Malware Removal

richc46

richc46

Vista Guru
Gold Member
Here is a great guide on removing malware.
Malware Removal Guide for Windows
I know that there are several members who really appreciate this information.

This is for your own persnal use. Lets not take a chance with the OPs computer; lets contact Jacee or Corrine in case of questions about Malware infestation.

Source Bill2
 

My Computer

System One

  • Manufacturer/Model
    Dell XPS420
    Memory
    6 gig
    Graphics Card(s)
    ATI Radeon HD3650 256 MB
    Sound Card
    Intergrated 7.1 Channel Audio
    Monitor(s) Displays
    Dell SP2009W 20 inch Flat Panel w Webcam
    Hard Drives
    640 gb
    Cooling
    Fan
    Keyboard
    Dell USB
    Mouse
    Dell USB 4 button optical
    Other Info
    DSL provided by ATT
Rich very good I like this one a lot, lots of info but if someone has to use this they should also get the advice of Jacee or someone on the forum to guide them through the process (First).

Thank you.

Tom
 

My Computer

System One

  • Manufacturer/Model
    a6530f Desktop
    CPU
    HP-PAVILION
    Motherboard
    M2N68-LA (Narra3)
    Memory
    8 Gigs of Ram/DDR2 PC2-6400 MB/sec
    Graphics Card(s)
    NVIDIA GeForce 6150SE nForce 430
    Sound Card
    Intergrated Realtex ALC888S Audio
    Monitor(s) Displays
    LG W40 series widescreen
    Screen Resolution
    1600 X 900
    Hard Drives
    1 640 GB Sata transfer rating: 3.0 Gb/sec speed: 7200 RPM
    PSU
    300W
    Case
    Mid-Size ATX
    Keyboard
    HP Multimedia Keyboard
    Mouse
    Microsoft Wireless Mouse 5000
    Other Info
    Processor: AMD Phenom X3 8450 Operating speed: Up to 2.1 GHz, Number of cores: 3, Socket: AM2+, Bus speed: 3600 MHz HT3 (clocked down to 2000 MHz)

    Modem: 56K WinModem/

    Supermulti: 16X DVD(+/-)R/RW 12X Ram (+/-)R DL Lightscribe SATA Drive

    Menory Card Reader: 15-in-1 Multimedia Card Reader

    Media Drive
+1 Couldn't agree more Rich!
Leave it to the experts like Jacee and Corrine.
 

My Computer

System One

  • Manufacturer/Model
    HP Pavilon Elite
    CPU
    Intel(R)Core(TM)2 Quad CPU [email protected]
    Motherboard
    ASUS eK Berkeley
    Memory
    4GB
    Monitor(s) Displays
    HP w2408 Vivid Color Widescreen LCD
    Cooling
    That's where I keep my beer
    Keyboard
    MS WIRELESS
    Mouse
    MS WIRELESS
    Internet Speed
    AT&T Uverse DSL
infoRichard,
Wow! Thank you for introducing this link, it is full of amazing information (for me anyway), I can now better realise the threat out there on computers, and also realise why we get so many requests on the forum through malware problems.
I have spent the last 30 minutes reading & will go back , it is so, for me, educational.
I picked up on one quick point, that was the use of portable versions of superantispyeware etc. 'just in case'.Phew!
The Notable Links are also a fantastic source of information.
Thank you again Richard for it's introduction.
I'm sure I will not be the only one who will be grateful to you for sharing this with us.

BUT ONLY FOR THE EXPERTS.
 
Last edited:

My Computer

System One

  • Manufacturer/Model
    Hewlett-Packard SR5019UK
    CPU
    AMD Athlon 64 processor 3800 + 2.40GHz
    Motherboard
    M2N68-LA (Narra)
    Memory
    2.50GB
    Graphics Card(s)
    nVidia GeForce
    Sound Card
    Realtec ALC888 Audio
    Monitor(s) Displays
    17" LCD Monitor
    Hard Drives
    160 Gb Usable Hard Drive
    Other Info
    HP G56 Laptop Win 7 64bit. 4Gb Ram DDR2's. Hitachi 450Gb Hard Drive. Pentium(R) Duel-Core CPU.
americancritic said:
Rich very good I like this one a lot, lots of info but if someone has to use this they should also get the advice of Jacee or someone on the forum to guide them through the process (First).

