Home Forums Classifieds Blogs Today's Posts Search Social Groups



  
SIGN-UP
Notices

Glock Talk
Welcome To The Glock Talk Forums.

 
  
Reply
 
Thread Tools Display Modes
Old 08-21-2012, 09:22   #1
Brian12
Registered User
 
Join Date: Apr 2012
Posts: 7
Virus/Malware Removal Guide

Hi everyone,

I would like to share my malware removal guide with the forum community. It contains step-by-step instructions on how to remove malicious software from a computer. It's a work in progress. I would appreciate any feedback.

Guide: [url]http://www.selectrealsecurity.com/malware-removal-guide/[/url]

Comments and Reviews: [url]http://www.selectrealsecurity.com/comments-and-reviews/[/url]

Quote:
This guide will help you remove malicious software from your computer. If you think your computer might be infected with a virus or trojan, you may want to use this guide. It provides step-by-step instructions on how to remove malware from Windows operating system. It highlights free malware removal tools and resources that are necessary to clean your computer. You will quickly learn how to remove a virus, a rootkit, spyware, and other malware.

Last edited by Brian12; 11-15-2012 at 22:14..
Brian12 is offline   Reply With Quote
Old 08-23-2012, 21:01   #2
Brian12
Registered User
 
Join Date: Apr 2012
Posts: 7
Post.

Last edited by Brian12; 11-15-2012 at 22:16..
Brian12 is offline   Reply With Quote
Old 08-23-2012, 21:58   #3
sappy13
Senior Member
 
sappy13's Avatar
 
Join Date: Sep 2007
Location: Bremen, GA
Posts: 2,741
You hit the just about all the main stuff. My typical removal is
1. Rkill
2. TDSS
3. Malware Bytes
4. ComboFix ONLY if needed
5. Ccleaner-Temp, Reg Cleaning, Startup, and Uninstalls
6. Delete all old restore points and create clean restore point.

The unhide utility is a great one if its a bad infection. Takes forever to run though. Just go to lunch while it runs.

Here is a good one for you. This will fix .EXE file associations, which a lot of malware will mess with to prevent removal programs from running. Create a file called "FixEXE.reg". Then copy this script into there. Worked like a champ for me for a long time.

"FixEXE.Reg" Script


Windows Registry Editor Version 5.00

[-HKEY_CLASSES_ROOT\.exe\shell]

[-HKEY_CLASSES_ROOT\.exe\DefaultIcon]

[HKEY_CLASSES_ROOT\.exe]
@="exefile"

[HKEY_CLASSES_ROOT\exefile]
"Content Type"=-

[HKEY_CLASSES_ROOT\exefile\shell\open\command]
@="\"%1\" %*"
"IsolatedCommand"=-

[HKEY_CLASSES_ROOT\exefile\shell\runas\command]
"IsolatedCommand"=-

[HKEY_CLASSES_ROOT\.bat]
@="batfile"

[HKEY_CLASSES_ROOT\batfile\shell\open\command]
@="\"%1\" %*"

[-HKEY_CURRENT_USER\SOFTWARE\Classes\.exe]

[-HKEY_CURRENT_USER\Software\Classes\exefile]

[-HKEY_CLASSES_ROOT\secfile]

[-HKEY_CURRENT_USER\Software\Classes\secfile]

[-HKEY_CLASSES_ROOT\pezfile]

[-HKEY_CURRENT_USER\Software\Classes\pezfile]

[-HKEY_CLASSES_ROOT\sezfile]

[-HKEY_CURRENT_USER\Software\Classes\sezfile]

[-HKEY_CLASSES_ROOT\ah]

[-HKEY_CURRENT_USER\Software\Classes\ah]

[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command]
@="firefox.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command]
@="firefox.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command]
@="iexplore.exe"
sappy13 is offline   Reply With Quote
Old 08-23-2012, 22:31   #4
IndyGunFreak
KO Windows
 
IndyGunFreak's Avatar
 
Join Date: Jan 2001
Location: Indiana
Posts: 30,286
Send a message via ICQ to IndyGunFreak Send a message via AIM to IndyGunFreak Send a message via MSN to IndyGunFreak Send a message via Yahoo to IndyGunFreak Send a message via Skype™ to IndyGunFreak


I would just say "Install Linux"... but I love reading "fix window" threads..
__________________
Quote:
Ronald Reagan
"If we ever forget that we are One Nation Under God, then we will be a nation gone under."
"Man is not free unless Government is limited"
IndyGunFreak is offline   Reply With Quote
Old 08-23-2012, 22:49   #5
sappy13
Senior Member
 
sappy13's Avatar
 
Join Date: Sep 2007
Location: Bremen, GA
Posts: 2,741
Quote:
Originally Posted by IndyGunFreak View Post
I would just say "Install Linux"... but I love reading "fix window" threads..
/agree

Can't remember a time when my Linux box had an issue after visiting any site or Downloading something.

