Provided By Certified Computer Experts, Inc.
main title
Bringing you quality tutorials to help you understand and fix your PC!

Removing SpyWare Manually - Part1

You may have tried everything, you may have downloaded every Anti Virus program you can think of - nothing works. For whatever the reason lets say you want to try and remove that virus/spyware manually. This tutorial will help you do that. It won't be easy and you may want to pull your hair out, the choice is yours. Remove it manually or take it to a repair shop?

Ok so we want to remove a Spyware program manually, lets get started. First things first when removing Spyware is to find the program that is causing the error. Typically these programs have names that make them really easy to spot such as jlkelekkl.exe or some random string of letters put together. It won't be easy to do this alone so lets get some help.

HiJack This

This program is great, basically a better version of 'msconfig'. HiJack This will show you all the process that are set to startup when your computer boots up. Everything is listed here. I must warn you if you are not careful you could disable the wrong thing and make your operating system unusable so please proceed with caution and I'm making no guarantees.

Lets start HiJack This

HiJack This's start up screen

Lets click on 'Do a system scan and save a logfile'.

Now lets take a look at the output and see what came up. (Note: The option we selected will also bring up a notepad Window with this information - for now we will disregard that information). You can see where I have high lighted below some bad stuff, take a look.

Our 'hosts' file has a ton of static entries. Basically when your computer goes to get on the Internet before it even tries to find out the address it checks a local file first. The virus/spyware has put fake information here, look at the address above you can see its trying to stop you from connecting you to Yahoo and putting a bad IP address in between. That IP address is probably a web server just dying to load you up with more spyware. Make sure all the above check boxes are checked where I have high lighted - you really should not have any static entries in your host file.

Other than that you want to look for anything suspicious. Now what is suspicious? Well anything that looks like jdjllee.exe, 1l1l1kek.dll, you get the idea. Random letters and numbers are pretty much a dead give away. If you are unsure then you may want to ask a professional. Feel free to comment this entry and I'll let you know for sure. You can even send me the log file we created, just email to tom@ccexperts.com.

Scared?

If you think for a second you may be disabling something your computer actually needs you may want to use 'msconfig' instead. It won't show all the detail that HiJack will but it will show some, and the best part is you can always put the check mark back and renable the item. Msconfig is much more forgiving than HiJack This. HiJack this is typically a tool for the pros so please be careful.

Once the bad files have been checked then we hit then 'Fix Checked' and just agree/bypass any of the messages that follow. This will remove them.

What exactly this does

HiJack This will remove the programs so that they do not start up the next time your computer starts. That's exatly what we want, however spyware programs can be more trick and have other tricks, we have to worry about:

  • The virus coming back
    HiJack doesn't delete anything just removes the reference to the file. Sometimes other hidden files may trigger the virus to return. So what do we do? We have to delete the file.
  • Unable to delete the file
    Yep you guessed it. You can't just right click on the virus and 'Delete'. This programs are very hard to remove and will require additional (free) software and perhaps a boot into Safe Mode.
  • All Virus programs are not startup based
    Some Virus/Spyware programs are extensions of your web browser. Internet Explorer is known for this. How do we clear them out? They really aren't that hard, we'll cover that in the next part.

So this pretty much wraps up part one. First step is to try HiJack This, you can stop here if you want you may get lucky and the spyware programs may not come back. However ... they probably will. That's ok this is only the first part. Whenever I troubleshoot a spyware infection I start with HiJack this and begin to clear it out. Stay tuned for part two!

Download HiJack This

Posted: September 11, 2008 Category: Spyware / Virus Removal
If you enjoyed this post please share with your friends on Digg, Stumble or Twitter!


