Spyware Removal Guide
Guide to removing spyware malware adware trojans worms and hijackers
Ultimate Guide to eliminating and preventing spyware/adware/malware and more
Here is my step by step guide on eliminating and preventing Spyware/Adware/Malware/ and Trojans/Browser Hijacking/ Worms / HTML exploits.
I'll list the programs I use ( all FREE!) and the download sites with a brief description.
Spybot Search and Destroy:
#1 Get this - use it. Spybot not only finds and eliminates major spyware, browser hijacks, and other bad stuff - IT BLOCKS IT!! Use the Immunize Feature and tell it to block silently. It will block most of the bad stuff with out ever having to get involved. Great tool. Must have! Download link is below.
Download Spybot Search & Destroy
Spybot Search & Destroy Homepage
Adaware SE (by Lavasoft)
#2. This is great for eliminating all adware. It goes deeper than Spybot in search of Adware, but does not go after anything else. This is also passive software. You have to run it once a week or once a month. It will not actively block, it will look when told and eliminate as directed. Very good. Get the free version here:
Download Adaware SE from CNET.com
Winpatrol
This is another active blocker. Winpatrol actively watches to see if anything is being installed or if changes are being made in critical areas like your registry. If it sees any activity it asks you if you want this to happen, say yes when installing new software, and say no for everything else. Between Spybot and Winpatrol it is almost impossible for anything to get added to your system. None of the programs will stop or cure viruses. Download Winpatrol (Scotty) here:
Ewido Antispyware (by AVG)
Devoted primarily to detecting and preventing data and system espionage and fights harmful programs such as trojans, dialers, spyware programs and key loggers. It starts where virus scanners and firewalls leave off and represents a supplement to existing security systems.
After intial 30 day trial you can continue to use a limited version as freeware. The limited freeware version is an excellent spyware/adware/malware scanner and remover. Ewido was taken over by AVG and will be renamed AVG Antispyware in the future.
HijackThis (by Merijn.org)
A general homepage hijackers detector and remover, expanded with almost a dozen other checks against hijacker tricks. It is continually updated to detect and remove new hijacks. It does not target specific programs/URLs, just the methods used by hijackers to force you onto their sites. As a result, false positives are imminent and unless you are sure what you're doing, you should always consult with knowledgeable folks (e.g. the forums) before deleting anything. This is a great tool for creating a log of your current system so you can compare later to find any intrusive programs that slip through the security net.
Hijack This User Help Forum (post your Hijack This log and get free help!)
CWShredder (by Trend Micro)
A small utility for removing CoolWebSearch (aka CoolWwwSearch, YouFindAll, White-Pages.ws and a dozen other names). Spybot S&D and Ad-aware tend to forget essential parts of the hijack, so until they update, you can use this to completely remove the hijack. This program is updated to remove the new variants once they come out.
CWS is one of the WORST spy tools out there. It morphs on a regular basis. This is one bad cat. You only need to run this once in a while after you put in Spybot and Winpatrol. Good to run before installing either. Download for free here:
NOTE: If you download a file or program from the internet or your e-mail and then run it, that is your GREATEST RISK of getting a virus, trojan, worm, keylogger, spyware, malware, adware, or other malicious attack on your computer. Spybot and Winpatrol will help by actively guarding while your computer is running, but even if they are 90% effective, you still run a major risk of losing all your data or having your personal and financial information stolen. The best thing to do is not download any file that does not come from a place you consider safe, and scan every file before it is opened with a good antivirus program.
By running the three programs I have listed above you will significantly increase the performance of your computer and your security.
Here is a step by step guide to a clean PC:
1. Use a router. Even if you have only one PC get a router. This provides you with a hardware fire wall which will thwart most hacking attempts.
2. Install an antivirus program. If you can not afford an antivirus program don't worry, below is a list of completely free antivirus programs that are the top in the industry!
Pick one. Only one! Antivirus programs often conflict with each other. Having two or more will not make you twice as safe, it will mean you will cause a problem for your computer.
After selecting one, download it, install it, and then set it to do a FULL SCAN of your ENTIRE COMPUTER. This can take anywhere from 30 minutes to a few hours depending on how many files you have on your computer.
Here are some FREE! antivurs programs ( no exscuse not to have one now!)
Avast! Home Edition ( my personal favorite - also protects instant messaging, p2p, ftp, and many more..)
Clam Antivirus ( another great AV that also comes in a portable edition for USB drives)
AVG Antivurs and Antispyware ( highly rated by users)
AOL Antvirus ( not only is it free but it got top scores in independent tests)
Pandasoft Antivurs and Spyware scanner (online scanner)
or check for one you like from this list
Wikipedia List of Antirus Programs
Remember, run a FULL SCAN of every file and every drive. Save the log that is generated at the end.
3. After you have done a full antivirus scan back up your computer. Make a system restore point by going to Start - All Programs - Accesories - System Tools. Select System Restore. Select "Create Restore Point" and then select next. You will be asked to name your restore point, call it " Before Spyware Scan - date". Actually put in the date , i.e. 10/1/2007, don't be a dope and write the word date, then select next. You now have a restore point just in case. It's also a good idea to back up any critical files and save them to disk. This is a good idea anyway, its just a precaution. It's like having car insurance, you don't plan on having an accident, but you want to be protected just in case.
4. Download all the programs I listed above ( no, not all the antivurs programs. We already discussed that, you only need one of them.)
5. Install CWSShredder. It will ask if you want to update. Say yes. Run it and it will automatically kill any CWS tools it finds.
6. Disconnect from the internet. You won't be able to do some updates you need but that is okay.
7. Install Adaware and run a complete custom scan. Have it delete everything it finds. This may cause you to have to log onto some websites where you asked to have your logon saved. It is a small price to pay to have to log on one more time. Clean it ALLL. I believe you right click on one of the identified problem files and choose delete all.
8. Install Spybot Search and Destroy. Run a complete scan. Delete everything it finds that it considers a threat. Then immunize.
9. Install Ewido. Run a complete scan. Delete everything it finds that it considers a threat.
10. Install Winspy (Scotty) - this program does not scan your HD. It looks for new threats by monitoring new installs.
11. Install Hijackthis. The free version only allows you to log your system, but that is fine. Create a log and save it. It is a good idea to do this once in a while ( at least twice a year and save as a new file i.e. hijackthislog4-25-2005). Go to the User Help Forum listed above and post your log. A very helpful group of people will let you know what the log file is saying and what you need to do. Follow their advice.
11. Reboot your computer and access the internet.
12. Update Spybot Search and Destroy. Download all updates. Immunize with new updates, Run another scan and destroy anything the new updates found.
13. Update Adaware. Run full scan and delete any additional files it finds.
14. Run Hijackthis and create another log if anything was found by Spybot or Adaware.
15. Use a software firewall like the one that comes with Windows XP and Vista or get a third party firewall. There are dozens of free and paid firewalls available.
16. Defrag your hard drive.
This process will make your computer faster and safer. You will eliminate any current threats and block 99.9% of new ones. These are important steps to protect your computer, your data, and stop identity theft.
You are now free to surf the web. Make sure your antivirus, Spybot, and Winpatrol are always on. The internet is a dangerous place.
