nspank.invalid> wrote in news:480eac6c.1041589906
@news.webtv.com:
> The funny thing is, I watched it on my Vista Business laptop, and it
> did not download the Silverlight add-in but instead asked me "do you
Do you prefer vista over XP?
--
Regards,
Dustin Cook - http://bughunter.it-mate.co.uk
BugHunter v2.2e AntiMalware Removal Utility >> Stay informed about: Advanced Malware Cleaning |
|
| Back to top |
|
| |
FAQ
Profile
Private Messages
Log in