Comments ( 1 ) | Print | Send | del.icio.us | Digg It! | Linking Blogs
Comments
Add Comment
Awesome, I tried this out and it worked! Thanks so much
Posted By Scott D on 9/20/08 11:27 AM
[Add Comment]
Topics

Fresh Books Billing
Fresh Books Billing
Fresh Books Billing

  • Subscribe

  • Add to your Google Home Page or Google Reader Add to your My Yahoo!
    Add to your My MSN Add to your My AOL
    Add to your My Feedster Add to your NewsGator
    Add to your Bloglines Add to your News Burst
    Add to your Rojo Add to your Pluck

  • Search Blog
  • Subscribe
  • Enter your email address to subscribe.

Search Engine Optimization Experts
  • Recent Posts

  • Recently Asked Questions

    Check out some of the most recently asked questions in our Ask A Question section.

    Monitor not working
    Here we have a question about someone that cannot get their monitor to work. One day it worked...


  • Google's FriendConnect Today I added the Google FriendConnect application to the site. I think it'll be a fun way for visitors to interact and ask computer questions. I urge you to join and check it out, I'll also be going over how to create applications for Google's FriendConnect in the future. ...

  • Mass Geocoding

    I just wrote a cool tutorial on how to mass geocode addresses using Google's API and JavaScript. Take a look - it was a lot of work for me.

    Mass geocoding

    ...

  • Photoshop Tutorial - Replace a Color on a Car

    Today we'll talk about a quick easy Photoshop tutorial. This is a very simple tutorial that goes over how to change the color of a car. We'll be using the color replace tool and the paint brush tool. [More] ...


  • Recently Asked Questions - Part 2

    XPRT5.DLL / XPRT6.DLL
    Many people have had an issue with this file and America Online. I have understood that downloading the ACS software will fix this issue. If you are having this problem and it has no...


  • Ask A Question - Recent Questions

    Just wanted to share some recently asked questions in our 'Ask A Question' section. If you have a question of your own, feel free to ask it. If you are a techie you are welcome to help answer questions asked by others.


    • Cypher Strength 0 bit - Can't Access Secure Sites

      Today was a nightmare. I had a customer that was unable to access secure web sites. They were using Internet Explorer 7 and this happened after a very bad virus. I cleaned up the virus using HiJack This, Palin 'Hacker' Found

      This one just gave me a big laugh. I remember hearing in the news that Senator Palin's personal email was hacked. I remember chuckling and not really thinking too much of it. Big deal lots of people's accounts have been compromised. The same story that reported  she was hacked didn't mention anything embar...


    • Removing SpyWare Manually - Part1

      You may have tried everything, you may have downloaded every Anti Virus program you can think of - nothing works. For whatever the reason lets say you want to try and remove that virus/spyware manually. This tutorial will help you do that. It won't be easy and you may want to pull your hair out, the choice is y...


    • Unable to change desktop background?

      If you recently have been infected with a virus you may now be unable to change your desktop background. Typically the virus will replace your background with a big ugly. 'You are infected!' background. Of course it'll ask you to buy their 'cure' that will solve all of your problems. This is bad and we want to ...


    • Photoshop Tutorial - Using vanishing point

      This is a fun and fast little tutorial for using a neat Photoshop tool called vanishing point. Photoshop is a great tool and has a ton of great effects that you may not even be familiar with. Vanishing point is a way you can place an 2D image into a 2D document and have it perfectly match the perspective of the...


    • SEO: Choosing and placing keywords

      First things first with SEO, you really have to know what you are going after. OptiLaw handles law firm web site development and SEO for law practices. Lets say you are helping a law firm that practices personal injury cases and their office is located in M...


    • How to protect your computer

      If you own a computer there is a very good chance that your computer is infected with Virus or Spyware programs. They come in many shapes and forms and come at you from many different directions. There are also many tools to help you remove Virus infections once they happen, but the best bet is to avoid these p...


    • Windows automatic updates

      I've had this warning pop up on my laptop for about 4 days now. I hate it. I'm telling the w...


    • Internet Explorer 8 Released

      Finally Internet Explorer 8 has been released to the public. You can give a download  

Designed & Hosted By Certified Computer Experts, Inc. - Law Firm Web Site Design - OptiLaw
All information on FreeComputerAdvice.net is provided by Certified Computer Experts, Inc.