Malware Removal Steps
Cards (10)
- 1 Investigate and verify malware symptoms include pop-up, message asking for money, system not booting, slow or applications not working.
- 2. Quarantine infected systems by removing the system from the network and disconnecting the NIC.
- 6. Enable System Restore and create a restore point in Windows.
- 7. Educate the end user.
- 3. Disable System Restore in Windows (viruses can infect restore points).
- 4. Remediate infected systems: Update anti-malware software and use removal techniques.
- 5. Schedule scans and run updates.
- Quarantine: Isolation of files suspected of containing malware to prevent further damage to the system.
- Malware signature: A unique identifier that is used to identify a piece of malware.
- Environments for malware scanning and removal in MS Windows: Safe mode and WinPE.