Mini Spy

Loading...

Latest Threads

Loading...
 
  1. Warning Welcome to MalwareTips.com, a free community where people like yourself come together to discuss and learn about PC security and computers.
    As a guest, you can browse and view the various discussions in the forums, but you can not create new threads or reply to an existing one unless you are a registered member. By joining our free community you will have access to post threads, start private conversations with other members, respond to polls, upload content and access many other special features.
    Registration is fast, simple and absolutely free, so please join us today!
  2. Emsisoft  Mobile Security GiveawayEXCLUSIVE MalwareTips.com: Emsisoft Mobile Security Giveaway

    Get a free license key for Emsisoft Mobile Security to protect your Android smartphone. We are giving away Emsisoft Mobile Security license keys for our awesome members!

    Get an Emsisoft Mobile Security license key!

  3. Zemana AntiLogger Unlimited GiveawayEXCLUSIVE: Zemana AntiLogger Giveaway

    Get a free license key for Zemana AntiLogger. We are giving away 300 Zemana AntiLogger license keys for our awesome members!

    Get a Zemana AntiLogger license key!

  4.  NoVirusThanks EXE GiveawayEXCLUSIVE MalwareTips.com : NoVirusThanks EXE Radar Pro Giveaway

    Get a free license key for NoVirusThanks EXE Radar Pro. We are giving away NoVirusThanks EXE Radar Pro license keys for our awesome members!

    Get a NoVirusThanks EXE Radar Pro license key!

  5. ZoneAlarm 2015 Extreme Security GiveawayEXCLUSIVE MalwareTips.com:ZoneAlarm 2015 Extreme Security Giveaway

    Get a free license key for ZoneAlarm 2015 Extreme Security. We are giving away ZoneAlarm 2015 Extreme Security license keys for our awesome members!

    Get a ZoneAlarm 2015 Extreme Security license key!

  6. Windows XP End Of Support

    After 12 years, support for Windows XP has ended on April 8, 2014. There will be no more security updates or technical support for the Windows XP operating system. Without critical Windows XP security updates, your PC may become vulnerable to harmful viruses, spyware, and other malicious software which can steal or damage your business data and information. Many software vendors will no longer support their products running on Windows XP as they are unable to receive Windows XP updates. Most PC hardware manufacturers will stop supporting Windows XP on existing and new hardware.

  7. Tip of the Day Always keep an eye on what you click and download, including music, movies, files, browser plug-ins or add-ons
    Be wary of pop-up windows that ask you to download software or that offer to fix your computer. Often these pop-ups will claim that your computer has been infected and that their download can fix it – don’t believe them. Close the window and make sure you don’t click inside the pop-up window. Do not open files of unknown types, or if you see unfamiliar browser prompts or warnings asking you to open a file. Sometimes malware may prevent you from leaving a page if you land on it, for example by repeatedly opening a download prompt. If this happens, use your computer’s task manager or activity monitor to close your browser.

Creating an anti-malware flash drive

Discussion in 'Malware Talk' started by Nox361, Jan 28, 2014.

  1. Nox361

    Nox361 New Member

    Joined:
    Oct 16, 2013
    Messages:
    15
    Likes Received:
    1
    Trophy Points:
    12
    I am looking into creating bootable flash drive that will include all the usual suspects for the detection and removal of viruses and malware. What is the best way to accomplish this and what steps can I take to protect the drive itself when it is used on an infected machine.

    Thanks!
    Chris
  2. strumdrum

    strumdrum New Member

    Joined:
    Jan 22, 2014
    Messages:
    35
    Likes Received:
    22
    Trophy Points:
    18
    I use the PortableApps app launcher. I created my own categories so I can find what I need fast. Here is a screenshot of the launcher showing the different categories:

    Capture.PNG

    Would you mind sharing what portable tools you use for PC repair/Malware removal?

    Here are some of my favorite, all of which are portable:

    Malware removal:
    RKill
    TDSSKiller
    Hitman Pro (Scanner)
    Adwcleaner
    Emisisoft Emergency Kit
    KL Detector
    Comodo Cleaning Essentials
    Combofix
    Tiranium Antivirus Scanner - Cloud 2014

    Maintenance and Repair:
    Windows Repair
    CClenaer
    Defraggler
    PatchMyPC
    Revo Uninstaller
    Unlocker

    Utilities:
    7-Zip
    Free File Sync
    Space Sniffer
    Team Viewer
  3. Nox361

    Nox361 New Member

    Joined:
    Oct 16, 2013
    Messages:
    15
    Likes Received:
    1
    Trophy Points:
    12
    I have looked at the Portableapps.com and am interested in it.
    I have also looked at Drweb LiveUSB but my flash drive fell into the production period where it appears to System 7 as a HDD not a Removable drive, therefore I can't get DrWeb to see it.
    As far as tools go it will include (but not limited to):

    Malware removal:

    TDSSKiller
    Adwcleaner
    Emisisoft Emergency Kit
    Comodo Cleaning Essentials
    Malwarebytes

    Maintenance and Repair:

    CCleaner
    Defraggler

    Utilities:
    7-Zip
    Speccy
    Recuva

    AS I said I will also be adding more as need arises.
  4. BoraMurdar

    BoraMurdar Giveaway and Hot Deals Expert Staff Member

    Joined:
    Aug 30, 2012
    Messages:
    2,001
    Likes Received:
    1,645
    Trophy Points:
    617
    There are a lot of antivirus boot disks for removal of stubborn malware invaded your system, even when Windows cannot boot.
    In my practice, I was always successful in removing all of them and also able to repair when some users wanted to change the hardware for the obviously software problem...with this method :

    You will need a minimum 2GB flash drive and YUMI to start.
    With YUMI you can add :
    and some "portable" tools in a separate folder like :
    • Malwarebytes Antimalware + latest offline definitions in case of no internet
    • Hitman Pro
    • Adwcleaner
    • RKill
    • Kaspersky TDSS Killer
    • Emsisoft Emergency Rescue Kit
    • Wise Disk Cleaner Portable
    • Unlocker
    • Piriform Recuva Portable
    so you practically covered everything,

    Virus Infection

    In Hirens Boot CD you can always run all these portable tools because they are written to work in Windows. Malwarebytes, HitMan Pro or Emsisoft Emergency Kit will not work in Linux environment like Parted Magic, Kaspersky Rescue Disk, Comodo Rescue Disk... [in case those Rescue Disks doesn't solve your problem].
    You can be found in a problem where you have Kaspersky Rescue Disk but you have no internet in that moment or you have only Wireless where you can connect so I prefer, in those cases, to use Hirens Boot as it has some minimal , but wide set of Wi-Fi drivers to connect you to the internet to update your antimalware definitions.
    Hiren's Boot has some sophisticated tools for repairing a boot sector in case of malware modified it after successful removal with Kaspersky TDSS Killer or some other one, so, if you are experienced user try those. But if you are not, there are some good fixing tools in Wondershare LiveBoot or Tenoshare Windows Boot Genius
    [​IMG]
    Recuva will save your deleted files but if not, there are other tools in Parted Magic [included as separate boot option in Hirens Boot CD] and also Wondershare Live Boot has Wondershare Data Recovery implemented which in my testing performed very well.
    and AOMEI or Paragon can restore your backups if you have created it before.

    Of course, you can take a lot bigger USB Flash drive and add some other linux distros and tools.

    Thanks :D
    TwinHeadedEagle likes this.
  5. Nox361

    Nox361 New Member

    Joined:
    Oct 16, 2013
    Messages:
    15
    Likes Received:
    1
    Trophy Points:
    12
    Just what I was looking for!!
    I'm grabbing the linux mint 16 MATE right now...and judging by the download speeds, will be for another few hours. :)
    I may tap on your shoulder again later for some advice, but for now Thanks!!!
  6. strumdrum

    strumdrum New Member

    Joined:
    Jan 22, 2014
    Messages:
    35
    Likes Received:
    22
    Trophy Points:
    18
    Ahh...I failed to see you were asking about a bootable flash drive. BoraMurdar's advise is great. YUMI is my favorite multi-boot software as well.

    To BoraMurdar: Because there is no option for Tenorshare Windows Boot Genius in YUMI, what option do you choose under "select a distribution"? And do I read correct that portable windows applications will work in the Windows Boot Genius environment?"
  7. BoraMurdar

    BoraMurdar Giveaway and Hot Deals Expert Staff Member

    Joined:
    Aug 30, 2012
    Messages:
    2,001
    Likes Received:
    1,645
    Trophy Points:
    617
    If iso is not listed in YUMI you can "Try Unlisted ISO" option, no matter what bootloader.
    And yes.
    As Tenorshare Windows Boot Genius is based on Windows Preinstallation Environment (taken from Windows 7, I think) you can run all these tools from there...
  8. Umbra Polaris

    Umbra Polaris Testing And Review Expert Staff Member

    Joined:
    May 17, 2011
    Messages:
    9,018
    Likes Received:
    1,190
    Trophy Points:
    497
    im using a "custom-you-should-not-used-that" version of Hiren boot CD
    BoraMurdar likes this.
  9. BoraMurdar

    BoraMurdar Giveaway and Hot Deals Expert Staff Member

    Joined:
    Aug 30, 2012
    Messages:
    2,001
    Likes Received:
    1,645
    Trophy Points:
    617
    DLC or UDLC ? :D
  10. Umbra Polaris

    Umbra Polaris Testing And Review Expert Staff Member

    Joined:
    May 17, 2011
    Messages:
    9,018
    Likes Received:
    1,190
    Trophy Points:
    497
  11. BoraMurdar

    BoraMurdar Giveaway and Hot Deals Expert Staff Member

    Joined:
    Aug 30, 2012
    Messages:
    2,001
    Likes Received:
    1,645
    Trophy Points:
    617
    last time I checked site was dead I think...
  12. Umbra Polaris

