Tag Archive for rogue spyware

How to manually remove Spywares?

We reviewed some of the best free Anti-Spyware software programs that are there for your rescue and how to protect yourself from fake/rouge Anti-Spyware programs earlier. In this article we will cover some of the best freeware tools that will help you manually clean the infected spyware. If you are not fully protected or you try to install anti-spyware software post a spyware infection, sometimes there are chances that the spyware would have already done the damage and done the sufficient ground work so that the Anti-Spyware may fail to remove them. Usually, what these spywares do is that they keep multiple secret copies of them and once you scan your PC with the downloaded Anti-Spyware program, chances are there that they will resurrect from the secret copies again and again! So, you must be aware of manual cleaning of spywares too. Here is a beginners guide to do that. Please be aware that all these steps can cause serious issues, if not done properly.

computer-repair

Image Source: http://www.elithecomputerguy.com/services.html

We mainly need to have access to Registry Editor and Windows Task Manager to start with. There are chances that these spywares would have disabled them too. They can be easily enabled.

  • Cannot Access Regedit, How to Fix It? Read here.
  • Task Manager Has Been Disabled, How to Fix It? Read here.

Unfortunately, you will need to carefully examine the running process list. This is a tedious but essential step. You may see a lot of processes that may be unfamiliar but that’s fine. You can Google such process name and get more information whether it is harmful or not. We must admit that Windows Task Manager is not that good in listing all the running processes. So, we recommend using Process Explorer from Microsoft (again).

Step 1: Download “Process Explorer” from Microsoft.

Step 2: Unzip the archive and run ProcExp.exe and you will see something like below; color coded process list.

ProcessExplorer

Step 3: Windows processes will be colored Pink, Applications will be in Grey blue etc.

Step 4: Add a column “Command Line” by right clicking on the bar with column names. This will bring in a new column that provides the full path of the processes running. Now, it is easier to examine the running processes. Usually, suspicious processes will be running with a weird looking file names and thing like that. Study them and see if they are problem creators. Uniblue’s process library has some good list of documented processes that could help you. Sometimes, legitimate processes will be tagged as Spyware, so please verify properly.

Step 5: Once you identify such suspicious processes, you would want to delete them. Head over to HijackThis and download it. It is a very neat tool that can assist you in deleting or removing spywares but it is not for average users. It will list the processes running and let you delete them easily by deleting all corresponding entries in registry, executables etc. But, one should be very careful while doing so as it could affect critical windows services. Thankfully there are many forums where you could post the HijackThis report and helpful volunteers will analyse the report for you and suggest what to do. Here is some of them.

Whatthetech, Geeks on the Go. Also check post of HijackThis – How to analyze logs here.

Step 6: Rootkits are hard to find spywares. They may not be visible in HijackThis log too. There is a tool called IceSword which is capable of removing many rootkit threats. However, be aware that any wrong move with this may cause you lot of pain.

References and further reading:

Protect yourself from Rogue Anti-Spyware Software

All of us get troubled by Spyware and Malware products now and then. They easily get into our systems without our knowledge and do a lot of tracking of our activities and pop-up annoying messages and what not. Worst of all, there are many freeware Anti-Spyware/Virus programs out there who themselves stealthily infect spyware or malware programs to our computers while they claim they remove spyware tools :-)

These fake Anti-Spyware software programs are known as Rogue Anti-Spyware programs and should not be trusted at any cost.

image

image source: http://www.computerrepairtownsville.com/category/spyware

But, How do you know which one is legitimate? There are so many of them, here is a partial list of such rogue anti-spyware programs listed in wikipedia. Personally we have had lot of issues with Antivirus 2008 a fake anti-spyware program, which took us a while to remove completely.

There are many ways you could verify if the Anti-Spyware program you want to buy or use for free.

Please verify the Anti-Spyware program if it is listed as bad in Spyware Warrior list. They have extensive knowledge base of such programs.

If you are looking for information on the most recent rogue anti-spyware applications, SpywareWarrior recommends visiting these sites:

Luckily, there are many legitimate Anti-Spyware/Virus programs that we can use without worrying so much; They all support automatic spyware/virus definition updates which is essential. They are listed below.

AVG Free edition

image

An award winning Anti-Virus/Spyware software used by millions of people and one of the best available free software. There is a Pro version that supports more features.

Avast 4.8 Free edition

image

Complete Anti-Virus/Spyware software for free. A highly recommended software.

Ad-aware by Lavasoft

image

Ad-aware has been around for quite sometime now and free edition is capable of removing spywares effectively. But, a Pro version is needed for complete solution like virus detection etc.

Spybot – Search and Destroy

image

Spybot – S&D can detect spywares and remove them. It can even immunize your system with a real time protection. However, no virus detection is possible.

Google Pack with Norton

image

Norton Security Scan is part of Google Software pack, is a free tool that will scan your computer and identify if there are existing viruses, worms, spyware, unwanted adware or Trojans residing on your computer. Norton Security Scan checks to see how your computer is currently protected.

Microsoft Windows Defender

image

A capable spyware protection from the creators of Windows! They know the best.

Let us know, If you know better ones and we will review them.

RSS Feed

Related Posts with Thumbnails