|
|
#1
January 1st, 2007, 06:07 AM
|
||||
|
||||
Mark Russinovich and malware detection and removal video
This may already have been posted:
http://www.microsoft.com/emea/itssho...px?videoid=359 Direct link to MR presentation only with no MS log in pfaffing http://msexp.streamnavig.com/msexp/p...ng=en&cou=emea Video presentation of MR and malware primer. Excellent tutorials about sysinternal's tools. Some other good stuff also for low level users like me. (need IE to make it work) Some of it pretty unnerving.  Gmer gets a good mention ! Watch out for the steam coming out of EP-XOFF ears.  A bit strange that RkU didn't get a mention? Rest of the show: http://www.microsoft.com/emea/itssho....aspx?event=49
__________________
Don't confuse me with someone who actually knows what they are talking about. Linux Registered user 469135 Please, support Medecins Sans Frontieres Last edited by Longboard : January 1st, 2007 at 06:44 AM. |
|
#2
January 1st, 2007, 08:48 AM
|
||||
|
||||
|
Re: Mark Russinovich and malware detection and removal video
Quote:
If you asking me, I don't care  Perhaps Mark never tried my/gmer tools to do compare.
__________________
Ring0 - the source of inspiration |
|
#3
January 1st, 2007, 09:06 AM
|
||||
|
||||
|
Re: Mark Russinovich and malware detection and removal video
Hello EP
It's a real shame he didn't refer to RkU. Wonder when he wrote that presentation? It's not like you are invisible at Sysinternals Forums  I had to laugh when I noticed he was using VMWare not Virtual PC: he does mention that he would've if he could've 
__________________
Don't confuse me with someone who actually knows what they are talking about. Linux Registered user 469135 Please, support Medecins Sans Frontieres |
|
#4
January 1st, 2007, 09:22 AM
|
||||
|
||||
|
Re: Mark Russinovich and malware detection and removal video
There is alot he could of mentioned but didn't - doesnt really matter
, he also says if you suspect a rootkit to run as many different antirootkit tools as you can as there isnt a universial tool. One tool he mentioned that I use and use also to look for stealth is Windbg - free download from MS.edit : yeah he used VMWare because of its snap-shots. |
|
#5
January 1st, 2007, 10:21 AM
|
||||
|
||||
|
Re: Mark Russinovich and malware detection and removal video
I've purchased Administrator's Pak and other and attended seminar from Winternals in the past and would recommend anyone to have a look at the free tools from Sysinternals and look at this even if just to see how the free programs Process Explorer and Autoruns can be used to help in administrating a system, and if you already use the tools you may learn something new.
Quote:
|
| « Previous Thread | Next Thread » |
| Thread Tools | Search this Thread |
|
|
