I've been using a Windows PC since windows 95. I have no desire to deal with the fails of windows from it's own software failures to viruses but unfortunately a necessity. This video is so over the top for me but informative. This guy is a SAVANT.
Amazing how powerful this tool is and the whole suite. Amazing also is that since the original winternals, it's freeware. Respect to the developers on this.
I started learning computer science since 9 years old. Now I'm 17 and I'm graduating from the school and going on to a system administrator education program. Mark Russinovich was inspiring me into that for the whole last year :)
Answering to all these fools saying that nobody cares: I’ve got purpose in my life, my life makes sense, I’m on my way to new implementations in IT. And your life, gee’s, makes no sense, should you choose to listen to my words. I left my comment here as an appreciation and sign of respect to Mark Russinovich, not for you, birdies
I loved this. Im motivated to get Into Malware hunting on Windows and this vid fired me up even more. I will Check your Channel and Hope Theres more Like this
Are there any significant differences with malware now in 2022? Is the information in the presentation still entirely relevant? For cleaning the system, wouldn't it be better to fully wipe, format the drive, and reinstall Windows?
If the software you are using have unpatched or zero day vulnerabilities, you will be stuck in an infinite loop; Fully wipe drive, Reinstall Windows, Reinstall Vulnerable software/process, Get hacked again, and goto 10 (repeat). Without understanding the root cause, reinstalling windows may achieve little to nothing. In a distant future if newer programming languages with stricter enforcement for code safety like Rust or GoLang replace older ones like C for writing operating systems and application software, maybe then we can see a significant reduction in malware. Until then, keep formatting and reinstalling is the only solution for common people. There are so called opensource software contributors who are actually government agents deliberately incorporating vulnerable code to be exploited later that makes the matter more complex. You can't secure a product if some of its components are deliberately designed to exploited by certain people later.
Linux anyone? I'm sure people will bash me, touting how secure Linux is because it is open source, and there for it is safer or more secure... I can show my dog my secret diary, do you think my dog can make any sense of what's in it?
there is a grayed out wmiprvse service in process explorer and it wont let me look at it there is no verification and i saw two fo the same file then one disappeared.
At 26:00, your malware is so bad it is detected just by looking similar to other malware even though you haven't even published it as you say. Also all the malware you examine are super obvious, you make absolutely no effort to analyze something that tries to evade detection. Also everything you say is completely useless if you don't already know beforehand the name of the malware that exists on your pc.
I've been using a Windows PC since windows 95. I have no desire to deal with the fails of windows from it's own software failures to viruses but unfortunately a necessity. This video is so over the top for me but informative. This guy is a SAVANT.
As one smart guy once said, computers don't fail from doing wrong what you ask them to do. They fail from doing what you ask too literally.
To whom it may concern: this talk is from 2014.
Amazing how powerful this tool is and the whole suite. Amazing also is that since the original winternals, it's freeware. Respect to the developers on this.
I was amazed at the amount of tools you get and the little space it takes up. Mind blown lol 😆
Great talk! I am always learning new things about the Sysinternals tools with these videos. I wish there was an updated talk. Keep it up!
I started learning computer science since 9 years old. Now I'm 17 and I'm graduating from the school and going on to a system administrator education program. Mark Russinovich was inspiring me into that for the whole last year :)
"i started learning computer science since 2 years old", this part ,nobody cares.
@@ME-ov7vp looks like you started learning English yesterday
I started learning computer science when i was 9months old "who cares"
Answering to all these fools saying that nobody cares: I’ve got purpose in my life, my life makes sense, I’m on my way to new implementations in IT. And your life, gee’s, makes no sense, should you choose to listen to my words. I left my comment here as an appreciation and sign of respect to Mark Russinovich, not for you, birdies
@@cloakface-sv5sm Broskii i was just messing with you it wasn't that deep 😂😂
This guy is a genius. I really don't know how to appreciate his work..
I totally agree!
his tools make you a windows internal guru in about 1h30 min. Thanks Mark!!!
I loved this. Im motivated to get Into Malware hunting on Windows and this vid fired me up even more. I will Check your Channel and Hope Theres more Like this
Good stuff mark, just add the year of the video to the title, I thought you'd actually done one for this year's ignite
You inspire so many of us. :)
great video, i just wish it weren't so blurry... Anyone have a fixed version? Maybe one that's been run through a Deblurring AI model?
Thanks for sharing this video Mark. I am using your tools almost every day! They are amazing and Must
Super, so many useful tools
I have to thank you for this amazing tools. Our analyst life is much easier
great video
끝 없는 개선 박수 짝짝짝 = I applaud the endless improvement
What's the buddy system?
Magnific Work!
The sigcheck doesn't seem to work for windows 10 after download.
Any update?
In the command line, you need to navigate to the directory where you saved sigcheck.
@@cts3029 Correct or you can add it to the path variable so you can access it from anywhere.
Are there any significant differences with malware now in 2022?
Is the information in the presentation still entirely relevant?
For cleaning the system, wouldn't it be better to fully wipe, format the drive, and reinstall Windows?
If the software you are using have unpatched or zero day vulnerabilities, you will be stuck in an infinite loop; Fully wipe drive, Reinstall Windows, Reinstall Vulnerable software/process, Get hacked again, and goto 10 (repeat). Without understanding the root cause, reinstalling windows may achieve little to nothing. In a distant future if newer programming languages with stricter enforcement for code safety like Rust or GoLang replace older ones like C for writing operating systems and application software, maybe then we can see a significant reduction in malware. Until then, keep formatting and reinstalling is the only solution for common people. There are so called opensource software contributors who are actually government agents deliberately incorporating vulnerable code to be exploited later that makes the matter more complex. You can't secure a product if some of its components are deliberately designed to exploited by certain people later.
Linux anyone? I'm sure people will bash me, touting how secure Linux is because it is open source, and there for it is safer or more secure... I can show my dog my secret diary, do you think my dog can make any sense of what's in it?
I think i have a wmi malware but its not showing up in autoruns pls halp!
there is a grayed out wmiprvse service in process explorer and it wont let me look at it there is no verification and i saw two fo the same file then one disappeared.
💯💯
I blame powershell.
18:00
Is there a more succinct way of describing it? like my videos for example
This is a nice presentation but the video quality sucks.
At 26:00, your malware is so bad it is detected just by looking similar to other malware even though you haven't even published it as you say. Also all the malware you examine are super obvious, you make absolutely no effort to analyze something that tries to evade detection. Also everything you say is completely useless if you don't already know beforehand the name of the malware that exists on your pc.
The video has educational purposes dude, calm down.
Yeah that is super annoying.
AaaS LMAOO
An intrussion mega virus like windose, searching for an intrusion virus.
Hilarious.
just use kaspersky and forget this flex..