I'm running into many computers that have a version of CWS or other hijackers and pests that are resistant to the above products. I saw mention of FindNFix in another thread, but it apparently is not publicly available. I often use HijackThis to get a look at what may be happening in the background, but I am never able to spend the time necessary to send it's log in to have someone else analyze it. Other than using tools like AutoRuns (from Systernals) to try to determine what is starting with the system, are there any other recommended _automated_ tools that may help in ferreting out these beasties?

I predominantly do everything by hand. I paste the log into notepad, and start eliminating those items I know are bad. They I use Pacmans offline reader in conjunction with some other online references to find out what some of the processes are.

We have compiled a list of reference sites, including a link to the offline reader, that you can take a look at :

http://www.bleepingcomputer.com/forums/ind...p?showtopic=405