Intermittent browser diversion BT Wholesale

Discussion in 'Malware Help (A Specialist Will Reply)' started by croupade, Jan 19, 2006.

  1. croupade

    croupade Private E-2

    Firstly, think you guys are doing great job;I have previously found a coupleof answers to my problems in your FAQs, so thank you.

    Secondly, I now have a problem I am struggling to fix.

    Intermittently my browsers (usually Firefox 1.5 but also IE6 when I am forced to use it!)are being directed to a page apparently owned by BT Wholesale, with a URL of: http://194.74.65.98/

    It contains a message that says:

    You have been connected to this page due to one of the following reasons. You must now shut down your browser and Internet applications before attempting to reconnect.

    1. The BTWholesale access circuit to your Service Provider is currently down.
    Your service should be resumed soon.
    Or
    2. You are testing your local connection to BT using
    ‘bt_test_user@startup_domain’
    Or
    3. You are testing your connection to your Service Provider using ‘bt_test_user@domain’ where domain is your Service Provider domain name.
    Or
    4. Your Service Provider is currently unable to accept your connection request please wait until service is restored or contact your Service Provider for further information.
    Or
    5. You have attempted to access an invalid Service Provider domain.
    ----------------------------------END

    I have tried several spyware tools, including AdAware, MS Spyware, SpywareDoctor and SpyBot, but to no avail. Weirdly, although I have always been able to surf happily without connecting through AOL (my wireless router is set up with the relevant connection details), when I do fire up AOL and surf, the problem does not occur.

    I have seen several other folks with this same problem on a couple of help sites, but no useful resolution.

    As I said,the issue is intermittent but prevalent, with more sites being intercepted as time goes on, but another day I can get into sites I couldn't the day before.

    I have run Hijack this and appended the logfile. Any assistance you can give would be much appreciated, and if you can't help, well what the heck. Thanks for looking anyway!

    regards

    PAUL

    HIJACKTHIS logfollows:
     
    Last edited by a moderator: Jan 19, 2006
    croupade, Jan 19, 2006
    #1
  2. AbbySue

    AbbySue MajorGeeks Administrator

    Welcome to Majorgeeks! See below to get started and then one of the Maleware Fighters will assist you further as needed.:)

    Please follow our standard cleaning procedures which are necessary for us to provide you support. Also there are steps included for installing, running, and posting HijackThis logs as attachments. You also should be telling us what problems you are having but I can see a whole bunch of them (multiple trojans, Look2Me infection, bad service, home page hijack).

    - Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support

    Make sure you check version numbers and get all updates.

    - Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.


    After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis and attach a log:

    Downloading, Installing, and Running HijackThis
     
    AbbySue, Jan 19, 2006
    #2
  3. croupade

    croupade Private E-2

    AbbySue

    Thanks so much - teach me to RTFM!

    Ran all the tools in the manner instructed. Nothing found until Pandam which apparently turned up 1 virus and no less than 9 previously unidentified spywares, which makes me a tad suspicious though.

    Logs are attached I'd be interested to know if anything remains and also what the best way to clear the 9 spywares is (Panda being a problem ID only, no fix). happy to purchase something but every tool seems to find different results!!

    Logs as follows: thanks again....

    Paul
     

    Attached Files:

    croupade, Jan 19, 2006
    #3
  4. AbbySue

    AbbySue MajorGeeks Administrator

    Hello again Paul.:)

    I don't see your Bit Defender log attached and whomever assists you will need to see this.

    Also, you have HijackThis installed incorrectly (on your desktop). Please go back to the Downloading, Installing, and Running HijackThis thread and follow the instructions for installing and running HJT then attach a new log.

    As a final comment: You will not need to purchase anything in order to clean your computer as there are plenty of free tools available to do the job. The purpose of running multiple tools/scans is that they detect different things. There is no 'all-in-one' scanner to take care of everything and if someone tells you there is they are full of it.:)
     
    AbbySue, Jan 19, 2006
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds