Effective removers

Discussion in 'other anti-malware software' started by Kees1958, Jan 19, 2009.

Thread Status:
Not open for further replies.
  1. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Hi,

    Just a question, not a pro or against discussion of product X versus Y

    My Experience when helping friends

    I always use Dr Web, Avast, A2 and SAS when de-infecting a computer, those turned out to be the most effective malware removers

    I am not talking about detection rates, but talking about correction rate

    I am not saying other products do not work, just posing the question which helps when really confronted with an infected computer and NOT wanting to reformat the hard disk, because there is to much emotional data on it (like pics and movies of the family)

    Please post real experiences not opinions, tips really appreciated

    Cheers Kees
     
  2. tipo

    tipo Registered Member

    Joined:
    Dec 29, 2008
    Posts:
    408
    Location:
    romania
    malwarebytes antimalware is great. it does a good job.my opinion is just you should use it..
     
  3. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,883
    Location:
    Canada
    i always use superantispyware it is a killer:thumb:
     
  4. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Well MBAM sometimes impressed and sometimes disappointed. When dealing with real new samples I am inclined to throw MBAM in also (on these moments it surprised), for general clean up I am doubting. Can you support your endorsement with real samples (e.g. helped friends or saved your own butt)
     
  5. lodore

    lodore Registered Member

    Joined:
    Jun 22, 2006
    Posts:
    9,006
    ive always had sucess with superantispyware. dealing with even the most tough malware.
     
  6. neksus

    neksus Registered Member

    Joined:
    Nov 27, 2008
    Posts:
    54
    IMO nothing beats HijackThis & Autoruns run under safe mode, followed with manual removal of nasties & their traces!
    Afterward run on-demand scan from personal favorite(s)..
    Oh yes, add something like RootkitRevealer to the crew if the PC was owned big time:)
     
  7. Franklin

    Franklin Registered Member

    Joined:
    May 12, 2005
    Posts:
    2,517
    Location:
    West Aussie
    The easiest way to clean up any infections perfectly is to delete the contents of the sandbox. ;)
     
  8. randomjester

    randomjester Registered Member

    Joined:
    Jan 5, 2009
    Posts:
    6
    I just worked on a PC that was totally and completely infected with spyware/malware, particularly Vundo. I also didn't want to reformat due to losing unrecoverable data/information.
    I used a program called ComboFix, which removed almost all instances of infection. I would recommend using that program first and then doing a full, complete drive/system scan with both Malwarebytes and SUPERAntiSpyware.

     
  9. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,883
    Location:
    Canada
    and for sure delete all junk from pc leaving it clean;)
     
  10. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Thanks real usefull application, it also creates a log. So combo fix and (other tip I got) hitmanpro 3, Eset sysinspector are usefull before manually removing suspicious autostart entries.

    combofix http://www.bleepingcomputer.com/combofix/how-to-use-combofix
    hitmanpro 3 http://www.surfright.nl/en/HitmanPro
    Sysinspector http://www.eset.com/download/sysinspector.php

    Cheers Kees
     
    Last edited: Jan 20, 2009
  11. Meriadoc

    Meriadoc Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    2,642
    Location:
    Cymru
    - running Antivir, Eset, Prevx and A2 without installing sounds a good aid. - The reporting looks good by the screen shots from their home page.

    I would prefer to use tools similar to the sysinternal freeware, sleuthing/investigating tools choosing what to look at, reporting tool, debug, dumping the memory,.. then making the decisions and choosing what to remove with the knowing that its only down to me, how hard I looked if I've missed something.
     
    Last edited: Jan 20, 2009
  12. andyman35

    andyman35 Registered Member

    Joined:
    Nov 2, 2007
    Posts:
    2,336
    I've used Hitmanpro in free mode as a second (and third,fourth,fifth)opinion for some time.It's a great concept and I wonder why it doesn't seem to gain widespread appeal.o_O

    I'd also like to add A-squared HijackFree to the list,very extensive utility.
     
