Guide to Detection and Removal Of Malware

Dan Sippy, Apr 29, 2007 1800 hrs IST

Is your PC acting strange? Maybe it's sick. Here's a prescription that should make it feel better!

EXPERT REVIEW

There are many system security threats on the internet that we know of, but there are a thousand others that we not even aware about and can make you pull your hair out. In this article, I'll help you understand how to prevent your PC from being infected and in case it does, how to fix it. Before we begin with the steps, here's some brief information about the different types of threats on the internet.

Spyware

A spyware can be described as any software that covertly gathers user information through the user's computer when connected with an internet connection usually for advertising purposes. Spyware applications are typically bundled as a hidden component of freeware or shareware programs that can be downloaded from the internet. Once installed, the spyware monitors user activity on the internet and transmits that information in the background to someone else. This not only makes your system vulnerable to hacking but it also disrupts privacy.

For example, when you use a spyware infected computer to invest in the share market. You enter your account details in the infected computer, not only does the spyware transfer that information to a third party, but it can also make a dummy website that will look exactly like the one you use to check the market. By doing this, it could use your account details to steal money from your account without your knowledge or even consent of it happening.

Adware

While not necessarily Malware, Adware is considered to go beyond the reasonable advertising that one might expect from freeware or shareware. Typically, a separate program that is installed at the same time as a shareware or similar program, adware will usually continue to generate advertising even when the user is not running the originally desired program (sometimes it happens even when you re not online!).

Adware may not be as harmful as spyware, but it causes your system's performance to drop. Slow startup, windows takes a long time to open, small pop-ups telling you to buy certain products; all these are symptoms of Adware infection. The purpose of this Adware is to trick you into buying a third party's product.

We better stick to these two first. Spyware and Adware are quite similar but it is better to understand them one at a time, so here we go.

USER COMMENTS

i am very sure that this information is going to help me a lot...thanks a ton

by varun tuteja, delhi, on Oct 10, 2007 08:43 AM, Report abuse Reply

Very much thank you. Your article was very informative.

by novaeroger, chennai, on Oct 09, 2007 06:24 PM, Report abuse Reply

by manish, New delhi, on May 27, 2007 08:30 PM, Report abuse Reply

pleaz i want to know what type of viruses that can Prevent openning partitions and show strange symbols Instead of open & explore in the partition short menu.

by amr sayed, cairo, on May 26, 2007 01:04 PM, Report abuse Reply

i think kaspersky has a slight advantage over the Symantec AV because the intelligence of av matters when it comes to keeping the pc at best........

by pardhusamanth, chennai, on May 01, 2007 01:03 PM, Report abuse Reply

AD-AWARE ROCKS!!!

by CHINTAN, MUMBAI, on Apr 30, 2007 08:35 PM, Report abuse Reply

well i for ie users spybot is certainly the best imo.coupled with winpatrol and avg

by abcd, acd, on Apr 30, 2007 07:11 PM, Report abuse Reply

guys@ this is jus 2 basic.....atleast for my level but good though for newbies..

by Vishal_Kadakia, mumbai, on Apr 30, 2007 05:37 PM, Report abuse Reply

iv had horrible experiences with some wicked rootkits...it takes a lot of effort to clean those up! AASE does the cleaning well, and Symantec AV helps too...

by Shoel, Mumbai, on Apr 30, 2007 03:29 PM, Report abuse Reply

Nice review; However Spybot is missing in the list!!

by FreeGuy, Mumbai, on Apr 30, 2007 12:31 PM, Report abuse Reply

good samaritan... nice work bro.. keep helping us with many of these..

by siva, pune, on Apr 30, 2007 10:47 AM, Report abuse Reply

Use MSconfig and Hijackthis to identify running dll's and exe's. From system32 directory. Check on file details of Any suspesious looking file. Most trojans will not have version and revision history. Search about this file on the web and you will know what to do. Also having two OS's on a system is a good idea. Once you have found out about the infecting file, Boot in another OS and delete all traces manually. Remove registery entries using Hijackthis program.

by Dams, Mumbai, on Apr 29, 2007 09:43 PM, Report abuse Reply

Also, you can try running a sweep on your system using the Webroot "SpySweeper". We can periodically update the Virus Definitions and use online Virus detection and removal tools.

by Anandavalli, Bangalore, on Apr 30, 2007 10:06 AM, Report abuse

Use IE-SPYAD with ZonedOut to restrict Spyware sites. If you are using Firefox, use AdBlock-Plus along with a Filterset... I have also heard that the IE7Pro plugin for IE is good.

by tempest, chennai, on Apr 29, 2007 09:00 PM, Report abuse Reply

ver nice presentation and informative. It will help me.

by pranab bhattach, Kolkata 700 104, on Apr 29, 2007 07:06 PM, Report abuse Reply