IT Peeps, help! Ad/Spyware Dialler Hijack :(
#1
PassionFord Post Whore!!
Thread Starter
Join Date: Jul 2003
Location: Sudbury Suffolk, Drives: Octavia VRS & XR2i 1800 Zetec track car
Posts: 4,275
Likes: 0
Received 0 Likes
on
0 Posts
![Default](https://passionford.com/forum/images/icons/icon1.gif)
Noticed something funny when dialled into the internet from home last night - something has 'infected' it.
Ran couple of anti adware and spyware programmes, they seemed to delete problems, but 3 were still there - we sourced the dll file, managed to get rid of it, thought that solved the problem - no the dial up username is still wrong (couple of letters followed by what looks like IP address) and wont let you override an International dial up number charging at feck knows what a minute - the anti spyware then detected all the same files we thought were deleted![Sad](https://passionford.com/forum/images/smilies/icon_sad.gif)
Think it got coolwebsearch and/or TIBS/hot as hell
Please anyone tell me how to destroy this and get my pc back?!!
Z
Ran couple of anti adware and spyware programmes, they seemed to delete problems, but 3 were still there - we sourced the dll file, managed to get rid of it, thought that solved the problem - no the dial up username is still wrong (couple of letters followed by what looks like IP address) and wont let you override an International dial up number charging at feck knows what a minute - the anti spyware then detected all the same files we thought were deleted
![Sad](https://passionford.com/forum/images/smilies/icon_sad.gif)
Think it got coolwebsearch and/or TIBS/hot as hell
Please anyone tell me how to destroy this and get my pc back?!!
Z
#3
PassionFord Post Whore!!
Thread Starter
Join Date: Jul 2003
Location: Sudbury Suffolk, Drives: Octavia VRS & XR2i 1800 Zetec track car
Posts: 4,275
Likes: 0
Received 0 Likes
on
0 Posts
![Default](https://passionford.com/forum/images/icons/icon1.gif)
I think it was adaware that failed to remove it
Going to try spy sweeper, but still not convinced it will remove the dialler thing
Thanks for your reply though!
I think this one is so intertwined and tough the only solution seems to be system restore/rebuild (haven't got Windows/XP disc so dunno how do that)
Z
![Sad](https://passionford.com/forum/images/smilies/icon_sad.gif)
Thanks for your reply though!
I think this one is so intertwined and tough the only solution seems to be system restore/rebuild (haven't got Windows/XP disc so dunno how do that)
Z
#4
![Default](https://passionford.com/forum/images/icons/icon1.gif)
i had this and its a sod to get rid off matey. This is the place i used
http://forums.spywareinfo.com/index.php?act=idx
http://forums.spywareinfo.com/index.php?act=idx
#6
The 60ft Launch King
iTrader: (5)
![Default](https://passionford.com/forum/images/icons/icon1.gif)
Zo - Use a program called 'Webroot Spy Sweeper' It's the best in the buisness!
You get get a free 7 days trail off the net. from www.webroot.com
If u want the full version PM me and i'll sort it out for you!
You get get a free 7 days trail off the net. from www.webroot.com
If u want the full version PM me and i'll sort it out for you!
![Top](https://passionford.com/forum/images/smilies/smile011.gif)
#7
PassionFord Post Whore!!
Thread Starter
Join Date: Jul 2003
Location: Sudbury Suffolk, Drives: Octavia VRS & XR2i 1800 Zetec track car
Posts: 4,275
Likes: 0
Received 0 Likes
on
0 Posts
![Default](https://passionford.com/forum/images/icons/icon1.gif)
Thanks Guys, this one is a tough bugger, have tried MSN, Spy Sweeper (it says deleted, but on start up the fecker still there), tried searching the registry and allsorts - I don't think they can be removed easily as Sludge says - thanks Sludge, have posted an HJT log to see what peeps can suggest (also found something called CWShredder to get rid of coolweb)
Z
Z
Trending Topics
#9
Guest
Posts: n/a
![Default](https://passionford.com/forum/images/icons/icon1.gif)
i got a programe that stops and inumnizes against hijack it also has its own spyware scanners 6 in all includeing webroot full macafee stinger if your running any other kind of spywares it takes control of them sorts the settings to optimum then runs scans with them does it all on its own sit back and watch i got this of a swedeish guy who was very high up in programeing and gave this to me saying thiers nothing better it is however in german but its comon sense once installed all you do is double click icon then starten is obviously start it gives you a report at the end in english anyway and gives results for you to browes
http://ictcafe.opweb.nl/modules.php?...rticle&sid=712
http://ictcafe.opweb.nl/modules.php?...rticle&sid=712
#10
PassionFord Post Whore!!
Thread Starter
Join Date: Jul 2003
Location: Sudbury Suffolk, Drives: Octavia VRS & XR2i 1800 Zetec track car
Posts: 4,275
Likes: 0
Received 0 Likes
on
0 Posts
![Default](https://passionford.com/forum/images/icons/icon1.gif)
Ah if only it were that simple Dan! lol
Thanks Rudey, I managed to delete some dodgy files in safe mode using HijackThis (great explaination/tutioral for this at http://castlecops.com ) ran the coolwebshredder, that fixed. Ran Norton 2005 antivirus, spy doctor, xbot and couple of others, columdialler and a trojan was picked up by spy doctor also a registry value file (which managed to delete from the registry) so managed to manually delete the files somehow and reinstall a new ISP connection
This is a very tough programme, most antispywares can't detect/delete, it seems even if visiting 'non-dodgy' sites the feckers can get into unprotected pc's, a lesson for everyone to get good antispyware software!
Fingers crossed we've got rid of it
Z
Thanks Rudey, I managed to delete some dodgy files in safe mode using HijackThis (great explaination/tutioral for this at http://castlecops.com ) ran the coolwebshredder, that fixed. Ran Norton 2005 antivirus, spy doctor, xbot and couple of others, columdialler and a trojan was picked up by spy doctor also a registry value file (which managed to delete from the registry) so managed to manually delete the files somehow and reinstall a new ISP connection
This is a very tough programme, most antispywares can't detect/delete, it seems even if visiting 'non-dodgy' sites the feckers can get into unprotected pc's, a lesson for everyone to get good antispyware software!
Fingers crossed we've got rid of it
Z
Thread
Thread Starter
Forum
Replies
Last Post
paceo
General Car Related Discussion.
8
25-09-2015 08:05 PM
paceo
General Car Related Discussion.
6
17-09-2015 12:12 PM