How to beat spyware, step-by-step (Part 2)

Mon Aug 7, 2006 6:55AM EDT

See Comments (38)

(Continued from Part 1)

If you've gotten this far, you have a more serious spyware infection. All is not lost, but we've got some more tricks that might fix you up. At this point, make sure all of your data is backed up (to the extent possible), because drastic steps may soon be required.

5) Run HijackThis. HijackThis is a free software tool that scans your computer to find homepage hijackers, one of the most common types of spyware applications right now and the type that standard spyware software is least likely to be able to remove). Scroll down to "Official downloads" to download the tool. Next, simply open the ZIP file you downloaded, extract the application, and run the tool (you don't need to install it). Click the "Do a system scan and save a logfile" button. You'll receive a large text file as well as a dialog box (pictured) which gives you a list of active software processes, which you can then choose to delete. Unfortunately, this list includes both helpful and unhelpful software, so don't just start deleting items. Continue in step 6 to figure out how to fix your spyware infection.

6) Post your log file online. Visit this page, which offers a list of forums staffed by volunteers who can help you interpret your HijackThis log. The SWI Forums are especially busy, but most of the forums on the list are equally apt. And if you click the previous link, you'll see a "Malware Removal" forum which has over 50,000 topics listed: Those are all people like you who are seeking help getting rid of spyware. Register for an account, read the FAQ, then visit that Malware Removal forum, and post a new topic. Paste the content of the text file you created in step 5 into this topic and (politely) ask for help. You will get a response from a volunteer helper, typically within 3 days. You'll be given specific advice on what entries to remove with the HijackThis tool, and you might be pointed to additional software to run to help remove common spyware infections. Follow all the instructions and keep working with the forum helpers until either you or they give up. (And no, don't send your log file to me. I am not nearly the spyware removal expert that these guys are.)

7) Try System Restore (Windows XP only). If that doesn't work, you might try running Windows System Restore to roll back your OS to a time before the infection happened. This isn't foolproof: You might not have System Restore turned on, or the spyware might have shut System Restore off, as well. But it's worth a shot. System Restore can be found under Start > All Programs > Accessories > System Tools > System Restore.

8) Give up and wipe your hard drive. At this point, you've exhausted all the options I know of. You might try again at step 6 to make sure you've done everything you can to salvage the PC. Forum helpers will often work with you for weeks to help fight a spyware infection, but there are tens of thousands of possible variants out there, with new ones cropping up every day. It's just not possible to clean them all, every time. Sometimes the only thing you can do is call it quits, reformat your hard drive, and reinstall your OS. Again, make sure you have your backups ready and verified. Once you're up and running, reinstall your antivirus and anti-spyware applications, and stay vigilant against infection. Good luck.

Comments on How to beat spyware, step-by-step (Part 2)

Post a Comment

Join in the discussion. Here you'll see the comments in the order they were posted.

  • 26 Posted by renalator on Thu Sep 3, 2009 8:36PM EDT Report Abuse

    stargazingoyster said: "So you couldnt run wine winehq or codeweaver to run all your windows apps on Linux? Might want to think about what ya just said." And why would I want to depend on another program to run one program? And who would the average person turn to for help? http://search.cert.org/query.html?col=certadv&col=vulnotes&qt=linux&charset=iso-8859-1 As for the other linux guy who said his Windows rebooted 1500 times. Maybe the user needs to learn about windows. My XP box has been up and running since about 2003 no bluescreens either. Remeber to only use signed drivers and you will not have bluescreens. Our Suse Linux server neede rebooted at least once a month running Bynari Mail. Now our MICROSOFT 2003 server with Exchange 2007 has been up and running none stop since it's deployment for about 42 days. My WINDOWS file server 112 days. So the point is Windows works great as long as the end user is responsible and you buy the right hardware, which is really easy.

  • 27 Posted by spazticmiki on Thu Sep 3, 2009 9:35PM EDT Report Abuse

    I've reformatted my hard drive in the past after I've updated Norton Anti-Virus (it updates then asks me to restart my computer, and when I do, the Auto-Protect feature doesn't turn on and is permanantly turned off for whatever reason). I've had many different anti-spyware and virus things on my computer but whenever I update it, it turns off for whatever reason. When I first got my computer, I used Limewire but I formatted my computer since then and it's been goin' down the toilet ever since. Currently I'm running PrevX, Norton Anti-Virus, Spyware and Internet Protection, and other various anti-Junk programs...anyone got a clue as to what could be goin' on? Every time my comp asks me to update, I dred having to format my comp again because I have so much crap on it that I have to back up....

  • 28 Posted by dmbacskay on Thu Sep 3, 2009 3:45PM EDT Report Abuse

    Limewire was your problem... your just asking for trouble... that and your free porn sites... Come on people you are trying to get free music and software... and want free porn... you get a bug... just like in real life... nothing is free. (this is for your novice everyday users)

  • 29 Posted by bevfelix@sbcglobal.net on Thu Sep 3, 2009 3:06PM EDT Report Abuse

    You have to be really careful about using "free" spyware off the internet. These can be fraudulent, make you think they're working by posting false positives, and install malware like keyloggers, etc. I tried one; it didn't get rid of the hijacker home page problem I had so I went to the store and bought PC Tools Spyware Doctor for about $30.00. Despite the fact that I had been running Norton Antivirus (with automatic updates), this program still found a number of spyware infections, and the free spyware I downloaded was noted as a Fraudulent Spyware. It fixed the problem I had. Creating malicious software and then providing "free" fixes on the internet which lead to worse infections are a method some hackers use to steal your information and wreak havoc with your computer.

