General malware removal guide
With all of the recent hackings and suspicious links being posted, real threats or not, I think it's time that we dedicate a thread to general malware removal for people to refer to instead of having threads flood the website about what to do about a possible keylogger. Perhaps we'll see this thread stickied by a mod if it proves helpful enough.
Here are some steps you can take for malware removal. You can do this whenever you feel that your computer might be compromised.
- Download Rkill, http://www.bleepingcomputer.com/download/rkill/, and run it to kill any active malware processes
- Download Malwarebytes, http://www.malwarebytes.org/, and run a full system scan, then restart your computer
- Run ESET online scan here, will take a long time but is thorough in checking for problems: http://www.eset.com/us/online-scanner/
- Download CCleaner, http://www.piriform.com/CCLEANER, and run it to fix any potential registry errors caused by malware
- Download HijackThis, http://hijackthis.en.softonic.com/, and run it to check for any malware files (usually denoted by ending in gibberish letters such as jskfl.exe) and delete them
- Download Comodo Firewall, http://personalfirewall.comodo.com/, enable all settings which will protect you against most keyloggers
- Download the NoScript extension, https://addons.mozilla.org/en-US/firefox/addon/noscript/, if you use Firefox as your browser which will block unauthorized scripts from running as to prevent Java drive bys (common method of keylogger/trojan instalation)
- Download KeyScrambler, http://download.cnet.com/KeyScrambler-Personal/3000-2144_4-10571274.html, which will prevent keyloggers from recording your keystrokes by randomizing your input keys.
If anyone else has any other feedback to contribute or questions, please feel free to post below.
35 Comments • Newest first
[quote=pokemon744]@BobR: is the protection module the real time protection? i re installed it and it says the same thing o.o[/quote]
Yes, the protection module is what could possibly cause a conflict. You can turn it off in the pro version, the free version doesn't have a protection module.
everyone go to www.virustotal.com and scan ANYTHING
urls and files
@BobR: is the protection module the real time protection? i re installed it and it says the same thing o.o
[quote=pokemon744]@striitek: Crap it says trail on mine..[/quote]
You could just uninstall the trial version and install the free version.
I don't like to post links here because of the reasons given in this thread, but this is the link for the free version of Malwarebytes:
http://www.malwarebytes.org/products/malwarebytes_free/
You can find the link yourself by Googling "Malwarebytes free".
I love Eset. It's probably the only antivirus I know that updates the most. I would recommend using Superantispyware, Eset Internet Security 5, Malwarebytes, and a Ccleaner. Eset is very light on memory usage and the detection rate for their firewall and scanning is absolutely awesome. Honestly, if I was a hacker I would crypt viruses to avoid Avast!, Kaspersky and Avira since my victims will most likely use them since over 300million people download these popular antiviruses from cnet alone.
@striitek: Crap it says trail on mine..
[quote=d4rkxStrIfe]None of these programs will conflict. The free version of Malwarebytes does not offer real-time protection so it will not conflict with any current real-time anti-virus program you have. Rkill is an .exe (executable) file that will terminate running malware processes to expedite removal. The rest are software that should not interfere with one another.
@RisingRain: Both programs have their own functions - but the purpose of both is to detect and remove malware (which includes viruses). Certain modules may not conflict as long as they don't overlap.[/quote]
Alright, I just deactivated a few shields that MBAM modules also utilize.
[quote=OceanPress]are we suppose to download all of these to keep the computer safe? wouldn't there be some type of conflicts among these programs when you download more than 5? what do you think is the best two prgorams (large virus data base and fast at recognizing new virus) from the list? Thanks[/quote]
None of these programs will conflict. The free version of Malwarebytes does not offer real-time protection so it will not conflict with any current real-time anti-virus program you have. Rkill is an .exe (executable) file that will terminate running malware processes to expedite removal. The rest are software that should not interfere with one another.
@RisingRain: Both programs have their own functions - but the purpose of both is to detect and remove malware (which includes viruses). Certain modules may not conflict as long as they don't overlap.
[quote=d4rkxStrIfe]Since the Pro version is real-time protection, then yes, it will conflict with other anti-virus software that is also real-time that you have.[/quote]
Really? I've been running Avast! shields and MBAM Pro, and MBAM still picks up suspicious urls in the browser and in P2P swarms, while Avast! alerts me for opening any open-source EXE file as it's not that well known. Avast! and MBAM should be for different uses - one detects viruses, the other detects malware. There's overlap, but each one does what it's designed to do best.
[quote=striitek]I personally use Microsoft Security Essentials, Malwarebytes Free, and Spybot. Since the only program using live protection is MSE, you'll be fine. If you do decide to get Spybot, disable the "teatimer" which is live protection.[/quote]
O alright thanks the thing is how do you know if your using Malwarebytes Free because their is a trail version also. Thanks
[quote=pokemon744]would it be safe to have Microsoft essentials and malwarebytes?[/quote]
As long as you're using the free version of Malwarebytes, yes.
