[jbirdie1]

after years of safe surfin etc, they got me...but it aint terribly bad...here goes: on sunday i did a routine (daily) malware scan and got some results from spyware doctor. i expected them to be tracking cookies, but there was - Trojan.Wayphisher, and sdc.ca.com, and wdcs.trendmicro.com, and om.symantec.com, and finally tc.symantec.com. all were located, and verified, to be in the hosts file, i deleted the version i was using (11/01), and d/l a new ver from the mvps site. and it was clean for about 5 minutes b4 those showed up again, i ran hijack this and its good, i ran registry cleaners (reg clean and registry mechanic), i also displayed a list of services and nothing unusual there. also ran a couple of rootkit detectors and they came clean too, a2squared came up clean, avg a/v found the trojan. how do i fix this, i am willing to format, thats not a prob at all. i am at my wits end so plz help...if i delete those entries from the hosts file, then they are 'welcome', if i leave em alone, it seems some wanker is getting through to me. all software is latest versions except for zone alarm(6 instead of 7), the machine is less than 1 year old and is made by dell. i am holding my breath until i hear back from you!!! aloha

 

[ejames82]

i ran hijack this and its good,

are you a hijackthis analyst? were you able to remove or delete the trojan? i am not much more than a newbie myself, but if you removed the trojan, and have your security software in place, wouldn't the entries in the hosts file be harmless?
i can think of one tutorial that may help you. "tracking a hacker" at www.bleepingcomputer.com