frederick
Well-Known Member
- Reaction score
- 154
- Location
- Phoenix, AZ
JRT/AdwCleaner/MBAR or Panda AR/Malwarebytes/Rogue Killer
This series is my default go-to. For the most part, JRT and AdwCleaner do most of the heavy lifting, so by the time I get to MBAM, I don't even need Rogue Killer, but I do it anyways.
Hitman Kickstart > Main Series as stated above
Someone mentioned what's the difference between kickstart and regular, I've yet to see one. One is a pre-boot the other is not. Though kickstart is more for Ransomware.
Assuming those have failed, ComboFix is the last to go in. Someone said you can't control it. Not true. Have you imported scripts in to your ComboFix? Try that, and see what it can do now. It can be an extremely dangerous tool if you don't know how to use it. Like handing a baby a .50 Cal. I've seen users approach me after going to bleepingcomputer.com (not blaming bleepingcomputer.com) and following what someone else was told to do. I tell a lot of my clients to not go to websites and try to remove it themselves. And they end up needing a system restore, or worse...Nuke and Pave.
Don't do much in the way of using an AV that's not already installed. If they got MSE or Windows Defender, I will recommend something else being installed. So Kaspersky is out like many have said they use.
CCleaner, I'll use this at the beginning if I can and then again at the end. At the start, I just do a simple clean up of temp files, been caught by surprise with a slow computer than was gummed up with over 20GB of junk on a 80GB hard drive. At the end of the service I do a reg cleaner (always save a backup) and a temp file cleaning.
MBAR: It's getting worse I think. Try Rootkit Buster or Panda Anti-Rootkit for alternative.
We got other tools, and awesome little things we use as well. But those are for the most part for special little annoyances.
This series is my default go-to. For the most part, JRT and AdwCleaner do most of the heavy lifting, so by the time I get to MBAM, I don't even need Rogue Killer, but I do it anyways.
Hitman Kickstart > Main Series as stated above
Someone mentioned what's the difference between kickstart and regular, I've yet to see one. One is a pre-boot the other is not. Though kickstart is more for Ransomware.
Assuming those have failed, ComboFix is the last to go in. Someone said you can't control it. Not true. Have you imported scripts in to your ComboFix? Try that, and see what it can do now. It can be an extremely dangerous tool if you don't know how to use it. Like handing a baby a .50 Cal. I've seen users approach me after going to bleepingcomputer.com (not blaming bleepingcomputer.com) and following what someone else was told to do. I tell a lot of my clients to not go to websites and try to remove it themselves. And they end up needing a system restore, or worse...Nuke and Pave.
Don't do much in the way of using an AV that's not already installed. If they got MSE or Windows Defender, I will recommend something else being installed. So Kaspersky is out like many have said they use.
CCleaner, I'll use this at the beginning if I can and then again at the end. At the start, I just do a simple clean up of temp files, been caught by surprise with a slow computer than was gummed up with over 20GB of junk on a 80GB hard drive. At the end of the service I do a reg cleaner (always save a backup) and a temp file cleaning.
MBAR: It's getting worse I think. Try Rootkit Buster or Panda Anti-Rootkit for alternative.
We got other tools, and awesome little things we use as well. But those are for the most part for special little annoyances.