Spyware and Windows Systems
From Hack Sphere Labs Wiki
(Redirected from Spyware)
Removing Spyware from Windows systems.
Utilities
- Combofix: http://www.bleepingcomputer.com/download/combofix/
- McAfee Stinger: http://www.mcafee.com/us/downloads/free-tools/stinger.aspx
- McAfee Rootkit Remover: http://www.mcafee.com/us/downloads/free-tools/rootkitremover.aspx
- SuperAntispyware Portable: https://www.superantispyware.com/portablescannertech.html
- They keep putting the .EXE instead of the .COM. The exe is an installer. I tried to contact for a license and they do not respond.
- UPDATE: You just have to install SAS to make it work.
- Norton Power Eraser: http://security.symantec.com/nbrt/npe.aspx
- Flash Disinfector: http://download.bleepingcomputer.com//sUBs/Flash_Disinfector.exe
- Sophos Anti-Rootkit: https://secure.sophos.com/products/free-tools/sophos-anti-rootkit/eula
- Sophos Virus Removal Tool: http://www.sophos.com/en-us/products/free-tools/sophos-anti-rootkit.aspx
- (OLD, WinXP) LSP-Fix: http://www.cexx.org/lspfix.htm
- HiJackThis: http://sourceforge.net/projects/hjt/
- CCleaner Portable: https://www.piriform.com/ccleaner/builds
- Autoruns: http://technet.microsoft.com/en-us/sysinternals/bb963902.aspx
- ESET SysInspector: http://www.eset.com/us/download/utilities/
- Norton Security Scan: http://security.symantec.com/sscv6/WelcomePage.asp
- Oldtimers Temp File Cleaner
- Autoruns
- Process Explorer (Submit Virus Total)
- adwcleaner
- Junkware Removal Tool
- RKUnhookerLE
- Emsisoft Free Emergency Kit - https://www.emsisoft.com/en/software/eek/
Online Scanners
- VirusTotal: https://www.virustotal.com/
- ESET: http://www.eset.com/us/online-scanner/
- McAfee FreeScan: http://home.mcafee.com/Downloads/FreeScan.aspx?affid=56&culture=en-US
- Trendmicro Housecall: http://housecall.trendmicro.com/
RootKit
- Sysinternals Rootkit Revealer (It is total fucking bullshit that they do not have a 64 bit version of this)
- GMER - http://www.gmer.net/ - 64 bit rootkit scanner
- aswMBR
- MBRCheck (Check MBR)
Software Updaters
Settings
Disable Startup Repair
bcdedit /set {default} recoveryenabled No