Results 1 to 10 of 10
  1. #1
    MON€¥ G▲NG Mirza's Avatar
    Join Date
    Jan 2016
    Location
    The Netherlands
    Posts
    2,984

    Malware Removal Guide




    Purpose & Scope of this Guide:
    This guide is designed to assist you in removing malware from an infected system that successfully boots. If your computer is completely unable to boot due to malware, please make a post, as this guide will not help you. If you perform the following steps exactly as described, this will solve your problem in over 90% of scenarios. That said, not all malware is created equal, and not all malware removal tools are created equal. The tools recommended in this guide were picked because of their high success and low failure rates, measured on a very large scale. However, there will be times that this guide fails in removing malware. If that is the case, please make a post for further assistance, stating that this guide was unsuccessful. It is recommended to only accept advice from a “Trusted” technician. I am writing this guide in layman’s terms so that most people will be able to understand it with ease.


    Disclaimer:
    The following instructions are recommendations only. You take full responsibility for any steps you choose to perform on your computer. While the following recommendations are performed without issue on countless machines, there is always a risk of damaging your Operating System or experiencing data loss on any machine. It is solely YOUR responsibility to save all work and back up any and all important data on your system before proceeding. Also note that once a computer has been compromised with malware, it should not be considered clean until a complete reformat has taken place.


    Malware Remediation Steps:
    Before proceeding, go into your browser’s extensions and remove all suspicious items. Also go into your browser’s settings and remove any default search providers and unusual homepages. If you are unsure how to do this, proceed to Step 1.


    Download and run the following tools in this order. Run all tools unless otherwise instructed. All tools should be run in Normal Mode (not Safe Mode) unless you are unable to boot Normal Mode, or the scans fail in Normal Mode. All tools must be run under an Administrator account. Do not remove any tool-generated logs in the event a helper needs you to post them to further assist you.


    1) Run rkill.com Sometimes it takes a few minutes to finish. Do not reboot when done.

    • Kills running malicious processes
    • Removes policies in the registry that prevent normal OS operation
    • Repairs file extension hijacks





    2) Download an updated copy Malwarebytes 3.0. Turn on the “Scan for Rootkits” option. Then, run a “Scan”
    • Successfully removes the vast majority of infections
    • Has an industry-leading built-in rootkit/bootkit scanning engine
    • Has built-in repair tools to fix damage done by malware



    3) Run Malwarebytes ADWCleaner using the “Scan” option. Then press “Cleaning” when finished and allow it to reboot your system.
    • Removes majority of adware, PuPs, Toolbars, and Browser hijacks
    • Fixes proxy settings changed by malware
    • Removes certain non-default browser settings



    4) Run Malwarebytes Junkware Removal Tool and allow it to finish. Reboot your computer upon completion.
    • Removes adware, PuPs, Toolbars, and Browser hijacks other tools miss
    • Good at removing unneeded AppData directories left behind by infections



    Optional, Advanced Step (only run if previous tools fail to solve problem):
    5) Run Sophos HitmanPro


    HitmanPro is a phenomenal "second-opinion" malware scanner.


    Please note: If malware has prohibited you from browsing the web or downloading files, you can try running the NetAdapter Repair Tool with all options checked which will attempt to restore your internet connection & default browser settings. You may have to download these tools on another computer and move them to a flash drive that you can plug into the infected machine.


    Have adware or spyware on your Mac?
    Try Malwarebytes Anti-Malware for Mac (formerly Adware Medic). Please make a post if it is unsuccessful.



    Follow-up Steps (highly recommended):
    • Using a computer that has not been infected, change passwords to all your online accounts.
    • Consider enabling two-factor authentication.
    • Install a better anti-virus. See recommendations below.



    What is malware?
    Malware is an umbrella term used to refer to a variety of forms of hostile or intrusive software, including computer viruses, worms, trojan horses, ransomware, spyware, adware, scareware, and other malicious programs. It can take the form of executable code, scripts, active content, and other software. [Source: Wikipedia.com]


    How did I get infected?
    It is difficult to track down the source of an infection. Most infections are actually given permission to run unknowingly by the user. It is recommended to keep User Account Control turned on and never give access to something you do not trust or did not open. Many other infections come via exploits in your browser or browser plug-ins on websites you visit. Always be very careful what you install. Make sure you trust the source implicitly. When downloading programs, always use the publisher’s website directly.


    How to prevent future infections:
    Be very careful what you download and install. Keep programs like Java & Flash up-to-date, but do so using their official websites or Ninite installers. Use Unchecky to prevent accidental installation of adware & spyware during product installations. Make sure Windows is kept up-to-date as well. Many Windows updates patch exploits and vulnerabilities in your operating system. Most infections are active because the user has unknowingly given it Administrative permission to install and run. The first line of defense starts with you.


