Suggestions for mods

skankinredskankinred
edited May 2006 in Spyware & Virus Removal
I think some stickies should be updated to include these extremely helpful programs on disagnosing spyware/trojans etc:

First is autoruns from www.sysinternals.com(all free software)
http://www.sysinternals.com/Utilities/Autoruns.html
Autoruns.gif

Used along with Process Explorer:
http://www.sysinternals.com/Utilities/ProcessExplorer.html
ProcessExplorer.gif

The extremely helpful ShellExView:
http://www.nirsoft.net/utils/shexview.html
shexview.gif

Along with the constantly used Unlocker:
http://ccollomb.free.fr/unlocker/
tutorial2.png

Next is to have 2 free online scanning websites:
http://www.virustotal.com/
http://virusscan.jotti.org/

Comments

  • chiazchiaz
    edited May 2006
    Problem is that many of the victims who post here are not very good at diagnosing malware problems, and tools like AutoRun, Process Explorer and ShellExView require a certain level of competency.

    As for single-file scanning sites, how will they help much, for victims? They'll have to pinpoint a selected suspicious file first.
  • skankinredskankinred
    edited May 2006
    chiawaikian wrote:
    Problem is that many of the victims who post here are not very good at diagnosing malware problems, and tools like AutoRun, Process Explorer and ShellExView require a certain level of competency.

    As for single-file scanning sites, how will they help much, for victims? They'll have to pinpoint a selected suspicious file first.

    When you notice a supicious file in their hijack this log, you always tell them to go to jotti to scan. Problem is jotti is usually always busy and not available now adays.



    If they are having problems removing files, they can use these programs with a simple "click on XXX tab, uncheck XXX.exe"
  • skankinredskankinred
    edited May 2006
    The reason I mention the single scanning websites, is because when you find something suspicious, and you tell them to go to jotti to scan it; Jotti is usually so busy that you can't even use it lately. Plus Virustotal has some virus engines that Jotti doesn't have as well.

    I also think, if they can learn to use Hijackthis, they should be able to learn Autoruns. It's really not that complicated with the tabed GUI. These programs are straightforward and can be easily instructed on what to do.

    I also think that there are some people who have the capability to understand these programs, and come to this section because they just don't know how to remove a certain type of spyware/trojan sometimes. A lot of people can learn just by poking around with a program a couple times.

    The more information available the better. It doesn't have to be used with everyone, most people could use these programs very easily, they just had no idea there was anything like this out there.
    I didn't even know about some of these programs myself, until a year ago. I was always wondering if there was something that would make it easier than going into regedit to try to remove things.
Sign In or Register to comment.