Welcome to MalwareRemoval.com, What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.
MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.
Don't know what to think. Another tenant said she didn't get pop-ups over the holidays traveling with her computer.
Does this mean she gets pop-ups while at home. In the same building as you using the same router ?
___________________________________ GMER Please download GMER Rootkit Scanner from Here.
Double click the .exe file. If asked to allow gmer.sys driver to load, please consent
If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO
In the right panel, you will see several boxes that have been checked. Uncheck the following ...
IAT/EAT
Drives/Partition other than Systemdrive (typically C:\)
Show All (don't miss this one)
See image below
Then click the Scan button & wait for it to finish
Once done click on the [Save..] button, and in the File name area, type in "Gmer.txt" or it will save as a .log file
Save it where you can easily find it, such as your desktop, and post it in your next reply
**Caution** Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries Note: Do not run any programs while Gmer is running.
Yes, your last two statements are correct. Shared router at this complex, she has trouble here, but not on the road. Security level has been upped on that router, the number she is receiving has been reduced. I don't think the frequency has lessened for me. I tried running the rootscan and was reading the paper. Realized the computer had froze up. It was at this point: sections:c\\window$system32\drivers\avgidsshim.sys I downloaded the file, moved it to the desktop, clicked on it and it immediately opened. I unchecked the IAT/EAT, only C drive was shown (and checked), Slow All was already unchecked. Should I try again?
Yes please try again once or twice. If that doesn't work please try it in safe mode.
________________________ Safe mode: Please reboot to safe mode: After the very first black screen start tapping the F8 key until prompted with a list.... choose safe mode. Once to the desktop run Gmer again.
Tried it twice in normal mode, even disconnected from router. Froze up. Restarted in Safe Mode, same problem. I went to my normal daily site, fixedgeargallery and was redirected to another site. I can use the back page, but have to confirm that I want to navigate away. GMER downloaded as program 04g7ly6e does that sound correct?
Let's try this in the meantime I'm going to ask some colleagues for some thoughts.
TDSSKiller - Rootkit Removal Tool Please download the TDSSKiller.exe by Kaspersky... save it to your Desktop. <-Important!!!
Double-click on TDSSKiller.exe to run the tool for known TDSS variants. Vista - W7 users: Right-click and select "Run As Administrator". If TDSSKiller does not run... rename it. Right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. ektfhtw.com). If you don't see file extensions, please see: How to change the file extension.
Click the Start Scan button. Do not use the computer during the scan!
If the scan completes with nothing found, click Close to exit.
If malicious objects are found, they will show in the "Scan results - Select action for found objects" and offer 3 options.
Ensure Cure (default) is selected... then click Continue > Reboot now to finish the cleaning process.
If Cure is not offered as an option, choose Skip.
A log file named TDSSKiller_version_dd.mm.yyyy_hh.mm.ss_log.txt will be created and saved to the root directory. (usually Local Disk C:).
Copy and paste the contents of that file in your next reply.
If, for some reason,you can't locate the text file to paste into your reply, just tell me, but DO NOT run the program a second time.
With this version of Windows, I don't get the option of where to download to, it automatically goes to My Documents, Downloads. I didn't see anything in Control Panel to change this. I've been cutting and pasting all the downloads back to the Desktop. Is this okay?
AndyGitane wrote:With this version of Windows, I don't get the option of where to download to
Sure you do: In fire fox click tools/options.. Under the general tab look at downloads and choose from there using the browse button where you would like them to download. I choose desktop because it works for me. You may be comfortable having them elsewhere. or you may choose :Always ask me where to save files" and it will do just that then you can browse to where you want them saved each time.
Thanks for the download tip! Never looked at that tab, usually just the Privacy etc. Ran TDSS, ran quick and clean, nothing found. Even if I don't have Firefox remember history, I get pop-ups, redirects.
Bob had to suddenly leave town and I promised him I would take over for him.
I have a question for you.
When the modem was reset do you know if it was a hard reset or just a soft reset. A hard reset probably involves using the point of a pencil or a paperclip in a small hole in the modem. I have seen modems that were soft reset still being redirected. You need to know that a hard reset will set the modem back to the settings it was delivered with from the factory. It means that you will need to configure it back to how it was before the infection.
Let me know if the modem was hard reset or only soft reset.
Ending up getting work the last two days, so I haven't been as responsive. Thank you for the coverage of this issue. I asked the apartment manager your question, I'm betting hard reset. I will confirm once I hear. Bob has had me run a multitude of tests. Do you think my computer has an infection or is everything simply being passed thru the router? One other person at the apartment is having the same problem as me.
Users browsing this forum: No registered users and 587 guests
Contact us:
Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.