What's your cleanup strategy?

AlexRD

New Member
Member
Messages
44
Bad title, but what i'm really asking is, if you were given a computer filled with viruses and important information, so you can't just format, what would you do to clean the computer and have 100% guarantee that you removed all of the viruses?
 

My Computer

System One

  • OS
    Windows 8.1 x64
    Computer type
    PC/Desktop
    System Manufacturer/Model
    Custom Built
    CPU
    Intel i7 2600k
    Motherboard
    Asus Maximus IV Z68 - Extreme
    Memory
    4x4 Ripjaws X79 Series 2133 MHz (9-11-10-28)
    Graphics Card(s)
    eVGA GTX 780 Ti Classified
    Sound Card
    Default
    Monitor(s) Displays
    Full HD Philips TV 32"
    Screen Resolution
    1920x1080
    Hard Drives
    1x Crucial m4 SSD 512 GB
    PSU
    Silverstone Strider Gold 850w
    Case
    Sentey - Renegade GS-6200
    Cooling
    Corsair H80i Liquid Cooler
    Keyboard
    Logitech K800
    Mouse
    Steelseries Sensei Raw
    Internet Speed
    10 Mb
    Browser
    Chrome
    Antivirus
    Windows Defender
You could use the standard available malware/AV programs out there and still not be 100% sure all is fixed. Best strategy, back up your data and do a Clean Install of Windows.
 

My Computer

System One

  • OS
    windows 8.1 Update 1 Pro 64bit
    System Manufacturer/Model
    Pavillion H8-1202
    CPU
    I7-2600 @ 3.4 GHz
    Motherboard
    PEGATRON
    Memory
    8 GB
    Graphics Card(s)
    NIVDIA GeForce GT 520
    Sound Card
    Realtek ALC656GR CODEC
    Monitor(s) Displays
    Samsung SyncMaster S22B350
    Screen Resolution
    1920X1080 32 bit color
    Hard Drives
    Samsung 850 EVO SSD 500GB
    Keyboard
    Razer Blackwidow Ultimate 2013
    Mouse
    Logitech M510
If you backup your data, wouldn't that just transfer the virus with it? My guess is that it would take time running as many on demand scanners as possible and anti-virus software over and over again both in safe mode and normal mode.

Or if you back-up as Nuccii suggests, backup the important files to a removable drive (usb?) and blitz it with everything going and clean install the harddrive.
 

My Computer

System One

  • OS
    Windows 8.1 Pro
    Computer type
    PC/Desktop
    System Manufacturer/Model
    AsRock
    CPU
    Intel Core2 Quad Q8200
    Motherboard
    AsRock N7AD SLI
    Memory
    8GB DDRII
    Graphics Card(s)
    MSI Geforce GTX760 Twin Frozer
    Sound Card
    On Board Realtec
    Monitor(s) Displays
    Hanns G 221A
    Hard Drives
    Hitachi_HDP725050GLA360
    Case
    Yes, I have one. Less messy that way
    Mouse
    Squeek
    Browser
    Firefox
    Antivirus
    Avast
  1. Malwarebytes' Anti-Malware
  2. CCleaner
  3. Wise Registry Cleaner
  4. Windows Updates
  5. Update Third-Party Programs
  6. Update Drivers
  7. Disk Check and Disk Defragment

This is what I do when like a relative or friend lets me clean/fix their computer when its slow and full. :) I also do this routine once or twice to my computers like every month.
 

