It is currently Sat Sep 23, 2017 8:28 am


Before requesting help

Is your PC infected? Is it running slow? Just can't figure out what's making it sluggish? Here is the place to get some help.

Moderators: liljim, Gecko

Before requesting help

Postby PCguy » Fri Nov 02, 2012 4:34 pm

Before Requesting Help!

Please read the following before creating a new topic in this forum. It contains instructions on the what we would like you to post and what programs to download and install.

DO NOT RUN ComboFix unless requested to!.

Please perform the following downloads and scans that will create the logs we to need to see before we can help you.

Download DDS from the following location:
DDS Tool Download Link

When you click on the above link you will see be brought to a download page. Please click on the Download Now button

Click on the Save button. You will now be presented with a screen asking where you would like to save the file.
Click once on the Desktop button, designated by the red arrow in the figure above, to save the file to your Desktop and then press the Save button. Your computer will now download the file to your computer and save it on your Desktop.

Disable any script-blocking programs and then double-click on the DDS.com icon to start the program. If you did not disable a script-blocker that may be part of your antimalware program, you may receive a warning from your antimalware product asking if you would like DDS.com to run. Please allow it to do so.

Once you double-click the icon a Windows security warning may also appear asking if you are sure you would like to run the program.

Click on the Run button to start DDS.
DDS will now display a small black window providing information as to what DDS is doing on your computer

When DDS has finished scanning, all of this information will be compiled and be displayed in two Notepad windows named dds.txt and attach.txt

You will then be shown a small box giving instructions as to what you should do with these files. Feel free to close this message box by pressing the OK button.

We now need to save the two log files that were created. First click on the DDS.txt window and click on the File menu and then select Save As... menu option.


Create a GMER Log (32-bit versions of Windows only)
Please note that if you are running a 64-bit version, please do not create a GMER log and instead skip to the next step.

To start this process, please go to the following link and then click on the Download ZIP button to download the file. Again save the file top your Desktop.

GMER Download Link

Right-click on the gmer.zip icon and select the Extract all... menu option.
You will be shown a screen asking how you would like to extract the file. Just keep pressing the Next button until you geto the last screen and then press the Finish button to finish the extraction process. The GMER folder should automatically open and you will see that it contains the file called gmer.exe.

Please double-click on the gmer.exe program. Once you double-click the icon a Windows security warning may appear asking if you are sure you would like to run the program. If this warning appears, please click on the Run button to allow GMER to start.

You will now see the main GMER window. If it gives you a warning about rootkit activity and asks if you want to run a full scan, please click on the NO button. We now need to configure GMER to not use some settings. Please uncheck the following settings that we do not want in our scan.

IAT/EAT
Drives/Partition other than Systemdrive, which is typically C:\
Show All (This is important, so do not miss it.)
Like this:
uncheck-gmer.jpg
uncheck-gmer.jpg (54.3 KiB) Viewed 1757 times


Once your screen look similar to the above, click on the Scan button to scan your computer for rootkits. This may take a while, so please be patient. When it has finished you will be back at the main screen as shown in the figure below.
scan-complete.jpg
scan-complete.jpg (82.36 KiB) Viewed 1757 times


You now need to save the rootkit scan report to your Desktop by clicking on the Save ... button as designated by the red arrow in Figure 14 above. A screen will open asking where you would like to save the report. Click once on the Desktop button to change to the Desktop folder and then in the File name: field enter gmer.txt. Finally, press the Save button to save the report to your desktop. Please do not act on any of the information you find in this report as many legitimate programs could be listed in it.

Posting your logs
Create a new malware removal topic and post the DDS logs and the GMER log
If you have any problems running GMER or generating a log, then please state what problems you had with GMER when creating your malware help topic.
(\__/) This is Bunny.
(='.'=) Copy and paste bunny into your sig.
(")_(") Help Bunny gain World Domination.

Image
User avatar
PCguy
Lord of the Geeks
Lord of the Geeks
 
Posts: 2017
Joined: Sat Sep 15, 2001 1:00 am
Location: A Very Scarey Place
Operating System: Windows 7 Professional x64

Thanks given:2
Thanks received:4
Top

Return to Malware Support

Who is online

Users browsing this forum: Bing [Bot] and 3 guests

cron