So you think you have a Trojan or virus you can't get rid off? - Written by Alex Costa


Is your PC messing up and you suspect its because of a Trojan or virus? Then read the following information, which is an adaptation of a great informative post by Blackspear at Wilders security forums at Wilder Security Forums , one of the great sites for all sorts of security information if you wish to go deeper into pc security.


It is important that whatever software you download or install that it is the correct version for your Windows operating system.


Install and update your anti-virus and anti-trojan programs then follow the steps below:


  • Step 1:. Download Winsock XP Fix available HERE.Do NOT run this YET.
  • Step 2: Install Zone Alarm (free) - A Firewall with visual outgoing alerts to see what is trying to access the internet, available HERE.
  • Step 3: Download Stinger (free) - Offline Virus removal tool, available HERE. here. Do NOT run this YET.
  • Step 4: Windows XP - Download Ewido (trial which reverts to free edition after trial period) - Anti-Trojan Software, available here. Install and update it. Do NOT run this YET.

FOR Win98 users:


Windows 98 - Download A-Squared (free) - Anti-Trojan Software, available HERE. Install and update it. Do NOT run this YET.


  • Step 5: MAKE SURE anti-virus IS FULLY UP TO DATE with the latest virus signatures.
  • Step 6: Turn OFF "System Restore", this process depends on your operating system:

WARNING: Turning OFF System Restore will NOT enable you to ROLL BACK your computer to the current state it is in.


Windows XP:

  • 1. Right click on the "My Computer" icon on the Windows desktop.
  • 2. Click "Properties".
  • 3. Click on the "System Restore".
  • 4. Place a tick in "Turn off System Restore on all Drives".
  • 5. Click OK.
  • 6. Close and restart your system.

FOR Windows ME:

  • 1. Right click on the "My Computer" icon on the Windows desktop.
  • 2. Click "Properties".
  • 3. Click on "Performance".
  • 4. Click "File system".
  • 5. Click "Troubleshooting".
  • 6. Check "Disable system restore".
  • 7. Click on OK.
  • 8. Close and restart your system.

Step 7. Delete your TEMP files by doing the following:

  • Open up Internet Explorer
  • Click on Tools
  • Internet Options
  • General TAB
  • Temporary Internet Files
  • Delete Files
  • Delete All Offline Content.

Step 8. Restart your system again in "SAFE MODE" by pressing F8 while booting up your computer.

If pressing F8 does not place your system into "SAFE MODE" then use the instructions located HERE.

Step 9. While in "SAFE MODE" do the following:

  • Click on Start
  • All Programs
  • Your Anti-Virus program
  • Step 10: Run a scan with "Stinger" the program you downloaded above.
  • Step 11: Run a scan with the Anti-Trojan program you use or downloaded above.
  • Step 12: Reboot your system into NORMAL MODE.
  • Step 13: Run a further ONLINE scan found at Trend Micro Housecall Virus Scanner.
  • Step 14: Install, update and run Spybot Search and Destroy (free) - Spyware removal and protection, with registry monitor, available HERE.
  • Step 15: Install, update and run AdAware (free) - Spyware removal. What Spybot Search and Destroy doesn't pick up, this will, and vice versa AdAware is available HERE.
  • Step 16: Install and run CWShredder (free) - Specific Spyware removal tool, available HERE.
  • Step 17: Install and run VX2 Cleaner (free) - Specific Spyware removal tool, available HERE.
  • Step 18: Make sure your Windows is FULLY up-to-date:
  • While on the Internet, Click on Internet Explorer (the Blue "e")
  • Click on Tools (on the bar at the top of your screen in Internet Explorer)
    • Click on Windows Update.

This will take you to the Microsoft Windows Update page where you need to follow the on screen prompts, starting with "EXPRESS INSTALL". Install "Service Packs" (if needed) before anything else and then install "Critical Updates" (I would advise only doing a few critical updates per restart to lessen chances of a windows mess-up).


REPEAT ALL THE ABOVE STEPS THREE TIMES if you wish to be on the safe side, as some Viruses, Trojans and Spyware can be very elusive.


If after or during the above cleaning process you find that your Internet connection has been broken, please run the HERE. Winsock XP Fix application that you downloaded in Step 1 at the beginning of this post.

Alternatively

Proceed with the following:

To resolve this issue, delete the corrupted registry keys, and then reinstall the TCP/IP protocol.


Step 1: Delete the corrupted registry keys

  • 1. Click Start, and then click Run.
  • 2. In the Open box, type regedit, and then click OK.
  • 3. In Registry Editor, locate the following keys, right-click each key, and then click Delete:

    • HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Winsock

    HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Winsock2

    4. When you are prompted to confirm the deletion, click Yes.

NOTE: Restart the computer after you delete the Winsock keys. Doing so causes the Windows XP operating system to create new shell entries for those two keys. If you do not restart the computer after you delete the Winsock keys, the next step does not work correctly.


Step 2: Install TCP/IP.

  • 1. Right-click the network connection, and then click Properties.
  • 2. Click Install.
  • 3. Click Protocol, and then click Add.
  • 4. Click Have Disk.
  • 5. Type C:\Windows\inf, and then click OK.
  • 6. On the list of available protocols, click Internet Protocol (TCP/IP), and then click OK.
  • 7. Restart the computer.

This information should sort out most of the problems you might encounter with viruses, Trojans and spy-ware. If this does not solve your problem then you can either format your drive or use Google.co.uk. to find more information or groups that can help.

Hentuckybreaks.co.uk takes no responsibility for any issues or problems that might arise from following this article.

Read more Reviews

Naked Intruder Graphic Design And Photography