Prefered MO when tackling Adware/spyware infections

[acs]

Adware Cleaner plus browser resets , Malwarebytes then autoruns with online check seems to clear most of the issues.

 

[AndyM]

My general method is install MBAM and Spybot S&D
Run a rootkit check.
Install Avast!Free if they don't have anything better.
Clean up and reset Browsers.
Run All-in-one windows repair tool if things like windows firewall turned off.
Run windows update.

Am I missing a trick ? Should I be doing anything else?
What do you do?

I use D7II, and will run the following tools. I don't necessarily run them in a specific order, as it is down to what the machine has on it.

HitManPro - Very quick scan that pulls up numerous infections quickly. Also is very good at finding hidden proxy servers.
MalwareBytes - Good at most things, but takes a while to run
RogueKiller - Very good at finding leftover malware remnants - Will reboot your machine when finished
Autoruns - just to check after the above.

If there's still anomalies, then Windows AIO repair - full repair. Then the usual Windows Updates, Anti Virus/Malware updates (I will sell them a copy of BitDefender), defrags, cleanup of temp files, check missing shortcuts, CCleaner etc.. Most of it automated through D7II

As I said, not always run in this order. Sometimes I do more, sometimes less. Depends on what the infection is.

Haven't used SpyBot S&D in 10 years - it just doesn't do an efficient job any more IMO.

Andy

 

[PCX]

For Tune-ups (PCT): Mostly done in this order

Malwarebytes (Quick Scan)
HitmanPro
ADWCleaner
JRT
dUninstaller (remove junk as well as Java, Flash, Silverlight, etc)
Ninite (install essentials like Java, Flash Silverlight, Codecs, etc)
Classic Start for Windows 8
Install Updates
Check Device Manager and fix any issues found. Covered under tune-up as long as there is no extensive troubleshooting.
MSConfig
CCleaner (clean Registry and junk files as well as go through startup items, programs, plugins etc)
Revo Uninstaller (Another measure to make sure we did not miss any junk)
Reset browsers if necessary
Install unchecky and adblock plus

If conduit is found, we usually charge for a VR, but most computers that need a VR also need a PCT so customers usually get both. We only charge for both if both are needed though.

Also, in many cases, we will create a brand new account and migrate the old account information to the new account. This makes the computer run way better and fixes any account specific issue that the computer may have.

 

[NYJimbo]

My gawd! You are all making me feel like I only do half a job EEEK!!!!!

The great thing about this forum is that you will always find new programs and new techniques. I do laptop work for many shops in my area and you wouldn't believe how bad some of their virus removal techniques are. Some of them come up with one method and stick to it forever. If they can't kill a virus with their method they go straight to a reformat and reinstall. I'm shocked to find some shops never heard of things like RogueKiller or JRT or even Combofix, which are very useful and effective tools no shop should be without. Likewise some shops install horrible A/V programs like Webroot or Comodo Geekbuddy (or whatever its called) or AVG free from last year which are awful in protecting the customer from future infections. Many don't even bother to check installed programs to see if there is a ton of junk or cleanup browsers.

 

[NYJimbo]

MSConfig

Just wanted to add that so many computers come in booting into "selective start" which most of the time is not noticeable. So some programs, services and apps either don't run at boot or wont run manually or will run slowly. Like PCX notes, Its really important to always check MSCONFIG at some point, I do it in the beginning and then at or near the end of the cleanup/repair to be sure the system is fully loading.