Depending upon the nature of the infection(s), some of these steps may be skipped, but generally, this order works well. Please note if you were not specifically directed to this page, please do not use these tools unless you know what you are doing. You may cause further damage to your machine.
- Disable TeaTimer -
if Search & Destroy version 1.6.2 is installed, open Spybot - Search & Destroy in Advanced Mode. If it is not already set to do this go to the "Mode" menu and select "Advanced Mode". On the left hand side, click on "Tools". Then click on the Resident Icon in the List. Uncheck "Resident TeaTimer" and OK any prompts. Restart computer.
- Back Up Registry -
Download ERUNT to desktop and install without the NTREGOPT option. Choose "System registry" only during installation. Save registry back up to desktop.
- Diagnostic Scan -
For Windows 8 (or higher) systems, download and and run either 32 bit or 64 bit Farbar Recovery Scan Tool (FRST).
For Windows 7 (or lower) systems, download to desktop and run OTL. Change to Minimal Output. Check LOP & Purity scans. Review OTL.txt and Extras.txt.
Optionally to OTL, download to desktop & run DDS.scr or DDS.com. Review DDS.txt and attach.txt output.
- Disable Windows System Restore -
This will prevent any infected restore points.
- Scan Master Boot Record -
If MBR issues suspected, download aswMBR to desktop & run. Update database if required. Click the Scan button to start scan. When scan complete, press the Save Log button, save the log file to desktop. Review log. Optionally try MBRCheck.
- Scan / Clean Rootkits -
- TDSSKiller - Kaspersky antirootkit utility
- GMER Rootkit Scanner - rootkit scanner
- RootKit Revealer - rootkit scanner
- RootRepeal - rootkit scanner; right click on the driver/file/service and either copy, wipe or force delete it.
- ComboFix -
Do not use without proper direction or supervision. Download from here.
- Uninstall Undesirable Programs -
Through Windows Add/Remove Programs, uninstall known malware/spyware.
- Malware Tools -
- Blocked Malware Tools -
Run these programs if malware tools are being blocked from running by infections.
exeHelper
rkill
Install/Run AV Programs
AntiVir Personal
Avast Free
AVG (questionable)
Microsoft Security Essentials