AntiMalware Toolkit (Advice Needed)

old thread here

the owner of the webpage has tasked me with coming up with some more categories to add to the AntiMalware Toolkit webpage.

he wants 2 more categories to add to the bottom of the page

i could not think of any obvious ones so i thought i would ask you guys for suggestions.

 

Add a new section titled something like "Rootkit Cleaning" and move all Rootkit tools over to this new category.

"Preparation for Malware Cleaning" for programs like CrapCleaner and actions such as turning off Windows System Restore to clear out all of the Windows Restore Points.

 

How about one titled "Prevention"
Which could include those that focus on the prevention of infection instead of the cure.
Sandbox/Virtualization/Hips/Anti-Excutable/and so on.

 

@LoneWolf
this page is meant as helpful store for technicians in malware removal. technicians already know how to prevent infections in the first place. but technicians already know how to remove malware dont they? yes but direct links is what makes this page somewhat unique.

 

@TheKid7
i like the "Preparation for Malware Cleaning" suggestion, i shall put that forward to him

there are not many rootkit tools out there that work on 64bit and all software on that page has to be functional on a 64bit systems. a boot disk is the best anti-rootkit tool and those are already listed

 

Maybe a section dedicated to "Final Tests", a set of verifications post malware removal in order to check if (almost) everything is working fine before delivering the computer to a client.

 

good call, what would be contained in this list? any examples?

 

This is what i usually check:

. Device manager (to check is all the drivers are installed)
. Service pack (to see if it is updated)
. Internet (normally i try to play a you tube video to see if flash player is working)
. Windows Live Messenger
. Sound (i try to play a mp3)
. Keyboard (test to see if the layout is correct and if the most used keys are working)
. Mouse
. Antivirus (installed and updated)
. DVD codec (.avi file)
. Office (.pps, .doc, .xls and . pdf files)
. Firewall
. DVD player (i try to play a movie from a dvd)
. Internet restore (if the client have costumized ip and DNS i put them back, and if the browser was "infected" -babylon, funmoods, some proxy, etc.- i reset IE -keeping personal settings-)
. USB
. Hosts file
. Windows updates and security center
. Create a restore point