Trojan Removal 101.

Applications Needed :

Automatic Removal - Geek Squad MRI

Manual Removal -

Security Task Manager - Neuber
ATF Cleaner - Majorgeeks.com
Combofix & SD Fix - Majorgeeks.com
Hi - Jack This - Majorgeeks.com
Super Anti Spyware - google (secondary malware scan)
Malwarebytes - google
AVG Free Edition - google
Windows Defender - Microsoft.com

Using a combination of the above tools will fix ANY spyware trojan issue.. Unless your windows is destroyed by the malware .

As new trojans come out, new tools come into play as well as old ones being no good anymore.

You need to use multiple tools to get different viruses. I will update with new apps as i find others become redundnant.

AUTOMATIC REMOVAL - 95% of VIruses Will Go with this tool as it uses multiple scanners.

- MRI Geek Tools (When Updated) - This program boots from Windows PE. So your computer is offline entirely while this occurs.

It has 14 inbuilt virus scanners and malware scanners. So it picks up just about everything.

As the same time it runs diagnostics on your system to ensure everything is ok.

This program can be a bit tricky to do and also to make as its an image file, that you need to make bootable etc.

The licensed version is quite expensive. So if you see yourself having issues here, follow the below instructions.

IF you torrent MRI or buy it (recommended) and it doesnt remove the malware, then use the Manual Removal.

MANUAL REMOVAL - IF ABOVE SOUNDS TOO TRICKY OR COSTLY.

NOTE : this is a very time consuming process, however i personally run all the tools to ENSURE 100% that my customers are safe. The first tool might get the baddy. But better to be safe than sorry.

1. Avoid rebooting as much as possible. This only gives the virus more of a hold on your system by giving it access to normally in use files.

2. Never use system restore. All good trojans
always infect your system restore. You will actually give them a better grasp of your O/S.

3. Hijackthis - Gives you a very good understanding of what is actually in your system and where it is loading from.

4. www.neuber.com - A security task manager that can kill and quarantine any nasty processes while the machine is live.

5. ATF Cleaner - Cleans out all the temporary files from your machine, where virus executables will lay dorment ready to be re-installed.

6. Malwarebytes - The best on the market for removing the latest shitty malware. Run full scans and remove.

7. Ad Aware SE - Full Scan of your system.

8. Combofix and SDFix in safe mode (press F8 when ur machine starts).

9. Reinstall your A/V and run a Full scan with your A/V. There is nothing wrong with AVG Free it is a good product if you use it correctly.

10. Windows Defender - Install this, but make sure DEFINATELY SURE, when you are installing applications that you turn this off. It denies a lot of things access to the registry hence will cause you serious issues when installing applications onto your PC. But it has saved my ass many a time and picked up things my A/V didnt.

If using all these tools and google as a friend, you cannot fix your PC. You need to /kill. .

Edited 6 times, last edited 2/2/09 - 11:37am.

NOD32 is fine thanks

Great idea chozen...

I suggest a constant updae of this thread

where if any one suggest a useful program or tip it can be put in top post

and please dont turn this into a spam thread

^^

But really, if your using limewire its your own fault if you get a virus.

Sticky'D

Nice thread chosen

thanks to red from XG, he saved my comp from trojans thanks to this.

www.download.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html

KASPERSKY ALL UP IN THIS BITCH

C + P'd from www.google.com



; )

First of all, support the good people that actually work hard on these programs.

All the programs i listed are freeware and are good useful tools.

Secondly i have found superantispyware to be good but it does not get everything.

P.S NO A/V or Spyware program will EVER get EVERY baddie.

It just will not happen. Some engines are more effective than others.

The best way is the above. Trust me, i remove viruses on a daily basis.

The is the automated way as in my updated post. But seriously can be problematic, especially if the program does not detect your network card and will not do updates on the pattern files.

Nothing wrong with superanti-spyware. But i know for a fact it does not remove everything i have tested this face. Malwarebytes is more effective at removing spyware IMO.

Otherwise i would have posted superanti-spyware as an option .

Edited once, 1/12/08 - 4:04pm.

Very good product, but doesnt always get everything. A combo of good A/V, and two malware removal tools + a task managment killer = win ;D.

whats another program i should use that will get the rest. so to speak?

Malware bytes is good for applications that have not gotten into your critical processes like winlogon and explorer.exe

Once this happens it is hard to remove these safely as it has been embedded into your critical processes.

The only safe way is to use multiple tools as per above and multiple scans in safe mode to remove these.

Hi-jack this and Security task manager are good for seeing what is running and what shouldnt be running.

There is no 1 or 2 ultimate tools that is 100%. In my experience you need multiple applications to remove some of the nasty ones.

XP Antivirus and all that stuff is just malware/rotating adaware.. So programs like super antispyware and malwarebytes can chown it.

mass mailing worms and trojans that infiltrate your startup processes.. Hide themselves from your A/V by mimicking your winlogon.exe process. Stop your AV from working etc are the ones that require multiple tools to remove.

Some even replace your .exe's on your PC so when you run any game or program you are executing the virus..

Some of these can be uncleanable, without reinstalling the infected application. These are the ones you DONT want on your PC.

However if your smart and be careful what you open, you shouldnt really get these in this day and age.

Windows Defender is also very good at stopping future attacks once you have gotten rid of the bad stuff .

Edited once, 1/12/08 - 4:17pm.

chosen, list your favourites and some download links please.

If anyone does have a virus. DL hi-jack this and send me your log in a PM and I will tell you where to go from there. And also give a brief description of wat ur PC is doing.

I know the logs are long but i use HJT at work and am very familiar with it. I havent had a problem removing a virus and keeping it away with only freeware.

So its a free service, I offered this at past clans, but AFO all are computer savy, so I dont do it as much anymore

Check out the top post there mate and google the names, you will get download locations and installation/operation manuals from there.