Posted by: Dan O'Connor
Excellent video, short and to the point with a good list of tools to get you started if you are interested in this kind of thing.
If you do this, it’s better to do this with a physical machine and not a virtual machine. Many malware will detect if it’s in a VM or not and change what it’s doing. In the past I have used BartPE and ImageXML to take and restore my images, ImageXML can take a image of a running machin using VSS so that can save you one reboot.