Thank you.

Tom
Click to expand...
I think that would be up to the member. Its their computer and if they are comfortable and want to do it themselves they should. If an OP is involved we should not take chances.
 

My Computer

System One

  • Manufacturer/Model
    Dell XPS420
    Memory
    6 gig
    Graphics Card(s)
    ATI Radeon HD3650 256 MB
    Sound Card
    Intergrated 7.1 Channel Audio
    Monitor(s) Displays
    Dell SP2009W 20 inch Flat Panel w Webcam
    Hard Drives
    640 gb
    Cooling
    Fan
    Keyboard
    Dell USB
    Mouse
    Dell USB 4 button optical
    Other Info
    DSL provided by ATT
110% in agreement with you there Richard, leave things like that to jacee & other suitably qualified members.
 

My Computer

System One

  • Manufacturer/Model
    Hewlett-Packard SR5019UK
    CPU
    AMD Athlon 64 processor 3800 + 2.40GHz
    Motherboard
    M2N68-LA (Narra)
    Memory
    2.50GB
    Graphics Card(s)
    nVidia GeForce
    Sound Card
    Realtec ALC888 Audio
    Monitor(s) Displays
    17" LCD Monitor
    Hard Drives
    160 Gb Usable Hard Drive
    Other Info
    HP G56 Laptop Win 7 64bit. 4Gb Ram DDR2's. Hitachi 450Gb Hard Drive. Pentium(R) Duel-Core CPU.
richc46 said:
americancritic said:
Rich very good I like this one a lot, lots of info but if someone has to use this they should also get the advice of Jacee or someone on the forum to guide them through the process (First).

Thank you.

Tom
Click to expand...
I think that would be up to the member. Its their computer and if they are comfortable and want to do it themselves they should. If an OP is involved we should not take chances.
Click to expand...

Hello!

I think that it also depends on the malware. Removing a rogue security suite yourself should be fine, but it is very difficult to prove the cleanliness of a computer infected with a backdoor trojan or a rootkit.

These are hard to tell apart at the best of times, and guarantee cleanliness even for an expert (and guarantees are impossible anyway) Malware often installs other malware.

Now, let us say that you caught a rogue security suite, which downloaded a backdoor. Own attempts to remove will often unlock the computer, but not remove that backdoor.

Please be aware! You don't want to get caught out by a backdoor stealing your credit card details.

Please remember that you should never consider a computer clean until given the all clear by an expert (they can remove the remnants you will miss, but even they cannot guarantee) and I personally would not recommend a self clean.

Richard

P.S. If you are going to ask for help as I recommend, don't begin yourself. You risk leaving things in the registry which can prevent your computer from booting, and you risk removing clues and routes for automated tools find the remnants.

MBAM is fine because it creates a log. Manual deletion should never be required.
 

My Computer

System One

  • Manufacturer/Model
    Dell XPS 420
    CPU
    Intel Core 2 Quad Q9300 2.50GHz
    Motherboard
    Stock Dell 0TP406
    Memory
    4 gb (DDR2 800) 400MHz
    Graphics Card(s)
    ATI Radeon HD 3870 (512 MBytes)
    Sound Card
    Onboard
    Monitor(s) Displays
    1 x Dell 2007FP and 1 x (old) Sonic flat screen
    Screen Resolution
    1600 x 1200 and 1280 x 1204
    Hard Drives
    1 x 640Gb (SATA 300)
    Western Digital: WDC WD6400AAKS-75A7B0

    1 x 1Tb (SATA 600)
    Western Digital: Caviar Black, SATA 6GB/S, 64Mb cache, 8ms
    Western Digital: WDC WD1002FAEX-00Z3A0 ATA Device
    PSU
    Stock PSU - 375W
    Case
    Dell XPS 420
    Cooling
    Stock Fan
    Keyboard
    Dell Bluetooth
    Mouse
    Advent Optical ADE-WG01 (colour change light up)
    Internet Speed
    120 kb/s
    Other Info
    ASUS USB 3.0 5Gbps/SATA 6Gbps - PCI-Express Combo Controller Card (U3S6)
The guide was blocked by the proxy at the workplace, and I have just had a look at it.

It works by running a fair few tools. However, it is quite good. It does not recommend ComboFix or anything particularly dangerous. All in all, it is a fairly decent guide - not like the run ComboFix, run GMER, run Rooter, etc. etc.

important.gif
If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (e.g. 123abc.com). If you do not see the file extension, please refer to these instructions.
Click to expand...
No. Re-download TDSS Killer. When it asks you to save it, re-name it then, BEFORE saving, otherwise it has less chance of success, and may already be compromised.

Also, if you have TDSS, I do recommend getting help, as you may already have a rootkit, a bootkit, and infected system files onboard.

Other than that, I am quite impressed. People do need a guide like this somewhere, otherwise they guess and make mistakes, and this one is fairly decent.

Richard
 

My Computer

System One

  • Manufacturer/Model
    Dell XPS 420
    CPU
    Intel Core 2 Quad Q9300 2.50GHz
    Motherboard
    Stock Dell 0TP406
    Memory
    4 gb (DDR2 800) 400MHz
    Graphics Card(s)
    ATI Radeon HD 3870 (512 MBytes)
    Sound Card
    Onboard
    Monitor(s) Displays
    1 x Dell 2007FP and 1 x (old) Sonic flat screen
    Screen Resolution
    1600 x 1200 and 1280 x 1204
    Hard Drives
    1 x 640Gb (SATA 300)
    Western Digital: WDC WD6400AAKS-75A7B0

    1 x 1Tb (SATA 600)
    Western Digital: Caviar Black, SATA 6GB/S, 64Mb cache, 8ms
    Western Digital: WDC WD1002FAEX-00Z3A0 ATA Device
    PSU
    Stock PSU - 375W
    Case
    Dell XPS 420
    Cooling
    Stock Fan
    Keyboard
    Dell Bluetooth
    Mouse
    Advent Optical ADE-WG01 (colour change light up)
    Internet Speed
    120 kb/s
    Other Info
    ASUS USB 3.0 5Gbps/SATA 6Gbps - PCI-Express Combo Controller Card (U3S6)
Thanks for the feedback on the guide. I thought that it was good too.
 

My Computer

System One

  • Manufacturer/Model
    Dell XPS420
    Memory
    6 gig
    Graphics Card(s)
    ATI Radeon HD3650 256 MB
    Sound Card
    Intergrated 7.1 Channel Audio
    Monitor(s) Displays
    Dell SP2009W 20 inch Flat Panel w Webcam
    Hard Drives
    640 gb
    Cooling
    Fan
    Keyboard
    Dell USB
    Mouse
    Dell USB 4 button optical
    Other Info
    DSL provided by ATT
Hello Rich,

Whatever tutorial link do you give that always be fine and greatly appreciated.

Thanks once again for sharing this informative link.


Arvin
 
Last edited:

My Computer

System One

  • Manufacturer/Model
    HP dv2519tu pavillion Laptop
    CPU
    1.50 GHz
    Motherboard
    Winstron
    Memory
    2.5 gig RAM
    Graphics Card(s)
    intel onboard
    Sound Card
    Conexant HD Smart Audio HD2
    Monitor(s) Displays
    HP Brightview Display
    Screen Resolution
    1280X800
    Hard Drives
    SATA - 160 + 500 GB
    PSU
    HP
    Case
    HP Laptop
    Cooling
    Air
    Keyboard
    HP Laptop
    Mouse
    HP
    Internet Speed
    4 MB/SEC-Download, 2 MB/SEC-Upload
Thanks that good info!
 

My Computer

System One

  • Manufacturer/Model
    toshiba satellite
    CPU
    Intel Pentium T2080 @ 1.73GHz 66 °C Yonah 65nm Technology
    Motherboard
    TOSHIBA ISRAE (U2E1)
    Graphics Card(s)
    Generic PnP Monitor (1440x900@60Hz) Mobile Intel(R) 945 Expr
Great Link Rich :) Glad to see you Post again
 

My Computer

System One

  • Manufacturer/Model
    Custom Built
    CPU
    Intel Core i5 2400 @ 3.10GHz
    Motherboard
    Foxconn H67MP-S/-V/H67MP
    Memory
    8.0GB DDR3 @ 665MHz (2GBx4)
    Graphics Card(s)
    AMD HD Radeon 6870
    Sound Card
    Realtek High Definition Audio
    Monitor(s) Displays
    SMB1930NW (1440x900@60Hz)
    Screen Resolution
    1280x800
    Hard Drives
    977GB Seagate ST31000524AS ATA Device (SATA) + 250GB WD iSCSI attached Drive
    Case
    Novatech Night
    Keyboard
    Standard PS/2 Keyboard
    Mouse
    Dell HID-compliant mouse
I would also like to help with any imput or anything I can Add. I am a Technition for an Anti virus company,
& I do this everyday of the weekk removing such hijacking Malware as Win 7 virus,Antivirus 2011,And others that burry themselves all around the registry, & hide in the restore points.

http://forums.avg.com/ca-en/avg-free-forum?sec=theme&act=show&id=123

& Cleaning an Infected PC: http://forums.avg.com/ca-en/avg-free-forum?sec=thread&act=show&id=403
Also there are USB/CD bootable applications Rescue CD Found Here:A powerful toolset for rescue & repair of infected machines http://www.avg.com/ca-en/avg-rescue-cd This is Free as well.
 
Last edited:

My Computer

System One

  • Manufacturer/Model
    HP/Compac Pasario SR
    CPU
    Single 3.42Ghz rated 4.0
    Motherboard
    Unknown
    Memory
    3GB
    Graphics Card(s)
    3450 series ATI Radeon 512MB
    Sound Card
    Realtek HD Audio
    Monitor(s) Displays
    CRT 17' Compac
    Screen Resolution
    1440x900
    Hard Drives
    150GB/OS
    40GB/Internal/storage
    Case
    Black 5 USB Ports/CD/DVD RW/R
    Cooling
    Double Fans/Single CPU Fan
    Keyboard
    HP
    Mouse
    USB Optical Mouse Optimal/Stobe
You are more then welcome geohac. Please feel free to ask if you have any Q: OK.
 

My Computer

System One

  • Manufacturer/Model
    HP/Compac Pasario SR
    CPU
    Single 3.42Ghz rated 4.0
    Motherboard
    Unknown
    Memory
    3GB
    Graphics Card(s)
    3450 series ATI Radeon 512MB
    Sound Card
    Realtek HD Audio
    Monitor(s) Displays
    CRT 17' Compac
    Screen Resolution
    1440x900
    Hard Drives
    150GB/OS
    40GB/Internal/storage
    Case
    Black 5 USB Ports/CD/DVD RW/R
    Cooling
    Double Fans/Single CPU Fan
    Keyboard
    HP
    Mouse
    USB Optical Mouse Optimal/Stobe
sixwheeler2011 said:
I would also like to help with any imput or anything I can Add. I am a Technition for an Anti virus company,
& I do this everyday of the weekk removing such hijacking Malware as Win 7 virus,Antivirus 2011,And others that burry themselves all around the registry, & hide in the restore points.

Free Antivirus | Forum - Virus Removal, Tools for Removing

& Cleaning an Infected PC: Free Antivirus | Forum - How To Clean An Infected Computer?
Also there are USB/CD bootable applications Rescue CD Found Here:A powerful toolset for rescue & repair of infected machines Rescue CD | PC Rescue and Repair Toolkit | AVG Canada This is Free as well.
Click to expand...

That's good information sixwheeler.
Sounds like a useful CD?
 

My Computer

System One

  • Manufacturer/Model
    Hewlett-Packard SR5019UK
    CPU
    AMD Athlon 64 processor 3800 + 2.40GHz
    Motherboard
    M2N68-LA (Narra)
    Memory
    2.50GB
    Graphics Card(s)
    nVidia GeForce
    Sound Card
    Realtec ALC888 Audio
    Monitor(s) Displays
    17" LCD Monitor
    Hard Drives
    160 Gb Usable Hard Drive
    Other Info
    HP G56 Laptop Win 7 64bit. 4Gb Ram DDR2's. Hitachi 450Gb Hard Drive. Pentium(R) Duel-Core CPU.
You must log in or register to reply here.
Back
Top