Fix That Hosed-up Windows Box!

  • Diagnostics
  • Backup tools
  • Network Fixers
  • AV special-purpose tools
  • AV removers
  • File deleters
  • Rootkit specials
  • Boot this disk
  • Hasta la Vista!
  • BartPE - in case the PC will not boot
    DriveMan - backup drivers
    CCleaner - remove the junk files
    Hex Editor - edit corrupt Word/other documents
    UnStoppableCopier - backup files in case you only get one chance
    DelLater - delete virus/other files that are inuse
    Spybot, AdAware, Spyware Doctor
    WhatsRunning - find rogue processes
    System Internals - all :-)
    A2Hijackfree - startup programs
  • Spybot
    Adware
    NoNav/Sav Remove
    CCleaner
    Firefox (now 3.0)
    IE8-WindowsXP-x86-ENU.exe
    AimFix
    ProcessExplorer.zip
    Tcpview.zip
    Siw.exe
  • Microsoft Office Compatibility Pack
  • Malwarebytes Anti-Malware - http://www.malwarebytes.org/
    Spybot - http://www.safer-networking.org/
    CCleaner - http://www.ccleaner.com/
    HijackThis - http://www.trendsecure.com/portal/en-US/tools/security_tools/hijackthis/download
    Recovery is Possible - http://ftp.leg.uct.ac.za/pub/linux/rip/
    AVG Anti-Virus Free Edition - http://free.grisoft.com/
    Norton Removal Tool - http://service1.symantec.com/Support/tsgeninfo.nsf/docid/2005033108162039
    McAfee Consumer Products Removal Tool - http://service.mcafee.com/FAQDocument.aspx?id=107083&lc=1033
    VundoFix - http://vundofix.atribune.org/
    Firefox - http://www.mozilla.com/firefox/
  • BartPE or WinBuilder
    CCleaner
    Dial-A-Fix
    Spybot
    Anything from Sysinternals
    MSI Clean Up utility (msicuu.exe)
  • StartupList - It's a bit like HijackThis (and written by the same person/people), but covers a large number of registry locations that viruses/spyware like to hide. http://www.merijn.org/programs.php#startuplist
  • Microsoft Malicious Software Removal tool
  • IceSword (nothing can hide from it)
    WinsockXPFix
    Winsockfix (for Vista)
    Gmer
    Autoruns (Systernals)
    ProcessExplorer (Systernals)
    Eset NOD32 antivirus
  • F-Secure BlackLight? http://www.f-secure.co.uk/blacklight/blacklight.html
  • SuperAntiSpyware http://www.superantispyware.com/
    Rogue Remover http://www.malwarebytes.org/rogueremover.php
  • CCleaner is better than decrap. JKdefrag for defrag. Spybot SnD. I'm not a fan of spyware doctor (seen it hose machines). Norton Remover and McAfee removers are a must too.
  • My positive contribution: bartPE has been mentioned; we make heavy use
    of the Ultimate boot CD (UBCD) since it has both memtest and HDAT2 on
    it, the best hdd diagnostic tool we've found: http://www.ultimatebootcd.com
  • bleepingcomputer.com called Combofix.exe
  • Secunia Personal Software inspector, https://psi.secunia.com/
  • Intel(R) Regimented Potential Incident Examination Report (RPIER), http://sourceforge.net/projects/rpier
  • No one mentioned any tools along the lines of toolbars or browser plugins
    Netcraft anti-phishing (not yet updated for FF 3.0), http://toolbar.netcraft.com/
  • NoScript (though it can initially be annoying to the average user), https://addons.mozilla.org/en-US/firefox/addon/722
  • Errata Security AxBan, ActiveX Kill Bits, http://erratasec.blogspot.com/2008/05/new-axban-feature.html
  • 1) Ewido Micro - Ewido malware scan without installing full client
    (will need an Internet connection to download updates)
    http://download.ewido.net/ewido_micro.exe
  • 2) Sysclean - SysClean utility - Standalone virus scanner similar to
    Stinger but detects all known variants that Trend Micro can detect
    http://www.trendmicro.com/ftp/products/tsc/sysclean.com
  • SysClean virus definition file - select the LPT***.zip to download
    http://www.trendmicro.com/download/viruspattern.asp
    Place sysclean.com and the unzipped LPT file from LPT***.zip
    into a folder.
    Double click sysclean.com to start the scan
  • 3) SCSCleanWipe - Removes version of Norton (Symantec) Antivirus
    Corporate Edition (9x,ME,NT,2k,XP)
    For failures with add-remove
    http://www2.etown.edu/its/downloads/SCSCleanWipe.zip
  • 4) CleanUp! - Cleans temp files, browser cache and prefetch of a
    Windows computer (for all accounts)
    http://www.stevengould.org/index.php?option=com_content&task=view&id=15&Itemid=69
  • 5) KillBox - Delete files that won't delete normally
    http://www.bleepingcomputer.com/files/killbox.php
  • 6) MCPR.exe - Removes versions of Mcafee suites and applications
    For failures with add-remove
    http://service.mcafee.com/FAQDocument.aspx?id=107083&lc=1033&pf=1
  • 7) Norton - Removal Tool uninstalls all Norton
    2008/2007/2006/2005/2004/2003 products and Norton 360 from your
    computer
    For failures with add-remove
    http://service1.symantec.com/Support/tsgeninfo.nsf/docid/2005033108162039
Cal Frye's Stuff

 Cal
 Frye's
 Stuff

These Tools are provided for handy reference and their use is entirely at your own risk. I do not suport these applications, and have had nothing to do with their development. You probably can't afford my hourly rate for system cleaning, either.

You're On Your Own.
Good Luck!
Thawte web-of-trust
Page Created 25 June, 2008
Last Update 25 June 2008