Good stuff, John! Love catching the new videos :)

Thanks for making this. My only complaint is that it would be nice for you to link the websites you are talking about in the description.

One of ur best vids, easily

@John Hammond. Great presentation. You must have a photographic memory. All your videos are so smoothly presented. Thanks for your videos. I learn a lot.

interesting that I saw the Print Monitor in the list, as this process is often false flagged on many systems I've checked over the years, so maybe its not false.

The purpose is start automatic cleanup?

So what will be a better protection for this type of attack ? or how we can protect an system from that ?

I tried this but cleanmgr just wouldn't trigger when I follow the steps. Maybe it was patched or maybe I made a mistake somewhere? I am still debugging but as far as I can tell, I followed exact same steps. I tried on a VM with Windows 10 20H2 OS Build 19042

Hey John, great video, as always! Could you make a video on Coursera's Google Cybersecurity Professional Certificate and what it is worth to someone with a CompTIA Security+ certificate. Please!!

Is it living off the land when 2 cmd screens pop up and close instantly when I turn my laptop on??

Does this work against a RAM Disk? One that you could create, populate with appropriate files, then run against, then remove after the fact? Seems that might allow you to completely hide the entire process. After all, you already have to have admin privileges to run the cleaner anyway.

Does anyone have the source code shown in the video? :)

Excellent presentation as always. Can you provide ways to detect this?

KZbin has apparently unsubbed me.

Python log in shells. That wasn’t funny That ginger bounce.

This is Patched

FIRST LIKE AND COMMENT, PIN? (Also first view)