Sent from my LG-P925 using Tapatalk 2
sappy13 is offline   Reply With Quote
Old 08-23-2012, 23:56   #6
captainstormy
Senior Member
 
captainstormy's Avatar
 
Join Date: Jul 2007
Location: Columbus, Ohio
Posts: 4,477
Send a message via ICQ to captainstormy Send a message via AIM to captainstormy Send a message via Yahoo to captainstormy
Quote:
Originally Posted by IndyGunFreak View Post
I would just say "Install Linux"... but I love reading "fix window" threads..
I agree those other posts are crazy long about how ti fix a virus issue. Not sure why people still use windows myself.
__________________
I won't be wronged. I won't be insulted. I won't be laid a-hand on. I don't do these things to other people, and I require the same from them. - John Bernard Books(John Wayne in The Shootist)
captainstormy is offline   Reply With Quote
Old 08-24-2012, 00:39   #7
Bushflyr
ʇno uıƃuɐɥ ʇsnɾ
 
Bushflyr's Avatar
 
Join Date: Mar 1999
Location: Western WA
Posts: 4,465
Quote:
Originally Posted by captainstormy View Post
I agree those other posts are crazy long about how ti fix a virus issue. Not sure why people still use windows myself.
Because it keeps IT wonks in kibble and beer. 99% of them would be on the street if it weren't for Redmond turning out crap code.

Tech Talk
__________________
...the secret is to bang the rocks together, guys.

That which does not kill you has made a tactical error. --Tayler
Bushflyr is offline   Reply With Quote
Old 08-24-2012, 09:28   #8
Brian12
Registered User
 
Join Date: Apr 2012
Posts: 7
Hi sappy13,

Thanks for your input. I have "FixEXE.Reg" in this guide: [url]http://www.selectrealsecurity.com/stop-malicious-processes/[/url]
Brian12 is offline   Reply With Quote
Old 08-24-2012, 12:05   #9
captainstormy
Senior Member
 
captainstormy's Avatar
 
Join Date: Jul 2007
Location: Columbus, Ohio
Posts: 4,477
Send a message via ICQ to captainstormy Send a message via AIM to captainstormy Send a message via Yahoo to captainstormy
Quote:
Originally Posted by Bushflyr View Post
Because it keeps IT wonks in kibble and beer. 99% of them would be on the street if it weren't for Redmond turning out crap code.
No doubt that it does keep a good number of guys employed. That's something I suppose.
__________________
I won't be wronged. I won't be insulted. I won't be laid a-hand on. I don't do these things to other people, and I require the same from them. - John Bernard Books(John Wayne in The Shootist)
captainstormy is offline   Reply With Quote
Old 08-25-2012, 19:25   #10
MySiK26
******
 
MySiK26's Avatar
 
Join Date: May 2008
Location: Mulligan's Valley, CO
Posts: 3,033
Send a message via AIM to MySiK26


tagged.
MySiK26 is offline   Reply With Quote
Old 09-23-2012, 17:36   #11
Brian12
Registered User
 
Join Date: Apr 2012
Posts: 7
More opinions?
Brian12 is offline   Reply With Quote
Old 09-23-2012, 18:55   #12
medman357
Junior Member
 
Join Date: Aug 2012
Posts: 5
Buy a Mac LOL
medman357 is offline   Reply With Quote
Old 09-23-2012, 21:44   #13
GlockFanWA
Senior Member
 
Join Date: Sep 2012
Location: Washington
Posts: 633
My advice to people is learn some common sense. Having been a heavy Windows user since 3.1 I have never had an infection of any type on my computer.
GlockFanWA is offline   Reply With Quote
Old 09-24-2012, 03:33   #14
IndyGunFreak
KO Windows
 
IndyGunFreak's Avatar
 
Join Date: Jan 2001
Location: Indiana
Posts: 30,286
Send a message via ICQ to IndyGunFreak Send a message via AIM to IndyGunFreak Send a message via MSN to IndyGunFreak Send a message via Yahoo to IndyGunFreak Send a message via Skype™ to IndyGunFreak


Quote:
Originally Posted by GlockFanWA View Post
My advice to people is learn some common sense. Having been a heavy Windows user since 3.1 I have never had an infection of any type on my computer.
I agree. I've never had a "major" issue on my Windows computers either (although I've cleared them for family numerous times).

That said, I despise Windows.
__________________
Quote:
Ronald Reagan
"If we ever forget that we are One Nation Under God, then we will be a nation gone under."
"Man is not free unless Government is limited"
IndyGunFreak is offline   Reply With Quote
Old 10-05-2012, 11:22   #15
Brian12
Registered User
 
Join Date: Apr 2012
Posts: 7
The guide has been updated: [url]http://selectrealsecurity.blogspot.com/[/url]
Brian12 is offline   Reply With Quote
Old 10-10-2012, 10:24   #16
NMGlocker
BOOM headshot
 
NMGlocker's Avatar
 
Join Date: Jun 2001
Location: New Mexico
Posts: 5,963
Invasion of the Linux nerds.
In one thread they say all computer problems would be solved if everyone was on Linux, in another thread they talk about Linux not being the best desktop OS/GUI.
__________________
ΜΟΛΩΝ ΛΑΒΕ
NMGlocker is offline   Reply With Quote

 
  
Reply


Tags
guide, malware
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump




All times are GMT -6. The time now is 02:06.




Homepage
FAQ
Forums
Calendar
Advertise
Gallery
GT Wiki
GT Blogs
Social Groups
Classifieds


Users Currently Online: 780
156 Members
624 Guests

Most users ever online: 2,672
Aug 11, 2014 at 2:31