Lab 7 Ethical Hacking
Lab #6 – Assessment Worksheet
Identifying and Removing Malware on a Windows System
CSS280-1404B-01 Ethical Hacking
Course Name and Number: _____________________________________________________
Douglas Matthews
Student Name: ________________________________________________________________
Brandon DeLeeuw
Instructor Name: ______________________________________________________________
12/15/2014
Lab Due Date: ________________________________________________________________
Overview
In this lab, you used AVG AntiVirus Business Edition to identify the viruses, worms, Trojans, malware, or other malicious software found on a compromised Windows machine. You completed a scan of the entire computer, learned how to exclude folders to avoid false positives, and understood the importance of maintaining the signatures database. You discovered the difference between a full computer scan and a Resident Shield scan. Finally, you also permanently removed the malware identified by the antivirus software and scheduled the scan to run automatically.
Lab Assessment Questions & Answers
1. Why is it recommended to update the antivirus software’s signature database before performing an antivirus scan on your computer?
Updating the antivirus software with the latest virus definitions ensures the software has the latest information to identify and quarantine threats.
2. What are typical indicators that your computer system is compromised?
Slow response opening, operating system not booting up correctly or no functioning normally, event logs reporting numerous unusual alerts.
3. Where does AVG AntiVirus Business Edition place viruses, Trojans, worms, and other malicious software when it finds them?
It places the virus in a Virus Vault which is a quarantine area where all removed files, viruses go.
.
4. What other viruses, Trojans, worms, or malicious software were identified and quarantined by AVG within the Virus Vault?
Exploit, trojan horse dropper
5. What is the difference between the complete scan and the Resident Shield?
Complete scan, scans the entire computer while resident shield scans a folder.
Copyright © 2014 by Jones & Bartlett Learning, LLC, an Ascend Learning Company. All rights reserved.
www.jblearning.com
Student Lab Manual
Identifying and Removing Malware on a Windows System
CSS280-1404B-01 Ethical Hacking
Course Name and Number: _____________________________________________________
Douglas Matthews
Student Name: ________________________________________________________________
Brandon DeLeeuw
Instructor Name: ______________________________________________________________
12/15/2014
Lab Due Date: ________________________________________________________________
Overview
In this lab, you used AVG AntiVirus Business Edition to identify the viruses, worms, Trojans, malware, or other malicious software found on a compromised Windows machine. You completed a scan of the entire computer, learned how to exclude folders to avoid false positives, and understood the importance of maintaining the signatures database. You discovered the difference between a full computer scan and a Resident Shield scan. Finally, you also permanently removed the malware identified by the antivirus software and scheduled the scan to run automatically.
Lab Assessment Questions & Answers
1. Why is it recommended to update the antivirus software’s signature database before performing an antivirus scan on your computer?
Updating the antivirus software with the latest virus definitions ensures the software has the latest information to identify and quarantine threats.
2. What are typical indicators that your computer system is compromised?
Slow response opening, operating system not booting up correctly or no functioning normally, event logs reporting numerous unusual alerts.
3. Where does AVG AntiVirus Business Edition place viruses, Trojans, worms, and other malicious software when it finds them?
It places the virus in a Virus Vault which is a quarantine area where all removed files, viruses go.
.
4. What other viruses, Trojans, worms, or malicious software were identified and quarantined by AVG within the Virus Vault?
Exploit, trojan horse dropper
5. What is the difference between the complete scan and the Resident Shield?
Complete scan, scans the entire computer while resident shield scans a folder.
Copyright © 2014 by Jones & Bartlett Learning, LLC, an Ascend Learning Company. All rights reserved.
www.jblearning.com
Student Lab Manual