How Do I Remove Spyware and Prevent Future Infections?

  • Thread starter mech-eng
  • Start date
  • Tags
    clean
In summary: You can try using a program called Acronis True Image which can virtualize your entire computer so that any unwanted programs that are installed will not run. Acronis True Image can also restore your computer to its pre-install state.
  • #1
mech-eng
828
13
I have installed a program but a lot of different program has been installed without my permission and most of these strange programs are advertisement programs. And there is a registry cleaning program which has been installed secretly. For example, some links are added by theirselves on the Internet Explorer window and sometimes there are chat Windows in which a bot woman wants to speak on love. I have uninstalled some of them via control panel but it haven't worked and I have made an antivirus scan but it also hasn't worked. How can I rescue my PC from them and how can I prevent these situations from occurring to not to have same problems in the future?

Thank you.

Note: My antivirus program is Vipre.
 
Computer science news on Phys.org
  • #2
You need to figure out exactly what was installed and do a Google search for how to get rid of it. And you DEFINITLY should get rid of it since this sounds like exactly the kind of thing that puts malware on your computer.
 
Last edited:
  • #3
There is a program "Malwarebytes" by Anti-Malware (you can get it from CNET) which might help.
 
  • Like
Likes harborsparrow
  • #4
Which was the original program you installed? Naming it (and also the source from where you downloaded it, if you did download it) might help us to find out what else it installed, and how those additional programs be removed.

It sounds like the original program was a virus and/or malware to begin with, as any legitimate program that wants to install additional programs should give you the option to opt out (and even if you didn't opt out, I wouldn't expect the behaviour on your computer you are experiencing).
 
  • #5
Try anti-malwarebytes first.

Modern viruses can actually prevent anti-virus programs from running correctly against them. Anti-malwarebytes does work well, but if your malware is entrenched it may undo or prevent the installation. At work we just wipe PC's C drives when things are bad. We can rescue them by removing the infected C drive. Then attaching the as a D: on a machine with malwarebytes already on it. Full scan the D: drive. Next replace the D: drive back into its home as C:. Disconnect the internet and see if you can boot without a bunch of error messages, if so, connect to the internet, download anti-malware bytes, install it and run a full scan.
 
  • Like
Likes harborsparrow
  • #6
@mech-eng A couple of pieces of advice. I would not log into anything with that computer until you are sure that it is clean. Assume that it has also installed a key-logger and is secretly sending logins and passwords to a server somewhere. If you can, try to install a firewall and set it to notify you if anything attempts to connect to the internet. This can help you to find and exterminate the programs that have been installed. I use ZoneAlarm which has a free version that works very well. There are two classes of connections that it will tell you about - programs that are trying to connect to the internet and programs that are trying to act as a server. There are very few that need to act as a server but I would be suspicious of everything at this point.
 
  • #7
mech-eng said:
... How can I rescue my PC from them ...

You mentioned "Internet Explorer" , so you're on Windows , so you can do a "system restore" to a point in time before you installed the unwanted programs. That should return your computer's registry to how it was. Folders created by installing the unwanted programs will remain, but the unwanted programs won't run.

mech-eng said:
... how can I prevent these situations from occurring to not to have same problems in the future?

Use something like the browser addon NoScript will stop drive-by-downloads. But if you authorised the download, without reading the small-print , there is no fix to prevent that occurring again, just more caution on your part.
 
Last edited:
  • #8
If your machine runs Vipre as security software, surely during the installation of the additional program it would have notified you something suspicious was being installed... and if that was malware -- http://www.vipreantivirus.com/VIPRE-antivirus/ -- that 100% rating doesn't seem to have worked for you.
 
  • #9
B0b-A said:
... But if you authorised the download, without reading the small-print , there is no fix to prevent that occurring again, just more caution on your part.