My Computer

System One

  • OS
    Windows 8.1 Pro x64
    Computer type
    Laptop
    System Manufacturer/Model
    ASUS Vivobook X202E-CT009H
    CPU
    Intel Core i3-3217u Dual-Core Processor @ Stock 1.8GHz
    Motherboard
    Intel HM76 Express Chipset
    Memory
    4GB DDR3 SDRAM @ Stock 1333 MHz
    Graphics Card(s)
    Intel HD Graphics 4000
    Sound Card
    ASUS SonicMaster (w/ Built-in Speakers & Microphone)
    Monitor(s) Displays
    11.6" Multi-Touch Backlit LED Screen (w/ Front HD Web Camera)
    Screen Resolution
    1366x768
    Hard Drives
    Seagate Momentus Thin ST500LT012 2.5" SATA HDD @ 500GB (5400 rpm)
    PSU
    2 Cells 5136 mAh 38 Whrs Polymer Battery
    Mouse
    ASUS Smart Gesture Touch Pad
    Internet Speed
    PLDT DSL @ (3 Mbps ↓ & 0.75 Mbps ↑ )
    Browser
    Cyberfox
    Antivirus
    Bitdefender Total Security 2015
    Other Info
    Microsoft Office Professional Plus 2013 | 1 x Combo Audio Jack |1 x VGA port | 1 x USB 3.0 | 2 x USB 2.0 | 1 x RJ45 | 1 x HDMI | 1 x SD/SDHC/SDXC/MMC Card Reader | Integrated 802.11 b/g/n WiFi | Bluetooth 4.0+ HS | 10/100 Base T | 30.3 x 20.0 x 2.17 cm | 3.08 lbs | For School and General Use

My Computer

System One

  • OS
    windows 8.1 Update 1 Pro 64bit
    System Manufacturer/Model
    Pavillion H8-1202
    CPU
    I7-2600 @ 3.4 GHz
    Motherboard
    PEGATRON
    Memory
    8 GB
    Graphics Card(s)
    NIVDIA GeForce GT 520
    Sound Card
    Realtek ALC656GR CODEC
    Monitor(s) Displays
    Samsung SyncMaster S22B350
    Screen Resolution
    1920X1080 32 bit color
    Hard Drives
    Samsung 850 EVO SSD 500GB
    Keyboard
    Razer Blackwidow Ultimate 2013
    Mouse
    Logitech M510

My Computer

System One

  • OS
    Windows 8.1 Pro x64
    Computer type
    Laptop
    System Manufacturer/Model
    ASUS Vivobook X202E-CT009H
    CPU
    Intel Core i3-3217u Dual-Core Processor @ Stock 1.8GHz
    Motherboard
    Intel HM76 Express Chipset
    Memory
    4GB DDR3 SDRAM @ Stock 1333 MHz
    Graphics Card(s)
    Intel HD Graphics 4000
    Sound Card
    ASUS SonicMaster (w/ Built-in Speakers & Microphone)
    Monitor(s) Displays
    11.6" Multi-Touch Backlit LED Screen (w/ Front HD Web Camera)
    Screen Resolution
    1366x768
    Hard Drives
    Seagate Momentus Thin ST500LT012 2.5" SATA HDD @ 500GB (5400 rpm)
    PSU
    2 Cells 5136 mAh 38 Whrs Polymer Battery
    Mouse
    ASUS Smart Gesture Touch Pad
    Internet Speed
    PLDT DSL @ (3 Mbps ↓ & 0.75 Mbps ↑ )
    Browser
    Cyberfox
    Antivirus
    Bitdefender Total Security 2015
    Other Info
    Microsoft Office Professional Plus 2013 | 1 x Combo Audio Jack |1 x VGA port | 1 x USB 3.0 | 2 x USB 2.0 | 1 x RJ45 | 1 x HDMI | 1 x SD/SDHC/SDXC/MMC Card Reader | Integrated 802.11 b/g/n WiFi | Bluetooth 4.0+ HS | 10/100 Base T | 30.3 x 20.0 x 2.17 cm | 3.08 lbs | For School and General Use

