How to Remove a Virus from Windows: Step-by-Step Guide

That sinking feeling when your computer starts acting weird - pop-up ads everywhere, programs opening on their own, your browser redirected to strange websites. It is a nightmare. But do not panic. Most viruses can be removed at home without paying a technician.

This guide will walk you through exactly how to remove a virus from your Windows computer. We will cover the signs of infection, the step-by-step removal process, and how to prevent it from happening again.

Signs Your Windows Computer Has a Virus

Before we start removing anything, let us confirm that you actually have a virus. Here are the most common signs of infection:

• Your computer is suddenly very slow: Programs take forever to open, and your system feels sluggish.
• Pop-up ads appear out of nowhere: Even when you are not browsing the internet, ads keep appearing.
• Your browser homepage changed: Your default search engine or homepage has been changed without your permission.
• Strange programs are installed: You see software you do not remember installing.
• Your antivirus is disabled: You cannot turn on Windows Defender or your antivirus software.
• Unusual network activity: Your internet is slow even when you are not downloading anything.
• Files are missing or encrypted: Important files have disappeared or have strange extensions (ransomware).
• Friends receive strange messages from you: Your email or social media accounts are sending messages you did not write.

If you have several of these symptoms, it is time to clean your computer.

Step 1: Disconnect from the Internet

The first thing you should do is disconnect your computer from the internet. This prevents the virus from communicating with its command server, sending your data, or downloading more malware.

• Wi-Fi: Click the Wi-Fi icon in the system tray and click Disconnect.
• Ethernet: Unplug the cable from your computer.
• Airplane mode: Use Windows 11 Action Center to turn on Airplane mode, which disables all network connections.

Once you are offline, the virus is isolated and cannot do further damage or spread.

Step 2: Boot into Safe Mode

Safe Mode starts Windows with only the essential drivers and programs. Most viruses will not load in Safe Mode, which makes them easier to remove.

How to boot into Safe Mode in Windows 11:

1. Click the Start button and then the Power icon
2. Hold the Shift key on your keyboard and click Restart
3. Your computer will restart and show a blue screen with options
4. Click Troubleshoot then Advanced options then Startup Settings then Restart
5. After your computer restarts again, press the 4 or F4 key to select Enable Safe Mode

Your computer will now start in Safe Mode with minimal functions. Do not worry if the screen looks different - that is normal.

Step 3: Run Windows Defender (Microsoft Defender)

Windows comes with built-in antivirus software called Microsoft Defender. It is actually quite good and can remove most common viruses. Here is how to use it:

1. Open Windows Security by searching for it in the Start menu
2. Click Virus and threat protection
3. Click Scan options (not the Quick Scan button)
4. Select Full scan (this will take 1-2 hours but is thorough)
5. Click Scan now
6. Wait for the scan to complete
7. If threats are found, click Start actions to remove or quarantine them

After the scan, restart your computer normally and check if the problem is resolved.

Step 4: Run Windows Defender Offline Scan

If the regular scan did not find anything but you still have symptoms, try an offline scan. This scans your computer before Windows fully loads, catching viruses that hide from regular scans.

1. Open Windows Security
2. Click Virus and threat protection
3. Under Microsoft Defender Antivirus (offline) click Scan offline
4. Click Scan when prompted
5. Your computer will restart and scan before Windows loads
6. The scan results will appear after Windows starts again

Step 5: Use Malwarebytes (Second Opinion Scanner)

Sometimes one antivirus is not enough. Malwarebytes is excellent at finding malware that other programs miss. The free version works perfectly for manual scans.

1. Download Malwarebytes from the official website (malwarebytes.com)
2. Install it (you can use the free trial and cancel before it ends)
3. Open Malwarebytes and click Scan
4. Wait for the scan to complete (usually 15-30 minutes)
5. If malware is found, click Quarantine to remove it
6. Restart your computer

Step 6: Check Browser Extensions and Settings

Many viruses hide as browser extensions. Check each browser you use:

For Chrome:

1. Click the three dots menu then Extensions then Manage Extensions
2. Look for any extensions you do not recognize
3. Toggle off suspicious extensions or click Remove
4. Click Reset settings then Restore settings to their original defaults

For Edge:

1. Click the three dots menu then Extensions then Manage Extensions
2. Remove any unknown extensions
3. Go to Settings then Reset settings then Restore settings to their default values

Step 7: Clean Temporary Files

Viruses often hide in temporary file folders. Cleaning them out removes hiding spots and speeds up your computer.

1. Press Windows key + R on your keyboard
2. Type temp and press Enter
3. Delete all files in the folder that opens (some may not delete - that is okay)
4. Press Windows key + R again and type %temp% and delete those files too
5. Press Windows key + R again and type prefetch and delete those files

Step 8: System Restore (If Needed)

If the virus has caused serious problems, you can restore your computer to an earlier point before the infection.

1. Search for Create a restore point in the Start menu
2. Click System Restore
3. Click Next and select a restore point from before the infection started
4. Click Next and then Finish
5. Your computer will restart and restore to that earlier state

How to Prevent Future Infections

Once your computer is clean, follow these tips to stay virus-free:

• Keep Windows updated: Install Windows updates regularly - they include security patches for known vulnerabilities.
• Keep your antivirus active: Make sure Microsoft Defender or your third-party antivirus is always running and up to date.
• Do not click suspicious links: Be careful with emails, ads, and messages from unknown senders. If it looks too good to be true, it probably is.
• Only download from official sources: Download software from official websites or the Microsoft Store, not from random download sites.
• Use a standard user account: Do not use an administrator account for everyday tasks. This limits what malware can do if it infects your computer.
• Enable ransomware protection: In Windows Security, go to Virus and threat protection then Ransomware protection and enable Controlled folder access.
• Be careful with USB drives: Scan USB drives with Windows Defender before opening files on them.
• Use a browser with good security: Chrome, Edge, and Firefox all have built-in phishing and malware protection. Make sure these features are enabled.

When to Call a Professional

Sometimes, you need professional help. Here is when to consider it:

• You have tried all the steps above and the virus is still there
• Your files are encrypted and you are being asked to pay a ransom
• You cannot boot into Windows or Safe Mode
• You are not comfortable following these steps
• The virus has stolen your personal information and you need help securing accounts

In these cases, take your computer to a reputable repair shop or contact a tech-savvy friend for help.

Conclusion

Removing a virus from Windows is a step-by-step process. Disconnect from the internet, boot into Safe Mode, run Windows Defender full scan, follow up with Malwarebytes for a second opinion, check your browser extensions, and clean temporary files. Most infections can be cleared this way. After removal, take preventive steps like keeping Windows updated, using antivirus software, and being careful about what you click. With these measures, you will keep your computer running smoothly and safely.