I've been reading up on how to manually remove malware. It seems the process is usually something like; stop the malware process(es), delete the files, and delete the reg keys. In theory, this could be remotely and out of band. For example, boot RDS, delete malware files and reg keys. So my question is to those who have experience removing malware. Is there a benefit to doing it out of band?

 

My take is that being out of band could make removal easier since the malware processes are not running and hence can't battle with you as you try to delete files and reg keys.

 

What do you think about remote, out of band virus removal? Are there benifits? Anyone had success or failures to report?