My Computer

System One

  • OS
    Windows 8.1 x64
    Computer type
    PC/Desktop
    System Manufacturer/Model
    Custom Built
    CPU
    Intel i7 2600k
    Motherboard
    Asus Maximus IV Z68 - Extreme
    Memory
    4x4 Ripjaws X79 Series 2133 MHz (9-11-10-28)
    Graphics Card(s)
    eVGA GTX 780 Ti Classified
    Sound Card
    Default
    Monitor(s) Displays
    Full HD Philips TV 32"
    Screen Resolution
    1920x1080
    Hard Drives
    1x Crucial m4 SSD 512 GB
    PSU
    Silverstone Strider Gold 850w
    Case
    Sentey - Renegade GS-6200
    Cooling
    Corsair H80i Liquid Cooler
    Keyboard
    Logitech K800
    Mouse
    Steelseries Sensei Raw
    Internet Speed
    10 Mb
    Browser
    Chrome
    Antivirus
    Windows Defender
Granted, it depends on how heavily you are infected especially where Rootkits are concerned. Your question was for 100% guarantee and I replied accordingly.
 

My Computer

System One

  • OS
    windows 8.1 Update 1 Pro 64bit
    System Manufacturer/Model
    Pavillion H8-1202
    CPU
    I7-2600 @ 3.4 GHz
    Motherboard
    PEGATRON
    Memory
    8 GB
    Graphics Card(s)
    NIVDIA GeForce GT 520
    Sound Card
    Realtek ALC656GR CODEC
    Monitor(s) Displays
    Samsung SyncMaster S22B350
    Screen Resolution
    1920X1080 32 bit color
    Hard Drives
    Samsung 850 EVO SSD 500GB
    Keyboard
    Razer Blackwidow Ultimate 2013
    Mouse
    Logitech M510
Macro viruses in Word and Excel occur in personal data.

The previously mentioned reinstall works, unless the install disks are 1 year old+. In that case, the machine may be attacked as it comes back on the internet.

The previously mentioned periodic scanning is good. However if the computer gets a virus before companies have detected and written a scan pattern for it, data is at risk.

Backup to non-volatile media such as optical disks (and store at a separate location) and verify or check backups limits the computer's exposure to data loss from viruses, mechanical failures, and fire.
 

My Computer

System One

  • OS
    Microsoft Windows 8.1 64 Bit
    Computer type
    Laptop
    System Manufacturer/Model
    Toshiba C55Dt-A5106
    CPU
    Processor AMD A6-5200 APU with Radeon(TM) HD Graphics, 2 Ghz, 4 Core(s), 4 Logical Processor(s)
    Motherboard
    Toshiba PSCFWU-02C031
    Memory
    4GB
    Graphics Card(s)
    AMD Radeon HD 8400
    Sound Card
    Realtek High Definition Audio
    Monitor(s) Displays
    Laptop and DELL E193FP
    Screen Resolution
    1366x768 1280x1024
    Hard Drives
    Toshiba MQ01ABD075
    DVD Writer TSSTcorp CDDVDW SU-208FB
    Keyboard
    Logitech Wave 2.4 Cordless or Laptop Standard PS/2 Keyboard Enhanced
    Mouse
    Logitech M1100 Performance Laser Cordless Combo or Logitech G500
    Internet Speed
    Upload/Download 91/11Mbps
    Browser
    IE 11
    Antivirus
    Norton
    Other Info
    Toshiba System Settings V1.1.2.32001
    BIOS Version Inside Corp., 1.60, 11/15/2013
    EC (Embedded Controller) Version 1.20
    Hardware Abstraction Layer 6.3.9600.16500
100% guarantee that you removed all of the viruses?
You format and reinstall. No if, and's or buts. If the computer was that filled with viruses, why would you take the chance.
 

My Computer

System One

  • OS
    Windows 7
    System Manufacturer/Model
    Self-Built in July 2009
    CPU
    Intel Q9550 2.83Ghz OC'd to 3.40Ghz
    Motherboard
    Gigabyte GA-EP45-UD3R rev. 1.1, F12 BIOS
    Memory
    8GB G.Skill PI DDR2-800, 4-4-4-12 timings
    Graphics Card(s)
    EVGA 1280MB Nvidia GeForce GTX570
    Sound Card
    Realtek ALC899A 8 channel onboard audio
    Monitor(s) Displays
    23" Acer x233H
    Screen Resolution
    1920x1080
    Hard Drives
    Intel X25-M 80GB Gen 2 SSD
    Western Digital 1TB Caviar Black, 32MB cache. WD1001FALS
    PSU
    Corsair 620HX modular
    Case
    Antec P182
    Cooling
    stock
    Keyboard
    ABS M1 Mechanical
    Mouse
    Logitech G9 Laser Mouse
    Internet Speed
    15/2 cable modem
    Other Info
    Windows and Linux enthusiast. Logitech G35 Headset.
So viruses really don't attach to personal data? Say i have a hard drive where i keep all my stuff backed up. If my current system has viruses, isn't there a huge chance of my other drive having them too?
 

