John D. Steel's

    Discount Computer Services


                      Spyware and Virus Removal


1. If spyware and/or virus infection is very bad, you may want to consider using Windows XP System Restore to restore the PC to a point before you detected spyware or virus activity. This will not completely remove the malware, but will be a great head start in removing the viruses and spyware. If this is not an option, you may want to remove the hard drive and scan it in another PC.

2. Boot PC in "Safe Mode with Networking Support" as Administrator. Run Add/Remove Programs and remove any suspect software.  Smitfraud is a Trojan that displays false alerts or error messages that attempt to trick the user in purchasing bogus antispyware programs. If this is occurring, you will want to run Combofix.

3. Run Disk Cleanup.

4. Install "Spybot Search and Destroy" and "Malwarebytes". Update definitions and run scans.

5. Update antivirus definitions and run a scan.

6. Install  Hijack This and configure.  I have never posted a Hijack this log. I use Google and Websites like www.bleepingcomputer.com to determine what files are spyware or viruses.
 
7. If there are multiple profiles( more than one user logs onto the PC), log off as Administrator and log on as one of the other users.  Run antispyware scans again. Do this for all profiles.

8. Disconnect PC from Internet. Reboot PC in Normal mode. Install an other antivirus program. This should be downloaded from the Internet on an other PC and burned to CD or copied to a thumb drive.  If you do not already have  Windows Defender, download this as well and install it. Run scans.

9. Reboot PC and run a test scan. If you still have viruses or spyware, you may need to research these on the Internet and either find a tool to remove the malware or get directions to remove it manually.  You may need to boot in Safe Mode to delete the files. Look in "Program Files" and "System32" folder for any signs of malware.

10. Reboot PC and run a test scan. This could be an online scan.

11. Repeat steps 9 and 10 until scans do not detect any malware.

12. You should have at most one antivirus program  and one antispyware program that has an active shield. Remove any extra programs that were loaded.

13. Delete quarantine files in antivirus and antispyware programs.

14. Reboot PC. If PC boots without any errors, turn off/on "System Restore". Create a new "System Restore" point.

15. Modify Internet Explorer Security settings. Increase security settings. Many viruses lower the settings to download more viruses and spyware.

16. Run Microsoft Updates.

Google
 
More Information


BleepingComputer File DB
Combofix
Fake Spyware Removal Programs
Glossary - Security
Keylogger Information
Hijack This Tutorial
Online Scan - McAfee
Online Scan - Symantec
Online Scan - Trend Micro
Online Scan - Webroot
Preventing Malware - Major Geeks
Prevention Tips - McAfee
Processes
Removing Malware - Major Geek
Security Threat Report - Sophos
Smitfraud Removal Procedures
Spyware information
Suspect Antispyware Programs
Virus Definition and History
Virus History
Virus Encyclopedia
Virus News
Windows Defender

 













AVG Antimalware Image

AVG Antivirus - $51.99 for a 2 year subscription. Buy now.                  
                                                  
About Us ServicesProductsSupportSolutions Contacts
Copyright © John D. Steel's           Discount Computer Services 2007

                              Privacy Statement