Adware & Spyware Removal
Disable the System Restore temporarily (WinXP & WinME only) if you are infected; any trojans, spyware, etc. you may have picked up could have been saved in the System Restore and can reinfect you. Since the System Restore is a protected directory your tools can not access it to delete files that can trap viruses and other applications inside.
Note: Go to add/remove programs and look down the list for New.Net Domains. If you see it please double-click to remove or else the LSP chain will break and you'll have to run the Winsock tool.
1st Download the Windows 98, ME, 2K, XP Winsock Fix in case you cannot access the internet after removing the malicious content from your system.
http://www.dcwclan.com/files/WinsockFix.exe
2nd Run Crap Cleaner
http://www.dcwclan.com/files/ccsetup121.exe
Important: I highly recommend downloading, installing, and updating all of the programs listed below and immediately restarting your system into safe mode. Booting in safe mode is important because it disables most drivers and running applications. To boot into safe mode, restart your computer and tap the f8 key (after first black and white screen, but before the Windows splash screen) until you get to a black and white screen asking you what to do.
* If your system is hosed and you are unable to boot to normal mode, you may install and run all of the utilities listed below in safe mode.
3rd Run Spy Sweeper
http://www.dcwclan.com/files/ssfsetup1_0.exe
4th Run Spyware Doctor
http://www.dcwclan.com/files/sdinstall.exe
5th Run Ad Aware
http://www.dcwclan.com/files/aawsepersonal.exe
6th Run Spybot
http://www.dcwclan.com/files/spybotsd14.exe
7th Run Nail/Bolder/Aurora Remover 0.3.1 Beta
http://www.dcwclan.com/files/ABIremover.exe
8th Run Hijack This
http://www.dcwclan.com/files/HijackThis.exe
* If you aren't sure about which items to remove, you may post your log (or email it to me) and someone will review it.
Virus Removal
Do a full system scan with your up-to-date antivirus. If do not have a resident antivirus installed on your computer, please do so immediately!
AntiVir
http://www.dcwclan.com/files/avwinsfx.exe
AVG
http://www.dcwclan.com/files/avg70free_323a539.exe
Both of these are free antivirus apps with decent detection rates. If you want to do it right the first time, spend $35 on Kaspersky Anti-Virus Personal v5 which comes with a 1yr update subscription.
http://www.kaspersky.com/personal-usa
I also recommend using the online virus scanners for a "second opinion" since a lot of Trojans and other malicious files seem to slip past most scanners (McAfee, Norton, etc.).
Panda Online Virus Scanner
http://www.pandasoftware.com/activescan
Trend Micro Online Virus Scan
http://housecall.trendmicro.com/housecall/start_corp.asp
Note: After you have finished performing all of the steps listed above you may safely reboot your system back to normal mode. I would also recommend opening internet explorer, clicking on tools > internet options > click on the Security tab and reset all 4 security settings back to default. You may also safely set your homepage to your default in case it was inadvertently changed.
*Sometimes it is necessary to repair your windows installation after you've rid your system of malicious content.
Prevention
If you want to purchase one or more of the tools above, I would recommend either Spy Sweeper or Spyware Doctor. They offer the best detection and removal, plus their real-time protection and scheduling is a very nice feature. Remember to keep all of these programs updated and run them at least once a week if you are paranoid or simply want to maintain a clean system. If you do not have (Windows) automatic updates enabled be sure to check Windows Update at least once per month to download all of the critical updates. By doing so you will help keep your operating system secure and up-to-date.
Please use common sense when you receive a popup, install P2P software, freeware, and other misc. applications. Almost all spyware is unknowingly installed by a computer user. In most cases, the installation of spyware is not illegal because you agreed to it when accepted the license agreement or clicked 'yes' on the popup window. The license agreement usually includes several paragraphs about the installation of spyware and collection of data. By accepting the license agreement, you agreed to let the spyware transmit your personal information.
If you run Windows XP you may want to set up a limited account. Here's a useful guide that explains it in greater detail.
http://www.omnicast.net/~tmcfadden/guides/build/Limited.html
Spyware Blaster can help keep your system spyware-free and secure, without interfering with the "good side" of the web. And unlike other programs, Spyware Blaster does not have to remain running in the background. It adds sites to your web browsers restricted sites area.
http://www.dcwclan.com/files/spywareblastersetup34.exe
All broadband users should have a firewall protecting their system(s). A Cable/DSL router (NAT box) is a very inexpensive solution that most people are familiar with. Hardware firewalls are important because they provide a strong degree of protection from most forms of attack coming from the outside world. Additionally, in most cases, they can be effective with little or no configuration, and they can protect every machine on a local network. One obvious downside to software firewalls is that they can only protect the machine they're installed on, so if you have multiple computers (which many homes and small offices do), you need to install and configure a software firewall separately on each machine. This can be difficult to manage if you have a lot of computers.
The bottom line is that with any home-office broadband connection, a hardware firewall should be considered a bare minimum, and supplementing it with a software firewall on one or more computers (and don't forget antivirus software) is always a good idea.
Windows XP includes a software firewall, and there are other solutions that protect you from inbound & outbound traffic. Check out Kerio Personal Firewall.
http://www.dcwclan.com/files/kerio-kpf-4.2.0-785-win.exe
Microsoft no longer updates Java VM and it's full of security holes. The solution is to install Sun Java.
http://java.com/en/download/windows_automatic.jsp
You may also want to consider switching web browsers and giving Firefox a trial run. It's fast, free, and definitely less prone to spyware. Tabbed browsing is also another nice feature. Support the underdog.
http://www.mozilla.org/products/firefox
Facebook
Twitter