Network Security: Detailed info on Re: More along the lines of malware disinfection

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Focus-Microsoft

[Top] [All Lists]

Re: More along the lines of malware disinfection

from [Mike Moratz-Coppins] Network Security

[Permanent Link]

Subject:	Re: More along the lines of malware disinfection
Date:	Tue, 18 Mar 2008 18:28:17 +0000

Express Web Systems, Inc. wrote:

The problem with accessing the "Documents and Settings" folder is a tough
one to crack, as I didn't have to deal with it in my instance (the files
were located in a hidden directory in C:\Windows\). You might want to try
liveCD that supports reading and writing to NTFS (if they are using NTFS, or
if you are lucky, just access the drive via FAT32).

AFAIK most live CDs just grant read-only access to NTFS. Which one would you recommend?

As a different avenue of approach, maybe you can accomplish something with
BartPE. That would allow you to boot into windows and run various apps
independent of the compromised OS.


I haven't heard of that before, I'll read up about it.


--
Mike Moratz-Coppins
mike@mikeymike.org.uk
http://www.mikeymike.org.uk/

[More messages with this same subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
More along the lines of malware disinfection, Mike Moratz-Coppins RE: More along the lines of malware disinfection, Devin Ganger RE: More along the lines of malware disinfection, Express Web Systems, Inc. Re: More along the lines of malware disinfection, Mike Moratz-Coppins <= RE: More along the lines of malware disinfection, Murda Mcloud Re: More along the lines of malware disinfection, Jon R. Kibler Re: More along the lines of malware disinfection, Mike Moratz-Coppins Re: More along the lines of malware disinfection, Colin Copley RE: More along the lines of malware disinfection, Murda Mcloud RE: More along the lines of malware disinfection, Devin Ganger RE: More along the lines of malware disinfection, Wayne S. Anderson Re: More along the lines of malware disinfection, Mike Moratz-Coppins RE: More along the lines of malware disinfection, Devin Ganger RE: More along the lines of malware disinfection, Wayne S. Anderson

Previous by Date:	RE: More along the lines of malware disinfection, Wayne S. Anderson
Next by Date:	Re: Compromised WinXP box prob, Kurt Buff
Previous by Thread:	RE: More along the lines of malware disinfection, Express Web Systems, Inc.
Next by Thread:	RE: More along the lines of malware disinfection, Murda Mcloud
Indexes:	[Date] [Thread] [Top] [All Lists]