Pushdo Malware - Manual Removal Instructions

One of the oldest active malware, 'Pushdo' recently Hacks 11,000 Computers in Just 24 Hours. 

It is important to know that India being the second most affected country next to Vietnam.

Here are the steps to remove Pushdo malware from your PC.

This technique is for techie computer users. Pushdo manual removal may be difficult and time consuming to remove. 

Before you start: Close all programs and Internet browsers. Also back up your computer in case you make a mistake and your computer stops working.

1. Uninstall Pushdo Program
   Click on Start > Settings > Control Panel > Double-click on Add/Remove Programs. Search for and uninstall Pushdo if found.
2. To stop Pushdo processes
   Go to Start > Run > type taskmgr. The click the Processes tab and you’ll see a list of running processes.
   Search and stop these Pushdo processes:
   startdrv.exe
   For each unwanted process, right-click on it and then select “End task”.
3. If your homepage has been changed, go to Start > Control Panel > Internet Options > click on the General > click Use Default under Home Page. Add the your desired default homepage, then click Apply > click OK. Open a new web browser to check that you have your desired default homepage.
4. Remove Pushdo Directories.
   To find Pushdo directories, go to Start > My Computer > Local Disk (C:) > Program Files > Show the contents of this folder.
   Search and delete the following Pushdo directories:
   C:\Windows\System\drivers\runtime.sys
   C:\Windows\Temp\startdrv.exe
   C:\Windows\System\drivers\runtime.sys
   Right-click on the Pushdo folder and select Delete.
   A message will appear saying ‘Are you sure you want to remove the folder [NAME OF FOLDER] and move all its contents to the Recycle Bin?’, click Yes.
   Another message will appear saying ‘Renaming, moving or deleting [FOLDERNAME] could make some programs not work. Are you sure you want to do this?’, click Yes.
5. To remove Pushdo icons on your Desktop, drag and drop them to the Recycle Bin.