Jump to content

Recommended Posts

When I've found it impossible to scan an infected HD (unable to login for example), I usually put the drive into a workbench PC which has all my up-to-date virus/spyware tools, including MBAM of course. I've seen some people recommend using a bootable Windows environment such as BARTPE to load and run antimalware tools. Is there any particular advantage to this method as opposed to mine?

Link to post
Share on other sites

Absolutely, it allows (using certain plugins) for the scanners to load the registry hives of the offline system, thus allowing detection and removal of threats in the registry which is sometimes the only way to detect certain threats because of randomized filenames and MD5's. That being said, MBAM isn't designed for either type of use (scanning slaved drives or using in a BART's disc, it's specifically designed to scan an online system for active infections. It may detect some infections used to scan slaved drives, but not nearly as many as it would if used in a live system (once you've cleaned it up enough using other tools for it to boot of course). I hope you have a technician's license for using MBAM at your tech shop also, otherwise it's a violation of MBAM's EULA.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.