ComboFix was never meant to be used
as a general purpose malware scanner like SuperAntispyware or Malwarebytes' Anti-Malware which scan individual drives or different folders on a computer for malware. Also be aware that using ComboFix is only one part of the disinfection process. Preliminary scans from other tools like DDS
should be used first because they provide comprehensive logs with specific details about files, folders and registry keys which may have been modified by malware infection. Analysis of those logs allows planning a strategy for effective disinfection and a determination if using ComboFix is necessary.
With most Adware/Junkware/PUPs it is strongly recommended to deal with it like a legitimate program and uninstall from Programs and Features (Add/Remove Programs) in the Control Panel or an alternative third party uninstaller like Revo
. In many cases, using the uninstaller of the adware not only removes it more effectively, but it also restores any changed configuration
. After uninstallation, then you can run specialized tools like AdwCleaner and JRT to fix any remaining entries they may find.
RKill is a tool primarily designed to terminate the most common malicious processes
that prevent other security tools from being executed, complete a scan or used to disinfect the system. When RKill is able to terminate malicious processes and fix certain registry keys, that action usually allows other tools to perform scans and clean up routines to remove the infection. Therefore a scan with Malwarebytes Anti-Malware or similar tool should be completed immediately after running RKill. Since RKill is not
designed to be a comprehensive malware removal tool, using it is not required in all situations. If you are able to run other security tools without them terminating, there is no need to run RKill
. However, if RKill is run separately without or after other security tools, it's log can provide useful information to help diagnose the presence of malware or report other issues as the developer (Grinler) added some basic enumeration to the tool for various infections.
While CCleaner is safe and useful for removing these temporary and junk files, I do not recommend using the built-in registry cleaning feature unless you have a good understanding of the registry
In fact, Bleeping Computer DOES NOT recommend the use of registry cleaners/optimizers for several reasons.
Please read: Why you should not use Registry Cleaners and Optimization Tools