Recommendations for detecting and eliminating spyware and virus problems
Step One - Get the proper tools
Make sure you have an Anti Virus Program installed here are two I recommend:
AVG Free Anti Virus for Window
Download the following Free spyware programs
Some of the settings will need to be changed before your first scan
2. Click on the'world' icon at the top right of the Ad-Aware SE window and
let AdAware SE update the reference list file so that it will find the most
current adware and malware.
3. Once the update is finished click on the 'Gear' icon (second from the
left at the top of the window) to access the preferences/settings window
1) In the 'General' window make sure the following are selected in
green:
*Automatically save log-file
*Automatically quarantine objects prior to removal
*Safe Mode (always request confirmation)
Under Definitions:
*Prompt to update outdated definitions - set the number of days
2) Click on the 'Scanning' button on the left and select in green :
Under Driver, Folders & Files:
*Scan Within Archives
Under Select drives & folders to scan -
*choose all hard drives
Under Memory & Registry: all green
*Scan Active Processes
*Scan Registry
*Deep Scan Registry
*Scan my IE favorites for banned URL's
*Scan my Hosts file
3) Click on the 'Advanced' button on the left and select in green:
Under Logfile Detail Level: (all green)
*include additional object information
*DESELECT - include negligible objects information
*include environment information
Under Alternate Data Streams:
*Don't log streams smaller than 0 bytes
*Don't log ADS with the following names: CA_INOCULATEIT
4) Click the 'Tweak' button and select in green:
Under the 'Scanning Engine':
*Unload recognized processes during scanning
*Scan registry for all users instead of current user only
*Use permanent archive caching
Under the 'Cleaning Engine':
*Always try to unload modules before deletion
*During removal, unload Explorer and IE if necessary
*Let Windows remove files in use at next reboot
*Delete quarantined objects after restoring
*Disable manual quarantine if auto-quarantine is selected
Under Safety Settings:
*Reanalyze results after scanning before displaying results lists
Under the Log Files:
*Include basic Ad-aware SE settings in logfile
*Include additional Ad-aware SE settings in logfile
*Include reference summary in log file
*Create log file for removal operations
*PLEASE DO NOT CHECK - Include module list in log file
*Include alternate data stream details in log file
Under Misc Settings:
*Dump details about unhandled exceptions to disk
*Play sound at scan completion if scan locates critical objects
4. Click on 'Proceed' to save the settings.
5.Close ALL windows except Ad-Aware SE
6. Click 'Start'
*Choose:'Perform Full System Scan'
*DESELECT "Search for negligible risk entries", as negligible risk entries
(MRU's) are not considered to be a threat.
7. Click 'Next' and Ad-Aware SE will scan your hard drive(s) with the
options you have selected and clean automatically.
8. If Ad-Aware SE finds bad entries in the registry or bad files, you will
receive a list of what it found in the window
9. Save the log file when it asks and then click 'finish'
10. REBOOT to complete the removal of what Ad-Aware SE found
Spybot Search & Destroy
1. Downloaded and Install
Spybot S&D , accepting the Default Settings
2. In the Menu Bar at the top of the Spybot window you will see 'Mode'. Make
certain that 'default mode' has a check mark beside it.
3. Close ALL windows except Spybot S&D
4. Click the button to 'Search for Updates' then download and install the
Updates.
5. Next click the button 'Check for Problems'
6. When Spybot is complete, it will be showing 'RED'
entries bold 'Black' entries and 'GREEN' entries
in the window
7. Make certain there is a check mark beside all of the
RED entries ONLY.
8. Choose 'Fix Selected Problems' and allow Spybot to fix the
RED entries.
9. REBOOT to complete the removal and clear memory of any found items.
Make sure you have the latest updates for windows
http://v4.windowsupdate.microsoft.com/en
Step Two
Ran the above scans an still having problems? Hijack this to to the Rescue!
New stuff comes out at a rapid pace and spyware killers can't include all of them on the spot. So a certain amount of time needs to pass between the spotting of a new spyware and its inclusion in the spyware killers.
So, next step would be to find out what is causing it. That is where Hijack This comes in. This great tool developed by Merijn is great at finding new nasties. And troubleshooting other stuff too.
Download it here
Save highjackthis to it's own folder on your hard drive like; C:\Highjack\highjackthis.exe
IMPORTANT - Make sure your browser is closed - If you ran any of the above programs, reboot before you run highJackthis
OK, so you scanned with Hijack This, and you see a lot of stuff on there.... Don't panic and please, please, please DO NOT FIX ANYTHING UNLESS YOU ARE CERTAIN OF WHAT YOU ARE DOING!!! Just press the "Scan" button, it will then change to "Save Log". When the file is saved, it will open in Notepad. Copy and paste its entire contents, including the header info into a new email and send it to me:
Webmistress@skyline-design.com
I'll analyze the file and let you know what steps you need to take next.
Portfolio :: Graphics :: Hosting :: Resources :: Contact :: Services :: Home© skyline design 2007
