New virus/trojan that hijacks DNS settings and replaces all search results from google etc. Not able to get to many anti-spyware sites.
leaves a dll/executable that runs everytime apps launch using app_init, re-registers itself after deleting with hijack this.
File name c:\windows\system32\prefc000.dat also many ini files with keywords in them with the size of 1438 KB with random names.
Avenger removed the dat file. Then hijackthis removed the entry.
leaves a dll/executable that runs everytime apps launch using app_init, re-registers itself after deleting with hijack this.
File name c:\windows\system32\prefc000.dat also many ini files with keywords in them with the size of 1438 KB with random names.
Avenger removed the dat file. Then hijackthis removed the entry.
