Which Boot-CD to Disinfect My Son's PC?

[appzter]

My son's PC is badly infected (running extremely slow and the browser has been hijacked)! Running a full scan with his installed Norton AV doesn't find/fix the problem, so I'm thinking that my best bet is to boot his PC with a Antimalware Boot CD to catch the malware in a 'dormant' state.

Can you recommend one that might do the job that I can download?

[user@nsaneforums]

http://rescuedisk.kaspersky-labs.com/rescuedisk/updatable/kav_rescue_10.iso

http://download.bitdefender.com/rescue_cd/

http://www.emsisoft.co.uk/en/software/eek/

[appzter]

Thanks User!!! Do you have any personal experience using any of them?

[AlienForce1]

Thanks User!!! Do you have any personal experience using any of them?

Depends on your pc`s configuration (Kaspersky is a little heavy on resources) - but I recommend you to use the first two .

[A.lemane]

Thanks User!!! Do you have any personal experience using any of them?

Depends on your pc`s configuration (Kaspersky is a little heavy on resources) - but I recommend you to use the first two .

totally agree

[appzter]

Thanks User!!! Do you have any personal experience using any of them?

Depends on your pc`s configuration (Kaspersky is a little heavy on resources) - but I recommend you to use the first two .

Given that it's a Kaspersky boot-cd I don't understand your remark about system resources - am I missing something?

[unknownasphyxiated]

My son's PC is badly infected (running extremely slow and the browser has been hijacked)! Running a full scan with his installed Norton AV doesn't find/fix the problem, so I'm thinking that my best bet is to boot his PC with a Antimalware Boot CD to catch the malware in a 'dormant' state.

Can you recommend one that might do the job that I can download?

badly infected = reinstall windows

i don't think you need to use rescue disk

you can try malwarebytes if you want

better than norton when dealing with browser hijack

[Karamjit]

My son's PC is badly infected (running extremely slow and the browser has been hijacked)! Running a full scan with his installed Norton AV doesn't find/fix the problem, so I'm thinking that my best bet is to boot his PC with a Antimalware Boot CD to catch the malware in a 'dormant' state.

Can you recommend one that might do the job that I can download?

badly infected = reinstall windows

i don't think you need to use rescue disk

you can try malwarebytes if you want

better than norton when dealing with browser hijack

never install windows first if system is badly infected. with my experience, always disinfect it first with kaspersky (recommended) or other boot cd. after this reinstall windows. the reason is badly infected system means infection in all other drives. therefore as soon as we reinstall windows....system gets infected on the spot due to other drive's infected data and registries.

[Karamjit]

Thanks User!!! Do you have any personal experience using any of them?

i always recommend fresh downloaded kaspersky rescue boot cd. use it and reinstall windows afterwards

[unknownasphyxiated]

never install windows first if system is badly infected. with my experience, always disinfect it first with kaspersky (recommended) or other boot cd. after this reinstall windows. the reason is badly infected system means infection in all other drives. therefore as soon as we reinstall windows....system gets infected on the spot due to other drive's infected data and registries.

i disagree :P

usually malware run from C

certain need autorun.inf to be effective, certain need user to execute infected file to infect

when dealing with infected pc, don't install anything from other partition of the same hdd ( common mistake )

download new antivirus installer on clean flash drive and of course not download using the infected pc > plug in > install > update > scan if you want

for me, if not sality-type virus, i don't scan at all, just wait for real-time protection to do their work

no auto infect when you startup the first time even other partition has malware ( unless if you do as stated above )

never occur to me so i might not find anything like that yet

correct me if i'm wrong ^_^

additional info

better run ccleaner before doing cleanup/scan

might shorten the time taken to complete the scan esp for temp folder etc

[dcs18]

I'm thinking that my best bet is to boot his PC with a Antimalware Boot CD to catch the malware in a 'dormant' state.

Don't waste your time - if you have a system-wide backup image, restore from it.

If not, just perform a fresh, clean and full re-install. ;)

[Skunk1966]

1-download Adwcleaner: http://www.bleepingcomputer.com/download/adwcleaner/

-read the article on that page about how to use it and let it scan your system

-when the scan has finished go through all items found and uncheck things that you know are safe and after that click "Clean" button. When finished reboot your pc

2-download JRT: http://www.bleepingcomputer.com/download/junkware-removal-tool/

-read the article on that page about how to use it and let it scan your system. Follow instructions from the tool

3-run a full system scan with Malwarebytes Anti-Malware. If it still finds anything remove those items

4-run Adwcleaner again and scan for infections. After scanning uncheck all items known by you to be safe. If nothing new has been found click "Uninstall" button.

5-download Privazer: http://privazer.com/download.php+ User guide: http://privazer.com/support.php

-scan and clean your system with the program

This should solve your problems

[humble3d]

This is usually the best practice... ;)

I'm thinking that my best bet is to boot his PC with a Antimalware Boot CD to catch the malware in a 'dormant' state.

