Removing Viral and Non-Viral Malware

Courtesy of Online Casino Boss

If you are on the internet, you are exposed to a number of ways to infect your computer with malware - both the malicious and harmless types. Online Casino Boss presents this article for all online users that need help, not just specifically online casino users. While some spyware vendors will tag Casino Software and cookies as low warning/risk malware, you must make your own decision as to if this is true. Partly thats why this website exsist, so you have a source to find a safe online casino to play at. Therefore the links found on Online Casino Boss contain are safe and trustworthy. Please contact me if you have any concerns related to the websites linked to Online Casino Boss.

Thanks, The Online Casino Boss

Email the Webmaster

First things first.  You must have an Anti-Virus program installed on your computer.  Most new computers come with this software already installed.  I suggest you purchase the subscription when it runs out or in the meantime install one of these programs listed below, many of these are free or with trial periods.  I've used all of these from time to time, and think they are all worthy of being listed here.  Although it is not recommended and will not work to have more than one installed at the same time, they do compliment each other at times (meaning that sometimes one will catch a virus the other won't, visa versa).  Which ever program you keep and pay for will be a matter of preference to you, the user.  If your computer is on a network and doesn't have an Anti-Virus suite installed, add a slip of paper that reads "Fire IT Guy" in the lunch room suggestion box.  Not all of these are "full-featured" free programs, so if you do not intend on paying for the scanner be sure to read the descriptions of what you are downloading to maximize your free protection. However, paying for the software and a subscription is absolutely recommended (after removal).

Just as important as having an Anti-Virus program, is to ensure that your virus definition file is updated. Without the newest definitions, these scanners will be useless against new threats.  Almost everyone of these products has an easy update button or automatic update option. This must be done to ensure that the scanner works. Also if you are on a networked computer, typically the anti-virus software will update to client computers automatically. Verify that the latest virus definition file you are running is current (typically within 7 days, most update several times a day).

If you don't want to make this decision for yourself, start out with AVG Anti-Virus, a good full-featured free scanner.

WARNING! These instructions are provided not as a service but as a reference. I assume that you are an above average computer user, therefore have written easy to understand instructions minus the "dummy" aspect. I am in no way responsible for any damage you may do to your computer, or to yourself as a result of following these instructions. Don't email me with questions either, if something in the instructions don't make sense to you, consider paying a professional to fix your computer at this point. Just like you would hire a a plumber, mechanic, or therapist; computers also require maintenance by a professional or a person of competent level.

Prepare your system to be cleansed:

1. Clean your computer of its temporary files. Point to Start > Control Panel > Internet Options: Click on 'Delete Cookies' and 'Delete Files.' Also may consider using a program for this such as CCleaner or Be Clean, as they will do a much better job of getting rid of temp files across many applications. If you computer has different users ensure that you clear out each individuals temporary internet files as well.  If you cannot navigate to the appropriate folders then logon to each account individually. Empty your Recycle Bin.
2. Create a temporary utilities folder. On your C:\ drive, make a new folder to hold all utilities that you will run and may need. Please download all these files, you can delete them after you are done using them.
1. Download Lavasoft's AdAware, and SpyBot S&D. Install both and perform full updates on both utilities.
2. Next download Trendmicro's Sysclean Package. Download the latest virus pattern file lpt$vpn.XXX in ZIP format as lptXXX.ZIP from Trendmicro. Extract the downloaded ZIP pattern file into the created folder.
3. After removing malware, it is possible you may lose ability to connect to the internet. In this case download LSP-Fix and Winsock-Fix. Depending on what specific malware is on your computer, these files may not be needed. They still should be downloaded for preventative measures.
4. If you didn't already, install an Anti-Virus program and update it. Refer to the top of this page for a list of options. This would not be a good time to pay for the software and subcription, you may be removing spyware that can capture sensitive data such as credit card numbers!  So, wait until the removal is over to purchase software.
3. Reboot the computer into Safe Mode by pressing F8 as the computer starts. View "How to perform advanced clean-boot in Windows XP" article from Microsofts website for more details on this procedure. Close out of all programs that may still have loaded in the system tray, and also ensure that the AV program you installed is disabled at this time.
4. In Windows Explorer, set your folder options to display hidden and system files. Start > My Computer > Tools > Folder Options > View: Hidden Files and Folders > Show hidden files and folders.
5. Disable System Restore in Windows XP: Right click the My Computer > Properties > System Restore tab > Put a check mark next to 'Turn off System Restore on All Drives' > 'OK'. You may be prompted to restart the computer, click OK.  View "How to enable and disable System Restore" article from Microsoft's website for more details on this procedure.
6. With updated AdAware and Spybot S&D, run full scans and remove all found entries.  If you have the time, reboot after each scan, and run a second time.  Sometimes the two programs may not be able to remove items.  Note the name of the items and search on the internet for specific removal instructions.
7. Next, still booted into Safe Mode, run the Sysclean.com file and perform a full system scan with 'Automatically clean and delete infected files' checked.  If files are unable to be deleted, view the log and make note of where this file is. Reboot back into Safe Mode, close out unused programs again.
8. Run a full scan with the AV program installed in step 3.4. If any, make note of files that could not be deleted and reboot the PC into Normal Mode.
9. Should these programs detect an unusually large amount of malware, another cycle of scans is recommended.  Yes this is a time consuming process.  If your internet connection has been disabled, the Winsock Fix and LSP-Fix programs that were downloaded will enable you to restore your internet connection.
10. Virus's that were not removed, should be located in Windows Explorer and deleted.  Anything that Spybot and AdAware could not remove should be researched on the internet and removed manually.  System restore should be re-enabled, and hidden files changed back to hidden, from steps 4 & 5.

Deep Breath: At this point the removal should be complete. Visit the Microsoft Windows Update website and install ALL critical patches.  Verify that your Anti-Virus program's real-time protection is enabled and that you have some type of firewall.  Most modern routers have firewalls built-in, if you are not at work or do not have a router in your network, download a software-based firewall such as Sunbelt Kerio Personal Firewall.  If you are still having problems you may need the help of a professional or a more specific approach to remove the malware.  This can be accomplished by running HiJackThis and posting it's findings in a professional forum.