Options
BKDR_AFCORE.AB (Spyware/Malware)
All,
BKDR_AFCORE.AB has affected our corporate network where computers which are joined to our domain are unable to browse the Internet, however the TCP/IP stack is working, so computers are able to Ping and Telnet to WWW/HTTP websites but not able to connect thorugh IE.
Anyone know a temporary fix?
BKDR_AFCORE.AB has affected our corporate network where computers which are joined to our domain are unable to browse the Internet, however the TCP/IP stack is working, so computers are able to Ping and Telnet to WWW/HTTP websites but not able to connect thorugh IE.
Anyone know a temporary fix?
Comments
-
Options
rogue2shadow
Member Posts: 1,501 ■■■■■■■■□□
I don't know much about this variant but last time I dealt with something similar to this (stopping IE from connecting), I ended up using Hiren to remove some inherent proxy setting set by the code.
EDIT:
Random info from Trend Micro:
http://about-threats.trendmicro.com/ArchiveMalware.aspx?language=us&name=BKDR_AFCORE.AB -
Options
RS_MCP
Member Posts: 352
I would like to attempt this method as I have run our of all other solutions, can you explain me how to carry this out using Hiren? -
Options
gateway
Member Posts: 232
If you're using XP, run this:
netsh diag show ieproxy
If it shows some rogue proxy entries run:
netsh winhttp reset
If that works, stick it in a GPO startup script
HTHBlogging my AWS studies here! http://www.itstudynotes.uk/aws-csa