My Computer

System One

  • OS
    Windows 8.1 x64
    Computer type
    PC/Desktop
    System Manufacturer/Model
    Custom Built
    CPU
    Intel i7 2600k
    Motherboard
    Asus Maximus IV Z68 - Extreme
    Memory
    4x4 Ripjaws X79 Series 2133 MHz (9-11-10-28)
    Graphics Card(s)
    eVGA GTX 780 Ti Classified
    Sound Card
    Default
    Monitor(s) Displays
    Full HD Philips TV 32"
    Screen Resolution
    1920x1080
    Hard Drives
    1x Crucial m4 SSD 512 GB
    PSU
    Silverstone Strider Gold 850w
    Case
    Sentey - Renegade GS-6200
    Cooling
    Corsair H80i Liquid Cooler
    Keyboard
    Logitech K800
    Mouse
    Steelseries Sensei Raw
    Internet Speed
    10 Mb
    Browser
    Chrome
    Antivirus
    Windows Defender
OP ComboFix is something you should look into.
 

My Computer

System One

  • OS
    Windows 8.1 Pro X64
    Computer type
    PC/Desktop
    System Manufacturer/Model
    Self Assembled
    CPU
    Intel COre i5 4440
    Motherboard
    Gigabyte H97M-DS3P
    Memory
    Corsair Vengeance 4GB DDR3
    Graphics Card(s)
    Sapphire Redeon R7 240
    Sound Card
    Asus Xonar DX - Fiio E10 - Audio Technica M50
    Monitor(s) Displays
    Panasoniuc L42ET60D & Dell 2240L (Dual display)
    Screen Resolution
    1920x1080
    Hard Drives
    Samsung 850 Pro 128 GB
    1 TB WD Green
    3 TB WD Green
    PSU
    Corsair VS350
    Case
    Corsair Carbide 400R
    Cooling
    Stock mostly.. Hyper 212 Evo in the pipeline..
    Keyboard
    Logitech Basic wireless.
    Mouse
    Logitech MX518
    Internet Speed
    Huh?
    Browser
    Waterfox (with sync one)
    Antivirus
    Windows Defender + My head.
    Other Info
    huhauahuahauha
So viruses really don't attach to personal data? Say i have a hard drive where i keep all my stuff backed up. If my current system has viruses, isn't there a huge chance of my other drive having them too?
No like JHough says data files CAN contain malicious code. The obvious culprits are any application that allow you to embed macros or scripts in your data. This includes Word's .doc / Excel's .xls . of course, but also Adobe's PDF, Microsoft's XPS,... The list is I'm sure pretty long.

But your simple data files which aren't designed to accept any macro whatsoever in them aren't free of suspicion either. The most famous example being the old .rtf files, which when including macros and read with Word, they will be executed bypassing even the Macro security features, since rtf isn't supposed to have macros in the first place.
The Deceptive Safety of RTF Files | Kaspersky Lab
How an RTF file can install a virus when opened « Tim Anderson's ITWriting

Solution : Patch Windows and your applications. Disable macros/scripts by default in these applications. Or even better : use alternative software, since these exploits don't actually rely on the file formats themselves but on the applications reading them. With these steps, even infected data files should be safe.
 

My Computer

System One

  • OS
    Windows 8.1 (x64)
    Computer type
    PC/Desktop
Hi there

The only SENSIBLE strategy IMO is the following :

1) After initial install take a known uninfected CLEAN backup. Keep this indefinitely --it's your REFERENCE system.

