Virus/Malware Removal Guide for Windows [Feedback]

[Brian]

Hi everyone,

I would really like to get some feedback from you. What is your opinion on the guide? What can I do to make it better? I want to make the guide as user friendly as possible. Please give me your feedback, ideas, and suggestions. Thanks.

Guide: http://www.selectrealsecurity.com/malware-removal-guide/

 

[Deleted member 178]

RE: Malware Removal Guide for Windows [Feedback]

personnaly i will remove SAS (it going down) and MSE (not fantastic), and replace them by Comodo Cleaning Essential (designed to be run in very infected environment, the only cons is its huge definition database to download) and Emsisoft Emergency Kit or Norton Power Eraser.

And you didnt mention MalwareTips !!!!! Boooo ^^

 

[jamescv7]

RE: Malware Removal Guide for Windows [Feedback]

You can add Combofix which can useful against heavy infections.

 

[Littlebits]

RE: Malware Removal Guide for Windows [Feedback]

You have a very nice guide.

Recommendations:

Remove: BitDefender Online Scanner ( it has been discontinued) only has QuickScan now which doesn't remove anything just an advert to buy BitDefender products.

Add: F-Secure Online Scanner, it is one of the best full system scanner and will remove all detected infections.
Add: Symantec Security Check- http://security.symantec.com/sscv6/home.asp?langid=ie&venid=sym&plfid=21&pkj=QDDCBXUQIZQVMUYTACD

Add: Complete Internet Repair
Add: Windows Safe Mode Fixer- http://www.sergiwa.com/modules/mydownloads/singlefile.php?cid=2&lid=26
Add: Emsisoft Emergency Kit or Emsisoft HiJack Free (included in the kit) one of my favorite tools.

I would not remove SAS or MSE (they might not be the best) but still very useful.

For Combofix, I never had any good experiences using it on a highly infected system. It might remove infections but causes other system related errors which usually require a re-installation of Windows OS.
It is much easier to just re-install Windows then to use it.

I have only tried Comodo Cleaning Essentials once when it was still in beta and I wasn't impressed at all with it. But I haven't tried it since then, it could have have improved. I'm still going to have to check it out the latest version. Norton Power Eraser is a way too aggressive, full of false positives.

Thanks.

 

[Brian]

RE: Malware Removal Guide for Windows [Feedback]

Hi Littlebits,

Thank you for taking the time to look at the guide.

I removed BitDefender and added F-Secure Online scanner. Thanks for the information. I also added Safe Mode Fixer and Emsisoft Emergency Kit.

Thank you. I appreciate your feedback.

 

[Jack]

RE: Malware Removal Guide for Windows [Feedback]

Love your site, very informative.I've also noticed that you are always updating the articles/tips so that's definitively a big plus.
Good luck.

 

[Brian]

RE: Malware Removal Guide for Windows [Feedback]

Thank you Jack.

 

[Ramblin]

RE: Malware Removal Guide for Windows [Feedback]

Hi geohac, a few weeks ago I discovered the Kaspersky Virus Removal
tool on your guide. I have saved the link and whenever I feel like doing
a scan, I ll be using it. I got rid of all scanners from my PC, HMP is the
exception but Ill be running the Kaspersky Virus Removal Tool once in
a while.
Thanks friend

Bo

 

[McLovin]

RE: Malware Removal Guide for Windows [Feedback]

Missed this thread. Very nice list. Could come in handy alot +2

 

[WinAndLinuxTutorials]

Great topic!
:+1:

fftopic:
You can run ESET Online Scanner when offline by going to: "%systemdrive%\program files\ESET\ESET Online Scanner\onlinescannerapp.exe"

It will use the definitions that it downloaded the last time...

 

[Tom172]

We appreciate your work geohac!

Thanks for these updates.

 

[Prorootect]

Hi geohac,

Thank you for your Guide and site!

So some suggestions (if you wish!):

Add:

* TDSS Remover by Esage Lab (better than Kaspersky's tool, I think): http://esagelab.com/resources.php?n=software

* RSIT: http://www.raymond.cc/blog/check-for-recently-created-or-modified-files-and-installed-software/

* Another and best tool for recent files: Recent File Seeker: http://www.carifred.com/rfs/en.htm

* DDS from BeepingComputer: http://www.bleepingcomputer.com/download/anti-virus/dds

* Metascan Online by OPSWAT: http://www.metascan-online.com/

* SpyDllRemover: http://securityxploded.com/spydllremover.php - very easy, OK.?

Then these two tools for experienced people:

* XueTr by linxer: (site in English translation): http://translate.google.com/translate?hl=fr&rurl=translate.google.com&sl=zh-CN&tl=en&u=http://www.xuetr.com/

* PowerTool by IThurricane: download: http://code.google.com/p/powertool-google/downloads/list
.. and description by savit: http://4savit.blogspot.com/2011/12/powertool-42-20111224-english-support.html

""""""""""""""""""""""""""

Then delete SuperAntiSpyware; The UVK is much better! and cool, yes.
.. and delete TaskManager.xls - then add Process Hacker v2.23 (with System Information all-in-one window).
* Process Hacker 2.23: http://processhacker.sourceforge.net/forums/viewtopic.php?p=1369&sid=f612e11bb53948421d9a5e74876b79af
.. and Process Hacker Home: http://processhacker.sourceforge.net/
.

 

[Brian]

Hi Prorootect,

Thanks for your suggestions. I removed TaskManager.xls and added Process Hacker. That was an excellent suggestion!

I will check out the other tools when I have time. Thanks again.

 

[jamescv7]

Its good too see that the removal guide is still updated even the procedures . Thumbs up.

 

[ZeroDay]

Just a small suggestion,but perhaps adding a small tutorial on how to show hidden files may be worthwhile. I've come across numerous malwares that have made the owners of the machine think that all their data has gone, when in fact it's just hidden.

 

[Brian]

Update:

- Added a Comments and Reviews page (under the title)
- Created a PDF version of the guide (under the title)
- Added a link about disconnecting your Internet connection (Step 2)
- Added a link to Malwarebytes randomly named installer (Step 2)
- Combined steps: Get Expert Analysis and Further Help

 

[NSG001]

Thanks a million for all your efforts and great work.

 

[Brian]

Hi everyone,

I created a blog for the site: http://selectrealsecurity.blogspot.com/

It will provide you with all the latest updates, so please subscribe. I will no longer be posting updates to the forums.

Thanks.

 

[Malware1]

Can you add malwr.com?

 

[Brian]

It's already been added: http://www.selectrealsecurity.com/malware-analysis