  • 30 Posted by abronto4900 on Thu Sep 3, 2009 2:44PM EDT Report Abuse

    Huh. I've been using MacAfee for years. I just renewed/updated it, and it told me to uninstall Spybot, AdAware,Spyware Blaster, Windows Defender before installing the new MacAfee version, due to 'incompatibility'. I asked a MacAfee tech if I could scan with any of these others manually occasionally, but not set them to run automatically, and she said no. Any thoughts?

  • 31 Posted by geschoss@sbcglobal.net on Thu Sep 3, 2009 4:08PM EDT Report Abuse

    Question: HOW DO I KNOW IF I HAVE SPYWARE ON MY COMPUTER? Answer: If you are running Windows you have spyware on your computer. If you are running Linux you do not.

  • 32 Posted by armilio@sbcglobal.net on Thu Sep 3, 2009 2:57PM EDT Report Abuse

    I wish this was here last week. Just bought a new computer, because I had a virus on my dell. Had Norton protection but A T & T advised me to uninstall it because it was slowing down my programs. I thoght that they had me load up something else, but I was unprotected. A T & T loaded Norton back up for me but they couldn't get rid of the virus. I ran Norton scan and it said that I had no problems. I found a couple of other scan and fix programs on the web but they only cleared up some of the virus. At least it stopped the pop-ups.

  • 33 Posted by mvccstudent@sbcglobal.net on Thu Sep 3, 2009 7:31PM EDT Report Abuse

    Adware/Spyware and viruses are two different things. My McAfee scans for both. I think I'm using version 7 of the Internet security suite. It includes the A/V software, Spyware detector, Firewall and other stuff that I don't bother with. It autoupdates every night and does a full scan everynight on both of my HD's. I also have the Google toolbar and it's pop-up blocker. Between them all, I've been problem free since 2005. I used to run Norton's equivalent, but it missed too many viruses. The new, I think it's version 10 of McAfee isn't too good though. Oh, and I'm an A+, Network+, CCNA and Security+ certified, too. The best thing of it all is, I haven't needed anything except the McAfee and the pop-up blocker.

  • 34 Posted by mvccstudent@sbcglobal.net on Thu Sep 3, 2009 7:31PM EDT Report Abuse

    And as others have pointed out, I took the time to learn about computers. I make great $$$ going to people's houses to just run Avast A/V off my U3 drive to clean their drive and then set up their network for them. As usual, I tell them to purchase some A/V software and keep it updated, but they'll be calling me back within a couple of months. Especially the people with kids. As for Limewire, you're not going to get any virus from an .mp3 file. Download anything else on there though, (apps, zip'd files, screen savers, etc.) and you'll end up with a problem. You Mac users wouldn't even have a computer if MicroSoft hadn't bailed the company out with a huge chunk of money. So don't be too cocky. They might want to start collecting their payments.

  • 35 Posted by joanneraymond@sbcglobal.net on Thu Sep 3, 2009 4:37PM EDT Report Abuse

    This was the best advice I have ever got since using the internet. Your the first email I read for the day. Where would the world be without you?

  • 36 Posted by dherberg2002 on Thu Sep 3, 2009 3:42PM EDT Report Abuse

    If you can wade through some of above the slanted comments the advice on malware removal is exellent. Also look for and run SmitfraudFix in Safe Mode. Uncheck 'Indexing' on your hard drive properties. You can remove spyware all day long but the indexing feature will bring it right back every time.

  • 37 Posted by it24by7 on Wed Aug 26, 2009 1:13PM EDT Report Abuse

    I had XP Security Center Virus on my computer. I contacted IT24BY7, http://www.it24by7.com And they removed it for me. I really like their computer support service.

  • 38 Posted by kapwinnnng on Fri Oct 30, 2009 10:36AM EDT Report Abuse

    I prefer Malwarebyte's Anti-Malware. We use it at work frequently, and I use it on my friends computers when they catch something nasty. There is a free version, and a pay version. Not sure what the difference is because I always use the free one. I've been able to remove everything from the XP Security Center 2009, and the Koobface virus to the Trojan.vundo and other things Symantec and everyone else else seems to have trouble fixing. http://www.malwarebytes.org/ Best of luck!

More Posts: First Prev 1 2 3 Next Last

Post a Comment

Sign In to Post a Comment

My Tech

Please enable your browser's cookies to activate the My Tech column.

Also on Yahoo! Tech

Computers Home Office Wi-Fi & Networking Phones & PDAs Cameras & Camcorders TV & Home Theater Portable Audio
 

Site Map | Tour | Subscribe to Yahoo! Tech

Question and Answer content at Yahoo! Tech is written by Yahoo! users at Yahoo! Answers. Yahoo! does not evaluate or guarantee the accuracy of any Yahoo! Answers content. For more information, read the Full Disclaimer.

Opinions expressed by the Advisors are their own and do not necessarily reflect the views of Yahoo! Inc. Yahoo! receives no compensation from any manufacturer or distributor nor does it compensate any Advisor for the coverage of any product or service in any Advisor's content.