|How to Find and Remove Spyware,Trojans and Viruses|
PCWizKid in this tutorial shows you an advanced yet manual way of finding and removing spyware, trojans or viruses when your anti spyware or anti virus program is not fixing it for you properly.
There are general 3 steps to removing malware which should be done in SAFE Mode. If you unsure about how to boot your windows into SAFE Mode only, when you first boot your computer before you see the Windows Logo press and hold down the F5 key and you will be given the option to boot your PC into a minimal boot configuration of the OS so you can do your investigation without being connected to the internet. Always remember to make a backup of your registry (use the system Restore checkpoint tool) before you do any of these changes.
There are 2 areas that are useful for checking what is "Starting up" and "Running". This is shown in the video tutorial below in more detail, but for reference these 2 areas are the System Configuration accessed using MSCONFIG and the Task Manager which is accessed by doing a CTRL+ALT+DEL.
Within these existing tools in Windows you can get the details on a suspicious EXE file starting up or a process running in the background hidden from view and disable it.
C:\Documents and Settings\Administrator\Local Settings\Temp\
In these folders when you sort by date your files and folder you can see what has recently been touched, added or changed. Malware will try to discuse itself as a DLL file or an EXE file, usually they have odd file names with no real meaning and you can seach online for that file name to get details on its origine and if its a threat or not. Sometimes they try to take on filenames similar to actual real system files such as rundll32 . If you saw something called rundll33 then you know that for sure is a threat and should be deleted.