A forum for reverse engineering, OS internals and malware analysis 

 #10665  by Brian
 Wed Dec 28, 2011 7:52 pm
Hi everyone,

I would really like to get some feedback from you. What is your opinion on the guide? What can I do to make it better? I want to make the guide as user friendly as possible. Please give me your feedback, ideas, and suggestions.
This guide will help you clean your computer of malware. If you think your computer is infected with a virus or some other malicious software, you may want to use this guide. It contains instructions that, if done correctly and in order, will remove most malware infections on a Windows operating system. It highlights the tools and resources that are necessary to clean your system. Malware is a general term for any malicious software, including viruses, trojans, rootkits, spyware and adware.
Guide: http://www.selectrealsecurity.com/malware-removal-guide

Thanks,
Brian
 #10669  by Brian
 Thu Dec 29, 2011 12:31 am
Recent Update:

- Added instructions on how to fix the Registry (Preparation for Removal)
- Changed Malwarebytes download link
- Added note about manually updating Malwarebytes (Step 2)
- Updated HitmanPro (3.6)
- Removed F-Secure Online Scanner
- Added Bitdefender Bootkit Removal Tool (Additional Detection/Removal Tools)
 #11014  by Brian
 Fri Jan 13, 2012 8:25 pm
Update:

- Removed unnecessary notes (Step 2)
- Revised instructions for running SuperAntiSpyware (Step 2)
- Removed tutorial links (Step 2)
- Changed the order of steps in After the Removal Process
- Added instructions on how to Repair Windows Update and Firewall (Fix Post-Disinfection Problems)
 #11213  by Brian
 Sun Jan 22, 2012 8:59 pm
Update:

- Added a Comments and Reviews page (under the title)
- Created a PDF version of the guide (under the title)
- Added a link about disconnecting your Internet connection (Step 2)
- Added a link to Malwarebytes randomly named installer (Step 2)
- Combined steps: Get Expert Analysis and Further Help

I also created a Google+ page. https://plus.google.com/106459453799715716104/posts Please follow me. :)
 #11470  by Brian
 Mon Feb 06, 2012 11:56 pm
Update:

- Added a new image (Introduction)
- Added a new page: Fix Internet Connection after Malware Removal (Removal Process)
- Added an important note - RKill (Step 2)
- Removed Malwarebytes offline database installer (isn't updated often)
- Removed SuperAntiSpyware (Step 2)
- Changed a few links
- Updated the PDF version
 #11533  by Brian
 Thu Feb 09, 2012 7:49 pm
Hi everyone,

Recently, I've been getting questions about my recent update (particularly the part about removing SuperAntiSpyware). I would like share the reasons why I removed SAS.

I removed SuperAntiSpyware for the following main reasons:

1. SuperAntiSpyware has the lowest malware detection rates compared to Malwarebytes and HitmanPro.
2. The fact that HitmanPro uses 4 antivirus engines to detect malware.
3. Malwarebytes and HitmanPro provide adequate malware removal when used together.

SuperAntiSpyware is still an excellent product, and I will definitely keep an eye on it. :)

Brian
 #11949  by Brian
 Sat Mar 03, 2012 9:47 pm
Update (1.1):

- Added a version number
- Added an important note about the time (Introduction)
- Revised the Fix Executable Files section (Preparation for Removal)
- Added an important note about broken Internet connection (Removal Process)
- Revised the Repair Windows Update and Firewall section (URLs)
- Updated file sizes (AV Rescue CDs)
- Added a few new links
 #12275  by thisisu
 Fri Mar 23, 2012 4:42 am
I like the guide. It seems pretty easy for anyone to understand and follow. 8-)

Only thing I would change (at least soon) would be to recommend SAS to users that are having trouble connecting to the internet (since they won't be able to scan with HitmanPro).
 #12417  by Brian
 Sat Mar 31, 2012 2:27 am
Update:

- Added a last updated date
- Revised the introduction
- Created a new page: Stop Malicious Processes
- Replaced FixNCR.reg with RKill
- Moved Safe Mode to the Preparation section
- Removed aswMBR
- Updated the PDF version

Thanks, thisisu. I will add your suggestion in the next update. :)