    Last edited: Jan 20, 2009
  13. Murack

    Murack Registered Member

    Joined:
    Dec 18, 2008
    Posts:
    23
    Location:
    Italy, Sicily
    I usually use, in this order:
    hijackthis
    combofix
    Kaspersky virus removal tool (max heuristic)
    SAS

    sometimes gmer or rootrepeal (when I find traces of rootkit)

    Combofix is very useful to his log, which includes many important information

    if you restart any unknown anomaly, once done all this, as scan control:

    prevx csi
    Sysinspector

    often remove the antivirus software already installed (often avg or avast) and put Avira Free+SAS Free+MBAM Free (sometimes, depends by user, also Comodo or Online Armor Free)

    Regards
     
  14. Creer

    Creer Registered Member

    Joined:
    Jun 29, 2008
    Posts:
    1,345
    I'm using: SAS, MBAM, A-squared, then running HiJackThis/Combofix
     
  15. Dr33

    Dr33 Registered Member

    Joined:
    Jan 23, 2009
    Posts:
    103
    When i have to clean my friends Pc's

    First will use MBAM
    then i will use SAS
    then Drive Sentry
    then i will pass A-Squared (Great Product)
    then i will pass Prevx Edge Free monitor to see if it finds anything left

    if i have a lot of time i will add to the list

    -DrWeb Cureit
    -Kaspersky

    and probably change my friends AV and pass a scan
     
  16. LagerX

    LagerX Registered Member

    Joined:
    Apr 16, 2008
    Posts:
    540
    Prevx CSI is strong. Some examples
    http://www.youtube.com/prevxresearch

    I use Combofix to remove nasty files which don't go away otherwise.
    Just have to create CFScript.txt file and move it over Combofix. Then it will delete files that I decided to be malicious.
    Also, I use Icesword's abilities to delete/force delete files. Most of time it is successful on removing gaopxxx rootkit files at system32 folder.
    MBAM is another top product for me at removing infections from computers that I've dealt with (removing malware)
    SAS as well :thumb:
     
  17. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,883
    Location:
    Canada
    thanks for the link:thumb:
     
  18. Solaris

    Solaris Registered Member

    Joined:
    Nov 30, 2007
    Posts:
    54
    My last last infection was 3 years ago (because NOD32 has failed).
    I have detected the malware with several softs (but without success to remove it) and deleted it manually with. . . . Unlocker.
    :)
     
  19. gery

    gery Registered Member

    Joined:
    Mar 8, 2008
    Posts:
    1,786
    SAS
    DRWEB CURE IT
     
  20. Franklin

    Franklin Registered Member

    Joined:
    May 12, 2005
    Posts:
    2,517
    Location:
    West Aussie
    Haven't tried the below but could come in handy?

    Avira Antivir Rescue System
     
  21. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    5,633
    Location:
    U.S.A. (South)
    I'll start with the basics:

    SAS & MBAM = no brainers
    AV's of your choice
    AVZ AntiVital Kit = Very Useable
    AutoRuns & NIRSOFT Utilities to do cleaning TEMPS etc. Even Index.dat Suite
    Unlocker and a UnRegister App to unregister those stubborn dlls.
    Plenty of different anti-rootkit detectors like RADIX, ROOTREPEAL, RKU, KERNEL DETECTIVE. ETC.
    My old Windows 98 RegCrawler to quickly jump in a search to usually Enum\Root to change permissions in order to manually delete those sticky entries inserted with malwares. They really get a grip on malware dll's. exe's lodged in a system and IMO serve to hold them tightly in place. UnPermission and Delete those and the others even if hidden suddenly appear and can be disposed of. I hate that part of MS's registry system but at least you can release their grip once you find them which isn't that hard most of the time.
    COMBO FIX is been a real breadwinner.
    I know theres others i left out of the rotation but with exception of file infectors which are absolutely destroyers in most case, those tools and the others mentioned can reasonably well force out and dismiss most of today;s rootkits, trojans, and other annoying malware.

    EASTER
     
  22. andyman35

    andyman35 Registered Member

    Joined:
    Nov 2, 2007
    Posts:
    2,336
    Another handy tool for removing rogue anti-malware progs that can be extremely difficult to shift,is Revo Uninstaller.It can unlock just about anything.
     
  23. firzen771

    firzen771 Registered Member

    Joined:
    Oct 29, 2007
    Posts:
    4,815
    Location:
    Canada
    SAS + MBAM, hand down, these will get rid of nearly any infection you got. then install ur AV after cleaning and scan with that, and tada, this always works for me great.when cleaning :D
     
Loading...
Thread Status:
Not open for further replies.