    Umbra Polaris Testing And Review Expert Staff Member

    Joined:
    May 17, 2011
    Messages:
    9,018
    Likes Received:
    1,190
    Trophy Points:
    497
    U like "unauthorized" ;)
  13. BoraMurdar

    BoraMurdar Giveaway and Hot Deals Expert Staff Member

    Joined:
    Aug 30, 2012
    Messages:
    2,001
    Likes Received:
    1,645
    Trophy Points:
    617
    I like to know... ;)
  14. illumination

    illumination Well-Known Member

    Joined:
    Jun 21, 2011
    Messages:
    2,205
    Likes Received:
    762
    Trophy Points:
    367
    Seems as if the other members have ya covered... @Umbra, you listed one of my favorite tools ;)
    Umbra Polaris likes this.
  15. Gnosis

    Gnosis Well-Known Member

    Joined:
    Apr 26, 2011
    Messages:
    2,477
    Likes Received:
    190
    Trophy Points:
    202
    If I was infected, the first tools I would reach for are as follows: HitMan Pro Kickstart, Kaspersky Bootable Rescue Disk, ComboFix, adwCleaner, and CCleaner. I would follow up with PCHunter, Process Explorer, and HijackThis. All in that order.

    If I wanted to have some fun I would seek out Britec09 and do manual removal without software. That said, I would still finish with at least HitMan Pro.
  16. Nox361

    Nox361 New Member

    Joined:
    Oct 16, 2013
    Messages:
    15
    Likes Received:
    1
    Trophy Points:
    12
    I think I need a little more help in wrapping my brain around this...

    I have an 8Gb Sansdisk Cruizer.
    I have using Yumi, installed Linux Mint 16.
    I have using yumi, installed Hiren's BootUSB.
    I have also added a separate folder for additional tools.

    I have successfully launched Linux.
    I have successfully launched Hiren's.

    Should I be able to launch Hiren's tools from within Linux?
    If so, how do I import it?

    I guess, if it isn't to much trouble, what i really would like to know
    is, starting from sitting down in front of a suspect computer, what would
    be the order of things?

    Hope this makes sense and isn't to time consuming. :)
  17. BoraMurdar

    BoraMurdar Giveaway and Hot Deals Expert Staff Member

    Joined:
    Aug 30, 2012
    Messages:
    2,001
    Likes Received:
    1,645
    Trophy Points:
    617
    1. There's no way of running programs in Linux Environment that are in Hiren's Boot since they are written to work in Windows Environment (except you find the same tools - linux editions, or emulate them to work in linux but there's no point)
    2. Well, since you start up Mini Windows XP from Hirens Boot (there's no need to check that some malicious file modified proxy server) you will need to know is there an internet connection. If there is no internet connection then you'll need to download latest Malwarebytes, Comodo or Kaspersky offline definitions and put those to your USB drive. Always keep updated versions of removal tools and portable tools to your flash drive.
    So...(we are talking on cases where the computer is badly infected - cannot boot properly, locked master boot record, ransomware (no CryptoLocker),Safe Mode not working, lot of adwares, junk, and stuff)

    • Check for rootkits (Kaspersky TDSS Killer/Avast MBR)
    • I always clean the hard drive for junk files first with Wise Disk Cleaner Portable since if there are a lot of junk files the scans will be much slower
    • I always like to first scan with an Antivirus product (Like Kaspersky, Dr.Web, Bitdefender), in Hirens Boot CD there is a command-line Avira Scanner which can be useful since Avira always had good definitions.
    • Some Antiviruses has repair tools and mechanisms when they detect a malware, but they will work only from host system and not with bootable cd/usb, in this case Antiviruses will probably delete files or rename them...
    • Next Malwarebytes and Hitman Pro (2x if needed)
    • Next check if boot is working, if not, check Boot Repair Tools in Hirens Boot CD or Startup/Boot/Logon repair tools in Wondershare Live Boot
    • That's it :)
    I can, and will always recommend if you are inexperienced user to just try to fix the problems with booting to Windows, check your internet connection and call our Malware Removal Assistance for help as those guys are much more experienced with removing the malware then myself ;)

    Thanks :)
    venustus likes this.

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads: Creating anti-malware
Forum Title Date
News Archive Snowden: NSA pressured EU into creating ‘European bazaar’ of spy networks Mar 9, 2014
Troubleshooting Software/Hardware Issues (Solved) System Restore not auto creating Restore Points Nov 1, 2013
All Software Discussions Creating ISO's from CD/DVD in Windows 8. Dec 9, 2012
How-To Articles, Tips and Guides Help to creating batch file that will delete all user profile temp files Nov 6, 2012
News Archive Anonymous hacks BART, creating even more innocent victims Aug 15, 2011

MalwareTips.com is an independent website.All trademarks mentioned on this page are the property of their respective owners.