If some of you think this a keylogger or something, just copy/paste this into the url and then the url of the site you're tryign to check
http://google.com/safebrowsing/diagnostic?site=
o3o I didn't even click the links since I'm sure I don't have any viruses or keylogs
would it be safe to have Microsoft essentials and malwarebytes?
[quote=BobR]It is.
However, if you have an active anti-virus program like Avast!, it's safe to have the FREE version of Malwarebytes because it won't conflict with the real-time protection of Avast!. I'm not certain about the paid "pro" version of Malwarebytes though, because I use the free version myself.[/quote]
Since the Pro version is real-time protection, then yes, it will conflict with other anti-virus software that is also real-time that you have.
[quote=rubiksmaster123]i heard its bad to have more than one antivirus[/quote]
It is.
However, if you have an active anti-virus program like Avast!, it's safe to have the FREE version of Malwarebytes because it won't conflict with the real-time protection of Avast!. I'm not certain about the paid "pro" version of Malwarebytes though, because I use the free version myself.
[quote=Wush]some viruses can bypass some of the more popular anti-viruses so if you want to be safe you should have one anti-virus program that is somewhat popular such as avast and a backup such as malwareantibytes as a safety[/quote]
i heard its bad to have more than one antivirus
Just so everyone knows malware bytes is sponsored by Norton
Those are all trustable sites I believe - however, even if you use the world greatest kelogger detector or something of the like, it still won't be able to detect EVERYTHING. There is no perfect keylogger detector, but you can always try finding multiple ones to see if they get a virus out.
[quote=rashoodyBM]I meant THESE links to the websites. If I click, I might get keylogged.[/quote]
yeah man im gonna get keylogged by going to the official malwarebytes website
[quote=Trigonometry]I wouldn't suggest that you just tell people to use HijackThis because it can damage their computer if they mistake real files for gibberish. They should post their log on a computer tech website and have knowlegdable users sort it out.[/quote]
I'll help examine HijackThis logs if anyone wants to send them via PM. However, almost all malware runs off of some extension in gibberish letters. If you want a tutorial, here is a good one: http://www.bleepingcomputer.com/tutorials/how-to-use-hijackthis/
For the ESET logs though, you'll need someone else who has the time and experience to go through those for an accurate analysis - but it's worthwhile to run regardless.
I used malware bytes to remove my keylogger
[quote=rashoodyBM]How do I know these links aren't keylogged?
To click or not to click, that is the question.[/quote]
I got scared from your player. I thought my basil account got hacked which meant I have a keylogger. Then I say the goggles.
I wouldn't suggest that you just tell people to use HijackThis because it can damage their computer if they mistake real files for gibberish. Unless they're absolutely sure of what they're doing, they should post their log on a computer tech website and have knowlegdable users sort it out.
She doesn't look like she wants to key log some one, but who knows?
[quote=deletemepl0x]Recent hackings? Haha.
On a lighter side I heard fangblade sold his account for $30,000.[/quote]
Yeaaah because you're the one who posted the link <3
[quote=sonic4532]How about everyone just take two seconds to download a anti-virus program before they actually get on the internet? It's the usual procedure of sprinkling water on the computer, prancing around it and mumbling some sort of worship, poetic, and creepy chant.
OT: But really, how hard is it to install a anti-virus program..? + All computers have a firewall already installed to them.[/quote]
You'd be surprised at how many people there are who don't have an active, reliable anti-virus program on their computer. And most computer built in firewalls are insufficient at stopping keyloggers.
And all links posted are safe.
[quote=rubiksmaster123]i know malwarebytes and ccleaner arent bad because ive used them before[/quote]
I meant THESE links to the websites. If I click, I might get keylogged.
How about everyone just take two seconds to download a anti-virus program before they actually get on the internet? It's the usual procedure of sprinkling water on the computer, prancing around it and mumbling some sort of worship, poetic, and creepy chant.
OT: But really, how hard is it to install a anti-virus program..? + All computers have a firewall already installed to them. And I also don't trust the look of those sites .. MOAR HAK SITEZZZ.
No point in posting links on Basil anymore. Everyone is gonna scream and point at links until some "white knight" decides to run a simple virus check on the site...
[quote=rashoodyBM]How do I know these links aren't keylogged?
To click or not to click, that is the question.[/quote]
i know malwarebytes and ccleaner arent bad because ive used them before
People are still falling for the trolls
That KeyScrambler seems like a keylogger itself.
How do I know these links aren't keylogged?
To click or not to click, that is the question.
There have been a abnormal amount of players getting hacked, so yes this is a nice contribution.
It's all fake but never the less, this shall help those who are worried.