by: Jukka Hakkinen
If you’ve seen a message saying something like “Your computer might be infected with spyware or adware!!!”, “Warning! You’re in danger!” or “Windows has detected spyware infection!” (note enthusiastic use of exclamation marks) then you might be being set up for a sting.
These messages are produced by malware (more specifically a trojan) that installs itself on your computer and then tries to scare you into buying fake anti-spyware and PC cleaners. No windows process or software from a legitimate vendor gives you a warning message and then tries to strongarm you into buying a particular product.
The next most popular route is through flaws in the Windows OS, now I know you’ve heard this before, but please make sure you download and apply Microsoft’s critical updates.
Another, slightly unusual route, is a fake codec for a video. Ever tried to open a video file in Windows
Media Player and have it say it doesn’t understand the format and do you want to download a codec that can play the file? Unfortunately, that facility was open to abuse and there were a lot of fake files put out with the sole purpose of tricking a user into downloading a fake codec that was really just malware. Of course, the fake video file would be named something like “Angelina Jolie - nude movie”. Something that people would really want to see and be willing to go through the trouble of getting a codec for. When you get the codec, you’re stuck with nasty malware and a clip of pure garbage.
To remove the spyware, you will need a good spyware remover – I recommend you avoid any of the following as they are all associated with being promoted via malware - AdawareDelete, Adware- Bazooka, AdwareSheriff, AlfaCleaner, Amaena, Antivirus Pro, BreakSpyware, CurePcSolution, DriveCleaner 2006, ErrorSafe, ExpertAntivirus, PerfectCleaner, SpyAway, SpyCut, SystemDoctor, SystemStable, WinAnti - Virus, Winfixer.
After removing the spyware, use CCleaner from Piriform to clear up any mess left behind. I suggest you hunt around on their site for the portable version.
If you find that you still can’t perform certain normal actions like access the task manager or change your desktop settings, then I suggest that you use the fixpolicies tool by Bill Castner at malwareremoval.com.
After that, I hope that you will keep safe by updating critical system components, as recommended above and make sure you have an up to date browser and firewall.
