Security Basics mailing list archives

RE: Need help on Spyware

From: "Dante Mercurio" <Dante () webcti com>
Date: Thu, 25 Mar 2004 15:50:38 -0500

It's probable the trojan or spyware has changed your HOSTS file to
reroute generic homepages to their site.

Also check your HOSTS file location. Some trojans change the location of
your hosts file. It can be found in the registry:
HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\DataBasePath

If you run Ad-Aware with the default settings, it will not check you
HOSTS file. Click on SCAN NOW and Customize and check the two settings
to scan IE favorites and the HOSTS file.

M. Dante Mercurio
dante () webcti com
Consulting Group Manager
Continental Technologies, Inc
www.webcti.com

-----Original Message-----
From: Michael Rundell [mailto:Michael.Rundell () doj ca gov] 
Sent: Thursday, March 25, 2004 1:54 PM
To: bryan_khoo () dynacraft com; security-basics () securityfocus com
Subject: Re: Need help on Spyware


If it is when you first start up the IE web browser, you need to go into
the internet tools from within the programs tab, select "Reset Web
Settings."  It will ask you if you wish to also reset your homepage. 
That has worked for me even when the manually change home page option is
grayed out from a browser highjack.

Michael Rundell  
Sacramento

<bryan_khoo () dynacraft com> Wednesday, March 24, 2004 4:44:38 PM

Hi all,
      I'd encountered some problems with my PC, the Internet Explorer
always get redirected to a page called http://merdeka.hebat.com when I
try to browse. I've tried to scan with Ad-aware and Spybot and nothing
was found, on top of that I've also do a full system scan with 3
antivirus software and the out come also tell me that my system is clean
from virus. What I suspect here is somehow the spyware change my
registry and redirect me to the page. Can someone help me ??


Rdgs,
Bryan




------------------------------------------------------------------------
---
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545
off 
any course! All of our class sizes are guaranteed to be 10 students or
less 
to facilitate one-on-one interaction with one of our expert instructors.

Attend a course taught by an expert instructor with years of
in-the-field 
pen testing experience in our state of the art hacking lab. Master the
skills 
of an Ethical Hacker to better assess the security of your organization.

Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html 
------------------------------------------------------------------------
----


CONFIDENTIALITY NOTICE: This communication with its contents may contain
confidential and/or legally privileged information. It is solely for the
use of the intended recipient(s). Unauthorized interception, review, use
or disclosure is prohibited and may violate applicable laws including
the Electronic Communications Privacy Act. If you are not the intended
recipient, please contact the sender and destroy all copies of the
communication.

------------------------------------------------------------------------
---
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545
off 
any course! All of our class sizes are guaranteed to be 10 students or
less 
to facilitate one-on-one interaction with one of our expert instructors.

Attend a course taught by an expert instructor with years of
in-the-field 
pen testing experience in our state of the art hacking lab. Master the
skills 
of an Ethical Hacker to better assess the security of your organization.

Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
------------------------------------------------------------------------
----


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------

Current thread:

Need help on Spyware bryan_khoo (Mar 25)
- RE: Need help on Spyware Eric (Mar 25)
- <Possible follow-ups>
- Re: Need help on Spyware Michael Rundell (Mar 25)
- RE: Need help on Spyware Dante Mercurio (Mar 26)
- Re: Need help on Spyware H Carvey (Mar 26)
  - Re: Need help on Spyware Michael Cecil (Mar 29)
- Re: Need help on Spyware Daniel Wozniak (Mar 30)
- Need help on Spyware bryan_khoo (Mar 30)
- Re: Need help on Spyware SMiller (Mar 30)