Malware (
malicious soft
ware) includes virus, Trojan, worm, spyware, adware, rootkit, etc. Click
here if you're interested in reading more about the definitions of spyware by the Antispyware Coalition.
Your computer may be infected if you see:
- persistent popups that flood your screen
- your wallpaper has been mysteriously changed to something weird
- browser homepage is changed to something else and can't be reset
- programs nagging you to buy full version because they find lots of "risks" on your machine. You installed these from some sites or popups that jumped out of nowhere.
- computer is really really sluggish and you're sure that you have followed these steps to speed up your PC.
Now, follow these steps if you're sure your system is infected:
First thing you do is update your existing antivirus/antispyware programs and scan your computer with them.
The two
free applications that are now recommended by
PCPitstop security forum are Malwarebytes' Antimalware and SUPERAntispyware.
Download
Malwarebytes' Antimalware. Then:
- Double-click mbam-setup.exe and follow the prompts to install the program.
- At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
- If an update is found, it will download and install the latest version.
- Once the program has loaded, select Perform full scan, then click Scan.
- When the scan is complete, click OK, then Show Results to view the results.
- Be sure that everything is checked, and click Remove Selected.
- When completed, a log will open in Notepad. Please save it to a convenient location.
- The log can also be found here: C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt
Download and install
SUPERAntispyware. Then:
- Launch SUPERAntiSpyware
- Click Check for Updates and update to the latest definitions.
- Click Scan your Computer.
- Check all boxes in the Scan Location box.
- Check the Complete Scan radio button.
- Click Close.
- Click Next.
- SUPERAntiSpyware will now scan your computer, please be patient.
- When finished it will present you with a summary of its findings.
- Click OK.
- The Removal Screen will open.
- Check the items in the list to mark them for Quarantine.
- Click Next and SAS will Quarantine them.
Ideally, you should disconnect your Internet while the scans are being performed (i.e. after the updates have finished). Some crafty malware can contact their servers and receive instructions to change themselves, making it harder for them to be detected.
Once that is done, download
HijackThis. Then:
- Save HJTInstall.exe to your desktop.
- Double-click on HJTInstall.exe to run the program.
- By default it will install to C:\Program Files\Trend Micro\HijackThis.
- Accept the license agreement by clicking the "I Accept" button.
- Click on the Do a system scan and save a log file button. It will scan and then ask you to save the log.
- Do NOT have HijackThis fix anything yet! Most of what it finds will be harmless or even required.
- Click "Save log" to save the log file and then the log will open in Notepad.
- Click on Edit>Select All, then click on "Edit>Copy" to copy the entire contents of the log.
- Go to this forum and start a new thread. Registration is free.
- Make sure you explain the problem as well as mentioning that you have tried the two programs above. If you know the name of the malware that is causing the problem, please mention it in the thread title.
The
most common mistake is that the user is satisfied when the antispyware/antivirus appear to have remove the culprits. To make sure that the malware has been removed completely, you need to folllow the last step: use HijackThis, then wait for further instructions from the forum helper to verify that you're totally malware-free.
Linear Mode
