1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

CWS hijack pulls a nasty stunt

Discussion in 'Virus & Other Malware Removal' started by Metallica, Sep 10, 2003.

Thread Status:
Not open for further replies.
Advertisement
  1. Metallica

    Metallica Malware Specialist Thread Starter

    Joined:
    Jan 28, 2003
    Messages:
    692
    For anyone not familiar with this hijacker: CWS Chronicles

    The latest version included a very nasty surprise.
    They mutated the DNSRelay variant (number 8 at the site above) to include a hosts file hijack, including these lines:
    O1 - Hosts: 64.135.204.60 spywareinfo.com
    O1 - Hosts: 64.135.204.60 www.spywareinfo.com
    O1 - Hosts: 64.135.204.60 lavasoftsupport.com
    O1 - Hosts: 64.135.204.60 www.lavasoftsupport.com

    Effectively disabling people from downloading HijackThis and CWShredder from their normal download-links and getting support at some of the most renowned anti-spyware-forums.

    If you experience problems downloading both these programs and fear you have been hit by this hijack, please use this link:
    http://216.180.252.218/~spywareinfo.com/downloads/tools/hijackthis.zip

    Then unzip, double-click HijackThis.exe and hit "Scan".

    When the scan is finished, the "Scan" button will change into a "Save Log" button.
    Press that, save the log as a .txt file, and copy and paste its contents into your next post.

    Most of what it lists will be harmless, so do not fix anything yet.

    Regards,

    Pieter
     
  2. $teve

    $teve

    Joined:
    Oct 9, 2001
    Messages:
    9,396
    thanx for the heads up pieter.
    (y)
     
  3. putasolution

    putasolution

    Joined:
    Mar 20, 2003
    Messages:
    4,823
    That is tantamount to sabotage, and is highly illegal,

    Thanks for the heads up :D
     
  4. Flrman1

    Flrman1

    Joined:
    Jul 26, 2002
    Messages:
    46,331
  5. panzer999

    panzer999

    Joined:
    Jul 14, 2003
    Messages:
    724
    This isn't a sticky yet???????
     
  6. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Similar Threads - hijack pulls nasty
  1. genubi
    Replies:
    0
    Views:
    328
  2. bj nick
    Replies:
    0
    Views:
    792
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/163656

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice