Trojan (?)

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by BasilToe, Dec 18, 2004.

  1. BasilToe

    BasilToe Private E-2

    First time posting and new to all this please forgive any errors.
    Couple days ago my browser was hijacked and noticed auto.search.msn, netscape & ieautosearch in Host files. Deleted Hosts and replaced, but same problem.
    Read and followed the basic How To page, did everything but HJT-thought I better check here first if needed. Ran Ad-Adaware SE with VX2,CCleaner,SpybotSpybaster,Avert Stinger,CWShredder, Kil2Me, about Buster, HSRemove. Ran AntiVir and found Tojan Horse TR/Dldr.
    Ran Ad-Aware again, tried to check for updates and got <Could not chek for updates Error retrieving updates>. Ran it anyway and got Ebates Moneymaker and Elitum BHO. Tried to access Internet and got <unable t find server>. (I'm using another computer for this!)
    Not sure if Im not able to access due to malware, Spybot settings, computer settings or what.
    Any help would be most appreciated.
     
    BasilToe, Dec 18, 2004
    #1
  2. PhilliePhan

    PhilliePhan Guest

    Hi BasilToe,

    You have a particularly nasty strain of malware that has been going around.
    Were you able to do any of the Online Scans prescribed in the Sticky Post?

    I am going out to dinner and do not know when I'll be able to check back, so I'll cut and paste what I've been telling others in the same boat:

    I have an option that you can try, but it is strictly a "Do at your own risk proposition."

    If you want to give it a go, please download the following:

    Generic Detection Tool

    Pocket KillBox

    NOW:
    Please make sure HijackThis is extracted to its own SAFE folder - C:\Program Files\HijackThis. Now, run a scan and save that log so that you can attach it via the "manage attachments" tool when you post.

    Then, unzip the Generic Detection Tool to a safe folder of your choice and run "findit.bat" - Allow it as much time as it needs to run. You may get an error message of "File Not Found," but just let it go.

    The tool should generate a long text file. Please attach that along with the HJT log.

    I have tried this before and it didn't give me all of the info needed to proceed, and the same may happen here - but, it's worth a try.

    I will try to check back when time permits.

    PP :)
     
    PhilliePhan, Dec 18, 2004
    #2
  3. BasilToe

    BasilToe Private E-2

    Thanks for the reply. Unfortunately, I'm not able to access the Internet on the infected computer. I get a prompt saying the network did not assign a network address to the computer (I'm on cable modem). Clicking repair got prompt co<could not renew IP address>. Will disconnecting/re-connect modem help?
    BT
     
    BasilToe, Dec 18, 2004
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Do you also use a router? Try power cycling the Cable modem and then your router. Check to see if your router is set for DHCP and also that your PC is set to DHCP.

    You said you were using another computer to send your message. Is it tied into the same Cable modem connection?
     
    chaslang, Dec 18, 2004
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds