1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Microsoft Standalone System Sweeper Beta

Discussion in 'Security and Privacy' started by Steve R Jones, 2011/06/24.

  1. 2011/06/24
    Steve R Jones

    Steve R Jones SuperGeek Staff Thread Starter

    Joined:
    2001/12/30
    Messages:
    12,317
    Likes Received:
    252
    A recovery tool that can help you start an infected PC and perform an offline scan to help identify and remove rootkits and other advanced malware.
    http://connect.microsoft.com/systemsweeper
     
    Steve R Jones,
    #1
  2. 2011/06/24
    Evan Omo

    Evan Omo Computer Support Technician Staff

    Joined:
    2006/09/10
    Messages:
    7,919
    Likes Received:
    511
    That looks like a very useful tool. I'm sure many computer users may use that tool as a last resort if their computer can't start due to some severe malware infections.

    But if a machine is that badly compromised to the point that it doesn't even start then a format and reinstall is likely the only option. I might use that tool if I come across a badly infected system in the future.
     
    Evan Omo,
    #2


  3. to hide this advert.

  4. 2011/06/24
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    That tool creates bootable CD, so the computer doesn't have to be bootable.
     
    broni,
    #3
  5. 2011/06/24
    rsinfo

    rsinfo SuperGeek Alumni

    Joined:
    2005/12/25
    Messages:
    4,076
    Likes Received:
    178
    What about updations ? Is it online or do we have to download new versions ?
     
    rsinfo,
    #4
  6. 2011/06/24
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    The tool will create bootable CD, or USB flash drive.
    In the latter case, after booting, virus data can be updated (after booting your internet connection should be available).
     
    broni,
    #5
  7. 2011/06/24
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    broni,
    #6
  8. 2011/06/24
    rsinfo

    rsinfo SuperGeek Alumni

    Joined:
    2005/12/25
    Messages:
    4,076
    Likes Received:
    178
    That should help. But is the download saved on USB or hard disk ?
     
    rsinfo,
    #7
  9. 2011/06/24
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    This is the tool UI:

    http://www.sevenforums.com/attachme...osoft-standalone-system-sweeper-restart-3.jpg

    The options are:

    Scan:
    - quick scan
    - full scan
    - custom scan (gives an option to scan selected drives and files)

    Tools:
    - options

    file and path exclusions
    file extensions exclusions
    advanced options:

    scan archived files (prechecked)
    scan email (prechecked)
    scan removable drives
    use heuristic (prechecked)

    - quarantined items (remove or restore software that was prevented from running)
    - allowed items (view software that you have chosen not to monitor)

    Help:
    - check for updates (in case you use bootable USB flash drive)
    - exit
     
    broni,
    #8
  10. 2011/06/24
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    Virus definitions update will update existing data on USB stick.
     
    broni,
    #9
  11. 2011/06/24
    rsinfo

    rsinfo SuperGeek Alumni

    Joined:
    2005/12/25
    Messages:
    4,076
    Likes Received:
    178
    broni, we were both posting the same time so I missed your manual post.

    The manual states that "When running the Microsoft Standalone System Sweeper Tool again on the same USB flash drive, if the following conditions below are met, the tool will only download definitions (approx. 60MB) and update the USB drive without reformatting it." Don't you think 60 mb definitions download is a little excessive ?
     
    rsinfo,
    #10
  12. 2011/06/24
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    I have no idea what would be excessive.
    The newest data has to implemented, so....whatever it takes.
     
    broni,
    #11
  13. 2011/06/24
    rsinfo

    rsinfo SuperGeek Alumni

    Joined:
    2005/12/25
    Messages:
    4,076
    Likes Received:
    178
    It seems that its downloading ALL the definitions all over again & not increments.
     
    rsinfo,
    #12
  14. 2011/06/24
    Evan Omo

    Evan Omo Computer Support Technician Staff

    Joined:
    2006/09/10
    Messages:
    7,919
    Likes Received:
    511
    Interesting how it has a similar UI to Windows Defender.

    Does the tool use the same spyware and virus definitions as MSE?
     
    Evan Omo,
    #13
  15. 2011/06/24
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    Most likely.
     
    broni,
    #14
  16. 2011/06/24
    Arie

    Arie Administrator Administrator Staff

    Joined:
    2001/12/27
    Messages:
    15,174
    Likes Received:
    412
    This is a cleanup tool, not a prevention tool, so no, nothing is excessive IF you want to clean a system.

    Me I would just format & reinstall, but then again, from all people that get infected, 99.9% do not have a current backup of their data.

    Cleaning a system of Malware booted not from Windows is usually the best way these days...
     
    Arie,
    #15

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...