Hi,
Quick question for people who are in the security industry, I am only starting in the industry of Technical support, and Help Desk, and just wondering what is the standard way that industry specialists remove viruses and malware. Please correct me if i make any mistakes or add new suggestions, Number 1, isolate the workstation to prevent spreading, number 2 launch windows in safe mode and scan the system with a couple of different Anti malware and virus programs such as MacAfee, malwarebytes, number 3 attempt to remove the malware using the antimalware software, number 4 rewrite the MBR with fdisk command, and if a customer has a recent backup to be completely sure it’s off ur system nuke operating system and reinstall. Here you go guys. And my other question is this, i do this for my personal computer and was wondering if its a practical way, i use Hijackthis program to see registry keys that are being modified most recently, check what program is it, and if it has a weird name i go to registry with regedit, backup the registry and then go to local machine, follow the address where that suspecious program is at and delete the key manually, then clean local user, then going to root and delete the CLSID for that software. Usually i remove browser helper objects and toolbars this way, because those are usually the malware. I also usually do a disk cleanup and delete internet temp files. Please let me know guys if i missed anything or anything i got wrong.
Thank you :)