Difference between revisions of "Spyware and Windows Systems"
From Hack Sphere Labs Wiki
(→Utilities) |
(→Utilities) |
||
(15 intermediate revisions by the same user not shown) | |||
Line 1: | Line 1: | ||
+ | *http://unchecky.com/ | ||
+ | |||
Removing Spyware from Windows systems. | Removing Spyware from Windows systems. | ||
Line 8: | Line 10: | ||
*SuperAntispyware Portable: https://www.superantispyware.com/portablescannertech.html | *SuperAntispyware Portable: https://www.superantispyware.com/portablescannertech.html | ||
**They keep putting the .EXE instead of the .COM. The exe is an installer. I tried to contact for a license and they do not respond. | **They keep putting the .EXE instead of the .COM. The exe is an installer. I tried to contact for a license and they do not respond. | ||
+ | **UPDATE: You just have to install SAS to make it work. | ||
*Norton Power Eraser: http://security.symantec.com/nbrt/npe.aspx | *Norton Power Eraser: http://security.symantec.com/nbrt/npe.aspx | ||
+ | *Flash Disinfector: http://download.bleepingcomputer.com//sUBs/Flash_Disinfector.exe | ||
+ | *Sophos Anti-Rootkit: https://secure.sophos.com/products/free-tools/sophos-anti-rootkit/eula | ||
+ | *Sophos Virus Removal Tool: http://www.sophos.com/en-us/products/free-tools/sophos-anti-rootkit.aspx | ||
+ | *(OLD, WinXP) LSP-Fix: http://www.cexx.org/lspfix.htm | ||
+ | *HiJackThis: http://sourceforge.net/projects/hjt/ | ||
+ | *CCleaner Portable: https://www.piriform.com/ccleaner/builds | ||
+ | *Autoruns: http://technet.microsoft.com/en-us/sysinternals/bb963902.aspx | ||
+ | *ESET SysInspector: http://www.eset.com/us/download/utilities/ | ||
+ | *Norton Security Scan: http://security.symantec.com/sscv6/WelcomePage.asp | ||
+ | *Oldtimers Temp File Cleaner | ||
+ | *Autoruns | ||
+ | *Process Explorer (Submit Virus Total) | ||
+ | *adwcleaner | ||
+ | *Junkware Removal Tool | ||
+ | *RKUnhookerLE | ||
+ | *Emsisoft Free Emergency Kit - https://www.emsisoft.com/en/software/eek/ | ||
+ | * | ||
+ | |||
+ | =Online Scanners= | ||
+ | *VirusTotal: https://www.virustotal.com/ | ||
+ | *ESET: http://www.eset.com/us/online-scanner/ | ||
+ | *McAfee FreeScan: http://home.mcafee.com/Downloads/FreeScan.aspx?affid=56&culture=en-US | ||
+ | *Trendmicro Housecall: http://housecall.trendmicro.com/ | ||
+ | |||
+ | =RootKit= | ||
+ | *Sysinternals Rootkit Revealer (It is total fucking bullshit that they do not have a 64 bit version of this) | ||
+ | *GMER - http://www.gmer.net/ - 64 bit rootkit scanner | ||
+ | *aswMBR | ||
+ | *MBRCheck (Check MBR) | ||
+ | |||
+ | =Software Updaters= | ||
+ | *http://www.kcsoftwares.com/?sumo | ||
+ | *Ninite | ||
+ | |||
+ | =Settings= | ||
+ | Disable Startup Repair | ||
+ | bcdedit /set {default} recoveryenabled No |
Latest revision as of 10:02, 18 December 2015
Removing Spyware from Windows systems.
Utilities
- Combofix: http://www.bleepingcomputer.com/download/combofix/
- McAfee Stinger: http://www.mcafee.com/us/downloads/free-tools/stinger.aspx
- McAfee Rootkit Remover: http://www.mcafee.com/us/downloads/free-tools/rootkitremover.aspx
- SuperAntispyware Portable: https://www.superantispyware.com/portablescannertech.html
- They keep putting the .EXE instead of the .COM. The exe is an installer. I tried to contact for a license and they do not respond.
- UPDATE: You just have to install SAS to make it work.
- Norton Power Eraser: http://security.symantec.com/nbrt/npe.aspx
- Flash Disinfector: http://download.bleepingcomputer.com//sUBs/Flash_Disinfector.exe
- Sophos Anti-Rootkit: https://secure.sophos.com/products/free-tools/sophos-anti-rootkit/eula
- Sophos Virus Removal Tool: http://www.sophos.com/en-us/products/free-tools/sophos-anti-rootkit.aspx
- (OLD, WinXP) LSP-Fix: http://www.cexx.org/lspfix.htm
- HiJackThis: http://sourceforge.net/projects/hjt/
- CCleaner Portable: https://www.piriform.com/ccleaner/builds
- Autoruns: http://technet.microsoft.com/en-us/sysinternals/bb963902.aspx
- ESET SysInspector: http://www.eset.com/us/download/utilities/
- Norton Security Scan: http://security.symantec.com/sscv6/WelcomePage.asp
- Oldtimers Temp File Cleaner
- Autoruns
- Process Explorer (Submit Virus Total)
- adwcleaner
- Junkware Removal Tool
- RKUnhookerLE
- Emsisoft Free Emergency Kit - https://www.emsisoft.com/en/software/eek/
Online Scanners
- VirusTotal: https://www.virustotal.com/
- ESET: http://www.eset.com/us/online-scanner/
- McAfee FreeScan: http://home.mcafee.com/Downloads/FreeScan.aspx?affid=56&culture=en-US
- Trendmicro Housecall: http://housecall.trendmicro.com/
RootKit
- Sysinternals Rootkit Revealer (It is total fucking bullshit that they do not have a 64 bit version of this)
- GMER - http://www.gmer.net/ - 64 bit rootkit scanner
- aswMBR
- MBRCheck (Check MBR)
Software Updaters
Settings
Disable Startup Repair
bcdedit /set {default} recoveryenabled No