    The following tools will aide you in keeping your computer clean:


    Free Anti-Virus Suggestions:



    Helpful Tools:


    Credits: To all software owners, Developers, cuddlyshops

  2. #2
    Hehe look at Mirza tryna make everyone feel safe cause I got infected.
    Ville

  3. #3
    MON€¥ G▲NG Mirza's Avatar
    Join Date
    Jan 2016
    Location
    The Netherlands
    Posts
    2,984
    Quote Originally Posted by oG $wank View Post
    Hehe look at Mirza tryna make everyone feel safe cause I got infected.
    And saved you aswell.

  4. #4

  5. #5
    Or, you could just learn not to download malware. Most malware I've downloaded in my case is when downloading copied games from torrent sites, some of these games contain malware, but if you download a movie and the file link ends with for example: .mkv or .avi you can be 100% sure that this is actually a movie file and not a virus. Downloading games can be a lot harder to determine since it has a lot of different files and folders where infected files can hide. I'd say you're pretty safe if you just use Windows Defender and stay safe/smart, downloading all those tools are unnecessary imo and that behavior is probably what led you to have viruses in the first place. I download a virus every 6 months or so and always manage to remove it.

  6. #6
    MON€¥ G▲NG Mirza's Avatar
    Join Date
    Jan 2016
    Location
    The Netherlands
    Posts
    2,984
    Quote Originally Posted by Burn View Post
    Or, you could just learn not to download malware. Most malware I've downloaded in my case is when downloading copied games from torrent sites, some of these games contain malware, but if you download a movie and the file link ends with for example: .mkv or .avi you can be 100% sure that this is actually a movie file and not a virus. Downloading games can be a lot harder to determine since it has a lot of different files and folders where infected files can hide. I'd say you're pretty safe if you just use Windows Defender and stay safe/smart, downloading all those tools are unnecessary imo and that behavior is probably what led you to have viruses in the first place. I download a virus every 6 months or so and always manage to remove it.
    Malware can be placed in a simple wordfile or pdf I decided to post this guide as every era on PR-RP someone gets hacked.

  7. #7
    Quote Originally Posted by Burn View Post
    Or, you could just learn not to download malware. Most malware I've downloaded in my case is when downloading copied games from torrent sites, some of these games contain malware, but if you download a movie and the file link ends with for example: .mkv or .avi you can be 100% sure that this is actually a movie file and not a virus. Downloading games can be a lot harder to determine since it has a lot of different files and folders where infected files can hide. I'd say you're pretty safe if you just use Windows Defender and stay safe/smart, downloading all those tools are unnecessary imo and that behavior is probably what led you to have viruses in the first place. I download a virus every 6 months or so and always manage to remove it.
    Sometimes you might think the antivirus removes your malware but honestly it stays in your registry and keeps hijacking your shit or just generating money, luckily for me it was just an adware but if it was something else I could've lost all my shit. This shit even went past Malwarebytes which I think is the best shit out here, so use AdwCleaner every now and then to check your registry in case you feel like you got infected. And why do you get infected when you DL games? just go for the highest seeded one and always check the comments.
    Ville

  8. #8
    As I said it's easier to hide files in a game torrent or software torrent, because it has several folders/files, if you dl music/videos it usually ends with .avi or .mp3 and then you'll know for sure it's not a virus.. even downloads with a lot of seeders can have viruses.

  9. #9
    40 per cent of the files on your computer log data, sometimes that data gets send towards the source of origin and most of the times that's legit data, but sometimes data that isn't supposed to go there* (*Against your knowledge) gets send towards the source of origin, that's generally a keylog or data log, depending on what data it is they're collecting (Could be they're just checking your browsing data while you aren't aware, which isn't really malicious but can still be a breach of privacy.)

    Even websites can be malicious, especially be careful with JAVA** operated websites, it's very easy to key-log or RAT through a JAVA operated source, generally with using JAVA you download a 'source' to use, and when there's malicious items in that source, it'll automatically be processed and ran, therefore always make sure that if you get the JAVA popup (Java isn't used that much anymore nowadays but still.) Make sure you check the source and origin.

    Use a proper anti virus and update this regularly, and if you are suspecting an infected computer, make sure you check it out and make sure you do not run, or process any sensitive information.

    **(Not to confuse Java with Javascript.)

  10. #10
    Senior Member Revaz's Avatar
    Join Date
    Feb 2016
    Location
    France
    Posts
    447
    lmao ok ty

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •