Jump to content
Posted 30 August 2010 - 12:23 PM
Posted 30 August 2010 - 01:02 PM
Posted 30 August 2010 - 01:18 PM
Posted 30 August 2010 - 01:31 PM
Posted 30 August 2010 - 02:08 PM
Posted 30 August 2010 - 02:30 PM
Posted 31 August 2010 - 03:20 PM
Posted 31 August 2010 - 03:27 PM
Posted 31 August 2010 - 04:05 PM
Posted 31 August 2010 - 04:19 PM
Posted 31 August 2010 - 08:46 PM
Two items; 1) There are two other machines on this router, both of which are clean (...for the time being). Would it be safe to assume that if these two machines are clean that the virus may not be in the router? 2) There is a wireless router, which is connected to a cable modem. Which should be reset?
With 1) I go with they are clean, The Virus is in the router.2)Clean router as instructed. I believe the router is doing the redirects.
When you removed SAS you removed its Quarantine. All files were removed from PC.
Another question. When I completed this process yesterday, and assumed the machine was clean I removed SuperAntispyware. I'm assuming this automatically deletes all of the files in quarantine. Does quarantine vs deleted make a difference here?
Edited by boopme, 31 August 2010 - 09:09 PM.
Posted 01 September 2010 - 07:58 PM
I have managed to get rid of the Browser Hijacker in this version. Unfortunately I was running 3 different Programs to remove it so I'm not sure what finally resolved it.
Looks like it's back. Turned the machine back on today and the browser hijacker is back. I flush the DNS server, and close/reopen browser. It works fine until I reboot the machine. When I reboot and open a browser and go to microsoft.com (or even this website) the hijacker redirects. All of the TCP/IP settings are set to obtain IP and DNS via DHCP. Updated Malwarebytes and ran a quick scan in safe mode, and found nothing.
Any ideas on where I might look next? Thanks in advance.
Posted 01 September 2010 - 08:44 PM
0 members, 0 guests, 0 anonymous users