These instructions indicate how to use MRfCS to scan a Windows host.
Before you begin, make sure that you have fulfilled the prerequisites for using MRfCS. See Endpoint Security, Malwarebytes Remediation for CrowdStrike, Prerequisites.
This tool is for use only be IT professionals. Please take care to scan only hosts that are under your support.
This tool is intended to be used to augment the detection and prevention capabilities provided by CrowdStrike. While useful to clean up after a detection or to search for unwanted programs, its use can impede active investigations. Do NOT use this in the middle of an active medium or high level incident, unless directed to do so by an incident responder.
Because scan results can provide evidence of an intrusion, there may be situations where you will be requested to send a copy of your scan results to Security. Please send a copy of the scan report to firstname.lastname@example.org if any of the following applies:
Scan reports can be found by navigating to Scan History > Open Report for the appropriate scan.