Malware cleaning tools thoughts

Happy new year everybody!

We use ADWcleaner, MBAM and CCleaner for most of the malware, unless of course the infection is of a certain kind so we use the appropriate tool. We have recently purchased the D7 Premium and Dcloud subscription looking to automate (at least) the cleaning procedure but we are still looking into that trying to learn how to use the auto mode. We install KIS on every PC can run it before it leaves our service.

FilthX
 
NOOB_TECH said:
Does anyone use?

Kaspersky virus removal tool
http://www.kaspersky.com/antivirus-removal-tool?form=1

Or

Sophos Virus Removal Tool
http://www.bleepingcomputer.com/download/sophos-virus-removal-tool/
Click to expand...

both install themselves into the machine. if it isn't portable, I do not run it. That being said I don;t think the Sophos removal tool is as good as it was years ago. The Kaspersky tool, just run the Kaspersky rescue Disk instead

Now I must say I have been needing to use ComboFix more lately. It is a tool I am very warey of & use it after I have tried everything else but I must say so far good results. Yes a change of heart here folks.

Norton Power Eraser I have also been working in to the mix lately
 
Our process is basically
In safe mode:
Clean Autoruns
Ccleaner
JRT
MBAM (quick scan)
HijackThis
TDSSKiller

Normal Mode:
ADWCleaner
Remove antivirus
Combofix
SFC /Scannow
Autoruns + Ccleaner again
Update windows

If we need pre-boot removal we use Kaspersky Rescue disk or Hitman Pro Kickstart. Sometimes if we only see PUPs and adware, we will skip combofix. I think maybe 2 or 3 times out of several hundred pcs I've ran it on, have I ever had trouble with combofix. Every time it was because there was some bad rootkit on the system, and the damage usually was in the form of no internet access which was easily fixed.

We only work in-store and the process usually takes a day as we work on multiple things at once. Probably not expedient enough of a process to do on-site.
 
Krynn72 said:
Our process is basically
In safe mode:
Clean Autoruns
Ccleaner
JRT
MBAM (quick scan)
HijackThis
TDSSKiller

Normal Mode:
ADWCleaner
Remove antivirus
Combofix
SFC /Scannow
Autoruns + Ccleaner again
Update windows

If we need pre-boot removal we use Kaspersky Rescue disk or Hitman Pro Kickstart. Sometimes if we only see PUPs and adware, we will skip combofix. I think maybe 2 or 3 times out of several hundred pcs I've ran it on, have I ever had trouble with combofix. Every time it was because there was some bad rootkit on the system, and the damage usually was in the form of no internet access which was easily fixed.

We only work in-store and the process usually takes a day as we work on multiple things at once. Probably not expedient enough of a process to do on-site.
Click to expand...

solid list, I would think about adding rkill first & also check out malwarebytes anti-rootkit.
 
You must log in or register to reply here.

Similar threads

CompConfig
(SOLVED) Need help please. PCKeeper ad ware removal.
Replies
18
Views
4K
CompConfig
CompConfig
shamrin
[SOLVED] Malware - second Explorer.exe that eats CPU and RAM
2
Replies
35
Views
4K
HFultzjr
HFultzjr
wtigger
Malware caused limited Internet access
Replies
13
Views
2K
Xander
Xander
calldrdave
Thankful for RepairShopr!
Replies
2
Views
2K
HCHTech
HCHTech
S
[SOLVED] Problems after malware removal
2
Replies
22
Views
3K
sorcerer
S
Back
Top