2) Add Ms programs like Office if you have any - these won't be infected (assuming you got them legally).

3) Backup again==> keep and don't overwrite = Master 2

4) Add your own programs - checking all the time that system isn't infected.

5) After all installed backup again ==> Keep this and don't overwrite -- Master 3

System now ready for use.

Now daily check stuff and make a backup if system not infected ==> keep as current backup

If system gets infected then restore current backup. If infection somehow got passed that go back to step 5 and restore master 3.

If you need to re-install windows again then you've got Masters 1 and 2 (and even 3 if you don't want to re-install applications again).

I don't trust AV cleaning software -- if a system is infected how on earth can you trust that the AV software / cleansing software is actually telling you the truth when it says system is cleansed.

BTW always keep user data and OS in separate disks / partitions so you don't necessarily have to re-create your user data if you restore the OS.

Viruses are not very likely to be found in Music / video programs if you are using standard applications to play these. So if you keep these libraries on a separate drive your chance of getting an infection from an mp3 file played with a standard multi-media player is less than you living longer than the probable life time of the universe -- a virus embedded into an mp3 file say could only be activated if it was being played by a rogue multi-media player which could handle macros / non mp3 /music format data.

Email and other type of office data is another issue -- NEVER open email attachments unless you know who sent them - and be very careful with any embedded links / bad sites -- and if you do use torrents download stuff via a virtual machine to a SEPARATE HDD and scan it carefully before copying any of that stuff to your running machine.

If you don't want to pay a second windows license for running a VM download a Linux machine - that will run Bit torrent for you on a Virtual machine and is FREE. All modern Linuxes are now plug and play and can read / write to Windows formatted files (NTFS / FAT32 etc).

With things like multi-media you probably need ONE archive - you don't need to backup regularly --these files don't change a lot if at all - but re-creating these libraries can be a pain --re-ripping 1000's of CD's, getting stuff again from iTunes etc.

For other User data - back up as often as you need -- you can even use file explorer if you only want to save a few files.

Always scan and regularly back up the OS though.

Cheers
jimbo
 

My Computer

System One

  • OS
    Linux Centos 7, W8.1, W7, W2K3 Server W10
    Computer type
    PC/Desktop
    Monitor(s) Displays
    1 X LG 40 inch TV
    Hard Drives
    SSD's * 3 (Samsung 840 series) 250 GB
    2 X 3 TB sata
    5 X 1 TB sata
    Internet Speed
    0.12 GB/s (120Mb/s)
So viruses really don't attach to personal data?
Of course they can, the most dangerous is Ransomware, like CryptoLocker, it infects especially personal files like documents, pictures and pretty much anything important and they can not be always cleaned by AV, since they are heavily encrypted and unless you pay the ransom, your files are gone forever.
what would you do to clean the computer and have 100% guarantee that you removed all of the viruses?
If PC can not be formatted, use multiple AV scanners as suggested and install some good AV and firewall.

1. Disable System Restore temporarily - Turn System Restore on or off - it is great in restoring viruses as well.
2. Use HitmanPro 3 - it does not install, so malware should not be able to block it from running.
3. Use Emsisoft Free Emergency Kit - it does not install.
4. Use Dr.Web CureIt - it does not install.
5. Use TDSSKiller - it does not install.
6. Install 360 Total Security and scan.
7. Install Private Firewall .
8. Install CCleaner and clean and disable all startup entries, that you do not know, you can enable them later.
 
