when installing spybot get as far as trying to contact

Posted on 2008-09-29
Medium Priority
Last Modified: 2013-12-06
I have XP Pro, Comcast internet, the two are connected with a router.

Earlier today Google started returning search results to me that, when clicked, took me to HotJobs and other ad sites.  Uh oh.

I have run AVG, it has found nothing.

I have seen one message today when "AV.DAT" tried to go through AVG firewall.  I denied it.

I downloaded Search & Destroy (on an other machine) but during its install it wants to download files from "" and the error message is that a connection could not be established.  That isn't surprising to me because I cannot surf to:


I can't get to the Hijackthis site to download it.

HOSTS file is empty save for the comments at the top. WAS there, I removed it.

Malwarebytes is running right now, but it could not contact its web site when it tried.

Please help me.  ;-)

Question by:JXCovert
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions

Assisted Solution

aboredman earned 200 total points
ID: 22596900 is the loopback adress. It's the machine local adress. There is not really any danger in contacting
LVL 20

Assisted Solution

IndiGenus earned 200 total points
ID: 22596980
If you can, download HijackThis on another PC and copy it over with a USB drive or whatever is convenient. If it still won't run try renaming it. The log would help analyze what is going on.
LVL 11

Accepted Solution

ladarling earned 1600 total points
ID: 22597175
If you are trying to download from \\localhost ( then your machine is looking at itself. If you dont have any server software running, then you *should*  just get an error. HOSTS, by default, will be blank except for a reference to the localhost (, so you should not be concerned about that.
If you can browse to *any* well known web sites, then your redirection or blocking is either coming from the Browser, firewall software, or your ISP's DNS server.
 First Thing:  check Add-Ons if you are using IE, disable any add-ons that you cant identify. This is a common place for hijack-ware.
Also, check your Internet Explorer LAN (Tools > Internet Options > Connections > LAN Settings) settings to make sure the you are not being pointed to a Proxy server and that Automaticaly detect settings is checked.
If thats good, check to make sure that you are not blocking the sites with overly-aggressive security settings.
If all else fails, contact you ISP to see if they are having DNS issues.
Four New Appliances. Same Industry-leading Speeds.

But don't take it from us.  The Firebox M370 is Miercom tested and Miercom approved, outperforming its competitors for stateless and stateful traffic throughput scenarios.  Learn more about the M370, M470, M570 and M670 and find the right solution for your organization today!


Author Comment

ID: 22597517
Thanks to all thus far!

Malwarebytes found a Trojan and destroyed it (it appears).  I can now surf to the above listed sites quite well.  Spybot is installed and running, thus far it has identified only one threat:



My issues now are:

-- cannot connect to my home windows network (it shows me that the network exists, but trying to see other computers on it gives "mynetworkname is not accessible".

-- I cannot ping my work VPN, which is disconcerting

LADarling: Automatically detect settings was NOT checked, now it is.  I doubt it is ISP; my other machines on my network here work fine.   I have just disabled a bunch of IE AddOns.

Powering down entire bagshoot now...


Author Comment

ID: 22597822
-- cannot connect to my home windows network (it shows me that the network exists, but trying to see other computers on it gives "mynetworkname is not accessible".

-- I cannot ping my work VPN, which is disconcerting

are now remedied (LADarling - overzealous firewalling was correct!).  I am going into wait-and-see mode prior to closing this question.

Thanks all!

Author Comment

ID: 22604951
So in the final analysis:

-- MalwareBytes removed a virus

-- An overzealous firewall was blocking the sites I could not reach.  Perhaps the malware adjusted the firewall, that's unknown.

Thanks ABoredMan.  Thanks IndiGenus.  Thanks LADarling.

I am obliged to you'alll for hopping on this so quickly.


Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Some of the most commonly posted questions in the "Virus & Malware" Zones are related to the family of rogue malware with the date "2012" somewhere in the title. Examples: XP Antispyware 2012 XP Antivirus 2012 XP Security 2012   XP Home Sec…
It started not too long ago. It was at first annoying. My keystrokes seemed to be randomly generated, not the ones I typed on the keyboard. For some reason this only happened in certain applications (especially browsers such as IE11, Firefox and Chr…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question