Malware Removal

1. Turn off System Restore, delete all restore points (those are now infected!) 2. Turn off any System Protection (windows defender, etc) 3. Run msconfig.exe, choose safe boot w/ networking from “Boot Options” (or just press F8 on startup to boot into safe mode) 4. Ensure that all malware removal tools are up to date with latest definitions 5. Use appropriate tools to remove infections a. Terminate malicious processes b. Remove Malware, Trojans, Rootkits, Rogue Software, any malicious files, etc c. Remove Adware, PUPS, browser redirects etc. d. Use CCleaner to clean up leftover registry and system files e. Restart often, rescans necessary if machine is heavily infected 6. Once you are sure machine is clean, run msconfig.exe and untick safe boot, Restart PC 7. Uninstall any tools you might have installed 8. Update Plug ins, browsers, run windows update, etc. 9. Update System Protection/Anti-Virus definitions 10. Turn on System Restore, create new Restore Point 11. Check overall system functionality

Malware Removal Tool Kit

THIS LIST CREATED 7/13/2016 ***MAKE SURE YOU ARE RUNNING THE LATEST VERSION OF EACH TOOL***

TOOL USE AdwCleaner Deletes Adware, Toolbars, Potentially Unwanted Programs (PUP), and browser Hijackers CCleaner Removes unused files from your system allowing Windows to run faster and freeing up valuable hard disk space. It also cleans traces of your online activities such as your Internet history and contains a fully featured registry cleaner. ComboFix Scans your computer for known malware, and when found, attempts to clean these infections automatically Emsisoft Emergency Kit Collection of standalone security programs and scanners that can be run from a USB key, bootable CD/DVD, or from within Windows Safe Mode without having to download and install a full security product. This program is very useful for infections, such as Ransomware, that cannot be removed while the infections are active or while logged into Windows. Farbar Recovery Scan Tool Diagnoses malware and boot issues Farbar Service Scanner Diagnoses network connectivity issues due to corrupted or missing Windows services HiJack This Diagnoses malware and adware issues Junkware Removal Tool Removes common adware, toolbars, and potentially unwanted programs (PUPs) Malware Bytes Finds and removes malware/rootkits RKill Ends malicious processes so you may effectively clean an infected machine RogueKiller Removes malicious processes and programs TDSS Killer Removes a number of rootkits

*make sure you know which order to use these tools