Don't waste your time - if you have a system-wide backup image, restore from it.

If not, just perform a fresh, clean and full re-install. ;)

[Skunk1966]

This is usually the best practice... ;)

I'm thinking that my best bet is to boot his PC with a Antimalware Boot CD to catch the malware in a 'dormant' state.

Don't waste your time - if you have a system-wide backup image, restore from it.

If not, just perform a fresh, clean and full re-install. ;)

I always try to clean infected systems first and a full re-install is always my last resort (<-- only when Windows is damaged too much)

[dcs18]

This is usually the best practice... ;)

I'm thinking that my best bet is to boot his PC with a Antimalware Boot CD to catch the malware in a 'dormant' state.

Don't waste your time - if you have a system-wide backup image, restore from it.

If not, just perform a fresh, clean and full re-install. ;)

I always try to clean infected systems first and a full re-install is always my last resort (<-- only when Windows is damaged too much)

Many moons ago, when I was an unemployed bum with a lot of time on my hands, I recollect having this same approach of trying to clean infections first.

[Skunk1966]

This is usually the best practice... ;)

I'm thinking that my best bet is to boot his PC with a Antimalware Boot CD to catch the malware in a 'dormant' state.

Don't waste your time - if you have a system-wide backup image, restore from it.

If not, just perform a fresh, clean and full re-install. ;)

I always try to clean infected systems first and a full re-install is always my last resort (<-- only when Windows is damaged too much)

Many moons ago, when I was an unemployed bum with a lot of time on my hands, I recollect having this same approach of trying to clean infections first.

Most of the time I'm succesfull

[dcs18]

This is usually the best practice... ;)

I'm thinking that my best bet is to boot his PC with a Antimalware Boot CD to catch the malware in a 'dormant' state.

Don't waste your time - if you have a system-wide backup image, restore from it.

If not, just perform a fresh, clean and full re-install. ;)

I always try to clean infected systems first and a full re-install is always my last resort (<-- only when Windows is damaged too much)

Many moons ago, when I was an unemployed bum with a lot of time on my hands, I recollect having this same approach of trying to clean infections first.

Most of the time I'm succesfull

I used to fail - most of the time (but, enjoyed the rare moments of successes - besides, I was learning at a very fast rate.)

Around 6 years ago, I also learned that those few success were not really so - the traces which I thought I had cleaned up successfully had actually left behind rootkits.

Have changed my approach since - made it a practice to perform full system-wide backups on a daily basis (sometimes twice a day - if required.) A restore takes 12 to 14 minutes and brings a sound sleep - the success is guaranteed of being free from gifts like rootkits and have never seen anyone clean up infection within that short span of time.

Not to forget - those very same backup images get cloned and deployed across to a wide host of Customers (without nightmares about rootkits.) In business, time is money - besides, one cannot afford to gamble with an 100% success ratio.

[rudrax]

I don't think after such infection, dis-infecting will bring peace.

First of all, how the PC gets infected while there was a real-time AV protection was running? There could be two cases - either the AV failed or your son compromised for a piece of cheese. This is important to investigate as this will prevent the PC from later infection. If your AV failed, change the vendor and if your son compromised, spank his ass.

The only solution that will bring complete peace of mind in this case is a reformat.

Back up all the data you want (avoid .exe files if possible)

Insert windows disc.

Boot and delete all patitions.

Wipe the drive.

Create partition(s).

Instal windows.

Instal drivers.

Instal AV.

Instal updates.

Connect the backup drive.

Scan it and delete all the files that are infected.

[Skunk1966]

I don't think after such infection, dis-infecting will bring peace.

he only says that his browser got hijacked so it may not be as bad that he would need to format and re-install windows

[knowledge-Spammer]

just use malwarebytes and hitman pro

[dMog]

let his computer sit got for 20 day unusable...just so he knows not to go the shite web sites that infected it in the first place....

[jimbojet2011]

Maybe a boot CD for recovering data but just format the system and reinstall Windows!!!!!!!!!!!!!!

[212eta]

If you have kept backups of personal files away from PC,

-and therefore you do Not need to recover them from the infected system-

it is better to perform a clean install.

[AlienForce1]

Thanks User!!! Do you have any personal experience using any of them?

Depends on your pc`s configuration (Kaspersky is a little heavy on resources) - but I recommend you to use the first two .

Given that it's a Kaspersky boot-cd I don't understand your remark about system resources - am I missing something?

Try them both - (Kaspersky and Bitdefender) BootCD-s and you`ll convince yourself that Bitdefender is a little faster and lighter on resources...

If I were you , I would give up Norton - there are almost 2 years since it is ranking last and failing most of the independent AV tests .

There are a lot of better choices , some even free ...

[appzter]

Hey guys, thanks for all of those suggestions. While there's quite a bit of disagreement amongst you, I think I'm prepared to checkout my son's system (when he returns from college next week)...

...and yes, I am very surprised (and disappointed) that his installed and active Norton 2014 allowed that nasty to do its thing!!!

appzter