On second thoughts there is a software solution. There is software by Acronis which has a "try&decide" option which virtualizes the entire machine, so operates like Windows "system-restore", but will restore the entire computer , not just the Operating System. So you run Acronis before you install any software, you can then try the software, if you don't like it have Acronis put everything back to the pre-install state. Acronis "try&decide" is not free software ... http://www.acronis.com/en-gb/support/documentation/ATIH2014/299.html
 
Last edited:
  • #10
Whenever you install something on your computer, make sure you carefully read all disclosures, including the license agreement and privacy statement. Sometimes the inclusion of unwanted software in a given software installation is documented, but it might appear at the end of a license agreement or privacy statement
 
  • #11
StevieTNZ said:
Which was the original program you installed? Naming it (and also the source from where you downloaded it, if you did download it) might help us to find out what else it installed, and how those additional programs be removed.

It sounds like the original program was a virus and/or malware to begin with, as any legitimate program that wants to install additional programs should give you the option to opt out (and even if you didn't opt out, I wouldn't expect the behaviour on your computer you are experiencing).

The original program is googlebooksdownloader but I do not remember whether or not it is from the official site. It is just 643 Kb. Some secretly installed programs were Apple Inc's programs. One is opera, another is bonjour. When I try to close that chat window, this link opens:
but then it turns into this Edit by mentor: links to questionable sites removed
I have also realized that my computer's internet speed has lowered.

Here are the programs probably installed with that virüs:

Mystartseach as a search engine. It is strange that when I try to uninstall this, it prompts a verification code to be uninstalled.

Another one is reg-clean pro by systweak.com
Another one is Steelcut:mysteelcut.com
If I open my pc with a Linux live cd, the virus probably cannot be active so can I find and delete it by this method?
Can you using "resmon" help me determine which program is the virus, and can making a soft recovery which uninstalls all programs but not delete files be solution for getting ride of the virus? What should I do with the installation file which includes the virus. Should I send it to Vipre for examining? How can I learn the name of this virus?

Note:Above information might not be exactly correct.

Should I send the installation file via e-mail to vipre

Thank you.
 
Last edited by a moderator:
  • #12
mech-eng said:
... When I try to close that chat window, this link opens: https://secure-fra.adnxs.com ... .

This link looks relevant to your problem ... http://malwaretips.com/blogs/secure-fra-adnxs-com-removal/
[ I've not had this "secure-fra.adnxs.com" problem, or tried this solution myself though ]
 
  • #13
jim mcnamara said:
Then attaching the as a D: on a machine with malwarebytes already on it. Full scan the D: drive. Next replace the D: drive back into its home as C:. Disconnect the internet and see if you can boot without a bunch of error messages, if so, connect to the internet, download anti-malware bytes, install it and run a full scan.

Hi, Jim Mcnamara. I cannot understand "Then attaching the as a D:" part and why do you disconnect internet? What does "attaching the as a D: refer to? Would you like to explain in a different way

Thank you.
 
  • #14
D: means D drive (rather than C Drive which is usually where the OS, documents, programs are installed). D drive usually contains the factory settings.

If you Internet speed is slower, I would suspect something is using the bandwidth: most likely the spyware/virus/malware installed. You may even be being DdoS'd.
 
  • #15
StevieTNZ said:
If you Internet speed is slower, I would suspect something is using the bandwidth: most likely the spyware/virus/malware installed. You may even be being DdoS'd.

Apparently that "secure-fra.adnxs.com" problem does hog the internet ...

secure-fra adnxs com.png
 
  • #16
  • #17
mech-eng said:
Edit by mentor: links to questionable sites removed

I got a mentor to edit your post in case someone accidentally clicked the (then) active links, potentially infecting their computer.
 
  • #18
How about starting up in safe mode and using the tools available there?
 
  • #19
mathman said:
There is a program "Malwarebytes" by Anti-Malware (you can get it from CNET) which might help.

I have been using Malwarebytes and it is very good. It is not free ($30 or $40, not sure), but it had paid for itself several times over. Periodically, unwanted programs and ads get onto my puter despite the antivirus I am using, and this program has quickly cleaned them out.

If you use Malwarebytes (and it can be tried out for free), be sure to disable the Windows Firewall and Windows Defender before running it. I've found I needed to run it every few weeks to keep things clean (or if haywire ads start appearing).
 
  • #21
harborsparrow said:
If you use Malwarebytes (and it can be tried out for free), be sure to disable the Windows Firewall and Windows Defender before running it. I've found I needed to run it every few weeks to keep things clean (or if haywire ads start appearing).
Why? I run Malwarebytes with Win FW and Defender running just fine.
 
