Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

boot environment anti-malware application?


  • Please log in to reply
16 replies to this topic

#1 TsVk!

TsVk!

    penguin farmer


  • Members
  • 6,232 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:06:53 PM

Posted 18 June 2017 - 04:32 PM

So now Hitman Pro Kickstart has been discontinued is there any decent boot environment antimalware applications available?



BC AdBot (Login to Remove)

 


#2 jwoods301

jwoods301

  • Members
  • 1,489 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:53 AM

Posted 18 June 2017 - 04:43 PM

I would recommend Emisoft's Emergency Kit -

 

https://www.emsisoft.com/en/software/eek/



#3 TsVk!

TsVk!

    penguin farmer

  • Topic Starter

  • Members
  • 6,232 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:06:53 PM

Posted 18 June 2017 - 05:19 PM

Thanks, I'll check it out.



#4 JohnC_21

JohnC_21

  • Members
  • 23,622 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:53 AM

Posted 18 June 2017 - 05:23 PM

Kaspersky Rescue Disk together with Windows Unlocker. If attached via Ethernet Kaspersky will autoupdate the definitions.

 

https://support.kaspersky.com/viruses/disinfection/8005#block3

 

Edit: I can't believe Sophos got rid of Kickstart. 


Edited by JohnC_21, 18 June 2017 - 05:24 PM.


#5 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,399 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:04:53 AM

Posted 18 June 2017 - 05:42 PM

List of Anti-virus vendors that offer free LiveCD/Rescue CD utilities


.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#6 TsVk!

TsVk!

    penguin farmer

  • Topic Starter

  • Members
  • 6,232 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:06:53 PM

Posted 18 June 2017 - 05:53 PM

I'm highly disappointed about the end of Kickstart Hitman too JohnC_21

 

I found that Emsisoft Emergency Kit wanted to update online before running (computer is isolated behind proxy and I'm not going to let the malware call home), did like being configured from a 2nd machine and run in safe made from the command prompt. Wants to be installed and updated locally, which isn't going to happen in this situation.

 

I'm trying ESET Sysrescue now.

 

Hoping that I can find something that will take the place of Hitman Kickstart.



#7 JohnC_21

JohnC_21

  • Members
  • 23,622 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:53 AM

Posted 18 June 2017 - 05:59 PM

It's not required that Kaspersky be updated. They are fairly good and updating the iso file with definitions on a regular basis. It does use linux for the boot environment. One of the things I like on the rescue disk is the ability to edit the registry offline.



#8 TsVk!

TsVk!

    penguin farmer

  • Topic Starter

  • Members
  • 6,232 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:06:53 PM

Posted 18 June 2017 - 06:17 PM

Thanks, it's nice to know about the offline reg editor.

 

As Kaspersky runs a live Linux GUI environment I can network it out on the net. Unfortunately an updated Kaspersky desktop installation isn't detecting the parent process in this instance, just the children it is creating.

 

I'll see how the ESET scanner goes, scanning now. Their on demand cloud scanner is very good... so here's hoping.

 

I may have to end up trying as few.



#9 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,399 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:04:53 AM

Posted 18 June 2017 - 06:22 PM

Sophos Clean is built on HitmanPro technology so there was no need for them to keep a separate program costing additional financial resources. However, at this time it is not intended for the Home user.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#10 TsVk!

TsVk!

    penguin farmer

  • Topic Starter

  • Members
  • 6,232 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:06:53 PM

Posted 18 June 2017 - 06:28 PM

TYVM Quietman :thumbup2:



#11 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,399 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:04:53 AM

Posted 18 June 2017 - 06:30 PM

You're quite welcome.


.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#12 TsVk!

TsVk!

    penguin farmer

  • Topic Starter

  • Members
  • 6,232 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:06:53 PM

Posted 18 June 2017 - 08:08 PM

ESET Sysrecsue failed to locate the malicious process.

 

Sophos Clean is not bootable, but does have proxy settings that work and did find and kill the issue. :thumbup2:



#13 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,399 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:04:53 AM

Posted 19 June 2017 - 04:35 AM

Glad to hear that. I also heard that Dr.Web LiveCD was very good too.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#14 TsVk!

TsVk!

    penguin farmer

  • Topic Starter

  • Members
  • 6,232 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:06:53 PM

Posted 19 June 2017 - 04:42 AM

I spoke to someone at the Sophos team today and they provided information to make Sophos Clean bootable. There were huge caveats though and warnings to be used really as a last resort. I'm tempted to run it on a test machine to see if it's really as dangerous as promised.  :lol:

 

I'll check out Dr Web too, thanks. It's been a while since I've explored these things.



#15 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,399 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:04:53 AM

Posted 19 June 2017 - 04:45 AM

If you test Sophos Clean, let us know how it works.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users