Malware

Question 1

Malware Removal Process

Answer 1

1. Investigate/identify symptoms
2. Quarantine infected systems (turn off network card)
3. Disable System Restore (Windows Only)
4. Remediate Infected System (Rebooting into Safe Mode)
   4a. Update anti-malware software
   4b. Scanning/Removal techniques
5. Schedule auto updates and scans (weekly)
6. Enable system restore and create a restore point
7. Educate End User

Question 2

Symptoms of a Malware Infection

Answer 2

~ Running Slowly
~ Locking up / Unresponsiveness
~ Restarts or Crashes
~ Unusual error messages
~ Icons that disappear or show up
~ System restore not functional

Question 3

Spyware

Answer 3

Secretly gathers information about user without consent

Question 4

Rootkits

Answer 4

Software designed to gain administrator level control without detection

Question 5

Botnet / Zombies

Answer 5

Botnet: A collection of compromised computers under control of ‘master node’
Zombies: Computers used as a pivot point or impersonator

Question 6

Distributed Denial of Service (DDoS)

Answer 6

Multiple machines target a single victim and attack at the same time

Question 7

Virus

Answer 7

Malicious code that runs without user’s knowledge

Question 8

Worm

Answer 8

Malicious software that can replicate itself without the user’s knowledge

Question 9

Trojans

Answer 9

Piece of malicious software that is disguised as a piece of harmless software

Question 10

Ransomware

Answer 10

Restricts access to a victim’s computer until ransom is received