4.7 Flashcards
Browser security
pop ups may mean malware
might make pop ups look legit
browser redirection and security alerts
malware symptoms
slow performance, lock up
network issues preventing you from accessing other sites
windows update might be blocked
system files renamed, encrypted, or disappear
email security
spam/phishing
hijacked email can become spammers
participation in DDoS attacks
coordinated BOTnets
Best way to stop viruses and malware
stop it before executing install through updated antivirus programs
keep AV signatures updated
recovery console/command prompt to disable a service that runs the malware. you can also remove the malware right there if you know the correct files to delete.
System restore can restore prior to malware install but sometimes wont work bc malware will infect restore files
windows PE disk can help run systems functions that can remove malware
event viewer can show malware issues
Best practices to remove malware
- identify malware
- disconnect from network
- quarantine removable media
- do not try to back up system (already infected)
- prevent autoplay
- run a restore point (might not always work)
- disable/delete system protection restore points
- update AV. set it as automatic
- remediate infected systems (removal)
- run in safemode
- enable system protection once cleaned
- train the users to recognize malware