Last edited:

My Computer

System One

  • OS
    Win 8.1.1 Pro x64
    Computer type
    Laptop
    System Manufacturer/Model
    Lenovo E525
    CPU
    AMD A4-3300M @ 2,0GHz
    Memory
    6GB DDR3 1333MHz
    Graphics Card(s)
    AMD Radeon HD 6480G 512MB shared
    Sound Card
    Creative Sound Blaster X-Fi Surround 5.1
    Screen Resolution
    1366x768
    Hard Drives
    WD 465GB
    Cooling
    Fusion Tweaker
    Keyboard
    Logitech K360
    Mouse
    Logitech M705
    Internet Speed
    50/50 MBps
    Browser
    Yandex
    Antivirus
    No AV & No Firewall
    Other Info
    Headphones: Sennheiser RS170
It's always a good idea to have a system image or 2. I keep mine on a external HDD that's not turned on unless I happen to be using it at the time. I also keep at least 3 images, in case I inadvertently make one that contains a virus. That way I have the others to fall back on.

http://www.eightforums.com/tutorials/8956-system-image-create-windows-8-a.html

Clean up strategy depends on the malware. Different strains call for different actions, so it's on a case by case basis.
 

My Computer

System One

  • OS
    Win 7 32, Win 7 64 Pro, Win 8.1 Pro
    Computer type
    PC/Desktop
    System Manufacturer/Model
    It's a Dell, Dude.
    CPU
    Intel Caffinated Core Duo
    Motherboard
    Father is bored too.
    Memory
    4 GB
    Graphics Card(s)
    NVidia something-or-another
    Monitor(s) Displays
    24" HD TV/Monitor/Alternative Dimensional Viewing Portal
    Screen Resolution
    Fuzzy after a couple drinks
    Hard Drives
    2 or 3, depending on if it's a night they're arguing about having a "split personality crisis" because I partitioned the drive.
    Case
    Don't get on my case....man
    Cooling
    Scotch on the rocks on the weekends..
    Keyboard
    Mad Catz Cyborg V7. Or maybe Cyborg Catz Are Mad At V7's??? I know it lights up...far out.
    Mouse
    currently being stalked by the cat...
    Internet Speed
    Never fast enough...
    Browser
    Defeated by Mario...wait...OH...BRowser...
    Antivirus
    Various
1. Clean up the malware using MalWareBytes, Norton Power Eraser, etc... (boot in safe mode with networking to do this)
2. Clean registry with CCleaner
3. Uninstall whatever AV software was installed (if any) when the PC was infected
4. Install Microsoft Security Essentials
5. Install all updates and required patches
6. Check for PUPs in Programs and uninstall any suspicious stuff
7. Check the browser for hijacks and "helpers", delete them
8. Explain to the user what I did and how they can prevent this in the future (MOST IMPORTANT)
 

My Computer

System One

  • OS
    Win 10 Pro 64bit
    Computer type
    PC/Desktop
    System Manufacturer/Model
    Home built Intel i7-3770k-based system
    CPU
    Intel i7-3770k, Overclocked to 4.6GHz (46x100) with Corsair H110i GT cooler
    Motherboard
    ASRock Z77 OC Formula 2.30 BIOS
    Memory
    32GB DDR3 2133 Corsair Vengeance Pro
    Graphics Card(s)
    GeForce GTX 980ti SC ACS 6GB DDR5 by EVGA
    Sound Card
    Creative Sound Blaster X-Fi Titanium HD, Corsair SP2500 speakers and subwoofer
    Monitor(s) Displays
    LG 27EA33 [Monitor] (27.2"vis) HDMI
    Screen Resolution
    1920x1080
    Hard Drives
    Samsung SSD 850 EVO 250GB (system drive)
    WD 6TB Red NAS hard drives x 2 in Storage Spaces (redundancy)
    PSU
    Corsair 750ax fully modular power supply with sleeved cables
    Case
    Corsair Air 540 with 7 x 140mm fans on front, rear and top panels
    Cooling
    Corsair H110i GT liquid cooled CPU with 4 x 140" Corsair SP "push-pull" and 3 x 140mm fans
    Keyboard
    Thermaltake Poseidon Z illuminated keyboard
    Mouse
    Corsair M65 wired
    Internet Speed
    85MBps DSL
    Browser
    Chrome and Edge
    Antivirus
    Windows Defender, MalwareBytes Pro and CCleaner Pro
    Other Info
    Client of Windows Server 2012 R2 10 PC's, laptops and smartphones on the WLAN.

    1GBps Ethernet ports
Back
Top