  • #22
Greg Bernhardt said:
Why? I run Malwarebytes with Win FW and Defender running just fine.
Simultaneously running two real-time anti-virus programs can cause conflict.
However the free version of Malwarebytes doesn't have real-time scanning , the paid-for version does ...

Synetech said:
If you are running the paid version of Malwarebytes, then you’ll need to turn of[f] the real-time scanner of either Malwarebytes ... or of Security Essentials ...
http://superuser.com/questions/695149/is-running-windows-defender-with-malwarebytes-safe

howtogeek.com said:
Why You Shouldn’t Run Multiple Antivirus Programs At Once
... These [real-time] programs hook deep into your Windows operating system and are not designed to work together. In a best case scenario, running multiple antivirus programs at once could result in degraded performance. In a worst case scenario, the programs could interfere with each other and cause system crashes.
http://www.howtogeek.com/133704/how-to-scan-your-computer-with-multiple-antivirus-programs
 
Last edited:
  • #23
Enter into safe mode and do a scan using an antivirus and Spybot (you can do both at the same time). Many of these spywares/virus hide and lock themselves when Windows starts, so they either can't be found or even if they're found, they can't be removed. In safe mode only the really essential Microsoft services will be ran so they won't be able to hide/lock themselves, then you can also uninstall them via control panel.
 
  • #24
i think Avg and Avast free vesion is very good
 

1. How do I know if my device is infected with spyware?

One of the most common signs of a spyware infection is a noticeable decrease in device performance. This can include slow loading times, crashes, and freezing. You may also notice strange pop-ups or advertisements appearing on your screen, or unusual changes to your browser settings. If you suspect your device may be infected, it's important to run a thorough scan with a reputable anti-spyware software.

2. What is the best way to remove spyware from my device?

The most effective way to remove spyware is by using specialized anti-spyware software. These programs are designed to detect and remove all types of spyware from your device. It's important to choose a reputable and up-to-date software, as new types of spyware are constantly emerging. Additionally, make sure to run regular scans and keep your software updated to prevent future infections.

3. Can I remove spyware manually?

In some cases, it may be possible to remove spyware manually by locating and deleting the files associated with the spyware. However, this is not recommended for the average user, as it can be difficult to identify and remove all traces of the spyware. It's also important to note that manually deleting files can potentially harm your device if you delete the wrong files. It's best to use anti-spyware software for safe and effective removal.

4. How can I prevent future spyware infections?

The best way to prevent spyware infections is by being cautious when downloading and installing software or clicking on links from unknown sources. Make sure to only download from reputable websites and be wary of any suspicious emails or messages. It's also important to keep your operating system and software up-to-date, as updates often include security patches to protect against spyware and other malware.

5. Can spyware cause damage to my device?

Yes, spyware can cause significant damage to your device. In addition to slowing down your device and compromising your privacy, some types of spyware can also steal sensitive information such as passwords and financial data. This can lead to identity theft and financial loss. It's important to take immediate action if you suspect your device may be infected with spyware.

Similar threads

My Avast Premium Security Gives Me This Scary Message
    • Computing and Technology
Replies
7
Views
1K
How Do I Remove a Persistent Popup Claiming My Computer Is Infected?
    • Computing and Technology
Replies
6
Views
1K
How can I fix the constant popup window on my PC after a virus removal?
    • Computing and Technology
Replies
15
Views
2K
My laptop is infected, what should I do?
    • Computing and Technology
Replies
5
Views
1K
How should I distribute space among different partitions in Ubuntu?
    • Computing and Technology
2
Replies
38
Views
3K
I'm considering switching to Linux but I'm not versed in ICS
    • Computing and Technology
Replies
18
Views
1K
How can I find and remove hidden malware from my computer?
    • Computing and Technology
Replies
22
Views
4K
Security problems with my home PC
    • Computing and Technology
Replies
12
Views
2K
Clean , Quarantine or Delete Option in Anti Malware?
    • Computing and Technology
Replies
1
Views
2K
Current and Future AI Threats to Humanity and the Human Response
    • Computing and Technology
Replies
10
Views
2K

Hot Threads

Recent Insights

Back
Top